Linux-Networking Digest #800, Volume #11 Tue, 6 Jul 99 16:13:36 EDT
Contents:
No such pid on shutdown, Samba (Nowhere Man)
Re: Sorry, how to fend other attack us from outside ("Cliff")
Configuring another ethertap device? (Mark Price)
takes long time to connect via telnet. ("Fredrik Lindstr�m")
Re: conversion (John Assalone)
Re: linux as router to self - colo setup (Rich Roth)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark? ("Bob Taylor")
Re: Incoming IP limiter script on daily basis: @ 300MB RX traffic, (Mark Price)
Re: Private network, 1 machine all RX packets "error" status as reported by ifconfig
("David Means")
Need help with static routes (Ron Cadavero)
Re: rc.firewall / security ("David Means")
Re: Running 2 modems ("Tony Platt")
Re: @home Cable modem & running web server (Jim Roberts)
Re: takes long time to connect via telnet. (Jim Roberts)
Re: NT pings my DNS on Login... ("Cliff")
Re: Cross-over cable between NT and Linux (joost)
Help! with error messages. (Chip Transisto)
Re: IP Packet filtering ethernet bridge on Linux? (Ben Russo)
Re: no lookup until dialin ("Bob Glover")
Re: Linux won't disconnect... ("Bob Glover")
PPP Netcom Mindspring Disconnect (Marsha R. Mier)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Nowhere Man)
Subject: No such pid on shutdown, Samba
Date: 6 Jul 1999 17:04:05 GMT
Help!
My Samba doesn't seem to be working, as I get no response from the command:
smbclient -L <address>
I can ping <address> ok.When I do a shutdown, and it comes to smbd, it says
"no such pid". It also says this at other places. What does "no such pid"
mean? I set up Samba according to Ying Zhang's SAMBA SERVER STEP BY STEP
GUIDE. It worked immediately after the setup, but has not worked since the
first time I rebooted afterwards.
Any help would be appreciated.
Thanks,
David Rogers
------------------------------
From: "Cliff" <[EMAIL PROTECTED]>
Subject: Re: Sorry, how to fend other attack us from outside
Date: Tue, 06 Jul 1999 18:51:03 GMT
A ping to your network is not necessarily an attack, but since they are
pining a broadcast address I can see why you are concerned. To block pings
you can use the ipfwadm or ipchains programs. Look at the man page for each
to get specifics. A complaint to the ISP of your intruder may also be in
order. According to the IP address you gave you should complain to:
TimeWarnerCable-RoadRunner-Aduval-mcr2 (NETBLK-RR-AUS-DUV2)
12012 North MoPac Expressway
Austin, TX 78758
US
Netname: RR-AUS-DUV2
Netblock: 24.93.62.0 - 24.93.62.255
Coordinator:
Stanek, Matthew (MS256-ARIN) nomailbox@NOWHERE
512-485-6100
Domain System inverse mapping provided by:
SWORD.EXCALIBUR-GROUP.COM 204.189.87.129
STONE.EXCALIBUR-GROUP.COM 204.189.87.68
I got this by running a whois query on the IP address. You may want to
familiarize yourself with the whois man page also. It is a very handy tool.
--
-Cliff
Views expressed are my own and not necessarily those of my employer
Concordia Net, Inc. When replying via email please use; cwheat at concordia
dot net not
root@localhost
yang kung wrote in message <[EMAIL PROTECTED]>...
>These are some people attack our lan from Internet.
>Because we use Internet accounting by out and in flow.
>Somebody seems come from US (24.93.62.83)
>ping our LAN (X.X.X.255) every early morning about one hour.
>It seems to be easy to stop it
>But we have no idea about it
>Would you mind teach us how to do it?
>All we konw , we need do it from hardware software or OS
>(how to stop answering it)
>thank you very much.
>thank you.
>
>ps:We had ask our ISP stop it for us, but the answer is they can not
>stop it.
