Linux-Networking Digest #972, Volume #10 Tue, 27 Apr 99 20:13:55 EDT
Contents:
Re: ppp under linux - pap problem? ("K.A. Steensma")
How do you set up a VPN with Windows 9x and a Linux Firewall Server? ("Nobody")
Re: Chaining Printers and ZIP Drive (Barry)
ttyp0 and ttyp1 taken from me. (Bob McLaren)
Re: Problem in configuring a NIC ("Curt")
Re: Chaining Printers and ZIP Drive (Brian Greer)
Re: @home anyone? is it worthwhile or not? (JCA)
what is wrong with my ppp server ([EMAIL PROTECTED])
Re: Ethernet firewall (Michal Suszycki)
XDMCP (u2161474)
Re: Remote Install?? (Phil Mayers)
Re: Linux, Win95/98, Samba and "Dial-up Networking" (John Kenyon)
Free CGI parser for RedHat Linux ([EMAIL PROTECTED])
Linux as a firewall : performances issues (Charles-Edouard Ruault)
Win98: cant copy to linux, but can't read from it ([EMAIL PROTECTED])
Re: af_packet and ethertap (B. Heath Robinson)
Another IP Masquerading problem ("OEL")
----------------------------------------------------------------------------
From: "K.A. Steensma" <[EMAIL PROTECTED]>
Subject: Re: ppp under linux - pap problem?
Date: Tue, 27 Apr 1999 21:45:52 GMT
Go get this and run the script. It will setup everything correctly IF you
have the right info that it asks for in the script.
ftp://sunsite.unc.edu/pub/Linux/system/network/serial/ppp/pppsetup-2.11.tar.gz
KAS
laurent masse-navette wrote:
> Hi Gurus,
>
> I have spent quite a lot of time already trying to set-up a ppp connection
> on my linux box.
> As I have shed a considerable amount of my hair in the process without any
> success, I would be grateful
> if one of you could just have a look at my config file and debug log below
> and even tell me
> what is wrong, THAT would be really great. I must mention that I have done
> extensive reading
> of all the accessible WEB resources on the subject before coming to this
> newsgroup, and I
> am (almost) confident this is not one of the common ppp pitfalls.
> From what I understood of the debug stuff, ppp insist on requesting pap
> authentification from
> the server, even though I specified noauth in the option file. How so??!!!
> There are also a couple
> of LCP ConfRej at the beginning that may have confused the server, but how
> can I avoid these?
> Thanks for your time,
>
> LMN.
>
> ----------------------------------------------------------------------------
> ---
> ISP: mindspring USA (yes I checked their web page on how to establish a
> dial-up cnx with linux: most of the stuff quoted here is from this URL and
> the rest
> I got from one of the linux links on Stokely site)
> ----------------------------------------------------------------------------
> ---
> ----------------------------------------------------------------------------
> ---
> MODEM:
> USR Courier V. Everything external on COM2
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> SYSTEM CONFIGURATION:
> localhost kernel: Linux version 2.0.34 (redhat 5.1)
> pppd version 2.3 patch level 3
> /dev/modem -> cua1 (but I also tried using /dev/ttyS1)
> crw-rw---- 1 root uucp 5, 65 Apr 26 22:17 /dev/cua1
> PII 300 - with Moth. B BX440 - 64MB (i740 video board on AGP slot)
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> contents of etc/hosts.deny (trimmed comments):
> ALL: ALL
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> contents of /etc/hosts.allow (trimmed comments):
> #ALL: 127.0.0.1 127.0.0.0 (also tried)
> ALL: 127.0.0.1
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> Contents of /etc/resolv.conf:
