[leaf-user] SNMPd using Dachstien netsnmpd.lrp
I followed the threads from an archive, which ultimately died without giving a conclusion email (perhaps I missed it) however I am looking to get the SNMPd package working. The thread that I found before referenced someone using the netsnmpd.lrp file from the Dachstien CD, which I've grabbed, as well as the libm and libdb lrp files. I've modified the snmpd.conf file to confirm the proper community name, however when I try an snmpwalk from another workstation on within the LAN, I get the following: [EMAIL PROTECTED] mrtg]$ snmpwalk -m UCD-SNMP-MIB.txt -M /usr/share/snmp/mibs firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ and additionally, when I try to walk anything, I get this: [EMAIL PROTECTED] mrtg]$ snmpwalk firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ So I'm missing something here. Is there a step somewhere that I've missed? And after I get this working properly, I'd like to work with someone to build some sort of documentation to get SNMPd working on Bering. Thanks all! Joey --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] SNMPd using Dachstien netsnmpd.lrp
Try: snmpwalk -v 1 -c public firewall Cheers, Dave. www.me2000.net -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Joey Officer Sent: 23 April 2004 14:39 To: Leaf-User Subject: [leaf-user] SNMPd using Dachstien netsnmpd.lrp I followed the threads from an archive, which ultimately died without giving a conclusion email (perhaps I missed it) however I am looking to get the SNMPd package working. The thread that I found before referenced someone using the netsnmpd.lrp file from the Dachstien CD, which I've grabbed, as well as the libm and libdb lrp files. I've modified the snmpd.conf file to confirm the proper community name, however when I try an snmpwalk from another workstation on within the LAN, I get the following: [EMAIL PROTECTED] mrtg]$ snmpwalk -m UCD-SNMP-MIB.txt -M /usr/share/snmp/mibs firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ and additionally, when I try to walk anything, I get this: [EMAIL PROTECTED] mrtg]$ snmpwalk firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ So I'm missing something here. Is there a step somewhere that I've missed? And after I get this working properly, I'd like to work with someone to build some sort of documentation to get SNMPd working on Bering. Thanks all! Joey --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg= 12297 -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/l eaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] SNMPd using Dachstien netsnmpd.lrp
Joey Officer wrote: I followed the threads from an archive, which ultimately died without giving a conclusion email (perhaps I missed it) however I am looking to get the SNMPd package working. The thread that I found before referenced someone using the netsnmpd.lrp file from the Dachstien CD, which I've grabbed, as well as the libm and libdb lrp files. I've modified the snmpd.conf file to confirm the proper community name, however when I try an snmpwalk from another workstation on within the LAN, I get the following: [EMAIL PROTECTED] mrtg]$ snmpwalk -m UCD-SNMP-MIB.txt -M /usr/share/snmp/mibs firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ and additionally, when I try to walk anything, I get this: [EMAIL PROTECTED] mrtg]$ snmpwalk firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ So I'm missing something here. Is there a step somewhere that I've missed? And after I get this working properly, I'd like to work with someone to build some sort of documentation to get SNMPd working on Bering. Did you configure your firewall rules to allow SNMP traffic? Is the snmpd service actually started (check with netstat -na, and verify something's listening on UDP port 161). The configuration of snmp on any LEAF variant is pretty much identical to setting it up on any other linux system (with the possible exception of remembering to modify your firewall rules), so it's not yet been the subject of a LEAF-specific step-by-step howto...just refer to the original documentation: http://net-snmp.sourceforge.net/#Documentation Also, make sure you're using the newer net-snmp packages from Andrew Hoying (availble on DachsteinCD split into server and client packages, or from Andrew's directory on the leaf-project site as one package) rather than the snmp.lrp package (based on cmu-snmp 3.6b7) which has some known vunerabilities. Of course, you shouldn't be allowing snmp access from untrusted IP space anyway, but it's always good to have defense in depth. -- Charles Steinkuehler [EMAIL PROTECTED] --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Upgrade to uClibc
Hi Everyone, A newbie question. I have been using Bering for about 6 months now and want to try uClibc. I was hoping to bring in all my lrp's and modules and basically reboot. Is this possible or do I need to start from scratch? I did read something about packages needing to be recompiled but not sure if this applies to Bering packages. My main reason in doing this is to use the openvpn package. I understand the Bering package may have some issues. Any suggestions or shortcuts will be appreciated. TIA --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] IPsec between FreeS/WAN 1.91 (Dachstein) and Linksys router/Windows 2000 computer
Hello! I'm using a Dachstein firewall with FreeS/WAN 1.91. I would like to set up an IPsec VPN with either a Linksys BEFVP41 router, or a Windows 2000 computer behind it. I have been unable to do either. The router won't negotiate a tunnel with the LEAF firewall, and I can't seem to make the IPsec passthrough work, either. The Windows 2000 computer does work if plug it into the Internet directly, but not from behind the router. Any ideas on what I could try? Even a success story would be enough: it would be nice to know that it's possible. Also, is there a newer version of FreeS/WAN for Dachstein? I have some routing issues that is making the migration to Bering difficult at the moment... Thank you very much for any help you might be able to give me. Tim Massey --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] IPsec between FreeS/WAN 1.91 (Dachstein) and Linksys router/Windows 2000 computer
Timothy J. Massey wrote: Hello! I'm using a Dachstein firewall with FreeS/WAN 1.91. I would like to set up an IPsec VPN with either a Linksys BEFVP41 router, or a Windows 2000 computer behind it. I have been unable to do either. The router won't negotiate a tunnel with the LEAF firewall, and I can't seem to make the IPsec passthrough work, either. The Windows 2000 computer does work if plug it into the Internet directly, but not from behind the router. Any ideas on what I could try? Even a success story would be enough: it would be nice to know that it's possible. To be clear, the problem is entirely on the Linksys end (ie: the windows box that works when not behind the router is behind the linksys router, not the Dachstein box)? Assuming an affirmative answer to the above, you'll need to setup the Linksys box in a VPN pass-through mode (I'm not sure if it supports this), or provide some details about how you're trying to get it to connect to the Dachstein box. After a quick review of the Linksys manual for your box, it looks like it should work fine as an IPSec gateway with Dachstein's IPSec, as long as you get the configuration correct. Make sure you're selecting 3DES, SHA, IKE (with perfect-forward-security), and have a properly setup pre-shared key. You also need to verify the basic tunnel configuration is correct (ie: subnet-subnet, host-host, or subnet-host) and the IP's/networks match on both ends. There's probably useful information in the logs on both ends (web-accessible on the Linksys, and in /var/log/auth.log on the Dachstein box...also accessible via the web if you're running weblet). We could probably help a lot more with some additional debugging info from the logs and details of your ipsec.conf from Dachstein and the configuration settings on the Linksys. Also, is there a newer version of FreeS/WAN for Dachstein? I have some routing issues that is making the migration to Bering difficult at the moment... Not That I'm aware of... -- Charles Steinkuehler [EMAIL PROTECTED] --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
