Re: [leaf-user] sourceforge message
See: https://sourceforge.net/blog/sourceforge-project-e-mail-policy-update/ Boris wrote: > Am 10.06.2017 um 08:15 schrieb Boris: >> Am 10.06.2017 um 03:07 schrieb Victor McAllister: >>> got a link from sourceforge to click if want to continue getting >>> e-mails >>> from LEAF. I distrust clicking on links. Is this legitimate? >>> >>> Victor >>> >> >> Never experienced sourceforge does so... >> >> Boris >> > > Onve I wrote that, I got the same message - first time ever! Doesn't > look malicious > > Boris > > > -- > Check out the vibrant tech community on one of the world's most > engaging tech sites, Slashdot.org! http://sdm.link/slashdot > > leaf-user mailing list: leaf-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ > -- Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] prevent Iot from the net
I would add logging so that you would know if anything was amiss. To test you could temporarily install a PC at the blocked address and see what happens. For more complete control as IoT devices proliferate I would add a separate zone and set up a VLAN for home automation etc. -Original Message- From: Victor McAllister [mailto:victo...@sonic.net] Sent: Thursday, November 03, 2016 11:53 AM To: Bering List Subject: [leaf-user] prevent Iot from the net I have a couple devices, such as a DVR, on the local net (loc) that I do not want to have access to the Internet. Remember the recent DDOS attacks that originated with Iot devices! I added this to shorewall rules. DROP loc:192.168.1.x,192.168.1.y net all They get their time from the local time server so they have no reason to access the net. I have not tested this, but at least shorewall compiles and runs. Any comments. Victor -- Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] How do you archive shorewall logs
A typical solution to extend flash life is to buffer to a RAM disk and write periodically to your flash storage. You should also flush to lash on shutdown. If you are that concerned with the integrity of the log data your system should also be on a UPS. Dave Dillabough > On Jan 20, 2016, at 12:34 PM, Sven Kirmess <sven.kirm...@kzone.ch> wrote: > >> On Wed, Jan 20, 2016 at 6:51 PM, Erich Titl <erich.t...@think.ch> wrote: >> >> >> I see, you want reliable central logging not archiving logs. > > I'm looking for a solution to preserve the log files when my firewall > reboots. I'm planning to use my APU2B4, with only a USB stick for storage. > I can now either add storage to that system that survives being written to > 24/7 or store the log files on a different system. > > >> So you have a number of options > > That's why I'm asking the list. No point in reinventing the wheel if > someone already found a perfect solution. But that's probably not the case. > :-) > -- > Site24x7 APM Insight: Get Deep Visibility into Application Performance > APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month > Monitor end-to-end web transactions and take corrective actions now > Troubleshoot faster and improve end-user experience. Signup Now! > http://pubads.g.doubleclick.net/gampad/clk?id=267308311=/4140 > > leaf-user mailing list: leaf-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ -- Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=267308311=/4140 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] GPT Disks
Hi All, I want to use LEAF for a NAS box and the drives that I have are 3TB. I don't see parted or any other GPT utilities and am wondering if GPT formatted disks are supported by LEAF 5. I can always format the drives in another linux system and move them to the LEAF box but it would be nice to be able to do this natively. Thanks, Dave -- Accelerate Dev Cycles with Automated Cross-Browser Testing - For FREE Instantly run your Selenium tests across 300+ browser/OS combos. Get unparalleled scalability from the best Selenium testing platform available Simple to use. Nothing to install. Get started now for free. http://p.sf.net/sfu/SauceLabs leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] 5.01 booting on WRAP SOLVED
I have also found this to be the case with 4.0 and later versions and switched to booting from USB as a long term solution. Finding compatible CF cards was very hit and miss. Even buying the same brand and model did not alway guarentee compatibility. I tried various boot options and PIO modes but would still get occasional timeouts and errors. - Dave Dillabough On 2013-10-09, at 6:44 AM, Erich Titl erich.t...@think.ch wrote: Hi KP on 08.10.2013 19:57, KP Kirchdörfer wrote: ... I assume your findings may belong to 4.x as well - a bigger CF may always show the pb's you've seen. It is not necessarily the size, but the speed that goes along. Typically bigger/newer CF's have higher throughput. For cheap implementations of the IO channels this may lead to problems. The new libata stack is more flexible than the old driver implementation and appears to be more vulnerable to such a situation. Luckily the developers have provided options to handle this. Yes, 4.x is affected too. ... What about improving this section, and/or add it to the 5.x User Guide? I'm shure it will help other users. I can definitely give input, my Wiki experience is non existant though. cheers Erich -- October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60134071iu=/4140/ostg.clktrk leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60134071iu=/4140/ostg.clktrk leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] shorewall challenge
Have you tried looking in the Shorewall log to see what packets are being rejected? -Original Message- From: Boris [mailto:bo...@cation.de] Sent: Monday, July 29, 2013 9:17 AM To: leaf-user@lists.sourceforge.net Subject: [leaf-user] shorewall challenge Hej all, I'm looking for help in a shorewall rule thing: There's a local software on 192.168.20.1 communicating on some ports with several hosts in the net, so the rules sound like ACCEPT loc:192.168.20.1 net:host1.theirdom.de80,443 ACCEPT loc:192.168.20.1 net:host2.theirdom.de80,999 host1 is resolved to a different IP than host2. Because the communication still doesn't work, I was asking (at least three times) for the complete set of communications that have to be accepted and got new rules every time. Now, that it's beginning to hurt, they tell me I should accept traffic to all hosts *.theirdom.de. In fact, theirdom.de cannot be resolved. So, what to do? Is it possible to work with a wildcard? The longer I think about, it seems to be nonsense !!?? Regards, Boris -- Get your SQL database under version control now! Version control is standard for application code, but databases havent caught up. So what steps can you take to put your SQL databases under version control? Why should you start doing it? Read more to find out. http://pubads.g.doubleclick.net/gampad/clk?id=49501711iu=/4140/ostg.clktrk leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- Get your SQL database under version control now! Version control is standard for application code, but databases havent caught up. So what steps can you take to put your SQL databases under version control? Why should you start doing it? Read more to find out. http://pubads.g.doubleclick.net/gampad/clk?id=49501711iu=/4140/ostg.clktrk leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] BuC 4.3 network woes
I ran into this issue when I switched to a LEAF version with a 2.6 based kernel and the only way that I found around it was to use a script to assign the interfaces in the way that I wanted them to be. I had tried varying load order of modules etc but never got it as solid as I wanted. If I remember the default assignment changed with releases as well. This is even an issue on a 2 interface router if you want the ports assigned in a certain way. For example only 1 port is gigabit and you want it on the LAN. Worst of all on a multiple interface router if an interface fails the other interfaces are reordered on bootup. I'm pretty sure I reassigned based on MAC address which works OK if all of your addresses are static. I'm travelling right now and can't check. - Dave Dillabough On 2012-10-02, at 10:01 PM, Erich Titl erich.t...@think.ch wrote: Hi Martin at 02.10.2012 14:14, Martin Hejl wrote: Hi Erich, I felt pretty sure, as I checked the set up more that once. BUt yes, you are right, pulling down the interface shows that indeed the ethernet numbering had nothing to do with the way I am used to. Indeed - it was quite a surprise to me at the time too, since one expects all kinds of issues when trying a new piece of hardware, but not that the network ports are arranged as eth1 eth3 eth2 eth0 on one model (NSA 1040), and eth2 eth3 eth0 eth1 on the other (NSA 1045)... I do not trust in trial and error and feel like there must be a way to forcibly enumerate the interfaces. How did you solve the issue, as this is quite a showstopper. We never really solved it - since the assignment to the network ports didn't change with different versions of Linux (various versions of Leaf, but we also tried RHEL once), we simply labeled the ports with little stickers. It didn't look terribly professional, but it worked. I can imagine that it does, but what are the effects on, let's say, snmp statistics on the interfaces and the fact that I want to use the 1G interfaces on specific connections without rewiring the cabinet :-( This was, according to internet search, introduced in kernel 2.6 and Dell, running into the same wall has published something to address it, although only for _real_ distros. I am convinced that we need to address this issue, as IMHO this is even more important in a firewall scenario. http://linux.dell.com/files/whitepapers/consistent_network_device_naming_in_linux.pdf cheers Erich -- Don't let slow site performance ruin your business. Deploy New Relic APM Deploy New Relic app performance management and know exactly what is happening inside your Ruby, Python, PHP, Java, and .NET app Try New Relic at no cost today and get our sweet Data Nerd shirt too! http://p.sf.net/sfu/newrelic-dev2dev leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- Don't let slow site performance ruin your business. Deploy New Relic APM Deploy New Relic app performance management and know exactly what is happening inside your Ruby, Python, PHP, Java, and .NET app Try New Relic at no cost today and get our sweet Data Nerd shirt too! http://p.sf.net/sfu/newrelic-dev2dev leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] Booting from USB
Hi fellow LEAFers. I am trying to run up a new router prototype using the current 4.2.1rc1 software as a first step in replacing my aging fleet of routers. My existing routers are used in branch offices in remote locations where IT help is usually not available so failures are dealt with by swapping in a new box using whatever local talent is available so the process must be very simple and non technical. The existing routers all use a CF card to boot from which makes swapping a router quite easy as the configuration moves with the CF card. I do not have monitors and keyboards on these systems. They are just black boxes that hang on the wall. As most new motherboards do not have an IDE interface I am thinking of switching to use a USB flash drive to boot instead. I have run into a boot issue thoughand am not sure of the best way forward so I am looking for some advice. The issue is that the routers also have 2 mirrored SATA hard drives in them. The hard drives and the USB drive are all recognized as SCSI (sdx) devices but not in a consistent way. For example the first hard drive as sda, the USB drive as sdb and the second hard drive as sdc. I could live with this and edit syslinux.cfg and leaf.cfg to point to sdb except that if a hard drive fails this order changes and I cannot reboot the router again without re-editing these files. Is there a way around this? If I could get the USB drive to consistently show up as sda that would be fine. Is there a way to use some sort of alias or dynamic assignment? This was not an issue with the CF cards as they used the hdx interface which was static. Thanks for any thoughts or idea, Dave -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Backup Issue
I also see this when backing up 4.2.0 to a CF card on an IDE interface. In my case when I check the backup has actually completed. Hardware is VIA EPIA Sn and EK boards forced to PIO4 for the CF cards. From: Robert K Coffman Jr. -Info From Data Corp. [bcoff...@infofromdata.com] Sent: Tuesday, April 17, 2012 9:49 AM To: leaf-user@lists.sourceforge.net Subject: [leaf-user] Backup Issue I'm having the following issue when trying to run configdb backup. Moddb backup works. Copying configdb.lrp Please wait: \Terminated If I run from /bin/sh: with_storage /var/lib/lrpkg/mnt lrcfg.backup configdb Same issue. I can mount the backup partition, write to it, etc. It is an IDE hard disk (vfat, /dev/sda1). Any ideas as to what could cause this? - Bob Coffman -- Better than sec? Nothing is better than sec when it comes to monitoring Big Data applications. Try Boundary one-second resolution app monitoring today. Free. http://p.sf.net/sfu/Boundary-dev2dev leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- Better than sec? Nothing is better than sec when it comes to monitoring Big Data applications. Try Boundary one-second resolution app monitoring today. Free. http://p.sf.net/sfu/Boundary-dev2dev leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] Kernel module via-velocity.ko for 4.2beta1
Hi All, I'm trying to do some testing on the 4.2beta1 release but am missing a kernel module needed for 1 of my network interfaces. Any idea where I would find the via-velocity.ko module for this release? I've tried unpacking the modules.tgz file but it is not in there. Thanks for any pointers. Dave -- Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Adding wireless (WiFi) to Bering 3.1 uClibc box
There is no real need for another NIC in your router unless you want to subnet the WiFi. Just plug the WiFi AP into your existing LAN. -Original Message- From: Andrew Haninger [mailto:ahan...@mindspring.com] Sent: Monday, April 26, 2010 8:41 PM To: Brent Gardner Cc: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Adding wireless (WiFi) to Bering 3.1 uClibc box So it seems like I'm on the right track in general, which is mostly what I wanted to know. It doesn't sound like PCI wireless NICs are all that stable on Windows, let alone Linux 2.4, so it would be a crapshoot as to whether or not I'd end up with a useful card. Every so often, I entertain the idea of using a USB NIC, but then remember that I don't want the added hassle of a USB NIC. On Mon, Apr 26, 2010 at 8:18 PM, Brent Gardner brent.gard...@gmail.com wrote: Another option would be to buy another wired NIC and a wireless AP supporting the wireless technology of your choice. Bridge the new wired NIC to your 'internal' NIC, connect the new NIC to a LAN (not WAN) port on the wireless AP, and you should be good to go. This may be the most feasible and long-term option. More feasible since wired NIC drivers are pretty stable on Linux. Long term since PCI is heading the way of the floppy and I'd probably be able to reuse an external AP should I ever replace my LEAF system. I'm also trying to avoid cards that require ndiswrapper which counts out about 80% of cards available on Newegg. Luckily, I've got plenty of spare wired NICs. Thanks. Andy -- leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Kernel crash with vlan on Bering 3.1 Kernel 2.4.34
I'm not using the vlan package only the 8021q module with a static config so that makes sense. -Original Message- From: Erich Titl [mailto:erich.t...@think.ch] Sent: Wednesday, August 12, 2009 11:40 PM To: Dillabough, Dave Cc: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Kernel crash with vlan on Bering 3.1 Kernel 2.4.34 Hi Dave Dillabough, Dave wrote: Hi Erich, It is working for me with 2.4.34 in one office and on my test LAN. I will be rolling it out in 12 other offices in the next month or so. Here is my configuration. From /etc/interfaces Thanks for the info, after a few hours debugging the vlan driver I figured something out, it appears that the 8021q module conflicts with the vlan module, don't ask me why Anyway after loading only 8021q the problem appears to be gone. cheers Erich -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Kernel crash with vlan on Bering 3.1 Kernel 2.4.34
