Re: [Hampshire] IPv6 ADSL router recommendations
> Routerboards. Linitx.com sell them. Any alixboard running m0n0wall will do > it too. Routerboard 750 under 40 quid. Monowall works well with the HE tunnels too. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] IPv6 ADSL router recommendations
> Part of my motivation for doing this is to learn about IPv6 on the internet > and on the LAN (including wifi) so that I can set it up for clients > eventually. So using a fairly standard commercially available router would > be preferable. > >> Entanet support PPPoE connections. > > > That's good to know. > > > cheers > > Chris You could also terminate a (free) v6 tunnel from Hurricane Electric on a internal machine and use that to deal with v6 on the LAN. That's the way I started playing with it. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] IPv6 ADSL router recommendations
On Wed, Feb 22, 2012 at 11:24 AM, Chris Dennis wrote: > On 22/02/12 09:38, Bob Dunlop wrote: >> >> Hi, >> >> On Wed, Feb 22 at 09:12, Philip Stubbs wrote: >>> >>> >>> I don't know if it would work, but will OpenWRT or DD-WRT on a cheap >>> router support ipv6? >>> >>> http://www.dd-wrt.com/wiki/index.php/IPv6 >> >> >> OpenWrt info is at http://wiki.openwrt.org/doc/howto/ipv6.overview btw. >> >> >> Well I've got DD-WRT on a WNR3500L at home and finding IPv6 enabled >> software images has proven problematic. Despite being marketed as an >> opensource router the 3500 requires too many binary blobs with poorly >> defined interfaces. >> >> DD-WRT's IPv6 support also feels patchy, OpenWrt's documentation looks >> better but I've yet to try it. There are OpenWrt images for the 3500 >> despite it being listed as unsupported but none of them have IPv6. >> >> So I'm wondering about a Netgear WNDR3700 but need to find Atheros based >> V2 hardware rather than the Broadcom based V3 which is another binary >> blob nightmare apparently. Don't you love manufacturate who change the >> entire product chipset and don't change the product designation. > > > Those are the sorts of problems that I'm hoping to avoid. > > I'll have to do some more research... > > > cheers > > Chris > -- > Chris Dennis cgden...@btinternet.com > Fordingbridge, Hampshire, UK If you have a spare machine which is used as a firewall you could put the modem in bridge mode and use PPPoE on the Linux firewall. Entanet support PPPoE connections. Regards Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] HP ProCurve switch, VLAN configuration.
> It would also be ideal If i could get routing working on the switch, since I > will, eventually, use this switch to route between a number of VLANs in this > building, and so, although the temporal effect is probably negligible, it > seems it would be a better candidate to route between VLANs in this > building. > > Steven Hello I missed the part that you would be routing between the vlans and not just providing internet access to them. In this case you are better off getting routing working on the switch rather than pushing all data via the router (the switch will be faster anyways). What I said earlier still stands, the vlans will not really be active and respond to ping until you have something connected into them. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] HP ProCurve switch, VLAN configuration.
> That is excellent Wayne, thank you very much. Your welcome > I will test this configuration later on today. The DLINK router is very dumb > and doesn't support VLANs or anything fancy like that. However, this is a > mock set-up I have running in my office; I know the router in the actual > network - who's name I can't even pronounce - does support VLANs and > tagging. So if I can't get it running on my set up I will do a live test. > > I'll let you know how it goes. If you have a spare machine around you could run a live distro on it or vyatta live and test it out that way. Vyatta is easy to use and I can supply a sample config for that too if required. Have fun Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] HP ProCurve switch, VLAN configuration.
Morning > The internet router is in port 1, the laptop is in port 5. I have now set > the router port as a trunk on the switch. > > Port 5 is on a different subnet to port 1, the laptop is 10.1.202.0 and the > router 10.1.201.0 > > I set the static addresses of the laptop as follows: > ip: 10.1.202.10 > subnet: 255.255.255.0 > gateway: 10.1.202.1 (this is the VLAN ip address, I have tried giving it the > router ip address but it didn't work... maybe I should try the internet VLAN > address?) > > It is so close to working! > > I forgot the HP's had trunk (bonded) ports we had trouble with those so did not use them with the latest firmware, I was referring to Vlan trunks. Vlans will not be active until one of the un-tagged ports is up (something connected to it) Anyways this is how I would configure it. Port 1 on the switch would be the vlan trunk port, this means it needs to be a member of all the vlans as a tagged port and will be connected to your router. vlan 2 name "INTERNET" untagged 2-5 ip address 10.1.201.2 255.255.255.0 tagged 1 exit vlan 3 name "RESIDENTS" untagged 6-24 ip address 10.1.202.2 255.255.255.0 tagged 1 exit vlan 4 name "TEST" untagged 25-48 ip address 10.1.205.3 255.255.255.0 tagged T1 exit Dlink. I has never used one of these but in the Cisco world the config would look like this interface FastEthernet0/0 description Trunk to HP switch no ip address full-duplex interface FastEthernet0/0.2 description INTERNET vlan encapsulation dot1Q 2 ip address 10.1.201.1 255.255.255.0 interface FastEthernet0/0.3 description RESIDENTS vlan encapsulation dot1Q 3 ip address 10.1.202.1 255.255.255.0 interface FastEthernet0/0.4 description TEST vlan encapsulation dot1Q 4 ip address 10.1.205.1 255.255.255.0 The above configs leave all routing to the router and switching to the switch, the default gateway for any hosts will be the router's IP -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] HP ProCurve switch, VLAN configuration.
