Linux-Networking Digest #463, Volume #12 Fri, 3 Sep 99 14:13:50 EDT
Contents:
Re: windows to linux tcp/ip not working (Christopher Burrows)
minicom (Frederick Houdmont)
SIOCFIFFLAGS et al (k vranes)
Re: Maintaining 2 Networks (Tony Green)
Re: linux box vs switched hub (David C.)
Re: windows to linux tcp/ip not working (Bernd Zimmermann)
Re: Masqurading and only one NIC
Linux dynamic IP addr. ([EMAIL PROTECTED])
Re: VPN and IP MASQ ("John Hardin")
Xtraceroute Configuration (James Johnson)
Question on use of ?: in the networking code ... (Ramesh Shankar)
Re: secure ftp directories (Chris Butler)
Re: Setting up Masquerading under RH6.0 (David C.)
Re: All working but root telnet (k vranes)
Re: MRTG Gives funny graphs, and incorrect statistics.. ("Tony Platt")
Re: wu_ftp problem (Chris Butler)
Trouble downloading large files on Netscape (Christian Cabal)
----------------------------------------------------------------------------
From: Christopher Burrows <[EMAIL PROTECTED]>
Subject: Re: windows to linux tcp/ip not working
Date: Fri, 03 Sep 1999 17:08:01 +0000
hi,
if i ping myself, it works fine. but, i see no network activity on the hub
lights (am i supposed to?) i'll try compiling the 3c509 driver into the kernel,
but i don't imagine that should make much of a difference, would it? (i am
getting desperate).
one:~> ping 192.168.1.11
PING 192.168.1.11 (192.168.1.11): 56 data bytes
64 bytes from 192.168.1.11: icmp_seq=0 ttl=255 time=0.2 ms
64 bytes from 192.168.1.11: icmp_seq=1 ttl=255 time=0.1 ms
64 bytes from 192.168.1.11: icmp_seq=2 ttl=255 time=0.1 ms
64 bytes from 192.168.1.11: icmp_seq=3 ttl=255 time=0.1 ms
64 bytes from 192.168.1.11: icmp_seq=4 ttl=255 time=0.1 ms
64 bytes from 192.168.1.11: icmp_seq=5 ttl=255 time=0.1 ms
--- 192.168.1.11 ping statistics ---
6 packets transmitted, 6 packets received, 0% packet loss
round-trip min/avg/max = 0.1/0.1/0.2 ms
one:~> ping 192.168.1.12
PING 192.168.1.12 (192.168.1.12): 56 data bytes
--- 192.168.1.12 ping statistics ---
8 packets transmitted, 0 packets received, 100% packet loss
one:~>
- cj
Sagolsem C wrote:
> Can you ping to yourself on the linux box? Since you are saying that if you
> boot with Win on the linux hardware you can communicate, the possibility of
> any hardware and the physical part of the network problem is ruled out. The
> problem is definetly with Linux. I think it has nothing to do with routing
> also since they are on the same network 192.168.1.0 Hav you tried compiling
> the ethernet support not as a module.
>
> Your problem is quite interesting and obscure too. Do let me know the
> solution if you get it right . Good luck !
>
> Sagolsem C
>
> Christopher Burrows <[EMAIL PROTECTED]> wrote in message
> news:[EMAIL PROTECTED]...
> > hi,
...
> > ppp 20716 2 (autoclean) [ppp_deflate bsd_comp]
> > slhc 4296 1 (autoclean) [ppp]
> > serial 18260 2 (autoclean)
> > 3c509 5780 1
> > one:~>
> >
> > - cj
> >
------------------------------
From: Frederick Houdmont <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.alpha,comp.os.linux.development.apps
Subject: minicom
Date: Fri, 03 Sep 1999 13:31:06 GMT
I've made a connection from an offline box through a null modem on an
online box in a network. I use the ascii protocol to upload the file in
the online box (what seems to be going allright) but if i try to download
in ascii it tells me READY but the specified file for download is empty.
The other protocols (xmodem, ymodem,zmodem) don't seem to work?
What is my problem? (Debian!!)
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: k vranes <[EMAIL PROTECTED]>
Subject: SIOCFIFFLAGS et al
Date: Fri, 3 Sep 1999 11:39:31 -0400
I'm running redhat 6 with a 3com509 card that has been working stable for
a while. Last night a Netscape froze GNOME so hard that I could only
telnet in from another box and reboot the machine (not even killing the
Netscape or X processes released the screen, which I found odd).
Upon rebooting, networking is now toast. All local networking runs fine,
eth0 comes up without error while running /etc/rc.d/inet.d/network start,
but trying to telnet outside gives an immediate 'Host name lookup
failure.'
although eth0 *seems* to come up, running netstat -nr shows only the lo
interface info. running
ifconfig eth0
gives good info, except the broadcast info is wrong. However, trying to
config that with:
ifconfig eth0 broadcast xxx.xxx.xxx.xxx
gives SIOCFIFFLAGS: resource temporarily unavailable
I've also seen error messages with SIOCADDR in them.