Hi Erich, It is working for me with 2.4.34 in one office and on my test LAN. I will be rolling it out in 12 other offices in the next month or so. Here is my configuration. From /etc/interfaces # Step 2: configure internal interface auto eth1 iface eth1 inet static address 192.168.101.254 netmask 255.255.255.0 broadcast 192.168.101.255 vlan_raw_device eth1 # Add VLANS auto eth1.5 iface eth1.5 inet static address 192.168.201.254 netmask 255.255.255.0 broadcast 192.168.201.255 vlan_raw_device eth1 up echo 1 /proc/sys/net/ipv4/conf/eth1.5/arp_filter up echo 2 /proc/sys/net/ipv4/conf/eth1.5/arp_ignore up echo 1 /proc/sys/net/ipv4/conf/eth1.5/rp_filter ip addr shows 4: eth1: BROADCAST,MULTICAST,UP mtu 1500 qdisc pfifo_fast qlen 1000 link/ether 00:40:63:ef:c4:b1 brd ff:ff:ff:ff:ff:ff inet 192.168.101.254/24 brd 192.168.101.255 scope global eth1 6: eth1.5: BROADCAST,MULTICAST,UP mtu 1500 qdisc noqueue link/ether 00:40:63:ef:c4:b1 brd ff:ff:ff:ff:ff:ff inet 192.168.201.254/24 brd 192.168.201.255 scope global eth1.5 The tagged VLAN is being used for public Internet access in a few meeting rooms and with a WiFi access point. I am using HP 2600 series switches to tie it all together. The LEAF hardware is a VIA Mini-ITX EK1G which uses the via-rhine driver. I also have a couple of Intel boards in the system which use the eepro100 driver but I am only using VLANs on the via-rhine interface. The system has been in place for about 2 months without issues with light loading. Let me know if you need any other details. Dave -Original Message- From: Erich Titl [mailto:erich.t...@think.ch] Sent: Wednesday, August 12, 2009 5:10 AM To: leaf-user@lists.sourceforge.net Subject: [leaf-user] Kernel crash with vlan on Bering 3.1 Kernel 2.4.34 Hi folks has anyone successfully used vlan tagging on the above mentioned release. I have the folowing set up on a WRAP with natsemi interfaces # # eth2 / Fixed IP # auto eth2 iface eth2 inet static address 10.250.21.1 netmask 255.255.255.0 # end of generated interface file auto eth2.34 iface eth2.34 inet static address 192.168.223.1 netmask 255.255.255.0 So eth2 is untagged while eth2.34 is a tagged interface it shows up like 5: eth2: BROADCAST,MULTICAST,UP mtu 1500 qdisc pfifo_fast qlen 1000 link/ether 00:0d:b9:00:80:42 brd ff:ff:ff:ff:ff:ff inet 10.250.21.1/24 scope global eth2 6: ipsec0: NOARP mtu 0 qdisc noop qlen 10 link/void 7: ipsec1: NOARP mtu 0 qdisc noop qlen 10 link/void 8: ipsec2: NOARP mtu 0 qdisc noop qlen 10 link/void 9: ipsec3: NOARP mtu 0 qdisc noop qlen 10 link/void 10: eth2.34: BROADCAST,MULTICAST,UP mtu 1500 qdisc noqueue link/ether 00:0d:b9:00:80:42 brd ff:ff:ff:ff:ff:ff inet 192.168.223.1/24 scope global eth2.34 so basically it looks like the vlan tagging is enabled and working, but as soon as I try to use the eth2.34 interface, for example to ping a station on that vlan like 192.168.223.11 the kernel panics with a NULL pointer dereference. STYX# ping 192.168.223.11 PING 192.168.223.11 (192.168.223.11): 56 data bytes Unable to handle kernel NULL pointer dereference at virtual address 003c *pgd =0 *pmd =0 Oops: CPU:0 EIP:0010:[c48c31ae]Not tainted EFLAGS: 00010206 eax: ebx: 0022 ecx: c391af00 edx: c48c5af4 esi: edi: 0081 ebp: 0040 esp: c0229f0c ds: 0018 es: 0018 ss: 0018 Process swapper (pid: 0, stackpage=c0229000) Stack: c37bd81e c48c41b2 0022 c391af00 0081 0040 c01920c3 c391af00 c48c5af4 c345e000 c0226b28 c019215b c391af00 00036ca3 c0226bf0 c0226b28 00036ca3 0046 c0192242 c0226b28 Call Trace:[c48c41b2] [c01920c3] [c48c5af4] [c019215b] [c0192242] [c0121df2] [c011492c] [c0111c0e] [c01167b8] [c0111c0e] [c0110018] [c0111c31] [c0111c89] [c01039c7] [c0110199] Code: ff 70 3c e8 65 ff ff ff 89 c2 31 c0 85 d2 59 74 07 0f b7 c3 0Kernel panic: Aiee, killing interrupt handler! In interrupt handler - not syncing Thanks for pointers Erich -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf
Re: [leaf-user] Project Admin
Ken, Is the fact that you can write protect the floppy a consideration (and do you do this) or is it just the convenience of having one around Dave From: Ken Gentle [mailto:jkennethgen...@gmail.com] Sent: Friday, August 07, 2009 8:51 AM To: Dillabough, Dave Cc: Erich Titl; leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Project Admin I still use floppies for config files. It is the easiest configuration for a software geek to mangle together - take a floppy off an old system, plug in the IDE cable and you're in business. My earliest LEAF systems (Dachstein and uClibc Bering) ran completely off of the floppy (on a 486DX w 16Mb of RAM) I'm interested in the CF media or moving off old PC platforms to something like the Alix platform. But that is a lot of hardware/low level software learning curve. Having said all that, I do boot my current systems from CD and just save configuration to floppy. I believe that would work nicely with a 2.6 kernel. Ken On Wed, Aug 5, 2009 at 18:39, Dillabough, Dave dave.dillabo...@bcgeu.camailto:dave.dillabo...@bcgeu.ca wrote: Hi Erich, How much of an issue is having write protection? I can understand that it is better in theory but I can't think of a commercial firewall product (Cisco PIX, Linksys, DLink etc) that does not use flash and that has any sort of write protection. If having boot from R/O media is an issue you could boot from CD and save to a floppy. You could also write protect CF media with a hardware hack to the cable. With USB/CF systems I always keep a backup of the boot media. It's not as simple as a power cycle but I can always get back to a known state if I need to although this has yet to be an issue for me. So from my perspective this would seem to be a non issue for most users and that for those few where it is an issue there are ways around it with some extra work. Obviously I don't have your perspective on the issue and I may be in the minority here and while I don't need 2.6 features yet it does seem to me that there must be quite a lot of development work that goes into squeezing a working system onto a floppy. It would be a shame if this is being done to no purpose. Does anyone on the list boot a system from floppy disk or save config files to floppy disk? I will take a look at the 2.6 CVS. Dave -Original Message- From: Erich Titl [mailto:erich.t...@think.chmailto:erich.t...@think.ch] Sent: Wednesday, August 05, 2009 2:40 PM To: Dillabough, Dave Cc: leaf-user@lists.sourceforge.netmailto:leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Project Admin Dave Dillabough, Dave wrote: I'm wondering how much of an issue it is to have a system that will fit on a floppy. I would think that being able to boot off of a USB drive or a CD/USB combo would be more pertinent today given as few machines even come with a floppy as standard equipment anymore. USB booting would eliminate the futzing around with non standard disk sizes and would be a lot more reliable and as well. I have been running some variant of LRP/LEAF since the 2.x days both at home and for various work related uses and the most common failure is mechanical i.e. drives or fans. I switched to booting off of CF cards and fanless power supplies a couple of years ago and am much closer to my goal of having a solid state appliance that I can install and ignore. Even buying the smallest CF cards available I still need only a small fraction of the card to boot LEAF. The world has moved on from the floppy drive and I think trying to keep future versions of LEAF small enough to boot from a floppy is l argely an artificial constraint now. If for some reason the use of a floppy is required then older versions of LEAF are still available. do not misinterpret me, I wrote an early HOWTO about using secure flash disks for leaf :-( and yes, I agree, I live easily with the flash memory world. There are 2 main things that are different from a floppy - size - write protection In my eyes, the write protection is the more important factor. There have been multiple attempts to solve this, amongst it unloading the device driver. There has been a experimental 2.6 release on CVS which was hardly used by anyone, hey, this is an open source project, get your hands dirty. cheers Erich -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.netmailto:leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists
Re: [leaf-user] Project Admin
I'm wondering how much of an issue it is to have a system that will fit on a floppy. I would think that being able to boot off of a USB drive or a CD/USB combo would be more pertinent today given as few machines even come with a floppy as standard equipment anymore. USB booting would eliminate the futzing around with non standard disk sizes and would be a lot more reliable and as well. I have been running some variant of LRP/LEAF since the 2.x days both at home and for various work related uses and the most common failure is mechanical i.e. drives or fans. I switched to booting off of CF cards and fanless power supplies a couple of years ago and am much closer to my goal of having a solid state appliance that I can install and ignore. Even buying the smallest CF cards available I still need only a small fraction of the card to boot LEAF. The world has moved on from the floppy drive and I think trying to keep future versions of LEAF small enough to boot from a floppy is largely an artificial constraint now. If for some reason the use of a floppy is required then older versions of LEAF are still available. -Original Message- From: Erich Titl [mailto:erich.t...@think.ch] Sent: Wednesday, August 05, 2009 6:41 AM To: Robert K Coffman Jr. -Info From Data Corp. Cc: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Project Admin Hi Robert K Coffman Jr. -Info From Data Corp. wrote: Erich Titl (etitl) promoted to project admin, and Jeff Newmiller For those of us on the user list only, any comment on a 2.6 branch? :) M 2.6 is a bit fatter than 2.4, it has more recent drivers and most of the development is there. I am not particularly hampered by the bigger footprint of 2.6 but it might go against one of the early goals, the floppy size. Also, I believe, maintaining two branches is quite a task for the core developers team, which is only worth the trouble if the need really exists. Congratulations Erich. Thanks, have not found out what the real difference is. cheers erich -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Project Admin
Hi Erich, How much of an issue is having write protection? I can understand that it is better in theory but I can't think of a commercial firewall product (Cisco PIX, Linksys, DLink etc) that does not use flash and that has any sort of write protection. If having boot from R/O media is an issue you could boot from CD and save to a floppy. You could also write protect CF media with a hardware hack to the cable. With USB/CF systems I always keep a backup of the boot media. It's not as simple as a power cycle but I can always get back to a known state if I need to although this has yet to be an issue for me. So from my perspective this would seem to be a non issue for most users and that for those few where it is an issue there are ways around it with some extra work. Obviously I don't have your perspective on the issue and I may be in the minority here and while I don't need 2.6 features yet it does seem to me that there must be quite a lot of development work that goes into squeezing a working system onto a floppy. It would be a shame if this is being done to no purpose. Does anyone on the list boot a system from floppy disk or save config files to floppy disk? I will take a look at the 2.6 CVS. Dave -Original Message- From: Erich Titl [mailto:erich.t...@think.ch] Sent: Wednesday, August 05, 2009 2:40 PM To: Dillabough, Dave Cc: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Project Admin Dave Dillabough, Dave wrote: I'm wondering how much of an issue it is to have a system that will fit on a floppy. I would think that being able to boot off of a USB drive or a CD/USB combo would be more pertinent today given as few machines even come with a floppy as standard equipment anymore. USB booting would eliminate the futzing around with non standard disk sizes and would be a lot more reliable and as well. I have been running some variant of LRP/LEAF since the 2.x days both at home and for various work related uses and the most common failure is mechanical i.e. drives or fans. I switched to booting off of CF cards and fanless power supplies a couple of years ago and am much closer to my goal of having a solid state appliance that I can install and ignore. Even buying the smallest CF cards available I still need only a small fraction of the card to boot LEAF. The world has moved on from the floppy drive and I think trying to keep future versions of LEAF small enough to boot from a floppy is l argely an artificial constraint now. If for some reason the use of a floppy is required then older versions of LEAF are still available. do not misinterpret me, I wrote an early HOWTO about using secure flash disks for leaf :-( and yes, I agree, I live easily with the flash memory world. There are 2 main things that are different from a floppy - size - write protection In my eyes, the write protection is the more important factor. There have been multiple attempts to solve this, amongst it unloading the device driver. There has been a experimental 2.6 release on CVS which was hardly used by anyone, hey, this is an open source project, get your hands dirty. cheers Erich -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] PCI Utilities Package (including lspci) for Bering-uClibc 3.x
When I run into a similar situation (trying to get new hardware/drivers working) I usually boot up a LiveCD version of Linux and see what it takes to make the hardware work. Once I know which drivers are needed and have verified that the hardware works etc. I can switch to Bering check that the drivers exist and load the appropriate modules with a lot less futzing around. -Original Message- From: davidMbrooke [mailto:dmb.leaf-u...@ntlworld.com] Sent: Wednesday, July 29, 2009 12:52 PM To: leaf-user Subject: [leaf-user] PCI Utilities Package (including lspci) for Bering-uClibc 3.x Recently I have been trying to get an 802.11g PCI card working with Bering-uClibc and I found it difficult to work out whether I had the wrong drivers or whether the card was simply not recognized by my hardware. (It turned out to be the latter.) On any other Linux distribution I would have used the lspci command but I could not find a version of this for Bering-uClibc. I therefore created a package myself from the sources at http://mj.ucw.cz/pciutils.html The package is pciutils.lrp and it is available in my LEAF devel directory on SourceForge: http://leaf.cvs.sourceforge.net/viewvc/leaf/devel/davidmbrooke/bin/packages/uclib-0.9/28/pciutils.lrp Package pciutils.lrp includes the command lspci as well as setpci. It is large (approx 213KB) and relies on libz.lrp (23KB) but it might be useful for debugging PCI problems. Most of the size is due to the data file (pci.ids.gz) so if you know which hardware you are expecting to find you could perhaps install a cut-down pci.ids.gz file. I compiled the code against Bering-uClibc 3.1.10beta3 but I think it should work on any Bering-uClibc 3.x release. I have done some testing with lspci and it seems to work OK for me. I have *not* tested setpci at all. For reference, I found lspci.lrp for older LEAF (non-uClibc) installations here: http://fritzfam.com/brad/leaftmp/ (mentioned in a 2002 posting to this mailing list). davidMbrooke -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Packages 3.x link broken
Works for me in Firefox now. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of KP Kirchdoerfer Sent: Monday, July 23, 2007 1:55 PM To: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Packages 3.x link broken On Monday 23 July 2007 21:14:54 Christian Villa Real Lopes wrote: I have the same problem and tried to inform about it. It only happens if you are using a browser other than InternetExplorer (IE) - I'm using Firefox. I hope that's fixed now. kp - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now http://get.splunk.com/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now http://get.splunk.com/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] The old floppy question
