RE: [newbie] MCSE and rebooting for IP changes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 You bring out good points, but you are still forgetting some thing. How are users going to get access to data that is not on a website or through a database application? Most users work on Word docs, or Excel spreadsheets, or heven forbid, a Lotus 1-2-3 spreadsheet. So, you would say use SAMBA on the Linux server, right? We all know how well NetBIOS scales in an Enterprise environment. I am not disagreeing with you that a Linux server would be a much better OS than a Microsoft server as a webserver or a MySQL or some other varient of the SQL language, or even Oracle. Most companies have started to look at Linux, as a different alternative to Unix, as most flavors of Unix are prepriatory and require the special hardware from the vendor (Solaris is the exception). BUT, you need to keep this in mind: It doesn't matter to most companies how much the application costs, until it starts to affect the end user. If a user cannot get access to data, your CTO or CIO will be getting phone calls from managers, and he/she will be raising hell. Now, if you can teach all of your end users how to get to data, then this world would be a perfect one, and you would be even richer than Bill Gates. You may have all of the techincal experience in the world, but if you don't know how end users REALLY work and operate, then you will fail. Because, having users complain and cause more of a problem by complaining to the wrong person, you will be looking for another job. Right now, I think a *NIX box would be a great web server or database server, but not a file and print server, nor a server that would be the equivelent to that of a Domain Controller. I'm pretty sure that there are other products out there that would bring this together, but how much is that going to cost? Most software vendors are charging more if not the same for a product that will seamlessly integrate all of your OS's together. Step back and look at everything. Yes Microsoft has become and will always be a big player and one that will try to force their side of the house on everyone. But, other software vendors are trying to do the same. Maybe not by using a strong arm tatic, but rather chargin rediculous prices for thier software licenses. Now, I'm not saying that this applies to EVERY software company out there, but most of them that I know. I too am an MCSE, but I don't go around bosting about it. I have seen other MCSE's rehash books, but they have little to no real experience with the product. MOST, not all, MCSE's are pretty dumb and are probably the most arrogant people in the industry. Well, maybe those that are nothing but Linux guys. :) I am just like Josh, who started when there was just DOS, and you needed to know how the hardware works with the software. I guess, Microsoft is just trying to make their OS more Admin Friendly. But, I guess only because by their teachings, they have made most MCSE's just Ok. I just insert the CD, press ENTER, and the OS is installed. Great. I'm done, whats next? This is appealing to those small businesses, but not the larger enterprise where security is at the top, if not the very top, of the list. Just my 2cents. Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cory Sent: Thursday, June 13, 2002 4:52 PM To: '[EMAIL PROTECTED]' Subject: RE: [newbie] MCSE and rebooting for IP changes You have very valid points regarding the simplicity of using linux, but think of this... how hard would it be to use linux if you had never used a Microsoft OS? Yes, linux can be rather difficult to use at times, but also take into account the abilities it provides. Yes, you can make a complicated device (ie: computer) and make it so a monkey can use it, but when the mouse breaks, or when he clicks on the icon and it doesn't work, what good is the monkey? I don't say that linux is the Greatest OS in the world... I honestly don't think that linux, in its current state, belongs on the average end user desktop by ANY MEANS!! But linux does belong in the server market. Most end users are idiots... flat out, plain and simple, don't bother contesting that point. The problem here is that windows OS'es give the user zero incentive or ability to learn more about what really goes on behind the scenes. Why cant I run a windows app from a command prompt and see the ongoings of the application in that console window even if I wanted to? It is unfortunate that you had to fork out thousands of dollars for something that you probably gained very little from just so that the people who make things happen don't scoff at you for not being a lemming like them. I got hired because I had a fresh, unbiased and INFORMED opinion on the computer industry as a whole. Honestly, if I could get mac OS X to run on PC Hardware, that would probably be my platform of choice. Linux is not EASY, but it is reliable, extremely scalable, cost
RE: [newbie] SNF 7.2 and VPN.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Anyone? I would really like to know, as I am trying to decide between Wolverine (which is still in Alpha) and SNF 7.2. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Chris Lynch Sent: Monday, June 03, 2002 8:01 PM To: Newbie Linux - Mandrake Subject: [newbie] SNF 7.2 and VPN. - -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Has anyone installed any VPN server software on Mandrake's SNF 7.2? Anyone successful? Any tips? Thanks, Chris - -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPwtLkr5pFJx+BQ5EQL1HgCg+m6wdDf6ESHCba0VE2EjmbZZ680AoPy8 /JM+G7tPZPBjPya6H2Y5kpvo =T8Tk - -END PGP SIGNATURE- -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPzrW0r5pFJx+BQ5EQLYtgCeMBA9tH9is4ImMBElCjPeel/BjTIAoNXD CaK//ljIjEnQrh+70K7KvG7F =laM+ -END PGP SIGNATURE- attachment: winmail.dat Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] SNF 7.2 and VPN.
