Linux-Networking Digest #237, Volume #12 Sun, 15 Aug 99 19:13:38 EDT
Contents:
Newbee IP MASQing problem - HELP! (Charles van Trappen)
----------------------------------------------------------------------------
From: Charles van Trappen <[EMAIL PROTECTED]>
Subject: Newbee IP MASQing problem - HELP!
Date: Mon, 16 Aug 1999 00:47:36 +0200
This is a multi-part message in MIME format.
==============EAE696A78FDB5E3B871D8576
Content-Type: text/plain; charset=us-ascii
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
I have recently installed Suse 5.3 version of Linux on an old 386/8 MB
machine to serve as a router for my internet traffic for my local area
network at home.
I have networking including samba working. IP Masquerading is a
problem.
I use a Teles 16.3 BRI ISDN card with ipppd which seems to work if I
force it (using "isdnctrl dial ippp0") or by pinging an outside IP
address.
However, when trying to access the Internet from my WIndows 95 machine I
get nothing. The network is working though (Samba works!).
WHich files need to contain pertinent data for IP MASQ to work? Have
gone through all of the mini-HOWTO's but can't see the wood for the
trees anymore.
I also do not understand how the dynamic IP address is used for the
default gateway, although that seems to work.
My network is 192.168.0.1 through 192.168.0.4 (the last one is my Linux
machine for now). In the Linux machine I have given the ippp0 device
address 192.168.1.1 and the point-to-point remote 192.168.1.99. My home
LAN is called homenet as the domain name as well as the workgroup name.
I have attached the rc.config and diald.conf files.
Any clues welcome!
Cheers
Charles
==============EAE696A78FDB5E3B871D8576
Content-Type: text/plain; charset=iso-8859-1; name="rc.config"
Content-Transfer-Encoding: 8bit
Content-Disposition: inline; filename="rc.config"
#
# /etc/rc.config
#
# Copyright (c) 1996,98 S.u.S.E. GmbH Fuerth, Germany. All rights reserved.
#
# Author: Florian La Roche <[EMAIL PROTECTED]>, 1996
# Werner Fink <[EMAIL PROTECTED]>, 1996
# Burchard Steinbild <[EMAIL PROTECTED]>, 1996
#
# Configuration database for shell scripts in /sbin/init.d, /sbin/SuSEconfig
# and /root/bin/cron.daily
#
# Please edit this file and execute /sbin/SuSEconfig to configure everything.
# Also don't forget to edit the following files:
# - /etc/lilo.conf
# - /etc/fstab
# - /etc/profile
# - /etc/hosts
#
#
# Which language should be used
#
LANGUAGE="english"
#
# Some people don't want SuSEconfig to modify the system. With this
# entry you can disable SuSEconfig completely.
# Please don't contact our support if you have trouble configuring your
# system after having disabled SuSEconfig. (yes/no)
#
ENABLE_SUSECONFIG=yes
#
# SuSEconfig can mail reports (created by YaST or included in packages)
# to you. Here you can set the address. If you don't want it, simply
# set it to "".
#
MAIL_REPORTS_TO="root"
#
# There are two levels of mailing. If you set MAIL_LEVEL it to "warn"
# you only get the important mails. If you set it to "all", you get
# logs also.
#
MAIL_LEVEL="warn"
#
# Which device is the mouse ? (e.g. "/dev/ttyS0")
#
MOUSE=""
#
# Which device is the modem ? (e.g. "/dev/cua1")
#
MODEM="/dev/ttyS0"
#
# keytable and console font
# (e.g. "de-latin1-nodeadkeys" for KEYTABLE, empty for US settings)
#
KEYTABLE="us"
FONT=""
#
# keyboard repeat rate (2.0 - 30.0)
# keyboard delay time in ms (250, 500, 750, 1000)
# (you have to set both, if "kbdrate" should be called)
#
KBD_RATE=""
KBD_DELAY=""
#
# NumLock on? ("yes" or "no")
KBD_NUMLOCK="no"
#
# CapsLock on? ("yes" or "no")
KBD_CAPSLOCK="no"
#
# tty's for NumLock and CapsLock
# example: "tty1 tty2"
# "" for all tty's
#
KBD_TTY="tty1 tty2 tty3 tty4 tty5 tty6"
