Resend as plain text
Michael McClure wrote:
> 3 questions:
>
> 1) How do I install udhcp-0.9.6-compiled.tar.gz if I want to use it?
> Do I just copy it onto the LEAF and uncompress/untar it in some
> directory, then backup? Or is it something else.
>
> 2) I did download the dhclient.lrp
| Message: 4
| From: "Allan Crooks" <[EMAIL PROTECTED]>
| To: [EMAIL PROTECTED]
| Date: Thu, 13 Jun 2002 22:24:00 +0100
| Subject: [leaf-user] Using LEAF just for IPSEC?
|
| Hi,
|
| I've got a quick question about using LEAF (and any of its
| distributions).
|
| I've currently got an ADSL router,
The basic question you need to answer for us is: how is your system doing
DNS? Are you running your own DNS server on the router and using it to do
DNS directly (i.e., starting at the roo servers and working down)? Are you
running a DNS server that uses your ISP's DNS server(s) as forwarder(s)?
Steve Jeppesen wrote:
>
[ snip ]
> Active Internet connections (w/o servers)
> Proto Recv-Q Send-Q Local Address Foreign Address State
> tcp0 0 192.168.1.254:80192.168.1.2:33449 ESTABLISHED
> tcp0 0 192.168.1.254:80192.168.1.2:3
On Thursday 13 June 2002 16:24, Allan Crooks wrote:
> Now I want to setup a LEAF box that would act as a router, but for
> certain traffic (going to a particular IP address), it would use
> IPSEC. But I need it to forward all traffic to the router (which is
> the main gateway).
>
> So essentially
On Thursday 13 June 2002 22:34, Steve Jeppesen wrote:
> It seems there should be a way to modify network.conf (Dachstein CD
> V1.02) to not allow any external connections from any IP using port
> 53 - is there something in network.conf that would work? I have
> looked thru network.conf but do not
I am having trouble with these "established connections" showing up in my viewmasq
log to the point where no one on the homenetwork can connect to the Internet.
The problem seemed to go away after AT$T assigned new IP's for everyone in the
neighborhood, but just today it reared its ugly head agai
I have added all the new packages as requested so far and included bind-8 as
well (someone asked for it a long time ago in leaf-user). I added the two
sample .cfg files. I updated the ssh* lrps. I updated the changes.txt and
am in the process of updating the README.txt. I removed the old ssh1
I can do that I guess. Give me an excuse to get my hands dirty in Linux.
Wasn't there some fixes for the mailing scripts? I thought that was a minor
fix that might stop some major headaches. Can't seem to find it though.
Sean
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL P
> I'm currently using the Eiger Firewall Extended scripts that Charles
> created for the Eiger version. I would like to consider updating to
> DachStein CD due to better reliability/security gained from the CD-ROM. I
> believe my Hard Drive is on it's last leg. Can I use the Extended
Scr
Hi,
I'm currently using the Eiger Firewall Extended scripts that Charles
created for the Eiger version. I would like to consider updating to
DachStein CD due to better reliability/security gained from the CD-ROM. I
believe my Hard Drive is on it's last leg. Can I use the Extended Sc
Hi all
I bought 3 dlink wireless adapters to make my internal network wireless.
But with only partial success. I am using bering by the way.
My progress so far.
I loaded the hostap_pci.o module from jacques.
and modified shorewall to use wlan0 as internal device over eth1.
The wlan adapter is
Hi,
I've got a quick question about using LEAF (and any of its
distributions).
I've currently got an ADSL router, which performs NAT and
firewalling for me. I have a machine that needs to connect to a VPN
using IPSEC. Now, all the documents talk about the LEAF box
using either 2 network card
> Extremely easy usability fix for /usr/sbin/lrpkg:
>
> http://www.geocrawler.com/lists/3/SourceForge/7325/175/8861202/
Yeah, this should be added if you feel up to re-packaging root.lrp. Note
that the problem only occurs on MSDOS filesystems (where package.lrp.lrp is
the same file as package.l
Just to document my findings:
In (lack of) response to my earlier post on specifying static-routes with
Oxygen,
http://www.rslomkow.org/Pretender/scripts/static_route.html
has a script that looks like it might be useful.
I'll be trying this on a Bering router.
On Thu, 13 Jun 2002, Charles Steinkuehler wrote:
> > I'm actually working on an updated cd. I have
> > added/updated ipmail.lrp, udhcp.lrp, sshkey.lrp,
> > sshd.lrp, sshd.lrp, sftp.lrp, and my libz.lrp was
> > updated previously. Any other packages I should
> > update/add? How about recent scr
Got them!
I'll wait until later tonight before making the ISO in
case anyone else has something to add.
Where should I upload the ISO to?
> > I already have psentry.lrp on my CD! Where are the
> > latest .lrp for the other packages? I get lost easily
> > on sourceforge. I'd be glad to add
> I already have psentry.lrp on my CD! Where are the
> latest .lrp for the other packages? I get lost easily
> on sourceforge. I'd be glad to add those other packages.
