[leaf-user] DSL troubleshooting.....
Can anyone give me hints about what to look for? My DSL modem (apparently) loses sync when I try to access an external web site. After it syncs back up, and I try again, I lose sync again. Ping works the same way except if I try to ping an IP rather than URL. Now this would seem to me to be a DNS problem. But can this be with my internal DNS or ISP's DNS ??? Could it be either? HISTORY: This is my home/personal network. I have Bering/Shorewall and it has been working up until yesterday. I have not made any changes in the last couple of days. I have a Win2K server (192.168.1.128) inside and it is the primary DNS of the internal network. Bering box (192.168.1.254) is secondary DNS (DNSCache). IE; Win2K will forward unresolved addresses to it (obvious!?!). Ideas please.. John (www.mullan.ca) == http://www.olgc.ca888-345-7568 ext. 2210 mailto:[EMAIL PROTECTED]416-213-2210 (direct) == If each of us have one object, and we exchange them, then each of us still has one object. If each of us have one idea, and we exchange them, then each of us now has two ideas. == KNOW YOUR LIMIT, PLAY WITHIN IT! ONTARIO PROBLEM GAMBLING HELPLINE 1 888 230-3505 DÉPASSER SES LIMITES, CE N'EST PLUS DU JEU. LA LIGNE ONTARIENNE D'AIDE SUR LE JEU PROBLÉMATIQUE1 888 230-3505 --- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] DSL troubleshooting.....
OK. My evidence for 'loses sync': the lights labeled DSL and ATM on the modem go out. Flash for a while, then come back on. I can access any IP or URL that exists within the internal network. IE; a web server exists on host WWW (192.168.1.128) and I can access it via http://www or http://192.168.1.128 However, I cannot access http://www.google.com or others. If the modem is 'synced up', attempting to access an external page may start to load, but the lights again go out on the modem and the page is not displayed. DSL is PPPoE. I don't think I can be too much more specific on the DNS setup except standard DNSCache setup on the Bering box (ie; as suggested when setting up PPPoE). The Win2K machine is set as DNS server but to forward unresolved requests to the Bering box. The Bering box therefore, I believe, will be supplied DNS info from the ISP (Sympatico, by the way). Does this clarify? Ray Olszewski [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: Re: [leaf-user] DSL troubleshooting. ceforge.net 11/25/2003 10:31 At 07:41 AM 11/25/2003 -0500, John Mullan wrote: Can anyone give me hints about what to look for? My DSL modem (apparently) loses sync when I try to access an external web site. After it syncs back up, and I try again, I lose sync again. Ping works the same way except if I try to ping an IP rather than URL. Can you describe in a bit more detail what actual symptoms lie behind (apparently) loses sync and it syncs back up? Are you actually seeing the DSL modem's sync light (or whatever it is called on your device) go off, then back on? And, just to be sure, the problem is associated with *any* attempt at off-LAN DNS resolution (not just port-80 URLs), right? George's response is correct as far as it goes -- problems with a DSL modem's connectivity to your ISP are OSI layer-2, or possibly layer-1, problems, and (putting aside the possibility of some bizarre interaction deliberately introduced by your ISP, mentioned only because I don't put *anything* beyond sufficiently stupid ISPs) layer-3 (IP) and layer-4 (TCP, UDP) activities should not affect layer 2 (or 1). If your evidence for loss of sync is more indirect than what I write above, please provide additional details on the symptoms and on how you have DNS set up. If it is not more indirect, follow George's advice in the first instance. (Except focus on port 53, not port 80, if the problem occurs with pings by FQN as well as URLs). You might still want to tell us the rest of the details of your DNS setup and what sort of DSL service you have (that is, how you get your IP address ... it is PPPoE, for example). I can (just barely) imagine that your ISP is doing something silly to discourage its captives (pardon me, its customers) from bypassing its DNS forwarders. Now this would seem to me to be a DNS problem. But can this be with my internal DNS or ISP's DNS ??? Could it be either? HISTORY: This is my home/personal network. I have Bering/Shorewall and it has been working up until yesterday. I have not made any changes in the last couple of days. I have a Win2K server (192.168.1.128) inside and it is the primary DNS of the internal network. Bering box (192.168.1.254) is secondary DNS (DNSCache). IE; Win2K will forward unresolved addresses to it (obvious!?!). Ideas please.. --- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE
Re: [leaf-user] DSL troubleshooting.....
Hmmm. Physical line problems?? Perhaps this should have been my first line of attack :-( since it seemed to happen suddenly. I will go around and make sure nobody fiddled with any of the filters! Of course, this will have to wait until I get home in an hour or two. As one of my tech teachers used to say NEVER OVERLOOK THE OBVIOUS. Ray Olszewski [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: Re: [leaf-user] DSL troubleshooting. ceforge.net 11/25/2003 13:58 At 01:30 PM 11/25/2003 -0500, John Mullan wrote: OK. My evidence for 'loses sync': the lights labeled DSL and ATM on the modem go out. Flash for a while, then come back on. Ok. Those labels don't match the lights on either of my DSL modems, but your interpretation of them sounds right. Since you use PPPoE, you actually have multiple layer 2 layers, each encapsulated in another. But these lights seem to imply either a layer-1 (physical layer) failure of some sort or a failure of the lowest layer 2 (whatever native protocol the DSL circuit itself uses, something that will encapsulate the Ethernet frames on the far side of the DSL modem and be invisible to your router). I can access any IP or URL that exists within the internal network. IE; a web server exists on host WWW (192.168.1.128) and I can access it via http://www or http://192.168.1.128 This would be true whatever the source of the proboem is. However, I cannot access http://www.google.com or others. If the modem is 'synced up', attempting to access an external page may start to load, but the lights again go out on the modem and the page is not displayed. If the page may start to load, then any DNS requests have been processed successfully. This implies that the problem is not specifically with DNS. DSL is PPPoE. I don't think I can be too much more specific on the DNS setup except standard DNSCache setup on the Bering box (ie; as suggested when setting up PPPoE). The Win2K machine is set as DNS server but to forward unresolved requests to the Bering box. The Bering box therefore, I believe, will be supplied DNS info from the ISP (Sympatico, by the way). No need for more detail here, i think. Does this clarify? Mostly. Your earlier message said, as I read it, that you had sync problems (Ping works the same way) if you ping by FQN but not if you ping by IP address. Based on the added information you just supplied about http problems, I suspect it would be worth knowing more about other services (including ping) and how they react. For example ... 1. Can you connect to an offsite Web page by IP address? 2. Can you do a traceroute by (a) FQN and (b) IP address? More generally, what *can* you do with any reliability over this connection? More and more, this sounds like a line problem ... either a physical problem with the line or the DSL modem, or something at the ISP end ... but one that only manifests itself when you use more than a trivial amount of bandwidth. That is, George's initial guess appears to have been on target (except perhaps for the pat that associates the problem with port 80). [old stuff deleted] --- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net
Re: [leaf-user] LEAF Bering is NOT a ROUTER
Unfortunately, it has been my experience that teachers/professors/etc. don't really like answers that they didn't specifically give you during a course. Naturally, that means if they don't know about it, it doesn't exist This gives credance to the adage: 'Those that can, do. Those that can't, teach!' - Original Message - From: Sebastián Aresca [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, July 11, 2003 7:38 PM Subject: [leaf-user] LEAF Bering is NOT a ROUTER Hi everyone, i want to tell that today a make a exam of Network in the university. And a question was: Features of a router. So i one i said was: Bandwidth Management And then the said that this is imposible and that the LEAF Bering Router is NOT a ROUTER. So .. my question ... jajaja, =): What is Leaf Bering ROUTER Project? Regards. Sebastián A. Aresca --- This SF.Net email sponsored by: Parasoft Error proof Web apps, automate testing more. Download eval WebKing and get a free book. www.parasoft.com/bulletproofapps1 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.Net email sponsored by: Parasoft Error proof Web apps, automate testing more. Download eval WebKing and get a free book. www.parasoft.com/bulletproofapps1 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] syslinux question: putting bering on a diskonchip
Hi Marc. If the disk-on-chip is anything like my setup, the /hda1 device will be the wrong device. With Bering, it will probably be /nftla1. Cheers, == If each of us have one object, and we exchange them, then each of us still has one object. If each of us have one idea, and we exchange them, then each of us now has two ideas. == http://www.olgc.ca888-345-7568 ext. 2210 mailto:[EMAIL PROTECTED]416-213-2210 (direct) == Marc E. Fiuczynski [EMAIL PROTECTED] To: Leaf User [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: [leaf-user] syslinux question: putting bering on a diskonchip ceforge.net 06/03/2003 01:03 PM Hi, I've been following the instructions from the user manual for putting berind on a IDE drive. My IDE drive is a 64MB SanDisk diskonchip module. When I execute the syslinux /dev/hda1 (or syslinux -s /dev/hda1) command I always get a warning message about something with permissions being possibly set wrong for /tmp. When I attempt to boot the system with the IDE drive, it says it is missing the operating system. The linux kernel file is there, so I assume this is a syslinux issue. After mounting /dev/hda1 I don't see the ldlinux.sys file, and I am not even sure this should be there. Any pointers in the right direction would be appreciated. Thanks, MArc --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Boot from Ide disk
It's probably a DOS thing. Countless times I've used DOS to put packages onto the HD or even mount a DOS floppy to copy over modules. DOS of course is limited to the 8.3 file naming convention and truncates with the tilde and number. Caused me more than one headache. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Matt Schalit [EMAIL PROTECTED]To: [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: Re: [leaf-user] Boot from Ide disk ceforge.net 27-02-03 01:17 PM Strange how it's getting hung during the insmod. I think the key is that line that says Insmod: ide-pr~1.o: No module by that name found You should probably verify the package names are not mangled and that you typed everything correctly. If you want, once you copy the files to the IDE drive, I guess its /dev/hda1, you can mount -t msdos /dev/hda1 /mnt ls -l /mnt/boot/lib/modules cat /mnt/boot/etc/modules and paste the output in here so we can see the filenames, dates, sizes, code Matt --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] SSH question
Thanks Tom. Setting my buddies sshd to listen on 0.0.0.0 did the trick. I never noticed that it was set to internal IP. John === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Tom Eastep [EMAIL PROTECTED] To: John Mullan [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] SSH question ceforge.net 14-02-03 10:04 AM John Mullan wrote: Yes, they are intentional. I want to keep the FTP server on port 1021. If anyone comes in from outside without specifying port 1021, they will still get to my FTP server. That leaves me the future opportunity to have another FTP server on 21 but only accessible from internal. At least, that is the way I figure it. Your first rule actually insists that the CLIENT port be 1021 -- rather odd requirement. I will attempt the Telnet idea later. Work doesn't open very many ports. I don't even get port 80 access from this workstation :( Also be sure that your sshd is listening on 0.0.0.0 and/or on the exernal IP address of your firewall. -Tom -- Tom Eastep\ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ [EMAIL PROTECTED] --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] SSH question
Hello folks A little pre-amble: When setting up my buddies LEAF box, I made an exact copy of my LEAF setup, changing PPPoE user/password, some host names, and that was pretty much it. Everything works exactly like mine. Well, almost everything. While I can login to my LEAF box (over the internet) with SSH (TeraTermPro), I cannot with his. I keep getting connection refused. I can do it within the internal net no problem (again, same as mine). What should I look for? Could there be something with the possibility of identical keys having copied my installation? I'm not familiar with how that part may or may no affect the situation. Sample of Shorewall RULES file follows: # # Accept DNS connections from the firewall to the network # ACCEPT fw net tcp 53 ACCEPT fw net udp 53 # # Accept SSH connections from the local and internet network for administration # ACCEPT loc fw tcp 22 ACCEPT net fw tcp 22 # # Bering specific rules: # allow loc to fw udp/53 for dnscache to work # ACCEPT loc fw udp 53 # # Allow all access to weblet # REDIRECT loc 8080 tcp 80 - 192.168.1.254 ACCEPT loc fw tcp 8080 # Custom rules: # allow various services for internal servers # DNAT net loc:192.168.1.254 tcp 8080 DNAT net loc:192.168.1.128 tcp 80 DNAT net loc:192.168.1.128 tcp 21 1021 DNAT net loc:192.168.1.128 tcp 1021 DNAT net loc:192.168.1.128 tcp 25 DNAT net loc:192.168.1.128 tcp 110 DNAT net loc:192.168.1.128 tcp 1080 DNAT net loc:192.168.1.128 tcp 5631 DNAT net loc:192.168.1.128 tcp 5632 DNAT net loc:192.168.1.128 udp 5631 DNAT net loc:192.168.1.128 udp 5632 DNAT net loc:192.168.1.128 tcp DNAT net loc:192.168.1.128 tcp 9925 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] SSH question
