Re: [Leaf-user] EIGRP (88) protocol ???
Charles Steinkuehler wrote: Regarding silent deny's...you can block the whole 224.0.0.0/4 range (RFC-1112 Class-D multicast) without worry. That catches IGMP, IGRP, EIGRP, and probably others. As you'd expect, this is in the same reduce my log noise section of echowall.rules. And, what is the best way to do this? Charles, is this possible with SILENT_DENY? SILENT_DENY=all_224.0.0.0/4 Is this for Source or Destination -- 224.0.0.0 ??? If I understand the underlying code, your example will silently deny everything from the 224.0.0.0/4 network, regardless to where (destination) it is destined. However, how do I silently deny anything from any source that is destined for 255.255.255.255 ??? Since ATT Broadband moved me to the new network, I am flooded with this crap: PROTO=17 12.242.20.50:67 255.255.255.255:68 What do you think? -- Best Regards, mds mds resource 888.250.3987 Dare to fix things before they break . . . Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] SSHD file transfer
Title: SSHD file transfer Hello everyone, I'm using Dachstein v1.01 (I think) I use OPENSSH to make my connection to the Dachie Box, when I try to use the SSHD file transfer option it fail, my SSHD in Dachstein I think is using RSA en DSA, on my other box that uses SMOOTHWALL, I have no problem with the SSH file transfer... Does anyone know if I have to run some other secure FTP app or so on my Dachie box to get this function to work, as far as I know on my SMOOTHIE, there is no kind of FTP servers running... Cheers Reggie
RE: [Leaf-user] Delays in updating wanpipe.lrp
Any progress on the wanpipe? I have not seen anything new at Sangoma except in the custom folder. -Original Message- From: Michael D. Schleif [SMTP:[EMAIL PROTECTED]] Sent: Sunday, December 02, 2001 11:43 PM To: LEAF Subject:[Leaf-user] Delays in updating wanpipe.lrp We are very sorry for any delays we may incur; but, we are among the unlucky @Home victims. Notwithstanding ATT's six weeks of assurances that we would experience no interruptions, apparently the dear judge judged the case at least one week quicker than ATT anticipated and transition us to the new network. Thank goodness for modems and netZero ; I can receive Email; but, not in realtime, for the near future. And, large uploads to anywhere are intolerable ; -- Best Regards, mds mds resource 888.250.3987 Dare to fix things before they break . . . Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . Sign Up for NetZero Platinum Today Only $9.95 per month! http://my.netzero.net/s/signup?r=platinumrefcd=PT97 ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Weblet doesn't work in Dachstein 1.0.2
Upgraded from Dachstein rc2 to 1.0.2. Now the weblet-server doesn't work anymore. Netscape: The document contained no data. Opera: Simply hangs. Daemon.log shows that I tried to connect to the server. So the server is running. Hmm...it works on my test systems here. Have you made any changes to your internal network settings? I have found the problem; the weblet from dachstein-rc2 had these file permissions: drwxr-xr-x2 50 adm 4096 nov 2 01:52 sh-log/ drwxr-xr-x4 50 adm 4096 nov 2 01:24 sh-www/ drwxr-xr-x2 50 adm 4096 nov 2 01:58 cgi-bin/ drwxrwxrwx2 50 adm 4096 nov 2 01:22 images/ -rwxr-xr-x1 50 adm 2258 okt 30 12:56 cgi.include* -rwxr-xr-x1 50 adm 2465 okt 30 13:38 checkdisk* -rwxr-xr-x1 50 adm 1815 okt 30 13:39 checkfw* -rwxr-xr-x1 50 adm 2399 okt 30 13:38 checkmem* -rwxr-xr-x1 50 adm 1329 okt 8 19:43 viewfw* -rwxr-xr-x1 50 adm 1046 nov 2 01:58 viewlogs* -rwxr-xr-x1 50 adm 499 okt 8 19:56 viewmasq* -rwxr-xr-x1 50 adm 985 okt 8 19:59 viewnet* -rwxr-xr-x1 50 adm 1019 okt 30 12:37 viewsys* -rw-r--r--1 50 adm 376 aug 19 2000 lrpbkg.gif As opposed to dachstein-1.0.2: drwxr-xr-x2 nobody adm 4096 nov 2 01:52 sh-log/ drwxr-xr-x4 nobody adm 4096 nov 2 01:24 sh-www/ drwxr-xr-x2 nobody adm 4096 nov 2 01:58 cgi-bin/ drwxrwxrwx2 nobody adm 4096 nov 2 01:22 images/ -rwxr-xr-x1 nobody adm 2258 okt 30 12:56 cgi.include* -rwxr-xr-x1 nobody adm 2465 okt 30 13:38 checkdisk* -rwxr-xr-x1 nobody adm 1815 okt 30 13:39 checkfw* -rwxr-xr-x1 nobody adm 2399 okt 30 13:38 checkmem* -rwxr-xr-x1 nobody adm 1329 okt 8 19:43 viewfw* -rwxr-xr-x1 nobody adm 1046 nov 2 01:58 viewlogs* -rwxr-xr-x1 nobody adm 499 okt 8 19:56 viewmasq* -rwxr-xr-x1 nobody adm 985 okt 8 19:59 viewnet* -rwxr-xr-x1 nobody adm 1019 okt 30 12:37 viewsys* -rw-r--r--1 nobody adm 376 aug 19 2000 lrpbkg.gif Is it possible to fix this without having to chown every file ? -- Best regards, M@X. * Climate Control Psychedelic Soundscapes - http://go.to/cchq/ * Linux Shell Scripts RPM Software Packages - http://go.to/conmen/ ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Delays in updating wanpipe.lrp
