Linux-Networking Digest #444, Volume #11 Mon, 7 Jun 99 20:13:42 EDT
Contents:
Re: can't connect to my isp using kppp (Fritz Whittington)
Everything you need is at www.Linuxquake.com (NT) (Jeff)
Where is the comprehensive Firewall documents? ("Bono")
Re: Token Ring network (Scott G. Parkerson)
Re: 2 ipchains questions (LeeMan)
Adjust traffic priority in LINUX??? HELP, PLEASE! ("Serge Ivanov")
Re: Nework with Mac classic ("Mark Swope")
[Fwd: virtual ethernet devices] ("George E. Law")
Re: Linux > Win95 (peter)
Re: Realtek RTL 8029 Ethernet Adapter (root)
EICON DIVA 2.0 (RNIS PCI) avec linux ? (Ollivier Civiol)
Re: ISDN Dial on demand and setting own MSN number (Malware)
Connecting to Internet/MSN ("Flynn")
Re: Linux: ICMP Redirect, IP Source Routing unterdruecken (Detlef Bosau)
ypbind won't stay bound (LeeMan)
----------------------------------------------------------------------------
From: Fritz Whittington <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.x
Subject: Re: can't connect to my isp using kppp
Date: Mon, 07 Jun 1999 14:32:02 -0500
DonJr wrote:
>
> Bev wrote:
> >
> > Melle wrote:
> > >
> > > Hi,
> > > i've got a problem with my RH5.2 distribution of linux! i configured kppp
> > > the way it was shown in several comp-magazines for logging in at my isp's
> > > server using PAP - but it doesn't work at all.
> > > the modem dials properly, but it fails to log in. my isp said that my login,
> > > password and servername should be added to the file /etc/ppp/pap-secrets,
> > > but i don't know how in detail. there are two lines of introduction: the
> > > format of an entry should be something like:
> > > client server secrets IP adresses
> > > but what does this mean? i'm not good in English at all (you may have
> > > noticed that already *grin*) since i'm from Germany, hmm.
> > > if you know the answer to my problem please mail me to:
> > > [EMAIL PROTECTED]
> > >
> > > thanx, Melle
> >
> > We could never get it to work under RH either, so we just copied over the
> > files from our slackware installation. Here is what the /etc/ppp/pap-secrets
> > file should look like:
> >
> > # Secrets for authentication using PAP...
> > # client server secret IP addresses
> > "yourloginname" * "yourpassword"
> >
> > --
> > Cheers,
> > Bev
> > ====================================================================
> > "We thought of one of those discount store caskets, but, frankly, we
> > were worried about the quality." -- mortuary commercial
>
> Basicaly put "kppp" is not written for the Red Hat Dastro and will not
> work without major configuration change.
>
> The easiest way I've found to setup pppd under RH 5.2 or RH 6.0 is:
> # linuxconf { either under X or text mode take you pick}
> - Networking
> - Client tasks
> Select PPP/SLIP/PLIP
> Click the ADD button
> Make sure PPP is selected
> Click the Accept button
> Fill in the following fields
> Phone Number
> Modem Port
> Click the use PAP check button
> Login Name
> Password
> Click the Customize button
> Select Allow any user (de)activate the interface
> Click the Accept button
> Click the quit button on the PPP/SLIP/PLIP page
> Select Name server specification (DNS)
> Fill in the Name Server Information asked by this page.
> Click the Accept button
> Click the Quit button
> Press enter on the next screen to apply the updates.
>
> Now at the command prompt
> $ /sbin/ifup ppp0 will bring up the connection
> $ /sbin/ifdown ppp0 will bring down the connection
>
> Under X simplily load the program "usernet" is a simple to use one to
> get you started, though there are other choices out there.
>
> RedHat 5.2 and 6.0 versions of the Linux Dastro's are simple enough,
> even a MicroS*t user should be able to set it up.
> It's a whole lot simpler then MS-Widows to install and setup.
>
> --
> -----------------------
> Don E. Groves, Jr.
> my Email is jetnick AT erols DOT com
>
> I'll add a witty saying here later.
> Such as:
> Give a man a fish and he will eat now.
> Teach him to fish and he will ........
> ...
> ...
> ...
> ...
> ...
> ...
> ... drink beer by to pond all day with his new friends.
