RE: [e-smith-devinfo] 1:1 NAT - Testers
Hi Abe. Welcome to the list :-) Thanks. Instead of a config.txt file you should put your entries in the db configuration file found here: /etc/e-smith/configuration You mean /home/e-smith/configuration? I couldn't find the file listed above. Is the appropriate procedure to append entries to the bottom? As for your masq entries they should be templated and added to: /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/ Take a look at Trevor's rpm. It will point you in the right direction. Thanks for the input, I'll dive into this over the weekend. Also, I hope to add a panel for the server-manager as well. I've copied a couple to use as examples, and looked through the directions at http://www.e-smith.org/custom/. Abe --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 1/30/2002 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] 1:1 NAT - Testers
Hi Darrell, It's there too, under: ftp://ftp.e-smith.org/pub/e-smith/contrib/TrevorOuellette/SRPMS/ Trev. Take a look at Trevor's rpm. It will point you in the right direction. Trevor, to assist Abe I suggest you might want to post up your source rpm as well. Regards, -- Darrell May -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] 1:1 NAT - Testers
Hi Abe, I'm not a big fan, when people just drop a link on me, but this link does answer some of the questions that you have about the ES templating system. It would give you a good start. http://www.e-smith.org/bboard/read.php?f=3i=10558t=10552 There is no mention of events/actions, though. Trev. -Original Message- From: Abe Loveless [mailto:[EMAIL PROTECTED]] Sent: Friday, February 08, 2002 7:43 AM To: [EMAIL PROTECTED] Subject: RE: [e-smith-devinfo] 1:1 NAT - Testers Hi Abe. Welcome to the list :-) Thanks. Instead of a config.txt file you should put your entries in the db configuration file found here: /etc/e-smith/configuration You mean /home/e-smith/configuration? I couldn't find the file listed above. Is the appropriate procedure to append entries to the bottom? As for your masq entries they should be templated and added to: /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/ Take a look at Trevor's rpm. It will point you in the right direction. Thanks for the input, I'll dive into this over the weekend. Also, I hope to add a panel for the server-manager as well. I've copied a couple to use as examples, and looked through the directions at http://www.e-smith.org/custom/. Abe --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 1/30/2002 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] 1:1 NAT - Testers
Abe Loveless [EMAIL PROTECTED] said: You mean /home/e-smith/configuration? Sorry that is what I meant to type :-) Is the appropriate procedure to append entries to the bottom? Nope. In long form you use the command: /sbin/e-smith/db /home/e-smith/configuration set/setprop... In short form: /sbin/e-smith/config set/setprop Start by looking at: /sbin/e-smith/db --help Regards, -- Darrell May DMC Netsourced.com http://netsourced.com http://myEZserver.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] 1:1 NAT - Testers
On Fri, 8 Feb 2002, Trevor Ouellette wrote: I'm not a big fan, when people just drop a link on me, but this link does answer some of the questions that you have about the ES templating system. It would give you a good start. http://www.e-smith.org/bboard/read.php?f=3i=10558t=10552 There is no mention of events/actions, though. You'll find those covered by following links from the Design and Architecture box on http://www.e-smith.org/. Custom templates are covered in the Customizing the System document. -- Charlie Brady [EMAIL PROTECTED] Lead Product Developer Network Server Solutions Grouphttp://www.e-smith.com/ Mitel Networks Corporationhttp://www.mitel.com/ Phone: +1 (613) 368 4376 or 564 8000 Fax: +1 (613) 564 7739 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
RE: [e-smith-devinfo] 1:1 NAT - Testers
If someone is looking for a starting place, you may want to check out the External IP Alias Panel that I wrote. Obviously, it will have to be modified to solve Abe's problem, but I have made some headway so far. ftp://ftp.e-smith.org/pub/e-smith/contrib/TrevorOuellette/RPMS/noarch/ Trev. -Original Message- From: Abe Loveless [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 07, 2002 6:44 PM To: [EMAIL PROTECTED] Subject: [e-smith-devinfo] 1:1 NAT - Testers I'm a newbie at Linux development. I've been watching this list for several months, and finally think I may have something to contribute. I work for a state funded organization that started pushing the idea of an SME server to our school districts as an easy to use content filter with Trevor Ouelette's squidguard server-manager panel. As the more adventerous districts progressed, they started wanting to do more than simple content filtering. Most recently, I've been getting questions about 1:1 NAT functionality... similar to that of Novell's BorderManager. The port-forwarding rpm's didn't quite do what the users wanted. Basically, I needed to punch a hole through the firewall and take all incoming traffic to a 2nd external IP address and redirect it to an internal IP. I think we're close to getting this ironed out and are looking for testers. HowTo is located at: http://www.tech-geeks.org/article.php?story=20020206234827402 If link is broken for some reason, search for 1_TO_1_NAT I'm also looking for feedback: Am I going about this the best way? Here's how it works: 1. Manually edit a config.txt file to include the new external IP, the internal IP it should forward to, and the network that should have access (1 Subnet or Entire Internet, currently). 2. Run install, a shell script that executes a perl script that reads config.txt and builds a shell script to execute the various ip and ipchains commands. 3. Because the ip and ipchains commands executed by the shell script are lost upon reboot (and everytime the routing tables get flushed), I also created a symbolic link in /etc/rc.d/rc7.d/S99_1_to_1_NAT - /opt/utilities/1_to_1/temp/1_to_1.sh. This way the script is executed near the end of the boot process. 4. Also added a reset script that will re-execute the 1_to_1.sh file to restore lost ipchains entries (after a flush of the routing tables). And added an update script that will regenerate the 1_to_1.sh file if the user needs to make changes to the config.txt file and start over. I have tested on SMEv5.0 with http traffic to a Win98 internal client (http://216.125.202.201 should load a Xitami web page). I currently don't have another spare server to test things like mail and other services. Any other comments/tips welcomed. Thanks, Abe Abe Loveless Network Specialist Area 5 Learning Technology Center 200 Clay Street Edwardsville, IL 62025 Phone: 618-692-6200 ext.4571 Fax: 618-659-9338 http://www.lth5.k12.il.us --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 1/30/2002 -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
Re: [e-smith-devinfo] 1:1 NAT - Testers
Abe Loveless [EMAIL PROTECTED] said: I'm a newbie at Linux development. I've been watching this list for several months, and finally think I may have something to contribute. Hi Abe. Welcome to the list :-) I'm also looking for feedback: Am I going about this the best way? Well on a very brief look you do not seem to utilize the template system or db files. This document is now almost a year old but it might get you going in the right direction: http://www.e-smith.org/docs/papers/templates.html Instead of a config.txt file you should put your entries in the db configuration file found here: /etc/e-smith/configuration As for your masq entries they should be templated and added to: /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/ Take a look at Trevor's rpm. It will point you in the right direction. Trevor, to assist Abe I suggest you might want to post up your source rpm as well. Regards, -- Darrell May DMC Netsourced.com http://netsourced.com http://myEZserver.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org