Linux-Networking Digest #61, Volume #11 Thu, 6 May 99 17:13:46 EDT
Contents:
Info needed on NAT and ip ("Albert Want")
Re: PCMCIA network cards ("Aaron Mulder")
No PPP lines when dmesg (Ken Mar)
Re: NT faster than Linux? (Rob Fisher)
Re: Trouble with 3Com -- SOLVED ("Vesa S�rkel�")
Re: Get client machine's IP-address (AKK)
NFS Hard mount ([EMAIL PROTECTED])
Re: Pop3 email account ("Simon Portsmouth")
Help: How to set up a POP server on my linux ("Peter")
kppp and pppd: strange behaviour (smueller)
Re: Newbie making network ([EMAIL PROTECTED])
Re: HELP!! DNS Issues (Demetrius)
Re: NFS mount trouble: RPC not registered? ([EMAIL PROTECTED])
Re: Redhat 6.0... the good, the bad, and the ugly ("Xin Feng")
Re: HELP!! DNS Issues (Demetrius)
Re: Network failure during heavy traffic (Vidar Andresen)
Problems deleting IP Aliases (Erik Horn)
Re: kernel 2.2 (Sellaro)
Re: IP Masquerading problem (Demetrius)
vpn: ipsec-freeswan on linux (Olivier Mary)
Re: 3c509 network setting help ("Curt")
Re: Routing and router redundancy ("Lee Sharp")
----------------------------------------------------------------------------
From: "Albert Want" <al-want@#--remove--#usa.net>
Subject: Info needed on NAT and ip
Date: Thu, 6 May 1999 16:37:56 +0100
Where to find the documentation about fast-NAT inserted in kernel 2.2.x and
about the command ip used to change the routing table?
Thanks in advance... and please answer in mail too (removing #--remove--#)
------------------------------
From: "Aaron Mulder" <[EMAIL PROTECTED]>
Subject: Re: PCMCIA network cards
Date: Thu, 06 May 1999 17:08:12 GMT
I've used several 3Com cards successfully (3c589C - 3c589E), though at least
one required the latest PCMCIA distribution. I've also used a LinkSys PCI
card, and I know they have a Linux support page that covers their other
cards (including the PC Card & CardBus 10/100 models). You might want to
check that out.
Aaron
http://www.linksys.com/support/solution/nos/linux_others.htm
Charles Watkins ; Jr. wrote in message <[EMAIL PROTECTED]>...
>I am running RH 5.2 on an IBM Thinkpad 310ED. Everything works great
>except for the network card. I have tried a Linksys Etherfast 10/100 and a
>megahertz 56K/10baseT combo card, and Linux can't find either one. Anyone
>have any suggestions? TIA.
------------------------------
From: Ken Mar <[EMAIL PROTECTED]>
Subject: No PPP lines when dmesg
Date: Thu, 06 May 1999 23:50:19 +0800
Hi gurus,
A Linux newbie wished to know how to connect Linux box to ISP thru'
PPP. Following advice from textbook, I issued the command dmesg and
didn't see the expected entries :
PPP --------blah blah------
TCP/IP ------blah blah-----
PPP -----blah blah----
PPP -----blah blah----
Book says I need to recompile kernel for PPP and do a insmod to load
driver. As with most books, it stopped dead in the tracks from there.
Could you guys out there kindly 'hand-lead' me to achieve the above?
Things like where to get the built-in PPP or the module and what
commands to issue. I know it's embarassing, but had to start somewhere,
right?
-Ken
------------------------------
From: Rob Fisher <[EMAIL PROTECTED]>
Crossposted-To: uk.comp.os.linux
Subject: Re: NT faster than Linux?
Date: Thu, 06 May 1999 16:52:25 +0100
Reply-To: [EMAIL PROTECTED]
> Sold my old BBC B to a school quite a few years ago I still miss it
> sometimes
> Actually I had a double disk drive that switched between 40 and 80 track
> the equivalent of having a .. erm er no can't think of one
> well the equivalent of having something really really swish nowadays
An optically linked storage area network perhaps?
