Linux-Networking Digest #3, Volume #12 Sun, 25 Jul 99 15:13:43 EDT
Contents:
Netscape slow under Suse 6.1 (Michael L. Rasile)
[Q] IP MASQ, PPP, and MTU 1492 (not 1500), Possible? ("Paul Dugas")
Re: tcpdump and RH6.0 - anyone get it to work? (Coredump)
Re: stopping telnet (Rod Smith)
Re: weird ping (Jerrad Pierce)
Re: TCP/IP login problem (David Crooke)
Re: Please help with my sendmail setup... (DanH)
Re: delay eth1 initialization... why am i getting this?? ("Paul Dugas")
Multiple ISP configuration (julien)
IP forwarding. (Stephen Schwenker)
Samba browsing problem ("William")
Connecting linux-win95 ("�� �� ��")
gateway w/browse-able config, hdware or on-a-floppy (Bob)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (Michael L. Rasile)
Subject: Netscape slow under Suse 6.1
Date: Sun, 25 Jul 1999 16:17:53 GMT
I have used RH 6.0 but presently am using Suse 6.1. Why does Netscape
stall constantly under both distributions? Is there a setting und
Linux that will make Netscape 4.51 retrieve sites faster? I have
compared Netscape under Winbloz 98(sorry for swearing) and it does
seem to load sites faster. Any help will be greatly appreciated. I
don't think it's Netscape, but rather my Linux setup, but I don't know
where to look to fix this, if indeed it is fixable.
Thanks for anything.
Regards,
Mike
[EMAIL PROTECTED]
------------------------------
From: "Paul Dugas" <[EMAIL PROTECTED]>
Subject: [Q] IP MASQ, PPP, and MTU 1492 (not 1500), Possible?
Date: Sun, 25 Jul 1999 11:46:21 -0400
I've got a new internet connection that uses PPP-over-Ethernet and am having
a slight problem. I think I can skip the details except to say that the
result is a 1.5Mb/256Kb PPP link as the external interface of my firewall.
The firewall is running RH5.2 (kernel 2.0.36) and is setup to do IP MASQ.
Most everything is working properly except for http and some ftp transfers.
While digging, I cam a cross a line in the IP MASQ FAQ referring to a need
to set the MTU on PPP links to 1500 rather than the smaller numbers people
typically use. This is apparently due to a bug in the kernels IP MASQ
implementation. Anyway, I am unable to set the MTU that high with the PPPoE
link. All connections are made with a mtu=1492 (1500 minus the Ethernet
frame overhead).
So, is there a way around this? Is there a fix in later kernels? I'm at a
loss. My only thought so far is to setup a proxy for http and ftp but I'm
not 100% certain this problem won't crop up with other protocols.
Any information, ideas, or suggestions would be greatly appreciated.
-Paul
--
Paul Dugas
(delete the first token and dot to reply)
------------------------------
From: [EMAIL PROTECTED] (Coredump)
Subject: Re: tcpdump and RH6.0 - anyone get it to work?
Date: Sun, 25 Jul 1999 17:17:27 GMT
In article <1vHm3.140$[EMAIL PROTECTED]>, Bryan
<Bryan@[EMAIL PROTECTED]> wrote:
>mine is broken. rebuilt from sources - still broken.
>
>has ANYONE gotton mandrake/redhat 6.0 tcpdump to work (on eth0, for example)?
>
>thanks,
>
The only thing I noticed was that it had to be run from root, to work. You can
probably make it run from a user account if you give them read access to some
resources (check the man page for tcpdump).
