Re: [leaf-user] Improving wireless link
Charles, On the basis that there is some distance involved ; (an assumption) My understanding is that some of the cheaper (dlink in particular) wireless gear has 'timing issues' when the A/Ps are physically far apart. In the extreme, you will have to go to a proprietry fix, viz turbocell, or replace the A/Ps with something a little more tolerant of distance. 802.11 was never intended to travel great distances. Indeed it was part of the 802.11 specification to actually prevent (ha ha) this from happening - the reason for the proprietry RF connectors. In summary, many standard 802.11 wireless cards will do great distances without getting flaky, but I have heard that the dlink gear is not of that category. Other cards such the Orinoco PC-cards combined with turbocell work very well indeed at distances up to 20km, and provide true data rates in the order of 9MBit/sec (I am told). I don't like the idea of proprietry *anything*, and I wish there was an open-source 'turbocell'. In answer to your question, I do not think there is a device you can put on the ends of a leaky hose - to make the hose not leak. sorry. I hope someone else has a different version to tell. 8-( /steve Charles Steinkuehler wrote: I've built an IPSec VPN tunnel over a point-point wireless link using a couple of D-Link DWL-900AP+ boxes and some spare ports on a couple of installed LEAF boxes. My problem is I'm seeing *LOTS* of packet loss, duplicate packets, mangled packets (especially longer packets typical of downloads and web browsing), and other nastiness making performance across the wireless link virtually unusable, despite a fair amount of bandwidth. It seems to be fairly well known that TCP doesn't handle the bursty packet loss typical of wireless networks very well, having instead been designed for packet loss typical for congested wired networks (where partly garbled packets are quite rare). I have seen a few proposed mechanisms that operate at layer 3, monitoring the TCP traffic, and "fiddling" with the TCP flow to improve TCP performance (by doing things like requesting re-transmissions of packets that look like they got dropped by the wireless link). Now for my question: Does anyone know of a linux implementation of anything like the above I could possibly get running on a LEAF box? Since I'm tunneling all traffic through a leaf box on each end, it seems like I could implement something to "transparently" deal with the lossy wireless hop, but since I'm kind of new to the whole wireless thing, I'm not sure what software I'm looking for, or if it even exists. Of course I'm also looking at what options I have for increasing the fundamental reliability of the wireless link as well, but I'd still like to find something that can "tweak" TCP operation for running over wireless. Thanks for any pointers, --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Fwd: Re: [leaf-user] syslinux question: putting bering on a diskonchip
From [EMAIL PROTECTED] Tue Jun 3 23:06:08 2003 Date: Wed, 04 Jun 2003 09:05:59 +1200 From: Steve Wright <[EMAIL PROTECTED]> User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513 X-Accept-Language: en-us, en To: Erich Titl <[EMAIL PROTECTED]> Subject: Re: [leaf-user] syslinux question: putting bering on a diskonchip Erich Titl wrote: Hi Marc Marc E. Fiuczynski wrote the following at 19:27 03.06.2003: I am using a linux rescue disk to copy over a bering distribution to the disk-on-chip device. If the system reconizes the disk as an IDE device, I would believe it. Some time ago I had difficulties running syslinux on my bering system. IIRC it was due to a permission problem. I used an old DOS disk then to prepare my DoM and it went smoothly (actually I am a little ashamed to have to resort to a M$product to do that, but then, resources are resources) If people feel strongly about using a ms product to do this (I would), then this is what I do. On my old RedHat 7.3 I have installed LTSP, a thin-client terminal server package. This allows me to boot any old piece of junk on my local LAN as a thin client. I hacked the base LTSP installation so the thin-clients run with a modified /etc/passd - with an entry for a root login. Now it is completely trivial to bring along any i386 LEAF router, plug into LAN, etherboot/PXE boot as a thin terminal (local HDD/DOM not used), load IDE modules, mount DOM, and copy across what ever I need, unmount, sync, reboot, test. Dead easy, and fast. Further hacking of the LTSP code would likely render a complete development environment for DOM-type routers. /niiice/. If anyone wants to build such a thing, I would be happy to assist as I know LTSP quite well. I'm a bit busy to do it ALL myself right now. 8-) http://ltsp.org http://k12ltsp.org THINK Püntenstrasse 39 8143 Stallikon mailto:[EMAIL PROTECTED] PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] pppoe-server problems
