Linux-Networking Digest #513, Volume #12 Wed, 8 Sep 99 14:13:30 EDT
Contents:
RedHet 5.2 ("abacus")
Forsale Livingston Portmaster 3 - PM 3 ([EMAIL PROTECTED])
Have I been hacked? ("TURBO1010")
Re: Network Card Question (Yannakoyorgos Nicholas)
Re: IP forwarding (Bill Unruh)
Where do you start with a webcam (dave)
Re: Relay Denied !! what am i doing wrong ([EMAIL PROTECTED])
Dial-in from Win95 ([EMAIL PROTECTED])
Re: Have I been hacked? ([EMAIL PROTECTED])
Re: ppp connection (Bill Unruh)
IPX causes broadcaststorms on LAN....???? (Kees Sprangers)
Re: ipchains -L -M question (Mist)
Linux vs. Mac OS8.5/AppleShare6.1 (Tibor Cseszko)
Priorities on IP packets (Fernando Ortega Bellosta)
Re: IP MASQ works - How secure is it? (Lew Pitcher)
NFS problem with SuSE 6.0 ("Antony Mak")
Re: IP Alias Nightmare (Thomas Chow)
Re: Purchasing public subnets? (James Knott)
Re: Browsers and Linux ("Ernest")
----------------------------------------------------------------------------
From: "abacus" <[EMAIL PROTECTED]>
Subject: RedHet 5.2
Date: Wed, 8 Sep 1999 12:11:55 -0400
Hi all,
I have install RH5.2 w/ 2 network cards. eth0 gets it's IP from ISP and
eth1 is assigned 192.168.1.1. Ifconfig look's good with lo,eth0 and eth1.
netstat -rn on the other hand does not show a default route. I want my
Win95 PC 192.168.1.2 to be able to browse the internet and I can't get this
to work. In linuxconf I set a default route, being the IP from my ISP...(is
that the right one to use?). but it does not show up in netstat. I can
from my PC ping both IP's on the linux box but no further. I also used an
ipfwadm command to try and open it up to the inside LAN, to no avail.
Questions:
What would be a good ipfwadm command?
How do I enter the default route on the linux box and which IP?
What do I need to do on the Win95 PC?
What else might I be missing????????
Thanks in Advance,
Erik
"Brand newbie to the linux community"
------------------------------
From: [EMAIL PROTECTED]
Crossposted-To:
comp.dcom.sys.cisco,misc.forsale.computers.pc-specific.misc,comp.unix.admin
Subject: Forsale Livingston Portmaster 3 - PM 3
Date: Wed, 08 Sep 1999 15:08:01 GMT
Livingston PortMaster 3 Integrated Access Server
with ISDN/PRI or Channelized T-1 interfaces (2
ports), installed with 6- 8 port V.90 modem cards
currently.
Supports up to 48 simultaneous users (Choice of
V.34 or 56kbps V.90 modems.) In Europe this unit
can support up to 60 users with more modems added
and when using an E-1 connection.
Comes with Software, supported by
industry-standard RADIUS user management.
Ethernet (AUI and TP) and Console ports.
This is an integrated terminal server, router and
modem server in one unit, a one-box instant ISP
solution. Very easy to setup I will help via
telephone and email. Excellent condition, only 1
year old, free software upgrades from Lucent, rack
mountable this is the size of a VCR and the only
moving part is the cooling fan so they are super
reliable. No more bad modem connections or locked
up modems this box is rock solid and the provides
the best possible connections for your users.
Full rempte management and SNMP software is
included.
Livingston Portmasters are the #1 choice by ISP
owners and now that Livingston is owned by Lucent
service is even better.
Supported by all industrial strength OS's.
ASKING ONLY $6,990 or best offer
30 day (hardware warranty)
Current price on Portmaster 3 chassis (no modems)
is $7,900
Current price on Single K56Flex 8-modem card is
$1,290 inc.tax
For references see;
>
http://www.metadigm.co.uk/dialup/livport3.html
About Lucent's K56Flex technology;
>
http://www.lucent.dk/micro/K56flex/news/073197.html
For more info, email [EMAIL PROTECTED]
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: "TURBO1010" <[EMAIL PROTECTED]>
Subject: Have I been hacked?
Date: Wed, 8 Sep 1999 06:53:44 -0700
Found this in the logs the other night? What can I do about things like
this?
