Linux-Networking Digest #195, Volume #11 Tue, 18 May 99 16:13:35 EDT
Contents:
Redhat 6.0 pump/dhcp woes... ("Jeff Volckaert")
Re: 'Instant Internet' (Dansgold)
Re: setting up ppp and modem does nothing ("Dr. Yuan Liu")
[OT] 10/100b or just 10b Router w/Cable Modem? (K Lee)
New cable modem means I have a lot to learn ("Steve Snyder")
Re: What are good 100baseTX cards for RH 5.2 (Frank Looper)
Re: Floppy only PC? ("Gary Maltzen")
Re: New cable modem means I have a lot to learn (Michael Meissner)
Re: hosts.deny 'ALL: ALL' and still unauthorized access ? ("Dr. Yuan Liu")
Win95->Linux PPP can't see past subnet (Robin Munn)
Re: Slow PPP connection with RH 6.0 (Eric Bryant)
Several YP-Server ([EMAIL PROTECTED])
Re: How to avoid down router? ("Dr. Yuan Liu")
internet telephone ("J S")
----------------------------------------------------------------------------
From: "Jeff Volckaert" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Redhat 6.0 pump/dhcp woes...
Date: Tue, 18 May 1999 10:49:02 -0400
Hello Everybody,
Last weekend I downloaded the pump update and tried to get my cable modem
working. No such luck. I tried the "ln -s /sbin/dhcpcd /sbin/pump" trick,
still nothing. I did the edit ifup file as well, no luck.
The odd thing is that I can't get my Redhat 5.2 DHCP sever to work with my
6.0 box when I switch to dhcpcd either. I just get the red failed.
I emailed my cable modem provider (Bresnanlink) and they said they use the
Cisco CDM package. You would think that Cisco would be right up to spec on
this stuff.
Any help?
TIA,
Jeff Volckaert
------------------------------
From: [EMAIL PROTECTED] (Dansgold)
Subject: Re: 'Instant Internet'
Date: 18 May 1999 18:01:30 GMT
My understanding is the the Instant Internet box has an IP routing upgrade
available.
------------------------------
From: "Dr. Yuan Liu" <[EMAIL PROTECTED]>
Subject: Re: setting up ppp and modem does nothing
Date: Mon, 17 May 1999 22:44:42 GMT
Well, you almost did it. (Though Com1 should correspond to /dev/cua0 or
/dev/ttyS0 - /dev/ttys0 if your system prefer, instead of /dev/ttys1)
But the last part of your script looks strange. If you are using ppp,
what's the purpose of starting slirp?
But that doesn't seem to matter. I guess you need to know what
authentication method your ISP uses. If it uses PAP (very likely),
you'll have to set up /etc/ppp/pap-secrets. If it uses terminal login,
you'll need to supply information before doing telnet.
The point is, when you see
--
Serial connection established
Using interface ppp0
Connect: ppp0 <--> /dev/modem
--
that means your MODEM has worked and connected to the other end via PPP,
whether or not you hear the dial tone. (The missing dial tone may have
to do with your past MODEM usage; I don't see any string in your script
that will cause it. Try adding L1 somewhere after AT in your script.)
Good luck.
--
+--- mailto:[EMAIL PROTECTED] ----------- http://www.ChiTech.ca/ ---+
| Dr. Yuan LIU - Chitech Technologies Inc. |
+------- (514)281-0494 ------------------ FAX (514)281-0493 ------+
J Knight wrote:
>
> OK, well, I've been trying to get ppp connections configured, I've
> dug throught my scripts and they seem to be fine. I'm not sure which
> device to link to /dev/modem . My port is COM1 in windows. Some
> people say I should link it to /dev/ttyS0 but Such a thing doesn't
> exist on my computer. I do have /dev/ttys0.
> I have also gotten the following suggestions:
> /dev/cua0
> /dev/cua1
> /dev/ttys1
> etc.
> I've changed this link to each of the above and tried.
> cua1 and ttys1 are the only ones that don't give me the
> "Input/output" error.
> However for them, I get the following when trying to run ppp-on:
>
> Removed stal lock on modem (pid 362)
> Serial connection established
> Using interface ppp0
> Connect: ppp0 <--> /dev/modem
>
> (then I get a long long pause)
>
> LCP: timeout sending Config-Requests
> Conection terminated.
