Hi All
At 20:52 10/04/02 -0500, David Goodrich wrote:
you
can change the irq addresses with 3c5x9cfg.exe ... 3com doesn't have it on
their site any more...
Yes they do - it's on disk 1 of their Etherdisk package, downloadable here:
http://support.3com.com/infodeli/tools/nic/3c509/3c5096.1.htm
In my past use of Snort it was for intrusion detection. It watches
all the incoming traffic for patterns that may be hack attempts. I'm
not aware of it being useful for controlling where internal users go.
In fact I think it only logs suspicious activity and doesn't actually
stop traffic from
BTW, does anyone know how to detemine which RJ45 is which interface on the
D_LINK DFE-570TX with the tulip driver?
IIRC, the top connector (the one farthest from the PCI connector) is the
first interface to get recognized (ie eth0 if this is the only card in the
system), and the connector
Charles, it appears you are FreeSWAN very aware. I'll appeal
to you first but if you don't want to handle I'll turn to freeswan
because technically I'm working on non LEAF right now.
And it looks like I'm going to have quite a few questions.
IPSec(1.5) works like a charm on Eiger but I
On Thu, 4 Apr 2002 15:18:59 -0500
Eric B Kiser [EMAIL PROTECTED] wrote:
_SUCCESS_
The results as copied from my hyperterm window..
LEAF configuration menu
1 ) Network configuration
2 ) System configuration
3 ) Packages
Chad what you are referring to is that linux kernel having serial support
built in. The 'normal' linux kernel should have this, that and modification
to the syslinux.cfg file on the floppy should be the only modification you
should have to make. There is a fairly extensive HOW-TO that has this
IPSec(1.5) works like a charm on Eiger but I wanted to do thorough
QA on 2.4 with iptables before going to LEAF 2.4 ( Bering ?)
Netfilter is very different from the 2.2 stack.
Anyway I loaded freeswan 1.94 and 1.96 on RH7.2(linux 2.7) and
am seeing strange things:
1: One scenario is
I'm not wanting this to get out of hand ... but ...
my wish list of programs to be included on the next DCD version include
ez-ipupd.lrp
The newest version I think is at
http://leaf.sourceforge.net/devel/jnilo/packages/ez-ipupd.lrp
Docs at
On Thursday 11 April 2002 10:07, Chad Carr wrote:
The contents of this thread make a delightful howto, but I am
wondering when you say success what you really mean. I can copy the
same results as you from my minicom window (i.e the boot happens and
I can log in) but there is one large thing
On Thu, 2002-04-11 at 08:45, guitarlynn wrote:
Boot messages are set in Syslinux, not the LEAF OS until the kernel
gives up control to INIT. The console keyword in /syslinux.cfg should
point to the serial port instead of tty if your planning to run
headless. Charles serial HowTo and the
Interesting that you mention the 3c5x9cfg utility! I was using this the
other night and found some strange behavior which may or may not be of
use to you.
If you change the transceiver type (? -this is from memory) or at least
enter the option for TP vs AUI, when you exit there will be another
On Thu, 2002-04-11 at 09:10, Brock Nanson wrote:
If you change the transceiver type (? -this is from memory) or at least
enter the option for TP vs AUI, when you exit there will be another
option at the bottom of the list. It showed as being a toggle for full
or half duplex. As these cards
Support Requests item #542543, was opened at 2002-04-11 08:39
You can respond by visiting:
http://sourceforge.net/tracker/?func=detailatid=213751aid=542543group_id=13751
Category: Release/Branch: Bering
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to:
Am Donnerstag, 11. April 2002 07:46 schrieb Victor McAllister:
My wish list of programs to be included on the next DCD version
include xntp.lrp and psentry.lrp both from
http://leaf.sourceforge.net/devel/ddouthitt/packages/
I've built a dachstein 1.0.2 based CD with glibc 2.1.3. Among other
Am Donnerstag, 11. April 2002 17:48 schrieb Doug Hite:
I'm not wanting this to get out of hand ... but ...
my wish list of programs to be included on the next DCD version
include
ez-ipupd.lrp
I agree ez-ipupd.lrp is a must have on a CD.
Additionally and as alternative for those who don't
I thought about portsentry as well, but found it's not a good idea to
block ports based on ip-addresses.
snip
Please correct me, if I understood portsentry wrong; I'm willing to
add it as soon as possible, if it's handling dynamic addresses
without problems.