John
--
[EMAIL PROTECTED]
http://www.enteract.com/~coredump
Stuck in a traffic jam on the Information Superhighway
------------------------------
From: [EMAIL PROTECTED] (Rod Smith)
Subject: Re: stopping telnet
Date: Sun, 25 Jul 1999 16:33:14 GMT
Reply-To: [EMAIL PROTECTED]
[Posted and mailed]
In article <7ndv42$ilo$[EMAIL PROTECTED]>,
"System Administrator" <[EMAIL PROTECTED]> writes:
> how do i stop people from telneting into my system..... which file do i
> need to configure to allow/deny the people to login to my linux box
> (redhat6.0)
If you want to completely disable telnet, most Linux distributions let you
do so by commenting out the telnet line in /etc/inetd.conf. If you want
to permit or allow telnet to operate from some machines but not others,
you can do this by using the /etc/hosts.allow or /etc/hosts.deny files
(try typing "man hosts.allow" for more information). I don't know of any
way to give remote login privileges to some people but not others,
offhand, aside from root, which is restricted for security reasons.
--
Rod Smith
[EMAIL PROTECTED]
http://www.channel1.com/users/rodsmith
NOTE: Remove the "uce" word from my address to mail me
Author of _Special Edition Using WordPerfect for Linux_, from Que
------------------------------
From: Jerrad Pierce <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: weird ping
Date: Sun, 25 Jul 1999 13:32:27 -0400
Firstly, how did you end up trying 55butes as a packet size?
Secondly, it seemd that 55 will never go through, try pinging anywhere with it
(eg mit.edu), no go.
Hope this helps
--
--
Please take the time to answer the simple survey at:
http://www.pthbb.org/cgi.bin/survey/
* __ * .
\ | / . . . . . ((_
_____ . . .
-- / \ -- . . . + . . _/\
oooooooooo. | * . . . * / ;M\_ .
.oooooooooooo.oo. . . . . /\ . / :IMM\
..oooooooooooo..oo. Jerrad Pierce /\ / \ / ;IIWMM
..oooooooooo....... 209 North Street + / \ / \ . / ;IIIIWM
...ooooooooo....... Randolph, MA 02368 / \ \ ___/ :;IIIIIWM
....ooo....o....... / \ \ / :: ;;IIIMI
.....ooo......... http://www.pthbb.org / \ \ : :::;IIIM
..ooooooo.... __________________________ || || ::.....::::::
MOTD on Swee
------------------------------
From: David Crooke <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: Re: TCP/IP login problem
Date: Sun, 25 Jul 1999 15:55:40 GMT
supradave wrote:
>
> To replay to my e-mail, please remove NOSPAM.
>
> I have a problem with my networking and RedHat 6.0.
>
> Let me give a breakdown of my hardware. Asus P2B-F, Int PII450, ATI
> Rage Fury, Netgear 10/100 PCI, SB Live!, 128MB, 20GB HD.
>
> My problem is that I cannot telnet to my machine, either from the
> machine or over the network. I can, however, telnet to the loopback
> address. The same problem exists with ftp. I can ping, traceroute,
> etc. and can ping the IP address (192.168.1.3 if that helps, not that it
> should matter).
So, from another machine, ping 192.168.1.3 works. But telnet doesn't.
You haven't said what telnet does, but I'm guessing one of four things;
two of them require you to actively change the setup from default RH6
install, and one only happens with a corrupt system, so my money is on
1.
One of the following behaviours is observed when "telnet 192.168.1.3" is
tried from a remote system:
1. You get a login prompt, but you cannot log in as root. It says "Login
incorrect" even when you give the right password.
This is NORMAL, and is standard good security practice for Unix-like
OS'es. Create yourself an unpriviledged login account, e.g. "dave" and
that will allow you to login over the network. To get root access over
the network, you must login as "dave" first, and then use tha command
"su" to gain superuser status.
It is possible to allow direct root logins by editing /var/securetty but
this is NOT RECOMMENDED especially if you have any kind of Internet
connection.
2. telnet says "connection refused" and exits immediately
Your machine is configured to reject telnet connections (TCP to port
23). This could be done either with ipchains (kernel firewalling), by
turning it off in /etc/inetd.conf (the TCP/IP config file) or with tcpd
(an access control security wrapper). Undo whichever of these you did!