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kwon Sent: Friday, July 20, 2007 2:10 AM To: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] The old floppy question My current LEAF box would not fit into a floppy - it is 3.1MB. Just want to be clear, my current Leaf box won't fit into a floppy neither. What I do is: 1. Download the leaf.iso image and burn to a CD 2. Create leaf.cfg into a floppy and boot from the CD 3. Save configuration (configdb.lrp) and backup modules (moddb.lrp) to floppy This way I don't have to recreate my own CD. One other reason why we experience many floppy failure is the fact that we are using /dev/fd0u1680 and not the standard /dev/fd0u1440. Can anyone has more experience comment on this? Nowadays, my floppy only has three files I can go back to the 1.44mb floppy format of which I have not experience any problem. I use(d) the CD boot, 1.44 meg floppy save combo in several installations. Some LEAF boxes are in climate controlled machine rooms, some are on a table in a back room. The main failure I see is that the PC is unable to read the floppy on a reboot. Usually this is due to dust in the floppy drive. In most cases the floppy disk will read in another drive. Sometimes blowing the dust out of the old drive will make it work. This is a minor inconvenience if the PC is in the next room. It does mean that there is more down time that the users like. However if the PC is in a branch office in a small town far away with a minimum 2 day courier delivery and poor or no local PC repair support it can be a major problem. The floppy vs. non floppy question for me gets down to time. Yes, it is nice to reuse an old box that in our disposable society would otherwise end up as landfill and yes it is nice that that box is free but this for me must be balanced against the time you have to spend phaffing around getting the system running and also keeping it running. My time is worth money and it is the one resource that I can't stretch any further. Older systems take more time to maintain, fans dies, floppies die etc. Those PCs are designed for a disposable society. I am currently working on the next generation of branch office routers for our organization. The platform is a VIA EPIA motherboard with CF boot in a 1U case with no fans and an external power supply. It is not a cheap way to go and it takes time to set up but it does give me the flexibility to do things that an off the shelf router won't and I'm hoping that it will be very reliable. For a simple firewall/VPN solution for home users we use a Linksys firewall router. $50 and a 5 minute config and you are out the door and very few problems. If I did not need other capabilities in the branch offices I would use the same routers there. At work for me LEAF fits into a mid range niche both for expense and for time spent. It allows me to do things that a cheap off the shelf box does not as long as I put in some extra time and buy reliable hardware for it to run on. To get the same reliability as an appliance it needs to be built on a reliable platform. This gives me what I want: a configurable appliance that I can install and forget about. If LEAF packages are not available to do what I want and would be a hassle to adapt then I move up to a Linux server. For a LEAF system to make sense for me it has to be less work than maintaining a server would in terms of time spent on maintenance and in reliability. At home I use LEAF on an old PC with CD boot and a 1.44 floppy to save my config. A different balance here. I have accepted the less reliable system but it was cheap and I was usually available to fix any issues. I will be moving to a CF boot system here as well though using CF card that is too small for a camera and a $25 CF to IDE adapter. Dave - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] The old floppy question
Some of the CF to IDE adapters have a write protect jumper that is easy to run out to a switch. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tony Sent: Friday, July 20, 2007 2:54 AM Cc: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] The old floppy question This is actually my setup as well. I've been using the CD since it first came out way back when with Charles' distro (I think it was 1.02). I think the ability to lock the floppy with the sliding tab is invaluable. Test, make and save the changes, lock the tab and you can leave it right in the drive. Power Failure? No problem, no action needed and forget worrying about someone injecting a rootkit or what have you into system, no way to save it without physical access. Other than SD cards, do any of the CF/USB sticks offer a write protect switch? If so, I haven't seen one. Tony - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] The old floppy question
Hi All, Here is my opinion on the floppy question. I have been using LEAF for firewalls ever since LRP 2.9.x. Over the years I have tried just about every way of booting the system, floppies, ZIP, LS120, HD, CD + floppy for config and CF. In all cases when a floppy or floppy like device (ZIP or LS120) was used I have had failures. The HD based systems have had much better reliability. I have just started using CF based systems so I don't have any history on reliability yet but I expect that this will be more reliable. If you want reliability then floppies are not the way to go. Use a modern air bearing HD or use CF. Floppies are also fading away. I have not bought a machine for work in the last 3 years that has a floppy installed Why do I use LEAF at all? You can buy a decent ready to go out of the box firewall that supports wireless, VPNs, web based config and runs an embedded Linux distro from Linksys for less that $50 now so what advantage does LEAF offer? I still use LEAF for firewalls because of the more complex things that I can do with it. Most of my configs will not even fit onto a floppy. LEAF and the future. I certainly have no objection to small or floppy based systems for those that want to use them unless doing so holds back the development of LEAF. It seems to me (from a non developers point of view) that a lot of effort is being expended trying to shoe horn the current system into a bootable system smaller than 1.6 MB. Splitting the distro into 2 streams has been mentioned. This could be a good solution if the resources are available to do it. Personally I would rather spend a little money on adding CF or USB boot capacity to a system. LEAF is a great distro. The recent changes to Bering uClibc especially the new backup procedures are a huge step forward. I would hate to see LEAF fall behind due to a decision to support obsolete hardware. So that's my opinion. Not a complaint, just another data point. I really appreciate all of the work that the LEAF team has put in. Dave - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Bering uClibc - Adding static routes to local Shorewall zone
Hi Corey, Thanks for putting me on the right track with the Debian documentation. Your example won't work with the current Bering distro though as the route command is not included. Using the iproute syntax though worked for me. up ip route add 192.168.52.0/24 via 172.22.255.231 down ip route del 192.168.52.0/24 via 172.22.255.231 Dave -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Corey Betka Sent: Thursday, April 05, 2007 7:29 PM To: leaf-user@lists.sourceforge.net Subject: Re: [leaf-user] Bering uClibc - Adding static routes to local Shorewall zone On Thu, 5 Apr 2007, Dillabough, Dave wrote: Is there any documentation for more complex Bering configurations? Bering essentially uses Debian style network configs, so the docs from them are quite helpful: http://www.debian.org/doc/manuals/reference/ch-gateway.en.html For example: iface eth0 inet static address 192.168.0.111 netmask 255.255.255.0 gateway 192.168.0.1 up route add -net 10.0.0.0 netmask 255.0.0.0 gw 192.168.0.2 dev $IFACE down route del -net 10.0.0.0 netmask 255.0.0.0 gw 192.168.0.2 dev $IFACE -- Corey Betka - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDE V leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/ - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] Bering uClibc - Adding static routes to local Shorewall zone
Hi All, I am configuring the Bering uClibc3.0.1 firewall for the first time and can't figure out where I should add definitions for the static routes on my internal network. If I manually add the routes and then restart shorewall then the routed subnets are added to the local zone and everything works the way I want it to but of course the routes do not persist through a reboot. I tried putting the route add commands in the shorewall init script which adds the routes OK but shorewall does not add the extra subnets to the local zone on boot up unless I manually do a shorewall restart. Is there another configuration file that I should be putting the route definitions in so that they are established before shorewall starts? It looks like I could mess with the shorewall zone and hosts files to get around this problem but having the routes in place before shorewall starts would seem to be a better way to go. Is there any documentation for more complex Bering configurations? Thanks for any help. Dave Shorewall zones file fw firewall netipv4 locipv4 dmzipv4 Shorewall interfaces file neteth0detect tcpflags,routefilter,norfc1918,nosmurfs loceth1detect tcpflags,detectnets,dhcp,nosmurfs dmzeth2detect Shorewall init file ip route add 192.168.52.0/24 via 172.22.255.231 ip route add 192.168.54.0/24 via 172.22.255.231 ip route add 192.168.55.0/24 via 172.22.255.231 ip route add 192.168.56.0/24 via 172.22.255.231 ip route add 192.168.57.0/24 via 172.22.255.231 ip route add 192.168.58.0/24 via 172.22.255.231 Shorewall hosts file is empty - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] bridging a Wireless card in client mode
Hi all, I'm trying to bridge the lan and wireless interfaces. While the wireless card is in Master (Access Point) mode, all works fine. I can pass traffic from the wireless side onto the lan and vice-versa. However, when the wireless card is in Managed (Client) mode, associated to an access point, no traffic seems to be passed through the box. I can ping the leaf box from the wireless and the lan, but no traffic is forwarded. (box is wrap board based on Bering 1.2, orinoco wireless card) Has anyone done bridging in this manner? I suspect I need wireless drivers that will maintain a connection while in monitor mode, which orinoco.o doesn't seem to do. Regards, Dave. --- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] setting up a WRAP
Good guide for HD/CF at http://chinese-watercolor.com/LRP/hd/ Cheers, Dave. http://www.me2000.net -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Victor McAllister Sent: 02 October 2004 17:11 To: [EMAIL PROTECTED] Subject: [leaf-user] setting up a WRAP Erich - how do you setup the compact flashes for your WRAP boards? I was thinking of setting up an old PC with three Netgear 311 boards and getting uClicC to work first - then just transferring the CF to the WRAP board. Is that how you do it? I like the little cases that PCEngines sells for $16 ~ 6 x 6 x 1 with no fan. http://www.pcengines.ch/wrap.htm --- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.772 / Virus Database: 519 - Release Date: 01/10/2004 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.772 / Virus Database: 519 - Release Date: 01/10/2004 --- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] CF-IDE help
Peter, The only time I came across something like that was when I pulled the CF out of the USB adapter before I had selected 'Eject' in windows. Any possibility of something like that? Regards, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Mueller Sent: 13 May 2004 14:46 To: [EMAIL PROTECTED] Subject: [leaf-user] CF-IDE help Hello, Does anyone know why my new both my new 64mb CF-IDE solutions don't seem to want to work properly? I can format the devices properly, syslinux properly, but when I try to copy data over there is corruption and very strange things happen. For example, it looks like I copy all my LRPs over properly but they don't actually copy. I've tried this process from both Linux and windows, with two completely different sets of hardware. I didn't run into this problem with my 256mb CF-IDE cards a year ago. Thanks much, Peter Mueller Operations Engineer (408)235-1700 x125 [EMAIL PROTECTED] Find travel deals from dozens of sites - with one search Try SideStep - The traveler's search engine www.sidestep.com --- This SF.Net email is sponsored by: SourceForge.net Broadband Sign-up now for SourceForge Broadband and get the fastest 6.0/768 connection for only $19.95/mo for the first 3 months! http://ads.osdn.com/?ad_id%62alloc_ida84op=ick leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.Net email is sponsored by: SourceForge.net Broadband Sign-up now for SourceForge Broadband and get the fastest 6.0/768 connection for only $19.95/mo for the first 3 months! http://ads.osdn.com/?ad_id=2562alloc_id=6184op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] SNMPd using Dachstien netsnmpd.lrp
Try: snmpwalk -v 1 -c public firewall Cheers, Dave. www.me2000.net -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Joey Officer Sent: 23 April 2004 14:39 To: Leaf-User Subject: [leaf-user] SNMPd using Dachstien netsnmpd.lrp I followed the threads from an archive, which ultimately died without giving a conclusion email (perhaps I missed it) however I am looking to get the SNMPd package working. The thread that I found before referenced someone using the netsnmpd.lrp file from the Dachstien CD, which I've grabbed, as well as the libm and libdb lrp files. I've modified the snmpd.conf file to confirm the proper community name, however when I try an snmpwalk from another workstation on within the LAN, I get the following: [EMAIL PROTECTED] mrtg]$ snmpwalk -m UCD-SNMP-MIB.txt -M /usr/share/snmp/mibs firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ and additionally, when I try to walk anything, I get this: [EMAIL PROTECTED] mrtg]$ snmpwalk firewall public Timeout: No Response from firewall [EMAIL PROTECTED] mrtg]$ So I'm missing something here. Is there a step somewhere that I've missed? And after I get this working properly, I'd like to work with someone to build some sort of documentation to get SNMPd working on Bering. Thanks all! Joey --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg= 12297 -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/l eaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] trouble accessing firewall
Thank you to everyone who responded to my request for help. It appears that I was the victim of my own stupidity. I inadvertantly grabbed an old 100MB hub to use (not a 10/100MB hub). Needless to say, the 3c509 cards did not work. I have replaced the hub and everything is fine now. On another note, I have determined that there is a small but vital piece of information missing from the linux Ethernet HOWTO. That is, if you attempt to specify any parameters on the 3c509 driver line(s) in the /etc/modules file, the driver will NOT load. Once the cards are appropriately set with the DOS utility, the simple 3c509 entry works like a charm. Thanks again, Dave - Original Message - From: Dave Rose [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, April 07, 2004 8:06 PM Subject: [leaf-user] trouble accessing firewall I am standing up a bering firewall and have made it through the 3c509 troubleshooting phase, or so I thought. I am unable to ping the internal side of the firewall from my other computers. My hardware - 486DX4 100Mhz PCI video card 20MB RAM Floppy disk 3c509B-TP (I have two of these cards installed in the ISA bus) Hardware configuration --- NO Hard drive (controller disabled in BIOS) NO comm/parallel ports (disabled in BIOS) Set the 3c509-TP cards to IRQ7,5 and IO addresses of 0x300,0x280 and disabled the ISA plug and play feature and successfully ran the 3COM diagnostics function on each card) Software configuration 1.) downloaded the bering 1.2 software (Windows utility to make the boot floppy- Bering_1.2_img_bering-1680.exe from http://download.sourceforge.net/leaf/) 2) downloaded the bering 1.2 modules (Bering_1.2_modules_2.4.20.tar.gz from http://download.sourceforge.net/leaf/) 3) I booted the floppy I made in the first step and added the 3c509.o ethernet card driver to /lib/modules 4.) I modified /etc/modules to add the line 3c509 5) I pretty much left /etc/network/interfaces to the default settings since they are set up initially for the configuration that I am looking for The problem Although the system recognizes both cards (IRQs and IO addresses) at startup, the eth1 interface fails to activate, light up the led on the hub and can not be pinged from my other workstation on the internal lan. Any ideas how to proceed would be much appreciated. Thanks Dave --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] trouble accessing firewall
