Linux-Networking Digest #168, Volume #12 Tue, 10 Aug 99 00:13:39 EDT
Contents:
port forwarding (Adrian)
Cable Modem & hub (Lawrence Bacon)
Re: Cable Modem & hub ("Tad")
Re: Apache Install Problems ([EMAIL PROTECTED])
Re: ping problems (Juergen Pabel)
Re: ipchains rules (Juergen Pabel)
Re: 3c905b works at 100base? (Daniel Bonds)
YPBINDPROC_DOMAIN: No bound server for domain ("Sven")
Re: ping problems ("Cowles, Steve")
PPP, ISP, & Security? (John)
Re: Firewall (Juergen Pabel)
Problems with apache authentication ([EMAIL PROTECTED])
Re: Add new Ethernet Adapater to RH 5.2 (Juergen Pabel)
Re: route add problem (Juergen Pabel)
Re: Fetchmail at startup ("Cowles, Steve")
IP Tunneling? (Mark A)
Re: Real Video & ipchains (Juergen Pabel)
Linux Multilink PPP ("Edgar R Gutierrez")
Re: ip masq? (Joshua)
Re: 486 33mhz and T1?
ipchains rules ("Lordaerom")
Data format error? (Choi ki-young)
Re: Telnet Problem(microsoft) (Justin B Willoughby)
ftp usernames/passwds (Jeremy McLeod)
Re: cannot telnet into redhat (T. Sutherland)
Re: Connecting through Lan and C ("James Stone")
Re: port forwarding (Juergen Pabel)
----------------------------------------------------------------------------
From: Adrian <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Subject: port forwarding
Date: Mon, 09 Aug 1999 22:44:17 -0300
I want to take packets sent from outside my network to x port on my
firewall and forward them to x port on a machine behind it.
slack 4.0 kernel 2.2.10 - ipforwarding and masq on
using the ipchains command I can forward packets from x port on my
firewall machine to y port on my firewall machine - I'm sure there must
be a way to send them to my internal machine.
ipautofw does it - but I don't want to set it up on my machine
ipautofw -A -r tcp 21 -h 192.168.1.5
All I want to know is what is the equivalent syntax for ipchains - or
can I not do it at all and have to change how I have setup my machine.
Thanks
/C
------------------------------
From: Lawrence Bacon <[EMAIL PROTECTED]>
Subject: Cable Modem & hub
Date: Tue, 10 Aug 1999 00:44:47 GMT
Hi to all is it possible to use a cable modem with a hub to
connect two linux computers and a cable modem ?
All replies are welcome
Larry
------------------------------
From: "Tad" <[EMAIL PROTECTED]>
Subject: Re: Cable Modem & hub
Date: Mon, 9 Aug 1999 19:14:13 -0700
Yes. We use the Motorola cable modem with our hub. You have to use the
uplink port on the hub, though, unless you have a cross-over cable.
Tad
Lawrence Bacon wrote in message <[EMAIL PROTECTED]>...
>Hi to all is it possible to use a cable modem with a hub to
>connect two linux computers and a cable modem ?
>
>All replies are welcome
>
>Larry
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Apache Install Problems
Date: Tue, 10 Aug 1999 01:26:22 GMT
If u have properly followed the steps during installing linux e.g. given
th domain name, IP address, i think it should work.
But as far i am concerned i always download the latest version and then
install it. There are only about four or five steps to be followed. U
can get them from the INSTALL or README file once u untar and unzip the
source. If u install it urself it is much easier to change its
configuration in the httpd.conf file. Also remember to either kill the
httpd file for the already installed server in the etc/rc.d/rc3.d by
changing the S to K or you can jus give it a number which is lower than
what u give for ur new the control file i.e. apachectl. Actually after
installing the apache server, go to
/path/where/apache/is /installed/bin/
copy the apachectl to /etc/rc.d/init.d and then link this file to a ile
in /etc/rc.d/rc3.d.
i hope this is useful to u.
regards
Ziah
In article <[EMAIL PROTECTED]>,
mwilson <[EMAIL PROTECTED]> wrote:
> Hi All
>
> I have RedHat 5.2 loaded and I am unable to get my Apache Web server
> running
> I could use some step by step instruction. I thought that when you
> installed linux
> and selected Web Server in the installation it would be there, not so.