Rob
------------------------------
From: "Vesa S�rkel�" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.ms-windows.networking
Subject: Re: Trouble with 3Com -- SOLVED
Date: Thu, 6 May 1999 12:03:04 +0300
Vesa S�rkel� <[EMAIL PROTECTED]> wrote in message
news:7gnc7n$[EMAIL PROTECTED]...
>
> I'm having real trouble with 3Com.
>
> I have found a problem with 3C905B-TX cards, but 3Com insists that they
> are OK
We have today decided, that we will scrap our 3C905B-TX cards and
we will purchase 138 cards from some other manufacturer.
--
Vesa Sa"rkela" Keskuslaboratorio Oy ( KCL) tel. +358-9-4371430
P.O. Box 70, FIN-02151 Espoo FINLAND
[EMAIL PROTECTED] The Finnish Pulp & Paper Research Institute
GSM 0405116047 fax +358-9-4371302
------------------------------
From: AKK <[EMAIL PROTECTED]>
Crossposted-To:
it.comp.linux.development,comp.os.linux.development.system,comp.os.linux.development.apps,comp.programming,comp.protocols.tcp-ip,comp.protocols.tcp-ip.domains,comp.unix.programmer,comp.unix.sco.programmer
Subject: Re: Get client machine's IP-address
Date: Thu, 06 May 1999 17:10:05 GMT
AKK wrote:
> Iond Research Srl wrote:
>
> > Hi, world
> >
> > Does anybody know how can I get in a stand-alone C/C++ program, running
> > on a server machine
> > but started during a telnet/rlogin session, the IP-address of the client
> > machine that launched the
> > telnet session ?
> >
> > Obviously the program doesn't anything know about the client machine.
> >
>
> In unix all logins are recorded in the /etc/utmp file. You could find out
> the
> format (man utmp) of the file and read the IP address of the client which
> started current session(using current pty as the key) from it or use
> "system" system call to run a script which returns the IP address to an ENV
> variable and read it into the C code
>
> $who -R am i | awk { print $6 } /who with some option depending on the
> / implemetation should
> return the IP of
> /client that started the
> current session
>
> There should be a better way of doing it..any suggestions......
There is a more elegant way of doing it using "popen" in unix.
sid = popen("who am i | awk { print $6 }", "r"};
you can read the o/p from the stream sid - which will get you the IP add
of the client which launched the current session.
------------------------------
From: [EMAIL PROTECTED]
Subject: NFS Hard mount
Date: Thu, 06 May 1999 16:57:40 GMT
Hello,
I am trying to set up some NFS clients to behave properly when we experience a
power failure.
Currently, when our power goes out, our client machines come up quicker than
the machine they are trying to NFS mount. And, when they come up NFS times
out before it can connect to the server machine.
So, I've been reading up on NFS. And, I've been experimenting with timeo,
retrans, retry and hard. It is my understanding that when a client attempts a
hard mount, it won't quit until it goes through the following process:
it must wait 'timeo' before it issues a minor timeout
it may only issue 'retrans' number of minor timeouts then issues a major.
it may only issue 'retry' number of major timeouts before it quits.
So, what I've tried is to power down a pseudo NFS server... then, try to
mount that server from my client. Then, I power up the NFS server.... I
never get any timeout messages or anything, but after the NFS server starts
to boot, I get a "port unavailable" (approx.) error and NFS exits???
Why doesn't it keep trying?
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Simon Portsmouth" <[EMAIL PROTECTED]>
Subject: Re: Pop3 email account
Date: Thu, 6 May 1999 18:43:15 +0100
rich bowman <[EMAIL PROTECTED]> wrote in message
news:7ga94r$7li$[EMAIL PROTECTED]...
>
> I would like to get my Internet mail on my Linux machine also my News
accounts.
> I can get my Hotmail account mail through the browser. but I would also
like my
> "default" email account to be on my linux box has anyone had success with
this?
You could try using,
Fetchmail - http://www.tuxedo.org/~esr/fetchmail/
and
Leafnode - http://wpxx02.toxi.uni-wuerzburg.de/~krasel/leafnode.html
Both are fairly easy to configure. Fetchmail will download pop3 mail to your
Linux
box and leafnode will download news and is a news server.
