Re: [leaf-user] Bering still active?

[Gustav_Schaffter]

Eric, list,

Having installed, configured and put in place a Bering firewall, I read
more and more about the Bering derivative called Bering uClibc.

The latest release was in January 2004 (unless I'm missing something :-).

Maybe I should have used this version instead?


Gus



Eric Wolzak [EMAIL PROTECTED] wrote on 29-03-2004 19:48:19:

 Hello  Gustav,  list

 It is,  As a matter of fact, I was (am) occupied a lot with a new
 job, so there
 wasn't time for a new release.
 Still working on Bering though.

 Regards
 Eric Wolzak
 member of the bering Crew

  Hi,
 
  I'm new to the list, and soon to become new to Bering. So please bear
with
  me.
 
  I've read quite a lot about the Bering distro, including it's
installation
  documentation. Looks like Bering could match my needs.
 
  What makes me wonder is that the latest release of Bering dates to May
2003
  (unless I've missed something), which is almost ten months ago.
 
 
  So:
 
  - Is Bering still alive and active?
 
  -- or --
 
  - Is Bering being phased out for what?
 
  Gus



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Looking for a VPN Solution

[Martin Hejl]

Hi kp,

K.-P. Kirchdörfer wrote:
Am Dienstag, 6. April 2004 19:13 schrieb JamesSturdevant:

I bit the bullet and converted to Bering uClibc and installed OpenVPN. It
WORKS!


I'm not surprised, Martin is a good developer and his packages are well 
tested.
Blush - too much honour. I obviously do try to test as much as I can, 
but for OpenVPN, most of the honour should go to James Yonan (the 
OpenVPN developer), who wrote an excellent piece of software. All I did 
was to add a minor patch to make things work for Bering uClibc, compile 
it against uClibc and create the package

Martin



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id70alloc_id638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] SCP

[Roger E McClurg]

I'm using Bering 1.2 with SSH (OpenSSH_3.5p1,) and SSHD. Problem is that 
SCP is missing. Does anyone know what happened to SCP in the SSH package? 

Roger



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering still active?

[K.-P. Kirchdörfer]

Am Mittwoch, 7. April 2004 09:12 schrieb [EMAIL PROTECTED]:
 Eric, list,

 Having installed, configured and put in place a Bering firewall, I read
 more and more about the Bering derivative called Bering uClibc.

 The latest release was in January 2004 (unless I'm missing something :-).

Yes, you missed latest release end of February based on kernel 2.4.24.

You'll find some more info about Bering-uClibc here:
http://leaf.sourceforge.net/mod.php?mod=userpagemenu=910page_id=36

kp


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Re: Vonage and Bering

[M Lu]

Thank you to all who shared the inofrmation on using Vonage with Bering. I
had Vonage for around 2 weeks now and it works well, without almost any
special setup. The only thing I did is that I set up DHCP to assign a static
address to the Vonage phone adaptor.


M Lu


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] SCP

[Erich Titl]

Roger

At 09:03 07.04.2004 -0400, Roger E McClurg wrote:
I'm using Bering 1.2 with SSH (OpenSSH_3.5p1,) and SSHD. Problem is that 
SCP is missing. Does anyone know what happened to SCP in the SSH package? 

For some unknown reason scp is in sshd.lrp

cheers
Erich

THINK 
Püntenstrasse 39 
8143 Stallikon 
mailto:[EMAIL PROTECTED] 
PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16




---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id70alloc_id638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] bacula, or other backup system

[joshmccormack]

Is there a package for bacula, or another back up system for any of the leaf systems? 

Josh



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] SCP

[Roger E McClurg]

Erich,

I found the answer. It is not in sshd 3.5p1 but it is in sshd 3.7.1p2. 
Thanks for the help.

