[leaf-user] Bering uClibC 2.1.3, Shorewall, and AIM

2004-07-16 Thread mcartter 
How does Shorewall handle AOL Instant messenger?  I have noticed that when
my two daughters are both using AIM there is a lot of activity in the
firewall log (it turns to red very quickly).

I found the following in an AIM FAQ:

What can I do if I'm having trouble using Instant Messenger at work?

If you're experiencing problems connecting to Instant Messenger from your
office network, talk to your Network or System Administrator. Chances are
you're behind a 'firewall,' and need to ask your System Administrator to
open up port 5190 (this is Instant Messenger's 'default' port, which is
like a secure door in your company's firewall).

Thanks.






---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] (no subject)

2004-07-15 Thread mcartter 
Tom,

Thanks, I have been teaching myself how to read the logs.  What are the
indications that I should look for? And what would cause the connection
tracking table to be full?  An error in the way I set up the system?

Matt

Date sent:  Mon, 12 Jul 2004 10:12:39 -0700
From:   Tom Eastep [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Copies to:  [EMAIL PROTECTED]
Subject:Re: [leaf-user] Bering-uClibc 2.1.3 Stops after Several
Hours Part
#2

 [EMAIL PROTECTED] wrote:
  Does Bering-uClibc 2.1.3  handle denied or
  rejected packets in a way that will cause Shorewall to stop?

 No.

 I suggest that you check your log for indications that your connection
 tracking table is full.

 -Tom
 --
 Tom Eastep\ Nothing is foolproof to a sufficiently talented fool
 Shoreline, \ http://shorewall.net Washington USA  \
 [EMAIL PROTECTED]








---
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721alloc_id=10040op=click

leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] Bering-uClibc 2.1.3 Stops after Several Hours Part #2

2004-07-12 Thread mcartter 
I built a new LRP yesterday with a newer motherboard, two PCI cards, and
128  megabytes of RAM.  Bering-uClibc_2.1.3 ran fine for several hours,
but stopped  sometime overnight.  The problem does not appear to be with
the old ISA NICs.

The system is back and running with Dashstein.  After 7 hours, I have the
following  firewall status message You have 1092 denied or rejected
packets in your recent  packet logs.  This is not an unusual number for
my system but Dashstein continued  to run and I did not worry about it. 
Perhaps I should have.  Does Bering-uClibc 2.1.3  handle denied or
rejected packets in a way that will cause Shorewall to stop?

Thanks in advance for your help.

--- Forwarded message follows ---
From:   mcartter at pol dot net
To: [EMAIL PROTECTED]
Date sent:  Sat, 10 Jul 2004 17:27:02 -0400
Subject:Bering-uClibc_2.1.3 stops after several hours
Priority:   normal


Problem:  Bering-uClibc_2.1.3 stops after several hours.

I have been using the Dachstein_contributed pppoe version by Kenneth
Hadley on a home network for the past two years without any problems. The
LRP is connected to three PCs running Windows XP professional via a
switch.  The LRP runs on a 486 with two ISA cards: eth0 uses 8390.o and
ne.o; eth1 uses 3c509.o.

I decided to upgrade to Bering-uClibc_2.1.3.  I have been able to get the
system up and running with no error messages.  I am able to monitor the
status via Mozilla browser and weblet.  After several hours, the firewall
status turns to error (more than 50 denied packets).  Not long after, I
lose the connection to the Internet on one or more PCs, and the connection
to the internal network is down on all three PCs.  This afternoon, I had
one PC still connected to the Internet, but was unable to see the other
two PCs on the network.

When I restart using the Dashstein disk, the system works fine.

I have searched the old mail lists and found a report by one user that was
somewhat similar and may have been due to a driver problem using the old
3Com ISA card (there was no follow up to that message.

Before I start pulling cards, I would appreciate any insight that the
users of this list have into this problem.  I have pasted the various
messages below:

* the exact name of the LEAF distribution and version you are running.

Bering-uClibc_2.1.3

* the exact kernel version you are running

ash# uname -a

Linux firewall 2.4.24 #3 Sun Feb 22 19:25:40 CET 2004 i486 unknown


cp /var/log/messages /mnt/messages.txt

Jul 10 10:52:07 firewall syslogd 1.4.1: restart.
Jul 10 10:52:07 firewall kernel: klogd 1.4.1, log source = /proc/kmsg
started.
Jul 10 10:52:07 firewall kernel: No module symbols loaded.
Jul 10 10:52:07 firewall kernel: BIOS-provided physical RAM map:
Jul 10 10:52:07 firewall kernel: 16MB LOWMEM available.
Jul 10 10:52:07 firewall kernel: DMI not present.
Jul 10 10:52:07 firewall kernel: Initializing CPU#0
Jul 10 10:52:07 firewall kernel: Memory: 14252k/16672k available (995k
kernel code, 2032k reserved, 99k data, 80k init, 0k highmem)
Jul 10 10:52:07 firewall kernel: Dentry cache hash table entries: 4096
(order: 3, 32768 bytes)
Jul 10 10:52:07 firewall kernel: Inode cache hash table entries: 2048
(order: 2, 16384 bytes)
Jul 10 10:52:07 firewall kernel: Mount cache hash table entries: 512
(order: 0, 4096 bytes)
Jul 10 10:52:07 firewall kernel: Buffer cache hash table entries: 1024
(order: 0, 4096 bytes)
Jul 10 10:52:07 firewall kernel: Checking 'hlt' instruction... OK.
Jul 10 10:52:07 firewall kernel: Linux NET4.0 for Linux 2.4
Jul 10 10:52:07 firewall kernel: Based upon Swansea University Computer
Society NET3.039
Jul 10 10:52:07 firewall kernel: Serial driver version 5.05c (2001-07-08)
with MANY_PORTS SHARE_IRQ DETECT_IRQ SERIAL_PCI enabled
Jul 10 10:52:07 firewall kernel: ttyS00 at 0x03f8 (irq = 4) is a 16550A
Jul 10 10:52:07 firewall kernel: ttyS01 at 0x02f8 (irq = 3) is a 16550A
Jul 10 10:52:07 firewall kernel: Real Time Clock Driver v1.10e
Jul 10 10:52:07 firewall kernel: Floppy drive(s): fd0 is 2.88M
Jul 10 10:52:07 firewall kernel: FDC 0 is a National Semiconductor PC87306
Jul 10 10:52:07 firewall kernel: Initializing Cryptographic API
Jul 10 10:52:07 firewall kernel: NET4: Linux TCP/IP 1.0 for NET4.0
Jul 10 10:52:07 firewall kernel: IP Protocols: ICMP, UDP, TCP, IGMP
Jul 10 10:52:07 firewall kernel: IP: routing cache hash table of 512
buckets, 4Kbytes
Jul 10 10:52:07 firewall kernel: TCP: Hash tables configured (established
1024 bind 1024)
Jul 10 10:52:07 firewall kernel: NET4: Unix domain sockets 1.0/SMP for
Linux NET4.0.
Jul 10 10:52:07 firewall kernel: RAMDISK: Compressed image found at block 0
Jul 10 10:52:07 firewall kernel: Freeing initrd memory: 284k freed
Jul 10 10:52:07 firewall kernel: Freeing unused kernel memory: 80k freed
Jul 10 10:52:08 firewall kernel: ne.c:v1.10 9/23/94 Donald Becker
([EMAIL PROTECTED])
Jul 10 10:52:08 firewall kernel: Last modified Nov 1, 2000