Linux-Networking Digest #572, Volume #11 Thu, 17 Jun 99 18:13:42 EDT
Contents:
two networks and a firewall ([EMAIL PROTECTED])
Re: Secure network-backup via nfs? (Frank Sweetser)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark? (was: Mindcraft Retest
News (Philip Brown)
ipfwadm accounting script ([EMAIL PROTECTED])
Driver for Trident boards (bill davidsen)
RH6 & Xircom PCMCIA eth. help! (Jason Bechtel)
Qmail question ([EMAIL PROTECTED])
Re: route always wants to use dns (bill davidsen)
Re: Can I deny ordinary user to telnet? (Chris Harshman)
Re: Connecting a Linux Box to a Unix Box (Chris Harshman)
Re: route always wants to use dns ("Bob Glover")
Re: Help setting up Transparent Proxy/Firewall (Alex Lam)
Re: Connecting a Linux Box to a Unix Box (Chris Harshman)
ssh.rpm package for SuSE 6.1 - where is one?? (E Wenderholm)
Re: about IP tunneling... (Malay Shah)
telnet to a standalone Linux machine ([EMAIL PROTECTED])
----------------------------------------------------------------------------
From: [EMAIL PROTECTED]
Subject: two networks and a firewall
Date: Thu, 17 Jun 1999 16:29:28 GMT
I am connecting two networks, 192.168.1.0/24 (A) and 192.168.11.0/24
(B), via ppp. Gateway B, 192.168.11.1, has ip forwarding enabled and
successfully makes a connection to network A. Gateway A, 192.168.1.1,
also has ip forwarding enabled, and in addition has a firewall up
because it also serves as the internet gateway for network A. I can
ping from any machine in network A to any machine in network B.
However, I cannot ping anything but gateway A from network B. The ping
returns "request timed out" errors. If I try to telnet from network B
to a machine on network A, except for gateway A, I get nothing.
I DO have network B setup as a trusted network to network A. What could
be the problem? Here is the script by Ian Hall-Beyer I use to setup my
firewall:
[start]
#!/bin/sh
#
# Initialization script to set up tight rules-based firewalling and
# masquerading for private LAN <-> internet gateways
# (C) 1998 Ian Hall-Beyer
#
# Contributors:
# Andrew McRory <[EMAIL PROTECTED]> (lo interface)
#
# rc.firewall
#
# $Id: rc.firewall.masquerade,v 1.2 1999/06/17 16:10:16 dustin Exp
dustin $
#
# $Log: rc.firewall.masquerade,v $
# Revision 1.2 1999/06/17 16:10:16 dustin
# added 192.168.11.0/24 as a trusted network
#
# Revision 1.1 1999/06/11 13:27:49 dustin
# Initial revision
#
echo "Setting up firewalling rules..."
LOCALIP=$1
LOCALNET="$LOCALIP/32"
#INTERNALIP="xxx.xxx.xxx.xxx"
#INTERNALNET="xxx.xxx.xxx.xxx/yy"
INTERNALIP="192.168.1.1"
INTERNALNET="192.168.1.0/24"
REMOTENET="0/0"
#
#
IPCHAINS="/sbin/ipchains"
#
#
#
## Flush everything, start from scratch
#
# Incoming packets from the outside network
$IPCHAINS -F input
# Outgoing packets from the internal network
$IPCHAINS -F output
# Forwarding/masquerading
$IPCHAINS -F forward
#
#
## Allow all connections within the network
#
$IPCHAINS -A input -s $INTERNALNET -d $INTERNALNET -j ACCEPT
$IPCHAINS -A output -s $INTERNALNET -d $INTERNALNET -j ACCEPT
echo -n "Internal; "
## Allow loopback interface
$IPCHAINS -A input -i $LOOPBACKIF -s 0/0 -d 0/0 -j ACCEPT
$IPCHAINS -A output -i $LOOPBACKIF -s 0/0 -d 0/0 -j ACCEPT
echo -n "Loopback; "
## Masquerading
#
## dont MasQ internal-internal traffic
$IPCHAINS -A forward -s $INTERNALNET -d $INTERNALNET -j ACCEPT
#
## dont MasQ external interface direct
$IPCHAINS -A forward -s $LOCALNET -d $REMOTENET -j ACCEPT
#
## masquerade all internal IP's going outside
$IPCHAINS -A forward -s $INTERNALNET -d $REMOTENET -j MASQ
## Allow all connections from the network to the outside
#
$IPCHAINS -A input -s $INTERNALNET -d $REMOTENET -j ACCEPT
$IPCHAINS -A output -s $INTERNALNET -d $REMOTENET -j ACCEPT
echo -n "Masquerading; "
#
# Set telnet, www and FTP for minimum delay
$IPCHAINS -A output -p tcp -d 0/0 www -t 0x01 0x10
