Linux-Networking Digest #7, Volume #12 Sun, 25 Jul 99 23:13:36 EDT
Contents:
Re: sendmail and autoreply. (Bill A Bonk)
Re: once I installed the second NIC the first stoped working (Howard Mann)
eth0 - weird timing problem ?? ([EMAIL PROTECTED])
Where do I put in these commands in the Startup Directories? (Brian Lavender)
Re: Access to Nortel Extranet VPN ("John Hardin")
Re: Charter Communications and cable modems ([EMAIL PROTECTED])
LINUX firewall again (Dan)
who is getting this message (B'ichela)
Re: diald -- can I stop it dialling out? ("M. Smith")
once I installed the second NIC the first stoped working (Matt)
Re: IP Masquerading problem (Stephen Drye)
Re: cable modem setup question (Ed Wilts)
Re: PCMCIA and ether card initialization ([EMAIL PROTECTED])
Re: no root login in X ("Andrey Smirnov")
Re: tcpdump and RH6.0 - anyone get it to work? (Coredump)
----------------------------------------------------------------------------
From: Bill A Bonk <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.misc,comp.os.linux,comp.os.linux.admin,comp.os.linux.help,comp.os.linux.questions,comp.os.linux.redhat
Subject: Re: sendmail and autoreply.
Date: Mon, 26 Jul 1999 01:54:22 GMT
I think that there is a "vacation" program that you can use. I think
procmail can do the same thing. You should post in the
comp.mail.sendmail, try to avoid cross posting....
Leonid Fedotov wrote:
> Hi all,
> Could anybody point me the right direction?
>
> I need setup autoreply for some of our users.
> Something like old "vacation"
> How can I do this with current version?
> Redhat 5.2
>
> Thanks,
> Leonid
------------------------------
From: Howard Mann <[EMAIL PROTECTED]>
Subject: Re: once I installed the second NIC the first stoped working
Date: 26 Jul 1999 01:58:09 GMT
In article <[EMAIL PROTECTED]>,
Matt <[EMAIL PROTECTED]> writes:
> I installed my RH 6.0 with my 3c509 NIC in the machine. It worked fine
> untill I installed my second NIC, 3c900B -TPO. Now the second NIC works
> fine, but the first one does nothing. The first card has a green light
> on, but doesn't come up if I run a "ifconfig" command. But if I run a
> "ifconfig eth0" command I will bring up the info. Any help would be
> great, thanks.
Here are two items that address the configuration of two NIC's :
http://metalab.unc.edu/LDP/HOWTO/Ethernet-HOWTO-3.html#ss3.2
http://cesdis.gsfc.nasa.gov/linux/misc/multicard.html
Cheers,
--
Howard Mann
http://www.newbielinux.com
(a LINUX website for newbies)
Smart Linuxers search at: http://www.deja.com/home_ps.shtml
------------------------------
From: [EMAIL PROTECTED]
Subject: eth0 - weird timing problem ??
Date: Mon, 26 Jul 1999 01:08:08 GMT
After a fresh boot, I get the following "broadcast"
(?) over and over:
[ eth0: 21140 transmit timed out, status f4260000, sia 000050cc
ffff0001 fffffff9 fff00000, resetting ...]
If I do [ ifconfig eth0 down ] then [ ifconfig eht0 up ], the report
stops. Think my network function is 'OK', but have not been successful
at pinging the W95 station - or configuring Samba.
Is this a problem ??
------------------------------
From: [EMAIL PROTECTED] (Brian Lavender)
Crossposted-To: comp.os.linux.setup
Subject: Where do I put in these commands in the Startup Directories?
Date: Sun, 25 Jul 1999 12:50:08 GMT
I just got the commands working for IP-Masquerading on my Debian box
which is Sys V init. I am wondering what initialization script I put
these commands in.
Where do I put the following on my Debian System?
echo "1" > /proc/sys/net/ipv4/ip_forward
ipchains -P forward DENY
ipchains -A forward -s 192.168.1.0/24 -j MASQ
brian
--
Brian Lavender
Sacramento,CA
Brie Business Directory - Napa Valley http://www.brie.com/bbd/
(916) 443-6195
"I hate to advocate drugs, alcohol, violence, or insanity to
anyone, but they've always worked for me."
-- Hunter S. Thompson
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Access to Nortel Extranet VPN
Date: Sun, 25 Jul 1999 18:03:12 -0700
[EMAIL PROTECTED] wrote in message <7naot0$6s$[EMAIL PROTECTED]>...
