> On the 486, both the Dachstien 1.0.2 floppy distribution and the
> "bootdisk.bin" on a floppy from the DachsteinCD work like a charm.
>
> On the P100, the floppy distribution boots and goes about loading linux,
> etc. However, when I try to boot from the DachsteinCD "bootdisk.bin"
> floppy, sys
It would be very usefull to have serial support compiled in the kernel.
I still haven't upgraded to Bering because of that.
My firewall does not have a video card and keyboard.
I control it using the serial console...
-Original Message-
[big snip]
Bering v1.0-rc1 does not have seria
Ernest Haak's Telstra BigPond disk image is now available in the contributed
portion of my website. The SourceForge mirror and my high-bandwidth mirror
are also updated...the files should make their way to other mirrors in the
next day or so...
http://lrp.steinkuehler.net/contrib_disk_images.htm
I have two DCD 1.02 firewalls that work well as firewalls but I want to connect two
subnets by creating a VPN tunnel between them. The Firewalls are on the same ethernet.
Host1 leftsubnet = = = FW1 - FW2 = = = rightsubnet Host 2
192.168.0.0/24194.248.236.75 194.
Close, but not quite right from your info!
Notes inline.
>
> # net ipfilter list | grep 50
> 9 1664 ACCEPT udp -- 0xFF 0x00 eth0
> 0.0.0.0/00.0.0.0/0 * -> 500 0 0 ACCEPT
>50 -- 0xFF 0x00 eth0 0.
Hi list,
I've tried the latest Bering release on a machine that just works with
Dachstein.
I've downloaded the Bering-Module for my Ethernet card (via-rhine.o)
copied them to /lib/modules added a line "via-rhine" in "lrcfg >
Packages conf. > Modules > Modules" and backed it up to the floppy.
Bu
At 4/3/02 11:31 PM -0500, Eric B Kiser wrote:
>Been searching through the site for the zebra.lrp package based on
>zebra version 0.92a. I could swear that I remember an announcement on
>the leaf home page that said that it was available. If anyone can
>provide a pointer I would appreciate it.
Eri
!!! WARNING !!! Danger Will Robinson!
It looks like you're running IPSec *AND* loading the ip_masq_ipsec kernel
module. I don't even know how this is possible, but it's definately
*WRONG*. You need to make sure you're using a kernel with KLIPS (IPSec in
the kernel name on my website). The def
> Thanks for the response. Here is where I am so far...
>
> [1] modified /etc/inittab so that my serial terminal line looks like this:
> T0:23:respawn:/sbin/getty -L ttyS0 9600 vt100
> also, I did verify that the serial port is set for com1
>
> [2] added ttyS0 as the first entry on the list in /et
Maybe I'm wrong, but that card may need 'pci-scan.o' also.
I'll have to check dependancies.
Meanwhile, please download also from the web site the 'pci-scan.o'
and add it to /lib/modules, and add a line before "via-rhine" in
"lrcfg > Packages conf. > Modules > Modules"
Backup and reboot to test.
My boss wants to put a linux router behind his
Road Runner(the ISP) cable modem so he can have a decent
firewall and possibly port forwarding.
RoadRunner says he can't do NAT.
Is that just smoke?
How would they know?
TIA, Phil
___
Leaf-user mailin
Really dumb question, but is IP Masquerading turned on by default?
Joey
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Charles
Steinkuehler
Sent: Thursday, April 04, 2002 7:55 AM
To: Rein Inge Hoff; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] VPN tunnel
I've had problems with various versions of syslinux and certain drives
previously. Sometimes when using 2 virtually identical computers (same
mobo, floppy drive, cpu and ram) one will boot and the other won't.
Generally I just grab a few different versions of syslinux and rewrite the
boot se
confirm 185373
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
Thanks everyone - as Charles' suggested earlier, I downloaded syslinux,
rewrote the boot sector and the box now boots - won't read the CD rom
media, but that's tonight's problem...
I thought I'd replied to the list when I responded to Charles post, but I
must have missed 'reply-to-all'...
Cha
Jacques,
in fact there is no pci-scan.o on the Bering modules area.
Is this right?
-Original Message-
From: Gufler Markus [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 04, 2002 4:51 PM
To: 'Luis.F.Correia'
Subject: RE: [Leaf-user] Bering PCI ethernet card module
Where can I find t
Hi all,
Two questions:
How can I enable/start a DHCP-Server on Bering?
Is there some example how to configure networks and shorewall for more
then one internal ethernet interface?
Markus
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sou
Phil,
I am using Dachstein with my Road Runner Cable Modem and it works fine.
In fact I get 30% higher transfer speeds than what I had using M$ based
solutions. You are correct that they really won't know or care to look
to see what OS he is using to connect. It should work fine but it is
possible
Charles,
This sounds just like what I had happening a few weeks ago when I
switched
to the released version of Dachstein from the release candidate. I
solved it by swapping in a kernel that had serial support compiled in
but never was able to figure out why serial.o wouldn't work. Is it
possible t
Gufler,
I'm working toward a two local interface firewall with a DMZ and of course
the Internet. At the moment I'm stalled on the tulip driver for a quad
NIC card so nothing I've done on shorewall is tested.
