Linux-Networking Digest #221, Volume #11 Fri, 21 May 99 01:13:39 EDT
Contents:
Re: linux ADSL setup - name resolution problem ("doug maine")
IPFWADM failure to subnets ("Lars Larsen")
Re: PPP tantrums ("Ferdinand V. Mendoza")
smbmount trouble (Vincent)
Re: linux ADSL setup - name resolution problem (bryan)
Re: linux ADSL setup - name resolution problem (D.L.)
Re: DHCP Service (Stephen Carville)
Re: Specifically, What NT service now be run on linux? (Johannes Niess)
Re: Specifically, What NT service now be run on linux? (Johannes Niess)
NIS master and slave between 2 subnet ("M. Zuhannes B. Dzulkifli")
Re: Can I use a D-Link 530 Card? ("D. C. & M. V. Sessions")
Re: Sendmail Addressing Variables (Andrzej Filip)
PPP Help Please... (Greg Aeschliman)
IP Masq. for Remote LAN ("Edmond Cheng")
Re: IPFWADM failure to subnets ("Curt")
Advice needed for ipfwadm (Mike Selders)
http server behind ipmasq ("Stephen Hicks")
----------------------------------------------------------------------------
From: "doug maine" <[EMAIL PROTECTED]>
Crossposted-To: onenet.linux
Subject: Re: linux ADSL setup - name resolution problem
Date: Thu, 20 May 1999 09:19:19 -0400
Try setting your search to ns1.zoomtown.com and ns2.zoomtown.com, these are
the dns servers for the zoomtown area and work fine with my suse 6.1 setup.
Although it seems kind of iffy everynow and then I have to go back into YAST
and review(not change) my network settings and I can reconnect. You might
want to download linuxconf from Freshmeat.org, it beats YAST for configuring
linux.
D.L. <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Hello World! :-)
>
> I just installed SuSE linux 6.1, with kernel 2.2.5, and am
> trying to set it up for ADSL, but am encountering problems with
> the setup. I can ping my nameservers, but I can't resolve
> names. Even 'netstat -r' hangs at the header.
>
> Here's the information I got from Win98 (winipcfg) where
> ADSL works fine:
>
> DNS Servers: 216.68.4.10
> 216.68.5.10
>
> IP Addr: 10.0.0.2
> Default Gateway: 10.0.0.1
> Subnet Mask: 255.255.255.0
>
> Do I need to specify a DHCP server in linux? I did not need to
> when I set up Solaris 7 on the same computer.
>
> Here's what I'm using to set up the network:
>
> # ifconfig eth0 10.0.0.2 netmask 255.255.255.0 up
> # route add default gw 10.0.0.1 eth0
>
> And here's the pertinent files and config from my system:
>
> havok:~ # cat /etc/hosts
> #
> # IP-Address Full-Qualified-Hostname Short-Hostname
> #
> 10.0.0.2 havok.zoomtown.com havok
> 127.0.0.1 localhost
>
> havok:~ # ifconfig -a
> eth0 Link encap:Ethernet HWaddr 00:10:5A:0E:24:79
> inet addr:10.0.0.2 Bcast:10.0.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:12 errors:0 dropped:0 overruns:0 frame:0
> TX packets:7 errors:0 dropped:0 overruns:0 carrier:0
> collisions:0 txqueuelen:100
> Interrupt:10 Base address:0x300
>
> lo Link encap:Local Loopback
> inet addr:127.0.0.1 Mask:255.0.0.0
> UP LOOPBACK RUNNING MTU:3924 Metric:1
> RX packets:4 errors:0 dropped:0 overruns:0 frame:0
> TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
> collisions:0 txqueuelen:0
>
> havok:~ # netstat -nr
> Kernel IP routing table
> Destination Gateway Genmask Flags MSS Window irtt
Iface
> 10.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0
lo
> 0.0.0.0 10.0.0.1 0.0.0.0 UG 0 0 0
eth0
>
> #
> # /etc/resolv.conf
> #
> search zoomtown.com
> nameserver 216.68.4.10
> nameserver 216.68.5.10
>
> havok:~ # cat /etc/host.conf
> #
> # /etc/host.conf
> #
> order hosts,bind
> multi on
>
>
>
> havok:~ # cat /etc/nsswitch.conf
> passwd: files
> group: files
> hosts: files dns
> networks: files dns
> services: db files
> protocols: db files
> rpc: db files
> ethers: db files
> netmasks: files
> netgroup: files
> bootparams: files
> automount: files
> aliases: files
>
> If you need any more info - please let me know.