>
> During the process I never hear any dial-tone or dialing like I do
> when I link through windows. My scripts are these:
> ppp-on:
>
> exec /usr/sbin/pppd /dev/modem 115200 asyncmap 0 connect
> /etc/ppp/ppp-on-dialer crtscts defaultroute lock modem mru 296 mtu 296
> netmask 255.255.255.0 noipdefault
>
> ppp-on-dialer:
>
> PR='$'
> exec /usr/sbin/chat
> TIMEOUT 3 \
> ABORT '\nBUSY\r'
> ABORT '\nNO ANSWER\r'
> ABORT '\RINGING\r\n\r\n\RINGING\r'
> '' '\rAT'
> 'OK-+++\c-OK' ATH0
> TIMEOUT 60
> OK ATDT<telephone number>
> CONNECT ''
> TIMEOUT 20
> : "telnet (host)"
> ogin:--ogin: (account)
> assword: "(password)"
> "$PR--$PR" "exec slirplogin -P -b 115200 -as 0x0"
------------------------------
From: K Lee <[EMAIL PROTECTED]>
Subject: [OT] 10/100b or just 10b Router w/Cable Modem?
Date: 17 May 1999 22:45:03 GMT
Greetings!
That's what I'm wondering, specifically whether there really would be any
connection/download speed differences for the 2 computers (a windows and a
linux box each with PCI 10/100bT NIC) which will be connected to the
router which in turn will be feeding from a Linux box acting as a
router/firewall/performing IP-Masq?
Considering the fact that the fastest download speed I've ever got with my
cable modem is 780kb/s, it hardly seems worth it for me to shell out more
bucks for 10/100b router. What do you guys think? Thanks in advance.
Steve
------------------------------
From: "Steve Snyder" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware,comp.os.linux.misc
Subject: New cable modem means I have a lot to learn
Date: Tue, 18 May 1999 10:03:07 -0400 (EST)
Reply-To: "Steve Snyder" <[EMAIL PROTECTED]>
The good news: after years of dithering my cable TV provider is providing
Internet access. The bad news: I need to quickly get up to speed on
everything needed to provide Internet access to my whole LAN via the cable
modem.
My simple LAN consists of a server running RedHat v5.2 (updated to kernel
v2.2.x and glibc v2.1) and 10 clients (running Win95, Win98 and OS/2) all
running on the same subnet. Name resolution is done via an identical hosts
file on each system. The server does not provide Internet access to the
clients.
I do not intend to run any additional local services (mail, Web, news, etc.)
at this time. I just want my LANs server to pass packets between the client
machines and the cable modem.
With the imminent arrival of my cable modem I quickly need info on:
0. My ISP will provide a dynamically-allocated IP address. Does that mean I
need to configure my server for DHCP? All the client system will continue
to have static addresses.
1. Supporting a 2nd NIC in my server. Having Linux recognize both NICs is
a no-brainer, but how do I configure it to communicate only with the cable
modem? (The 1st NIC will remain connected to the hub, of course.)
2. IP Masquerading?
3. Firewall? Up to now I haven't had to think much about security, since
the LAN doesn't have direct Internet access. Now that we'll be constantly
connected, I'm wondering if I need a firewall. I have an older machine that
I could use solely as a firewall if needed.
Any information, or pointers to info, on these topics would be gratefully
received.
Thank you.
***** Steve Snyder *****
------------------------------
From: Frank Looper <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux,comp.os.linux.redhat
Subject: Re: What are good 100baseTX cards for RH 5.2
Date: Tue, 18 May 1999 17:32:30 GMT
Dean and Mary Guenther wrote:
>
> I have just installed RH 5.2 on a Micron 486. What is a good choice for
> a new 100BaseTX (non-PCI) card for this machine? -- Dean
IF nothing else works, try the NE2000 card. That covers most 10baseT
cards, but I have no idea how it'll work on your 100baseT one (mine's
10/100 and it works great)
Frank/Floops
------------------------------
From: "Gary Maltzen" <[EMAIL PROTECTED]>
Subject: Re: Floppy only PC?
Date: Tue, 18 May 1999 12:50:17 -0500
See the Linux mini-distributions, such as LOAF (Linux On A Floppy)
http://alpha1.linuxberg.com/conhtml/sys_minidist.html
Samuel AU wrote in message <[EMAIL PROTECTED]>...
|Is it possible to setup a floppy only pc to connect to Linux server or
|workstation? and how to?
