Re: [Leaf-user] Linux Router Logo
Ed Zahurak wrote: Hi, folks! I'm new to the LEAF/LRP stuff, but I've already had tremendous luck in setting up a two-Router/Firewall/VPN solution that works great! Anyhoo, I decided my boxes needed a logo, and I wasn't really crazy about another penguin logo. Love Linux, love Tux, but seeing him everywhere... eh. Not too crazy about that. So I created a new logo, one that captures the essence of the penguin (or, well, at least his foot.) and looks professional and distinctive. I'd like to share it with the group. A GIF of the logo is available at: http://www.digitech.org/~tjunkie/lrp3.gif Feel free to use and share this logo image as you wish. Happy New Year, folks! Ed Zahurak [EMAIL PROTECTED] Real penguins don't have webbed feet. They swim using their wings as flippers. Never have figured out why Linux penguins are webbed. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] dachstein cd 1.0.2: modules are unavailable
Peter Jay Salzman wrote: complete LRP newbie here. i'm trying to set up dachstein cd 1.0.2. reading the comments in /etc/modules, it looks like cdrom:/lib/modules is supposed to be mounted on /lib/modules in the ramdisk. that's not happening. as a result, none of the modules i specify in /etc/modules are loading. can someone help me out here? with the /dev/cdrom improvements of 1.0.2, it seems like this sort of thing should be working out of the box rather than try to hack it to work. pete Modules can load from the cdrom on dachstein. When I do an # ls /lib/modules it is empty because the modules were loaded into memory from the cd. to test which modules are loaded use lsmod hanroute: -root- # lsmod Module PagesUsed by ip_masq_vdolive 1180 0 (unused) ip_masq_user3708 0 (unused) ip_masq_raudio 2980 0 ip_masq_portfw 2416 2 ip_masq_mfw 3196 0 ip_masq_h3236280 0 (unused) ip_masq_ftp 3576 0 ip_masq_autofw 2476 0 (unused) tulip 32424 2 pci-scan2300 0 [tulip] isofs 17692 0 ide-cd 22672 0 cdrom 26712 0 [ide-cd] What kind of problem are you having loading modules? ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] HELP HELP!!
Jim Van Eeckhoutte wrote: Guys I need help with this rtl8139 issue. Eth0 connects to cable modem .while watching back of Eth0 .link drops when it trys to get address from ATT .i take out UTP wire from cable modem and hook into switch and link light comes back and Dachstein CD 1.0.2 gets address from 2k server in garage (dhcp scope). What could this be im pullin my hair out ..hehe. I have reset the modem several times. ATT pushes out dhcp address to client via mac address which I have set via (ip link set eth0 address ma:ca:dd:re:ss:00 in network.cfg) Several list members have remarked that it is necessary to release the lease with ATT. You may have to hook your windows box up directly w/o the router and use winipcfg to release all on your lease. Then shut everything down and plug the LEAF box in. Maybe then ATT will give you a lease. PS - html on this list makes your mail very difficult to read. Please set your email software to send in text mode to the list. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Puzzled about Port Forwarding
Rob Dover wrote: There seems to be so many different ways of doing port forwarding, I confess to being totally stumped. I am running an E2B firewall which has been working quite nicely for several months now. I am now adding a new machine behind the firewall and need to open a few ports. The only option I seem to have available is either ipmasqadm autofw or ipmasqadm portfw. I have tried using ipmasqadm portfw -a -P tcp -L InternetIP port -R ServerIP port which didn't give any errors yet when I do a ipmasqadm portfw -l I get... Could not open /proc/net/ip_masq/portfw Could not open /proc/net/ip_portfw Check if you have enabled portforwarding # Neither of the two portfw files exist nor do I seem to be able to creat them. I have also tried ipfwadm -F -i accept -P udp -S InternetIP -D ServerIP 2074 which gives me the error ipfwadm: setsockopt failed: Invalid argument. I think I have port forwarding enabled; at least I have these two entries in my network.conf; IPFWDING_KERNEL=YES IPFWDING_FW=YES Can someone clue me into what I am doing wrong? Thanks It might be helpful if you give some more particulars about what you are trying to forward and where. There are values in /etc/network.conf that, if configured, open the firewall and forward to internal machines. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] What is This
Matthew Schalit wrote: Victor McAllisteer wrote: This is some crazy method of geographic load balancing. A whole lot of boxes use TCP port 53 simultaneously to find out what part of the world. Victor, wouldn't the load balancing we've seen over the last months that hits port 53 by SYN traffic? Why are all his log entries refering to non-SYN traffic, i.e. responses? Matthew There was a lot of list traffic back in May on the LRP list concerning these port 53 weirdness. My understanding is that tcp port 53 to port 53 is usually a zone transfer. Leaf boxes running tiny DNS will not respond to tcp queries. I believe a number of list members analyzed this stuff using resources beyond just the log entries. It comes all at once from many different IPs. The same IPs always show up repeatedly in the space of a few seconds.. They fill the logs - often with 600 DENYs in a period of 10 seconds or less. Someone traced the ownership of the machines. Apparently it is some sort of proprietary method of determining which machine you are closest to geographically so they can serve up some pop up ad efficiently (for them). DENY (no response) doesn't seem to prevent the pop up ads. Perhaps if they can't get you to send them back a packet, they end up serving the pop up from some default machine. Those who pay for this technology should have their head examined. ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] SILENT_DENY list for port 53 floods
There was a typo on my list of SILENT_DENY for port 53 floods. This one should work. Reduces the number of garbage log entries. # grep SILENT_DENY /etc/network.conf SILENT_DENY=tcp_64.78.235.14_53 tcp_64.56.174.186_53 tcp_64.37.200.46_53 tcp_64.14.200.154_53 tcp_62.26.119.34_53 tcp_62.23.80.2_53 tcp_216.35.167.58_53 tcp_216.34.68.2_53 tcp_216 .33.35.214_53 tcp_216.220.39.42_53 tcp_212.78.160.237_53 tcp_203.208.128.70_53 tcp_203.194.166.182_53 tcp_202.139.133.129_53 tcp_194.213.64.150_53 tcp_194.205.125.26_53 -- Victor McAllisteer ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Dhclient Release
C. Dummy wrote: Sorry but I'm linux newbie. Where I can get file ifdown that would work with Dachstein. I need this file to release ip from nic on lrp box. Andrey The network script will bring up or down any network card: # svi network Usage: network start|stop|reload network ifup|ifdown|ifreset eth0|eth1|eth2|all network ipfilter load|flush|reload network ipfilter list [input|output|forward|autofw|mfw|portfw] network ipfilter list masq|masquerade you can also use the net command # net Usage: net start|stop|reload net ifup|ifdown|ifreset eth0|eth1|eth2|all net ipfilter load|flush|reload net ipfilter list [input|output|forward|autofw|mfw|portfw] net ipfilter list masq|masquerade ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Easy upgrade to Dachstein 1.0.0
I started playing with Dachstein RC5 last night. I am very impressed. Now that RC5 has been replaced with version 1.0.0, all I have to do is burn another CD and keep the same configuration floppy. I love it. Upgrades are so simple. Thanks Charles. http://leaf.sourceforge.net/devel/cstein/files/diskimages/dachstein-CD/ -- Victor McAllister ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