>
> ----------------
Fine, then. What do you do if you need to use CHAP, since it
doesn't seem to offer that option?
--
Fritz
------------------------------
From: Jeff <[EMAIL PROTECTED]>
Subject: Everything you need is at www.Linuxquake.com (NT)
Date: Mon, 07 Jun 1999 15:46:27 -0600
Francisco Caceres wrote:
> Hi,
>
> Iam trying to setup a quake server on my linux redhat 5.2 but i havent been
> able to find any good instructions on how to install quake on linux, I have
> a CD but I dont see any file named resource.1 or something similar, the
> version of the quake is 1.6 can anyone help me out?
>
> Francisco
------------------------------
From: "Bono" <[EMAIL PROTECTED]>
Subject: Where is the comprehensive Firewall documents?
Date: Tue, 8 Jun 1999 06:21:36 +0900
Hi everyone.
I have one more question.
(I'm always asking something, not answering :=))
Where can I find detailed Firewall examples and explanations?
I already read:
Firewall HOWTO
IP Masqurade HOWTO
IP Masqurade mini HOWTO
Net-3 HOWTO
man ipfwadm
IPCHAINS-HOWTO
But, I think they are not enough for the actual implementation, just good
for understanding.
What I want to do is desining a C class network with FIREWALL.
I need more practical examples and explanations.
Especially about ipfwadm command.
Practical Examples about -O, -I, -F options.
Where can I find these examples?
Bono.
------------------------------
From: [EMAIL PROTECTED] (Scott G. Parkerson)
Subject: Re: Token Ring network
Date: 7 Jun 1999 20:14:47 GMT
Reply-To: [EMAIL PROTECTED]
On Mon, 7 Jun 1999 08:31:29 +0100, Stephen Smith <[EMAIL PROTECTED]> wrote:
>Hi,
> i'm a bit of a newbie on Linux so please bear with me. i have read all
>the articles available to me on this newsgroup but cannot find any mention
>of setting up a token ring network. Is token ring rarely used in Linux ? My
>problem is that we are running a token ring network and i cant get my Linux
>box to see any other PC's on the network.
>
>Is there an FAQ out there for setting up a token ring network on Linux ??
Yes. Visit http://www.linuxtr.net/ and check out the "documentation" link.
The Mini-FAQ is a bit old, but it does provide some valuable information
nonetheless.
Regards,
scott
--
// Scott Parkerson. Device Driver Development, IBM Network Hardware Div.,
// Research Triangle Park, NC, USA. #include <std_disclaimer.h>
// ObTMBG: "I don't want the world... I just want your half."
// Notice: Please remove YOUR_SPLEEN from my e-mail address before replying.
------------------------------
From: LeeMan <[EMAIL PROTECTED]>
Subject: Re: 2 ipchains questions
Date: Mon, 07 Jun 1999 13:18:10 -0700
It seems there is a new problem that is maybe causing all the rest. My linux
box keeps losing its binding to the NIS master. My setup was working for a
while today, then I started getting web page servers not found. When I checked
the linux box, it would not respond when I typed ypwhich. I have rebooted and
the checklist during bootup says it binds to the master, but when I log in, it
isn't bound any more. Could this have something to do with the ipchains rules
I have set. I have the following:
ipchains -P input DENY
ipchains -A input -p icmp -j ACCEPT
ipchains -P forward DENY
ipchains -A forward -s (ip address) -j MASQ
ipchains -A forward -s (ip address) -j MASQ
ipchains -P output ACCEPT
And here is what route says:
dest gateway genmask flags metric ref use
iface
204.x.x.141 * 255.255.255.255 UH 0 0 0 eth1
192.x.x.19 * 255.255.255.255 UH 0 0 0 eth0
204.x.x.128 * 255.255.255.240 U 0 0 0 eth1
192.x.x.0 * 255.255.255.0 U 0 0 0
eth0
127.0.0.1 * 255.0.0.0 U 0 0
0 lo
default 204.x.x.129 0.0.0.0 UG 0 0 0
eth1
with a couple of do_ypcall:clnt_call:RPC:timed out thrown in for bad luck
204.x.x.141 is linux box used for firewall/forwarding
204.x.x.129 is DSL box
192.x.x.x are machines on local network
204.x.x.128 don't know where this came from, 129 is our lowest ISP provided ip
address??
netmasks are 255.255.255.0 for 192 network
and 255.255.255.240 for 204 network
Speaking of routes, what should I put in for routing in control panel (that's
what I use to set it up)
I'm really at a loss here, I appreciate any help you might give.
