On 2/6/02 at 7:54 PM, Lonnie Cumberland <[EMAIL PROTECTED]> wrote:
> Is there a way that I can find out which ports are open on
> my Eigerstein LRP firewall and turn it off.
The classic (and probably best) way to find out what ports are open is
to go to another machine and use nmap against your
We need a FAQ answer for this one too (or do we have one?).
LEAF basic firewalls by default block ALL private-address traffic on the
external interface. (At least Dachstein and Eigerstein do, and I think
Oxygen is the same in that regard.) So traffic on eth0 to private address
192.168.68.1 gets
>From the numbers you report, I wonder if the NAT'ing stuff in the kernel,
which uses a high block of ports, somehow conflicts with the port-forwarding
stuff.
I'd suggest throwing some more pebbles to see experimentally where the line
is, trying the hypothesis that it's the NAT range (which I th
On 2/5/02 at 7:55 AM, Jack Coates <[EMAIL PROTECTED]> wrote:
> And how; there's a xntpd package out there, but I haven't
> seen ntpdate. xntpd's binary is 175,832 bytes; the whole
> package is 88,007 bytes compressed.
ntpdate is 33k uncompressed (and stripped).
--
David Douthitt
UNIX Systems Adm
On 2/5/02 at 10:56 AM, Matt Schalit <[EMAIL PROTECTED]> wrote:
> Secondly this whole discussion about setting the date
> is a waste of time until David replaces the broken busybox
> date with a working date binary. What good is it to set
> the clock with atomic precision when date doesn't even k
On 2/6/02 at 10:26 AM, Munday, Merrick <[EMAIL PROTECTED]>
wrote:
> I'm running the May 2001 release of Oxygen,
The current release is 1.8; May 2001 would be one back.
> 2) To automate the log sending process, I think I need to
> put something into /etc/cron.daily/multicron-d?
multicron has be
This is my specific setup:
~~
{ Internet }
~~
|
---
|ISP |
---
|
DSL
|
---
On Thursday 07 February 2002 07:42, Michael D. Schleif wrote:
> Jon =>
>
> 65456 < 65535
>
> Your point?
>
lol
Hmmm... none, I guess... :P
Sorry 'bout that...
Never, never, never write *anything* before the first cup of coffe in the
morning! Never!!!
Have a nice day :)
Jon Clausen
_
Jon =>
65456 < 65535
Your point?
Jon Clausen wrote:
>
> On Thursday 07 February 2002 00:26, Michael D. Schleif wrote:
> > Is there some _maximum_ port that can be port forwarded?
> >
> > This fails:
> > INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www"
> >
> > This succeeds:
>
On Thursday 07 February 2002 00:26, Michael D. Schleif wrote:
> Is there some _maximum_ port that can be port forwarded?
>
> This fails:
> INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www"
>
> This succeeds:
> INTERN_SERVERS="tcp_${EXTERN_IP}_6543_${LOKI}_www"
>
> I have scoured /etc
Jason:
Lynn has a pretty good comparison of the various leaf distro's out there
on his web site. http://www.geocities.com/guitarlynn/lrp.html
Robert Chambers
Jason C. Leach wrote:
>hi,
>
>What are some of the significant differences between
>Coyote and Charls' versionf of LRP?
>
>j.
>
Dave:
Heya. Give the echowall.lrp package a try. It's got a
more aggressive "don't log this sort of noise" section to it
than the stock firewall that comes with Dachstein does.
EchoWall was built for Dachstein, so it should sneak
in nicely. The README has all the details of install
On Wednesday 06 February 2002 21:53, Michael D. Schleif wrote:
> Provided that only one (1) server ever broadcasts this way, then this
> is acceptable.
