Linux-Networking Digest #186, Volume #11 Mon, 17 May 99 16:13:42 EDT
Contents:
Re: samba and ip masq (Chris Szilagyi)
I need your help with a new Linux website ("Marco Maldonado")
Re: IP Masquerading help please (Mircea)
Re: Need to use CGI's / set up Apache Web Server .... how ?? (Rob van der Putten)
Modem set questions (Jason Bond)
question about rstat and statstime (celine fages)
Re: NIS Help ("Hebert, Greg (EXCHANGE:KWAY:6C26)")
Re: Forwarding with multiple ethernet cards (Mircea)
FTP doesn't work through masquerading ("David Murray")
Re: Mounting Extended windows partition ("Mies")
Re: FTP doesn't work through masquerading (Alex Meisel)
Re: PPP route error (Clifford Kite)
Re: SECURITY ISSUES: Single user restriction at lilo boot: (Murni & Hamid)
Re: PPP route error ("Paul Douglas")
Re: PHP3 (3.0.7) compilation on RH6.0 fails (Vincent Janelle)
Re: Help me...I've been hacked! (Dale Pontius)
Re: Losing default route (Sjoerd Venema)
slow samba server ? (Paul Lacatus)
Re: Xterm and VMS ([EMAIL PROTECTED])
Re: Modem set questions (Millinium Man)
Connecting to internet over LAN ("Kevin Fife")
Re: IP: alias question and kernel 2.2 question (Malware)
Re: "ip rule list" causes RTNETLINK error: Invalid argument (Malware)
Re: ipchains / port-forwarding (Malware)
----------------------------------------------------------------------------
From: Chris Szilagyi <[EMAIL PROTECTED]>
Crossposted-To: comp.protocols.smb
Subject: Re: samba and ip masq
Date: Mon, 17 May 1999 13:51:29 -0400
Reply-To: [EMAIL PROTECTED]
I'm also having a similar problem, except I've got the samba server on
the private network (192.168.x.x), and I'm trying to mount volumes from
the external network with windows nt. the samba server appears in the pc
net (because of ip masqerading), but i cannot connect, with a "cannot be
found" error.
Christopher Schulte wrote:
> Greetings,
>
> I recently implemented a reserved network on my lan to play with some
> new networking concepts.
>
> I have one machine, 192.168.100.105 which is a windows98 box. It's
> using a default gateway of 192.168.100.254 which is a linux box doing
> ip masq with routes set up on both the reserved and real internet.
>
> Using the windows machine I can access (for the most part) all
> external internet resources just fine. Ip masq is working as it
> should.
>
> One problem I have seen is now another linux box (which is also on
> both the reserved and external network) cannot mount the windows
> drives anymore. Here's an example of the output:
>
> [208 root@snaildust:~]# smbmount //juanita/c /juanita/
> Password:
> mount error: Device or resource busy
> Please look at smbmount's manual page for possible reasons
>
> Now, I can log in with the smbclient just fine:
>
> [209 root@snaildust:~]# smbclient //juanita/c
> Server time is Sun May 16 05:17:04 1999
> Timezone is UTC-5.0
> Password:
> security=share
> smb: \> ls
>
> And I can browse the drive. It's just unable to actually mount it. I
> tried specifying a different mount point, check to make sure it was
> not already mounted, etc, etc. No luck.
>
> Would I need some special kernel modules to make this function
> correctly, due to the way the ports communicate together?
>
> Many thanks!
>
> --
> Christopher Schulte
>
> Replace usenet with chris to send mail.
> Mail sent to [EMAIL PROTECTED]
> will *never* get to me. I hate spam!
------------------------------
From: "Marco Maldonado" <[EMAIL PROTECTED]>
Subject: I need your help with a new Linux website
Date: Mon, 17 May 1999 13:32:23 -0400
Hello Everyone:
This is a message requesting help from everyone who would
like to be part of a new Linux site that I am working on.
My name is Marco and I am working on a site that will help all
Linux users. As we all know linux is a great operating system,
and much is said on the papers and news, but newbies like me sometimes
find it difficult to find good instructions on how to work with it.
I decided to create a site that will unite all Linux users who wish to
collaborate with instructions and articles on how Linux can be used both
at home and at work.
My site is small, but with your help I hope that one day will be a
good site that will help the Linux community. I need the help from all the
Linux users
you do not have to be experts, but that would not hurt :), but I think
everyone has something
to share about their experience with their Linux systems. If you would like
to help please let me know
and when you get a chance visit my site.
Thanks to all.
www.penguinlinux.com
Linux Newbies:
If you are looking for answers for Linux you are also invited to
come to my site maybe you will find the answer to your questions :). It is
small at the moment.
but it will grow in the future.
