Linux-Networking Digest #423, Volume #12 Tue, 31 Aug 99 06:13:34 EDT
Contents:
Re: Network Address Translation ("Robert_Glover")
Re: Need help: POP/SMTP not working (RH5.2) (Stuart Summerville)
Where to Find Info ("Kees Sybesma")
Re: how to set up pop3 mail ("Ironman")
Masqurading and only one NIC (Joseph Santaniello)
Re: SNTP Support????? (PeterW)
Strange error message (Tero Niemi)
Re: 2 computers and internet (Christopher Hahn)
Re: ypserv refuses connections (Thorsten Kukuk)
Re: gateway: What am I doing wrong? (Thomas Antepoth)
Re: cost of leased line in notting hill, London England (Rob van der Putten)
problem with fetchmail/qmail and local ISP (jim)
Re: ftp problems (Joseph Santaniello)
Re: CPU needed to make use of 100 mbit ([EMAIL PROTECTED])
Re: Fetchmail (Thomas Antepoth)
Problems with routes URGENT ("Wim")
----------------------------------------------------------------------------
From: "Robert_Glover" <Please_reply_to@newsgroup>
Subject: Re: Network Address Translation
Date: Mon, 30 Aug 1999 18:02:56 -0000
I'm not sure why you want to translate class A private IP's to class C
private IP's, but you may want to investigate IP masquerading. In
your case, it could make all outgoing packets (from 10.x.x.x) look
like they came from the gateway box on the 192.168.x.x network. IP
Masquerading automatically handles the reverse translation for you on
returning packets.
Still want NAT, do you? I think it's called ipportfw. I don't use
it, so if I got the name wrong, sorry.
Zuheir Bahalul wrote in message <[EMAIL PROTECTED]>...
>Hi,
>
>does anybody know how can i define NAT on a Linux machine?
>
>I am trying to define my Linux machine to be a Network Address
>Translator, instead of masquerading, as i want to computers behind
the
>gateway to be accessable to the world (through that "gateway"), but i
>didn't find any application, or way to do that.
>
>(i want all addresses coming from my inner net-
10.0.0.0/255.255.255.0
>to be translated outside the gateway to 192.168.0.0/255.255.255.0, as
>the machines on the outer net does not recognize my gateway machine
as
>their gateway...)
>
>thanks, zuheir
>
------------------------------
From: [EMAIL PROTECTED] (Stuart Summerville)
Crossposted-To: comp.os.linux.setup
Subject: Re: Need help: POP/SMTP not working (RH5.2)
Reply-To: [EMAIL PROTECTED]
Date: Tue, 31 Aug 1999 07:37:53 GMT
On Mon, 30 Aug 1999 21:38:32 -0700, Gary Helbig <[EMAIL PROTECTED]> wrote:
>If I try to send, most of it gets rejected with a "we do not relay"
>message. How do I tell it that the inside net is OK?
I'd love to know this myself....
>
>The real problem is that I can't get a pop connection on the inside net.
You probably don't have imap installed. Use rpm to install it, ensure that pop &
pop3 are enabled in /etc/services & reboot the machine (easier way? "kill -HUP
inetd" didn't work for me).
Bit frustrating eh?
Stu.
________________________________________________________________________
Stuart Summerville NEC Australia Pty. Ltd.
ph: (+61 3) 9264-3090 Integrated Comm Products (R&D)
fax:(+61 3) 9264-3841 649-655 Springvale Road Mulgrave
stuarts@<nospam>icpdd.neca.nec.com.au VIC 3170, AUSTRALIA
------------------------------
From: "Kees Sybesma" <[EMAIL PROTECTED]>
Subject: Where to Find Info
Date: Mon, 30 Aug 1999 21:12:04 +0200
Dear All,
Please help me with this one,
I have a Nif for my Linux box but I am wondering where to check if drivers
exist for this one (3c905 TX)?
Who can help me?
Thanks in advance
Best Regards,
Kees Sybesma, Linux New Bee
------------------------------
From: "Ironman" <[EMAIL PROTECTED]>
Subject: Re: how to set up pop3 mail
Date: Tue, 31 Aug 1999 02:57:07 +0800
Do you have installed the imap package with your Linux CD??
Ironman
Kim Yong <[EMAIL PROTECTED]> wrote in message news:37cae5ee@tyson...
>
> Hi all
> I've RedHat6.0 installed with sendmail. The linux box is on a LAN.
> I'm testing the local mail from a Win95 pc. When i try to check mail
> the /var/log/maillog says ipop3d : connected from host
> ipop3d: Authenticate Twinkie failure host
>
> Can any body help me ? What have i missed out ?
