Linux-Networking Digest #290, Volume #12 Thu, 19 Aug 99 17:13:41 EDT
Contents:
Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and video?
(Greg Weeks)
Changing BIOS Date Disrupts IP Masquerading (Erik Jensen)
dialing non-SLIP/PPP systems ([EMAIL PROTECTED])
Re: DE220 & RH6.0 (Jim Chisholm)
i hate DIALD ("Marco")
Re: Access to NFS mount boils TCP/IP networking? (long!) (Thomas Antepoth)
Re: Masquerading: 1 subnet, 2 external NICs (Ronald Cole)
Re: Cracks for Linux? ("Brian")
Re: HELP: IRQ resetting problem..?? (Frederic Pont)
Re: failing network connection ("Poss")
Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and video?
(Bert Lindner)
Re: telnet as root (Bob James)
Re: DNS caching only name server (marty)
ip-masquerading (catsquotl)
Re: eth0 in promiscuous mode ("Gary")
Re: Samba's last stand! (Ronald Cole)
Internet Connection ("Keith Small")
----------------------------------------------------------------------------
Reply-To: [EMAIL PROTECTED]
From: [EMAIL PROTECTED] (Greg Weeks)
Subject: Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and
video?
Crossposted-To: comp.os.linux.portable,comp.os.linux.hardware
Date: Thu, 19 Aug 1999 13:35:32 -0500
In article <[EMAIL PROTECTED]>,
David Scott Copus <[EMAIL PROTECTED]> writes:
> I didn't know if it is even possible to *run* Linux from a read-only
> media and just let it use a RAM drive for it's logging, etc. If anybody
> knows if Linux can be ran on read-only medium... let me know!
Sure it is. Look at http://www.toms.net/rb/ for a single floppy
distribution that you remove the floppy after the boot. I use it as a
rescue disk, but there's no reason you couldn't set up something
similar that boots from a cdrom and then mounts the cdrom ro. CD rom
booting uses a floppy image after all.
Greg Weeks
--
http://durendal.tzo.com/greg/
------------------------------
From: Erik Jensen <[EMAIL PROTECTED]>
Subject: Changing BIOS Date Disrupts IP Masquerading
Date: Thu, 19 Aug 1999 19:26:20 GMT
About two months ago I set up a Linux Mandrake 6.0
server and implemented IP Masquerading. It worked great. All my
workstations could connect to the my ISP without any trouble.
A few weeks ago I had to leave town for a few days and shut down
everything, including the Linux server. When I returned I turned
everything back on: no problem. Everything on the network worked fine,
including my connection to my ISP.
A day or so later I noticed that the date set on the server had changed
by exactly three months. I had no idea how. I downed the server and when
it rebooted, went into BIOS and reset the date to the correct one.
After this NO work station could connect to my ISP. I tried pinging the
(internal) NIC on my server from various workstations. All were OK. I
tried pinging the server NIC that connects me to the cable modem from my
ISP. No problem. That worked, too. So the two NICs worked. I then tried
ping the cable modem from a work station. No good: timed out.
Then I decided to work directly on the server: no problem -- I could
connect to my ISP without any difficulty. But from the workstations:
nothing.
Getting worried I downed the server, reset the date via BIOS to exactly
three months ahead. Now EVERYTHING works fine.
What do you think is wrong? I can't understand how changing the BIOS
date could disable IP Masquerading.
Erik Jensen
------------------------------
From: [EMAIL PROTECTED]
Subject: dialing non-SLIP/PPP systems
Date: Thu, 19 Aug 1999 18:39:15 GMT
I have the honor of porting to Linux some really
old code that dials out to systems that do not
talk PPP or SLIP. It wants to use the dial()
system call, but I can't find dial() and all the
references on dialing that I find refer to
PPP/SLIP configurations. Can anyone point me
towards some info on dial() or an alternative?
uucp is no help and cu might be, but is not ideal.
thanks,
chuck
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Jim Chisholm <[EMAIL PROTECTED]>
Subject: Re: DE220 & RH6.0
Date: Thu, 19 Aug 1999 19:00:22 +0000
Dieter Sarrazyn wrote:
> Hi
>
> Anybody succeeded in making this card work under Redhat 6.0?
>
> Dieter
Yes, they work great (for me at least..)
Make sure you have NE2XXX support in your kernel . I've found them to be
reliably detected every time if you boot a dos floppy and run the DE220
setup program to set the card to I/O 300H and IRQ 10.
