Linux-Networking Digest #413, Volume #12 Mon, 30 Aug 99 15:13:47 EDT
Contents:
Re: Analog modem routers (David C.)
Re: newbie needs help ("Anders Gulden Olstad)
Re: 100BaseT NIC step-down? (Joseph Santaniello)
100BaseT NIC step-down? (Vincent)
ISDN on Linux. ("Renji Panicker")
ISDN on Linux ("Renji Panicker")
SNTP Support????? ([EMAIL PROTECTED])
Re: linux box vs switched hub (chas)
Re: ISDN on Linux. (Joseph Santaniello)
Re: DUN to MSN? (Walter Francis)
IPChains, MASQ and FTP help (Joseph Santaniello)
Re: Can;t connect to some sites. (Stuart R. Fuller)
Unable to change password ("Franz Steinhauser")
Setting up only local groups with INN (Mario Moder)
Telenet: DHCPCD does not renew in time, and connection gets lost (Cable Modem)
("Terrence Vergauwen")
Re: telnet from Windows to Red Hat Linux does not work (Stuart R. Fuller)
Re: Cable Modem Performance Probelms ("Robert_Glover")
KNFSD and the map_static option ("Tim Gaastra")
'/sbin/ifdown ppp0' Not Working: Mandrake 6.0 (jsrockford)
Unsupported protocol (0x80fd) received. What can I do? (Nada Amin)
Re: securing sendmail from spammers ("Matthew J. Hellman")
Re: MySQL, chroot and shared libs ([EMAIL PROTECTED])
Re: What's so great about it???? (Teonanacatl)
IPMASQADM (luke)
IP Masquerading problem (the answer!) (Bruce James Robert Linley)
----------------------------------------------------------------------------
From: [EMAIL PROTECTED] (David C.)
Crossposted-To: comp.modems
Subject: Re: Analog modem routers
Date: 30 Aug 1999 12:08:11 -0400
[EMAIL PROTECTED] (Scott Alfter) writes:
>
> Since this is a Linux newsgroup that you posted in, though, it should
> also be pointed out that you can do the same thing with a cast-off
> 486, nearly any Linux distribution, and one or more V.90 modems.
> It'll probably cost less and can do more. (OTOH, the analog routers
> are about as plug-and-play as you can get; 3Com has some kind of
> "15-minute installation guarantee" on its product.)
Actually, even 386 boxen should be OK for this, depending on the line
you're connecting to. As slow as it might be, it shouldn't have any
problem routing and translating data stream that will be carrying, at
most, 128Kbps.
You shouldn't need more than 8M of RAM either (as long as you don't run
X, which would be a complete waste of resources for a router.)
-- David
------------------------------
From: "Anders Gulden Olstad <[EMAIL PROTECTED]>
Subject: Re: newbie needs help
Date: Mon, 30 Aug 1999 16:32:15 GMT
Georg <[EMAIL PROTECTED]> wrote:
> Can you tell me what is the best free proxy server for Linux.
I would perhaps say Squid.
http://squid.nlanr.net
--
Hi! I'm a .signature virus! Copy me into your ~/.signature to help me spread!
------------------------------
From: Joseph Santaniello <[EMAIL PROTECTED]>
Subject: Re: 100BaseT NIC step-down?
Date: Mon, 30 Aug 1999 19:26:44 +0200
I remeber having a similar problem where the hub and card tried to
auto-negotiate the speed and they got it wrong. I had to download a DOS
util from 3com to zap the card out of autoconfig mode. More than that, I
don't remember. Hope that helps, though.
Joe
Vincent wrote:
>
> Hi. We're using a 3Com 3c905B Cyclone 10/100Mb NIC connected to a Black
> Box hub that shows the card running at only 10Mb. Anybody know in what
> file I can configure the card, and what arguements I should use to get
> running at 100Mb? I'm running RedHat 5.2. Thank you.
>
> Vincent
------------------------------
From: [EMAIL PROTECTED] (Vincent)
Subject: 100BaseT NIC step-down?