>
> However, previous consensus was that there is *never* any reason to
> log broadcasts to destination 255.255.255.255 -- so, perhaps, a
> better
guitarlynn wrote:
>
> On Wednesday 06 February 2002 21:03, Michael D. Schleif wrote:
> > [ snip ]
> >
> > This is a faq and should be listed somewhere. However, here are a
> > couple previous threads and their solutions:
> >
> I have a LEAF command help FAQ at:
> http://sourceforge.net/
On Wednesday 06 February 2002 21:03, Michael D. Schleif wrote:
> [ snip ]
>
> This is a faq and should be listed somewhere. However, here are a
> couple previous threads and their solutions:
>
I have a LEAF command help FAQ at:
http://sourceforge.net/docman/display_doc.php?docid=9267&grou
thanks a lot mate! your prompt response gave me a prompt solution.
- Original Message -
From: "Michael D. Schleif" <[EMAIL PROTECTED]>
To: "Vic Berdin" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, February 07, 2002 10:22 AM
Subject: Re: [Leaf-user] dachstein dchp with samb
Dave Hubble wrote:
>
> I have a Dachstein 1.0.2 firewall that was running just fine until
> Comcast@Home switched me from a static IP to a dynamic one. I now have
> DHClient running successfully, but am getting thousands of denied packets in
> my logs.
>
> Since yesterday, I have over 9,500 de
I have a Dachstein 1.0.2 firewall that was running just fine until
Comcast@Home switched me from a static IP to a dynamic one. I now have
DHClient running successfully, but am getting thousands of denied packets in
my logs.
Since yesterday, I have over 9,500 denied packets and my 32meg router
> Vic Berdin wrote:
>
> is it possible to make dhcp clients under a dachstein dhcp server
> access samba service installed on the same dachstien dhcp server?
> if so, how?
> ... or do i really have to set up another box with the samba service
> and make it work as another dhcp client?
Goto
hello all,
is it possible to make dhcp clients under a
dachstein dhcp server
access samba service installed on the same
dachstien dhcp server?
if so, how?
... or do i really have to set up another
box with the samba service
and make it work as another dhcp client?
TIA!
At 07:54 PM 2/6/02 -0500, Lonnie Cumberland wrote:
>Hello All,
>
>I was just told by a network administrator that port 1214 is open and
>communicating on my system.
>
>Is there a way that I can find out which ports are open on my
>Eigerstein LRP firewall and turn it off.
Depends on what you mean
hi,
What are some of the significant differences between
Coyote and Charls' versionf of LRP?
j.
--
..
. Jason C. Leach
..
PGP/GPG Public key at http://www.keyserver.net/
Key ID: 1CF6DA85
___
Leaf-user mailing list
[EMAIL
Hello All,
I was just told by a network administrator that port 1214 is open and
communicating on my system.
Is there a way that I can find out which ports are open on my
Eigerstein LRP firewall and turn it off.
It is supposed to be something called "Morpheus" or something like
that which allow
Is there some _maximum_ port that can be port forwarded?
This fails:
INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www"
This succeeds:
INTERN_SERVERS="tcp_${EXTERN_IP}_6543_${LOKI}_www"
I have scoured /etc/ipfilter.conf, /etc/network.conf and man ipmasqadm;
but, I cannot find
On Wed, 6 Feb 2002, Ryan P. Matijcio wrote:
> Hey everyone,
>
> I've started to notice FTP problems with an Oxygen firewall I have
> running. The problem occurs on both unix and NT systems located behind
> the firewall. I have found that all ftp transfers be they incoming or
> outgoing eventua
> "Munday, Merrick" wrote:
> This seems to work -- is this some awful kludge that I should have done in another
>way?
No, that's not a kludge, it's a space station. And you get
extra bonus points for building one.
Matt
___
Leaf-user mailing list
[EM
Simon Bolduc wrote:
>
> Seems that Rogers is using ESMTP as the protocol - which isn't really POP
> before SMTP (as far as I can tell at least) - using a program called postie
> I am able to mail via a command line - without telling it what my pop
> server's address is. So I guess I'll just scp
Charles Steinkuehler wrote:
[snip]
> NOTE: I've had problems with some windows software not recognizing the
> linux boot floppy as a bootable disk (particularly with EZ-CD Creator)...