Hello Large snip > I tried that to no avail... I will have a play with it again at work > tomorrow and see how it goes. I'll let you know how successful I am. > > Cheers for all your help guys :) > > Steven > The normal way to achieve this is to make one of the ports a trunk port and connect this to the router. The trunk port will be a member of all the vlans in tagged mode. Add a sub interface on the router per vlan (make sure the vlan ID's match) and then the router will handle all of the routing and the switches will just switch. Unless it a full layer 3 switch it will not have the routing capabilities. If you don't have root/admin access to the router then use a spare Linux box which supports vlans very well. Regards Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Domestic ADSL ISPs
Hello > > If you're really having trouble there is a trick you can use. If you share > the house (for example with your spouse) if you change the BT account into > another name it automatically causes a cease order to go through on the ADSL > which the ISP can't stop. The ISP have no contract with the new subscriber > so their link to the line dies with the contract transfer. The only trouble with that approach is that you need to wait for the cease to complete before you can re-order ADSL again. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] VHS to PC Recommendation
> Cheers > > Rob > > > > [1] > http://www.maplin.co.uk/refurbished-vcr-2-pc-usb-vhs-tape-to-pc-convertor-508227 - Hello I've used a device like this in the past. I cannot find the correct link now as I'm in a rush but they do the job ok. http://www.ebuyer.com/product/205778 Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [Slightly OT] IPv6 non-technical description?
> On 22 February 2011 11:12, Keith Edmunds wrote: >> I'm looking for a non-technical description of IPv6: has anyone come >> across one (or do I have to write one)? >> >> By "non-technical", I mean that the target audience would be business >> managers rather than technical staff. Almost every reference I've found so >> far uses phrases such as "RFC" or "network layer protocol" or "2^128". > Hello http://www.6uk.org.uk/ Regards Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Cable coverage
The Virgin network map is here http://www.virginmediabusiness.co.uk/files/tlw105-VRB.html Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Anyone know much about IPv6 tunnels?
> Your ADSL router will need to do both PPP (IPv4) and PPP(IPv6), and so > the ADSL router will have both IPv4 and IPv6 addresses. I was talking about v6 only hosts, those without dual stack (new ISP's that startup after v4 has run out for a example). Once v4 has all been allocated the v4 addresses they will get will be private ranges and will need nat'ing. This is where it's going to get interesting. It will be the same problem for v4 only hosts who need to reach v6 hosts. There are a few different methods (each with their own limitations) for sorting this out but no one agreed standard which everybody will all use. Dual stack is the 1st stepping stone and will be around for a very long time until v4 is truly dead. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Anyone know much about IPv6 tunnels?
> Just need the Broadband ADSL router to support IPv6 over PPP and > include IPv6 firewall/port forwarding features. There are very few ADSL routers which support v6 of ppp. The Manufactures have been very slow in dealing with this(lack of demand being the reason they cite). Of course you can use a Cisco, Juniper and most other Hi-end routers but I don't know many homw users who are willing to pay the price for them. If you have a linux/bsd box (like us) you can put the router in bridge mode and use the pppoe client on that to deal with v6 but of course that then requires support from the ISP. Supplying v6 addresses is the easy part, the hard part is making sure you can reach v4 only sites and vice-versa and making this scale in a reliable way. Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Anyone know much about IPv6 tunnels?
