Re: [LARTC] HOWTO unmaintained?
On Wednesday 17 August 2005 23:44, Taylor, Grant wrote: It looks like a number of people are offering sites - IMHO, a distributed wiki (ie: you can edit at any of the sites) or a master/mirror setup would be good, as that would help prevent problems if site maintainers get kidnapped by aliens, sites get slashdotted, etc. I think the Wiki, if that route is chosen, should be on the www.lartc.org domain name. This means that we will have to find and contact the administrators of that domain / DNS servers. (I'm not official subscribed to this list, but I'm still reading some posts) I know the owner of lartc.org and I mailed him about this problem. I will keep the list updated if he answers me. As far as the distributed web site goes I think it is a good idea. To pull off the distributed site we would need to have the DNS records resolve to multiple boxen across the net. I have considered a self replicating set up for some of my servers and at present I'm looking at using Coda or AFS as a replicating / caching local copies of the remote file system content. I've never dealt with Wikis other than and end user (and I say that the ones that I've looked at have been slow) so I don't know what they take to set up. I suspect that they use a database and thus we would want to set up the Wiki to use a database that has real time replication between the two (or more) web servers that the wiki points to. I would be more than happy to help with such an endeavor. I can not host it at my office (bosses will not let me) but I can help provide content and / or convert stuff. There are lots of wiki's available. Some use plain text files, some uses mysql, some are written in php, some are written in perl. I prefer the mysql + php way to store the information. Stef ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[LARTC] Tools can capture Q-in-Q VLAN packets?
Hi all, I'm developing Q-in-Q VLAN feature for a router software. Does any open source tools have capacity of capturing and displaying Q-in-Q VLAN packet? Thanks Regards, Hung Start your day with Yahoo! - make it your home page http://www.yahoo.com/r/hs ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] Tools can capture Q-in-Q VLAN packets?
Hello, This is a proprietary feature of Cisco Systems, so I doubt that any opensource tool can capture it. Besides that this kind of technology has various implementations, f.e. Extreme Networks call it VMAN and use a different ethertype frame (AFAIR, 0x9100). On Thu, 18 Aug 2005 02:05:20 -0700 (PDT) Viet Hung [EMAIL PROTECTED] wrote: Hi all, I'm developing Q-in-Q VLAN feature for a router software. Does any open source tools have capacity of capturing and displaying Q-in-Q VLAN packet? Thanks Regards, Hung pgpGzvqyXTCzk.pgp Description: PGP signature ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] Tools can capture Q-in-Q VLAN packets?
On Thu, Aug 18, 2005 at 12:37:46PM +0300, Nickola Kolev wrote: Hello, This is a proprietary feature of Cisco Systems, so I doubt that any opensource tool can capture it. Besides that this kind of technology has various implementations, f.e. Extreme Networks call it VMAN and use a different ethertype frame (AFAIR, 0x9100). AFAIK, every implementation should have 802.1q ethertype (0x8100)... Why not to stack packets deeper? And every outer packet should be a valid 802.1q packet. And every inner packet, if it contains another one, should also be a valid 802.1q packet. The most inner should, of course, be plain ethernet packet, I guess. AFAIK... Some devices allow to set ethertype for outer packet -- linux could do so too? ps. I have been looking for Q-in-Q solution for linux and have found none. Would be great, but... I'm not a programmer.. On Thu, 18 Aug 2005 02:05:20 -0700 (PDT) Viet Hung [EMAIL PROTECTED] wrote: Hi all, I'm developing Q-in-Q VLAN feature for a router software. Does any open source tools have capacity of capturing and displaying Q-in-Q VLAN packet? Thanks Regards, Hung ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc -- _,-=._ /|_/| `-.} `=._,.-=-._., @ @._, `._ _,-. ) _,.-' `G.m-^m`m'Dmytro O. Redchuk ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[LARTC] Two internet lines and squid problem.