Roger






Erich Titl erich.titl
@think.ch
04/07/2004 10:41 AM
 
To: Roger E McClurg/CEG/[EMAIL PROTECTED], 
[EMAIL PROTECTED]
cc: 
Subject:Re: [leaf-user] SCP


Roger

At 09:03 07.04.2004 -0400, Roger E McClurg wrote:
I'm using Bering 1.2 with SSH (OpenSSH_3.5p1,) and SSHD. Problem is that 
SCP is missing. Does anyone know what happened to SCP in the SSH package? 


For some unknown reason scp is in sshd.lrp

cheers
Erich

THINK 
Püntenstrasse 39 
8143 Stallikon 
mailto:[EMAIL PROTECTED] 
PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16






---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id70alloc_id638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

RE: [leaf-user] Bering still active?

[Peter Mueller]

 Having installed, configured and put in place a Bering 
 firewall, I read
 more and more about the Bering derivative called Bering uClibc.
 
 The latest release was in January 2004 (unless I'm missing 
 something :-).
 
 Maybe I should have used this version instead?

If you are using Flash through CF-IDE then you should definitely use uclibc.
The reason is space is not an issue, so you can use the libc* plugins and
use ALL packages.  It is also much easier to create your own packages; you
can take your pick of compiler (uClibc, libc207, libc225) instead of being
forced to use libc207 and have a LEAF development box lying around and all
that jazz.

If you're not using flash, then make sure you can get the packages
(http://leaf.sourceforge.net/mod.php?mod=userpagemenu=10page_id=3) you
want.  I would make your decision based on the packages.  Having said that..
uClibc is definitely more active but Bering has a larger install base.

Cheers,

P


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering still active?

[K.-P. Kirchdrfer]

Am Mittwoch, 7. April 2004 19:20 schrieb Peter Mueller:
  Having installed, configured and put in place a Bering
  firewall, I read
  more and more about the Bering derivative called Bering uClibc.
 
  The latest release was in January 2004 (unless I'm missing
  something :-).
 
  Maybe I should have used this version instead?

 If you are using Flash through CF-IDE then you should definitely use
 uclibc. The reason is space is not an issue, so you can use the libc*
 plugins and use ALL packages.  It is also much easier to create your own
 packages; you can take your pick of compiler (uClibc, libc207, libc225)
 instead of being forced to use libc207 and have a LEAF development box
 lying around and all that jazz.

A few remarks:

I know that some users use a mixed environment (uclibc, libc225), but I have 
to point to the fact, that such a setup is not supported by Bering-uClibc 
crew. The libc* packages has been provided to make testing and migration a 
bit easier during development of Bering-uClibc, but we can't support problems 
that will arise from mixing libs. The libc*.lrp's will provided in the 
future, but will neither be supported, nor upgraded - specific packages 
compiled against uClibc are highly preferred.

Today Bering-uClibc is the only LEAF distro providing ipv6 support and Linux 
kernel 2.4.24 - if anyone needs one or both of this features, it's the LEAF 
flavour of choice.

kp


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] Bering uClib does not find NICs

[Arnold Wiegert]

After using my firewall for some time on Dachstein, I wanted to upgrade 
to Bering because it has some features I can't find for Dachstein - such 
as a time server.

So, seeing Bering uClib seems to be getting all the attention these 
days, I tried it, but had no luck in getting it to recognize my NICs.
One is a PCI Surecom EP325 - ne2000 compatible - so I selected 8390.o 
and ne2k-pci.o. The other is an old IBM (Lan/Tastic based) NIC - so I 
used ne.o  io=0x300 (as per setup).

When I use Bering 1.2 with the same modules selected and it does find them.

What gives? What am I missing.

Another thing: my old Dachstein FW uses older Cabletron E2100 and 
SMC-Ultra NICs, again, using Bering 1.2 seems to find them given the 
proper modules, while Bering uClib does not - using the same modules.

