Linux-Networking Digest #136, Volume #12 Fri, 6 Aug 99 19:13:35 EDT
Contents:
Re: Help!!!! (David Mcilroy)
Re: Cable modem dynamic IP (Michael Longval MD)
ipchains on Caldera 2.2 will not work ("Harry DePoy")
Apache Install Problems (mwilson)
Jserv and Apache (Sherman Tsang)
Mail Server ("Stephen Wyndham")
Re: PPTP won't authenticate through ipmasq ("John Hardin")
Re: Problems with netatalk ("Eric Rector")
Questions about Linux, IPMASQ, and @Home... (Neo)
QMail and POP3 configuration problem ("Brian Schwarz")
Re: How to Log attemped connections (Guillaume Filion)
Poor network performance (Telkom)
Linux alternative to NT Load Balancing Service? (R. Christopher Harshman)
Problem seeing Samba server from Network Neighbourhood...... ("Eric")
Re: Firewall attack ("John Hardin")
Re: Howto check if Port # is block by ISP? ("John Hardin")
Re: Poor network performance (Telkom)
NFS problems under linux yet again (Pat)
Re: Problem seeing Samba server from Network Neighbourhood...... ("Lee Sharp")
Re: Linux driver for 3Com card ("Colin Macfarlane")
IP Masquerading with IP Address and Mac Address Restrictions ("B. T.")
----------------------------------------------------------------------------
From: David Mcilroy <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,redhat.networking.general
Subject: Re: Help!!!!
Date: Fri, 06 Aug 1999 14:53:09 -0400
Reply-To: [EMAIL PROTECTED]
Ian Mentiply wrote:
> Is there anyone in the BOSTON area that is very experienced in the
> Installation and configuration of Redhat v 6 and the configuration of
> SAMBA, if there is let me know I am looking for someone who can come in to
> my company for a day or so the help me set up my print services on LINUX.
>
> ------------------ Posted via CNET Linux Help ------------------
> http://www.searchlinux.com
Talk to any(?) MIT student. I'll be there at the end of August, and I run
RH6.0--But still a newbie.
David
------------------------------
From: Michael Longval MD <[EMAIL PROTECTED]>
Subject: Re: Cable modem dynamic IP
Date: Fri, 6 Aug 1999 16:21:28 -0400
Thanks for the info, I will look into it.
Michael J. Longval, MD
[EMAIL PROTECTED]
=============================================
Q: Son, do you know why we are here?
A: Because we love.
My son Jordan, 5 years old, December 1998
=============================================
------------------------------
From: "Harry DePoy" <[EMAIL PROTECTED]>
Subject: ipchains on Caldera 2.2 will not work
Date: Fri, 6 Aug 1999 12:25:26 -0700
This is a stumper...I installed COL2.2 on a IBM netfinity server to use as
a file server/firewall-gateway to the internet. I have a working DSL
connection, but I cannot get ipchains to work with COL 2.2. I have followed
the howto's, recompiled the kernel, checked for ipchains being installed and
still it will not work. The error message "ipchains: Protocol not available"
comes up after I run rc.firewall. When I type this: ipchains -List, I get
this: "ipchains: Incompatible with this kernel" this has 2.2.5 kernel
installed. I turned on the firewall in the make menuconfig, still no
ipchains. What else can I try ?
Jake
------------------------------
From: mwilson <[EMAIL PROTECTED]>
Subject: Apache Install Problems
Date: Fri, 06 Aug 1999 13:46:40 -0400
Hi All
I have RedHat 5.2 loaded and I am unable to get my Apache Web server
running
I could use some step by step instruction. I thought that when you
installed linux
and selected Web Server in the installation it would be there, not so.
Thanks in advance
------------------------------
From: [EMAIL PROTECTED] (Sherman Tsang)
Subject: Jserv and Apache
Date: Tue, 03 Aug 1999 19:33:52 GMT
I am using RH 5.2 and when i first installed it, it included version
1.3.3 of Apache on it.With many days of work and frustration i finally
manged to get mod_perl installed, and executing perl scripts over the
webserver to boot.