>
> TIA,
> D.L.
> --
> D.L. Sharp/NU8H [EMAIL PROTECTED] Cincinnati, Ohio
> Kindred Spirits Hearth - http://w3.one.net/~dls/kspirits
> [EMAIL PROTECTED]
------------------------------
From: "Lars Larsen" <[EMAIL PROTECTED]>
Crossposted-To:
alt.comp.linux.isp,alt.os.linux.dial-up,alt.os.linux.slackware,comp.os.linux.misc,linux.redhat.misc
Subject: IPFWADM failure to subnets
Date: Thu, 20 May 1999 22:55:52 -0400
Setup:
RH 5.2 box with 2 NIC's acting as our firewall using IPFWADM.
Local ethernet segment with 4 Subnets connected via T1's using Bay ASN and
AN routers.
Problem:
All users on all subnets can generally browse, telnet, ftp etc. without
problems. However, certain web sites are only "browsable" from the ethernet
segment connected to the inside interface of the firewall, but NOT on the
routed subnets!! Needless to say, there are several such hosts that we MUST
be able to reach!!
We are using class A private addresses on the inside network, subnetted as a
class B network:
10.20.0.0 255.255.0.0
10.21.0.0 255.255.0.0
etc. and we don't have routing problems in general.
Example of problem hosts:
www.compaq.com www.nec.com
Details:
These hosts cannot be ping'ed or traceroute'd to - even from a box connected
directly to the internet!!! I guess possibly indicating they are inside some
sort of DMZ behind a firewall (Checkpoint ??)
How do I solve this problem:
1) Is there a cure for my internal routers and/or IPFWADM params that I am
missing?
2) Will a proxy server such as Squid help here?
3) Do I need an application level firewall (TIS's FWTK) ..and if so where
does one find this now that TIS was taken over by Network Associates??
...or ?????
Please, send a reply directly via email in addition to posting.
Lars Larsen
------------------------------
From: "Ferdinand V. Mendoza" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup
Subject: Re: PPP tantrums
Date: Fri, 21 May 1999 07:30:30 +0400
Gus,
BTW, I'm assigned a dynamic address from my ISP.
Ferdinand
gus wrote:
> In your ppp options, include the line:
> 212.72.2.80:212.72.1.1
>
> This sets the local:remote IP address.
>
> Check this with a "man pppd"
>
> gus
>
> Ferdinand V. Mendoza wrote:
> >
> > Folks, here's a bugger:
> >
> > A week back, my ppp connection was still perfect until recently
> > when I heard from a friend that my ISP was undergoing some
> > system upgrade and the reason at times I can't make a connection.
> > Just last night when the connection was back and my nightmare
> > started. I tried to dial my ISP as usual via my kppp and everything
> > seems to
> > be okay except that when I check the details of my kppp, the remote
> > IP address (ISP) is okay but the local address set, is my own IP
> > address I assigned for my hostname. This really baffles me. How come?
> >
> > // this is my /etc/hosts file: //
> >
> > 127.0.0.1 localhost
> > 192.168.53.1 wildfire.yibal wildfire
> >
> > // this is the message from my /var/log/messages //
> >
> > May 19 05:55:34 wildfire pppd[863]: local IP address 192.168.53.1
> > May 19 05:55:34 wildfire pppd[863]: remote IP address 212.72.1.2
> > May 19 05:55:42 wildfire pppd[863]: Terminating on signal 15.
> > May 19 05:55:42 wildfire pppd[863]: Connection terminated.
> >
> > As you can see from above 212.72.1.2 is my ISP's IP address.
> > I can't do any Interneting at all with these.
> >
> > Now, I tried to experiment with putting a comment on the line ...
> >
> > # 192.168.53.1 wildfire.yibal wildfire
> >
> > in my /etc/hosts to disable this temporarily.
> >
> > When I reconnected and my log looked like these;
> >
> > May 19 18:46:35 wildfire pppd[1076]: pppd 2.3.5 started by buddy, uid
> > 500
> > May 19 18:46:35 wildfire pppd[1076]: Using interface ppp0
> > May 19 18:46:35 wildfire pppd[1076]: Connect: ppp0 <--> /dev/ttyS1
> > May 19 18:46:44 wildfire pppd[1076]: Remote message:
> > May 19 18:46:45 wildfire kernel: PPP BSD Compression module registered
> > May 19 18:46:45 wildfire kernel: PPP Deflate Compression module
> > registered
> > May 19 18:46:48 wildfire pppd[1076]: local IP address 212.72.2.80
> > May 19 18:46:48 wildfire pppd[1076]: remote IP address 212.72.1.1
> >
> > See! I can be assigned a local IP address from my ISP and my Internet
> > connection is back to normal.