> search mindspring.com
> nameserver 207.69.188.185
> nameserver 207.69.188.186
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> Contents of /etc/hosts:
> 127.0.0.1 localhost
> 0.0.0.0 userName.users.mindspring.com
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> --
> Contents of /etc/host.conf:
> order hosts,bind
> multi on
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> --
> Contents of /etc/ppp/pap-secrets:
> # Secrets for authentication using PAP
> # client server secret IP addresses
> userName * myPassword
> # but I also tried with * as fourth field of the line
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> current contents of /etc/ppp/options (but I have played around already with
> a lot of the options):
>
> lock
> crtscts
> #defaultroute
> #----/etc/ppp/options----
> #
> ipxcp-accept-remote
> ipxcp-accept-local
> ipxcp-accept-network
> #silent
> kdebug 7
> pap-max-authreq 20
> pap-restart 10
> asyncmap 0xa0000
> noauth
> user userName
> domain mindspring.com
> noipdefault
> debug
> defaultroute /dev/modem 57600
> netmask 255.255.255.0
> mtu 1500
> connect "/usr/sbin/chat -v ABORT BUSY ABORT 'NO CARRIER' '' 'AT&F0' OK
> ATDP8890177 ogin userName word myPassword '' '\d\c'"
> #
> #------------------------
> ----------------------------------------------------------------------------
> ---
>
> ----------------------------------------------------------------------------
> ---
> SESSION TRANSCRIPT:
> Apr 26 22:16:04 localhost pppd[888]: pppd 2.3.3 started by root, uid 0
> Apr 26 22:16:05 localhost chat[889]: abort on (BUSY)
> Apr 26 22:16:05 localhost chat[889]: abort on (NO CARRIER)
> Apr 26 22:16:05 localhost chat[889]: send (AT&F0^M)
> Apr 26 22:16:05 localhost chat[889]: expect (OK)
> Apr 26 22:16:05 localhost chat[889]: AT&F0^M^M
> Apr 26 22:16:05 localhost chat[889]: OK
> Apr 26 22:16:05 localhost chat[889]: -- got it
> Apr 26 22:16:05 localhost chat[889]: send (ATDP8890177^M)
> Apr 26 22:16:05 localhost chat[889]: expect (ogin)
> Apr 26 22:16:05 localhost chat[889]: ^M
> Apr 26 22:16:35 localhost chat[889]: ATDP8890177^M^M
> Apr 26 22:16:35 localhost chat[889]: CONNECT 45333/ARQ^M
> Apr 26 22:16:36 localhost chat[889]: Mindspring Oakland Dialup
> Servicearc-5a.oak login
> Apr 26 22:16:36 localhost chat[889]: -- got it
> Apr 26 22:16:36 localhost chat[889]: send (userName^M)
> Apr 26 22:16:36 localhost chat[889]: expect (word)
> Apr 26 22:16:36 localhost chat[889]: : userName^M
> Apr 26 22:16:36 localhost chat[889]: Password
> Apr 26 22:16:36 localhost chat[889]: -- got it
> Apr 26 22:16:36 localhost chat[889]: send (myPassword^M)
> Apr 26 22:16:36 localhost chat[889]: send (dc^M)
> Apr 26 22:16:37 localhost pppd[888]: Serial connection established.
> Apr 26 22:16:38 localhost pppd[888]: Using interface ppp0
> Apr 26 22:16:38 localhost pppd[888]: Connect: ppp0 <--> /dev/modem
> Apr 26 22:16:38 localhost pppd[888]: sent [LCP ConfReq id=0x1 <asyncmap
> 0xa0000> <magic 0xeffb> <pcomp> <accomp>]
> Apr 26 22:16:38 localhost pppd[888]: rcvd [LCP ConfReq id=0x1 <mru 1514>
> <asyncmap 0x0> <auth pap> <magic 0xc7734b0> <pcomp> <accomp> < 11 04 05 ea>
> < 13 03 00>]
> Apr 26 22:16:38 localhost pppd[888]: sent [LCP ConfRej id=0x1 < 11 04 05 ea>
> < 13 03 00>]
> Apr 26 22:16:41 localhost pppd[888]: sent [LCP ConfReq id=0x1 <asyncmap
> 0xa0000> <magic 0xeffb> <pcomp> <accomp>]
> Apr 26 22:16:41 localhost pppd[888]: rcvd [LCP ConfReq id=0x2 <mru 1514>