#
# Set to "-u" if your system clock is set to GMT, otherwise "".
#
GMT=""
#
# Timezone (e.g. MET)
# (this will set /usr/lib/zoneinfo/localtime)
#
TIMEZONE="CET"
#
# start loopback networking? ("yes" or "no")
#
START_LOOPBACK="yes"
#
# networking
#
# number of network cards: "_0" for one, "_0 _1 _2 _3" for four cards
#
NETCONFIG="_0 _1"
#
# IP Adresses
#
IPADDR_0="192.168.0.4"
IPADDR_1="192.168.1.1"
IPADDR_2=""
IPADDR_3=""
#
# network device names (e.g. "eth0")
#
NETDEV_0="eth0"
NETDEV_1="ippp0"
NETDEV_2=""
NETDEV_3=""
#
# parameteres for ifconfig, if you put "bootp" into it, bootp will
# be used to configure it
# sample entry for ethernet:
# IFCONFIG_0="192.168.81.38 broadcast 192.168.81.63 netmask 255.255.255.224"
#
IFCONFIG_0="192.168.0.4 broadcast 192.168.0.255 netmask 255.255.255.0 up"
IFCONFIG_1="192.168.1.1 pointopoint 192.168.1.99 up"
IFCONFIG_2=""
IFCONFIG_3=""
#
# setup dummy network device for IPADDR_0? this is useful for non permanent
# network connections (e.g. SLIP, PPP). Some software needs a connection
# to FQHOSTNAME (e.g. plp). (yes, no)
SETUPDUMMYDEV=yes
#
# Do you want the "dynamic IP patch" to be enabled at bootup? (yes/no)
#
IP_DYNIP=no
#
# SuSEconfig can do some checks and modifications for /etc/hosts.
# If this is not wanted, set the following variable to 'no' (yes, no).
#
CHECK_ETC_HOSTS=yes
#
# If CHECK_ETC_HOSTS is set to yes, you can let SuSEconfig sort your
# /etc/hosts. But in some cases this may be unwanted. So here is a
# flag, where you can configure if /etc/hosts should be "beautified".
# (yes/no)
#
BEAUTIFY_ETC_HOSTS=yes
#
# hostname of the system (full name)
# if zero, and bootp is used above, bootp will also set the hostname
# (e.g. "riemann.suse.de" or "hugo.linux.de")
# don't forget to also edit /etc/hosts for your system
#
FQHOSTNAME="router.homenet"
#
# SuSEconfig can create and check the /etc/host.conf for you. Should this
# be done ("yes" or "no").
#
CREATE_HOSTCONF="yes"
#
# Shall SuSEconfig maintain /etc/resolv.conf (needed for DNS) ?
# If set to yes and one of SEARCHLIST and NAMESERVER is empty,
# it is assumed, that no DNS is wanted and /etc/resolv.conf will
# be deleted. If yes and both are filled out, it will be created.
# "no" simply lets /etc/resolv.conf untouched.
#
CREATE_RESOLVCONF=yes
#
# Should NIS be used for name resolving (yes/no)
#
USE_NIS_FOR_RESOLVING=no
#
# domain searchlist that should be used in /etc/resolv.conf
# (e.g. "suse.de linux.de uni-stuttgart.de")
# Attention! this has to be filled out, if you want to access a name server
#
SEARCHLIST="homenet"
#
# space separated list of nameservers that should be used for /etc/resolv.conf
# give a maximum of 3 IP numbers
# (e.g. "192.168.116.11 192.168.7.7")
#
NAMESERVER="195.121.1.34"
#
# Used for News-Postings.
#
ORGANIZATION=""
#
# News server.
#
NNTPSERVER="news"
#
# space separated list of irc servers
#
IRCSERVER=""
#
# start the inet daemon in multi-user? ("yes" or "no")
# this is needed, if you have to telnet/rlogin to your own machine.
# It is also needed for the man page formatter in S.u.S.E. Help system
# and for starting the plp lp daemon.
#
START_INETD="yes"
#
# have mail daemon on SMTP port? ("yes" or "no")
# needed, if you receive email from other hosts via tcp/ip
# not needed, if you have a uucp-only host or only out-going email.
# If set to "yes", sendmail will be started as daemon.
# As uucp site, you can get along with "SMTP=no", if you make
# a "sendmail -q" call after each poll. (As rmail is queuing the mail only
# and not delivering it...)
#
SMTP="no"
#
# From:-Line in email and News postings
# (otherwise the FQDN is used)
#
FROM_HEADER="router.homenet"