3. telnet just sort of waits for 30 seconds, then says "could not
connect to remote host"
This is like a network fault; also, ipchains can be used to simulate
this by dropping packets without any reply.
4. It says "connected" and then hangs.
You have something meesed up, maybe a bad copy of telnetd or some
libraries missing. Run RH6 install tool again and select "upgrade all
packages" and it will most likely fix it.
--
David Crooke, Austin TX, USA. +1 (512) 656 6102
"Open source software - with no walls and fences, who needs Windows
and Gates?"
------------------------------
From: DanH <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.security
Subject: Re: Please help with my sendmail setup...
Date: Sun, 25 Jul 1999 13:27:14 -0400
Eric Wirt wrote:
>
> I have a machine that is hosting e-mail for about 25 clients who masquerade
> behind it, and also for another 25 persons who dial into the net through
> normal ISP's such as MSN, AOL, Eros, etc...
>
> Right now, the sendmail dameon on my server is setup so that it relays ANY
> mail that is thrown at it. Most of my users who dial into the Internet
> normally need to be able to relay mail fr/ my machine, but I do not want
> just ANYONE to be able to. I have looked at some MAN and HOW-TO pages, and
> have found out how to restrict sendmail to only allow mail to be relayed
> from specific domains -- but it appears that I would have to let ALL of AOL,
> or MSN, etc. through in order for this work. I think the best way for me to
> prevent someone from relaying spam off my server will be to restrict
> relaying to only work for mail that has one of several specific addresses in
> the FROM: field of the message. While I realize that this is not completely
> secure, it will at least eliminate MOST random spam relay attacks...
>
> Does anyone have any suggestions or ideas on how to go about doing this?
> ... or know where there is some documentation I could look at that might
> explain it?
>
> Thanks,
>
> Eric Wirt
Try your /etc/mail/ip_allow file. Insert each IP address or a range
like 192.168.1 and let it do the rest.
Dan
--
UNIX - Not just for vestal virgins anymore
Linux - Choice of a GNU generation
------------------------------
From: "Paul Dugas" <[EMAIL PROTECTED]>
Subject: Re: delay eth1 initialization... why am i getting this??
Date: Sun, 25 Jul 1999 12:31:59 -0400
> >when they are both set up to run one will initialize the other will say
> >"delay eth1 initialization" and thats all it will do.
Does it come up later? I've seen this message when the interface device or
something else is not yet available. Maybe it's a PCMCIA device and the
cardmgr hasn't started yet? Maybe it uses DHCP and dhcpcd starts later?
Just a couple thoughts,
-Paul
--
Paul Dugas
(delete the first token and dot to reply)
------------------------------
From: [EMAIL PROTECTED] (julien)
Subject: Multiple ISP configuration
Date: 25 Jul 1999 17:18:04 GMT
Hello,
I'd like to set up mutliple dialup configuration for linux. The goal
is to be able to switch easily between several Internet providers (by
passing a provider name in parameter to ppp-on).
I've succeded in setting up pppd for that but I've got a problem with
name servers. How can I dynamicly set the right dns for a
provider.
Other question, is there a way to switch between different smtp
servers? (I'm using sendmail 8.xx).
Thanks.
Julien
[EMAIL PROTECTED]
------------------------------
From: Stephen Schwenker <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.questions,comp.os.linux.setup
Subject: IP forwarding.
Date: Sun, 25 Jul 1999 13:35:43 -0400
I have RedHat 6.0 with the 2.2 kernel and I have An internal network
using IP masquerading. I want to be able to forward certain port from
the internet to certain servers on the internal network. I want to know
what tool I would use and where I would find it and how to use it.
Thank you for reading this.
Stephen Schwenker
[EMAIL PROTECTED]
------------------------------
From: "William" <[EMAIL PROTECTED]>
Subject: Samba browsing problem
Date: Mon, 26 Jul 1999 01:26:28 +0800
I got problem on browsing Samba server on NT or 9X station. My setting for
smb.conf is:
security=user
When I type "net view /domain" on NT command prompt, I can see the user
group of samba. However, if I type "net view
/domain:workgroup_name_of_samba" then it prompts me that access is denied.