Yes, they are intentional. I want to keep the FTP server on port 1021. If anyone comes in from outside without specifying port 1021, they will still get to my FTP server. That leaves me the future opportunity to have another FTP server on 21 but only accessible from internal. At least, that is the way I figure it. I will attempt the Telnet idea later. Work doesn't open very many ports. I don't even get port 80 access from this workstation :( === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Alex Rhomberg alex.lists@bluewTo: John Mullan [EMAIL PROTECTED], [EMAIL PROTECTED] in.ch cc: Subject: AW: [leaf-user] SSH question 14-02-03 08:29 AM A little pre-amble: When setting up my buddies LEAF box, I made an exact copy of my LEAF setup, changing PPPoE user/password, some host names, and that was pretty much it. Everything works exactly like mine. Well, almost everything. While I can login to my LEAF box (over the internet) with SSH (TeraTermPro), I cannot with his. I keep getting connection refused. Try opening a telnet connection to the ssh daemon telnet x.x.x.x 22 If it answers with SSH-2.0-OpenSSH_3.5p1 or something similar, then the problem is with the SSH daemon configuration or the password, because you know that you have a running sshd and an firewall that allows connections to it What should I look for? Could there be something with the possibility of identical keys having copied my installation? There should be no problem with using identical keys though it is clearly not recommended. DNAT net loc:192.168.1.128 tcp 21 1021 DNAT net loc:192.168.1.128 tcp 1021 Are these two 1021 intentional? Regards Alex --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] SSH question
Thanks Tom, I will double check the listening address. It may have gotten changed somehow. I'm not sure about your reference to 'odd requirement'. Do you mean choosing port 1021? My only intention is, that if external clients make an FTP request using default port of 21 that they get routed to 1021 on the appropriate machine. Saves me explaining to friends to use 1021. Would it be more appropriate to use a REDIRECT instead of DNAT?? John === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Tom Eastep [EMAIL PROTECTED] To: John Mullan [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] SSH question ceforge.net 14-02-03 10:04 AM John Mullan wrote: Yes, they are intentional. I want to keep the FTP server on port 1021. If anyone comes in from outside without specifying port 1021, they will still get to my FTP server. That leaves me the future opportunity to have another FTP server on 21 but only accessible from internal. At least, that is the way I figure it. Your first rule actually insists that the CLIENT port be 1021 -- rather odd requirement. I will attempt the Telnet idea later. Work doesn't open very many ports. I don't even get port 80 access from this workstation :( Also be sure that your sshd is listening on 0.0.0.0 and/or on the exernal IP address of your firewall. -Tom -- Tom Eastep\ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ [EMAIL PROTECTED] --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find the answers to all your SSL security issues. http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0026en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Win2K and LEAF
OK Charles. I understand. As you know by now, I only really do this stuff at home. I have helped a buddy by putting a LEAF router at his office. So, not being the guru and not having a great amount of time, I will eventually read bits and pieces. I only ended up with Win2K server because my drive crapped out on Tuesday and I figured that, what the heck. It would give me the ability to keep user profiles in one location. On this scale, it really comes down to what I'm willing to live with and for how long. Right now I timed it and I spend about 1 minute 'Preparing Network Connections'. That's really not too bad. Also, since this is only my home network, I run all servers on one box. It's name is WWW but has FTP and POP3/SMTP. I thought it great to define ftp.mullan.ca, mail.mullan.ca and www.mullan.ca and have them all point to the same box but thanks to M$ that doesn't work anymore as it seems to override my TinyDNS in this respect. (a little of my ranting too :) So really, would it be better to let my M$ box handle internal DNS and let LEAF handle dnscache for internet queries? Is there a package other than TinyDNS that is dynamic and will let the M$ box register hosts? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Charles Steinkuehler Sent: February 8, 2003 10:26 PM To: John Mullan Cc: Leaf-User Subject: Re: [leaf-user] Win2K and LEAF John Mullan wrote: OK. I did my research and found that Win2K Server 'Active Directory' requires and DNS server with active/dynamic record keeping. My DNS is TinyDNS on my LEAF box. TinyDNS does not register computer names (ie; mullan2 = mullan2.mullan.ca). When the Win2K box boots up, it takes 5-10 minutes to figure this out. Can anyone share with me a good way to make these two boxes co-exist peacefully? IE; Make my private TinyDNS dynamic (probably not) or to make the Win2K box forget about the DNS problem? Reinstall Win2K server without AD, or spend the time and effort to come up to speed on how M$ expects you to do networking (be prepared to buy about 3X more server licenses than you ever thought you'd need, as well as upgrade every box on your network to 2K or XP...or just live with the broken-ness Microsoft forces on you to try and get you to upgrade). It might help to through some online references as well...a google search for microsoft co-opting internet standards should turn up some good reading material. BTW: Can you tell I just had a junior network admin replace a failed NT domain controller with 2KServer (with Active Directory installed) because it has to be better than NT, and we'll have to upgrade someday anyway, right?!?. sigh ...sorry about the rant :-/ -- Charles Steinkuehler [EMAIL PROTECTED] --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Win2K and LEAF
OK. I did my research and found that Win2K Server 'Active Directory' requires and DNS server with active/dynamic record keeping. My DNS is TinyDNS on my LEAF box. TinyDNS does not register computer names (ie; mullan2 = mullan2.mullan.ca). When the Win2K box boots up, it takes 5-10 minutes to figure this out. Can anyone share with me a good way to make these two boxes co-exist peacefully? IE; Make my private TinyDNS dynamic (probably not) or to make the Win2K box forget about the DNS problem? Thanks. John --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: AW: [leaf-user] Custom commands??
Thanks folks. With this reminder I now remember that I previously used the 'alias' command inside one of the booting scripts to set up some permanent commands. Never heard of the 'export' one. I never create any other users, only use root so likely any script that executes during boot will work. But any helpful hints on the best (or rule-of-thumb) file would be appreciated. John === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Alex Rhomberg [EMAIL PROTECTED] To: LEAF-user [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: AW: [leaf-user] Custom commands?? ceforge.net 03-02-2003 04:32 AM I knew this once before, but forgot :-( How do I implement my own command line commands?? Ie; use mflash to perform mount -t msdos /dev/nftla1 /flash export mflash = 'mount -t msdos /dev/nftla1 /flash' I believe this can also be saved in .profile as well. In my book, that defines an environment variable I suggest appending the following line to /etc/profile: alias mflash=mount -t msdos /dev/nftla1 /flash Then backup etc.lrp Cheers Alex --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Connecting to ssh with WinXP
Definetly! I use TeraTerm Pro with TTSH add-in. Works like a charm. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === James Neave [EMAIL PROTECTED]To: [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: [leaf-user] Connecting to ssh with WinXP ceforge.net 03-02-2003 08:56 AM Hi, Is there a Win32 ssh client available? I just can't find even a hint of one. Preferably free? :P Thanks, Jim. --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Custom commands??
I knew this once before, but forgot :-( How do I implement my own command line commands?? Ie; use mflash to perform mount -t msdos /dev/nftla1 /flash Thanks. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://www.mullan.ca/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] OT: duplicate POP3 mails
I know this is a little off-topic but there are a lot of gurus on the list. I use an internal POP3/SMTP email server (IA eMail). Besides being configured to accept my @mullan.ca mail (SMTP), it is also configured to fetch my POP3 from my ISP. Most often, when using my client to retrieve messages from my internal server, most of them come through twice. True North Software says it is a problem inherent in POP3 protocol. Is this true? Why, when I went with my own internal server, did the duplication start? Thanks. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bell Business Internet service and LEAF
Since Sympatico High Speed is not dial-up based, the dial-up script probably doesn't apply. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Stephen Lee [EMAIL PROTECTED]To: Leaf-user [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] Bell Business Internet service and LEAF ceforge.net 28-01-2003 04:27 PM On Tue, 2003-01-28 at 08:48, Stephen Lee wrote: On Tue, 2003-01-28 at 05:46, John Mullan wrote: I have set up Bering on Bell DSL. Following the user guide works pretty straight forward. However, when it came to using the username/password for connection, there was a point I wasn't aware of and it made the difference between connecting and not connecting. There are two files where to enter this information. From work here, I cannot recall but I believe it is in the Modules - PPPoE setup. One file you enter the various possible logins you could use (ie; username/password). The other is where you indicate which username you wish to login with. Other than that, the preconfigured defaults worked fine for me. Are you refering to both menu items under pppoe configuration files corresponding to /etc/ppp/peers/dsl-provider and /etc/ppp/pap-secrets respectively? I take it then that Bell uses PPPoE with PAP? One other thing ;-) What did you adjust in the ISP Login Script for the PPP module? Do I need to enter a phone number? Thanks for your help! Stephen --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bell Business Internet service and LEAF
I have set up Bering on Bell DSL. Following the user guide works pretty straight forward. However, when it came to using the username/password for connection, there was a point I wasn't aware of and it made the difference between connecting and not connecting. There are two files where to enter this information. From work here, I cannot recall but I believe it is in the Modules - PPPoE setup. One file you enter the various possible logins you could use (ie; username/password). The other is where you indicate which username you wish to login with. Other than that, the preconfigured defaults worked fine for me. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Stephen Lee [EMAIL PROTECTED]To: Leaf-user [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: [leaf-user] Bell Business Internet service and LEAF ceforge.net 28-01-2003 02:40 AM Hi, Anyone here using Bering with Bell's business high speed DSL service in Ontario, Canada? Is PPPoE used and if so, any suggested settings for Bering1.0? Thanks, Stephen --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Revert Bering back to IDE from DoC
My implementation Bering on my DoC works beautiful. So beautiful in fact, I want to put it on a friends box. To my dismay (but understandably) the install doesn't boot because there is no DoC and it doesn't find the IDE hard disk. Can somebody tell me the easiest and/or most straight forward way to re-implement this with IDE booting? My first guess: - hook an IDE hard disk to my DoC machine - boot into DOS and save all current files to a 'backup' folder - reboot back into Bering - copy ide*.o files to /boot/lib/modules - edit syslinux.cfg to point to hda1 - remove 'something' (doc*.o ?? ) to prevent boot attempts to DOC - backup everything - boot back to DOS and copy the DoC files to hard disk - copy 'backup' files back to root of DoC - try to boot hard disk Any helpful hints??? Thanks === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] H323/NetMeeting support in Bering
Well, I looked at the OpenH323 Gatekeeper site and docs. As a relatively unskilled Linux person, I would say it looks promising. However, it would likely take me a long time to put it into my current LEAF configuration even though I do have the space (80Meg DoC and 32Meg RAM for a 5Meg binary!). If anyone has or ends up being successful on implementing this on their LEAF NAT, please let me (and of course the rest of the list) know how you did it. Thanks. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Charles Steinkuehler Sent: Wednesday, January 22, 2003 1:54 PM To: [EMAIL PROTECTED] Subject: Re: [leaf-user] H323/NetMeeting support in Bering Mike Noyes wrote: On Wed, 2003-01-22 at 09:47, Peter Nosko wrote: pn] I realize that these distributions are produced by dedicated volunteers and by no means do I want to come across as being unappreciative of their efforts. But LEAF and NetMeeting have been around for some time now, and it seems that coming up with a solution for this should get some lasting attention. Is M$'s design truly solution-proof on LEAF firewalls? This is not a M$ thing, it's an H323 thing. Apparently, the H323 protocol was designed in some sort of space-time warp where firewalls are not required, there are more IP's than anyone would ever use (so no masquerading), servers don't have to be secured, and no-one ever gets any SPAM. It sounds like the internet of the 70's (ARPA net), but I didn't think they were doing video conferencing back then... :) I don't personally use netmeeting, but I am somewhat familiar with the H323 protocol and have helped a few folks get it running. IIRC, simply loading the h323 masquerading module (on 2.2 kernels), or it's 2.4 iptables equivelent will get 90% of what most folks want...the ability to place outbound phone calls. Adding a couple of port-forwards (and tweaking the in-bound firewall rules as required) will allow a single computer on the internal masqueraded network to recieve calls, which covers the last 10% of most users needs. To go beyond this (ie multiple internal clients behind a masquerading firewall with the ability for any/all clients to both place and recieve calls), an H323 gateway (see OpenH323) needs to be installed. Mike's links below, are excellent sources of information on getting H323 working with linux in general. Peter, I'm not sure if this will help, but have you considered using a Gatekeeper? Linux NETMEETING HOWTO http://en.tldp.org/HOWTO/NetMeeting-HOWTO/ OpenH323 Project http://www.openh323.org/ Gateway Protocol Stack http://www.iec.org/online/tutorials/h323/topic06.html OpenH323 Gatekeeper http://www.gnugk.org/ OpenGatekeeper H.323 Proxy http://openh323proxy.sourceforge.net/ Last resort Google string: linux netmeeting firewall -- Charles Steinkuehler [EMAIL PROTECTED] --- This SF.net email is sponsored by: Scholarships for Techies! Can't afford IT training? All 2003 ictp students receive scholarships. Get hands-on training in Microsoft, Cisco, Sun, Linux/UNIX, and more. www.ictp.com/training/sourceforge.asp leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] ez-ipupdate dynamic DNS service providers
