Anyone knows one.....????

  • Thread starter Thread starter Carlos Arruda
  • Start date Start date
C

Carlos Arruda

I would need a newsgroup where i could find out how to setup my network now
that i have a router.
I have an e-mail server and i am having problems in reciving mails, i am not
reciving mails at all.
Any newsgroups for that please?
Cheers
Carlos Arruda
 
Carlos:

Are you using DSL with PPPoE ?

If yes, MTU must be set to 1492 on Router.

In some situations, the mail server also will need tio have a MTU=14592, or
less.

Dave


PS the xdsl group you are already subscribed to is the "best"

Other are TCP/IP groups. There ae a few of them.
 
| I would need a newsgroup where i could find out how to setup my network
now
| that i have a router.
| I have an e-mail server and i am having problems in reciving mails, i am
not
| reciving mails at all.
| Any newsgroups for that please?
| Cheers
| Carlos Arruda
|
|
| ---
| Outgoing mail is certified Virus Free.
| Checked by AVG anti-virus system (http://www.grisoft.com).
| Version: 6.0.500 / Virus Database: 298 - Release Date: 10-07-2003
|
|

port 25 is used for mail delivery. forward it from the router to your
internal machine.

ken k
 
Thanks guys but i still can't acess the router through web interface to
setup.
By doing http://10.0.0.2 and inserting the default username and password for
the router, the only thing that i can do is to set my ISP username and
password, i can't do any other thing like changing the IPs and everything
else.
You guys can see in the picture on the link bellow.
http://www.carlos-arruda.com/router.jpg
Thats the only thing i can do for the moment and right now the router is off
so that i can get my e-mail.
Thanks
Carlos Arruda
 
"Carlos Arruda" said:
Thanks guys but i still can't acess the router through web interface to
setup.
By doing http://10.0.0.2 and inserting the default username and password for
the router, the only thing that i can do is to set my ISP username and
password, i can't do any other thing like changing the IPs and everything
else.
You guys can see in the picture on the link bellow.
http://www.carlos-arruda.com/router.jpg
Thats the only thing i can do for the moment and right now the router is off
so that i can get my e-mail.
Thanks
Carlos Arruda

I see in the main manual, there are two accounts:

user, password
admin, epicrouter

Have you tried both of those, to see if the page on the
web browser is different ? Maybe that is the trick.

Paul
 
user and password don't even work that one.
this router has been all the way complicated cause it didn't work when i
first got it.
I was told and sent some files from the company that sold it to me and i had
to open the router to erase and reprogram the routers chip wich i did and it
all whent fine.
This is what i was told to do.:

----------------------------------------------------------------------------
----------------------------------------------------------------------------
--------------

Hi Carlos,

Here are the files. If it fails it will not void the warrenty. To reprogram
follow the instructions.

1. Short the jumper on the board, cycle the power.

2. Restart the PC in the MS-DOS Mode and plug in the USB cable and the power
adapter into the router. (Make sure you boot in DOS mode, ideally off a boot
disk, also plug the cable directly into a USB port on the PC not via a hub,
if you have one).

3. Extract all the files into the same directory, such as C:\ADSL. Change
the directory to C:\ADSL and type "Flash /e" and then press enter, ie:

C:\ADSL\flash /e
press <Enter>

Should see a screen like this:

"
**************************************************
******* USB Flash programmer Ver 2.2 *************
******* CONEXANT SYSTEMS INCORPORATED ************
**************************************************
Initializing USB interface...
Manufacturer ID = 0x00c2
Device ID = 0x2249
You are using an MXIC flash.
Device ID recognized.
Erasing the flash...................................
Flash was erased successfully.
"

4. After the flash has been erased, please type "C:\ADSL\P52_USB", then
press <Enter>

5. A screen will appear you will need to press enter twice to enter a
default MAC address, then the programming will continue, finally a message
will appear that programming is complete.

