NETWORK ROUTES
Hi all, I have a debian server with 4 network cards: The first card is used to connect to public network and this network connects with a big router. The Second, third and fourth cards are used by other networks. The first card used a dinamic route with the big router. The other cards used a static route with a little router. All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Could you help me, please? Thank you very much, Ángel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDE backup on single host (was: Re: Software backup)
On Thu, Oct 24, 2002 at 11:30:19AM +0300, Jarno Elonen wrote: Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Marcin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDE backup on single host (was: Re: Software backup)
On Thu, Oct 24, 2002 at 11:15:05PM +0300, Jarno Elonen wrote: Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? I can hear sarcasm in your words, but what was the purpose of my answer is to make accidental removal of your backups on a spare hard drive less probable. It doesn't mean you can't delete them if you really want, and I doubt if there is an easy software method to do it. And yes, it doesn't apply to devfs, but using devfs is not obligatory :) What's your suggestion, anyway? Marcin -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
RE: NETWORK ROUTES
Ok: My office network is: 172.16.16.0/24 and his IP is: 172.16.16.1. My web network is: 172.16.8.0/24 and his IP is: 172.16.8.1 My service network is: 172.16.4.0/24 and his IP is: 172.16.4.1 My public network is:213.250.143.240/28 and his IP is: 213.250.143.242. The public router is 213.250.143.241 (and only works with the range 213.250.143.240/28) The office router is 172.16.16.254 (and only works with the range 172.16.16.0/24) The static default route is 172.16.16.254 This is my route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 213.250.143.240 0.0.0.0 255.255.255.240 U 0 00 eth0 172.16.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 172.16.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth3 172.16.8.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 0.0.0.0 172.16.16.254 0.0.0.0 UG0 0 0 eth3 And my dinamic route to using the public network is: ip rule add from 213.250.143.242 table publica ip route add from default via 213.250.143.241 dev eth0 table publica ip route flush cache And the problem is when I try to use 213.250.143.242 in my internals networks doesnt run because the information goes by 213.250.143.241 and not in the normal routes. -Mensaje original- De: Jeremy C. Reed [mailto:reed;wcug.wwu.edu] Enviado el: jueves, 24 de octubre de 2002 19:01 Para: Ángel Carrasco CC: Debian ISP List Asunto: Re: NETWORK ROUTES On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDE backup on single host (was: Re: Software backup)
Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? - Jarno -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Easy way to control .forward files?
On Thu, 2002-10-24 at 20:36, Olivier Macchioni wrote: 2) Turn on/off spam tagging 3) Turn on/off virus scanning For #2, I'm planning to use procmail / spamassassin. Patches for procmail+MySQL are available here : http://www.posixnet.org/index1.html. *not tested* For #3, which anti-virus are you using ? *If* it acts like a SMTP server and *If* you can set a per-user-relayhost on postfix, then the MySQL solution *should* be OK. Another solution could be to redirect [EMAIL PROTECTED] to [EMAIL PROTECTED] for users who want some virus scanning. No knowing any virus products, but is there any reason why these two items shouldn't be very similar? (Oh, and if you want to go fance: switch between virus/spam tagging(subject)/tagging(header)/filtering :-) cheers -- vbi -- this email is protected by a digital signature: http://fortytwo.ch/gpg NOTE: keyserver bugs! get my key here: https://fortytwo.ch/gpg/92082481 signature.asc Description: This is a digitally signed message part
Re: Easy way to control .forward files?