I am standing up a bering firewall and have made it through the 3c509 troubleshooting phase, or so I thought. I am unable to ping the internal side of the firewall from my other computers. My hardware - 486DX4 100Mhz PCI video card 20MB RAM Floppy disk 3c509B-TP (I have two of these cards installed in the ISA bus) Hardware configuration --- NO Hard drive (controller disabled in BIOS) NO comm/parallel ports (disabled in BIOS) Set the 3c509-TP cards to IRQ7,5 and IO addresses of 0x300,0x280 and disabled the ISA plug and play feature and successfully ran the 3COM diagnostics function on each card) Software configuration 1.) downloaded the bering 1.2 software (Windows utility to make the boot floppy- Bering_1.2_img_bering-1680.exe from http://download.sourceforge.net/leaf/) 2) downloaded the bering 1.2 modules (Bering_1.2_modules_2.4.20.tar.gz from http://download.sourceforge.net/leaf/) 3) I booted the floppy I made in the first step and added the 3c509.o ethernet card driver to /lib/modules 4.) I modified /etc/modules to add the line 3c509 5) I pretty much left /etc/network/interfaces to the default settings since they are set up initially for the configuration that I am looking for The problem Although the system recognizes both cards (IRQs and IO addresses) at startup, the eth1 interface fails to activate, light up the led on the hub and can not be pinged from my other workstation on the internal lan. Any ideas how to proceed would be much appreciated. Thanks Dave --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Bering on CF
There's a great guide on http://chinese-watercolor.com/LRP/hd/ Bear in mind, not all CF's are the same, and some just don't want to work... Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Roger E McClurg Sent: 01 April 2004 13:54 To: [EMAIL PROTECTED] Subject: [leaf-user] Bering on CF Hi All, I know there was a lot of activity around Bering on Compact Flash a while back. Did anyone document the process? I can't seem to get syslinux to work on mine. Thanks, Roger --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/l eaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Updated SSH packages
http://www.think.ch/leaf/wrap/packages/ look for the packages with a date 22-Mar-2004 Do not forget to modify your lrpkg.cfg, you need a few more packages like libnsl and libcrypt pls keep me updated cheers Tried them out last night, and they work fine. I had to change the passwords option from no to yes in sshd_config to allow logins. Also, if upgrading a remote box, make sure to build a package with default keys, because the default package has no keys and sshd will not start. Regards, Dave. --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Wavemon for Bering 1.2
Has anyone got a wavemon lrp handy for Bering 1.2? Cheers, Dave. --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Updated SSH packages
Here are the sizes for the newly compiled stuff (slink.) -rw-r--r--1 root root 444769 2004-03-22 14:27 libcrypt.lrp -rw-r--r--1 root root 8087 2004-03-22 14:27 libnsl.lrp -rw-r--r--1 root root89010 2004-03-22 14:27 libssl.lrp -rw-r--r--1 root root36293 2004-03-22 14:27 libz.lrp -rw-r--r--1 root root 134257 2004-03-22 14:27 sshd.lrp If you want to try this let me know, it works for me Sure, Erich. Have you a link to somewhere I can download them? Regards, Dave. --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Updated SSH packages
Hi All, Does anyone have more recent versions of the ssh/sshd/sftp packages? There's a security advisory (http://www.openssl.org/news/secadv_20040317.txt) that affects the current versions in use at http://leaf.sourceforge.net/devel/jnilo/ Regards, Dave. --- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470alloc_id=3638op=click leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] HostAP mode from Truemobile 1100 series
Hi all, I've got the Truemobile 1100 series (prism2 based) card working fine with the airo drivers on Bering. I'm wondering, has anyone had any success using this card with the HostAP drivers? It would make the 25 cards that I bought accidentally much more useful ;) I have managed to get two high beeps upon load of the HostAP drivers, but I can't sniff any essid with kismet, and the driver crashes as soon as I try and ping something through that card. Cheers, Dave. --- This SF. Net email is sponsored by: GoToMyPC GoToMyPC is the fast, easy and secure way to access your computer from any Web browser or wireless device. Click here to Try it Free! https://www.gotomypc.com/tr/OSDN/AW/Q4_2003/t/g22lp?Target=mm/g22lp.tmpl leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] LEAF on compact flash
I've fount the easiest way to get LEAF onto a CF is to use the guide at http://chinese-watercolor.com/LRP/hd/ Cheers, Dave. www.me2000.net --- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] pcmcia_orinoco.lrp
The base was pcmcia_orinoco.lrp which needed a few tweaks to get working, config files were a little off. Bering 1.2, 2.4.20 kernel, with the devfs compiled in. Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Muiz Motani Sent: 26 October 2003 19:26 To: [EMAIL PROTECTED]; Dave Hunt Subject: RE: [leaf-user] pcmcia_orinoco.lrp Hi Dave, Can you please tell me if this package used pcmcia_orinoco.lrp as the base for the changes? Which version of Bering (i.e. which kernel version) is this compiled against? On 26 Oct 2003 at 13:37, you wrote: I have an implementation of a Bering Variant at www.me2000.net including hermes ap support. you can get the pcmcia.lrp from the compact flash zip file. You'll also need the kernel, and the hermesap.lrp, and the .hfw firmware files... Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Muiz Motani Sent: 26 October 2003 07:32 To: [EMAIL PROTECTED] Subject: [leaf-user] pcmcia_orinoco.lrp Does anybody know if the orinoco drivers included in pcmcia_orinoco.lrp include any of the many patches listed by Jean Tourrilhes at http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/Orinoco.html#links. I am particularly interested in the HermesAP (http://hunz.org/hermesap_.html) and fast keying (http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/orinoco.fastkey.di ff) patches. I have not found anything about these patches in either the archives of this list or anywhere else. I also can't find the source in the CVS repository for this package so I can't go and check for myself either. Jacques Nilo also seems to be away or busy since mail to him is going unanswered. Thanks in advance for your help. -- Muiz Motani Intelligent Distribution 72-6800 Lynas Lane, Richmond, B.C. V7C 5E2 email: [EMAIL PROTECTED] phone: +1 604 448 9293 fax: +1 604 448 9296 --- This SF.net email is sponsored by: The SF.net Donation Program. Do you like what SourceForge.net is doing for the Open Source Community? Make a contribution, and help us add new features and functionality. Click here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html -- Muiz Motani Intelligent Distribution 72-6800 Lynas Lane, Richmond, B.C. V7C 5E2 email: [EMAIL PROTECTED] phone: +1 604 448 9293 fax: +1 604 448 9296 --- This SF.net email is sponsored by: The SF.net Donation Program. Do you like what SourceForge.net is doing for the Open Source Community? Make a contribution, and help us add new features and functionality. Click here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: The SF.net Donation Program. Do you like what SourceForge.net is doing for the Open Source Community? Make a contribution, and help us add new features and functionality. Click here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] pcmcia_orinoco.lrp
I have an implementation of a Bering Variant at www.me2000.net including hermes ap support. you can get the pcmcia.lrp from the compact flash zip file. You'll also need the kernel, and the hermesap.lrp, and the .hfw firmware files... Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Muiz Motani Sent: 26 October 2003 07:32 To: [EMAIL PROTECTED] Subject: [leaf-user] pcmcia_orinoco.lrp Does anybody know if the orinoco drivers included in pcmcia_orinoco.lrp include any of the many patches listed by Jean Tourrilhes at http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/Orinoco.html#links. I am particularly interested in the HermesAP (http://hunz.org/hermesap_.html) and fast keying (http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/orinoco.fastkey.di ff) patches. I have not found anything about these patches in either the archives of this list or anywhere else. I also can't find the source in the CVS repository for this package so I can't go and check for myself either. Jacques Nilo also seems to be away or busy since mail to him is going unanswered. Thanks in advance for your help. -- Muiz Motani Intelligent Distribution 72-6800 Lynas Lane, Richmond, B.C. V7C 5E2 email: [EMAIL PROTECTED] phone: +1 604 448 9293 fax: +1 604 448 9296 --- This SF.net email is sponsored by: The SF.net Donation Program. Do you like what SourceForge.net is doing for the Open Source Community? Make a contribution, and help us add new features and functionality. Click here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: The SF.net Donation Program. Do you like what SourceForge.net is doing for the Open Source Community? Make a contribution, and help us add new features and functionality. Click here: http://sourceforge.net/donate/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] upgrade sshd w/o reboot ?
Strange, able to install latest sshd in running system ok using lrpkg -i sshd.lrp w/o reboot and it used new sshd version for new connections. Also copied latest sshd.lrp to boot floppy. When reboot occurred (due to power outage) could not do ssh connection (connection RST in response to the first SYN). Connect was attempted remotely from behind a corporate firewall, possibly via a transparent proxy. (I am not really sure how I connect but use the command line ssh -l myuid my-lrp-server-actual-ipaddr which works with old sshd version.) The sshd.lrp does not contain any keys by default. if you copied this to floppy without including any keys, then sshd would not be able to start on next reboot, because no keys present. You need to get an sshd.lrp onto the box that does contain keys. Cheers, Dave. --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] 2xNIC Bering won't route? Help!
Does the D-Link have it's gateway set up to be 192.168.51.1? Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of James Neave Sent: 09 October 2003 10:14 To: [EMAIL PROTECTED] Subject: [leaf-user] 2xNIC Bering won't route? Help! Hi Everybody, This ones got my hair falling out. A very simple task, which I've done before. 1 Bering box, 2 NICs (3c905C and rtl8139) This box has no external connection (yet, still no ADSL), just needs to route between the two eth adaptors A D-Link WAP (192.168.51.2) is plugged straight into eth1 (192.168.51.1) A WinXP (192.168.50.30) box is crossed over into eth0 (192.168.50.1) Hosts.allow contains ALL: 192.168.50.0/255.255.255.0 ALL: 192.168.51.0/255.255.255.0 Two zones in shorewall, dave and alex (+fw). Dave is bound to eth1, alex to eth0. Policy is: Dave alexACCEPT Alex daveACCEPT Fwall ACCEPT All fw ACCEPT The routes are correctly set, all ping requests flash a light on a NIC somewhere. Fw can ping it's interfaces, the WAP and the XP box. The XP box can ping both interfaces of the FW box. A wireless client can ping the WAP and the FW box. But that's it. The XP box cannot see the WAP or any wireless clients. I could've sworn this worked on Sunday... I'm not doing any NAT, maybe I have to turn NAT off in shorewall config? Somebody please help, this is driving me nuts... Thanks again, James. --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/l eaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] 2xNIC Bering won't route? Help!
Route on the XP box should be Route add 192.168.51.0 MASK 255.255.255.0 192.168.50.1 Cheers, Dave. -Original Message- From: James Neave [mailto:[EMAIL PROTECTED] Sent: 09 October 2003 10:51 To: Dave Hunt; [EMAIL PROTECTED] Subject: RE: [leaf-user] 2xNIC Bering won't route? Help! Hi, Yes, here are the settings for all the hosts. The WAP IP: 192.168.51.2 MASK: 255.255.255.0 GATE: 192.168.51.1 DNS: 192.168.51.1 (redundant, no DNS yet) The XP Box IP: 192.168.50.30 MASK: 255.255.255.0 GATE: None DNS: None ON the XP Box: Route add 192.168.51.0 MASK 255.255.255.0 192.168.50.30 Interfaces file on the bering box: (may not be precise syntax, but the values are correct) Auto eth0 Eth0 static Address 192.168.50.1 Masklen 24 Broadcast 192.168.50.255 (no gateway tag) auto eth1 eth1 static address 192.168.51.1 masklen 24 broadcast 192.168.51.255 (no gateway tag) ip route show just has the two networks with their respective adaptors. Thanks, James. -Original Message- From: Dave Hunt [mailto:[EMAIL PROTECTED] Sent: 09 October 2003 10:37 To: James Neave; [EMAIL PROTECTED] Subject: RE: [leaf-user] 2xNIC Bering won't route? Help! Does the D-Link have it's gateway set up to be 192.168.51.1? Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of James Neave Sent: 09 October 2003 10:14 To: [EMAIL PROTECTED] Subject: [leaf-user] 2xNIC Bering won't route? Help! Hi Everybody, This ones got my hair falling out. A very simple task, which I've done before. 1 Bering box, 2 NICs (3c905C and rtl8139) This box has no external connection (yet, still no ADSL), just needs to route between the two eth adaptors A D-Link WAP (192.168.51.2) is plugged straight into eth1 (192.168.51.1) A WinXP (192.168.50.30) box is crossed over into eth0 (192.168.50.1) Hosts.allow contains ALL: 192.168.50.0/255.255.255.0 ALL: 192.168.51.0/255.255.255.0 Two zones in shorewall, dave and alex (+fw). Dave is bound to eth1, alex to eth0. Policy is: DavealexACCEPT AlexdaveACCEPT Fw all ACCEPT All fw ACCEPT The routes are correctly set, all ping requests flash a light on a NIC somewhere. Fw can ping it's interfaces, the WAP and the XP box. The XP box can ping both interfaces of the FW box. A wireless client can ping the WAP and the FW box. But that's it. The XP box cannot see the WAP or any wireless clients. I could've sworn this worked on Sunday... I'm not doing any NAT, maybe I have to turn NAT off in shorewall config? Somebody please help, this is driving me nuts... Thanks again, James. --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/l eaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Atheros Drivers
Hi all, Has anyone had any success with the drivers contained in atheros.lrp/atheros.cfs on the wisp-dist website with Bering 1.2? I've got as far as the drivers loading, but the Proxim 802.11a/b ComboCard is not found upon loading ath_pci.o. http://www.hazard.maks.net/wisp-dist/downloads/packages/ Cheers, Dave. --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Kernel panic
Either 1. recompile the kernel to include the ide drivers OR 2. include the ide modules in the initrd.lrp package, and have them loaded before you load the other packages. Basically, the ide drivers need to be loaded BEFORE the package list is loaded. (I dont' have a CF Bering box handy, so I can't give you the detail I'd like) Cheers. Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Homer Parker Sent: 08 September 2003 23:17 To: [EMAIL PROTECTED] Subject: [leaf-user] Kernel panic Ok... I've done my normal, and it isn't wanting to work :( Created a Bering 1.2 floppy, booted from it, copied the files to a CF, edited syslinux.cfg and changed boot and package_path to /dev/hda1, syslinux the CF, and I get: LILO 22.3.4 Loading Linux. BIOS data check successful Uncompressing Linux... Ok, booting the kernel. Kernel Panic: VFS: Unable to mount root fs on 03:01 This is an old P133, Intel chipset, 16MB RAM... It boots fine from the floppy.. Any ideas? --- Homer Parker /\ ASCII Ribbon Campaign \ / No HTML/RTF in email http://www.homershut.net x No Word docs in email telnet://bbs.homershut.net/ \ Respect for open standards Bill Gates reports on security progress made and the challenges ahead. -- Microsoft's Homepage, on the day an SQL Server bug crippled large sections of the Internet. --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Bering 1.2 dhcpd doesn't start with wlan/hostap or other too late interface up