I have been using NO-IP.com for almost a year. They also provide full DNS service (including MX) and a web based configuration interface. However, they price the MX service seperate from the rest of their DNS service. Together runs me about $50US (a fortune to a Great White North Canadian like myself :-) per year. Great service though and support is very acceptable. Due to the nature of things, I use TinyDNS in private configuration only so I can resolve my domain internally. The need to do so came about when some of my web documents refered to 'mullan.ca' which is hosted on internal machine (not recommended by most listers). Without TinyDNS, this would not work and had necessitated dual sets pages (one refering to local IP, one refering to domain). What I also like about the external service: Both my brother and sister use the free NO-IP DNS. I actually make DNS entries for my domain that point to their free domain. IE: ladyofpool.no-ip.com - ladyofpool.mullan.ca mwmullan.no-ip.com - mike.mullan.ca While probably not amazing to most on the list, I still find this 'neat'. Just my 2cents. John === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Brad Fritz [EMAIL PROTECTED] To: Greg Morgan [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] ez-ipupdate dynamic DNS service providers ceforge.net 01/04/2003 08:07 AM On Fri, 03 Jan 2003 22:02:55 MST Greg Morgan wrote: I own my very own domain name. I want to point it at my leaf box and have a dynamic IP. Can anyone provide feedback on their experiences with any of the dynamic DNS service providers listed here? http://leaf.sourceforge.net/devel/jnilo/ezipupd1.html I have used easyDNS[1] for the last 3 years or so. I have not used ez-ipupdate with my accounts though. In that time, I cannot remember having a single DNS problem. They charge $35 per year for ongoing domain registration (through opensrs.net), DNS service (fully configurable via a web interface), and use of an MTA as a secondary MX. I recommend them highly. Disclosure: I am not affiliated with easyDNS nor was I paid to recommend them. I am a very happy easyDNS customer. --Brad [1] http://easydns.com/ --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Re: [OT] Win2K DNS Problem.
I've been following the thread and have not checked the differences. However, I have two Win2K machines on my home network that experiences no delay/lag with tinydns on the LEAF box. But my work notebook experiences some delays when I bring it home and connect up. I assumed that this was a difference in configurations since at work we use a domain based network and home uses workgroup. The only way it has worked for me is to call my home workgroup the same as the work domain. I also have to keep automatic discovery enabled instead of defining certain TCP/IP parameters. May not be much help but hope this gives additional clues. I may just experiment with some of the suggestions given in this thread (ie; suffix, reg tweaks, etc.) to see if they make any difference. Cheers, John Brad Fritz [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED]Subject: [leaf-user] Re: [OT] Win2K DNS Problem. ceforge.net 01/03/2003 08:36 AM On Thu, 02 Jan 2003 23:40:35 CST Lynn Avants wrote: On Thursday 02 January 2003 10:59 pm, you wrote: While I don't know enough about Win2k to comment for all configurations of that OS, I can say that I do not have a dns suffix specified and I don't experience any dns-related hangs or timeouts (immediately after reboot or otherwise). Are you using DHCP on the machine(s) w/o a suffix??? No, it uses a static address: 192.168.70.128. I'll admit that this problem is not (as) likely to happen on the home releases, I run Windows 2000 Professional (without any service packs, IIRC). the pro/server release of Win2k/XP are set to run within a domain network and this has tons of compatibility problems with any other network setup. That is configurable via the System Properties Network Identification tab. My computer is part of a workgroup, not a (MS Windows) domain. My assumptions is that Mohan is running a non-home Kory, not Mohan. ;-) version of Win2K and the non-rfc compliant DNS/WINS implementation is causing the lag because of the default assumption by Win2k that he is on a domain Win2K/XP network. The problem this behavior causes with older M$ networks can be mind-numbing if you haven't worked with a company adding Win2k/XP workstations w/o upgrading the servers and other workstations. I don't deny it might be an improperly configured Win2k setup or non-RFC behavior triggered by something in his configuration that is not in mine. I'm just saying there are configurations of Win2k professional that do not have problems using djbdns dnscache for name service...even with a static address and without a DNS suffix. --Brad --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bering Tweaks
This appears to be the default in Bering/Shorewall for PPPoE and is already set. Thanks. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Tom Eastep teastep@shorewalTo: John Mullan [EMAIL PROTECTED] l.net cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Bering Tweaks 12/31/2002 02:26 PM --On Tuesday, December 31, 2002 2:05 PM -0500 John Mullan [EMAIL PROTECTED] wrote: Charles (and all). I'd be quite interested in any information that would optimize the path MTU within Bering between my Windoz boxes and my PPPoE connection (DSL modem of course). Could someone point in the right direction? Start by setting CLAMPMSS=Yes in /etc/shorewall/shorewall.conf. -Tom -- Tom Eastep\ Shorewall - iptables made easy Shoreline, \ http://shorewall.sf.net Washington USA \ [EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bering Tweaks
Charles (and all). I'd be quite interested in any information that would optimize the path MTU within Bering between my Windoz boxes and my PPPoE connection (DSL modem of course). Could someone point in the right direction? Thanks. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext. 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === Charles Steinkuehler [EMAIL PROTECTED]To: Matt Russell [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] Bering Tweaks ceforge.net 12/31/2002 12:04 PM Matt Russell wrote: Are there any tweaks for bering that I can use to pick up my cable connection? i downloaded an ipconfig.lrp package but i cannot get it to change the recieve window (one of the main things that the mtu patch does for windows to increase speed). is there something that i am missing? If you are referring to the TCP recieve window size, that is a property particular to the TCP/IP stack of the system in question (windows, in your case), and is not affected by intermediate routers. Essentially, this value is the amount of memory allocated for storing incoming packets, and represents the maximum amount of TCP data the far end can send without getting a ACK back from your box. Windows assumes everyone is on a very high-speed local area network, so the default TCP settings provide sub-optimal results when run over high-latency networks (like the public internet or a corperate WAN). There's no way getting around having to tweak the registry settings for all your windows boxes if you want to make the most of your cable-modem speed across high-latency links (besides switching to linux, or some other OS with a better TCP/IP implementation :-) NOTE: There is another TCP parameter that *CAN* be controlled by the new 2.4 iptables settings in bering, related to the path MTU. Windows also does not properly perform path-MTU discovery, which means it continues to send full-size ethernet packets, even if an intermediate link in the route to the target system does not support that size without fragmentation (ie: the packets go through a VPN or PPPoE connection that wrapps the original data and reduces the effective MTU). This causes lots of unnecessary packet fragmentation which can have nasty effects on overall latency and link throughput. This doesn't sound like what you're looking for, however. -- Charles Steinkuehler [EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] LEAF Printing
I'm sure this topic has been covered to one degree or another, but here it goes: Is there a LEAF package available to allow me to connect up my inkejet printer to the router for shared printing across my Windoz network? Thanks in advance. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://www.mullan.ca/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Cable Connections
Far from being an expert, I'm going to say 'no' right off the bat. An educated guess would say that, yes, you could take the cable signal, connect to a modem and then to your box. But you would have to separate the 'sub-low' from the rest of the cable signals, re-inject them back onto a common wire and then it gets messy. You would have to make some arrangement where you have a separate wire to each household from your central location. If there is equipment ready to do this, it would probably be of prohibitive cost. If it is a condo/apartment complex, better to run CAT5 to each residence and use an ethernet switch. Am I in left field here? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, December 10, 2002 2:42 AM To: [EMAIL PROTECTED] Subject: [leaf-user] Cable Connections Hey, I have a possible client that's building a housing development is providing cable service to all of the houses... I'm guessing the answer to my question is going to be no, but considering my knowledge of cable I figured I'd ask anyways... Is there a way to set up a leaf box at the central location from where the cable service is being provided to the houses? I'm guessing this would entail converting the cable internet so the firewall could deal with it then converting it back to cable before sending it out to individual houses. I've been using Bering, but if there's already support for doing this in another distro I'm willing to learn :) Patrick --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Cable Connections
OK. I could be misinterpreting. I was under the assumption that the builder is buying cable service from a provider (wholesale) then supplying his development. If he is playing the whole cable provider scenario, starting with the whole 'head end', then it probably gets a little more simple. Still a bit of a cost associated with being the head-end. I would imagine that using LEAF router to interface between backbone and higher-speed cable modem (1000mbps?) to keep up with the 'subscribers' cable modems makes sense to me. If, however, he IS buying cable signal from another supplier, he would have to make some sort of arrangement to integrate with their internet service, or block the sub-low band (where the data is) and supply his own. OK. I'm rambling about something I am not totally familiar with and haven't really investigated.. :-) Cheers. === Work: http://www.olgclotteries.com [EMAIL PROTECTED] 888-345-7568 ext 2205 Personal: http://www.mullan.ca [EMAIL PROTECTED] MSN:[EMAIL PROTECTED] === S Mohan [EMAIL PROTECTED] To: John Mullan [EMAIL PROTECTED], [EMAIL PROTECTED], Sent by: [EMAIL PROTECTED] [EMAIL PROTECTED]cc: ceforge.net Subject: RE: [leaf-user] Cable Connections 12/10/2002 06:29 AM There must be some place where the provider converts to ethernet to connect to the Internet. Atleast before the router. Why not plug this in at that point? Am I missing something trivial here? Mohan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Mullan Sent: 10 December 2002 16:39 To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: [leaf-user] Cable Connections Far from being an expert, I'm going to say 'no' right off the bat. An educated guess would say that, yes, you could take the cable signal, connect to a modem and then to your box. But you would have to separate the 'sub-low' from the rest of the cable signals, re-inject them back onto a common wire and then it gets messy. You would have to make some arrangement where you have a separate wire to each household from your central location. If there is equipment ready to do this, it would probably be of prohibitive cost. If it is a condo/apartment complex, better to run CAT5 to each residence and use an ethernet switch. Am I in left field here? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, December 10, 2002 2:42 AM To: [EMAIL PROTECTED] Subject: [leaf-user] Cable Connections Hey, I have a possible client that's building a housing development is providing cable service to all of the houses... I'm guessing the answer to my question is going to be no, but considering my knowledge of cable I figured I'd ask anyways... Is there a way to set up a leaf box at the central location from where the cable service is being provided to the houses? I'm guessing this would entail converting the cable internet so the firewall could deal with it then converting it back to cable before sending it out to individual houses. I've been using Bering, but if there's already support for doing this in another distro I'm willing to learn :) Patrick --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf
RE: [leaf-user] Tinydns won't load.....
