Linux-Networking Digest #304, Volume #12 Fri, 20 Aug 99 17:13:53 EDT
Contents:
Re: How To Telnet Into IP Masq Linux Box (Roger)
New Installtion w/o CDROM (gendro)
Re: ipchains and forwarding. (Monte Phillips)
Re: How To Telnet Into IP Masq Linux Box (Roger)
ipchains and forwarding. ("Davide Marzaloni")
Re: Win95 + Red Hat ISP ("Bradley Dunn")
Re: ipmasquerading and ftp (Calum Lawler)
Internet & Network Question ("Jordan Lee")
Re: Error can't locate module ppp-compress-21?? ("Cowles, Steve")
Re: Netgear FA310 and Micronics W6Li (Bill Pitz)
compiling bash via NFS mount fails need help (Prem Chandran)
Re: cable modem cant ping gate way or DNS server (s)
Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and (Gert van
der Knokke)
Re: Backup for my Linux-Server/Network (Matthew Marlowe)
Linux as a Novell client (Peter Chase)
Routing ("Jeff")
Reverse PPP/Proxy? (Brian Ecker)
Strange delays (Jonas Otter)
Re: Problem to use IPCHAINS with 4 NIC and 4 ethernets (dmalcolm)
Re: IP Masquerading and automatic disconnect (Thomas Antepoth)
We would like to share our experience in Linux with all of Linux users. ("leo")
read Linux format from win floppy? (bob Oswin)
----------------------------------------------------------------------------
From: Roger <[EMAIL PROTECTED]>
Subject: Re: How To Telnet Into IP Masq Linux Box
Date: Fri, 20 Aug 1999 13:55:17 -0500
"Cowles, Steve" wrote:
>
> Your connection (using telnet) is NOT secure at all. I make it a practice
> not to su to root when I connect over the internet using telnet. Here
> lately, I have been investigating (configuring) ssh and also setting up a
> vpn using pptp.
One thing to remember when configuring ssh is to put the following in
you hosts.allow
sshdfwd-X11: ALL
sshd:ALL
This will allow you to connect via ssh to your computer and foward x11
sessions.
------------------------------
From: gendro <[EMAIL PROTECTED]>
Subject: New Installtion w/o CDROM
Date: Fri, 20 Aug 1999 18:10:51 GMT
Reply-To: [EMAIL PROTECTED]
I'll try to be brief .....
I need to install a "network server" type of config on an old machine:
===============
- 486 sx66
- 8 Mb RAM - 1.2 Gigs HD (partitioned: 500FAT/te rest not yet partioned)
- Two network cards Dlink - DE220
no CD_ROM
===============
Other useful info:
I have another Mahine (P200 Pro) running Redhat 6.0 and connected to the
net via ADSL.
I am looking at the easiest solution to install the needed Linux
configuration onto this machine. Here are the
choices that I thought were the most appropriate:
1)
ftp install via ADSL which I have tried unsuccessfuly........
Problem encountered: the installation process stops at "Loading ramdisk
img ...." panel ...
I can't resolve this problem so I am looking for another solution ....
2) NFS install ...... ??? Any guide lines ?
3) Copying the Slackware an ext2 partition of the 1.2 gig h2 using my
P200 ..
I need advices on choice 2 and 3 so I can install Slackware or else on
my 486 and make it my net
firewall/http server ............
Thanks
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (Monte Phillips)
Subject: Re: ipchains and forwarding.
Date: Fri, 20 Aug 1999 18:05:57 GMT
Davide Marzaloni" <[EMAIL PROTECTED]> wrote:
>my linux box has two NICs: internal (eth0=172.16.255.254/16) and external
>(eth1=X1.X2.X3.X4/Y).
>First forwarding was disabled (cat /proc/sys/net/ipv4/forward = 0)
>Should I activate it? I think ipchains should do the work for it. Isn't it?
>I could not build a firewall in such condition, so I actived it.