On Thu, 24 Oct 2002 09:17:36 -0700 Tony Wasson [EMAIL PROTECTED] wrote: I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to/bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) Is there something out there, or should I cobble my own tools together? The closest I could get is Postfix + MySQL and a home-written web interface to feed MySQL, each user having his own passwd to the web interface (you can probably do the same with LDAP) + tpop3d compiled with MySQL support. This way your have #1 and #4. For #2, I'm planning to use procmail / spamassassin. Patches for procmail+MySQL are available here : http://www.posixnet.org/index1.html. *not tested* For #3, which anti-virus are you using ? *If* it acts like a SMTP server and *If* you can set a per-user-relayhost on postfix, then the MySQL solution *should* be OK. Another solution could be to redirect [EMAIL PROTECTED] to [EMAIL PROTECTED] for users who want some virus scanning. #5 is still an unexplored ground to me (I tend to hate auto-replies because having a clean configuration seems to be nearly impossible to me) And I'd add #6 : per-user quota support... Nothing really obvious to do that so far. Good hunt for solutions. I'd appreciate to hear about the solutions you've found. Mac URLs : - Postfix+MySQL http://kirb.insanegenius.net/postfix.html - tpop3d http://www.ex-parrot.com/~chris/tpop3d/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: NETWORK ROUTES
On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: shaper problem
if there's no qdisc attached to the interface you'll get an error message while trying to delete it :)you could modify it to look like this: tc qdisc del dev eth1 root 2/dev/null and you'll get no more errors. Statu Nascendi, Master of Own Disaster. I have installed shaper on my linux router to control traffic, but it appears an error when I started it (shaper 2.2.12-0.7-2): -- # /etc/init.d/shaper start Starting CBQ traffic shaping: RTNETLINK answers: No such file or directory shaper. -- The same configuration am I trying executes correctly with shaper 2.2.12-0.6. The problem is involved with the first line on /var/cache/shaper/cbq.init file, that is tc qdisc del dev eth1 root. If I remove it there is no problem. So I think that really there is no problem, because this rule means that it wants to be sure that the tc qdisc is clean, isn't it? Does anybody experience the same? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDE backup on single host (was: Re: Software backup)
Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? I can hear sarcasm in your words, Not at all - except towards my own stupidity for not even thinking of such a simple solution. :) The follow-up question was just that does removing and recreating the device files work OK with devfs - do they stay deleted? I.e. when does devfs(d) create the devices? On startup only, on demand or does it poll through them periodically? - Jarno -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Easy way to control .forward files?
I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to /bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) Is there something out there, or should I cobble my own tools together? Tony Wasson -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Easy way to control .forward files?
On Thu, Oct 24, 2002 at 09:17:36AM -0700, Tony Wasson wrote: I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to /bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) I dunno how good it is, but there is a bunch of packages in Debian called usermin that I believe provide a web interface for users to tweak this stuff. It seems to be based on webmin, so should be OK and easy to write your own modules (provided you like perl). -- -- ABO: finger [EMAIL PROTECTED] for more info, including pgp key -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[Commercial] Need a Debian unmanaged server
Folks, I am looking for a Debian box, unmanaged (except for 24x7 reboot support), lots of bandwidth, lots of RAM, no specific RAID requirement. The 24x7 is a must, as I am not in the US, and cannot call 9 to 5 EST ;-( I am currently using Communitech, but want my new servers elsewhere. Off-list would be great, I will post all the URLS/summaries back to this list, for the archives' pleasure, later. -- Sanjeev -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
LDAP and email
Has anyone LDAPized their email system, along with /etc/aliases? If so, can you give me a pointer how you did that? Thanks, Tim -- Tim Sailer (at home) Coastal Internet,Inc. Network and Systems Operations PO Box 671 http://www.buoy.comRidge, NY 11961 [EMAIL PROTECTED][EMAIL PROTECTED] (631)924-3728 (888) 924-3728 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: NETWORK ROUTES