Date: Mon, 30 Aug 1999 13:13:17 -0400
Hi. We're using a 3Com 3c905B Cyclone 10/100Mb NIC connected to a Black
Box hub that shows the card running at only 10Mb. Anybody know in what
file I can configure the card, and what arguements I should use to get
running at 100Mb? I'm running RedHat 5.2. Thank you.
Vincent
------------------------------
From: "Renji Panicker" <[EMAIL PROTECTED]>
Subject: ISDN on Linux.
Date: Mon, 30 Aug 1999 21:48:35 +0530
Hi,
When I try to run ISDN on linux, I can get connected the first time I do
isdnctrl dial ippp0, but on the second ( and subsequent ) attempts, it
fails, and /var/log/messages shows an error "File exists".
I am told my routing is not properly configured. I have tried by deleting
the default route and adding the new default route every time I dial, but
that doesn't seem to work.
Can somebody please help? I have attempted every possible trick that has
been suggested by various sites/docs around the web. I am using Redhat 6.0,
HiSax.
Thanks,
-/renji
------------------------------
From: "Renji Panicker" <[EMAIL PROTECTED]>
Subject: ISDN on Linux
Date: Mon, 30 Aug 1999 21:48:48 +0530
Hi,
When I try to run ISDN on linux, I can get connected the first time I do
isdnctrl dial ippp0, but on the second ( and subsequent ) attempts, it
fails, and /var/log/messages shows an error "File exists".
I am told my routing is not properly configured. I have tried by deleting
the default route and adding the new default route every time I dial, but
that doesn't seem to work.
Can somebody please help? I have attempted every possible trick that has
been suggested by various sites/docs around the web. I am using Redhat 6.0,
HiSax.
Thanks,
-/renji
------------------------------
From: [EMAIL PROTECTED]
Subject: SNTP Support?????
Date: Mon, 30 Aug 1999 17:16:28 GMT
Is anyone aware of a easy to configure SNTP client or server software
for Linux?
Thanks for any input,
Jim Durkin
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: chas <[EMAIL PROTECTED]>
Subject: Re: linux box vs switched hub
Date: Mon, 30 Aug 1999 16:26:40 GMT
In article <7q74r1$96b$[EMAIL PROTECTED]>,
Greg Leblanc <[EMAIL PROTECTED]> wrote:
> This depends on what you mean by "switched hub" and linux
> firewall/router. Linux has the capability to do the same thing as
> "Layer 3" Swtiches. It also has the cabability to do what a router
can
> do. So, what exactly do you want to compare?
> Greg
>
I'm not very qualified to discuss this topic on a very technical level,
however it is my understanding that you take a performance hit when you
use a dumb hub with Linux router/firewall in high traffic situations.
Our net admin has already told me that his Linux boxes can do the same
thing as a switched hub. The problem is that with all the subnets and
routers in our network, there is a lot of latency being introduced
which I would like to eliminate. That is why I why I wanted to inquire
on the benefits of a switched hub to make sure there WERE benefits
before I talked to him again.
Charles Lewis
[EMAIL PROTECTED]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Joseph Santaniello <[EMAIL PROTECTED]>
Subject: Re: ISDN on Linux.
Date: Mon, 30 Aug 1999 19:19:26 +0200
Hi,
When I get home, I'll check my setup. I had the same problem. If I
forget, send me mail to remind me.
Joe
Renji Panicker wrote:
>
> Hi,
>
> When I try to run ISDN on linux, I can get connected the first time I do
> isdnctrl dial ippp0, but on the second ( and subsequent ) attempts, it
> fails, and /var/log/messages shows an error "File exists".
>
> I am told my routing is not properly configured. I have tried by deleting
> the default route and adding the new default route every time I dial, but
> that doesn't seem to work.
>
> Can somebody please help? I have attempted every possible trick that has
> been suggested by various sites/docs around the web. I am using Redhat 6.0,
> HiSax.