>
>
------------------------------
From: Mark Price <[EMAIL PROTECTED]>
Subject: Configuring another ethertap device?
Date: Tue, 06 Jul 1999 10:57:29 -0700
Hi People,
Anyone played around with the ethertap devices ? I have one configured
and up and running with Tunnel Vision (tap0). I now need another device
tap1. The device exists in /dev, how do I get the kernel to instatiate
this other device.
Tried ifconfig tap1 up, get no such device error. insmod ethertap,
obviously comes back and tells me the module is already installed.
Any help appreciated, as is copying a reply to my email address.
Cheers, Mark.
------------------------------
From: "Fredrik Lindstr�m" <[EMAIL PROTECTED]>
Subject: takes long time to connect via telnet.
Date: Tue, 6 Jul 1999 20:40:51 +0200
Hi,
Got a problem on a linux box, RH6 (tried with RH5.2 too, same problem).
It takes up to a minute to connect via telnet, to get the login prompt., why
is that?
Everything else works fine, and telnet goes as it should after the
loginprompt.
Help!
Regards Fredrik
------------------------------
From: John Assalone <[EMAIL PROTECTED]>
Subject: Re: conversion
Date: Tue, 06 Jul 1999 14:08:03 -0400
FTO wrote:
>
> Are there any programs that can convert a Linux or Unix spreadsheet into
> excel. I need to do this at work because unfortunately we use office97 in
> the office.
>
> Thanks
StarOffice 5.1
------------------------------
From: Rich Roth <[EMAIL PROTECTED]>
Subject: Re: linux as router to self - colo setup
Date: Tue, 06 Jul 1999 14:47:49 -0400
John Bell wrote:
> Then it wouldn't hurt to mention that in the original post.
Yeah, probably right, but it was so obvious I didn't think to.
> Care to describe the problem again?
The original post is a bit long to repeat, in short:
I have a box in a colo that has allocated to it a IP address and a block
of IP addresses (totally different class C blocks). All packets to both
get routed to the main IP address by the colo routers, SO the main IP
needs to act as gateway to the other block, and that is how I set it up
but it doesn't work.
SO how do I get the linux box (RHS6) to internally respond to the IP block
so that it sends all packets out via the main IP address.
> Opening up cmd.exe on a known working system, running
> 'route print', and reading the output to compare against
> the _non-working_ Linux system is a good place to start.
> It's not a big leap from 'route add net' etc. after that.
Did all that, (the result is that I what I posted in the original message)
> Let's look at some other things:
>
> - Is the Linux machine configured to act as a router
> (you did check those things off in the kernel config)?
The regular routing functions as enabled.
The kernel config calls it 'IP: optimize as router not host" - I use host, not
router, but this is 'optmized' not 'act' as. (I've got other machines configured
the same that route just fine.
I do have (from menuconfig, note a 2.2.5 kernal, vanilla Redhat 6.0 install)
<*> Packet socket
[*] Kernel/User netlink socket
[*] Routing messages
<*> Netlink device emulation
[*] Network firewalls
[*] Socket Filtering
<*> Unix domain sockets
[*] TCP/IP networking
[*] IP: multicasting
[ ] IP: advanced router
[ ] IP: kernel level autoconfiguration x x
[*] IP: firewalling x x
[*] IP: firewall packet netlink device x x
[*] IP: transparent proxy support x x
[*] IP: masquerading x x
--- Protocol-specific masquerading support will be built as modules. x
[*] IP: ICMP masquerading x
--- Protocol-specific masquerading support will be built as modules. x
[*] IP: masquerading special modules support x x
<M> IP: ipautofw masq support (EXPERIMENTAL) x x
<M> IP: ipautofw masq support (EXPERIMENTAL) x x
<M> IP: ipportfw masq support (EXPERIMENTAL) x x
<M> IP: ip fwmark masq-forwarding support (EXPERIMENTAL) x x
[ ] IP: optimize as router not host x x
<M> IP: tunneling x x
<M> IP: GRE tunnels over IP x x
[*] IP: broadcast GRE over IP x
[ ] IP: multicast routing x
[*] IP: aliasing support x x
[ ] IP: ARP daemon support (EXPERIMENTAL)
[*] IP: TCP syncookie support (not enabled per default) x x
-- (it is safe to leave these untouched) x x
<M> IP: Reverse ARP x x
[*] IP: Allow large windows (not recommended if <16Mb of memory) x x
< > The IPv6 protocol (EXPERIMENTAL
> - Are both interfaces "up"?