Le Mercredi 4 Juin 2003 03:59, Lynn Avants a écrit : > On Tuesday 03 June 2003 09:18 pm, Steve Wright wrote: > > this isn't working. What am I missing ? > > [...] > > > wisprouter: -root- > > # modprobe ppp_deflate > > insmod: /lib/modules/2.4.20: No such file or directory > > Using /modules/ppp_deflate.o > > insmod: unresolved symbol zlib_deflateInit2_ > > insmod: unresolved symbol zlib_deflate_workspacesize > > insmod: unresolved symbol zlib_deflate > > insmod: unresolved symbol zlib_deflateReset > > insmod: unresolved symbol zlib_deflateEnd > > U zlib.lrp (http://leaf.sf.net/devel/jnilo) No. From Bering (1.1 onward) /etc/modules file: # Modules needed for PPP connection #slhc #ppp_generic #ppp_async # The three following modules are not always needed #zlib_inflate #zlib_deflate #ppp_deflate Since kernel 2.4.20 ppp_deflate depends on zlib_inflate and deflate modules available here: http://leaf.sf.net/devel/jnilo/bering/latest/modules/2.4.20/kernel/lib/ add then to /lib/modules, declare them in /etc/modules and that will fix your pb. > [...] > > > hmmm, try using the rp module instead of kernel mode.. > > > > pppd[2605]: /etc/ppp/plugins/rp-pppoe.so: undefined symbol: remote_number > > > > grrr, that's equally broken. > > Ummm no (recent) rp-pppoe package for Bering, the kernel pppoe is > what is normally used anymore. the pppoe plugin provided in pppoe.lrp should work. Jacques --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Lost of port forwarding with Bering/Shorewall...
On Tue, 3 Jun 2003, Lynn Avants wrote: > On Monday 02 June 2003 08:02 pm, Nicolas Riendeau wrote: > > I was wondering if there is any known issues in Bering (V1.1) and/or the > > Shorewall that came with (1.3.?) that might cause it to temporarily stop > > forwarding a port... > > Not that I am aware of. Insufficient memory can cause packets to be dropped. I started out (long before Bering) with an 8MB 486 with a ppp dialup, and it used to stop responding to console input occasionally as well as not accepting new connections, and would unfreeze after awhile. I correlated the freezes with heavy traffic. (I also recommend at least 16MB now.) Some gaming applications create many udp connections that exacerbate the memory problems by filling memory up with connection tracking data even when you think you have enough. Also note that tmpfs and kernel buffer memory may be in competition for the same RAM in small memory configurations. On an unrelated but similar topic, coming from the inside now with Bering, dnscache performs poorly when the upstream pipe is clogged, leading to "host not found" errors when surfing the web. If I wait long enough before refreshing the browser, dnscache will eventually complete the lookup, and the browser will (slowly) get the web page. In this case memory is okay but available bandwidth is low leading to timeouts. --- Jeff NewmillerThe . . Go Live... DCN:<[EMAIL PROTECTED]>Basics: ##.#. ##.#. Live Go... Live: OO#.. Dead: OO#.. Playing Research Engineer (Solar/BatteriesO.O#. #.O#. with /Software/Embedded Controllers) .OO#. .OO#. rocks...2k --- --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Broadcom BCM5802 Security Processor
On Tuesday 03 June 2003 02:05 pm, Charles Holbrook wrote: > Does anyone know if the latest stable bering release has a module to > handle this piece of hardware. If there is no module for it in the > default modules directory, has anyone tried to implement this piece of > hardware and if so how? I believe there is atleast one available NIC that comes with this chip built-in, though last I heard it was unsupported with Linux IIRC. You'll likely have to search the kernel-devel archives to glean any better information on any possible Linux kernel support. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] ipv6 and policy routing
On Wednesday 28 May 2003 06:37 pm, Steve Wright wrote: > Heyas All, > > > Anyone else out there thinking about LEAF, IPV6, bigger networks, and > policy routing ? > > I belive someone got a LEAF ipv6 box up and running after jumping through many hoops. LEAF is running on several very large networks already. Policy routing isn't something that has been very actively pursued yet, though has been done. If your seriously looking into doing some major policy routing setups, cish is a Cisco/Checkpoint-type shell that was worked into an ancient version of LRP that did policy routing IIRC... maybe hacking into that image would provide some good ideas. David Douthitt made a 'cish' package, though I don't know if anyone has ever actually used it and what it contained except possibly the menu shell itself (that may be older than the 'cish' image itself). I lot of ideas, but never seemingly enough time... -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Lost of port forwarding with Bering/Shorewall...
