Re: [Leaf-user] Open Ports

On 2/6/02 at 7:54 PM, Lonnie Cumberland <[EMAIL PROTECTED]> wrote: > Is there a way that I can find out which ports are open on > my Eigerstein LRP firewall and turn it off. The classic (and probably best) way to find out what ports are open is to go to another machine and use nmap against your

Re: [Leaf-user] LEAF routing private IP space

We need a FAQ answer for this one too (or do we have one?). LEAF basic firewalls by default block ALL private-address traffic on the external interface. (At least Dachstein and Eigerstein do, and I think Oxygen is the same in that regard.) So traffic on eth0 to private address 192.168.68.1 gets

Re: [Leaf-user] DCD, ipmasqadm portfw & dynamic/private ports ???

>From the numbers you report, I wonder if the NAT'ing stuff in the kernel, which uses a high block of ports, somehow conflicts with the port-forwarding stuff. I'd suggest throwing some more pebbles to see experimentally where the line is, trying the hypothesis that it's the NAT range (which I th

Re: [Leaf-user] crontab vs /etc/cron.d/multicron

On 2/5/02 at 7:55 AM, Jack Coates <[EMAIL PROTECTED]> wrote: > And how; there's a xntpd package out there, but I haven't > seen ntpdate. xntpd's binary is 175,832 bytes; the whole > package is 88,007 bytes compressed. ntpdate is 33k uncompressed (and stripped). -- David Douthitt UNIX Systems Adm

Re: [Leaf-user] crontab vs /etc/cron.d/multicron

On 2/5/02 at 10:56 AM, Matt Schalit <[EMAIL PROTECTED]> wrote: > Secondly this whole discussion about setting the date > is a waste of time until David replaces the broken busybox > date with a working date binary. What good is it to set > the clock with atomic precision when date doesn't even k

Re: [Leaf-user] Mail logs on Oxygen

On 2/6/02 at 10:26 AM, Munday, Merrick <[EMAIL PROTECTED]> wrote: > I'm running the May 2001 release of Oxygen, The current release is 1.8; May 2001 would be one back. > 2) To automate the log sending process, I think I need to > put something into /etc/cron.daily/multicron-d? multicron has be

[Leaf-user] LEAF routing private IP space

This is my specific setup: ~~ { Internet } ~~ | --- |ISP | --- | DSL | ---

Re: [Leaf-user] DCD, ipmasqadm portfw & dynamic/private ports ???

On Thursday 07 February 2002 07:42, Michael D. Schleif wrote: > Jon => > > 65456 < 65535 > > Your point? > lol Hmmm... none, I guess... :P Sorry 'bout that... Never, never, never write *anything* before the first cup of coffe in the morning! Never!!! Have a nice day :) Jon Clausen _

Re: [Leaf-user] DCD, ipmasqadm portfw & dynamic/private ports ???

Jon => 65456 < 65535 Your point? Jon Clausen wrote: > > On Thursday 07 February 2002 00:26, Michael D. Schleif wrote: > > Is there some _maximum_ port that can be port forwarded? > > > > This fails: > > INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www" > > > > This succeeds: >

Re: [Leaf-user] DCD, ipmasqadm portfw & dynamic/private ports ???

On Thursday 07 February 2002 00:26, Michael D. Schleif wrote: > Is there some _maximum_ port that can be port forwarded? > > This fails: > INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www" > > This succeeds: > INTERN_SERVERS="tcp_${EXTERN_IP}_6543_${LOKI}_www" > > I have scoured /etc

Re: [Leaf-user] LRP Dachstein Vs. Coyote.

Jason: Lynn has a pretty good comparison of the various leaf distro's out there on his web site. http://www.geocities.com/guitarlynn/lrp.html Robert Chambers Jason C. Leach wrote: >hi, > >What are some of the significant differences between >Coyote and Charls' versionf of LRP? > >j. >

Re: [Leaf-user] Dachstein logs filling up

Dave: Heya. Give the echowall.lrp package a try. It's got a more aggressive "don't log this sort of noise" section to it than the stock firewall that comes with Dachstein does. EchoWall was built for Dachstein, so it should sneak in nicely. The README has all the details of install

Re: [Leaf-user] Dachstein logs filling up with DHCP denied packets

On Wednesday 06 February 2002 21:53, Michael D. Schleif wrote: > Provided that only one (1) server ever broadcasts this way, then this > is acceptable. > > However, previous consensus was that there is *never* any reason to > log broadcasts to destination 255.255.255.255 -- so, perhaps, a > better