>
> Thanks in advance
>
>
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: ping problems
Date: Mon, 09 Aug 1999 22:15:47 -0400
show your ifconfig output and your routing table, also ipchains output
wouldn't hurt if installed...
jp
Arch wrote:
>
> I am not able to ping my second NIC from my inside network. It is eth1,
> and I am going to connect it to a cable modem. The inside NIC, eth0, I
> can ping. The addresses are, eth0 is 192.168.1.1; eth1 is 48.x.x.245. I
> checked ifconfig, and everyting looks like it should. Any ideas? Thank
> you.
>
> Arch
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: ipchains rules
Date: Mon, 09 Aug 1999 22:19:25 -0400
for the average ipchains user (5-15 rulez) it won't make a noticable
difference, all it is is a special handler for one of the layers of the
tcp-ip stack...don't know about >400 rulez
but i think if you set them up in a logical manner (most often ones
first) you should be
doing fine...
jp
Lordaerom wrote:
>
> I'm just wondering how much cpu overhead is involved in processing these
> rules (ipchains).
> as I understand, I could be wrong, when a packet comes to the computer, it
> will look at some information in it and go through the rules, looking for
> which ones it matches, then performing the appropraite action.
> Does this work that if it matches the first rule (and only ever will match
> that one) does it still run it through all the other rules? Also, if there
> were hrmm, say 400 rules, would there be a noticeable slowdown?
>
> Thanks in advance.
> --R tavender
------------------------------
From: [EMAIL PROTECTED] (Daniel Bonds)
Subject: Re: 3c905b works at 100base?
Date: Tue, 10 Aug 1999 01:46:12 GMT
I have no idea if this works as I came across this because I can't
even get my 3c905b to be detected right now (argggghhh), but here's a
snippet from ye old module howto, verse 7.10.6
ftp://sunsite.unc.edu/pub/Linux/docs/HOWTO/unmaintained/Module-HOWTO
**********
Load command:
/sbin/modprobe 3c59x.o debug=1 options=0,,12
This sets the debug message level to minimal messages,
sets the first card to the 10baseT transceiver, the
second
to the EEPROM-set transceiver, and the third card to
operate
in full-duplex mode using its 100baseTx transceiver.
(Note: card ordering is set by the PCI BIOS.)
Possible media type settings
0 10baseT
1 10Mbs AUI
2 undefined
3 10base2 (BNC)
4 100base-TX
5 100base-FX
6 MII (not yet available)
7 <Use default setting>
8 Full-duplex bit
8 10baseT full-duplex
12 100baseTx full-duplex
16 Bus-master enable bit (experimental use
only!)
Details of the device driver implementation are at the
top of
the source file.
**********
Good luck!
Daniel
On 4 Aug 1999 22:18:01 GMT, wyang@tau (Wei Yang) wrote:
>Hi,
>
>I have a 3c905B 100baseTx card (Cyclone) and I am using it with my RD 5.1
>and Donald Becker's 3c59x.c (v0.99E 5/12/98) driver.
>
>I noticed that at the time the Linux booted, the card is forced to work at
>10 Mbit mode, while it works at 100 Mbit mode when I run in Win NT or when
>this PC is just power on and the Linux has not booted yet. Does anybody know
>how can I make 100 Mbit work under Linux?
>
>Thanks.
------------------------------
From: "Sven" <[EMAIL PROTECTED]>
Subject: YPBINDPROC_DOMAIN: No bound server for domain
Date: Sun, 8 Aug 1999 20:15:55 +0200
Hi everybody !
I know there has been discussion about this recently, but I cannot get the
postings anymore. But I have the same Problem ! So can somebody please tell
me what the solution of the Problem was ??
TIA sven
------------------------------
From: "Cowles, Steve" <[EMAIL PROTECTED]>
Subject: Re: ping problems
Date: Tue, 10 Aug 1999 02:30:43 GMT
Have you enabled IP_FORWARDING? Have you set the default route of the
desktops on your inside network to point to the eth0 address? Does your
Linux box have a default route set to point to your Cable modem or your
cable companies router? Also, if you plan on accessing the internet through
this box you need to enable ip masquerading with either ipmasqadm or
ipchains (depends on what kernel you are running).
