Linux-Networking Digest #375, Volume #12 Thu, 26 Aug 99 19:13:39 EDT
Contents:
Connection Problems with LLinux & 3C590 ("Andrew Smith")
Re: Firewall Rules (Jake Colman)
Re: fetchmail problem ("Sagolsem C")
Re: apache with php3 compile error (Christopher Allen)
Re: Shutting off unneeded services (Christopher Allen)
Re: Ethernet won't ping, can't figure out problem (dmalcolm)
Help: Rebooted linux-mandrake 6.0 - now it won't run ("Chris M.")
Re: Network Setup??? (Christopher Allen)
Re: Why, Why Why (Christopher Allen)
How to get rdate working? (Thomas Lim)
NFS and GNU Linker producing corrupted executables (RHL 2.2.5-15/2.2.11 (David
Elder)
Re: simple networking questions
Re: 3Com Impact IQ + Dual Channel + RH6 Help ("Jeff")
pop3 ("Sagolsem C")
Re: routed problem (Mark Johnson)
Re: SAMBA woes (Alvaro Garriga)
Re: routed problem (Mark Johnson)
Re: IPMasq on same machine I use or on old 486? (dmalcolm)
Re: Is routing between these subnets okay? ("Linkage")
Re: Routing / Gateways ("Sagolsem C")
Re: Can an ISP detect masquerading? (Tom Verbeure)
----------------------------------------------------------------------------
From: "Andrew Smith" <[EMAIL PROTECTED]>
Subject: Connection Problems with LLinux & 3C590
Date: Thu, 26 Aug 1999 22:17:07 +0100
Hi,
After rewiring the old BNC network at my dad's office to 10BaseT, I have
been trying to set up a dedicated file/print/mail/internet server as the
computer which is currently acting as 'server' is simply another win95
machine which gets used by one of the secritaries, and as such, has slowed
down significantly.
I've installed SUsE Linux on a P166 which will act as a server machine and
I'm using Samba PC server to allow windows machines to connect to it. This
server is also going to be used as an NT domain server to check passwords.
I've hooked up a 3Com 3C950 network card and configured it using YaST (Yet
another Setup Tool). When booting up, linux reckonises the card as eth0,
with irq 11, and it's hardware address. The light for that computer lights
up on the hub, so the card must be installed correctly. I have tried the
card in a Win95 computer, and it works fine there. Even with samba set up
correctly, the server can't be seen in network neighbourhood and it won't
verify domain passwords. when the server is pinged, sometimes the response
is 3 or 4 ms, yet pinging again straight afterwards will cause a timeout. if
the server tries to ping any machine (apart from it's own IP) it stops dead,
in efect, 'crashes', making that console unusable. Both Apache web server
and SWAT (Samba Web Administration Tool) are running and can be accessed
from the server, but any other machine can't access them. Stranger still,
when trying to logon using the server to verify a domain password, the hub's
data lights by the client and server flash in unison, even though the logon
fails. So far, after 2 days of debugging, i've found out that the problem is
that the SMBD deamon is not starting properly. I have checked all the
parameters with 'testparm' but with no luck. The deamon just won't run... Am
I right in thinking that this is more of a hardware setup problem rather
than a software setup problem. Surely, even in the Samba deamons weren't
running, the server would at least be able to ping other computers? Could
this unknown problem be what is causing Samba not to start up?
I've searched the web for help on this, but I can't find anything anywhere.
My main guide for setting up this server was http://www.pcquest.com/may98/
where PCQuest, an american (i think) magazine, decided to test linux by
throwing out their old server setup and entrusting linux in it's place. It's
a really good site...