Lee
==========================================
"Roy W. Erickson" wrote:
> Hi:
>
> I just went through the same exact thing last week. Your masquerading is
> ok. Look at your routing on the linux box (send your routing table),
> espcially your netmasks on the public side. (Have you put a NT or someting
> on your DSL and make sure that it's up?)
>
> LeeMan wrote:
>
> > I have RH6 running on a pentium and it is hooked to a class C Ethernet
> > and a DSL box. From the linux box , I can ping both NIC cards and the
> > DSL box but not outside the DSL box. I have 2 DNS servers listed and
> > they are up because I use the same ones on my dial-up account. I am
> > trying to use ip masquarading for the rest of the network. If I add the
> > following lines:
> > ipchains -P forward DENY
> > ipchains -A forward -s 192.x.x.x -j MASQ then that machine can also ping
> > the DSL box but no further. Also, after adding that last line, if I do a
> >
> > ipchains -L it hangs and waits for a control-c.
> >
> > question 1. Any ideas why I can't ping further than the DSL box.?
> > question 2. Why does the linux hang when ipchains -L?
> >
> > Thanks for any info you might have.
> > Lee
------------------------------
From: "Serge Ivanov" <[EMAIL PROTECTED]>
Crossposted-To:
alt.os.linux,alt.os.linux.mandrake,comp.os.linux.admin,comp.os.linux.setup
Subject: Adjust traffic priority in LINUX??? HELP, PLEASE!
Date: Tue, 8 Jun 1999 02:40:37 +0400
Hi!
Because of number of users wich connect to my proxy (Linux RedHat 6.0) will
increase, the
traffic become heavy. At the present time I have 50 users... Tell me
please - how can I control
the traffic on each users? Do you know how I can setup priorities on each
users?
For example I want that requests from USER1 be resolved quickly then from
USER2.
Please, describe required solution step by step - for dummys...:-))
Thanks for your answer,
Regards, Serge
PS Please send your letter to my e-mail directly...
------------------------------
From: "Mark Swope" <[EMAIL PROTECTED]>
Subject: Re: Nework with Mac classic
Date: Mon, 7 Jun 1999 17:08:04 -0500
You have two choices:
you might be able to find an ancient SCSI to Ethernet
adapter. These were quite expensive and somewhat
subject to SCSI voodoo, but they did work.
Nowadays, there is a localtalk to ethernet adapter
available by one of the older MAC hardware makers -
Dayna, I think. You'll probably stll have to have a pretty
recent version of the Mac OS with TCP/IP support.
mas
Duncan Hardie wrote in message <[EMAIL PROTECTED]>...
>What hardware do I require to network my mac classic with my Linux
>box?
>
>Thanks
>
>Duncan
------------------------------
From: "George E. Law" <[EMAIL PROTECTED]>
Subject: [Fwd: virtual ethernet devices]
Date: Mon, 07 Jun 1999 16:19:41 -0400
We are migrating to Linux from solaris. Linux seems to bring up all
interfaces based on the IP addresses as configured in
/etc/sysconfig/network-scripts/ :
ifcfg-eth0
ifcfg-eth0:0
ifcfg-eth0:1
ifcfg-eth0:2
etc....
Under solaris, the interfaces are brought up based the presence of a
/etc/hostname.eth0:### file, ### being the virtual interface ID for that
IP address.
This gets messy when the machine is set to respond to 400 ips. Since
Linux does not require these files, the /etc directory is much less
cluttered.
Question is : Is there a way to prevent an interface from being
activated
on a reboot outside of doing an ifconfig eth0:### 0 down for each device
we wish to deactive?
Another side effect of all interfaces being brought up is sendmail
errors.
Some addresses are not in use but the machine still brings up all
interfaces. These addressed do not resolve on a reverse DNS lookup.
This causes many messages like :
Jun 7 11:41:18 anvil sendmail[19719]: gethostbyaddr(216.42.98.182)
failed: 1
to appear in /var/log/maillog. This is not a fatal error, but it does
seem
to be caused by the virtual devices.
