>
>
>Date: Sat, 22 Feb 2003 11:25:20 +1300
>From: Mike C <mike@stonebow.otago.ac.nz>
>Subject: Routing AT
>
>Hi Everyone,
>
>Does anyone here know whether Telecom/Xtra (JetStart) has
>restrictions on AppleTalk routing or more specifically AT over IP. I
>don't seem to be able to mount any shared volumes on my ASIP
>server...... from the WAN. No problems doing this on the LAN.
>
>
First of all, these are the rules:

You can only route IP over the internet.
You can only pass data over the internet by routing it.
You can often encapsulate other protocols inside an IP packet and then
route that IP packet to a destination that removes the encapsulation and
understands the other protocol.

And this is how the rules relate to your problem:

In earlier versions of the Apple OS, they simply encapsulated appletalk
packets in IP when they needed to get across an IP-only portion of the
network.

In OS X , and.. I *think*, some of the later versions of the OS before
OS X, they put the datagram directly into an IP packet - ie, no
encapsulation is/was used.

That's all well and good for getting data from A to B, but a problem
still remains with A being able to *find* B. Appletalk used broadcasts
to locate services (as do netbios and IPX), and relies on appletalk
routers on the network to provide information about networks that are
not directly connected (ie, not in the broadcast domain).

That is probably where your problem lies.

You should first make sure that your server is contactable, by pinging
it. If you've got OS X, you can simply start a bash shell and use the
ping command. If you've got an older mac, you'll need to download a ping
utility from somewhere.

I'm not sure if you're trying to connect to it using the chooser... if
you are, you almost certainly won't see it in the list. At a minimum,
you'll need to click on the button that says something like "enter
address" or "ip address".. (it's been a while since I last saw the
diaglog box), and enter your server's ip address. You may get away with
entering the DNS name, but I'm not sure.. it may be expecting an
appletalk name or an IP address.

If you can ping it, but can't connect to it after entering the server's
IP address, then it may be blocked by a firewall at the server's end.
I'm guessing by your email address that it's at otago university ?. I've
found their firewall rules to be overly restrictive.. they block all
incoming icmp for example (which is a big no-no, but I won't go there).
You may need to talk to the IT people there, who may be able to help
you, and/or tell you that you'll never be able to do it (but at least
you'll know).

PS. I'm pretty concerned about the idea of having an mac server sharing
itself out to the world in general. I hope there are at least IP address
restrictions configured on it to restrict who can connect to it in the
first place.

-- 
This message is part of the NZ ADSL mailing list. 
see http://unixathome.org/adsl/ for archives, FAQ, 
and various documents. 
To unsubscribe: send mail to majordomo@lists.unixathome.org 
with "unsubscribe adsl" in the body of the message