Anyway, now i want to install Apache Jserv on Apache so that i can run
servelts on my webserver as well. The only problem is that i want
Jserv compiled right into Apache 1.3.6. I have the source, i have the
JDK, and the JSK installed and ready to go, and this time i am hoping
to compile mod_perl into Apache as well.
Here is my problem: i am not sure what will happen if i compile and
install Apache and then mod_perl does not work afterwards. I MUST have
at least mod_perl working on this machine. Will the new installation
somehow replace the old installation of Apache? Is there some kind of
backup i can make of all the files/changes that i have made to the
original installation done by RedHat install (by rpm i'm assuming)?
And will doing a "make install" from the new source installation of
Apache REPLACE the old files?
thanks for any help that can be given..
Sherman
------------------------------
From: "Stephen Wyndham" <[EMAIL PROTECTED]>
Subject: Mail Server
Date: Sat, 7 Aug 1999 05:23:53 +0800
I want to do the following, can someone help me out?
ISP: mail for 4 domain names dumped to one user's mailbox
Every hour I want the Linux box to dailup a connection send all mail waiting
locally to the ISP and then the grab the mail from the one user's mailbox on
the ISP. It then needs to sort it into the appropriate local mailbox based
on the recipients' address.
Is there one program that will do this? I am using FTgate on NT which does
the job very well. If this is possible is it difficult for a person new to
Linux?
Stephen
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: PPTP won't authenticate through ipmasq
Date: Fri, 6 Aug 1999 14:04:23 -0700
Dave Kristol wrote in message <[EMAIL PROTECTED]>...
>John Hardin wrote:
>> Generally what I recommend (in broad strokes) is:
>>
>> permit whatever TCP and UDP traffic you want, then
>> block all TCP and UDP traffic, then
>> permit all traffic.
>
>Robert's approach is "block everything, then selectively allow". Using
>ipfwadm, you can only specify controls for UDP, TCP, and ICMP. So I
>allowed all traffic from just my PPTP server, which would include PPTP
>traffic.
Which is, of course, the best approach.
The "permit all traffic" was a bit too vague; I should have said this:
permit whatever TCP and UDP traffic you want, then
block all TCP and UDP traffic, then
permit traffic to/from the PPTP server/client IP address(es), then
block all traffic
If you want to log everything that's denied you have to do this, as you
can't attach logging to the default policy.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: "Eric Rector" <[EMAIL PROTECTED]>
Subject: Re: Problems with netatalk
Date: Fri, 6 Aug 1999 17:14:09 -0400
I've got a similar setup (PE 1300 running RH 6 and NetAtalk) -- the
excellent HOWTO from Anders Brownworth at
http://www.thehamptons.com/anders/netatalk mentions that the Linux drivers
for the Intel EtherExpress NIC don't support all the features that Netatalk
requires, and it may cause problems. I'd tested this setup on a junker 486
and it worked beautifully (with a 3COM Etherlink III NIC). Sure enough, as
soon as the PE1300 with an Intel EtherExpress 100 NIC showed up, and I did
an identical install, KaPlooey!
I swapped the NIC for a 3COM 10/100, and it's been running without a hiccup
for the past month.
There's a good newsgroup just on Netatalk too: Linux.Appletalk.
HTH
Eric Rector
Harborside Graphics Sportswear
Jacques Daleas wrote in message <7oe676$r4t$[EMAIL PROTECTED]>...
>We own this net server "poweredge 2300" from dell operated on Linux RedHat
>6.0 by samba and netatalk.
>
>Netatalk causes an error :
> error message = eth0 : transmit timed out : status 0050 0000 at
>501/516 command
>00000000
>
>This error shuts off all net services that make le server out of net.
>
>This error never occurs when netatalk is disabled.
>
>Can you help me ?
>
>Thanks.
>
>Dal�as Jacques
>[EMAIL PROTECTED]
>
>
>
------------------------------
From: Neo <[EMAIL PROTECTED]>
Subject: Questions about Linux, IPMASQ, and @Home...