Anybody know what's going on? This happened completely out of the blue
and it's the second time. (The first time I reinstalled after 2 solid
days of hacking on --- I don't want to do that again.)
thanks
------------------------------
From: Tony Green <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux,comp.os.linux.network,comp.os.linux.misc
Subject: Re: Maintaining 2 Networks
Date: Fri, 03 Sep 1999 15:56:15 +0100
Well,
I use a lan connection and ppp at the same time without any problems. As for
dynamic DNS etc - thats a different problem.
I think you best bet it to right a little script which will allow you to change
the relevnet files based on information that it gets from /var/log/messages?
Michael Starkie wrote:
> Tony Green wrote:
>
> > Well, you can set your default GW using the route command - something like
> > "route add default gw xxx.xxx.xxx.xxx"
> >
> > When your finished you can do a
> > "route del xxx.xxx.xxx.xxx"
> >
>
> This doesn't really help because the default domain and name servers need
> to be set. Also It doesn't allow for the host to be on the two networks at
> the same time. Perhaps I need to configure my host as some sort of router.
> What does gated and routed do?
------------------------------
From: [EMAIL PROTECTED] (David C.)
Subject: Re: linux box vs switched hub
Date: 03 Sep 1999 12:48:08 -0400
Greg Leblanc <[EMAIL PROTECTED]> writes:
>
> Well, the way that he phrased the question, yes. However, Linux can
> function as a switch (for some damn reason the howto is called
> bridging, but they MEAN what I call switching).
Switching is an ambiguous term.
It sometimes refers to layer-2 switches, which is perform bridging, and
sometimes to layer-3 switches, which perform routing. And sometimes it
refers to other kinds of switches, which may perform bridging, routing,
prioritization, filtering, firewalling, and other services.
I prefer to keep the terms unambiguous and say "bridging" and "routing"
when I'm talking about a single service. I suspect the author of the
howto feels the same way.
-- David
------------------------------
From: Bernd Zimmermann <[EMAIL PROTECTED]>
Subject: Re: windows to linux tcp/ip not working
Date: Fri, 03 Sep 1999 15:34:00 +0200
What happens if you ping your local interface from the linux box (x.x.1.11)
?
does it work ? If no your configuration of your linux box does not work.
If yes it could be a problem of the ethernet configuration:
- frame type
- ??
Have fun!
Christopher Burrows schrieb:
> hi,
>
> .....
------------------------------
From: [EMAIL PROTECTED] ()
Subject: Re: Masqurading and only one NIC
Date: Fri, 03 Sep 1999 16:22:02 GMT
Reply-To: [EMAIL PROTECTED]
On Fri, 03 Sep 1999 13:21:28 GMT, Robert (Bob) McGwier wrote:
>All I need is a sniffer and I will watch you log in remotely to your machines,
>including that time you are too lazy to get up and go to the other machine
>and su to root remotely.
Allowing ssh only with no root login sort of eliminates this problem unless
you have somehow figured out how to read encrypted data.
But the point is taken. Not all machines on your local net use secure
transport. If you happen to have a moderately intelligent user, that user
can watch all your other users data go by. More of a problem if you are using
some sort of DSL or Cable modem device that connects in via ethernet or
you've got a router on that same ethernet. Wouldn't be too terribly difficult
to sniff the router password (don't know too many commerical routers that
using anything other than telnet to get to the CLI). In the case of the
DSL/Cable device you are potentually bridged into an unfriendly lan.
There is more potentual cost associated with this than just a NIC card,
however. If you just have one HUB (non-switched), as your average home
network is likely to have, you'd have to put in another hub to eliminate the
problem, or use a switched hub. If you just plug your two networks into the
same hub, the same packet sniffing is available as you are sniffing ethernet,
not just IP. Hubs can be cheap as well ($25 bucks for a low end 5-8 port)
but switches tend to be expensive.
R. Marc
------------------------------
From: [EMAIL PROTECTED]
Subject: Linux dynamic IP addr.
Date: Fri, 03 Sep 1999 16:23:22 GMT
Hi:
How can I find out what is my dynamic IP addr.
assigned to me by ISP after dial-up from linux.?
Best Regards,
Raj Marpaka
[EMAIL PROTECTED]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "John Hardin" <[EMAIL PROTECTED]>
Subject: Re: VPN and IP MASQ
Date: Fri, 3 Sep 1999 09:20:39 -0700
[EMAIL PROTECTED] wrote in message <7qmq7h$f9$[EMAIL PROTECTED]>...