Any help would be very greatly appreciated,
Many Thanks,
Andrew Smith
------------------------------
Subject: Re: Firewall Rules
From: Jake Colman <[EMAIL PROTECTED]>
Date: 26 Aug 1999 15:32:35 -0400
>>>>> "MP" == Mark Post <[EMAIL PROTECTED]> writes:
MP> On Wed, 25 Aug 1999 15:23:48 -0000, "Robert_Glover"
MP> <Please_reply_to@newsgroup> wrote:
MP> Here's what I created today by using the web-based tool at
MP> http://rlz.ne.mediaone.net/linux/firewall/index.html
I checked out that site and I am a bit confused. Are you required to have a
DHCP in order to use it? I have a small home network with ppp access to my
ISP. I plan on using IPMASQ to masquerade and share my single connection
with the rest of the network. How/ehy does DHCP come into play with this?
--
Jake Colman
Principia Partners LLC Phone: (201) 946-0300
Harborside Financial Center Fax: (201) 946-0320
902 Plaza II Beeper: (800) 505-2795
Jersey City, NJ 07311 E-mail: [EMAIL PROTECTED]
E-mail: [EMAIL PROTECTED]
web: http://www.ppllc.com
------------------------------
From: "Sagolsem C" <[EMAIL PROTECTED]>
Subject: Re: fetchmail problem
Date: Thu, 26 Aug 1999 16:56:10 -0400
Do you have a .fetchmailrc file which contains ur domain name, server
account and password.
[EMAIL PROTECTED]
VBF Ratingen <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Hi folks!!
>
> I�ve a problem with ftechmail: it doesn�t fetch any mails :-( !! When run
in
> debug-mode (fetchmailconf, test fetchmail) , I get a messsage that the new
mail
> has been found, but then fetchmail tells me something like �Server domain
must
> resolve�. Any ideas what�s wrong??
>
> Thanx!
> Rainer.
------------------------------
From: Christopher Allen <[EMAIL PROTECTED]>
Subject: Re: apache with php3 compile error
Date: 26 Aug 1999 21:55:22 GMT
mauz <[EMAIL PROTECTED]> spake:
> hi all,
> when i compile my apache with php3 under linux i got the following
> error:
This question is commonly resolved by going here:
http://www.php3.net/support.php3
-out
------------------------------
From: Christopher Allen <[EMAIL PROTECTED]>
Subject: Re: Shutting off unneeded services
Date: 26 Aug 1999 21:59:18 GMT
Vlar Schreidlocke <[EMAIL PROTECTED]> spake:
> What's the easiest way to shut of unneeded online services (web
> server, ftp server, etc.) in Red Hat 6.0? I'm going to be connecting
> my network to a cablemodem and I don't want the isp scanning me for
> these servers and shutting me down.
/etc/inet.conf contains:
#
# inetd.conf This file describes the services that will be available
# through the INETD TCP/IP super server. To re-configure
# the running INETD process, edit this file, then send the
# INETD process a SIGHUP signal.
you can simply comment the line out:
then run killall -HUP inetd from the command line.
-out
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: Ethernet won't ping, can't figure out problem
Date: Thu, 26 Aug 1999 16:45:26 -0500
Sam Walton wrote:
> I'll try again. RedHat 5.0, kernel 2.0.32 on a 586 clone with 24 megs
> of RAM. Ethernet is D-Link 220E (NE2000 compatible and plug and play is
> disabled) and is finally recognized by kernel as eth0.
>
> ifconfig says:
> inet addr:192.0.0.3 Bcast:255.255.255.255 Mask:0.0.0.0
> UP BROADCAST Running Multicast MTU:15000 Metric:1
> RX packets:52 errors:0 dropped:0 overuns:0
> TX Packets:170 errors;0 dropped:0 overruns:0
> Inerrupt:9 Base address:0x300
>
> I set up Network Configurator so that, one day I'll use it for IP Masq,
> but right now, I just want to see it on my LAN populated with Macs and
> tied to a hub that works for the Macs. I also want to install Netatalk
> so I can use it over the network.
>
> So I've set it at 192.0.0.3 (see above) and it is active. I don't know
> my netmask because I just want to make sure it works locally first. The
> other macs are set at 192.0.0.1, etc.