>I am trying to access a Nortel Extranet VPN that is running at the
>company where I work. I am using a Win 95 machine running through a
>Redhat Linux 5.2 firewall which is running at my home. What do I have
>to do to access the VPN through my firewall.
Take a look at:
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Charter Communications and cable modems
Date: Mon, 26 Jul 1999 01:19:44 GMT
A letter to CHARTER COMMUNICATION TV Cable
service:
(for everyone to read)
Your logo says:
"Providing quality cable television to diverse
communities"
but we had your cable service for two months and
the quality of view,
sorry to say, has been worse than any other we
ever seen. The last two
days it became impossible to view any programs or
channels due to
numerous lines, ghosts and simply blue screen.
Tried to call Charter Communications, but
the lines is always busy. Charter Communications
web site has no FEEDBACK option. We
watched videos all weekend. We hope that Charter
Communications refunds us the monthly
fee or provides one month free. If the quality
doesn't improve a lot of
people will be disconnecting from your "quality"
service.
Just wanted to say that it's dishonest (at least)
to announce such logo
when the quality of view is impossibly bad.
Andrew
Jacksonville, NC
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (Dan)
Subject: LINUX firewall again
Date: Mon, 26 Jul 1999 02:24:05 GMT
Still having strife with this firewall thing.
Configuration:
- RH 5.2, all packages installed, kernel is 2.0.37
- local 'net address is 192.168.0.1
- net card is a Vortex/Boomerang 3c500 or something, it's working.
Named eth0.
- other machines on the local net are 192.168.0.whatever (ie
192.168.0.0 nm 255.255.255.0)
- modem ppp connection will dial on demand, IP is dynamic. Name is
ppp0.
- I don't have a local LAN nameserver, nor do I have need for one
- site is physically secure, users are all trustworthy (ie it's at
home :O)
I want the following outcome:
- All local machines can basically pretend they have a direct
connection to the internet, (although using this machine as a 'default
gateway') for purposes of web browsing, ftp, telnet, mail retrieval,
mail sending (to the ISPs SMTP server), ICQ etc... happy to use
passive mode for FTP to avoid having to allow a port 20...
I think I need the following connections allowed, all others denied:
- LAN --> Internet all connections, all ports.
- LAN --> Telnet.. I won't have a monitor on this computer
the connections need to be masqueraded I guess, and there is no way
for me to know what IP the ppp adapter will have. I don't fancy
having the script setting up the firewall rules every time the ppp
connection comes up, processing power is at a premium (this'll be
running on a 386sx/20!!) I hope it's up to it...
I must be able to perform DNS lookups from all the machines, on the
primary and secondary dns's provided by my ISP. I don't want to run a
nameserver on the poor 386 which will be the only machine up pretty
much 24/7, and the local net needs no nameserver.
I wish to use ipfwadm to configure as this is what I have ;oP
Everything else should be right, kernel configured, dialing daemon
I'll figure out last, but setting the rules is causing me immense
problems!! Does anyone have a set of rules they are using in the
same/very similar situation they could email me? Or could they advise
me on the EXACT types of rules I need... I can't seem to nut it out
and I don't know that much about TCP/IP at this point in time... I
want the firewall asap!
Thanks all in advance!!!
Dan
Facts, my opinions, and sometimes bull***t, are all that I express.
reply to [EMAIL PROTECTED]
remove the NOSPAM-....
------------------------------
From: [EMAIL PROTECTED] (B'ichela)
Crossposted-To: comp.os.linux.setup,comp.os.linux.misc
Subject: who is getting this message
Date: Sun, 25 Jul 1999 22:24:07 -0400
Reply-To: [EMAIL PROTECTED]
I have been trying to send messages with Leafnode. but no one
seems to be replying to them. I am on a Domain name Service called
dhis.org. my news-server is on my ISP (actually they are outsourcing
it) my isp is ctol.net. I just set the hostname = ctol.net in my
/etc/leafnode/config I am running a beta of it called leafnode 1.10b2
which has been working here. I also need some one to reply to this so
I can see if my email address of [EMAIL PROTECTED] is working
also as my uplink had a crash about a week ago and I am not totally
sure all is quite right yet. emails from my [EMAIL PROTECTED] arive
here. and mails to [EMAIL PROTECTED] do show up when getpop3 goes to
get them from ctol.net
I also have been awaiting a response to my questions in
alt.linux.slackware reguaring bash 2.03 which also have not even seen
a reply.
btw, if you are interested in dhis.org their website is
http://www.dhis.org The website for my isp is http://www.ctol.net One
of the few remaining ISP's that have shell accounts.