Don't know what I did except put it earlier in the package load sequence. Now it loads. This issue can be put to bed. Thanks anyway. Cheers, John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Mullan Sent: Saturday, December 07, 2002 1:47 PM To: [EMAIL PROTECTED] Subject: [leaf-user] Tinydns won't load. Although I put tinydns into 'syslinux.cfg', and it is available, it doesn't load. I can, however, load it manually (lrpkg -I tinydns). What might I be doing wrong? *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://www.mullan.ca/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Problem: Bering DOC in latest stable version
OK. I quickly made the change in number (from 100 to 93) before I left for work. I now get reasonable output from 'fdisk -l /dev/nftla'. Didn't right it down but it gave size/cyl/etc. I will have to wait until I get home now to see if I can mount it. The network here won't let me SSH and I haven't added that module (won't fit on floppy, hence using DOC). Stay tuned for further results :) John Brad Fritz [EMAIL PROTECTED] To: John Mullan [EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] [EMAIL PROTECTED]Subject: Re: [leaf-user] Problem: Bering DOC in latest stable version ceforge.net 12/02/2002 09:51 PM On Mon, 02 Dec 2002 21:34:37 EST you wrote: OK. Now we are getting somewhere. First, my major is 100, not 93. That is left over from when I used Dachstein. I didn't think it would make a big difference, but then I don't know a lot about the inner workings of things. Yep, that will definitely cause problems. The lsmod output is exactly in the order you mention below (of course with a lot of other stuff preceeding it). I suspect changing the major number will fix the current problems. Your modules are probably setup correctly. I'll try changing the major number ( in /var/lib/lrpkg/root.dev.mk right?) first. Yes, /var/lib/lrpkg/root.dev.mk . There should be a pair of lines like: #Disk-On-Chip makedevs nftla b 93 0 0 4 s null 21 in it. As of Bering 1.0-stable (and probably 1.0-rc4), everything in initrd.lrp, including root.dev.mk should work out-of-the-box with DiskOnChip 2000 modules. Sounds like you're getting close. Good luck. --Brad --- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Problem: Bering DOC in latest stable version
I'm not all that big of an expert. Brad appears a bit more knowledgable than myself. I was running Dachstein in DoC and was configured for DHCP (Cable). When I switched to DSL I decided to go with Bering this time. The PPPoE parts was real easy. A no brainer. Just followed guide. However, I can say that, since using the guide, there is some differences but all good. The guide I used was for version prior to the 'stable' version, and most of the file changes have already been done for you. The key seems to be that you either find a newer version of the module(s) or use an older version of the M-Sys format utility/image. Since the module is likely specific to the kernal (I can't compile here) you will have to monkey with it or, like me, reformat the flash with an older verison. Aside from that, I did not follow all of the guides directions. I booted with an msdos floppy and did the higher level FAT format that way. Then I booted the LEAF/Bering floppy and did everything up until the part where you have to fdisk. I used fdisk to check for availability/validity of the DoC. This is where I got hung up. Since I previously had Dachstein on DoC, the flash driver (I think) expected a major device number of 100. I assumed that it was still valid with the drivers for Bering. WRONG. So when I changed it to 93, it worked. After mounting the Doc, I copied everything over. Edited the 'syslinux.cfg' on the DoC (not the floppy one) as suggested. This is where I again strayed from the guide. I rebooted into DOS, ran the SYSLINUX to update the boot record and ran RDEV to update the kernal. I rebooted (without floppy) and oila' instant Bering router/firewall. That was my experience. Hope this helps a little. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 03, 2002 8:26 PM To: John Mullan Cc: 'Brad Fritz'; [EMAIL PROTECTED] Subject: RE: [leaf-user] Problem: Bering DOC in latest stable version John (and/or Brad), I've been teetering on getting this working myself. Can you suggest (or document) variances from the UserGuide? Also, you mentioned the size != 1 error? I've seen that recently, any suggestions on what that is and how to fix it? I've tried to use both a 16MB and 72MB Chip. Thanks, Pat On Tue, 3 Dec 2002, John Mullan wrote: OK Brad, some fantastic success. I now get the expected fdisk results. However, previously I also got the expected /proc/mtd results, but now I get 'permission denied'. However I CAN mount /dev/nftla1 without trouble. I copied everything, redid SYSLINUX and RDEV and I am booting from the DoC with Bering instead of Dachstien! My next question is: what is the problem with /proc/mtd if any? Should I care because I'm not sure at this point I even know what the purpose is. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brad Fritz Sent: Monday, December 02, 2002 8:15 PM To: John Mullan Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Problem: Bering DOC in latest stable version On Mon, 02 Dec 2002 19:20:51 EST John Mullan wrote: Hi Brad. When I run 'fdisk /dev/nftla' it gives me 'unable to open /dev/nftla' The output of 'ls -l /dev/nftla*' should look like this: brw-rw 1 root root 93, 0 Dec 2 16:51 /dev/nftla brw-rw 1 root root 93, 1 Dec 2 16:51 /dev/nftla1 brw-rw 1 root root 93, 2 Dec 2 16:51 /dev/nftla2 brw-rw 1 root root 93, 3 Dec 2 16:51 /dev/nftla3 brw-rw 1 root root 93, 4 Dec 2 16:51 /dev/nftla4 Are your major and minor numbers (93 and 0-4) and permissions correct? If that checks out, what is the output of lsmod? Do nftl docprobe doc2000 docecc mtdcore appear in that order? As far as the existing file system on the DOC, it has always had MSDOS on it. The DOC boots fine (at least until I did syslinux. Now it starts booting into Linux but stops because it cannot find the packages and hangs. But then, it still technically has FAT on it. Any other hints? If the kernel and initrd are loading and then it hangs, that sounds a lot like a module or device config problem to me. If /proc/mtd is still: dev: size erasesize name mtd0: 0500 4000 DiskOnChip 2000 the mtdcore.o and doc*.o modules are probably fine. I would double check that nftl is properly insmoded. If you're still having problems after checking all of the above, feel free to send me the output of dmesg after booting with the DoC-enabled floppy offline. I'd be happy to compare it to mine and let you know if anything jumps out at me. --Brad --- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
RE: [leaf-user] Problem: Bering DOC in latest stable version
Hi Brad. When I run 'fdisk /dev/nftla' it gives me 'unable to open /dev/nftla' As far as the existing file system on the DOC, it has always had MSDOS on it. The DOC boots fine (at least until I did syslinux. Now it starts booting into Linux but stops because it cannot find the packages and hangs. But then, it still technically has FAT on it. Any other hints? John -Original Message- From: Brad Fritz [mailto:[EMAIL PROTECTED]] Sent: Monday, December 02, 2002 12:46 AM To: John Mullan Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Problem: Bering DOC in latest stable version John, On Sun, 01 Dec 2002 19:19:01 EST John Mullan wrote: Well, I've spent the weekend changing from my Dachstein DHCP system on DoC to Bering PPPoe (changed ISPs) latest stable version I believe based on 2.4.18 kernal. It didn't take too long to implement the PPPoE feature using the Install/User guides. But the DoC part has me baffled. Currently, my Bering implementation works fine but still on floppy. After searching archives and re-reading the guides many times, my results follow: - I get the expected messages from insmod docprobe.o DiskOnChip 2000 found at address 0xD8000 Looks good so far. (numbers differ as I couldn't directly copy the screen results) - nftl.o module seems fine (don't get the size != 1 error) and = returns with partition check: nftla: nftla1 Also good. I get: Using /boot/lib/modules/nftl.o NFTL driver: nftlcore.c $Revision: 1.82 $, nftlmount.c \ $Revision: 1.25 $ Partition check: nftla: nftla1 Mounting a 6M TMPFS filesystem... when I boot from the DoC. - DOC is recognized cat /proc/mtd dev: size erasesize name mtd0: 0500 4000 DiskOnChip 2000 Looks okay. - I cannot: mount, fdisk, mkfs mkdir /flash mount -t msdos /dev/nftla1 /flash Device not configured That might happen if /dev/nftla is not properly partitioned (fdisk) or /dev/nftla1 does not have an MS-DOS filesystem on it (mkfs.msdos). What happens if you try fdisk /dev/nftla instead? Can you see the MS-DOS partition from fdisk? Is it set to active? Assuming the answers are all yes, can you create an MS-DOS filesystem on the partition using: mkfs.msdos /dev/nftla1 ? If the mkfs goes well, you should definitely be able to mount /dev/nftla1 . The DOC has been reformatted with M-Sys version 4.2 because 5.x was not compatible. Unfortunately, I am not very familiar with the M-Sys utilities. I never found a need to use any of there software with my DoC. (I'm not even sure if mine was formatted with 4.2 or 5.x.) That said, if you can boot MS-DOS from the DoC the UG directions *should* work. I also put an MSDOS FAT-16 on it prior to this venture but tried fdisk anyway. Did you use Bill's fdisk or linux fdisk? What were the results? Better yet, what is the output of the linux fdisk -l /dev/nftla command? PROBLEM: Why is nftla, nftla1 not configured. What am I missing and/or where should I look. My guess is a partition or filesystem problem with the DoC. Let me know about the fdisk and mkfs.msdos results. If the problem seems to be elsewhere, I will lookup the error message you quoted in the source. --Brad --- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Problem: Bering DOC in latest stable version
Well, I've spent the weekend changing from my Dachstein DHCP system on DoC to Bering PPPoe (changed ISPs) latest stable version I believe based on 2.4.18 kernal. It didn't take too long to implement the PPPoE feature using the Install/User guides. But the DoC part has me baffled. Currently, my Bering implementation works fine but still on floppy. After searching archives and re-reading the guides many times, my results follow: - I get the expected messages from insmod docprobe.o Possible DiskOnChip with unknown ChipID FF found at 0xc8000 Possible DiskOnChip with unknown ChipID FF found at 0xca000 Possible DiskOnChip with unknown ChipID FF found at 0xcc000 [..] DiskOnChip 2000 found at address 0xD8000 Ignoring DiskOnChip 2000 at 0xDA000 − already configured Ignoring DiskOnChip 2000 at 0xDC000 − already configured Ignoring DiskOnChip 2000 at 0xDE000 − already configured Possible DiskOnChip with unknown ChipID FF found at 0xe Possible DiskOnChip with unknown ChipID FF found at 0xe2000 (numbers differ as I couldn't directly copy the screen results) - nftl.o module seems fine (don't get the size != 1 error) and returns with partition check: nftla: nftla1 - DOC is recognized cat /proc/mtd dev: size erasesize name mtd0: 0500 4000 DiskOnChip 2000 - I cannot: mount, fdisk, mkfs mkdir /flash mount -t msdos /dev/nftla1 /flash Device not configured The DOC has been reformatted with M-Sys version 4.2 because 5.x was not compatible. I also put an MSDOS FAT-16 on it prior to this venture but tried fdisk anyway. PROBLEM: Why is nftla, nftla1 not configured. What am I missing and/or where should I look. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://www.mullan.ca/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Problem: Bering DOC in latest stable version