Yup
>
> - Are they configured with the proper addresses for the
> subnets that they reside on (address, masking, etc.)?
AFAIK, eth0:1 is the problem, it is:
eth0:1 Link encap:Ethernet HWaddr 00:A0:CC:26:34:F6
inet addr:212.175.123.97 Bcast:212.175.123.127 Mask:255.255.255.224
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Interrupt:10 Base address:0xd000
That is for 212.157.103.96/27 - seems right but I'm not great with netmasks and
Bcast addresses.
> - While we're at it, did you check off "optimize as
> a router" in the kernel config?
See above.
I did check the notes in the config and did:
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 0 > /proc/sys/net/ipv4/conf/all/rp_filter
To enable IP forwarding and disable filtering. Also, our local ISP mentioned
"ethernet forwarding", mean anything to you ??
> - You don't have a dynamic routing daemon like gated
> etc. gumming up the works, do you?
Now that is interesting, don't look like it - no such process anyway.
> Maybe this will be a "good Linux response" for you. A better
> response for someone who bites the hand that tries to feed
> him is "get bent", but I'm in a good mood today and won't
> stoop to that level.
Bites, no, I just have a general rule that I answer beyond the one next step, that
is what I give and what I expect.
This clearly was and I thank you.
> Have a nice day,
And to you, and (I'll have a gret day once I get this figured out.)
--
Rich Roth On-the-Net
[EMAIL PROTECTED] http://www.east.on-the-net.com
~~~ Add Instant Depth to your Website from www.i-depth.com ~~~
~~~ Adding depths to Web presences and Internet providers ~~~~~
------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] ("Bob Taylor")
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Date: Tue, 6 Jul 1999 11:54:58 -0700
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Paul D. Smith) writes:
> %% De Messemaeker Johan <[EMAIL PROTECTED]> writes:
>
> dmj> Jon Skeet wrote:
>
> >> [EMAIL PROTECTED] wrote:
>
> >> > Exactly *what* do you define WWII as? The war against Germany began
> >> > when Britain and France declared war. As far as I am concerned, WWII
> >> > began when the US declared war on Japan and Germany declared war on
> >> > the US.
>
> >> Presumably this means that as far as you're concerned, any wars in
> >> which the US didn't participate never happened at all. How lovely
> >> it must be to live in a world with a more peaceful history than the
> >> real one.
[snip]
> Maybe you guys should let go of your knee-jerk prejudices WRT the
> intelligence and attitudes of U.S. posters, and try to think more
> carefully about what you read before reacting to it.
>
> Quite obviously the original comment meant that it wasn't a _world_
> war until the U.S. declared war on Japan and Germany declared war on the
> U.S. Before that, it was mainly a European war.
Exactly! There were *two* regional wars in progress. Japanese invasion
of China and Germany vs Britian/France. How can this be considered a
WORLD war? Incidentally, a U.S. participation is *not* required for a
world war as is also *any single* nation.