>I am trying to connect to my company's VPN through a RH 6.0 box with IP
>masquerade set up. The VPN firewall expects all connection requests,
>and possibly subsequent communication to come FROM port 500.
>
>How can I tell ipchains to use a specific port when it connects to a
>specific host?
You can't.
Take a look at
ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html
--
John Hardin KA7OHZ [EMAIL PROTECTED]
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
=======================================================================
In the Lion
the Mighty Lion
the Zebra sleeps tonight...
Dee de-ee-ee-ee-ee de de de we um umma way!
------------------------------
From: James Johnson <[EMAIL PROTECTED]>
Subject: Xtraceroute Configuration
Date: Fri, 03 Sep 1999 09:34:37 -0700
Xtraceroute appears to be a very nifty program. However I need help
configuring it. What is contained in the user_generic.cache file? The
program dies if I leave this file empty with a Segmentation fault, so I
copied the supplied networks.cache file to the user_generic.cache file.
Now it sort of spins its gears and does nothing except consume a lot of
cpu power - no window created, no nothing.
I'm running RH 6.0, kernel 2.2.11 on a dual Celeron with 256MB, so power
is probably not the issue.
If the author is out there, PLEASE write just a little doc stating how
to configure this wonderful program - I'm bald enough already.
Thank-you.
------------------------------
From: [EMAIL PROTECTED] (Ramesh Shankar)
Subject: Question on use of ?: in the networking code ...
Date: Fri, 03 Sep 1999 17:28:57 GMT
Hi,
While reading the Linux networking code, I found the ternary (?:)
operator to be used in this fashion in many places:
#define FIB_RES_PREFSRC(res) (res).fi->fib_prefsrc? :
__fib_res_prefsrc(&res)
Note that there is nothing between the ? and the :
>From what I could understand, this what was intended:
if ((res).fi->fib_prefsrc != NULL)
// Use (res).fi->fib_prefsrc
else
// Use the result of:
__fib_res_prefsrc(&res)
Okay, I checked up K&R, H&S and the C FAQ. Nothing has been mentioned
about a case where nothing is specified between the ? and : in a
ternary operator.
When I wrote a simple program in Linux and compiled it, I get a 1 (for
TRUE) when the if is satisfied.
Microsoft C compiler gives an error for the same.
What does the C standard say about this? I am not sure how the code
would have worked given that the value returned would have been TRUE
(i.e. 1) (and not what the programmer expected) if the condition were
to be true.
Is this a bug?
TIA,
=========================================================================
Ramesh Shankar E-mail: [EMAIL PROTECTED]
Novell Inc.
Provo, UT
U.S.A.
All opinions expressed are my own. I don't speak on behalf of Novell
E-MAIL ADVERTISING IS STRICTLY PROHIBITED TO THIS ADDRESS.
=========================================================================
------------------------------
From: [EMAIL PROTECTED] (Chris Butler)
Subject: Re: secure ftp directories
Date: 3 Sep 1999 12:48:07 +0100
[comp.os.linux.networking - Fri, 3 Sep 1999 14:19:35 +1200] * alkimist wrote *
> I've read the documentation, I'm probably doing some thing stupid like some
> syntactical error. The documentation says to edit /etc/passwd, this is what
> I have in passwd:
> user1:*:501:501:/home/./user1:/home/user1:/bin/bash
> I have a line similar to this in /etc/passwd, it accepts it but it doesn't
> change user1 to the apparent root?
You've put the home directory in the wrong field. That line should read:
user1:*:501:501:user1:/home/./user1:/bin/bash
--
Chris Butler
<[EMAIL PROTECTED]>
------------------------------
From: [EMAIL PROTECTED] (David C.)
Subject: Re: Setting up Masquerading under RH6.0
Date: 03 Sep 1999 12:35:29 -0400
Robert_Glover writes:
> Stephen Torri wrote:
>>
>> I made the changes that you recommended. I removed the three lines
>> accepting packets from the internet for protocols (icmp, tcp, and
>> udp). I then reran the rc.firewall. I could ping froma client
>> (10.0.0.2) to the dial out server at (10.0.0.6). I could not ping
>> from the client to the $PPP_IP assigned to me by the ISP. Is there
>> something I must do for routing?
>
> Try this: cat /proc/sys/net/ipv4/ip_forwarding
>
> if it displays 0, then use this to enable forwarding:
>
> echo "1" > /proc/sys/net/ipv4/ip_forwarding
>
> Also put it in your rc.local script, so it will be set on a reboot.
This will work, but chances are that your distribution has an easier
way.
For instance, in RedHat, you can edit /etc/sysconfig/network and change
the FORWARD_IPV4 line from "false" to "true". The script
/etc/rc.d/init.d/network will see this and send the value to
/proc/.../ip_forward.
And to make it even easier, the linuxconf can do this for you. Run it.