Yes, thanks. The modules are in the order specified. Sounds like we both solved separate halves of the problem. At this point, I cannot do the boot from DOC. I'm sure I can take care of that (from previous Dachstein experience), just so long as I can get the mounting of the DOC working. I'm kinda stuck on the meaning of device not configured. -Original Message- From: S Mohan [mailto:[EMAIL PROTECTED]] Sent: Sunday, December 01, 2002 8:45 PM To: 'John Mullan'; [EMAIL PROTECTED] Subject: RE: [leaf-user] Problem: Bering DOC in latest stable version Nftla is the raw device of the chip just like had for ide1 primary hard disk. Have you loaded all the modules in the sequence as listed by Brad? It worked for me. I had problems getting DoC to work after this. I was able to mount, fdisk, syslinux etc. Post that, the system hung while booting. Remove the pkgpath declaration in syslinux.cfg on DoC and making sure nftla and nftla1 are listed in /car/lib/lrpkg/root.mount. I got to know this by reading linuxrc. HTH Mohan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Mullan Sent: Monday, December 02, 2002 5:49 AM To: [EMAIL PROTECTED] Subject: [leaf-user] Problem: Bering DOC in latest stable version Well, I've spent the weekend changing from my Dachstein DHCP system on DoC to Bering PPPoe (changed ISPs) latest stable version I believe based on 2.4.18 kernal. It didn't take too long to implement the PPPoE feature using the Install/User guides. But the DoC part has me baffled. Currently, my Bering implementation works fine but still on floppy. After searching archives and re-reading the guides many times, my results follow: - I get the expected messages from insmod docprobe.o Possible DiskOnChip with unknown ChipID FF found at 0xc8000 Possible DiskOnChip with unknown ChipID FF found at 0xca000 Possible DiskOnChip with unknown ChipID FF found at 0xcc000 [..] DiskOnChip 2000 found at address 0xD8000 Ignoring DiskOnChip 2000 at 0xDA000 − already configured Ignoring DiskOnChip 2000 at 0xDC000 − already configured Ignoring DiskOnChip 2000 at 0xDE000 − already configured Possible DiskOnChip with unknown ChipID FF found at 0xe Possible DiskOnChip with unknown ChipID FF found at 0xe2000 (numbers differ as I couldn't directly copy the screen results) - nftl.o module seems fine (don't get the size != 1 error) and returns with partition check: nftla: nftla1 - DOC is recognized cat /proc/mtd dev: size erasesize name mtd0: 0500 4000 DiskOnChip 2000 - I cannot: mount, fdisk, mkfs mkdir /flash mount -t msdos /dev/nftla1 /flash Device not configured The DOC has been reformatted with M-Sys version 4.2 because 5.x was not compatible. I also put an MSDOS FAT-16 on it prior to this venture but tried fdisk anyway. PROBLEM: Why is nftla, nftla1 not configured. What am I missing and/or where should I look. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://www.mullan.ca/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] No-IP for Linux
I am trying out the NO-IP service (www.no-ip.com). For those unaware of it, it is just like the DNS2Go I have been using. NO-IP uses a client that updates their servers with your current, dynamic IP. There is source code and library available for Linux. However, I am unable to compile. I was hoping someone would be able to make a package (if one does not exist already) that I could use on my Dachstein 2.2.19 system. Many thanks in advance if anyone is able to provide this. John *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas - http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Re: Using HOSTS file (was: leaf-user digest, Vol 1 #937 - 14 msgs)
Sounds like I started something!! Just to add fuel to the fire (or more hopefully, slow it down), I do know that since 'mullan.dns2go.com' is a smaller 'chunk' of names to resolve that it is possible to have the server understand that DNS2GO.COM domain gets resolved out-of-house but MULLAN.DNS2GO.COM host doesn't. It kinda follows the IPFILTERing idea that IP chunks like 24.266.0.0/16 can come and visit but 24.226.2.123 cannot. But anyway, enough of my newbie type visions. I have made all the required changes. I even changed the network.conf. The variable you mention seems to be CONFIG_DNS=NO Resolv.conf still gets overwritten with 'nameserver 127.0.0.1' Further in the script (in the section marked 'requires CONFIG_DNS=YES') I made sure I changed the 127.0.0.1 entry to 192.168.1.254 and it still leaves my resolv.conf file without the 192.168.1.254 entry and puts in the 127.0.0.1. I did backup all packages (in case you were wondering :) There must be another spot in another script that changes this. I just don't know were to look. I have scanned the network.conf file for any other references to no avail. Also, I do not know how to 'reload' tinydns with the new info (to save rebooting and having files rewritten). John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brad Fritz Sent: Friday, June 07, 2002 6:38 PM To: Erich Titl Cc: [EMAIL PROTECTED] Subject: [leaf-user] Re: Using HOSTS file (was: leaf-user digest, Vol 1 #937 - 14 msgs) Boy, this seems to be the thread that never ends. :) I have to politely disagree on several of your statements, Erich. tinydns and dnscache config files for a working setup are included below as well. Re-quoted slightly for readability... On Fri, Jun 07, 2002 at 10:51:02PM +0200, Erich Titl wrote: [EMAIL PROTECTED] wrote the following at 05:03 07.06.2002: jm To recap: The plan is to force internal network to resolve jm MULLAN.DNS2GO.COM to 192.168.1.128. External requests of course will jm already find their way to 192.168.1.128 via the INTERN_SERVERS in jm network.conf You are trying to masq a HOST in a zone you don't own. This is critical to your internal network because you will miss out all lot of unknown hosts in the zone (unless you copy them all the time.) You are right about mullan.dns2go.com being a host (although it can also be a zone) and not owning the zone, but the part about missing out on resolution for the zone dns2go.com is not true. At least not if your internal name server is configured to be authorative for mullan.dns2go.com but to externally resolve queries for dns2go.com. For anyone who is curious, chapter 2 of DNS and BIND is posted at http://www.oreilly.com/catalog/dns3/chapter/ch02.html and does a good job of discussing hosts, domain names and zones. More comments and an example below... As I pointed out in an earlier message you have to (somehow) _own_ the zone. For example if you _own_ the subdomain mullan.dns2go.com then you can place any host you like into that subdomain, e.g. myhost.mullan.dns2go.com. Since we are talking about John's private network, I'm not sure how ownership is relevent. What is important is which name server you are using for the network and which [sub-]domains it resolves for, either via consulting internal data or by sending queries to othername servers. Also the myhost is unnecessary. Even though mullan.dns2go.com is a domain, it can have an A record (or a CNAME record) that allows address queries for mullan.dns2go.com to resolve to a numeric address. You can think of mullan.dns2go.com as a host in the mullan.dns2go.com domain. This way you are responsible for the entire mullan.dns2go.com namespace. But imagine what happens if you put a _host_ mullan.dns2go.com at dns2go.com DNS server and then override the dns2go.com zone in your own DNS server by claiming authority (even just for internal use). How is your internal client supposed to know that the host foodle.dns2go.com needs to be looked up at dns2go.com whereas mullan.dns2go.com should be looked up on your internal DNS server. The problem you describe would only happen if you misconfigure your name server to be locally authorative for dns2go.com rather than mullan.dns2go.com. As proof, I've setup dnscache and tinydns on my notebook to illustrate: $ cat /etc/dnscache/env/IP 192.168.70.1 $ cat /etc/tinydns-private/env/IP 127.0.0.1 $ cat /etc/dnscache/root/servers/mullan.dns2go.com 127.0.0.1 $ cat /etc/dnscache/root/servers/70.168.192.in-addr.arpa 127.0.0.1 $ cat /etc/tinydns-private/root/data .70.168.192.in-addr.arpa:192.168.70.1 .mullan.dns2go.com:192.168.70.1 =mullan.dns2go.com:192.168.70.128 # let's make sure we're getting 192.168.70.128 for mullan.dns2go.com # on the private side of the horizon $ dig @192.168.70.1 +short mullan.dns2go.com 192.168.70.128 $ dig @192.168.70.1 +short -x 192.168.70.128
RE: [leaf-user] Re: Using HOSTS file (was: leaf-user digest, Vol 1 #937 - 14 msgs)
UPDATE: I have found where the changes to resolv.conf are coming from. Dhclient.conf and data coming from my ISP DHCP server. I have managed to overide this behaviour with 'prepend' and 'supersede' and end up with a resolv.conf looking like this: search nimc1.on.cogeco.ca nameserver 192.168.1.254 nameserver 216.221.81.53 nameserver 24.226.1.47 nameserver 24.226.1.90 I'm still trying different things though.. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brad Fritz Sent: Friday, June 07, 2002 6:38 PM To: Erich Titl Cc: [EMAIL PROTECTED] Subject: [leaf-user] Re: Using HOSTS file (was: leaf-user digest, Vol 1 #937 - 14 msgs) Boy, this seems to be the thread that never ends. :) I have to politely disagree on several of your statements, Erich. tinydns and dnscache config files for a working setup are included below as well. Re-quoted slightly for readability... On Fri, Jun 07, 2002 at 10:51:02PM +0200, Erich Titl wrote: [EMAIL PROTECTED] wrote the following at 05:03 07.06.2002: jm To recap: The plan is to force internal network to resolve jm MULLAN.DNS2GO.COM to 192.168.1.128. External requests of course will jm already find their way to 192.168.1.128 via the INTERN_SERVERS in jm network.conf You are trying to masq a HOST in a zone you don't own. This is critical to your internal network because you will miss out all lot of unknown hosts in the zone (unless you copy them all the time.) You are right about mullan.dns2go.com being a host (although it can also be a zone) and not owning the zone, but the part about missing out on resolution for the zone dns2go.com is not true. At least not if your internal name server is configured to be authorative for mullan.dns2go.com but to externally resolve queries for dns2go.com. For anyone who is curious, chapter 2 of DNS and BIND is posted at http://www.oreilly.com/catalog/dns3/chapter/ch02.html and does a good job of discussing hosts, domain names and zones. More comments and an example below... As I pointed out in an earlier message you have to (somehow) _own_ the zone. For example if you _own_ the subdomain mullan.dns2go.com then you can place any host you like into that subdomain, e.g. myhost.mullan.dns2go.com. Since we are talking about John's private network, I'm not sure how ownership is relevent. What is important is which name server you are using for the network and which [sub-]domains it resolves for, either via consulting internal data or by sending queries to othername servers. Also the myhost is unnecessary. Even though mullan.dns2go.com is a domain, it can have an A record (or a CNAME record) that allows address queries for mullan.dns2go.com to resolve to a numeric address. You can think of mullan.dns2go.com as a host in the mullan.dns2go.com domain. This way you are responsible for the entire mullan.dns2go.com namespace. But imagine what happens if you put a _host_ mullan.dns2go.com at dns2go.com DNS server and then override the dns2go.com zone in your own DNS server by claiming authority (even just for internal use). How is your internal client supposed to know that the host foodle.dns2go.com needs to be looked up at dns2go.com whereas mullan.dns2go.com should be looked up on your internal DNS server. The problem you describe would only happen if you misconfigure your name server to be locally authorative for dns2go.com rather than mullan.dns2go.com. As proof, I've setup dnscache and tinydns on my notebook to illustrate: $ cat /etc/dnscache/env/IP 192.168.70.1 $ cat /etc/tinydns-private/env/IP 127.0.0.1 $ cat /etc/dnscache/root/servers/mullan.dns2go.com 127.0.0.1 $ cat /etc/dnscache/root/servers/70.168.192.in-addr.arpa 127.0.0.1 $ cat /etc/tinydns-private/root/data .70.168.192.in-addr.arpa:192.168.70.1 .mullan.dns2go.com:192.168.70.1 =mullan.dns2go.com:192.168.70.128 # let's make sure we're getting 192.168.70.128 for mullan.dns2go.com # on the private side of the horizon $ dig @192.168.70.1 +short mullan.dns2go.com 192.168.70.128 $ dig @192.168.70.1 +short -x 192.168.70.128 mullan.dns2go.com. # even though we get the real address on the public side of # the horizon $ dig @207.217.126.41 +short mullan.dns2go.com 24.150.100.156 # hmm... who else can we pick on on dns2go.com $ dig @192.168.70.1 +short jim.dns2go.com 12.248.236.251 As you can see I'm overriding the zone mullan.dns2go.com without resolution for other dns2go.com domain names. I don't know if you can get an entire subdomain at dns2go or any other dynamic dns provider. But you can always get your own domain which you can park on one of the many dynamic DNS services which allow any doman name. Effectively he does. Even if publically mullan.dns2go.com does not have its own authorative name server, a properly configured internal name server can claim to be authorative for mullan.dns2go.com without affecting resolution
