<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=iso-8859-1" http-equiv=Content-Type>
<STYLE>.hmmessage P {
PADDING-BOTTOM: 0px; MARGIN: 0px; PADDING-LEFT: 0px; PADDING-RIGHT: 0px; PADDING-TOP: 0px
}
BODY.hmmessage {
FONT-FAMILY: Calibri; FONT-SIZE: 12pt
}
</STYLE>
<META name=GENERATOR content="MSHTML 8.00.6001.23543"></HEAD>
<BODY class=hmmessage bgColor=#ffffff>
<DIV><FONT face=Arial>Thank you Bill for your information about
UFW.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>Will look for another simple Firewall.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>73s Jose / HP2AT</FONT></DIV>
<BLOCKQUOTE
style="BORDER-LEFT: #000000 2px solid; PADDING-LEFT: 5px; PADDING-RIGHT: 0px; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px"
dir=ltr>
<DIV style="FONT: 10pt arial">----- Original <FONT size=3>Message</FONT> -----
</DIV>
<DIV
style="FONT: 10pt arial; BACKGROUND: #e4e4e4; font-color: black"><B>From:</B>
<A title=thunderft@hotmail.com href="mailto:thunderft@hotmail.com">Wm
Lewis</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=hp2cwb@cwpanama.net
href="mailto:hp2cwb@cwpanama.net">Jose Ng Lee</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Tuesday, January 28, 2014 10:47
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> RE: [nos-bbs] Raspberry Pi Jnos
Telnet from another PC problem</DIV>
<DIV><BR></DIV>
<DIV dir=ltr>Just an FYI to all who use UFW (Uncomplicated
Firewall)......<BR> <BR>On one of my older machines, it works
great.....<BR> <BR>On my brand new top of the line machine, UFW HATES
"PROTO=4" and tries to block it. <BR> <BR>The biggest issue is that
UFW was built with only a few "PROTO=...." rules and PROTO 4 was not one
of them. <BR> <BR>So, there is no known way (at least that I could find)
to issue a rule in UFW like "UFW ALLOW PROTO=4". It just isn't
possible. Which really sucks, because UFW is very uncomplicated in
all other aspects.<BR> <BR>Bill<BR>KG6BAJ<BR>
<DIV>
<HR id=stopSpelling>
From: hp2cwb@cwpanama.net<BR>To: nos-bbs@tapr.org<BR>Date: Tue, 28 Jan 2014
21:28:15 -0500<BR>Subject: Re: [nos-bbs] Raspberry Pi Jnos Telnet from another
PC problem<BR><BR>
<DIV><FONT face=Arial>I found the solution to my problem.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>I disable the firewall ufw and is forwarding the IP and
be able to telnet from another PC.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>I used ufw because is a simple firewall and have this
rules:</FONT></DIV>
<DIV><FONT
face=Arial><BR>To
Action
From<BR>--
------
----<BR>80/tcp
ALLOW
Anywhere<BR>22/tcp
ALLOW
Anywhere<BR>10000/tcp
ALLOW
Anywhere<BR>443/tcp
ALLOW
Anywhere<BR>6300/tcp
ALLOW
Anywhere<BR>7300/tcp
ALLOW
Anywhere<BR>21/tcp
ALLOW
Anywhere<BR>23/tcp
ALLOW
Anywhere<BR>3286/tcp
ALLOW
Anywhere<BR>8000/tcp
ALLOW
Anywhere<BR>10092
ALLOW
Anywhere<BR>10094
ALLOW
Anywhere<BR>10093
ALLOW
Anywhere<BR>10095
ALLOW
Anywhere<BR>14580
ALLOW
Anywhere<BR>14501
ALLOW Anywhere<BR></DIV>
<DIV>Now have to figure out how to write the rule for the ufw to not block the
tun0 IP forwarding.</DIV>
<DIV> </DIV>
<DIV>On my Full size PC with Ubuntu using a more complicated Shoreline
Firewall.</DIV>
<DIV> </DIV>
<DIV>73s Jose / HP2AT</FONT></DIV>
<BLOCKQUOTE
style="BORDER-LEFT: #000000 2px solid; PADDING-LEFT: 5px; PADDING-RIGHT: 0px; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV style="FONT: 10pt arial; BACKGROUND: #e4e4e4"><B>From:</B> <A
title=bobtenty@gmail.com href="mailto:bobtenty@gmail.com">Bob Tenty</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=nos-bbs@tapr.org