>
> Thanks,
> -/renji
------------------------------
From: Walter Francis <[EMAIL PROTECTED]>
Subject: Re: DUN to MSN?
Date: Wed, 25 Aug 1999 03:06:55 -0400
Reply-To: [EMAIL PROTECTED]
mikez wrote:
> I've tried to get connected to my MSN account wit hLinux
> but it tells me that I don't have valid username/password.
You're forgetting the format, username/MSN I believe. If you look
around in Windows (which I assume you're dual-booting or somesuch)
you'll find that the MSN dialup doesn't show it, but the other DUN
properties dialogs will show the /MSN suffix.
That should fix it. Really fixing the problem is ditching MSN, but
that's just my opinion. It's slow, unreliable, and impossible to report
problems on (and get something done about it).
BTW, why anti-spam your from: address, but put it in the text of the
body?
--
Walter Francis
http://wally.hplx.net Powered by RedHat 6.0
------------------------------
From: Joseph Santaniello <[EMAIL PROTECTED]>
Subject: IPChains, MASQ and FTP help
Date: Mon, 30 Aug 1999 19:23:34 +0200
Hi everyone,
I've got a machine using a simple ipchains rule to masqurade my internal
network, and it works fine, except for some ftp clients. The IPchains
HOWTO says in a general sense how to fix this, but I couldn't figure it
out.
Here's my ipchains command:
/sbin/ipchains -A forward -j MASQ -s 192.168.15.0/24 -d 0.0.0.0/0
What should I add to make ftp and ftp-data work in passive mode?
Thanks,
Joe
------------------------------
From: [EMAIL PROTECTED] (Stuart R. Fuller)
Subject: Re: Can;t connect to some sites.
Crossposted-To: redhat.networking.general
Reply-To: [EMAIL PROTECTED]
Date: Mon, 30 Aug 1999 17:10:03 GMT
[EMAIL PROTECTED] wrote:
: I have a cable connection to the internet. I have a local network which
: uses IP masquerading through the linux box to get out to the internet.
: I am unable to connect (or ping) www.mysql.com (192.58.197.37)from any
: machine on the network (including the linux box). However, if I telnet to a
: friend's pc, which is connected to the same cable provider, I can ping the
: site from there. I can resolve the ip for the site from my linux box, but
: I can't actually connect.
:
: My local network is setup as follows.
:
: linux box
: interface IP netmask gway
: eth0 24.113.*.* 255.255.252.0 24.113.*.1
: eth1 192.168.*.1 255.0.0.0
:
: windoze boxes
: machine #1 192.168.*.2 255.0.0.0 192.168.*.1
: machine #2 192.168.*.3 255.0.0.0 192.168.*.1
Your netmask is wrong. Change it to "255.255.255.0".
The problem is that with your current netmask, 192.anything is available via
eth1.
Stu
------------------------------
From: "Franz Steinhauser" <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.setup,linux.redhat.misc
Subject: Unable to change password
Date: Mon, 30 Aug 1999 19:26:43 +0200
Hi,
Last week we upgraded our 5.2 system with Kernel 2.0.36 to 2.2.11
Everything went OK (only a few solvable problems).
Today I created a new user. He should normal first change his password to
keep access to the system.
But he is not allowed.
So I tried it with my own account and got this error message:
[f.steinhauser@popeye linux-2.2.11]$ passwd
Changing password for f.steinhauser
(current) UNIX password:
New UNIX password:
Retype new UNIX password:
passwd: Permission denied
In the syslog I get this message:
Aug 30 14:33:46 popeye PAM_pwdb[24584]: cannot update default database for
user f.steinhauser
Can you help me with this. As root I can change the password for a user but
this is not what I want (of course)
Kind regards,
Franz
------------------------------
From: [EMAIL PROTECTED] (Mario Moder)
Subject: Setting up only local groups with INN
Reply-To: [EMAIL PROTECTED] (Mario Moder)
Date: Mon, 30 Aug 1999 17:15:01 GMT
Hi folks!