"
***************************************************
****** USB Flash programmer Ver 2.2 **************
******CONEXANT SYSTEMS INCORPORATED***************
*********************************************
------------Mac Configuration---------------------
Start Ethernet Global MAC(00-04-ED-CC-F8-F1-00). Press <ENTER>
End Ethernet Global MAC(00-04-ED-CC-F8-F1-FF) Press<ENTER>
File Size
Reading 'flash.bin'
Reading 'bootrom.bin'
Reading 'firmware.dif'
Flash programming in progress
/
Flash programming in progress
Flash programming in complete
Please see states of LEDs to detemine success
Solid LEDs=Success
LED not lit =Error
"

6. Remove the power from the router, remove the programming link. unplug the
USB cable and connect once again using the usual ethernet connection.

7. When connecting the power to the router. For the first power up,it will
take a little while (>1 min) to complete the boot process. Once boot is
complete restart your PC.

Regards

Kevin

----------------------------------------------------------------------------
----------------------------------------------------------------------------
-------------------------------

So far nothing from Origos thecnical suport.
www.origo2000.com

Best Regards
Carlos Arruda
 
Yes mate.
I have been running my own e-mail server for about 3 months with no problems
with freeserve.
The software i use is 602Pro Lan Suit 2003 and its quit nice and a 5 users
free edition, you can see more in;
www.software602.com.
This is gonna get much more complicated cause not only i have the e-mail
server as i have an FTP server and i have to learn how to set things up,
cause i have seen already that once the ftp server in on it has the internal
IP.
Well Paul, thanks very much for the help.
I'll keep in touch.
Cheers mate.
Best Regards
Carlos Arruda
 
Carlos:

Are you using DSL with PPPoE ?

If yes, MTU must be set to 1492 on Router.
BS!


In some situations, the mail server also will need tio have a MTU=14592, or
less.

Dave


PS the xdsl group you are already subscribed to is the "best"

Other are TCP/IP groups. There ae a few of them.
 
"Carlos Arruda" said:
Hello everybody...
Its done at last.......:-) i am happy.
It was right there under my eyes...
http://10.0.0.2/doc/advance.htm
Thanks everybody and you Paul for the time you guys spent with me.
I will still need some advise on how to set things up for the best
performance possible and cause the e-mail server, thats a problem, i have
never done it.
Cheers everybody.
Carlos Arruda

Good stuff! First thing is, change the passwords on whatever accounts
work on the router. Apparently, there is some kind of hack, where a
hacker can bounce a packet off a LAN machine, to get at the router
admin interface, so it is a good idea immediately to change the
passwords.

The Software602 stuff talks about "SSL SMTP/POP3", so this complicates
matters somewhat. If you were running SMTP/POP3 alone, then port
forwarding port 25 and port 110 from your public_address to a
private_address (10.0.0.x) machine would be needed. With SSL in the
picture, I don't know if the other connections are tunneled or just
passwords are encrypted. So, the ports you _might_ need to forward would
be something like this.

21 ftp
25 smtp
80 http/web
110 pop
443 https/ssl

However, don't do ANY port forwarding until you understand what you
are doing. Continue using the old ADSL modem and you current setup,
until you finish doing your research. You have the "Vera" machine and
the "Carlos" machine - once you port forward to one of those machines,
there is an open port on the firewall of your ASR-8400. This means that
the software that terminates the service must be secure and robust to
attack. Both the OS and the applications software you use on the machine,
must have all security updates applied to it - otherwise hackers will
exploit any known holes in the software. So, don't open ports on the
ASR-8400 until you are aware what ports need to be open.

I took a quick look at the Software602 user manual, and it seems to
have a complete firewall application built in, with "Accept" and
"Deny" style router rules. Now that you have a router, you'll need
to duplicate what the firewall "Accepts", in order for the services
protected by the firewall to work. It would be really handy,
if you could find the Software602 file that contains all the routing
rules, because that will tell you what ports or port ranges need
to be opened up. The Software602 user interface doesn't contain
enough information to really tell you what it required. The IANA
port file doesn't explain to you what combination of ports must
be opened for a given service. For example, in FTP there are active
and passive type connections, and the way ports work on those two
options are different.

