A little tip: I haven't exactly finished my work on doing the same for me + decent firewall running yet (more below) but from my experience so far:
For a more clear understanding of what is going on on your machine try to "verbose" your stages to yourself. Use xconsole (or tail -f on /var/log/ relevant files) ; insert "sleep"s and "echo"s into your scripts that will spill some info on where in the process you are. make sure to doble check the ifconfig output, /etc/resolve.conf , and routing table on the fly. see they are being changed as expected (AFAIK, /etc/resolve.conf sould be changed on the fly, I believe as soon as the NIC interface is being brought down and then up (in the script) ). In short - you have a sequential procedure here. Given you have enough info about the expected results, and this is my problematic area, BTW, the debugging should be more or less straight forward. Probably, you lack some information I suggest you try to better define so people here can be more helpful. I, for example, have very hard time getting a firewall script to run without killing, in a very strange way, the running pptp process, so connection is established nicely, but as soon as I put up the firewall, pptp gets cut off . good luck, Boaz R. ----- Original Message ----- From: "Eran Levy" <[EMAIL PROTECTED]> To: "Tzafrir Cohen" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Sunday, January 05, 2003 12:14 AM Subject: Re: Cables configuration > At 21:01 04/01/2003 +0200, you wrote: > >On Sat, 4 Jan 2003, Eran Levy wrote: > > > > > >You can or you can'tping the outside world? > > > > > > I cant ping the outside world. I can only ping my IP addresses > > > (212.something...and the 10.something addresses) > > > > > > >Can you ping an IP address? > > > > > > > >Try pinging your default gateway . Try 194.90.1.5 > > > > > > I can ping 194.90.1.5. > > > but I cant ping www.walla.co.il and their IP address. It doesnt even give > > > me a "Request timed out" answer. When I ping it gives Nothing. > > > >So what IP access exactly do you have? > > > >Maybe someone's blocking pings and traceroutes. I can't ping the walla > >site either. It seems teletel are blocking icmp packets. > > > >Can you telnet to their port 80? > > nope. I cant see the outside. I can ping 194.90.1.5 and my IPs only. I cant > see the outside. > > >Can you resolve DNS from their name server? > > No. Thats what I say. Thats the problem I cant resolve names. > What I have told was that when Im running route Im getting the routing > table after something like a minute and when Im running the netstat with > the -n option - means to not resolve names Im getting the routing tables in > a second. > I cant nslookup nothing. > > >-- > >Tzafrir Cohen > >mailto:[EMAIL PROTECTED] > >http://www.technion.ac.il/~tzafrir > > > ================================================================= > To unsubscribe, send mail to [EMAIL PROTECTED] with > the word "unsubscribe" in the message body, e.g., run the command > echo unsubscribe | mail [EMAIL PROTECTED] > ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
