Linux-Networking Digest #862, Volume #11 Sun, 11 Jul 99 16:13:33 EDT
Contents:
ACAD for Linux ... ([EMAIL PROTECTED])
ACAD for Linux ... ([EMAIL PROTECTED])
Re: Automating FTP sessions in Linux...?....? ("Michael Smith")
ipchains question ("Robert C. Paulsen, Jr.")
----------------------------------------------------------------------------
From: [EMAIL PROTECTED]
Subject: ACAD for Linux ...
Date: Sat,10 Jul 1999 19:21:33+2000
Look at this web page to learn more about ACAD for Linux !!!
http://209.218.86.64/linux.html
If you know someone who can be interested in that please tell him
or her about this web page.
Thank you for your time.
------------------------------
From: [EMAIL PROTECTED]
Subject: ACAD for Linux ...
Date: Sat,10 Jul 1999 19:21:33+2000
Look at this web page to learn more about ACAD for Linux !!!
http://209.218.86.64/linux.html
If you know someone who can be interested in that please tell him
or her about this web page.
Thank you for your time.
------------------------------
From: "Michael Smith" <[EMAIL PROTECTED]>
Subject: Re: Automating FTP sessions in Linux...?....?
Date: Sun, 11 Jul 1999 15:31:14 -0400
Thanks guys!!! I used Andrey's method and it worked great. I appreciate
the tips on 'expect' and the PERL NET:: modules. I can imagine endless
possibilities w/ both.
In case you are curious, I am using the following scripts/files to give a
static URL to my dyanmic_ip web server:
# getaddr and write into .asp
#!/sh/bin
IP_ADD=`ifconfig ppp0 |sed -e '1d' |sed -e '2,$d' |cut -d':' -f2 |cut -d'
' -f1`
echo "<% response.buffer=true %>" > /etc/ppp/frwd.asp
echo '<html><% response.redirect "http://'$IP_ADD'" %></html>' >>
/etc/ppp/frwd.asp
ftp -n WEB_SERVER_ADDR < ipftp.txt
# end getaddr
# ftpip.txt
user username passwd
cd /net
lcd /etc/ppp
put frwd.asp
close
quit
# end ftpip.txt
Now, to figure out how to get my dialing scr to pause while ppp is
established, THEN run this 'getaddr' script. I WILL figure it out.
Thanks again!
// Michael
------------------------------
From: "Robert C. Paulsen, Jr." <[EMAIL PROTECTED]>
Subject: ipchains question
Date: Sun, 11 Jul 1999 13:44:55 -0500
Can anyone tell me why the ipchains setup below does not block
access to 199.95.207.0 and 199.95.208.0?
The two output rules were copied from the ipchains HOWTO document
and are supposed to block doubleclick.net. But with these rules I
still get date from doubleclick. I can also see the "transferring
data from ad.doubleclick.net" message at the bottom of Netscape's
window.
I used nslookup for ad.doubleclick.net and m.doubleclick.net
(which also showed up in Netscape's "transferring data..."
messages) and the IP addresses match.
doubleclick.net doesn't really bother me much -- I was just
going through the HOWTO to see what I could learn.
# ipchains -L -n
Chain input (policy ACCEPT):
target prot opt source destination ports
DENY all ----l- 192.168.0.0/24 0.0.0.0/0 n/a
DENY all ------ 192.168.0.102 0.0.0.0/0 n/a
Chain forward (policy ACCEPT):
target prot opt source destination ports
user_msq all ------ 192.168.0.0/24 0.0.0.0/0 n/a
Chain output (policy ACCEPT):
target prot opt source destination ports
REJECT all ------ 0.0.0.0/0 199.95.207.0/24 n/a
REJECT all ------ 0.0.0.0/0 199.95.208.0/24 n/a
Chain user_msq (1 references):
target prot opt source destination ports
MASQ all ------ 0.0.0.0/0 0.0.0.0/0 n/a
Note that if I add the rule
ipchains -A output -j REJECT -s 0.0.0.0/0 -d 0.0.0.0/0
it successfully blocks all external access, so I must be close to
getting it right!
I am using the 2.2.10 kernel with ac10 patches. Here are entries
in the relevant sections of the kernel's .config file:
CONFIG_IP_ADVANCED_ROUTER=y
CONFIG_RTNETLINK=y
CONFIG_NETLINK=y
CONFIG_IP_MULTIPLE_TABLES=y
CONFIG_IP_ROUTE_MULTIPATH=y
CONFIG_IP_ROUTE_TOS=y
CONFIG_IP_ROUTE_VERBOSE=y
# CONFIG_IP_ROUTE_LARGE_TABLES is not set
CONFIG_IP_ROUTE_NAT=y
# CONFIG_IP_PNP is not set
CONFIG_IP_FIREWALL=y
CONFIG_IP_FIREWALL_NETLINK=y
CONFIG_NETLINK_DEV=y
CONFIG_IP_ALWAYS_DEFRAG=y
# CONFIG_IP_ROUTE_FWMARK is not set
CONFIG_IP_TRANSPARENT_PROXY=y
CONFIG_IP_MASQUERADE=y
CONFIG_IP_MASQUERADE_ICMP=y
# CONFIG_IP_MASQUERADE_MOD is not set
# CONFIG_IP_ROUTER is not set
# CONFIG_NET_IPIP is not set
# CONFIG_NET_IPGRE is not set
# CONFIG_IP_ALIAS is not set
P.S. My second input rule is because I can't get the 192.168.0.101
system from making incessant DNS requests. It's a Win2000 beta and
the networking configuration is different enough from 95/98 that
I can't find all the places this might be coming from (I think it's
browse mastering).
--
____________________________________________________________________
Robert Paulsen http://paulsen.home.texas.net
If my return address contains "ZAP." please remove it. Sorry for the
inconvenience but the unsolicited email is getting out of control.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