>Now (forwarding ON) I cannot build a "deny all except" firewall system with
>ipchains: I only can do "accept all except".
>I tryied this script to activate firewalling with ipchains:
>ipchains -F
>ipchains -P input DENY
>ipchains -P output DENY
>ipchains -P forward DENY
>[...list of chainned rules].
>How can I build a list for web client (80), fto (20 and 21) and so on?
ipchains -P forward DENY
ipchains -A forward -i eth1 -j MASQ
echo "1" > /proc/sys/net/ipv4/ip_forward
insmod ip_masq_ftp
those should do the trick
------------------------------
From: Roger <[EMAIL PROTECTED]>
Subject: Re: How To Telnet Into IP Masq Linux Box
Date: Fri, 20 Aug 1999 13:56:43 -0500
"Cowles, Steve" wrote:
>
> Your connection (using telnet) is NOT secure at all. I make it a practice
> not to su to root when I connect over the internet using telnet. Here
> lately, I have been investigating (configuring) ssh and also setting up a
> vpn using pptp.
One thing to remember when configuring ssh is to put the following in
you hosts.allow
sshdfwd-X11: ALL
sshd:ALL
This will allow you to connect via ssh to your computer and foward x11
sessions.
------------------------------
From: "Davide Marzaloni" <[EMAIL PROTECTED]>
Subject: ipchains and forwarding.
Date: Fri, 20 Aug 1999 17:56:56 +0200
Hi.
my linux box has two NICs: internal (eth0=172.16.255.254/16) and external
(eth1=X1.X2.X3.X4/Y).
First forwarding was disabled (cat /proc/sys/net/ipv4/forward = 0)
Should I activate it? I think ipchains should do the work for it. Isn't it?
I could not build a firewall in such condition, so I actived it.
Now (forwarding ON) I cannot build a "deny all except" firewall system with
ipchains: I only can do "accept all except".
I tryied this script to activate firewalling with ipchains:
_____________________________
ipchains -F
ipchains -P input DENY
ipchains -P output DENY
ipchains -P forward DENY
[...list of chainned rules].
____________________
How can I build a list for web client (80), fto (20 and 21) and so on?
TIA
Davide Marzaloni
------------------------------
From: "Bradley Dunn" <[EMAIL PROTECTED]>
Crossposted-To: linux.redhat.ppp
Subject: Re: Win95 + Red Hat ISP
Date: Fri, 20 Aug 1999 12:12:23 -0400
Your ISP does not know or care what OS you use. The problem lies in your
setup somewhere.
Brad
Andrew Winegar <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> I'm having real problems with my ext US robotics 56k getting ppp with
> inreach (orange county,CA) and am thinking of changing ISP
> Anyone know of a California ISP who support both OS without charging and
> arm and leg.
>
------------------------------
Date: Fri, 20 Aug 1999 10:20:56 -0600
From: Calum Lawler <[EMAIL PROTECTED]>
Subject: Re: ipmasquerading and ftp
Try the following...
/sbin/depmod -a
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_raudio
/sbin/modprobe ip_masq_irc
That should set it up...
HTH
CL
Pablo wrote:
> Hello,
> I've just installed a network with 3 computers connected behind a
> firewall ( ipfwadm)
> The firewall computer have 2 ethetnet devices (eth0 DHCP and eth1 local
> IP).
> The kernel is 2.0.37 compiled with all firewall options set to 'yes'.
> For the moment the policies of the three chains in out and forwards are
> 'accept' and i have not create any rules. ( so it's open :o) )
> the only rules i have made are for the ipmasquerading :
>
> /sbin/ipfwadm -F -p deny
> /sbin/ipfwadm -F -a m -S 192.168.1.0/24 -D 0.0.0.0/0
>
> Now all the computers are connected. But i have some problems for the
> FTP connections , and for sending mails with attached files.
> Someone have an idea ???
>
> Thanks in advance.
>
> Pablo.