Jacques Nilo:
libz
ssh* (add sftp)
keyboard.lrp
ez-ipupd.lrp
Michael D. Schelif:
ntpclnt (ntpclient)
> The only request I'd add is to update ipsec and ipsec509 to
> FreeS/WAN 1.97. I'd volunteer to compile them, but my RH 5.2 machine
> blew it's HD about 48 hours after I installed it, so I'm without a
> compatible compile environment. If it would gar-run-tee an update, I
> could throw a new drive
On Thu, 13 Jun 2002, Charles Steinkuehler wrote:
> > I'm actually working on an updated cd. I have
> > added/updated ipmail.lrp, udhcp.lrp, sshkey.lrp,
> > sshd.lrp, sshd.lrp, sftp.lrp, and my libz.lrp was
> > updated previously. Any other packages I should
> > update/add? How about recent scr
> I'm actually working on an updated cd. I have
> added/updated ipmail.lrp, udhcp.lrp, sshkey.lrp,
> sshd.lrp, sshd.lrp, sftp.lrp, and my libz.lrp was
> updated previously. Any other packages I should
> update/add? How about recent script changes? I'd be
> willing to update those as well if ne
I'm actually working on an updated cd. I have
added/updated ipmail.lrp, udhcp.lrp, sshkey.lrp,
sshd.lrp, sshd.lrp, sftp.lrp, and my libz.lrp was
updated previously. Any other packages I should
update/add? How about recent script changes? I'd be
willing to update those as well if needed.
This has been discussed before, but I think you might try to first get the
disk to boot a basic verion of DOS. Try formatting it and just getting to a
boot prompt. Then you can use syslinux to initialize the disk to boot the
files. I would assume that the .bin can be mounted similar to a iso fi
> I'm hoping you have a quick answer on this one. I'm running DCD 1.02. I
had
> the system up and running with two VPNs happily passing data, and then the
> thunderstorm came. Don't think it was the culprit, but on reboot etc.lrp
> was unreadable. Even though I keep telling people to back up their
Charles,
I'm hoping you have a quick answer on this one. I'm running DCD 1.02. I had
the system up and running with two VPNs happily passing data, and then the
thunderstorm came. Don't think it was the culprit, but on reboot etc.lrp
was unreadable. Even though I keep telling people to back up the
> Jun 13 00:03:34 mikerouter dhclient: ip length 328 disagrees with bytes
> received 332.
IIRC, this is a known bug in a widly released non-linux based DHCP server
(BSD or Solaris, if memory serves). Nothing to do about this but ignore (or
not log) the errors...or get your ISP to update their DH
> I scanned one of my firewalls just for the fun of it.
> We've been using Nessus for scanning a client's network
> to prepare for a security audit. Nothing fancy, just
> a "default, don't DOS or destroy anything" type of
> scan. Thought you all might be interested. Dach CD
> 1.02 (I updated so
Your logs probably ate all your free memory.
I had this happen when I did a similiar scan, my system
slowly became less responsive. The firewall never
failed protecting, but it did stop passing packets for
a while.
I see your biggest warning was using the earlier
version of ssh :). All in all n
I have a compact flash to ide converter board and
would like to put a copy of Oxygen on a CF card and
use the board to boot but I am not exactly sure how.
I have connected my compact flash to my linux system
via a SanDisk usb writer (SDDR-31) and the system sees
it as /dev/sdb. I downloaded the l
I scanned one of my firewalls just for the fun of it.
We've been using Nessus for scanning a client's network
to prepare for a security audit. Nothing fancy, just
a "default, don't DOS or destroy anything" type of
scan. Thought you all might be interested. Dach CD
1.02 (I updated some pac
On Wed, 12 Jun 2002, Eric House wrote:
> My shorewall logs show that I'm dropping an identical packet every
> three minutes (exactly). After a reboot of the router the packet
> resumes, but might be at a different time -- which makes me wonder
> if it's an artifact of the router rather than comi
Hi, I am using Bering rc2 on a compact flash card at the moment. Working
well, just have a question though, Would it be possible to build a kernel
with FDDI support?
A quick internet scan shows there has been a little work done to combine
Token Ring and LRP in the past but I found no reference to
Hello Brock,
> Would Vic's use of the DNS server be to allow opportunistic
connections,
> where the key is stored on the DNS server? Presumably tinydns would
> allow this? Would it allow dynamic updates of your IP (and thus
> eliminate a commercial dynamic DNS server subscription)?
>
> I didn't
I have seen mention of a nic driver bug awhile back that got fixed.
http://www.scyld.com/pipermail/realtek/2000-October/000659.html
On Wed, 12 Jun 2002, Michael McClure wrote:
> More info from the logs:
>
>
> Jun 13 00:03:34 mikerouter dhclient: ip length 328 disagrees with bytes
> received
Oops...forgot the data
If you're using a windows client, u can try http-tunnel, what it does is
tunnel all traffic, via the proxy server on port 80
cheers
-Original Message-
From: Jack Coates [mailto:[EMAIL PROTECTED]]
Sent: Saturday, May 25, 2002 17:09
To: [EMAIL PROTECTED]
Cc: leaf
S
-Original Message-
From: Jack Coates [mailto:[EMAIL PROTECTED]]
Sent: Saturday, May 25, 2002 17:09
To: [EMAIL PROTECTED]
Cc: leaf
Subject: Re: [leaf-user] SSH via http ?
Use corkscrew (http://www.agroman.net/corkscrew); you may need to use
cygwin if coming from windows.
Works like a
36 matches
Mail list logo