> >
> > My problem now is that my /etc/hosts file is altered and it also
> > cripples my Samba stuff. Is there a remedy for this small problem?
> > Do I have to make changes to my /etc/ppp/options file now that
> > I suspect that it has to do with my ISP's upgrade.
> > So many thanks in advance.
> >
> > Ferdinand
> >
> > ++++++++++++++++++
> >
> > See no Microsoft.
> > Hear no Microsoft.
> > Speak no Microsoft.
> >
> > ++++++++++++++++++
------------------------------
From: [EMAIL PROTECTED] (Vincent)
Subject: smbmount trouble
Date: Thu, 20 May 1999 23:18:44 -0400
Hi. At the request/demand of my boss I'm networking (well, attempting to
network) a client PC running Red Hat 5.2 Linux to a Windows NT server PC.
My NIC's are both on the motherboard 3Com 3c905B's.
First thing I'd like to accomplish is access to the NT server's files
from the Linux client. This, for now, is a private network, ie no
internet access. Security issues are not important at this stage.
I have tried these commands...
1) smbmount //piii-1/c/Dell /mnt/server -I 192.168.50.4
2) smbmount //piii-1/c/Dell /mnt/server -I 192.168.50.4 -D HSI-DOMAIN-1
...with every permutation of capital/small letters I could come up with
for the NetBIOS and domain names.
An explanation of some of the above arguments:
Piii-1: This is the computer name shown in NT's Network Properties
dialogue box, as well as on the initial log-in screen (I've seen it as
PIII-1 also). I'm using it as the NetBIOS name. My assumption is that
the NetBIOS name and computer name are one and the same. Is this so?
mnt/server: the subdirectory I created on the Linux box to mount the
server's files.
192.168.50.4: the IP name I gave the server. I'm using the "-I" option
at the suggestion of Linux after it gave me this message:
piii-1: unknown host
the -I option may be useful
HSI-DOMAIN-1: The domain name shown on both the log-in screen and in
TCP/IP properties.
After I execute the above commands I'm asked for a password. I have
given both my password when I log onto the server, and no password at
all.
After I execute, or don't execute, the password, I get this message:
"smb_dont_catch_keepalive: server->data_ready == NULL
mount error - Invalid argument
Please look at smbmount's manual page for possible reasons"
I have checked out the 3Com NIC Diagnostic Statistic page on the NT
server and something must be traveling across the network because the
"Packets Received" and "Packets Transmitted" numbers increase every time
I execute the above commands.
There are issues I've probably forgot or, as a newbie, don't know enough
about to mention. Forgive me. Any help would be very much appreciated.
Thanks for your time.
Vincent
[EMAIL PROTECTED]
You know the routine, remove the "X's" to email me.
------------------------------
From: bryan <[EMAIL PROTECTED]>
Subject: Re: linux ADSL setup - name resolution problem
Crossposted-To: onenet.linux
Date: Thu, 20 May 1999 14:41:04 GMT
D.L. <[EMAIL PROTECTED]> wrote:
: Brandon <"[EMAIL PROTECTED]"> wrote in <[EMAIL PROTECTED]>:
: I'm almost ready to trash SuSE, and cough up the bux for redhat6...
: Maybe there's a reason that SuSE 6.1 was $35.00 vs about $80.00
: for redhat6...
$80 for redhat6? wow. that's a bit too much for my liking. and I'm
not sure its justified..
if you need a 6.0 cd, I just downloaded and burned the mandrake 6.0
kit. email me if you want a copy. I'm very happy with mandrake 5.x -
I prefer it over redhat.
--
Bryan
------------------------------
From: [EMAIL PROTECTED] (D.L.)
Crossposted-To: onenet.linux
Subject: Re: linux ADSL setup - name resolution problem
Date: 20 May 1999 23:28:48 -0400
In article <[EMAIL PROTECTED]>, Brian wrote:
>just for info, I order RH 6 from cheapbytes.com for $1
I finally gave up on SuSE, and installed the copy of Redhat 5.1
I had around here. Took all of 2 minutes to successfully set
up for ADSL, and it works like a charm now. I'm compiling the
2.2.9 kernel as I type....