--
+----------------------------------------------------------------+
| Bob Taylor Email: [EMAIL PROTECTED] |
|----------------------------------------------------------------|
| Gnome certainly is (serious competition to the Mac or Windows) |
| ... I get a charge out of seeing the X Window System work the |
| way we intended..." - Jim Gettys |
+----------------------------------------------------------------+
------------------------------
From: Mark Price <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.questions
Subject: Re: Incoming IP limiter script on daily basis: @ 300MB RX traffic,
Date: Tue, 06 Jul 1999 11:36:50 -0700
ipchains -L -v shows the amount of bytes hit by each rule. You could
probably
use that.
Mark.
------------------------------
From: "David Means" <[EMAIL PROTECTED]>
Subject: Re: Private network, 1 machine all RX packets "error" status as reported by
ifconfig
Date: 6 Jul 1999 18:21:27 GMT
Sounds to me like a broken cable. My best advice is to replace the one
that connects to machine 2. (If there's no hub, but a crossover cable
instead)
replace it. If this isn't an option, I would recommend checking the cable
with an ohmmeter to find which wire is loose or disconnected.
Jonathan Mau <[EMAIL PROTECTED]> wrote in message
news:01bec7cb$952d1200$8b99f684@micro139...
> Greetings:
>
> I am new to setting up a network and can't get my 2 machines connected.
> Or more precisely, I had connectivity at one point while playing, but
> I can't get it back now that I am trying to formally set up the system.
>
> Basically, the two machines are exchanging packets, but on one of them,
> all received packets are "error" status as reported by ifconfig.
>
> In desperation suspecting a hardware failure, I swapped ethernet cards
> between the 2 machines, but no difference was noted.
>
> I am using 3c503 cards.
>
> The test noted below was done as follows:
>
> boot both machines
> On each machine, ifconfig >> aFile
> On each machine route >> aFile
> ping 192.168.0.1 (from 192.168.0.2)
> On each machine, ifconfig >> aFile
> ping 192.168.0.2 (from 192.168.0.1)
> On each machine, ifconfig >> aFile
> Combine and edit the files as done below.
>
> Any ideas as to my catastrophic blunder? Is there any information in
> my report that is missing?
>
> All help greatly appreciated.
>
> Jonathan
>
> *************************************************************************
>
> Machine 1, IP 192.168.0.1, a pentium with Redhat 4.2 Kernel 2.0.35(?)
>
>
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> localnet * 255.255.255.0 U 0 0 0
> eth0
> loopnet * 255.0.0.0 U 0 0 0 lo
>
> upon bootup
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:3C:45:68
> inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:0 error:0 dropped:0 over:0 frame:0
> TX packets:0 error:0 dropped:0 over:0 carrier:0 coll:0
> Interrupt:9 Base address:0x300 Memory:dc000-de000
>
> after ping 192.168.0.1 (from 192.168.0.2)
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:3C:45:68
> inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:4 error:0 dropped:0 over:0 frame:0
> TX packets:4 error:0 dropped:0 over:0 carrier:0 coll:0
> Interrupt:9 Base address:0x300 Memory:dc000-de000
>
> after ping 192.168.0.2 (from 192.168.0.1)
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:3C:45:68
> inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:6 error:0 dropped:0 over:0 frame:0
> TX packets:39 error:0 dropped:0 over:0 carrier:0 coll:0
> Interrupt:9 Base address:0x300 Memory:dc000-de000
>
>
> ***********************************************************************
>
> Machine 2, IP 192.168.0.2, a 386 with Slackware 3.4 Kernel 2.0.35
>
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> localnet * 255.255.255.0 U 0 0 0
> eth0
> loopback * 255.0.0.0 U 0 0 1 lo
>
> upon bootup
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:44:39:15
> inet addr:192.168.0.2 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:0 errors:0 dropped:0 overruns:0 frame:0
> TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 coll:0
> Interrupt:5 Base address:0x300 Memory:dc000-de000
>
> after ping 192.168.0.1 (from 192.168.0.2)
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:44:39:15
> inet addr:192.168.0.2 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:0 errors:5 dropped:0 overruns:0 frame:0
> TX packets:5 errors:0 dropped:0 overruns:0 carrier:0 coll:0
> Interrupt:5 Base address:0x300 Memory:dc000-de000
>
> after ping 192.168.0.2 (from 192.168.0.1)
>
> eth0 Link encap:Ethernet HWaddr 02:60:8C:44:39:15
> inet addr:192.168.0.2 Bcast:192.168.0.255 Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:0 errors:39 dropped:0 overruns:0 frame:0
> TX packets:6 errors:0 dropped:0 overruns:0 carrier:0 coll:0
> Interrupt:5 Base address:0x300 Memory:dc000-de000
>
>
>
***************************************************************************
>
>
>
------------------------------
From: Ron Cadavero <[EMAIL PROTECTED]>
Subject: Need help with static routes
Date: Tue, 06 Jul 1999 14:20:39 +0000
I am running Red Hat 5.2 and need advice on setting up the routing info.