------------------------------
Crossposted-To: comp.os.linux.hardware,comp.os.linux.misc
Subject: Re: New cable modem means I have a lot to learn
From: Michael Meissner <[EMAIL PROTECTED]>
Date: 18 May 1999 14:50:54 -0400
"Steve Snyder" <[EMAIL PROTECTED]> writes:
> 0. My ISP will provide a dynamically-allocated IP address. Does that mean I
> need to configure my server for DHCP? All the client system will continue
> to have static addresses.
It depends, but generally yes, you will need to configure whatever machine
connects to the ISP to use DHCP (or more precisely the client program DHCPCD).
You should make sure the clients (and server if you use a firewall) all use IP
addresses that are reserved for private use (10.x.x.x, 172.16.x.x,
192.168.x.x).
Note there are some ISP's out there that state they don't allow a computer
providing internet service for a lan (you are supposed to buy separate cable
modem service for each PC). I've seen some reports that they will refuse to
deal with you if your computer has a lilo prompt. Hopefully, you have a more
enlighted ISP.
> 1. Supporting a 2nd NIC in my server. Having Linux recognize both NICs is
> a no-brainer, but how do I configure it to communicate only with the cable
> modem? (The 1st NIC will remain connected to the hub, of course.)
I don't have cable service, but I believe the cable installer just plugs the
cable box into your NIC (basically the original hub does not share any wires
with the NIC/cable modem),
> 2. IP Masquerading?
Yes, unless you get a fixed set of IP numbers.
> 3. Firewall? Up to now I haven't had to think much about security, since
> the LAN doesn't have direct Internet access. Now that we'll be constantly
> connected, I'm wondering if I need a firewall. I have an older machine that
> I could use solely as a firewall if needed.
It might be less disruptive to use a firewall (that way the server is the same
config as before except you set up routing through the firewall). It is also
more secure, especially if you don't allow access without passwords from the
firewall to the client machines (rlogin, nfs, etc.), and use different
passwords on the firewall.
> Any information, or pointers to info, on these topics would be gratefully
> received.
>
> Thank you.
>
> ***** Steve Snyder *****
>
>
>
--
Michael Meissner, Cygnus Solutions
PMB 198, 174 Littleton Road #3
Westford, Massachusetts 01886
email: [EMAIL PROTECTED] fax: 978-692-4482
------------------------------
From: "Dr. Yuan Liu" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Re: hosts.deny 'ALL: ALL' and still unauthorized access ?
Date: Mon, 17 May 1999 23:27:48 GMT
Armand wrote:
>
> hosts.deny ALL: ALL
> hosts.allow ALL: LOCAL
> hosts.equiv localhost
>
> However, when reading a web page yesterday, I heard my HD rattling a bit too
> long, and did a � netstat a � and got:
>
> Active Internet connections (w/o servers)
> Proto Recv-Q Send-Q Local Address Foreign Address State
> tcp 0 1 mydynamicIP:telnet www.scd.ie:4 CLOSE
> tcp 1 0 mydynamicIP.:7316 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7315 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7314 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7313 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7312 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7311 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP.:7311 www.scd.ie:auth TIME_WAIT
> tcp 1 0 mydynamicIP:telnet www.scd.ie:16070 CLOSE_WAIT
> tcp 1 0 mydynamicIP.x:ftp www.scd.ie:15879 CLOSE
> tcp 1 0 mydynamicIP.:pop3 www.scd.ie:15430 CLOSE
> tcp 1 0 mydynamicIP:imap2 www.scd.ie:15420 CLOSE
> tcp 1 0 mydynamicIP:telnet www.scd.ie:15368 CLOSE
> � skipped �
>
> and syslog has a line:
>
> May 16 00:10:45 MyBox in.telnetd[493]: warning: can't get client address:
> Connection reset by peer
>
> Unfortunately, that is all that I have.
>
> I have never been to this www.scd.ie. Don't the �auth�'s mean that login
> prompts had been given for the www.scd.ie-IP# ? Or do I miss something
> obvious ?
>
> I have 2 questions:
>
> If a login prompt has been given to a "foreign" client, shouldn't this have
> been prevented by the ALL in hosts.deny (as far as I'm concerned, an �access
> denied for now � is enough). If not, what's been going on here ?
Little. Just someone tried to telnet, but the TCP wrappers refused
connection (that's why you see those close_wait stuff). The wrappers
will refuse to connect if it cannot resolve the client address. (This
usually means the client is a sneaky hacker.) Even if it resolved, but
the client is off your net, it won't give login prompt.