Sep 7 21:07:38 comp1 in.telnetd[6029]: connect from 206.58.83.8
Sep 7 21:07:38 comp1 in.ftpd[6030]: connect from 206.58.83.8
Sep 7 21:07:38 comp1 in.rlogind[6031]: connect from 206.58.83.8
Sep 7 21:07:39 comp1 rlogind[6031]: Connection from 206.58.83.8 on illegal
port
Sep 7 21:07:39 comp1 rlogind[6031]: PAM pam_end: NULL pam handle passed
Sep 7 21:08:04 comp1 in.telnetd[6032]: connect from 206.58.83.8
Sep 7 21:08:17 comp1 in.ftpd[6035]: connect from 206.58.83.8
Sep 7 21:08:28 comp1 in.rlogind[6036]: connect from 206.58.83.8
Sep 7 21:08:28 comp1 rlogind[6036]: Connection from 206.58.83.8 on illegal
port
Sep 7 21:08:28 comp1 rlogind[6036]: PAM pam_end: NULL pam handle passed
Sep 7 21:08:31 comp1 in.telnetd[6037]: connect from 206.58.83.8
Sep 7 21:08:35 comp1 in.telnetd[6038]: connect from 206.58.83.8
------------------------------
From: Yannakoyorgos Nicholas <[EMAIL PROTECTED]>
Crossposted-To: linux.redhat.install
Subject: Re: Network Card Question
Date: Wed, 08 Sep 1999 17:16:18 +0200
Reply-To: [EMAIL PROTECTED]
Stephen,
Take a look at:
http://www.redhat.com/corp/support/hardware/intel/60/rh6.0-hcl-i.Id-12.html
Nick
Stephen Jones wrote:
>
> I need to get a second PCI network adapter for DSL service...does anyone
> know if linksys Ethernet cards work with linux. I am using RH 6.0
> distribution. Thanks
>
> Stephen
--
Nicholas Yannakoyorgos
ObjectShare Consultant
UBS AG - Z�rich
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (Bill Unruh)
Subject: Re: IP forwarding
Date: 8 Sep 1999 16:15:16 GMT
In <[EMAIL PROTECTED]> [EMAIL PROTECTED] (Chris) writes:
>It's not enough to simply configure the two interfaces because Linux won't
>forward packets (data or pings) from one subnet to another unless you
>install and configure network forwarding. In most cases, you will have to
>configure and compile a kernel from scratch to include that option.
??? Most (all?) modern distributions have it already compiled in. It is
rarely necessary to recompile a kernel.
------------------------------
From: dave <[EMAIL PROTECTED]>
Subject: Where do you start with a webcam
Date: Wed, 08 Sep 1999 16:20:56 +0100
Hi
I have a usb camera and a box running Suse 6.
How do I get the pictures on the (internal to start with) net.
davef
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Relay Denied !! what am i doing wrong
Date: Wed, 08 Sep 1999 15:36:51 GMT
In article <[EMAIL PROTECTED]>,
Quet Kim Yong Teck <[EMAIL PROTECTED]> wrote:
> Hi all,
> I'm trying to setup mail server( and later with
internet mail) on a
> RedHat 6.0.
> All other PC are running Win95 with TCP/IP. When
I send mail to someone
*snip*
> i'm having relaying denied !! And the same if i
try to send a mail to
> [EMAIL PROTECTED] and if i send it from the
linux box i is queued which
*snip*
Have you got all the IP addresses of the machines
that you're trying to send mail from in
/etc/mail/relay-domains? (Or some similar
sounding file..)
>
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED]
Subject: Dial-in from Win95
Date: Wed, 08 Sep 1999 15:38:43 GMT
I am trying to dial-in from my Win95 machine using DUN.After connecting
I would like to access the web server on the Linux box.
On the RH5.2 Linux box I have mgetty running, and it works if I use a
terminal window to enter user name + password.
*How can I avoid using the terminal window i.e. use automatic PAP
authentication?
* Do I need Auto PPPP for this?
* My Linux box is standalone, no DNS -- is this OK?
Any tips welcome.
Michael
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED]
Subject: Re: Have I been hacked?
Date: Wed, 08 Sep 1999 15:39:26 GMT
In article <7r5qc0$fam$[EMAIL PROTECTED]>,
"TURBO1010" <[EMAIL PROTECTED]> wrote:
> Found this in the logs the other night? What can I do about things
like
> this?