> <asyncmap 0x0> <auth pap> <magic 0xc7734b0> <pcomp> <accomp> < 11 04 05 ea>
> < 13 03 00>]
> Apr 26 22:16:41 localhost pppd[888]: sent [LCP ConfRej id=0x2 < 11 04 05 ea>
> < 13 03 00>]
> Apr 26 22:16:41 localhost pppd[888]: rcvd [LCP ConfAck id=0x1 <asyncmap
> 0xa0000> <magic 0xeffb> <pcomp> <accomp>]
> Apr 26 22:16:41 localhost pppd[888]: rcvd [LCP ConfReq id=0x3 <mru 1514>
> <asyncmap 0x0> <auth pap> <magic 0xc7734b0> <pcomp> <accomp>]
> Apr 26 22:16:41 localhost pppd[888]: sent [LCP ConfAck id=0x3 <mru 1514>
> <asyncmap 0x0> <auth pap> <magic 0xc7734b0> <pcomp> <accomp>]
> Apr 26 22:16:41 localhost pppd[888]: sent [PAP AuthReq id=0x1
> user="userName" password="myPassword"]
> Apr 26 22:16:51 localhost pppd[888]: sent [PAP AuthReq id=0x2
> user="userName" password="myPassword"]
> Apr 26 22:16:51 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:01 localhost pppd[888]: sent [PAP AuthReq id=0x3
> user="userName" password="myPassword"]
> Apr 26 22:17:01 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:11 localhost pppd[888]: sent [PAP AuthReq id=0x4
> user="userName" password="myPassword"]
> Apr 26 22:17:11 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:21 localhost pppd[888]: sent [PAP AuthReq id=0x5
> user="userName" password="myPassword"]
> Apr 26 22:17:21 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:31 localhost pppd[888]: sent [PAP AuthReq id=0x6
> user="userName" password="myPassword"]
> Apr 26 22:17:31 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:41 localhost pppd[888]: sent [PAP AuthReq id=0x7
> user="userName" password="myPassword"]
> Apr 26 22:17:41 localhost pppd[888]: rcvd [PAP AuthNak id=0x0 49 6e 76 61 6c
> 69 64 20 4c 6f 67 69 6e 3a 20 55 6e 6b 6e 6f 77 6e 20 75 73 65 72 6e 61 6d
> 65 2e 0d 0a]
> Apr 26 22:17:41 localhost pppd[888]: rcvd [LCP] 05 04 00 00
> Apr 26 22:17:43 localhost pppd[888]: Hangup (SIGHUP)
> Apr 26 22:17:43 localhost pppd[888]: Modem hangup
> Apr 26 22:17:43 localhost pppd[888]: Connection terminated.
> Apr 26 22:17:44 localhost pppd[888]: Exit.
> ----------------------------------------------------------------------------
> ---
------------------------------
From: "Nobody" <[EMAIL PROTECTED]>
Subject: How do you set up a VPN with Windows 9x and a Linux Firewall Server?
Date: Tue, 27 Apr 1999 17:06:45 -0500
I am looking for a firewall/VPN solution that will allow our company
personnel to connect to the corporate network using there Win95 laptops and
a Dynamic IP address from there ISP, when they are out traveling.
When they are not traveling, these Win95 laptops are used as their personal
workstations and are assigned a permanent IP address (Internet IP - not
public IP) on the corporate network.
Corporate Network to Internet:
Win95 Laptop ---- Linux Firewall/VPN Server ----- Internet
x.x.x.10 x.x.x.1/y.y.y.254
VPN Connection to Corporate Network from Internet:
Mail Server ---- Linux Firewall/VPN Server ==== Internet ==== Win95
Laptop
x.x.x.15 x.x.x.1/y.y.y.254
z.z.z.73/x.x.x.10
What software is available for Linux and Win95 to create a secure VPN
connection to the corporate network?
How would I setup the software so that a secure tunnel is created from
z.z.z.73 to y.y.y.254, and will encapsulate the IP packets so that the Win95
Client will use x.x.x.10 to access the corporate network?
Thanks
Scot
GENROCO, Inc.
-----------== Posted via Newsfeeds.Com, Uncensored Usenet News ==----------
http://www.newsfeeds.com/ The Largest Usenet Servers in the World!