RE: [leaf-user] Using HOSTS file
OK Brad. I've put tinydns on. I left the tinydns option for internal IP at 127.0.0.1 Is this the proper loopback interface address? -Original Message- From: Brad Fritz [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 06, 2002 4:42 AM To: John Mullan Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Using HOSTS file On Thu, 06 Jun 2002 00:09:38 PDT Ray Olszewski wrote: Jeff's response is the right one here -- the router (or some other host on the LAN) needs to run a DNS server that resolves FQNs of hosts on the LAN to their private addresses and forwards all other requests to a real nameserver. The LAN hosts then need to be told (via manual setup or DHCP or whatever) to use that nameserver for their DNS inquiries. In practice, I find it easier here to do all of this on a host separate from my router ... but my DNS requirements are elaborate enough to call for using full-size BIND. If you want to do it on your LEAF router, it's not *too* bad to setup using tinydns and dnscache. One setup that has worked for me is to run tinydns bound to the router's loopback interface and dnscache bound to the internal interface. Files in /etc/dnscache/root/servers/ are used to point dnscache to tinydns for the internal hosts. The names and addresses of those hosts (or just your firewall, if that's all you need) are set in /etc/tinydns-private/root/data. If you decide to pursue the tinydns/dnscache setup and need more detail or have specific questions, let me know (on-list) and I'll do my best to answer. The djbdns docs and the Bering tinydns.lrp and dnscache.lrp documents[1,2] might also be useful even if you are using a LEAF variant other than Bering. --Brad [1] http://leaf.sourceforge.net/devel/jnilo/tinydns.html [2] http://leaf.sourceforge.net/devel/jnilo/dnscache.html ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Using HOSTS file
Thanks for you help so far Brad.. I'm sure I'm missing something, but no luck. I had tried to set it up so that dnscache watches 192.168.1.254 and looks to tinydns. Not sure if that is what is supposed to happen or if I even got it that way in any of my attempted combinations. If it helps, here are some configuration extracts, both what they are and what I have tried.. DNSCACHE: LRP Internal192.168.1.254 tried 127.0.0.1 Query Hosts 192.168 tried 127.0.0.1 FORWARDONLY NO tried YES TINYDNS: TypePRIVATE kept PRIVATE Internal DNS127.0.0.1 kept 127.0.0.1 Data records .1.168.192.in-addr.arpa::localhost +myrouter.private.network:192.168.1.254 =mullan.dns2go.com:192.168.1.254 Resolv.conf is.. search nimc1.on.cogeco.ca tried 127.0.0.1 and private.network nameserver 127.0.0.1no changes nameserver 216.221.81.53no changes nameserver 24.226.1.47 no changes nameserver 24.226.1.90 no changes Even when I did change resolv.conf it gets rewritten when I reboot. To recap: The plan is to force internal network to resolve MULLAN.DNS2GO.COM to 192.168.1.128. External requests of course will already find their way to 192.168.1.128 via the INTERN_SERVERS in network.conf So any ideas? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brad Fritz Sent: Thursday, June 06, 2002 9:13 PM To: John Mullan Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Using HOSTS file On Thu, 06 Jun 2002 20:40:25 EDT you wrote: OK Brad. I've put tinydns on. I left the tinydns option for internal IP at 127.0.0.1 Is this the proper loopback interface address? Yes, it is: $ cat /etc/tinydns-private/env/IP 127.0.0.1 --Brad ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Using HOSTS file
I use DNS2GO to handle my dynamic IP for the benefit of the outside world (one day I'll register my own domain). But for now, if anyone in the internal network trys to browse mullan.dns2go.com it won't work (of course). What I would like is for the LEAF box to recognize this DNS request and translate it to the internal IP (192.168.1.128). Can anyone tell me how to do this? I thought it might be the HOSTS file but that doesn't seem to work. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Using HOSTS file
I have tried that as well. It allows the LEAF box to resolve mullan.dns2go.com to 192.168.1.128 (by using PING on the LEAF box) but nobody else on the network. They still get the external IP as resolved by DNS2GO's servers. John -Original Message- From: Lee Kimber [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 05, 2002 10:18 PM To: John Mullan Subject: Re: [leaf-user] Using HOSTS file I think you need /etc/network.conf - the main network config script. Looks for some lines about two thirds of the way down that deal with hosts and private.domain (unless you have changed it to something else already) The commented out host1 is an example of what you are looking for. At 08:38 PM 6/5/2002 -0400, you wrote: I use DNS2GO to handle my dynamic IP for the benefit of the outside world (one day I'll register my own domain). But for now, if anyone in the internal network trys to browse mullan.dns2go.com it won't work (of course). What I would like is for the LEAF box to recognize this DNS request and translate it to the internal IP (192.168.1.128). Can anyone tell me how to do this? I thought it might be the HOSTS file but that doesn't seem to work. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm --- - leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] More PPPoE help
OK. I finally got the PPPoE version running. Turns out that I forgot to copy doc.o into the /boot/lib/modules. Actually, I didn't even know it was there in my DHCP version!!! I forgot that the module was NOT compiled into the kernal. Oh well, live and learn. DAVID: If you go to my web site, there is instructions and files to make a working DiskOnChip router. It is the DHCP version (used for my cable setup). As soon as I copy out the stuff from the PPPoE unit (set up at my buddy's place), I will provide a PPPoE version. If you don't need the PPPoE version, everything you need is here http://mullan.dns2go.com/internet My thanks to each that gave input. My thanks also to Kenneth Hadley for his working implementation of PPPoE. After finding my own bug, running adsl-setup and rebooting I had instant connection. -Original Message- From: David Ondzes [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 28, 2002 8:31 AM To: [EMAIL PROTECTED] Subject: Re: [leaf-user] More PPPoE help John, Would it be possible to get a copy of DiskOnChip kernal ? I have been meaning to build one but haven't found the time to do so and I would like to get my router up and running. I am kinda new to linux and LEAF and there is soo much to learn, if you grab your kernal then it would let me skip ahead and get setup and then go back to tinker with a kernal of my own. Thanks in advance, David Using my DiskOnChip kernal and ldlinux.sys, and making the usual changes to root.mount and linuxrc as is documented for running from DOC, and changing the syslinux.cfg entry, the kernal loads fine, then linuxrc still looks for packages on fd0. Of course, I don't have the floppy in there. If, once the kernal starts loading I pop the floppy in, it will read the PKG files from the floppy. If I don't pop it in, it tells me there is a floppy error (because it's not there, of course), then asks me what run level. Can anyone tell me what else to look for? Could there be something different in Kenneth's setup? John *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] David Ondzes [EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] PPPoE help.......
First let me ask If I see the message ppp.lrp (nf!) Should I assume that means: no f**king good? I want to change my current LEAF router to use PPPoE instead of the DHCP client it now is. However, my kernal uses the DOC (flash disk) and obtaining a kernal with PPP in it won't help. Charles was kind enough to compile in the DOC for me but now I also need it with PPP. Is there a How-To that will also tell me what to change so I can use DSL. I've seen some custom ones out there but they don't help me much. They left me kinda pulling my hair out. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] PPPoE help.......
Thanks Ray. I knew it really didn't stand for vulgarity. Just releasing steam from pulling out all my hair! I'll dive deeper into Kenneth's image and see what I can come up with. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Ray Olszewski Sent: Sunday, May 26, 2002 7:41 PM To: John Mullan; [EMAIL PROTECTED] Subject: Re: [leaf-user] PPPoE help... At 07:18 PM 5/26/02 -0400, John Mullan wrote: First let me ask If I see the message ppp.lrp (nf!) Should I assume that means: no f**king good? Not unless you find irresistable the gratuitous use of vulgarity. In fact, it stands for Not Found ... in other words, the loader cannot find the package ppp.lrp on what it believes to be its source filesystem for packages. I want to change my current LEAF router to use PPPoE instead of the DHCP client it now is. However, my kernal uses the DOC (flash disk) and obtaining a kernal with PPP in it won't help. Charles was kind enough to compile in the DOC for me but now I also need it with PPP. ppp can be compiled as a module. so you don't actually need a new kernel, just a new module (or two - I forget) for yours. Not knowing what kernel version Charles custom compiled for you, I can't readily suggest a source for its ppp modules. Is there a How-To that will also tell me what to change so I can use DSL. I've seen some custom ones out there but they don't help me much. They left me kinda pulling my hair out. I doubt there is one. The conventional answer has long been -- use Kenneth Hadley's customized LEAF variant, since he got it right. Even with your DoC special needs, you might find it helpful to look at Ken's floppy and see if it helps you do the needed customizing (or, perhaps better, if you can combine your custom kernel and DoC load source with his mature PPPoE setup). -- ---Never tell me the odds!-- Ray Olszewski-- Han Solo Palo Alto, California, USA [EMAIL PROTECTED] --- ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] More PPPoE help
I have been playing around with Kenneth's PPPoE (Dachstein) image. But one problem I can't figure out. Using my DiskOnChip kernal and ldlinux.sys, and making the usual changes to root.mount and linuxrc as is documented for running from DOC, and changing the syslinux.cfg entry, the kernal loads fine, then linuxrc still looks for packages on fd0. Of course, I don't have the floppy in there. If, once the kernal starts loading I pop the floppy in, it will read the PKG files from the floppy. If I don't pop it in, it tells me there is a floppy error (because it's not there, of course), then asks me what run level. Can anyone tell me what else to look for? Could there be something different in Kenneth's setup? John *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [Leaf-user] Junk Busting???