Re: [Leaf-user] Dachstein logs filling up with DHCP denied packets

guitarlynn wrote: > > On Wednesday 06 February 2002 21:03, Michael D. Schleif wrote: > > [ snip ] > > > > This is a faq and should be listed somewhere. However, here are a > > couple previous threads and their solutions: > > > I have a LEAF command help FAQ at: > http://sourceforge.net/

Re: [Leaf-user] Dachstein logs filling up with DHCP denied packets

On Wednesday 06 February 2002 21:03, Michael D. Schleif wrote: > [ snip ] > > This is a faq and should be listed somewhere. However, here are a > couple previous threads and their solutions: > I have a LEAF command help FAQ at: http://sourceforge.net/docman/display_doc.php?docid=9267&grou

Re: [Leaf-user] dachstein dchp with samba?

thanks a lot mate! your prompt response gave me a prompt solution. - Original Message - From: "Michael D. Schleif" <[EMAIL PROTECTED]> To: "Vic Berdin" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Thursday, February 07, 2002 10:22 AM Subject: Re: [Leaf-user] dachstein dchp with samb

Re: [Leaf-user] Dachstein logs filling up with DHCP denied packets

Dave Hubble wrote: > > I have a Dachstein 1.0.2 firewall that was running just fine until > Comcast@Home switched me from a static IP to a dynamic one. I now have > DHClient running successfully, but am getting thousands of denied packets in > my logs. > > Since yesterday, I have over 9,500 de

[Leaf-user] Dachstein logs filling up with DHCP denied packets

I have a Dachstein 1.0.2 firewall that was running just fine until Comcast@Home switched me from a static IP to a dynamic one. I now have DHClient running successfully, but am getting thousands of denied packets in my logs. Since yesterday, I have over 9,500 denied packets and my 32meg router

Re: [Leaf-user] dachstein dchp with samba?

> Vic Berdin wrote: > > is it possible to make dhcp clients under a dachstein dhcp server > access samba service installed on the same dachstien dhcp server? > if so, how? > ... or do i really have to set up another box with the samba service > and make it work as another dhcp client? Goto

[Leaf-user] dachstein dchp with samba?

hello all,   is it possible to make dhcp clients under a dachstein dhcp server access samba service installed on the same dachstien dhcp server? if so, how? ... or do i really have to set up another box with the samba service and make it work as another dhcp client?   TIA!

Re: [Leaf-user] Open Ports

At 07:54 PM 2/6/02 -0500, Lonnie Cumberland wrote: >Hello All, > >I was just told by a network administrator that port 1214 is open and >communicating on my system. > >Is there a way that I can find out which ports are open on my >Eigerstein LRP firewall and turn it off. Depends on what you mean

[Leaf-user] LRP Dachstein Vs. Coyote.

hi, What are some of the significant differences between Coyote and Charls' versionf of LRP? j. -- .. . Jason C. Leach .. PGP/GPG Public key at http://www.keyserver.net/ Key ID: 1CF6DA85 ___ Leaf-user mailing list [EMAIL

[Leaf-user] Open Ports

Hello All, I was just told by a network administrator that port 1214 is open and communicating on my system. Is there a way that I can find out which ports are open on my Eigerstein LRP firewall and turn it off. It is supposed to be something called "Morpheus" or something like that which allow

[Leaf-user] DCD, ipmasqadm portfw & dynamic/private ports ???

Is there some _maximum_ port that can be port forwarded? This fails: INTERN_SERVERS="tcp_${EXTERN_IP}_65456_${LOKI}_www" This succeeds: INTERN_SERVERS="tcp_${EXTERN_IP}_6543_${LOKI}_www" I have scoured /etc/ipfilter.conf, /etc/network.conf and man ipmasqadm; but, I cannot find

Re: [Leaf-user] FTP Timeout Problems with Oxygen

On Wed, 6 Feb 2002, Ryan P. Matijcio wrote: > Hey everyone, > > I've started to notice FTP problems with an Oxygen firewall I have > running. The problem occurs on both unix and NT systems located behind > the firewall. I have found that all ftp transfers be they incoming or > outgoing eventua

Re: [Leaf-user] RE: Mail logs on Oxygen

> "Munday, Merrick" wrote: > This seems to work -- is this some awful kludge that I should have done in another >way? No, that's not a kludge, it's a space station. And you get extra bonus points for building one. Matt ___ Leaf-user mailing list [EM

Re: [Leaf-user] Re: Leaf Mail Command

Simon Bolduc wrote: > > Seems that Rogers is using ESMTP as the protocol - which isn't really POP > before SMTP (as far as I can tell at least) - using a program called postie > I am able to mail via a command line - without telling it what my pop > server's address is. So I guess I'll just scp