Arnold





---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

RE: [leaf-user] Bering uClib does not find NICs

[Craig Caughlin]

Hey Arnold,
I wonder if you need to us the pci-scan.o module, and make the pci-scan
entry right above your NIC declaration(s) in the /etc/modules file??? Mine
looks like:

# Those realtek based NICs need mii module
#mii
#8139cp
#8139too
#eepro100
#epic100
#pcnet32
#viarhine
#winbond-840

# PCI ethernet cards
#3c59x
pci-scan
natsemi
#tulip
...etc., etc...

Just a thought.

Craig




-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Arnold Wiegert
Sent: Wednesday, April 07, 2004 10:59 AM
To: [EMAIL PROTECTED]
Subject: [leaf-user] Bering uClib does not find NICs


After using my firewall for some time on Dachstein, I wanted to upgrade 
to Bering because it has some features I can't find for Dachstein - such 
as a time server.

So, seeing Bering uClib seems to be getting all the attention these 
days, I tried it, but had no luck in getting it to recognize my NICs. One is
a PCI Surecom EP325 - ne2000 compatible - so I selected 8390.o 
and ne2k-pci.o. The other is an old IBM (Lan/Tastic based) NIC - so I 
used ne.o  io=0x300 (as per setup).

When I use Bering 1.2 with the same modules selected and it does find them.

What gives? What am I missing.

Another thing: my old Dachstein FW uses older Cabletron E2100 and 
SMC-Ultra NICs, again, using Bering 1.2 seems to find them given the 
proper modules, while Bering uClib does not - using the same modules.

Arnold





---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo
technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id70alloc_id638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering uClib does not find NICs

[K.-P. Kirchdörfer]

Am Mittwoch, 7. April 2004 19:59 schrieb Arnold Wiegert:
 After using my firewall for some time on Dachstein, I wanted to upgrade
 to Bering because it has some features I can't find for Dachstein - such
 as a time server.

 So, seeing Bering uClib seems to be getting all the attention these
 days, I tried it, but had no luck in getting it to recognize my NICs.
 One is a PCI Surecom EP325 - ne2000 compatible - so I selected 8390.o
 and ne2k-pci.o. The other is an old IBM (Lan/Tastic based) NIC - so I
 used ne.o  io=0x300 (as per setup).

Assuming you use latest version 2.1 have you definded crc32 in modules.conf?

kp


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] HDPARM

[Roger E McClurg]

I created an hdparm.lrp package for Bering 1.2. It uses the 5.2 version of 
hdparm from RedHat 9.0. The package includes a script called spindown. 
Spindown will automatically put the HD into standby mode (hdparm -y) at 
the end of the boot process.  I can send it to anyone interested, but if 
the developers think it is useful maybe one of them will agree to put it 
up on Sourceforge.

Roger



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering uClib does not find NICs

[Arnold Wiegert]

K.-P. Kirchdörfer wrote:

Am Mittwoch, 7. April 2004 19:59 schrieb Arnold Wiegert:

After using my firewall for some time on Dachstein, I wanted to upgrade
to Bering because it has some features I can't find for Dachstein - such
as a time server.
So, seeing Bering uClib seems to be getting all the attention these
days, I tried it, but had no luck in getting it to recognize my NICs.
One is a PCI Surecom EP325 - ne2000 compatible - so I selected 8390.o
and ne2k-pci.o. The other is an old IBM (Lan/Tastic based) NIC - so I
used ne.o  io=0x300 (as per setup).


Assuming you use latest version 2.1 have you definded crc32 in modules.conf?

kp
Thank you; I have now and now the Surecom NIC is found, but not the old 
ISA card - it needs ne.o, which does not seem to be part of the modules 
package. Using ne.o from Bering 1.2 bombs the system during boot

Arnold



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Bering uClib does not find NICs

[M Lu]

You get ne.o from the big tar.gz file
(Bering_uClibc_2.1.0_modules_2.4.24.tar.gz). from the Bering download link


http://sourceforge.net/project/showfiles.php?group_id=13751package_id=67534release_id=220334


- Original Message - 
From: Arnold Wiegert [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, April 07, 2004 4:52 PM
Subject: Re: [leaf-user] Bering uClib does not find NICs



 Thank you; I have now and now the Surecom NIC is found, but not the old
 ISA card - it needs ne.o, which does not seem to be part of the modules
 package. Using ne.o from Bering 1.2 bombs the system during boot

 Arnold





---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] Open Brick E

[Roger E McClurg]

Is anyone running LEAF on the OpenBrick E hardware with compact flash? If 
so, can you please tell me what brand you are using?

