By chance you didn't leave IE on when you shut down???
I've seen some banner ads run something similar to a lease
type connection. Yahoo and flipside.com leave a lot of
residual connections like that tied directly to Win32 clients.
On Wednesday 27 February 2002 22:24, Scott C. Best wrote:
> Any
Steve,
I long ago stopped logging hits on port 80, and just have them silently
denied - it just made the whole messages file too hard to read - you might
want to consider doing this.
S
_
Chat with friends online, try MSN Messen
Hey Craig,
Well to answer your first question, ae is the editor you use, just type ae
at a command prompt and you should be good, then its just +W to save
the file - so you could just type the file name at the prompt /etc/LaBrea.in
or whatever the file name is
To edit the dhclient-exit-ho
Anyone ever seen this one before: I shut down my
WinNT server today to see what TCP/IP traffic a Windows
machines makes at powerdown. That is, I was tcpdump'ing on
another LAN member. And I saw this:
03:29:14.553849 192.168.123.130.1853 > 209.73.225.9.80: R
804849242:804849242(0) win 0 (
> I'm currently in a Watchguard training. I'm going to make the WCP
> Certificate.
>
> The trainer told me, that the "Drop-In configuration" (ProxyARP DMZ) is
less
> secure than the routed DMZ. I didn't say anything and thought "Uh, really?
> Why?".
Good for you!
> Is a ProxyARP DMZ less secure
Hi Charles, hi all
> > I'm currently in a Watchguard training. I'm going to make the WCP
> > Certificate.
> >
> > The trainer told me, that the "Drop-In configuration" (ProxyARP DMZ) is
> less
> > secure than the routed DMZ. I didn't say anything and thought
> "Uh, really?
> > Why?".
>
> Good for
Thank you Simon and Lynn for the responses. Unfortunately, I don't quite
understand it all (I've taken a college class on Linux because I really
enjoy this stuff, but please bear with my ignorance as I learn :-) ). 1.)
First, how do I create the /etc/LaBrea.in that you refer to, and how do I
creat
Thank you Simon and Lynn for the responses. Unfortunately, I don't quite
understand it all (I've taken a college class on Linux because I really
enjoy this stuff, but please bear with my ignorance as I learn :-) ). 1.)
First, how do I create the /etc/LaBrea.in that you refer to, and how do I
creat
> > > The trainer told me, that the "Drop-In configuration" (ProxyARP DMZ)
is
> > less
> > > secure than the routed DMZ. I didn't say anything and thought
> > "Uh, really?
> > > Why?".
> >
> > Good for you!
>
> Good for me that I didn't say anything or good for me that I'm going to
make
> the WCP?
Hi again all...I have a new question...I made sure (repeatedly) that I had
entered "ramdisk_size=32768" in my syslinux.cfg file, however, df -k reports
that /dev/root has 6144 blocks allocated (which are 100% used). How do I
convince my router that it's supposed to use what I told it to?
I have
Charles Steinkuehler wrote:
>
> > I was not certain what it is that you want to see -- see below.
> >
> > tcpdump output, run on the local DCD :
>
> OK, this helps, but I'm still not sure what I'm looking at. Which interface
> did you run the tcpdump on? I'm guessing from the packet traffic w
Kindest greetings,
Can anyone help me out and give me some information on the following two
points.
I currently run Dachstein CD and it works a treat, fair play to all
involved.
Firstly,I want to know if it is possible to run as a general router without
firewalling.
And secondly, if it is possible
Hi gurus,
I just set up a LRP box using Eiger 2.2.16 with pppoe support by Mike Leone.
It's working fine with Bell Canada's Symaptico adsl service. Thanks to all
who have put efforts on this image and LRP!
Here is my question though.
How strong is its firewalling capability? Is it just doing
Whew! today was an adventure...I decided that I wanted to try to compile all
the modules that I need/use into my own 2.4 kernel (ide, eepro, pci, etc).
I grabbed the latest kernel source, put it on my old, rusty Pentium Pro
200/redhat 6.2 box, and followed the instructions in the readme (spent
I have to say - Simon, along with Charles posted on the list about a week
ago
and this is how I set mine up last week. I did pretty much the same thing
Simon posted, except I took out the v (Verbosely log activity to syslog)
out of the OPTIONS=" and I disabled logging on port 80 - My ramdisk was
> I was not certain what it is that you want to see -- see below.
>
> tcpdump output, run on the local DCD :
OK, this helps, but I'm still not sure what I'm looking at. Which interface
did you run the tcpdump on? I'm guessing from the packet traffic we're
looking at the upstream interface, and
> We have a DCD setup, including a proxy dmz.
>
> SNMP queries work everywhere, excepting systems residing on that dmz.
> Let me clarify that: snmp queries respond properly from clients inside
> the private network; but, *not* from the DCD firewall nor internet
> hosts.
>
> Running iptraf on the f
Hi Charles, hi all
> Good for you that you question rather than simply believe...
Ahh.. OK :)
> > Unfortunately, you can't define in which chain rules go. (Watchguard
> > Fireboxes run on a highly modified kernel 2.0.38)
> > I don't know in which chain the organize their DMZ stuff.
> Ah...with
The reason I have the verbose logging is because I remotely log the
information and generate a web page that lists the time frames I was hit by
an IP and how many packets have been sent to me by each IP. I suppose I
should have left that out - as I have to reset my log files every 2 hours or
Charles Steinkuehler wrote:
>
> > We have a DCD setup, including a proxy dmz.
