Linux-Networking Digest #208, Volume #12 Fri, 13 Aug 99 01:13:53 EDT
Contents:
Re: Grabbing IP# automatically (Chris Mahmood)
Re: NFS jitters (Tim Moore)
Re: PPP module errors (John Kinsella)
Help Running SATAN from Linux Box ("James J. Moore")
Re: Connecting Ethernet and EQL/PPP on the same system (Bill Steiner)
Re: telnetd: all network ports in use (Juergen Heinzl)
@Home Cable Modem and Linux ("Chad Pierce")
Sean, read this, please ("Jonathan Wilson")
Re: Cloning (haze)
Re: Disallowing telnet access for one specific account (Chris Mahmood)
which distribution to use?? ("Christopher")
Re: Disallowing telnet access for one specific account (Michael Paoli)
LinkSys Etherfast 10/100 (I know...) (Brian Whitman)
Re: home network (please reply) ([EMAIL PROTECTED])
Re: DHCP questions (cable modem) (Chris)
Re: Samba: Linux and NT ("FenderAxe")
----------------------------------------------------------------------------
From: Chris Mahmood <[EMAIL PROTECTED]>
Subject: Re: Grabbing IP# automatically
Date: 12 Aug 1999 11:42:54 -0700
Habibie4m <[EMAIL PROTECTED]> writes:
> Hi,
>
> I am wondering if anyone has any Perl, C, or C++ script that will
> automatically grab an IP number once a PPP connection is established.
> Preferrably a C++ script.
Sorry, my C++ scripting is a little rusty, but something like
ifconfig | grep inet.\*P-t-P | awk '{print $2}' | tr -d [a-z,:]
should do the trick. Yes, you can all of that with one grep but I'm in a
hurry.
-ckm
------------------------------
Date: Sat, 07 Aug 1999 00:56:34 -0700
From: Tim Moore <[EMAIL PROTECTED]>
Subject: Re: NFS jitters
try mounting with '-o
rsize=8k,wsize=8k,noatime,nocto,bg,hard,intr,udp,nfsvers=3'
> over a 10mbit network. I get about 300K transfer
> rates, which should be plenty for 128kbit mp3 streaming.
> But, when I play an mp3 every so often it skips. Is there
> anything I can do to tune NFS performance? I'm using the
--
timothymoore "Everything is permitted. Nothing is forbidden."
bigfoot WS Burroughs.
com
------------------------------
From: John Kinsella <[EMAIL PROTECTED]>
Subject: Re: PPP module errors
Date: Thu, 12 Aug 1999 19:57:28 +0100
Module ppp needs module slhc loaded as well. Use modprobe instead of
insmod to load it automatically i.e. modprobe ppp will load slhc also so
long
as modules.dep is up to date ( depmod -a ).
Wei-shi Tsai wrote:
> I recently upgraded my kernel from 2.2.6 to 2.2.10. However, my PPP
> module now refuses to load. When I attempt to load the module manually,
> this list of errors occur:
>
> perdita:/lib/modules/2.2.10/net# insmod ppp.o
> ppp.o: unresolved symbol slhc_init
> ppp.o: unresolved symbol slhc_free
> ppp.o: unresolved symbol slhc_uncompress
> ppp.o: unresolved symbol slhc_toss
> ppp.o: unresolved symbol slhc_remember
> ppp.o: unresolved symbol slhc_compress
> perdita:/lib/modules/2.2.10/net#
>
> Any help on this is appreciated.
> --
> Wei-shi Tsai
> Cymbeline on #descent, Kahn, and ICQ(UIN:2801023)
> The Lost Material Defender Page:
> http://www.crosswinds.net/dallas/~perdita/index.html
> MoonieCode(1.8.11):
> SM:5+ F:sMe++>Mo+>:vZo<Bl+>:aLu+Ry+:pClR2 D:sMa<:vBe-Wi-> X:a0s|35d++
> O:d+:s?:?o?:a--:h--- P:a+:s6:w-:f?:eBrD:hBkm:t-:cAs:y---:r+|
------------------------------
From: "James J. Moore" <[EMAIL PROTECTED]>
Subject: Help Running SATAN from Linux Box
Date: Thu, 12 Aug 1999 13:19:57 -0400
As the SATAN docs warned, I'm having trouble getting SATAN 1.1.1 to
work on a Redhat 6.0 server using Netscape 4.08 as my browser. But the
problem is not what I expected. The probes seem to run fine from the
command line, but whenever I attempt to execute any of the PERL scripts
from the web interface, SATAN's dedicated web server just hands me back
the PERL script as a downloaded file rather than executing it.