Roger



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] trouble accessing firewall

[Dave Rose]

I am standing up a bering firewall and have made it through the 3c509
troubleshooting phase, or so I thought. I am unable to ping the internal
side of the firewall from my other computers.

My hardware
-
486DX4 100Mhz
PCI video card
20MB RAM
Floppy disk
3c509B-TP (I have two of these cards installed in the ISA bus)


Hardware configuration
---
NO Hard drive (controller disabled in BIOS)
NO comm/parallel ports (disabled in BIOS)
Set the 3c509-TP cards to IRQ7,5 and IO addresses of 0x300,0x280 and
disabled the ISA plug and play feature and successfully ran the 3COM
diagnostics function on each card)


Software configuration

1.) downloaded the bering 1.2 software (Windows utility to make the boot
floppy- Bering_1.2_img_bering-1680.exe from
http://download.sourceforge.net/leaf/)

2) downloaded the bering 1.2 modules (Bering_1.2_modules_2.4.20.tar.gz from
http://download.sourceforge.net/leaf/)

3) I booted the floppy I made in the first step and added the 3c509.o
ethernet card driver to /lib/modules

4.) I modified /etc/modules to add the line

3c509

5) I pretty much left /etc/network/interfaces to the default settings since
they are set up initially for the configuration that I am looking for


The problem

Although the system recognizes both cards (IRQs and IO addresses) at
startup, the eth1 interface fails to activate, light up the led on the hub
and can not be pinged from my other workstation on the internal lan. Any
ideas how to proceed would be much appreciated.

Thanks
Dave



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Re: [leaf-user] Open Brick E

[Bao C. Ha]

On Wed, Apr 07, 2004 at 07:47:43PM -0400, Roger E McClurg wrote:

Hi Roger,

 Is anyone running LEAF on the OpenBrick E hardware with compact flash? If 
 so, can you please tell me what brand you are using?

Lexar seems to be the best. We do use other brands occasionally.

Bao
-- 
Best Regards.
Bao C. Ha
Hacom OpenBrick Distributor USA http://www.hacom.net
voice: (714) 530-8817 fax: (714) 530-8818
8D66 6672 7A9B 6879 85CD 42E0 9F6C 7908 ED95 6B38


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

RE: [leaf-user] HDPARM

[Robert K Coffman Jr - Info From Data Corporation]

Roger,

I set this up on one system so far (not using your .lrp) and it works great.
You did it the right way and i'd like to add your lrp to my routers...  Old
hard drives are too cheap and plentiful, and its too easy to replace a
failed drive not to take advantage of them.

- Bob Coffman

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Roger E
McClurg
Sent: Wednesday, April 07, 2004 4:23 PM
To: [EMAIL PROTECTED]
Subject: [leaf-user] HDPARM


I created an hdparm.lrp package for Bering 1.2. It uses the 5.2 version of
hdparm from RedHat 9.0. The package includes a script called spindown.
Spindown will automatically put the HD into standby mode (hdparm -y) at
the end of the boot process.  I can send it to anyone interested, but if
the developers think it is useful maybe one of them will agree to put it
up on Sourceforge.

