[SLUG] Dial-in Server
Hi, I have setup a Linux box as a dial-in server. When I dial-in and connect from my windows machine I cannot view web pages or send/receive email. I can however connect to the machine using a SSH session so I know the connect is there and working. This must be something to do with the DNS settings. On the TCP/IP properties of the dial-in connection in Windows I have both the "Obtain an IP address automatically" and "Obtain DNS server address automatically". My question is do I have to set these values? Should I enter the same DNS IP addresses in the Windows settings as those in the resolv.conf file on the Linux box? Also should I be entering in an IP address in the "Use the following IP address" - which is what it masquerades as on the network, right? Can anyone help. Dan -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
Hi Dan,
AFAIK, you do need to specify your DNS server, whilst this is
automatically done under MS Windows.
This is done by having the line:
nameserver
in your /etc/resolv.conf
HTH...
Mike
---
Michael S. E. Kraus
Administration
Capital Holdings Group (NSW) Pty Ltd
[EMAIL PROTECTED]
phone (02) 9955 8000 fax (02) 9955 8144
"dan" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
27/02/2003 09:16 AM
To: <[EMAIL PROTECTED]>
cc:
Subject: [SLUG] Dial-in Server
Hi,
I have setup a Linux box as a dial-in server. When I dial-in and connect
from my windows machine I cannot view web pages or send/receive email. I
can however connect to the machine using a SSH session so I know the
connect
is there and working.
This must be something to do with the DNS settings. On the TCP/IP
properties of the dial-in connection in Windows I have both the "Obtain an
IP address automatically" and "Obtain DNS server address automatically".
My
question is do I have to set these values? Should I enter the same DNS IP
addresses in the Windows settings as those in the resolv.conf file on the
Linux box? Also should I be entering in an IP address in the "Use the
following IP address" - which is what it masquerades as on the network,
right?
Can anyone help.
Dan
--
SLUG - Sydney Linux User's Group - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
--
SLUG - Sydney Linux User's Group - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
Dan, If you are trying to browse webpages on the internet which your debian box is connected to, then you'll have to set up some sort of networking to allow your windows box to do that, either ip masqerading, or proxying. If you just want to send email via your debian box, or view webpages on it, and you can't do that, then you have another problem, and we'll need more info. Is your setup like this: (correct it & add IP addresses) _ / \ ( INTERNET ) \_/ | | a.b.c.d Debian Box modem | | Telephone System | | modem Windows Box cheers, Woody On Thu, 2003-02-27 at 09:24, [EMAIL PROTECTED] wrote: > Hi Dan, > > AFAIK, you do need to specify your DNS server, whilst this is > automatically done under MS Windows. > > This is done by having the line: > > nameserver > > in your /etc/resolv.conf > > HTH... > > Mike > --- > Michael S. E. Kraus > Administration > Capital Holdings Group (NSW) Pty Ltd > [EMAIL PROTECTED] > phone (02) 9955 8000 fax (02) 9955 8144 > > > > > "dan" <[EMAIL PROTECTED]> > Sent by: [EMAIL PROTECTED] > 27/02/2003 09:16 AM > > > To: <[EMAIL PROTECTED]> > cc: > Subject:[SLUG] Dial-in Server > > > Hi, > > I have setup a Linux box as a dial-in server. When I dial-in and connect > from my windows machine I cannot view web pages or send/receive email. I > can however connect to the machine using a SSH session so I know the > connect > is there and working. > > This must be something to do with the DNS settings. On the TCP/IP > properties of the dial-in connection in Windows I have both the "Obtain an > IP address automatically" and "Obtain DNS server address automatically". > My > question is do I have to set these values? Should I enter the same DNS IP > addresses in the Windows settings as those in the resolv.conf file on the > Linux box? Also should I be entering in an IP address in the "Use the > following IP address" - which is what it masquerades as on the network, > right? > > Can anyone help. > > Dan > > -- > SLUG - Sydney Linux User's Group - http://slug.org.au/ > More Info: http://lists.slug.org.au/listinfo/slug -- Anthony Wood <[EMAIL PROTECTED]> Switch Online Group -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