Good Luck..
Jim
--
=======================================================
Jim Chisholm
Dalhousie University, Dept. Physics Halifax N.S. Canada
http://electron.phys.dal.ca
Halifax Regional Fire and Emergency Service
Lieutenant #2 Bay Road Station 59
http://www.fire-ems.net/firedept/view/HalifaxNSCA
=======================================================
------------------------------
From: "Marco" <[EMAIL PROTECTED]>
Subject: i hate DIALD
Date: Thu, 19 Aug 1999 21:57:23 +0200
I hate diald
I use SUSE 6.1 and have connected my 5 lan PCs via a linux masq box to the
isp. everything is fine. but i hav to dial in manually. ok diald should do
the job
it so i adjusted the attached files to fit my wishes. ok
than i typed in at the console
diald
to start that programm and went to one lan pc and opened the
internetexplorer. but nothing happend?
Why.
Please answer to my adress at: [EMAIL PROTECTED]
begin 666 diald.conf
M;6]D92!P<' *8V]N;F5C=" O971C+W!P<"]M87)C;RYC;VYN96-T"F1E=FEC
M92 O9&5V+W1T>7,P"G-P965D(#$Q-3(P, IM;V1E;0IL;V-K"F-R='-C=',*
M;&]C86P@,3DR+C$V."XV-BXQ,0IR96UO=&4@,3DR+C$V."XV-BXR,@ID>6YA
1;6EC"F1E9F%U;'1R;W5T90H`
`
end
begin 666 options.dat
-;&]C:PT*9&5B=6<-"@``
`
end
begin 666 marco.connect
M(R$O8FEN+W-H#0HC($-O<'ER:6=H=" H8RD@,3DY-BP@17)I8R!38VAE;FLN
M#0HC#0HC(%1H:7,@<V-R:7!T(&ES(&EN=&5N9&5D('1O(&=I=F4@86X@97AA
M;7!L92!O9B!A(&-O;FYE8W1I;VX@<V-R:7!T('1H870-"B,@=7-E<R!T:&4@
M(FUE<W-A9V4B(&9A8VEL:71Y(&]F(&1I86QD('1O(&-O;6UU;FEC871E('!R
M;V=R97-S('1H<F]U9V@-"B,@=&AE(&1I86QI;F<@<')O8V5S<R!T;R!A(&1I
M86QD(&UO;FET;W)I;F<@<')O9W)A;2!S=6-H(&%S(&1C=')L(&]R(&1I86QD
M+71O<"X-"B,@270@86QS;R!R97!O<G1S('!R;V=R97-S('1O('1H92!S>7-T
M96T@;&]G<RX@5&AI<R!C86X@8F4@=7-E9G5L(&EF('EO=0T*(R!A<F4@<V5E
M:6YG(&9A:6QE9"!A='1E;7!T<R!T;R!C;VYN96-T(&%N9"!Y;W4@=V%N="!T
M;R!K;F]W('=H96X@86YD('=H>0T*(R!T:&5Y(&%R92!F86EL:6YG+@T*(PT*
M(R!4:&ES('-C<FEP="!R97%U:7)E<R!T:&4@=7-E(&]F(&-H870M,2XY(&]R
M(&=R96%T97(@9F]R(&9U;&P-"B,@9G5N8W1I;VYA;&ET>2X@270@<VAO=6QD
M('=O<FL@=VET:"!O;&1E<B!V97)S:6]N<R!O9B!C:&%T+ T*(R!B=70@:70@
M=VEL;"!N;W0@8F4@86)L92!T;R!R97!O<G0@=&AE(')E87-O;B!F;W(@82!C
M;VYN96-T:6]N(&9A:6QU<F4N#0H-"B,@0V]N9FEG=7)A=&EO;B!P87)A;65T
