Do you have the corresponding ports *open* in the EXTERN_TCP_PORTS section? If
not, the forwarding rules are inside waiting for a bride that's locked out of
the church ;)
Also, since it looks like you have re-numbered your network from the default
(changed 192.168.1 to 192.168.0) you should h
i'm using dachstein 1.0.2 on a home network firewall. everything seems
hunky dory:
network cards are both recognized and configured correctly
masquerading works on the internal machines
everyone can ping everyone, both inside and out.
the last hurdle is port forwarding -
> in dachstein 1.0.1, you *had* to modify syslinux.cfg if the cdrom wasn't
> /dev/hda. in version 1.0.2 it, thankfully, detects the cdrom so you
> don't have to do this anymore.
Actually, you had to modify pkgpath.cfg on your configuration floppy,
although you *could* modify the syslinux paramet
> Craig Caughlin wrote:
>
> Hi folks,
> I'm trying to understand how to create my own bootable CD and some of
> you have been kind enough to respond. Charles relied to me by saying:
>
> Create a new CD image using appropriate software...make sure you use
> the bootdisk.bin disk image to make th
begin Craig Caughlin <[EMAIL PROTECTED]>
> Hi folks,
> I'm trying to understand how to create my own bootable CD and some of you have been
>kind enough to respond. Charles relied to me by saying:
>
> Create a new CD image using appropriate software...make sure you use the
>bootdisk.bin disk im
> I'm trying to understand how to create my own bootable CD and some of you
have been kind enough to respond. Charles relied to me by saying:
>
> > Create a new CD image using appropriate software...make sure you use the
bootdisk.bin disk image to make the CD bootable. The proper mkisofs command
ACK! HTML mail. Please don't do that any more.
In NERO (I think) you need to go to
File\New
Scroll down to CD-ROM (Boot)
Browse to the bootdisk.bin
Essentially, bootable CD's use floppy boot technology to perform bootups. So the
'bootable' floppy must be placed at the start of the CD Rom so t
Hi,
When you start Néro, select CD-ROM (Boot) in the
wizard.
Y'll get a tab (Boot) where you can find a group
called "Source of boot image file"
select "Image File" then browse the filesystem to
select the "bootdisk.bin" file
Click the button "New"
Now, you can add file to your CD
layout
First if you aren't really familiar with making bootable CDs you can end up
with a lot of coasters - so use a CDRW if you can... also you might wanna
consider using a CD with floppy setup as it is by far the easier way to do
things. that said:
You appear to be using windows so you can't re
Hi folks,
I'm trying to understand how to create my own
bootable CD and some of you have been kind enough to respond. Charles relied to
me by saying:
Create a new CD image using appropriate
software...make sure you use the bootdisk.bin disk image to make the CD
bootable. The proper mkisof
I’m
still having problems with socks5. As a
matter of fact, I just found out that it was never working. My ICQ keeps crashing this time it lasted a
whole 2 days after my reboot and I’m back to using ICQ without the socks5
support. Even when I could connect via
ICQ with socks5, I could ne
> > > A GIF of the logo is available at:
> > >
> > > http://www.digitech.org/~tjunkie/lrp3.gif
> > >
> > > Feel free to use and share this logo image as you wish.
>
> > > Ed Zahurak
> > > [EMAIL PROTECTED]
>
> The logo's actually pretty cool.
Yeah, I really like the concept...
Anyone got an idea
Ed Zahurak wrote:
> > A GIF of the logo is available at:
> >
> > http://www.digitech.org/~tjunkie/lrp3.gif
> >
> > Feel free to use and share this logo image as you wish.
> > Ed Zahurak
> > [EMAIL PROTECTED]
The logo's actually pretty cool.
___
Lea
On Wed, 02 Jan 2002, you wrote:
> > I am using Eigerstein2beta with dhclient 2.0pl5. I can get an IP from my
> > cable provider just fine, however, no proper default route is assigned
> > (it appears as 0.0.0.0) when I manually set a default route, all is well
> > and client machines can access th
> OK, I received your post *after* my last post, in which I sniffed eth0
> for all packets related to protocols 50 & 51.
>
> Subsequently, I realized that my attempt only demonstrated contents of
> packets for those protocols ;>
>
> So, I did same ping; but, now I sniffed the external (eth0 & wan1
Do a google search on "penguin webbed feet" and you'll find that they do
have webbed feet, but they also have clawsI think it varies from species
to species...
S
>From: Victor McAllisteer <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: [Leaf-user] Linux Router Logo
>Date: Wed, 02
Charles Steinkuehler wrote:
>
> > > Recent versions of tcpdump are smart enough to be able to dump
> > > the encrypted traffic going over the physical interface without being
> > > confused. You basically want to dump the raw traffic going over your
> > > external 'net, and verify protocol 50 p
Ed Zahurak wrote:
> Hi, folks!
>
> I'm new to the LEAF/LRP stuff, but I've already had tremendous luck in
> setting up a two-Router/Firewall/VPN solution that works great!
>
> Anyhoo, I decided my boxes needed a logo, and I wasn't really crazy about
> another "penguin" logo. Love Linux, love Tux
Hi, folks!
I'm new to the LEAF/LRP stuff, but I've already had tremendous luck in
setting up a two-Router/Firewall/VPN solution that works great!
Anyhoo, I decided my boxes needed a logo, and I wasn't really crazy about
another "penguin" logo. Love Linux, love Tux, but seeing him
everywhere...