So, as a hacker, I would start with the router rules file, if you
can find it, as the "Accept" and "Deny" rules in the router file
will give you a hint as to what is required.

Another (rather backward) way to do this, would be to "port scan"
your current configuration, with one of the several security checking
port scanning web sites. This won't tell you everything you need
to know, but again, it will give hints as to what ports are open
on your existing setup with just the Software602 firewall to protect
you.

http://Cable-DSL.home.att.net/#CheckSecurity

Without a proper security setup, hackers will use your FTP server
to distribute porn, music, or movies. You'll know when you see the
light flashing on the modem all the time, that they OWN your machine.
So, be careful, and do the research first, before changing
configurations.

Also, do regular backups of your computer, so if your computer is
compromised, you can wipe the disks and restore your software. You
have to keep enough versions of backups around, to find a set of
files from before the date of compromise/attack.

Being your own ISP is a lot of work :-)

HTH,
Paul
 
Ed:

BS ? -- FU !

The standard size of MTU is 1500 bytes for Ethernet.
The encapsulation of a packet in a PPPoE packet consumes 8 bytes.
Thus 1500 - 8 = 1492 bytes.

Dave
 
"Carlos Arruda" said:

You could go here, and use one of the port scanning sites, to
test your existing install. This should give you a report as to
what ports are currently open. Scanning the original configuration
first will help identify ports you have forgotten -
http://Cable-DSL.home.att.net/#CheckSecurity

As far as ports go, if you look in the SMTP and POP3 tabs in the
Software602 control panel, you can see what ports are being used.
What ports need to be opened, depends on what you have checked here.

Lets say you are using unsecured email. This would be port 25 and
port 110. On the ASR-8400, this would mean adding these ports for
forwarding. Assuming the "Carlos" machine has the email server,
and the "Carlos" machine is at address 10.0.0.6, then the port
maps would look like:

Public_Port Private_Port Port_Type Host_IP_Address
25 25 TCP 10.0.0.6
110 110 TCP 10.0.0.6

According to the Software602 control panel, the secure SSL ports
are 2525 and 995. If you are using SSL, then you would forward these
ports instead.

Maybe that will be enough to get you started. You may have to forward
port 80 and 443 to make http and https work to www.carlos-arruda.com .

HTH,
Paul
 
"Carlos Arruda" said:
Hello.
Can i e-mail directly to your e-mail please? If not thats OK.
This is gonna get a bit more harder then i thought.
I have DNS2GO software, FTP Server, The e-mail server, so i recon there's a
lot of fowording to be done....
Cheers mate.
Carlos Arruda

My advice is free to all, so it stays in USENET (sorry). As i
said in the post, the easiest thing to do is try using a "port scan".
If any of your existing configuration has "anti-scan" software,
such as on the firewall in the Software602 stuff, then the "port
scan" would be defeated (as the firewall would lock out the
IP address doing the scan - some firewalls have an anti-scanning
feature like this, and you have to configure the firewall to allow
a scan like this, if the product has an anti-scan feature).

Rather than use a web site on the net to do the port scan, I found
a Windows program that will do the scan for you. Assuming all your
Software602 stuff is on the "Carlos" machine, you could install
and run the following program on the "Vera" machine. The
syntax (for the DOS version) would be something like "nmap 10.0.0.6",
where 10.0.0.6 is the address of the "Carlos" machine. After a short
time, the program should give you a list of open ports, and that
should get you started, in terms of things to port forward via the
router.

http://www.insecure.org/nmap/nmap_download.html (see Windows download...)

[ Note: Please do not point this program at machines on the Internet,
because if your ISP has port scanning detection on their router,
you could lose your account. ]

For example, it will report that port 80 is open, because
that port is used for HTTP to your web server. Based on the list
of ports returned, you can look them up in the IANA port list,
and that will give you some idea as to which services these ports
correspond to.