------------------------------
From: "Jordan Lee" <[EMAIL PROTECTED]>
Subject: Internet & Network Question
Date: Fri, 20 Aug 1999 12:41:22 -0700
Hello,
I am fairly new to Linux and I have my Win98 box and Linux networked
together and wanting to know if I can browse the internet in Linux accross
the network? I make the connection in Windows... and help or pointers would
be great!
Thanks,
Jordan Lee
------------------------------
From: "Cowles, Steve" <[EMAIL PROTECTED]>
Subject: Re: Error can't locate module ppp-compress-21??
Date: Wed, 18 Aug 1999 18:00:18 -0500
Add the following to your /etc/conf.modules file.
alias ppp-compress-21 bsd_comp
alias ppp-compress-24 ppp_deflate
alias ppp-compress-26 ppp_deflate
Steve Cowles
SWcowles at gte dot net
Spammers Away <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Can anyone help me with this?
>
> I get these errors in /var/log/ messages at dial up time:
>
> modeprobe: can't locate module ppp-compress-21
> modprobe: can't locate module ppp-compress-26
> modprobe: can't locate module ppp-compress-24
>
> I have rebuilt the kernel and modules. I am running RH 6.0 on this
> box. Box still keeps working, without apparent problems.
>
> Any help greatly appreciated.
------------------------------
From: Bill Pitz <[EMAIL PROTECTED]>
Subject: Re: Netgear FA310 and Micronics W6Li
Crossposted-To: comp.os.linux.hardware
Date: Fri, 20 Aug 1999 19:26:39 GMT
In comp.os.linux.networking John Meissen <[EMAIL PROTECTED]> wrote:
> Now, I could say OK, I have a workaround, but I need =2= NICS
> in this machine.
> So, is this some new restriction with this NIC, or is there
> some bizarre restriction in the BIOS for this motherboard?
The first thing you need to do is go download the latest tulip.c source
from Donald Becker's web site and compile that into your kernel. It's
definitely not a problem with the new chips because I have two of the
NICs with the clone chips running in several machines and they are
working great. In one machine (which happened to be one of my tests on
the Linux Router Project), the cards wouldn't work properly without the
newest driver, which supposedly has better support for the Netgear clones.
I sure wish that we could still get the good solid DEC chips :)
-Bill
--
Bill Pitz bill at svn.net
Silicon Valley North, Inc. www.svn.net
Internet and World Wide Web Services (707) 781-9999
------------------------------
From: Prem Chandran <[EMAIL PROTECTED]>
Subject: compiling bash via NFS mount fails need help
Date: Fri, 20 Aug 1999 08:33:44 -0700
Hi ,
I have the bash-2.03 source code on a solaris machine.
I have mounted that directory onto a directory called
/view/prem on my PC running rehat 6.0.
Now when I try to compile bash here the compile barfs.
Specifically the mkbuiltin inside builtins directory
does a SEGV.
I heard there are some problems with NFS on linux interworking
with NFS on solaris. Can anybody shed some light on this.
This compiles very well if I put the source code on my pc
directly and compile it. Can anybody tell me what could be
the problem here.
I need to do this because I need to have the bash code under
source control and we have clearcase on solaris machines and
I need to use it.
thx
-Prem
--
Prem Chandran
[EMAIL PROTECTED]
408-5279938
------------------------------
From: s <[EMAIL PROTECTED]>
Subject: Re: cable modem cant ping gate way or DNS server
Date: Fri, 20 Aug 1999 16:03:37 GMT
well not sure but if that where the proble woulden it do the same thing
wen
i run win98. Win98 works fine but i cant seem to set up my redhat linx
with @home cable mode plz help if u can or tri thx's again
Eric deRiel wrote:
>
> > > hi i have @home and cant ping my gate way 24.7.63.1
> > > netmask 24.0.200.33 or 24.0.200.34
> > > my ip 24.7.63.1 I can ping my own ip but thats all
> > > network card is up and running fine but ndc400 nic card retek chipset
> > > RTL8029(AS)
>
> > I can ping your pc and the gateway. What are the results of ipconfig and
> > route executed from the dos command prompt on your pc?