> Thanks
------------------------------
From: Joseph Santaniello <[EMAIL PROTECTED]>
Subject: Masqurading and only one NIC
Date: Tue, 31 Aug 1999 10:05:09 +0200
Hi,
I have a simple masqurading set up using only one ethernet interface
with 2 ip addresses assigned to it. It works, but I've heard that this
makes it easier for people to spoof being on my internal network. How
does one NIC make this any more easy than 2?
Thanks,
Joe
------------------------------
From: [EMAIL PROTECTED] (PeterW)
Subject: Re: SNTP Support?????
Date: Tue, 31 Aug 1999 08:49:59 +0100
[posted and mailed]
[EMAIL PROTECTED] wrote in <7qee8v$cl$[EMAIL PROTECTED]>:
>Is anyone aware of a easy to configure SNTP client or server software
>for Linux?
>
>Thanks for any input,
>
>Jim Durkin
>
>
>Sent via Deja.com http://www.deja.com/
>Share what you know. Learn what you don't.
>
ntpdate is a useful single-shot tool for setting the time from an NTP
server. It is not strictly "S"NTP but it queries an NTP server a number of
times over a second or two and sets the time.
The pair of commands
ntpdate -bup8 ntp.server.name ; clock -wu
will normally set a Linux system to within a few tens of milliseconds.
It is part of the full ntp package.
Peter
------------------------------
From: Tero Niemi <[EMAIL PROTECTED]>
Subject: Strange error message
Date: Tue, 31 Aug 1999 10:46:08 +0300
I got the following error message:
eth0: Too much work at interrupt, status 0x01
status changes once in a while to 0x40
I got apache 1.2.6 running and eth0 has one IP-alias. Please tell me
what this error means and which
server prints it?
------------------------------
From: Christopher Hahn <[EMAIL PROTECTED]>
Crossposted-To:
comp.networks,comp.os.ms-windows.networking,comp.os.ms-windows.networking.misc,comp.os.ms-windows.networking.ras,comp.os.ms-windows.networking.tcp-ip,comp.os.ms-windows.networking.win95,comp.os.ms-windows.networking.windows
Subject: Re: 2 computers and internet
Date: Tue, 31 Aug 1999 01:33:31 -0700
Hello,
How would you compare WinNAT and Sygate?
Thanks for the time,
Christopher
Morely Dotes wrote:
> In article <[EMAIL PROTECTED]>, joda <[EMAIL PROTECTED]>
>wrote:
> >
> >I've got a little LAN at home. After some trouble my Win95 sys in the WINIPCFG
> > :
> >IP-Routing enabled.
> >But my other PC (Win98 I)says no Internet :-((
> >Automaticly configuring found no connection.
> >I've properly installed TCP/IP
> >Does anybody have an Idea ?
>
> Win95 IP routing doesn't work. Try WinNAT Lite at http://www.ivasion.com
>
> --
> Know Nyarlathotep; Know Chaos
> My other vehicle is a Migo Brain Cylinder
> [There is no Lumber Cartel, but if there were, I'd be Unit 34]
--
Realisant mon espoir, je me lance vers la gloire
Christopher Hahn Webmaster
Elegance in Time www.eleganceintime.com
------------------------------
From: Thorsten Kukuk <[EMAIL PROTECTED]>
Subject: Re: ypserv refuses connections
Date: 31 Aug 1999 08:10:14 GMT
Hi,
Aleem Sunderji <[EMAIL PROTECTED]> wrote:
> I'm trying to access the NFS-exported files on my Linux machine from my
> Windows machine, but my NIS server won't talk to my Windows NFS client
> (Interdrive).
What has NFS to do with NIS ? Nothing. You need a NFS server on Linux for NFS,
for NIS you need a NIS client on Windows.
> When I run rpcinfo on the Linux machine to check the status of ypserv, it
> doesn't respond.
> The debug trace from ypserv is shown below....any tips are appreciated.
> [------here is the startup of ypserv ------------]
> [Welcome to the NYS YP Server, version 1.3.5 (with tcp wrapper)]
> ypserv.conf: dns: 0
> ypserv.conf: 0.0.0.0/0.0.0.0:shadow.byname:2:1:2
> ypserv.conf: 0.0.0.0/0.0.0.0:*:0:0:2
Which is not your problem. We use tcp_wrapper, so you need to look
at /etc/hosts.allow and /etc/hosts.deny. ypserv.conf doesn't replace this.