Try editing /etc/init.d/dhcpd and change the RCDLINKS definition. Make sure the 'S' numbers on this line are greater than those defined in the /etc/init.d/pcmcia file. If you still have problems, you might need to put in a sleep at the start of /etc/init.d/dhcpd, to allow cardmgr time to initialise the cards before dhcpd starts. Cheers, Dave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Francois BERGERET Sent: 24 August 2003 21:02 To: 'LEAF-USER' Subject: [leaf-user] Bering 1.2 dhcpd doesn't start with wlan/hostap or other too late interface up Hi the list, I am using Soekris embeded PC with Bering V1.2 and hostap drivinf two PCMCIA prism Intersil cards. I want DHCPD for ETH1, WLAN0, and WLAN1 subnets. My declarations are ok. But, DHCPD start too soon before than hostap and the two attached wlan interfaces are ok, scratching dhcpd which stop... See this following log extract : Aug 24 19:46:01 firewall dhcpd: Internet Software Consortium DHCP Server 2.0pl5 Aug 24 19:46:01 firewall dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium. Aug 24 19:46:01 firewall dhcpd: All rights reserved. Aug 24 19:46:01 firewall dhcpd: Aug 24 19:46:01 firewall dhcpd: Please contribute if you find this software useful. Aug 24 19:46:01 firewall dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html Aug 24 19:46:01 firewall dhcpd: Aug 24 19:46:01 firewall dhcpd: No subnet declaration for wlan1 (0.0.0.0). Aug 24 19:46:01 firewall dhcpd: Please write a subnet declaration in your dhcpd.conf file for the Aug 24 19:46:01 firewall dhcpd: network segment to which interface wlan1 is attached. Aug 24 19:46:01 firewall dhcpd: exiting. If I launch again dhcpd by hand as : dhcpd eth1 wlan0 wlan 1 All is magicaly ok : Internet Software Consortium DHCP Server 2.0pl5 Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium. All rights reserved. Please contribute if you find this software useful. For info, please visit http://www.isc.org/dhcp-contrib.html ipsec0: unknown hardware address type 512 Listening on LPF/wlan1/00:60:b3:76:c7:bd/192.168.2.0 Sending on LPF/wlan1/00:60:b3:76:c7:bd/192.168.2.0 Listening on LPF/wlan0/00:60:b3:72:db:ef/44.151.177.64 Sending on LPF/wlan0/00:60:b3:72:db:ef/44.151.177.64 Listening on LPF/eth1/00:00:24:c0:e9:6d/192.168.1.0 Sending on LPF/eth1/00:00:24:c0:e9:6d/192.168.1.0 Sending on Socket/fallback/fallback-net I have tempted to add this manual command in the Shorewall Start (21) command file and saving it. Sure, if I input :shorewall restart this is working, but, nothing is realy saved in any file and at Bering shutdown this little modification is lost... Where and how can I change something to force dhcpd to start after shorewall is ready ? Help me please... TIA and Best Regards, Francois BERGERET, France. --- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here:http://www.vmware.com/wl/offer/358/0 -- -- leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html --- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here:http://www.vmware.com/wl/offer/358/0 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
RE: [leaf-user] Bering floppy basics
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Greg Playle Sent: 23 August 2003 15:13 And, on the gripping hand, I'll eventually move the project to a CD. I've a 4Mb Bering distro put together for wireless (HermesAP, SNMP etc) and I use Compact Flash in a CF/IDE adaptor. All solid state, no moving parts. The other good thing is that a 32Mb CF card AND adapter can be got for about $26 for the pair. £13 for each. FAST boot as well ;) Look up www.pcengines.ch. Cheers, Dave. --- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here:http://www.vmware.com/wl/offer/358/0 leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] setting up eth1 on Bering 1.0-rc3
I'm running Leaf Bering 1.0-rc3, on several Intel machines. The main purpose is to run [EMAIL PROTECTED] from harddiskless Linux workstations connected to my in-home network. The secondary purpose is to learn about networking, firewalls, Linux, etc. I'm out of switch ports, but I have extra network cards laying around. I want to install 2nd NIC cards in several machines to daisy chain them with cross-over cables (router to computer-A to computer-B to computer-C) instead of buying a bigger router/switch or adding another switch or hub. I'm running behind a router anyway, and these machines only run [EMAIL PROTECTED] so I'm not too worried about security. I installed a second NIC in one machine, and installed the module for it, and I see the module initialize during bootup. But I don't know how to activate it as eth1 or how to setup pump to talk to it. The router is doing the DHCP, so I can let the router assign an IP number to eth1 and any other machines downstream of eth1. I'm also using this as a learning tool to understand firewalls, routing, NAT and Linux. I've checked the docs at: http://leaf.sourceforge.net/devel/jnilo/binstall.html and http://leaf.sourceforge.net/devel/jnilo/busers.html But the pump instructions are not idiot proof enough for me. I've meddled with the following files, but to no avail. Can someone point to more novice-friendly docs for this? Or maybe even give me some hints on what to add to the following config files? Thanks. -Dave A. - My network interfaces has this: # /etc/network/interfaces -- configuration file for LEAF network auto lo iface lo inet loopback auto eth0 iface eth0 inet dhcp My Pump configuration file (/etc/pump.conf ) has this: retries 3 script /etc/pump.shorewall device eth0 { } My Pump default config file (/etc/default/pump) has this: IFACES=eth0 My Pump init script (/etc/init.d/pump) is blank. -- --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] initializing eth0 and eth1
How does one initialize both eth0 *and* eth1 ? The docs are unclear. I have a DHCP server (D-link 704 router/switch) upstream of eth0, and I want the computer(s) downstream on eth1 to use the same DHCP server. So far, the computer in question is connecting to the DHCP server and to the internet just fine. I want to connect another computer to this one, via the eth1 and a crossover cable. The module for eth1 is loading fine during bootup. But I can't seem to initialize it fully. --- My network interfaces has this: # /etc/network/interfaces -- configuration file for LEAF network auto lo iface lo inet loopback auto eth0 iface eth0 inet dhcp My Pump configuration file (/etc/pump.conf ) has this: retries 3 script /etc/pump.shorewall device eth0 { } My Pump default config file (/etc/default/pump) has this: IFACES=eth0 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The best thread debugger on the planet. Designed with thread debugging features you've never dreamed of, try TotalView 6 free at www.etnus.com. leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] PPP unreliable. Diagnosis help
Hello, I am a newbie LEAF user, and I am afraid that this message might be somewhat off topic, but... I have installed the Bering LEAF, and it seems to be working well except that my PPP connection is slow and unreliable. I suspect that this is nothing to do with LEAF, but I do need to diagnose just what is causing the problem. It could be my ISP, my phone lines, my modem or my configuration. A previous linux system, using the same ISP and modem has worked well in the past, however I had started to suffer from similar problems before installing LEAF, which is why I decided to try a separate firewall. My theory was that I was suffering from my own configuration errors, and that I could isolate the problem by minimising the system. I no longer have access to my old setup, although I did use some settings from the old setup to help me install PPP in my LEAF. I would welcome any suggestions about how to debug, isolate and diagnose the problem. I am using a 56k serial modem over ordinary phone line. Communication is slow, and large web pages, or large (usually spam) email messages have a tendency to time out or lose their socket. The machine is at home, and I am at work, so requests for log files etc. will require some time. Dave -- Dave Whiteley [EMAIL PROTECTED] Phone +44 (0)113 343 2059 School of Electronic and Electrical Engineering The University of Leeds. Leeds, LS2 9JT, UK --- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] VIA LAN driver
Which driver is correct for the VIA VT6103 10/100 chip? Using Bering 2.4.18 kernel. Anyone using it? FYI, I may be the last to hear about this, but in case there are others: VIA, a motherboard manufacturer, is pushing a new MB standard called mini-ITX. It is a 6.5 inch square Motherboard. Their product comes complete with a fanless, low-power VIA Eden processor @533 MHz. The only things required are inexpensive DIMM memory, floppy, and a case/power supply. I've heard that the board itself can be had for $87! It could be a nice package for a Bering system. thanks, dave --- This SF.net email is sponsored by:Crypto Challenge is now open! Get cracking and register here for some mind boggling fun and the chance of winning an Apple iPod: http://ads.sourceforge.net/cgi-bin/redirect.pl?thaw0031en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] WISP on soekris help
I tried askig this on the WISP list, but got no response (maybe not many people on the list?). Anyway, thanks for any help in advance. Dave Hey folks, I'm having a large amount of trouble getting my soekris board as an access points. Well, it acts as an access point (I'm using a Prism 2.5 D-Link Air 650 PCMCIA card), that is I can connect to the ap as a client, I get a good signal, but I can't surf. ARG! Any help would be great, thanks in advance. Dave --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Re: [LRP] How to add Cron on bering RC3
On Friday 15 November 2002 5:08, Thitiporn Pornpirunrak wrote: Hi all I would like to add cron on bering RC3. I add my task in /etc/cron.d/multicron. I found that it doesn't work why. This is my multicron file. It's better practise to create a new file from your script. */10* * * * rootmy_script Did you restart cron? `svi cron restart` -- The time is now 22:48 (Totalitarian) - http://www.ccops.org/ --- This sf.net email is sponsored by: To learn the basics of securing your web site with SSL, click here to get a FREE TRIAL of a Thawte Server Certificate: http://www.gothawte.com/rd524.html leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Problems getting an ip address with pump and dhclient
2. If you connect the LEAF host directly (that is, via a UTP-based NIC and a suitable cable ... I don't know if the cable modem requires a normal or crossover cable) to the cable modem, is it able to get a DHCP lease from the ISP? Ray, Thanks for the help. This test did in fact work, so we had a problem with the wireless stuff and the leaf box. We've decided to stick with the long cable. regards Dave --- This sf.net email is sponsored by: See the NEW Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0001en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Problems getting an ip address with pump and dhclient
Thanks for the reply. - Original Message - From: Ray Olszewski [EMAIL PROTECTED] Does seems to work fine mean that these two different PCs are able to get DHCP leases from your ISP? Or do you have a lesser standard for work fine? It means exactly what is says - that the two different PCs are able to obtain DHCP leases with no error messages or apparent problems. If the second, there are a couple of other things to try (aside from the test I imply in the first, if you can do it). 1. If you connect the LEAF host, does it too work fine ... that is, do successfully whatever the 2 PCs do successfully in your tests? No it doesn't work succesfully - it fails as shown in the logs. 2. If you connect the LEAF host directly (that is, via a UTP-based NIC and a suitable cable ... I don't know if the cable modem requires a normal or crossover cable) to the cable modem, is it able to get a DHCP lease from the ISP? This is on my list of things to try. Testing with two other PCs was an 'attempt' to show that the wireless setup is working, but of course I do need to get it connected directly to try that. I haven't used DHCP at all before, and the reason I posted was in case I was doing something obviously wrong with pump/dhclient. The other thing to check is whether whichever firewall package you are using is set to allow DHCP replies, particularly ones that come from non-routable IP addresses (many ISPs use 10.b.c.d addresses for DHCP servers), to enter your router. Does your firewall package log any DROPs associated with DHCP responses? It's Bering. No, there are no drops at all. I've tested this with shorewall stopped as well. regards Dave --- This sf.net email is sponsored by: See the NEW Palm Tungsten T handheld. Power Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0001en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Problems getting an ip address with pump and dhclient
Hi all, I'm having some problems with dhcp setup. I have a Bering firewall, which works fine as far as I can test it (rc4). I'm trying to get an ip address from a cable provider (Blueyonder, UK). I'm using a two wireless access points in bridge mode to connect the LEAF box with the cable modem. I've tested this wrireless bridge with two different PCs, and it seems to work fine. I've registered the LEAF external nic mac address with Blueyonder, but I can't get any DHCP server response. I tried pump, then dhclient. When using pump, I thought maybe the mac address wasn't being sent, as the hw_address field was blank in the log. But, dhclient seems to send it fine (maybe they both do, and my problem lies elsewhere) The logs from pump and dhclient are below. Many thanks for any help. regards Dave Nov 4 15:00:37 firewall pumpd[2279]: PUMP: sending discover Nov 4 15:00:37 firewall pumpd[2279]: breq: opcode: 1 Nov 4 15:00:37 firewall pumpd[2279]: breq: hw: 1 Nov 4 15:00:37 firewall pumpd[2279]: breq: hwlength: 6 Nov 4 15:00:37 firewall pumpd[2279]: breq: hopcount: 0 Nov 4 15:00:37 firewall pumpd[2279]: breq: xid: 0x19df7856 Nov 4 15:00:37 firewall pumpd[2279]: breq: secs: 0 Nov 4 15:00:37 firewall pumpd[2279]: breq: flags: 0x Nov 4 15:00:37 firewall pumpd[2279]: breq: ciaddr: 0.0.0.0 Nov 4 15:00:37 firewall pumpd[2279]: breq: yiaddr: 0.0.0.0 Nov 4 15:00:37 firewall pumpd[2279]: breq: server_ip: 0.0.0.0 Nov 4 15:00:37 firewall pumpd[2279]: breq: bootp_gw_ip: 0.0.0.0 Nov 4 15:00:37 firewall pumpd[2279]: breq: hwaddr: Nov 4 15:00:37 firewall pumpd[2279]: breq: servername: Nov 4 15:00:37 firewall pumpd[2279]: breq: bootfile: Nov 4 15:00:37 firewall pumpd[2279]: breq: vendor: 0x63 0x53 0x82 0x63 Nov 4 15:00:37 firewall pumpd[2279]: breq: vendor: 53 1 0x01 Nov 4 15:00:37 firewall pumpd[2279]: breq: vendor: 0xff Nov 4 15:00:57 firewall pumpd[2279]: reject: xid: 0x19df7856 -- 0x64a663f2 Nov 4 15:00:57 firewall pumpd[2279]: PUMP: sending discover Nov 4 15:00:57 firewall pumpd[2279]: breq: opcode: 1 Nov 4 15:00:57 firewall pumpd[2279]: breq: hw: 1 Nov 4 15:00:57 firewall pumpd[2279]: breq: hwlength: 6 Nov 4 15:00:57 firewall pumpd[2279]: breq: hopcount: 0 Nov 4 15:00:57 firewall pumpd[2279]: breq: xid: 0x19df7842 Nov 4 15:00:57 firewall pumpd[2279]: breq: secs: 0 Nov 4 15:00:57 firewall pumpd[2279]: breq: flags: 0x Nov 4 15:00:57 firewall pumpd[2279]: breq: ciaddr: 0.0.0.0 Nov 4 15:00:57 firewall pumpd[2279]: breq: yiaddr: 0.0.0.0 Nov 4 15:00:57 firewall pumpd[2279]: breq: server_ip: 0.0.0.0 Nov 4 15:00:57 firewall pumpd[2279]: breq: bootp_gw_ip: 0.0.0.0 Nov 4 15:00:57 firewall pumpd[2279]: breq: hwaddr: Nov 4 15:00:57 firewall pumpd[2279]: breq: servername: Nov 4 15:00:57 firewall pumpd[2279]: breq: bootfile: Nov 4 15:00:57 firewall pumpd[2279]: breq: vendor: 0x63 0x53 0x82 0x63 Nov 4 15:00:57 firewall pumpd[2279]: breq: vendor: 53 1 0x01 Nov 4 15:00:57 firewall pumpd[2279]: breq: vendor: 0xff Nov 4 15:01:09 firewall pumpd[2279]: reject: xid: 0x19df7842 -- 0x30cbf0de Nov 4 16:15:02 firewall dhclient: No working leases in persistent database - sleeping. Nov 4 16:16:25 firewall dhclient: Internet Software Consortium DHCP Client 2.0pl5 Nov 4 16:16:25 firewall dhclient: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium. Nov 4 16:16:25 firewall dhclient: All rights reserved. Nov 4 16:16:25 firewall dhclient: Nov 4 16:16:25 firewall dhclient: Please contribute if you find this software useful. Nov 4 16:16:25 firewall dhclient: For info, please visit http://www.isc.org/dhcp-contrib.html Nov 4 16:16:25 firewall dhclient: Nov 4 16:16:26 firewall dhclient: Listening on LPF/eth0/00:c0:df:e6:9f:41 Nov 4 16:16:26 firewall dhclient: Sending on LPF/eth0/00:c0:df:e6:9f:41 Nov 4 16:16:26 firewall dhclient: Sending on Socket/fallback/fallback-net Nov 4 16:16:26 firewall dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 8 Nov 4 16:16:34 firewall dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 8 Nov 4 16:16:42 firewall dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 14 Nov 4 16:16:56 firewall dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 15 Nov 4 16:17:11 firewall dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 15 Nov 4 16:17:26 firewall dhclient: No DHCPOFFERS received. --- This SF.net email is sponsored by: ApacheCon, November 18-21 in Las Vegas (supported by COMDEX), the only Apache event to be fully supported by the ASF. http://www.apachecon.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Driver for usb wireless Atmel AT76C503A