M97)S#0H-"B,@5&AE(&EN:71I86QI>F%T:6]N('-T<FEN9R!F;W(@>6]U<B!M
M;V1E;0T*#0I-3T1%35])3DE4/2)!5%HP(%8Q($4Q(%,P/3 @)D,Q("9$,B!3
M,3$]-34@*T9#3$%34STP(@T*#0HC(%1H92!P:&]N92!N=6UB97(@=&\@9&EA
M; T*4$A/3D5?3E5-0D52/2(P-S$X6%A8(@T*#0HC(%1H92!C:&%T('-E<75E
M;F-E('1O(')E8V]G;FEZ92!T:&%T('1H92!R96UO=&4@<WES=&5M#0HC(&ES
M(&%S:VEN9R!F;W(@>6]U<B!U<V5R(&YA;64N#0I54T527T-(051?4T51/2)N
M86UE.BTM;F%M93HM+6YA;64Z+2UN86UE.BTM;F%M93HM+6YA;64Z+2UN86UE
M.B(-"@T*(R!4:&4@<W1R:6YG('1O('-E;F0@:6X@<F5S<&]N<V4@=&\@=&AE
M(')E<75E<W0@9F]R('EO=7(@=7-E<B!N86UE+@T*55-%4E].04U%/2)86%@B
M#0H-"B,@5&AE(&-H870@<V5Q=65N8V4@=&\@<F5C;VYG;FEZ92!T:&%T('1H
M92!R96UO=&4@<WES=&5M#0HC(&ES(&%S:VEN9R!F;W(@>6]U<B!P87-S=V]R
M9"X-"E!!4U-71%]#2$%47U-%43TB=V]R9#HB#0H-"B,@5&AE('-T<FEN9R!T
M;R!S96YD(&EN(')E<W!O;G-E('1O('1H92!R97%U97-T(&9O<B!Y;W5R('!A
M<W-W;W)D+@T*4$%34U=/4D0](EA86"(-"@T*(R!4:&4@<')O;7!T('1H92!R
M96UO=&4@<WES=&5M('=I;&P@9VEV92!O;F-E('EO=2!A<F4@;&]G9V5D(&EN
M#0HC($EF('EO=2!D;R!N;W0@9&5F:6YE('1H:7,@=&AE;B!T:&4@<V-R:7!T
M('=I;&P@87-S=6UE('1H870-"B,@=&AE<F4@:7,@;F\@8V]M;6%N9"!T;R!B
M92!I<W-U960@=&\@<W1A<G0@=7 @=&AE(')E;6]T92!P<F]T;V-O;"X-"E!2
M3TU05#TB86YN97@Z(@T*(R!4:&4@8V]M;6%N9"!T;R!I<W-U92!T;R!S=&%R
M="!U<"!T:&4@<F5M;W1E('!R;W1O8V]L#0I04D]43T-/3%]35$%25#TB<'!P
M(@T*#0HC(%1H92!S=')I;F<@=&\@=V%I="!F;W(@=&\@<V5E('1H870@=&AE
M('!R;W1O8V]L(&]N('1H92!R96UO=&4-"B,@96YD('-T87)T960@3TLN($EF
M('1H:7,@:7,@96UP='D@=&AE;B!N;R!C:&5C:R!W:6QL(&)E('!E<F9O<FUE
M9"X-"E-405)47T%#2STB4W=I=&-H:6YG('1O(%!04"XB#0H-"B,@4&%S<R!A
M(&UE<W-A9V4@;VX@=&\@9&EA;&0@86YD('1H92!S>7-T96T@;&]G<RX-"F9U
M;F-T:6]N(&UE<W-A9V4@*"D@>PT*6R D1DE&3R!=("8F(&5C:&\@(FUE<W-A
M9V4@)"HB(#XD1DE&3PT*;&]G9V5R("UP(&QO8V%L,BYI;F9O("UT(&-O;FYE
M8W0@(B0J(@T*?0T*#0HC($EN:71I86QI>F4@=&AE(&UO9&5M+B!5<W5A;&QY
M('1H:7,@:G5S="!R97-E=',@:70N#0IM97-S86=E("));FET:6%L:7II;F<@
M36]D96TB#0IC:&%T(%1)345/550@-2 B(B D34]$14U?24Y)5"!424U%3U54
M(#0U($]+("(B#0II9B!;("0_("$](# @73L@=&AE;@T*(" @(&UE<W-A9V4@
M(D9A:6QE9"!T;R!I;FET:6%L:7IE(&UO9&5M(@T*(" @(&5X:70@,0T*9FD-
M"@T*(R!$:6%L('1H92!R96UO=&4@<WES=&5M+@T*#0IM97-S86=E(")$:6%L
M:6YG('-Y<W1E;2(-"F-H870@7 T*"51)345/550@-#4@7 T*"4%"3U)4(").