Where can I find documentation about setting up INN only with local
groups, e.g. the server does NOT exchange newsfeeds with other
newsservers. The INN docu tells nothing about installing and using
local groups.
Greetings and thanks,
Mario
------------------------------
From: "Terrence Vergauwen" <[EMAIL PROTECTED]>
Subject: Telenet: DHCPCD does not renew in time, and connection gets lost (Cable Modem)
Date: Mon, 30 Aug 1999 19:51:11 +0200
Hi,
When i fire up my dhcp client on my masq router(dhcpcd -h terrence eth1), i
correltly receive an ip adress from my cable provider (telenet, belgium),
and everything works fine.
After a few hours my internet connection dissapears, etc: i cannot ping over
the router, and my router has no connection anymore. (telnet to it and it
hangs in a DNS resolution timeout for 2 mins etc...)
I think the problem is that it does not renew the adress in time. The
interface still runs with the same ip adress, but actually the ISP thinks i
already have a new ip adress and has changed it's filters & routing tables
on their servers.
Has anyone seen this ???
Note: my setup used to work fine for 3 months, this problem has started
about 2 weeks ago, i think they changed some stuff on their DHCP servers.
Greetings,
Terrence
------------------------------
From: [EMAIL PROTECTED] (Stuart R. Fuller)
Subject: Re: telnet from Windows to Red Hat Linux does not work
Reply-To: [EMAIL PROTECTED]
Date: Mon, 30 Aug 1999 17:10:02 GMT
BM Lam ([EMAIL PROTECTED]) wrote:
: Hi,
:
: after installing Red Hat Linux 5.2 on my PC connected to a LAN, I was
: quite disappointed to find out that telnetting from a Win 95 or Win NT
: PC to the Linux machine failed. The TELNET window just hangs, apparently
: not getting any connection.
:
: Ping from the Windows PC to Linux DOES work.
:
: FTP from the Windows PC to Linux failed as well, but at least I got the
: message "connection closed by remote host" immediately.
:
: Is there something that I need to fix in the Linux sys files?
Look at appropriate files in /var/log - like /var/log/messages and
/var/log/secure. Something should be logged for telnet and/or ftp failures.
Otherwise, you and everyone else here is just guessing.
Stu
------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: Cable Modem Performance Probelms
Date: Mon, 30 Aug 1999 16:13:23 -0000
I had another thought. Just try setting your masquerading timeouts
extremely low, and see if that doesn't reliably produce the symptoms
you are experiencing. If it does, then you're onto something.
Something like this is certain to cause problems on the _masqueraded_
PC's:
ipchains -M 10 1 1
Note: I've seen -M 1800 10 60 suggested as good, normal values.
If you don't use iphcains, I'm pretty sure that ipfwadm (or
ipmasqadm?) will also allow you to set these values too.
Robert_Glover wrote in message <7qdu54$[EMAIL PROTECTED]>...
>That makes me suspect your masquerading timeouts. I recently set
mine
>way too low and experienced the same symptoms. I think mine are
>now set to 900 10 60 (for ipchains).
>
>Robert Lowry wrote in message ...
>>No DNS Lookup problems. from WIN95, I get a connection reset from
>host
>>message
>>after a while. The first part of most pages come across. On complex
>(large
>>amounts of
>> graphics etc), the transfer seems to die.
[snip]
>>> >Any help would be appreciated.
>>> >
>>> >[EMAIL PROTECTED]
>>>
>>
>>
>
------------------------------
From: "Tim Gaastra" <[EMAIL PROTECTED]>
Subject: KNFSD and the map_static option
Date: Tue, 24 Aug 1999 23:27:45 -0700
Is it possible to do static uid mapping with knfsd (i.e. using the
map_static option in /etc/exports)?
I've tried to do it and exportfs says its an unrecognized option:
/export/foo 192.168.0.0/255.255.255.0(rw,map_static=/etc/nfs/foo.map)
------------------------------
From: jsrockford <[EMAIL PROTECTED]>
Subject: '/sbin/ifdown ppp0' Not Working: Mandrake 6.0
Date: Mon, 30 Aug 1999 18:21:25 GMT
Anybody having this problem? Any fix?
