Date: Mon, 23 Jul 2001 12:47:59 -0400 From: "alexus" <ml@db.nexgen.com> To: <jeff@tht.net>, "Forrest W. Christian" <forrestc@imach.com> Cc: "Bob Martin" <bob@buckhorn.net>, <freebsd-isp@FreeBSD.ORG> Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC Message-ID: <004001c11397$3b618200$0d00a8c0@alexus> References: <20010723115334.A300-100000@asbestos.wolf>
next in thread | previous in thread | raw e-mail | index | archive | help
uh.. if you'll read our "mumbo" or at least search it you won't find NAT word in it.. what we trying to discuss is adding additional IPs address as an alias to existing ethernet interface... and for some reason it doesn't work properly i'm having problem to irc with 2nd ip alexus@~# ifconfig fxp0 fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500 inet 66.92.98.145 netmask 0xffffff00 broadcast 66.92.98.255 inet 66.92.98.151 netmask 0xffffffff broadcast 66.92.98.255 ether 00:60:94:a5:cb:44 media: autoselect (100baseTX <full-duplex>) status: active supported media: autoselect 100baseTX <full-duplex> 100baseTX 10baseT/UTP <full-duplex> 10baseT/UTP alexus@~# ----- Original Message ----- From: <jeff@tht.net> To: "Forrest W. Christian" <forrestc@imach.com> Cc: "alexus" <ml@db.nexgen.com>; "Bob Martin" <bob@buckhorn.net>; <freebsd-isp@FreeBSD.ORG> Sent: Monday, July 23, 2001 10:56 AM Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC Hi, Ok, i'm not sure i understand the entire shceme, but from the mumbo below, i assume that one machine is behind a natd firewall ? that means that when you try to connect from the inner machine the irc server is trying to get inetd info from your firewall. your firewall doesn't pass this request on. so what you want to do is install an inetd that will basically respond to anything i use "lie inetd" or - linetd . it cured this problem for me. jeff On Mon, 23 Jul 2001, Forrest W. Christian wrote: > Try a different irc server, or try a different ident server (like the > warm-fuzzy perl script I gave you). > > On Mon, 23 Jul 2001, alexus wrote: > > > Date: Mon, 23 Jul 2001 01:47:32 -0400 > > From: alexus <ml@db.nexgen.com> > > To: Forrest W. Christian <forrestc@imach.com> > > Cc: Bob Martin <bob@buckhorn.net>, freebsd-isp@FreeBSD.ORG > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > well ... let's see > > > > ωνω Connecting to port 6667 of server irc.lightning.net [refnum 0] > > [lightning] *** Looking up your hostname... > > [lightning] *** Found your hostname, cached > > [lightning] *** Checking Ident > > [lightning] *** Banned: Install Identd for access (2001/4/18 09.20) > > ωνω Closing Link: a1exus[alexus@255.255.255.255] (Banned) > > ωνω Connection closed from irc.lightning.net: Undefined error: 0 > > > > ----- Original Message ----- > > From: "Forrest W. Christian" <forrestc@imach.com> > > To: "alexus" <ml@db.nexgen.com> > > Cc: "Bob Martin" <bob@buckhorn.net>; <freebsd-isp@FreeBSD.ORG> > > Sent: Monday, July 23, 2001 1:33 AM > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > What errors are you seeing on the IRC server? > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > Date: Mon, 23 Jul 2001 01:33:45 -0400 > > > > From: alexus <ml@db.nexgen.com> > > > > To: Forrest W. Christian <forrestc@imach.com> > > > > Cc: Bob Martin <bob@buckhorn.net>, freebsd-isp@FreeBSD.ORG > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > su-2.05# ifconfig fxp0 > > > > fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu > > 1500 > > > > inet 66.92.98.145 netmask 0xffffff00 broadcast 66.92.98.255 > > > > inet 66.92.98.151 netmask 0xffffffff broadcast 66.92.98.255 > > > > ether 00:60:94:a5:cb:44 > > > > media: autoselect (100baseTX <full-duplex>) status: active > > > > supported media: autoselect 100baseTX <full-duplex> 100baseTX > > > > 10baseT/UTP <full-duplex> 10baseT/UTP > > > > su-2.05# > > > > > > > > i even changed my broadcast .. same *ahem* thing... > > > > > > > > ----- Original Message ----- > > > > From: "Forrest W. Christian" <forrestc@imach.com> > > > > To: "alexus" <ml@db.nexgen.com> > > > > Cc: "Bob Martin" <bob@buckhorn.net>; <freebsd-isp@FreeBSD.ORG> > > > > Sent: Monday, July 23, 2001 1:22 AM > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > No. Something else OTHER than ident is broken. > > > > > > > > > > Ident is working as designed. > > > > > > > > > > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > > > > > Date: Mon, 23 Jul 2001 01:16:30 -0400 > > > > > > From: alexus <ml@db.nexgen.com> > > > > > > To: Forrest W. Christian <forrestc@imach.com> > > > > > > Cc: Bob Martin <bob@buckhorn.net>, freebsd-isp@FreeBSD.ORG > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > could that be due to > > > > > > > > > > > > i have different broadcast? > > > > > > > > > > > > what broadcast do anyway? what is it for > > > > > > > > > > > > ----- Original Message ----- > > > > > > From: "Forrest W. Christian" <forrestc@imach.com> > > > > > > To: "alexus" <alexus@usa.com> > > > > > > Cc: "Bob Martin" <bob@buckhorn.net>; <freebsd-isp@FreeBSD.ORG> > > > > > > Sent: Monday, July 23, 2001 12:56 AM > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > > > > Ident appears to be working on your box on both ports: > > > > > > > > > > > > > > -------------------TEST OUTPUT BEGIN > > > > > > > mail# telnet 66.92.98.151 ident > > > > > > > Trying 66.92.98.151... > > > > > > > Connected to bigballz.com. > > > > > > > Escape character is '^]'. > > > > > > > ^] > > > > > > > telnet> z > > > > > > > > > > > > > > Suspended > > > > > > > mail# netstat -an | grep 66.92 > > > > > > > tcp4 0 0 206.127.64.140.4188 66.92.98.151.113 > > > > > > > ESTABLISHED > > > > > > > mail# fg > > > > > > > telnet 66.92.98.151 ident > > > > > > > 113,4183 > > > > > > > 113 , 4183 : USERID : UNKNOWN : root > > > > > > > Connection closed by foreign host. > > > > > > > ------------------TEST OUTPUT END > > > > > > > > > > > > > > ------------------TEST OUTPUT BEGIN > > > > > > > mail# telnet 66.92.98.145 ident > > > > > > > Trying 66.92.98.145... > > > > > > > Connected to oXyeTb.com. > > > > > > > Escape character is '^]'. > > > > > > > ^] > > > > > > > telnet> z > > > > > > > > > > > > > > Suspended > > > > > > > mail# netstat -an | grep 66.92 > > > > > > > tcp4 0 0 206.127.64.140.4242 66.92.98.145.113 > > > > > > > ESTABLISHED > > > > > > > mail# fg > > > > > > > telnet 66.92.98.145 ident > > > > > > > 113,4242 > > > > > > > 113 , 4242 : USERID : UNKNOWN : root > > > > > > > Connection closed by foreign host. > > > > > > > ------------------TEST OUTPUT END > > > > > > > > > > > > > > I'd look elsewhere, however: > > > > > > > > > > > > > > Have you considered running a "warm-fuzzy" ident? It lets a lot > > less > > > > > > > information out about your system. > > > > > > > > > > > > > > Use this perl script: > > > > > > > > > > > > > > -------- CUT ----------- > > > > > > > #!/usr/local/bin/perl > > > > > > > ($a, $b) = split(/[,\n\r ]+/,<>); > > > > > > > print "$a , $b : USERID : UNIX : Warm-Fuzzy\r\n"; > > > > > > > -------- CUT ----------- > > > > > > > > > > > > > > And reference it from your inetd.conf instead of the ident code. > > > > > > > > > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > > > > > > > > > Date: Mon, 23 Jul 2001 00:46:41 -0400 > > > > > > > > From: alexus <alexus@usa.com> > > > > > > > > To: Bob Martin <bob@buckhorn.net> > > > > > > > > Cc: freebsd-isp@FreeBSD.ORG > > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > su-2.05# sysctl net.inet.ip.forwarding > > > > > > > > net.inet.ip.forwarding: 1 > > > > > > > > su-2.05# ifconfig fxp0 > > > > > > > > fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> > > mtu > > > > > > 1500 > > > > > > > > inet 66.92.98.145 netmask 0xffffff00 broadcast > > 66.92.98.255 > > > > > > > > inet 66.92.98.151 netmask 0xffffffff broadcast > > 66.92.98.151 > > > > > > > > ether 00:60:94:a5:cb:44 > > > > > > > > media: autoselect (100baseTX <full-duplex>) status: > > active > > > > > > > > supported media: autoselect 100baseTX <full-duplex> > > > > 100baseTX > > > > > > > > 10baseT/UTP <full-duplex> 10baseT/UTP > > > > > > > > su-2.05# > > > > > > > > > > > > > > > > i've tryed to change netmask of second ip to .255 instead of .0 > > but > > > > it > > > > > > > > doesn't seems to help:( > > > > > > > > > > > > > > > > and i also checked my forwarding settings, it was already set to > > 1 > > > > > > > > > > > > > > > > ----- Original Message ----- > > > > > > > > From: "Bob Martin" <bob@buckhorn.net> > > > > > > > > To: "alexus" <alexus@usa.com> > > > > > > > > Sent: Sunday, July 22, 2001 5:42 PM > > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > > > > > > > > > > alexus wrote: > > > > > > > > > > > > > > > > > > > > Hi > > > > > > > > > > > > > > > > > > > > I have 2 IPs on my box > > > > > > > > > > > > > > > > > > > > 66.92.98.145 ( oXyeTb.com ) and 66.92.98.151 ( > > bigballz.com ) > > > > > > > > > > > > > > > > > > > > I put both of those IPs into my /etc/rc.conf file > > > > > > > > > > > > > > > > > > > > alexus@~# grep fxp0 /etc/rc.conf > > > > > > > > > > ifconfig_fxp0="inet 66.92.98.145 netmask 255.255.255.0" > > > > > > > > > > ifconfig_fxp0_alias0="inet 