M3R!#05)22452(B!<#0H)04)/4E0@0E5362!<#0H)04)/4E0@(DY/($1)04Q4
M3TY%(B!<#0H)04)/4E0@15)23U(@7 T*"2(B($%41%0D4$A/3D5?3E5-0D52
M(%P-"@E#3TY.14-4("(B#0IC87-E("0_(&EN#0H@(" P*2!M97-S86=E($-O
M;FYE8W1E9#L[#0H@(" Q*2!M97-S86=E(")#:&%T($5R<F]R(CL@97AI=" Q
M.SL-"B @(#(I(&UE<W-A9V4@(D-H870@4V-R:7!T($5R<F]R(CL@97AI=" Q
M.SL-"B @(#,I(&UE<W-A9V4@(D-H870@5&EM96]U="([(&5X:70@,3L[#0H@
M(" T*2!M97-S86=E(").;R!#87)R:65R(CL@97AI=" Q.SL-"B @(#4I(&UE
M<W-A9V4@(D)U<WDB.R!E>&ET(#$[.PT*(" @-BD@;65S<V%G92 B3F\@1&EA
M;%1O;F4B.R!E>&ET(#$[.PT*(" @-RD@;65S<V%G92 B36]D96T@17)R;W(B
M.R!E>&ET(#$[.PT*(" @*BD-"F5S86,-"@T*(R!792=R92!C;VYN96-T960@
M=')Y('1O(&QO9R!I;BX-"FUE<W-A9V4@(DQO9V=I;B!I;B(-"F-H870@7 T*
M"51)345/550@-2!<#0H))%5315)?0TA!5%]315$@7%QQ)%5315)?3D%-12!<
M#0H)5$E-14]55" T-2!<#0H))%!!4U-71%]#2$%47U-%42 D4$%34U=/4D0-
M"FEF(%L@)#\@(3T@,"!=.R!T:&5N#0H@(" @;65S<V%G92 B1F%I;&5D('1O
M(&QO9R!I;B(-"B @("!E>&ET(#$-"F9I#0H-"B,@5V4@;&]G9V5D(&EN+"!T
M<GD@=&\@<W1A<G0@=7 @=&AE('!R;W1O8V]L("AP<F]V:61E9"!T:&%T('1H
M90T*(R!U<V5R(&AA<R!S<&5C:69I960@:&]W('1O(&1O('1H:7,I#0H-"FEF
M(%L@)%!23TU05"!=.R!T:&5N#0H@(" @;65S<V%G92 B4W1A<G1I;F<@0V]M
M;2!0<F]T;V-O;"(-"B @("!C:&%T(%1)345/550@,34@)%!23TU05" D4%)/
M5$]#3TQ?4U1!4E0-"B @("!I9B!;("0_("$](# @73L@=&AE;@T*(" @(" @
M("!M97-S86=E(")0<F]M<'0@;F]T(')E8V5I=F5D(@T*(" @(" @("!E>&ET
M(#$-"B @("!F:0T*9FD-"@T*:68@6R D4U1!4E1?04-+(%T[('1H96X-"B @
M("!C:&%T(%1)345/550@,34@)%-405)47T%#2R B(@T*(" @(&EF(%L@)#\@
M(3T@,"!=.R!T:&5N#0H);65S<V%G92 B1F%I;&5D('1O('-T87)T(%!R;W1O
M8V]L(@T*"65X:70@,0T*(" @(&9I#0IF:0T*#0HC(%-U8V-E<W,A#0IM97-S
:86=E(")0<F]T;V-O;"!S=&%R=&5D(@T*#0H`
`
end
------------------------------
From: Thomas Antepoth <[EMAIL PROTECTED]>
Subject: Re: Access to NFS mount boils TCP/IP networking? (long!)
Date: 19 Aug 1999 20:30:48 +0200
Thomas Antepoth <[EMAIL PROTECTED]> wrote:
some update to the issue follows:
> The only way to resolve the problem without rebooting
> seems to
> "/sbin/init.d/network stop && /sbin/init.d/network start && /sbin/init.d/route start"
> after killing the nfs accessing processes (e.g. cp)
... is wrong.
Simply scripting
ifconfig eth0 down
sleep 1
ifconfig eth0 up
route add default gw 192.168.11.254 eth0
brings the old performance back. Until the next write request.
