newscache: Configuration help please
Subject:
AW: AW: Configuration help please
From:
"Straub Herbert" ####@####.####
Date:
30 Jan 2006 09:42:55 +0000
Message-Id: <3BFD6610938CF248B670B10533A25DD27E73BB@xc2kvmg1.wienkav.at>
I think, you have to insert one AccessClient Block like this:
Client 10.0.0.0/255.0.0.0 {
allow read post
# deny access to all newsgroups
List *
Read *
PostTo *
# allow users to gain additional privileges by
# authenticating using standard passwd semantics
# allow to read * and to post to at.* after successful
# authentication
Authentication none
}
Because the 10.1.1.5 access is blocked. You can easy dry the connection
with a telnet command:
telnet NewsCache.Server.fqdn 119
200 NewsCache 1.2r6, accepting NNRP commands
Next you can try to specify in the Client part the fqdn.
HTH Herbert Straub
________________________________
Von: Mike Peasley ####@####.####
Gesendet: Montag, 30. Januar 2006 10:19
An: ####@####.#### Straub Herbert
Betreff: Re: AW: Configuration help please
Thank you for the fast response!
I have changed the entry in /etc/newscache.conf as you suggested, but I
am still unable to connect from the windows box. I have also disabled
the Sygate firewall on the windows box, but as the log shows the
connection as being denied I doubt this is the problem. There is no
firewall installed on the linux box. Log files and access list are
below.
The logs show me trying to connect from the win box, and again
successfully connecting from the local box. Is there something I may be
missing in another area of the .conf?
Thank you for your help, I am sure a resolution is close :o)
Best regards
MP
debug:
Jan 30 21:51:17 sardine NewsCache[10953]: receiving signal SIGCHLD: 17
Jan 30 21:51:58 sardine NewsCache[11230]: nnrpd: access_entry name
matched:
localhost
Jan 30 21:51:58 sardine NewsCache[11230]: NServer::NServer() hostname
set
to: sardine.mshome.net
Jan 30 21:51:58 sardine NewsCache[11230]: RServer::connect: Connecting
to
news.winextra.com from interface sardine.mshome.net to servicename nntp
notice:
Jan 30 21:41:56 sardine NewsCache[9581]: localhost [127.0.0.1] connect
Jan 30 21:42:24 sardine NewsCache[9648]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:43:15 sardine NewsCache[9818]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:45:10 sardine NewsCache[10127]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:46:46 sardine NewsCache[10359]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:47:25 sardine NewsCache[10491]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:50:19 sardine NewsCache[10953]: NewsCache Server Start
Jan 30 21:50:22 sardine NewsCache[10961]: NewsCache Server Start
Jan 30 21:51:17 sardine NewsCache[11094]: 10.1.1.5 [10.1.1.5] denied
Jan 30 21:51:58 sardine NewsCache[11230]: localhost [127.0.0.1] connect
Jan 30 21:57:00 sardine NewsCache[11230]: localhost [127.0.0.1] group
winextra.help.linux 1
Jan 30 21:57:00 sardine NewsCache[11230]: localhost [127.0.0.1] exit
articles 1 groups 1
accesslist:
AccessList {
Client 10.1.1.0/255 {
List *
Read *
PostTo *
Authentication None
}
Client stdin {
allow read post debug
# list all newsgroups, allow users to read *, and to post to *
List *
Read *
PostTo *
# no further authentication necessary/possible
Authentication none
}
Client localhost {
allow read post
# list all newsgroups, allow users to read *, and to post to *
# No xdebug command for unauthenticated clients.
List *
Read *
PostTo *
Authentication unix::::debug
# all authenticated clients are able to use the xdebug command
}
Client .winextra.com {
allow read post
# list all, except for alt.* newsgroups, allow users to
# read at.* and to post to at.*
List *
Read *
PostTo *
# allow users to gain additional privileges by
# authenticating based on a password file
# the format of the file is username:password:read:postto
Authentication none
}
Client 192.168.0.0/255.255.0.0 {
allow read post
# deny access to all newsgroups
List *
Read *
PostTo *
# allow users to gain additional privileges by
# authenticating using standard passwd semantics
# allow to read * and to post to at.* after successful
# authentication
Authentication none
}
Client 192.169.0.0/255.255.0.0 {
allow read
# deny access to all newsgroups
List at.*
Read at.*
PostTo !*
Authentication none
# allow users to gain additional privileges by
# authenticating using standard passwd semantics
# allow to read * and to post to * and can use the xdebug
# command after successful authentication.
# Unauthenticated clients can only read from at.* groups.
}
Client .aol.com {
allow none
}
Default {
allow none
}
}
sardine:~# ping 10.1.1.5
PING 10.1.1.5 (10.1.1.5) 56(84) bytes of data.
64 bytes from 10.1.1.5: icmp_seq=1 ttl=128 time=4.08 ms
64 bytes from 10.1.1.5: icmp_seq=2 ttl=128 time=0.739 ms
64 bytes from 10.1.1.5: icmp_seq=3 ttl=128 time=2.26 ms
64 bytes from 10.1.1.5: icmp_seq=4 ttl=128 time=1.12 ms
64 bytes from 10.1.1.5: icmp_seq=5 ttl=128 time=2.14 ms
--- 10.1.1.5 ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4003ms
rtt min/avg/max/mdev = 0.739/2.072/4.081/1.162 ms
sardine:~#
