Visit The New, Modern Unix Linux Community


Linux and SCO ppp, firewall issue?


 
Thread Tools Search this Thread
Operating Systems Linux Linux and SCO ppp, firewall issue?
# 1  
Linux and SCO ppp, firewall issue?

I' m playng a little retrocomputing.
I have setup a virtual machine with SCO unix(3.2v4.2) on qemu
The machine start, the novell2000 card(ne2k_pci,ne2k_isa) unfortunately not,probably driver issue.
So I try the slirp with this procedure
On SCO

Code:
    netconfig
    add chain..sl ..etc

On linux

Code:
   slattach -s 19200 -d -p slip /dev/pts/2
    ifconfig sl0 192.168.7.1 dstaddr 192.168.7.2 netmask 255.255.255.252 mtu 296 up

At reboot: ping work,telnet work,but when I try a ftp transfer of a little file(7m) the transfer is blocked.
So I have tried PPP and pppd
On SCO

Code:
    netconfig
    remove chain sl0
    add chain ppp
    reboot

On linux

Code:
    pppd -detach debug local noauth passive lock 192.168.7.1:192.168.7.2 netmask 255.255.255.0 /dev/pts/2 9600 connect /usr/sbin/chat -s -v login:--login: nppp word: nppppassword

The connection is up,but telnet and ftp won't start
Seems blocking by firewall,this is my firewall config

Code:
 #!/bin/sh
    
    # We need this for redirection
    echo 1 > /proc/sys/net/ipv4/ip_forward
    
    firewall_start() {
    # Clean
    iptables -F
    iptables -X
    iptables -Z
    iptables -t nat -F
    iptables -t nat -X
    iptables -t nat -Z
    iptables -t mangle -F
    iptables -t mangle -X
    iptables -t mangle -Z
    
    # Default policy
    #iptables -P PREROUTING  ACCEPT
    #iptables -P OUTPUT  ACCEPT
    #iptables -P POSTROUTING  ACCEPT
    #iptables -P INPUT ACCEPT
    #iptables -P FORWARD ACCEPT
    
    # Firewall rules INPUT
    iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
    iptables -A INPUT -i lo -j ACCEPT
    
    # Ssh 
    iptables -A INPUT -p tcp --dport 22 -j ACCEPT
    
    # Ftp
    iptables -A INPUT -s 192.168.178.0/24 -p tcp --dport 20:21 -j ACCEPT
    
    # Rules for dnsmasq
    iptables -A INPUT -i virbr0 -p tcp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr0 -p udp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr0 -p tcp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr0 -p udp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr1 -p tcp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr1 -p udp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr1 -p tcp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr1 -p udp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr2 -p tcp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr2 -p udp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr2 -p tcp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr2 -p udp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr3 -p tcp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr3 -p udp --dport 67 -j ACCEPT
    iptables -A INPUT -i virbr3 -p tcp --dport 53 -j ACCEPT
    iptables -A INPUT -i virbr3 -p udp --dport 53 -j ACCEPT
    
    # Icmp
    iptables -A INPUT -p icmp --icmp-type 0 -j ACCEPT
    iptables -A INPUT -p icmp --icmp-type 8 -j ACCEPT
    
    # Virbr NAT
    iptables -A FORWARD -i virbr0 -o wlan0 -j ACCEPT
    iptables -A FORWARD -i wlan0 -o virbr0 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i virbr1 -o wlan0 -j ACCEPT
    iptables -A FORWARD -i wlan0 -o virbr1 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i virbr2 -o wlan0 -j ACCEPT
    iptables -A FORWARD -i wlan0 -o virbr2 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i virbr2 -o tun0 -j ACCEPT
    iptables -A FORWARD -i tun0 -o virbr2 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i virbr3 -o usb0 -j ACCEPT
    iptables -A FORWARD -i usb0 -o virbr3 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -i ppp0 -o wlan0 -j ACCEPT
    iptables -A FORWARD -i wlan0 -o ppp0 -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    iptables -t nat -A POSTROUTING -o wlan0 -j MASQUERADE
    iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
    iptables -t nat -A POSTROUTING -o usb0 -j MASQUERADE
    
    # Log
    #iptables -N LOGGING
    #iptables -A INPUT -j LOGGING
    #iptables -A FORWARD -j LOG
    #iptables -A LOGGING -m limit --limit 2/min -j LOG --log-prefix "IPTables-Dropped: " --log-level 4
    #iptables -A LOGGING -j DROP
    