--
Sincerely,
David Smead
http://www.amplepower.com.
On Fri, 5 Apr 2002, Gufler Mark
> This sounds just like what I had happening a few weeks ago when I
> switched
> to the released version of Dachstein from the release candidate. I
> solved it by swapping in a kernel that had serial support compiled in
> but never was able to figure out why serial.o wouldn't work. Is it
> possibl
On Fri, 5 Apr 2002, Gufler Markus wrote:
> Hi all,
>
> Two questions:
> How can I enable/start a DHCP-Server on Bering?
> Is there some example how to configure networks and shorewall for more
> then one internal ethernet interface?
For Shorewall, you will probably want to use the LRP that I rel
What other information do you want to see to help me decide the best
solution to this situation? As often happens to me, I do not know a
better way to briefly present this to the List; so, if you want more
information, please, ask and I will provide it to you. Thank you.
OK, let's assume that
Hello Eric,
For me the serial console works on Bering, without compiling a
kernel.
I am using the 2.4.18 kernel and the matching serial.o from Jaques
site.
My syslinux.cfg starts with the folowing lines:
serial 0 19200 0
display syslinux.dpy#(displays nicely on my serial console)
serial.
Hello Eric,
For me the serial console works on Bering, without compiling a
kernel.
I am using the 2.4.18 kernel and the matching serial.o from Jaques
site.
My syslinux.cfg starts with the folowing lines:
serial 0 19200 0
display syslinux.dpy#(displays nicely on my serial console)
serial.
[snip]
Bering v1.0-rc1 does not have serial compiled in the kernel. This seems
necessary to have serial console access. I am considering to have serial
compiled in v1.0-rc2 for that reason. Any comment from the list on that
issue ?
Jacques
[/snip]
Yes Jacques. Please compile serial into the nex
> OK, let's assume that I have a working DCD firewall. By working, I mean
> everything is functioning as expected and it is pretty much a standard
> DCD v1.0.2.
>
> Now, suppose that it resides in a business with offices on multiple
> floors. This business wants to sublet one of the floors to so
I'm trying to get LEAF Bering up using a Quad NIC, the D-LINK DFE-570TX.
Errors are reported by the tulip.o module as shown below.
Loading modules:
tulip - Using /lib/modules/tulip.o
Linux Tulip driver version 0.9.15-pre9 (Nov 6, 2001)
PCI: No IRQ known for interrupt pin A of device 01:04:0 \
P
> Charles,
> As you suggested I typed in the line below at a command prompt:
>
> T0:23:respawn:/sbin/getty -L ttyS0 9600 vt100
>
> ...and got this response:
>
> T0:23:respawn:/sbin/getty: not found
>
> I assume, that as we have discovered, this is being caused by the absence
of
> serial support in
They probably just want to sell you additional IP addresses!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Joey Officer
Sent: Thursday, April 04, 2002 5:18 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [Leaf-user] cable modem and NAT
I am
Correction...
> - In /etc/ipchains.input:
> $IPCH -I input -j ACCEPT -d
Should be:
$IPCH -I input -j ACCEPT -d -i
Or you'll accept traffic destined to your client's lan from *ALL* interfaces
(ie your existing network), not just the big-bad-internet...
Charles Steinkuehler
http://lr
Thanks for the heads up Sjaak,
I have been unable to locate the serial.o and made the assumption that it
was compiled into the kernel. I have just found out that this is not the
case. I just looked again and I am still not finding it. If someone could
please provide me with a link to this modules
Hello Markus
A few cards based on realtek chips now (with kernel 2.4) needs
the mii.o module
( similar to the loading of 8390 before f.e ne.o )
As far as I know this is true for the following drivvers
8139cp.o
8139too.o
epic100.o
fealnx.o
pcnet32.o
viarhine.o
winbond-840.o
> I've tried the l
Support Requests item #539331, was opened at 2002-04-04 08:53
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539331&group_id=13751
Category: Release/Branch: Dachstein
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned t
Bullshitthat's what I am doing. And, as a matter of fact, they even
suggested using a linksys firewall with the 4 port switch.
I guess they don't want to field LEAF questions ;-)
Later
Tony
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL P
At 4/4/02 02:18 PM -0500, Eric B Kiser wrote:
>Thanks for the heads up Sjaak,
>
>I have been unable to locate the serial.o and made the assumption that
>it was compiled into the kernel. I have just found out that this is not
>the case. I just looked again and I am still not finding it. If someone
>FROM: Michael D. Schleif
>DATE: 04/04/2002 15:51:52
>SUBJECT: [Leaf-user] DCD pass-through interface ???
>Additionally, the business wants to give this other company
>internet access via the business' already functioning internet
>connection that happens to be firewalled successfully by the sub
Bad etiquette replying to myself, but since then I've discovered the the
pci=biosirq is a kernel paramemeter, so I put it in the right place.