Roger



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html




---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] OpenVPN on Bering

[AdStar]

Hi guys,

I'm trying to setup a VPN (openvpn version 1.5.0) connection from my home
(ADSL, static IP) to my Office (Static IP).
Both networks have a leaf Bering machine as there firewalls, both running
shorewall 1.4.7c. I followed the guide at
http://www.shorewall.net/1.4/OPENVPN.html but I'm not 100% sure I have got
it right. I can get the openvpn side of things to connect but cannot ping
any machines on either side of the VPN from the firewall or internal
machines.

HOME internal LAN is 10.0.10.0/24
OFFICE internal LAN is 10.0.100.0/24

HOME Tunnel endpoint 192.168.0.1
OFFICE Tunnel endpoint 192.168.0.2

HOME Firewall IP: 202.52.33.145
OFFICE Firewall IP: 67.106.134.127

OFFICE:
/etc/shorewall/zones -- added  'vpn VPN VPN network'
/etc/shorewall/interfaces -- added 'vpn tun010.0.10.255'
/etc/shorewall/policy -- added 'loc vpn ACCEPT' and 'vpn
loc ACCEPT'
/etc/shorewall/tunnels -- added 'openvpn net
202.52.33.145'

openvpn.conf
dev tun
local 67.106.134.127
ifconfig 192.168.0.2 192.168.0.1
secret secret.key
verb 8


Restarted Shorewall no errors...
Start OpenVPN no errors..
Manually add the route: route add -net 10.0.10.0 netmask 255.255.255.0 gw
192.168.0.2

daemon.log
Apr  8 11:58:00 pyro openvpn[19238]: Current Parameter Settings:
Apr  8 11:58:00 pyro openvpn[19238]:   config = '/etc/openvpn/openvpn.conf'
snip
Apr  8 12:00:00 pyro openvpn[32333]: Expected Remote Options hash (VER=V3):
'9af04bc6'
Apr  8 12:00:00 pyro openvpn[17555]: UDPv4 link local (bound):
67.106.134.127:5000
Apr  8 12:00:00 pyro openvpn[17555]: UDPv4 link remote: [undef]
Apr  8 12:01:46 pyro openvpn[17555]: UDPv4 READ [60] from
202.52.33.145:5000:  DATA len=60
Apr  8 12:01:46 pyro openvpn[17555]: Peer Connection Initiated with
202.52.33.145:5000
Apr  8 12:01:46 pyro openvpn[17555]: UDPv4 WRITE [188] to
202.52.33.145:5000:  DATA len=188
Apr  8 12:01:50 pyro openvpn[17555]: UDPv4 WRITE [60] to 202.52.33.145:5000:
 DATA len=60

$ ip route
192.168.0.1 dev tun0  proto kernel  scope link  src 192.168.0.2
10.0.100.0/24 dev eth1  proto kernel  scope link  src 10.0.100.1
67.106.134.0/24 dev eth0  proto kernel  scope link  src 67.106.134.127
10.0.10.0/24 via 192.168.0.2 dev tun0  scope link
default via 67.106.134.1 dev eth0


HOME:
/etc/shorewall/zones -- added  'vpn VPN VPN network'
/etc/shorewall/interfaces -- added 'vpn tun010.0.100.255'
/etc/shorewall/policy -- added 'loc vpn ACCEPT' and 'vpn
loc ACCEPT'
/etc/shorewall/tunnels -- added 'openvpn net
67.106.134.127'

openvpn.conf
dev tun
local 202.52.33.145
remote 67.106.134.127
ifconfig 192.168.0.1 192.168.0.2
secret secret.key
verb 8