> [---------here's what happens when I do rpcinfo -u localhost
> ypserv-----------]
> ypproc_null() [From: 127.0.0.1:1032]
> refused connect from 127.0.0.1
> ypproc_null() [From: 127.0.0.1:1032]
> refused connect from 127.0.0.1
> ypproc_null() [From: 127.0.0.1:1032]
> refused connect from 127.0.0.1
Why don't you allow localhost to connect to your NIS server ? If you
don't allow him to connect, it couldn't work. Please add localhost to
your /etc/hosts.allow file.
> [----------here's what happens when I try to browse the NFS resources from
> the client----------]
> ypproc_match(): [From: 10.0.0.2:989]
> domainname = "aleem.com"
> mapname = "passwd.byname"
> keydat = "aleem"
> refused connect from 10.0.0.2
> -> Ignored (not a valid source host)
Is 10.0.0.2 allowed to connect ? It doesn't seems so.
> [-------------Here's what the user doing the rpcinfo sees-----------------]
> [root@cr277188-a /root]# rpcinfo -u localhost ypserv
> rpcinfo: RPC: Timed out
> program 100004 version 1 is not available
> rpcinfo: RPC: Timed outprogram 100004 version 2 is not availabl
> [----------Here are the contents of my hosts.allow and hosts.deny
> files-----------]
> #
> # hosts.allow This file describes the names of the hosts which are
> # allowed to use the local INET services, as decided
> # by the '/usr/sbin/tcpd' server.
> #
> in.ftpd: ALL
> in.telnetd: ALL
> portmap: 10.0.0.2
> portmap: 127.0.0.1
And where is ypserv ?
> -------------------------------------------
> #
> # hosts.deny This file describes the names of the hosts which are
> # *not* allowed to use the local INET services, as decided
> # by the '/usr/sbin/tcpd' server.
> #
> # The portmap line is redundant, but it is left to remind you that
> # the new secure portmap uses hosts.deny and hosts.allow. In particular
> # you should know that NFS uses portmap!
> ALL: ALL
> Thanks,
> Aleem.
--
Thorsten Kukuk http://www.suse.de/~kukuk/ [EMAIL PROTECTED]
SuSE GmbH Schanzaeckerstr. 10 90443 Nuernberg
Linux is like a Vorlon. It is incredibly powerful, gives terse,
cryptic answers and has a lot of things going on in the background.
------------------------------
From: Thomas Antepoth <[EMAIL PROTECTED]>
Subject: Re: gateway: What am I doing wrong?
Crossposted-To: comp.os.linux.setup,comp.os.linux.misc
Date: Tue, 31 Aug 1999 07:33:58 +0200
Youjip Won <[EMAIL PROTECTED]> wrote:
> ifconfig lo 127.0.0.1 => fine
> route add -net 127.0.0.0 ==> fine
> ifconfig eth0 166.104.88.108 => fine
> route add -net 166.104.88.0 ==> fine
route add -host 166.104.88.1 eth0
> route add default gw 166.104.88.1 ==> Ouch!!!
No mo' ouch ...
... Provided that this host in in reach for eth0 ...
> After executing the previous steps, if I type 'route' it shows the
> first two lines(networks) and stalls. 'route -n' shows the third
> entry(gateway) properly.
route without -n tries to resolve the ip to hostnames.
So it's not stalled it's just waiting for a DNS to answer
the Question:"Who is that 166.104.88.1?"
t++
--
This mail had been created using Linux. It is therefore free of all
Microsoft(tm) OS based virii, conforms with almost any widely recognized
open standards and is best read with *any* mailclient using fixed fonts.
------------------------------
From: Rob van der Putten <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware
Subject: Re: cost of leased line in notting hill, London England
Date: 31 Aug 1999 10:59:14 +0200
Hi there
In comp.os.linux.networking colin <[EMAIL PROTECTED]> wrote:
>> You could try an analog line with baseband modems.
>> It may also be interresting to look at EU law.
> Can you give me any more info about this?
Brussels dictates that both digital (= use the telco's modems) and analog
(= use your own modems) leased lines should be available all over the EU
at reasonable prices. The ONP also states that a telco can't force you to
use a certain ISP.
> Like, can I get say ten fixed IP addresses,
You will have to ask an ISP, not a telco.
> and is the connection stable enough to sit a web/databse server
> at one end of it?
Most of my friends use analog leased lines at speeds of 28k8, 33k6,
144 kbps and 2048 kbps. We never had any problems.
Over here an analog leased line costs EUR 250,- to set up plus EUR 30,-
per month.
