[leaf-user] SNMP Package
Sorry if this has been asked before (I did search the archives for snmp), but has anyone packaged ucd-snmp (or even net-snmp) for leaf/bering? I'm trying to replace my RH-7.3 firewall with Bering and the only package I cannot seem to find is snmpd. Everything else is working fine, but I would like to continue to graph my firewall using MRTG. thanks for any pointers. Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Runaway Process (Bering) -- I think!
Installed bering "Bering_1.0-stable_img_bering_1680.bin" with very few problems on a measly P120/48MB system. This same system ran RH-7.3 prior to this. Anyway, I just noticed that when I do a "ps" on this new bering system, the process ID for any new process is going crazy. Ex: The following are two ps's within a second of each other (up arrow). Note: the process ID for the ps command has rolled past 32768. firewall: -root- # ps PID Uid VmSize Stat Command 1 root920 Sinit [2] 2 rootS[keventd] 3 rootS[ksoftirqd_CPU0] 4 rootS[kswapd] 5 rootS[bdflush] 6 rootS[kupdated] 13136 root 1688 S/sbin/syslogd -m 240 30346 root 1400 S/sbin/klogd 18787 root 2376 S/usr/sbin/sshd 28894 root 1368 S/usr/sbin/watchdog 22864 root796 S/usr/sbin/inetd 7719 root800 S/usr/sbin/pptpd 17864 root 1608 S/usr/sbin/ntpd 10744 root 3024 S/usr/sbin/snmpd 7462 root816 S/usr/sbin/cron 27500 root 1224 S/sbin/getty 38400 tty2 27235 root 4988 S/usr/sbin/sshd 15628 root 1556 S-sh 22148 root 1888 S/sbin/getty 38400 tty1 29003 root 1332 Rps firewall: -root- # ps PID Uid VmSize Stat Command 1 root920 Sinit [2] 2 rootS[keventd] 3 rootS[ksoftirqd_CPU0] 4 rootS[kswapd] 5 rootS[bdflush] 6 rootS[kupdated] 13136 root 1688 S/sbin/syslogd -m 240 30346 root 1400 S/sbin/klogd 18787 root 2376 S/usr/sbin/sshd 28894 root 1368 S/usr/sbin/watchdog 22864 root796 S/usr/sbin/inetd 7719 root800 S/usr/sbin/pptpd 17864 root 1608 S/usr/sbin/ntpd 10744 root 3024 S/usr/sbin/snmpd 7462 root816 S/usr/sbin/cron 27500 root 1224 S/sbin/getty 38400 tty2 27235 root 4988 S/usr/sbin/sshd 15628 root 1556 S-sh 22148 root 1888 S/sbin/getty 38400 tty1 16422 root 1828 Rps firewall: -root- # I have scanned all the /var/log files looking for a "respawning to fast" type of entries, but I don't see anything that stands out. Normal startup entries along with shorewall logging and sshd auth entries. Thats about it! I have also tried stopping the ntpd, pptpd, ntpd and snmpd process to see if they were causing this, but same results. I even plugged in a keyboard to see if this was the culprit (This is system is headless and is admin'd through ssh). FWIW: snmpget from another system does not show the CPU utilization maxed out, but it would be nice if there was a version of "top" available to help debug this. Any ideas on what may be causing this problem? thanks Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Runaway Process (Bering) -- I think!
> -Original Message- > From: Luis.F.Correia > Sent: Friday, November 22, 2002 9:27 AM > Subject: RE: [leaf-user] Runaway Process (Bering) -- I think! > > > The randomness of the process numbers is a (good) feature of > grsecurity. > > Don't worry, it's normal :) Thanks Luis. I hate to admit, but I had never heard of the grsecurity patches. I just finished reading some articles about grsecurity and verified that the bering supplied kernel actually does contain these patches. i.e. /proc I feel better now knowing that my system is not going crazy with some kind of respawning to fast type of problem. Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Win2K DNS Problem.