Kudos
------------------------------
From: Mircea <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading help please
Date: Mon, 17 May 1999 14:35:26 -0400
http://members.home.net/ipmasq/
MST
sd wrote:
>
> I am looking for help in setting up IP Masquerading for a small home
> network - (three WIN NT 4 and 3 WIN98 boxes) tied to a Linux RH6.0 Gateway.
> Can anyone recommend an article or site where I cna get the info that I
> need? Thanks in advance.
------------------------------
From: Rob van der Putten <[EMAIL PROTECTED]>
Subject: Re: Need to use CGI's / set up Apache Web Server .... how ??
Date: 17 May 1999 18:47:59 +0200
Hi there
Christopher Schulte <[EMAIL PROTECTED]> wrote:
> Again, RTFM first.
Once you have apache working have a look at;
news:comp.infosystems.www.authering.cgi
http://www.boutell.com/
http://hoohoo.ncsa.uiuc.edu/
Regards,
Rob
--
+------------------------------------------------------------------------+
| http://www.sput.webster.nl/spam-policy.html |
+------------------------------------------------------------------------+
------------------------------
From: Jason Bond <[EMAIL PROTECTED]>
Subject: Modem set questions
Date: Sun, 16 May 1999 23:17:19 -0700
2 Questions.
1) Is there an easy way to set the volume of the modem speaker?
and
2) Is there an easy way to get the modem to redial (on a busy signal,
say) using the usual pppd and chat scripts?
Any help would be greatly appreciated. Thanks,
Jason
------------------------------
From: celine fages <[EMAIL PROTECTED]>
Subject: question about rstat and statstime
Date: Mon, 17 May 1999 17:23:41 +0200
hello !
i am studying load balancing and i would like to use rstat() to collect
load informations on workstations. rstat() returns a structure, called
statstime.
this structure is :
struct statstime { /* RSTATVERS_TIME */
int cp_time[RSTAT_CPUSTATES];
int dk_xfer[RSTAT_DK_NDRIVE];
unsigned int v_pgpgin; /* these are cumulative sum */
unsigned int v_pgpgout;
unsigned int v_pswpin;
unsigned int v_pswpout;
unsigned int v_intr;
int if_ipackets;
int if_ierrors;
int if_oerrors;
int if_collisions;
unsigned int v_swtch;
long avenrun[3];
rstat_timeval boottime;
rstat_timeval curtime;
int if_opackets;
};
could anyone help me : what is the meaning of these different fields ?
thanks in advance
celine
--
_________________________________________
Celine FAGES
DEA Reseaux et Systemes Distribues
ESSI - Sophia Antipolis
Stagiaire Projet SLOOP - INRIA
_________________________________________
------------------------------
From: "Hebert, Greg (EXCHANGE:KWAY:6C26)" <[EMAIL PROTECTED]>
Subject: Re: NIS Help
Date: Mon, 17 May 1999 12:56:50 -0400
On most unix's it is /etc/defaultdomain
Ryan Stapleton wrote:
>
> Hello,
> I have NIS installed on a server and 2 clients all good.
>
> Excpet my NIS domain isnt been set on reboot.
> where should I call that, right now I temp fixed it
> but called /bin/domainname in the /etc/rc.d/init.d/ypbind
> right b4 the server is called, but I doubt thats a good fix.
>
> Where is the proper place to put that?
>
> I am using RH5.2 (soon to be 6.0)
>
> Thanks
>
> -Ryan
>
> --
> ---------------------------------------------------------------
> - Ryan Stapleton | [EMAIL PROTECTED] -
> - Amateur Radio Call: KA3WUT | [EMAIL PROTECTED] -
> - http://users.penn.com/~raal | -
> ---------------------------------------------------------------
------------------------------
From: Mircea <[EMAIL PROTECTED]>
Subject: Re: Forwarding with multiple ethernet cards
Date: Mon, 17 May 1999 14:52:36 -0400
Well, that's a different story. It may have something to do with the
access settings/passwords. I'm just guessing here, I'm by no means a
Windows expert :) Umh...go to explorer, and try to find the other
computer by its name or IP address...then make a shortcut to it... Also
check your Samba configuration.
MST
Christian Armeanu wrote:
>
>
> Wow, it almost worked :-( The PCs can now see each other, but as soon
> as I try to access
> the resources, windows keeps telling me they're not accessible !