> On Sat, Dec 18, 2010 at 02:56:21PM -, Vic wrote: >> I'm using aiccu to set up the tunnel. Running "aiccu start" seems to >> succeed - but I can't actually get the tunnel working. > Never had any luck with with sixxs, Hurricane Electric worked first time for with on OpenBSD, Monowall and Vyatta (debian build) Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Due Diligence of Service Providers
> If this is simply backup data - and particularly if you store it in an > encrypted filesystem - then the backup process may not qualify as a > "transfer" under the Act. But this is the sort of thing you need to check. > > How much data are you talking about? It might be a lot easier to host in > Europe... If it's large amount of data I would host in the UK only and only then if they can get a harddrive to me quickly as it could take too long to download over DSL. Blazevault do this. Regards -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Virgin media: good and bad
Hi Rob > if I change my default gateway to virgin – the problem goes away Are you running both connections at the same time ? If so you could always add a static route on the machine to connect to Virgin's mail server via the Virgin gateway and leave the default route via your DSL Regards Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] [OT] Vinyl Ripping Issue
>The one >thing I would say is get a quartz locked turntable with a decent >Ortofon or Shure cart. Go for stable speed and clean sound. I'll second that, these [1] Ortofon's are really good on my Technics 1210's. I used to use a different Ortofon (cheaper) set and the difference is stunning. [1] http://www.dv247.com/invt/34392/ Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] Server needed urgently
> -Original Message- > From: hampshire-boun...@mailman.lug.org.uk [mailto:hampshire- > boun...@mailman.lug.org.uk] On Behalf Of Stephen Nelson-Smith > Sent: 05 March 2009 15:35 > To: Hampshire LUG Discussion List > Subject: [Hampshire] Server needed urgently > > I need to get hold of a server - 1U or 2U - 1 or 2 cpus, 4G RAM, ASAP. > I was having one sent to a client site tomorrow, in time for my > arrival on monday. That server is defective, so I need another one > ASAP. I don't mind driving an hour or so from Portsmouth area... > Doesn't matter if it's new or 2nd hand. > > Any ideas? > Try Sentral Systems in Southampton http://www.sentralsystems.com/ 0845 448 016 -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
[Hampshire] vpn woes
Hello
I'm having some trouble with a ipsec vpn on Debian with dynamic clients,
I have static IP clients working with PSK's fine. Hopefully somebody can
point me in the right direction
Racoon config
remote anonymous {
exchange_mode main;
## doi ipsec_doi ;
## situation identity_only ;
## lifetime time 1 hour ;
generate_policy on;
passive on;
certificate_type x509 "vpngateway_cert.pem"
"vpngateway_key.pem"
verify_cert on;
my_identifier address asn1dn;
peers_identifier fqdn asn1dn";
verify_identifier on;
proposal {
encryption_algorithm aes;
hash_algorithm sha1;
authentication_method rsasig;
dh_group modp1024;
}
proposal_check obey ;
}
sainfo anonymous {
pfs_group modp1024;
lifetime time 1 hour ;
encryption_algorithm aes;
authentication_algorithm hmac_sha1;
compression_algorithm deflate;
}
I have created a cert for the client which is a Zyxel router put no
dice, the error I'm seeing in the racoon logs is
Nov 20 15:36:50 localhost racoon: INFO: respond new phase 1 negotiation:
82.144.*.*[500]<=>84.64.*.*[500]
Nov 20 15:36:50 localhost racoon: INFO: begin Identity Protection mode.
Nov 20 15:36:50 localhost racoon: ERROR: rejected authmethod:
DB(prop#1:trns#1):Peer(prop#1:trns#1) = pre-shared key:RSA signatures
I can get it work without problems if the client IP address is static, I
have read a number of how-to's and but I cannot seem to get it to work,
the certs I created are in the racoon/certs directory and the cert for
the Zyxel client had the request sign by my CA. The VPN server is Debian
Etch.
Searching google for the racoon error message has not provided a great
deal.
Regards
Wayne
--
Please post to: Hampshire@mailman.lug.org.uk
Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire
LUG URL: http://www.hantslug.org.uk
--
Re: [Hampshire] OT: Part-P rant
> Mind I've spent about three weeks on a project to construct, from > scratch, a wooden beam engine. That's very labour intensive. For > example it took me about five hours to make a single spoked wheel: > > http://www.steve.org.uk/Images/2008/09/wheel.jpg > > I'm hoping it'll be finished by this time next year, but I'll > not be surprised if it takes far longer.. > > Steve Sound like fun to me :-) Wayne -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
Re: [Hampshire] OT: Part-P rant
> At one point I was using a steam engine to open my curtains, but more > for novelty than for practicality. Some people have far too much spare time. -- Please post to: Hampshire@mailman.lug.org.uk Web Interface: https://mailman.lug.org.uk/mailman/listinfo/hampshire LUG URL: http://www.hantslug.org.uk --