Regards,
Rob
--
+------------------------------------------------------------------------+
| Rob van der Putten, [EMAIL PROTECTED] |
| http://www.sput.webster.nl/spam-policy.html |
+------------------------------------------------------------------------+
------------------------------
From: jim <[EMAIL PROTECTED]>
Subject: problem with fetchmail/qmail and local ISP
Date: Tue, 31 Aug 1999 09:32:19 +0100
Hi all,
I cannot get fetchmail to work with qmail to get mail from an ISP.
Qmail is working okay locally and I can connect smtp wise locally.
What is wrong, the FAQ isn't much help.
cheers peter
fetchmail log enclosed:-
[peter@gateway peter]$ fetchmail -v
fetchmail: 4.5.5 querying pop3.freeserve.net (protocol POP3) at Tue Aug
31 09:45
:29 1999
fetchmail: POP3< +OK <[EMAIL PROTECTED]>
fetchmail: POP3> USER xyzxx.freeserve.co.uk
fetchmail: POP3< +OK
fetchmail: POP3> PASS *
fetchmail: POP3< +OK
fetchmail: selecting or re-polling default folder
fetchmail: POP3> STAT
fetchmail: POP3< +OK 1 696
fetchmail: POP3> LAST
fetchmail: POP3< +OK 0
fetchmail: POP3> LIST
fetchmail: POP3< +OK
fetchmail: POP3< 1 696
fetchmail: POP3< .
1 message for xyzxx.freeserve.co.uk at pop.pol.net.uk (696 bytes).
fetchmail: POP3> RETR 1
fetchmail: POP3< +OK
reading message 1 of 1 (696 bytes)
fetchmail: passed through [EMAIL PROTECTED] matching
xyzxx.freeserve
.co.uk
fetchmail: SMTP connect to localhost failed
fetchmail: POP3> QUIT
fetchmail: POP3<
fetchmail: SMTP transaction error while fetching from pop3.freeserve.net
fetchmail: Query status=10
fetchmail: normal termination, status 10
------------------------------
From: Joseph Santaniello <[EMAIL PROTECTED]>
Subject: Re: ftp problems
Date: Tue, 31 Aug 1999 10:18:46 +0200
Hi,
My guess it that ftpd (and telnetd?) are trying to reverse map the ip
addresses to names. Try adding dns entries and in-addr.arap entries for
your internal network and see if that helps.
Samba if it isn't using encrypted passwords (which it doesn't by
default) requires that you enable "plain text" passwords for NT 4 sp3 or
98 or later versions of 95. You can enable them by running the registry
mods found here:
http://noram.cobaltnet.com/support/faqs/regchange.html
these are from the makers of the Cobalt Qube. A super cool Linux
implementation.
Good luck!
Joe
tartaro wrote:
>
> I have a Redhat 6.0 server running on my home network... the box is a
> AMD K6-200mhz, with 32 megs of ram, a 8gig maxtor, a one meg Cirrus video
> card (5430B). a realtek 8139 10/100 Mbps card. The internal network uses
> 192.168 IP addressing scheme. This servers address uses 192.168.1.2 (the
> linux serve name is yoda). My NT server (the NT server name is Vallar)
> address 192.168.1.1 . The NT server is the machine my client (they are all
> windows 98A e.g. second edition) stations authenticate to, the client
> stations are getting IP addresses from the NT server which is running DHCP
> services. I have many deamons running on the server including
> httpd
> wu-ftpd
> smb
> nmb
> sendmail
>
> and a few others that I can't remember... opps
>
> I'm having problems with ftp the services ... they lag terribly when I try
> to ftp to the server it often time out waiting for the welcome message.
> (this lag happens reguardless of user eg it happens to root too).I am able
> to ping the server with out problem from anymachine on the lan .. from linux
> to windows and windows to linux. traceroute also works but it takes a while
> about 20 seconds (there is only one hop). I look and the inetd.conf file and
> the ftp.conf file but i can't seem to figure out the problem.. addtionally I
> have samba running on the mahcine I can see it in network neighboorhood but
> when I try to acces/mount the the serve it prompts me for a password nothing
> seems to work .. I'm using the same user name with the same password for
> allthings except when it is nesscary to operat as root! if I bring up
> netscape and type in yoda. I can acess the server. Any info at all or info
> that can point me in the directiong of help would be greatly appreciated.. I
> have been using unc.metalab.edu as my reference point up until this point I
> also have the book redhat linux unleashed. I can ftp to my desktop which is
> running Serv-U ... UHGHHH PLEASE HELP!