#
# some programs (e.g. lynx, arena and wget) support proxies, if set in
# environment. SuSEconfig can add this environment variables to
# /etc/SuSEconfig/* (sourced by /etc/profile etc.) - See
# http://www.suse.de/Support/sdb_e/lynx_proxy.html for more details.
# Example: HTTP_PROXY="http://proxy.provider.de:3128/"
HTTP_PROXY=""
#
# Example: FTP_PROXY="http://proxy.provider.de:3128/"
#
FTP_PROXY=""
#
# Example: GOPHER_PROXY="http://proxy.provider.de:3128/"
#
GOPHER_PROXY=""
#
# Example: NO_PROXY="www.me.de, do.main, localhost"
#
NO_PROXY=""
#
# start kernel daemon? ("yes" or "no")
#
START_KERNELD="yes"
#
# start cron daemon? ("yes" or "no")
# should be left unchanged to the default "yes" entry
#
CRON="yes"
#
# start portmap? ("yes" or "no")
# this is needed, if the NFS server is started or if NIS is used
# Attention! If NFS_SERVER is set to "yes", START_PORTMAP will be
# ignored and portmap will be startet in any case.
#
START_PORTMAP="no"
#
# should the NFS server be started on this host? ("yes" or "no")
# (needs activated portmapper)
#
NFS_SERVER="no"
#
# should translate server client for userid and goupid be started
# ("yes" or "no") - will only be started, if NFS_SERVER is "yes".
#
NFS_SERVER_UGID="yes"
#
# should imported NFS be reexported? ("yes" or "no")
#
REEXPORT_NFS="no"
#
# when shutting down routing, all net connection can be closed (not useful
# in all cases). If CLOSE_CONNECTIONS is set to "true" /sbin/init.d/route
# scans /proc to search for network connections and sends a term signal
# to the processes.
#
CLOSE_CONNECTIONS="false"
#
# start pcnfsd (for PCNFS clients; needs activated portmapper -
# see man pcnfsd) (yes/no)
#
START_PCNFSD=no
#
# start bwnfsd (pcnfs related) (yes/no)
#
START_BWNFSD=no
#
# pcnfsd and bwnfsd need spool directory for lpd. Set it here.
#
PCNFSD_LPSPOOL=/var/spool/lpd
#
# start rwhod? NOTE: rwhod broadcasts regularly, so dial
# on demand connections (ISDN and/or diald) might be established
# (yes/no)
#
START_RWHOD=no
#
# should gpm be started on this machine? ("yes" or "no")
#
START_GPM="no"
#
# gpm will be started with these parameters
# it won't be started in runlevel 3 (xdm)
# (example: "-t msc -m /dev/mouse")
#
GPM_PARAM=""
#
# start routed (for dynamic routing - see man routed) (yes/no)
# ATTENTION: starting routed causes net traffic every 30 seconds.
# If your host is connected to internet via dial-up it makes absolutely
# no sense to activate it.
#
START_ROUTED=no
#
# start the named (package bind)? You have to configure the named first,
# before you can start it (man named).
#
START_NAMED=no
#
# should updatedb (for locate) be started by cron.daily ("yes" or "no")
#
RUN_UPDATEDB=yes
#
# should mandb and whatis be recreated by cron.daily ("yes" or "no")
#
REINIT_MANDB=yes
#
# updatedb has a parameter "--localuser". it runs the find as this user.
# some people think, its a security hole to run it as root (because you
# can get information about directories you can not read normally). Some
# think its useful to hold all files in the database. If you want full
# information in locate db, set RUN_UPDATEDB_AS=root. If you want security
# use RUN_UPDATEDB_AS=nobody.
#
RUN_UPDATEDB_AS=nobody
#
# uptdatedb normally only scans local harddisks, but can include net paths
# in database as well. If you specify directories here, they will be scanned.
#
UPDATEDB_NETPATHS=""
#
# uptdatedb can skip directories for its database. The following parameter
# says which.
#
UPDATEDB_PRUNEPATHS="/S.u.S.E. /mnt /cdrom /tmp /usr/tmp /var/tmp /var/spool /proc"
#
# search net paths as ? (e.g. nobody)
#
UPDATEDB_NETUSER=""
#
# old corefiles? should they be deleted ("yes" or "no")
# if set to no, cron.daily will tell you, if it finds old core files.
# please note, that this feature needs RUN_UPDATEDB to be set to "yes".
#
DELETE_OLD_CORE=no
#
# how old are 'old' core files? (in days)
#
MAX_DAYS_FOR_CORE=7
#
# should old preformated man pages be deleted (/var/catman)
# (yes/no)
#
DELETE_OLD_CATMAN=yes
#
# How old are OLD preformated man pages for you? (days)
#
CATMAN_ATIME=7
#
# we have a small script to generate usr/info/dir file. This needs perl..
# ("yes" or "no")
#
CREATE_INFO_DIR="yes"