You're not using WinImage 6 for both diskettes and cd iso's ?
I thought it worked fine. Heck, you paid for i
Hi,
I'm trying to set up portforwarding for M$ VPN (PPTP) to an internal
server 192.168.1.24
So far I figured the following:
# Indexed list: "SrcAddr/Mask port [ DestAddr[/DestMask] ]"
#EXTERN_TCP_PORT0="5.6.7.8 domain 1.1.1.12"
#EXTERN_TCP_PORT1="0/0 www"
EXTERN_TCP_PORT0="0/0 smtp"
If you really must get to the point of the story skip down to the
closing tag for
.
Big thanks to many! Not in any order but how I'm finding them in
my mail archive, and I know I'll leave out some. Especially jack at
monkeynoodle, guitarlynn at kscable, charles at steinkuehler
Hi Simon
Simon Bolduc wrote the following at 18:58 06.02.2002:
>Seems that Rogers is using ESMTP as the protocol - which isn't really POP
>before SMTP (as far as I can tell at least) - using a program called
>postie I am able to mail via a command line - without telling it what my
>pop server'
Hey everyone,
I am trying to set up a Dachstein firewall to use multiple gateways. We
have two DSL connections (pppoe, ugh) and one ISDN connection from
Worldcom. I know setting this kind of thing up can be quite difficult,
espically if one is looking to do load balancing. Since this is the
c
Title: RE: Mail logs on Oxygen
Thanks to all who helped!
I've created a /root/headers directory with files containing email headers for each logfile that I wish the machine to email me, each named with the same name as the logfile. Then, I have added 3 lines to multicron-d like so:
rotatel
I grep the stuff I want from messages (just denied packets) - everything is
logged to another server and I check that - I just like to see what ports
people are probing on a daily basis.
S
>From: Jack Coates <[EMAIL PROTECTED]>
>To: Simon Bolduc <[EMAIL PROTECTED]>
>CC: <[EMAIL PROTECTED]>, <
If the server is on the protected LAN, you could always just do remote
syslog. This also lets you use some of the nice Perl-based log anaylzers
to prioritize and mail the output.
Jack
On Wed, 6 Feb 2002, Simon Bolduc wrote:
> Seems that Rogers is using ESMTP as the protocol - which isn't reall
Hey everyone,
I've started to notice FTP problems with an Oxygen firewall I have
running. The problem occurs on both unix and NT systems located behind
the firewall. I have found that all ftp transfers be they incoming or
outgoing eventually freeze. Although it appears that NT -> NT transfers
Seems that Rogers is using ESMTP as the protocol - which isn't really POP
before SMTP (as far as I can tell at least) - using a program called postie
I am able to mail via a command line - without telling it what my pop
server's address is. So I guess I'll just scp the necessary log files over
> It is posible to use ipsec.lrp (1.9) on a standard LRP 2.9.8 flopply
(provided that I correctly patch and recompile the 2.2.19 kernel that comes
with it ) ?
>
> I need to set up just a tunnel endpoint, and want to run it from a bare
1.44 floppy in a 1 NIC machine, so I don´t want the additional
At 05:22 PM 2/6/02 +, Julian Church wrote:
>At 09:03 06/02/02 -0800, Ray Olszewski wrote:
>>At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote:
>>
>> >Now I can proceed to try to get the Win machine applications to access the
>> >outside world (mail, http, etc.). Is it necessary to enable these w
That would explain the latter problem, i.e. boot from floppy but still not
see the CD-ROM.
The CD-ROM was configured as /dev/hdc (i.e. primary on second IDE
interface).
I wonder if this is also why it wouldn't boot from the CD?
Having said all that; I'm sure I have booted from a DCD on hdc.
Gareth
It is posible to use ipsec.lrp (1.9) on a standard
LRP 2.9.8 flopply (provided that I correctly patch and recompile the
2.2.19 kernel that comes with it ) ?