>
> I have tried pingin from the Macs and from the linux box. Nothing shows
> up in scans. Linux is just hitting against something.
>
> Its probably something simple. I've visited the HOWTO which helped me
> overcome the plug and play problem. Now I can't get out on the network.
>
> please email, sam
In addition to what 'jensema' said and its important that you do that, set
your Broadcast address to 192.0.0.255
Dan
------------------------------
Reply-To: "Chris M." <[EMAIL PROTECTED]>
From: "Chris M." <[EMAIL PROTECTED]>
Subject: Help: Rebooted linux-mandrake 6.0 - now it won't run
Date: Thu, 26 Aug 1999 17:20:04 -0500
I have installed Linux Mandrake 6.0, and the installation went fine. During
the initial boot after installation, the boot hung on "starting sendmail",
at that time, the computer was reset using the button on the front of the
computer. Now the computer hangs on /dev/hda7: UNEXPECTED INCONSISTENCY;
RUN fsck MANUALLY.
Then I get a series of
bash:id: command not found
bash:id: command not found
bash:id: command not found
[: too many arguments
bash:id: command not found
bash:dircolors:command not found
bash:mesg:command not found
[root@(none) / root]#
What do I do Now?
The computer has been setup as a server.
Any help or direction to a good location for help would be greatly
appreciated.
I do know now that you do not just turn off the computer with the Linux OS
Thanks,
Chris
------------------------------
From: Christopher Allen <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup
Subject: Re: Network Setup???
Date: 26 Aug 1999 21:42:42 GMT
In comp.os.linux.networking Rob Adams <[EMAIL PROTECTED]> wrote:
> I am trying to use my Linux box as a gateway to my ISP. I have the ppp
> settings configured, I can dial out to my ISP and get IP, now I want to be
> able to allow the other computer on my small network to have access to the
/etc/sysconfig/network
contains:
GATEWAY=192.168.1.1
GATEWAYDEV=ETH0
make sure you set the gateway ip to the computer that is dialed out
to the isp. This also works for win** machines if you have them point to the dialed
out machine as their gateways.
-out
------------------------------
From: Christopher Allen <[EMAIL PROTECTED]>
Subject: Re: Why, Why Why
Date: 26 Aug 1999 22:06:35 GMT
Alvaro Garriga <[EMAIL PROTECTED]> spake:
> I installed Red Hat 6.0 everything when through fine.
> I setup samba got it working I rebooted the machine. Now I have bring my network
> card up with ipconfig to be able to ping.
> ( ipconfig eth0 xxx.xxx.xxx.xxx netmask 255.255.255.0 up ).
> Where can I find this network configuration settings?
/etc/sysconfig/network
which might look like this:
NETWORKING=yes
FORWARD_IPV4=false
HOSTNAME=my.name.is.blahh
DOMAINNAME=name.is
GATEWAY=192.168.1.20
GATEWAYDEV=eth0
/etc/sysconfig/network-scripts/ifcfg-eth0
which might look like this:
DEVICE=eth0
IPADDR=192.168.1.20
NETMASK=255.255.255.0
NETWORK=192.168.1.0
BROADCAST=192.168.1.255
ONBOOT=yes
check this area for proper documnetation:
http://metalab.unc.edu/LDP/HOWTO/
-out
------------------------------
From: Thomas Lim <[EMAIL PROTECTED]>
Subject: How to get rdate working?
Date: Thu, 26 Aug 1999 06:24:30 +0000
OS: Red Hat 6
Does anyone know how to set up rdate?
When I try to use rdate, I got the following message:
# rdate 192.168.1.18
rdate: No such file or directory
What does the message mean?