If I type "net use k: \\samba_server\share_name /user:valid_user_in_samba *"
it prompts me that this account is not autherized to login on this station
after I type the correct password.
However, if I change security=server and password server = valid_server_IP
(which is a stand alone NT server), I can browse the share folder name in
network neighbourhood of NT or 95/98. This seems that NT try to browse
samba with loged in account and passwd, but samba refuse and fail to use
anonymous account for browsing. Can any one help me?
------------------------------
From: "�� �� ��" <[EMAIL PROTECTED]>
Subject: Connecting linux-win95
Date: Sun, 25 Jul 1999 17:23:37 GMT
Is there anybody who could deal with my problem?
I made a small LAN with 2 computers, one is linux box, and the other's
run under windows95.
I installed NE2000 compatable lan card on each machines and so far there
seemed to be no problem.
from both linux&win95, ping [own host] worked out!
ping 192.168.1.1 (from linux, IP addr. of linux : 192.168.1.1)
...
...
...
ping 192.168.1.2 ( from win95, IP addr. of win95 : 192.168.1.2)
...
...
...
but when I ping the other IP from either machines, it never gave me any
information but those such as '..Time Out'.. or just nothing.
I think more possibility is that my linux box is a little bit awfully
configurated.
Let me show you some additional information on my situation though
messages/output or
contents of files.
#route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
164.124.244.43 * 255.255.255.255 UH 0 0 0
ppp0
192.168.1.0 * 255.255.255.0 U 0 0
2 eth0
127.0.0.0 * 255.0.0.0 U 0 0
2 lo
default 164.124.244.43 0.0.0.0 UG 0 0
6 ppp0
#netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
164.124.244.43 0.0.0.0 255.255.255.255 UH 1500 0 0
ppp0
192.168.1.0 0.0.0.0 255.255.255.0 U 1500 0
0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 3584 0
0 lo
0.0.0.0 164.124.244.43 0.0.0.0 UG 1500 0
0 ppp0
/etc/hosts
#164.124.101.2 chol.dacom.co.kr
127.0.0.1 localhost localhost.localdomain
192.168.1.1 axl axl.gnu.net myweb homepage
192.168.1.2 apple apple.gnu.net
/etc/sysconfig/network
NETWORKING=yes
FORWARD_IPV4=false
HOSTNAME=localhost.localdomain
/etc/sysconfig/network-script/ifcfg-eth0
DEVICE=eth0
IPADDR=192.168.1.1
NETMASK=255.255.255.0
NETWORK=192.168.1.0
BROADCAST=192.168.1.255
ONBOOT=yes
BOOTPROTO=none
/etc/resolv.conf
search dacom.co.kr
nameserver 164.124.101.2
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
If you want to help me and need more information, just tell me what you
think of.
Summer nights are getting hotter in my small room thanks to two incomplete
computers.
Please help me.
------------------------------
From: Bob <[EMAIL PROTECTED]>
Crossposted-To:
comp.dcom.modems.cable,comp.dcom.xdsl,comp.dcom.isdn,comp.lang.awk,comp.os.linux.hardware
Subject: gateway w/browse-able config, hdware or on-a-floppy
Date: Sun, 25 Jul 1999 13:21:48 -0400
==============F923A742F67C8526A6C553CD
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Stan Claes wrote:
> Check this out:
>
> http://www.buyumax.com/product.asp?sku=876816
>
> it is a simple NAT box ...