To enable IP_FORWARDING:
echo "1" > /proc/sys/net/ipv4/ip_forward
Steve Cowles
Arch <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> I am not able to ping my second NIC from my inside network. It is eth1,
> and I am going to connect it to a cable modem. The inside NIC, eth0, I
> can ping. The addresses are, eth0 is 192.168.1.1; eth1 is 48.x.x.245. I
> checked ifconfig, and everyting looks like it should. Any ideas? Thank
> you.
>
> Arch
------------------------------
Date: Mon, 09 Aug 1999 21:55:27 -0400
From: John <"jmiller"@(nospam).provide.net>
Subject: PPP, ISP, & Security?
Assuming somehow that someone can obtain the assigned IP address for my
PPP connection to my ISP, how can I protect against snooping and someone
trying to login?
I'm asking because I'm new to Linux and I just figured out that this was
possible through my phone connection to my ISP. I was use to windows
before on a un-networked machine, so without the network neighborhood
stuff, I assumed I was safe. When I turned on networking for windows I
just turned off file sharing and print sharing for my dial connections.
With a windows 9x installation, I think there isn't any remote logon
capablility like telnet included. (This is a big assumption on my
part). I'm sure M$ would say this was a feature.
Anyway, with Linux, there's ftp capability, http daemons running and a
bunch of other stuff that could give access to my machine. (Of course I
told the installation disks to install everything.) I don't exactly
consider myself a prime hacking target, but I am curious how to secure
this type of connection. I would like to be able to do it in one swoop
rather than trying to secure every possible form of network
communication that might be running.
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: Firewall
Date: Mon, 09 Aug 1999 22:32:11 -0400
check out the /etc/services file and search for your protocolls, those
ports
(all that you want are tcp based) are the ones you need...
jp
Gruber Alexander wrote:
>
> Hello,
>
> i have problems with my firewall.
> I want to build up a firewall on a LAN to protect it from the outside,
> but the following services should be avaible:
> www, ping, telnet, nntp, pop3, smtp, timeserverprotocol, namesserver
> (DNS-resolution), ftp and IRC.
>
> Please help me and say me the ports to unlock.
>
> Thanks !!!
------------------------------
From: [EMAIL PROTECTED]
Subject: Problems with apache authentication
Date: Tue, 10 Aug 1999 02:10:20 GMT
Hi all,
I began to have some problems with user authentication since updating to
linux slackware-4.0 (2.2.36) with apache 1.3.6. All the authentication
worked just fine; now it simply does not request any username/passwd. I
want to give each individual user authority to control access to his/her
own directories in the public_html area. Below is my http.conf:
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory "/var/lib/apache/htdocs">
#
# This may also be "None", "All", or any combination of "Indexes",
# "Includes", "FollowSymLinks", "ExecCGI", or "MultiViews".
#
# Note that "MultiViews" must be named *explicitly* --- "Options All"
# doesn't give it to you.
#
Options Indexes FollowSymLinks
AllowOverride None
# Controls who can get stuff from this server.
#
Order allow,deny
Allow from all
</Directory>
<Directory /*/public_html>
Options Indexes FollowSymLinks
AllowOverride All
</Directory>
<Directory /*/public_html/files/lock>
Options Indexes FollowSymLinks
AllowOverride All
</Directory>
For example, a given .htaccess file in the lock area of a userxxx
public_html directory states the following:
AuthUserFile /home/userxxx/.htpasswd
AuthGroupFile /dev/null
AuthName Test
AuthType Basic
<Limit GET>
require user userxxx
</Limit>
The .htpasswd in the userxxx home directory was generated using the
htpasswd program. any help would greatly appreciated. Thanks in
advance.
Andre'
PS - Please e-mail your response as well if at all possible
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: Add new Ethernet Adapater to RH 5.2
Date: Mon, 09 Aug 1999 22:13:49 -0400
you need to create a ifcfg-eth0 in /etc/sysconfig/network-scripts/
more or less looking like this:
DEVICE=eth0
BOOTPROTO=dhcp
ONBOOT=yes
then add the driver module name of your card (i assume 3c900 or 3c90x)
to your
/etc/conf.modules file like this
alias eth0 drivermodulename
now ifconfig eth0 up should bring that up...automatically done at
boottime
now (if ONBOOT=yes)
Roger Jagoda wrote:
>
> Folks,
>
> My RH 5.2 has a small problem. It doesn't recognize its ethernet card.