#
# SuSEconfig can call chkstat to check permissions and ownerships for
# files and directories (using /etc/permissions).
# Setting to "set" will correct it, "warn" produces warnings, if
# something strange is found. Disable this feature with "no".
#
CHECK_PERMISSIONS=set
#
# S.u.S.E. Linux contains two different configurations for
# chkstat. The differences can be found in /etc/permissions.secure
# and /etc/permissions.easy. If you create your own configuration
# (e.g. permissions.foo), you can enter the extension here as well.
#
# (easy/secure local foo whateveryouwant).
#
PERMISSION_SECURITY="easy local"
#
# How long to store old log files. If set to 0, log files will be untouched.
# The log files below will be checked by cron.daily. The number
# after the name means the minimum size in k, the file has to have, before
# it will be backed up (root gets a mail, if it happens).
#
# /tmp/log_mg.* (1024), /var/log/wtmp (400), /var/log/isdn (4096),
# /var/lib/xdm/xdm-errors (200), /var/spool/uucp/Log (2048),
# /var/spool/uucp/Stats (1024), /var/log/debug (1024), /var/log/warn (1024),
# /var/log/messages (4096), /var/log/xferlog (4096),
# /local/www/logs/access_log (4096), /local/www/logs/error_log (1024)
# /var/adm/isdn.log (1024), /var/log/isdncalls (1024)
#
MAX_DAYS_FOR_LOG_FILES=365
#
# cron.daily can make backup the rpm database. Set the path here, and
# cron.daily will make backup everytime it is called and the db has
# changed. This backups are recommended. If you don not want this
# feature, set it to "".
#
RPMDB_BACKUP_DIR=/var/adm/backup/rpmdb
#
# here you can set the maximum number of backup files for the rpm
# database.
#
MAX_RPMDB_BACKUPS=5
#
# cron.daily can check for old files in tmp-dirs. It will delete all files
# not accessed for more than MAX_DAYS_IN_TMP. If MAX_DAYS_IN_TMP is not set
# or set to 0, this feature will be disabled.
#
MAX_DAYS_IN_TMP=0
#
# You can specify in TMP_DIRS_TO_CLEAR, which directories have to be
# searched for old files, to be deleted.
#
TMP_DIRS_TO_CLEAR="/tmp /var/tmp"
#
# In OWNER_TO_KEEP_IN_TMP, you can specify, whoms file shall not be deleted.
#
OWNER_TO_KEEP_IN_TMP="root"
#
# Do you want to have "." in root path? This is not recommended, but
# many people do prefer it (yes/no).
#
CWD_IN_ROOT_PATH="no"
#
# If you want to allow root logins from other machines, set ROOT_LOGIN_REMOTE
# to "yes".
#
ROOT_LOGIN_REMOTE="no"
#
# Some packages by S.u.S.E. include dynamically linked motif progs as well
# as statically linked (<p>.SuSE-dynamic resp. <p>.SuSE-static). SuSEconfig
# can analyze your system and link the matching program to <p>. If you
# set this to "clean", the other binary will be deleted. (no/link/clean)
#
HOW_TO_HANDLE_COMMERCIAL_LIBS=link
#
# SuSEconfig can do some modifications to /etc/inittab. If you don't want
# this, set CHECK_INITTAB to no. (yes/no)
#
CHECK_INITTAB=yes
#
# Here you can set the default Display manager (kdm/xdm/console).
# Attention: CHECK_INITTAB has to be set to yes, to activate this feature.
# If DISPLAYMANAGER is set to console, SuSEconfig will not bother you
# with a missing XF86Config.
#
DISPLAYMANAGER=""