As the network modules for eth0 are still loaded (checked with
lsmod between the two ifconfigs) I assume the error being in the
TCP / UDP stack of kernel 2.2.10.
t++
--
This mail had been created using Linux. It is therefore free of all
Microsoft(tm) OS based virii, conforms with almost any widely recognized
open standards and is best read with *any* mailclient using fixed fonts.
------------------------------
From: Ronald Cole <[EMAIL PROTECTED]>
Subject: Re: Masquerading: 1 subnet, 2 external NICs
Date: 19 Aug 1999 12:53:05 -0700
Kintar <[EMAIL PROTECTED]> writes:
> Hmmm...any idea where those files would be in RedHat 6.0? I find several
> references to ifconfig, but nothing that seems to actually set the eth2
> interface's settings.
/etc/rc.d/init.d/network is a good place to start reading code...
--
Forte International, P.O. Box 1412, Ridgecrest, CA 93556-1412
Ronald Cole <[EMAIL PROTECTED]> Phone: (760) 499-9142
President, CEO Fax: (760) 499-9152
My PGP fingerprint: 15 6E C7 91 5F AF 17 C4 24 93 CB 6B EB 38 B5 E5
------------------------------
From: "Brian" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.development.apps,comp.os.linux.misc
Subject: Re: Cracks for Linux?
Date: Thu, 19 Aug 1999 12:52:33 -0700
Shouldn't it be luser?
(Linux USER)
;^)
Best regards,
Brian
Lew Pitcher wrote in message <[EMAIL PROTECTED]>...
>X-Newsreader: Forte Free Agent 1.11/32.235
>speling waz nefer mi best subjict
------------------------------
From: Frederic Pont <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware,comp.os.linux.misc
Subject: Re: HELP: IRQ resetting problem..??
Date: Thu, 19 Aug 1999 18:08:31 GMT
If you have a PCI NIC, configuring IRQ in conf.modules is useless..
Fred
In article <[EMAIL PROTECTED]>,
Avijit Purkayastha <[EMAIL PROTECTED]> wrote:
> Hi,
> When my eth0 is being configured, the wrong IRQ address is looked at.
I
> physically set it in /etc/conf.modules
> with the correct IRQ address, but the script is not reading that i.e.
> `modprobe' still looks at the wrong original
> values even though conf.modules has been changed. `modprobe -c' shows
> the correct value. What is over-riding
> the correct values, and what other conf files should be edited to
> correct this problem? I am using kernel
> 2.2.9-19mdk (Mandrake linux). I am setting it in conf.modules as
> "options eth0 irq=3"
>
> Appreciate any suggestions towards this.
> Thanks in advance
> -- Avi
>
>
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Poss" <[EMAIL PROTECTED]>
Crossposted-To: be.comp.os.linux,linux.redhat
Subject: Re: failing network connection
Date: Thu, 19 Aug 1999 15:11:55 -0400
Hello Bjorn!
I'll toss in my two cents... read on.
Bjorn Comhaire <[EMAIL PROTECTED]> wrote in message
news:7pgpsb$amm$[EMAIL PROTECTED]...
> Hi,
>
> I have a pentium running redhat 5.2 and win95, with a 3com 3c509 network
> card.
Are you using the 3c509 driver ? And when you boot up can you see the ethx
(most likely eth0) interface initialising ok?
Just make sure your /etc/conf.modules file contains the following line:
alias eth0 3c509
> For some reason currently not known to me (off course) the box won't
connect
> to my LAN. I've reinstalled the 5.2 but the same thing occured again. Here
> are some facts:
>
> UTP connection
> i/o=0x300 ==> no conflicts
> irq=10 ==> no conflicts
That is good it means you have resources available and no conflicts...
> ping myself: OK
> ping another computer on the network: eth0 timeout !!
Are you using your host name or IP to ping yourself and the others? If you
use the IP and it's timing out it means that most likely your network
settings for eth0 are not quite right. I found out that in most cases it's
either an IP conflict or an incorrect Mask. Setting the right Broadcast
address may help also.
> The office hub does NOT show a connection with the box !!
This can mean anything from an incorrect driver to a bad cable. Given the
fact that in Win95 everything works fine it's probably an incorrect driver.
For instance my Kingston 40BT NIC does not show any link lights if its
driver isn't loaded. As soon as the eth0 comes up the light goes on.
> When I restart win95, everything works fine again.