$IPCHAINS -A output -p tcp -d 0/0 telnet -t 0x01 0x10
$IPCHAINS -A output -p tcp -d 0/0 ftp -t 0x01 0x10
# Set ftp-data for maximum throughput
$IPCHAINS -A output -p tcp -d 0/0 ftp-data -t 0x01 0x08
echo -n "QOS flags; "
#
#
###############################################################
# Insert trusted networks here
# (specific networks that can connect to your system)
#
#$IPCHAINS -A input -s <TRUSTED NET> -d 0/0 -j ACCEPT
echo -n "Trusted Nets; "
$IPCHAINS -A input -s 192.168.11.0/24 -d 0/0 -j ACCEPT
###############################################################
#
#
## Specific port blocks on the external interface
## These ports have known vulnerabilities and should not be open
## to the outside world unless there is a really good reason for it
#
## MS-SQL
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 1433 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 1433 -j DENY
#
## NFS
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 2049 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 2049 -j DENY
#
## postgresSQL
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 5432 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 5432 -j DENY
#
## X11disp:0-:2-
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 5999:6003 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 5999:6003 -j DENY
#
## Back Orifice
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 31337 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 31337 -j DENY
#
## NetBus
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 12345:12346 -j DENY
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 12345:12346 -j DENY
#
## High unpriv ports
#
$IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 1023:65535 -j
ACCEPT
$IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 1023:65535 -j
ACCEPT
echo -n "Port Blocks;"
#
## Basic Services
# Disabled by default -- uncomment those you need
# ftp-data
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 20 -j ACCEPT
# ftp
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 21 -j ACCEPT
# ssh
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 22 -j ACCEPT
# telnet
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 23 -j ACCEPT
# smtp
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 25 -j ACCEPT
# DNS
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 53 -j ACCEPT
# $IPCHAINS -A input -p udp -s $REMOTENET -d $LOCALNET 53 -j ACCEPT
# http
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 80 -j ACCEPT
# POP-3
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 110 -j ACCEPT
# identd
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 113 -j ACCEPT
# nntp
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 119 -j ACCEPT
# https
# $IPCHAINS -A input -p tcp -s $REMOTENET -d $LOCALNET 443 -j ACCEPT
# NFS
echo -n "Basic Services; "
#
## ICMP
#
# Deny
# Use this to deny ICMP attacks from specific addresses
#$IPCHAINS -A input -b -i $EXTERNALIF -p icmp -s <address> -d 0/0 -j
DENY
#
# Allow incoming ICMP
$IPCHAINS -A input -p icmp -s $REMOTENET -d $LOCALNET -j ACCEPT
$IPCHAINS -A input -p icmp -s $REMOTENET -d $LOCALNET -j ACCEPT
# Allow outgoing ICMP
$IPCHAINS -A output -p icmp -s $LOCALNET -d $REMOTENET -j ACCEPT
$IPCHAINS -A output -p icmp -s $LOCALNET -d $REMOTENET -j ACCEPT
$IPCHAINS -A output -p icmp -s $INTERNALNET -d $REMOTENET -j ACCEPT
$IPCHAINS -A output -p icmp -s $INTERNALNET -d $REMOTENET -j ACCEPT
echo -n "ICMP; "
#
## set default policy
#
$IPCHAINS -A input -j DENY
$IPCHAINS -A output -j ACCEPT
$IPCHAINS -A forward -j DENY
echo "Done."
[end]
---
Dustin Puryear
[EMAIL PROTECTED]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Frank Sweetser <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: Secure network-backup via nfs?