--
Cordially,
George
____________________________________________________________________________
Customer Service Software Workshop Inc.
[EMAIL PROTECTED] (315) 635-1968 (x213) "software that fits!"
(TM)
http://www.thebook.com
------------------------------
From: [EMAIL PROTECTED] (peter)
Subject: Re: Linux > Win95
Date: Mon, 07 Jun 1999 22:49:07 GMT
In article <7jh1g3$8e$[EMAIL PROTECTED]>,
[EMAIL PROTECTED] says...
> Hi I am doing some development work between a Win95 machine and a SuSe 6.0
> LINUX Box
> I have got the Win 95 Box to recognise the existence of the LINUX box and I
> can save files to the LINUX box using samba on the LINUX box.
>
> But what I really need to do now is get the LINUX box to see the win95 box
> and get the equivalent of peer to peer networking ( bill gates style ).
>
> Has anyone any thought on how to do this ?
>
linux.samba might be the correct group for you.
smbclient is the linux-command that can show the shares of your win95-
box. and smbmount the tool to mount it. (you have to specify --with-
smbmount when compiling samba)
peter
=================
pilsl@
ANTISPAM
goldfisch.atat.at
------------------------------
From: root <[EMAIL PROTECTED]>
Subject: Re: Realtek RTL 8029 Ethernet Adapter
Date: Mon, 07 Jun 1999 22:33:28 +0200
Bolan Meek wrote:
> [EMAIL PROTECTED] wrote:
>
> > Hi,
> > Does anybody know which driver I have to use with a
> > Realtek 8029 PCI network adapter and / or where I can download it?
> > pre-thanks for your reply!
>
> Use the PCI-NE2000 driver (a.k.a. PCI-NE2K). I have one in one
> of my Linux boxes. I also have the docs and specs from Realtek,
> which I requested before I found out that this card is a superset
> of NE2K clonehood. Probably the only real enhancement in this
> card is that Realtek 8029 supports full duplex. I don't think that
> the driver does, but my hub sure doesn't, so it doesn't matter for
> me, anyway.
>
> Quoting from driver report:
>
> ne2k-pci.c:v0.99L 2/7/98 D. Becker/P. Gortmaker
> http://cesdis.gsfc.nasa.gov\
> /linux/drivers/ne2k-pci.html
> ne2k-pci.c: PCI NE2000 clone 'RealTek RTL-8029' at I/O 0xff80, IRQ
> 11.
> eth0: PCI NE2000 found at 0xff80, IRQ 11, 00:A0:86:A0:40:C2.
>
> I had set the address and IRQ much earlier, back when this was a Win3.1
> box, with a DOS utility supplied by the OEM.
>
> I guess you presumed that you were already pre-welcomed!
>
> Bolan
Linux (Redhat 6) should support this cards, but you have to disable to PNP
features of the card with the DOS software provided with it...the process
is clearly documented in the Ethernet howto...
Alex
------------------------------
From: Ollivier Civiol <[EMAIL PROTECTED]>
Subject: EICON DIVA 2.0 (RNIS PCI) avec linux ?
Date: Mon, 07 Jun 1999 22:23:40 +0200
Reply-To: [EMAIL PROTECTED]
Hi,
I have a EICON DIVA 2.0, RNIS, PCI, Plug and play card but I don"t know
how to install it.
windows reports IRQ=9 IO=E9000000 etc.
Does anyone know how to install such a card and then how to manage
incoming calls and maybe incoming/outgoing faxes ?
Thanks.
--
Best Regards,
Ollivier Civiol
=======================================
Email : [EMAIL PROTECTED]
WEB : http://www.astecsoft.com/AstecWeb
------------------------------
From: Malware <[EMAIL PROTECTED]>
Subject: Re: ISDN Dial on demand and setting own MSN number
Date: Mon, 07 Jun 1999 22:18:52 +0200
Hi Henning,
you wrote:
> >It's an FAQ on de.alt.comm.isdn4linux. There are solutions available
> >that work much better than this brain-dead one.
>
> I could not find any solution on the d.a.c.i-FAQ, because there is no
> FAQ at the moment (at least i could not find one) and the old one does
> not cover the topic. Please help me in finding the solutions.
