Re: pcAnywhere v8.0 & Ipchains

Fri, 30 Jun 2000 09:27:50 -0700 

Hello Dan,

Friday, June 30, 2000, 7:20:14 AM, you wrote:

DA> Hi there.  I'm having a little trouble and I'm hoping one of you friendly
DA> gurus (gurii?) out there can help me.

DA> I support a network of a couple hundred pc here at work.  All of them have
DA> Pcanywhere installed to save me a *lot* of walking.  

DA> At home, I have a redhat 6.0 linux box as my default gateway.  It's got two
DA> interfaces inside it: eth0, the network card for my home lan; and ppp0, my
DA> 56k modem dialed into my isp.

DA> My windows98 box has PCanywhere on it for remote support.  The senario is,
DA> I'm reaching out from my win98 box at home to grab control of pcs here in
DA> the hospital - only *something* is getting lost in the translation.  I
DA> never get a login prompt, and my pca screen is nothing but a blank black box.

DA> IPChains is working fine for other things - I'm able to surf the web, send
DA> and receive email, etc - and pca was working fine when the 98 box was
DA> directly dialed up to my isp, rather than passing through the ipchains box.

DA> Can someone help me figure out what rule I need to add to get pcanywhere
DA> back up and running from home?  Here are the stats.  I tried to be
DA> thorough, but if I've left out a piece of information let me know and I'll
DA> track it down for you.

DA> Internet gateway
DA>      hostname=lion
DA>      interface eth0 (internal lan)
DA>        ip 192.168.9.1
DA>        subnet 255.255.255.0
DA>        defgate 192.168.9.1
DA>      interface ppp0 (dialup internet connection)
DA>        ip (dynamic, assigned by ISP)
DA>      ipchains 1.3.8, 27-Oct-1998 
DA>      (Rusty's three-line guide to masquerading)
DA>        # ipchains -P forward DENY
DA>        # ipchains -A forward -i ppp0 -j MASQ
DA>        # echo 1 > /proc/sys/net/ipv4/ip_forward

DA> Win98 client
DA>      hostname=pheonix
DA>        ip 192.168.9.50
DA>        subnet 255.255.255.0
DA>        defgate 192.168.9.1
DA> pcAnywhere v8.0 uses port 5631-TCP and port 5632-UDP.  In this case, pca is
DA> reaching out from behind my linux box to take control of a pc on the internet.

DA> Thanks folks!
DA> Dan Alexander



Do a tail on our syslog to monitor what is being dropped or rejected
by ipchains and then make rule adjustments accordingly.  You may need
to do this in concert with a sniffer and it'll definitely take you
less time to resolve.

-- 
Best regards,
 badger                            mailto:[EMAIL PROTECTED]



-- 
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.

Reply via email to