Simon.
------------------------------
From: "Peter" <[EMAIL PROTECTED]>
Subject: Help: How to set up a POP server on my linux
Date: Thu, 06 May 1999 18:30:07 GMT
Help: How to set up a POP server on my linux
All help greatly appreciated
------------------------------
From: smueller <[EMAIL PROTECTED]>
Subject: kppp and pppd: strange behaviour
Date: Thu, 06 May 1999 19:42:19 +0200
hello,
I don�t really have a problem it�s just something strange i couldn�t
figure out.
i managed to configure kppp for my internet stuff but it tells me "pppd
demon died unexpectedly" when click �connect�. checking
/var/log/messages told me everything was working fine. pppd didn�t die
and the internet connection worked fine. it�s just kppp doesn�t know
about that.
why is that?? can i switch that of somehow?
thanks in advance,
sebastian
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Newbie making network
Date: Thu, 06 May 1999 18:07:02 GMT
Your post was a bit vague, but it sounds like you're looking for either the
SAMBA client or server. Hit http://www.samba.org and take a look. Also hit
http://www.emuse.net That's a portal site I put up to help me in my daily
linux work. It's got linux links, linux books, linux newbie sites, etc.
Hope it helps.
Randy
In article <Fm2Y2.565$[EMAIL PROTECTED]>,
"JESPER ALBRECHT MADSEN" <[EMAIL PROTECTED]> wrote:
> Hi!
> I'm trying to connect my Linux and W98 machines, but of course I'm having
> problems!
> I'm Using Ne2000 compitable Netcards on both machines, and I can make a
> connection and share folders/printers in Windows98.
> But I want Linux to work as a server (document, printer and Internet
> connection server). But first of all I want to configure it so I can connect
> from the w98 machine.
> If you can help me but need more infomation about ...(?) something. (Netcard
> etc.) feel free to mail me, or if you have a doc or HOWTO I can read and
> use.
> I have read some of the Howto that came with my RH51. but I'm still having
> problems.
>
> Any help is of course aperciated... Thanks in advance
> Jesper
>
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
Date: Thu, 06 May 1999 14:02:38 -0400
From: Demetrius <[EMAIL PROTECTED]>
Subject: Re: HELP!! DNS Issues
Ok,
I'll give this a shot. With a DNS server I believe you need two files for each
network you
are one with the hostnames to IP. But you need another file. In your named.boot
file
you need to have something like
primary 192.168 private.net.hosts
primary 168.192.IN-ADDR.ARPA
The second line needs to be there for reverse lookups. There are also two
separate file structures for each file.
Hope this helps
Demetrius
[EMAIL PROTECTED] wrote:
> Hello All,
>
> Here is the problem, I have a Local DNS server setup on my network. The db
> file is private.net.hosts and works fine for name resolution. I can't seem to
> get reverse dns working, nor does nslookup work. But nslookup does reverse
> lookups so the problem probably lies with reverse dns.
>
> Anyone who may be able to answer these questions I would appreciete the help,
> BTW: the dns server is running on a RedHat Linux box.
>
> Thanks
>
> DR
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: NFS mount trouble: RPC not registered?
Date: Thu, 06 May 1999 19:12:48 GMT
Just for the record...
> Have you checked to see if the nfsd daemon is running, and have you shared
> the filesystem that you want to share? I have not done too much with nfs
> under linux, but in Solaris the file /etc/dfs/dfstab is where you share
> files, and on boot if there are entries in this file then the nfsd daemon
> will start automatically. Running /etc/init.d/nfs.server manually will start
> the daemon manually if you share the filesystem manually.
Under Linux, the share file is /etc/fstab... and, if it exists (and your start
up files are setup to check for it) then rpc.nfsd is started automatically.
You can look for startup files in Linux (Slakware, anyway) under /etc/rc.d
In that directory simply "grep nfs *" and you will learn which file tries to
start rpc.nfsd and from that, you can learn how it starts it.