I need to set up just a tunnel endpoint, and want
to run it from a bare 1.44 floppy in a 1 NIC machine, so I don´t want the
additio
At 09:03 06/02/02 -0800, Ray Olszewski wrote:
>At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote:
>
> >Now I can proceed to try to get the Win machine applications to access the
> >outside world (mail, http, etc.). Is it necessary to enable these within
> >network.conf?
>
>In general, no. For some
At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote:
[...]
>lsmod shows:
>8390 (unused)
>natsemi (used by 1)
>8139too (used by 1)
>pci-scan (used by 0 [natsemi])
>
>Does this imply that 8390 is unnecessary?
Yes. I don't recall either of the actual NIC modules you use depending on 8390.o
>It seems th
> 1) If the log I'm trying to send is large, I get a "ssmtp: Header too
large
> Max is 4000 characters" error. Obviously, I need to do some
pre-processing
> on the log files to define a header at the top of the file and put the log
> info in a defined "body" of the message. Since I'm new to linu
On Wednesday 06 February 2002 07:32, Hall, Michael A wrote:
> Thanks for all the input. Apologies for the text and line length
> issue. I hope this message is improved.
>
> I tried the various suggestions with varying success:
>
> 1.tried using rtl8139 with 8390 without success (same signature as
Title: Mail logs on Oxygen
I'm running the May 2001 release of Oxygen, and I'm trying to get the system to email me the logs each day. I have ssmtp working from the command line, so that I can "ssmtp [EMAIL PROTECTED] < /var/log/kern.log" and the log shows up just fine.
However, I have two p
> > I had a strange problem installing Dachstein today. The hardware was a
Dell
> > Dimension XPS. The machine would boot from a Windows CD, but for some
reason
> > it would not boot from the Dachstein CD I had created, and tested, on
> > another Dell.
> > I created a boot floppy, but that wouldn'
> I had a strange problem installing Dachstein today. The hardware was a
Dell
> Dimension XPS. The machine would boot from a Windows CD, but for some
reason
> it would not boot from the Dachstein CD I had created, and tested, on
> another Dell.
> I created a boot floppy, but that wouldn't recognis
> I am usin' the Dachstein CD 1.0.2 and want to know if you can get the
> updated, configured boot floppy image back into the iso and reburn the
> ISO so it all runs from the CD, with yer personal configurations from
> the floppy? I'm not a man of Linux, but it does interest me very much
> and hav
Gareth Howell wrote:
>
> I had a strange problem installing Dachstein today. The hardware was a Dell
> Dimension XPS. The machine would boot from a Windows CD, but for some reason
> it would not boot from the Dachstein CD I had created, and tested, on
> another Dell.
> I created a boot floppy, b
I am usin’ the Dachstein CD 1.0.2 and want to know if you can get the
updated, configured boot floppy image back into the iso
and reburn the ISO so it all runs from the CD, with yer personal configurations from the floppy? I’m not a
man of Linux, but it does interest me very much and have l
Thanks for all the input. Apologies for the text and line length issue.
I hope this message is improved.
I tried the various suggestions with varying success:
1.tried using rtl8139 with 8390 without success (same signature as before)
2.tried HOSTS0 eth0_IPADDR ... instead of eth1_IPADDR without
malik menzong wrote:
>
> Hi-
> I currently have a working system. But I keep on stubbling on a small issue
> with my file rc.firewall
> this files contains all the ipchains rules. When I boot my system and it
> runs, I can see that the new rules have been applied from the browser(I am
> using rou
Hi Jason
At 21:31 05/02/02 -0800, Jason C. Leach wrote:
>If I have an entry:
>Packet log: remote DENY eth0 PROTO=6 208.181.x.y:3254 208.181.x.y:80 L=48
>S=0x00 I=63245 F=0x4000 T=121 SYN (#15)
>
>What does the
>PROTO=6
>
>SYN
>#15
>
>Mean.
There's a really handy one-sheet PDF file about interpr
54 matches
Mail list logo