Linux-Networking Digest #848, Volume #11 Sat, 10 Jul 99 12:13:32 EDT
Contents:
Re: DHCP ("Mark Swope")
Re: linux 6.0 onervaren of 5,6 cd's (Raymonds Doetjes)
Re: Transparent Proxy - ipchains question (Raymonds Doetjes)
Re: Cross-over cable between NT and Linux ("Tom Mehrkam")
Re: How to setup to have a name in front of my domain name (Raymonds Doetjes)
Re: Could Microsoft Cheat On The New Mindcraft Benchmark? (Joseph T. Adams)
Re: squid question (Raymonds Doetjes)
Re: Proxy server vs. IP Masquerade (Raymonds Doetjes)
Re: diald and outlook (Tim Kelley)
Re: disable linuxconf for sendmail.cf, enable for /etc/aliases (Tim Kelley)
Re: Firewall routing table (Raymonds Doetjes)
Re: windows 98 can't see Linux machine using Samba ("Marco Vranken")
Linux threads, sockets , java ([EMAIL PROTECTED])
Re: Why does ethernet hang this system ? (Ray Sanders)
Re: IP masquerading (Tim Kelley)
Client/Server how do I? (Hrishikesh M)
----------------------------------------------------------------------------
From: "Mark Swope" <[EMAIL PROTECTED]>
Subject: Re: DHCP
Date: Sat, 10 Jul 1999 09:29:07 -0500
I'm using NT Server 4.0 SP4 as a dhcp server and
Linux v2.0.36 as a dhcp client on a laptop and a
486 desktop. It works fine - NT thinks it just another
box.
mas
Jos Chan wrote in message <378741ca@grissom>...
>Has anyone out there try to use NT Server as DHCP server and Linux as DHCP
>client?
>I am looking for a solution for a while but only find the other way round.
>
>Thanks
>
>Jos
>
>
>
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: linux 6.0 onervaren of 5,6 cd's
Date: Sat, 10 Jul 1999 16:45:09 +0200
Hmm, werkt dat niet met directe kabelverbding van Windows? Of draait dat
ding allen over Netbeui?
Raymond
J wrote:
> Help ,
>
> ik ben een groentje in linux
> wat is probleem, nog niets,maar wat zeur ik dan.
>
> Ik wil op mijn systeem P2 400 mhz een netwerk bouwen met
> een 386 ibm org.
> P2 400 mhz draait perfect op win98
> 386 draait op win3.1
>
> nu komt het probleem:
>
> Ik heb een kabel interlinck kabel via mijn lpt1 poort
>
> hoe krijg ik dit actief
>
> onder het fucking win lukt het me niet
>
> gaat dit wel onder lunix
>
> welke versie heb ik dan nodig
>
> alvast bedankt voor de reaktie
>
> [EMAIL PROTECTED]
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: Transparent Proxy - ipchains question
Date: Sat, 10 Jul 1999 16:47:38 +0200
The masqing program keeps track of this. Just use the source ip address and
the masq mod will deliver it back to the real source user.
Raymond
Bayee wrote:
> Hi,
>
> I have successfully setup IP Masquerading on my Linux box. I have
> also setup the rule (using ipchains) to redirect all incoming packets to
> route to a local process (a simple socket program) listening at port
> 9002.
>
> % ipchains -A input xxx.xxx.xxx.xxx -j REDIRECT 9002
>
> My question is after graping all these packets, how can the local
> process know where is the original destination that this packet intent
> to go to ? Can I achieve this at socket programing level ? (using
> SOCK_PACKET ?)
>
> Bayee
------------------------------
From: "Tom Mehrkam" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.ms-windows.nt.admin.networking
Subject: Re: Cross-over cable between NT and Linux
Date: Sat, 10 Jul 1999 10:34:37 -0400
Check for link lights on the back of your cards. If only one nic is linked,
then you know that you have a bad cable.