I have the machine on a small network behind a cable modem and am able
to ping the other hosts and the modem. I cannot ping anything beyond the
modem, however. I know this has something to do with the way I set up
the routing info. Can someone tell me the best way to set up the
ip/routing on this machine?
TIA,
Ron
------------------------------
From: "David Means" <[EMAIL PROTECTED]>
Subject: Re: rc.firewall / security
Date: 6 Jul 1999 18:13:31 GMT
<[EMAIL PROTECTED]> wrote in message news:7ltb84$iho$[EMAIL PROTECTED]...
> Two questions
>
> 1. I have a script called rc.firewall that takes care of my ip
> masquerading. I put it in the rc.d directory and chmod 700 'ed it.
> Isn't that supposed to start up with the system boot now? It didnt. So
> i tried to run it ( logged in as root ) and it wouldnt. So i copied it
> a /usr/sbin/ppp-fire and ran ppp-fire. It worked. I want it to start
> up with the computer though. How do i do this?
>
In order to get the firewall script to run at startup, you will also need
to put a link to it into the right runlevel directory (/etc/rc.d/rc[0-6].d)
There are various ways of making this happen; the most direct is
# ln -s {firewall-script-path} SnnMadeUpName
Depending on whether you are running X or not, you will want to
have the firewall stuff in both rc3.d and rc5.d or just in rc3.d.
All of my initialization scripts have protection of 755.
> 2. Where might I find a good document to read on Linux secruity and how
> to keep people from looking at my network. Here's the setup, 6 PCs
> connected to a hub along with a linux box that connects to the internet
> via PPP. The PCs are configured with the Linux box as their gateway.
> Internet runs on the LAN. How do i prevent people from entering my
> network via the Internet?
My favorite site for this information is http://members.home.net/ipmasq/
------------------------------
From: "Tony Platt" <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.hardware,comp.os.linux.help,comp.os.linux.misc,comp.os.linux.questions,comp.os.linux.setup
Subject: Re: Running 2 modems
Date: Wed, 7 Jul 1999 04:23:09 +1000
You are looking for EQL
do a search for EQL
Tony Platt
Chris Stigas wrote in message <[EMAIL PROTECTED]>...
>Hello,
>
>I am wondering how to setup, or if it is even possible, to connect 2
>dialup modems to my Linux box, both connected to seperate phone lines,
>and load balance them to double my bandwidth.
>
>How can I do this? or can you point me to a website, or any
>documentation?
>
>Thanks,
>Chris
------------------------------
From: [EMAIL PROTECTED] (Jim Roberts)
Subject: Re: @home Cable modem & running web server
Date: Tue, 06 Jul 1999 19:18:13 GMT
In article <01bec7bf$e66aea40$[EMAIL PROTECTED]>,
"mpratola" <[EMAIL PROTECTED]> writes:
> Hi,
>
> I'm setting up a small network - a Linux box & a w95 machine. The Linux
> box will be used to serve a web page and provice net access to the w95 box.
