[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sheflug] Networking
--
On Mon, 29 Oct 2001 23:50:39 Barrie Bremner wrote:
>
>Sorry about this - I'm hopeless at explainly anything :-)
>
>>>>>> "Llewelyn" == richard davies <llewelyn.davies [at] eudoramail.com> writes:
>
> Llewelyn> Hi, First thank you for all the help you have already
> Llewelyn> given me on various problems and now for something new.
>
> Llewelyn> I am just experimenting with networking and have the
> Llewelyn> following set up
>
> Llewelyn> computer one Mandrake 7.2 mysystem.downstairs
>
> Llewelyn> computer two Mandrake 8.0 mysystem.upstairs
>
> Llewelyn> They are both set with hosts.allow = ALL: hosts.deny =
> Llewelyn> NONE
>
>Assuming you're just testing, /etc/hosts.allow should be
>
>ALL: ALL
Is currently
ALL: 127.0.0.1
ALL: 192.168.0
Which I assume is the loopback and everything on my private network.
>/etc/hosts.deny shouldn't make any difference, because hosts.allow is
>checked first, and you told the system to allow everyone, but it
>should be empty (comments are OK.)
It is empty.
> Llewelyn> I can ping from either box from downstairs I can telent,
> Llewelyn> ssh, ftp to upstairs with no problems. Going the other
> Llewelyn> way I get connection refused by remote host what
> Llewelyn> configuration files do I need to look in to sort this
> Llewelyn> out. I have read the networking howto and am still
> Llewelyn> confused.
>
>Connection refused _might_ not be anything to do with the access rights
>(hosts.allow/deny, packet filtering etc) - check if the servers are
>running on the machine that is causing the problems (the downstairs
>box).
>
>Are there any firewall rules on either boxen blocking connections?
>
>As root, try ipchains -L -n or iptables -L -n to check.
Nothing at all checked for existance of iptables / ipchains
[root@tollyboy richard]# locate ipchains
/home/richard/linux/include/linux/netfilter_ipv4/ipchains_core.h
/home/richard/linux/net/ipv4/netfilter/ipchains_core.c
/etc/aurora/default/icons/Applying ipchains firewall rules.xpm
that is all I got.
>SSH gives "secure connection to some.computer refused" if the network
>is down or there is no SSH server listening on the far end (or a
>firewall is blocking access).
>
>ps -aux | grep sshd
Nothing
>should give something like:
>
>[baz@flux baz]$ ps -aux | grep sshd
>root 667 0.0 0.3 2676 1272 ? S Oct28 0:02 /usr/sbin/sshd
>baz 870 0.0 0.1 1732 600 pts/5 S 23:31 0:00 grep sshd
>
>/usr/sbin/sshd is the SSH server on my machine.
>
>FTP and telnet are normally run from inetd or xinetd, have a look at
>/etc/inetd.conf or /etc/xinetd.d/ - check that inetd or xinetd is
>running (try ps -aux | grep inetd)
Nothing
>Uncomment the lines for the services you want to run in
>/etc/inetd.conf,
ftp stream tcp nowait root /usr/sbin/tcpd in.ftpd -l -a
telnet stream tcp nowait root /usr/sbin/tcpd in.telnetd
pop-3 stream tcp nowait root /usr/sbin/tcpd ipop3d
These are the only services apparently running.
or look at the config files in /etc/xinetd.d
This file doesn't appear to exist on my system
and
>check that the "disable =" bit is "disable = no" for services you want
>to run.
>(Re)start the service - there are scripts in /etc/init.d or
>/etc/rc.d/init.d/ (depends on your system) to do this:
>
>e.g.
>
>/etc/rc.d/init.d/xinetd start
>/etc/rc.d/init.d/xinetd restart
>/etc/rc.d/init.d/xinetd stop
These files do not appear to be here
/etc/rc.d/init.d/inet is the nearest to any of them
>Are you getting a prompt for a user's password, or does everything
>just come back connection refused?