With the list of ports in hand, then you can go to the ASR-8400
and port forward those ports to the machine running the Software602
suite. Note however, that if you enable a brand new feature in the
Software602 stuff, that port won't be in the list of the "port scan"
you did, because a software package like that only opens ports for
services currently being used. So, you would have to go back to the
"Vera" machine and run another scan, to find out which ports were
opened for the new feature.

I suggest you enlist the aid of one of the people using your
servers, to test the various stuff as you enable it by port forwarding.
You could use a couple of hotmail accounts or some other web based
third party email service, to communicate until everything is working
properly. The reason this would work, is the hotmail server would
be outside your domain, and both you and your friend would be clients
to that server - so no port forwarding would be needed to access the
hotmail account.

If I had been able to find a list of services and what ports needed to
be open for each, I would have given it to you by now. I'm surprised
there isn't a web site with that kind of comprehensive info on it. If
I find one I'll post it. The following one has a tiny bit of info,
but not enough to get the whole job done, because SSL protection is
missing:

http://www.homenethelp.com/web/howto/apps-behind-router.asp

If you paid for a license for the Software602 product, then you should
contact their software support people, because they would have this
information. I think if you can find the "rules" file for the software
firewall, this will also contain a concise list of which ports to open.

Post again if you get stuck.

Paul
 
Hello Paul and once more thanks for your help and time spent on me and i
want you to know that i understand you and lets just stick with the
newsgroup then.
This is what i got from my 602ProLan Suite;

----------------------------------------------------------------------------
----------------------------------------------------------------------------
-------
Carlos,
Unfortunately, we do not provide support for configuring routers. If you

have a specific configuration issue you would like to discuss with us

regarding the LAN SUITE software, we can assist you. We do not provide

support for configuring anything except the LAN SUITE software (this

includes ANY third party application or equipment).

If you need assistance with your router, it may be helpful to contact the

manufacturer of the router or ask someone in the Support Forums for

assistance. You can access the Support Forums at the following URL:

http://support.software602.com/forum/

Regards,

Jimi Gooding

602Pro LAN SUITE Support

------------------------

Question: Hello.
I now have a router and i need help on how to setup the software so that i
can receive e-mails and send e-mails.
Best Regards
Carlos Arruda

----------------------------------------------------------------------------
-------------------------------------------------------------------
And to think that i've paid for their thecnical support package, well i'll
get it done with your help.
Cause i don't have much time today, this weekend, saturday evening i will be
putting in my webpage printscreens of what i think are the places for the
ports fowording in the router.
I have this option wich is virtual server, www.carlos-arruda.com/router1.jpg
, i think is this were i have to put the port and the IP from the machine
that's running the mail server.
One thing, the machine the hosts the mail server has to have a static IP
ins't it?
The best thing is to have all machines with static IPs and forget the DHCP
server, i never liked it anyway.
I am using the following IPs;

192.168.28.1 - Router
192.168.28.2 - E-Mail Server (Old PC, DELL Optiplex Gs+, Pentium 166MMX,
64MB Ram, 20GB HDD) in a near future it will be a PIII 1GHZ, i am thinking
about PCChips board all in one with integraded processor, any comments on
that board?, SCSI Card Adaptec 39160 Dual Channel 64bits, 8 HDD Seagate
Barracuda 18.2GB each 10.000rpm and if i could use the 602ProLan Suite under
Windows 2000 Server i would but it seams that the software its not meant to
be on windows 2000 Server, to bad, i lik windows 2000 Server.
192.168.28.3 - Carlos PC (Me)
192.168.28.4 - Vera's PC (Wife)
192.168.28.5 - Hugo's PC (Friend in the same building).

The best thing to do would be trying to get this done by steeps, one at a
time.
So i am asking in your opinion what should those be?