>
> At least in my experience the above are symptoms of an address
> allocation problem on @Home's end: they seem to sometimes give the
> same IP address to two different people, making it impossible for the
> second person (and sometimes the first, too) to communicate with the
> rest of the 'Net.
>
> If this is the case, the only ones who can help are @Home. You'll
> need to call their technical support, and bring a lunch -- you might
> be a while. While they've been very helpful to me in these situations
> (I've had it happen twice now), they invariably have to pass messages
> along to their network operations center, which seems to involve a lot
> of flaming and handwaving. Some sort of jurisdictional row,
> apparently.
>
> e
> --
> "We come and go alone, why do they need to know?"
------------------------------
From: Gert van der Knokke <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.portable,comp.os.linux.hardware
Subject: Re: WhereToFind? Socket 7 motherboard with onboard ethernet, sound, and
Date: Fri, 20 Aug 1999 19:08:58 +0000
Frank Schwab wrote:
> Try www.ebay.com, computers, motherboards. Search for "Video sound
> ethernet" in Hardware/motherboards, titles and descriptions. I got 10
> matches.
>
> There are several manufacturers of this style board that I've seen
> lately. Unfortunately, none had what I was looking for which was NTSC
> video out. If you happen to find one with NTSC output, LET ME KNOW.
>
If you're lucky you can program X (or SVGAtext) so it outputs NTSC (or
PAL) vertical and horizontal frequencies. All you need then is a RGB to
NTSC converter (like the AD725) to hook it up to your NSTC monitor.
I managed to get a very good 732x575 interlaced PAL picture from a S3
Trio64+ videocard (1 Mb), together with the AD725 it works nicely.
The AD725 doesn' t like noise on it's vertical/horizontal sync inputs,
you will have lots and lots of trouble getting the colors right, it took
me 2 days to find this out... I ended up filtering the HS en VS signals
with 3k3 in series and 1 nf to ground at the input of the AD725.
The AD725 can be used for both NTSC and PAL, you just need different
crystals.
In the datasheet you can find an application schematic and info how to
select NTSC/PAL. (and you probably don't need them 3 opamps you see in
this schematic, they are just for hooking up another monitor, without the
opamps the AD725 runs on single 5 volt)
>
> >I'm looking for a Socket 7 (preferable Super 7) that has *onboard*
> >sound, ethernet, and video. Does anybody recommend any
> >motherboards that have all these features... and can work
> >with Linux?
>
Don't use the boards with so called shared memory video, they are dead
slow, they'll cost you as much as half the performance of the CPU.
Onboard AGP and boards with dedicated videomemory should be ok.
> >
> >Or... if you know where I can look to find motherboards with all
> >these features... I will gladly accept any suggestions!!
> >
> >Just curious... but would an Intel 166 MMX (socket 7) run _cooler_
> >or _warmer_ than any Pentium II chip? I want to put a computer
> >in my car... and am concerned about heat. :>
> >
My car P100 system uses about 3 amps at 12 volt so the whole box can
generate as much as 36 watts in heat, one small fan cools down the CPU
and the box.
(I had an AMD K5-100 in it but FP performance is much less than the real
P100 and it produced a lot more heat, Cyrix's are also notorious burners)
Best way to keep the heat down is to run a faster CPU at a lower clock
frequency...
check: http://www.kge.dyns.cx:999
(mind the 999!)
have a look in project pictures
MPEG3_CAR_player_1.jpg
MPEG3_CAR_player_2.jpg
BTW This box doesn't have a videocard installed, control is through a
PIC based frontend (FT display with 2 pushbuttons). I plan on using a 4"
TFT LCD (PAL) for this box in the near future.
