I am wondering if it is possible to force internet/external SSH connections to authenticate with a public key and allow local connections to connect via user and password?
View 5 Replies
I recently installed Fedora 15 now, and during installation I set the internet connection manually, then did update and after reboot, the internet connection settings have been removed. Now I can not set because the network connection to the Internet Connection is inactive. I mention that before the update was functional internet connection.
View 5 Replies View RelatedMy ISP has for a long time had a broken forward/reverese DNS so that my ADSL connection with static IP address resolves to a completely different IP address on a reverse query. This has not been a problem until I upgraded a remote server from 10.3 to 11.3 last weekend and now ssh connections from my ADSL connection to it using public/private keys are being rejected with the following message in /var/log/messages (IP addresses changed):
Aug 10 12:00:32 penguin1 sshd[1270]: Address 83.175.246.243 maps to 83-175-246-243.static.dsl.aupex.com, but this does not map back to the address - Possible Break in Attempt!
But if I log in interactively with username & password, the connection succeeds. I've changed the StrictModes setting in sshd_config to 'no' but this hasn't resolved the problem. Obviously something in 11.3 is being stricter about this IP mismatch than it was in 10.2 (and no, the server is not using a firewall). There must be something I can change to make sshd more permissive? I've tried before to get my ISP to fix their problem but no luck. This needs to be sorted as a server at my home (which does not run SuSE) retrieves backups from the remote OpenSuSE 11.3 server every night using scp and these are now failing.
I got two IP's in my dedicated server. Both are external IP's. I would like to make connections using 2nd IP address under eth0:0 interface. For example: when using "lynx whatismyip.com" should display my 2nd IP. How to do this using iptables ?
View 1 Replies View RelatedI just set up my ubuntu 10.10, which boot up by usb drive,
and I found a problem that I can't get my internet when I was
sitting in a public library. The firefox show me every website is
untrust. Normally, when first connect to this network, I need to
accept a library contract on webpage, which called spyder.local.
Does anyone could fix it? or there is something related to the
firefox setting. I currently keep every setting by default
In one of my customers, the new internet connection have no public IPV4(using GCNAT), only public IPV6.
And there are various services that require external access, like, vpn (openvpn), a java/web system, ssh, rdp(windows).
fileServer(by vpn).
All is running ok in IPV4.Maybe, the solution is a NAT 6to4. We know this is the future, no more public IPV4.
I am running CentOS release 5.6 (Final) and have successfully installed PPTPD and this works great internally.
I want to access my Linux box remotely on the internet via my VPN tunnel. However I am not sure what I need to do on the Linux box to make this happen. My linux box is multihomed as follows
PSTN WWW <===========> ADSL Router Firewall <----------------> [eth1 192.168.x.x] Linux Box [eth0 172.16.x.x] <-----> to LAN
The desired topology is as shown.
VPN Client <------> Home ADSL Router <======= PSTN WWW =======> ADSL Router <------> eth1 Linux Box
1. The VPN is setup and bound to eth1 and eth0 and works well internally
2. IPSec, GRE and PPTP rules have been declared on the router which port map to eth1
However I am still unable to setup a VPN connection to Linux Box I suspect something hasn't been done or I have setup my NATing or IPTables correctly on the linux box.
have a problem with my network-manager in ubuntu 10.10.when I dial one of my vpn connections, my other vpn connections be disabled and I can't use them!I tried to restart network-manager and gnome-panel, but it does't seem to solve this problem.
View 1 Replies View RelatedHow can we force an application which is using a direct Internet connection inherently to connect through a proxy server connection. Like redirecting the direct traffic generated to a proxy server.
View 5 Replies View RelatedI've got a Ubuntu Server Linux router that I've got 2 internet connections hooked to. One of them is DSL and the other is cable.
What I'd like to do is have everything go through the DSL connection EXCEPT for one desktop, I'd like that system to go through cable for everything.
Here's a diagram of how I've got things set up.
[URL]
I don't have any more expansion slots on the mainboard of my server for another NIC, also I do a lot of file transferring between a laptop and the desktop I want on the cable connection so I don't want that slowing down the rest of my network.
I've got both providers set up in the providers file and I've got everything going through the DSL connection right now. So far everything I've tried has stopped the desktop from connecting out at all.
I'm trying to give some windows users a permanent connection to a samba share behind a firewall over the public Internet. I know I can give them access with something like winscp (which they have done) but really I'd like to do it with a VPN so it seems seamless to the user. However I have no idea how to set up the server to support this and am finding the documentation a bit confusing. The samba share is on a Debian box and the firwewall is a Linksys WRT54GL.
View 1 Replies View RelatedI've searched the forums (250 thread limit) for a fix on this, but all the questions seem unanswered or unrelated. My situation is this: I'm running Ubuntu x64 10.10 'Maverick'. I have a cablemodem connection for my Internet access. I have home network running on DD-WRT with the dreadful Linksys WRT54G series router.