D.L.
--
D.L. Sharp/NU8H [EMAIL PROTECTED] Cincinnati, Ohio
Kindred Spirits Hearth - http://w3.one.net/~dls/kspirits
------------------------------
From: Stephen Carville <[EMAIL PROTECTED]>
Subject: Re: DHCP Service
Date: Thu, 20 May 1999 20:09:59 -0700
Phill Wallace wrote:
>
> I am using redhat Linux 5.2 and have configured the DHCP service. It was
> working fine when I was using a 255.255.255.0 subnet, but when we moved
> buildings, IP address ranges and a subnet of 255.255.254.0, the DHCP server
> started giving out duplicate addresses and was even giving out reserved IP
> addresses to people who did not have reservations.
>
> Any suggestions.....
Let's see your dhcpd.conf file. I'll bet someone did not carefully
recalculate the ranges with the new 23 bit subnet mask. It is real easy to
do.
If your network address is something like 192.168.10.0 the 255.255.254.0
netmask covers the range from 192.168.10.1 to 192.168.11.254.
--
Stephen Carville
[EMAIL PROTECTED]
====================================================
It's all right to have geniuses build systems for use by idiots, but
the path from laboratory to marketplace needs to go through the
proving ground of prudent engineering.
Peter Coffee
------------------------------
From: [EMAIL PROTECTED] (Johannes Niess)
Subject: Re: Specifically, What NT service now be run on linux?
Date: Thu, 20 May 1999 17:02:01 GMT
"Doug Pitek" <[EMAIL PROTECTED]> wrote:
>You can run all that and it wouldn't even think twice.. except the Backup
>Exec..
Amanda is great for backing up the whole network (www.amanda.org)
Johannes Niess
------------------------------
From: [EMAIL PROTECTED] (Johannes Niess)
Subject: Re: Specifically, What NT service now be run on linux?
Date: Thu, 20 May 1999 17:01:04 GMT
Frank Sweetser <[EMAIL PROTECTED]> wrote:
>Barry Schneider <[EMAIL PROTECTED]> writes:
>> I have an NT & solaris network environment. i have heard and read about
>> linux. One thing that has attracted me to linux is its stability as a
>> server (no crashing on a weekly basis like nt).
>>
>> I am currently using NT for the following, what services could i run on
>> linux?:
>>
>> Backup Server (Seagate Backup Exec)
>yup (samba)
I prefer Amanda. Should fit nicely into this environment
(www.amanda.org). It uses Samba to backup the Windows boxes. The
solaris boxes can user a real client for their own stuff.
Johannes Niess
------------------------------
From: "M. Zuhannes B. Dzulkifli" <[EMAIL PROTECTED]>
Subject: NIS master and slave between 2 subnet
Date: Fri, 21 May 1999 11:29:24 +0800
I have setup 2 NIS servers on 2 subnets.
I am having problem getting yppush to work on the master NIS server on
one subnet to another slave NIS server on another subnet.
Initiating transfer on the slave NIS server works (i.e. ypxfr) but
initiating ypush on the master NIS server doesn't.
It is possible to do yppush from master NIS server to a slave NIS
server on 2 differrent subnet.
Any help appreciated.
I am running linux 2.036 from redhat 5.2 and NIS 1.3.6
------------------------------
From: "D. C. & M. V. Sessions" <[EMAIL PROTECTED]>
Subject: Re: Can I use a D-Link 530 Card?
Date: Thu, 20 May 1999 21:27:22 -0700
Gerald Brandt wrote:
>
> Hi there,
>
> Can I use a D-Link DFE-530TK card? If so, where can I get drivers for it?
Are you sure it isn't a 530TX?
(This is getting to be a FAQ)
Add this to your /etc/conf.modules
alias eth0 via-rhine
--
| Microsoft: "A reputation for releasing inferior software will make |
| it more difficult for a software vendor to induce customers to pay |
| for new products or new versions of existing products." |
+---------- D. C. & M. V. Sessions <[EMAIL PROTECTED]> ----------+
------------------------------
From: Andrzej Filip <[EMAIL PROTECTED]>
Crossposted-To: comp.mail.sendmail
Subject: Re: Sendmail Addressing Variables
Date: Thu, 20 May 1999 18:13:53 +0200
Peter C Smith wrote:
> Does anyone know how to get Sendmail (on RedHat 5.2) to route
> messages with address variables to a specific mailbox?