Just comes back connection refused.
> Llewelyn> Also when the local network is up I am unable to
> Llewelyn> download my mail from the web I have to close it first
> Llewelyn> and then dial into the web. I presume that my network
> Llewelyn> configurating is preventing the system using resolv.conf
> Llewelyn> to find the nameservers. Why and what do I do about it?
>
>Not sure on this on - /etc/resolv.conf generally gets updated when
>you dialup, but IIRC the system shouldn't change it when an ethernet
>connection comes up - my boxen certainly don't.
/etc/resolv.conf looks just fine but unless I run /etc/rc.d/init.d/network stop before dialing into the net I can connect but can't go anywhere or get my mail. If I hang up bring the network down and then dial straight back in with no other changes the web works just fine.
>Usual check for nameserver problems:
>
>dial up
>have a look at /var/log/messages and
Oct 30 18:33:30 tollyboy pppd[1825]: pppd 2.4.0 started by richard, uid 501
Oct 30 18:33:30 tollyboy pppd[1825]: Using interface ppp0
Oct 30 18:33:30 tollyboy pppd[1825]: Connect: ppp0 <--> /dev/ttyS1
Oct 30 18:33:30 tollyboy pppd[1825]: Remote message: tollyboy: IP Address: 158.152.140.35 Running PPP on 194NL roaming issues.finger status [at] gOct 30 18:33:30 tollyboy kernel: PPP BSD Compression module registered
Oct 30 18:33:30 tollyboy kernel: PPP Deflate Compression module registered
Oct 30 18:33:31 tollyboy pppd[1825]: local IP address 158.152.140.35
Oct 30 18:33:31 tollyboy pppd[1825]: remote IP address 158.152.1.222
Oct 30 18:33:31 tollyboy pppd[1825]: primary DNS address 158.152.1.43
Oct 30 18:33:31 tollyboy pppd[1825]: secondary DNS address 158.152.1.58
Oct 30 18:40:00 tollyboy CROND[1850]: (root) CMD ( /sbin/rmmod -as)
There is about the last half hour of messages looks OK to me but I don't know a lot about it.
/etc/resolv.conf
domain localdomain #kppp temp entry
# # search localdomain #entry disabled by kppp
# search localdomain #entry disabled by kppp
# nameserver 158.152.1.58 # ppp temp entry
# nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58
nameserver 158.152.1.43
# ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 # ppp temp entry
nameserver 158.152.1.58 # ppp temp entry
nameserver 158.152.1.43 #kppp temp entry
nameserver 158.152.1.58 #kppp temp entry
>launch favourite web browser
>http://194.247.47.86/
Zetnet "Website not found"
>http://www.sheflug.co.uk/
Sheflug
>should be the same site. If http://194.247.47.86/ works, but
>http://www.sheflug.co.uk/ didn't, then something is wrong with DNS.
Something is screwed in the DNS
>If nothing worked, you've got more problems :-)
>
>Cheers.
Thanks Baz I don't know if it gets me any closer to a solution but hopefully it will work out.
>
>Baz.
>
>--
>Barrie J. Bremner OpenPGP public key ID: 5164F553
>baz [at] barriebremner.com http://barriebremner.com/
>
>
>___________________________________________________________________
>
>Sheffield Linux User's Group - http://www.sheflug.co.uk .
>To unsubscribe from this list send mail to
>shef-lug-request [at] list.sheflug.org.uk with the word
>"unsubscribe" in the body of the message.
>
> GNU the choice of a complete generation.
>
Join 18 million Eudora users by signing up for a free Eudora Web-Mail account at http://www.eudoramail.com
___________________________________________________________________
Sheffield Linux User's Group - http://www.sheflug.co.uk .
To unsubscribe from this list send mail to
shef-lug-request@list.sheflug.org.uk with the word
"unsubscribe" in the body of the message.
GNU the choice of a complete generation.