#
# CONSOLE_SHUTDOWN determines how ctrl-alt-del is handled.
# Attention: CHECK_INITTAB has to be set to yes, to activate this feature.
# (ignore/reboot/halt)
#
CONSOLE_SHUTDOWN=reboot
#
# Should isapnp be used to initialize your PNP at bootup? (yes/no)
#
START_ISAPNP=yes
#
# possibly a script in /sbin/init.d or cron.daily sends mails.
# So please let MM_RUNASROOT be set to "true".
#
MM_RUNASROOT=true
export MM_RUNASROOT
umask 022
#
# Attention! This variable PATH is NOT setting the PATH for user or root
# shells. It is only used internally for /sbin/init.d/*, SuSEconfig and
# cron.daily. Please do NOT change PATH here.
#
PATH=/sbin:/bin:/usr/sbin:/usr/bin
#
# end of initial rc.config
#
#
# Should the ATD (at daemon) be started, for the execution of at jobs? (yes/no)
#
START_ATD=yes
#
# Update groff DESC to get page sizes correct? (yes/no)
#
# If the correct page size isn't found in your printcap
# you can set GROFF_PAGESIZE to the following values
#
# letter, legal, a4, or b5
#
# supported by both groff *and* ghostscript
#
UPDATE_GROFF_CONF=yes
GROFF_PAGESIZE=
#
# May SuSEconfig modify your perllocal.pod? (yes/no)
#
CREATE_PERLLOCAL_POD="yes"
#
# May SuSEconfig run h2ph when kernelsources have changed
#
GENERATE_PERL_SYSTEM_INCLUDES="yes"
#
# Default loglevel for klogd
#
KERNEL_LOGLEVEL=1
#
# if not empty: parameters for syslogd
# for example SYSLOGD_PARAMS="-r -s my.dom.ain"
#
SYSLOGD_PARAMS=""
#
# Should the Apache httpd be started at bootup? (yes/no)
#
START_HTTPD=no
#
# Shall dynamic host configuration Server DHCP be started? (yes/no)
#
START_DHCPD="no"
#
# Wenn ein zentraler Dokumentations-Server benutzt werden
# soll, der das S.u.S.E.-Hilfesystem vorh�lt, sollte hier
# der Name des Servers (z.B. dochost.domain.top) eingetragen werden
#
DOC_HOST=""
#
# Auf dem Dokumentations-Server soll diese Variable auf "yes"
# gesetzt werden. Dann wird in /etc/hosts.allow der Zugriff auf
# http-rman freigegeben und die Index-Files entsprechend umgesetzt
#
DOC_SERVER="no"
#
# Liste der Rechner/Domains als Pattern f�r /etc/hosts.allow, denen
# der Zugriff auf die lokalen Man-Pages erlaubt wird.
# z.B. mit DOC_ALLOW=".meinedomain.top"
#
DOC_ALLOW="LOCAL"
#
# Firewall settings - See /usr/doc/packages/firewall
# for a detailed description
#
FW_START="no"
FW_LOCALNETS=""
FW_FTPSERVER=""
FW_WWWSERVER=""
FW_SSLSERVER=""
FW_SSLPORT="443"
FW_MAILSERVER=""
FW_DNSSERVER=""
FW_NNTPSERVER=""
FW_NEWSFEED=""
FW_WORLD_DEV="eth1"
FW_INT_DEV="eth0"
FW_LOG_ACCEPT="no"
FW_LOG_DENY="yes"
FW_ROUTER=""
FW_FRIENDS="no"
FW_INOUT="no"
FW_SSH="no"
FW_TRANSPROXY_OUT=""
FW_TRANSPROXY_IN=""
FW_REDIRECT=""
FW_TCP_LOCKED_PORTS="1:1023"
FW_UDP_LOCKED_PORTS="1:1023"
#
# Masquerading settings - See /usr/doc/packages/firewall
# for a detailed description
#
MSQ_START="yes"
MSQ_NETWORKS="192.168.0.0/24"
MSQ_DEV="eth0"
MSQ_MODULES="ip_masq_cuseeme ip_masq_ftp ip_masq_irc ip_masq_quake ip_masq_raudio
ip_masq_vdolive"
#
# start i4l? ("yes" or "no")
# see: /usr/doc/packages/i4l/README.SuSE
#
I4L_START="yes"
#
# driver-id for HiSax-driver
# set to "HiSax"
# or whatever you defined when loading driver within kernel
# set to "" if you don't have a hisax-card
#
I4L_TELES_ID=""
#
# D-channel protocol 1=1TR6, 2=EDSS1(Euro-ISDN) for HiSax
#
I4L_PROTOCOL="2"