Date: Fri, 06 Aug 1999 21:05:56 GMT
I know almost nothing about Linux and only a little about Networking
and IP Masquerading so please don't flame me too bad =). Right now I
have a Windows 95 box and am going to be acquiring a Linux box for my
personal use. I would like to network the boxes together using Fast
Ethernet and share an @Home cable line. From what I've read, IP
Masquerading would be the best way to go. I've just got a few questions
before I buy the networking equipment. I've heard that some people have
had problems with the @Home modem because it was PnP, being a newbie
I'm not sure if I could fix any problems I would have, do I have to use
the modem they supply or can I get a different modem that is compatible
with Linux? How do I go about getting my Windows box to recognize the
Linux one? If I setup the Linux box with IPMASQ, will I have to setup
the network as client-server or does it matter? Can someone make a
simple diagram or write how I would connect everything? I think I would
connect both boxes to the hub, and the Linux box to the cable modem and
then setup everything else by software, is this right? How do I setup
file, printer, and drive sharing among the two boxes?
I know most of those are probaly REALLY stupid questions but I just
want to make sure I'm doing everything right.
-Neo X
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Brian Schwarz" <[EMAIL PROTECTED]>
Subject: QMail and POP3 configuration problem
Date: Fri, 6 Aug 1999 13:59:20 -0500
>
I'm trying to configure POP3 for use with QMail. QMail is up and running as
an SMTP server. I think my problem is I don't understand how to use this
"sample start script" from one of the FAQ files:
___________________________________________________________
5. What is a sample start script for the pop server?
env - PATH="/var/qmail/bin:/usr/local/bin" \
tcpserver 0 pop-3 /var/qmail/bin/qmail-popup orbital.inter7.com \
/home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir &
(Excerpted from www.inter7.com/vchkpw/FAQ)
___________________________________________________________________
I'm assuming that I need to put these lines into a text file somewhere, but
I can't figure out which one. Any suggestions? I think I'm just ignorant
of some basic
Linux configuration knowledge that the writers of this FAQ assume their
users will have.
------------------------------
From: [EMAIL PROTECTED] (Guillaume Filion)
Crossposted-To: comp.security.firewalls,comp.security.unix
Subject: Re: How to Log attemped connections
Date: Fri, 06 Aug 1999 16:22:28 -0400
In article <tdHq3.12$[EMAIL PROTECTED]>, "Matt"
<[EMAIL PROTECTED]> wrote:
> Is there a way to log all attemped connections and what ports they were on
> under Linux? Other than /var/log/secure I don't know where to check this
> info.
They are all logged in /var/log/messages, but since a lot of things gets
in this, you may want to have a tool like logcheck do the job for you.
Check out this for infos about logcheck:
http://www.psionic.com/abacus/logcheck/
Or if you prefer rpms:
http://rufus.w3.org/linux/RPM/logcheck.html
Hope this helps,
GFK's
--
Wow! www.windows2000test.com can detect weather, and
shut down by itself before being hit by lightning, what could be better!!
------------------------------
From: [EMAIL PROTECTED] (Telkom)
Subject: Poor network performance
Date: 06 Aug 1999 12:34:06 GMT
I have a Celeron 400, 128 MB, 17GB I'm using as both an ftp and a samba server.
Performance of both is poor. For example a 4.5GB file takes 4363 seconds to ftp
(thats only 104 Kbytes/sec). The response is slow regardless of which client I
access from. ifconfig shows no errors on the NE2000 NIC. The NE2000 is IRQ 5
I/O 320 and there are no clashes.
Could someone give me a starter for 10 on diagnosing this problem.
TIA - Andrew
------------------------------
From: R. Christopher Harshman <[EMAIL PROTECTED]>
Subject: Linux alternative to NT Load Balancing Service?
Date: Fri, 06 Aug 1999 21:05:02 GMT
Wondering if anyone could point me to any information about a Linux
alternative to the Windows NT Load Balancing Service (WLBS) for
clustering.
(http://www.microsoft.com/ntsrever/ntserverenterprise/exec/overview/
clustering/default.asp )
I've heard of Beowulf, but I'm unclear as to whether it will
fit the bill or not. I don't need to speed up mathematical
calculations, I need a more fault-tolerant server solution
(multiple boxes acting as one IP address, so that should one
go down, it would be unnoticed). This will be a high-traffic
web server, so I'll also need to synchronize content between the
nodes. (That I can probably figure out how to do on my own...)