I have 2 internet connections and i;m trying to use squid as transparent proxy but every time squid is using first internet line but i want to use second internet line . i have this settings and without squid it's working i have default route on the first internet connection. iptables -t nat -I POSTROUTING -o eth2 -p tcp --dport 80 -s 192.168.0.0/24 -d ! 192.168.0.0/16 -j SNAT --to 217.10.248.135 /sbin/ip route add default via 217.10.248.135 dev eth2 table natips /sbin/ip rule add fwmark 66 table natips iptables -t mangle -I PREROUTING -i eth1 -p tcp --dport 80 -j MARK --set-mark 66 iptables -t mangle -A FORWARD -i eth1 -p tcp --dport 80 -j MARK --set-mark 66 I try to solve the problem moving squid to onother computer and i add additional rules like /sbin/ip route add default via 217.10.248.135 dev eth2 table natips /sbin/ip route add default via 192.168.0.11 dev eth1 table squid /sbin/ip route flush cache /sbin/ip rule add fwmark 67 table squid /sbin/ip rule add fwmark 66 table natips iptables -t mangle -I PREROUTING -i eth1 -p tcp -s 192.168.0.11 --dport 80 -j MARK --set-mark 66 iptables -t mangle -I PREROUTING -i eth1 -p tcp -d ! 192.168.0.11 --dport 80 -j MARK --set-mark 67 iptables -t mangle -A FOWARD -i eth1 -s 192.168.0.11 -p tcp --dport 80 -j MARK --set-mark 66 iptables -t mangle -A FORWARD -i eth1 -p tcp -s ! 192.168.0.11 --dport 80 -j MARK --set-mark 67 iptables -t nat -I POSTROUTING -o eth2 -p tcp --dport 80 -s 192.168.0.0/24 -d ! 192.168.0.0/16 -j SNAT --to 217.10.248.135 in this case web traffic is working but pages that uses SSL like gmail.com is not working can anybody help me to use squid like transparent proxy with 2 internet connection and to use second one. Thank in advance. ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] HOWTO unmaintained?
I wonder if someone would host a mediawiki and consider uploading the documentation there. This would make it easier for people to contribute, and I think it shold be fairly easy to convert from it's current format to a wiki Good idea, I'll see if the OSDL will put up a wiki for it on developer.osdl.org, stay tuned. Can I suggest that you look very hard at Mediawiki (ie as per wikipedia). It's built for scalability, is really easy to edit, very actively maintained, and has all the distributed stuff built in if you really needed to spread the load over several machines. All in all a very grown up documentation tool. Oh and it's also multi-lingual so it might also be possible to use it to help with the translation issues I mainly mentioned it because I'm sure there are some tools for converting the current lartc faq up to the wiki format and obviously that's the first main step. If someone will host it then I have some experience maintaining a mediawiki site and could probably help out some Ed w ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] Tools can capture Q-in-Q VLAN packets?
On Thu, Aug 18, 2005 at 02:05:20AM -0700, Viet Hung wrote: Hi all, I'm developing Q-in-Q VLAN feature for a router software. Does any open source tools have capacity of capturing and displaying Q-in-Q VLAN packet? Ethereal captures them just fine -- Roy-Magne Mo ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Re: [LARTC] Two internet lines and squid problem.
Stanislav Nedelchev wrote: I have 2 internet connections and i;m trying to use squid as transparent proxy but every time squid is using first internet line but i want to use second internet line . i have this settings and without squid it's working i have default route on the first internet connection. iptables -t nat -I POSTROUTING -o eth2 -p tcp --dport 80 -s 192.168.0.0/24 -d ! 192.168.0.0/16 -j SNAT --to 217.10.248.135 /sbin/ip route add default via 217.10.248.135 dev eth2 table natips /sbin/ip rule add fwmark 66 table natips iptables -t mangle -I PREROUTING -i eth1 -p tcp --dport 80 -j MARK --set-mark 66 iptables -t mangle -A FORWARD -i eth1 -p tcp --dport 80 -j MARK --set-mark 66 I try to solve the problem moving squid to onother computer and i add additional rules like /sbin/ip route add default via 217.10.248.135 dev eth2 table natips /sbin/ip route add default via 192.168.0.11 dev eth1 table squid /sbin/ip route flush cache /sbin/ip rule add fwmark 67 table squid /sbin/ip rule add fwmark 66 table natips iptables -t mangle -I PREROUTING -i eth1 -p tcp -s 192.168.0.11 --dport 80 -j MARK --set-mark 66 iptables -t mangle -I PREROUTING -i eth1 -p tcp -d ! 192.168.0.11 --dport 80 -j MARK --set-mark 67 iptables -t mangle -A FOWARD -i eth1 -s 192.168.0.11 -p tcp --dport 80 -j MARK --set-mark 66 iptables -t mangle -A FORWARD -i eth1 -p tcp -s ! 192.168.0.11 --dport 80 -j MARK --set-mark 67 iptables -t nat -I POSTROUTING -o eth2 -p tcp --dport 80 -s 192.168.0.0/24 -d ! 192.168.0.0/16 -j SNAT --to 217.10.248.135 in this case web traffic is working but pages that uses SSL like gmail.com is not working can anybody help me to use squid like transparent proxy with 2 internet connection and to use second one. Thank in advance. I don't know anything at all about squid, but I recall a posting here regarding HTB and squid where the poster suggested a patch for squid. You might want to google lartc squid patch and see if there is anything that helps. You might also want to google lists.netfilter.org. -- gypsy ___ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc