Linux-Networking Digest #746, Volume #11 Thu, 1 Jul 99 15:13:48 EDT
Contents:
Re: Linux modem frame errors (Clifford Kite)
Re: DSL filtering ports (Mark Evans)
3COM 3CCE589EC (Tom Goodale)
Re: WIN95>LINUX>WIN98>NT4Proxy? (Jonathan Guthrie)
Restricted Telnet (Mike Hale)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark? ("Anthony D. Tribelli")
select always modifies fd sets (Nico Tranquilli)
Re: Linux as a real firewall (Timothy Kelley)
Re: How to configure News Server (Timothy Kelley)
Re: Can't Telnet (Dustin Puryear)
Re: Perl Script (Clifford Kite)
Re: PPP ("Trigger")
HELP: I need an Outgoing Mail Cache (Alexander Atkin)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
([EMAIL PROTECTED])
Re: Linux as a real firewall ("Andrey Smirnov")
Fun with mail routing ([EMAIL PROTECTED])
Re: select always modifies fd sets (=?iso-8859-1?Q?Bj=F8rn?= Reese)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark? (Terry Carmen)
----------------------------------------------------------------------------
From: kite@NoSpam.%�inetport.com (Clifford Kite)
Subject: Re: Linux modem frame errors
Date: 1 Jul 1999 09:34:31 -0500
Mike Bishop ([EMAIL PROTECTED]) wrote:
: I recently set up a masquerading/ppp Internet connection box and have get
: connected fine but have very slow response.
: Running ifconfig I see that I am getting about a 40-50% Rx frame error
: count.
I'd check for other devices that might be using the modem port or
interrupt. cat /proc/ioports and cat /proc/interrupts. Or a device that
may keep interrupts off too long for it's data transfer (e.g. IDE HD).
The hdparm program might help with this. I'd also check the device file
configuration as compared to the speed at which you ask pppd to get data.
And I'd check the UART type too, to make sure it's the same type as the
UART the modem actually uses.
Add the pppd option debug and look in hte pppd log file, here it's
/var/log/debug but it varies with distribution. Log files are configured
in /etc/syslog.conf . If nothing looks unusual in the link negotiations
beyond fcs error(s) then add the pppd option kdebug 7 and see what you
get, sometimes you can determine the source of hte trouble this way.
If you moved to a 2.2.x series kernel then make sure you upgraded
net-tools (including ifconfig) as the Changes file says.
: Anyone seen this before? I'm having trouble relating frame errors to a
: modem.
IP frames pass through the modem in a PPP connection.
--
Clifford Kite <kite@inet%�port.com> Not a guru. (tm)
/* Better is the enemy of good enough. */
------------------------------
From: Mark Evans <[EMAIL PROTECTED]>
Subject: Re: DSL filtering ports
Date: Thu, 1 Jul 1999 14:42:00 +0100
Scott Sweeting <[EMAIL PROTECTED]> wrote:
> "Pacific Bell Internet Services filters out all non-IP protocols for DSL
> customers, however, this does not guarantee the security of your
> computer or LAN. If file and print sharing is not required on your
> computer or network, we recommend that you turn it off as a minimum
> security solution."
Sounds like this is written to be understood best by Windows users.
> What bothers me is the filtering of non-IP protocols. Does that mean
> that IP Masquerading won't work, or does it mean that things like SMB
Since it is IP it should work fine, as should anything tunneled over IP.
Don't expect IPX or Appletalk to work though.
> and the like won't be accessable from outside the LAN? Does anyone know
> about PacBell specifically?
--
Mark Evans
St. Peter's CofE High School
Phone: +44 1392 204764 X109
Fax: +44 1392 204763
------------------------------
From: Tom Goodale <[EMAIL PROTECTED]>
Subject: 3COM 3CCE589EC
Date: Thu, 01 Jul 1999 16:48:14 +0200
Hi,
has anyone managed to get a 3COM 3CCE589EC card these working ?