# Type ISDN-card Required parameters
# ---- --------------------- -------------------------------------------
# 1 Teles 16.0 irq, mem, io
# 2 Teles 8.0 irq, mem
# 3 Teles 16.3 (non PnP) irq, io
# 4 Creatix/Teles PnP irq, io0 (ISAC), io1 (HSCX)
# 5 AVM A1 (Fritz) irq, io
# 6 ELSA PCC/PCF cards io or nothing for autodetect (the iobase is
# only required, if you have more than one ELSA
# card in your PC)
# 7 ELSA Quickstep 1000 irq, io (from isapnp setup)
# 8 Teles 16.3 PCMCIA irq, io
# 9 ITK ix1-micro Rev.2 irq, io
# since: HiSax 2.5:
# 10 ELSA PCMCIA irq, io (set with card manager)
# 11 Eicon.Diehl Diva ISA PnP irq, io
# 11 Eicon.Diehl Diva PCI no parameter
# 12 ASUS COM ISDNLink irq, io (from isapnp setup)
# 13 HFC-2BS0 based cards irq, io
# 14 Teles 16.3c irg, io
# 15 Sedlbauer Speed Card irq, io
# (= Teledat 100)
# 16 USR Sportster internal irq, io
# 17 MIC card irq, io
# 18 ELSA Quickstep 1000PCI no parameter
# 19 Compaq ISDN S0 ISA card irq, io0, io1, io (from isapnp setup io=IO2)
# 20 NETjet PCI card no parameter
# 21 Teles PCI no parameter
# 22 Sedlbauer Speed Star (PCMCIA) irq, io (set with card manager)
# 24 Dr. Neuhaus Niccy PnP irq, io0, io1 (from isapnp setup)
# 24 Dr. Neuhaus Niccy PCI no parameter
# 25 Teles S0Box irq, io (of the used lpt port)
#
I4L_TELES_TYPE="3"
#
# IRQ of Teles Card
# eg. 12 or 15 when loading as module
# set to "" when driver is loaded within kernel
#
I4L_TELES_IRQ="15"
#
# Membase of Teles card (e.g. "0xd2000" for Teles S0/16, "0" for Teles S0/16.3)
#
I4L_TELES_MEMBASE=""
#
# Portaddress of Teles card (e.g. 0xd80, "0" for S0/8)
#
I4L_TELES_PORT="0x180"
#
# for Creatix PNP: IO0 (ISAC)
#
I4L_TELES_IO0=""
#
# for Creatix PNP: IO1 (HSCX)
#
I4L_TELES_IO1=""
#
# for HiSax-modul: the complete line to load module
# e.g Fritzcard, Euro ISDN, I/O base 340 hex, IRQ 10 and ELSA PCF, Euro ISDN:
# "type=5,6 protocol=2,2 io=0x340 irq=10 id=Fritz%Elsa"
#
I4L_TELES_MODUL_OPTIONS=""
#
# id-string for ICN ISDN-card
# set to "" for no ICN-card
# idstring must start with a character, e.g. "icn1"
#
I4l_ICN_ID=""
#
# 2. id-string for ICN ISDN-card
# When using the ICN double card, you MUST define TWO idstrings
# e.g. "icn2"
I4l_ICN_ID2=""
#
# ICN-portbase
# set to "" for no ICN-card
# default: "0x320"
#
I4l_ICN_PORT=""
#
# ICN shared memory
# set to "" for no ICN-card
# default: "0xd0000"
#
I4l_ICN_MEMBASE=""
#
# ICN Protocoll
# D-channel protocol 1=1TR6, 2=EDSS1(Euro-ISDN) for ICN
# set to "" for no ICN card
#
I4L_ICN_PROTOCOLL=""
#
# ICN Protocoll for the 2. interface
# When using the ICN double card, you MUST define TWO protocolls
# D-channel protocol 1=1TR6, 2=EDSS1(Euro-ISDN) for ICN
# set to "" for no ICN card
#
I4L_ICN_PROTOCOLL2=""
# Compaq ISDN S0 ISA card
I4L_COM_IRQ=""
I4L_COM_PORT=""
I4L_COM_PORT_0=""
I4L_COM_POR=""
# Dr. Neuhaus Niccy PnP
I4L_NICCY_IRQ=""
I4L_NICCY_PORT_0=""
I4L_NICCY_PORT_1=""
#
# AVM-B1
# do you have a AVM-B1 ?
# values: "yes" or "no"
I4L_USE_B1="no"
#
# AVM-B1
# is the driver is compiled as module?
# default: "yes"
I4L_USE_B1_AS_MODULE="yes"
#
# AVM-B1
# set to "yes" if you have AVM-B1 PCI-Card(s)
I4L_USE_B1_PCI=""
#
# AVM-B1
# D-channel protocol 1=1TR6, 2=EDSS1(Euro-ISDN) for AVM-B1
# set to "" for no AVM-B1 card
#
I4L_B1_PROTOCOLL_1=""