Try this site for a cat 5 refresher.
http://www.monterey.k12.ca.us/~drey/cabling.html
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: How to setup to have a name in front of my domain name
Date: Sat, 10 Jul 1999 16:50:02 +0200
You mean a different dir in the www server?
Then yes this is possible and yes you need DNS (if other clients try to
resolv thos hostnames) if you only use it locally then just add the
hostnames to the /etc/hosts field.
You don't need to register this domain if it is a intranet domain.
You also need to change the httpd.conf file to tell him that each hostname
is a different dir.
Raymond
Daniel Stolk wrote:
> Hi,
>
> I have a domain name, fordfamilymarketing.com, and I want to have names
> in front of it, like venus.fordfamilymarketing.com. I don't want this
> domain to point to a different machine though. I just want it to point
> to a different directory on my server. Will I need to register this
> domain or not? And will I have to setup DNS on my server so that people
> will be able to find that host name?
>
> Thanks, Daniel Stolk
------------------------------
From: [EMAIL PROTECTED] (Joseph T. Adams)
Crossposted-To:
omp.os.ms-windows.nt.advocacy,comp.os.linux.advocacy,comp.infosystems.www.servers.unix,comp.os.linux.misc
Subject: Re: Could Microsoft Cheat On The New Mindcraft Benchmark?
Date: 10 Jul 1999 14:17:58 GMT
Anthony Ord ([EMAIL PROTECTED]) wrote:
: >Another might be that the top X military and/or economic powers had to
: >be involved. It's a good bet that, even back then, the U.S. would be
: >included there even for relatively small values of X.
:
: What if all the top X military and economic powers were all
: in Europe? According to your definition a European War would
: then become a world war.
:
: But, let's go with your definition.
:
: Q. When was the First World War?
:
: A. Sometime in the Napoleonic Era.
Nope. Read about the Roman Republic and Empire. Several of its
conflicts, including the Punic Wars IIRC, were similar in scope, and
even destructiveness to human life (adjusting for the smaller world
population at the time), than WWI. And this in spite of the fact that
Rome was unchallenged, and unchallengable, by any single external
power. Usually, opponents like Attila and Hannibal were able to
profit from the extreme discontent of folks in conquered territories
that Rome already considered to be under control.
Joe
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: squid question
Date: Sat, 10 Jul 1999 16:51:47 +0200
Those so called neighbour proxies, will need to be build on the "squid"
standard BorderManager is not build on that standard. Most procies are but
not BorderManager.
(Dus een typisch geval van pech).
Raymond
Jos van Santen wrote:
> Hi,
>
> I'm trying to set up a system running squid to connect to 3 other proxy
> servers, one running linux (that one works) and 2 others running novell
> border manager. Anyone has experience using bordermanager with squid?
>
> Thanks
>
> Jos.
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: Proxy server vs. IP Masquerade
Date: Sat, 10 Jul 1999 16:55:46 +0200
When you just wanto know the security issues than it's easy. They both are
real save, since they are both proxies.
But masqing/NAT has one big plus on SOCKS, since it is 100% transparant for
your client software, a gateway address is enough to let "90% of the
applications work without any masqing modules".
With SOCS all your client software needs to be SOCSIFIED (the standard socket
calls need to be recompiled using the SOCKS libs). This is not handy in the
admionistering point of view.
I suggest that you go for NAT/Masquerading and leave the SOCKS field.
Raymond
[EMAIL PROTECTED] wrote:
> What are the security issues in using a proxy server such as socks5
> versus implementing Linux IP masquerading? I'm trying to decide between
> the two for connecting a small LAN to the Internet. We basically want
> to block any request initiated from the outside. (We don't have a web
> server or anything else that needs to be visible to the outside world.)
> My readings thus far indicate the proxy server is probably better for this,
> but I must admit that I am not clear on all of the issues involved in
> choosing between these two approaches.
>
> Thanks in advance for any helpful advice...
