From owner-freebsd-isp Mon Jul 23 8: 9: 8 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 9C0B337B407 for ; Mon, 23 Jul 2001 08:08:53 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id JAA19748; Mon, 23 Jul 2001 09:07:26 -0600 (MDT) Date: Mon, 23 Jul 2001 09:07:26 -0600 (MDT) From: "Forrest W. Christian" To: jeff@tht.net Cc: alexus , Bob Martin , freebsd-isp@FreeBSD.ORG Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC In-Reply-To: <20010723115334.A300-100000@asbestos.wolf> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Jeff, I have tested both his IDENT ports from here and they are working just fine. I'm not sure why the IRC server is yelping. I suspect either it doesn't like something subtle about the ident response or it is giving a bogus error message, and is really throwing him off because of some other reason. Thus my two recommendations below (try a different identd, connect to a different server) On Mon, 23 Jul 2001 jeff@tht.net wrote: > Date: Mon, 23 Jul 2001 11:56:09 -0300 (ADT) > From: jeff@tht.net > To: Forrest W. Christian > Cc: alexus , Bob Martin , > freebsd-isp@FreeBSD.ORG > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC >=20 > Hi, >=20 > Ok, i'm not sure i understand the entire shceme, but from > the mumbo below, i assume that one machine is behind a natd > firewall ? >=20 > that means that when you try to connect from the inner machine > the irc server is trying to get inetd info from your firewall. >=20 > your firewall doesn't pass this request on. so what you want > to do is install an inetd that will basically respond to anything >=20 > i use "lie inetd" or - linetd . it cured this problem for me. >=20 > jeff >=20 >=20 > On Mon, 23 Jul 2001, Forrest W. Christian wrote: >=20 > > Try a different irc server, or try a different ident server (like the > > warm-fuzzy perl script I gave you). > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > Date: Mon, 23 Jul 2001 01:47:32 -0400 > > > From: alexus > > > To: Forrest W. Christian > > > Cc: Bob Martin , freebsd-isp@FreeBSD.ORG > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > well ... let's see > > > > > > =F9=ED=F9 Connecting to port 6667 of server irc.lightning.net [refnum= 0] > > > [lightning] *** Looking up your hostname... > > > [lightning] *** Found your hostname, cached > > > [lightning] *** Checking Ident > > > [lightning] *** Banned: Install Identd for access (2001/4/18 09.20) > > > =F9=ED=F9 Closing Link: a1exus[alexus@255.255.255.255] (Banned) > > > =F9=ED=F9 Connection closed from irc.lightning.net: Undefined error: = 0 > > > > > > ----- Original Message ----- > > > From: "Forrest W. Christian" > > > To: "alexus" > > > Cc: "Bob Martin" ; > > > Sent: Monday, July 23, 2001 1:33 AM > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > What errors are you seeing on the IRC server? > > > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > > > Date: Mon, 23 Jul 2001 01:33:45 -0400 > > > > > From: alexus > > > > > To: Forrest W. Christian > > > > > Cc: Bob Martin , freebsd-isp@FreeBSD.ORG > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > su-2.05# ifconfig fxp0 > > > > > fxp0: flags=3D8943 mtu > > > 1500 > > > > > inet 66.92.98.145 netmask 0xffffff00 broadcast 66.92.98.2= 55 > > > > > inet 66.92.98.151 netmask 0xffffffff broadcast 66.92.98.2= 55 > > > > > ether 00:60:94:a5:cb:44 > > > > > media: autoselect (100baseTX ) status: activ= e > > > > > supported media: autoselect 100baseTX 100ba= seTX > > > > > 10baseT/UTP 10baseT/UTP > > > > > su-2.05# > > > > > > > > > > i even changed my broadcast .. same *ahem* thing... > > > > > > > > > > ----- Original Message ----- > > > > > From: "Forrest W. Christian" > > > > > To: "alexus" > > > > > Cc: "Bob Martin" ; > > > > > Sent: Monday, July 23, 2001 1:22 AM > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > No. Something else OTHER than ident is broken. > > > > > > > > > > > > Ident is working as designed. > > > > > > > > > > > > > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > > > > > > > Date: Mon, 23 Jul 2001 01:16:30 -0400 > > > > > > > From: alexus > > > > > > > To: Forrest W. Christian > > > > > > > Cc: Bob Martin , freebsd-isp@FreeBSD.ORG > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > could that be due to > > > > > > > > > > > > > > i have different broadcast? > > > > > > > > > > > > > > what broadcast do anyway? what is it for > > > > > > > > > > > > > > ----- Original Message ----- > > > > > > > From: "Forrest W. Christian" > > > > > > > To: "alexus" > > > > > > > Cc: "Bob Martin" ; > > > > > > > Sent: Monday, July 23, 2001 12:56 AM > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > > > > > > > Ident appears to be working on your box on both ports: > > > > > > > > > > > > > > > > -------------------TEST OUTPUT BEGIN > > > > > > > > mail# telnet 66.92.98.151 ident > > > > > > > > Trying 66.92.98.151... > > > > > > > > Connected to bigballz.com. > > > > > > > > Escape character is '^]'. > > > > > > > > ^] > > > > > > > > telnet> z > > > > > > > > > > > > > > > > Suspended > > > > > > > > mail# netstat -an | grep 66.92 > > > > > > > > tcp4 0 0 206.127.64.140.4188 66.92.98.151.11= 3 > > > > > > > > ESTABLISHED > > > > > > > > mail# fg > > > > > > > > telnet 66.92.98.151 ident > > > > > > > > 113,4183 > > > > > > > > 113 , 4183 : USERID : UNKNOWN : root > > > > > > > > Connection closed by foreign host. > > > > > > > > ------------------TEST OUTPUT END > > > > > > > > > > > > > > > > ------------------TEST OUTPUT BEGIN > > > > > > > > mail# telnet 66.92.98.145 ident > > > > > > > > Trying 66.92.98.145... > > > > > > > > Connected to oXyeTb.com. > > > > > > > > Escape character is '^]'. > > > > > > > > ^] > > > > > > > > telnet> z > > > > > > > > > > > > > > > > Suspended > > > > > > > > mail# netstat -an | grep 66.92 > > > > > > > > tcp4 0 0 206.127.64.140.4242 66.92.98.145.11= 3 > > > > > > > > ESTABLISHED > > > > > > > > mail# fg > > > > > > > > telnet 66.92.98.145 ident > > > > > > > > 113,4242 > > > > > > > > 113 , 4242 : USERID : UNKNOWN : root > > > > > > > > Connection closed by foreign host. > > > > > > > > ------------------TEST OUTPUT END > > > > > > > > > > > > > > > > I'd look elsewhere, however: > > > > > > > > > > > > > > > > Have you considered running a "warm-fuzzy" ident? It lets = a lot > > > less > > > > > > > > information out about your system. > > > > > > > > > > > > > > > > Use this perl script: > > > > > > > > > > > > > > > > -------- CUT ----------- > > > > > > > > #!/usr/local/bin/perl > > > > > > > > ($a, $b) =3D split(/[,\n\r ]+/,<>); > > > > > > > > print "$a , $b : USERID : UNIX : Warm-Fuzzy\r\n"; > > > > > > > > -------- CUT ----------- > > > > > > > > > > > > > > > > And reference it from your inetd.conf instead of the ident = code. > > > > > > > > > > > > > > > > On Mon, 23 Jul 2001, alexus wrote: > > > > > > > > > > > > > > > > > Date: Mon, 23 Jul 2001 00:46:41 -0400 > > > > > > > > > From: alexus > > > > > > > > > To: Bob Martin > > > > > > > > > Cc: freebsd-isp@FreeBSD.ORG > > > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > > > su-2.05# sysctl net.inet.ip.forwarding > > > > > > > > > net.inet.ip.forwarding: 1 > > > > > > > > > su-2.05# ifconfig fxp0 > > > > > > > > > fxp0: flags=3D8943 > > > mtu > > > > > > > 1500 > > > > > > > > > inet 66.92.98.145 netmask 0xffffff00 broadcast > > > 66.92.98.255 > > > > > > > > > inet 66.92.98.151 netmask 0xffffffff broadcast > > > 66.92.98.151 > > > > > > > > > ether 00:60:94:a5:cb:44 > > > > > > > > > media: autoselect (100baseTX ) statu= s: > > > active > > > > > > > > > supported media: autoselect 100baseTX > > > > > 100baseTX > > > > > > > > > 10baseT/UTP 10baseT/UTP > > > > > > > > > su-2.05# > > > > > > > > > > > > > > > > > > i've tryed to change netmask of second ip to .255 instead= of .0 > > > but > > > > > it > > > > > > > > > doesn't seems to help:( > > > > > > > > > > > > > > > > > > and i also checked my forwarding settings, it was already= set to > > > 1 > > > > > > > > > > > > > > > > > > ----- Original Message ----- > > > > > > > > > From: "Bob Martin" > > > > > > > > > To: "alexus" > > > > > > > > > Sent: Sunday, July 22, 2001 5:42 PM > > > > > > > > > Subject: Re: IPs/VHOST/ALIAS/IDENTd/IRC > > > > > > > > > > > > > > > > > > > > > > > > > > > > alexus wrote: > > > > > > > > > > > > > > > > > > > > > > Hi > > > > > > > > > > > > > > > > > > > > > > I have 2 IPs on my box > > > > > > > > > > > > > > > > > > > > > > 66.92.98.145 ( oXyeTb.com ) and 66.92.98.151 ( > > > bigballz.com ) > > > > > > > > > > > > > > > > > > > > > > I put both of those IPs into my /etc/rc.conf file > > > > > > > > > > > > > > > > > > > > > > alexus@~# grep fxp0 /etc/rc.conf > > > > > > > > > > > ifconfig_fxp0=3D"inet 66.92.98.145 netmask 255.255.2= 55.0" > > > > > > > > > > > ifconfig_fxp0_alias0=3D"inet 66.92.98.151 netmask > > > 255.255.255.0" > > > > > > > > > > > alexus@~# ifconfig fxp0 > > > > > > > > > > > fxp0: > > > flags=3D8943 > > > > > mtu > > > > > > > > > 1500 > > > > > > > > > > > inet 66.92.98.145 netmask 0xffffff00 broadcas= t > > > > > 66.92.98.255 > > > > > > > > > > > inet 66.92.98.151 netmask 0xffffff00 broadcas= t > > > > > 66.92.98.255 > > > > > > > > > > > ether 00:60:94:a5:cb:44 > > > > > > > > > > > media: autoselect (100baseTX ) s= tatus: > > > > > active > > > > > > > > > > > supported media: autoselect 100baseTX > > > > > > > 100baseTX > > > > > > > > > > > 10baseT/UTP 10baseT/UTP > > > > > > > > > > > alexus@~# > > > > > > > > > > > > > > > > > > > > > > so looks like they up and running fine > > > > > > > > > > > > > > > > > > > > > > although I'm having one problem (at least so far) > > > > > > > > > > > > > > > > > > > > > > whenever I'm trying to IRC from my box from my primar= y IP > > > .145 ( > > > > > > > > > > > oXyeTb.com ) everything seems to be in order > > > > > > > > > > > whenever I'm trying to use my second IP .151 ( > > > bigballz.com ) I > > > > > > > can't > > > > > > > > > get on > > > > > > > > > > > IRC at all.. some of IRC server tells me that my iden= t isn't > > > > > > > installed > > > > > > > > > even > > > > > > > > > > > though it *is* installed and I'm being able to logon = to same > > > > > server > > > > > > > from > > > > > > > > > my > > > > > > > > > > > first IP just fine > > > > > > > > > > > > > > > > > > > > > > here is prove that i *do* have ident (port 113) runni= ng > > > > > > > > > > > > > > > > > > > > > > alexus@~# netstat -ta | grep auth > > > > > > > > > > > tcp4 0 0 *.auth *.* > > > > > > > > > LISTEN > > > > > > > > > > > alexus@~# grep 113 /etc/services | grep tcp > > > > > > > > > > > auth 113/tcp ident tap #Authenticati= on > > > Service > > > > > > > > > > > alexus@~# > > > > > > > > > > > > > > > > > > > > > > is there some special way I need to add any additiona= l IPs > > > or > > > > > what > > > > > > > am I > > > > > > > > > > > doing wrong? > > > > > > > > > > > > > > > > > > > > > > thanks in advance > > > > > > > > > > > > > > > > > > > > > You need to change the netmask of the alias to > > > 255.255.255.255, > > > > > and > > > > > > > make > > > > > > > > > > sure that gateway is enabled. > > > > > > > > > > > > > > > > > > > > You can change the IP with ifconfig, and you can enable= the > > > > > gateway > > > > > > > > > > with: > > > > > > > > > > sysctl -w net.inet.ip.forwarding=3D1 > > > > > > > > > > > > > > > > > > > > All of this is in the archives 8^) > > > > > > > > > > > > > > > > > > > > bob > > > > > > > > > > -- > > > > > > > > > > But in our enthusiasm, we could not resist a radical ov= erhaul > > > of > > > > > the > > > > > > > > > > system, in which all of its major weaknesses have been > > > exposed, > > > > > > > > > > analyzed, and replaced with new weaknesses. > > > > > > > > > > -- Bruce Leverett, "Register Allocation in Optimizi= ng > > > > > Compilers" > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > > > > > > > > > -------------------------------------------------------------------= --- > > > > > > > > The Innovation Machine Ltd. P.= O. Box > > > 5749 > > > > > > > > http://www.imach.com/ Helena= , MT > > > 59604 > > > > > > > > Home of PacketFlux Technogies and BackupDNS.com > > > (406)-442-6648 > > > > > > > > > > > -------------------------------------------------------------------= --- > > > > > > > > Protect your personal freedoms - visit http://www.lp.= org/ > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > > > > ---------------------------------------------------------------= ------- > > > > > > The Innovation Machine Ltd. P.O. B= ox 5749 > > > > > > http://www.imach.com/ Helena, MT= 59604 > > > > > > Home of PacketFlux Technogies and BackupDNS.com (406)-4= 42-6648 > > > > > > ---------------------------------------------------------------= ------- > > > > > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > > > > > > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > > > -------------------------------------------------------------------= --- > > > > The Innovation Machine Ltd. P.O. Box 5= 749 > > > > http://www.imach.com/ Helena, MT 59= 604 > > > > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6= 648 > > > > -------------------------------------------------------------------= --- > > > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > > > > > > > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > > ---------------------------------------------------------------------- > > The Innovation Machine Ltd. P.O. Box 5749 > > http://www.imach.com/ Helena, MT 59604 > > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > > ---------------------------------------------------------------------- > > Protect your personal freedoms - visit http://www.lp.org/ > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message >=20 - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message