Need help with diald, PLEASE

Need help with diald, PLEASE

Post by The Grunewald » Wed, 26 Jan 2000 04:00:00



I am setting up a home network and for now I want to connect to the
Internet via diald .99.1 on RH6.1. When I bring up my browser and try to
access a site on the Internet, I get error messages that say, "Netscape
is unable to locat the server www.redhat.com. Please check the server
name and try again." This comes up immediately before it even tries to
dial the modem. I have a hunch that what I need is a DNS entry that
tells my machine to look for this somewhere else, but I'm not sure how
to tell Linux what my ISP's DNS servers are so that the URL could be
resolved to an IP, but that's as smart as I get. Any help would be
GREATLY appreciated.
Thanks,
Jim

In case it helps, I have the following files:

/etc/diald.conf:

include /usr/lib/diald/standard/filter
mode ppp
device /dev/modem
pppd-options asyncmap 0
speed 57600
crtscts
defaultroute
loc
modem
dynamic
local 127.0.0.2
remote 127.0.0.3
connect "/usr/sbin/chat -f /etc/sysconfig/network-scripts/chat-ppp0
fifo /etc/diald/diald.ctl

/etc/sysconfig/network-scripts/chat-ppp0:

ABORT 'BUSY'
ABORT 'NO CARRIER'
"" AT
OK ATDT(phonenumber)
CONNECT \c
user: (username)
word: (password)

The results of the lsmod command is:

Module                  Size    Used by
slip                    7700    2  (autoclean)
slhc                    4328    1  (autoclean) [slip]
tulip                  25252    1  (autoclean)

The results of the route command is:
Kernel IP routing table
Destination    Gateway        Genmask         Flags Metric Ref    Use
Iface
192.168.1.254  *              255.255.255.255 UH    0      0        0
ethO
127.0.0.3      *              255.255.255.255 UH    0      0        0
sl0
192.168.1.0    *              255.255.255.0   U     0      0        0
eth0
127.0.0.0      *              255.0.0.0       U     0      0        0 lo
default        192.168.1.254  0.0.0.0         UG    0      0        0
eth0
default        *              0.0.0.0         U     1      0        0
sl0

 
 
 

Need help with diald, PLEASE

Post by aschl.. » Sat, 29 Jan 2000 04:00:00



> I am setting up a home network and for now I want to connect to the
> Internet via diald .99.1 on RH6.1. When I bring up my browser and try to
> access a site on the Internet, I get error messages that say, "Netscape
> is unable to locat the server www.redhat.com. Please check the server
> name and try again." This comes up immediately before it even tries to
> dial the modem. I have a hunch that what I need is a DNS entry that
> tells my machine to look for this somewhere else, but I'm not sure how
> to tell Linux what my ISP's DNS servers are so that the URL could be
> resolved to an IP, but that's as smart as I get. Any help would be
> GREATLY appreciated.
> Thanks,
> Jim

I'm not an expert on route but in looking at your routing table it looks like
you have two default routes. From what I can see you have a default route
that goes through the gateway system at 192.169.1.254 that precedes the default
route for the sl0 interface. If your using some network configuration tool you'll
want to remove the default gateway since that is added dynamically to your route
table when the PPP connection is brought up. In order for diald to actually
bring up the link you need to have packets routed to the sl0 interface. This is the
interface diald watches for outgoing packet activity. Since all packets are
getting routed to the 192.168.1.254 gateway system rather then the sl0 interface
diald is probably not even going to attempt to dial the modem.

If you're going to use your Linux box as a gateway system for your home
network make sure that IP forwarding is enabled and that the first outgoing
packet is held until the IP address is assigned through PPP.

Here's a simple script fragment that sets this up.
echo "1" > /proc/sys/net/ipv4/ip_forward
# Make system hold the first outgoing packet until our
# dynamic IP address has been assigned.
echo 1 > /proc/sys/net/ipv4/ip_dynaddr

For setting up DNS, this is configured in the /etc/resolv.conf file. I would setup
the Linux box and all of the internal systems on my network to use our ISP's
nameservers. The format of the file is like so:

search your.domain.com
nameserver xxx.xxx.xxx.xxx
nameserver xxx.xxx.xxx.xxx

Replace <your.domain.com> with your ISP's domain and enter the IP addresses
for your ISP's primary and secondary name servers in xxx entries. Also
setup any systems inside your network that are going to go through your Linux
gateway system to use your ISP's nameservers as well. If you're sharing a
single IP address with multiple systems inside your network you'll want to
setup IP masquarading to keep your home network private.