>
> Sep 7 21:07:38 comp1 in.telnetd[6029]: connect from 206.58.83.8
> Sep 7 21:07:38 comp1 in.ftpd[6030]: connect from 206.58.83.8
> Sep 7 21:07:38 comp1 in.rlogind[6031]: connect from 206.58.83.8
> Sep 7 21:07:39 comp1 rlogind[6031]: Connection from 206.58.83.8 on
illegal
> port
> Sep 7 21:07:39 comp1 rlogind[6031]: PAM pam_end: NULL pam handle
passed
> Sep 7 21:08:04 comp1 in.telnetd[6032]: connect from 206.58.83.8
> Sep 7 21:08:17 comp1 in.ftpd[6035]: connect from 206.58.83.8
> Sep 7 21:08:28 comp1 in.rlogind[6036]: connect from 206.58.83.8
> Sep 7 21:08:28 comp1 rlogind[6036]: Connection from 206.58.83.8 on
illegal
> port
> Sep 7 21:08:28 comp1 rlogind[6036]: PAM pam_end: NULL pam handle
passed
> Sep 7 21:08:31 comp1 in.telnetd[6037]: connect from 206.58.83.8
> Sep 7 21:08:35 comp1 in.telnetd[6038]: connect from 206.58.83.8
>
I'm no guru, but may i suggest you look into using TCPwrappers? It helps
prevent unwanted logins, from what i understand.
-jeff
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: [EMAIL PROTECTED] (Bill Unruh)
Subject: Re: ppp connection
Date: 8 Sep 1999 16:23:02 GMT
In <[EMAIL PROTECTED]> al carver <[EMAIL PROTECTED]> writes:
]I'm fairly new at Linux but learning everyday.
]The problem I have is that my kppd dialer in RH 6.0 seems to connect to
]my ISP but i do not get any response from Netscape browser ,it just
]keeps running and says "connect to www.xxxx.com" but does not bring up
]the Web site. I tried to ping my ISP but nothing. I looked at "message"
]file and copied & pasted the following. I have read a lot of newsgroups
]and this looks like the correct one to write for an answer.
a) You need to include more information -- eg use the debug option to
pppd (put the line
debug
into /etc/ppp/options)
and set up /etc/syslog.conf to record the messages in a file of your
choice.
daemon.* /var/log/messages
for example
and finally do
killall -1 syslogd
b) It sounds to me like you have resolver problems. Did you enter the
correct DNS entries into KPPP? When you are running kppp, look at the
file
/etc/resolv.conf
to see if the correct nameserver entries are in there.
] Thanks Al Carver
------------------------------
From: Kees Sprangers <[EMAIL PROTECTED]>
Subject: IPX causes broadcaststorms on LAN....????
Date: Wed, 08 Sep 1999 16:21:33 +0200
Hello all,
I use a few linux boxes in a mixed network environment.
On some of them, when I enable IPX, the machine is flowing the network
with broadcasts. (I think it are broadcasts packets because the traffic
goes over switched networks)
Its a plain install, I didn't change anything on the IPX settings, and I
have this problem on different distributions (caldera 2.2 and suse 6.1)
Anyone seen this before?
Tanx
--
Reply to: [EMAIL PROTECTED] (Kees Sprangers FXS'81)
OMEGAM Environmental Research
PO box 94685
1096 AR Amsterdam
The Netherlands
Tel: ++31 20 5976666
Fax: ++31 20 5976777
http://www.omegam.nl
------------------------------
From: Mist <[EMAIL PROTECTED]>
Subject: Re: ipchains -L -M question
Date: Wed, 08 Sep 1999 15:56:11 GMT
In article <[EMAIL PROTECTED]>,
[EMAIL PROTECTED] (Vlar Schreidlocke) wrote:
> I did an ipchains -L -M and got a connection from one of my internal
> Win98 boxes to aussms2.austin.rr.com on port 139. Does this mean that
> someone at aussms2.austin.rr.com was connected to the shares on my
> Win98 machine? I could swear that there is an ipchains rule in my
> firewal script that denies these connections.
>
> These are the lines:
>
> $IPCAHINS -A input -l -p tcp -s $REMOTENET -d $LOCALNET 139 -j DENY
> $IPCAHINS -A input -l -p udp -s $REMOTENET -d $LOCALNET 139 -j DENY
Ahh, but they are for *incoming* connections. You don't have a rule to
stop outgoing, I suppose?
I found this which might be useful in closing off the port -
Closing Port 139:
To close this port for good, instead of applying a lame
patch, such as Microsoft distributed, do the following.
Open Control Panel
Open Devices
Locate the "WINS Client(TCP/IP)" and highlight it
Click the Startup button
Choose DISABLE
Click OK
Click CLOSE
Shutdown, and Restart
You lose WINS resolution if you do this. But then who
needs it?
--
Mist.