Charles Steinkuehler wrote:
>
> > Anyway, I have a tunnel between two (2) Dachstein-CD firewall/gateways,
> > seperated by the big, bad internet ;>
> >
> > I remain confused, however, *how* to test the encryption. Yes, I
> > understand how, if both boxes were local and I could place a 3rd in
>
> > Recent versions of tcpdump are smart enough to be able to dump
> > the encrypted traffic going over the physical interface without being
> > confused. You basically want to dump the raw traffic going over your
> > external 'net, and verify protocol 50 packets are being sent/recieved,
and
> >
> Here's how I understand the process for the Dachstein CD, please correct
me where I'm wrong. 1.) Download the CD .iso image and burn your cd with
your favorite CD writing software (Nero, Adaptec, etc.). 2.) Boot from the
CD to start Dachstein and load into memory. Since you'll need to (likely)or
> I am using Eigerstein2beta with dhclient 2.0pl5. I can get an IP from my
> cable provider just fine, however, no proper default route is assigned
> (it appears as 0.0.0.0) when I manually set a default route, all is well
> and client machines can access the internet through the router. Anyone
>
is there a mirror of this? it appears to be dead right now. what's the
title of the document? maybe i can google for copy somewhere...
pete
begin Greg Morgan <[EMAIL PROTECTED]>
> One more idea is to use some of the other documentation. Take a look at
> http://nw-hoosier.dyndns.org/rlohman/
> Just curious, I was reading up on www.pigtail.net/LRP and found he posted
> something about this vulnerability. Is this a problem with Dachstein? I
am
> using the kernel 2.2.19 without any mod to IP masq.
>
> Here is the link which states the issue (which sort of makes it sound like
> Dachstei
hi charles,
i was under the (wrong) impression that cd:/lib/modules should aleady be
mounted when the system boots. i didn't realize that all this is taken
care of during the booting process. victor and greg pointed this out to
me.
the *other* problem was that /etc/modules didn't get backed up
hi craig,
i'm the last person who should be responding to your email, but i think
that i'm comfortable with this aspect.
the cd puts the root fs -- config files, executables and all -- into
memory. of course, the config files will be all wrong. but that's ok
for now.
configure the system usin
> one question -- i grok the concept of the "filesystem going away" unless
> it's backed up to floppy.
>
> what i don't grok so much is the concept of partial backups. the readme
> file on the cd is confusing.
>
> what i'd LIKE to think is that anything i modify will be packaged up in
> its own e
Charles Steinkuehler wrote:
>
> > Anyway, I have a tunnel between two (2) Dachstein-CD firewall/gateways,
> > seperated by the big, bad internet ;>
> >
> > I remain confused, however, *how* to test the encryption. Yes, I
> > understand how, if both boxes were local and I could place a 3rd in
>
Hi,
I indeed managed to get cipe working between 2 LEAF boxes.
I'll try to document a little bit what I did to make it work
( There is still a little problem, the tunnel seems to be broken by programs
like Kazaa running on the one of the internal networks)
I'll keep you informed but don't hesitat
> reading the comments in /etc/modules, it looks like cdrom:/lib/modules
> is supposed to be mounted on /lib/modules in the ramdisk.
>
> that's not happening. as a result, none of the modules i specify in
> /etc/modules are loading.
>
> can someone help me out here? with the /dev/cdrom improveme
Hey Craig,
The point of the floppy disk is to make upgrading easier. What is supposed
to happen is you back up your changes to the floppy and reboot. When the
system boots and loads the modules (modules, etc, root, et. al) from the CD
it then checks the floppy for any additional configuratio
> Anyway, I have a tunnel between two (2) Dachstein-CD firewall/gateways,
> seperated by the big, bad internet ;>
>
> I remain confused, however, *how* to test the encryption. Yes, I
> understand how, if both boxes were local and I could place a 3rd in
> between; but, I cannot do that here.
>
> W
> [1] Am I correct that _updown script is *modified* by somebody leaf/lrp
> to accommodate ipchains, as opposed to the default ipfwadm?
>
> Perhaps, that script should include some brief attribution of this
> non-standard modification? Is there some reason to modify this, as
> opposed to using a
begin David B. Cook <[EMAIL PROTECTED]>
> Even if the keyboard is not your specific problem, eliminate it. Your
> firewall is a server that is available by SSH so there is no need for
> keyboards cluttering up you area.
unfortunately, i'm configuring the firewall right now (as in setting up
th
> It seems I got things working now
> I can connect to the webserver using my puplic IP
> I cant use the public IP from the LAN. I have to use the private IP of the
> box on the DMZ. I can live with that.
This is how it's supposed to work...
With a "private" port-forwarded DMZ, there's no way to
Hi folks,
I'm fairly new to Linux...so please bear with me :
)
Here's how I understand the process for the Dachstein CD, please correct me
where I'm wrong. 1.) Download the CD .iso image and burn your cd with your
favorite CD writing software (Nero, Adaptec, etc.). 2.) Boot from the CD to
Even if the keyboard is not your specific problem, eliminate it. Your
firewall is a server that is available by SSH so there is no need for
keyboards cluttering up you area. If your pc does not have BIOS support
for booting without the keyboard
Find an old keyboard and rip it open. **If**
Don't forget to check/validate the HW. Make sure you swap out the cable.
I have often seen a cable with a bad pin on either the tx or rx sides -
usually oxidation on the connectors. Remember that the "link" light only
denotes connectivity one-way so you can have a light at one end and
still ha
Hi Lee, Hi all
> It's arrogant because I haven't been able to
> get cipe working myself work yet! But I think I'm pretty close and the
> How-to includes some troubleshooting that should help others.
As I mentioned in another thread, I don't use CIPE either and didn't tried
to use it yet. The onl
Hi Jim, Hi all
I've just successfully installed a PPTPD server. It works great. If you want
MPPE encryption (128bit), you have to compile the whole ppp, pptp stuff and
a new kernel. I don't need encryption of the data, encrypting the
username/password is enough for me (CHAP).
What I've done?
1. I
41 matches
Mail list logo