>
> --
> Roger Blake
> (remove second "g" from address for email)
------------------------------
From: [EMAIL PROTECTED] (Tim Kelley)
Subject: Re: diald and outlook
Date: 10 Jul 1999 14:43:23 GMT
Reply-To: [EMAIL PROTECTED]
On Fri, 09 Jul 1999 13:57:09 GMT, Dustin Puryear <[EMAIL PROTECTED]> wrote:
>When Outlook tries to send an email and there is no connection diald
>is either too slow to bring up a connection or not doing it at all.
>Outlook then gives a "cannot connect to pop server" message. Is there
>a way around this?
I'm not sure if this is the best answer, since I don't know anything
about diald.
My suggestion: use the linux computer to collect all your mail for
your users. You can use fetchmail to do this (it is very good for
collecting mail from several different accounts and for many users).
Put an entry in cron to have fetchmail run every so often; it should
wake up diald OK.
At this point Outlook is talking to the pop3 server on *your* network
and you won't have any problems. Of course you will need to set up an
account on the linux machine for yourself and point outlook to that
rather than your ISP.
------------------------------
From: [EMAIL PROTECTED] (Tim Kelley)
Crossposted-To: comp.mail.sendmail
Subject: Re: disable linuxconf for sendmail.cf, enable for /etc/aliases
Date: 10 Jul 1999 14:44:22 GMT
Reply-To: [EMAIL PROTECTED]
On Fri, 9 Jul 1999 17:12:27 +0200, Pim Zandbergen
<[EMAIL PROTECTED]> wrote:
>I have this linuxconf configuration question:
>
>Disabling sendmail configuration in linuxconf also disables
>/etc/aliases configuration.
>
>I'd like linuxconf to handle /etc/aliases, but not touch my
>sendmail.cf. How do I do so ?
Keep a backup copy of sendmail.cf?
------------------------------
From: Raymonds Doetjes <[EMAIL PROTECTED]>
Subject: Re: Firewall routing table
Date: Sat, 10 Jul 1999 16:58:17 +0200
I must say that I don't get it, you buy 32 offical IP addresses and you stil
use the 192.168.x.x test domain, all your internet clients should use
addresses of your 32 IP addresses provided by the provider, starting with the
router and the firewall.
Raymond
Wong Chun Fung wrote:
> Hi,
>
> ------ 192.168.1.222 192.168.1.193-------------192.168.1.194
> |router|----------------------------|linuxfirewall|------------Internal
> ------ -------------
>
> Now I have a network setup, and want them to go to the Internet.
> I configured a Linux firewall gateway as a security door, but
> I'm confused with the setup of routing table above.
> The situation is:
> The ISP gave me 32 IPs of which the netmask is 255.255.255.224,
> (I just replaced the first 3 dot numbers as 192.168.1 as I
> dun show the real IP here.) as drawn above, what can be the possible
> routing table on the firewall? Of coz the default gateway of all
> internal machines should point to 192.168.1.194. But I can't get
> IP forwarding/routing working on that firewall. I am concern that
> the broadcast IP 192.168.1.192 from the router cannot pass through
> the firewall and thus making the internal network invisible.
>
> Could anyone point out what's wrong? And how to archieve my original goal?
>
> Thx in advance.
>
> Regards,
> Gary Wong
------------------------------
From: "Marco Vranken" <[EMAIL PROTECTED]>
Subject: Re: windows 98 can't see Linux machine using Samba
Date: Sat, 10 Jul 1999 16:47:19 +0200
Hello,
At the moment, I'am also experimenting with win98-linux.
At the moment I still can't ping between win 98 and linux , so I'am not as
far as you yet, but
I've found something that might solve your problem:
***********
Windows98 and Samba
Symptom:
Samba doesn't work with Windows98
Cause:
Windows98 uses only encoded passwords.