    #Final rules
    iptables -A INPUT -j REJECT --reject-with icmp-host-prohibited
    iptables -A FORWARD -j REJECT --reject-with icmp-host-prohibited
    }
    
    firewall_stop() {
    # Clean
    iptables -F
    iptables -X
    iptables -Z
    iptables -t nat -F
    iptables -t nat -X
    iptables -t nat -Z
    iptables -t mangle -F
    iptables -t mangle -X
    iptables -t mangle -Z
    }
    
    
    firewall_restart() {
    firewall_stop
    firewall_start
    }
    
    case "$1" in
    'start')
      firewall_start
      ;;
    'stop')
      firewall_stop
      ;;
    'restart')
      firewall_restart
      ;;
    *)
      echo "usage $0 start|stop|restart"
    esac

Any suggestion?Thanks
# 2  
tcp is not included with SCO 3.2.4. You need to also install tcp 3.2.1 which was a separately purchased item.

You could use kermit C-Kermit Binaries to transfer the files, or uucp.
You also haven't said which direction the copy is going in, and whether you are pulling the file, or pushing it.
# 3  
tcp is installed
otherwise I cannot try the ne2k card and the ppp

Previous Thread | Next Thread
Thread Tools Search this Thread
Search this Thread:
Advanced Search

Test Your Knowledge in Computers #744
Difficulty: Medium
Clang is a compiler front end for the C, C++, Objective-C and Objective-C++ programming languages.
True or False?

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Linux Tip: How to Configure PPP for dialup for a single machine?

I shall explain how to setup PPP on your Linux machine, so that you can connect to the Internet using an external modem and a Dialup connection. This article explains the setup for the superuser alone (Not normal users).My Setup : My external modem (56kbps) is connected to the Serial Port :... (0 Replies)
Discussion started by: EliteHussar
0 Replies

2. IP Networking

NAT Forwarding Issue Endian and Vyatta Firewall

I've experienced this same issue with both the Endian Firewall Appliance and a Vyatta Firewall Appliance. Conversely, it works with a Draytek Firewall/Router. I am trying to forward port 80 traffic to my internal web server which is located on the /24 subnet. I have an external static IP which... (0 Replies)
Discussion started by: mboudro
0 Replies

3. Solaris

SSH/Firewall issue

I am a complete UNIX neophyte with the unenviable task of trying to pseudo manage two SUN boxes with an unknown past. I was not responsible for setting them up, anything that was done on them previously, and have no means of figuring out anything that was done to them. So far I have changed the... (4 Replies)
Discussion started by: tawnos42
4 Replies

4. UNIX for Advanced & Expert Users

vpnclient firewall policy mismatch issue

Hi all, I have installed vpnclient 4.8.00 (0490) on my centOS GNU/Linux OS. I configured the profiles (using the same profile pcf files which was on my WinXp system) I can connect to CISCO VPN from my WinXP machine but with the same profile (.pcf) on Linux am getting "Firewall Policy... (1 Reply)
Discussion started by: zing_foru
1 Replies

5. UNIX for Advanced & Expert Users

linux firewall / dns issue

I have set up a linux (red hat 9) box as my main internet router. I am also running a DNS server on it. What are the rules i have to implement to allow DNS queries through the firewall from outside so that the outside world can see my domains? (1 Reply)
Discussion started by: frankkahle
1 Replies

6. Shell Programming and Scripting

linux firewall

could anybody please tell me the best fire wall for linux . (3 Replies)
Discussion started by: Raom
3 Replies

7. IP Networking

Linux Firewall

ON A LINUX NETWORK, HOW DO I ASSIGN IP ADDRESSES TO OTHER TERMINALS AND AFTER THAT HOW I CAN DENY/GRANT ACCESS TO TERMINALS ON A LAN TO MY TERMINAL.PLEASE SPECIFY THE EXACT COMMANDS.kINDLY HELP ME (3 Replies)
Discussion started by: ameya_shaligram
3 Replies

8. Cybersecurity

Linux Firewall

Does anyone know where I can find some Documentation on building a linux firewall. (4 Replies)
Discussion started by: aojmoj
4 Replies

9. Cybersecurity

Firewall in SCO unix 5.0.4

I am using SCO unix 5.0.4 is there any possibility to create firewall in this? scondly how to connect it to internet i mean thru ppp connection what is command a or dialer actually i m getting confused sometimes ppp dials but disconnects ? pl help me from scratch (0 Replies)
Discussion started by: zaheerkhan
0 Replies

Featured Tech Videos