Date: 17 Jun 1999 13:05:14 -0400
[EMAIL PROTECTED] writes:
> In article <[EMAIL PROTECTED]>,
> James Youngman <[EMAIL PROTECTED]>
> wrote:
> > > My question is: How can I backup all the servers in a secure way, by
> > > using the host to which the DAT is connected?
> >
> > tar zcf - /filesystem-name | ssh dat-host dd bs=10240 of=/dev/st0
>
> The problem with this approach is that I woulp prefer to use BRU for
> backups. While you can use BRU in the way yo use tar, it means that you
> lose some of the builtin error-checking BRU does. It seems this solution
> makes it impossible to verify the backup. I want to be 100% sure my
> backup is ok.
hrm... if BRU can use rsh to talk to remote tape drives, then once the
no-pasword login is set up, simply make rsh a symlink to ssh, and it should
just magically work.
> Also I would prefer to initiate the backup from the dat-machine. Would
> that be possible using something like:
>
> ssh remote-host tar /filesystem-name | dd bs=10240 of=/dev/st0
yup.
--
Frank Sweetser rasmusin at wpi.edu fsweetser at blee.net | PGP key available
paramount.ind.wpi.edu RedHat 5.2 kernel 2.2.5 i586 | at public servers
"I'd crawl over an acre of 'Visual This++' and 'Integrated Development
That' to get to gcc, Emacs, and gdb. Thank you."
(By Vance Petree, Virginia Power)
------------------------------
From: [EMAIL PROTECTED] (Philip Brown)
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark? (was: Mindcraft
Retest News
Reply-To: [EMAIL PROTECTED]
Date: 17 Jun 1999 20:58:38 GMT
On Tue, 15 Jun 1999 19:07:43 -0700, [EMAIL PROTECTED] wrote:
>...
> That's likely because once you've gotten to single machines
> that NT is supposed to scale better on you're in Sun
> UltraSparc Enterprise territory in terms of price.
>
depends.
a quad-CPU pentium is still a lot cheaper than a comparable quad sparc box.
damn, sparc CPUs are *EXPENSIVE*....
I mean, a good pentium cpu is $1000, but a good sparc can be $3000 or more.
ugh.
So if there is something that is highly [non-FP] CPU-based, an intel+solaris
box is still more cost effective than a sparc box.
--
[Trim the no-bots from my address to reply to me by email!]
[ Do NOT email-CC me on posts. Pick one or the other.]
--------------------------------------------------
The word of the day is mispergitude
------------------------------
From: [EMAIL PROTECTED]
Subject: ipfwadm accounting script
Date: Thu, 17 Jun 1999 19:57:57 GMT
I recently added a DSL line to our server and I needed to do a little
traffic accounting. I wrote this perl script (my first perl program) to
convert the output of ipfwadm to an ascii delimited format for use with
Ms Access, etc. I needed information on the quarter-hour, but you can
modify that to easily give other increments or none at all. I use cron
to fire it off once every 15 minutes and attach an Access table to the
output file from my Win98 workstation. From there I generate
charts/graphs of usage. Hope it does somebody some good.
FF
--
#!/usr/bin/perl
#capture current time for later processing
$hour=`date +%H`;
chop $hour;
$minute=`date +%M`;
chop $minute;
$date=`date +%D`;
chop $date;
$day=`date +%a`;
chop $day;
system("/sbin/ipfwadm -lAexz >/root/info");
#what time is it accurate to the quarter
if (($minute > 45) && ($minute < 60)) {
$minute=45;
}
if (($minute >30) && ($minute<45)) {
$minute=30;
}
if (($minute >15) && ($minute<30)) {
$minute=15;
}
if (($minute >0) && ($minute<15)) {
$minute=0;
}
#print "Minute: ",$minute,"\n";
open(info, "info")|| die "can't open info: $!\n";
open(logfile, ">>/home/mydir/usagelog.txt")|| die "can't open log: $!