Bob
>
> Hope this helps,
>
> Jim Gillespie
>
>
============= Posted via Deja News, The Discussion Network ============
http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: "Xin Feng" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware,comp.os.linux.setup
Subject: Re: Redhat 6.0... the good, the bad, and the ugly
Date: Thu, 6 May 1999 12:32:40 -0700
Ken,
Thank you first, I made my WinTV (the same model 401, setero TV and radio)
work under your instructions. But I can not get stereo sound, mono only.
Did you?
Xin
Ken Cormack <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
"Jeff Volckaert" <[EMAIL PROTECTED]> wrote:
>
>All my hardware (with the exception of my Hauppauge tuner card) works
>flawlessly. Ensonique sound, Riva128 video, 13G seagate drive and ne2000
>network included.
Jeff - Got my Hauppauge WinTV Model 401 working just fine here under RedHat
6.0 with xawtv-2.43-1.i386.rpm (built from xawtv-2.43.tar.gz, using the
command "rpm -ta xawtv-2.43.tar.gz", also per the xawtv docs). Kradio even
works well. I can offer a few things to look for, but if needed, I'll ask
you
to give a few specifics about your configuration.
To start, here's a snippet from my /etc/conf.modules (per the xawtv docs),
relating to the WinTV board....
alias char-major-81 bttv
pre-install bttv modprobe -k msp3400; modprobe -k tuner
options bttv card=0 radio=1 vidmem=0xff0
options tuner type=2
Also, here's a look at my /etc/rc.d/rc.modules file (which may not exist by
default but is searched for and executed if found during startup)...
/sbin/modprobe tuner
/sbin/modprobe msp3400
/sbin/modprobe bttv
Per the xawtv docs, be CERTAIN to compile kernel bttv support as a module!
If you normally use "make menuconfig", you'll find the settings under...
Main Menu
Character devices
Video For Linux
<M> Video For Linux
<M> BT848 Video For Linux
Finally, I ran the following to make sure I had the needed device nodes...
cd /dev
./MAKEDEV video
I hope this info helps.
>DHCP will not work with my Cable modem. My workstations DHCP fine to my
>Linux DHCP server though. This one really hurts and prevents me from
>upgrading my firewall until it's fixed. I'm told that Redhat now uses a
>program called pump instead of dhcpcd.
Regarding the above, I have had no problems with DHCP and my cable modem
(Time-Warner's RoadRunner in Northeast Ohio, while using an Artisoft
AE2/NE-2000
Clone), yet I DO experience lock-ups (and a spewing of garbage on the LAN at
the
office) under DHCP with a Compaq-labled Intel EtherExpress 10/100 PCI NIC.
Wierd.
(Solved that issue by simply getting a fixed IP address at the office,
though that doesnt
help you out here - sorry)
Keep us posted, k?
Ken
==================================
Ken Cormack
Cuyahoga Falls, Ohio
mailto:[EMAIL PROTECTED]
http://home.neo.rr.com/kcormack/
------------------------------
Date: Thu, 06 May 1999 14:03:59 -0400
From: Demetrius <[EMAIL PROTECTED]>
Subject: Re: HELP!! DNS Issues
Ok,
I'll give this a shot. With a DNS server I believe you need two files for each
network you
are one with the hostnames to IP. But you need another file. In your named.boot
file
you need to have something like
primary 192.168 private.net.hosts
primary 168.192.IN-ADDR.ARPA
The second line needs to be there for reverse lookups. There are also two
separate file structures for each file.
Hope this helps
Demetrius
[EMAIL PROTECTED] wrote:
> Hello All,
>
> Here is the problem, I have a Local DNS server setup on my network. The db
> file is private.net.hosts and works fine for name resolution. I can't seem to
> get reverse dns working, nor does nslookup work. But nslookup does reverse
> lookups so the problem probably lies with reverse dns.
>
> Anyone who may be able to answer these questions I would appreciete the help,
> BTW: the dns server is running on a RedHat Linux box.
>
> Thanks
>
> DR
>
> -----------== Posted via Deja News, The Discussion Network ==----------
> http://www.dejanews.com/ Search, Read, Discuss, or Start Your Own
------------------------------
From: [EMAIL PROTECTED] (Vidar Andresen)
Subject: Re: Network failure during heavy traffic
Date: Thu, 06 May 1999 18:33:21 +0200
In article <7gogni$fgg$[EMAIL PROTECTED]>,
"Craig Sanders" <csanders*NOSPAM*@placs.net> wrote:
>I have a Redhat 5.2 server functioning as a file/print server. In some cases
>involving heavy network traffic, the node completely disappears from the
>network.