>
> Cheerio
>
> Stan Claes
Thanks, Stan. Clifford Helsel actually mentions this same
device, the Ugate $349 from UMAX, or here for $303.69--
http://usa.softonline.com/pk.wcgi/softon/prod/1296336-1
Other brands--get confused--
http://www.uq.net.au/~zzdmacka/the-nat-page/nat_hardware.html
Webramp 700s, protected from Denial of Service Attacks, such as
Ping of Death, SYN Flood, IP Spoofing, and LAND, and optional
encrypted VPN, CyberNot filtering, info at--
http://www.rampnet.com/products/700s/overview.html#table
Webramp 700s prices $344+
http://novabiz.com/mfg590.html
Webramp 700s for $375--
http://209.233.217.22/mcmacb/showdetl.cfm?st=0&st2=0&st3=0&DID=6&Product_ID=27375&DS_ID=2
With Ugate and Webramp you need to plug in a hub or switch
and buy or rent the DSL modem, so figure the extra cost. Here is
one with 4-port hub and ADSL modem built-in for $699, which
is adding $350-$400 for an SDSL modem and 4-port hub--
http://www.cayman.com/presskit/adsl3220.html
There is no reason linux-gateway-on-a-floppy has to use X for
remote or local configuring without a terminal attached. X-
required is unix-only. If that floppy had a gawk script listening
as an http server, it would serve the config forms to a browser on
the local net, just the same as Ugate and Rampnet Webramp. It
takes a patch to make gawk do tcp. I've been playing with it,
ripping stock quotes from yahoo, getting a menu of sodas from
soda machines, ripping site index.html. gawk does tcp and
http and it's far smaller than java, so router-on-a-floppy
with html config is just waiting to be done.
gawk as a simple http server:
http://home.t-online.de/home/Juergen.Kahrs/inet.html#SEC8
I probably shouldn't say this, but gawk is available for
windows , so the same gawk script serving browse-able config
forms would run on a windows-gateway-on-a-floppy, uh, better
make that a CD. Ugate and Webramp have SRAM vdrives.
Someone said windows 98 and NT can have IP aliasing
software running on a PC that does other things. It's
**much safer** to have a dedicated gateway/firewall and
connect users to that.
-Bob
> Clifford Helsel wrote:
> >
> > I'm evaluating routers to install on a home office network to be used
> > to share an ADSL connection and provide a level of protection between
> > the outside Internet and my internal LAN. I'm looking at the Umax
> > Ugate plus product
UMAX UGATE Plus High Speed Cable/ADSL modem sharing gateway and firewall.
with 1 WAN port + 1 LAN Port $349
Features:
UGate-Plus is a Cable/ADSL modem sharing gateway and firewall for
users to immediately access the Internet economically and effortlessly.
There is no software or driver needed to be installed. Configuration is
done through the Web browser completely. Designed for workgroups of up to
253 users, the UGate-Plus can be seamlessly configured to use either cable
modem or ADSL modem to provide high speed Internet connection.
Cable/ADSL modem Sharing Gateway product features:
INDEPENDENT DEVICE
No software or driver needs to be installed. Therefore, no
compatibility issue, users can access UGate-Plus instantly from any
platform.
EASE OF USE
UGate-Plus can be configured and managed through a web browser from
any workstation on the LAN or from Internet.
ONE FOR MANY ACCESS
All users can have Internet access simultaneously via sharing single
IP of Cable/ADSL modem.
DHCP SERVER & CLIENT SUPPORTED
Can act as a DHCP server saving the time to configure each system on
your network. As a DHCP client on the WAN port, it is ready to receive its
configuration information automatically from the ISP.
EXPOSE COMPUTER SERVICES
Allows Web, FTP and other server services on the LAN to be accessible
to Internet users.
UPGRADABLE
Free firmware downloaded from UMAX web site when new release coming
out.
MULTI-SEGMENT LAN SUPPORT
If you have a router, all nodes on other LAN segments can also use
UGate-Plus to access the Internet.
FIREWALL PROTECTION
All incoming data packets are monitored and all incoming server
requests are filtered, thus protecting your network from intruders.
SECURITY ACCESS CONTROL
Supervisor can limit any LAN users to access the Internet or block any
specific port to deny some certain Internet request.