\n";
while (<info>) {
chop;
if ((substr($_,0,2) ne "IP") && (substr($_,4,3) ne "pkt")){
$packets=substr($_, 0,8);
$bytes=substr($_,9,10);
$dir= substr($_,20,3);
$prot=substr($_,24,4);
$ifname=substr($_,34,7);
$ports=substr($_,100);
#trim strings
foreach($packets,$bytes,$dir,$prot,$ifname,$ports){
s/^\s+//;
s/\s+$//;
}
print logfile
$hour,":",$minute,", ",
"\"", $day, "\", ",
"\"", $date, "\", ",
$packets, ", ",
$bytes, ", ",
"\"",$dir,"\", ",
"\"",$prot,"\", ",
"\"",$ifname,"\", ",
"\"",$ports,"\"\x0d\x0a";
}
}
close info;
close logfile;
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (bill davidsen)
Subject: Driver for Trident boards
Date: 17 Jun 1999 17:26:57 GMT
I have a bunch of ethernet cards which /proc/pci only identifies as
"Trident unknown" in type. The main chip is the
PCnet FAST" chip, part AM79C971KC. Having tried all the obvious drivers
without success, both as modules and builtin, I'm still looking for
anything which can identify this card.
Any ideas? I have a dozen or so of these cards I'd like to use.
--
bill davidsen <[EMAIL PROTECTED]> CTO, TMR Associates, Inc
The Internet is not the fountain of youth, but some days it feels like
the fountain of immaturity.
------------------------------
Date: Thu, 17 Jun 1999 12:32:56 -0500
From: Jason Bechtel <[EMAIL PROTECTED]>
Subject: RH6 & Xircom PCMCIA eth. help!
It's the strangest thing. I'm hoping someone out there has run into
this before and found a way to make it work...
I've installed RH6.0 fresh on my laptop. It is a little flaky on
detecting the Xircom IIps ethernet PCMCIA card, but even when it does
detect it properly, it still can't complete a connection to this
network. I and the sysadmin of the network have been working on it
together and can't figure it out. Here's the situation:
The network runs dhcp. I go into Enlightenment and then GNOME-Linuxconf
and Basic Host Information. I set the hostname to jabby.cs.ua.edu and
then go to adapter 1. I can set it up as dhcp and enter a hostname and
domain and put it on eth0. I accept the changes and it updates the
ifcfg-eth0 file. I restart the network and while there is traffic
coming to the card, it can't assign IP information. I go back into
Basic Host information and the hostname and domain under adapter 1 are
gone. That is consistent.
So, since dhcp isn't working, we try it manually: We setup default
gateway, static IP (valid and ok w/ sysadmin), eth0, netmask all
correctly... Now we restart the network. There's no complaint about
the IP address and there's traffic on the line again, but we can't even
ping the gateway! Am I missing some critical driver that is necessary?
My card is in the /etc/pcmcia/config database and it is (usually)
detected just fine.
Please help!
TIA
Jason
------------------------------
From: [EMAIL PROTECTED]
Subject: Qmail question
Date: Thu, 17 Jun 1999 19:51:33 GMT
Got a question about Qmail. I have two domains whose MX record points
to the same server (modelprinting.com, webheadshots.com). Anyway, is it
possible in Qmail to set up aliasing so that anything sent over to, say
[EMAIL PROTECTED] automatically gets forwarded to
[EMAIL PROTECTED]? At the same time, any mail sent over the
[EMAIL PROTECTED] stays put and stays in that mailbox?
I tried setting an alias file in /var/qmail/alias called .qmail-
[EMAIL PROTECTED], but it doesn't seem to forward.
What is the best tool to do what I want to do? Procmail?
- Steve
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (bill davidsen)
Subject: Re: route always wants to use dns
Date: 17 Jun 1999 17:33:42 GMT
In article <[EMAIL PROTECTED]>,
Daniel Schaffrath <[EMAIL PROTECTED]> wrote:
| nsswitch reads to translate hostnames just by "files". host.conf too....
|
| but
|
| "route add -host anyhost dev anydev"
|
| wants to talk to the name server..... I straced it... and it really
| queries bind for anyhost and nothing more..... although libnss_files
| gets loaded, afterwards libns_dns gets loaded.
And your /etc/resolv.conf files looks like what?
--
bill davidsen <[EMAIL PROTECTED]> CTO, TMR Associates, Inc
The Internet is not the fountain of youth, but some days it feels like
the fountain of immaturity.
