[Server-devel] A quick networking question

Holt holt at laptop.org
Tue Feb 28 13:05:13 EST 2012

Clarif: port 80 is (unfort) forwarded thru the XS, for all laptops that 
connect over Wifi.

Traffic across all other ports (incl 443 = https) is thankfully blocked, 
though I've no idea why/how unfortunately ;)

On 2/28/2012 12:49 PM, Holt wrote:
> On 2/28/2012 12:29 PM, George Hunt wrote:
>> In Haiti, Adam and I have been trying to get a school server online.  
>> We're finding that volunteers are going through the school server to 
>> the internet with their laptops, and he wants to turn that off, at 
>> least for now.
>> I've turned off /proc/net...ip_forward and verified that there is no 
>> masquerade enabled in the iptables.
>> But that's not enough!!  I wasn't sure that the vpn wasn't setting up 
>> a gateway, so I had him turn off the vpn.  But still the school 
>> server was routing to the 3G usb modem dongle even with the vpn pipe 
>> closed down.
>> How does the school server act like a router?  It may be related to 
>> the ppp connection and wdial configuration.  But I'm stumped.
>> But I'm trying to bring myself up to speed quickly because he really 
>> wants to get it turned off.
>> Any ideas on what to try next?  I'm afraid the solution is going to 
>> be to pull out the 3g dongle.
> Interestingly the XS(*) creates an open path for any random non-XO 
> laptop to access the web, but seems to block non-web traffic like ssh 
> and IMAP.
> In any case, even if it's just forwarding port 80 and 443 (?) we just 
> cannot afford to become a free ISP here in semi-rural Haiti, given so 
> many visitors to our school especially.
>     (*) XS as set up by Tony Anderson early autumn 2011, and currently 
> maintained by George Hunt & I.
> --
> Help kids everywhere map their world, at http://olpcMAP.net !

More information about the Server-devel mailing list