[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IP-masquerading & rplayd



On Sun, 21 Feb 1999, Schlomo Schapiro wrote:

>Hi,
>
>I have a couple more problems with that same customer who has the
>Vibra16x. 
>
>Please help me since I tried promoting Linux as a "stable and good working
>system". The customer didn't mind no hebrew support.The problem is I can't
>make work some important stuff :-(

That all ? ;)

>>But first I tell you what I did to make the vibra work:
>I set it to standart SB16 settings in isapnp.conf (against it's own wishes
>!!!) and it indeed works now. Including 16bit playback etc. This obviously
>proofs that Creative is not 100% PnP conforming. And this from one of the
>inventors of PnP !!!.
>
>A connected problem is the rplayd. Is there anybody who has dvelved deep
>into rplayd ? I tried reading it's readmes etc. but they somehow didn't
>help me. It doesn't work mostof the time (where a simple cat xx.au
>>/dev/dsp works fine). I tried looking for some config files (I found some
>in /usr/etc), but they seemed mainly network connected (rplay.hosts,
>rplay.servers etc). Another point is, how can rplayd play streamed sounds
>? like from an mp3 player or even realaudio ?. How do I disable the use of
>rplayd by e.g. fvwm2 etc ?
>
>Connected to this too is that I couldn't manage to get sound of neither
>x11amp (which didn't seem to work well anyway), or xanim or mpeg_player
>playing movies that I know have sound (checked on W95 box). How can I
>debug all this stuff (e.g. see what path the sound takes, how the
programs
>are trying to play the sounds etc ???
>
>In general, if there is somebody with experience in everything connected
>to Linux & sound & mp3 & video & mpg etc, please speak up and help make
>Linux more popular.
>
>The other big problem is masquerading the network over an dialup-link. I
>did everything like it said in the howto, checked ipfwadm -F -l, route
>etc. it all seems ok (and exactly the same as at home where it works
>GREAT). But, alas, no packet from network reaches ppp0 :-(. Again, how can
>I debug this stuff ??? What can it be I did wrong ? the ipfwadm -F -l
>outputs stuff like this:
>acc/m all  localhost.home/24    anywhere             n/a
>
>the default route points to ppp0
>
>the masq modules are loaded.
>
>tcpdump -i eth0 shows the packets
>tcpdump -i ppp0 doesn't show them
>
>How can I debug this, e.g. see where the packets get lost.

I have never used diald because it has more than 1 page of docs ;) afaik
diald uses a slip device to monitor outgoing requests which are then
redirected. This is a shot in the dark, but I DON'T think that this will
work with a firewall as is.

>Also, isthere any alternative to diald yet ?

It is called ipfwadm+/sbin/request_route+crond . crond runs two crontab
entries which, one creates a lock file, and another, deletes the lock
file.  Each script can also play with ipfwadm to set up or dismantle
firewalls on certain ports. The /sbin/req... is modified to check for the
lock file being present before dialing out (it fails otherwise). There can
be more than two scripts run from crond. For manual intervention, a second
lock file can be created (by hand) to be able to fix the system. req...
refuses to dial out in any case if it sees the 2nd lock file. Crond can
also hang up the connection at certain times and change runlevels if
req'd.

Now you have a usual crontab to fix the time when people can dial out etc. 
and can select which ports to open/close at certain times to prevent users
from browsing in business hours or to enhance security during night
batches f.ex. 

Peter

PS: I think that diald is a HACK.

PS2: I've never used this with a firewall but there is NO reason for its
not working. None of the connect stuff has anything to do with the
firewall or a slip device (eeek).