------------------------------
From: Chris Harshman <[EMAIL PROTECTED]>
Subject: Re: Can I deny ordinary user to telnet?
Date: Thu, 17 Jun 1999 12:28:18 -0500
Note that this will also prevent that user from using other
services, such as FTP, unless /bin/false is added to /etc/shells
guest wrote:
>
> I don't think there trying to completely stop the telnet service, just
> restrcit a user from being able to telnet into a machine. If this is
> correct to prevent a user access to a telnet shell make their default
> shell /bin/false. make sure to define this shell in the correct system
> file. then when the user trys to telnet they will get:
> login:user
> password:XXXXXXX
> Connection refused by host!
> disconnected
>
> Richard Wright wrote:
> >
> > In article <7j38sq$b52$[EMAIL PROTECTED]>, Flavio Curti
> > <fcu@NOSPAM{futurecom.ch}> writes
> > >hi
> > >Natta wrote:
> > >>
> > >> Can I deny ordinary user telnet to server?
> > >easyiest way to do this would be to change the access rights for the
> > >telnet binary (remove execute rights for all execpt user{root}). but
> > >users can download their own binary, and then same problem again...
> > >
> > >hope it helps
> > >
> > >greetz
> > Another way would be to remove the telnet line from
> > inetd.conf. Without this the system wouldn't respond to a request for
> > telnet. You might want to do the same with rlogin.
> > --
> > Richard Wright
------------------------------
From: Chris Harshman <[EMAIL PROTECTED]>
Subject: Re: Connecting a Linux Box to a Unix Box
Date: Thu, 17 Jun 1999 12:35:28 -0500
Oh, and for #2...
Let's say your local network is '192.168.5.x' and your
server is '192.168.5.2' - to get your RedHat box talking
to the Unix box, you'd run:
/sbin/route add -net 192.168.5.0 eth0
/sbin/route add default 192.168.5.2
(There's more options than that, but the above should
likely work. I kind of over-simplified the issue.)
I heartily recommend picking up the book TCP/IP Network
Administration, from O'Reilly & Associates (www.ora.com)
if you're going to be doing any sort of UNIX/Linux TCP/IP
networking.
As for the Netware (which uses IPX/SPX), I have absolutely
no idea. Sorry!
- Chris
kuds wrote:
>
> Hi,
>
> I have around 20 P233MMX machines connected to a Unix box. I
> have installed RH52 on 2 of these machines. My problem is
>
> 1. I dont know the make of the nic nor can i open the
> machine and find out, i suspect it to be a tulip, but dont
> take my word on this. Does anybody have ne ideas on how to
> find this out and also how to install the card
>
> 2. What do i need to do to connect to the Unix box.
>
> I did read the howto, but i am still at a loss on how to
> make the gateway and connect.
>
> my experiments with route command were not very successfull.
>
> 3. any ideas on how to connect the same to a Netware 3.12
> server.
>
> Machines are using utp for networking.
>
> Can anybody please help, it would be appreciated..
>
> Tnx
>
> -kuds
>
> **** Posted from RemarQ - http://www.remarq.com - Discussions Start Here (tm) ****
------------------------------
From: "Bob Glover" <app1rtg_at_air.ups.com>
Subject: Re: route always wants to use dns
Date: Thu, 17 Jun 1999 18:01:07 +0100
use the -n switch. For example to list your routing table::
route -n
Daniel Schaffrath wrote in message <[EMAIL PROTECTED]>...
>Dear Guys,
>
>nsswitch reads to translate hostnames just by "files". host.conf too....
>
>but
>
>"route add -host anyhost dev anydev"
>
>wants to talk to the name server..... I straced it... and it really
>queries bind for anyhost and nothing more..... although libnss_files
>gets loaded, afterwards libns_dns gets loaded.
>
>"ping anyhost" does NOT behave like this... it just uses files as it
>should.
>
>Does anyone know why route always uses dns!? Is this a bug perhaps, or a
>
>bug in the resolver.... this behavior appears only with route of SuSE
>Linux -gt 6.0.