I know that the Router works fine as a modem and as a switch 10/100 ( i can
have it working just full, half, 100 or 10bits, its an option in the router
for that).

Steeps
1 Steep - With the router, try to get/send mail from my ISP without my
e-mail server, yes?
2 Steep - Internet available through the router (
www.carlos-arruda.com/internetexplorer.jpg ), Yes?
3 Steep - To get the mail server running using the router. Do i need to
change anything on the mail server software or just the port fowording in
the router is enough? I am thinking that yes, if not, hows the mail server
software is gonna know were to send your e-mail? He has to go through the
router, so where is the router? Am I right? Sorry all these questions but i
don´t this for like a year now, but i think its all coming back.

After this is done, time to move to the ftp server and then the dns2go wich
allows you to see my webpage cause i dont have a static IP on my ISP.

Cheers mate.
Carlos Arruda






Paul said:
"Carlos Arruda" said:
Hello.
Can i e-mail directly to your e-mail please? If not thats OK.
This is gonna get a bit more harder then i thought.
I have DNS2GO software, FTP Server, The e-mail server, so i recon there's a
lot of fowording to be done....
Cheers mate.
Carlos Arruda

My advice is free to all, so it stays in USENET (sorry). As i
said in the post, the easiest thing to do is try using a "port scan".
If any of your existing configuration has "anti-scan" software,
such as on the firewall in the Software602 stuff, then the "port
scan" would be defeated (as the firewall would lock out the
IP address doing the scan - some firewalls have an anti-scanning
feature like this, and you have to configure the firewall to allow
a scan like this, if the product has an anti-scan feature).

Rather than use a web site on the net to do the port scan, I found
a Windows program that will do the scan for you. Assuming all your
Software602 stuff is on the "Carlos" machine, you could install
and run the following program on the "Vera" machine. The
syntax (for the DOS version) would be something like "nmap 10.0.0.6",
where 10.0.0.6 is the address of the "Carlos" machine. After a short
time, the program should give you a list of open ports, and that
should get you started, in terms of things to port forward via the
router.

http://www.insecure.org/nmap/nmap_download.html (see Windows download...)

[ Note: Please do not point this program at machines on the Internet,
because if your ISP has port scanning detection on their router,
you could lose your account. ]

For example, it will report that port 80 is open, because
that port is used for HTTP to your web server. Based on the list
of ports returned, you can look them up in the IANA port list,
and that will give you some idea as to which services these ports
correspond to.

With the list of ports in hand, then you can go to the ASR-8400
and port forward those ports to the machine running the Software602
suite. Note however, that if you enable a brand new feature in the
Software602 stuff, that port won't be in the list of the "port scan"
you did, because a software package like that only opens ports for
services currently being used. So, you would have to go back to the
"Vera" machine and run another scan, to find out which ports were
opened for the new feature.

I suggest you enlist the aid of one of the people using your
servers, to test the various stuff as you enable it by port forwarding.
You could use a couple of hotmail accounts or some other web based
third party email service, to communicate until everything is working
properly. The reason this would work, is the hotmail server would
be outside your domain, and both you and your friend would be clients
to that server - so no port forwarding would be needed to access the
hotmail account.

If I had been able to find a list of services and what ports needed to
be open for each, I would have given it to you by now. I'm surprised
there isn't a web site with that kind of comprehensive info on it. If
I find one I'll post it. The following one has a tiny bit of info,
but not enough to get the whole job done, because SSL protection is
missing:

http://www.homenethelp.com/web/howto/apps-behind-router.asp

If you paid for a license for the Software602 product, then you should
contact their software support people, because they would have this
information. I think if you can find the "rules" file for the software
firewall, this will also contain a concise list of which ports to open.

Post again if you get stuck.