Todd: I realize that Snort is more for monitoring (NIDS in particular). However the current documentation indicates that it can scan for content and, if desired, drop the packets. It also says it can do this in either direction. So, if one were to think outside the box, instead of blocking outbound requests (like a nanny filter), I could watch for undesirable content coming in and drop it. I could also replace the packet with content issuing a warning. While unconventional, it may meet my desired criteria of fitting into my LEAF router and eliminate the need for an extra box. Keep in mind, this is just from reading the user manual. I have yet to actually try this... John -Original Message- From: Todd Pearsall [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 11, 2002 9:25 AM To: 'John Mullan'; [EMAIL PROTECTED] Subject: RE: [Leaf-user] Junk Busting??? In my past use of Snort it was for intrusion detection. It watches all the incoming traffic for patterns that may be hack attempts. I'm not aware of it being useful for controlling where internal users go. In fact I think it only logs suspicious activity and doesn't actually stop traffic from coming in (like portsentry does for port scanning) - Todd -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Mullan Sent: Wednesday, April 10, 2002 6:38 PM To: [EMAIL PROTECTED] Subject: RE: [Leaf-user] Junk Busting??? Thanks all for input received so far. I'm not so picky on the thin-ness of my LEAF router box. I still have some space left on my 80meg flash disk. At home it is becoming my catch-all router/firewall so adding a certain amount of extra abilities flies for me on this one. However, I have looked around the net and noticed that SNORT may be up to the task (although not necessarily it's conventional use). Is there anyone that has put SNORT to use on LEAF as a nanny filter??? John -Original Message- From: Todd Pearsall [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 10, 2002 9:33 AM To: 'John Mullan'; [EMAIL PROTECTED] Subject: RE: [Leaf-user] Junk Busting??? I use squid and squidguard on a separate machine. Squidguard is nice because it updates nightly with a new bad list. I'm pretty sure you can run squid on your Dachstein box, but you'll need a HD to store the cached pages and logs and probably more memory (32MB-64MB?). With squid in place you can probably add squidguard. There are also rules you can add so the web proxy is transparent, meaning the users PC just uses the Dachstein box as the gateway and the rules pump anything destined for port 80 thru squid. I put this in the category of can be done if your pretty familiar with Dachstein, Linux and firewalls, but I doubt you'll find a drop in package. If you can scrape up another PC then this should be a piece of cake since squid is a standard package in RedHat and all you'd need to do it is to add squidguard (pretty easy). If you get it to work on Dachstein please write it up. I would like to have squid and squidguard running on the firewall, but I love having no HD in the firewall, so I'm sticking with my current solution. I run e-smith as a server and Dachstein as firewall. If you used e-smith as both you just add squidguard and be done. Personally I like the firewall as skinny as possible and separate from the server. Enough rambling, good luck. - Todd -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Mullan Sent: Tuesday, April 09, 2002 10:11 PM To: [EMAIL PROTECTED] Subject: [Leaf-user] Junk Busting??? I am now in need of blocking certain web content from my 8-year-old grandson. Since my only gateway to the internet is through the Dachstein box, I am wondering what (if anything) can be run on the box to block various web content. So is there anything?? I'm kinda hoping NOT to add in another computer... *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] Junk Busting???
Thanks all for input received so far. I'm not so picky on the thin-ness of my LEAF router box. I still have some space left on my 80meg flash disk. At home it is becoming my catch-all router/firewall so adding a certain amount of extra abilities flies for me on this one. However, I have looked around the net and noticed that SNORT may be up to the task (although not necessarily it's conventional use). Is there anyone that has put SNORT to use on LEAF as a nanny filter??? John -Original Message- From: Todd Pearsall [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 10, 2002 9:33 AM To: 'John Mullan'; [EMAIL PROTECTED] Subject: RE: [Leaf-user] Junk Busting??? I use squid and squidguard on a separate machine. Squidguard is nice because it updates nightly with a new bad list. I'm pretty sure you can run squid on your Dachstein box, but you'll need a HD to store the cached pages and logs and probably more memory (32MB-64MB?). With squid in place you can probably add squidguard. There are also rules you can add so the web proxy is transparent, meaning the users PC just uses the Dachstein box as the gateway and the rules pump anything destined for port 80 thru squid. I put this in the category of can be done if your pretty familiar with Dachstein, Linux and firewalls, but I doubt you'll find a drop in package. If you can scrape up another PC then this should be a piece of cake since squid is a standard package in RedHat and all you'd need to do it is to add squidguard (pretty easy). If you get it to work on Dachstein please write it up. I would like to have squid and squidguard running on the firewall, but I love having no HD in the firewall, so I'm sticking with my current solution. I run e-smith as a server and Dachstein as firewall. If you used e-smith as both you just add squidguard and be done. Personally I like the firewall as skinny as possible and separate from the server. Enough rambling, good luck. - Todd -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Mullan Sent: Tuesday, April 09, 2002 10:11 PM To: [EMAIL PROTECTED] Subject: [Leaf-user] Junk Busting??? I am now in need of blocking certain web content from my 8-year-old grandson. Since my only gateway to the internet is through the Dachstein box, I am wondering what (if anything) can be run on the box to block various web content. So is there anything?? I'm kinda hoping NOT to add in another computer... *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Junk Busting???
I am now in need of blocking certain web content from my 8-year-old grandson. Since my only gateway to the internet is through the Dachstein box, I am wondering what (if anything) can be run on the box to block various web content. So is there anything?? I'm kinda hoping NOT to add in another computer... *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Speed....
I know, this is a dumb question (because I should be confident in the answer) but: A friend of mine is ordering in a 3mbps line (for his new small business) from the telco. Obviously then, a 10/100 NIC on a LEAF system should be able to keep up with this. Right? IE; 10 is much bigger than 3. My plan is to set him up with an LRP box and save him $$$. I guess I have a second question: Does anyone know of a reasonably priced, LEAF suitable rack mountable PC??? *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan http://mullan.dns2go.com/ Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] LCD Proc
Thank you again David. Library downloaded, installed and working. Hardware needs refinement. Getting some garbage on the LCD. Funny thing is, the last time I tried this it worked. But I'll figure that out eventually. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of David Douthitt Sent: Saturday, February 09, 2002 9:55 PM To: LEAF User Mailing List Subject: RE: [Leaf-user] LCD Proc On 2/9/02 at 8:08 PM, John Mullan [EMAIL PROTECTED] wrote: Thanks David. However, the following is the error message when I attempt to run LCDd firewall: -root- # lcdd -h lcdd: error in loading shared libraries libncurses.so.4: cannot open shared object file: No such file or directory Does this mean that libncurses cannot find something or that libncurses doesn't exist? Means the latter. Go to http://leaf.sf.net/pub/oxygen/packages/ and get the ncurses package (libncurs.lrp? ncurses5.lrp?). Of course, when I run LCDproc -s 192.168.1.254 -p 13666 X U I get the following: firewall: -root- # lcdproc -s 192.168.1.254 -p 13666 X U sock_connect: connect failed: Connection refused Error connecting to server 192.168.1.254 on port 13666. But I assume that is because the LCDd is not running. If LCDd is not running, you'll get this. There's no server listening on that port. -- David Douthitt UNIX Systems Administrator HP-UX, Unixware, Linux [EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] Backup configuration before software update
Hi Bao: I use Flash Disk and previously Hard Disk. What I do is boot from a DOS floppy, copy everything from root to a separate DOS based directory. If I need specific CONF files, I mount a floppy (from the linux prompt), copy the file to floppy. Then I can use my Windoze machine and Notepad to view the configuration while I set up the latest versions. At least, those are the things I do but I'm still pretty green. John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Bao C. Ha Sent: Friday, February 08, 2002 8:48 PM To: [EMAIL PROTECTED] Subject: [Leaf-user] Backup configuration before software update How do I back up the setup and configuration before I update a software package? Basically, I have the shorewall 1.2.5 lrp package from the Bering image. I would like to go to shorewall 1.2.6. Backing up the etc.lrp does not work, as no Shorewall-related info is saved. Thanks. Bao ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] LCD Proc
Thanks David. However, the following is the error message when I attempt to run LCDd firewall: -root- # lcdd -h lcdd: error in loading shared libraries libncurses.so.4: cannot open shared object file: No such file or directory Does this mean that libncurses cannot find something or that libncurses doesn't exist? I cannot find libncurses.so.4 on my box anywhere. I haven't found anywhere (yet) to download it from either. Of course, when I run LCDproc -s 192.168.1.254 -p 13666 X U I get the following: firewall: -root- # lcdproc -s 192.168.1.254 -p 13666 X U sock_connect: connect failed: Connection refused Error connecting to server 192.168.1.254 on port 13666. But I assume that is because the LCDd is not running. Any ideas? John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of David Douthitt Sent: Saturday, February 09, 2002 2:36 AM To: LEAF User Mailing List Subject: Re: [Leaf-user] LCD Proc On 2/8/02 at 9:14 PM, John Mullan [EMAIL PROTECTED] wrote: Can you tell me how to make use of lcdd.lrp and lcdproc.lrp?? I can see the packages load with the others. If I have a working piece of LCD hardware, would something show up automatically? If not, how do I set things up so that something shows up on the LCD? There are two parts: the server (LCDd) and the client (lcdproc). Once the server is loaded, you should see a display as long as you've told the server all the details of what sort of LCD you have and so on. When you load lcdproc, it should start giving you lots of data (of whatever you've specified). LCDd is finicky about options, as it's option parsing is pretty bad - if things act strange, then move the options from one side of the command line to the other... -- David Douthitt UNIX Systems Administrator HP-UX, Unixware, Linux [EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] LCD Proc
Hello Jack. Can you tell me how to make use of lcdd.lrp and lcdproc.lrp?? I can see the packages load with the others. If I have a working piece of LCD hardware, would something show up automatically? If not, how do I set things up so that something shows up on the LCD? Thanks *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Web caching
Is there a module or is it even necessary to have some sort of web caching on LRP? *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] LRP and DOC
Yes, I believe it has IDE in it. -Original Message- From: Patrick Nixon [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 9:20 PM To: John Mullan Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: [Leaf-user] LRP and DOC John, Does your Kernel have IDE/CDRom support in it, or is it just a modified floppy kernel? --Pat On Mon, 28 Jan 2002, Patrick Nixon wrote: John, Let me be the first to congratulate you on a fine procedure and excellent work in doing this! I now have my websurfer proo running without a hard drive! Next project will be PCMCIA for wireless support, then USB ethernet plugged ( I know this works already). Suggestion: On your dos boot, create an autoexec.bat that contains simply '@echo off' so it doesn't ask you for the date/time each time you boot. I had to go about it a bit differnetly since I didn't have a floppy drive, but the same basic steps worked for me. --Pat On Sun, 27 Jan 2002, John Mullan wrote: Patrick (and all): I have created a page to help you on your quest. Please go to my web page at: http://mullan.dns2go.com/ Click on the 'Internet' link on the left panel. Keep in mind that I still consider myself quite a 'beginner' with Linux. However, if your system is similar to mine (IBM clone type with DiskOnChip2000) then I think following my page will result in a working system. I included all files I used to get a working flash based router. I have followed all the advice and included the DOC.O module separate in my distribution (ie; not compiled into the kernal). I look forward to all comments (good and bad) so I may improve my first psuedo-HOWTO. Cheers, John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Patrick Nixon Sent: Saturday, January 26, 2002 1:51 PM To: John Mullan Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: FW: [Leaf-user] LRP and DOC John, Congrats on getting this working. I'm currently spending most of my weekend attempting to get it working and like charles mentioned, I'm running into a 'insufficent low memory error'. How did you get around that? When I attempted to syslinux the DOC using 1.66 it whined about exclusive access. Perhaps you can do a small write up on the steps you took to complete it? Thanks, Patrick On Sat, 26 Jan 2002, John Mullan wrote: Sorry, forgot to leave the link for the file... http://mullan.dns2go.com/files/MullanStein.zip -Original Message- From: John Mullan [mailto:[EMAIL PROTECTED]] Sent: Saturday, January 26, 2002 8:51 AM To: 'Charles Steinkuehler'; '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' Subject: RE: [Leaf-user] LRP and DOC Charles FINALLY! It works. And it works great. I think the latest and greates SYSLINUX (version 1.66) did it for me. Once I re-did the boot loader with that, it worked. For informational purposes ONLY, if you or any list member would like to see what it took, I have made a ZIP of all files currently on my embedded board. Because of the licence thing about M-SYS (and the fact that I used your sample kernal with DOC in it), this is not a distribution. The board was purchased from ARISE computers, is a PIII 433mhz with DiskOnChip 2000 (80meg), 32meg RAM, Intel 82559 ethernet on board, and DE-538 in the only on-board PCI slot. Obviously this is over-kill for the job at hand, but since it was made available to me :) John PS: I like the WEBLET thing. First time for me and it's a nice feature. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Charles Steinkuehler Sent: Friday, January 25, 2002 2:59 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Leaf-user] LRP and DOC This results in an immediate 'boot fail' message. Note that I have tried minor:1 and minor:0 both with same result. Could there be a problem with the boot sector information? Does 'syslinux' work properly on D.O.C.? I don't know...I have yet to play with syslinux and DOC in an embedded environment. I did get a ZF Linux eval board with a DOC, but when I tried to run syslinux, I never got past the not enough low memory problem (but syslinux *was* running). I'm not sure how the other folks who have used DOC's boot their systems. I suppose you could always fall back to booting dos, and using ldlinux. I also think there are versions of lilo and grub that know how to boot from a DOC... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing
[Leaf-user] Filtering (URL) text.
