Linux-Networking Digest #221, Volume #12 Sat, 14 Aug 99 07:14:04 EDT
Contents:
Re: Cant get modem to connect with 'chat' and 'pppd' ("PsychoTron")
Re: ipchains rules (Steffen Zahn)
Linux windows connection problem ("Richard Thomas")
Linux security update - newbie questions ("help")
Re: Cant get modem to connect with 'chat' and 'pppd' (W.G. Unruh)
Re: PPP negotiation failure (W.G. Unruh)
How can a Program in Linux to allow more than 1 user to open?????????? (Jackson
=?iso-8859-1?Q?o=A8=BA=B4=ED=A4=FB?=)
Re: How2 route between two 192.168.*.* subnets? ("Steve Cowles")
Re: Samba: Linux and NT ("Davide Marzaloni")
Re: ipchains port forward, ipmasqadm mfw ("Davide Marzaloni")
Re: How can a Program in Linux to allow more than 1 user to open?????????? (Nick
Ruisi)
----------------------------------------------------------------------------
From: "PsychoTron" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,linux.dev.newbie
Subject: Re: Cant get modem to connect with 'chat' and 'pppd'
Date: Sat, 14 Aug 1999 04:31:44 -0400
Why write a script file? KDE makes an auto-dialer and PPP starter for
Internet connections.
You could always use linuxconf to connect also.
Kalgoorlie Assay Labs <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> I swear it's chat's problem.
>
> I can get linux to connect using xisp and x-windows, not a worry. I can
also
> get it working by pressing activate on the Network configurator. I can get
> my modem dialing into my ISP from the command line using minicom. I have
the
> right pot: cua0, ttyS0, and modem. (using /dev/modem works with x-windows
> and minicom)
>
> However, if I follow the How-to's and set up a pppd/chat script
combination,
> it will not work.
>
> When executing the script, I can see that the ATZ command gets through...
> the modem hangs up. Great. But then it makes no attempts to dial. No
lights
> flicker, no sound comes out. I tried running just chat without pppd to see
> the output, and it runs... ATZ command is sent, then nothing else.
>
> Connect script is:
>
> pppd connect 'chat "" "ATZ" "" ATD 90917055 CONNECT "" ogin: login word:
> password' /dev/modem 57600 modem
>
> All the information is correct (except passord and login of course) But
the
> modem doesn't even seem to dial.
>
> I've tried to echo commands to the modem:
>
> echo ATZ > /dev/modem
>
> I dont get an error message, but it doesnt do anything (Like it would in
> DOS). Any help would be appreciated... WHY WONT IT WORK FROM THE COMMAND
> LINE!!!!! *grrrrr*
>
> [EMAIL PROTECTED]
>
>
------------------------------
From: Steffen Zahn <[EMAIL PROTECTED]>
Crossposted-To: comp.security.firewalls
Subject: Re: ipchains rules
Date: 14 Aug 1999 10:32:24 +0200
># Deny traffic from impossible/private/reserved addresses.
>#/sbin/ipchains -A input -p all -i ppp0 -s 10.0.0.0/0 -d 0/0 -j DENY
>#/sbin/ipchains -A input -p all -i ppp0 -s 172.16.0.0/0 -d 0/0 -j DENY
>#/sbin/ipchains -A input -p all -i ppp0 -s 192.168.0.0/0 -d 0/0 -j DENY
>--8<--------------------------------------------------------------------
>Now to the problem. The rules that are commented out makes it impossible to
>gethostname. Here is what mailog says when I use the above rules:
Try to replace the /0 specifiactions with the real number of
1 bits in the corresponding netmask. In my script it looks
like this:
$IPCHAINS -A internet -s 10.0.0.0/8 -l -j DENY # reserved range
$IPCHAINS -A internet -s 172.16.0.0/12 -l -j DENY # reserved range
$IPCHAINS -A internet -s 192.168.0.0/16 -l -j DENY # reserved range
My guess is that a specification of 10.0.0.0/0 or any other
specification ending in /0 matches any ip address and especially
the address of your name server leading to your problems.