Sent via Deja.com http://www.deja.com/
Share what you know. Learn what you don't.
------------------------------
From: Tibor Cseszko <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.hardware,comp.os.linux.powerpc
Subject: Linux vs. Mac OS8.5/AppleShare6.1
Date: Wed, 08 Sep 1999 16:31:11 GMT
My company is about to invest in a modest network. The network would
include 6 Macs & 6-8 PCs. The company has already priced a G3 server from
Apple. This of course is based solely on one man's input. I heard a lot of
good things about Linux. I have never heard any of any pitfalls or
shortcommings of the OS. (maybe I have not looked at all the right places?)
Anyways, I would like to find out what would be some good reasons for me to
consider Linux over Mac OS? Right now the only arsenal I have against Mac
is Linux's stability as a file server software. I need all the input that
ya'll are willing to share. Also, if there are some websites that I should
be looking at, please note those as well.
Sincerely,
Tibor Cseszko
Detcon, Inc.
================== Posted via CNET Linux Help ==================
http://www.searchlinux.com
------------------------------
From: Fernando Ortega Bellosta <[EMAIL PROTECTED]>
Crossposted-To: comp.os.linux.development.system
Subject: Priorities on IP packets
Date: Wed, 8 Sep 1999 18:12:18 +0200
Does any one know if there is something implemented to deal with, IP
priorities in Linux, for example voice over IP.
I know that in the networking source code , it is supported a bit part of
it but it is not enough to guaranty , voice transmition.
In the source code you can only find three priority queues per device, but
what happens if for example I am sending something of priority "2" and
suddenly I have to send something of priority "1", It seems that until the
queue of priority "2" is not emptied (dev_tint), it will not deal with the
priority "1".
I am working on it , and I wonder if you can help me with any info you
know. I need to know how Linux Networking deal with IP priorities, it is
quite difficult( at least , it is for me) to figure it out, just following
the source code.
Any help or collaboration will be more than wellcome.
If you are interested in working on it let me know.
Thanks a lot.
--
Fernando Ortega Bellosta
[EMAIL PROTECTED]
------------------------------
From: [EMAIL PROTECTED] (Lew Pitcher)
Crossposted-To: comp.os.linux.questions,comp.os.linux.security
Subject: Re: IP MASQ works - How secure is it?
Reply-To: [EMAIL PROTECTED]
Date: Wed, 08 Sep 1999 12:04:47 GMT
Use the source...
Or in this case, the Linux Documentation Project at http://www.linuxdoc.org/
They are the keepers of the HOWTO documents.
On Tue, 7 Sep 1999 22:39:56 -0500, "Wayne Willson" <[EMAIL PROTECTED]> wrote:
>http://www.linux.com/howto/
>
>
>MikeH <[EMAIL PROTECTED]> wrote in message
>news:nqiB3.468$[EMAIL PROTECTED]...
>>
>> Anders Peterson wrote in message <7r302a$chh$[EMAIL PROTECTED]>...
>> >I can't answer your question. Instead I'd like to know how you did the
>> >configuration. Is there a How-To for this? I have a similar problem - a
>> >small network sharing an ADSL connection via a Linux server. I don't
>> >know how to configure it.
>> >
>>
>>
>> Start with the How-To's
>>
>>
>
>
Lew Pitcher
System Consultant
Toronto Dominion Financial Group
([EMAIL PROTECTED])
(Opinions expressed are my own, not my employer's.)
------------------------------
From: "Antony Mak" <[EMAIL PROTECTED]>
Subject: NFS problem with SuSE 6.0
Date: Thu, 9 Sep 1999 00:00:43 +0800
Hi all,
I recently setup a NFS server on my SuSE 6.0 box for backup purpose.
Everything was fine when I exported a FS between two SuSE Box. But when I
exported a FS to a AIX 4.3.2 Box, it take over one hour to copy a 5MB file
from the exported filesystem(SuSE) to local filesystem(AIX). It didn't
provide any logs or messages either in the linux bos nor AIX box. Can anyone
have any idea on this problem?
thanks
antony
------------------------------
From: Thomas Chow <[EMAIL PROTECTED]>
Subject: Re: IP Alias Nightmare
Date: Thu, 09 Sep 1999 01:39:20 +0800
Reply-To: [EMAIL PROTECTED]
Are you have DNS server inhouse. if no. may be better. You can call you isp.
what domain name hold my yourself. example :
abc.com ===> 199.1.1.1
bcd.com ===> 199.1.1.1
and then change httpd.conf & sendmail.cf to test.