>
>thank you so much in advance,
>Dan
>
>
>
>
------------------------------
From: Alex Lam <[EMAIL PROTECTED]>
Subject: Re: Help setting up Transparent Proxy/Firewall
Date: Thu, 17 Jun 1999 11:30:54 -0700
>
You also need to install tcp-ip protocol on all the Windoze boxes. Linux does not
talk NetBIEU.
Alex Lam.
*Remove all the upper case Xs if reply by e mail.
------------------------------
From: Chris Harshman <[EMAIL PROTECTED]>
Subject: Re: Connecting a Linux Box to a Unix Box
Date: Thu, 17 Jun 1999 12:32:11 -0500
Cat /proc/pci (hopefully you've got PCI NICs).
The PCI bus will have (hopefully) kicked up an ID
string, regardless of whether or not the OS is
actively using that device. Example:
Bus 0, device 10, function 0:
Ethernet controller: 3Com 3C590 10bT (rev 0).
Medium devsel. IRQ 11. Master Capable. Latency=248. Min
Gnt=3.Max Lat=8.
I/O at 0x6100 [0x6101].
If the ID is cryptic, make a note of it and search
http://www.deja.com for people talking about it.
In the example above, it should be fairly self-
explanatory.
- chris
kuds wrote:
>
> Hi,
>
> I have around 20 P233MMX machines connected to a Unix box. I
> have installed RH52 on 2 of these machines. My problem is
>
> 1. I dont know the make of the nic nor can i open the
> machine and find out, i suspect it to be a tulip, but dont
> take my word on this. Does anybody have ne ideas on how to
> find this out and also how to install the card
>
> 2. What do i need to do to connect to the Unix box.
>
> I did read the howto, but i am still at a loss on how to
> make the gateway and connect.
>
> my experiments with route command were not very successfull.
>
> 3. any ideas on how to connect the same to a Netware 3.12
> server.
>
> Machines are using utp for networking.
>
> Can anybody please help, it would be appreciated..
>
> Tnx
>
> -kuds
>
> **** Posted from RemarQ - http://www.remarq.com - Discussions Start Here (tm) ****
------------------------------
Subject: ssh.rpm package for SuSE 6.1 - where is one??
From: [EMAIL PROTECTED] (E Wenderholm)
Date: 17 Jun 1999 14:25:51 -0500
I installed SuSE 6.1 - no problem on installation. The problem that I have
is ssh is not (cannot) be part of the installation package because of
export restrictions to the US.
I've gone to www.suse.com, and to their mirror sites, and cannot find the
ssh.rpm!!!!
Would someone please be kind enough to give me a url for this? Also,
since I'm having a devil of a time with my cable modem (which I don't want
to talk about), could you please email this information to me at
[EMAIL PROTECTED]
thank you SO VERY MUCH!
Elaine
------------------------------
From: Malay Shah <[EMAIL PROTECTED]>
Subject: Re: about IP tunneling...
Date: Thu, 17 Jun 1999 21:48:53 GMT
I'm not quite sure, but I think if you type the following in, you can
add more tunnels
ifconfig tunl0:1 IPADDRESS
ifconfig tunl0:2 IPADDRESS
ifconfig tunl0:3 IPADDRESS
You might be able to get away with those, try it and let me know if it
works.
Malay Shah
Wei-chun wrote:
> Hi,
> I'm using kernel 2.0.x to set up ip tunnels.
> If I compile tunneling support into modules, I can establish as many
> tunnels by using "insmod new_tunnel -o".
> But if I compile it into kernel, I can only have tunl0 and tunl1.
> Does anyone know how to add more tunnels?
>
> Thank you for your help.
> Wei-chun
------------------------------
From: [EMAIL PROTECTED]
Subject: telnet to a standalone Linux machine
Date: Thu, 17 Jun 1999 20:41:10 GMT
Can I telnet to a Linux box that is not connected to an ISP? In other
words, it is just plugged into a phone line using a modem?
I can connect to my home Linux box from Win95 at work using
Hyperterminal -- just by dialling the phone number and logging in. It
works well.
But the Win95 telnet client requires me to specify a site name (such as
mycompany.com)
Obviously, the Linux box is just plugged in to my wall socket at home,
so I have no IP name.
Does telnet allow phone numbers? Do I need a different Win telnet
client?
Thanks
Michael
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