>
> HW:
>
> PPro 200MHz
> 128MB RAM
> 4G SCSI DISK
> AHA-2940 SCSI Card
> 3C900-TP0 Ethernet Card
> Diamond MM Viper 330
>
> Everything works fine, but there's not connectivity.
>
> netstat -i:
>
> Shows only the loopback lo0
>
> So does ifconfig -a
>
> If I try ifconfiging eth0, it says there's no such device.
>
> There is no ifcfg-eth0 made in /etc/sysconfig/network either,
> shouldn't the installation process have done that?
>
> So, how does one add an ethernet card AFTER the initial installation
> is over. BTW, the initial installation cliamed to "find" my ethernet
> card just fine. It even loads up NET3 and all the other goodies. It made
> the correct resolv.conf, hosts, etc. files and everything. I just
> need to find a way to add the devices and all to make the ethernet work.
>
> Does anyone have any tips or ideas?
>
> Thanks very much in advance!
>
> -R
>
> Roger Jagoda
> [EMAIL PROTECTED]
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: route add problem
Date: Mon, 09 Aug 1999 23:02:15 -0400
route add localhost eth0
^^^^
or whatever device...
jp
RT wrote:
>
> I hope someone will find a little time for solving the next problem (under
> Red Hat 6.0; NOT under Red Hat 5.2):
>
> # route add localhost
> SIOCADDRT: No such device ?????
> # route add -net 127.0.0.0
> SIOCADDRT: Invalid argument ??????
> # route add pentium120linux
> SIOCADDRT: No such device ??????
>
> What's the problem ?
>
> For the completeness I give you the following
> #ifconfig
> eth0 Link encap:Ethernet HWaddr 00:80:48:C7:C1:A9
> inet addr:200.200.200.120 Bcast:200.200.200.255
> Mask:255.255.255.0
> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
> RX packets:4536 errors:0 dropped:0 overruns:0 frame:0
> TX packets:4674 errors:0 dropped:0 overruns:0 carrier:0
> collisions:0 txqueuelen:100
> Interrupt:11 Base address:0x6100
> lo Link encap:Local Loopback
> inet addr:127.0.0.1 Mask:255.0.0.0
> UP LOOPBACK RUNNING MTU:3924 Metric:1
> RX packets:1713 errors:0 dropped:0 overruns:0 frame:0
> TX packets:1713 errors:0 dropped:0 overruns:0 carrier:0
> collisions:0 txqueuelen:0
>
> #cat /etc/hosts
> 127.0.0.1 localhost localhost.localdomain
> 200.200.200.120 pentium120linux.domainrt pentium120linux
> 200.200.200.26 pentium266linux.domainrt pentium266linux
> 200.200.200.150 pentium15098.domainrt pentium15098
> 200.200.200.35 pentium35098
>
> #cat /etc/sysconfig/network-scripts/ifcfg-lo
> DEVICE=lo
> IPADDR=127.0.0.1
> NETMASK=255.0.0.0
> NETWORK=127.0.0.0
> BROADCAST=127.255.255.255
> ONBOOT=yes
> BOOTPROTO=none
>
> In the hope, that you will help me I thank you very much.
>
> Rudy,
------------------------------
From: "Cowles, Steve" <[EMAIL PROTECTED]>
Subject: Re: Fetchmail at startup
Date: Tue, 10 Aug 1999 03:08:13 GMT
I use fetchmail to pull mail for myself and my wife from our ISP and store
it locally on my linux box.
To enable fetchmail to run as a regular user (NOT AS ROOT) out of rc.local:
# Enable Fetchmail Deamon for Pulling Email from Remote Server
/bin/su -c "/usr/bin/fetchmail" scowles
sleep 10
/bin/su -c "/usr/bin/fetchmail" pcowles
And her is my .fetchmailrc file, which is in my home directory and in my
wifes home directory. NOTE: Fetchmail will automatically poll every 15
minutes (in my case). I do not pass any command line argumets to fetchmail.