On Monday 02 June 2003 08:02 pm, Nicolas Riendeau wrote: > I was wondering if there is any known issues in Bering (V1.1) and/or the > Shorewall that came with (1.3.?) that might cause it to temporarily stop > forwarding a port... Not that I am aware of. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] pppoe-server problems
On Tuesday 03 June 2003 09:18 pm, Steve Wright wrote: > this isn't working. What am I missing ? [...] > wisprouter: -root- > # modprobe ppp_deflate > insmod: /lib/modules/2.4.20: No such file or directory > Using /modules/ppp_deflate.o > insmod: unresolved symbol zlib_deflateInit2_ > insmod: unresolved symbol zlib_deflate_workspacesize > insmod: unresolved symbol zlib_deflate > insmod: unresolved symbol zlib_deflateReset > insmod: unresolved symbol zlib_deflateEnd U zlib.lrp (http://leaf.sf.net/devel/jnilo) [...] > hmmm, try using the rp module instead of kernel mode.. > > pppd[2605]: /etc/ppp/plugins/rp-pppoe.so: undefined symbol: remote_number > > grrr, that's equally broken. Ummm no (recent) rp-pppoe package for Bering, the kernel pppoe is what is normally used anymore. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] pppoe-server problems
this isn't working. What am I missing ? # grep pppd /var/log/messages [...] pppd[2591]: Couldn't set tty to PPP discipline: Invalid argument Kernel mode doesn't work. ppp_deflate won't load. wisprouter: -root- # modprobe ppp_deflate insmod: /lib/modules/2.4.20: No such file or directory Using /modules/ppp_deflate.o insmod: unresolved symbol zlib_deflateInit2_ insmod: unresolved symbol zlib_deflate_workspacesize insmod: unresolved symbol zlib_deflate insmod: unresolved symbol zlib_deflateReset insmod: unresolved symbol zlib_deflateEnd hmmm, # find /modules |grep zlib # find / |grep zlib nuffing.. wisprouter: -root- # lsmod |grep ppp pppoe 7136 0 (unused) pppox 1000 1 [pppoe] ppp_synctty 5080 0 (unused) ppp_generic20216 0 [pppoe pppox ppp_synctty] slhc4640 0 [ppp_generic] hmmm, try using the rp module instead of kernel mode.. pppd[2605]: /etc/ppp/plugins/rp-pppoe.so: undefined symbol: remote_number grrr, that's equally broken. 8-( Can anyone help ? cheers, Steve --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Broadcom BCM5802 Security Processor and Cavium Nitrox Lite SecurityProcessor
First of all let me apologize for double posting on the same issue. I just picked up 10 Iwill G300 Security systems. Nine of them have the Broadcom BCM5802 Macro Processor built in, and the other one (which my boss is looking at really hard as our new hardware platform for the LVS cluster) has the Cavium Nitrox Lite Macro Security Processor on it. Has anyone out there had a chance to install Bering-uClibC on a box with either of these? If so what did you have to do to get them to work. Are there modules that need to be loaded? If so what are the module names? Also are there any pitfalls that I should watch out for? On a side note. It took all of about 5 minutes to get bering 1.2 up and running on the CF cards. And since the BIOS has it set up as Secondary master just change a couple things in the syslinux.cfg and add the ide modules and it worked great. If there is anyone out there looking for a decent mid grade box(~500 per system) that can run bering well you might want to check these out. Being on CF makes the boot time roughly 10 seconds from power on to login prompt. No waiting forever for the floppy install to finish loading. And with 3 NICs built into the motherboard no need to worry about if you have all of the correct modules installed for the NICs(pci-scan and rtl8139) --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] PPTP w/dachstein