> ( I also inserted the 192.168.18.0 network too );
>
------------------------------
From: "David Murray" <[EMAIL PROTECTED]>
Subject: FTP doesn't work through masquerading
Date: Mon, 17 May 1999 16:12:59 GMT
I just got my new Masquerading box setup. It is all working fine (at least
I thought) and is masquerading for 2 Linux Boxes, 2 Windows95, and a
Macintosh. However, I noticed yesterday that if I use FTP, I am able to
connect and even do things like change to binary or cd to a directory. but
when I do a simple "ls" to list the files, it locks up the FTP program.
Sometimes it comes up with an error that there is no route to host. If I
go directly to the IP Masquerading box and run FTP from there (or telnet in
and run FTP) it works fine.. just not on any of the client machines.
Otherwise, HTTP and POP3 and such work just fine. I am even able to use
RealAudio for streaming data on a client machine.. So why can't I do an
"ls" inside FTP?!
Just for info, my masquerading machine is RedHat 5.2, running the 2.0.36
kernel.
--DavidM
------------------------------
From: "Mies" <[EMAIL PROTECTED]>
Subject: Re: Mounting Extended windows partition
Date: Mon, 17 May 1999 19:46:04 +0300
Try to use vfat as the filesystem, should work, works also with fat32
partitions.
You might not have it built into your kernel, so you might have to recompile
it.
Carol A. Nugent kirjoitti viestiss� ...
>How do you mount an extended windows partition in linux? What entry to you
>make in /etc/fstab?
>
>I have tried /dev/hda2 /mnt/DDrive msdos defaults 0 1
>
>but it did not work. Can anyone help me?
>
>THANK YOU!
>Carol
>
>
------------------------------
From: Alex Meisel <[EMAIL PROTECTED]>
Subject: Re: FTP doesn't work through masquerading
Date: Mon, 17 May 1999 20:20:44 +0200
David Murray wrote:
>
> I just got my new Masquerading box setup. It is all working fine (at least
> I thought) and is masquerading for 2 Linux Boxes, 2 Windows95, and a
> Macintosh. However, I noticed yesterday that if I use FTP, I am able to
> connect and even do things like change to binary or cd to a directory. but
> when I do a simple "ls" to list the files, it locks up the FTP program.
> Sometimes it comes up with an error that there is no route to host. If I
> go directly to the IP Masquerading box and run FTP from there (or telnet in
> and run FTP) it works fine.. just not on any of the client machines.
> Otherwise, HTTP and POP3 and such work just fine. I am even able to use
> RealAudio for streaming data on a client machine.. So why can't I do an
> "ls" inside FTP?!
> Just for info, my masquerading machine is RedHat 5.2, running the 2.0.36
> kernel.
>
> --DavidM
Hi David!
You have to load the ip_masq_ftp.o module on your firewall ....
Regards,
AleX
------------------------------
From: kite@NoSpam.%�inetport.com (Clifford Kite)
Subject: Re: PPP route error
Date: 17 May 1999 12:54:26 -0500
Paul Douglas ([EMAIL PROTECTED]) wrote:
: PPPD reports that it won't override default for ppp0. The FAQ reckons this
: is because of a Slackware "enhancement" but I'm using SuSE 6.1 (ppp used to
That FAQ statement is baloney unless an enhancement means configuring
a default route to another interface. That pppd message has always
meant that there is already a default route.
: work ok with slackware some years ago). I've hunted around in the rc2.d
: files but can't find anything setting a route to, say, a non-existent
: ethernet card. I've naturally done what seems to be the right thing with
: rc.config and all (well, maybe most!) other files. What happens is that,
: say, telnet to remote host reports connection, then no feedback. ping to
: any but localhost fails. ifconfig shows ppp running, but no default entry
: in route table.
You use route, not ifconfig, to check routing. You can also try
"grep default /etc/rc*/*" and see what you come up with. Some of the
problems in your post also might be due to the lack of a nameserver in
/etc/resolv.conf .
--
Clifford Kite <kite@inet%�port.com> Not a guru. (tm)
/* Governments should be changed like diapers - often and for the
* same reason. */
------------------------------
From: [EMAIL PROTECTED] (Murni & Hamid)
Crossposted-To: comp.os.linux.security,comp.os.linux.setup,comp.os.linux.misc
Subject: Re: SECURITY ISSUES: Single user restriction at lilo boot:
Date: Tue, 18 May 1999 01:16:01 +0800
Stephan M. Ott // OKDesign oHG <[EMAIL PROTECTED]> wrote:
> A better way would be disable the floppy in the bios, then
> password-protect the bios. When doing it this way, the machine will start
> up again and go online, but the system cannot be started from floppy.