IE. Fetchmail is running as a daemon.
# Configuration created Wed May 12 23:21:54 1999 by fetchmailconf
set syslog
set postmaster "scowles"
set bouncemail
set properties ""
set daemon 900
poll popmail.isp.net with proto POP3 timeout 60
user "swcowles" there with password "password" is scowles here
And the permissions:
[scowles@voyager scowles]$ ls -l .fetchmailrc
-rw------- 1 scowles users 294 May 12 23:24 .fetchmailrc
[scowles@voyager scowles]$
Steve Cowles
Sim <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> What do I need to do to get fetchmail to startup in rc.local - where
> do I put the .fetchmailrc file and with what privaledges. I can't
> find anything in the man or FAQ pages on this - is that an indication
> tht I should not be doing this, even though I hvae a cable
> connectection and am thus online all the time
>
> Simon
------------------------------
From: Mark A <[EMAIL PROTECTED]>
Subject: IP Tunneling?
Date: Mon, 09 Aug 1999 22:55:07 -0400
I use DirecPC as my ISP. The other day I noticed that I am consistently
unable to connect to the web site, www.linux.org. I can't even "ping"
it; I get "Request timed out" messages. This only happens when I am
using DirecPC as my ISP. When I log in with another ISP, I can access
it just fine.
I asked DPC tech support about this, and they said that "...it is
probably the result of IP filtering. The site may be secure and not
compatible with the IP tunneling that DirecPC employs".
I don't know enough about IP filtering and tunneling to know what this
answer means. Are they just jerking me around, or does this answer
sound plausible?
--
Mark S. Anthony
[EMAIL PROTECTED]
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: Real Video & ipchains
Date: Mon, 09 Aug 1999 22:28:59 -0400
nothing is impossible...i am sure with some kind of combination of
ipchains / ipportfw
this can be accomplished.
if you find out the port numbers real video uses, and if the client
creates
any serversockets (this is what i suspect realvideo does and why it is
*impossible*) and their numbers then i can provide the setup to make
this
work.
jp
[EMAIL PROTECTED] wrote:
>
> Hello, I have a RedHat 6.0 firewall running ipchains, and NAT. We want
> to serve Real Video from behind the firewall, but Real claims that it is
> impossible with this configuration. I have a hard time believing that,
> but I cannot figure it out. If anyone could give me some input, I'd
> really appreciate it. Thanks.
>
> Mark Lichtenberg
>
> Sent via Deja.com http://www.deja.com/
> Share what you know. Learn what you don't.
------------------------------
From: "Edgar R Gutierrez" <[EMAIL PROTECTED]>
Subject: Linux Multilink PPP
Date: Tue, 10 Aug 1999 11:03:01 +0800
Hi to all LINUX Gurus..
I currently have a linux box at home. Two modems are attached to it and I
want to maximize the bandwidth that my Iinux gets everytime I am on the NET.
Can anybody help me set up MULTI-LINK PPP using LINUX v5.2 or v6.0 ?
Thanks..and more power to all
LONG LIVE LINUS TORVALDS...=)
------------------------------
From: Joshua <[EMAIL PROTECTED]>
Subject: Re: ip masq?
Date: Tue, 10 Aug 1999 02:30:42 GMT
Alex Shine wrote:
>
> I am thinking of setting up a Linux box with 512K DSL running IP
masquerade
> for the purpose of connecting 200 people to the internet. I would also
> configure it so that all packets coming in on port 25 would be forwarded
to
> the Exchange server. This will hopefully allow the Exchange server to
relay
> mail to and from the internet. We have 5 NT servers that need to be safe
> from the internet.
>
> Is this a well conceived plan?
>
> Is IP masq safe?
>
> Will the forwarding of 25 allow the exchange server to relay mail
> properly?(assuming the MX record points to the Linux box)
>
I am useing ipmasq on a 56k modem that is used by a couple of people on the
internal network.
I would not only do ipmaq i would also do firewall. ipchains does both the
masq and firewall. The reason is that if some hacker/cracker knows what he
is doing he could just use your masqed linux box to masq him also.... With
the firewall you have that much more protection. It can also log attemts to
use back orifice, port scaners and other stuff from the net.