> -Original Message- > From: Lynn Avants > Sent: Thursday, January 02, 2003 10:00 PM > Subject: Re: [leaf-user] Win2K DNS Problem. > > > On Thursday 02 January 2003 09:30 pm, you wrote: > > > I have never seen the lag in Win2K on any other network but mine. > > See below for data. > > I can tell you why.. ;-) > > > > Primary DNS Suffix . . . . . . . : > > Node Type . . . . . . . . . . . . : Broadcast > > > C:\>nslookup > > *** Can't find server name for address 192.168.1.254: > > Non-existent domain > > *** Default servers are not available > > Default Server: UnKnown > > Address: 192.168.1.254 > > > The Win2K box is trying to find the domain-name from your DNS > server since you have NOT entered one manually (like most of us do). Actually its trying to do a reverse lookup on 192.168.1.254, but it failed. > Win2K is attempting to figure out what your domain-name by DNS records > on the internet and broadcast, forcing you to wait until it fails before > resolving any DNS information requested by the user (the lag). Actually, the "broadcast" is the netbios node type. i.e. How does this W2K system announce its MS workgroup/domain affiliation on the network... broadcast or WINS (Network Neighborhood stuff). This has nothing to do with DNS. Although this is OT, from the dhcp-options man pages... option netbios-node-type uint8; The NetBIOS node type option allows NetBIOS over TCP/IP clients which are configurable to be configured as described in RFC 1001/1002. The value is specified as a single octet which identi- fies the client type. Possible node types are: 1B-node: Broadcast - no WINS 2P-node: Peer - WINS only. 4M-node: Mixed - broadcast, then WINS 8H-node: Hybrid - WINS, then broadcast > If you used DHCP to receive an ip address (per default setup), this > information would be received via the DHCP lease. > > You will have this problem EVERY reboot until you either use > DHCP on the Win2k client or enter a domain-name (anything > basically) in the IP setup on the Win2k machine. Although I don't disagree with the above, the DNS suffix is typically used/set in the connection specific part of ipconfig. i.e. Each interface on W2K can have a DNS suffix. >From my W2K system... C:\>ipconfig /all Windows 2000 IP Configuration Host Name . . . . . . . . . . . . : enterprise Primary DNS Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : infohiiway.com Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : infohiiway.com Description . . . . . . . . . . . : Intel 8255x-based PCI Ethernet Adapt er (10/100) Physical Address. . . . . . . . . : 00-A0-C9-03-43-A1 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.9.21 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.9.1 DHCP Server . . . . . . . . . . . : 192.168.9.3 DNS Servers . . . . . . . . . . . : 192.168.9.3 192.168.8.2 Primary WINS Server . . . . . . . : 192.168.9.2 Lease Obtained. . . . . . . . . . : Friday, January 03, 2003 3:51:44 AM Lease Expires . . . . . . . . . . : Saturday, January 04, 2003 3:51:44 A M C:\>nslookup Default Server: voyager.infohiiway.com Address: 192.168.9.3 > voyager.infohiiway.com Server: voyager.infohiiway.com Address: 192.168.9.3 Name:voyager.infohiiway.com Address: 192.168.9.3 > 192.168.9.3 Server: voyager.infohiiway.com Address: 192.168.9.3 Name:voyager.infohiiway.com Address: 192.168.9.3 Also, this is my personal preference, not a recommended policy. But I disable W2K's caching server. This fricken thing has caused me more greif than I care to mention. Try and tell a regular how user to flush the cache. That will go over real well... Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Win2K DNS Problem.
> -Original Message- > From: Brad Fritz > Sent: Thursday, January 02, 2003 10:19 PM > Subject: Re: [leaf-user] Win2K DNS Problem. > > > Interesting. All my dnscache replies are listed as > non-authoritative. E.g: > > C:\>nslookup www.yahoo.net > *** Can't find server name for address 192.168.70.1: > Non-existent domain > *** Default servers are not available > Server: UnKnown > Address: 192.168.70.1 > > Non-authoritative answer: > ^ > Name:yahoo.com > Addresses: 66.218.71.198, 64.58.79.230 > Aliases: www.yahoo.net All queries to your DNS server should be non-authoritative (meaning cached) except for the ones that you have configured your DNS server to be the "Start of Authority" (SOA). IN which case, you would have a registered domain. BTW: Based on the above output of nslookup, your dns server (192.168.70.1) is not properly configured for reverse loopup queries. i.e. in-addr.arpa zones Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Mail Bug in multicron-p
> -Original Message- > From: Eric Wolzak [mailto:[EMAIL PROTECTED]] > Sent: Monday, January 06, 2003 2:00 PM > Subject: [leaf-user] Mail Bug in multicron-p > > > Hello List. > > I just discovered a bug in the /etc/multicron-p script > in Bering Stable 1 (probably also in Bering-uClibc ? ) Thanks Eric -- I have been wondering what that log message entry was for months now. Steve Cowles --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] ntpq for Bering
> -Original Message- > From: Brad Fritz > Sent: Friday, January 10, 2003 10:57 AM > Subject: Re: [leaf-user] ntpq for Bering > > > > On Sat, 11 Jan 2003 01:00:49 +1100 Malcolm Miles wrote: > > > Is there an ntpq package available for Bering? > > I have never seen one floating around. It should be pretty easy to > build one using the source at http://www.cis.udel.edu/~ntp/ and > Jacques' UML slink image per the instructions at: > > http://leaf.sourceforge.net/devel/jnilo/uml.html > > HTH, > Brad Brad, thanks for posting UML slink image. I have been wanting to compile ssh-agent/ssh-add for some time now. To the OP... If you have another linux system on your network with ntpq installed, you can always type: # ntpq [hostname of bering/leaf system] ntpq> peers ... ... This is how I configured/tested ntpd running on my leaf/bering firewall. Steve Cowles --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Why this script doesn't work?