66.92.98.151 netmask > > 255.255.255.0" > > > > > > > > > > alexus@~# ifconfig fxp0 > > > > > > > > > > fxp0: > > flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> > > > > mtu > > > > > > > > 1500 > > > > > > > > > > inet 66.92.98.145 netmask 0xffffff00 broadcast > > > > 66.92.98.255 > > > > > > > > > > inet 66.92.98.151 netmask 0xffffff00 broadcast > > > > 66.92.98.255 > > > > > > > > > > ether 00:60:94:a5:cb:44 > > > > > > > > > > media: autoselect (100baseTX <full-duplex>) status: > > > > active > > > > > > > > > > supported media: autoselect 100baseTX <full-duplex> > > > > > > 100baseTX > > > > > > > > > > 10baseT/UTP <full-duplex> 10baseT/UTP > > > > > > > > > > alexus@~# > > > > > > > > > > > > > > > > > > > > so looks like they up and running fine > > > > > > > > > > > > > > > > > > > > although I'm having one problem (at least so far) > > > > > > > > > > > > > > > > > > > > whenever I'm trying to IRC from my box from my primary IP > > .145 ( > > > > > > > > > > oXyeTb.com ) everything seems to be in order > > > > > > > > > > whenever I'm trying to use my second IP .151 ( > > bigballz.com ) I > > > > > > can't > > > > > > > > get on > > > > > > > > > > IRC at all.. some of IRC server tells me that my ident isn't > > > > > > installed > > > > > > > > even > > > > > > > > > > though it *is* installed and I'm being able to logon to same > > > > server > > > > > > from > > > > > > > > my > > > > > > > > > > first IP just fine > > > > > > > > > > > > > > > > > > > > here is prove that i *do* have ident (port 113) running > > > > > > > > > > > > > > > > > > > > alexus@~# netstat -ta | grep auth > > > > > > > > > > tcp4 0 0 *.auth *.* > > > > > > > > LISTEN > > > > > > > > > > alexus@~# grep 113 /etc/services | grep tcp > > > > > > > > > > auth 113/tcp ident tap #Authentication > > Service > > > > > > > > > > alexus@~# > > > > > > > > > > > > > > > > > > > > is there some special way I need to add any additional IPs > > or > > > > what > > > > > > am I > > > > > > > > > > doing wrong? > > > > > > > > > > > > > > > > > > > > thanks in advance > > > > > > > > > > > > > > > > > > > You need to change the netmask of the alias to > > 255.255.255.255, > > > > and > > > > > > make > > > > > > > > > sure that gateway is enabled. > > > > > > > > > > > > > > > > > > You can change the IP with ifconfig, and you can enable the > > > > gateway > > > > > > > > > with: > > > > > > > > > sysctl -w net.inet.ip.forwarding=1 > > > > > > > > > > > > > > > > > > All of this is in the archives 8^) > > > > > > > > > > > > > > > > > > bob > > > > > > > > > -- > > > > > > > > > But in our enthusiasm, we could not resist a radical overhaul > > of > > > > the > > > > > > > > > system, in which all of its major weaknesses have been > > exposed, > > > > > > > > > analyzed, and replaced with new weaknesses. > > > > > > > > > -- Bruce Leverett, "Register Allocation in Optimizing > > > > Compilers" > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > > > > > > > ---------------------------------------------------------------------- > > > > > > > The Innovation Machine Ltd. P.O. Box > > 5749 > > > > > > > http://www.imach.com/ Helena, MT > > 59604 > > > > > > > Home of PacketFlux Technogies and BackupDNS.com > > (406)-442-6648 > > > > > > > > > ---------------------------------------------------------------------- > > > > > > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > > > ---------------------------------------------------------------------- > > > > > The Innovation Machine Ltd. P.O. Box 5749 > > > > > http://www.imach.com/ Helena, MT 59604 > > > > > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > > > > > ---------------------------------------------------------------------- > > > > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > ---------------------------------------------------------------------- > > > The Innovation Machine Ltd. P.O. Box 5749 > > > http://www.imach.com/ Helena, MT 59604 > > > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > > > ---------------------------------------------------------------------- > > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > ---------------------------------------------------------------------- > The Innovation Machine Ltd. P.O. Box 5749 > http://www.imach.com/ Helena, MT 59604 > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > ---------------------------------------------------------------------- > Protect your personal freedoms - visit http://www.lp.org/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004001c11397$3b618200$0d00a8c0>