Here's a link that discusses home network security and offers some sample
firewall scripts:

http://linuxgazette.com/issue46/pollman.html

Since Linux can act as a server I suggest setting up a
firewall to keep would be script kiddies out of your system. I've seen
numerous port scans hit my Linux gateway system even with a transient PPP
connection.  This is even more of a concern if you go with DSL or a cable
modem since those types of connections are always on. I see many posts
from people in this newsgroup where they just plug their DSL or cable modem
into their network hub which leaves there entire home network open for
possible hacking.

Good Luck,

Tony

Quote:> In case it helps, I have the following files:
> /etc/diald.conf:
> include /usr/lib/diald/standard/filter
> mode ppp
> device /dev/modem
> pppd-options asyncmap 0
> speed 57600
> crtscts
> defaultroute
> loc
> modem
> dynamic
> local 127.0.0.2
> remote 127.0.0.3
> connect "/usr/sbin/chat -f /etc/sysconfig/network-scripts/chat-ppp0
> fifo /etc/diald/diald.ctl
> /etc/sysconfig/network-scripts/chat-ppp0:
> ABORT 'BUSY'
> ABORT 'NO CARRIER'
> "" AT
> OK ATDT(phonenumber)
> CONNECT \c
> user: (username)
> word: (password)
> The results of the lsmod command is:
> Module                  Size    Used by
> slip                    7700    2  (autoclean)
> slhc                    4328    1  (autoclean) [slip]
> tulip                  25252    1  (autoclean)
> The results of the route command is:
> Kernel IP routing table
> Destination    Gateway        Genmask         Flags Metric Ref    Use
> Iface
> 192.168.1.254  *              255.255.255.255 UH    0      0        0
> ethO
> 127.0.0.3      *              255.255.255.255 UH    0      0        0
> sl0
> 192.168.1.0    *              255.255.255.0   U     0      0        0
> eth0
> 127.0.0.0      *              255.0.0.0       U     0      0        0 lo
> default        192.168.1.254  0.0.0.0         UG    0      0        0
> eth0
> default        *              0.0.0.0         U     1      0        0
> sl0

--
Anthony Schlemmer


 
 
 

Need help with diald, PLEASE

Post by The Grunewald » Sat, 29 Jan 2000 04:00:00


Tony,
Thanks for replying to my post. It sure sounds like you know a lot more
about networking than you let on!
I'll try this tomorrow. I saw some similar things on the site
//home.earthlink.net/~simpson3. I didn't use them because I didn't
understand them and the book I was working from didn't use them.
I'll let you know how this went.
Thanks again,
Jim
 
 
 

1. Help needed with DIALD filter rules, please!

Hi there,

Whereas my DIALD and everything else works nice, I need some help on
blocking smtp (DNS) calls.  Hmm... I'm not sure if I'm using the right
vocabulary now, but here's the situation...

Private TCP/IP network and bunch of Eudora mail users checking mail
from linux 1.2.9, which in turn receives email and news via UUCP.  I
also have Cern-httpd proxy and diald running on linux for web surfing,
but when users want to send email diald goes on-line to check DNS,
which is meant for web surfing only... Confusing? :)

I'm trying to get into these diald filters, but haven't been able to
figure this one out yet.  Maybe some one could help me get started
with this one, please???

What's seems apparent to me right now, I should be able to block DNS
searches if only mail is to be sent but allow if http pages are
requested.  Gee, I wonder if anyone can make any sense out of this
one.

Thanks for all you, that at least tried. :)

Janne Lahteenmaki

2. Increase Variable

3. still need printer help please please please

4. Help with Concating strings in big files

5. Help still needed please, please, please...

6. Problem: Can't Detect Printer Port When using Zip Drive

7. HELP, Need help on Solaris 8, Please, Please

8. LILO doesn't LO! Why?

9. Diald, please help...?

10. Help requested with DIALD and filter rules, please!

11. diald starting pppd for local connections...please help

12. Diald doesn't want to work 2nd time, please help

13. Diald, please help...?