=========== Over 72,000 Groups, Plus Dedicated Binaries Servers ==========
------------------------------
From: Barry <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux.slackware
Subject: Re: Chaining Printers and ZIP Drive
Date: Tue, 27 Apr 1999 22:17:07 GMT
Hi,
Desmond Coughlan wrote:
> yet up to speed on chaining the ZIP and the printer, so that I can use
> both together. Is this still the case?
Hmm, load and unload the relevant modules.
Compile the ZIP and printer (ppa and lp) as modules and then load and
unload them when needed.
Barry
------------------------------
From: Bob McLaren <[EMAIL PROTECTED]>
Subject: ttyp0 and ttyp1 taken from me.
Date: Tue, 27 Apr 1999 18:29:58 GMT
When I telnet in to my Redhat 5.1 Linux server I usually connect to
ttyp0. Then one day it wouldn't let me and I had to edit my securetty
file to allow me to log in to ttyp1. Now it won't let me do that and I
have to log in to ttyp2. I looked in `ps -ax` and `who` to see if
others were logged in but it's just me. How can I find out what's going
on with those ports?
--
Bob McLaren
Network Administration
Financial Statement Services, Inc.
HTTP://WWW.FSSI-CA.COM
------------------------------
From: "Curt" <[EMAIL PROTECTED]>
Subject: Re: Problem in configuring a NIC
Date: Tue, 27 Apr 1999 13:44:20 -0500
Most likely you have your modem on com2, which by default uses irq 3.
You need to move the IRQ on the NIC to something like 5, 10 or 11.
Check /proc/interrupts to see what is currently being used.
You may need to use the DOS base setup software that came with your NIC to
make the changes. Turn off PnP too.
Madjid SalimZadeh wrote in message <7g4lh7$tod$[EMAIL PROTECTED]>...
> I have got a NE2000 ISA NIC. The card works properly. The dmesg says
>that it has find a eth0 at 0x300 irq 3
>I have a 56K External USR Fax/modem. The modem works properly too.
>
>The problem is that when I connect to my ISP by modem and I try to
>ping , telnet , irc, lynx, .... or any other command the computer
>hangs and do nothing. What is the problem?
>--
>Madjid SalimZadeh
>[EMAIL PROTECTED]
>
>-----------== Posted via Deja News, The Discussion Network ==----------
>http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: [EMAIL PROTECTED] (Brian Greer)
Crossposted-To: alt.os.linux.slackware
Subject: Re: Chaining Printers and ZIP Drive
Date: 27 Apr 1999 22:54:08 GMT
Reply-To: [EMAIL PROTECTED]
>I seem to remember that one of the HOWTOs mentioned that Linux isn't
>yet up to speed on chaining the ZIP and the printer, so that I can use
>both together. Is this still the case?
Yes, however I've never had a problem with the printer being chained off
the zip drive, although you can't have lp and the ppa *driver* active at
the same time. Here's what I do when I want to use the zip drive:
rmmod lp
insmod ppa
mount /dev/sda4 /mnt/zip
(do work with the zip drive......)
When finished with the zip, and I want to be able to print, I reverse the
process:
umount /dev/sda4
rmmod ppa
insmod lp
Although I only have IDE drives, I use the SCSI kernal since it supports
the psuedo-scsi zip parallel interface AND IDE. Yeah, It's a bit big, but
so far no problems.
The good news about Slackware 4.0 is that it supports both the older
ppa-style and newer imm-style parallel zip drives. I own both types, so
it's nice to see both supported in the iomega.s bootdisk now since I
usually install Slackware from zips. (using the pre-mounted directory
option).
------------------------------
From: JCA <[EMAIL PROTECTED]>
Subject: Re: @home anyone? is it worthwhile or not?
Date: Tue, 27 Apr 1999 22:40:05 GMT
I've got a small network of two machines at my @home connection and
so far I am very happy with the performance I am getting. My top download
speed has been near 500 KB/s, and that was downloading a gzipped file.
Dialup is not comparable to this.
[EMAIL PROTECTED] wrote:
> I have @home and also have a static IP. I am using IP Masquerading and as far
> as @home knows I only have 1 box connected. I have had mixed results with
> speed though, some days I download at 20K/b and others it's 200K/b. But all
> in all I would not go back to dialup.