>
> Example: [EMAIL PROTECTED] Or,
> [EMAIL PROTECTED]
>
> As you can see, the user name is always prefixed with "fax", but
> the rest is variable (may be different every time). I need
> message addresses prefixed with "fax" but followed with a
> variable number to be sent to the same mailbox every time. Is
> there a way to do this?
> For any help rendered, many thanks in advance.
try to use the following format:
[EMAIL PROTECTED]
[EMAIL PROTECTED]
Use "sendmail -bv ADDRESS" to see
where ADDRESS is going to be delivered e.g.
# sendmail -bv [EMAIL PROTECTED]
I think that on redhat 5.* procmail is used as local
delivery agent and you may access the "after plus"
address part in .procmailrc ($1 ?)
--
Andrzej (Andrew) A. Filip -- IT Consultant
http://www,bigfoot.com/~anfi
Private: [EMAIL PROTECTED] Business: [EMAIL PROTECTED]
I NO LONGER USE [EMAIL PROTECTED]
Posting history (all addresses):
http://www.dejanews.com/profile.xp?author=Andrzej%20Filip&ST=PS
------------------------------
From: [EMAIL PROTECTED] (Greg Aeschliman)
Subject: PPP Help Please...
Date: Thu, 20 May 1999 15:17:02 GMT
I'm starting to go a bit crazy trying to get connected to my ISP here.
I've read every FAQ How-to I've gotten my hands on and still can't get it
going. Here's a bit from the last time I logged on. I'm a complete
Linux newbie so please dumb it down for me. Here goes the log:
May 20 18:25:45 localhost pppd[6343]: pppd 2.3.5 started by root, uid 0
May 20 18:25:45 localhost pppd[6343]: Using interface ppp0
May 20 18:25:45 localhost pppd[6343]: Connect: ppp0 <--> /dev/cua2
May 20 18:26:16 localhost pppd[6343]: LCP: timeout sending Config-
Requests
May 20 18:26:16 localhost pppd[6343]: Connection terminated.
May 20 18:26:16 localhost pppd[6343]: Receive serial link is not 8-bit
clean:
May 20 18:26:16 localhost pppd[6343]: Problem: all had bit 7 set to 0
May 20 18:26:26 localhost pppd[6343]: Exit.
It will connect but then pppd will terminate. This is as close as I've
gotten and it's taken me some time to get this far. Any ideas?
Thanks,
Greg Aeschliman
------------------------------
From: "Edmond Cheng" <[EMAIL PROTECTED]>
Subject: IP Masq. for Remote LAN
Date: Fri, 21 May 1999 04:09:13 GMT
I have IP Masq installed in my Linux box (Redhat 5.1) to share the ISDN line
to Internet for my local LAN. I am using the 192.168.1.0 network.
Recently, a remote LAN (network 192.168.2.0) also connected to my local
network via an ISDN line using Cisco routers. So I added a static route
(route add -net 192.168.2.0 gw 192.168.1.2, which is the IP address of the
Cisco router, or similar command for Windows 95/98 ) in every machine in my
local LAN. For the remote Windows 95/98 machines, I specified the gateway
is 192.168.1.1 (the IP address of the LINUX) and route add 192.168.1.0
192.168.2.1. These two networks are successfully connected. I can ping to
and copy file to remote LAN from my local LAN and vice versa.
Local LAN
_________ ________
| ws | | linux |
| | | | ______ To Internet
|________| |_______|
| | 192.168.1.1
| |
___________________________ 192.168.1.0
|| Cisco Router 192.168.1.2
||
||
|| Cisco Router 192.168.2.1
||
___________________________ 192.168.2.0
| |
| |
_________ ________
| ws | | ws |
| | | |
|________| |_______|
Remote LAN
Now, I also want to share my ISDN line to Internet for remote LAN. I added
one more forwarding rule in the Linux machine:
ipfwadm -F -a m -S 192.168.2.0/24 -D 0.0.0.0/0
However, the remote Windows 95/98 machines cannot surf the Internet.
My question:
1. Does IP Masq. also work for remote LAN?
2. If yes, what is wrong with my setup?
Please help!!
Thanks,
Edmond
------------------------------
Reply-To: "Curt" <[EMAIL PROTECTED]>
From: "Curt" <[EMAIL PROTECTED]>
Subject: Re: IPFWADM failure to subnets
Date: Thu, 20 May 1999 23:15:36 -0500
post the result of netstat -nr
Lars Larsen <[EMAIL PROTECTED]> wrote in message
news:7i2hvj$pvg$[EMAIL PROTECTED]...