2 possibilities remove the from statement to match all traffic and so make the route to the outside available. Simply (and i bet this is the best solution), use a default route pointing to .240.241., and use 16.16.1 as default gateway on your office router.. JeF On Thu, Oct 24, 2002 at 10:23:55PM +0200, Ángel Carrasco wrote: Ok: My office network is: 172.16.16.0/24 and his IP is: 172.16.16.1. My web network is: 172.16.8.0/24 and his IP is: 172.16.8.1 My service network is: 172.16.4.0/24 and his IP is: 172.16.4.1 My public network is:213.250.143.240/28 and his IP is: 213.250.143.242. The public router is 213.250.143.241 (and only works with the range 213.250.143.240/28) The office router is 172.16.16.254 (and only works with the range 172.16.16.0/24) The static default route is 172.16.16.254 This is my route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 213.250.143.240 0.0.0.0 255.255.255.240 U 0 00 eth0 172.16.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 172.16.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth3 172.16.8.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 0.0.0.0 172.16.16.254 0.0.0.0 UG0 0 0 eth3 And my dinamic route to using the public network is: ip rule add from 213.250.143.242 table publica ip route add from default via 213.250.143.241 dev eth0 table publica ip route flush cache And the problem is when I try to use 213.250.143.242 in my internals networks doesnt run because the information goes by 213.250.143.241 and not in the normal routes. -Mensaje original- De: Jeremy C. Reed [mailto:reed;wcug.wwu.edu] Enviado el: jueves, 24 de octubre de 2002 19:01 Para: Ángel Carrasco CC: Debian ISP List Asunto: Re: NETWORK ROUTES On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- - Jean-Francois Dive -- [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
NETWORK ROUTES
Hi all, I have a debian server with 4 network cards: The first card is used to connect to public network and this network connects with a big router.The Second, third and fourth cards are used by other networks.The first card used a dinamic route with the big router.The other cards used a static route with a little router.All runs good but my problem is when I try to use the IP of my first card in my internals networksdoesn't work because, all information doesn't go by internals networks, it goes by the big network.Could you help me, please? Thank you very much, Ángel
NETWORK ROUTES
Hi all, I have a debian server with 4 network cards: The first card is used to connect to public network and this network connects with a big router. The Second, third and fourth cards are used by other networks. The first card used a dinamic route with the big router. The other cards used a static route with a little router. All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Could you help me, please? Thank you very much, Ángel
[Help] continue https certificate date
Hello All : How could i continue apache-ssl certificate date??? im using ssl-certificate command to generate new certificate on /etc/apache-ssl/apache.pem but only 30 days vaild time...how should i do that is continue my vaild time or never expire time for apache-ssl certificate -- Trust Unique ... Axacheng's PGP Public Key http://www.navigation.idv.tw/pgpkey
IDE backup on single host (was: Re: Software backup)
We're using rsync to mirror a hot drive in our main server to a cold drive (one that is only mounted when backing up, and is briefly mounted read only for per file restoration). ...which reminds me of a related problem of mine. On my own system, I'm using a fixed spare IDE hard drive for backups. Every night, Backup2l automatically mounts it, makes an incremental backup and then unmount it again. While not a remote backup scheme, this protects the system from most common destructive mistakes and malfunctions like sudo rm -rf * - whoops, What whas I thinking?!! or software that goes wild and does similar things. But: all the backups can be erased with one simple line: dd if=/dev/zero of=/dev/backup-disk. :( Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? - Jarno
shaper problem
I have installed shaper on my linux router to control traffic, but it appears an error when I started it (shaper 2.2.12-0.7-2): -- # /etc/init.d/shaper start Starting CBQ traffic shaping: RTNETLINK answers: No such file or directory shaper. -- The same configuration am I trying executes correctly with shaper 2.2.12-0.6. The problem is involved with the first line on /var/cache/shaper/cbq.init file, that is tc qdisc del dev eth1 root. If I remove it there is no problem. So I think that really there is no problem, because this rule means that it wants to be sure that the tc qdisc is clean, isn't it? Does anybody experience the same?
Re: IDE backup on single host (was: Re: Software backup)
On Thu, Oct 24, 2002 at 11:30:19AM +0300, Jarno Elonen wrote: Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Marcin
Re: shaper problem
if there's no qdisc attached to the interface you'll get an error message while trying to delete it :)you could modify it to look like this: tc qdisc del dev eth1 root 2/dev/null and you'll get no more errors. Statu Nascendi, Master of Own Disaster. I have installed shaper on my linux router to control traffic, but it appears an error when I started it (shaper 2.2.12-0.7-2): -- # /etc/init.d/shaper start Starting CBQ traffic shaping: RTNETLINK answers: No such file or directory shaper. -- The same configuration am I trying executes correctly with shaper 2.2.12-0.6. The problem is involved with the first line on /var/cache/shaper/cbq.init file, that is tc qdisc del dev eth1 root. If I remove it there is no problem. So I think that really there is no problem, because this rule means that it wants to be sure that the tc qdisc is clean, isn't it? Does anybody experience the same? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Easy way to control .forward files?
I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to /bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) Is there something out there, or should I cobble my own tools together? Tony Wasson
Re: NETWORK ROUTES
On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/
Re: Easy way to control .forward files?