Driver version on the realtek?
The http://cesdis.gsfc.nasa.gov/linux/drivers/rtl8139.html states:
If you encounter Rx overflow errors and transmit timeouts you
likely have the card in a non-bus-master slot. Other possible
problems are older PCI implementations, especially i486-class
motherboards, that have bugs when using long PCI burst transfers.
There is 'transmit timeouts' reasons for newer driver for the realtek
8139. So a updatet driver may help.
On the 'non-bus-master slot' stuff Accton (Accton Cheetah driverdisk)
give this info:
A:\setup\set1207d.txt
Hardware Configuration
======================
*******************************
* 1. Adapter Configuration *
*******************************
The adapter is configured using the host PCI computer's BIOS setup
program. This is done by changing the computer's BIOS setting to
enable bus master mode, and then setting up the IRQ. The procedure
to implement this and the terminology used depend on the BIOS you
are using.
Some BIOS have Bus Master mode enabled for all the motherboard's
PCI expansion slots; others provide you the option of turning this
feature on or off. For example, if your computer uses the Phoenix
BIOS, there is a "Device Select" field where you should input the
slot number of the PCI slot where the adapter is installed, say
"Slot 3 Device". Then for the fields that read as "Enable Device"
and "Enable Master" you should change the settings to "Enable".
The same is true for the adapter's IRQ setting, which is mapped to
the BIOS IRQ setup of the host PCI computer.
Finally, you need to set the Trigger/Routing field to select the
Trigger method by which the IRQ is assigned or routed to the PCI
slot. There are three types of settings to choose from:
* Level/Auto - This is usually the default. Choosing this option
leaves the assigned IRQ free for other use if the installed
card does not use it.
* Level/Forced - If you are not able get the PCI card to work
properly, choose this option. This will assign the specified
IRQ permanently to the card.
* Edge/Auto - Some PCI boards support this option. Do not use it.
>If I have one Win95 machine copy files from one share to another on the
>linux machine while another is doing the same, Linux disappears and the
>Win95 machines report that the network device no longer exists. Linux is no
>longer reachable using smb, ftp, telnet, or ping. Nor can it ping other
>machines on the network. It's as if the cable simply unplugged itself. While
>it's alive, I see what seems to me excessive collisions.
Duplex is mentioned. The realtek (8139 i guess) can be set to auto or
full or half duplex on 100Mbps or 10Mbps with a dos-based setup
utility. Mine is on 'auto'. http://www.realtek.com.tw/ and poke around.
>I've tried different hubs, different cables, even a different network card.
>I've tried plugging all computers into the same hub. The machine returns to
>earth when I deactivate and reactivate the interface. I have complaints from
>one user that network file access is slower than with the old NT server (may
>not be related, included it just in case).
Could very vell be. On what machine is your server running on?
The http://cesdis.gsfc.nasa.gov/linux/drivers/rtl8139.html :
Driver Operation and Comments
The RTL8129 series is a low-end design, and thus should be
considered a "connectivity solution" rather a performance-oriented
product. (That's a nice way of saying that the design sucks, but
the price is right.)
>Hubs are 10/100 as are NICs on machines in question. Started with a Netgear
>FA310TX (including installation of the provided driver) and changed to
>Realtek. I've given up on it being a hardware problem. Can anyone clue me in
>on what may be configured wrong?
On a server, get a better nic.
I only use the Realtek 8139 nic on 10Mbps, and on a machine around
P100, it is outperformed by an old SMC Elite Ultra (Isa, 10Mbps only)
on transmitting packets. It receives ok. And i got som 'transmit
timeouts' as well.
Looking for another 100Mbps nic, but do notbelive in miracles running
it on 100Mbps on early (1994) pentiums
(btw, is 'Netgear' the American branding on addtron?)