> Setup:
> RH 5.2 box with 2 NIC's acting as our firewall using IPFWADM.
> Local ethernet segment with 4 Subnets connected via T1's using Bay ASN and
> AN routers.
>
> Problem:
> All users on all subnets can generally browse, telnet, ftp etc. without
> problems. However, certain web sites are only "browsable" from the
ethernet
> segment connected to the inside interface of the firewall, but NOT on the
> routed subnets!! Needless to say, there are several such hosts that we
MUST
> be able to reach!!
> We are using class A private addresses on the inside network, subnetted as
a
> class B network:
> 10.20.0.0 255.255.0.0
> 10.21.0.0 255.255.0.0
> etc. and we don't have routing problems in general.
>
> Example of problem hosts:
> www.compaq.com www.nec.com
>
> Details:
> These hosts cannot be ping'ed or traceroute'd to - even from a box
connected
> directly to the internet!!! I guess possibly indicating they are inside
some
> sort of DMZ behind a firewall (Checkpoint ??)
>
Sounds like an MTU size problem. Are you filtering out ICMP packets on
your
firewall? Or maybe an upstream router is.
You might try setting the MTU size on the outside interface to something
like 1410.
ifconfig ethX mtu 1410
This allows us to reach nearly every site when we had an older SUN firewall
that
was filtering ICMP packets.
> How do I solve this problem:
> 1) Is there a cure for my internal routers and/or IPFWADM params that I am
> missing?
> 2) Will a proxy server such as Squid help here?
> 3) Do I need an application level firewall (TIS's FWTK) ..and if so where
> does one find this now that TIS was taken over by Network Associates??
>
> ...or ?????
>
> Please, send a reply directly via email in addition to posting.
>
> Lars Larsen
>
>
>
------------------------------
Date: Thu, 20 May 1999 10:47:33 -0600
From: Mike Selders <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Crossposted-To: comp.security.firewalls
Subject: Advice needed for ipfwadm
Hi All -
I'm working to setup an IP firewall machine using Redhat Linux 5.2. I
have managed to get an IP masquerade working, which makes the client
happy, but I'm stuck on another issue. I am using ipfwadm as shipped
with RH 5.2 for firewall administration.
I need to allow myself access to an AIX host on the protected side of
the firewall, and this is where I'm having trouble. I'm able to access
the AIX host from the Linuxbox, and of course I can get to the Linuxbox
from my workstation. Traceroutes from my workstation to the AIX host
get to the eth0 interface on the Linuxbox, but no further.
The 192.168.2.32/28 network represents a real Internet routed subnet;
the addresses changed to protect the client. I don't need to allow any
access to the 192.168.1.0 network from the Internet, but only through
routers I control myself. I have good host file entries AND working DNS
to identify my.workstation. The AIX host is 192.168.1.100
This output is from the Linuxbox
$netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
127.0.0.1 0.0.0.0 255.255.255.255 UH 3584 0 0
lo
192.168.2.32 0.0.0.0 255.255.255.240 U 1500 0 0
eth0
192.168.1.0 0.0.0.0 255.255.255.0 U 1500 0 0
eth1
0.0.0.0 192.168.2.33 0.0.0.0 UG 1500 0 0
eth0
$ipfwadm -F -l
IP firewall forward rules, default policy: deny
type prot source destination ports
acc/m all 192.168.1.0/24 anywhere n/a
acc tcp my.workstation 192.168.1.100 any -> any
Something is missing, and I don't know what. I fooled around with
routed and gated, but somehow felt that I wasn't on the right track.
If someone could point me in the right direction, I would be most
grateful.
Thanks,
-- Mike Selders, Network Administrator
______________________________________
Clark & Thompson Online Services, Inc.
http://www.ctos.com
------------------------------
From: "Stephen Hicks" <[EMAIL PROTECTED]>
Subject: http server behind ipmasq
Date: Fri, 21 May 1999 05:01:08 GMT
Has anyone been able to set up an http server (non-standard port, e.g. 81)
on a machine that is behind a ip-masq firewall (using a 2.2.x kernel w/
ipchains, autofw, and portfw)? If so, could you help me out with the
command to get it working (i think what i want is all traffic to my internet
ip address, port 81 to get forwarded to 192.168.0.2:81)
thanks in advance
--
Stephen Hicks
mailto:[EMAIL PROTECTED]
http://home.tampabay.rr.com/kupopo/
icq: 5453914; aim: kupopo1
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
