Re: debian networking questions
ok so there isn't a dpkg-reconfigure networking wizard thing, ok. was just tring to make sure i wasn't missing something and trying to do it the 'hard' way. Thank you. On Wednesday 29 January 2003 19:19, Stephen Gran wrote: This one time, at band camp, Ray said: i'm probably just looking for a faq/howto that i'm over looking. but here it goes anyways. what is 'the debian way' of: man interaces -changing a static ip on a machine? edit /etc/network/interfaces -changing the hostname? man hostname; use `hostname`; edit /etc/hostname -changing from dynamic to static ip? edit /etc/network/interfaces -adding alias ips for the interface? edit /etc/network/interfaces HTH, -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
debian networking questions
i'm probably just looking for a faq/howto that i'm over looking. but here it goes anyways. what is 'the debian way' of: -changing a static ip on a machine? -changing the hostname? -changing from dynamic to static ip? -adding alias ips for the interface? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: debian networking questions
This one time, at band camp, Ray said: i'm probably just looking for a faq/howto that i'm over looking. but here it goes anyways. what is 'the debian way' of: man interaces -changing a static ip on a machine? edit /etc/network/interfaces -changing the hostname? man hostname; use `hostname`; edit /etc/hostname -changing from dynamic to static ip? edit /etc/network/interfaces -adding alias ips for the interface? edit /etc/network/interfaces HTH, -- -- | Stephen Gran | As for the women, though we scorn and | | [EMAIL PROTECTED] | flout 'em, We may live with, but cannot | | http://www.lobefin.net/~steve | live without 'em. -- Frederic | || Reynolds| -- msg27311/pgp0.pgp Description: PGP signature
Networking questions
I have a few questions, here goes: 1. My inetd.conf files contains entries such as these ones: #:STANDARD: These are standard services. #:BSD:Shell, login, exec and talk are BSD protocls These are of the form #:LABEL: (what the file states). Are these enabled or commented out? I want to disable all rlogin, telnet, rsh, ftp, and whatnot (just running a firewall). 2. Can I turn on rp_filter without disrupting "anything"? Does it need to be turned on during boot up (before netwrok configuration)? 3. How can I unsinstall ipmasq? And do I run my ipchains rules at startup (and echo 1 ip_forward and similar commands)? 4. I want tolog some specific network trafic. Where can I specify in which file the output of such a log should go? 5. I know there's a REDIRECT target in ipchains.(how) Can I use this target to allow outside connection to one of my local hosts? Not sure, but I think I need to allow outside connection for PEER-TO-PEER network games to work. 6. Is it safe to simply allow all OUTPUT datagrams (ipchains -P output ACCEPT)? 7. Can I block all TCP connection request (-y) without disrupting web, mail and whatnot access? 8. What usefullness to the following rules have: OUTPUT ACCEPT ! TCP 0.0.0.0/0 224.0.0.0/4 *-* INPUT ACCEPT ALL 0.0.0.0/0 2 55.255.255.255 Thx in advanced for any help provide! Really appreciate it.
RE: Networking questions
-Original Message-From: seg [mailto:[EMAIL PROTECTED]Sent: Monday, January 22, 2001 2:29 PMTo: debianSubject: Networking questions I have a few questions, here goes: 1. My inetd.conf files contains entries such as these ones: #:STANDARD: These are standard services. #:BSD:Shell, login, exec and talk are BSD protocls These are of the form #:LABEL: (what the file states). Are these enabled or commented out? I want to disable all rlogin, telnet, rsh, ftp, and whatnot (just running a firewall). If they are prefixed with a #, they are commented out. For a firewall machine, I'd not only comment them out, but install TCP_wrappers and deny all connections to the firewall from the internet. (/etc/hosts.deny , syntax is in the man page for hosts.deny) 2. Can I turn on rp_filter without disrupting "anything"? Does it need to be turned on during boot up (before netwrok configuration)? afraid I can't help you there. 3. How can I unsinstall ipmasq? And do I run my ipchains rules at startup (and echo 1 ip_forward and similar commands)? I'd recommendenabling IP forwarding in your ipchains script, and running the script at startup. Otherwise, if for some reason yourfirewall reboots, you're forwarding packets with no firewall rulebase, and that's a "bad thing" What I usually do is put my ipchains rules in a file called ipchains.sh and execute it at the end of my rc.local script. 4. I want tolog some specific network trafic. Where can I specify in which file the output of such a log should go Depends on what you'recapturing the traffic with. Did you plan on using something in particular? 5. I know there's a REDIRECT target in ipchains.(how) Can I use this target to allow outside connection to one of my local hosts? Not sure, but I think I need to allow outside connection for PEER-TO-PEER network games to work. Yes, that's correct...you need to forward the port the game uses to the internal machine that's running the game server. You can use ipchains (who's syntaxfor forwarding I don't know...somethinglike 'ipchains -I forwardudp --destination port portnumber destination-IP' maybe someone else knows it off the top of their head) Personally I use a port forwarding program called Fast Forward, which does the same thing and is easy to configure. 6. Is it safe to simply allow all OUTPUT datagrams (ipchains -P output ACCEPT)? It really can't hurt. I'm assuming this is a home network and not a business. As long as you can control who uses the systems inside the firewall, sure, go ahead. 7. Can I block all TCP connection request (-y) without disrupting web, mail and whatnot access? http and smtp ARE TCP connections, so you'll disrupt those if you block all TCP incoming without declaring specific allows for them. That's a good way to do it, just make sure you make a rule for anything you want to allow. 8. What usefullness to the following rules have: OUTPUT ACCEPT ! TCP 0.0.0.0/0 224.0.0.0/4 *-* Looks like that's telling the firewall to allow all broadcast packets out of your network. Since the firewall's pretty much acting as a router, internal broadcasts aren't going anywhere anywaymaybe that's to allow DHCP requests for the firewall if you're on broadband with no static IP. INPUT ACCEPT ALL 0.0.0.0/0 2 55.255.255.255 That's allowing all incoming traffic. Bad firewall. No biscuit. Thx in advanced for any help provide! Really appreciate it.