Paul
 
Hello Paul and everybody.
With the modem/router working already, i have no problems with internet and
the dns2go software connects to the internet with no problems.
Without my e-mail server yet configured and its not running, i send and i
receive e-mail from my acount with my ISP
([email protected]).
I ping my url (www.carlos-arruda.com) and i see my wan IP cause of the
dns2go software, so far so good.
The problem is that the port forwording is not working or i probably am in
the wrong part of the routers configuration.
Everytime that i try to access my site (www.carlos-arruda.com) i have this
login thing to insert username and password wich is my routers configuration
webpage, so bettewn the internet and my 602Pro Lan Suite something is wrong.
For the port forwarding i have the following:

Virtual Server Configuration

ID Public Port Private Port Port Type Host IP Address
1 80 80 TCP 192.168.28.4
(My 602Pro Lan Suite)
2 443 443 TCP 192.168.28.4
(My 602Pro Lan Suite)

If this is the port forwarding is not working then, cause i can't see my
webpage as well you guys can't see it as well if you try, it will ask you
guys for a username and password wich will give you access to my routers
configuration. ( I have changed the password and its quite big the new one
:-), your advice remember???).
Any sugestions guys????? Paul????
Cheers and thanks to all.
Carlos Arruda






Paul said:
"Carlos Arruda" said:
Hello.
Can i e-mail directly to your e-mail please? If not thats OK.
This is gonna get a bit more harder then i thought.
I have DNS2GO software, FTP Server, The e-mail server, so i recon there's a
lot of fowording to be done....
Cheers mate.
Carlos Arruda

My advice is free to all, so it stays in USENET (sorry). As i
said in the post, the easiest thing to do is try using a "port scan".
If any of your existing configuration has "anti-scan" software,
such as on the firewall in the Software602 stuff, then the "port
scan" would be defeated (as the firewall would lock out the
IP address doing the scan - some firewalls have an anti-scanning
feature like this, and you have to configure the firewall to allow
a scan like this, if the product has an anti-scan feature).

Rather than use a web site on the net to do the port scan, I found
a Windows program that will do the scan for you. Assuming all your
Software602 stuff is on the "Carlos" machine, you could install
and run the following program on the "Vera" machine. The
syntax (for the DOS version) would be something like "nmap 10.0.0.6",
where 10.0.0.6 is the address of the "Carlos" machine. After a short
time, the program should give you a list of open ports, and that
should get you started, in terms of things to port forward via the
router.

http://www.insecure.org/nmap/nmap_download.html (see Windows download...)

[ Note: Please do not point this program at machines on the Internet,
because if your ISP has port scanning detection on their router,
you could lose your account. ]

For example, it will report that port 80 is open, because
that port is used for HTTP to your web server. Based on the list
of ports returned, you can look them up in the IANA port list,
and that will give you some idea as to which services these ports
correspond to.

With the list of ports in hand, then you can go to the ASR-8400
and port forward those ports to the machine running the Software602
suite. Note however, that if you enable a brand new feature in the
Software602 stuff, that port won't be in the list of the "port scan"
you did, because a software package like that only opens ports for
services currently being used. So, you would have to go back to the
"Vera" machine and run another scan, to find out which ports were
opened for the new feature.

I suggest you enlist the aid of one of the people using your
servers, to test the various stuff as you enable it by port forwarding.
You could use a couple of hotmail accounts or some other web based
third party email service, to communicate until everything is working
properly. The reason this would work, is the hotmail server would
be outside your domain, and both you and your friend would be clients
to that server - so no port forwarding would be needed to access the
hotmail account.

If I had been able to find a list of services and what ports needed to
be open for each, I would have given it to you by now. I'm surprised
there isn't a web site with that kind of comprehensive info on it. If
I find one I'll post it. The following one has a tiny bit of info,
but not enough to get the whole job done, because SSL protection is
missing:

http://www.homenethelp.com/web/howto/apps-behind-router.asp

If you paid for a license for the Software602 product, then you should
contact their software support people, because they would have this
information. I think if you can find the "rules" file for the software
firewall, this will also contain a concise list of which ports to open.

Post again if you get stuck.

Paul
 
Back
Top