Further specs:
Linux 2.0.27 (yeah this box is already 2 years old)
Pentium 100
16 Mb memory
'El Cheapo' soundcard (selected for size) with added TDA1543 cd quality
DAC (the soundchip on the card had I2S output), this is placed in a sawn
off riser card to get it flat on top of the isa slots.
Mains PSU (for running it at home)
Car Power supply: Homebuilt DC-DC converter (L297 based) which generates
5 volts at 7 amps max.
1.3 Gb notebook HD (5 volt only)
A DC-DC converter from an old network card generates +/- 9 volts for the
serial port.
When in use at home, I hook up a DE600 compatible network adapter to the
parallel port and access is through telnet and NFS.
Gert
--
======================================================================
= LINUX = Unix The Next Generation ................................ =
= [EMAIL PROTECTED] running Linux on Intel and Alpha =
======================================================================
------------------------------
From: Matthew Marlowe <[EMAIL PROTECTED]>
Subject: Re: Backup for my Linux-Server/Network
Date: Fri, 20 Aug 1999 12:29:26 -0700
Anton,
You may want to try backing up using dump/restore - the standard
unix utils for filesystem archival. These apps are optional packages
in redhat.
Thanks,
Matt
Anton Seissl wrote:
>
> Hi!
>
> I'm running a Linux (SuSe 6.0) Server in my network. Now I'll have to
> Backup my System to a tape-device.
>
> I performed one Backup on it by using TAR. This Backup was ok. But
> now the backup is stopped after compressing some files und trying to
> write data to the tape-device. The problem is - I don't get any error-
> message...
>
> First of all I thought the tape is full and wasn't rewinded. So I took
> another
> tape and tried it again - tar stopped it again.
>
> Is there anybody out there with a solution for me? I urgently need a
> backup of my data!!!
>
> HELP!!
>
> Thanks,
>
> Toni
--
Matthew Marlowe http://www.jalan.com/ (p) 909.799.3805
[EMAIL PROTECTED] Jalan Network Services (f) 909.799.3285
"Quality Web Hosting, Network, Linux, and Solaris Consulting"
------------------------------
From: Peter Chase <[EMAIL PROTECTED]>
Subject: Linux as a Novell client
Date: Fri, 20 Aug 1999 14:08:35 -0500
I've been trying to get my Linux box to network to our Novell network we
have. I'm using Red Hat 6.0 and have already compiled the kernel with
IPX support and support for the Novell file system. The new kernel
works fine and I have already run ipx_interface and ipx_configure, but
whenever I run slist to see which Novell servers are on the network it
returns "no server found in ncp_open". I would appreciate any help
anyone can give me.
--Pete
------------------------------
From: "Jeff" <[EMAIL PROTECTED]>
Subject: Routing
Date: Fri, 20 Aug 1999 13:02:52 -0400
I am trying to set up a network and I'm not really sure what I should be
using. I am using a Linux box running redhat 6.0. This machine has 3 network
cards. Two of which have registered ips with one having a frame relay
connection to the internet. Eventually I would like to install TIS FWTK but
for now I would be happy getting both sub nets talking to the internet.
What I want to know is what do I have to set up. I know ipchaining seems
to be a fire wall program but will it do routing between the 3 subnets. IP
aliasing would work for the one subnet but what do I use for the second.
Tried to get routd to work but that failed. Not even sure if that is what I
wanted to use.
I willing to spend the time trying to figure out how to get this working
but before I do I just want to make sure what I'm working on will do what
I'm trying to do.
Thanks
------------------------------
From: Brian Ecker <[EMAIL PROTECTED]>
Subject: Reverse PPP/Proxy?
Date: Fri, 20 Aug 1999 15:13:13 -0400
I'm getting a laptop soon to add to my Linux hardware collection. :) I want
high speed internet connectivity, but my apartment building doesn't have the
wiring for it. No problem, I say, I'll take the laptop into work. Problem
there. All the ethernet ports at work are protected with a Tripwire device that
will shut off the port if an ethernet device with an unrecognized MAC address
starts making requests.