Also, will Beowulf (or whatever fits this bill) work under
FreeBSD, or just Linux? All of what I've seen points to
Beowulf being a primarily Linux oriented solution, but support
for other platforms (Tru64/Alpha) has been mentioned.
Thanks in advance!
- Chris
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Eric" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,comp.protocols.smb
Subject: Problem seeing Samba server from Network Neighbourhood......
Date: Fri, 06 Aug 1999 20:39:53 GMT
Okay - I'm getting extremely frustrated with this problem, and am hoping
that someone has some ingenious solutions to help me out. These are the
three machines I'm trying to use:
Samba Server - RH 5.2, Kernel 2.2.2
IP address 192.168.1.1
Workgroup Home
Name Firewall
NT4.0 Server (NON PDC or BDC) SP3
IP address 192.168.2.1
Workgroup Home
Name Racer
Win98 Machine
IP address 192.168.2.2
Workgroup Home
Name Scanner
I've configured the Win98 to disable master browsing, and have Samba set up
to have printers and folders shared. I can access the Samba machine through
"Find Computers", and can access the printers and shared folders if I type
in the address directly, but I can't seem to get it to appear in the Network
Neighbourhood on either machine!
This is my log.nmb entry:
1999/08/06 15:59:03 ***** Samba name server FIREWALL is now a local master
browser for workgroup HOME on subnet 192.168.1.1 *****
I don't want to paste my entire smb.conf file here as it will suck up
bandwidth, but I was hoping someone could point me in the right direction as
to what to do, or what parts of the conf file I should post.
I've already checked FAQ's and old newsgroup postings, but nothing seems to
be working here....
Any help is greatly appreciated!
Thanks!
Eric
[EMAIL PROTECTED]
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: Firewall attack
Date: Fri, 6 Aug 1999 14:11:18 -0700
Zoltan Pittner wrote in message <7oekkv$9vv$[EMAIL PROTECTED]>...
>Since I have a decent (I hope) firewall in place, I get all kind of packet
>deny messages in my logs. The most common one seems to be on port 137.
You'll see a lot of that. NetBIOS is a *painfully* chatty protocol.
"Who's there?"
"I'm here."
"I'm still here."
..ad nauseum.
>Last night I've seen that someone tried some different ports as well:
>
>packet deny 216.129.6.227:375
>packet deny 216.129.6.227:399
>packet deny 216.129.6.227:439
>packet deny 216.129.6.227:460
>packet deny 216.129.6.227:481
>packet deny 216.129.6.227:504
You're being scanned. You may want to do a traceroute to that IP and find
out who the ISP is, and complain. They may not care - views on the
acceptability of scanning differ.
NB: if you're going to be complaining, *make sure* that you're syncing your
system clock with a reliable time source (e.g. via xntp) so that the
information you provide from your logs is useful to the other guy.
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc
Subject: Re: Howto check if Port # is block by ISP?
Date: Fri, 6 Aug 1999 14:15:01 -0700
Young4ert wrote in message <[EMAIL PROTECTED]>...
>1. "telnet mailandnews.com 25" produces the following error message:
>
> telnet mailandnews.com 25
> Trying 199.29.68.160...
> telnet: Unable to connect to remote host: Network is unreachable
"traceroute -i ppp0 mailandnews.com"
..and watch for lines with just asterisks (i.e. "no response")
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: [EMAIL PROTECTED] (Telkom)
Subject: Re: Poor network performance
Date: 06 Aug 1999 12:49:01 GMT
>I have a Celeron 400, 128 MB, 17GB I'm using as both an ftp and a samba
>server.
>Performance of both is poor. For example a 4.5GB file takes 4363 seconds to
>ftp
>(thats only 104 Kbytes/sec). The response is slow regardless of which client
>I
>access from. ifconfig shows no errors on the NE2000 NIC. The NE2000 is IRQ 5
>I/O 320 and there are no clashes.
>Could someone give me a starter for 10 on diagnosing this problem.