I did a clean install (orig. RH 5.2 system); created the PPP0 connection
from the network configurator in the 'control-panel'....will logon on
fine w/ '/sbin/ifup ppp0' but will not shutdown the connection...this
system worked fine with RH 5.2 ....exact same setup for hardware and
configuration settings. Best I can determine is the /etc/ppp/if-down
script has a problem finding the correct device. I'm using 'killall
-INT pppd 2>/dev/null' to break connection now but would really like to
know WHY it isn't working as it is supposed to. Thanks!
[I originally tried to upgrade the 5.2 system but had same problem so
decided for a clean install of Mandrake 6.0--Again, my old setup ran
fine for many, many months w/o a hitch]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Nada Amin <[EMAIL PROTECTED]>
Subject: Unsupported protocol (0x80fd) received. What can I do?
Date: Tue, 17 Aug 1999 18:20:51 GMT
Hi,
I used to have the following in my /var/log/message
Aug 16 01:26:28 localhost pppd[641]: CCP: timeout sending Config-
Requests
After adding noccp in my /etc/ppp/options, I get, which is no better:
... pppd : Unsupported protocol (0x80fd) received.
How can I solve this connection problem I am struggling for so long?
Thanks
--
==========================
Nada Amin
email: [EMAIL PROTECTED]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "Matthew J. Hellman" <[EMAIL PROTECTED]>
Crossposted-To: comp.mail.sendmail
Subject: Re: securing sendmail from spammers
Date: Mon, 30 Aug 1999 11:39:41 -0500
very nice. thanks.
Doug Giddens wrote:
>
> This site should have the info you need.
> http://www.sendmail.org/tips/relaying.html
>
> Doug
> --
> Witty signature awaitng software upgrade
> Matthew J. Hellman <[EMAIL PROTECTED]> wrote in message
> news:[EMAIL PROTECTED]...
> > I keep reading about problems first time mail administrators have with
> > spammers relaying thousands of messages from their server. However, I
> > haven't seen any info on how to prevent this from happening. I have
> > O'reilly Sendmail and I haven't found any pertinent information
> > [although the book is nearly as cryptic as sendmail.cf]. I'm using
> > RedHat 6.0. I see an option in linuxconf regarding the problem, but it
> > doesn't give any details and I am reluctant to check the box not knowing
> > what it will do. Any links or help would be appreciated.
> > Matt
> >
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To:
comp.os.linux.development.apps,comp.os.linux.development.system,comp.os.linux.security
Subject: Re: MySQL, chroot and shared libs
Date: 30 Aug 1999 18:57:09 GMT
In comp.os.linux.development.system Sean O'Dell <[EMAIL PROTECTED]> wrote:
[ summary: mysql can't connect to local mysql server in
a chroot'd environment ]
Mysql makes a named pipe in /tmp for local connects. I'd bet
your chroot'd environment doesn't have /tmp, or doesn't have
the named pipe that mysql needs.
Regards,
Craig
------------------------------
From: Teonanacatl <[EMAIL PROTECTED]>
Subject: Re: What's so great about it????
Date: Mon, 30 Aug 1999 12:04:44 -0600
Sounds like it's time for Greg to go back to Redmond! Post Haste!
Linux is simply not for everyone. I doubt that you would find a Linux
user who would say such a thing.
If you are truly naive enough to think that an evolving artform/OS like
Linux is going to be as polished and mindless to use as other OSs which
cost hundreds of dollars more, and which are even more expensive,
security wise, then really, perhaps it's time to pack it up, move back
to where you came from and don't bother posting here, wasting the
reader's time. We do have other things to do.
I'm not personally worried about it "selling to the general public".
--
__ _
/ / (_)__ __ ____ __
/ /__/ / _ \/ // /\ \/ / . . . t h e c h o i c e o f a
/____/_/_//_/\_,_/ /_/\_\ G N U g e n e r a t i o n . . .