Try
/sbin/ipchains -A input -p all -i ppp0 -s 10.0.0.0/8 -d 0/0 -j DENY
/sbin/ipchains -A input -p all -i ppp0 -s 172.16.0.0/12 -d 0/0 -j DENY
/sbin/ipchains -A input -p all -i ppp0 -s 192.168.0.0/16 -d 0/0 -j DENY
Steffen
--
home email: user@domain where domain=berlin.snafu.de, user=zahn
Use of my address for unsolicited commercial advertising is forbidden.
2^6972593 - 1 | "Where do you want to crash today?"
------------------------------
From: "Richard Thomas" <[EMAIL PROTECTED]>
Subject: Linux windows connection problem
Date: Sat, 14 Aug 1999 10:12:39 +0100
Running a Redhat Linux 5.2 (kernel 2.0.36.0.7) and Windows98. Network cards
Netgear nea201 (ne2000 compatible) connected to a Netgear EN104 (4 port
Ethernet hub). Linux IP = 192.168.1.1 Broadcast = 192.168.1.255, Mask =
255.255.255.0.
Window IP = 192.168.1.2, Mask = 255.255.255.0.
cannot get the two machine to communicate. Try and ping from windows get
request timed out, try from linux get nothing.
------------------------------
From: "help" <[EMAIL PROTECTED]>
Crossposted-To:
athome.users-unix,comp.os.linux,comp.os.linux.misc,comp.os.linux.questions,comp.os.linux.redhat,comp.os.linux.setup
Subject: Linux security update - newbie questions
Date: Sat, 14 Aug 1999 06:26:52 GMT
>From www.linux-mandrake.com :
>SECURITY UPDATE: kernel 2.2.9
>2.2.x kernel are all affected by a networking security bug. Please do not
use your machine in a network >environment until you update with our new
kernel.
>Command line for upgrading:
>rpm -ivh kernel-2.2.9-27mdk.i586.rpm
>Important note: please don't forget to modify /etc/lilo.conf after
upgrading, and re-run /sbin/lilo.
Complete Newbie Questions:
What do I modify in /etc/lilo.conf?
Re-run /sbin/lilo = rebooting computer?
Thanks
------------------------------
From: [EMAIL PROTECTED] (W.G. Unruh)
Crossposted-To: comp.os.linux.misc,linux.dev.newbie
Subject: Re: Cant get modem to connect with 'chat' and 'pppd'
Date: 14 Aug 99 10:05:57 GMT
"PsychoTron" <[EMAIL PROTECTED]> writes:
>Why write a script file? KDE makes an auto-dialer and PPP starter for
>Internet connections.
Because they make assumptions about how the connection should be maade and are
difficult to
debug if they do not work
------------------------------
From: [EMAIL PROTECTED] (W.G. Unruh)
Subject: Re: PPP negotiation failure
Date: 14 Aug 99 10:10:14 GMT
[EMAIL PROTECTED] (ORRIN) writes:
>The major problem is that I can't seen to negotiate a PPP
>session to my ISP who is running BSDI BSD/OS 3.0. I can sign-on
>OK with my user and password and when the ISP sends 'PPP Ready',
>pppd is called, it sends a couple of lines then times out. The
>error logs look like this:
>Aug 9 15:16:49 notms pppd[410]: pppd 2.3.5 started by orrin, uid 500
>Aug 9 15:16:49 notms pppd[410]: Using interface ppp0
>Aug 9 15:16:49 notms pppd[410]: Connect: ppp0 <--> /dev/modem
>Aug 9 15:16:49 notms pppd[410]: sent [LCP ConfReq id=0x1 <magic 0x330b6914> <pcomp>
><accomp>]
>Aug 9 15:16:50 notms pppd[410]: rcvd [LCP ConfReq id=0x2 <mru 1500> <asyncmap
>0xa0000> <magic 0x616403e8> <pcomp> <accomp>]
The far side for some reason wants the option
asyncmap 0xa0000
do put that into /etc/ppp/options. some systems do not like it if you do not
suggest it first to them.