It's not much to worry. Like it or not, you'll get more of this.
> Armand
--
+--- mailto:[EMAIL PROTECTED] ----------- http://www.ChiTech.ca/ ---+
| Dr. Yuan LIU - Chitech Technologies Inc. |
+------- (514)281-0494 ------------------ FAX (514)281-0493 ------+
------------------------------
From: Robin Munn <[EMAIL PROTECTED]>
Crossposted-To: comp.protocols.ppp
Subject: Win95->Linux PPP can't see past subnet
Date: Tue, 18 May 1999 18:39:59 GMT
I'm setting up a Linux box as an experimental PPP server here at school.
It's running mgetty on Debian 2.1 (slink). I have mgetty set up properly
-- I've dialed in, logged in, everything's fine on the hardware side.
Now I'm trying to get PPP working, and that's where the "fun" starts.
I've got mgetty set up with an AutoPPP line in /etc/mgetty/login.options
so that pppd starts up automatically. So I go over to the Windows 95 box
I'm using to dial up, create a new connection in Dial-Up Networking,
enter the phone number, and use the default settings for IP
(server-assigned DNS and IP numbers) in the new DUN connection's
properties box. Dial it up, enter a username and password, get through,
everything looks good. Except for one "little detail"...
The Windows box (I'll call it "winbox") can't see past the class C
subnet it's on. The Debian box (I'll call it "thorn") has IP a.b.65.12
and is assigning IP's a.b.65.101 and a.b.65.102 to incoming calls on
each of its two modems. (I'll hook up more modems once I can get this
whole thing working). Now thorn is on a 20-bit subnet: its netmask is
255.255.240.0. At IP a.b.64.1 is a router that connects this subnet to
the rest of the school's network (and thus to the Internet). a.b.64.2
and a.b.64.3 are the primary and secondary DNS servers for this subnet.
thorn can see the a.b.64.0/20 subnet just fine and can also see the rest
of the network and the Internet, but winbox can't see anything outside
the a.b.65.0/24 subnet -- can't even see a.b.64.1, so it can't see the
Internet either. winbox can't see the DNS servers either, so I've been
pinging things by IP. Machines on the a.b.65.0/24 subnet can ping
winbox, and winbox can ping them right back. But anything outside the
a.b.65.0/24 subnet can't see winbox, and winbox can't see them. They can
see thorn just fine, though, and thorn can ping them just fine.
Running winipcfg on winbox I get:
PPP Adapter
Adapter Address: 44-45-53-54-00-00
IP Address: a.b.65.102
Subnet Mask: 255.255.255.0 <-- should be 255.255.255.255, see below
Default gateway: a.b.65.102 <-- shouldn't this be a.b.65.12?
route -n on thorn gives:
Destination Gateway Genmask Flags Metric Use Iface
a.b.65.102 0.0.0.0 255.255.255.255 UH 0 0 ppp0
a.b.64.0 0.0.0.0 255.255.240.0 U 0 26 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 lo
0.0.0.0 a.b.64.1 0.0.0.0 UG 1 5 eth0
In /etc/ppp/options I have a "netmask 255.255.255.255" line, and that
shows up just fine on thorn's routing table. But what winbox tells me in
winipcfg doesn't seem right. A netmask of 255.255.255.0 and an incorrect
gateway *would* kind of explain why winbox can see everything with an IP
of a.b.65.(whatever) but can't see anything else... Should I change the
netmask in thorn's /etc/ppp/options to be 255.255.240.0? Or would that
have no effect?
I'd appreciate help from anyone who has any ideas about what could be
causing this. I've been working on it for several days now and am no
closer to understanding the cause of this problem.
Thanks.
--
Robin Munn (Legal name: Robert A. Munn)
[EMAIL PROTECTED]
--== Sent via Deja.com http://www.deja.com/ ==--
---Share what you know. Learn what you don't.---
------------------------------
From: Eric Bryant <[EMAIL PROTECTED]>
Crossposted-To: netcom.netcruiser.tech
Subject: Re: Slow PPP connection with RH 6.0
Date: Tue, 18 May 1999 15:19:32 -0700
I've got the same problem with RH 6.0. It was also just as slow using RH
5.2. I also tried the mtu 750, /sbin/hdparm -u 1 /dev/hda to no avail. And I
am also using Netcom, and using a dual-boot Linux/Windows 98, it is much
faster in Windows 98. I use kppp and xisp to dial out. Please tell me if you
discover anything else about this problem.