--
A pearl of wisdom from the y2K newsgroups:
=========================================================================
Y2K appears to be the Baby Boomers mid-life crisis, and it has the
potential to be a dandy.
-- Anonymnous --
==========================================================================
B'ichela
N O T E
---------------------
If [EMAIL PROTECTED] don't work try [EMAIL PROTECTED]
------------------------------
From: "M. Smith" <smithm@mvpdotnet>
Subject: Re: diald -- can I stop it dialling out?
Date: Sun, 25 Jul 1999 21:37:32 -0500
Michael McLaughlin <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> I am using diald on RedHat5.2.
>
> The basic functionality seems to work OK. But how can I stop it dialling
> out, seemingly at random.
> On boot up in particular, it activates the modem. But at other times,
> even when I am niot using Netscape it rings out!
Do you (or a client machine on your private network) have any programs
running which either randomly or on a scheduled basis issue an internet
request?
For example, various mail programs can do this in checking mail on a
regularly scheduled basis. Norton Utilities for Windows has an "Internet
Speed" indicator that pings a remote host on a regular basis. ICQ and other
similar programs can cause this also.
The only thing you can do is go through your system and any other PC's which
use the Linux box as a connection to see what programs might be asking for a
connection.
------------------------------
From: Matt <[EMAIL PROTECTED]>
Subject: once I installed the second NIC the first stoped working
Date: Mon, 26 Jul 1999 01:54:53 GMT
I installed my RH 6.0 with my 3c509 NIC in the machine. It worked fine
untill I installed my second NIC, 3c900B -TPO. Now the second NIC works
fine, but the first one does nothing. The first card has a green light
on, but doesn't come up if I run a "ifconfig" command. But if I run a
"ifconfig eth0" command I will bring up the info. Any help would be
great, thanks.
some extra info: 3c509 = eth0
3c900B-TPO = eth1
later,
-Matt
------------------------------
From: Stephen Drye <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading problem
Date: Sun, 25 Jul 1999 22:56:13 -0400
I just eliminated the MTU and MRU options from my 'options' file, and
the problem (which was exactly what the original poster described) is
now fixed.
Might be worth a try if you have those set...
"M.Kiesel" wrote:
>
> > The mtu (max transmission unit), I
> > believe, sets the packet size that particular interface uses.
> > I did find a work around. You must set the mtu on all client
> > computers (don't modify you IP masq server) from which you want
> > to access these sites to 296. In linux do 'ifconfig eth0 mtu
> > 296' and in Win95-98 modify this registry key so its value is 296:
> >HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Class\
> >NetTrans\0000\Max MTU
> Actually, setting all the clients to exactly the MTU the ppp connection
> uses should also help and give slightly better performance.
> ifconfig on the masq server while connected should give you the MTU the
> provider uses.
> For example, my provider seems to use an MTU of 1500 so setting the MTU
> size to 296 would give unnecessary packet fragmentation.
>
> There is a fix for the MTU defragmentation mechanism in the linux kernel
> that is buggy. Look for it on the IP masquerading sites.
--
Stephen Drye
========================================================================
Author of Java Foundation Classes: Swing Reference with Bill Wake
ISBN 1884777678
http://www.manning.com/Drye
http://www.amazon.com
http://www.fatbrain.com
========================================================================
------------------------------
From: Ed Wilts <[EMAIL PROTECTED]>
Subject: Re: cable modem setup question
Date: Mon, 26 Jul 1999 02:54:18 GMT
Steve wrote:
>
> Getting Road Runner installed next Saturday! Can't wait. I have a spare PC
> to use as a server, how should I set this up. The PC is a P133 w/ 64MB RAM,
> 3 GB HD and a 3Com 10/100. I am thinking that I need to add another NIC to
> this box, so one NIC goes to the cable modem and one to my HUB. Anyone out
> there that has done this that can give me some advice it would be
> appreciated!!!! Suggestions on what brand of NIC, is 10/100 needed, how to
> share the single IP address (Proxy, IP mas.), what version of LINUX (Red
> Hat, Slackware, etc.)
Start by reading http://www.cablemodeminfo.com/LinuxCableModem.html for
some links to some howtos.
I strongly suggest that you add a second NIC to your P133 and set it up
as a firewall. For your info, I was rejecting unauthorized connections
within 24 hours of connecting my cable modem.