I know it's a bit of a long shot, but has anyone compiled this driver for Bering? (http://atmelwlandriver.sourceforge.net/news.html) I do have a dev environment at home, but I can't get to it and I need this driver asap. many thanks in advance if anyone can help. regards Dave --- This sf.net email is sponsored by: Influence the future of Java(TM) technology. Join the Java Community Process(SM) (JCP(SM)) program now. http://ads.sourceforge.net/cgi-bin/redirect.pl?sunm0004en leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] kernel configuration
Hello all, Does anyone know the configuration of the kernel from the Bering distribution; or, where I can find it? thanks, dave --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] start app
I'm having trouble figuring out how to add a script (which starts my own app) upon boot after the system and packages are in place. In a standard LINUX dist, I would probably put the script in a rc.local directory. What do I do on LEAF? I noticed that the rcx.d links are done dynamically on LEAF. This is where I would consider building a script (/etc/init.d), but how do I get it to execute on boot? I'm using the Bering LEAF distribution. I also noticed that in /etc/default there is a rcS file that speaks to a DYNARCD=yes instruction. If I say no to this, what happens? Could I then add a startup init.d script. If so, will / directories and all packages be installed by that time? thanks in advance, dave --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] backup problem
Using the LEAF Bering distribution with a rather large root.lrp (I updated he lib). when I back up root or initrd, the .lrp file has an extra / in front of all file entries - making reboot a problem! Other lrp backups are fine. Any one seen this problem? thanks, dave --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bewan drivers
Thanks Jacques, I'll give this a try - might take a while as I'm currently struggling on dial up and a very slow webmail from my isp. A couple of questions though - over the last day I've compiled on a stock redhat 7.3 (2.4.18) It compiled first time, no problems. Is the only difference between this and what you suggest the Bering config file? Or does compiling a bering kernel previously in the same source tree really make a difference to what my kernel modules pick up. If I did get the same problem (do_BUG not found) what options are there for fixing this in Bering (e.g. I could do a depmod on a standard linux box) I had a good mess around with compile and link options to see if I could affect this, but no luck. thanks Dave [EMAIL PROTECTED] wrote: Le Samedi 21 Septembre 2002 22:21, [EMAIL PROTECTED] a crit : Hi, I am upgrading to the latest version of the bewan adsl pci card drivers (http://www.bewan.com/bewan/drivers/bapst-0.3.4.tar.gz) I have setup up the debian/slink virtual uml and compiled the driver, but when I try and load the module I get # insmod unicorn_atm Using /lib/modules/unicorn_atm.o insmod: unresolved symbol do_BUG Dave: You should not use slink to compile kernel related stuff In Bering kernel and modules are compiled with gcc 2.95 from debian Potatoe up to rc3 and from debian Woody now. But you can use a more recent compiler if you wish (the 2.95 leads to the smaller footprint though) My advice would be for you to compile your own Bering kernelon whatever Linux developement box you have. You do not need to apply Bering kernel patches if you not not need them (but **DO** use the Bering kernel config file) and then compile bewan pci stuff out of your kernel tree In the process you will be able to get rid of modules.lrp :-) Jacques --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Bewan drivers
Hi, I am upgrading to the latest version of the bewan adsl pci card drivers (http://www.bewan.com/bewan/drivers/bapst-0.3.4.tar.gz) I have setup up the debian/slink virtual uml and compiled the driver, but when I try and load the module I get # insmod unicorn_atm Using /lib/modules/unicorn_atm.o insmod: unresolved symbol do_BUG I did have some problems getting the compile to work, but eventually got it compiled against my redhat 2.4.18 kernel (it's the same as a deb 2.4.18 kernel, isn't it?) The last drivers I got, Jacques kindly compiled for me, but I was trying to cut down on his workload this time ;-) Does anyone have any ideas, or is there maybe something that needs to be added to the leaf/uml instructions specifically for compiling drivers for Bering. Do you just need the uml kernel running, root fs, uml utilities, kernel source and driver code. Thanks for any help. Dave --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Futile attempts to boot from CF-IDE
For what it's worth, I tried doing this a couple of months back. It took me ages to get syslinux on my DiskOnModule (solid state ide storage). When I finally got it on, it wouldn't boot at all. I then got really busy at work, and left it with what works, which is a sort of half way solution which I'm happy with until I get time to sort it out properly (and of course, it just works at the moment so I'm in no hurry) So I currently have the initial boot stuff on one floppy (incl ide object modules) and my syslinux.cfg points to the ide drive for all packages. Boot time is as much as loading linux from floppy, then all the packages go very quickly. Backup of packages is nice and fast, and I can fit plenty of packages on the ide drive. This is also a system that doesn't require changing floppies. I know it's not totally aesthetically pleasing, but you should be able to achieve at least this. cheers Dave - Original Message - From: Rob Fegley [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: Darren Hammond [EMAIL PROTECTED] Sent: Wednesday, July 03, 2002 3:53 AM Subject: RE: [leaf-user] Futile attempts to boot from CF-IDE I've noticed that the suggestion is always to format with a DOS boot disk, or alternately to use a Linux boot disk and format with -t msdos operative. I think that I noticed that this format, even once booted and mounted, only observes the legacy DOS 8.3 filename construct. Can anyone validate this belief? If so, that sucks! And, why would it not be desirable to format and, subsequently, mount this CF partition(s) as ext2 or ext3 to see all of the benefits of those format types? I realize that by using a 128MB CF, I've somewhat strayed from the spirit of LEAF and LRP, but I'm hoping to achieve an almost completely solid-state (no moving parts, except PS and CPU fans; without HDs and other heat generators, will case fans really be necessary?) gateway appliance. To do that, I need more .lrp packages to be available than will fit on any floppy. However, I don't need all of the bloat that comes with the more mainstream distros of Linux/BSD/Sun. I really like what LEAF has allowed me to do thus far, having used both the Eigerstein and Bering variants, but my needs would put me at about 3 floppies worth of .lrp packages, which will cause me to need to be available any time the box re-boots, to have 3 floppy drives, or to go to CD, ZIP, or JAZ. At the point that I crossed over 2 floppies worth of packages is when I wanted to go CF, never mind it's performance smokes any physical medium. I'm more looking for comments at this point than for answers to any specific questions! Any contribution is appreciated! Rob Fegley -Original Message- From: Darren Hammond [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 02, 2002 12:25 PM To: [EMAIL PROTECTED] Subject: Re: [leaf-user] Futile attempts to boot from CF-IDE Rob I think someone else already mentioned it, but the latest version of syslinux I can get to work on my system (64MB compactflash on a 33MHz 486 / 16MB RAM) is 1.48. If I use anything after then, I get the Unable to lock drive for exclusive access message as well. I always assumed that it was to do with the age of my BIOS. The other thing that happened to me was I used linux fdisk to create two partitions and forgot to make one active. I also used fdisk /mbr from a dos boot disk to clear the master boot record before using lock c: syslinux -s c: The box I was using had been running smoothwall prior to this. Also, there's two references to hda1 in syslinux.cfg on the same line, right? boot=/dev/hda1:msdos PKGPATH=/dev/hda1. Just checking - I suspect you've done both. Darren On Tuesday 02 Jul 2002 3:37 pm, Rob Fegley wrote: Yes, I forgot to mention that I did this. -Original Message- From: Manfred Schuler [mailto:[EMAIL PROTECTED]] Sent: Monday, July 01, 2002 11:39 PM To: Rob Fegley Cc: [EMAIL PROTECTED] Subject: Re: [leaf-user] Futile attempts to boot from CF-IDE Did you change the boot=/dev/fd0u1680:msdos in syslinux.cfg to boot=/dev/hda1:msdos ? Manfred Rob Fegley schrieb: Due to a link I saw on the LEAF site at SF to PC Engines, I am using one of the CF-IDE adapters with a 128 MB CF. I have verified that I can FDISK, FORMAT, and boot from it under WIN 98 (DOS). However, now that I want to use it as the boot medium for my LEAF router, it seems to be determined to keep me from doing so. I am running the Bering-1.0-RC3-1680 image. I have the box running successfully off of only a floppy. I have tried to do the whole trick under WIN 98 command-line to do a FDISK /MBR, FDISK, FORMAT C:, LOCK C:, SYSLINUX -S C:. Additionally, I am trying to use the newest Syslinux, ver 1.75. I have tried using and not using LOCK, changing the order of most of the preceding 5 tasks, and running Syslinux with and without the -s directive. However, in every iteration, I kept getting the message ERROR 440D: Unable to lock
Re: [leaf-user] Futile attempts to boot from CF-IDE
reason. DOS is used is so that it is compatible with floppies. It is useful to keep backups of your lrps on floppy in case somehow the flash gets screwed up. I find it quick and easy to scp the whole ide drive to an internal server after each time I change something. Quick and easy, and if you have CF you really should have ssh ;-) cheers Dave --- This sf.net email is sponsored by:ThinkGeek No, I will not fix your computer. http://thinkgeek.com/sf leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Need help with configuring /etc/network.conf
Hello, i have bad question. I don't know how save and finish configuring files in Oxygen in first time running. I found in some help (about editor e3) that i can save and exit by ^KX, bud it isn't work. I am really sick, becouse i have tried configure it several times, but i don't know how to save it and then exit (continue wtih next file). CAN ANYBODY HELP ME!! P L E A S E ! ! ! ! ! Thanx Dave, -dd7- --- Odchoz zprva neobsahuje viry. Zkontrolovno antivirovm systmem AVG (http://www.grisoft.cz). Verze: 6.0.363 / Virov bze: 201 - datum vydn: 21.5.2002 ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] Bering LEAF from hard disk
Have a look at the documentation http://leaf.sourceforge.net/devel/jnilo/bubooting.html#AEN969 You don't need a different kernel, just ide modules loaded. regards Dave - Original Message - From: Shawn R [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, May 17, 2002 12:30 AM Subject: [leaf-user] Bering LEAF from hard disk Hi, I'm trying to configure Bering LEAF to boot off a hard drive so I have more room (even a 1680K floppy isn't big enough). Do you know where I can get a precompiled 2.4.18 kernel with IDE support that I can use with it? I've tried compiling my own but every time I boot, I get: FAT: bogus logical sector size 0 Kernel panic: VFS: Unable to mount root fs on 01:00 I can send my config file if that will help. Thanks! --Shawn ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Permanent PPP with ADSL/PPPoATM/Bering
OK, the issue now is how to keep your conenction up as permanently as possible. Occasionally my ADSL line will go down, and ppp will spot this and exit. I've looked through the various ppp options, and there seems to be scope for having ppp stay up and try reconnects every now and then (this is CHAP auth) This doesn't seem to be accomplished by the persist option, which I guess is at a different level (i.e. line up but connection down) I suppose ppp will need to re-chap when the line comes back up too. Various options look like they might be likely to succeed, but rather than just trial and error all of them, I was wondering whether anyone has done this and knows for sure what will work. Failing that, here is a solution from the ppp howto If you are fortunate enough to have a semi permanent connection to the net and would like to have your machine automatically redial your PPP connection if it is lost then here is a simple trick to do so. Configure PPP such that it can be started by the root user by issuing the command: # pppd Be sure that you have the `-detach' option configured in your /etc/ppp/options file. Then, insert the following line into your /etc/inittab file, down with the getty definitions: pd:23:respawn:/usr/sbin/pppd This will cause the init program to spawn and monitor the pppd program and automatically restart it if it dies. This is a nice solution, but for Bering, if I wanted to do this, would it be a case of remove the auto from the interfaces file, and move the dsl-provider peers name into the options file? Many thanks Dave ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Booting from DOM (was: Using syslinux to initialise an IDE disk.)
Thanks for all the replies. One of the syslinuxes worked (the one on Dachstein utils at http://www.dublerfamily.com/leaf/) I now have an almost working solution. Syslinux is on (I think) I copied all the lrps etc. My PC won't boot from this disk (whatever I set as the boot order in the BIOS) It just says [From the BIOS] Disk 0, Secure DiskOnModule Floppy 0 Then nothing - no beeps, no output, just hangs. I edited the syslinux.cfg on my floppy, to get all packages and root from /dev/hda1 and that works fine, so I almost have the solution - i.e. I have a one floppy boot instead of two, and half of the boot process is very fast, but I'd like the whole boot to go from /dev/hda1. I'm not sure where to go next. Does anyone know how I can check /dev/hda1 to make sure syslinux is on it properly (there was used space, and ldlinux.sys straight after the syslinux install) The partition is marked bootable and active. Could I convert /dev/hda1 into a boot floppy in some way to test whether it is actually bootable? Any ideas about whether this might be a DOM specific issue? (BTW, it's an SDOM, but currently configured without security) Many thanks Dave ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Using syslinux to initialise an IDE disk.
I am installing a diskonmodule in my LEAF Bering firewall. All is going well, and I have Bering recognising the disk through the ide modules, however, I'm having real difficulty getting syslinux on. I've tried a dos boot disk with syslinux 1.72. That wouldn't work, as even after 'lock c:' I'm still getting 'cannot get exclusive lock on disk' (with no option to ignore) I tried three different Linux rescue disks (the system has no CD-ROM), including Bering itself, with the syslinux.lrp package (I think from Oxygen) All gave the same result - segmentation fault (maybe to do with glib versions I guess) Should I maybe use LILO? (Any tips about what should go in the lilo.conf for Bering?) Or does someone know of a syslinux version or setup that will work for me? Many thanks Dave ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[leaf-user] Re: Using syslinux to initialise an IDE disk.