You can get the ipmasq/firewall scripts that I use from my Linux Users
Group site. They where not writen by me but the url of the author is in the
readme.
http://lclug.hypermart.net/downloads
With the mail you might need to do port forwarding for the mail that is
comeing into the linux box. What it would do is accept the port 25 then
send it to a internal server port 25. As far dns server know the linux box
is the mail server. I have not done this yet but it is possable.
Did you read the howto?
http://MetaLab.unc.edu/LDP/HOWTO/mini/IP-Masquerade.html
here it is i would also read the firewall howto.
I hope this helps....
Joshua Curtis
http://www.curtionline.net
Lancaster Co. Linux Users Group
http://lclug.hypermart.net
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: <[EMAIL PROTECTED]>
Subject: Re: 486 33mhz and T1?
Date: Tue, 10 Aug 1999 02:30:46 GMT
Oh man nothing like going to bed with the computer running and waking up
to a new kernel.
Ron Vissers wrote:
> Hi,
>
> I used to run a lil 486 32mb of ram with DSL on one card and
> 100BaseT on the other. Granted, I'd never get full output
> on the 100baseT, but I planned to upgrade the 486 in the future anyway.
>
> The 486 did fine. :)
>
> The only issue was kernel compiles. I'm probably exagerating, but
> it seemed to take 2 hours to compile a kernel. That was my
> only complaint.
>
> Ron
>
> In article <7mp2i4$a9o$[EMAIL PROTECTED]>, [EMAIL PROTECTED]
says...
> >
> >Hi, Im going to setup a linux box on a T1 connection and will have a
p2 300
> >(win98) connected to my box to access the T1 as well. Does anyone
foresee
> >any problems (network speed, speed of box itself) if I run the box on a
486
> >33? I also have a p100, but the motherboard is messed, id have to
shell out
> >$30-40 to get a new one. Think it would be more advantageous to spend
the
> >money? As most students, im on a tight budget. Thanks for any
suggestions.
> >
> >-Tom
> >
> >
>
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: "Lordaerom" <[EMAIL PROTECTED]>
Subject: ipchains rules
Date: Tue, 10 Aug 1999 01:38:22 GMT
I'm just wondering how much cpu overhead is involved in processing these
rules (ipchains).
as I understand, I could be wrong, when a packet comes to the computer, it
will look at some information in it and go through the rules, looking for
which ones it matches, then performing the appropraite action.
Does this work that if it matches the first rule (and only ever will match
that one) does it still run it through all the other rules? Also, if there
were hrmm, say 400 rules, would there be a noticeable slowdown?
Thanks in advance.
--R tavender
------------------------------
From: Choi ki-young <[EMAIL PROTECTED]>
Subject: Data format error?
Date: Tue, 10 Aug 1999 12:27:53 +0900
I can't use mail on my system. If I send a mail to output, he return me
with 'data format error'.
and if I send a mail from other server to my system, I meet "Unknown
users". But telnet has no problem.
I don't know what is the problem on my mail system? Please help me...
------------------------------
From: [EMAIL PROTECTED] (Justin B Willoughby)
Subject: Re: Telnet Problem(microsoft)
Date: 10 Aug 1999 02:51:33 GMT
Reply-To: [EMAIL PROTECTED] (Justin B Willoughby)
"Romiko" ([EMAIL PROTECTED]) writes:
> But I use the ip address to connect not a host name
> Andrey Smirnov wrote in message <7oionf$8pi$[EMAIL PROTECTED]>...
>>The ip address of the source machine needs to be in the hosts file of the
>>destination machine.
It does not matter, Linux is trying to do a reverse lookup of you machine
and if your ip address is not in the hosts file its going to try its
darnst to do a reverse look up via DNS.
- Justin
--
_/ _/_/_/ _/ _/ _/ _/ _/ _/ RULES!! * LINUX RULES *
_/ _/ _/_/ _/ _/ _/ _/_/ Justin Willoughby
_/ _/ _/ _/_/ _/ _/ _/ http://justinw.net
_/_/_/ _/_/_/ _/ _/ _/_/_/_/ _/ _/ ---- Jesus Is Lord ----
------------------------------
From: Jeremy McLeod <[EMAIL PROTECTED]>
Crossposted-To: redhat.networking.general,redhat.servers.general
Subject: ftp usernames/passwds
Date: Tue, 10 Aug 1999 03:30:44 GMT
Does anyone know how to setup FTP-only users, and to add them to the
anonftp passwd/shadow files in /home/ftp/etc?