#
# AVM-B1
# IRQ for AVM-B1 ISDN-card
# values: 3, 4, 5, 6, 7, 9, 10, 11, 12 and 15 or "" for PCI
#
I4L_B1_IRQ_1="15"
#
# AVM-B1
# IO (PORTBASE) for AVM-B1 ISDN-card
# values: "0x150", "0x250", "0x300", "0x340" or "" for PCI
#
I4L_B1_IO_1="0x150"
#
# start iprofd ("yes" or "no")
# (re-)store ISDN-modem setup in /etc/isdnlog/modemsettings
# restore automatically at boot-time
# store with "AT&W0" in terminal-emulation
#
I4L_IPROFD="no"
#
# idletime before hangup (in seconds)
#
I4L_IDLETIME_0=60
I4L_IDLETIME_1="180"
I4L_IDLETIME_2=60
I4L_IDLETIME_3=60
#
# Set the number of dial atempts for each number
# set to "" for unlimited
#
I4L_DIALMAX_0=5
I4L_DIALMAX_1="5"
I4L_DIALMAX_2=5
I4L_DIALMAX_3=5
#
# my phone number (MSN/EAZ)
#
I4L_LOCALMSN_0=""
I4L_LOCALMSN_1="0204415551"
I4L_LOCALMSN_2=""
I4L_LOCALMSN_3=""
#
# remote station phone number dialout
# example: "09113206726 09113206728"
#
I4L_REMOTE_OUT_0=""
I4L_REMOTE_OUT_1="0235537333"
I4L_REMOTE_OUT_2="09113206726"
I4L_REMOTE_OUT_3="09113206726"
#
# remote station phone number dialin
# example: "09113206726 09113206728"
#
I4L_REMOTE_IN_0=""
I4L_REMOTE_IN_1=""
I4L_REMOTE_IN_2=""
I4L_REMOTE_IN_3=""
#
# encapsulation
# possible values: "rawip" (default), "ip", "cisco-h", "ethernet",
# "syncppp", "uihdlc"
# see: /usr/src/linux/Documentation/isdn/README
#
I4L_ENCAP_0="rawip"
I4L_ENCAP_1="syncppp"
I4L_ENCAP_2="syncppp"
I4L_ENCAP_3="rawip"
#
# secure
# "on" = only defined numbers are allowed to call in
# "off" = all numbers are allowed to call in
#
I4L_SECURE_0="on"
I4L_SECURE_1="on"
I4L_SECURE_2="on"
I4L_SECURE_3="on"
#
# Start the INN news server? (yes/no)
#
START_INN=no
#
# start samba? ("yes" or "no")
# Windows 95 / NT - File- and Printservices
#
START_SMB="yes"
#
# Start the squid WWW-proxy ? (yes/no)
#
START_SQUID=no
#
# SuSE-PPP settings
#
# Provider name. `SuSEConfig -list` returns a list of possible entries
PPP_PROVIDER_0=""
# Login name
PPP_USERNAME_0=""
# Set debug option?
PPP_DEBUG_0="yes"
# pppd options; e.g. "-vj mru=1500, asyncmap=0"
PPP_OPTIONS_0=""
# Set defaultroute?
PPP_DEFAULT_ROUTE_0="yes"
# This parameter is optional.
# Authentification (PAP, CHAP, TERMINAL)
PPP_AUTHENT_0=""
# These parameters are optional
# Name, IP address of the remote system
PPP_REMOTENAME_0=""
PPP_REMOTEIP_0=""
# Name, IP address of the local system
PPP_LOCALIP_0=""
PPP_LOCALNAME_0=""
# These parameters are optional and
# should be obtained from provider database
# nameserver of the peer
PPP_NAMESERVER_0=
# http proxy server
PPP_WWW_PROXY_0=""
# news server
PPP_NEWS_0=
# This parameter is obsolete
PPP_SETUP_NETWORK_0=""
# Remote station phone number
PPP_REMOTE_OUT_0=
# Device to dial out
PPP_DEVICE_0="/dev/modem"
# Modem settings
# Here you can do some special initializing for your modem.
# Obtain the correct string from your vendors manual
MODEM_INIT_0="ATZ"
# Modem speed (e.g. 57600)
MODEM_SPEED_0=""
# This string will be placed before the number
# to dial the modem. This can also be used to
# to get a line (e.g. "ATDT0w")
MODEM_DIAL_MODE_0="ATDT"
# start diald?
PPP_DIALD_0="no"
I4L_REMOTE_IN1_1=""
I4L_REMOTE_IN2_1=""
==============EAE696A78FDB5E3B871D8576
Content-Type: text/plain; charset=us-ascii; name="diald.conf"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline; filename="diald.conf"