Re: [Leaf-user] Rebuilding the Dachstein CD

Charles Steinkuehler wrote: [snip] > NOTE: I've had problems with some windows software not recognizing the > linux boot floppy as a bootable disk (particularly with EZ-CD Creator)... You're not using WinImage 6 for both diskettes and cd iso's ? I thought it worked fine. Heck, you paid for i

[Leaf-user] M$ VPN (PPTP) and DCD 1.02

Hi, I'm trying to set up portforwarding for M$ VPN (PPTP) to an internal server 192.168.1.24 So far I figured the following: # Indexed list: "SrcAddr/Mask port [ DestAddr[/DestMask] ]" #EXTERN_TCP_PORT0="5.6.7.8 domain 1.1.1.12" #EXTERN_TCP_PORT1="0/0 www" EXTERN_TCP_PORT0="0/0 smtp"

[Leaf-user] Am so lovin LEAF, but have got some question

If you really must get to the point of the story skip down to the closing tag for . Big thanks to many! Not in any order but how I'm finding them in my mail archive, and I know I'll leave out some. Especially jack at monkeynoodle, guitarlynn at kscable, charles at steinkuehler

Re: [Leaf-user] Re: Leaf Mail Command

Hi Simon Simon Bolduc wrote the following at 18:58 06.02.2002: >Seems that Rogers is using ESMTP as the protocol - which isn't really POP >before SMTP (as far as I can tell at least) - using a program called >postie I am able to mail via a command line - without telling it what my >pop server'

[Leaf-user] Multiple Gateways with Dachstein

Hey everyone, I am trying to set up a Dachstein firewall to use multiple gateways. We have two DSL connections (pppoe, ugh) and one ISDN connection from Worldcom. I know setting this kind of thing up can be quite difficult, espically if one is looking to do load balancing. Since this is the c

[Leaf-user] RE: Mail logs on Oxygen

Title: RE: Mail logs on Oxygen Thanks to all who helped! I've created a /root/headers directory with files containing email headers for each logfile that I wish the machine to email me, each named with the same name as the logfile.  Then, I have added 3 lines to multicron-d like so: rotatel

Re: [Leaf-user] Leaf Mail Command

I grep the stuff I want from messages (just denied packets) - everything is logged to another server and I check that - I just like to see what ports people are probing on a daily basis. S >From: Jack Coates <[EMAIL PROTECTED]> >To: Simon Bolduc <[EMAIL PROTECTED]> >CC: <[EMAIL PROTECTED]>, <

Re: [Leaf-user] Leaf Mail Command

If the server is on the protected LAN, you could always just do remote syslog. This also lets you use some of the nice Perl-based log anaylzers to prioritize and mail the output. Jack On Wed, 6 Feb 2002, Simon Bolduc wrote: > Seems that Rogers is using ESMTP as the protocol - which isn't reall

[Leaf-user] FTP Timeout Problems with Oxygen

Hey everyone, I've started to notice FTP problems with an Oxygen firewall I have running. The problem occurs on both unix and NT systems located behind the firewall. I have found that all ftp transfers be they incoming or outgoing eventually freeze. Although it appears that NT -> NT transfers

Re: [Leaf-user] Re: Leaf Mail Command

Seems that Rogers is using ESMTP as the protocol - which isn't really POP before SMTP (as far as I can tell at least) - using a program called postie I am able to mail via a command line - without telling it what my pop server's address is. So I guess I'll just scp the necessary log files over

Re: [Leaf-user] IPSec 1.9 on a bare 2.9.8 floppy ?

> It is posible to use ipsec.lrp (1.9) on a standard LRP 2.9.8 flopply (provided that I correctly patch and recompile the 2.2.19 kernel that comes with it ) ? > > I need to set up just a tunnel endpoint, and want to run it from a bare 1.44 floppy in a 1 NIC machine, so I don´t want the additional

RE: [Leaf-user] Need help getting LEAF running

At 05:22 PM 2/6/02 +, Julian Church wrote: >At 09:03 06/02/02 -0800, Ray Olszewski wrote: >>At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote: >> >> >Now I can proceed to try to get the Win machine applications to access the >> >outside world (mail, http, etc.). Is it necessary to enable these w

RE: [Leaf-user] Problem booting Dachstein CD

That would explain the latter problem, i.e. boot from floppy but still not see the CD-ROM. The CD-ROM was configured as /dev/hdc (i.e. primary on second IDE interface). I wonder if this is also why it wouldn't boot from the CD? Having said all that; I'm sure I have booted from a DCD on hdc. Gareth

[Leaf-user] IPSec 1.9 on a bare 2.9.8 floppy ?