(this is my isp tell me. because I start to install redhat 6.0 virtual host,
ipchains, proxy, dhcp server in my house)
May be later I will ask your helf..........
=========================================
Sydney Urshan wrote:
> I read the "How-To" on IP aliasing. I'm wondering if someone can help me
> with a problem I am having that it did not address.
>
> I have a Class C with a Linux Router. Everything works fine connected to
> the Internet with the WAN and LAN. I can ping, nslookup (sometimes),
> etc. I start having problems when I alias my eth0 device to make virtual
> domains which is on a different Class than my C. (eth0=63.193.x.x=single
> IP WAN, Class C=63.194.x.x with LAN and VIPs in there.) I read on one of
> the netconf help files that if you do not alias within the same class, you
> need to do "additional special routing". I experimented for several days
> with no avail. (I also RTFM'ed everything I could find!) Some of the
> problems include the Router getting rewritten drastically (route trying to
> compensate the network), an error "Bringing up route eth0, route: netmask
> doesn't match route address" (still works though), nslookup, ping, and web
> sites working intermittently, etc., and finally, nothing working until I
> scale the router back down to the LAN/WAN basics with no virtual hosts.
>
> Any guidance thrown my way would be greatly appreciated.
>
> Sydney Urshan
>
> Red Hat SSL 6.0
> 2.2.12 Kernel
> Built with AppleTalk (problems happened without AT also)
> 2 Tulip Ethernet Cards (1 WAN, 1 LAN)
------------------------------
From: [EMAIL PROTECTED] (James Knott)
Subject: Re: Purchasing public subnets?
Date: Wed, 08 Sep 1999 12:19:29 -0400
Reply-To: James Knott <[EMAIL PROTECTED]>
In article <7r4ifd$fon$[EMAIL PROTECTED]>,
"LightningCrash" <[EMAIL PROTECTED]> wrote:
>Is there any way to accomplish this other than through my ISP?
>
>I would like to obtain an internet-range class C subnet (for example,
>something like 209.7.144.0-255), and be able to address each of the machines
>on my lan with an address from this subnet.
If you're going to connect to the internet, you'll have to connect
somewhere. You will be assigned a block of addresses, from whoever
you connect to. It could be your ISP, another ISP or someone further
up the net. Depending on how many addresses you want, the higher
levels may tell you to go to an ISP.
--
E-mail [EMAIL PROTECTED]
_________________________________________________________________________
The above opinions are my own and not those of ISM Corp., a subsidiary of
IBM Canada Ltd.
------------------------------
From: "Ernest" <[EMAIL PROTECTED]>
Crossposted-To: alt.os.linux,comp.os.linux.setup
Subject: Re: Browsers and Linux
Date: Wed, 8 Sep 1999 06:42:36 +0200
Now what would that convention be? And, where does it state it.
To me it make sense to accept that my message (the reply) is most important.
Like a letter - do I repeat the complete letter and then put my reply to it?
No, I reply and then refer to sections in your letter. So, what goes on top is
my reply. (The most important issue). What goes at the bottom is what I am
refer to (Your question).
Ernest Bessinger
Dave Seyster <[EMAIL PROTECTED]> wrote in message
news:WrhB3.34809$[EMAIL PROTECTED]...
> On Tue, 7 Sep 1999 08:30:01 +0200, Ernest <[EMAIL PROTECTED]> wrote:
>
> (Lots of nonsense deleted)
>
> >use. I like the top. I am still trying though find in the FAQ for this
> >newsgroup where it says the top or the bottom. If it is not there I still
> >think it pure arrogance to insist someone do it!!!
> >
> >Ernest Bessinger
>
>
> It's not arrogant to ask someone to follow a certain convention,
> especially when that convention makes reading and replying to Usenet
> articles much simpler. Don't you read a page of text from top to bottom
> and don't you ask questions and receive answers in chronological order?
> Trust me, there's no surer sign of poorly written software than a
> newsreader that insists on waylaying this convention and no surer sign
> of someone who doesn't know what they're doing than someone who inserts
> new text, such as a reply, before quoted text. If the shoe fits, etc., etc.
>
> Dave Seyster
------------------------------
** FOR YOUR REFERENCE **
The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:
Internet: [EMAIL PROTECTED]
You can send mail to the entire list (and comp.os.linux.networking) via:
Internet: [EMAIL PROTECTED]
Linux may be obtained via one of these FTP sites:
ftp.funet.fi pub/Linux
tsx-11.mit.edu pub/linux
sunsite.unc.edu pub/Linux
End of Linux-Networking Digest
******************************