My DD-WRT router is 192.168.1.1, subnet 255.255.255.0.
My Linux box is 192.168.1.61, subnet 255.255.255.0.
I have a VyprVPN connection set up successfully on Linux. Mostly everything works great, speed's fine, latency is what I expect it to be. Except... I also run an SSH server to remotely admin the box at port 22, an Apache server running over SSL at port 7001, and a Transmission web client at port 7002 (only secured by basic HTTP realms auth). All of these things worked before I got the VPN working, I'm of course using NAT at the DD-WRT router.
The endresult I am looking for, is to have the security and protection of the VPN (even if it's only perceived) for everything I do on this machine -- EXCEPT on Apache, the Transmission web panel, and the SSH server, which I want to access from the outside world. I have no firewalls running or configured, not even iptables, not even the SPI firewall on DD-WRT. All connections to the aforementioned services from the outside world timeout coming in to the Linux box. They all work from inside my home network (182.168.1.0/24). In case it's needed, he's my routing:
[Code]....
I have a question, regarding the use of two internet connection on the same server. So, the thing is like this: The server will have 3 network adapters: connected to a DSL modem (on this adapter I have one of the internet connections, a PPPoE connection. It's only purpose is to share the internet connection to all LAN users using SNAT.
eth1 ----> the other internet connection, a much more expensive one actually, used for hosting a website, a domain name server, and a qmail server. eth2 ----> LAN connection So what I want is to make eth1 the "default gateway" (for outgoing mail, DNS requests, etc) and, as I said, use the ppp0 connection on eth0 only for internet sharing in LAN.
My question is (since I'l configure this server in about one week), does anybody have any suggestions regarding how could I accomplish this? I mean, I'm affraid that ppp0 will also try to use the default gateway from the other internet connection and vice-versa. Now, I know I can use the ip route/ip rule commands, but for many reasons I'd like to keep it simple and not use them.
When setting up my server I noticed that I could control the amount of connections; the maximum seems to be 256. My server is currently windows 2003 server which is unlimited connections - before I change the server to F10 I need to be able to have unlimited connections (I often go over 256 connections, I have 25 web sites hosted). How do I do this on F10 or is there a better distro for web servers that have thousands of Internet connections at the one time?
View 4 Replies View RelatedI have two internet connections. One is wired ADSL Broadband & another is USB EVDO modem. I can use only one source at a time. That means the traffic will pass through either ADSL or EVDO. Other connection just sits idle. I want to use both the connections together so that I will have increased bandwidth. Is there a way to do that?
My computer has one NIC card. Both ADSL & EVDO use dynamic IPs.
I have the latest Ubuntu (9.10) desktop. My 2 cards are:
WiFi: Intel(R) Wireless WiFi Link 5100
Ethernet: Marvell Yukon 88E8072 PCI-E Gigabit Ethernet Controller
Is there any way to get drivers working? My hardware switch is on and i have Ubuntu 9.10 running persistently on my usb so i can download the drivers etc. and install them.
I am a user of Ubuntu 10.04 and I use Firestarter because it lets me know which IPs I am connected to, which ports are used, and which applications are using those ports. The problem is that I can't use Firestarter with my non-sudo account (well, I know that I can change my system settings to do that, but I'd rahther not do it).
So the question is: Is there any application that lets the user monitor the internet connection?
I have a firewall ( a pc with debian 5) with 2 internet connections. each connected to a ethernet card (the firewall has 2 ethernet pci cards so it has one connection per card)how can i balance the internet requests from my LAN using this 2 connections?
View 3 Replies View RelatedI have to configure squid server which will have two internet connections on two separate lan cards and both will run simultaneously.I know how to configure squid server with one internet connection
View 4 Replies View RelatedI'm trying to write a p2p file sharing program using python's built-in libraries. Everything is going well. The only thing is that i'd like to be able to use openssl public and private keys so only a host with the public key could access/decrypt the filesharing. I've gotten these libraries (httplib, basehttpserver, ssl, os) to work using just a pem file containing both the public and private keys but no success with them seperately. Can someone point me in the right direction or offer an alternative? PS, the goal of the project is to create an anonymous, decentralized, secure file sharing program. I want to be able to upload this to sourceforge so everyone can use it, if that's any incentive
View 2 Replies View RelatedWhile using Ubuntu two other computers lose their connection. One (main) is connected to the modem, other from the switch to the wireless router, and the one with ubuntu wired via switch. Currently connected with Windows 7, other two are connected. Once booted into Ubuntu rest of the computers disconnect?