I was not very interested in the answers and so did not collect them.
GoTo deja.com to find them [I hope you understand German since you post
from Germany]. If this does not help you could still ask in
de.alt.comm.isdn4linux [english is welcome there too].
Malware
------------------------------
From: "Flynn" <[EMAIL PROTECTED]>
Subject: Connecting to Internet/MSN
Date: Mon, 7 Jun 1999 17:47:08 -0400
Hi,
I am new to Linux and just bought Red Hat 6.0. I wish to eventually make
the switch from Windows to Linux, but first I must learn and wean myself off
of Windows. I use the Microsoft Network as my ISP and have had difficulty
setting up a PPP connection to get to the Internet through Linux. Is this a
problem with MSN or is it with me. Has anyone else had this problem and how
did you overcome it?
Any help will be greatly appreciated. Thanks.
------------------------------
Date: 07 Jun 1999 22:25:00 +0200
From: [EMAIL PROTECTED] (Detlef Bosau)
Crossposted-To: de.comm.internet.routing
Subject: Re: Linux: ICMP Redirect, IP Source Routing unterdruecken
[EMAIL PROTECTED] meinte am 07.06.99
zum Thema "Re: Linux: ICMP Redirect, IP Source Routing unterdruecken":
> [EMAIL PROTECTED] (Detlef Bosau) writes:
>
> > > Darum wunderte ich mich (insgeheim) ja etwas ueber Detlefs
> > > Ausfuehrungen zu dem Thema in Verbindung mit dyn. Routing.
> >
> > Worueber genau?
>
> Dass du kein dyn. Routing auf einem Host zulaesst, sobald da (mind.)
> zwei SAP-Router drauf sind. Ich kanns nicht nachvollziehen da ich
> damit keine Erfahrung habe.
>
> cu, Wolfgang.
Ich persoenlich bevorzuge auf Servern mit mehreren SAP _Instanzen_
mehrere physikalische
Interfaces. Das hat den Vorteil, dass ich jederzeit das Routing
unter Kontrolle habe. Ich kann sicherstellen, dass ein Kunde A
und ein Kunde B je nur auf ihre eigene SAP-Instanz zugreifen.
Bei einem SAP Router sieht die Situation anders aus. Allerdings
ist ein SAP Router, es klang hier schon an, eigentlich kein
Router sondern eine Art Proxy. Am ehesten treffen Begriffe
wie Application Firewall oder Circuit Relay. Allerdings nicht
vollstaendig, da SAP fuer die Kommunikation zwischen Client
und Server ueber Saprouter eine eigene Protokollschicht (NI-Schicht)
eingefuehrt hat.
Ich kenne bisher nur den Saprouter fuer Linux, und der kann nur
TCP/IP nach aussen. Ich weiss nicht, ob es Saprouter gibt, die auch
andere Protokolle koennen (weiss das hier jemand?), aber prinzipiell
sollte es moeglich sein, hier durch kaskadierte Proxies dieser
Art sogar die Kommunikation unmittelbar ueber X.25 Leitungen
oder HDLC zu ermoeglichen und dabei, wie bei Circuit Relays
typisch, nur Nutzlast zu uebertragen. Das kann im Einzelfall
sehr nuetzlich sein. Verschiedentlich sind DDVs sehr guenstig
zu haben, und die Einsparung des TCP/IP Overheads zugunsten
eines reinen Nutzdatentransports kann sehr kostensparend sein.
Detlef
--
Detlef Bosau [EMAIL PROTECTED]
Bienroder Weg 79 Tel.: +49 531 303383
D2: +49 172 6819937
38106 Braunschweig, Germany Fax: +49 531 303364
>>>> PGP Public Key als Empfangsbestaetigung <<<<
## CrossPoint v3.1 R ##
------------------------------
From: LeeMan <[EMAIL PROTECTED]>
Subject: ypbind won't stay bound
Date: Mon, 07 Jun 1999 15:55:25 -0700
I have a pentium running RH6 and ypbind isn't working properly. During
bootup, it says it found and is bound to a server, but when I login and
open a window, there is nothing returned by ypwhich. There are 2
processes running, ypbind and ypbind[slave]. I have been trying to get
ipforwarding and ipmasq working, but I don't see how that could have
broken ypbind. Any suggestion??
Thanks.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