Valentin Guillen
[EMAIL PROTECTED]
--------------------
remove capitalized letters to email me
remueve mayusculas para enviarme email
------------------------------
From: luke <[EMAIL PROTECTED]>
Subject: IPMASQADM
Date: Mon, 30 Aug 1999 18:07:11 GMT
Ok, i know that to play the games online, i need to use
ipmasqadm....here is the information i got from the AvP tech site...the
game runs on ports
8000-9000 and the server 2300-2400. Now is there a way of setting a port
range with ipmasqadm? Beacuse typing in 1100 commands could take a while
:) thanks..
--
"Punk rock?!?!?! Isn't that the type of music where kids cut
each other with razor blades and knives?"
------------------------------
From: [EMAIL PROTECTED] (Bruce James Robert Linley)
Subject: IP Masquerading problem (the answer!)
Date: 30 Aug 1999 11:07:18 -0700
This isn't really a question. Just sharing what took me a 3-day weekend
to figure out. I finally bit the bullet and upgraded to a cable modem.
Got the static IP, bought a cheap AMD400 running Linux (of course) to
leave on 24/7 and will later deal with internic (fingers crossed) to
get them to point my domain name at my linux box.
Setting up linux was a breeze. Dual NE2000 (clone) cards, one card to
cable modem, the other to the dual boot linux/98 machine. Set up IP
masquerading with 3 commands (flush, default policy, forwarding). Linux
says 'all is well'.
Go to the 98 box, set it up as 192.168.1.2 on the internal LAN set the
linux box (192.168.1.1) to be the gateway and name server, try to ping
the linux box from the PC... ok. Try to ping the world from the PC...
silence... mess around... nothing. fiddle some more... still nothing.
Then, for no reason, packets start going through! I'm freaked. I browse
a few sites with netscape to test... yeah, it's really working! Ok,
take the monitor/keyboard off the linux box and put it back on the PC
(linux box no longer needs these. telnet will handle future administration).
Boot the PC back up... and no packets are getting out to the world anymore!
Nucking futs! Rechecked the IP-Masquerating mini how-to, combed dejanews.
Dragged the monitor/keyboard back downstairs. Later drag the PC down too.
It happens again. Packets flow for a while then quit. I'm confused.
By all rights everything should be working. Finally... (the next day)...
The answer!
Previously my net access came via the dual boot win/linux box. I had 98
dial-up networking set up to run psuedo-slip on my dial-up unix acct.
I never tried booting linux on the dual boot PC since its linux hard drive
was in the new box. I KNOW now it would've worked had I booted a 2nd linux.
Anyway, the dial-up networking driver was still installed on 98 but inactive.
Not a problem, right? EVEN THOUGH DIAL-UP NETWORKING WAS NOT ACTIVE,
IT WAS STILL SUCKING UP PACKETS AND QUIETLY DISCARDING THEM! (sorry for
shouting) I deleted the dial-up driver and now everything works
beautifully! Rapture! Joy! Yippe-tie-i-yay! I was screwing with Linux
masquerading, routing, netmasks, etc. for 2 days and it was fscking
Winblows98 that was the problem all along (though never reporting any
errors).
So remember if you take a win box with dial-up networking and hook it to
an ip forwarding/masquerading linux box. Get rid of the dial-up driver.
(1) you don't need it anymore anyway, (2) it eats packets even when not
running. Maybe it's an MS conspiracy to make Linux look bad.
Maybe is was the order the drivers were listed in 98. I dunno. The TCPIP
bound to the NE2000 card was set as the default protocol. Very wierd.
Welp, that's all. Thanks for letting me share. I hope this info helps
others with similar problems.
--
Bruce James Robert Linley | +---+---+--_ | "Tea is always bitter... but
linley at megami dot org | | |NV | UT | blood is warm and sweet."
Programmer, Fortunet Inc. | \ CA \ |___ |
Las Vegas, Nevada, USA ----------> \*| AZ | - Miyu
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
