On Sun, Nov 05, 2000 at 04:37:41PM -0800, Gordon Messmer wrote:
> On Fri, 3 Nov 2000, Rob Hardowa wrote:
>
> > That's also something I'd had real troubles with. The modem I
> > have is the alcatel speed touch home.
>
> Looking through their FAQ, I found this:
>
> http://www.alcatel.com/consumer/dsl/supfaqusa.htm#usa3
>
> 3. There's no firewall in the A1000 or Home, does it make these
> modems unsafe to use? Absolutely not. When in standard settings,
> these modems do not allow any connection from the outside world to
> your modem or computer, except when requested by your machine. This
> means it only allows replies on your request, for example the
> loading of a webpage after clicking a link. When a computer, unknown
> to your modem, is trying to connect to your modem or computer, it
> will be blocked.
>
> That's no good :(
This is misleading I believe. I've had an Alcatel 1000 (predecessor of
the STH) for over a year, and I run web, mail, ftp, etc. I don't know
what they are trying to say here, but it probably suffers in the
translation. The only way to block this stuff is via ipchains or
similar. Today's hits so far:
Nov 5 14:02:23 localhost kernel: Packet log: input DENY eth0 PROTO=17
66.20.138.34:137 216.78.197.8:137 L=78 S=0x00 I=560 F=0x0000 T=116
(#20)
Nov 5 14:02:24 localhost kernel: Packet log: input DENY eth0 PROTO=17
66.20.138.34:137 216.78.197.8:137 L=78 S=0x00 I=6704 F=0x0000 T=116
(#20)
Nov 5 14:02:26 localhost kernel: Packet log: input DENY eth0 PROTO=17
66.20.138.34:137 216.78.197.8:137 L=78 S=0x00 I=7216 F=0x0000 T=116
(#20)
[...]
Slow day.
> The you-sir manual doesn't seem to indicate any way to forward traffic
> back into your network with the "home" model (though I suspect that the
> "pro" model would be able to do this. You might have to put the modem into
> PPPoE mode, and run a PPPoE client on your linux box.
The Pro is full scale DSL router, doing NAT, etc. The Home and 1000
are bridges. Traffic should move regardless. Newer versions have PPPoA
capability, but no PPPoE. Not sure how that works really, and maybe
that (ie PPPoA) is what is going on here. Other than that, the IP gets
assigned to either eth0 (in purely bridging mode), or ppp0 if running a
PPPoE client.
If it is PPPoA, the modem has to be handling this since Linux does not
support PPPoA.
These modems can be ordered by ISPs in various configurations, and
with various features disable. FYI...
> Probably a transparent proxy. My provider has put one of those up a
> couple of times. Later it fails, and everyone looses service for a couple
> of hours and they turn it off for a couple months before trying again.
<G>. Bellsouth's is off right now until further notice. PITA.
--
Hal B
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
--
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