Port-sentry and similar
I'm not sure if this would be possible but:
Wouldn't it be possible to do a reverse lookup on all blocked IPs (via a
script) when they are blocked, add it to a file, and then every few hours do
another lookup to see if the FQDN associated with the IP has changed - (if
it has then remove it
Douglas Bush wrote:
I'm using LEAF Bering in a way it probably wasn't intended, but its got
just the right level of features for what we're doing.
I'm using x86 Embedded PCs from http://www.compulab-systems.com. I've
modified the kernel to support the Compulab Nor and Nand flash. The NOR
Hello,
I have a Dachstein box that does NAT and port forwarding for my network. I
would now like to implement a VPN. I replaced the kernel with an IPSEC
enabled one, and loaded the needed modules. I have the box able to boot
and still NATing and port forwarding but get error messages. I do
First, a *big thanks* to the developers of this wonderful software. I am
a Linux LEAF newbie, so please respond accordingly :-)
I am running Dachstein-CD 1.0.2 on an old headless P133/32MB box as a
dedicated firewall/router for my home network. I use Putty WinSCP over
SSH for internal remote
On Thu, 2002-04-11 at 14:08, Bob Osola wrote:
1) Can someone please explain how the logs work, or point me to doc
source?
Bob,
I hope this information helps.
FAQs sec09: Security Firewall Questions Answered
* How Do I Interpret IPChains Log Entries?
Thanks for you help.
I tried both suggestions, and neither seems to be correct.
Also, I compiled all the file systems/drivers into the kernel I'm using.
-Original Message-
From: uml [mailto:uml] On Behalf Of Jacques Nilo
Sent: Thursday, April 11, 2002 2:49 PM
To: Douglas Bush
Cc:
I have a Dachstein box that does NAT and port forwarding for my network. I
would now like to implement a VPN. I replaced the kernel with an IPSEC
enabled one, and loaded the needed modules. I have the box able to boot
and still NATing and port forwarding but get error messages. I do not have
1) Can someone please explain how the logs work, or point me to doc
source? My Weblet log shows messages 0-3; why 0-3? Can these be backed
up? The log was showing 2,300+ denied/rejected entries over 5 days
uptime, but it has suddenly reset itself to today's entries only (50+).
Is this a
How do I edit syslinux.cfg on the DCD image? I have winimage and can
view the ISO image but I don't see syslinux.cfg. I want to add the
serial terminal redirect to it so I will see boot messages.
Also, am I correct in thinking that I can replace the .lrp files in the
image with my floppy backups
Todd:
I realize that Snort is more for monitoring (NIDS in particular).
However the current documentation indicates that it can scan for content
and, if desired, drop the packets.
It also says it can do this in either direction.
So, if one were to think outside the box, instead of blocking
How do I edit syslinux.cfg on the DCD image? I have winimage and can
view the ISO image but I don't see syslinux.cfg. I want to add the
serial terminal redirect to it so I will see boot messages.
You boot off a floppy (or other writable media), or you burn a new CD :
Also, am I correct in
Quoting Simon Bolduc [EMAIL PROTECTED]:
I'm not sure if this would be possible but:
Wouldn't it be possible to do a reverse lookup on all blocked IPs (via a
script) when they are blocked, add it to a file, and then every few
hours do another lookup to see if the FQDN associated with the
Thanks for the response Charles,
I am planning to burn a new CD but I don't see where to edit
syslinux.cfg
to use when burning the new CD. I can copy it from a boot floppy but
where do I have winimage put it to replace the current one on the ISO
image?
Thanks,
Kory
Charles Steinkuehler wrote:
I don't know how to do it with WinImage...
this is what I did ( I have a access to RedHat Linux machine) so
mount -t msdos bootdisk.bin -o loop /mnt/lrpmnt
cd /mnt/lrpmnt
vi syslinux.cfg
then rebuild the .iso image and burn
Upnet Joe
- Original Message -
From: Kory Krofft [EMAIL
On Fri, 12 Apr 2002 00:04:42 -0400
Upnet Joe [EMAIL PROTECTED] wrote:
I don't know how to do it with WinImage...
this is what I did ( I have a access to RedHat Linux machine) so
mount -t msdos bootdisk.bin -o loop /mnt/lrpmnt
cd /mnt/lrpmnt
vi syslinux.cfg
Have you tried mounting the iso
Greetings,
I'm a long time user of LRP. My last LRP was a
2-disks EigerStein with ssh/sshd and it worked great.
I have decided to give Dachstein a try but ran into 2
problems, and I seek your help.
Here is how I got Dachstein to work with my cable
modem (Cogeco@Ontario, Canada).
I downloaded
32 matches
Mail list logo