Thanks!
Eric
[EMAIL PROTECTED]
Rand Simberg wrote:
> I'm running the Red Hat 6.0 version of Linux and whatever pppd comes
> with it, trying to establish my PPP connection to Netcom. I copied
> the files off the page at the Netcom site, and modified them as
> appropriate, but I get very slow connections (never faster than two or
> three hundred bytes per second using Netscape). (I added the mtu 296
> to the options file at the suggestion of someone in
> comp.os.linux.setup, which improved it somewhat, but not to an
> acceptable level). I'm using the Redondo Beach POP with a 33K modem.
> I know the phone line and POP are good, because I can get a good 48K
> connection with my Win98/56K setup. Does anyone have any experience
> with Linux and Netcom that can provide any guidance as to what I
> should be tweaking to given me a usable connection?
>
> Here are the relevant files...
>
> ppp-on script
>
> *****************************************************************
> #!/bin/sh
>
> /usr/sbin/pppd /dev/cua2 38400 \
> connect "/usr/sbin/chat -f /etc/ppp/chat-netcom" \
> defaultroute modem crtscts lock
> *****************************************************************
>
> chat-netcom script
>
> *****************************************************************
> ABORT BUSY
> ABORT 'NO CARRIER'
> '' ATZ
> OK AT+FCLASS=0
> OK AT&F&C1&D2
> OK ATDT13108960011
> CONNECT ''
> login: us,ppp,simberg
> Password: ************
> 'PPP session' ''
> *****************************************************************
>
> options file
>
> *****************************************************************
> domain ix.netcom.com
> ipcp-accept-local
> ipcp-accept-remote
> mtu 296
> noipdefault
> *****************************************************************
>
> ppp-off script
>
> *****************************************************************
> #!/bin/sh
>
> DEVICE=ppp0
>
> #
> # If the ppp0 pid file is present then the program is running. Stop
> it.
> if [ -r /var/run/$DEVICE.pid ]; then
> kill -INT `cat /var/run/$DEVICE.pid`
> #
> # If unsuccessful, ensure that the pid file is removed.
> #
> if [ ! "$?" = "0" ]; then
> echo "removing stale $DEVICE pid file."
> rm -f /var/run/$DEVICE.pid
> exit 1
> fi
> #
> # Success. Terminate with proper status.
> #
> echo "$DEVICE link terminated"
> exit 0
> fi
> #
> # The link is not active
> #
> echo "$DEVICE link is not active"
> exit 1
> *****************************************************************
>
> Can anyone see what the problem might be?
>
> TIA
>
> ************************************************************************
> simberg.interglobal.org * 310 372-7963 (CA) 307 739-1296 (Jackson Hole)
> interglobal space lines * 307 733-1391 (Fax) http://www.interglobal.org
>
> "Extraordinary launch vehicles require extraordinary markets..."
> Replace first . with @ and throw out the "@trash." to email me.
> Here's my email address for autospammers: [EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: Several YP-Server
Date: Tue, 18 May 1999 19:16:56 GMT
Hello,
is it possible to have several YP-server in the intranet running and to
choose on which server to login?
If so: How?
Thanks
Karl
--== Sent via Deja.com http://www.deja.com/ ==--
---Share what you know. Learn what you don't.---
------------------------------
From: "Dr. Yuan Liu" <[EMAIL PROTECTED]>
Crossposted-To: [EMAIL PROTECTED]
Subject: Re: How to avoid down router?
Date: Mon, 17 May 1999 23:39:06 GMT
Roger Rouse wrote:
>
> I lost access to part of the network today. The output from traceroute
> is below. My question is how
> can I avoid a down router like this? I thought the whole point of
> routers was to avoid bad connections.
> Seems like I should be able to specify another route. Thanks, Roger
Use another ISP. (But try your luck. If your traceroute went so long to
meet a dead end, it's unlikely another ISP will save you.) You cannot
specify routes on other people's machine.
--
+--- mailto:[EMAIL PROTECTED] ----------- http://www.ChiTech.ca/ ---+
| Dr. Yuan LIU - Chitech Technologies Inc. |
+------- (514)281-0494 ------------------ FAX (514)281-0493 ------+
------------------------------
From: "J S" <[EMAIL PROTECTED]>
Subject: internet telephone
Date: Tue, 18 May 1999 00:18:41 +0200
How do i get internet telephone (qtalk, buddyphone,...) work on win98
machines behind a linux RH 6.0 firewall?
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