Here's my proposed solution, my question is, is it feasable, or is there a
better way?
I can't make changes to the UNIX machines at work (no root access). I can make
changes to the Windows machines because there's no such thing as system security
with them. So, I want to connect a null modem cable between one of the Windows
machines and the Linux laptop. I want to try to get networking going, so I
presume I'm going to use PPP to talk between the link. Here's my problem:
AFAIK, Windows doesn't have a ppp server (or at least a free one, correct?) So
therefore, I would need the Windows machine to be the PPP client (by way of Dial
Up Networking) and make the Linux machine the server. The problem is that the
network connection is with the Windows machine. Can I trick PPP by making Linux
think the gateway exists on the system that's calling into it?
Or even better, does any software exist for Windows that will allow it to
proxy/relay network traffic from a serial port?
I guess my exact question would be, "Is there a way to make Windows act as a
gateway for a NULL modem connection?"
Thanks for all assistance,
Brian Ecker
I will be away for a while, and my NNTP server prunes the messages quite
frequently, so I would be very much appreciative if you CC'd my email address in
the reply.
------------------------------
From: [EMAIL PROTECTED] (Jonas Otter)
Subject: Strange delays
Date: Fri, 20 Aug 1999 15:59:30 GMT
Hello everyone,
I am trying to set up a Linux box as a proxy/firewall for our company.
I am getting what seems to be strange, randomly occurring delays in
the network.
When i try to ping machines on the internal network from the firewall,
often nothing at all happens, just a big delay. If I abort ping with
Ctrl-C, it reports x packets sent and 100% packet loss. If I leave it
for a long time, it may suddenly start up, when aborted it then
reports 0% packet loss, as if it had simply been sleeping for ages.
Pinging a different machine may give the same result, or may work as
normal. If I try to telnet to a machine where the ping doesn't work,
it says "no route to host".
Pinging the router on the Internet side always seems to work, and I
have succeeded in pinging the ISPs DNS server.
Similarly, running tcpdump against the internal network adapter seems
to give no output for long periods even though there is traffic on the
network, then suddenly a burst of output arrives as if it had been
buffered. Using tcpdump -l seems to make no difference. Also, tcpdump
does not show anything when the machine is pinged.
Pinging the firewall machine from another machine on the internal
network always works fine.
The machine is a P75 with RedHat 6.0, 8 MB memory. The network cards
are NetGear FA310TX with the Dec Tulip chip. eth0 is the internal
network adapter.
Output of ifconfig:
lo Link encap:Local Loopback
inet addr:127.0.0.1 Bcast:127.255.255.255 Mask:255.0.0.0
UP BROADCAST LOOPBACK RUNNING MTU:3584 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0
eth0 Link encap:Ethernet HWaddr 00:A0:CC:3B:E4:A1
inet addr:192.168.1.1 Bcast:192.168.1.255
Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1193 errors:0 dropped:0 overruns:0 frame:0
TX packets:77 errors:0 dropped:0 overruns:0 carrier:0
collisions:0
Interrupt:11 Base address:0x1100
eth1 Link encap:Ethernet HWaddr 00:A0:CC:52:9C:7A
inet addr:195.xxx.xxx.82 Bcast:195.xxx.xxx.95
Mask:255.255.255.240
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:12 errors:0 dropped:0 overruns:0 frame:0
TX packets:13 errors:0 dropped:0 overruns:0 carrier:0
collisions:0
Interrupt:9 Base address:0x1000
Output of route -n:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref
Use Iface
195.xxx.xxx.80 0.0.0.0 255.255.255.240 U 0 0
1 eth1
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0
4 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0
0 lo
0.0.0.0 195.xxx.xxx.81 0.0.0.0 UG 0 0
1 eth1
Can anybody suggest what could be wrong?
Thanks,
Jonas Otter
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: Problem to use IPCHAINS with 4 NIC and 4 ethernets
Date: Fri, 20 Aug 1999 14:48:40 -0500
Ivano Colella wrote:
> Hi,
> i must do a critical linux box.