------------------------------
Crossposted-To:
comp.os.linux.setup,comp.os.linux.development,comp.os.linux.development.kernel,comp.unix.aix
From: David Elder <[EMAIL PROTECTED]>
Subject: NFS and GNU Linker producing corrupted executables (RHL 2.2.5-15/2.2.11
Date: Thu, 26 Aug 1999 21:35:16 GMT
Hi All,
I hope someone has a simple solution to my problem:
Hardware: DELL Optiplex GX1, 256Mb RAM, running RH Linux 6.0
using both the stock 2.2.5-15 kernel and the
latest 2.2.11 kernel.
IBM RS6000 3AT running AIX 4.2.1
1) RS6000 serves an NFS file system to the Linux box.
NFS file system contains Fortran source code for a
modelling program.
2) Compile the source code in 4 scenarios - on the linux box
using the PGI fortran 90 compiler and ECGS for one .c file.
a) Source compiled to .o files on NFS filesystem.
Executable written to NFS file system.
b) Source compiled to .o files on NFS file system.
Executable written to local filesystem on Linux box.
c) Source compiled to .o files on local file system.
Executable written to local file system.
d) Source compiled to .o files on local file system.
Executable written to NFS file system.
3) Results:
a) All of the .o files compiled to either the local
or NFS file systems compare as Identical.
b) Executables that are written on the NFS file system
do NOT work. They generate an error:
Memory Fault (core dump).
c) Executables that are written to the local file
system from either local or NFS .o files work
correctly.
d) A byte by byte comparison of the executable files
shows that they only differ by about 12k bytes out of
4Mb. The difference is that a few zeroes have
crept into the corrupt executable image. Usually just
one or two here and there that shift the binary
code by a byte or two for sections of the corrupt executable.
Most of the executable is identical and the areas where
a zero or two have been inserted are also identical except
for the offset.
The whole 12k of appears to be caused by a handful
of corruptions where these extra zeroes offset the
executable code for a section.
4) Conclusion:
It appears as if the linker is having some sort
of problem with writing a complete executable on
an NFS mounted file system. Compile and link to
a local drive from either local or NFS .o works
correctly. Compile and link to an NFS file system
from either local or NFS .o files generates a
corrupt executable.
I have not yet seen any other NFS file corruption
problems despite extensive compilation (not linking)
and editing of source code - it only appears to
happen in this one context so far.
This could be related to the IBM NFS implementation
but I would have thought it would impact other
applications as well. At the moment it looks
like a linker/NFS (or IBM NFS iteraction) bug.
At least one other report of a problem with similar
symptoms on similar hardware has been reported on the
comp.os.linux.* newsgroups but no solution seems to be
available.
I have tried building the 2.3.13 kernel to see if this
makes any difference but the first attempt failed to
run :-)
Thanks for any help or suggestions.
Cheers,
David
--
David Elder University of Toronto
Institute for Aerospace Studies
[EMAIL PROTECTED] Fusion Research Group
------------------------------
From: [EMAIL PROTECTED] ()
Subject: Re: simple networking questions
Date: Thu, 26 Aug 1999 06:51:30 GMT
Reply-To: [EMAIL PROTECTED]
On Thu, 26 Aug 1999 Thomas Kaemer <[EMAIL PROTECTED]> wrote:
>[EMAIL PROTECTED] schrieb:
>>
>> # route add -host 204.71.200.74 dev eth0
>
>
>With this route you will only get a time out, because this host isn't a
>part of the subnet eth0 is connected. You should add the gateway to your
>ISP with this line :
> # route add -host 204.71.200.74 gw x.x.x.x eth0
Whoops. My mistake. I made a presumption I didn't include in that
you have a gateway route for ethernet. It's also good to note that my
example uses private IP space which you'll undoubtedly exchange for
real IP's that your ISP(s) give you or dynamically assign to you.
R. Marc
------------------------------
Reply-To: "Jeff" <[EMAIL PROTECTED]>
From: "Jeff" <[EMAIL PROTECTED]>
Subject: Re: 3Com Impact IQ + Dual Channel + RH6 Help
Date: Thu, 26 Aug 1999 22:17:03 GMT
go look in your /etc/ppp directory and read the /var/log/messages to see
what the connect script might be called, otherwise 'more' all the files in
this directory to see the 'chat' script to initialize the modem.