Title: SNF 7.2 and VPN. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Has anyone installed any VPN server software on Mandrake's SNF 7.2? Anyone successful? Any tips? Thanks, Chris -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPwtLkr5pFJx+BQ5EQL1HgCg+m6wdDf6ESHCba0VE2EjmbZZ680AoPy8 /JM+G7tPZPBjPya6H2Y5kpvo =T8Tk -END PGP SIGNATURE- PGPexch.rtf.asc Description: Binary data Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have looked at Smoothwall, but I am looking for a good custom firewall that has IDS, reporting, and preferably a Web interface, as I am not a Linux guru by an means. Has anyone heard of Wolverine? I found this one while searching for other firewalls, and this one came up. It appears that the developers are trying to make a Watchguard-like firewall with the 2.4.x kernel. Has anyone tried this distro? Any thoughts? Any other ideas for a firewall? I really do not want to have to take a Red Hat or Mandrake 8.x distro and turn it into a firewall, as I don't know what to have and not to have installed. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of FemmeFatale Sent: Tuesday, May 28, 2002 7:10 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. et wrote: boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time? That or consider Smootwall for your needs - -- Femme Good Decisions You boss Made: We'll do as you suggest and go with Linux. I've always liked that character from Peanuts. - - Source: Dilbert -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPT7UEr5pFJx+BQ5EQKOewCfd4wfM24KlNH400q8NWQsUrAkEb4AoP15 7TXm8fwKwmaOIA3FhODwcc8+ =yd4D -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 problems.
an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). OOps! hit the mouse button at the wrong moment, so previous message resembles the inner workings of my brain.Have you set up the LAN so that all of the system knows what the gateway address is?. You don't mention a gateway device. Just curious and hope to help. -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPT+/Er5pFJx+BQ5EQLyCgCfY0+lSbtLlIM3Jw/Wtd8zHJIrohwAoLdP KEQa7LtQ+YrxR3jT42XaIbe3 =zY97 -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPPBK0r5pFJx+BQ5EQIGbgCeP85U7Hw+Gm5vH6VQs7BiAFt4OZMAn1Pi zamA7FT3yCt7qxnSJOWQb/Jc =OKqt -END PGP SIGNATURE- attachment: winmail.dat Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 problems.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Yes. The ETH interfaces are the gateways for the respected LAN segments. I do have RIPv2 running on the network and all of the routers see the other subnets. Like I said, I can SSH into the firewall from the IP Address 192.168.150.1, do what I need to do on the firewall, but I cannot get outside the firewall. Is there a script or config file you would like me to paste so you can look at it to see if there is a config problem? I haven't made any changes to any of the script files, except the init.rc (or the rc.local, which ever is the very last script to run during bootup) which I has to add the static routes to the other networks. Now, before anyone else jumps, I did add the static routes manually BEFORE I modified the init.rc script, and I was able to access the firewall via HTTPS and SSH, but I was still not able to get out to the Internet. Thanks, Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Dennis Myers Sent: Tuesday, May 28, 2002 12:12 PM To: [EMAIL PROTECTED] Subject: Re: [newbie] SNF 7.2 problems. On Tuesday 28 May 2002 12:41 pm, you wrote: Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, other than the one on Mandrake's site? Also, I have a problem with the firewall itself. I have the firewall setup in the diagram attached. I have static routes in the init.rc startup script, because I am unable to get routed or gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 routers. Every time I try to start routed with the -q or -a switch (whichever switch is for listening only), routed says it cannot bind to address. Anyway, I can access the firewall via the web management interface, and also via SSH. The problem is that my clients on any of the 192.168 networks cannot get out to the Internet. I have allowed DNS (UDP only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me what could be going on? BTW, I can get out to the Internet from the firewall by both pinging an IP address (both the Internet DNS server and the IP address of 208.208.208.208), and by running the TEST INTERNET CONNECTION from the list after logging into the console with admin. I have not installed any of the security updates, as this causes a problem when restarting the system as it hangs on bringing up the ETH2 interface. Can anyone recommend how to install the security updates/patches? Thanks, Chris PS. My apologies to the mod, as I don't have a website to upload the image (only 20kb). OOps! hit the mouse button at the wrong moment, so previous message resembles the inner workings of my brain.Have you set up the LAN so that all of the system knows what the gateway address is?. You don't mention a gateway device. Just curious and hope to help. - -- Dennis M. linux user #180842 -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPPPiWkr5pFJx+BQ5EQKMoQCeLa4X+wlA8nFi4FK7gI+pxAk9iNAAmwe5 I7jQALxkgs8ByaK7OjK3W9eE =OMTa -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
[newbie] SNF 7.2 questions.