You have a couple of things to look at.. 1) (most fundamental) do you have ip forwarding enabled on the dialin server? if you don't have IP forwarding enabled you're not going to have any packets going out past the dialin server (which might explain you being able to get to the server itself, but not get past it..) (echo 1 > /proc/sys/net/ipv4/ip_forward - your distro probably has a setting in an rc file somewhere to have this enabled on boot..- in debian it's /etc/network/options) 2) You mention masquerading - when you dial in, are you getting a real IP address, or are you getting a private IP, and then needing ipmasq to get out to internet? If you're needing ipmasq, you will probably need to put something in your ip-up script to add the ipmasq rules for the ppp interface when it comes up..? 3) re DNS.. in your /etc/ppp/options, you'll have some ms-dns lines - put your DNS server ip's into these, and they'll be supplied to your dialled-in windows box on connect.. (This is your local dns server IP if you run one, otherwise your upstreams.. Just some thoughts to check :) Cheers, Damien -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
Hi, Yes that is the exact setup. I already have the dial-in server setup on the Linux box of which I can already dial in too. So the problem is how requests for web-pages are handled from the Windows box via the Linux box. I do not have a firewall setup on the actual Linux box but I know the ISP I am using does have a firewall. So would I have to set up the IP masquerading to make it look like requests coming from the Windows box are actually coming from the Linux box? If this is correct then I am still unsure where this is going wrong - could it be that I have not set the options in the /ppp/options.ttys0 file? Dan - Original Message - From: "Anthony Wood" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Cc: "dan" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, February 27, 2003 10:01 AM Subject: Re: [SLUG] Dial-in Server > Dan, > > If you are trying to browse webpages on the internet which your debian > box is connected to, then you'll have to set up some sort of networking > to allow your windows box to do that, either ip masqerading, or > proxying. > > If you just want to send email via your debian box, or view webpages > on it, and you can't do that, then you have another problem, and we'll > need more info. > > Is your setup like this: (correct it & add IP addresses) > > _ > / \ > ( INTERNET ) > \_/ > | > | >a.b.c.d > Debian Box > modem > | > | >Telephone System > | > | > modem >Windows Box > > cheers, > Woody > > > > On Thu, 2003-02-27 at 09:24, [EMAIL PROTECTED] wrote: > > Hi Dan, > > > > AFAIK, you do need to specify your DNS server, whilst this is > > automatically done under MS Windows. > > > > This is done by having the line: > > > > nameserver > > > > in your /etc/resolv.conf > > > > HTH... > > > > Mike > > --- > > Michael S. E. Kraus > > Administration > > Capital Holdings Group (NSW) Pty Ltd > > [EMAIL PROTECTED] > > phone (02) 9955 8000 fax (02) 9955 8144 > > > > > > > > > > "dan" <[EMAIL PROTECTED]> > > Sent by: [EMAIL PROTECTED] > > 27/02/2003 09:16 AM > > > > > > To: <[EMAIL PROTECTED]> > > cc: > > Subject:[SLUG] Dial-in Server > > > > > > Hi, > > > > I have setup a Linux box as a dial-in server. When I dial-in and connect > > from my windows machine I cannot view web pages or send/receive email. I > > can however connect to the machine using a SSH session so I know the > > connect > > is there and working. > > > > This must be something to do with the DNS settings. On the TCP/IP > > properties of the dial-in connection in Windows I have both the "Obtain an > > IP address automatically" and "Obtain DNS server address automatically". > > My > > question is do I have to set these values? Should I enter the same DNS IP > > addresses in the Windows settings as those in the resolv.conf file on the > > Linux box? Also should I be entering in an IP address in the "Use the > > following IP address" - which is what it masquerades as on the network, > > right? > > > > Can anyone help. > > > > Dan > > > > -- > > SLUG - Sydney Linux User's Group - http://slug.org.au/ > > More Info: http://lists.slug.org.au/listinfo/slug > -- > Anthony Wood <[EMAIL PROTECTED]> > Switch Online Group > > -- > SLUG - Sydney Linux User's Group - http://slug.org.au/ > More Info: http://lists.slug.org.au/listinfo/slug > -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