Woofer <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> Ok, since I am relatively new to Linux, where exactly would I but
> this? I have been using "linuxconf" so I am not exactly sure where
> all the scripts are that initialize the modem. If I do get it to
> work, I will let you know.
>
> mjk
>
> On Thu, 26 Aug 1999 10:36:09 GMT, "Jeff" <[EMAIL PROTECTED]> wrote:
>
> >Somebody posted this INIT and said it worked for them...S71=1 add it to
the
> >connect script when you initialize the modem. The 1 is for Async-Sync PPP
> >conversion. I would be interested in any steps, e.g Modules, Rpm's and
> >scripts used if you get this to work. I have a client who would want this
> >instead of a Cable modem solution and I don't have a 'spare' BRI hangin'
> >around to test it!
> >Hope it helps...
> >
> >Jeff
> >Woofer <[EMAIL PROTECTED]> wrote in message
> >news:[EMAIL PROTECTED]...
> >> I have had quite a difficult time getting my 3Com Impact IQ ISDN modem
> >> to connect with both channels and I was wondering if anybody out there
> >> could help. I am using Red Hat 6.0
> >>
> >> I am able to dial and connect with one channel, but I seem to be
> >> getting horrible performance, and when I do an ifconfig I see that I
> >> am getting anywhere from 15-20% packet loss. I tried lowering the MTU
> >> and RTU, but no luck. I also can not connect at all with the second
> >> channel. My ISP said that for the second channel I need for the ATDT
> >> command to have "phone number & phone number" and that I need to use
> >> PAP. It still won't work though.
> >>
> >> Anybody who has been able to get this modem to work with RH6 and is
> >> willing to help, would be greatly appreciated.
> >>
> >> BTW, I am using "linuxconf" to configure everything.
> >>
> >> Thanks in advance......
> >>
> >> mjk
> >> [EMAIL PROTECTED]
> >
> >
>
------------------------------
From: "Sagolsem C" <[EMAIL PROTECTED]>
Subject: pop3
Date: Thu, 26 Aug 1999 17:53:31 -0400
I have /etc/inetd.conf and /etc/sercives all fine with inetd running. Using
RedHat 6.0. I cant get pop3 working. Server is refusing connection. I never
had this problem with 5.2.
Anybody, any idea ?
Sagolsem
------------------------------
From: Mark Johnson <markj*no*spam*@gilanet.com>
Subject: Re: routed problem
Date: Thu, 26 Aug 1999 16:01:53 -0600
Reply-To: markj*no*spam*@gilanet.com
Tiberio, David wrote:
> one of my networks uses the ip 216.46.85.16 as the
> network address. the other is 216.32.200.0
>
> I set up a gateway between the 2 networks. however, when
> I run routed on the second network, it reports the first
> network as having a network address as 216.46.85.0 and
> not 216.46.85.16. also, when I run traceroutes to that
I believe you are confounding the concept of "the ip address of an interface"
and "the network address, ie, the range of network addresses to which that
interface connects". For example, you probably have assigned the ip address
216.46.85.16 to one interface on your gateway, along with the netmask
255.255.255.0 for that interface. The kernel then sends packets addressed to
216.46.85.anything out through that interface. The set of addresses
"216.46.85.anything" is called the network with network address 216.46.85.0.
Anyway, that's my understanding of the jargon.
------------------------------
From: Alvaro Garriga <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux
Subject: Re: SAMBA woes
Date: 26 Aug 1999 15:25:27 PDT
If I am not mistaken in smb.conf
security = domain
domain logons = Yes
It is what you need
M O'Neill wrote:
> I dunno. How do I find out? -m
>
> On Wed, 25 Aug 1999, TURBO1010 wrote:
>
> > Do you have your samba setup for domain log on? You may have your windows
> > set to log on to the domain, but not samba.