>
> I have 4 lan (3 internal e 1 external)
> a) eth0 : 192.168.0.0/24 is the 1st intranet
> b) eth1: x.y.w.z/27 is the connection to internet
> c) eth2: 172.16.25.0/24 is the 2nd intranet
> d) eth3: 172.16.128.0/24 is the 3nd intranet
>
> I need to do this:
> a) is the real intranet, on which there are all pc inside office
> b) is internet and all people working in a) can access
> d) [talk about c) below] is a routed connection with one provider can make
> possible to external user
> to access our intranet
> c) is a cable connection with another office which has an intranet on
> address 10.x.x.x/24
>
> there are 3 routers to connect a), c) and d)
>
> my linux box must:
> I - permit to users of lan a) to access internet b) and 1 server on lan c)
> II - permit to users of lan d) to access the www server on lan c) to open
> HTML pages and nothing else.
> (If it possible in future we wish to give them an internet access with
> pop3 mail)
> III - create a firewall in front of internet access b) to prevent external
> access
> IV - reject access from lan c)
> V - limit access from lan d)
>
> Actually from linux box i can see all networks, but a) lan can access only
> b) internet.
> I have arranged many scripts for rc.firewall
>
> I hope someone give me help, because I've already read everything about
> IPCHAINS & Co, but all
> examples talk about max 2 NIC and 1 PPP access
>
> Thanks
> Francesco Saverio Giudice
>
> Please reply at this ng and cc to my personal address [EMAIL PROTECTED]
Should be able to fix this problem with a static route from a) to c) plus a rule
to allow traffic to only go the allowed server. I assume you have IPCHAINS rule
in place so try adding a route to c) using eth2 interface's IP as the gw
address.
[EMAIL PROTECTED]
------------------------------
From: Thomas Antepoth <[EMAIL PROTECTED]>
Subject: Re: IP Masquerading and automatic disconnect
Date: 20 Aug 1999 18:21:29 +0200
Martin Nilsson <[EMAIL PROTECTED]> wrote:
> I have installed IP Masquerading on my Linuxserver and I can now surf the
> net via my Windows 98 computer.
Failing to mention which connection type you're using (isdn or modem) leads
to wild assumtions.
Assuming you've connected via ISDN there is a solution to automatically
disconnect the line when the next charge unit is 2 seconds away.
These capability is reached using isdn4linux and isdn4kutils.
You might get the source from
ftp://ftp.suse.com/pub/isdn
> But how do I do to get the connection to disconnect now when I don't have the
> ability to disconnect from Windows.
> Earlier I could dosconnect from my modemicon i systray. Is there any way to
> automatic disconnect when I close my browser och something?
And diald is your friend as far as modemconnections are concerned.
t++
--
This mail had been created using Linux. It is therefore free of all
Microsoft(tm) OS based virii, conforms with almost any widely recognized
open standards and is best read with *any* mailclient using fixed fonts.
------------------------------
From: "leo" <[EMAIL PROTECTED]>
Subject: We would like to share our experience in Linux with all of Linux users.
Date: 20 Aug 1999 17:08:46 GMT
Hi, everyone;
Please visit our web site http://www.sisen.ca. This web site is powered by
Linux with Apache. We would like to share our experience in Linux with all
of Linux users. Please write to us when you have any questiones about the
Linux, we will help you as much as we can.
Also, We are Linux base ISP.
Leo
------------------------------
From: bob Oswin <[EMAIL PROTECTED]>
Subject: read Linux format from win floppy?
Date: Fri, 20 Aug 1999 11:03:14 +0000
Reply-To: [EMAIL PROTECTED]
I managed to format a floppy (/dev/fdoH1440) and transfer an ascii file to it.
I don't have a dos partition.
I was hoping to read the floppy over on a Mac or Win 98 machine.
Both machines reject the format.
What next?
Bob Oswin
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
