PPP dial-up server w/ multiple eth adapters: "operation not permitted"
Hi there, I have a strange problem getting a PPP dial-up working. The machine is running Debian 2.1 and kernel 2.2.13. I use mgetty which properly transfers the call to pppd. The clients gets its correct IP address, but it can't ping the p-t-p address, nor can I ping the client from the server. If I try to do so I get a "operation not permitted." It seems that pppd on the server is confused which ip address to assign to the ppp0 interface. The machine has two network interfaces, eth0 which connects it to the rest of the world, and eth1 which connects it to a LAN. Since the dial-in machine is being assigned an internal (LAN) address I need proxy-arp. However due to my understanding this can't work if the ppp0 interface on the server is being assigned the external if address instead of the internal one. Let me try to draw a simple map of the setup: ___ _/ \___ / \internet |_/ \__/ | | O eth0 with external IP +---+ M---| |router w/ modem attached +---+ O eth1 w/ internal IP | | +---+---+---+---+---+ | | | | | | +-+ +-+ +-+ +-+ +-+ +-+ | | | | | | | | | | | | LAN machines +-+ +-+ +-+ +-+ +-+ +-+ The router's eth1 interface as well as all the LAN machines have official ip addresses from out of the same class C network. The router's eth0 interface is the router's default gateway. Questions: 1) Do I need to assign the ppp0 interface a unique IP address? Or can I leave the default address that pppd assigns (namely the address of the external(!) if eth0)? How do I force pppd to assign a specified ip address? Entering an address into options.modem (for serial line /dev/modem) does NOT work for me. 2) What about proxy arp. I had the "proxyarp" entry in "options" but it wouldn't work this way, so I tried to manually set up a proxy arp entry that connects the client's IP to the router's eth1(!) MAC/ethernet address. But this didn't ehlp either. :-( Any other gotchas I should watch for? Thanks, Ralf, Andreas -- Dipl.-Ing. Andreas Abach * Lehrstuhl fuer Kunststofftechnik Uni Erlangen Tel.: +49-9131-85297-06 * Fax.: -09 * email: [EMAIL PROTECTED] Am Weichselgarten 9 * D-91058 Erlangen * www.keramikspritzgiessen.de PGPID 0x5672B1F8 F-Print FD50 85C0 7580 5467 65E7 3BE8 58BC 65F4 5672 B1F8
Re: PPP dial-up server w/ multiple eth adapters: "operation not permitted"
On Tue, 23 May 2000, Andreas Abach wrote: > Hi there, > > I have a strange problem getting a PPP dial-up working. > > The machine is running Debian 2.1 and kernel 2.2.13. > > I use mgetty which properly transfers the call to pppd. The clients > gets its > correct IP address, but it can't ping the p-t-p address, nor can I ping > the > client from the server. If I try to do so I get a "operation not > permitted." I think u need to check ipchains permissions. See ppp.up ppp.down.. - Kasparavicius Andrius http://www.andrius.org ICQ:17701001 tel.: +370 87 25630 nick: Casper AK2858-RIPE
Re: Mass install / Autoinstall (Was: Re: Debian vs Red Hat??? I need info.)