> and SonicWall firewall solutions. One problem I
> > see is that I can't use some common Internet apps such as IRC, IRQ,
> > Cu-SeeMe, and may have problems with RealAudio, etc. From what I've
> > read IP Masquerading doesn't have these problems but it requires that
> > you setup a dedicated Linux machine.
I'm sure Webramp, and probably Ugate, allow you to authorize
port access to specific ports those apps use. They're not on by
default. -Bob
> > I have no more room to add another PC and don't like the idea of
> > running an entire Linux machine just to be a router. Are there any
> > dedicated "in hardware" solutions or will I still have problems with
> > IP Masquerading and these Internet protocols anyway.
> >
> > Thanks,
> > Clifford Helsel
> > [EMAIL PROTECTED]
==============F923A742F67C8526A6C553CD
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
Stan Claes wrote:
<blockquote TYPE=CITE>Check this out:
<p><a
href="http://www.buyumax.com/product.asp?sku=876816">http://www.buyumax.com/product.asp?sku=876816</a>
<p>it is a simple NAT box ...
<p>Cheerio
<p>Stan Claes</blockquote>
Thanks, Stan. Clifford Helsel actually mentions this same
<br>device, the Ugate $349 from UMAX, or here for $303.69--
<p><a
href="http://usa.softonline.com/pk.wcgi/softon/prod/1296336-1">http://usa.softonline.com/pk.wcgi/softon/prod/1296336-1</a>
<p>Other brands--get confused--<a href="http://www.samintl.com/ac/876816.htm"></a>
<p><a
href="http://www.uq.net.au/~zzdmacka/the-nat-page/nat_hardware.html">http://www.uq.net.au/~zzdmacka/the-nat-page/nat_hardware.html</a>
<p>Webramp 700s, protected from Denial of Service Attacks, such as
<br>Ping of Death, SYN Flood, IP Spoofing, and LAND, and optional
<br>encrypted VPN, CyberNot filtering, info at--
<p><a
href="http://www.rampnet.com/products/700s/overview.html#table">http://www.rampnet.com/products/700s/overview.html#table</a><a
href="http://www.rampnet.com/products/700s/overview.html#table"></a>
<p>Webramp 700s prices $344+
<p><a href="http://novabiz.com/mfg590.html">http://novabiz.com/mfg590.html</a><a
href="http://novabiz.com/mfg590.html"></a>
<p>Webramp 700s for $375--<a href="http://novabiz.com/mfg590.html"></a>
<p><a
href="http://209.233.217.22/mcmacb/showdetl.cfm?st=0&st2=0&st3=0&DID=6&Product_ID=27375&DS_ID=2">http://209.233.217.22/mcmacb/showdetl.cfm?st=0&st2=0&st3=0&DID=6&Product_ID=27375&DS_ID=2</a>
<p>With Ugate and Webramp you need to plug in a hub or switch
<br>and buy or rent the DSL modem, so figure the extra cost. Here is
<br>one with 4-port hub and ADSL modem built-in for $699, which
<br>is adding $350-$400 for an SDSL modem and 4-port hub--
<p><a
href="http://www.cayman.com/presskit/adsl3220.html">http://www.cayman.com/presskit/adsl3220.html</a><a
href="http://www.cayman.com/presskit/adsl3220.html"></a>
<p>There is no reason linux-gateway-on-a-floppy has to use X for
<br>remote or local configuring without a terminal attached. X-
<br>required is unix-only. If that floppy had a gawk script listening
<br>as an http server, it would serve the config forms to a browser on
<br>the local net, just the same as Ugate and Rampnet Webramp. It
<br>takes a patch to make gawk do tcp. I've been playing with it,
<br>ripping stock quotes from yahoo, getting a menu of sodas from
<br>soda machines, ripping site index.html. gawk does tcp and
<br>http and it's far smaller than java, so router-on-a-floppy
<br>with html config is just waiting to be done.