Title: SNF 7.2 questions. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have a system that is running the Mandrake SNF 7.2 build, and I have some specific routing questions. First off. I have the SNF system placed within the following diagram: Internet | (eth2) [FW] (eth0) --- [Cisco 2621] -- [2621] | [2621] Now, the problem that I am having is I don't know how to configure nor use gated or routed. I asked some other people on another mailing list, and someone suggested that I use zebra. Well, I tried to install zebra with no luck (and, yes, I did remove gated and routed before trying to install zebra). I am at the point where I just want to add static routes, but I don't want to have to add a route every single time I reboot the firewall. So, how would I go about adding static routes a script, or the network script? Also, how would I go about creating aliased interfaces during startup? Does anyone have a better link to the SNF instructions other than the HTML pages on Mandrakes site? Thanks, Chris -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPORmsEr5pFJx+BQ5EQJydgCfT+koWIsRAc3E9+3n55UmgFr1n3YAoJDs aJb92fH6HMY2e07ZKeoXXPH/ =QU26 -END PGP SIGNATURE- PGPexch.rtf.asc Description: Binary data Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
RE: [newbie] SNF 7.2 questions.
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Never mind. I have finally found the documentation on how to use routed. I finally found it on the FreeBSD MAN pages. If anyone is interested, you can read it here, http://www.freebsd.org/cgi/man.cgi?query=routed=8. Chris - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Chris Lynch Sent: Thursday, May 16, 2002 7:11 PM To: [EMAIL PROTECTED] Subject: [newbie] SNF 7.2 questions. - -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have a system that is running the Mandrake SNF 7.2 build, and I have some specific routing questions. First off. I have the SNF system placed within the following diagram: Internet | (eth2) [FW] (eth0) ---> [Cisco 2621] --> [2621] | [2621] Now, the problem that I am having is I don't know how to configure nor use gated or routed. I asked some other people on another mailing list, and someone suggested that I use zebra. Well, I tried to install zebra with no luck (and, yes, I did remove gated and routed before trying to install zebra). I am at the point where I just want to add static routes, but I don't want to have to add a route every single time I reboot the firewall. So, how would I go about adding static routes a script, or the network script? Also, how would I go about creating aliased interfaces during startup? Does anyone have a better link to the SNF instructions other than the HTML pages on Mandrakes site? Thanks, Chris - -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPORmsEr5pFJx+BQ5EQJydgCfT+koWIsRAc3E9+3n55UmgFr1n3YAoJDs aJb92fH6HMY2e07ZKeoXXPH/ =QU26 - -END PGP SIGNATURE- -BEGIN PGP SIGNATURE- Version: PGP 7.1 Comment: Public Key Signature for Chris Lynch iQA/AwUBPOR5rUr5pFJx+BQ5EQLmcQCgijxMVKq1bxjxhCvMiNwplNhqFnIAoMVM XB8vX/BuHqWvG79HThtKxt5H =bz9t -END PGP SIGNATURE- PGPexch.rtf.asc Description: Binary data Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com