Solution:
Use regedit to enter the following new values into the registry :
Enter a new DWORD "EnablePlainTextPassword" at
[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\VNETSUP] and set
this value to 1.
(you can find this on http://www.suse.de/sdb/en/html/ray_win98_smb.html)
Let me know when this works.
Good luck!
Dale Walker <[EMAIL PROTECTED]> schreef in berichtnieuws
[EMAIL PROTECTED]
> I've got a Linux/Samba box and a Win 98 box. I've managed to set it up
> so that Samba can read my Windows machines drives but can't get the
> Network Neighbourhood to see the Linux box. What do I need to do to do
> that?
>
> I can ping, ftp, http and telnet in both directions using either IP
> addresses or host names.
>
> I've no intention of using the Linux box to connect to anything other
> than my Win98 box (it's too slow for modem/dial-up internet access) so
> security isn't an issue.
>
> Am I right in assuming that as I don't need internet access I don't
> need DNS?
>
>
>
>
> ------------------------------------------------------------------
> | Dale Walker London Techno Events |
> | [EMAIL PROTECTED] [EMAIL PROTECTED] |
> | London, UK http://www.sorted.org/london |
> ------------------------------------------------------------------
------------------------------
From: [EMAIL PROTECTED]
Subject: Linux threads, sockets , java
Date: Sat, 10 Jul 1999 14:37:52 GMT
Hi,
I am trying to write a completely java based client server application
that will run over the internet. The web server will be running Linux
and the Kaffe JVM (And no, I don't have a choice, I have to use Kaffe
JVM).
I want to be able to handle literally hundreds of concurrent
connections and am not sure whether to allow my sockets to block (and
therefore have a dedicated thread for each socket...meaning hundreds of
threads) or to set a short timeout for the sockets and "poll" them
often (timeoutwould have to be tiny). Both approaches seem like they
will consume alot of resources as the number of clients climb into the
hundreds, but I am not sure which (or what combination) would reduce
the resource taxing of the server.
I have a few questions regarding the best way to approach this project.
I am familiar with TCP sockets and datagram sockets and am trying to
decide how to minimize the taxing of the server.
Here's my questions:
1) If I use a lot of threads on the server side am I going to be using
up alot of resources? I know that threads can be implemented
differently on different platforms so I am wondering specifically about
java threads on a Linux machine running the basic Kaffe Virtual
machine. I have heard some implementations of threads use little
resources and some use a good deal. How's it work for Linux with Kaffe
JVM?
2) Is there any additional server overhead for using TCP sockets
instead of datagram sockets? I know that datagram is faster, but less
reliable. I am more concerned whether or not having (potentially)
hundereds of TCP sockets is more taxing on memory and CPU that a
comparative number of datagram sockets? (I have not read anything about
different resource consumption for TCP vs. datagram).
3) Since both datagram and TCP sockets both block by default during
calls to recieve data, I plan to set a short a timeout....what is a a
good timeout to set? I mean I have heard that setting a short timeout
can make a program a resource hog, and too long of a timeout will slow
all my clients down... How short of a timeout can I use without
increase CPU usage? (again, assume hundreds of sockets here).
4) Is sitting at a blocking accept call a "busy wait loop", or deos
that term refer to a non-blocking call with a very short timeout?
Please answer as many of these questions as thouroughly as possible as
I am very interested in any and all information on the subject.
Also, if you have any other info that you feel would help with my
problem, please feel free to pass it along.
Thanks in advance for all your help.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Ray Sanders <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.powerpc,comp.os.linux.setup
Subject: Re: Why does ethernet hang this system ?
Date: Sat, 10 Jul 1999 10:54:36 -0400
Reply-To: [EMAIL PROTECTED]
This is getting a little stranger. I went back and booted a
kernel that came from Cort (one of the PReP developers for linuxppc.
It has no problems with ethernet. Works just fine, runs all day
and night with pings and/or FTP.
The working kernel is a 2.1.119 based one...