Eddie Wilson wrote: Any progress on the wanpipe? I have not seen anything new at Sangoma except in the custom folder. As mentioned in a previous message, I have put together a new wanpipe.lrp based on the Sangoma linux/custom/m_schleif/wanpipe-2.2.3-lrp-v2.tar.gz tarball. With it, the modules install correctly and after issuing a wanconfig card wanpipe1 start the device shows up (default config file). Even in the 'ip addr sh' command. It even got the address I assigned to it in network.conf! And it responds to an 'ip link set wp1_ppp up' command. So everything seems to work. I just noticed that there's a newer version - v3- available on the site. Changelogs indicate that the only thing that changed was to rebuild the modules for the 2.2.19-3 kernel... However, I'm working with this kernel: fw2: -root- # uname -a Linux fw2 2.2.19 #3 Tue Nov 20 03:49:20 CET 2001 i386 unknown I could not yet test it out on an actually working link, since I don't have a LL. I will do this at my customer's site sunday night. In the mean time, if you're interested to try out my lrp file, just mail me... I'll keep you posted. Robert ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] very large /var/log/wtmp
Richard Burt wrote: OK, I took a look at the man pages for last. With no arguments, it should tell me all logins from the wtmp file. Here is what I get: # last USER TTY PID TIMEON FROM reboot ~ 0 48452.2.19 Figuring it has to do with logins, I also took a look at auth.log (also pretty big). I think the answer is here, but I don't know what to do to fix it. It is full of these. Dec 7 06:45:12 firewall /sbin/getty[11929]: /dev/tty1: cannot open as standard input: Operation not supported by device Dec 7 06:45:13 firewall /sbin/getty[11930]: /dev/tty2: cannot open as standard input: Operation not supported by device This is your problem. I've seen this on a SCO box, where /etc/inttab was grossly misconfigured and the experiences a 10 GB wtmp file !!! My box does not have any serial ports, so is there something I can do to stop it from trying to open them? Thanks, Rich Message: 5 Date: Thu, 6 Dec 2001 23:10:32 -0600 From: David Douthitt [EMAIL PROTECTED] Subject: Re: [Leaf-user] very large /var/log/wtmp To: LEAF User Mailing List [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] On 12/6/01 at 5:38 PM, Richard Burt [EMAIL PROTECTED] wrote: I saw a posting a few weeks ago of someone who was having this problem. I don't ever remember seeing an answer. This is a new clean Dachstein 1.01 installation. Been up for just shy of 3 days. As you can see my wtmp file is 7.5 MB. Anyone have any thoughts? Or what more info should I provide. Thanks. wtmp is used by the last command (that is -- probaby -- /bin/last); try it. You might want to check the help for a way to limit the number of entries to list (I don't remember what it was, but it can be done). Then you can see what is filling your wtmp file. -- Best Regards, mds mds resource 888.250.3987 Dare to fix things before they break . . . Our capacity for understanding is inversely proportional to how much we think we know. The more I know, the more I know I don't know . . . ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] SNMP from Wireless Hub
just a quick note. The rule works, but not when added at the end of ipfilter.conf. It has to go into stopMartians() like so: # RFC 1918/1627/1597 blocks $IPCH -A $LIST -j DENY -p all -s 10.0.0.0/8 -d 0/0 -l $* $IPCH -A $LIST -j DENY -p all -s 172.16.0.0/12 -d 0/0 -l $* ---$IPCH -A input -j DENY -p 17 -s 192.168.77.250 -d 0/0 162 $IPCH -A $LIST -j DENY -p all -s 192.168.0.0/16 -d 0/0 -l $* Otherwise I think the rule immediately below kicks in and logs the deny. I tried it at the location you suggested and still got log entries. I moved it and, viola!, no more pesky log entries. That's apparently because you used -A (add) instead of -I (insert). I may have gotten this wrong in my initial post...I don't know. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] 2 copies of etc in backup(Was:MigratingDachstein1.0.2-CD to harddrive?)