A 3C589C works fine in teh machine (RH 6.0), but whilst the log
file reports that the card has been detaected, and correctly reports
10baseT networking, the network is still invisible 8-(
Any ideas ?
Thanks in advance,
Tom
------------------------------
From: Jonathan Guthrie <[EMAIL PROTECTED]>
Subject: Re: WIN95>LINUX>WIN98>NT4Proxy?
Date: 1 Jul 1999 04:24:38 GMT
eldee <[EMAIL PROTECTED]> wrote:
> In article <7ld4vp$6et$[EMAIL PROTECTED]>,
> Jonathan Guthrie <[EMAIL PROTECTED]> wrote:
>> eldee <[EMAIL PROTECTED]> wrote:
>>> Is this Possible? Can I hook up our office computers running Win95
>>> to a Linux box running Apache & Samba, then connect the Linux box to a
>>> Win98 box running Wingate, which in turns connects and has an account
>>> on the NT4 Proxy the company is running to access the Internet?
>> From Linux's perspective, all you have to do is set the gateway to the
>> IP address of the box running Wingate.
> But what should I be running on the Linux box? Apache has a module for
> proxy, squid sounds like it might be what I'm looking for, and
> IPMasquerading sounds like ever so much fun....Frankly, I can't figure
> out what I should be using.....erg.
Do the Win-95 computers need to access the Internet through the Linux box?
It was clear from your post and I assumed that they could talk directly to
the NT4 box.
If they can speak Microsoftish Proxy whatever, then you set up on the
Linux box whatever services you want the Linux box to provide.
If they can't talk directly to the NT4 box, then what you want to set up
on the Linux box depends upon what kind of access you want those Win95
boxes to do. Squid will allow them to do Web pages and FTPs and a couple
of other things, but won't allow others. If Telnets and Quake are needed,
then you're probably going to wind up installing masquerading. I've done
that a couple of times, but not recently.
--
Jonathan Guthrie ([EMAIL PROTECTED])
Brokersys +281-895-8101 http://www.brokersys.com/
12703 Veterans Memorial #106, Houston, TX 77014, USA
------------------------------
From: Mike Hale <[EMAIL PROTECTED]>
Subject: Restricted Telnet
Date: Thu, 01 Jul 1999 14:36:05 GMT
I need to allow users to telnet into my system but would like to have a
couple of restrictions. First, I don't want them to be able to leave
their home directory. The second part of it is I would like to control
what they can and can't run. ncFTPd does this something very similar
with ftp access. I just need to know how to setup a linux system to do
the above or find a client like ncFTPd for telneting in. If anyone can
offer any suggestions, let me know. I'm fairly new at this so that is
why I'm asking for help. I looked through the security HOWTO but it
didn't discuss what I want to do.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Anthony D. Tribelli" <[EMAIL PROTECTED]>
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
Date: 1 Jul 1999 18:06:58 GMT
In comp.os.linux.advocacy [EMAIL PROTECTED] wrote:
> Who are you to *demand* anything?
> More to the point, I really wish the US lusers would stop it with the "We
> pulled your ass(sp) out of the fire in WWII" bollocks.
You seem to be the equal of those 'lusers' you complain about, you merely
have the opposite polarity. While the US probably did not save Britain, we
certainly did save many British lives. Perhaps your father or grandfather?
Your nation would most likely still be with us, but perhaps you would not
be had it not been for US participation.
> The USA was *supposedly* an ally from BEFORE the war...
> So, Mr Taylor... What year was the start of WWII again??? 1939? Or 1942?
> WHERE WERE YOU LOT THEN?
Keeping Britain armed and fed. There was also our 'secret' war against the
German submarines that pre-dated Pearl Harbor.