>
>TIA - Andrew
>
Oops I'm running Kernel 2.2.5 (SuSE 6.1)
------------------------------
From: Pat <[EMAIL PROTECTED]>
Crossposted-To: comp.protocols.nfs,linux.debian.user,uk.comp.os.linux
Subject: NFS problems under linux yet again
Date: Sat, 07 Aug 1999 00:19:35 +0100
Well, I'm afraid I'm back and still having problems with NFS.
machine 1 is Redhat 6 running linux 2.2.10-ac12, knfs 1.4.6
machine 2 is Debian 2.1 running linux 2.2.10, knfs 1.4.6
machine 3 is Redhat 5.2 running linux 2.2.6
both machines 1 and 2 can mount drives on 3
but nothing can mount a drive on machines 1 or 2, I get
"mount: failed, reason given by server: Permission denied" on the
client machine
and
"mountd[520]: authenticated mount request from machine "
"mountd[520]: getfh failed: Operation not permitted" on the server
As far as I can tell from hunting dejanews, this isn't a message that
seems to be appearing for anyone else. Does anyone have any suggestions
about where to look next?
oh and on the server my /etc/exports reads
/ *.maru.org.uk(rw)
and /var/lib/nfs/xtab reads
/
*.maru.org.uk(rw,async,wdelay,secure,root_squash,no_all_squash,mapping=identity,anonuid=-2,anongid=-2)
rpcinfo -p shows mountd and nfs running on all machines
Thanks again
Pat.
------------------------------
From: "Lee Sharp" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,comp.protocols.smb
Subject: Re: Problem seeing Samba server from Network Neighbourhood......
Date: Fri, 6 Aug 1999 16:40:18 -0500
Eric wrote in message ...
|Okay - I'm getting extremely frustrated with this problem, and am hoping
|that someone has some ingenious solutions to help me out. These are the
|three machines I'm trying to use:
People just running NT get bit by this one, so don't feel bad. :-)
|Samba Server - RH 5.2, Kernel 2.2.2
| IP address 192.168.1.1
| Workgroup Home
| Name Firewall
|
|NT4.0 Server (NON PDC or BDC) SP3
| IP address 192.168.2.1
| Workgroup Home
| Name Racer
|
|Win98 Machine
| IP address 192.168.2.2
| Workgroup Home
| Name Scanner
Put WINS on the NT box, and configure Samba to hit it with WINS client.
Also point the NT box and the Win 98 box at the WINS server. All machines
should now be listed.
Lee
--
SCSI is *NOT* magic. There are *fundamental technical reasons* why it is
necessary to sacrifice a young goat to your SCSI chain now and then. * Black
holes are where God divided by zero. - I am speaking as an individual, not
as a representative of any company, organization or other entity. I am
solely responsible for my words.
------------------------------
From: "Colin Macfarlane" <[EMAIL PROTECTED]>
Subject: Re: Linux driver for 3Com card
Date: Fri, 6 Aug 1999 19:24:37 -0300
> P.A. Grant <[EMAIL PROTECTED]> wrote:
> : This is my first time in this ng, so please forgive me for asking. I am
> : looking for a Linux driver for a 3Com 3C90X card. Can anyone help me
with
> : this? thanks in advance.
Jeff Brubaker <[EMAIL PROTECTED]> wrote in message
news:7ocr1q$b7t$[EMAIL PROTECTED]...
> Use the 3c59x driver - I believe there isn't a dedicated 3c90x driver,
it's
> handled in the 3c59x.o module.
Had a bit of trouble with that too. My ADSL came with a 3c5900b. On
installation of RH 5.2 and Mandrake 6, the probe comes up with options for
various flavours of PCI NICs, including the proper Boomerang driver. After
installation, it shows up as 3c95x and no mention of what is used to load
(but it works).
------------------------------
From: "B. T." <[EMAIL PROTECTED]>
Subject: IP Masquerading with IP Address and Mac Address Restrictions
Date: Fri, 6 Aug 1999 14:50:22 -0700
Hi.
I am setting up a Linux box to run I.P. Masquerading for other machines
on my LAN. Question is I want to be able to give access to those machines
that
satisfy two prerequisites: The I.P. address the machine has been
assigned must match the mac address of the NIC card. It's probably
some simple switch in the software I'm not aware of, but I neither have been
able to locate
it in the software or in the HOWTOs.
Does anybody know how to do this?
Thanks,
B.T.
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