On Saturday 31 May 2003 11:35 am, Fisher, Brian wrote: > I am currently trying to setup a VPN via pptp. My understanding is that I > need to do three things on my Dachstein firewall first. They are: 1) load > the ip_masq_pptp module > 2) open protocol 47 > 3) open port 1723 You don't need to load the ip_masq module *unless* you are forwarding the connection through to another client machine to authenticate. Otherwise, you need to port_forward through the ports to the specific client machine. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] syslinux question: putting bering on a diskonchip
Hi Marc Marc E. Fiuczynski wrote the following at 19:27 03.06.2003: I am using a linux rescue disk to copy over a bering distribution to the disk-on-chip device. If the system reconizes the disk as an IDE device, I would believe it. Some time ago I had difficulties running syslinux on my bering system. IIRC it was due to a permission problem. I used an old DOS disk then to prepare my DoM and it went smoothly (actually I am a little ashamed to have to resort to a M$product to do that, but then, resources are resources) HTH Erich THINK Püntenstrasse 39 8143 Stallikon mailto:[EMAIL PROTECTED] PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16 --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Strange problem with Ap1000 and Wisp Dist!
I made more tests here, and i find one thing strange! When the wisp-dist is sending a file in direction of ap1000 (To a station behind the ap1000), the signal in AP Manager goes to 40%, and i get some packet loss, when i stop the transmission, the signal back to 60%! In the other station if i try the same thing, the signal still the same, and the file is transmitted ok. What can be happened in the signal??? Is most likely be a hardware problem??? or in antenna? Thanks Samuel Abreu On Tue, 03 Jun 2003 11:19:54 +0300 Vladimir Ivaschenko <[EMAIL PROTECTED]> wrote: > What are the signal levels from both sides? > --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Broadcom BCM5802 Security Processor
Does anyone know if the latest stable bering release has a module to handle this piece of hardware. If there is no module for it in the default modules directory, has anyone tried to implement this piece of hardware and if so how? Here is the link to the hardware that I am trying to get up and running. www.broadcom.com/products/5802.html --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] adding iproute2 policy on boot
On Monday 02 June 2003 02:03 pm, Steve Wright wrote: > Gurus, > > I have built a script that configures iproute2 on my LEAF box. I tried > placing this script in /etc/network/if-up.d/ and then backing up - which > saves my script quite nicely. > > When I "restart networking" from the menu I notice this script being run > more than once, when ideally it should be run once on boot / > network-restart. > > What is the best way to hook this script in ? The networking script in /etc/init.d -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] syslinux question: putting bering on a diskonchip
I am using a linux rescue disk to copy over a bering distribution to the disk-on-chip device. Both the fdisk utility and syslinux seem to recognize /dev/hda1 as the IDE drive. Any way, I'll try to create a bering disk for which I have incorporated the ide drivers into initrd.lrp. I didn't do that yet, as I would have to remove some other package on the bering floppy in order for the larger initrd.lrp package to fit. Maybe by following the instructions more faithfully it'll work out. However, I am concerned that syslinux (version 2.04) keeps stating something about /tmp. -Original Message- From: John Mullan [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 03, 2003 10:10 AM To: Marc E. Fiuczynski Cc: Leaf User; [EMAIL PROTECTED] Subject: Re: [leaf-user] syslinux question: putting bering on a diskonchip Hi Marc. If the disk-on-chip is anything like my setup, the /hda1 device will be the wrong device. With Bering, it will probably be /nftla1. --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