>
> I guess the card is working fine but for some reason won't interact with
the
> outside world when configured in linux.
You're probably right ! Write down all the settings you have under Win95 for
your NIC and retrace your config steps in Linux. You probably overlooked a
little detail the first time.
Another problem you might have resides with your card's design.
This is what the Ethernet How-to says about your card:
"The original 3c509 has a small packet buffer (4kB total, 2kB Rx, 2kB Tx),
causing the driver to occasionally drop a packet if interrupts are masked
for too long. To minimize this problem, you can try unmasking interrupts
during IDE disk transfers (see man hdparm) and/or increasing your ISA bus
speed so IDE transfers finish sooner. "
But this should not affect your abillity to ping others at all.
> Any tips or other help would be very much appreciated.
> Bj�rn
You might want to drop by 3com's ftp site for some goodies....
ftp://ftp.3com.com
Good luck!
Poss
------------------------------
From: [EMAIL PROTECTED] (Bert Lindner)
Crossposted-To: comp.os.linux.portable,comp.os.linux.hardware
Subject: Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and
video?
Date: 19 Aug 1999 18:57:05 GMT
> I didn't know if it is even possible to *run* Linux from a read-only
> media and just let it use a RAM drive for it's logging, etc. If anybody
> knows if Linux can be ran on read-only medium... let me know!
At the house of some friends I once installed a shabby old 486, nearly
falling apart, as a Linux ip-masquerading router. It did ppp and had dynamic
IP addresses which I let it publish on a web server. Someday it stopped
publishing it's IP address (but otherwise did what it always did, connecting
a small LAN to the Internet). After a while we noticed, and it appeared that
all filesystems were full (with logs and stuff), so it couldn't create the
temporary html-file for ftp-ing to the web server. Of course it also stopped
logging anything. And it didn't have any RAM disk.
As I said, it didn't bother the system a bit, just kept going...
-Bert.
------------------------------
From: Bob James <[EMAIL PROTECTED]>
Subject: Re: telnet as root
Date: Thu, 19 Aug 1999 19:13:20 GMT
On 8/19/99, 1:06:34 PM, [EMAIL PROTECTED] (Wlmet) wrote regarding telnet=20=
as root:
> I have two Slackware 4.0 machines connected over
> a telephone line using mgetty. I cannot telnet in
> as root. How does one get around this problem?
That's not a problem, that's a security feature. Allowing root to=20
telnet in is dangerous, as it presents only one layer of security=20
between a potential cracker and the guts of your box. It's recommended=20=
that you telnet as a regular user, and su to root if needed.
--=20
Bob James |mailto:[EMAIL PROTECTED]
IS Manager |http://www.orielinc.com
Oriel Incorporated |(608) 238-8134 x223
------------------------------
From: marty <[EMAIL PROTECTED]>
Subject: Re: DNS caching only name server
Date: Thu, 19 Aug 1999 13:12:16 +0100
>
> Hi Marty,
>
> seems we are working on the same project at the same time. (See my
> question in this group). I have a firewall under a slightly older kernel
> (2.0.36), and use ipfw(adm), not ipchains. Here are some of the things I
> found out:
>
> 1. Uncomment that line about port 53, so you can set up the rules,
> allowing only traffic at port 53, and keep other closed.
>
> 2. Put the following in the options section of the same /etc/named.conf:
> forward first;
> forwarders{ your_ISP_namerserver1_IP; second_IP; };
>
Thanks this helped alot.
>
> This makes sure that if the lookup has not been cached before, it
> checkes your ISP's nameserver first, before going through all the
> motions of looking up from the root servers downward. (I disallowed any
> dns traffic with anything else than my ISP nameservers anyway, more on
> that further on).
>
> 3. In my firewall set-up script (started at boot), it have from some-one
> else (Ziegler I think, he has an excellent website helping setting up
> firewalls):
>
> EXTERNAL_INTERFACE="eth0" # whichever you use
> IPADDR="123.456.789.10"
> UNPRIVPORTS="1024:65535"
>
> NAMESERVER_1="aaa.bbb.ccc.ddd"
> NAMESERVER_2="ppp.qqq.rrr.sss"
>
> #
> ----------------------------------------------------------------------------
> # DNS
> # The nameserver must be configured before any rule which uses
> # a host name instead of an IP address.
> #
> # 1-19-99: in RedHat 5.2 with the new bind-8.1.2-5, see
> /etc/named.conf.