Anyone having the same problem? Any ideas for a quick fix? Thanks
in advance!
Jim Moore
[EMAIL PROTECTED]
Citizens National Bank
------------------------------
From: Bill Steiner <[EMAIL PROTECTED]>
Subject: Re: Connecting Ethernet and EQL/PPP on the same system
Date: Thu, 12 Aug 1999 20:14:19 -0700
Are you using eql_enslave, Keith? It's required to get two serial devices
to load share with EQL. See /doc/HOWTO/NET-3HOWTO on your distribution
cdrom for more info. Beware that the ftp address on page 36 of the HOWTO
is in incorrect; try
ftp://metalab.unc.edu/pub/linux/system/network/serial/eql-1.2.tar.gz
instead.
eql_enslave didn't come with Red Hat 5.2 or 6.0 distributions, which are
the only Linux flavors I'm familiar with. Don't know if it comes with
other distributions. I downloaded it from metalab, but can't get it to
work. Also can't get it to recompile. Others in the newsgroup seem to
have the same problems. It was developed for much earlier kernels in
'95-'96. Haven't found anyone yet who's confirmed they have it working
with the later kernels.
If you do have it working, please share how you did it. If you don't,
multilink may be worth looking into @ http://linux-mp.terz.de. It's
supposed to replace eql eventually, and is currently in development.
Good luck.
Bill Steiner
Keith Harris wrote:
> I'm trying have two connections to the internet. One via an ethernet
> card connected through a cable tv modem and the other connect via ppp
> connection. The ppp connection is how I am connected to the world
> through my domain name but I want to utilize the speed of my ethernet
> connection to the internet. When I do the following, my ppp/eql
> interface stops working allowing only my ethernet connection to work.
> Do you have any suggestions on how to make them both work on
> the same computer system?
>
> I'm running linux_2.2.5 and ppp_2.3.5-1.
> For The EQL/PPP Connection I type:
> ifconfig eql 123.XXX.XX.XXX netmask 255.255.255.255 mtu 1500 up
> route add -net 123.XXX.XX.0 netmask 255.255.255.255 eql
> route add default eql
> eql_enslave eql ppp0 31200
>
> For The ETH0 Connection I type:
> ifconfig eth0 45.Y.YYY.YYY netmask 255.255.255.128 broadcast
> 45.Y.YYY.255 up
> route add -net 45.Y.YYY.128 netmask 255.255.255.128 eth0
> route add default gw 45.Y.YYY.YYY eth0
------------------------------
From: [EMAIL PROTECTED] (Juergen Heinzl)
Subject: Re: telnetd: all network ports in use
Date: Thu, 12 Aug 1999 23:12:08 GMT
In article <[EMAIL PROTECTED]>, Derek Cahill wrote:
>I have searched high and low for the answer to this and all I find are other
>people with the same unanswered questions...
>
>I just upgraded to Linux-Mandrake 6.0 from RedHat 5.2. After the upgrade,
>telnetting to the machine does not work. Instead, I get "all network ports
>in use".
>
>According to the little snippets of information I've found, this should be a
>problem with the *pty* dev's. So I rm'd them and re-created them manually.
>No luck. Re-rpm'd them off the CD. No luck.
See /usr/src/linux/Documentation/Changes and search for pty, one solution
is described there.
Ta',
Juergen
--
\ Real name : J�rgen Heinzl \ no flames /
\ EMail Private : [EMAIL PROTECTED] \ send money instead /
------------------------------
From: "Chad Pierce" <[EMAIL PROTECTED]>
Subject: @Home Cable Modem and Linux
Date: Thu, 12 Aug 1999 23:00:42 GMT
Hiya,
I have installed Mandrake-Linux 6.0 and need help getting the @home cable
modem to work, using my 3 Com 3C9XX ethernet card. Linux recognized the
ethernet card, but when I go in to set up the network connection, I get no
response from @home. Is there a trick to setting up the @home service.
I've spent about 4 hours trying to get this to work, and am now desperate.
I want to ditch windows, but without my cable modem, I would be lost. So I
still have to keep it running. If anyone can help, I'd be appreciative.