I looked at the man pages for the various related files a while back, but I
was too burned out to actually extrapolate any info from them at the time,
and now I'm just to lazy. :)
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: [EMAIL PROTECTED] (T. Sutherland)
Subject: Re: cannot telnet into redhat
Date: 9 Aug 1999 22:09:02 -0500
On 8 Aug 1999 01:24:04 -0500, [EMAIL PROTECTED] (T.
Sutherland) wrote:
Nevermind. :)
I thought I had run a test putting 10.0.2. in the hosts.allow file,
but apparently, I neglected to do so....
>--
------------------------------
From: "James Stone" <[EMAIL PROTECTED]>
Subject: Re: Connecting through Lan and C
Date: Tue, 10 Aug 1999 02:57:33 GMT
>
>Sygate, unfortunately, after a bit of research, is much like
>wingate 3.0. The only way to make it work as a gateway, is to
>replace winsock on the client machines. Linux doesnt use
>winsock, it uses a different setup. In other words, the only
>way to make sygate work is if it has proxy options.
>Unfortunately, i dont believe sygate does, so your only hope of
>making linux work through a gateway of that nature, resides in
>either sygate making a linux client (not likely) or using
>different software (Wingate works fine, but you must configure
>the linux software to operate through proxy, the simplest is
>the Dante Package, and 'socksifying' your program. You can get
>more information at freshmeat.net) Lastly, you can configure
>the linux box to be a gateway, if you make it the internet
>point of presence, (i.e. give it the modem / ADSL line / Cable
>Modem) There is extensive documentation available at
>redhat.com in the search (even if you dont have red hat) If
>your kernel is up to date (2.2.5 or better) search for
>'ipchains howto' if its olde, search for 'ipfwadmin howto'.
>For modem help, make sure its an externel, or ISA modem, no PCI
>modems work, and some, but not all, combo modems (Sound and
>modem or other mixes) work. Best of luck, sorry I for not
>having an easier solution.
>
>--
> This answer is courtesy of QuestionExchange.com
>
http://www.questionexchange.com/servlet1/showUsenetGuest?ans_id=2327&cus_id=
USENET&qtn_id=1424
I got it to work-
I was using Mandrake 5.3 but I went ahead and bought the Red Hat box. After
installing (which was much easier I might add) it detected everything, my
eth card was working fine and I was able to ping the other machines on the
lan. I tried netscape again and got the same error but I found I was able to
use the internet as long as I entered the IP address which told me that it
was a DNS problem. Using the linuxconf program I enter the IP of both my
host that was running Sygate and the DNS server of @home and it worked. I
hope this helps out somebody else and once again thanks for the help. BTW I
am not sure if you need both entries for the DNS but since it was working I
didnt want to mess with it.
James
------------------------------
From: Juergen Pabel <[EMAIL PROTECTED]>
Subject: Re: port forwarding
Date: Mon, 09 Aug 1999 22:25:06 -0400
i guess you could use
ipchains -A -p tcp -s 0/0 -d ipaddressfirewall/32 --destination-port 21
-J MASQ
assuming all traffic from your private net is masq'ed going out i would
think this works,
but haven't tested it. by the way: what's wrong with ipautofw? ever
looked into ipportfw
(need ipmasqadm for this)??
jp
Adrian wrote:
>
> I want to take packets sent from outside my network to x port on my
> firewall and forward them to x port on a machine behind it.
> slack 4.0 kernel 2.2.10 - ipforwarding and masq on
>
> using the ipchains command I can forward packets from x port on my
> firewall machine to y port on my firewall machine - I'm sure there must
> be a way to send them to my internal machine.
>
> ipautofw does it - but I don't want to set it up on my machine
> ipautofw -A -r tcp 21 -h 192.168.1.5
>
> All I want to know is what is the equivalent syntax for ipchains - or
> can I not do it at all and have to change how I have setup my machine.
> Thanks
> /C
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