  It is posible to use ipsec.lrp (1.9) on a standard LRP 2.9.8 flopply (provided that I correctly patch and recompile the 2.2.19 kernel that comes with it ) ?   I need to set up just a tunnel endpoint, and want to run it from a bare 1.44 floppy in a 1 NIC machine, so I don´t want the additio

RE: [Leaf-user] Need help getting LEAF running

At 09:03 06/02/02 -0800, Ray Olszewski wrote: >At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote: > > >Now I can proceed to try to get the Win machine applications to access the > >outside world (mail, http, etc.). Is it necessary to enable these within > >network.conf? > >In general, no. For some

RE: [Leaf-user] Need help getting LEAF running

At 06:32 AM 2/6/02 -0700, Hall, Michael A wrote: [...] >lsmod shows: >8390 (unused) >natsemi (used by 1) >8139too (used by 1) >pci-scan (used by 0 [natsemi]) > >Does this imply that 8390 is unnecessary? Yes. I don't recall either of the actual NIC modules you use depending on 8390.o >It seems th

Re: [Leaf-user] Mail logs on Oxygen

> 1) If the log I'm trying to send is large, I get a "ssmtp: Header too large > Max is 4000 characters" error. Obviously, I need to do some pre-processing > on the log files to define a header at the top of the file and put the log > info in a defined "body" of the message. Since I'm new to linu

Re: [Leaf-user] Need help getting LEAF running

On Wednesday 06 February 2002 07:32, Hall, Michael A wrote: > Thanks for all the input. Apologies for the text and line length > issue. I hope this message is improved. > > I tried the various suggestions with varying success: > > 1.tried using rtl8139 with 8390 without success (same signature as

[Leaf-user] Mail logs on Oxygen

Title: Mail logs on Oxygen I'm running the May 2001 release of Oxygen, and I'm trying to get the system to email me the logs each day.  I have ssmtp working from the command line, so that I can "ssmtp [EMAIL PROTECTED] < /var/log/kern.log" and the log shows up just fine. However, I have two p

Re: [Leaf-user] Problem booting Dachstein CD

> > I had a strange problem installing Dachstein today. The hardware was a Dell > > Dimension XPS. The machine would boot from a Windows CD, but for some reason > > it would not boot from the Dachstein CD I had created, and tested, on > > another Dell. > > I created a boot floppy, but that wouldn'

Re: [Leaf-user] Problem booting Dachstein CD

> I had a strange problem installing Dachstein today. The hardware was a Dell > Dimension XPS. The machine would boot from a Windows CD, but for some reason > it would not boot from the Dachstein CD I had created, and tested, on > another Dell. > I created a boot floppy, but that wouldn't recognis

Re: [Leaf-user] Rebuilding the Dachstein CD

> I am usin' the Dachstein CD 1.0.2 and want to know if you can get the > updated, configured boot floppy image back into the iso and reburn the > ISO so it all runs from the CD, with yer personal configurations from > the floppy? I'm not a man of Linux, but it does interest me very much > and hav

Re: [Leaf-user] Problem booting Dachstein CD

Gareth Howell wrote: > > I had a strange problem installing Dachstein today. The hardware was a Dell > Dimension XPS. The machine would boot from a Windows CD, but for some reason > it would not boot from the Dachstein CD I had created, and tested, on > another Dell. > I created a boot floppy, b

[Leaf-user] Rebuilding the Dachstein CD

I am usin’ the Dachstein CD 1.0.2 and want to know if you can get the updated, configured boot floppy image back into the iso and reburn the ISO so it all runs from the CD, with yer personal configurations from the floppy? I’m not a man of Linux, but it does interest me very much and have l

RE: [Leaf-user] Need help getting LEAF running

Thanks for all the input. Apologies for the text and line length issue. I hope this message is improved. I tried the various suggestions with varying success: 1.tried using rtl8139 with 8390 without success (same signature as before) 2.tried HOSTS0 eth0_IPADDR ... instead of eth1_IPADDR without

Re: [Leaf-user] IPSec automatic setup.

malik menzong wrote: > > Hi- > I currently have a working system. But I keep on stubbling on a small issue > with my file rc.firewall > this files contains all the ipchains rules. When I boot my system and it > runs, I can see that the new rules have been applied from the browser(I am > using rou

Re: [Leaf-user] What logs mean.

Hi Jason At 21:31 05/02/02 -0800, Jason C. Leach wrote: >If I have an entry: >Packet log: remote DENY eth0 PROTO=6 208.181.x.y:3254 208.181.x.y:80 L=48 >S=0x00 I=63245 F=0x4000 T=121 SYN (#15) > >What does the >PROTO=6 > >SYN >#15 > >Mean. There's a really handy one-sheet PDF file about interpr