Also you might try getting a newer version of pppd( 2.3.8 now I think)
Anyway the far side for some reason is not responding to you.
>Aug 9 15:16:50 notms pppd[410]: sent [LCP ConfAck id=0x2 <mru 1500> <asyncmap
>0xa0000> <magic 0x616403e8> <pcomp> <accomp>]
>Aug 9 15:16:52 notms pppd[410]: sent [LCP ConfReq id=0x1 <magic 0x330b6914> <pcomp>
><accomp>]
>Aug 9 15:17:19 notms pppd[410]: LCP: timeout sending Config-Requests
>Aug 9 15:17:19 notms pppd[410]: Connection terminated.
>Aug 9 15:17:19 notms pppd[410]: Hangup (SIGHUP)
>Aug 9 15:17:19 notms pppd[410]: Exit.
------------------------------
From: Jackson =?iso-8859-1?Q?o=A8=BA=B4=ED=A4=FB?= <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.advocacy,starforum.comp.unix,hk.comp.software
Subject: How can a Program in Linux to allow more than 1 user to open??????????
Date: Sat, 14 Aug 1999 17:59:47 +0800
This is a multi-part message in MIME format.
==============D0D685142890439AEE6F78F9
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
==============D0D685142890439AEE6F78F9
Content-Type: message/rfc822
Content-Transfer-Encoding: 8bit
Content-Disposition: inline
X-Mozilla-Status2: 00000000
Message-ID: <[EMAIL PROTECTED]>
Date: Tue, 10 Aug 1999 18:23:33 +0800
From: Jackson =?iso-8859-1?Q?o=A8=BA=B4=ED=A4=FB?= <[EMAIL PROTECTED]>
Organization: =?iso-8859-1?Q?=BC=C9=AE=7B=B6=B0=A4=A4=C0=E7?=
X-Mozilla-Draft-Info: internal/draft; vcard=0; receipt=0; uuencode=0; html=1;
linewidth=0
X-Mailer: Mozilla 4.61 [en] (Win98; I)
X-Accept-Language: zh-CN,zh-TW
MIME-Version: 1.0
Newsgroups: hklug.general
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
Subject: How can a Program in Linux to allow more than 1 user to
open???????????????
X-Priority: 1 (Highest)
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
�ULinux�l��:
Pls help me to solve the following problems in Linux Redhat 6.0, thank
you very much! ^_^
1) A VB5 networking program is running in server, I made it share as
[tmp] directory in SMB.CONF file and use CHMOD 777 xxxxxxxxx.MDB to
grant it to everyone, I want to make it can be open by more than one
user at the same moment. Because it can be open by one user through
network only now.
A segment in SMB.CONF related to VB5 program is showing:
==============================
[vb5-program]
comment = Program
path = /tmp/vb5prog
public = yes
browseable = yes
read only = no
writable = yes
create mode = 0755
==============================
�W�q�O�_���T?
2) A internal ATAPI Zip 100M Drive installed in Linux Redhat 6.0, I did
the same thing in SMB.CONF file to share zip drive, and mount the
/dev/hdd4 to /mnt/zip directory. I can read the 100M disk from the
Win95 workstation through network neighbourhood only, I cannot delete,
edit or move anything from/to the zip drive.
==============================
[zip]
comment = Zip100 on RedHat 6.0
path = /mnt/zip
public = yes
browseable = yes
read only = no
writable = yes
create mode = 0755
==============================
�W�q�O�_���T?
3) How can I assign permission to a group?
Uranus
==============D0D685142890439AEE6F78F9==
------------------------------
From: "Steve Cowles" <[EMAIL PROTECTED]>
Subject: Re: How2 route between two 192.168.*.* subnets?
Date: Sat, 14 Aug 1999 10:40:18 GMT
#=========================================================
# Enable IP forwarding
#=========================================================
# NOTE: On RedHat, you can enable IP_FORWARDING at boot up by
# changing the options in /etc/sysconfig/network from:
#
# FORWARD_IPV4=false
# to
# FORWARD_IPV4=true
# or
# at a command prompt, simply type
echo "1" > /proc/sys/net/ipv4/ip_forward
Steve Cowles
SWCowles at gte dot net
Arun K. Khan <[EMAIL PROTECTED]> wrote in message
news:7p2u60$6l7$[EMAIL PROTECTED]...