Mvh Vidar Andresen
------------------------------
From: Erik Horn <[EMAIL PROTECTED]>
Subject: Problems deleting IP Aliases
Date: Thu, 6 May 1999 10:23:59 -0700
Recently I upgraded a machine to kernel 2.2.6 and Net tools 1.5. In the
past I could delete an IP alias by using
ifconfig eth0:0 down
Now when I do that the whole eth0 the alias goes down. When I bring the
eth0 interface back up, the alias comes back up with it. Is there a new
way (or no way) to delete an IP alias with the new kernel?
Thanks,
Erik
------------------------------
From: Sellaro <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: kernel 2.2
Date: Thu, 06 May 1999 14:07:25 -0300
Monica wrote:
> How can I upgrade a kernel 2.0.32 Red hat to a kernel 2.2? I have a CD with
> this kernel but I dont't know what I must do.
You can find useful information reading the Kernel-HOWTO. If you have some specific
problems, please drop them here ;)
--
~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~
"Eu sou um imortal. Nao tenho onde cair morto." - Olavo Bilac
~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~
Sellaro
Network and System Administrator
Computer Science Dept.
Federal University of Ceara - Brazil (UFC)
PGP KEY AVAILABLE UPPON REQUEST
------------------------------
Date: Thu, 06 May 1999 13:32:50 -0400
From: Demetrius <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading problem
Alex,
I'm no expert but I believe you have to turn on IP forwarding on your NT
box. So that packets will get routed from the 192.168.128 network to the
192.168.1 network. You will also need to make sure that there are routes
set up on the NT
box to handle the routing of packets.
Hope this helps
Demetrius
Alex Zinoviev wrote:
> I have a problem with IP masquerading.
>
> I have local net (192.168.1.) divided by two subnets
> (netmask 255.255.255.128), with WinNT box as gateway with
> two network cards (192.168.1.30 & 192.168.1.130).
>
> Linux box (RedHat 5.1) has addr. 192.168.1.7 & modem.
>
> The problem is that, i can ping Internet
> from any host in first subnet (192.168.1.0),
> but from second (192.168.1.128) i can't.
>
> My ipfwadm commands:
>
> /sbin/ipfwadm -F -f
> /sbin/ipfwadm -F -p deny
> /sbin/ipfwadm -F -a accept -m -P all -W ppp0 -S 192.168.1.0/25 -D
> 0.0.0.0/0
> /sbin/ipfwadm -F -a accept -m -P all -W ppp0 -S 192.168.1.128/25 -D
> 0.0.0.0/0
>
> Linux box routing table:
>
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 192.168.1.0 * 255.255.255.128 U 0 0 131
> eth0
> 192.168.1.128 192.168.1.30 255.255.255.128 UG 0 0 6
> eth0
> 127.0.0.0 * 255.0.0.0 U 0 0 5
> lo
> ISP's IP num. My PPP IP num.
> ppp0
> default My PPP IP num. 0.0.0.0
> ppp0
>
> From Linux box i can ping both local subnets
> and Internet, and all local computers can ping each other.
>
> What's wrong ?
>
> Please send answers directly to me, [EMAIL PROTECTED]
------------------------------
From: Olivier Mary <[EMAIL PROTECTED]>
Subject: vpn: ipsec-freeswan on linux
Date: Thu, 06 May 1999 18:34:23 +0200
I have two dual home linux ( RedHat 5.2) boxes with ipportfw and
freeswan 1.00
The network:
192.168.10.0 == 192.168.10.2 | xx.xx.xx.1 ==internet== xx.xx.xx.2 |
192.168.20.2 == 192.168.20.0
xx.xx.xx.1 and xx.xx.xx.2 are on the same internet segment.
Additionnaly xx.xx.xx.3 perform tcpdump to control the traffic.