> >
> >
> > M O'Neill <[EMAIL PROTECTED]> wrote in message
> > news:[EMAIL PROTECTED]...
> > > "No domain server was available to validate your password..." is the
> > > message I get when logging into win98. My [public] and [tmp] shares work
> > > fine. No matter who I log into w98 as, smbstatus always says the
> > > uid=nobody and gid=nobody.
> > >
> > > /var/log/samba/nmb.log reveals...
> > >
> > > 1) "Samba name server BIGSERVER is now a local master browser for
> > > workgroup WORKGROUP on subnet 192.168.1.254"
> > >
> > > 2) "find_domain_master_name_query_fail: Unable to find the Domain Master
> > > Browser name WORKGROUP<1b> for the workgroup WORKGROUP. Unable to sync
> > > browse list in this workgroup."
> > >
> > > Do you have any ideas what is not setup properly. -m
> > >
> > > --
> > > __ _
> > > / / (_)__ __ ____ __
> > > / /__/ / _ \/ // /\ \/ / . . . t h e c h o i c e o f a
> > > /____/_/_//_/_,_/ /_/_\ G N U g e n e r a t i o n . . .
> > > **************************
> > > Michael O'Neill *
> > > CSTARS, UCDAVIS *
> > > [EMAIL PROTECTED] *
> > > 916-752-5092 *
> > > **************************
> > >
> >
> >
> >
> >
> >
>
> --
> __ _
> / / (_)__ __ ____ __
> / /__/ / _ \/ // /\ \/ / . . . t h e c h o i c e o f a
> /____/_/_//_/_,_/ /_/_\ G N U g e n e r a t i o n . . .
> **************************
> Michael O'Neill *
> CSTARS, UCDAVIS *
> [EMAIL PROTECTED] *
> 916-752-5092 *
> **************************
------------------------------
From: Mark Johnson <markj*no*spam*@gilanet.com>
Subject: Re: routed problem
Date: Thu, 26 Aug 1999 16:03:39 -0600
Reply-To: markj*no*spam*@gilanet.com
Tiberio, David wrote:
> one of my networks uses the ip 216.46.85.16 as the
> network address. the other is 216.32.200.0
>
> I set up a gateway between the 2 networks. however, when
> I run routed on the second network, it reports the first
> network as having a network address as 216.46.85.0 and
> not 216.46.85.16. also, when I run traceroutes to that
I believe you are confounding the concept of "the ip address of an interface"
and "the network address, ie, the range of network addresses to which that
interface connects". For example, you probably have assigned the ip address
216.46.85.16 to one interface on your gateway, along with the netmask
255.255.255.0 for that interface. The kernel then sends packets addressed to
216.46.85.anything out through that interface. The set of addresses
"216.46.85.anything" is called the network with network address 216.46.85.0.
Anyway, that's my understanding of the jargon.
------------------------------
From: dmalcolm <[EMAIL PROTECTED]>
Subject: Re: IPMasq on same machine I use or on old 486?
Date: Thu, 26 Aug 1999 17:06:39 -0500
[EMAIL PROTECTED] wrote:
> Is it better to run IPMasq on same machine I use to
> surf the web/read email or on old 486?
> I would rather have it all on my fast Pentium machine
> so I won't have to boot 2 machines every morning
> (I don't run my machines 24 hours a day) and waste the
> electricity of running the old 486 just for IPMasq.
>
> I had heard that it is more secure from a firewall/security
> point of view to have your important data on
> a different machine's disk that the machine running IPMasq or
> firewall software or was this person wrong?
>
> Sent via Deja.com http://www.deja.com/
> Share what you know. Learn what you don't.