> To do this cheaply, i was thinking about using a cable modem provider
> (@home). So basically, with 1 IP address, will i be able to run the web
> server and DNS server without problem? The domain name is already
> registered with internic & so i was just going to give them my new server's
> IP (which would be the static IP from @home) for the primary DNS, which
> would then give the web server as being at that same IP. Finally, the w95
> box would be attached via IP Masquarade. Is this going to be possible all
> on one machine with one IP, or am I missing something?
>
> Thanks!
It will work but I suggest you read the @home user aggreement first.
------------------------------
From: [EMAIL PROTECTED] (Jim Roberts)
Subject: Re: takes long time to connect via telnet.
Date: Tue, 06 Jul 1999 19:20:15 GMT
In article <7ltilo$v7v$[EMAIL PROTECTED]>,
"Fredrik Lindstr�m" <[EMAIL PROTECTED]> writes:
>
> Hi,
>
> Got a problem on a linux box, RH6 (tried with RH5.2 too, same problem).
>
> It takes up to a minute to connect via telnet, to get the login prompt., why
> is that?
> Everything else works fine, and telnet goes as it should after the
> loginprompt.
> Help!
>
> Regards Fredrik
>
DNS lookup. To avoid this, put the client IP/name in the /etc/hosts file of the
server.
Jim
------------------------------
From: "Cliff" <[EMAIL PROTECTED]>
Subject: Re: NT pings my DNS on Login...
Date: Tue, 06 Jul 1999 18:38:13 GMT
Scott Weber wrote in message <[EMAIL PROTECTED]>...
>
>After cleaning out all the TCP/IP stuff that Windows sends out, which
>"wakes up" the linux box, I've got one last problem. As soon as I
>log in to NT, it sends out a ping (ICMP:Echo request) to each DNS
>listed on the network setup. This triggers diald to dial into my
>ISP everytime.
>
>Why does it ping? It didn't when it dialed in manually, otherwise
>I'd get that dial internet request box everytime I log in.
>
Interesting, I have both NT 3.51 and Win95 systems on my LAN and it
doesn't give the same behavior. I suspect it might be related to WINS. Are
you using it? What mode are your windoze boxes in? (winipcfg | more info |
node type) It may also be related to another protocol that's bound to the
nic. The only behavior I have seen like that is with Win98 attempting to
make a multicast connection upon boot.
--
-Cliff
Views expressed are my own and not necessarily those of my employer
Concordia Net, Inc. When replying via email please use; cwheat at concordia
dot net not
root@localhost
------------------------------
From: joost <[EMAIL PROTECTED]>
Crossposted-To: comp.os.ms-windows.nt.admin.networking
Subject: Re: Cross-over cable between NT and Linux
Date: Tue, 06 Jul 1999 21:11:44 +0200
David Means wrote:
> From your partial report, you may well have a clobbered cable. The
> Linux box reports 0 packets received, even though it (successfully)
> transmitted 31. You should look at the equivalent statistics on the NT
> box (sorry, I know *nothing* about NT commands), and see if the
> packets are getting received at the NT box, and whether it thinks that it
> has
> successfully transmitted replies. This will tell you which half of your
> cable
> path is busted.
>
Sending packets succesfully does not mean they are received by anyone. Pinging
is a two-way test with ICMP packets. One option is to use the Linux ipfwadm (or
ipchains in newer kernels) command program to count any incoming packets at that
interface. Using UDP packets would be much better, but you need compatible
software on both machines.
Joost ruijsch
------------------------------
From: [EMAIL PROTECTED] (Chip Transisto)
Subject: Help! with error messages.
Date: Tue, 06 Jul 1999 19:45:34 GMT
Reply-To: Chip Transisto
I use RH6.0. My computer crashes about once every two weeks. The
screen shows the following messages. Does anyone have any idea about
what is going on? How do I correct it? Thanks
out of memory for smbd.
out of memory for pump.
out of memory for sendmail.