>
>
> |
> |
> | subnet 1 |
> |-------------------|<--eth0
> | |
> | |
> B eth1->|------------------|
> | subnet 2 |
> |
> | C
>
> A
>
> Subnet 1: 192.168.11.0
> Has one workstation (System B), has one Intranet server (System A) (on
eth0)
>
> Subnet 2: 192.168.21.0
> Has one Intranet server (System A) (eth1), has one Gateway (System C)
>
> >System A (Intranet server) with 2 NICs (Linux 2.2.10)
> eth0: 192.168.11.11
> eth1: 192.168.21.2
>
> >System B (Workstation)
> eth0: 192.168.11.15
>
> >System C (Gateway)
> eth0: 192.168.21.1
>
> From B, I can ping A:eth0 and A:eth1. From C, I can ping A:eth1 and
A:eth0.
> However, from B I **cannot** ping C and vice versa. (pls. see kernel
routing
> tables on each system below)
>
> What am I missing in A such that systems on both subnet can communicate?
>
> Once, I have the above solved then I plan to make C a firewall/masquarade
> gateway for the Intranet using diald, PPP, ipchains etc.
>
> I would appreciate ideas, especially if you have setup a similar system.
>
> TIA,
> Arun Khan
> PS pls. remove 'nospam.' to reply by email
>
>
> >>>>>>>>>>>>>>>>>>>>> Kernel Routing Tables <<<<<<<<<<<<<<<<<<<<<<<<<
>
> On A, the kernel routing setup as shown below:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
Iface
> 192.168.11.11 0.0.0.0 255.255.255.255 UH 1 0 0
dummy0
> 192.168.21.0 0.0.0.0 255.255.255.0 U 0 0 0
eth1
> 192.168.11.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
>
>
> On B, the kernel routing setup as shown below:
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
Iface
> 192.168.11.15 0.0.0.0 255.255.255.255 UH 0 0 0
eth0
> 192.168.21.0 192.168.11.11 255.255.255.0 UG 0 0 0
eth0
> 192.168.11.0 0.0.0.0 255.255.255.0 U 0 0 0
eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
>
> On C, the kernel routing setup as shown below:
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
Iface
> 192.168.21.1 0.0.0.0 255.255.255.255 UH 0 0 0
dummy0
> 192.168.21.0 0.0.0.0 255.255.255.0 U 0 0 1
eth0
> 192.168.11.0 192.168.21.2 255.255.255.0 UG 0 0 2
eth0
> 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 1 lo
>
------------------------------
From: "Davide Marzaloni" <[EMAIL PROTECTED]>
Subject: Re: Samba: Linux and NT
Date: Sat, 14 Aug 1999 12:53:48 +0200
Same here too.
Only once I was able to complete the "login" to a shared resource.
I used linuxconf utility and it worked fine for just one session (when I
rebooted the system everythnig did not work anymore).
Now I downloaded the patch (smbclient) from RedHat and I'm going to try it
ASAP, but I think the problem is in the smbd and not onto the client pat of
the smb.
Please feel free to contact one each other to build a mini collaboration
team on this problem.
TIA
Davide Marzaloni
Cliff Wright <[EMAIL PROTECTED]> wrote in message
news:7ovsgd$28m$[EMAIL PROTECTED]...
>
> Same here, we're having the same trouble with RedHat 6.0 and NT. We too
> can telnet and ftp, we just can't log in to Linux from NT. Any help would
> REALLY be appreciated!
>
> Thanks,
> cdw
>
> ------------------ Posted via CNET Linux Help ------------------
> http://www.searchlinux.com
------------------------------
From: "Davide Marzaloni" <[EMAIL PROTECTED]>
Crossposted-To: redhat.networking.general
Subject: Re: ipchains port forward, ipmasqadm mfw
Date: Sat, 14 Aug 1999 12:58:47 +0200
I have a similar problem.