Thanks for the replies. I'll try this using win98. I had done exactly this, but from winXP (dos tells you it's 'millenium' on boot) thanks Dave - Original Message - From: brooksp5 [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, May 13, 2002 5:13 PM Subject: Using syslinux to initialise an IDE disk. Hi Dave, I had the same problems last week trying to syslinux a Compact Flash Card. What worked for me is I created a Windows 98 boot disk that had only system files on it. (Format A: /s) copy Syslinux to the disk Boot machine and Lock C: Syslinux C: It seems that the regular Win98 boot disk stops you from exclusive access to drive C: Hope this helps Paul ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] PPP over ATM with ADSL PCI card
: unicorn_pci: MSW state: ACTIVATING May 5 11:39:48 firewall kernel: unicorn_msw: Event Reported (3): Initializing May 5 11:39:48 firewall kernel: unicorn_pci: MSW event: TO INITIALIZING May 5 11:39:51 firewall kernel: unicorn_msw: Current Modem State (6): INITIALIZING May 5 11:39:51 firewall kernel: unicorn_pci: MSW state: INITIALIZING May 5 11:39:54 firewall kernel: unicorn_msw: useRFCFixedRate (1) ENABLED: deactivate the RA mode in DMT mode May 5 11:39:59 firewall kernel: unicorn_pci: upRate=679cells/s,downRate=1358cells/s May 5 11:39:59 firewall kernel: unicorn_pci: AdslStatus=1 May 5 11:39:59 firewall kernel: unicorn_msw: Event Reported (4): Showtime May 5 11:39:59 firewall kernel: unicorn_pci: MSW event: AMSW SHOWTIME May 5 11:39:59 firewall kernel: unicorn_msw: Current Modem State (9): SHOWTIME_L0 May 5 11:39:59 firewall kernel: unicorn_pci: MSW state: SHOWTIME L0 Then after ifdown ppp0;ifup ppp0 May 5 11:46:49 firewall pppd[1871]: Plugin /usr/lib/pppd/pppoatm.so loaded. May 5 11:46:49 firewall pppd[1871]: PPPoATM plugin_init May 5 11:46:49 firewall pppd[1871]: PPPoATM setdevname_pppoatm May 5 11:46:49 firewall pppd[1871]: PPPoATM setdevname_pppoatm - SUCCESS May 5 11:46:49 firewall pppd[1872]: pppd 2.4.0 started by root, uid 0 May 5 11:46:49 firewall kernel: atm_connect (TX: cl 1,bw 0-0,sdu 16386; RX: cl 1,bw 0-0,sdu 1502,AAL 5) May 5 11:46:49 firewall kernel: unicorn_atm: ESI=00:3c:10:cf:4e:d2 May 5 11:46:49 firewall kernel: unicorn_atm: upstream_rate=287 Kbits/s,downstream_rate=575 Kbits/s May 5 11:46:49 firewall pppd[1872]: ioctl(PPPIOCSDEBUG): Invalid argument May 5 11:46:49 firewall pppd[1872]: Connect: -- 0.38 May 5 11:46:49 firewall pppd[1872]: ioctl(SIOCSIFMTU): Operation not supported by device May 5 11:46:49 firewall pppd[1872]: Exit. Incidently, I cannot ack up pppatm_2.4.0. I get this cat: /var/lib/lrpkg/pppatm_2.4.0.list: No such file or directory Creating pppatm_2.4.0.lrp Please wait: \tar: /tmp/EXCLUDE: No such file or directory rm: cannot remove `/tmp/EXCLUDE': No such file or directory New Package: -rw-r--r--1 root root 20 May 5 12:00 /tmp/pppatm_2.4.0.lrp Old Package: -rwxr-xr-x1 root root 107230 May 5 11:18 /var/lib/lrpkg/mnt/pppatm_2.4.0.lrp Filesystem 1k-blocks Used Available Use% Mounted on /dev/fd0u1680 1664 159867 96% /var/lib/lrpkg/mnt thanks, Dave ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] PPP over ATM with ADSL PCI card
That version of pppd seems to working OK. May 5 13:11:59 firewall pppd[1742]: Plugin /usr/lib/pppd/pppoatm.so loaded. May 5 13:11:59 firewall pppd[1742]: PPPoATM plugin_init May 5 13:11:59 firewall pppd[1742]: PPPoATM setdevname_pppoatm May 5 13:11:59 firewall pppd[1742]: PPPoATM setdevname_pppoatm - SUCCESS May 5 13:11:59 firewall pppd[1743]: pppd 2.4.0b1 started by root, uid 0 May 5 13:11:59 firewall kernel: atm_connect (TX: cl 1,bw 0-0,sdu 16386; RX: cl 1,bw 0-0,sdu 1502,AAL 5) May 5 13:11:59 firewall kernel: unicorn_atm: ESI=00:e4:be:78:52:4d May 5 13:12:03 firewall kernel: unicorn_pci: upRate=679cells/s,downRate=1358cells/s May 5 13:12:03 firewall kernel: unicorn_pci: AdslStatus=1 May 5 13:12:03 firewall kernel: unicorn_msw: Event Reported (4): Showtime May 5 13:12:03 firewall kernel: unicorn_pci: MSW event: AMSW SHOWTIME May 5 13:12:03 firewall kernel: unicorn_msw: Current Modem State (9): SHOWTIME_L0 May 5 13:12:03 firewall kernel: unicorn_pci: MSW state: SHOWTIME L0 May 5 13:12:04 firewall kernel: unicorn_atm: upstream_rate=287 Kbits/s,downstream_rate=575 Kbits/s May 5 13:12:04 firewall pppd[1743]: using channel 3 May 5 13:12:04 firewall pppd[1743]: Using interface ppp0 May 5 13:12:04 firewall pppd[1743]: Connect: ppp0 -- 0.38 May 5 13:12:12 firewall kernel: unicorn_msw: Bringing down line due to persistent: May 5 13:12:12 firewall kernel: unicorn_msw: NEAR_LOS = 5/NEAR_LCD = 5/NEAR_LCDI = 0 May 5 13:12:12 firewall kernel: FAR_LOS = 0 FAR_LCDI = 0 FAR_LCDNI = 0 May 5 13:12:12 firewall kernel: unicorn_pci: AMU_EVENT_SHUTDOWN # cat /proc/net/atm/UNI* ADSL: status ATM ready, modem state SHOWTIME L0, US rate 287Kbits/s, DS rate 575Kbits/s Bridged: 00:19:ba:51:14:33 AAL5: tx 2859 ( 0 err ), rx 2852 ( 0 err, 0 drop ) I think this is as far as I'll get with the BT test account. I'm going to switch my dial-up over to adsl now, so I'll be disappearing from the internet for a while. Hopefully not too long ;-) thanks a lot for the help Dave - Original Message - From: Jacques Nilo [EMAIL PROTECTED] To: Dave Anderson [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Sunday, May 05, 2002 1:53 PM Subject: Re: [leaf-user] PPP over ATM with ADSL PCI card Le Dimanche 5 Mai 2002 14:34, Dave Anderson a crit : It looks like I'm much closer now. Here is the syslog snip Then after ifdown ppp0;ifup ppp0 May 5 11:46:49 firewall pppd[1871]: Plugin /usr/lib/pppd/pppoatm.so loaded. May 5 11:46:49 firewall pppd[1871]: PPPoATM plugin_init May 5 11:46:49 firewall pppd[1871]: PPPoATM setdevname_pppoatm May 5 11:46:49 firewall pppd[1871]: PPPoATM setdevname_pppoatm - SUCCESS May 5 11:46:49 firewall pppd[1872]: pppd 2.4.0 started by root, uid 0 May 5 11:46:49 firewall kernel: atm_connect (TX: cl 1,bw 0-0,sdu 16386; RX: cl 1,bw 0-0,sdu 1502,AAL 5) May 5 11:46:49 firewall kernel: unicorn_atm: ESI=00:3c:10:cf:4e:d2 May 5 11:46:49 firewall kernel: unicorn_atm: upstream_rate=287 Kbits/s,downstream_rate=575 Kbits/s OK your DSL connection seems established :-) May 5 11:46:49 firewall pppd[1872]: ioctl(PPPIOCSDEBUG): Invalid argument May 5 11:46:49 firewall pppd[1872]: Connect: -- 0.38 May 5 11:46:49 firewall pppd[1872]: ioctl(SIOCSIFMTU): Operation not supported by device May 5 11:46:49 firewall pppd[1872]: Exit. OK the pb seems to be concentrated on ppp now switch to the b2 version. But rename it pppatm.lrp before using it... and let be know Jacques ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] PPP over ATM with ADSL PCI card
Yeah, that's the problem - that file doesn't exist. I also had to insmod unicorn_atm myself - the doc implies that unicorn_pci will insmod it (if indeed it is supposed to be insmodded) Does it get automatically done on your system? Do you have the unicorn proc file? thanks, cheers Dave - Original Message - From: Jacques Nilo [EMAIL PROTECTED] Dave Also what says: cat /proc/net/atm/UNICORN:0 ? ___ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
Re: [leaf-user] PPP over ATM with ADSL PCI card
Dave: Could you post /var/log/syslog rather that kernel.log ? I am really suspecting a ppp problem here. # cat /var/log/syslog May 4 09:32:54 firewall syslogd 1.3-3#31.slink1: restart. May 4 09:32:54 firewall kernel: klogd 1.3-3#31.slink1, log source = /proc/kmsg started. May 4 09:32:54 firewall kernel: Cannot find map file. May 4 09:32:54 firewall kernel: Loaded 79 symbols from 15 modules. May 4 09:32:54 firewall kernel: Linux version 2.4.18 (root@debian) (gcc version 2.95.2 2220 (Debian GNU/Linux)) #1 Sun Apr 21 12:50:34 CEST 2002 May 4 09:32:54 firewall kernel: BIOS-provided physical RAM map: May 4 09:32:54 firewall kernel: BIOS-e820: - 0009fc00 (usable) May 4 09:32:54 firewall kernel: BIOS-e820: 0010 - 0100 (usable) May 4 09:32:54 firewall kernel: BIOS-e820: fffc - 0001 (reserved) May 4 09:32:54 firewall kernel: On node 0 totalpages: 4096 May 4 09:32:54 firewall kernel: zone(0): 4096 pages. May 4 09:32:54 firewall kernel: zone(1): 0 pages. May 4 09:32:54 firewall kernel: zone(2): 0 pages. May 4 09:32:54 firewall kernel: Kernel command line: BOOT_IMAGE=linux initrd=initrd.lrp init=/linuxrc diskwait=yes root=/dev/ram0 boot=/dev/fd0u1680:msdos PKGPATH=/dev/fd0u1680 LRP=root,etc,local,modules,keyboard,shorwall,dnscache,libz,sshd,ppp-atm,webl et May 4 09:32:54 firewall kernel: Initializing CPU#0 May 4 09:32:54 firewall kernel: Detected 166.196 MHz processor. May 4 09:32:54 firewall kernel: Console: colour VGA+ 80x25 May 4 09:32:54 firewall kernel: Calibrating delay loop... 331.77 BogoMIPS May 4 09:32:54 firewall kernel: Memory: 14012k/16384k available (853k kernel code, 1984k reserved, 204k data, 60k init, 0k highmem) May 4 09:32:54 firewall kernel: Dentry-cache hash table entries: 2048 (order: 2, 16384 bytes) May 4 09:32:54 firewall kernel: Inode-cache hash table entries: 1024 (order: 1, 8192 bytes) May 4 09:32:54 firewall kernel: Mount-cache hash table entries: 512 (order: 0, 4096 bytes) May 4 09:32:54 firewall kernel: Buffer-cache hash table entries: 1024 (order: 0, 4096 bytes) May 4 09:32:54 firewall kernel: Page-cache hash table entries: 4096 (order: 2, 16384 bytes) May 4 09:32:54 firewall kernel: CPU: Before vendor init, caps: 01bf , vendor = 0 May 4 09:32:54 firewall kernel: Intel Pentium with F0 0F bug - workaround enabled. May 4 09:32:54 firewall kernel: CPU: After vendor init, caps: 01bf May 4 09:32:54 firewall kernel: CPU: After generic, caps: 01bf May 4 09:32:54 firewall kernel: CPU: Common caps: 01bf May 4 09:32:54 firewall kernel: CPU: Intel Pentium 75 - 200 stepping 0c May 4 09:32:54 firewall kernel: Checking 'hlt' instruction... OK. May 4 09:32:54 firewall kernel: POSIX conformance testing by UNIFIX May 4 09:32:54 firewall kernel: PCI: PCI BIOS revision 2.10 entry at 0xfd2a1, last bus=0 May 4 09:32:54 firewall kernel: PCI: Using configuration type 1 May 4 09:32:54 firewall kernel: PCI: Probing PCI hardware May 4 09:32:54 firewall kernel: Limiting direct PCI/PCI transfers. May 4 09:32:54 firewall kernel: Activating ISA DMA hang workarounds. May 4 09:32:54 firewall kernel: Linux NET4.0 for Linux 2.4 May 4 09:32:54 firewall kernel: Based upon Swansea University Computer Society NET3.039 May 4 09:32:54 firewall kernel: Initializing RT netlink socket May 4 09:32:54 firewall kernel: Starting kswapd May 4 09:32:54 firewall kernel: pty: 256 Unix98 ptys configured May 4 09:32:54 firewall kernel: Serial driver version 5.05c (2001-07-08) with MANY_PORTS SHARE_IRQ DETECT_IRQ SERIAL_PCI enabled May 4 09:32:54 firewall kernel: ttyS00 at 0x03f8 (irq = 4) is a 16550A May 4 09:32:54 firewall kernel: Software Watchdog Timer: 0.05, timer margin: 60 sec May 4 09:32:54 firewall kernel: block: 64 slots per queue, batch=16 May 4 09:32:54 firewall kernel: RAMDISK driver initialized: 16 RAM disks of 4096K size 1024 blocksize May 4 09:32:54 firewall kernel: Floppy drive(s): fd0 is 1.44M May 4 09:32:54 firewall kernel: FDC 0 is a post-1991 82077 May 4 09:32:54 firewall kernel: NET4: Linux TCP/IP 1.0 for NET4.0 May 4 09:32:54 firewall kernel: IP Protocols: ICMP, UDP, TCP, IGMP May 4 09:32:54 firewall kernel: IP: routing cache hash table of 512 buckets, 4Kbytes May 4 09:32:54 firewall kernel: TCP: Hash tables configured (established 1024 bind 1024) May 4 09:32:54 firewall kernel: Linux IP multicast router 0.06 plus PIM-SM May 4 09:32:54 firewall kernel: ip_conntrack (128 buckets, 1024 max) May 4 09:32:54 firewall kernel: ip_tables: (C) 2000-2002 Netfilter core team May 4 09:32:54 firewall kernel: NET4: Unix domain sockets 1.0/SMP for Linux NET4.0. May 4 09:32:54 firewall kernel: RAMDISK: Compressed image found at block 0 May 4 09:32:54 firewall kernel: Freeing initrd memory: 404k freed May 4 09:32:54 firewall kernel: VFS: Mounted root (minix
[leaf-user] PPP over ATM with ADSL PCI card
Trying to get some sort of communication with my ADSL PCI card from Bering v1.0 RC2. Jacques has kindly been helping me with getting to this stage. I should now be able to get some communication going, but my device drivers don't appear to me to be recognising the card - I'm not really sure what sort of tests and commands I can use. Below is some info about my system. I'd appreciate it if anyone could make one or two suggestions about what I can do next. The driver is for a Bewan card based on the unicorn chipset. thanks Dave # lsmod Module PagesUsed by unicorn_atm10520 0 (unused) ip_nat_irc 2032 0 (unused) ip_nat_ftp 2672 0 (unused) ip_conntrack_irc2144 0 (unused) ip_conntrack_ftp2848 0 (unused) unicorn_pci 372992 0 (unused) bsd_comp3900 0 (unused) ppp_synctty 4376 0 (unused) n_hdlc 5760 0 (unused) pppoatm 2164 0 (unused) ppp_deflate39604 0 (unused) ppp_async 5932 0 (unused) ppp_generic14888 0 [bsd_comp ppp_synctty pppoatm ppp_deflate ppp_async] slhc4264 0 [ppp_generic] 8139too13084 1 mii 912 0 [8139too] # cat /proc/pci PCI devices found: Bus 0, device 0, function 0: Class 0600: PCI device 8086:7030 (rev 1). Master Capable. Latency=64. Bus 0, device 7, function 0: Class 0601: PCI device 8086:7000 (rev 0). Bus 0, device 7, function 1: Class 0101: PCI device 8086:7010 (rev 0). Master Capable. Latency=64. I/O at 0xffa0 [0xffaf]. Bus 0, device 13, function 0: Class 0203: PCI device 104a:0500 (rev 16). IRQ 10. Master Capable. Latency=64. Min Gnt=9.Max Lat=40. Non-prefetchable 32 bit memory at 0xffbd [0xffbd]. Bus 0, device 15, function 0: Class 0300: PCI device 5333:5631 (rev 6). Master Capable. Latency=64. Min Gnt=4.Max Lat=255. Non-prefetchable 32 bit memory at 0xf800 [0xfbff]. Bus 0, device 16, function 0: Class 0200: PCI device 10ec:8139 (rev 16). IRQ 11. Master Capable. Latency=66. Min Gnt=32.Max Lat=64. I/O at 0xfc00 [0xfcff]. Non-prefetchable 32 bit memory at 0xffbefc00 [0xffbefcff]. # cat /etc/ppp/options # /etc/ppp/options lock ipparam ppp0 noipdefault noauth default-asyncmap defaultroute hide-password noaccomp noccp nobsdcomp nodeflate nopcomp novj novjccomp lcp-echo-interval 20 lcp-echo-failure 3 sync maxfail 0 persist # cat /etc/ppp/peers/dsl-provider # Adjust here VP/VC - depends on country ISP # UK/BT: 0.38 - US/BE/FR: 8.35 plugin /usr/lib/pppd/pppoatm.so 0.38 lock ipparam ppp0 noipdefault noauth defaultroute hide-password noccp nobsdcomp nodeflate nopcomp novj novjccomp lcp-echo-interval 20 lcp-echo-failure 3 maxfail 0 persist # cat interfaces # /etc/network/interfaces -- configuration file for LEAF network # J. Nilo, April 2002 # # Loopback interface. auto lo eth0 ppp0 iface lo inet loopback # ADSL PCI PPP modem iface ppp0 inet ppp provider dsl-provider # Step 2: configure internal interface iface eth0 inet static address 192.168.0.10 masklen 24 broadcast 192.168.0.255 kernel.log May 3 21:09:16 firewall kernel: Linux version 2.4.18 (root@debian) (gcc version 2.95.2 2220 (Debian GNU/Linux)) #1 Sun Apr 21 12:50:34 CEST 2002 May 3 21:09:16 firewall kernel: BIOS-provided physical RAM map: May 3 21:09:16 firewall kernel: BIOS-e820: - 0009fc00 (usable) May 3 21:09:16 firewall kernel: BIOS-e820: 0010 - 0100 (usable) May 3 21:09:16 firewall kernel: BIOS-e820: fffc - 0001 (reserved) May 3 21:09:16 firewall kernel: On node 0 totalpages: 4096 May 3 21:09:16 firewall kernel: zone(0): 4096 pages. May 3 21:09:16 firewall kernel: zone(1): 0 pages. May 3 21:09:16 firewall kernel: zone(2): 0 pages. May 3 21:09:16 firewall kernel: Kernel command line: BOOT_IMAGE=linux initrd=initrd.lrp init=/linuxrc diskwait=yes root=/dev/ram0 boot=/dev/fd0u1680:msdos PKGPATH=/dev/fd0u1680 LRP=root,etc,local,modules,keyboard,shorwall,dnscache,libz,sshd,ppp-atm,webl et May 3 21:09:16 firewall kernel: Initializing CPU#0 May 3 21:09:16 firewall kernel: Detected 166.195 MHz processor. May 3 21:09:16 firewall kernel: Console: colour VGA+ 80x25 May 3 21:09:16 firewall kernel: Calibrating delay loop... 331.77 BogoMIPS May 3 21:09:16 firewall kernel: Memory: 14012k/16384k available (853k kernel code, 1984k reserved, 204k data, 60k init, 0k highmem) May 3 21:09:16 firewall kernel: Dentry-cache hash table entries: 2048 (order: 2, 16384 bytes) May 3 21:09:16 firewall kernel: Inode-cache hash table entries: 1024 (order: 1, 8192 bytes) May 3 21:09:16 firewall kernel: Mount-cache hash table entries: 512 (order: 0, 4096 bytes) May 3 21:09:16 firewall kernel: Buffer-cache hash table entries