PAM_pwdb[21164]: (login) session opened for user ??? by (uid=0)
PAM_pwdb[21164]: (login) session closed for user ???
INIT: PANIC: segmentation violation! giving up..
------------------------------
From: Ben Russo <[EMAIL PROTECTED]>
Subject: Re: IP Packet filtering ethernet bridge on Linux?
Date: Tue, 06 Jul 1999 07:50:48 -0400
Thanks!
Jake Angerman sent me this link to a whitepaper about this subject:
http://support.broadjump.com/cerberus
-Ben.
Rafal Podeszwa wrote:
> Ben Russo wrote:
>
> > In effect I want the two Linux boxes to act as packet filtering
> > cables between the routers and the switches.
> >
> > Is this possible? Is anyone doing it?
>
> There is an unofficial 2.2.x kernel patch that enables bridge filtering
> available
> at http://ac2i.tzo.com/bridge_filter/
>
> It creates another chain (bridgein) that enables filtering during
> bridging. It works well for me but you may also consider using
> proxy-ARP.
>
> Rafal
------------------------------
From: "Bob Glover" <app1rtg_at_air.ups.com>
Subject: Re: no lookup until dialin
Date: Tue, 6 Jul 1999 15:31:40 +0100
I thought I remembered someone saying that Netscape does not use the Linux
resolver calls, but has it's own which do not honor the hosts file or lookup
order. It that's true, then the only way around that would be to set up
your own name-server for your intranet.
Flavio Curti wrote in message <[EMAIL PROTECTED]>...
>
>
>Juergen Heinzl wrote:
>>
>> In article <[EMAIL PROTECTED]>, Flavio Curti wrote:
>> >hi
>> >
>> >i have two linux boxes, 10baset-connected. one of them runs apache/SSL
>> >(let's call this host apa). the same machine is my
>> >internet-dialup-machine. i use pppd in demand-mode to open the
>> >connections dynamic. this all works fine. BUT... on my client-box, the
>> >default home-page is https://apa/. so, i open netscape, and then it
>> >hangs, connects to the internet and loads then the page... this makes no
>> >sense to me... i don't wan't to dialup just for checking my
>> >intranet-server... resolv.conf is hosts, bind on both machines. apa is
>> >in every hosts file...
>
>> Change the No Proxy For: ... entries.
>i don't use proxies... host apa is masquerading my class C subnet...
>thanx
------------------------------
From: "Bob Glover" <app1rtg_at_air.ups.com>
Subject: Re: Linux won't disconnect...
Date: Tue, 6 Jul 1999 15:22:30 +0100
Look at the output of the command tcpdump.
Frank Waarsenburg wrote in message <[EMAIL PROTECTED]>...
>I've got a RH6 box running as masq box on a small homenet, using ISDN to
>connect to my ISP. Usually, things work perfectly well. But sometimes
>(mostly when the kids did some heavy gaming on MSN Gaming Zone) the
>connection won't timeout. Timeout is set for 180 secs. I have forward
>filtering on netbios packages (137-139). Lookup order is host, bind.
>Yesterday, the last computer on the local net was physically switched
>off for over an hour (Only the Linux activity led was illuminated on the
>hub) and the connection was still up, so it MUST be the Linux box
>keeping the connection open, not one of the Windoughs. What can be the
>cause? DNS traffic? (I don't have DNS configured) RIP? Help!!!!!
>
>Frank
------------------------------
From: Marsha R. Mier <[EMAIL PROTECTED]>
Subject: PPP Netcom Mindspring Disconnect
Date: Tue, 06 Jul 1999 11:05:58 GMT
I get as far as
Connect: ppp0 <--> /dev/modem
Then I get
Hangup (SIGHUP)
Modem Hangup
Any help would be appreciated. I am using RedHat Linux pppd 2.3.5 and the Netcom
configurations scripts.
Thanks,
Marsha Mier
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