View 6 Replies View RelatedI Installed Ubuntu which was on the laptop before and this install doesn't want to work with a Internet connection. I know my connections is good and the Laptop is fine because it used to have dual boot and windows connected fine.
View 2 Replies View RelatedI know Ubuntu can do amazing things, but I was wondering if it can use different Internet connections for different websites.
The Setup: We have 1x unshaped ADSL connection at 4MBPS (fastest available) that's used for office related things, Skype, General browsing etc. We have another ADSL connection, this time shaped and running at 4MBPS, I want to send all requests to facebook, twitter and downloading sites like fileserve, filesonic, hotfile etc. to the shaped connection. Can iptables be used to do this? The unshaped ADSL router is connected to eth0 and has an IP of 192.168.0.1 the shaped ADSL router is connected to eth2 and has an IP of 10.0.2.1 Local lan is connected to eth1 and has a range of 192.168.1.0/24 Can iptables send a certain webpage (*.facebook.*) to eth2 and other pages (*.google.*) to eth0 ?
I am trying to write a shell script that will block any outgoing Internet connection, focusing mainly on the HTTP connections.
It would be nice if this command could work on both Mac OSX and Linux.
I'm trying to set up an openVPN server for a small office. I've gotten the server running, and configured keys, and been able to connect to the server. The trouble is that once I connect with my windows machine to the server, I am unable to bridge through to the www. I have combed through so many settings and tutorials, and I am confused as to how to set up the interfaces configuration file. Here's a sample of my routing table:
Code:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.8.0.2 * 255.255.255.255 UH 0 0 0 tun0
XXX.XXX.XXX.0 * 255.255.255.128 U 0 0 0 eth0
10.8.0.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0
default XXX.XXX.XXX.1 0.0.0.0 UG 100 0 0 eth0
How should I be configuring this so that when I'm in the VPN I can get through to the internet?
Can I bind 2 interent connections or more on same fedora server to create bigger one with double bandwidth ,or it needs a specific router to be able to do this.
View 1 Replies View RelatedI have seen several threads lately about slow internet connections here and elsewhere, but I haven't seen anyone post a reply about blacklisting ipv6 so I am curious as to why?Is ipv6 enabled only on certain distro's or is there some other reason that it's not mentioned?
<If anyone wants to try it, to see if it would work for them>
On Slackware 12.2 and Salix 13.0 just add "blacklist ipv6" to the /etc/modprobe.d/blacklist file. I'm not sure about non-slackware based distro's. Unfortunately, I don't know any way of doing it without rebooting.
I am using Red Hat Linux enterpriser 4 using two physical LAN cards.There are two different ISP internet lines coming into a single gateway computer. Is it possible that if in our one network we are using 2 MB bandwidth and from another network we are getting 2 MB bandwidth.(Two different Networks) and combine it into 4 MB. In bonding it combine the bandwidth or it do loadbalancing ?
The question is can we accumulate or add these two bandwidth in Linux machine and it sent total bandwidth 4 to the end users ?
Lan Card A
IP Address: 192.168.1.250 2MB Bandwidth
l
l
l
[Code]....
I run the following file with the >log.log redirector and it does not capture errors.
#!/bin/bash
echo ************************BEGIN LOG******************************
date +"%m/%d/%Y %H:%M:%S $HOSTNAME"
cp -f /scripts/original/clamscans.log /scripts
[code]....
The following errors show up when I run from the file from the term window, but are not written to log.log:
tar: /public/public/clamscans/*.txt: Cannot stat: No such file or directory
tar: Error exit delayed from previous errors
mv: cannot stat `/public/public/clamscans/*.txt': No such file or directory
I know with windows you can add the 2>&1 to capture error data. Is there such a thing for Linux?
I've been looking through the Debian wiki, searching past topics in the forum, and generally googling, but all to no avail. I'm unable to connect to the internet through any wireless connections, nor through an ethernet cable. I installed the latest weekly image of Debian squeeze. After installation, I found myself on the command line. I installed gnome with
apt-get install gnome-desktop-environment I also tried installing gnome-applets, gnome-netstatus-applet, and gnome-nettool, but I guess they were already installed. When I open System > Administration > Network in Gnome, there's no connections tab in the Network Settings application.
Here's what I think is the relevant portion of lspci -v
07:00.0 Ethernet Controller: Atheros Communications Inc. AR5001 Wireless Network Adapter (rev 01)
Subsystem: Hewlett-Packard Company Device 137a
Flags: bus master, fast devsel, latency 0, IRQ23
Memory at c2000000 (64-bit, non-prefetchable) [size=64K]
Capabilities: [40] Power Management version 2
[Code]...
I'm one of those people migrating from Ubuntu and in Ubuntu I had to add a 'rfkill -unblock all' command to my rc.local file for this laptop. Not sure if that's relevant, but thought more info couldn't hurt.