Chad
------------------------------
From: "Jonathan Wilson" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,comp.os.linux.x
Subject: Sean, read this, please
Date: Fri, 13 Aug 1999 02:57:11 GMT
I've just had exactly the same problem (I've got posts on it all over the
place, look for "Jonathan Wilson") and mine was indeed a DNS problem. You
most likely will NOT find any refrences to it in Windows, I've setup up
internet connections on several Windows computers (including firewalls) and
never even heard of DNS, which is why I didn't think to try that on my own.
You can find your server's DNS info either in the documentation your ISP
gave you, or on their website. Once you get the DNS filled in, if it still
doesn't work, try pinging. (if you don't know what pinging is, lets us
know).
Also, if your new I wouldn't try editing any files. Since you (like me) are
running Mandrake, I'm sure you've got linxconf installed. (to open it, go to
an xterm or Konsole window and type "linuxconf" and hit the enter key.
You also need to put the DNS info in kppp. Can't remember where is goes but
their IS a place for it somewhere.
Happy Linuxing,
JW
------------------------------
From: haze <[EMAIL PROTECTED]>
Subject: Re: Cloning
Date: Fri, 13 Aug 1999 03:40:10 GMT
couldn't you tell ghost to copy the parition to the other parition
HAZE
tod wrote:
> Hi Linux users:
> Please...I would be grateful for an answer to my question about cloning
> an ext2 drive.� After posting this question twice, I have been told;
> "You don't need Ghost or DriveClone" and "Why would you want to do it
> that way?"
>
> Is it possible to use the above mentioned utilities to clone an ext2
> file system using two IDE hard drives?
>
> Thanks,
> Tod
------------------------------
From: Chris Mahmood <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.security
Subject: Re: Disallowing telnet access for one specific account
Date: 12 Aug 1999 15:37:07 -0700
David <[EMAIL PROTECTED]> writes:
> Due to the
> generic nature of the account and the fact that it has a shell, I would
> like to disable telnet access for just that one account without
> disabling telnet. Does anyone know how or if this is possible?
You can use the '%u' expansion in /etc/hosts.allow (or /etc/hosts.deny
depending on how you set it up) to do this. See hosts_access(5) for
details.
-ckm
------------------------------
From: "Christopher" <[EMAIL PROTECTED]>
Subject: which distribution to use??
Date: Fri, 13 Aug 1999 03:41:13 GMT
Hi all, I'm seriously considering adding Linux to my PC and eventually
switch over to Linux use after I become proficient at it. Windows just
crashed on me for the last damn time (well it won't be the last I'm sure,
but the last that I"m willing to take). Can anyone recommend a good
distribution for a Newbie (capital N there). I've been hearing lotta good
stuff about Red Hat 6.0, its ease of installation and use, etc. But just
today I read about the Mandrake distribution which supposedly is a better
Red Hat than Red Hat. Any suggestions or comments are extremely welcomed.
Thanks a lot
Sincerely,
- someone who didn't know that windows came with a patented blue screen of
death!
------------------------------
From: [EMAIL PROTECTED] (Michael Paoli)
Crossposted-To: comp.os.linux.security
Subject: Re: Disallowing telnet access for one specific account
Date: 12 Aug 1999 20:36:55 -0700
Reply-To: [EMAIL PROTECTED]
I would *not* recommend adding /bin/true to /etc/shells, or adding any
other program to /etc/shells that is generally intended not to function
as some type of login shell or program. Most specifically one of the
steps generally used in common practice to disable an account is to
change the shell (in /etc/passwd) to /bin/true (/usr/bin/true on some
systems). If you want to have a program added to /etc/shells which does
not provide interactive login, explicitly create a secure program which
exits 0 and prevents obtaining an interactive session (see the secure
programming FAQ), then make that pathname the user's shell, and add that
pathname to /etc/shells. If you're feeling lazy, you could make
symbolic or hard link from /bin/true (or /usr/bin/true) to your new
pathname (perhaps /usr/local/bin/ftponly), and then add that new
pathname to /etc/shells and set it to be the user's login shell in
/etc/passwd. Note that this may still leave open some access you might
not want - some *nix variants will assume the account is still enabled
if the shell seen in /etc/passwd is in /etc/shells (some implementations
of rexec come to mind). A better solution is using an ftpd (such as
wu-ftpd) which can be configured to allow access without the user's
/etc/passwd shell needing to be in /etc/shells.