>
> Thank you,
>
> Matthew Tartaro
> [EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: CPU needed to make use of 100 mbit
Date: Tue, 31 Aug 1999 08:37:07 GMT
On Mon, 30 Aug 1999 21:58:01 +0200, Jan-Albert van Ree
<[EMAIL PROTECTED]> wrote:
--snip--
>
>Also, to have a 100MBit network running smooth, you need to have very good
>quality cable. Check the cable for the Cat5 rating. If it says Cat3, the
>cable simply can't handle the data (packet loss due to interference from
>the atmosphere)
>
--snip
No offense, but the Cat 3 vs Cat 5 stuff is balloney: the Cat 5 spec
is for 100 MHz (about the middle of the FM radio spectrum) not 100
Mb/sec. (A lot of people are confused about that).
Because of signal encoding techniques used at the physical transport
level (for error reduction and to comply with FCC noise spectrum
rules), the actual frequency range for a 100bT signal is only about
20-30 MHz (not 100 MHz), which is well within the reach of Cat 3.
On top of that, cable specs are for a cable run length of 100m (about
300 ft). But the average cable run in commercial buildings is only 57m
(about 170 ft). The shorter length reduces wire capacity, cross-talk
and signal loss (attenuation) in the cable, which also increase the
chances that 100bT can be transmitted over Cat 3 cable.
I haven't seen a single instance where Cat 3 didn't work for 100bT
(even though it didn't pass the Cat 5 requirements). There is a
residual risk that Cat 3 won't perform because of shotty workmanship
and ultra-cheap wall outlets.
------------------------------
From: Thomas Antepoth <[EMAIL PROTECTED]>
Subject: Re: Fetchmail
Date: Tue, 31 Aug 1999 08:00:27 +0200
Kelvin Dam <[EMAIL PROTECTED]> wrote:
> Sometimes my fetchmail tells my that there are mails at my ISP, and that
> they have been skipped. What does this mean?
If you posted your fetchmail log we'd be able to give you an answer.
Here, for instance, fetchmail is called in my /etc/ppp/ip-up script each
time when connecting via ppp to the internet with verbose set on and
with the output redirected to "/var/log/fetchmail.log".
If you mind to replace your fetchmail call with this solution
you'll have a log file to check things.
== snip ==
# fetch all mail for this host ...
/usr/bin/fetchmail -a -v >>/var/log/fetchmail.log 2>&1 &
== snip ==
Don't forget to create a .fetchmailrc in your /root directory
for this solution. And don't forget to chmod 400 it. ;-)
> After this message, I check my ISP mailbox and the mails that were there
> are gone, and I can't find 'em
> neither at /var/spool/mail/root or /var/spool/mail/user_name
You might better check this with
telnet your.provider.mailbox.ip 110
user yourpop3user
pass yourpop3password
list
(maybe a retr 1, retr 2, retr 3, ..., retr n)
quit
Then your screen might look like this:
== snip ==
t_antepoth@sofa:/home/t_antepoth > telnet ns.c-c.de 110
Trying 192.168.100.254...
Connected to ns.c-c.de.
Escape character is '^]'.
+OK QPOP (version 2.53) at ns.c-c.de starting.
user myusernameathome
+OK Password required for myusernameathome.
pass donttellanybody
+OK myusernameathome has 52 messages (2042465 octets).
list
+OK 52 messages (2042465 octets)
== snip ==
> Is there a friendly soul who might answer this for me!? ;-)
I'm not friendly, so i'm asking you questions ... ;-)
t++
--
This mail had been created using Linux. It is therefore free of all
Microsoft(tm) OS based virii, conforms with almost any widely recognized
open standards and is best read with *any* mailclient using fixed fonts.
------------------------------
From: "Wim" <[EMAIL PROTECTED]>
Subject: Problems with routes URGENT
Date: Tue, 31 Aug 1999 12:01:00 +0200
I have to install a router at work.
there are 3 segments 10.176.16.0 eth0, 10.176.32.0 tr1, 10.176.1.0 tr0
the netmask is 255.255.240.0 at least thats what they tell me.
My router works between the 2 segments .16.0 and 32.0 but when i try to add
the route to 10.176.1.0 it says route adress doesnt match netmask, if I add
it with ifconfig it will automatticly change the networknumber to 10.176.0.0
.
Does anybody know what the problem is. Isn't the network not properly
designed, i dont know cause I dint do it.
But pleas help me, the boss is getting on my tail.
Thank you very much
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