Tony
==================
Tony Tribelli
[EMAIL PROTECTED]
------------------------------
From: Nico Tranquilli <[EMAIL PROTECTED]>
Crossposted-To: comp.unix.programmer,comp.os.linux.development.system
Subject: select always modifies fd sets
Date: Thu, 01 Jul 1999 16:51:59 +0200
select on a non-blocking socket doesn't seem to work exactly as it
should
under Linux. The man page says:
"... On error, -1 is returned, and errno is set appropriately; the
sets and timeout become undefined, so do not rely on their
contents after an error."
Now, if the timeout value is 0 (which causes select to return
immediately)
and select is used to watch if the socket is ready for writing,
it seems that the file descriptor sets are _ALWAYS_ modified on return,
even if the call returns as the result of a timeout.
This piece of code would loop forever (unless I uncomment the // lines)
:
...
... create socket s
... set s to be non-blocking
tv.tv_sec = 0;
tv.tv_usec = 0;
FD_ZERO(&set_wr);
FD_SET(s,&set_wr);
do {
//FD_ZERO(&set_wr);
//FD_SET(s,&set_wr);
totdes=select (s+1,NULL,&set_wr,NULL,&tv);
printf("totdes wr=%d,FD_ISSET(s,&set_wr)=%d\n",totdes,FD_ISSET(s,
&set_wr));
perror("select");
} while (!totdes);
Is this a normal behaviour ?
Thanks.
nico.
--
Nico Tranquilli
------------------------------
From: [EMAIL PROTECTED] (Timothy Kelley)
Subject: Re: Linux as a real firewall
Reply-To: [EMAIL PROTECTED]
Date: Thu, 01 Jul 1999 18:18:48 GMT
On Thu, 01 Jul 1999 13:12:02 GMT, "GC" <[EMAIL PROTECTED]> wrote:
>Re-building our company's WAN and allowing internet access from one point to
>all. I have a 4 pc network and @home network here which uses Linux and
>ipfwadm to protect the pc's at the house, and it works fine.I want to use
>the same for my business. I have about 500 users total scattered around. Use
>is not heavy except e-mail, and about 50 people who may do research, etc.
>Any reason NOT to use Linux for this? I have been a big booster of Linux
>since 1.0.x kernel, but have never deployed it at work for fear that "you
>get what you pay for" will catch up with me. But I can't stand giving money
>to Microsoft. The alternative is something like Eagle on NT.
>
>Any Linux firewall horror stories? Any great successes?
>
>I have also tried and like the linux Router Project stuff...any comments on
>that?
A lot of people use this, although I would reccomend ipchains/linux
2.2.
I am about to put in a linux firewall for about 300 users ...
There are some good resources here:
http://members.home.net/ipmasq/
... and here is a sample firewall which you can modify for your site.
http://www.nerdherd.org/ipchains/
------------------------------
From: [EMAIL PROTECTED] (Timothy Kelley)
Subject: Re: How to configure News Server
Reply-To: [EMAIL PROTECTED]
Date: Thu, 01 Jul 1999 18:27:47 GMT
On Thu, 01 Jul 1999 15:46:02 +0200, ceb <[EMAIL PROTECTED]>
wrote:
> Hello,
>
> I want to set up News Server on Linux redhat 5.2
> After the install of linux, I have the INN deamon, but when I launch
>Netscape News client, I have this response :
> "You have no permission to talk"
>
> What can i do ?
> Where configure the differents newsgroups ?
>
> Thanks for help me
creating newsgroups: man ctlinnd (it's very easy)
access configuration: man nnrp.access
nnrp.access is in /etc/news/
Setting up a news feed is another matter, a bit more complicated.
Try news.software.nntp for more detailed questions.
Also:
http://www.isc.org/view.cgi?/products/INN/index.phtml
http://www.mibsoftware.com/userkt/inn/
------------------------------
From: [EMAIL PROTECTED] (Dustin Puryear)
Subject: Re: Can't Telnet
Reply-To: [EMAIL PROTECTED]
Date: Thu, 01 Jul 1999 18:28:42 GMT
On Tue, 29 Jun 1999 20:02:22 +0200, "Tozz" <[EMAIL PROTECTED]> wrote:
>Windows doesn't run a telnet server (althought, there are programs to run a
>telnet server on a windows box).