You don't need 10/100 since your connection will not be able to saturate
a 10mbps link. You can use a cheap NIC - I'm using a $18.99 Trendware
NE2000 clone and it's working fine (I've actually got 2 of these in my
system).
You could use a specialized distribution like the Linux Router Project,
or you could go with one of the standard distributions - it probably
doesn't matter which one.
Throw on RH 6.0, apply the security updates, and you'll be up and
running in no time. Before you connect it to the network, eliminate all
the services in inetd.conf that you don't immediately need, and create a
hosts.deny file that rejects everyone. Set up ipchains to forward your
packets from your internal network to your external network and you'll
have access to the net quickly.
If you have the time, you could read the Linux Administators Security
Guide at http://www.seifried.org/lasg.
If you need sample scripts for hosts.allow, host.deny, or ipchains
rules, feel free to ask.
.../Ed (who got cable modem access 2 weeks ago)
--
Ed Wilts
Mounds View, MN, USA
mailto:[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To: comp.os.linux.portable
Subject: Re: PCMCIA and ether card initialization
Date: Mon, 26 Jul 1999 01:24:13 GMT
> Just read this and it pertains to me as well. Where are (what is the name
> of) the init script(s)?
> Can you email me a copy of what yours looks like?
>
RedHat uses the SysV init stuff. It lives in /etc/rc.d and is fairly
easy to sort out. The numbered dirs relate to the run level and
contain links to the actual scripts, which are in the init.d dir. The
Ks are kills and the Ss are starts. They execute in numerical order
as the system moves from run level to run level.
I am not sure what it is you are asking be emailed, but let me know if
you need anything else.
rick
------------------------------
From: "Andrey Smirnov" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.x
Subject: Re: no root login in X
Date: Sun, 25 Jul 1999 19:34:38 -0700
Hello,
By default remote root login is disabled for security reasons. You can login
as normal user and su to root. If you want you can remove /etc/securetty
file, which contains 'secure ttys' from which root login is allowed, when
this file is removed, you'll be able login as root remotely.
Good luck!
tim <[EMAIL PROTECTED]> wrote in message
news:7nce2v$iag$[EMAIL PROTECTED]...
> Hi !
> I try to connect from a Win Nt 4.0 Workstation with a X-Server emulation
> (XVISION from SCO) to a Linux X-Server by using XDMCP.
> I get the X-Windows login screen, but when I try to login as root,
> I get the message "no remote root login allowed".
> It is no problem for me to login via telnet as root.
> I read the xdm manpage but I couldn't solve the problem yet !
> Thanks for your advice in advance !
>
> tim
>
>
>
>
------------------------------
From: [EMAIL PROTECTED] (Coredump)
Subject: Re: tcpdump and RH6.0 - anyone get it to work?
Date: Mon, 26 Jul 1999 03:07:14 GMT
In article <qvIm3.185$[EMAIL PROTECTED]>, Bryan
<Bryan@[EMAIL PROTECTED]> wrote:
>I -was- root when I tried to run it. here's the error I get:
>
># tcpdump
>tcpdump: socket: Socket type not supported
>
>my only interface is eth0 and that is up and running just fine.
That's the error I saw when I tried to run it from a 'user' account.
As soon as I su'd to root, it ran.
>
>I've been seeing a lot of 'issues' with glibc in this redhat release.
>code that I wrote (and others I know) work fine on solaris and the
>previous glibs (mandrake 5.3/redhat 5.2) but with this 6.0 release,
>things are broken all over the place...
Could be, I don't know. I'm running RH6 'out of box', installed it a couple of
weeks ago to use as a xDSL firewall/router. I haven't done much config yet
even. I did do a 'server' install, which might have autoconfig'd something
differently than what you have.
John
>
>
>Coredump <[EMAIL PROTECTED]> wrote:
>: In article <1vHm3.140$[EMAIL PROTECTED]>, Bryan
> <Bryan@[EMAIL PROTECTED]> wrote:
>: >mine is broken. rebuilt from sources - still broken.
>: >
>: >has ANYONE gotton mandrake/redhat 6.0 tcpdump to work (on eth0, for
> example)?
>: >
>: >thanks,
>: >
>
>: The only thing I noticed was that it had to be run from root, to work. You
> can
>: probably make it run from a user account if you give them read access to some
>
>: resources (check the man page for tcpdump).
--
[EMAIL PROTECTED]
http://www.enteract.com/~coredump
Stuck in a traffic jam on the Information Superhighway
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