[Leaf-user] Telnet to Bering
As part of setting up Bering, I want to be able to telnet to it from the localnet. Are the following steps sufficient? - open up port 23 in shorewall, from localnet to fw - make sure hosts.allow allows it - uncomment telnet for inetd - add ttyp0 to secure ports for root login - do I need a line in inittab to run a getty for ttyp0 ? If so, is the syntax the same as a tty0? Is that everything? thanks Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Telnet to Bering
Many thanks for your detailed reply. I always use ssh, and have been using it for years. I just wanted to telnet while doing the setup, as I'm not at the stage of using two floppies and ssh lrp packages yet. The absence of a telnetd, as well as being commendable, would be a good reason why I can't telnet in! thanks Dave - Original Message - From: Fabian Linzberger [EMAIL PROTECTED] To: Dave Anderson [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, April 29, 2002 3:12 PM Subject: Re: [Leaf-user] Telnet to Bering in my /etc/inetd.conf the last entry for telnet (which is the actual daemon program, that inetd will start upon a connection to the telnet port) is /usr/sbin/in.telnetd the in.telnetd binary however is not included in the bering disk image. And for a good reason. Telnet uses cleartext passwords and no encryption whatsoever, making it useful mostly for crackers, that want to hijack your system... Consider using the ssh protocol instead (see openssh.org for info about the open source implementation). there is also a LRP package available from Leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user How do I request help? http://leaf-project.org/pub/doc/docmanager/docid_1891.html
[Leaf-user] Compiling modules for Bering
Hi all, I have a Bewan ADSL PCI card arriving in the next few days, and in preparation, I want to get its driver compiled for Bering (I'm pretty sure it doesn't already exist in the modules list). Is someone happy to do that, or could someone point me in the right direction for compiling it - is it as simple as just compiling it in a 2.4.18 tree, or are there glib type issues etc that I have to watch out for. Many thanks Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] Unbelievable
- Original Message - From: [EMAIL PROTECTED] Is The Register reliable? No wonder they have such disdain for the govt. and the law. They want to BE the govt. and the law. Sorry for getting political on this list. Chastised in advance. The Register is pretty reliable. It's a good site which I read regularly (it originated in the UK). Fairly interesting tech/computing stuff, with a healthy dose of sarcasm and humour. For what it's worth, our (UK) government has just sold out completely by allowing Microsoft to do our Govt gateway portal - i.e. all online Govt communication could go through the Microsoft built and controlled system - e.g. advising authorities of change of address through MSN passport. Disgraceful. Anyway, as you say, shouldn't get too political. Sorry. But do read the Register. It's a laugh. cheers Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] UK ADSL modem with LEAF
Hi all, I'll be getting ADSL here in the UK soon, and I want to have my setup all ready, using LEAF firewall (I haven't chosen distro yet, but have used Dachstein before) The protocol will be PPPoA. I just need some tips really, or things to avoid. I'm looking at various modems (or router/modems), internal and external (such as Zyxel 645R and Diva 2430SE) Can I assume that if there is a driver provided I will easily be able to integrate this into my LEAF box (I guess that's just relevent for internal cards, as external will typically connect ethernet?) Will the modem handle PPPoA exclusively? - are there any ppp packages that I need to have on the LEAF box? If I'm connected to an ethernet port on the modem, does that mean I can dump all ppp stuff on the distro? Many thanks Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] UK ADSL modem with LEAF
First some interesting references: http://www.linuxdoc.org/HOWTO/mini/BTI-PPP/index.html http://www.linuxdoc.org/HOWTO/DSL-HOWTO/index.html 1/ PPPoA Bering supports it since it is part of the 2.4.18 linux kernel. The module is here: http://leaf.sourceforge.net/devel/jnilo/bering/latest/modules/net/atm/ 2/ pppd The standard pppd provided with Bering should work 3/ Modem You will be better of if you choose a modem which supports both pppoe and pppoa. I think this is the case of the Alcatel USB speedtouch modem. Also make sure the modem is supported by linux :-) Thanks Jacques, All of the modems I'm looking at support PPPoA/E. I would probably prefer ethernet, as I'm pretty sure the box I want to run LEAF on doesn't have USB. I reckon most external ethernet ADSL modems should be fairly compatible with Linux. I have been looking at internal ones, which are cheaper and would save me one NIC too. This one seems interesting (you may have heard of it - it's a French company) http://www.bewan.com/bewan/products/adsl/bwadslpcist.php It says it's supported by Linux, although I'm investigating further as they don't seem to have a linux driver or much linux info. They also mention a minimum requirement of p266MMX. Now I only have a p166 for this, but I guess they're not really expecting it to be connected to LEAF (or even Linux!!) so I'd be interested to know people's opinions on the performance of having an internal ADSL PCI modem on the LEAF. I wouldn't have thought it would be a problem at all. Finally, if I was to go with an internal card, is it just a case of getting the driver and loading it as a module, then configuring the interface just as if it was a ppp0 or eth0 etc? Do you know what the kernel would call this interface on recognition? ppp0? many thanks for your help, regards Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Using LEAF with one static public IP address
Hi, I'm going to be switching my home network from ISDN to ADSL in the next few weeks, and I want to set up a LEAF firewall in preparation. I currently have a linux box as my gateway, running iptables. That box has the fixed public IP address that my ISP provided. I also run a few services on that machine, such as qmail, dns, www, sshd. I'm going to buying an ADSL router, which will have an ethernet port on the back, and I'm thinking of connecting that to my LEAF firewall, which forwards traffic on to my internal network, including the linux box on which I want to continue to run services. My questions are these (and I realise they're not all totally specific to LEAF, but I know you guys know your networking ;-) - Will my adsl router get my public ip address (presumably) - if so, should the router then have an internal address on it's private facing port - if, so, then presumably the LEAF external port is in the same network - in the above setup, can I plug the internal eth from the router into the LEAF NIC, with the right sort of cable - Does my internal LEAF port then use another internal network, which presumably is the same as my internal machines - Do I then need to specifically nat all incoming requests to my particular internal server (www, smtp etc) - If so, does that mean I shouldn't use dhcp on the internal network, so I can hard code the internal IP address of my server And finally, does all this sound like the best way of doing this? My home server is not really used by a large number of people - mainly for home email and me logging in via ssh and imaps. It's pretty secure at the moment with iptables on it, but I'd like to run LEAF, partly for even better security, and partly to get used to LEAF even more. Many thanks, Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] lrp format and filter config
Thanks for the reply. Take a close look at your logs...sounds like you might be on a cable-mode (or other shared-network setup). The denied packets are probably being generated by one of your 'neighbors', and are coming in your external interface, otherwise they wouldn't be getting logged... I am on a shared network of windows machines. The denied packets come from various machines, source and destination are both internal. If these shouldn't be logged, then I need to have a very close look at the ipchains generated. Also, if I want to specify source ports for incoming traffic, do I have to hard code that in the filter file? Probably, although you don't mention what you're trying to specify source ports for. If you need to make custom rules, that's what the ipchains.input, ipchains.output, and ipchains.forward files are for in /etc. I want local users to be able to ssh into external machines, and (being fairly pedantic about firewalls) I only want to specify port 22 for external machines. If I edit those files, how do they relate to the config files (No 2 on the network config menu) zcat /path/to/package.lrp | tar -x Thanks, that worked fine. Finally, as a constructive suggestion, does anyone think it would be useful if all ipchains rules where built up in one place in the config, and it was all done in a more 'tabular' fashion, so that rules could be added easily, and options such as logging for some of the defaults could be easily switched off. Probably, but it would take a lot of work. Are you volunteering? Unfortunately I don't think I've got the time at the moment. I might have in a few months though. Thanks for a great product by the way. regards Dave ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Dachstein logs filling up with DHCP denied packets
I have a Dachstein 1.0.2 firewall that was running just fine until Comcast@Home switched me from a static IP to a dynamic one. I now have DHClient running successfully, but am getting thousands of denied packets in my logs. Since yesterday, I have over 9,500 denied packets and my 32meg routers' RAM disk and logs are about full. Almost all of these denied packets seem to be coming from Comcast's DHCP server. Here's a very small sample of the errors I'm getting; perhaps someone can either shed light on this problem and tell me either how to correct the configuration problem (if there is one) or at least how to block these packets from being logged. I'm using Charles Steinkuehler's latest Dachstein release straight out of the box have followed his DHClient setup instructions. Feb 6 06:42:03 CAROL syslogd 1.3-3#31.slink1: restart. Feb 6 06:42:16 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=15503 F=0x T=255 (#8) Feb 6 06:42:16 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=15506 F=0x T=255 (#8) Feb 6 06:42:26 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=15818 F=0x T=255 (#8) Feb 6 06:42:26 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=15830 F=0x T=255 (#8) Feb 6 06:42:36 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=16368 F=0x T=255 (#8) Feb 6 06:42:36 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=16373 F=0x T=255 (#8) Feb 6 06:42:36 CAROL kernel: Packet log: input DENY eth0 PROTO=2 192.168.100.1:65535 224.0.0.1:65535 L=28 S=0xC0 I=0 F=0x T=1 (#10) Feb 6 06:42:37 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=16422 F=0x T=255 (#8) Feb 6 06:42:37 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=16425 F=0x T=255 (#8) Feb 6 06:42:43 CAROL kernel: Packet log: input DENY eth0 PROTO=17 10.117.160.1:67 255.255.255.255:68 L=340 S=0x00 I=16565 F=0x T=255 (#8) Thanks, Dave _ Send and receive Hotmail on your mobile device: http://mobile.msn.com ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
Re: [Leaf-user] LCDproc help for Dachstein
I can't seem to find the Samsung LCD display as used on charles's site. As i live in Australia, is there anyone who knows where to get it? Will import if needed. thanks. Anything based on the HD44780 microcontroller will work with LCDProc, as long as you wire it up correctly. I've made a couple of these based on the 'winamp' wiring configuration, you just need to tell LCDProc that you're using that wiring schematic when you run it. I'm using one LCD from Altronics in Perth: http://www.altronics.com.au/cat.asp?cat=2grp=102id=Z+7011 Dick Smith and Jaycar have similar models too. If you want to be sure, ask for a datasheet from them and check that the pins are the same as in the schematic you want to use. This diagram's worked for me: http://www.markuszehnder.ch/projects/lcdplugin/images/lcd_parallel_8bit.gif Just be careful where you tap the +5v off.. Try taking it off a USB port or something with low current. The 5v power rails can be a bit nasty esp for a small trimpot. :) Hope that helps! Dave Hng ___ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Denial of Service?
Does LEAF (specifically LRP, on floppy) support blocking denial of service attacks? Also, am I right in thinking that if I use the bwidth package, and limit both interfaces to 64k, then I can effectively resell some of my fixed 512k bandwidth? Many thanks Dave
[Leaf-user] Re: LRP Print Server LRP Xterminal
With regards to the mini howto i wrote, i'll try run through it again these holidays on a clean eigerstein setup and see if i can spot any glitches... For Christian: Yes you do need lpd.o and parport_pc.o loaded, as these are how lpd talks to the printer.. One thing i've noticed is that straight lpd and samba don't mix too well with all printers, so it might be a hit or miss type of thing. :( Dave ___ Leaf-user mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/leaf-user
[Leaf-user] Re: Firewall testing
I tried scanning with it too, and it gave no open ports. However, i have SSH and www open. I have a feeling it either tried to scan 192.168.0.3, which is the IP on this computer, or my ISP's transparent web proxy servers.. Dave ___ Leaf-user mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/leaf-user