On Thu, 2003-02-27 at 10:30, dan wrote: > Hi, > > Yes that is the exact setup. I already have the dial-in server setup on the > Linux box of which I can already dial in too. > > So the problem is how requests for web-pages are handled from the Windows > box via the Linux box. > > I do not have a firewall setup on the actual Linux box but I know the ISP I > am using does have a firewall. So would I have to set up the IP You probably should have a firewall :-) > masquerading to make it look like requests coming from the Windows box are > actually coming from the Linux box? If this is correct then I am still > unsure where this is going wrong - could it be that I have not set the > options in the /ppp/options.ttys0 file? It sounds like you just need to set up ip masquerading. http://www.tldp.org/HOWTO/IP-Masquerade-HOWTO/ for debian, I think you just apt-get install ipmasq and hook it into your startup, or put an empty file ppp in /etc/ipmasq/ to make it start when you connect. (from apt-cache show ipmasq) IP Masquerade requires the kernel to be compiled with CONFIG_FIREWALL, CONFIG_IP_FIREWALL, CONFIG_IP_FORWARD, and CONFIG_IP_MASQUERADE. If you like, you can read some of the Linux Network Administrators Guide too, which gives you a good grounding in most common networking. http://www.tldp.org/guides.html cheers, Woody > > Dan > > - Original Message - > From: "Anthony Wood" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Cc: "dan" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Thursday, February 27, 2003 10:01 AM > Subject: Re: [SLUG] Dial-in Server > > > > Dan, > > > > If you are trying to browse webpages on the internet which your debian > > box is connected to, then you'll have to set up some sort of networking > > to allow your windows box to do that, either ip masqerading, or > > proxying. > > > > If you just want to send email via your debian box, or view webpages > > on it, and you can't do that, then you have another problem, and we'll > > need more info. > > > > Is your setup like this: (correct it & add IP addresses) > > > > _ > > / \ > > ( INTERNET ) > > \_/ > > | > > | > >a.b.c.d > > Debian Box > > modem > > | > > | > >Telephone System > > | > > | > > modem > >Windows Box > > > > cheers, > > Woody > > > > > > > > On Thu, 2003-02-27 at 09:24, [EMAIL PROTECTED] wrote: > > > Hi Dan, > > > > > > AFAIK, you do need to specify your DNS server, whilst this is > > > automatically done under MS Windows. > > > > > > This is done by having the line: > > > > > > nameserver > > > > > > in your /etc/resolv.conf > > > > > > HTH... > > > > > > Mike > > > --- > > > Michael S. E. Kraus > > > Administration > > > Capital Holdings Group (NSW) Pty Ltd > > > [EMAIL PROTECTED] > > > phone (02) 9955 8000 fax (02) 9955 8144 > > > > > > > > > > > > > > > "dan" <[EMAIL PROTECTED]> > > > Sent by: [EMAIL PROTECTED] > > > 27/02/2003 09:16 AM > > > > > > > > > To: <[EMAIL PROTECTED]> > > > cc: > > > Subject:[SLUG] Dial-in Server > > > > > > > > > Hi, > > > > > > I have setup a Linux box as a dial-in server. When I dial-in and > connect > > > from my windows machine I cannot view web pages or send/receive email. > I > > > can however connect to the machine using a SSH session so I know the > > > connect > > > is there and working. > > > > > > This must be something to do with the DNS settings. On the TCP/IP > > > properties of the dial-in connection in Windows I have both the "Obtain > an > > > IP address automatically" and "Obtain DNS server address automatically". > > > My > > > question is do I have to set these values? Should I enter the same DNS > IP > > > addresses in the Windows settings as those in the resolv.conf file on > the > > > Linux box? Also should I be entering in an IP address in the "Use the > > > following IP address" - which is what it masquerades as on the network, > > > right? > > > > > > Can anyone help. > > > > > > Dan > > > > > > -- > > > SLUG - Sydney Linux User's Group - http://slug.org.au/ > > > More Info: http://lists.slug.org.au/listinfo/slug > > -- > > Anthony Wood <[EMAIL PROTECTED]> > > Switch Online Group > > > > -- > > SLUG - Sydney Linux User's Group - http://slug.org.au/ > > More Info: http://lists.slug.org.au/listinfo/slug > > -- Anthony Wood <[EMAIL PROTECTED]> Switch Online Group -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
Re: [SLUG] Dial-in Server
-BEGIN PGP SIGNED MESSAGE- On Thursday 27 Feb 2003 10:39 am, Anthony Wood wrote: > You probably should have a firewall :-) ...and most of them have support for IP masquerading, including Shorewall, which would solve his other problem. Of course, using Squid as a web proxy would also help.. :-) - -- Chris Samuel : http://csamuel.org/ : Wollongong, NSW -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iQEVAwUBPl1zso1yjaOTJg85AQHlJggAo2LsQ0+l5qxjuLHK0vHEcG3Mw0soVyuA WtshwefREsARjjHksGfUWjoaQ2k35Tv2jeumeI8owICCg1oAXc2KZq6B/B2PYnlP wAjkc4G48ttS1o42I6WJV3Gx1wIvOGBDx3qbZ5/4oLsPbqhLM2aGyQP0mRj1PF+r UH/0TYXyW4HVWrlBZx+u64TUBVsZoc5LF2NsscgSrlTyZYWkJbKerBhYBCYeNwwd qp/dt6ya2YH6/7PngHPk62+M+LPn0ND1mchMpSAwY7SYwzCg6t/PAATdyOKHGA6a lzRGeBXgw4BgiAMQzyaOCcydt4BUAvmCDMN0mW2IO8OqFimarReYoA== =VLEI -END PGP SIGNATURE- -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