Re: Networking questions
seg [EMAIL PROTECTED] writes: 1. My inetd.conf files contains entries such as these ones: #:STANDARD: These are standard services. These are of the form #:LABEL: (what the file states). Are these enabled or commented out? See man inetd.conf. Lines beginning with a '#' are comments. Perhaps you also find the update-inetd utility useful. I want to disable all rlogin, telnet, rsh, ftp, and whatnot (just running a firewall). Why not uninstalling these services? 3. How can I unsinstall ipmasq? You mean the package 'ipmasq'? 'dpkg --purge ipmasq' or 'apt-get remove --purge ipmasq' should do it.. And do I run my ipchains rules at startup (and echo 1 ip_forward and similar commands)? A good solution is to create a init script, put it in /etc/init.d/ and create the init links (for example with update-rc.d). 4. I want to log some specific network trafic. Where can I specify in which file the output of such a log should go? Packets matching a rule with the -l/--log flag are logged via printk() - so your syslogd should fetch these kernel messages. See man syslogd. 7. Can I block all TCP connection request (-y) without disrupting web, mail and whatnot access? Sure - do you have a special problem? Have you read the Firewall/IPChains Howto? moritz -- Moritz Schulte [EMAIL PROTECTED] http://www.chaosdorf.de/moritz/ Debian/GNU supporter - http://www.debian.org/ http://www.gnu.org/ GPG fingerprint = 3A14 3923 15BE FD57 FC06 B501 0841 2D7B 6F98 4199
Re: Networking questions
Been reading up on my spare time (did read the ipchain, net and a few other howtos), but I still am a total newbie:) Got some question on how to "put your suggestions to work". Also if anyone has a link on how to use -REDIRECT, plz provide:) "For a firewall machine, I'd not only comment them out, but install TCP_wrappers and deny all connections to the firewall from the internet. (/etc/hosts.deny , syntax is in the man page for hosts.deny)" "Why not uninstalling these services?" Ok, what are TCP_wrappers? And how would I go about uninstalling services? Also what services do I need to keep for a basic firewall? "What I usually do is put my ipchains rules in a file called ipchains.sh and execute it at the end of my rc.local script." "A good solution is to create a init script, put it in /etc/init.d/ and create the init links (for example with update-rc.d)." Haven't found an HOWTO on scripting, is there one? Or could you "walk me through it", if not to long? I assume ipchains.sh is simply a sequence of command, but I have no clue how toset up rc.local. What are init links? "Depends on what you'recapturing the traffic with. Did you plan on using something in particular?" Wasn't planning on using anything in particular. Just want the output to be written to some text file. I know it's written to a file called messages right now, but this file is not specific for ipchains. A new question: -Whatis the port number for smtp, pop3, www and DNS on my firewall, not on the remote server? Anddo these port numbers change depending on the local hosts which is accessing the "net"? - Original Message - From: Jason Mogavero To: 'seg' ; debian Sent: Monday, January 22, 2001 4:56 PM Subject: RE: Networking questions -Original Message-From: seg [mailto:[EMAIL PROTECTED]Sent: Monday, January 22, 2001 2:29 PMTo: debianSubject: Networking questions I have a few questions, here goes: 1. My inetd.conf files contains entries such as these ones: #:STANDARD: These are standard services. #:BSD:Shell, login, exec and talk are BSD protocls These are of the form #:LABEL: (what the file states). Are these enabled or commented out? I want to disable all rlogin, telnet, rsh, ftp, and whatnot (just running a firewall). If they are prefixed with a #, they are commented out. For a firewall machine, I'd not only comment them out, but install TCP_wrappers and deny all connections to the firewall from the internet. (/etc/hosts.deny , syntax is in the man page for hosts.deny) 2. Can I turn on rp_filter without disrupting "anything"? Does it need to be turned on during boot up (before netwrok configuration)? afraid I can't help you there. 3. How can I unsinstall ipmasq? And do I run my ipchains rules at startup (and echo 1 ip_forward and similar commands)? I'd recommendenabling IP forwarding in your ipchains script, and running the script at startup. Otherwise, if for some reason yourfirewall reboots, you're forwarding packets with no firewall rulebase, and that's a "bad thing" What I usually do is put my ipchains rules in a file called ipchains.sh and execute it at the end of my rc.local script. 4. I want tolog some specific network trafic. Where can I specify in which file the output of such a log should go Depends on what you'recapturing the traffic with. Did you plan on using something in particular? 5. I know there's a REDIRECT target in ipchains.(how) Can I use this target to allow outside connection to one of my local hosts? Not sure, but I think I need to allow outside connection for PEER-TO-PEER network games to work. Yes, that's correct...you need to forward the port the game uses to the internal machine that's running the game server. You can use ipchains (who's syntaxfor forwarding I don't know...somethinglike 'ipchains -I forwardudp --destination port portnumber destination-IP' maybe someone else knows it off the top of their head) Personally I use a port forwarding program called Fast Forward, which does the same thing and is easy to configure. 6. Is it safe to simply allow all OUTPUT datagrams (ipchains -P output ACCEPT)? It really can't hurt. I'm assuming this is a home network and not a business. As long as you can control who uses the systems inside the firewall, sure, go ahead. 7. Can I block all TCP connection request (-y) without disrupting web, mail and whatnot access? http and smtp ARE TCP connections, so you'll disrup
Re: networking questions
seg wrote: Forgot to mention why I want to log ip traffic. I mostly want to determine which ports are used by my games. Is this possible? Install pkg 'iptraf'. Real time IP monitor that shows ports, packets and statistics. I leave it on an xterm all the time to check my connections. Also does reverse DNS lookup. -- ~~~
Re: networking questions
The best way to learn administrative networking is the Network Administration Guide you'll find on http://www.metalab.unc.edu/mdw/LDP/nag/node1.html#SECTION00100. My advise to you: Download the sites and read them offline. It teaches a lot. Have Fun. MfG ToKa --- www.tokahome.de -Ursprüngliche Nachricht- Von: Franco Cone [EMAIL PROTECTED] An: debian-user@lists.debian.org Gesendet: Samstag, 8. Juli 2000 23:17 Betreff: networking questions Howdy! I have a few networking questions..hope you guys won't mind :) I have 2 networked machines (win98 debian GNU) as of this moment using ethernet 10baseT cat 5 connected to a hub. My questions are: 1.how do I let win98 see the debian box thru network neighborhood? 2.how do I make debian see win98? I don't thinks there's network neighborhood for debian..is there? Sorry for my stupid questions but I'm kinda new here and I don't know where to start.If anybody can give me a head start point me to some good documentation/explanation out there Regarding this matter I would forever be in your debt ;) -- please CC me...I'm leaving this list in a minute Sent through Global Message Exchange - http://www.gmx.net -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
RE: networking questions
As all M$ Windows 95/98/NT/2000 uses a protocal called SMB (Sesssions Message Block), you will have to install SaMBa (http://www.samba.org). The debs are kept in net and otherosfs. To configure SaMBa, I strongly suggest you also download/ apt-get SWAT (Samba Web Administration Tool). Once installed, use SWAT to configure the smb.conf in /etc/.and remember to include a line in your smb.conf: browseable = yes; so that your Win machines can see the shared directories in the Network Neighborhood. If you have any trouble/ difficulties, you can e-mail me and I will guide you through. Cheers. Patrick Where do you want to go today ...as far away from Redmond as possible Only dead fish go with the flow.. -Original Message- From: Franco Cone [SMTP:[EMAIL PROTECTED] Sent: Sunday, July 09, 2000 5:17 AM To: debian-user@lists.debian.org Subject: networking questions Howdy! I have a few networking questions..hope you guys won't mind :) I have 2 networked machines (win98 debian GNU) as of this moment using ethernet 10baseT cat 5 connected to a hub. My questions are: 1.how do I let win98 see the debian box thru network neighborhood? 2.how do I make debian see win98? I don't thinks there's network neighborhood for debian..is there? Sorry for my stupid questions but I'm kinda new here and I don't know where to start.If anybody can give me a head start point me to some good documentation/explanation out there Regarding this matter I would forever be in your debt ;) -- please CC me...I'm leaving this list in a minute Sent through Global Message Exchange - http://www.gmx.net -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Re: networking questions
Am Sam, 08 Jul 2000 schrieb Franco Cone: Howdy! I have a few networking questions..hope you guys won't mind :) I have 2 networked machines (win98 debian GNU) as of this moment using ethernet 10baseT cat 5 connected to a hub. My questions are: 1.how do I let win98 see the debian box thru network neighborhood? 2.how do I make debian see win98? I don't thinks there's network neighborhood for debian..is there? I don't know if there's a deb for, but test linneighborhood -- freshmeat -- MfG Waldemar Brodkorb Linux rulez!