Linux version 2.1.119 (cort@nemesis) (gcc version egcs-2.90.25 980302
(egcs-1.0.2 prerelease)) #77 Mon Aug 31 01:44:58 MDT 1998
which shows the following interrupt / ioport info ...
/proc/interrupts
CPU0
1: 2672 82c59 keyboard
2: 0 82c59 cascade
5: 1 82c59 Crystal audio controller
13: 33672 82c59 ide0
15: 12669 82c59 PCnet/PCI II 79C970A
BAD: 0 spurious or short
/proc/dma
1: Crystal audio controller
4: cascade
7: Crystal audio controller
/proc/ioports
0000-001f : dma1
0020-003f : pic1
0040-005f : timer
0060-006f : keyboard
0080-008f : dma page reg
00a0-00bf : pic2
00c0-00df : dma2
0170-0177 : ide1
01f0-01f7 : ide0
02f8-02ff : serial(auto)
0376-0376 : ide1
03c0-03df : vga+
03f6-03f6 : ide0
03f8-03ff : serial(auto)
0530-0533 : Crystal audio controller
1000200-1000217 : PCnet/PCI II 79C970A
whereas the one I built (from 2.2.10 distribution) shows...
Linux version 2.2.10 (root@storm) (gcc version egcs-2.90.25 980302
(egcs-1.0.2 prerelease)) #3 Mon Jul 5 11:44:24 EDT 1999
/proc/interrupts
CPU0
1: 561 i8259 keyboard
2: 0 i8259 82c59 secondary cascade
8: 0 i8259 rtc
13: 26490 i8259 ide0
15: 61 i8259 PCnet/PCI II 79C970A
BAD: 1
/proc/dma
4: cascade
/proc/ioports
0000-001f : dma1
0020-003f : pic1
0040-005f : timer
0060-006f : keyboard
0074-007b : PReP NVRAM
0080-008f : dma page reg
00a0-00bf : pic2
00c0-00df : dma2
0170-0177 : ide1
01f0-01f7 : ide0
02f8-02ff : serial(auto)
0376-0376 : ide1
03c0-03df : vga+
03f6-03f6 : ide0
03f8-03ff : serial(auto)
1000200-100021f : PCnet/PCI II 79C970A
Why did the interrupts change from 2.1.119 to 2.2.10 ?
Ray Sanders
rsanders at gate dot net
------------------------------
From: [EMAIL PROTECTED] (Tim Kelley)
Subject: Re: IP masquerading
Date: 10 Jul 1999 14:59:26 GMT
Reply-To: [EMAIL PROTECTED]
On Sat, 10 Jul 1999 06:30:56 GMT, lito lampitoc <[EMAIL PROTECTED]> wrote:
>I have 1 linux server should be connected to the internet and 5
>windows box with different IP addresses, I want my windows box to
>get connected to the server and be able to surf. Can somebody help
>me with this, I need a very basic explanation coz Im really new
>with linux. I'll appreciate a response.
As for networking you'll need to use private ip addresses. Once you
get your internet connection configured on linux you can enable
firewalling with this very simple set of rules:
# This sets default forwarding policy
/sbin/ipchains -P forward DENY
# This enables masquerading for 172.16.0.0/16 network
/sbin/ipchains -A forward -s 172.16.0.0/16 -j MASQ
I used the private class b network in this example.
You can type those in at the prompt of you can add this to rc.local
(location of this file varies from distribution to distribution).
------------------------------
From: Hrishikesh M <[EMAIL PROTECTED]>
Subject: Client/Server how do I?
Date: Sat, 10 Jul 1999 20:40:59 +0530
How do I get Red Hat Linux 5.2 to work in a client/server configuration?
I tried putting a "exec telnet" but it responded with "unable to connect
to server"
or something like that. However telnet works fine once I log in on the
local host.
The server is an Intranet server, and IPs are configured in the
172.66.x.y range.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