Oops! I forgot to add the ramlog.lrp package to the flash HDD. My flash card is 8meg so only a subset of the CD packages would fit on it. No more duplicate etc lines in the backup list and /var/log/ works now. The /proc/cmdline is: BOOT_IMAGE=linux append=load_ramdisk=1 initrd=root.lrp initrd_archive=minix ramdisk_size=12288 PKGPATH=/dev/cdrom:iso9660 root=/dev/ram0 boot=/dev/hda1,msdos LRP=etc,ramlog,local,modules,dhclient,dhcpd,dnscache,sshd,sshkey,weblet,tiny dns and the lrpkg.cfg is: etc,ramlog,local,modules,dhclient,dhcpd,dnscache,weblet,tinydns,sshd,sshkey, libz The effects were sure interesting when ramlog.lrp was specifed but the package itself was missing. Thanks, as usual, for your product and your help, Charles. Hmm...sounds like a bug in the new init scripts. The package should be listed as not found, but apparently the previous package (etc) is making it into the package list twice, since ramlog wasn't found. I'll check into it... Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Serial ports Dachstein
I am trying to set up a serial terminal output to be read by hyperterm in windows. Thia will allow me to configure the firewall without reattaching a monitor and keyboard. The How tos look super simple and Charles has set it up so I should just be able to uncomment a single line in the inittab file and have it working but alas I never seem to get that lucky. I have tried several cables/ null modem adapters to no avail. I tested the ports with a DOS utility that uses a loopback plug and they work OK. They only thing left I can see to check is the address and IRQ of the ports or perhaps my NIC's. I think they may conflict. How can I find what the NIC's are set to in Linux or DOS? They are 3 Com 3c509's. Is there a way to verify that the ports are configured properly and how do I change the address / IRq that Linux writes to if I have to alter the port hardware address. If you're using the floppy version of Dachstein (the small kernel tree), it doesn't have built-in support for serial ports to save space. You'll need to download and install the serial.o module: http://lrp.steinkuehler.net/files/kernels/2.2.19-3-small/modules/misc/serial .o The CD version (and the normal and RAID kernel trees) has support for serial-ports built-in to the kernel, so you can see the kernel boot messages on a remote serial console. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] 2 copies of etc inbackup(Was:MigratingDachstein1.0.2-CD to harddrive?)
On Fri, 2001-12-07 at 07:24, Charles Steinkuehler wrote: Oops! I forgot to add the ramlog.lrp package to the flash HDD. My flash card is 8meg so only a subset of the CD packages would fit on it. No more duplicate etc lines in the backup list and /var/log/ works now. The /proc/cmdline is: BOOT_IMAGE=linux append=load_ramdisk=1 initrd=root.lrp initrd_archive=minix ramdisk_size=12288 PKGPATH=/dev/cdrom:iso9660 root=/dev/ram0 boot=/dev/hda1,msdos LRP=etc,ramlog,local,modules,dhclient,dhcpd,dnscache,sshd,sshkey,weblet,tiny dns and the lrpkg.cfg is: etc,ramlog,local,modules,dhclient,dhcpd,dnscache,weblet,tinydns,sshd,sshkey, libz The effects were sure interesting when ramlog.lrp was specifed but the package itself was missing. Thanks, as usual, for your product and your help, Charles. Hmm...sounds like a bug in the new init scripts. The package should be listed as not found, but apparently the previous package (etc) is making it into the package list twice, since ramlog wasn't found. I'll check into it... Actually I did find a Ramlog nf or something like that during bootup so there was a warning. Stephen ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] EIGRP (88) protocol ???