> >
> > SNMP queries work everywhere, excepting systems residing on that dmz.
> > Let me clarify that: snmp queries respond properly from clients inside
> > the private network; but, *not* from the DCD firewall nor int
[EMAIL PROTECTED] wrote:
>
> > Ok. That's better than their being always on. A DMZ for your
> > servers would be safer, but is not necessary.
> >
>
> As soon as I'm able to get DSL, I'll be setting up a DMZ for my servers. A
> question: what are the pros and cons of using a third NIC on my Ox
Hi Charles, hi all
> Good for you that you question rather than simply believe...
Ahh.. OK :)
> > Unfortunately, you can't define in which chain rules go. (Watchguard
> > Fireboxes run on a highly modified kernel 2.0.38)
> > I don't know in which chain the organize their DMZ stuff.
> Ah...with
We have a DCD setup, including a proxy dmz.
SNMP queries work everywhere, excepting systems residing on that dmz.
Let me clarify that: snmp queries respond properly from clients inside
the private network; but, *not* from the DCD firewall nor internet
hosts.
Running iptraf on the firewall, we
Hi all
I'm currently in a Watchguard training. I'm going to make the WCP
Certificate.
The trainer told me, that the "Drop-In configuration" (ProxyARP DMZ) is less
secure than the routed DMZ. I didn't say anything and thought "Uh, really?
Why?".
Is a ProxyARP DMZ less secure than a routed or sta
[EMAIL PROTECTED] wrote:
> I have the opportunity to setup a firewall for a local
> non-profit organization. They want Internet access for
> their office. Both Cable and DSL are available in their
> area. Prices and speed seem comparable. I have been
> using Eiger and Dach 'steins for years w
In this case, I have convinced them to host their
Website and Email with a service. The local access
would be for Email access (POP) and Web browsing only.
The local DSL provider (SNET telco) uses PPPoE last I
checked. None of the local cable providers do. Good
point about checking with th
On Wednesday 27 February 2002 10:14, Simon Bolduc wrote:
> 2. Create /etc/LaBrea.scr it should contain the following:
>
> #!/bin/sh
>
> IPADDR=`ip addr list label eth0 | grep inet | \
> sed '1!d;s/^[^.0-9]*\([.0-9]*\).*$/\1/'`
>
> sed "s//$IPADDR/g" /etc/LaBrea.in >/etc/LaBrea.bpf
Nice scrip
This is from the mailing list (modified slightly) - it is a little script
that greps your external IP and reconfigures LaBrea on an IP change:
1. Create /etc/LaBrea.in have it contain the following:
dst host
and tcp[2:2] & 0xfc00 == 0
and not dst port (port # of any services you ru
You need to use backticks (`) around ls, not single-quotes ('), to
accomplish what you probably want. The script as written below works correctly.
At 04:10 PM 2/27/02 +0100, sylvain pelletier wrote:
>Hi,
>
>I would make a little script in sh on my lrp ( dachtein version)
>
>and i can't do this :
Hi folks,
I'm confused (what else is new :-) ). Will LaBrea work with the "default"
Dachstein CD (which acts as both a DHCP client & Server)? or would I need to
change DCD for static addresses? I have my generic, Dachstein CD working
O.K., and would like to incorporate LaBrea...but I can't seem to
At 01:27 PM 2/27/02 +, [EMAIL PROTECTED] wrote:
>I have the opportunity to setup a firewall for a local
>non-profit organization. They want Internet access for
>their office. Both Cable and DSL are available in their
>area. Prices and speed seem comparable. I have been
>using Eiger and
Hi,
I would make a little script in sh on my lrp ( dachtein version)
and i can't do this :
for file in 'ls' ; do
echo "$file"
done
the echo response is: ls
what's wrong, the problem comes from lrp???
Thanks
Sylvain
___
Leaf-user mailing list
I have the opportunity to setup a firewall for a local
non-profit organization. They want Internet access for
their office. Both Cable and DSL are available in their
area. Prices and speed seem comparable. I have been
using Eiger and Dach 'steins for years with a cable
connection. I have
Hi Richard
I use an ISDN T/A which emulates a normal modem (AT command set) so you can
use a serial port and standard modem stuff without having to worry about a
separate isdn driver. There are several around and most offer 128Kbits from
memory as an option.
Peter
-Original Message-
Fro
On Tue, 26 Feb 2002 14:48:09 CST Adrian wrote:
> Hi all...I had successfully finished a previous install with a 2.2.19-IDE
> kernel and run from a small IDE HD.
Cool.
> What I would like to do is repeat this with a 2.4 kernel (currently messing
> around with Bering Beta4...no probs running
Excellent suggestions for gathering data, Charles. Unfortunately, data
indicates that nothing changes (with respect to those commands).
I still believe that it is related to changing the eth1 net to
192.168.3.0/24 because I have a similar system unchanged that doesn't fail
(mind you, it has w2k
On Fri, 2002-02-22 at 00:49, Jacques Nilo wrote:
> Changelog for beta4:
looks great, are there any plans to make that available on a CD for more
space ?
It try to access the documentation page, but I get unreachable.
Best regards,
Christophe
--
Christophe Zwecker
:Sysctl
First familiarise yourself with the general methods for running from hard
disk via the excellent HOWTO on the LEAF site.
Bering's kernel has module support for IDE built in (always a good idea to
check the kernel config file which most developers provide with the dist so
you can check what is in
38 matches
Mail list logo