Such as?
---
Dustin Puryear
[EMAIL PROTECTED]
------------------------------
From: kite@NoSpam.%�inetport.com (Clifford Kite)
Subject: Re: Perl Script
Date: 1 Jul 1999 12:20:31 -0500
[EMAIL PROTECTED] wrote:
: errors. So then I tried to issue the command that it was obiviously
: trying to issue by typing : /usr/sbin/pppd name
: "999999999\@worldnet.att.net" -d connect '/usr/sbin/chat -t 45 -v ABORT
: BUSY ""ATDT*70,6812288 CONNECT""' /dev/modem 57600 noipdefault modem
: defaultroute crtscts
: But still i can't get it to dial out it waits for the ATDT line instead
: of waiting for something else so it can issue the ATDT command. I know
You need to space the chat expect/sends this way:
"" ATDT*70,6812288 CONNECT "\d\c"
This will should dial the modem and wait for CONNECT, delaying 1 second
before handing things back to pppd. The \c suppresses a carriage return
that's otherwise sent and sometimes confuses an ISP.
--
Clifford Kite <kite@inet%�port.com> Not a guru. (tm)
/* My confidence in this answer (X), on a scale of 1 to 10:
|----|----|----|----|----|----|----|----|----|----X
0----1----2----3----4----5----6----7----8----9----10 */
------------------------------
From: "Trigger" <[EMAIL PROTECTED]>
Subject: Re: PPP
Date: Thu, 1 Jul 1999 11:08:53 -0700
I seem to be having the same problem.
I'm running Mandrake 6.0 and Kppp will not connect properly. The modem is
recognized and setup properly. When I dial into my isp, the modem connects,
starts ppp, and then I get the message, "ppp died unexpectedly." None of
the debug settings seem to give me any useful information.
I too could not find the solution at the
<axion.physics.ubc.ca/ppp-linux.html> page
Any ideas?
------------------------------
From: Alexander Atkin <[EMAIL PROTECTED]>
Subject: HELP: I need an Outgoing Mail Cache
Date: Thu, 01 Jul 1999 16:37:56 +0100
I have Slackware 3.5 on an old 486 DX4 100 with a mere 16MB of RAM.
About 200MB of free hard disk space and Samba plus IP maesquerading
running.
Works like a dream, its a file server, printer server and router all in
one.
What I want however is to have offline e-mail.
I can use it for local e-mail addresses such as users on the machine
itself. What I need however if some sort of e-mail cache so that if
someone send an e-mail to the router (which would be a POP3 and SMTP
machine) and the address was on the internet, it would hold the message
until I started up my internet connection via ppp-go.
Demand dialing is NOT an option as I currently have a tight limit on my
online time and so do not want it to be able to connect every time one
of my Windows 95 computers decides to do something stupid such as online
registration.
I have tried just sending an e-mail while its offline but it cannot
resolve to my ISPs DNS server and so returns with an error.
Would having a caching DNS server help this as i also would like one of
these as well to help speed up DNS especially seeing as my ISPs DNS
server is often very slow.
Alex.
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
Date: 1 Jul 1999 14:35:56 GMT
In comp.os.linux.misc "Bob Taylor" <[EMAIL PROTECTED]> wrote:
= And how do you know this actually happened? Were you present? You read
= it in a book written by an American hater? On behalf of the Americans
= who died saving your sorry ass in WWII, I *demand* a retraction and
= appology for such a vicious attack!
Who are you to *demand* anything?
More to the point, I really wish the US lusers would stop it with the "We
pulled your ass(sp) out of the fire in WWII" bollocks.
The USA was *supposedly* an ally from BEFORE the war...