>From a security standpoint it is more secure to have the firewall and
workstation reside on different machins. That way if the firewall gets
hacked, the hacker still has to get to your other machine before he can
do any damage.
dan
------------------------------
From: "Linkage" <[EMAIL PROTECTED]>
Subject: Re: Is routing between these subnets okay?
Date: Wed, 25 Aug 1999 17:45:38 +0800
It seens that you have two subnet with overlap IP addresses. The main issue
become "Do subnet with overlapped IP addresses workable". I haven't try this
before. Even it is possible, there will be some management issue on this
config. Do you have any reason to use overlapped subnet?
David Pereira > wrote in message <37c391f2$0$[EMAIL PROTECTED]>...
>Hi all,
>
>Is it possible to properly route between the following subnets as long as I
>keep the IP addresses on the correct side? If so, could this configuration
>lead to any potential security issues?
>
>Subnet A: 192.168.111.36/30 (that's a netmask of 255.255.255.252)
>Subnet B: 192.168.111.36/27 (that's a netmask of 255.255.255.224)
>
>My firewall would be setup as follows:
>/sbin/ifconfig eth0 192.168.111.38 broadcast 192.168.111.39 netmask
>255.255.255.252
>/sbin/ifconfig eth1 192.168.111.40 broadcast 192.168.111.63 netmask
>255.255.255.224
>/sbin/route add -net 192.168.111.36 netmask 255.255.255.252 gw
>192.168.111.38
>/sbin/route add -net 192.168.111.36 netmask 255.255.255.224 gw
>192.168.111.40
>
>TIA,
>->David
>
>
>
------------------------------
From: "Sagolsem C" <[EMAIL PROTECTED]>
Subject: Re: Routing / Gateways
Date: Thu, 26 Aug 1999 18:09:22 -0400
You havent clearly mentioned ur problem. Befor you can masq. your win-box
should be able to transmit and receive packets from from the linux box which
u say is not working. You have to clear this ground work first. Can you ping
to and from linux ?
Sagolsem
root <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
SO, here is my problem: I have a linux-server with a modem, till here
it�s ok. Now I want the linux-server to act as a gateway, so every PC in
the network the linux-server is in can access internet. I�ve already set
up IP-forwarding, IP-chains, IP-Masw,... but it seems there is a
problem. Wehn I �tracert� an access to the internet on the Win-Box, it
doesn�t even access the linux-server....
Any ideas??
Thanks in advance!
Rainer.
------------------------------
From: Tom Verbeure <[EMAIL PROTECTED]>
Subject: Re: Can an ISP detect masquerading?
Date: Thu, 26 Aug 1999 22:58:02 GMT
Well. The point is that they are already doing regular scans of the
network (not constantly) to check for subscribers who are running a
server. The contract with the ISP explicitly forbids running servers,
firewalls (!), proxies etc and states that only one computer can be
attached to the network.
I respect that point and have shutdown all services... However, and this
is really ridiculous, they also forbid using IP masquerading to connect
a VMWare application to the internet. (In my case, I want to run
InternetPhone on a Windows box.) In that particular statement, they
claim to be able to detect IP masquerading.
But I just want to know: HOW can they detect this?
Tom
Vlar Schreidlocke wrote:
>
> Does the ISP even have the time to scan and log all this stuff, and
> why would they bother unless there is a huge surge in bandwidth?
> Otherwise what would they be protecting themselves against? If they go
> to all this trouble and then shut you off, there goes their monthly
> income stream from you and all the other poor fools they waste the
> time and effort on to sell you on their service, set it up and then
> kick you off. Seems kind of pointless. It would be like a drug pusher
> selling you drugs, getting you hooked and then turning you into the
> police, thus killing the goose that laid the golden egg.
>
> Hey, I guess if I lived/worked in an apartment complex/office bulding
> I could subscribe to a DSL service, wire up the complex with
> ethernet, run ip-masq, set up my own apartment complex/office building
> isp and sell the service to all the occupants. That would probably
> piss the DSL provider off, eh?
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