A much better way is to change your bootup sequence rather than
disabling the floppy. Instead of reading A: and then C:, do it the
reverse, C: and then A:. Modern BIOS should have this feature. And
surely password protect the BIOS setup. The ultimate way is to install a
diskless X server and let your Linux machine locked inside a secured
room.
--
Murni Mahmud & Family
[EMAIL PROTECTED]
------------------------------
From: "Paul Douglas" <[EMAIL PROTECTED]>
Subject: Re: PPP route error
Date: Mon, 17 May 1999 17:47:31 +0100
A few more details:
I had also checked route info; no default shown. There are nameservers (in
resolv.conf) and these are being found - using telnet to connect to a remote
site by name causes the nameserver to correctly respond with its address,
but thereafter absolutely nothing reaches my screen, hence I'm assuming the
routing problem (and the reason that pinging anything other than localhost
always fails).
Paul Douglas ([EMAIL PROTECTED])
------------------------------
From: Vincent Janelle <[EMAIL PROTECTED]>
Subject: Re: PHP3 (3.0.7) compilation on RH6.0 fails
Date: Mon, 17 May 1999 17:57:22 GMT
You're missing the freetype-devel-1.1 package.
Keep in mind that php 3.0.7 is broken on glibc 2.1*(fclose() I think..
or was it fopen()..)
Michael Jenner wrote:
>
> PHP3 (3.0.7) compilation on RH6.0 fails
>
> Running:
>
> ./configure --with-apxs=/usr/sbin/apxs \
> --with-config-file-path=/etc/httpd \
> --with-mysql \
> --with-zlib \
> --with-system-regex
> make
>
> gives:
>
> functions/gdttf.c:20: freetype.h: No such file or directory
> make: *** [functions/gdttf.o] Error 1
>
> Hints, suggestions etc are very welcome
>
> Regards,
>
> Michael
--
============
If life is merely a joke, the question still remains: for whose
amusement?
--http://random.gimp.org --mailto:[EMAIL PROTECTED] --UIN 23939474
------------------------------
From: [EMAIL PROTECTED] (Dale Pontius)
Subject: Re: Help me...I've been hacked!
Date: 17 May 1999 17:03:23 GMT
In article <7hghut$de2$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Bill Unruh) writes:
>
> First you have to decide what services you want your machine to offer
> outsiders, and shut down everything that is not needed.
> Eg if you do not have another machine mounting via NFS from yours, shut
> down the nfs services.
>
Pretty much the first things I did after a fresh installation. I don't
know that my old installation was ever hacked, but looking in my logs
I have found one attempt against telnetd, one against leafnode, and one
piece of spam sitting in my mqueue. I now have a pretty much 'minimal'
set of services active, and in inetd offer NOTHING to the outside. So
there are a few more questions:
1: How big an exposure is linuxconf in inetd? When my one-machine-with-
an-ethernet-card turns into a home network, I'd like the remote
admin capablity. Otherwise, I probably need to completely untangle
linuxconf from my system and just edit files. I'd only allow access
within my 192.168.*.* network.
2: Should I really re-enable identd? I get some hatemail in my syslogs
about identd not being there, but everything still works. Is identd
a big security worry? Will I hit some mail recipients who won't let
me send them mail without identd? Or does my Smarthost take care of
that aspect, and is all my hatemail from my ISP or local MTA?
3: How big an exposure is imapd? I'd like to have a two-system network
where the server has the modem, ipmasq, wwwoffle, leafnode, and
imap. That way for simple things like mail and news, I wouldn't
have to reboot the family machine to Linux. None of these services
would be open outside, just to my local network.
4: With the stuff I've put on the server of #3, have I really built a
proxy firewall? Do I really need to open any holes with ipchains in
this situation?
5: Is it bad netiquette to change the welcome message of my MTA? I
recently moved off of sendmail, and the welcome message of the new
MTA is configurable. It seems that 'security through obscurity'
does have some value in this instance, but only if it doesn't gum
up the works.
6: For the single machine, intermittantly attached with a modem, is
there any value to activating ipchains stuff? (I haven't even
started up that learning curve, yet.) For that same machine, is
there any value to ssh over su?
Thanks,
Dale Pontius
(NOT speaking for IBM)
------------------------------
From: Sjoerd Venema <[EMAIL PROTECTED]>
Subject: Re: Losing default route
Date: Mon, 17 May 1999 20:51:20 +0200
Bernd Huebenett wrote:
>
> Hello,
>
> i am having the same problem with an ISDN connection to my ISP.
>
> route add default ippp0
>
> solves the problem, but i don't know how to do it automaticly.
>
> Bye,
> Bernd
>
> Sjoerd Venema wrote:
>
> > Hi, I established a isp connection with dynamic ip. After disconnecting
> > I lose my default route. Does anyone know how to solve this problem??