In article <[EMAIL PROTECTED]>,
Robert Nichols <[EMAIL PROTECTED]> wrote:
>In article <[EMAIL PROTECTED]>,
>David <[EMAIL PROTECTED]> wrote:
>:ftp access the shell has to be something such as bash. Due to the
>:generic nature of the account and the fact that it has a shell, I would
>:like to disable telnet access for just that one account without
>Pick an innocuous program like /bin/true and use that as the account's
>shell. Add /bin/true to the list of valid shells in /etc/shells to make
>it acceptable to FTP. Anyone who logs into this account, either from a
Note: Followup-To trimmed
--
[EMAIL PROTECTED]
------------------------------
From: Brian Whitman <[EMAIL PROTECTED]>
Subject: LinkSys Etherfast 10/100 (I know...)
Date: Fri, 13 Aug 1999 00:36:06 -0400
I've seen all the other posts concerning this card, but my problem is
*special* :)
I have a Linksys Etherfast 10/100 NIC (PCI). I have compiled and
insmodded the tulip.o that comes with the card, and it recognizes it
wonderfully upon boot as eth0. Now, my problem is, I can't do anything
with it.
What I know:
* I can ping "myself": 192.168.0.1
* From the other system on my network (via crossover cable, a Win98), I
can ping it fine.
* I should be connecting to the inernet via Win98's DHCP / "Internet
Connection Sharing."
* In linuxconf I have IP address set to 192.168.0.1, driver set to
tulip, interface set to eth0, and netmask to 255.255.255.0... (I have
also tried selectively eliminating various parameters to no avail)
* I cannot ping to anywhere from linux but myself.
* ifconfig sees the card fine with the IP address set up.
So, what am I doing wrong? All I'd like to do is to be able to use the
other computer's net connection via DHCP...
Thanks!
--
Brian Whitman
[EMAIL PROTECTED]
http://www.netspace.org/users/bwhitman
[ Sound information: http://www.crudites.org ]
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To:
comp.sys.ibm.pc.hardware.networking,microsoft.public.win95.networking,comp.os.ms-windows.networking.windows,comp.os.ms-windows.networking.win95
Subject: Re: home network (please reply)
Date: Fri, 13 Aug 1999 00:44:34 -0400
Reply-To: [EMAIL PROTECTED]
On Tue, 10 Aug 1999 20:01:24 GMT, in <comp.sys.ibm.pc.hardware.networking>,
[EMAIL PROTECTED] (Morely Dotes) wrote:
>
> In article <[EMAIL PROTECTED]>, Evan Dandrea <[EMAIL PROTECTED]>
> wrote:
> >
> >I am looking to start a home network, but I need help. I am rather new
> >to this whole thing and don't really know what I specifically need. The
> >setup that I hope to achieve is as follows:
> >
> >486 running Win95 (120 ft max. from hub)
> >Pentium running Win98 (50 ft max. from hub)
> >AMD K6 running Win98 (50 ft max. from hub)
> >Pentium running Redhat 6.0 (10 ft max. from hub)
> >AMD K6-2 running Redhat Linux 6.0 w/ Samba (file server, 10 ft max. from
> >hub)
> >Snap Server or Cobalt Qube (web server, 10 ft max. from hub)
> >Print server attached to a HP Deskjet 600c (any recommendations?)
>
[snip]
>
> >What kind of hubs, patch panels, etc. will I need?
>
> Looks like an 8-port hub would do the job; I suspect the DSL "modem" will
> want
> a 10Mb uplink port, so economically it would make sense to go with a 10Mb
> hub.
[snip]
Most of your other comments were quite on-point; but I have to take issue
with this one.
Why drastically slow down the whole LAN, just to acommodate one (maybe two)
10Mbit devices? It would make far more sense to use an N-way auto-sensing
10/100 switching hub, or even a (low-end) full 10/100 switch. Netgear and
D-Link both make several suitable models,with prices (for 8-port models)
starting around $200-250.
-- Jay T. Blocksom
----------------------------
Appropriate Technology, Inc.
approtek[at]rcn.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
NOTE: E-Mail address in "From:" line is INVALID! Use address in signature.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Unsolicited advertising sent to this E-Mail address is expressly prohibited
under USC Title 47, Section 227. Violators are subject to charge of up to
$1,500 per incident or treble actual costs, whichever is greater.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
------------------------------
From: [EMAIL PROTECTED] (Chris)
Subject: Re: DHCP questions (cable modem)
Date: Thu, 12 Aug 1999 22:27:21 GMT
On Thu, 12 Aug 1999 14:04:39 -0000, "Robert_Glover"
<Please_reply_to@newsgroup> wrote in comp.os.linux.networking:
>> I'm using the @Home network. For whatever reason, my provider gives
>me a new
>> IP address every day (or every other day or whatever).