Hello All There is definitately some scope for development in this area. Debian is one of the best distro's to maintain but it is one of the worst to install. These advantages and disadvantages are multiplied when you have many machines to maintain. On 17 May 00, at 21:55, Karl M. Hegbloom wrote: > You can make a copy of the system like this... it will create a > `cpio' archive... substitute `ustar' for `crc' to make a `tar' > compatible archive. RTFM's... you're on your own. > > 8<>8 > #!/bin/bash > find / -print0 | > grep --invert-match --extended-regexp --null-data > --file=/root/make-tarball.exclude-patterns | > cpio --create --format=crc --null --reset-access-time --block-size=10 | > gzip --best > /tmp/system-snapshot_$(date +%Y.%m.%d).cpio.crc.gz > 8<>8 I tried this to create a custom "base2_2.tzg" with reasonable results. First problem is that we need a tar file and not a cpio one. Cpio's "tar" format does not support block devices so the whole /dev/ directory gets broken. Then I tried "ustar". This worked better but still has some limitation on file name length. A few files in /var/state/apt/lists/* were too long - not a major trainsmash. I wasted a few hours trying "tar" instead of cpio. It seems not to be able to backup a directory, without backing up the contents of that directory, this is a problem with things like /var/cache/apt/archives. Maybe a real find/grep/tar guru could get it right but I went back to Karl's script :-) I still have some bugs. After the base install lilo would not run (something broken with vmlinuz softlink). Then when the new system is rebooted it went into a loop asking about shadow passwords etc. I eventually replaced the /etc/inittab. Bug squashing is a slow process ... a full test cycle requires a backup and a new installation. This seems a viable method of setting up a mass install system. After I got things going I used Midnight Commander to do some global searches and replaces in /etc to sort out things like domain names and ppp accounts etc and then I had a system ready to run with exim, squid, dns ,ppp, diald, mgetty, calamaris, dhcp, apache, ftp, ipchains, samba, uucp, fetchmail etc all working! Best of all it is a fully compliant Debian system, so apt-get update| apt-get upgrade also works! Next step may be to modify the dinstall program. Question: Is'nt there a deb package with scripts for creating boot disks? I feel I should not be reinventing the wheel. Another question: Which list should we be discussing this? Karl's original messages was sent to a whole bunch of lists? My modified scripts are as follows (mind the line wrapping): #! /bin/bash find / -print0 | grep --invert-match --extended-regexp --null-data -- file=/root/config/exclude-pattern | cpio --create --format=ustar --null --reset-access-time --block- size=10 | gzip --best > /tmp/base2_2-$(date +%Y.%m.%d).tgz ^/proc/.* ^/tmp/.* /lost+found ^/boot/lost+found ^/var/cache/apache/.* ^/var/cache/apt/.*\.deb ^/var/log/.*\.log ^/var/log/\(amanda\|apache\|gdm\|ksymoops\|mailman\|news\|sendfil e\|wu-ftpd\)/.* ^/var/log/\(syslog\|smb\|nmb\|messages\|mail\|lpr\|debug\|dmesg\).* ^/var/lock/.* ^/var/run/.*\.pid ^/var/run/\(ndc\|utmp\) ^/var/samba/.* ^/var/spool/squid/.*/.*/.* \.bash_history \.gnome-errors .*~ /\.saves-.* /\.#.* /\.netscape/cache/.* ^/etc/modules ^/etc/hostname ^/etc/hosts ^/etc/networks ^/etc/resolv.conf ^/etc/modutils/ ^/etc/apm/event.d/pcmcia ^/etc/init.d/pcmcia ^/etc/pcmcia/ ^/etc/network/interfaces ^/tmp/ Ian Forbes - Ian Forbes ZSD http://www.zsd.co.za Office: +27 +21 683-1388 Fax: +27 +21 64-1106 Snail Mail: P.O. Box 46827, Glosderry, 7702, South Africa -
Re: PPP dial-up server w/ multiple eth adapters: "operation not permitted"
On Tue, 23 May 2000 09:12:04 -0200 (GMT+2), Kasparavicius Andrius wrote: [...] >> I use mgetty which properly transfers the call to pppd. The clients >> gets its >> correct IP address, but it can't ping the p-t-p address, nor can I ping >> the >> client from the server. If I try to do so I get a "operation not >> permitted." > > I think u need to check ipchains permissions. See ppp.up ppp.down.. I guess you mean ip-up (ip-up.d/*) resp. ip-down (ip-down.d/*)? Thanks for suggesting this, but I don't think this is the reason. There aren't any rules that pertain to ppp0. Also, the client machine that dials in gets an IP address from out of the LAN. The LAN machines have unrestricted access to each other and thru the internal interfaces of the router. -- Sign the EU petition against SPAM: L I N U X .~. http://www.politik-digital.de/spam/The Choice /V\ of a GNU /( )\ Generation ^^-^^
Re: where to find web browser statistics information?
On Mon, 22 May 2000, Chris Wagner wrote: > >to yanks, socialism is an evil, dirty word - roughly equivalent > >to satanism. but we understand why you're like that...you've been > >brainwashed with anti-socialist bullshit since you were small children. > > Hahah, Satanism, that was a good one. :) But I still prefer individualism ^^ > to socialism. m.b. you missed, did you mean onanism? Best wishes, Sergey.
Re: where to find web browser statistics information?
On Tue, 23 May 2000, Sergey A. Ribalchenko wrote: > > On Mon, 22 May 2000, Chris Wagner wrote: > > > >to yanks, socialism is an evil, dirty word - roughly equivalent > > >to satanism. but we understand why you're like that...you've been > > >brainwashed with anti-socialist bullshit since you were small children. > > > > Hahah, Satanism, that was a good one. :) But I still prefer individualism >^^ > > to socialism. > > m.b. you missed, did you mean onanism? > > > Best wishes, > Sergey. > Naah, lets have technocraty, with all us Unix people in the leading role, and all M$ people as our servants.. :) (just couldnt resist) /Roger
Re: where to find web browser statistics information?