I'm trying to forward incoming request made to N real IP addresses (internet
ones) to M intranet ones.
I know this could be made with NAT or port forwarding support, but don't
know how.
My kernel is 2.2.5-15 (RH 6.0 standard) not yet recompiled.
How can I see if my kernel is still able to do NAT or portfw?
Which interfaces should I use? ipmasqadm? ipnatadm (where to download)?
ipportfw?
TIA
Davide Marzaloni
Amir Malik <[EMAIL PROTECTED]> wrote in message
news:7ovsgb$28m$[EMAIL PROTECTED]...
> I want to forward all incoming and outgoing traffic on 121.223.224.33
> (internet machine/gateway/router) on port 1755(TCP) to internal host
> 192.168.0.5 onto port 1755(TCP). So basically, I am setting up a streaming
> media server on the .5 machine and would like in/out connecions to
> 121.223.224.33 to be redirected/forwarded to 192.168.0.5. I have ipmasqadm
> and ipchains installed.
>
>
> Here is my current ipchains firewall setup:
>
> Chain input (policy ACCEPT):
> target prot opt source destination ports
> DENY tcp ------ 0.0.0.0 infoteen.com any -> telnet
> Chain forward (policy DENY):
> target prot opt source destination ports
> MASQ all ------ 192.168.0.0/24 anywhere n/a
> Chain output (policy ACCEPT):
>
> Thanks,
> Amir
>
> ------------------ Posted via CNET Linux Help ------------------
> http://www.searchlinux.com
------------------------------
From: Nick Ruisi <[EMAIL PROTECTED]>
Crossposted-To:
comp.os.linux.misc,comp.os.linux.setup,comp.os.linux.advocacy,starforum.comp.unix,hk.comp.software
Subject: Re: How can a Program in Linux to allow more than 1 user to open??????????
Date: Sat, 14 Aug 1999 06:59:30 -0400
The problem is not on your servers, its with your users.
When you open a mdb file in Windoze, the user has the option to "open
exclusive". It would appear your program is doing this.
Since this requires Windows-based advice, please take it to a MS-Newsgroup
Jackson o������ wrote:
> ------------------------------------------------------------------------
>
> Subject: How can a Program in Linux to allow more than 1 user to
> open???????????????
> Date: Tue, 10 Aug 1999 18:23:33 +0800
> From: Jackson o������ <[EMAIL PROTECTED]>
> Organization: �ɮ{������
> To: [EMAIL PROTECTED], [EMAIL PROTECTED]
> Newsgroups: hklug.general
>
> �ULinux�l��:
>
> Pls help me to solve the following problems in Linux Redhat 6.0, thank
> you very much! ^_^
>
> 1) A VB5 networking program is running in server, I made it share as
> [tmp] directory in SMB.CONF file and use CHMOD 777 xxxxxxxxx.MDB to
> grant it to everyone, I want to make it can be open by more than one
> user at the same moment. Because it can be open by one user through
> network only now.
> A segment in SMB.CONF related to VB5 program is showing:
> ==============================
> [vb5-program]
> comment = Program
> path = /tmp/vb5prog
> public = yes
> browseable = yes
> read only = no
> writable = yes
> create mode = 0755
> ==============================
> �W�q�O�_���T?
>
> 2) A internal ATAPI Zip 100M Drive installed in Linux Redhat 6.0, I did
> the same thing in SMB.CONF file to share zip drive, and mount the
> /dev/hdd4 to /mnt/zip directory. I can read the 100M disk from the
> Win95 workstation through network neighbourhood only, I cannot delete,
> edit or move anything from/to the zip drive.
> ==============================
> [zip]
> comment = Zip100 on RedHat 6.0
> path = /mnt/zip
> public = yes
> browseable = yes
> read only = no
> writable = yes
> create mode = 0755
> ==============================
> �W�q�O�_���T?
>
> 3) How can I assign permission to a group?
>
> Uranus
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