>> and when they change the IP it no longer forwards any traffic.
>I can
>> ping the new address from another PC on the network, but I can't get
>past it.
A lot of people try to use (or modify) default firewall rules that are
almost always based on IP addresses that are either static or don't change
while the Linux machine is active, such as:
source /etc/dhcpc/hostinfo-eth1
ipfwadm -F -a masquerade -S 192.168.1.0/24 -D $IPADDR
This works fine until your internet address changes. A simpler and more
reliable solution is to use device-based firewall rules and ignore the
address completely. On my machine, eth0 is the private network and eth1
is connected to an ADSL modem with a DHCP leased address. My masquerade
rules are therefore:
ipfwadm -F -p deny
ipfwadm -F -f
ipfwadm -F -a masquerade -S 192.168.1.0/24 -W eth1
Hardware devices in the masquerade rule refer to the OUTPUT device. My
rule only masquerades packets going from a private network address to the
public interface.
It doesn't get any simpler than this.
------------------------------
From: "FenderAxe" <[EMAIL PROTECTED]>
Subject: Re: Samba: Linux and NT
Date: Thu, 12 Aug 1999 21:08:40 -0700
This is a multi-part message in MIME format.
=======_NextPart_000_003E_01BEE506.DA615950
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hi guys --
I think you probably need to share the folders properly in Linux, not =
just in Samba. I had this problem, but solved it by going into KDE (or =
Gnome or whatever), browsing to the folder using file manager, then =
right clicking and selecting properties. Check out who "owns" the =
folder and what group owns it, too. Make sure the permissions are set =
so that you can access the folder from other machines as a specific user =
or group member, then give it another shot -- it'll probably work!
FA
Weapon X <[EMAIL PROTECTED]> wrote in message =
news:7ovabh$3bf$[EMAIL PROTECTED]...
Hey, I've been working at this thing for days. I've managed to get my =
Linux box in my Network Neighborhood and it looks like I set up Samba =
and the Samba shares just fine (as per the Samba documents that I have =
printed up).=20
=20
But when I go to access the shares from my NT box, the login screen =
comes up, I punch in my login info and it says: sorry not authorized to =
login in from this machine. (But I can Telnet and FTP into my Linux box =
just fine) Again I read all the Samba docs, but they don't seem to be =
any help.
Can anyone help me? Do you need more info?
=======_NextPart_000_003E_01BEE506.DA615950
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2919.800" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hi guys --</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I think you probably need to share the =
folders=20
properly in Linux, not just in Samba. I had this problem, but =
solved it by=20
going into KDE (or Gnome or whatever), browsing to the folder using file =
manager, then right clicking and selecting properties. Check out =
who=20
"owns" the folder and what group owns it, too. Make sure the =
permissions=20
are set so that you can access the folder from other machines as a =
specific user=20
or group member, then give it another shot -- it'll probably =
work!</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>FA</FONT></DIV>
<BLOCKQUOTE=20
style=3D"BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: =
0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
<DIV>Weapon X <<A=20
href=3D"mailto:[EMAIL PROTECTED]">[EMAIL PROTECTED]</A>> wrote in =
message=20
<A=20
=
href=3D"news:7ovabh$3bf$[EMAIL PROTECTED]">news:7ovabh$3bf$[EMAIL PROTECTED]=
a</A>...</DIV>
<DIV><FONT size=3D2>Hey, I've been working at this thing for days. =
I've managed=20
to get my Linux box in my Network Neighborhood and it looks like I set =
up=20
Samba and the Samba shares just fine (as per the Samba documents that =
I have=20
printed up). </FONT></DIV>
<DIV><FONT size=3D2></FONT> </DIV>
<DIV><FONT size=3D2>But when I go to access the shares from my NT box, =
the login=20
screen comes up, I punch in my login info and it says: sorry not =
authorized to=20
login in from this machine. (But I can Telnet and FTP into my Linux =
box just=20
fine) Again I read all the Samba docs, but they don't seem to be any=20
help.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=3D2>Can anyone help me? Do you need more=20
info?</FONT></DIV></BLOCKQUOTE></BODY></HTML>
=======_NextPart_000_003E_01BEE506.DA615950==
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