> # "query-source address * port 53;" must be uncommented.
>
> # DNS server
> # ----------
>
> # DNS forwarding, caching only nameserver (53)
> # --------------------------------------------
>
> # server to server query or response
> # Caching only name server only requires UDP, not TCP
> # 1-19-99: in RedHat 5.2 with the new bind-8.1.2-5,
> # a caching-only nameserver seems to need these rules
> # and the following client-mode rules.
>
> ipfwadm -I -a accept -P udp -W $EXTERNAL_INTERFACE \
> -S $NAMESERVER_1 53 \
> -D $IPADDR 53
>
> ipfwadm -O -a accept -P udp -W $EXTERNAL_INTERFACE \
> -S $IPADDR 53 \
> -D $NAMESERVER_1 53
>
> [same for NAMESERVER_2]
>
As it turns out I am using a very similar script, only it was built using
ipchains. My problems stemmed from not having the DNS Server enabled in my
firewall. The Client was in the script, but the Server was something I missed.
> Hope this helps, it works for me. But than again, I have other problems
> with DNS...
>
Yes it did help alot. My DNS caching server in now operating and I can see the
improved response time on my client machines.
Thanks again.
Marty.
[EMAIL PROTECTED]
------------------------------
From: catsquotl <[EMAIL PROTECTED]>
Subject: ip-masquerading
Date: Thu, 19 Aug 1999 22:45:55 +0200
hello there,
I have a problem setting up ip masquerading.It`s probbably something
small i am overlooking but I can`t figure out what.
I have a linux box wich runs SuSE 6.0 kernel 2.0.36 setup as host.
eth0 is setup as 192.168.1.1 connected with a coax-line to 192.186.1.2
as the only other box in this LAN. Wich is running suse and windows
eth1 is setup as 195.86.254.237 via a utp-cable to a cable-modem that is
connected to my isp.
I have all the kernel-stuf suggested in the ip-masq howto compiled in
and ipfwadm as:
ipfwadm -F -p deny
ipfwadm -F -a m -S 192.168.1.2/24 -D 0.0.0.0/0
from x.x.x.2 I can ping both eth0 and eth1 from x.x.x.1 i can`t connect
to the internet though..
It might be the gateway setting wich for the x.1 box is the one my isp
sent me and for x.2 is 192.168.1.1
i`ve tried the one my isp sent but no luck
can someone tell me what i`m doing wrong??
from the suse 6.0 box i can connect to the internet no probs...
greets eelco
[EMAIL PROTECTED]
------------------------------
From: "Gary" <[EMAIL PROTECTED]>
Subject: Re: eth0 in promiscuous mode
Date: Thu, 19 Aug 99 19:19:27 GMT
Reply-To: [EMAIL PROTECTED]
there isn't one there; so disable the mode it would use if it WAS there!
------------------------------
From: Ronald Cole <[EMAIL PROTECTED]>
Subject: Re: Samba's last stand!
Date: 19 Aug 1999 13:03:18 -0700
"Hiawatha Bray" <[EMAIL PROTECTED]> writes:
> I don't get it.
>
> The Windows box doesn't ask for my user name, just my password. I type in
> my root password on the Linux box, and it tells me it's the incorrect
> password. I leave the password blank and hit enter--same thing. I don't
> recall assigning a password in order to get access to my Linux server. So
> why is it asking me for one, and what the heck is it?
It's the name you logged into your Win9x box as. If it doesn't match
your linux username, you can use "username map" in your smb.conf to
fix that. RTFM. You really should be looking at the Samba log files
on your Linux box to get a clue as to what's going wrong. Samba is
very helpful in that regard!
--
Forte International, P.O. Box 1412, Ridgecrest, CA 93556-1412
Ronald Cole <[EMAIL PROTECTED]> Phone: (760) 499-9142
President, CEO Fax: (760) 499-9152
My PGP fingerprint: 15 6E C7 91 5F AF 17 C4 24 93 CB 6B EB 38 B5 E5
------------------------------
From: "Keith Small" <[EMAIL PROTECTED]>
Subject: Internet Connection
Date: Thu, 19 Aug 1999 19:36:44 GMT
I have managed to get WvDial to connect to my ISP, but thats as far as it
goes.
When I start up Nestscape it cannot find the ppp connection.
What am I doing wrong?
Keith
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