Restarted Shorewall no errors...
Start OpenVPN no errors..
Manually add the route: route add -net 10.0.100.0 netmask 255.255.255.0 gw
192.168.0.1

daemon.log
Apr  8 02:29:06 talon openvpn[16327]: Expected Remote Options hash (VER=V3):
'b700f892'
Apr  8 02:29:06 talon openvpn[18778]: UDPv4 link local (bound):
202.52.33.145:5000
Apr  8 02:29:06 talon openvpn[18778]: UDPv4 link remote: 67.106.134.127:5000
Apr  8 02:29:16 talon openvpn[18778]: UDPv4 WRITE [60] to
67.106.134.127:5000:  DATA len=60
Apr  8 02:29:16 talon openvpn[18778]: UDPv4 READ [188] from
67.106.134.127:5000:  DATA len=188
Apr  8 02:29:17 talon openvpn[18778]: Peer Connection Initiated with
67.106.134.127:5000
Apr  8 02:29:21 talon openvpn[18778]: UDPv4 READ [60] from
67.106.134.127:5000:  DATA len=60
Apr  8 02:29:21 talon openvpn[18778]: UDPv4 WRITE [188] to
67.106.134.127:5000:  DATA len=188

# ip route
192.168.0.2 dev tun0  proto kernel  scope link  src 192.168.0.1
172.31.31.9 dev ppp0  proto kernel  scope link  src 202.52.33.145
10.0.100.0/24 via 192.168.0.1 dev tun0  scope link
10.0.10.0/24 dev eth1  proto kernel  scope link  src 10.0.10.1
default via 172.31.31.9 dev ppp0

I try and ping the OFFICE endpoint from HOME firewall
# ping 192.168.0.2
PING 192.168.0.2 (192.168.0.2): 56 data bytes
ping: sendto: Operation not permitted

HOME: shorewall.log
Apr  8 02:31:39 talon Shorewall:all2all:REJECT: IN= OUT=tun0
MAC=00:90:27:58:e2:dd:00:e0:7d:ba:cd:ee:08:00  SRC=192.168.0.1
DST=192.168.0.2 LEN=84 TOS=00 PREC=0x00 TTL=64 ID=63440 DF PROTO=ICMP TYPE=8
CODE=0 ID=37959 SEQ=0

The above is in my HOME shorewall.log I'm not sure how to fix this.
I'm sure my tunnels file is right. Any help would be muchly appreciated.

Regards
Adam.



---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: 

Re: [leaf-user] trouble accessing firewall

[George Metz]

Step 1: Doublecheck your cable. Try swapping the cable on eth1 for the 
cable on eth0, and vice versa, and see if the lights follow the cables. 
If they do (eth0 dark, eth1 lit) then replace the bad cable.

That's the only thing that leaps to mind, probably because I had the 
same problem with my own 3c509Bs. They're wonderfully solid cards, 
though. Been using mine for four years now.

Dave Rose wrote:

I am standing up a bering firewall and have made it through the 3c509
troubleshooting phase, or so I thought. I am unable to ping the internal
side of the firewall from my other computers.
My hardware
-
486DX4 100Mhz
PCI video card
20MB RAM
Floppy disk
3c509B-TP (I have two of these cards installed in the ISA bus)
Hardware configuration
---
NO Hard drive (controller disabled in BIOS)
NO comm/parallel ports (disabled in BIOS)
Set the 3c509-TP cards to IRQ7,5 and IO addresses of 0x300,0x280 and
disabled the ISA plug and play feature and successfully ran the 3COM
diagnostics function on each card)
Software configuration

1.) downloaded the bering 1.2 software (Windows utility to make the boot
floppy- Bering_1.2_img_bering-1680.exe from
http://download.sourceforge.net/leaf/)
2) downloaded the bering 1.2 modules (Bering_1.2_modules_2.4.20.tar.gz from
http://download.sourceforge.net/leaf/)
3) I booted the floppy I made in the first step and added the 3c509.o
ethernet card driver to /lib/modules
4.) I modified /etc/modules to add the line

3c509

5) I pretty much left /etc/network/interfaces to the default settings since
they are set up initially for the configuration that I am looking for
The problem

Although the system recognizes both cards (IRQs and IO addresses) at
startup, the eth1 interface fails to activate, light up the led on the hub
and can not be pinged from my other workstation on the internal lan. Any
ideas how to proceed would be much appreciated.
Thanks
Dave


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html


---
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html