>
> In article <[EMAIL PROTECTED]>,
> <[EMAIL PROTECTED]> wrote:
> > Greetings & Salivations.
> >
> > I'm starting to setup RHL 5.2 on a small ethter net, 3 linux machines, a
> > mac and an STe, and I'm considering using the @home cablemodem service
> > for my net connection. I've heard some say it's really cool, others
> > call it bunk. Anyone here have personal experience with it?
> >
> > Another thing I've heard a while back from fellow linux user who has it
> > is that he end up with a static ip address! anyone else have this
> > experience?
> >
> > bfn,
> > James
> >
> >
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: [EMAIL PROTECTED]
Subject: what is wrong with my ppp server
Date: Tue, 27 Apr 1999 22:27:31 GMT
Hi all:
days before , my linux ppp server worked just fine,
but today, I have to confront some weird problem.
first: my ppp server can not forward any ip package except it
belongs to root,(that means I have to log in as root,if I want to
browsing).
second: my ppp server always assigns the netmask just like the class of
ip address, for example my client got an IP 10.6.10.13, the netmask will
be 255.0.0.0, if the IP is 196.168.x.x the netmask will be 255.255.0.0.
what is wrong with my ppp box?
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Michal Suszycki <[EMAIL PROTECTED]>
Subject: Re: Ethernet firewall
Date: Tue, 27 Apr 1999 13:49:35 +0200
Reply-To: Michal Suszycki <[EMAIL PROTECTED]>
On Fri, 23 Apr 1999, mist wrote:
...
> I see more clearly what you mean now; You're thinking about accepting a
> certain range of cards, as apposed to denying a certain range.
That's right. And I still haven't found the answer for my question:
****** Is there any way to do this on linux? ******
I just want my linux box to be a router, DHCP server and bridge with
ability to block certain range of cards.
...
> >Wouldn't be nice to have ability to set rules on your router:
> >"ignore everything on your eth0 except things that came from card's
> >addresses listed in /proc/net/something"?
>
> It's not a routing function though, is it.
Of course you are right. Once again I didn't write clearly.
Writing "router" I just wanted to say "my linux box" ;)
>It's, if anything,
> equivalent to the layers that a bridge would work on. (In fact, AFAIK
> this is broadly the job of a bridge, to stop certain MAC address source
> packets passing through the bridge to the other side, and forward
> others.) Maybe the function exists and you're looking in the wrong
> place for it (though I don't know.)
>
> >Nobody will install new workstation or server in your builiding without
> >your knowledge. You know exactly who is using what in your network.
> >It is my current problem and I want to solve it.
> >
>
> If that was my building, I would want to have more control over people
> blindly plugging machines into my network in any case. There's far more
> risks than just conflicting IP addresses. Maybe the problem is not in
> filtering the network, but in controlling who can use it.
I can't control these people but I want to control my network. (this is
building in the University and I have to expect that people will do stupid
things ;-)
I still think that the main problem is that feature we're talking about
(probably) doesn't exist in the linux. In my opinion this is wrong.
Thanks for your help!
-- Mike
------------------------------
From: u2161474 <[EMAIL PROTECTED]>
Subject: XDMCP
Date: Tue, 27 Apr 1999 21:45:54 +0000
Hi,
Can anyone tell me how to configure XDMCP, so that I can choose to which
server I want to connect.
what are "chooser" and "undirect queries" methods?
what command should be in /etc/X11/xdm/Xaccess and Xserver ?
any advice is appreciated....
many thanks.
------------------------------
From: Phil Mayers <[EMAIL PROTECTED]>
Subject: Re: Remote Install??
Date: Tue, 27 Apr 1999 12:47:25 +0100
Yes, you need to use an FTP server holding the relevant directories. Using
RedHat (which I have done this with) the FTP directory needs to be the
/i386/RedHat
directory (the one containing the directories RPMS, base, instimage)
The boot floppys you make with RedHat will get TCP/IP up and running, and you
simply FTP into the other machine, providing a path that leads the install
program to that directory.