So, Mr Taylor... What year was the start of WWII again??? 1939? Or 1942?
WHERE WERE YOU LOT THEN?
And don't come back with any balls about the US helping to rebuilt the
infrastructure in Britain with lots of money, because those were LOANS,
which we paid back and owe you NOTHING on that anymore.
--
______________________________________________________________________________
|[EMAIL PROTECTED] | |
|Andrew Halliwell | "ARSE! GERLS!! DRINK! DRINK! DRINK!!!" |
|Principal subjects in:-| "THAT WOULD BE AN ECUMENICAL MATTER!...FECK!!!! |
|Comp Sci & Electronics | - Father Jack in "Father Ted" |
==============================================================================
|GCv3.1 GCS/EL>$ d---(dpu) s+/- a- C++ U N++ K- w-- M+/++ PS+++ PE- Y t+ 5++ |
|X+/++ R+ tv+ b+ D G e>PhD h/h+ !r! !y-|I can't say F**K either now! >*SULK*<|
==============================================================================
------------------------------
From: "Andrey Smirnov" <[EMAIL PROTECTED]>
Subject: Re: Linux as a real firewall
Date: Thu, 1 Jul 1999 09:00:05 -0700
Here is a commercial firewall based on Linux: http://www.watchguard.com
If they are able to use Linux in firewall, then you should be able to do so,
unless you need a complete solution with management, then check wahtchguard
out.
Good luck!
GC wrote in message ...
>Re-building our company's WAN and allowing internet access from one point
to
>all. I have a 4 pc network and @home network here which uses Linux and
>ipfwadm to protect the pc's at the house, and it works fine.I want to use
>the same for my business. I have about 500 users total scattered around.
Use
>is not heavy except e-mail, and about 50 people who may do research, etc.
>Any reason NOT to use Linux for this? I have been a big booster of Linux
>since 1.0.x kernel, but have never deployed it at work for fear that "you
>get what you pay for" will catch up with me. But I can't stand giving money
>to Microsoft. The alternative is something like Eagle on NT.
>
>Any Linux firewall horror stories? Any great successes?
>
>I have also tried and like the linux Router Project stuff...any comments on
>that?
>
>-George C
>
>
>
------------------------------
From: [EMAIL PROTECTED]
Subject: Fun with mail routing
Date: Thu, 01 Jul 1999 18:29:05 GMT
Here's what I got:
Redhat Linux box using NAT to serve an internet connection to an
internal network. The internal network is a Class C network
(192.168.1.0-192.168.1.255)
Here's what I want to do:
I have multiple remote e-mail accounts on different servers so I would
like the linux box do download all my mail. Then to view it I want to
use a mail client on a computer on the network and just download it off
the linux box.
Can this be done and if it can how do I do it?
Thanks in advance.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: =?iso-8859-1?Q?Bj=F8rn?= Reese <[EMAIL PROTECTED]>
Crossposted-To: comp.unix.programmer,comp.os.linux.development.system
Subject: Re: select always modifies fd sets
Date: Thu, 01 Jul 1999 16:06:36 +0000
Nico Tranquilli wrote:
> Is this a normal behaviour ?
Yes.
------------------------------
From: [EMAIL PROTECTED] (Terry Carmen)
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
Date: Thu, 01 Jul 1999 14:56:00 GMT
On 30 Jun 1999 15:32:01 -0500, James Lee <[EMAIL PROTECTED]> wrote:
>In comp.os.linux.misc John Hughes <[EMAIL PROTECTED]> wrote:
>
>: Encarta is a Microsoft product. They can edit it as they please.
>
>Does it mean that M$ has the right to revise history,
>or change facts?
It means that they can say absolutely anything that they feel like,
including revising old history, rewriting current events, or just
plain make stuff up.
It's up to the reader to decide if they believe it or not.
Terry
"It's much easier to develop software using actual technology, instead of just made-up
stuff."
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