> -Original Message- > From: SpCD > Sent: Sunday, June 08, 2003 5:33 AM > Subject: [leaf-user] Why this script doesn't work? > > Hi > I've finally managed to set up bering properly (with a little > help of my friend :-) ) - unfortunatly QoS (based on HTB) > script doesn't work on bering > ;-( I just can't start it - i get: > > Yorg: -root- > # ls > bootmisc.sh firewall keyboard rcsysklogd > cbq halt modutils rcS umountfs > checkroot.sh hostname.sh mountall.sh rebooturandom > cron hwclock mountnfs.sh rmnologin watchdog > dhcpd ifupdown mrtg sendsigs > directnet inetd networkingsingle > > Yorg: -root- > # ./cbq > ./cbq: not found > > (cbq is only the name) Just a guess here... but I have seen the above when I forget to convert my script from DOS (CR/LF) to UNIX (LF) format. Try: # tr -d '\015' cbq.sh # ./cbq.sh Steve Cowles --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Why this script doesn't work?
> -Original Message-
> From: SpCD
> Sent: Sunday, June 08, 2003 7:21 AM
> Subject: Re: [leaf-user] Why this script doesn't work?
>
>
> > Just a guess here... but I have seen the above when I
> > forget to convert my script from DOS (CR/LF) to UNIX (LF) format.
> >
> > Try:
> > # tr -d '\015' cbq.sh
> > # ./cbq.sh
>
> THX ! After i convert the file and gave proper atrributes it
> runs but i get
> error in 71 line :
> Yorg: -root-
> # ./cbq.sh
> ./cbq.sh: 71: Syntax error: "(" unexpected
>
> Any other guesses? :-)
This looks like the standard bash/ash portability issue.
On line 71, either remove the parens or negate their functional
interpretation by the ash shell by escaping them with backslash. i.e. \(
Steve Cowles
---
This SF.net email is sponsored by: Etnus, makers of TotalView, The best
thread debugger on the planet. Designed with thread debugging features
you've never dreamed of, try TotalView 6 free at www.etnus.com.
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Why this script doesn't work?
> -Original Message- > From: SpCD > Sent: Sunday, June 08, 2003 8:21 AM > Subject: Re: [leaf-user] Why this script doesn't work? > > > > This looks like the standard bash/ash portability issue. > > > > On line 71, either remove the parens or negate their functional > > interpretation by the ash shell by escaping them with > > backslash. i.e. \( > > You're good :-) > > I've switched them off (negate their functional > interpretation ;-)) and now > i get: > Yorg: -root- > # ./cbq.sh > ./cbq.sh: 181: Syntax error: Unterminated quoted string > > We're getting closer to the target :-) Looks like you have accidently deleted either a backslash (like a line continuation), quote, double quote or something along those lines prior to line 181. These errors are tuff to find. Try adding -x to the shell interpreter on line one of your script. i.e. #!/bin/bash -x Then run your script again and watch the output or redirect to another file. Steve Cowles --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Netfilter Core Team Security Advisory
With regards to the following Netfilter Security Adivisory... http://www.netfilter.org/security/2003-08-01-nat-sack.html do the leaf kernels contain this patch? According to the advisory, only Redhat kernels contain this patch. In particular, I'm running the Bering-uClibC-1.2 release. Steve Cowles --- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa0013ave/direct;at.aspnet_072303_01/01 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