That got rid of the suggestion to use the statement, but PCI now complains
about not finding devices 01:20, 01:28, 01:30 and 01:38. And IRQ is still
set t
heh! [grin/sigh]
The 'ol "not found" portion of that message seems devastatingly obvious to
me now. Thanks for being so polite in pointing that out.
I did as you suggested:
/sbin/getty -L ttyS0 9600 vt100
and after hanging for a couple of seconds I then got my prompt back. Before
I go any fur
Thanks Jay,Mike,Hilton and Charles.
I have a few things to play with now. No doubt i'll be asking a few silly
questions in the next couple of weeks.
Richard Saunders System Administrator
JB GOODWIN MIDSON & PARTNERS
Consulting Surveyors, Town Planners and
Development Consultants
PO BOX 92, TO
_SUCCESS_
The results as copied from my hyperterm window..
LEAF configuration menu
1 ) Network configuration
2 ) System configuration
3 ) Packages configuration
b) Back-up a package
I have a curious and annoying problem. I am on a cable modem system for
which the DHCP server apparently sits at a private IP address 10.0.48.1
although the system address is 68.2.x.x . The annoyance is that my logs
fill up with the following message:
Apr 4 21:04:55 gwrouter kernel: Packet log:
Leaf folks,
First, let me say that I'm not one to be regularly fwding alerts
around and such. But the following alert issue cropped up in my inbox
and and search for SNMP in the leaf archives didn't mention any recent,
relevant discussions so it might be relevant news. In all honesty I
Leaf folks,
First, let me say that I'm not one to be regularly fwding alerts
around and such. But the following alert issue cropped up in my inbox
and and search for SNMP in the leaf archives didn't mention any recent,
relevant discussions so it might be relevant news. In all honesty I
On Thursday 04 April 2002 17:51, Michael D. Schleif wrote:
> This other company wants a block of public ip addresses and they do
> not want to be firewalled by the first business.
> What is the simplest way to do this with DCD?
>
> What is the best way to do this with DCD?
>
> What do you think?
On Thursday 04 April 2002 15:59, [EMAIL PROTECTED] wrote:
> My boss wants to put a linux router behind his
> Road Runner(the ISP) cable modem so he can have a decent
> firewall and possibly port forwarding.
I can imagine ;-)
> RoadRunner says he can't do NAT.
> Is that just smoke?
Yes, it i
Support Requests item #539562, was opened at 2002-04-04 18:16
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539562&group_id=13751
Category: Release/Branch: Dachstein
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned t
Support Requests item #539562, was opened at 2002-04-04 18:16
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539562&group_id=13751
Category: Release/Branch: Dachstein
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned t
Support Requests item #539331, was opened at 2002-04-04 08:53
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539331&group_id=13751
Category: Release/Branch: Dachstein
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned t
No there is no pci-san.o in Bering mdoules area.
pci-san is being used by drivers written by Donald Becker and available at:
http://www.scyld.com/page/support/network/
Those are not part of the "standard" linux kernel even though they are really
well designed.
I am considering to compile them sepa
Hi there,
I am searching the internet for a good bpf filter
howto/tutorial/documentation/book but can't seem to find anything usefull.
So I turn to you guys for advice, anybody has a good link?
Kim Oppalfens
___
Leaf-user mailing list
[EMAIL PROTECTED
Hi,
I am trying to mount an ext2 partition to use as cache for squid.
What lrp packages to I need.
I tried the e2fs package - but I getcan't find library libext2fs.so.2
when I try mkfs.ext2.
So I made the ext2 file system under a redhat recover CD.
I now cant mount the ext2 partition eith
Oh yeh - I forget to say I am using the current oxygen distro from leaf.
thanks
Again
- Forwarded by Scott Farrell/ICConsulting on 05/04/02 04:21 PM -
|-+>
| | Scott Farrell|
| ||
| |
> Oh yeh - I forget to say I am using the current oxygen
distro from leaf.
>
I am not the oxygen specialist :-) but you probably need
to load ext2.o kernel module so that your kernel will be
able to support it.
That is what would have to be done in Dachstein or Bering.
Jacques
--
Profi
On Thu, 4 Apr 2002, Tony wrote:
> Bullshitthat's what I am doing. And, as a matter of fact, they even
> suggested using a linksys firewall with the 4 port switch.
>
> I guess they don't want to field LEAF questions ;-)
Possibly. They may just not be enforcing rules very closely.
> Later
Support Requests item #539615, was opened at 2002-04-04 22:33
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539615&group_id=13751
Category: Release/Branch: Bering
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to:
Support Requests item #539331, was opened at 2002-04-04 08:53
You can respond by visiting:
http://sourceforge.net/tracker/?func=detail&atid=213751&aid=539331&group_id=13751
Category: Release/Branch: Dachstein
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned t
57 matches
Mail list logo