Go to Config->Networking->Client tasks->Routing and gateways->Defaults.
Click the "Enable routing" checkbox. Activate changes and exit.
-- David
------------------------------
From: k vranes <[EMAIL PROTECTED]>
Subject: Re: All working but root telnet
Date: Fri, 3 Sep 1999 11:08:33 -0400
You shouldn't be using telnet to do any root work anyway. If you're using
anything other than ssh or similar to access your system, you're exposing
your root password to any port sniffer. Also, editing /etc/securetty is a
BAD idea unless you are really on top of your security. Install the ssh2
rpms (you'll have to install ssh2 server too in order to access your linux
box from the outside), login in as a mundane user, then su - root.
On Fri, 3 Sep 1999, Simon Green wrote:
> Yes, edit the file /etc/securetty to determine which ttys allow root logins.
> By default, Linux distributions disable root logins via telnet/rlogin using
> this file.
>
> Cheers
> Simon
>
>
> Doug & Cathy Bryant wrote:
>
> > You have to telnet to a regular user account then become superuser from
> > that account. To do that do an "su" command and supply the password.
> > Telnet access to root is a security issue.
> >
> > doug
> >
> > Pam Luchini wrote:
> >
> > > I can telnet to linux machine with regular user name but not root. Also
> > > cannot su from user name telnet session. Root logon message is that the
> > > password is incorrect?
> > >
> > > Thanks for the help
> > > Pam
>
>
>
------------------------------
From: "Tony Platt" <[EMAIL PROTECTED]>
Crossposted-To: aus.computers.linux,comp.os.linux.misc
Subject: Re: MRTG Gives funny graphs, and incorrect statistics..
Date: Sat, 4 Sep 1999 01:19:54 +1000
Ben Short wrote in message ...
>Hi,
>
>After installing mrtg 2.8.8 (Multi Router Traffic Grapher) and cmu-snmp
>3.6 for linux, the results I am getting on my website seems somewhat
>strange.
>
>My modem is connected to the net at the v.90 standard, and to test the
>graphing abilities of mrtg, and proceeded to upload a file at about
>3.2kb/s to an ftp server.
>
>However, the statistics that are being generated by the mrtg and snmp
>server leave me baffled:
>
>Max In: 807.0 B/s (11.4%) Average In: 576.0 B/s (8.1%) Current In:
>633.0 B/s (8.9%)
>Max Out: 818.0 B/s (11.5%) Average Out: 604.0 B/s (8.5%) Current
>Out: 660.0 B/s (9.3%)
Wouldn't that mean the SPEED out and in ??? which I would presume to be
pretty close to being equal...sounds about right.
>From that, it says I am recieving as much as I am sending, which is not
I take it as, your speed is the same receiving or sending...not the amount
of traffic.
>the case (ftp upload _only_, no downloads - traffic monitoring using
>iptraf supports this), and the max should be about 3000 B/s, as indicated
>by the upload speed on the ftp server.
Tony Platt
------------------------------
From: [EMAIL PROTECTED] (Chris Butler)
Crossposted-To: redhat.networking.general,redhat.servers.general
Subject: Re: wu_ftp problem
Date: 3 Sep 1999 12:56:17 +0100
[comp.os.linux.networking - Thu, 26 Aug 1999 21:30:56 GMT]
* [EMAIL PROTECTED] wrote *
> After I type "ftp myftpserver" from a client machine,
> "connected to myftpserver" message immediately shows. But after that,
> it take a few minutes to get "FTP server ready" message and "Name:"
> prompt.
It's either trying to do a reverse DNS lookup (most likely), or it's taking
a while to execute the wu-ftpd program if you're running it from inetd (only
really noticable on really slow hardware).
It's probably the first problem, so check that there is an entry for your
host in /etc/hosts on myftpserver, or you have reverse-DNS setup if you
use a proper DNS server.
--
Chris Butler
<[EMAIL PROTECTED]>
------------------------------
From: Christian Cabal <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.misc,redhat.general
Subject: Trouble downloading large files on Netscape
Date: Fri, 03 Sep 1999 15:31:07 GMT
I've been having trouble trying to download large files through
Netscape 4.51. (I have Red Hat 6.0)
I tried downloading StarOffice 5.1 from Sun's site, but when I get to over
about 5Mb, then the download hangs. The bar reached to 8% and froze there
all night. I've noticed the same problem with other large files I've tried
to download, and the only way I've been able to reliably get large files is
to FTP them. Unfortunately Sun's staroffice download is not ftp based :-(
Here what I get when I do an 'ls -lt' for the file
-rw-rw-r-- 1 cabal cabal 5627904 Sep 3 07:22 so51a_lnx_01.tar
which is the same time that I quit Netscape and terminated the hung up
download.
Any ideas what could be going on with Netscape?
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