1-So far so goood
=============
/etc/ipsec.conf
conn sample
right=xx.xx.xx.1
left=xx.xx.xx.2
ping -p feedfacedeadbeef xx.xx.xx.1 from xx.xx.xx.2
tcpdump -x from xx.xx.xx.3 reveal that data is encrypted
2-The problem
===========
/etc/ipsec.conf
conn sample
right=xx.xx.xx.1
rightsubnet=192.168.10/24
rightfirewall=yes
left=xx.xx.xx.2
rightsubnet=192.168.20/24
leftfirewall=yes
When I ping from xx.xx.xx.1 to 192.168.20.2 It hangs forever.
tcpdump -x from xx.xx.xx.3 reveal no traffic
/var/log/messages:
May 6 19:26:40 xxx kernel: klips_debug:rj_match: *** start searching up
the tree t=...
May 6 19:26:40 xxx kernel: klips_debug:rj_match: **** t=...
May 6 19:26:40 xxx kernel: klips_debug:rj_match: **** t=...
May 6 19:26:40 xxx kernel: klips_debug:rj_match: ***** Oops, returning
NULL
May 6 19:26:40 xxx kernel: klips_debug:ipsec_tunnel_start_xmit: Original
header/tailroom: 2,13
May 6 19:26:40 xxx kernel: klips_debug:ipsec_tunnel_start_xmit: no
eroute!: ts=..., dropping.
ANY HELP WOULD BE APPRECIATED !!!
Cheers,
Olivier
------------------------------
Reply-To: "Curt" <[EMAIL PROTECTED]>
From: "Curt" <[EMAIL PROTECTED]>
Subject: Re: 3c509 network setting help
Date: Thu, 6 May 1999 12:49:06 -0500
Can you post result of ifconfig? Often PnP changes the IRQ on you.
Can you ping other nodes on your segment?
xxx2 <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> I am using Redhat 5.2 and kernel version is 2.0.35.
>
> We are trying to setup network with 3c509 network card.
> During installation, autoprobe detects 3c509 card
> Module is loaded successfully, and we also setup
> route and all network info properly.
> But when we try telnet, this error message shows up.
>
> $telnet 210.103.83.117
> trying 210.103.83.117 -> no route to host
>
> route command shows following info.
> $route -n
> 168.115.32.0 * 255.255.255.0 U eth0
> 127.0.0.0 * 255.0.0.0 U lo
> 0.0.0.0 168.115.32.1 UG etho
> above info is all correct.
>
> $route
> 168.115.32.0 * 255.255.255.0 U eth0
> 127.0.0.0 * 255.0.0.0 U lo
> and no answer
>
>
> I can't figure out what's wrong.
> I am using another machine with same network card in my office with all
> same setting, but
> It doesn't have any problem.
>
> Two machine's only difference is when executing route command, my office
> machine
> goes back to command mode properly but my second machine doesn't
>
> Please help me.
>
>
>
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Subject: Re: Routing and router redundancy
Date: Thu, 6 May 1999 11:54:49 -0500
Mark wrote in message
<[EMAIL PROTECTED]>...
|I currently have a 10Mbs network and I am considering moving some of the
|systems that generate the heaviest traffic to a 100Mbs segment.
|I am considering doing this using Linux and ip forwarding to route packets
|appropriately between the two segments.
|i.e.
|eth0 - 10Mbs segment - 192.168.255.0
|eth1 - 100Mbs segment - 192.168.254.0
|However, in such a setup the router has to be extremely reliable, if the
|router should fail (hardware failure, naturally) then the two subnetworks
|would become invisible to each other, this is not an acceptable solution.
|How could I implement a secondary (backup) router into such a scheme to
allow
|some redundancy and how would I set up and configure such a system.
Most clients only support one "default gateway." Therefore, you will
have a single point of failure no matter what you use. What you need to do
is make the single point of failure as solid, and as simple as possible. I
would use an older Compaq Proliant Server, and remove the hard drives, and
CD-Rom. Then I would run Trinux off a floppy in Ram. It would be a bit
slower to boot, but very tight. Also, you could have another system just
like the first powered off. If you have a crash <like a car through the
wall, or some such> you have an immediate fallback. If you really want to
go automated, set the Linux routers on a network controllable powerstrip.
Have a third system monitor the primary router. If it locks, have it power
down the primary, and power up the secondary. You could even speed up the
secondary powerup by using a faster small media, like flash ram.
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. *
Black holes are where God divided by zero. - I am speaking as an individual,
not as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