>>before you bother replying, go do some research on the subject matter. >>i'll just ignore anything which reeks of typical american ignorance. > >Research... I didn't pull this out of thin air you know. I was watching a >program about Australia and it was describing some of their "programs" and I >generally found it to be disturbing. Before that I kind of thought of >Australia as a semi-idyllic place. Unlike here. This country is utterly >screwed up and ass-backwards. And people wonder why the Roman Empire fell... ROFL. I did research, I watched a TV show! Could you indict America any further? As for Australia being a semi-idyllic place, no place is. I have decided not to live permanently in Australia again because I get the impression that smart people aren't wanted (unless they are earning lots of money and can be taxed at a rate of 50% to pay for social security for dole bludgers who are too lazy to work). I now live in the Netherlands where smart people are generally liked, the pay is good, the tax is low, things are generally better here. I am trying to convince all smart Australians I know to join me here in Amsterdam. As for the Roman Empire. I believe that we are coming to a time of change. I think that a number of currently first-world countries will fall in the next few decades. Large parts of America will go down, but I think that some states will evolve into seperate countries which remain in first-world conditions. Russell Coker PS Perhaps we should take this discussion to a different list like LUV-TALK.
au vs. us
**(If anyone *really* must reply to this, snip debian-isp)** Craig sent me a quite funny diatribe. Seems he thinks I'm a "stupid American". At 10:07 PM 5/23/00 +0200, Russell Coker wrote: >ROFL. I did research, I watched a TV show! Could you indict America any >further? Despite the generally vapid nature of American TV, there are good informative shows to watch if you know where to look. >As for Australia being a semi-idyllic place, no place is. I have decided not That's why I said semi. >to live permanently in Australia again because I get the impression that >smart people aren't wanted (unless they are earning lots of money and can be >taxed at a rate of 50% to pay for social security for dole bludgers who are >too lazy to work). Thank you. >As for the Roman Empire. I believe that we are coming to a time of change. >I think that a number of currently first-world countries will fall in the >next few decades. Large parts of America will go down, but I think that some >states will evolve into seperate countries which remain in first-world >conditions. I don't know, the US is on an economic tear right now with no stopping it in sight. Civilazations fall when the quality of their citizenry declines. That is currently happening here. That happened to Rome, it fell. To barbarians. So, who is it that topples the American Empire? :) +---+ |-=I T ' S P R I N C I P L E T H A T C O U N T S=- | |=- -=ALAN KEYES FOR PRESIDENT=- -=| | Balanced Budgets Personal Freedoms Morality Lower Tax | |=-- http://www.Keyes2000.com. --=| ++
Re: where to find web browser statistics information?
At 12:35 PM 5/23/00 +, Sergey A. Ribalchenko wrote: >> Hahah, Satanism, that was a good one. :) But I still prefer individualism >> to socialism.^^ >m.b. you missed, did you mean onanism? Ok, I don't really know what you mean? +---+ |-=I T ' S P R I N C I P L E T H A T C O U N T S=- | |=- -=ALAN KEYES FOR PRESIDENT=- -=| | Balanced Budgets Personal Freedoms Morality Lower Tax | |=-- http://www.Keyes2000.com. --=| ++
Re: PPP dial-up server w/
Each tty has an options file. The server side and client side ips are assigned in there. +---+ |-=I T ' S P R I N C I P L E T H A T C O U N T S=- | |=- -=ALAN KEYES FOR PRESIDENT=- -=| | Balanced Budgets Personal Freedoms Morality Lower Tax | |=-- http://www.Keyes2000.com. --=| ++
Re: Mass install / Autoinstall (
At 11:17 AM 5/23/00 +0200, I. Forbes wrote: >Question: Is'nt there a deb package with scripts for creating boot >disks? I feel I should not be reinventing the wheel. There is, but I can't remember the name. :) +---+ |-=I T ' S P R I N C I P L E T H A T C O U N T S=- | |=- -=ALAN KEYES FOR PRESIDENT=- -=| | Balanced Budgets Personal Freedoms Morality Lower Tax | |=-- http://www.Keyes2000.com. --=| ++
