Hi everyone and thanks in advance for the help. I got three questions on
using the Dachstein version of LRP based the linux 2.2.19 kernel.
1) is there any modules for dial ups available for that version or can I use
the dialup modules based on another kernel (2.9.4)?
2)Is there a module for la
Did you activate the debug option ?
This option is in the same file where you specify the demand, port and
speed options.
Then, call again and look in the messages for clues.
My pppd works just fine. I only use slhc, ppp_deflate and ppp to make it
work.
But my setup is not based on diald, it's b
I know "What's this in my logs" is a common query, but I really am confused
this time.
I'm getting a few of these in /var/log/messages per minute.
Jan 15 10:40:14 firewall kernel: Packet log: input DENY eth0 PROTO=6
192.168.254
.254:80 217.149.96.2:61797 L=44 S=0x00 I=23250 F=0x T=60 (#42)
Hi Gregor,
I know that I had some issues with this. I had 2 alias address bound to my
external interface. I was able to receive traffic on them and portfw them
correctly. But then I tried FTP and I found that all other outbound traffic
gets masq'd on the primary IP, not the alias. From what I rea
Maybe u can help me out here...
I have the same problem as you had, whereas the Bride was inside waiting while
the groom stood outside behind the lockdoor..
I tried all options that u were told to try, but still my portforwarding is
giving problems..
can u probably be so kind as to send me
> I may open a floodgate by making this request, as other requests
> may follow from others, but here goes:
>
> please include the latest bind package in the next CD image of
> Dachstein.
The 9.x versions of Bind don't really like compiling on a glibc as old as
that used for LEAF, or I would have
> I had your Eiger Stein & IPSEC running great for some time now it looks
like
> I need Dachstein.
>
> Do you have an image that is setup to pass IPSEC or do I have to patch in
> those modules and rules again.
You're in luck. The Dachstein kernels come pre-patched for VPN-Masquerade,
so all you
It's also possible to use static-NAT, or proxy-arp in this environment.
While only two of the 3 IP's can be used directly on DMZ machines, you can
still port-forward services from the router's public IP to machines on the
DMZ.
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkueh
- Original Message -
From: "Charles Steinkuehler" <[EMAIL PROTECTED]>
To: "LRPLEAF" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, January 15, 2002 5:53 AM
Subject: [Leaf-user] Re: DCD package request for inclusion in next CD image
> > I may open a floodgate by making this
Charles:
I'm running Eigerstein. I want to switch over to Dachstein at some point.
I want to have a firewall that Masquerades public IPS but does not Masquerade
IPSec (VPN).
I thought this couldn't be done based on previous postings.
This posting implies (I think) that the restrictionis apply on
> I'm running Eigerstein. I want to switch over to Dachstein at some point.
> I want to have a firewall that Masquerades public IPS but does not
Masquerade
> IPSec (VPN).
> I thought this couldn't be done based on previous postings.
> This posting implies (I think) that the restrictionis apply on
Sorry for replying to myself, but although I don't fully understand what
was going on I seem to have made the problem stop.
At 11:44 15/01/02 +, Julian Church wrote:
>I'm getting a few of these in /var/log/messages per minute.
>
>Jan 15 10:40:14 firewall kernel: Packet log: input DENY eth0 P
Why do you need diald? Recent versions of pppd support dial-on-demand.
If my experience is any guide, get pppd working, then try diald if
needed.
-Richard
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of
> Mark Lubratt
> Sent: Monday, January 14, 20
> Minimum set of modules for ppp seems to be:
>
> slhc
> ppp
Yes, i can validate that.
I think Jim is asking because of his PPTP setup. I'm running PPTPD with only
these two modules and it's working great.
___
Leaf-user mailing list
[EMAIL PROTECTED]
h
If I add this to /etc/network.conf:
EXTERN_PROTO0="50 0/0"
EXTERN_PROTO1="51 0/0"
then, do I still need these ???
leftfirewall=yes
rightfirewall=yes
What do you think?
--
Best Regards,
mds
mds resource
888.250.3987
Dare to fix things before they break . .
> If I add this to /etc/network.conf:
>
> EXTERN_PROTO0="50 0/0"
> EXTERN_PROTO1="51 0/0"
>
> then, do I still need these ???
>
> leftfirewall=yes
> rightfirewall=yes
Not if you also allow UDP port 500...
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.
> > If I add this to /etc/network.conf:
> >
> > EXTERN_PROTO0="50 0/0"
> > EXTERN_PROTO1="51 0/0"
> >
> > then, do I still need these ???
> >
> > leftfirewall=yes
> > rightfirewall=yes
>
> Not if you also allow UDP port 500...
Oh...you also need to make sure you create forward rules allowing the
Greg:
Heya. I know how you feel about being reluctant to touch
your firewall now that it's running. Fortunately...it's not as
bad as you might remember -- I had to get Dachstein up and running
so that I could get echoWall debugged on it. Since Charles did
both distro's, they look&feel ver
Julian:
Heya. I'm going to go with what fwlog.pl is telling
you on this one. :) The reply does indeed look to be from the
"NAT router" you had previously at 192.168.254.254. There's
no SYN flag set, so it's not a Code-Red packet, and it's
coming at you at a very high port number (61000+)
Hi:
I downloaded the dach software "dachstein-v1.0.2-1680" based on the linux
kernel 2.2.19.
I want to use my laptop (Dell machine) as a router. My questions are the
following:
1) If i dont need the firewall option but just the router am using the right
download?
2) I am using 2 different pcmc
Julian Church wrote:
>
> Sorry for replying to myself, but although I don't fully understand what
> was going on I seem to have made the problem stop.
>
> At 11:44 15/01/02 +, Julian Church wrote:
> >I'm getting a few of these in /var/log/messages per minute.
> >
> >Jan 15 10:40:14 firewall
I want dial-on-demand during non-business hours, but I also want the link
always up during business hours. I understand that pppd can now do on
demand dialing, but will it also do a scheduled link? With diald I can
force the link up in the morning during the week and then let it go back to
on-de
> I want dial-on-demand during non-business hours, but I also
> want the link
> always up during business hours. I understand that pppd can now do on
> demand dialing, but will it also do a scheduled link? With
> diald I can
> force the link up in the morning during the week and then let
> it go
At 2002-01-15 15:59 -0600, Mark Lubratt wrote:
>BTW, I also figured out that the configuration files from pppd.lrp were
>conflicting with the configuration files from diald. When I extracted
>only chat and pppd from the pppd.lrp file and then added them to the diald
>package, everything starte
24 matches
Mail list logo