It is probably beyond my scope at the present time, however, is there a way to stop a URL at the door by the text? I'm getting rather sick of seeing other peoples Code Red virus attempting it's shenanegans on my web server. Clogs the logs (poet?). Any URL with 'root.exe' or 'cmd.exe' that just dies at the router would be fantastic. Thanks for any help. *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] One Code Red idea
I found this out there, sounds reasonable but I use OmniHTTPd and don't know if there is a rewrite plugin for it (yet). http://www.linuxchimp.com/stories.php?story=64 *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Another Code Red idea
Perhaps this one is a good as well. http://www.omnilist.org/NIMDAPROOF.pdf *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] LRP and DOC
Patrick (and all): I have created a page to help you on your quest. Please go to my web page at: http://mullan.dns2go.com/ Click on the 'Internet' link on the left panel. Keep in mind that I still consider myself quite a 'beginner' with Linux. However, if your system is similar to mine (IBM clone type with DiskOnChip2000) then I think following my page will result in a working system. I included all files I used to get a working flash based router. I have followed all the advice and included the DOC.O module separate in my distribution (ie; not compiled into the kernal). I look forward to all comments (good and bad) so I may improve my first psuedo-HOWTO. Cheers, John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Patrick Nixon Sent: Saturday, January 26, 2002 1:51 PM To: John Mullan Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: FW: [Leaf-user] LRP and DOC John, Congrats on getting this working. I'm currently spending most of my weekend attempting to get it working and like charles mentioned, I'm running into a 'insufficent low memory error'. How did you get around that? When I attempted to syslinux the DOC using 1.66 it whined about exclusive access. Perhaps you can do a small write up on the steps you took to complete it? Thanks, Patrick On Sat, 26 Jan 2002, John Mullan wrote: Sorry, forgot to leave the link for the file... http://mullan.dns2go.com/files/MullanStein.zip -Original Message- From: John Mullan [mailto:[EMAIL PROTECTED]] Sent: Saturday, January 26, 2002 8:51 AM To: 'Charles Steinkuehler'; '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' Subject: RE: [Leaf-user] LRP and DOC Charles FINALLY! It works. And it works great. I think the latest and greates SYSLINUX (version 1.66) did it for me. Once I re-did the boot loader with that, it worked. For informational purposes ONLY, if you or any list member would like to see what it took, I have made a ZIP of all files currently on my embedded board. Because of the licence thing about M-SYS (and the fact that I used your sample kernal with DOC in it), this is not a distribution. The board was purchased from ARISE computers, is a PIII 433mhz with DiskOnChip 2000 (80meg), 32meg RAM, Intel 82559 ethernet on board, and DE-538 in the only on-board PCI slot. Obviously this is over-kill for the job at hand, but since it was made available to me :) John PS: I like the WEBLET thing. First time for me and it's a nice feature. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Charles Steinkuehler Sent: Friday, January 25, 2002 2:59 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Leaf-user] LRP and DOC This results in an immediate 'boot fail' message. Note that I have tried minor:1 and minor:0 both with same result. Could there be a problem with the boot sector information? Does 'syslinux' work properly on D.O.C.? I don't know...I have yet to play with syslinux and DOC in an embedded environment. I did get a ZF Linux eval board with a DOC, but when I tried to run syslinux, I never got past the not enough low memory problem (but syslinux *was* running). I'm not sure how the other folks who have used DOC's boot their systems. I suppose you could always fall back to booting dos, and using ldlinux. I also think there are versions of lilo and grub that know how to boot from a DOC... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] LRP and DOC
Charles FINALLY! It works. And it works great. I think the latest and greates SYSLINUX (version 1.66) did it for me. Once I re-did the boot loader with that, it worked. For informational purposes ONLY, if you or any list member would like to see what it took, I have made a ZIP of all files currently on my embedded board. Because of the licence thing about M-SYS (and the fact that I used your sample kernal with DOC in it), this is not a distribution. The board was purchased from ARISE computers, is a PIII 433mhz with DiskOnChip 2000 (80meg), 32meg RAM, Intel 82559 ethernet on board, and DE-538 in the only on-board PCI slot. Obviously this is over-kill for the job at hand, but since it was made available to me :) John PS: I like the WEBLET thing. First time for me and it's a nice feature. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Charles Steinkuehler Sent: Friday, January 25, 2002 2:59 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Leaf-user] LRP and DOC This results in an immediate 'boot fail' message. Note that I have tried minor:1 and minor:0 both with same result. Could there be a problem with the boot sector information? Does 'syslinux' work properly on D.O.C.? I don't know...I have yet to play with syslinux and DOC in an embedded environment. I did get a ZF Linux eval board with a DOC, but when I tried to run syslinux, I never got past the not enough low memory problem (but syslinux *was* running). I'm not sure how the other folks who have used DOC's boot their systems. I suppose you could always fall back to booting dos, and using ldlinux. I also think there are versions of lilo and grub that know how to boot from a DOC... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
FW: [Leaf-user] LRP and DOC
Sorry, forgot to leave the link for the file... http://mullan.dns2go.com/files/MullanStein.zip -Original Message- From: John Mullan [mailto:[EMAIL PROTECTED]] Sent: Saturday, January 26, 2002 8:51 AM To: 'Charles Steinkuehler'; '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' Subject: RE: [Leaf-user] LRP and DOC Charles FINALLY! It works. And it works great. I think the latest and greates SYSLINUX (version 1.66) did it for me. Once I re-did the boot loader with that, it worked. For informational purposes ONLY, if you or any list member would like to see what it took, I have made a ZIP of all files currently on my embedded board. Because of the licence thing about M-SYS (and the fact that I used your sample kernal with DOC in it), this is not a distribution. The board was purchased from ARISE computers, is a PIII 433mhz with DiskOnChip 2000 (80meg), 32meg RAM, Intel 82559 ethernet on board, and DE-538 in the only on-board PCI slot. Obviously this is over-kill for the job at hand, but since it was made available to me :) John PS: I like the WEBLET thing. First time for me and it's a nice feature. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Charles Steinkuehler Sent: Friday, January 25, 2002 2:59 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Leaf-user] LRP and DOC This results in an immediate 'boot fail' message. Note that I have tried minor:1 and minor:0 both with same result. Could there be a problem with the boot sector information? Does 'syslinux' work properly on D.O.C.? I don't know...I have yet to play with syslinux and DOC in an embedded environment. I did get a ZF Linux eval board with a DOC, but when I tried to run syslinux, I never got past the not enough low memory problem (but syslinux *was* running). I'm not sure how the other folks who have used DOC's boot their systems. I suppose you could always fall back to booting dos, and using ldlinux. I also think there are versions of lilo and grub that know how to boot from a DOC... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
RE: [Leaf-user] Wishing to upgrade to Dachstein
Thanks Charles. I'll be giving this a try on the weekend. I'll post my successes/failures. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Charles Steinkuehler Sent: Friday, November 16, 2001 9:26 AM To: John Mullan; Leaf-User Subject: Re: [Leaf-user] Wishing to upgrade to Dachstein I have a slightly older version of Charles' LRP, with plenty of settings I have made and some extra masq modules. What I need to know is: What do I do to bring my version up to Dachstein without finding and recreating all the little settings I have made? Is this going to be an easy upgrade? I have been using an IDE version almost since I started. I have copied down the normal Dachstein which, upon reading, has IDE support and the necessary VPN (for future, I don't yet use that) in the kernal. So I'm thinking that it shouldn't be too bad. Another concern is if the masq modules are compatible and if I can locate updated ones if necessary. I think you will find most masquerading modules are now available in the default kernel build. You will have to check to be sure...compare what you're running (use lsmod to find out) with the modules available in the new kernel tree: http://lrp.steinkuehler.net/files/kernels/Dachstein-normal/modules/ or http://lrp.steinkuehler.net/files/kernels/Dachstein-small/modules/ For your configuration, I suggest you migrate your existing network.conf settings to the new firewall manually. I normally do this with the following general procedure: Rename your existing etc.lrp somehing else (like etcx.lrp) or copy it to a different disk so it won't get loaded. Delete your existing modules.lrp, and replace with the modules package from Dachstein Boot into Dachstein using the default Dachstein etc.lrp Configure your modules, adding any required modules not in the default package, and deleting any you don't need. Verify everything works using svi modultils start, and backup modules. Unpack your old etc into /tmp. With the disk containing your old etc (etcx.lrp) mounted on /mnt, do the following: cd /tmp zcat /mnt/etcx.lrp | tar -xv This will put your old etc directory in /tmp/etc. Copy over any files you may have manually created/modified. Possibilities include: crontab, fstab, hostname, ipchains.*, localtime, nsswitch... Manually merge your settings from your previous network.conf file into the new network.conf Reload the firewall rules and verify they match your previous rules. I like to create and print out a list of the ipchains rules from my running system, then build a new configuration on a test machine, comparing it's configuration with the hardcopy previous config. When they match (or I know why they differ), I migrate the test configuration to my production firewall. You may find both the output of svi network ipfilter list and ipchains -nvL --line-numbers to be useful. Backup etc Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Wishing to upgrade to Dachstein
Well, I've been off the lists for several months now. I would probably still be in the shadows but if it wasn't for upgrading to ICQ 2001b. So, as luck would have it, I began visiting the old sites and found some new (and potentially exciting) changes. I have a slightly older version of Charles' LRP, with plenty of settings I have made and some extra masq modules. What I need to know is: What do I do to bring my version up to Dachstein without finding and recreating all the little settings I have made? Is this going to be an easy upgrade? I have been using an IDE version almost since I started. I have copied down the normal Dachstein which, upon reading, has IDE support and the necessary VPN (for future, I don't yet use that) in the kernal. So I'm thinking that it shouldn't be too bad. Another concern is if the masq modules are compatible and if I can locate updated ones if necessary. Thanks in advance for any help *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* John Mullan - Technical Manager Ontario Lottery and Gaming Corporation Direct Gaming Distribution Center Personal: mailto:[EMAIL PROTECTED] Business: mailto:[EMAIL PROTECTED] ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user