> >
> > THNX, Sjoerd
Hi, I indeed solved the problem by adding to ip-down /sbin/route add
default gw "gateway-ipaddress" ippp0
Regards, Sjoerd
------------------------------
From: Paul Lacatus <[EMAIL PROTECTED]>
Subject: slow samba server ?
Date: Mon, 17 May 1999 21:44:22 +0300
I have installed a samba server on a dual pentiumII 350 64Mram with two
ultra wide scsi disk drives on a 100Mbit port of a 16x10Mbit ports
10/100 Mbit
switch .The copying operations work quite nice but if I try to open a
Word doc from server it is much, much slower that opening the same
document from other Win9X station of the network Where can be the
problem ?
Paul
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Xterm and VMS
Date: Mon, 17 May 1999 19:08:58 GMT
I have a similar converstaion in comp.os.linux.x, if you want to take a
look. Its subject is "XFree and VMS."
In article <[EMAIL PROTECTED]>,
Loki <[EMAIL PROTECTED]> wrote:
> Dear all,
>
> I have a requirement for dial up access to an Alpha running
OpenVms.
>
> I can connect to VAX and do everything except use the keypad when
in
> an editor. Does anyone know of a good source of info on Xterm -> VMS ?
> Alternatively a quick fix would be much
> appreciated.
>
> Nigel.
>
>
--== Sent via Deja.com http://www.deja.com/ ==--
---Share what you know. Learn what you don't.---
------------------------------
From: [EMAIL PROTECTED] (Millinium Man)
Subject: Re: Modem set questions
Date: Mon, 17 May 1999 18:59:50 GMT
On most modems if you include in the init string
Lx (where x is the level)
Eg: at L3 dt
It will set the volume
I believe its
L0=OFF
L1=LOW
L2=MED
L3=MAX
On Sun, 16 May 1999 23:17:19 -0700, Jason Bond <[EMAIL PROTECTED]> wrote:
>2 Questions.
>
>1) Is there an easy way to set the volume of the modem speaker?
>
>and
>
>2) Is there an easy way to get the modem to redial (on a busy signal,
>say) using the usual pppd and chat scripts?
>
>Any help would be greatly appreciated. Thanks,
>
> Jason
------------------------------
From: "Kevin Fife" <[EMAIL PROTECTED]>
Subject: Connecting to internet over LAN
Date: Mon, 17 May 1999 15:10:51 -0400
I have installed Mandrake 5.3 on a 233 mhz computer and I would like to
connect to the internet over a corporate LAN.
I have TCP/IP installed and working properly. I am able to bring up HTML
pages on the local network using the IP address of the computer that is
running a web server. However, I cannot get out to the internet.
Our lan setup:
192.168.10.1 Gateway and DNS server
192.168.10.29 Address of Linux box
What do I need to do to get access to the internet.
kevin
------------------------------
From: Malware <[EMAIL PROTECTED]>
Subject: Re: IP: alias question and kernel 2.2 question
Date: Mon, 17 May 1999 17:56:51 +0200
Hi Fabrizio,
you wrote:
> When I make an ip alias with a 2.2 kernel I can't see the new alias with
> ifconfig.
You might need a new version of the net-tools - get the latest from
http://www.tazenda.demon.co.uk/phil/net-tools/
Malware
------------------------------
From: Malware <[EMAIL PROTECTED]>
Subject: Re: "ip rule list" causes RTNETLINK error: Invalid argument
Date: Mon, 17 May 1999 18:10:29 +0200
Hi Jakub,
you wrote:
> "ip rule list" command causes RTNETLINK error: Invalid argument
> Where is a problem ?
You might not have the feature "IP: policy routing" compiled into the
kernel. It might depend on other feature to but I think that's the one.
Atleast it does work under on a system running 2.2.7 here (which does
have enabled above feature).
Malware
------------------------------
From: Malware <[EMAIL PROTECTED]>
Subject: Re: ipchains / port-forwarding
Date: Mon, 17 May 1999 18:19:16 +0200
Hi Christopher,
you wrote:
> connections. That or set up tcp redirects on the main
> "maindomain.com" machine which passes traffic onto the reserved
> network.
This should work for HTTP and other protocols but might cause problems
with FTP. If it have to stay behind one still could:
- give it an public IP too and route stuff there (with proxyarp on
outside if of need)
- use the feature "IP: fast network address translation"
(CONFIG_IP_ROUTE_NAT) of the kernel (To be setted up with ip from the
iproute2 package but have no idea how this is done exactly)
Malware
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