href="mailto:nos-bbs@tapr.org">nos-bbs@tapr.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, January 27, 2014 3:58
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [nos-bbs] Raspberry Pi
Jnos Telnet from another PC problem</DIV>
<DIV><BR></DIV>
<DIV class=ecxmoz-cite-prefix>To narrow it down you can use "tcpdump" at the
interface from the kernel to jnos and the ipip interface<BR>to see which one
what is not passing the traffic.<BR><BR>73,<BR><BR>Bob VE3TOK<BR><BR><BR>On
14-01-27 11:35 AM, Jose Ng Lee wrote:<BR></DIV>
<BLOCKQUOTE
cite=mid:703641AD310B4B7183575A07654EB3A7@HOLLYWOOD.HOLLYWOOD.COM>
<STYLE><!--
--></STYLE>
<DIV><FONT face=Arial>I am using the F6BVP Raspbian image preinstalled
with AX.25 and FBB, DXSpider, and FPAC working OK.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>Uploaded the Jnos 2.0j and tried also 2.0jx4 sources
to the Pi and compiled OK both jnos executable.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>My problem is that I am not able to Telnet directly
to the JNOS in the Raspberry PI from a PC.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>I am able from the PC to Telnet first to the Linux
side on the Raspberry Pi and then to the JNOS.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>On my Full size PC with Ubuntu and JNOS, I can
Telnet OK from a PC directly to JNOS. I copy the </FONT><FONT
face=Arial>autoexec.nos from my PC Ubuntu JNOS to the Raspberry Pi and
changed some lines with the different IPs, etc..</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>On Jnos side, the tun0 is setup as
usual:<BR></FONT></DIV>
<DIV><FONT face=Arial># NOS creates the TUN device, so NOS needs to do a
postcofig<BR>shell ifconfig tun0 200.46.129.25 pointopoint 200.46.129.26
mtu 1500 up<BR>pause 5<BR>#<BR>shell arp -s 200.46.129.26
b8:27:eb:e1:b2:ee pub<BR>#</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>The ax25-up script already do:<BR>echo 1 >
/proc/sys/net/ipv4/ip_forward</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>Also, later checked and did "more ip_forward" and
has the "1".</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>Checked from both the PC Ubuntu Jnos and Raspberry
pi Jnos, With Webmin the network interfaces, routes, hostnames.
Also, checked on the command line from both machines de ARP and it looks
OK for both.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>Tried other things with no luck. Looks like
the RPI not able to do the IP to IP forwarding </FONT><FONT
face=Arial>through the tun0 from an outside PC Telnet
connection.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>Has anyone got their Raspberry Pi with Jnos setup
right and be able to Telnet directly from a PC.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial>73s Jose / HP2AT</FONT></DIV><BR>
<FIELDSET class=ecxmimeAttachmentHeader></FIELDSET> <BR><PRE>_______________________________________________
nos-bbs mailing list
<A class=ecxmoz-txt-link-abbreviated href="mailto:nos-bbs@tapr.org">nos-bbs@tapr.org</A>
<A class=ecxmoz-txt-link-freetext href="http://www.tapr.org/mailman/listinfo/nos-bbs" target=_blank>http://www.tapr.org/mailman/listinfo/nos-bbs</A>
</PRE></BLOCKQUOTE><BR>
<HR>
<P><BR>_______________________________________________<BR>nos-bbs mailing
list<BR>nos-bbs@tapr.org<BR>http://www.tapr.org/mailman/listinfo/nos-bbs<BR></P></BLOCKQUOTE><BR>_______________________________________________
nos-bbs mailing list nos-bbs@tapr.org
http://www.tapr.org/mailman/listinfo/nos-bbs</DIV></DIV></BLOCKQUOTE></BODY></HTML>