Re: Woody routing question...
On Fri, 9 Aug 2002 10:19:36 -0700, Ted Deppner <[EMAIL PROTECTED]> wrote: >On Fri, Aug 09, 2002 at 10:15:59AM +0100, Sean Cardus wrote: >> eth0 = IP: aaa.bbb.80.144 Network: aaa.bbb.80.128 Mask: 255.255.255.128 >> eth1 = IP: xxx.yy.234.131 Network: xxx.yy.234.128 Mask: 255.255.255.192 > >If you want to be able to use both IPs from either network (a common >occurance even if you didn't plan it), you should probably turn off >RP_FILTER in the kernel. Why? >I'd also suggest you use tcpdump -n -i ethX on each interface (watch eth0 >on tty1, eth1 on tty2 so you can be sure), and make sure packets are >actually reaching your interfaces. use tcpdump -e to actually see the MAC addresses where the packets are sent to. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber | " Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom " | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fax: *49 721 966 31 29
Re: Woody routing question...
On Fri, Aug 09, 2002 at 10:15:59AM +0100, Sean Cardus wrote: > eth0 = IP: aaa.bbb.80.144 Network: aaa.bbb.80.128 Mask: 255.255.255.128 > eth1 = IP: xxx.yy.234.131 Network: xxx.yy.234.128 Mask: 255.255.255.192 If you want to be able to use both IPs from either network (a common occurance even if you didn't plan it), you should probably turn off RP_FILTER in the kernel. This is most easily accomplished by setting the spoofprotect=no option in the /etc/network/options file. A reboot or /etc/init.d/network stop/start will then set the option. I'd also suggest you use tcpdump -n -i ethX on each interface (watch eth0 on tty1, eth1 on tty2 so you can be sure), and make sure packets are actually reaching your interfaces. -- Ted Deppner http://www.psyber.com/~ted/
Re: Woody routing question...
On Fri, 09 Aug 2002 10:15:59 +0100, "Sean Cardus" <[EMAIL PROTECTED]> wrote: >0.0.0.0xxx.yy.234.129 0.0.0.0 UG0 0 0 eth1 >0.0.0.0aaa.bbb.80.130 0.0.0.0 UG1 0 0 eth0 I'd remove one of these two default gateways first. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber | " Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom " | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fax: *49 721 966 31 29
Are you coming to Marbella?
Title: Tures Andalucia 2002 - Residential Tourism Fair Dear Sir or Madam: We are pleased to invite you to an exclusive event to enjoy Marbella, one of the most charming places in Andalusia, in the South of Spain. TURES Andalucia® 2002, the Residential Tourism Fair in Andalusia, will be held in Marbella, Costa del Sol, between October the 10th and the 13th at the Fair and Congress Hall (Palacio de Ferias y Congresos de Marbella). In just three days you will contact with the best real estate promoters from all around Andalusia, which will display their projects (including golf courses and sport facilities). You can visit already the exhibitors and their products in the e-Fair, www.turesandalucia.com where you can make appointments in advance, optimizing your time and getting the most exhaustive and reliable information about the advantages of investing in real estates assets in Andalusia. Andalusia is being choiced as a second home by European citizens, a growing market which produces significant profits. Register now! on line www.turesandalucia.com and get a free entrance and important discounts in services and accommodation. (This offer is valid until the 15th of August). Entrance price costs 30 € We will be pleased to welcome you personally. If you have any enquiries, please do not hesitate to contact us. Yours faithfully More information? Contact us. Eduardo Gómez - - Public Relations Leonor G. Zato - - Customer Service EURO ANDALUCIA EVENTS Calle Rossini, 24 - Urbanización Sierra Blanca 29600 - Marbella - Málaga - España T. +34 952 90 24 21 - F. +34 952 92 45 80 - [EMAIL PROTECTED] www.eae.cc The information in this e-mail and in any attachments is confidential and solely for the attention and use of the named addressee(s). You are hereby notified that any dissemination, distribution or copy of this communication is prohibited without the prior written consent of Grupo Sierra Blanca or any of its companies. If you have received this communication in error, please, notify the sender by reply e-mail.
Re: /root/ drwxr-xr-x?
On Thu, 08 Aug 2002 at 05:35:55AM +1000, Jason Lim wrote: Greets, > Root files, IMHO, should never be publically listed. Since anything root > does should be viewed as important and a security risk (making people very > careful in what they do), it makes sense that the files root has, in > general, will also be of high priority, important, and a security risk. > This topic has been discussed in great and long detail on debian-security. I do not see any purpose in resurecting this topic. Please read the archives for the said list and try to cintribute something new. Thanks, -- Phil PGP/GPG Key: http://www.zionlth.org/~plhofmei/ wget -O - http://www.zionlth.org/~plhofmei/ | gpg --import
Woody routing question...
Hi All, I've just setup a Debian Woody alpha machine and am currently having problems with routing... I'm not entirely sure this problem is appropriate for this list, but here goes... Appologies for the length of the mail too :) I've got 2 network cards in my machine - Each card is connected to different networks, but both have public IP addresses. eth0 = IP: aaa.bbb.80.144 Network: aaa.bbb.80.128 Mask: 255.255.255.128 eth1 = IP: xxx.yy.234.131 Network: xxx.yy.234.128 Mask: 255.255.255.192 My current routing table, as show by running "route -n" is as follows: DestinationGatewayGenmask Flags Metric Ref Use Iface xxx.yy.234.128 0.0.0.0255.255.255.192 U 0 0 0 eth1 aaa.bbb.80.128 0.0.0.0255.255.255.128 U 0 0 0 eth0 0.0.0.0xxx.yy.234.129 0.0.0.0 UG0 0 0 eth1 0.0.0.0aaa.bbb.80.130 0.0.0.0 UG1 0 0 eth0 eth0 is located on a subnet within a larger network - As follows: Network: aaa.bbb.80.0 Netmask: 255.255.248.0 eth1 is my main Internet connection, it is used for almost all Internet bound traffic. eth0 is a network connected to the Internet via a lower bandwidth connection. The main reason for this interface is to allow hosts on its network to connect directly to my machine at a higher speed than their external Internet connection allows. This interface should also communicate with Internet hosts if they connect to this ifaces IP address. On to the problem... Machines with eth0's local subnet can communicate with the server without a problem. Machines outside of the subnet - eg. aaa.bbb.81.36 - cannot communicate with this interface's ip address. aaa.bbb.81.36, as well as external Internet hosts, can however connect to xxx.yy.234.131 without a problem. I've tried adding routes to eth0's subnet and the larger network as a whole - Only result being aaa.bb.81.36 can now connect to eth0's ip, but no longer can get a response from xxx.yy.234.131 Can anyone shed some light on what to do?... My IP routing skills are a little lacking... Thanks in advance!... Sean _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx
Re: Question about NetSaint and check_radius
On Thu, 8 Aug 2002 13:02:31 -0700, "Tony Wasson" <[EMAIL PROTECTED]> wrote: >Mark - Thank you!! I just wanted to report success. With your simplified ^ *grmbl* >config, I was able to make netsaint's check_radius run. Glad to help. >I also see some odd syslog errors like you mentioned. What radius server are you using? I thought that the error messages were a cause of our radiator running with ascend extensions. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber | " Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom " | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fax: *49 721 966 31 29