# This is a pretty complicated set of filter rules.
# (These are the rules I use myself.)
#
# I've divided the rules up into four sections.
# TCP packets, UDP packets, ICMP packets and a general catch all rule
# at the end.
#
# The link is normally held up for 2 Minutes
# Netbios traffic is not allowed to hold up the link
# any second -- [EMAIL PROTECTED]
#
#------------------------------------------------------------------------------
# Rules for TCP packets.
#------------------------------------------------------------------------------
# General comments on the rule set:
#
# In general we would like to treat only data on a TCP link as signficant
# for timeouts. Therefore, we try to ignore packets with no data.
# Since the shortest possible set of headers in a TCP/IP packet is 40 bytes.
# Any packet with length 40 must have no data riding in it.
# We may miss some empty packets this way (optional routing information
# and other extras may be present in the IP header), but we should get
# most of them. Note that we don't want to filter out packets with
# tcp.live clear, since we use them later to speedup disconnects
# on some TCP links.
#
# We also want to make sure WWW packets live even if the TCP socket
# is shut down. We do this because WWW doesn't keep connections open
# once the data has been transfered, and it would be annoying to have the link
# keep bouncing up and down every time you get a document.
#
# Outside of WWW the most common use of TCP is for long lived connections,
# that once they are gone mean we no longer need the network connection.
# We don't neccessarily want to wait 10 minutes for the connection
# to go down when we don't have any telnet's or rlogin's running,
# so we want to speed up the timeout on TCP connections that have
# shutdown. We do this by catching packets that do not have the live flag set.
# --- start of rule set proper ---
# When initiating a connection we only give the link 15 seconds initially.
# The idea here is to deal with possibility that the network on the opposite
# end of the connection is unreachable. In this case you don't really
# want to give the link 10 minutes up time. With the rule below
# we only give the link 15 seconds initially. If the network is reachable
# then we will normally get a response that actually contains some
# data within 15 seconds. If this causes problems because you have a slow
# response time at some site you want to regularly access, you can either
# increase the timeout or remove this rule.
accept tcp 60 tcp.syn
# Keep named xfers from holding the link up
ignore tcp tcp.dest=tcp.domain
ignore tcp tcp.source=tcp.domain
# (Ack! SCO telnet starts by sending empty SYNs and only opens the
# connection if it gets a response. Sheesh..)
accept tcp 5 ip.tot_len=40,tcp.syn
# keep empty packets from holding the link up (other than empty SYN packets)
ignore tcp ip.tot_len=40,tcp.live
# make sure http transfers hold the link for 2 minutes, even after they end.
# NOTE: Your /etc/services may not define the tcp service www, in which
# case you should comment out the following two lines or get a more
# up to date /etc/services file. See the FAQ for information on obtaining
# a new /etc/services file.
accept tcp 120 tcp.dest=tcp.www
accept tcp 120 tcp.source=tcp.www
# Once the link is no longer live, we try to shut down the connection
# quickly. Note that if the link is already down, a state change
# will not bring it back up.
keepup tcp 5 !tcp.live
ignore tcp !tcp.live
# an ftp-data or ftp connection can be expected to show reasonably frequent
# traffic.
accept tcp 120 tcp.dest=tcp.ftp
accept tcp 120 tcp.source=tcp.ftp
#NOTE: ftp-data is not defined in the /etc/services file provided with
# the latest versions of NETKIT, so I've got this commented out here.
# If you want to define it add the following line to your /etc/services:
# ftp-data 20/tcp
# and uncomment the following two rules.
#accept tcp 120 tcp.dest=tcp.ftp-data
#accept tcp 120 tcp.source=tcp.ftp-data
# If we don't catch it above, give the link 10 minutes up time.
accept tcp 120 any
# Rules for UDP packets
#
# We time out domain requests right away, we just want them to bring
# the link up, not keep it around for very long.
# This is because the network will usually come up on a call
# from the resolver library (unless you have all your commonly
# used addresses in /etc/hosts, in which case you will discover
# other problems.)
# Note that you should not make the timeout shorter than the time you
# might expect your DNS server to take to respond. Otherwise
# when the initial link gets established there might be a delay
# greater than this between the initial series of packets before
# any packets that keep the link up longer pass over the link.
# Don't bring the link up for rwho.
ignore udp udp.dest=udp.who
ignore udp udp.source=udp.who
# Don't bring the link up for RIP.
ignore udp udp.dest=udp.route
ignore udp udp.source=udp.route
# Don't bring the link up for NTP or timed.
ignore udp udp.dest=udp.ntp
ignore udp udp.source=udp.ntp
ignore udp udp.dest=udp.timed
ignore udp udp.source=udp.timed
# Don't bring up on domain name requests between two running nameds.
ignore udp udp.dest=udp.domain,udp.source=udp.domain
# Bring up the network whenever we make a domain request from someplace
# other than named.
accept udp 30 udp.dest=udp.domain
accept udp 30 udp.source=udp.domain
# Do the same for netbios-ns broadcasts
# NOTE: your /etc/services file may not define the netbios-ns service
# in which case you should comment out the next three lines.
ignore udp udp.source=udp.netbios-ns,udp.dest=udp.netbios-ns
ignore udp udp.dest=udp.netbios-ns
ignore udp udp.source=udp.netbios-ns
# keep routed and gated transfers from holding the link up
ignore udp tcp.dest=udp.route
ignore udp tcp.source=udp.route
# Anything else gest 2 minutes.
accept udp 120 any
# Catch any packets that we didn't catch above and give the connection
# 30 seconds of live time.
accept any 30 any
==============EAE696A78FDB5E3B871D8576
Content-Type: text/x-vcard; charset=us-ascii; name="vcard.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for Charles van Trappen
Content-Disposition: attachment; filename="vcard.vcf"
begin: vcard
fn: Charles van Trappen
n: van Trappen;Charles
org: Logica BV
adr: Oosthoekhof 1;;;Amstelveen;NH;1187 KS;Netherlands
email;internet: [EMAIL PROTECTED]
title: Commercial Manager
tel;work: +31-20-3122252
tel;fax: +31-20-3122150
tel;home: +31-20-4415510
x-mozilla-cpt: ;0
x-mozilla-html: FALSE
end: vcard
==============EAE696A78FDB5E3B871D8576==
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