Cheers,
Phil
Newbie wrote:
> Is it possible to remotely install linux on a new pc (nothing on the hdd at
> all) using a boot disk.
> log onto a server and then install linux.
> Is this possible with any distibutions?
> If so how do I go about doing it??
--
==========================================================
to reply to me, remove the .obfuscate part of my address
(sorry if this Inconveniences anyone, but I have a limited
amount of time for junkmail)
------------------------------
From: John Kenyon <[EMAIL PROTECTED]>
Subject: Re: Linux, Win95/98, Samba and "Dial-up Networking"
Date: Tue, 27 Apr 1999 12:55:02 +0100
I had various problems with my Win95 box, using DUN to access
the internet, and local LAN to access my Linux server. (PPP not working
properly yet!).
Problems included - unable to connect to Linux box after bringing
up the DUN link, being invited to make a DUN connection when trying
to connect to the linux box.
These all disappeared when I started to use DHCP + local DNS on my LAN.
The TCP/IP config for both DUN and the ethernet card now states
server assigned IP address and DNS, I have no problem.
It appears that there is a lack of integration between Dialup adapter
and ethernet adapter code. WinNT Workstation 4.0 isn't much better
but at least it behaves in a more consistent manner.
/john
Yanko Sheiretov wrote:
>
> Hi,
> My understanding is that Samba requires that TCP/IP be installed in the
> Win box,
> and used as the main protocol. I guess this means that I need to give
> the Win box
> an IP address. What I'm trying to do is get two computers, a Linux and
> Win, to
> talk to each other, with each one independently being able to connect to
> an ISP.
> My question:
>
> Doesn't specifying a definite IP address in the Windows box interfere
> with its
> ability to connect to an ISP which assigns addresses dynamically (via
> dial-up
> networking) ? If this is not an issue, then how should the network on
> the
> Win box be configured?
>
> Thanks for your help.
> Yanko
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: linux.redhat.misc,linux.redhat.misc
Subject: Free CGI parser for RedHat Linux
Date: Tue, 27 Apr 1999 19:19:48 GMT
The WebMerger is the fastest and simpliest way to achieve dynamic
server executed web content. Create:
* Guestbooks
* Shopping charts
* Form to mailers
* local search engines
* Searchable databases
Much Much more.....
Available for immidiate download:
webmerger for RedHat Linux incl iodbc driver manager
ODBC drivers for MySQL as binaries
ODBC drivers for PostgreSQL as binaries
webmerger for Windows 95/98 NT
//B Hahn
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: Charles-Edouard Ruault <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.questions
Subject: Linux as a firewall : performances issues
Date: Tue, 27 Apr 1999 23:33:04 +0000
Hi everybody,
i've already used Linux as a firewall on my company network and it runs
very well and now i'm considering using it on a much more critical
network.
i'm setting up a new internet service and i'm considering using a Linux
box for a firewall but i'm not sure about the performances and capacity
so i'd like to check before making any mistake.
Does anybody knows how many simultaneous connections a Linux box can
handle ( i would say the theoritical max is 65535 ) but what
hardware/memory do i need to handle that ?
What throuput would i then be able to provide to the users ? ( let's say
both internal & external interfaces are 100Mb/s ethernet ).
Also does anybody knows of an architecture that would allow to build a
fault tolerant firewall ( one active machine and one stanby machine
that would take over if the active fails )
Of course i would be really happy to use my favorite OS instead of
spending a lot of $$ to buy products that would give the same
performances or less ....
Thanks for your advices & help.
--
Charles-Edouard Ruault
------------------------------
From: [EMAIL PROTECTED]
Subject: Win98: cant copy to linux, but can't read from it
Date: Tue, 27 Apr 1999 22:55:35 GMT
Hi!
I got a Linux-Box (Redhat 5.2, Samba updated to 2.03) and a Win98 Box.
They are connected via a RJ45-Crosscable. I can see the Linux-Box from Win98,
copy files to the Linux Shares and delete them.
But when i try to copy files from Linux to Win (with the Explorer) it works
only for very small files (up to 3kB). When I try to copy larger files, it
takes about 1 minute of inactivity till Windows tells me that it can't connect
to the network ressources.