Michael D. Schleif wrote: However, how do I silently deny anything from any source that is destined for 255.255.255.255 ??? Since ATT Broadband moved me to the new network, I am flooded with this crap: PROTO=17 12.242.20.50:67 255.255.255.255:68 What do you think? That's the bootp protocol (ports 67 and 68). Just don't log blocks on those ports (though I'm not sure how you'd do that in Eigerstein/Dachstein...) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Network Card Issue
Hey All, I'm starting to play with the new Dachstein v1.0.2. For some reason the network module for the 3c59x isn't working 100% happy like for a 3c905C-TX onboard card. Whenever I try to get a dhcp address, I can see the request on the DHCP Server, and it reply with an address, however the Dachstein CD never sees it. Running a netstat -i shows 0 packets received. I've tried two identical computers and multiple network cables. ideas, suggestions, flames? --Pat ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] (no subject)
This is filling up my logs. Should I be worried, is it something that I shouldn't have logged? Dec 7 01:06:34 router kernel: Packet log: input DENY eth0 PROTO=17 24.216.46.129:67 255.255.255.255:68 L=330 S=0x00 I=26282 F=0x T=255 (#42) This is a DHCP reply from your ISP. Take alook at http://www.echogent.com/cgi-bin/fwlog.pl, and paste the whole line Dec 7 01:06:34 router kernel: Packet log: input DENY eth0 PROTO=17 24.216.46.129:67 255.255.255.255:68 L=330 S=0x00 I=26282 F=0x T=255 (#42) into the field. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Network Card Issue
Hey Patrick, What you might want to do is give us the output of the dhclient (I'm assuming you are talking about not getting an IP address from your ISP). Here's how you can do it... Boot your LEAF box - don't worry about the dhclient activity here. Mount a floppy (type 'mount -t msdos /dev/fd0 /mnt' without the quotes) Type 'cd /mnt' (again no quotes) Type 'svi dhclient restart results' (no quotes) Type 'sync' (no quotes) Type 'cd / ; umount /mnt' (no quotes) Done - just tke the disk and open the results file (if you are using a Windows box use wordpad or ms-dos edit) and copy and paste the text into your email. A couple of things could be affecting you - I've seen similar things with ISPs that have an ARP table that caches the MAC of the NIC requesting the IP for up to 3 days (apparently to sidestep possible IP address conflicts) - if that is the case you will need to release your IP before you can get it on a PC with a different MAC (i.e. your LEAF box). There are various ways to do this - in NT/2K go to a command prompt and type 'ipconfig /release adaptername' no quotes and you specify the nic name (can be obtained by doing ipconfig /all) - or in win9x just go to start and then run winipcfg - and then click on the Release All button. You can then shut down your PC and boot your LEAF box. Also make sure you don't need to send some info along with your dhcprequest - I.E. a client identifier (needed for @home and other broadband providers) - you should be able to find this out from your ISP and then configure the Dhclient package accordingly. S From: Patrick Nixon [EMAIL PROTECTED] To: LEAF Users List [EMAIL PROTECTED] Subject: [Leaf-user] Network Card Issue Date: Fri, 7 Dec 2001 12:22:31 -0500 (EST) Hey All, I'm starting to play with the new Dachstein v1.0.2. For some reason the network module for the 3c59x isn't working 100% happy like for a 3c905C-TX onboard card. Whenever I try to get a dhcp address, I can see the request on the DHCP Server, and it reply with an address, however the Dachstein CD never sees it. Running a netstat -i shows 0 packets received. I've tried two identical computers and multiple network cables. ideas, suggestions, flames? --Pat ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] SSHD file transfer
On Fri, 7 Dec 2001, Reginald R. Richardson wrote: Hello everyone, I'm using Dachstein v1.01 (I think) I use OPENSSH to make my connection to the Dachie Box, when I try to use the SSHD file transfer option it fail, my SSHD in Dachstein I think is using RSA en DSA, on my other box that uses SMOOTHWALL, I have no problem with the SSH file transfer... Does anyone know if I have to run some other secure FTP app or so on my Dachie box to get this function to work, as far as I know on my SMOOTHIE, there is no kind of FTP servers running... scp uses ssh to invoke scp (with a -t or -f option) on the host to complete the connection. You need scp installed on your Dachstein box. --- Jeff NewmillerThe . . Go Live... DCN:[EMAIL PROTECTED]Basics: ##.#. ##.#. Live Go... Live: OO#.. Dead: OO#.. Playing Research Engineer (Solar/BatteriesO.O#. #.O#. with /Software/Embedded Controllers) .OO#. .OO#. rocks...2k --- ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Serial ports Dachstein
That was it! Works fine once I installed serial.o . Thanks again, Kory Charles Steinkuehler wrote: I am trying to set up a serial terminal output to be read by hyperterm in windows. Thia will allow me to configure the firewall without reattaching a monitor and keyboard. The How tos look super simple and Charles has set it up so I should just be able to uncomment a single line in the inittab file and have it working but alas I never seem to get that lucky. I have tried several cables/ null modem adapters to no avail. I tested the ports with a DOS utility that uses a loopback plug and they work OK. They only thing left I can see to check is the address and IRQ of the ports or perhaps my NIC's. I think they may conflict. How can I find what the NIC's are set to in Linux or DOS? They are 3 Com 3c509's. Is there a way to verify that the ports are configured properly and how do I change the address / IRq that Linux writes to if I have to alter the port hardware address. If you're using the floppy version of Dachstein (the small kernel tree), it doesn't have built-in support for serial ports to save space. You'll need to download and install the serial.o module: http://lrp.steinkuehler.net/files/kernels/2.2.19-3-small/modules/misc/serial .o The CD version (and the normal and RAID kernel trees) has support for serial-ports built-in to the kernel, so you can see the kernel boot messages on a remote serial console. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user