networking questions
Howdy! I have a few networking questions..hope you guys won't mind :) I have 2 networked machines (win98 debian GNU) as of this moment using ethernet 10baseT cat 5 connected to a hub. My questions are: 1.how do I let win98 see the debian box thru network neighborhood? 2.how do I make debian see win98? I don't thinks there's network neighborhood for debian..is there? Sorry for my stupid questions but I'm kinda new here and I don't know where to start.If anybody can give me a head start point me to some good documentation/explanation out there Regarding this matter I would forever be in your debt ;) -- please CC me...I'm leaving this list in a minute Sent through Global Message Exchange - http://www.gmx.net
Re: networking questions
I guess you'll want to take a look at samba, with samba you can share your disks on your debian box to windows and the other way around AFAIK. But first off all you'll have to get the network to work. Ron Rademaker On Sat, 8 Jul 2000, Franco Cone wrote: Howdy! I have a few networking questions..hope you guys won't mind :) I have 2 networked machines (win98 debian GNU) as of this moment using ethernet 10baseT cat 5 connected to a hub. My questions are: 1.how do I let win98 see the debian box thru network neighborhood? 2.how do I make debian see win98? I don't thinks there's network neighborhood for debian..is there? Sorry for my stupid questions but I'm kinda new here and I don't know where to start.If anybody can give me a head start point me to some good documentation/explanation out there Regarding this matter I would forever be in your debt ;) -- please CC me...I'm leaving this list in a minute Sent through Global Message Exchange - http://www.gmx.net -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null
Three networking questions
I've got a P-150 that is running Potato and kernel 2.2.10. It acts as a IP-Masquerading router, a Samba server, an NFS server, and serves other misc roles. I've been having some problems with it lately: 1. I get the message eth1: Something Wicked Happened! 2008 printed on the console. This also happens on another box I've got. Both have D-Link ethernet cards, and use the via-rhine module. I grepped the kernel source, and that message seems to indicate some type of status code that the driver doesn't recognize. Has anyone seen this message before and/or had it cause any adverse effects? 2. I can't open TCP connections to any host on the Internet when directly logged into the gateway box. Its uptime is around 27 days, and this has just recently began happening. Things work fine from the Debian and Win98 PCs I've got that use it as a gateway. I can ping hosts OK from the gateway, so the route information is OK. Any ideas here? 3. I use qmail as the mailer for the gateway box and the Debian box hooked up to it, and also store mail in my home directory in Maildir format. The workstation mounts its /home over NFS from the server, and folders load incredibly slowly with mutt. (15-20 seconds for around 1000 messages). Are there any performance tweaks for NFS and/or Maildir that anyone knows about? (Other than not to use them in combination :-)) Thanks for any info on the above problems. -- Stephen Pitts [EMAIL PROTECTED] webmaster - http://www.mschess.org
Linux/windows networking questions.
Ok, I'm at wits end here... 3 days and 5 ... yes FIVE installs of 98 later I've decided that I HATE windows... and would realy realy love to dump it. However, My school (Milligan, www.milligan.edu) uses a Microsoft Proxy Sever/Client v2.0 (MAJOR YUCK) on the schools network... and I can't figure out how to get linux to have Inet access. I've gotten to the point where I get a Ip address from the DHCP server ... but I still can't ping anything .. via Ip address's or hostnames ... I would REALY love to dump this crappy os... I just NEED the net access I don't know anything about networking ... and I know I'm shy on details here ... but I don't even know what details are needed Any help whatsoever would be GREATLY appreciated... TIA -Kevin Poorman.
Networking questions....
I have a desktop machine running Debian 1.2 and a Tecra with a 3c589 etherlink card. I'd like to know why I cannot just plug in and boot my laptop and expect the cards ethernet light to be on. The only way the ethernet gets setup right is when I've rebooted my desktop machine. Only then will the laptops ethernet be lit. With David Hinds's pcmcia_cs should I be able to unplug the etherlink and simply reinsert it and expect the ethernet light to be on? -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