On Thu, 24 Oct 2002 09:17:36 -0700 Tony Wasson [EMAIL PROTECTED] wrote: I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to/bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) Is there something out there, or should I cobble my own tools together? The closest I could get is Postfix + MySQL and a home-written web interface to feed MySQL, each user having his own passwd to the web interface (you can probably do the same with LDAP) + tpop3d compiled with MySQL support. This way your have #1 and #4. For #2, I'm planning to use procmail / spamassassin. Patches for procmail+MySQL are available here : http://www.posixnet.org/index1.html. *not tested* For #3, which anti-virus are you using ? *If* it acts like a SMTP server and *If* you can set a per-user-relayhost on postfix, then the MySQL solution *should* be OK. Another solution could be to redirect [EMAIL PROTECTED] to [EMAIL PROTECTED] for users who want some virus scanning. #5 is still an unexplored ground to me (I tend to hate auto-replies because having a clean configuration seems to be nearly impossible to me) And I'd add #6 : per-user quota support... Nothing really obvious to do that so far. Good hunt for solutions. I'd appreciate to hear about the solutions you've found. Mac URLs : - Postfix+MySQL http://kirb.insanegenius.net/postfix.html - tpop3d http://www.ex-parrot.com/~chris/tpop3d/
Re: Easy way to control .forward files?
On Thu, 2002-10-24 at 20:36, Olivier Macchioni wrote: 2) Turn on/off spam tagging 3) Turn on/off virus scanning For #2, I'm planning to use procmail / spamassassin. Patches for procmail+MySQL are available here : http://www.posixnet.org/index1.html. *not tested* For #3, which anti-virus are you using ? *If* it acts like a SMTP server and *If* you can set a per-user-relayhost on postfix, then the MySQL solution *should* be OK. Another solution could be to redirect [EMAIL PROTECTED] to [EMAIL PROTECTED] for users who want some virus scanning. No knowing any virus products, but is there any reason why these two items shouldn't be very similar? (Oh, and if you want to go fance: switch between virus/spam tagging(subject)/tagging(header)/filtering :-) cheers -- vbi -- this email is protected by a digital signature: http://fortytwo.ch/gpg NOTE: keyserver bugs! get my key here: https://fortytwo.ch/gpg/92082481 signature.asc Description: This is a digitally signed message part
Re: IDE backup on single host (was: Re: Software backup)
Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? - Jarno
RE: NETWORK ROUTES
Ok: My office network is: 172.16.16.0/24 and his IP is: 172.16.16.1. My web network is: 172.16.8.0/24 and his IP is: 172.16.8.1 My service network is: 172.16.4.0/24 and his IP is: 172.16.4.1 My public network is:213.250.143.240/28 and his IP is: 213.250.143.242. The public router is 213.250.143.241 (and only works with the range 213.250.143.240/28) The office router is 172.16.16.254 (and only works with the range 172.16.16.0/24) The static default route is 172.16.16.254 This is my route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 213.250.143.240 0.0.0.0 255.255.255.240 U 0 00 eth0 172.16.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 172.16.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth3 172.16.8.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 0.0.0.0 172.16.16.254 0.0.0.0 UG0 0 0 eth3 And my dinamic route to using the public network is: ip rule add from 213.250.143.242 table publica ip route add from default via 213.250.143.241 dev eth0 table publica ip route flush cache And the problem is when I try to use 213.250.143.242 in my internals networks doesnt run because the information goes by 213.250.143.241 and not in the normal routes. -Mensaje original- De: Jeremy C. Reed [mailto:[EMAIL PROTECTED] Enviado el: jueves, 24 de octubre de 2002 19:01 Para: Ángel Carrasco CC: Debian ISP List Asunto: Re: NETWORK ROUTES On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: IDE backup on single host (was: Re: Software backup)
On Thu, Oct 24, 2002 at 11:15:05PM +0300, Jarno Elonen wrote: Does anyone know any way to make this more difficult without introducing a remote host? Are there, for example, any Linux kernel options for device access passwords or such? Maybe removing the appropriate /dev/hd* entries after backup, and recreating them just before backup with mknod. Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? I can hear sarcasm in your words, but what was the purpose of my answer is to make accidental removal of your backups on a spare hard drive less probable. It doesn't mean you can't delete them if you really want, and I doubt if there is an easy software method to do it. And yes, it doesn't apply to devfs, but using devfs is not obligatory :) What's your suggestion, anyway? Marcin
Re: IDE backup on single host (was: Re: Software backup)
Ingenious. :b Does it work reliably with devfs? (So that devices don't magically reappear after deletion, for example)? I can hear sarcasm in your words, Not at all - except towards my own stupidity for not even thinking of such a simple solution. :) The follow-up question was just that does removing and recreating the device files work OK with devfs - do they stay deleted? I.e. when does devfs(d) create the devices? On startup only, on demand or does it poll through them periodically? - Jarno
Re: Easy way to control .forward files?