I tried it in USER and SHARE SECURITY-MODE and varius samba configurations.
Can someone tell me, what could cause this problem?
Rick.
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: B. Heath Robinson <[EMAIL PROTECTED]>
Subject: Re: af_packet and ethertap
Date: Tue, 27 Apr 1999 03:26:39 -0400
>In article <[EMAIL PROTECTED]>, B. Heath Robinson wrote:
>>I am trying go get diald working with my 2.2.x kernel. I am getting the
>>following messages when I try to load af_packet and ethertap:
>>
>>/lib/modules/2.2.6/net/ethertap.o: unresolved symbol netlink_kernel_create
>>/lib/modules/2.2.6/net/ethertap.o: unresolved symbol netlink_broadcast
>
>Your kernel wasn't built with netlink support?
>
> Mike
I think this is the only way the ethertap option is available through various
config scirpts, and it appears to be enabled in the .config file.
------------------------------
From: "OEL" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.help,udel.linux
Subject: Another IP Masquerading problem
Date: Tue, 27 Apr 1999 15:55:35 -0400
Reply-To: "OEL" <[EMAIL PROTECTED]>
Hello,
I realize that IP-Masq has been beat to death in the newsgroups, but digging
through the web and dejanews, I haven't had any real luck at all.
The situation: trying to setup IP Masq for a win9x peer-to-peer network
(tcp/ip 192.168.1.x) via the linux box (192.168.1.1, RH 5.2 [2.0.36], ppp
working fine). The win machines appear to be setup fine -- the gateway is
set to 192.168.1.1, static IP 192.168.1.yyy w/255.255.255.0, and dns is
setup for the ISP dns IPs, with domain is dol.net. The host is the login
name of the ppp account. Now, all machines ping each other fine, however,
when the linux box is connected via ppp, it can get out, but won't route
anything else out. FTP, http, ping, etc. from any win machine just fails.
With dns names, says can't resolve. With IP #s, gives unreachable-type
errors (so not a dns problem).
The commands to initiate IP masq all reside in /etc/rc.d/rc.inet1, following
the setup of the eth0 info. The lines are right out of the HowTo:
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
echo "1" > /proc/sys/net/ipv4/ip_forwarding (even though
FORWARD_IPV4=yes)
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.1.0/24 -D 0.0.0.0/0
{{i've even added a route -net 192.168.1.0 command here with no change}}
It really seems like a pretty easy thing to setup, but I've had zero luck.
Hitting some chat rooms, it was suggested that I check out tcpdump. Some of
its output and my comments follow:
First, watch 2 network machines ping each other. When 192.168.1.6 pings
192.168.1.22 we see:
15:04:47.51696 arp who-hasq 192.168.1.22 tell 192.168.1.6
15:04:47.501696 arp reply 192.168.1.22 is-at 0:10:4b:2d:51:9e
then .6 > .22 icmp: echo request
and .22 > .6 icmp: echo reply
(the #s are .22's correct adapter #)
Okay, all looks fine here. Now, lets startup ftp on the .22 machine and try
to reach outside world (a site i know was up):
15:11:26.321696 arp who-has 192.168.1.1 tell 192.168.1.22
15:11:26.331696 arp reply 192.168.1.1 is-at 0:10:5a:23:71:7b
15:11:29.541696 arp who-has 192.168.1.1 tell 192.168.1.22
15:11:29.541696 arp reply 192.168.1.1 is-at 0:10:5a:23:71:7b
hmm. looks like .22 is asking about the gateway, gets a response, then asks
again. I think this is not good. Can anyone verify this?
Whenever I kill the tcpdump, it ends with something similar to:
85 packets received by fileter
0 packets dropped by kernel
which, again, seems fine.
Okay. That there is my situation. If you can lend _any_ hints at all, I'd be
very grateful. I'm pretty much at my wits end here (and haven't even gotten
to the diald part).
Feel free to respond to the thread, or if you're afraid of looking silly in
front of the linux gods, just reply to me via email: estewart at udel dot
edu.
Thanks for your time,
-ed
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