<p>gawk as a simple http server:
<p><a
href="http://home.t-online.de/home/Juergen.Kahrs/inet.html#SEC8">http://home.t-online.de/home/Juergen.Kahrs/inet.html#SEC8</a>
<p>I probably shouldn't say this, but gawk is available for
<br>windows , so the same gawk script serving browse-able config
<br>forms would run on a windows-gateway-on-a-floppy, uh, better
<br>make that a CD. Ugate and Webramp have SRAM vdrives.
<p>Someone said windows 98 and NT can have IP aliasing
<br>software running on a PC that does other things. It's
<br>**much safer** to have a dedicated gateway/firewall and
<br>connect users to that.
<p>-Bob
<blockquote TYPE=CITE>Clifford Helsel wrote:
<br>>
<br>> I'm evaluating routers to install on a home office network to be
used
<br>> to share an ADSL connection and provide a level of protection between
<br>> the outside Internet and my internal LAN. I'm looking at the
Umax
<br>> Ugate plus product</blockquote>
UMAX UGATE Plus High Speed Cable/ADSL modem sharing gateway and firewall.
with 1 WAN port + 1 LAN
Port
$349
<p> Features:
<p> UGate-Plus is a Cable/ADSL modem sharing gateway
and firewall for users to immediately access the Internet economically
and effortlessly. There is no software or driver needed to be installed.
Configuration is done through the Web browser completely. Designed for
workgroups of up to 253 users, the UGate-Plus can be seamlessly configured
to use either cable modem or ADSL modem to provide high speed Internet
connection.
<br> Cable/ADSL modem Sharing Gateway product features:
<br> INDEPENDENT DEVICE
<br> No software or driver needs to be installed. Therefore,
no compatibility issue, users can access UGate-Plus instantly from any
platform.
<br> EASE OF USE
<br> UGate-Plus can be configured and managed through
a web browser from any workstation on the LAN or from Internet.
<br> ONE FOR MANY ACCESS
<br> All users can have Internet access simultaneously
via sharing single IP of Cable/ADSL modem.
<br> DHCP SERVER & CLIENT SUPPORTED
<br> Can act as a DHCP server saving the time to configure
each system on your network. As a DHCP client on the WAN port, it is ready
to receive its configuration information automatically from the ISP.
<br> EXPOSE COMPUTER SERVICES
<br> Allows Web, FTP and other server services on the
LAN to be accessible to Internet users.
<br> UPGRADABLE
<br> Free firmware downloaded from UMAX web site when
new release coming out.
<br> MULTI-SEGMENT LAN SUPPORT
<br> If you have a router, all nodes on other LAN segments
can also use UGate-Plus to access the Internet.
<br> FIREWALL PROTECTION
<br> All incoming data packets are monitored and all
incoming server requests are filtered, thus protecting your network from
intruders.
<br> SECURITY ACCESS CONTROL
<br> Supervisor can limit any LAN users to access the
Internet or block any specific port to deny some certain Internet request.
<blockquote TYPE=CITE>and SonicWall firewall solutions. One problem
I
<br>> see is that I can't use some common Internet apps such as IRC, IRQ,
<br>> Cu-SeeMe, and may have problems with RealAudio, etc. From what
I've
<br>> read IP Masquerading doesn't have these problems but it requires
that
<br>> you setup a dedicated Linux machine.</blockquote>
I'm sure Webramp, and probably Ugate, allow you to authorize
<br>port access to specific ports those apps use. They're not on by
<br>default. -Bob
<blockquote TYPE=CITE>> I have no more room to add another PC and don't
like the idea of
<br>> running an entire Linux machine just to be a router. Are there
any
<br>> dedicated "in hardware" solutions or will I still have problems with
<br>> IP Masquerading and these Internet protocols anyway.
<br>>
<br>> Thanks,
<br>> Clifford Helsel
<br>> [EMAIL PROTECTED]</blockquote>
</html>
==============F923A742F67C8526A6C553CD==
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