On Thu, Oct 24, 2002 at 09:17:36AM -0700, Tony Wasson wrote: I am looking for a way for our users to control their .forward file. We currently don't allow any interactive logins (ssh) by setting the shell to /bin/false. We're looking seriously at the spamc/spamd portion of SpamAssassin. I'd like for users to be able to tune their settings easily. Does anyone have ideas? Can anyone report on the usermin-forward package? My ideal 'user page' would have options to: 1) Change your password 2) Turn on/off spam tagging 3) Turn on/off virus scanning 4) Forward email to a different account 5) Set an vacation auto-reply (optional) I dunno how good it is, but there is a bunch of packages in Debian called usermin that I believe provide a web interface for users to tweak this stuff. It seems to be based on webmin, so should be OK and easy to write your own modules (provided you like perl). -- -- ABO: finger [EMAIL PROTECTED] for more info, including pgp key --
[Commercial] Need a Debian unmanaged server
Folks, I am looking for a Debian box, unmanaged (except for 24x7 reboot support), lots of bandwidth, lots of RAM, no specific RAID requirement. The 24x7 is a must, as I am not in the US, and cannot call 9 to 5 EST ;-( I am currently using Communitech, but want my new servers elsewhere. Off-list would be great, I will post all the URLS/summaries back to this list, for the archives' pleasure, later. -- Sanjeev
LDAP and email
Has anyone LDAPized their email system, along with /etc/aliases? If so, can you give me a pointer how you did that? Thanks, Tim -- Tim Sailer (at home) Coastal Internet,Inc. Network and Systems Operations PO Box 671 http://www.buoy.comRidge, NY 11961 [EMAIL PROTECTED]/[EMAIL PROTECTED] (631)924-3728 (888) 924-3728
Re: NETWORK ROUTES
2 possibilities remove the from statement to match all traffic and so make the route to the outside available. Simply (and i bet this is the best solution), use a default route pointing to .240.241., and use 16.16.1 as default gateway on your office router.. JeF On Thu, Oct 24, 2002 at 10:23:55PM +0200, Ángel Carrasco wrote: Ok: My office network is: 172.16.16.0/24 and his IP is: 172.16.16.1. My web network is: 172.16.8.0/24 and his IP is: 172.16.8.1 My service network is: 172.16.4.0/24 and his IP is: 172.16.4.1 My public network is:213.250.143.240/28 and his IP is: 213.250.143.242. The public router is 213.250.143.241 (and only works with the range 213.250.143.240/28) The office router is 172.16.16.254 (and only works with the range 172.16.16.0/24) The static default route is 172.16.16.254 This is my route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 213.250.143.240 0.0.0.0 255.255.255.240 U 0 00 eth0 172.16.4.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 172.16.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth3 172.16.8.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 0.0.0.0 172.16.16.254 0.0.0.0 UG0 0 0 eth3 And my dinamic route to using the public network is: ip rule add from 213.250.143.242 table publica ip route add from default via 213.250.143.241 dev eth0 table publica ip route flush cache And the problem is when I try to use 213.250.143.242 in my internals networks doesnt run because the information goes by 213.250.143.241 and not in the normal routes. -Mensaje original- De: Jeremy C. Reed [mailto:[EMAIL PROTECTED] Enviado el: jueves, 24 de octubre de 2002 19:01 Para: Ángel Carrasco CC: Debian ISP List Asunto: Re: NETWORK ROUTES On Thu, 24 Oct 2002, Ángel Carrasco wrote: All runs good but my problem is when I try to use the IP of my first card in my internals networks doesn't work because, all information doesn't go by internals networks, it goes by the big network. Show us your interface setup and your routes. ifconfig -a route Jeremy C. Reed BSD software, documentation, resources, news... http://bsd.reedmedia.net/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- - Jean-Francois Dive -- [EMAIL PROTECTED] There is no such thing as randomness. Only order of infinite complexity. - _The Holographic Universe_, Michael Talbot