there are lots (stopped counting) of these in my logs:
Jul 9 08:48:02 firewall kernel: attempt to access beyond end of device
Jul 9 08:48:02 firewall kernel: 01:01: rw=0, want=6148, limit=6144
Jul 9 08:48:02 firewall kernel: dev 01:01 blksize=1024 blocknr=6147
sector=12294 size=1024 count
Just as a warning, i installed PGP Freeware 7.01's VPN software on my
windows XP box and it renedered my network connection totally nonfunctional,
i had to reinstall the OS.
-david
__
http://complex.wox.org
-Original Message-
From: Brock Nanson [mailto:[EMAIL PROTECTED]]
Sent: Wednesday,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ipchains input -p tcp -d 64.113.72.222 ftp -j ACCEPT needed to be higher in
the chain, so it works now. the thing that now baffles me is that i thought
network.conf was supposed to take care of adding the ipchains rule when you
added it to network.co
oftpd.conf .. the server works just fine on
my internal net but no-one is allowed to connect from the "real" world.
thanks
-david
- - Original Message -
From: "Michael D. Schleif" <[EMAIL PROTECTED]>
To: "David Goodrich" <[EMAIL PROTECTED]>
Cc: <
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
i'm not having any luck getting proftpd to be accessible through my
dachstein 1.02 floppy firewall. i tried going in active mode and forwarding
tcp 20 & 21 to the server, but no luck. has anyone done this before? tia
-david
:.:. ::: :: .::. .:..
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> If these NICs are 3c509s on the ISA bus, they aren't PnP
not true. about half of mine are, half aren't. apparently you can change
whether or not it's PnP, but i haven't been able to find the utility. you
can change the irq addresses with 3c5x9c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
yup, that did it. thanks for the help!
-david
- - Original Message -
From: "Joey Officer" <[EMAIL PROTECTED]>
To: "David Goodrich" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Tuesday, April 09,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm trying to get boot messages posted to the serial port with my dachstein
1.0.2 floppy fw, instead of just the screen. I assume, then, that i need a
kernel with serial support compiled into it, instead of loading serial.o as
a kernel module. is it
I emailed the list about certain hosts not being able to ssh into my
firewall. I've done a bit more testing, and it seems to be a mostly
arbitrary distinction between who can and cannot connect... I've gotten
connections from as far away as italy successfully, and some people that
live just a few
yes. 64.x.x.x
-david
- Original Message -
From: "rwtech.com" <[EMAIL PROTECTED]>
To: "David Goodrich" <[EMAIL PROTECTED]>
Sent: Friday, March 29, 2002 4:02 PM
Subject: Re: [Leaf-user] ssh/sftp through dachstein firewall
> do both dachstein boxes
I set up portforwarding to point ssh to my fileserver, in the hopes that i
would be able to secure-ftp into it, but it doesn't seem to like the
portforwarding.
svi network ipfilter list portfw says that port 22 is pointed to the
apropriate internal machine, and i can ssh/sftp into it from the int
i'd like to compile support for a null-modem console into my kernel so i
see boot messages and can dispense with the monitor currently attached
to my lrp box... running dachstein floppy 1.0.2... is there a howto i
missed? thanks in advance
-david
___
i mean when i tried to connect to that ip with an outside-the-firewall
connection none of the port forwards worked...
# ip addr list
...
2: eth0: mtu 1500 qdisc pfifo_fast qlen 100
link/ether xx:xx:xx:xx:xx:xx brd ff:ff:ff:ff:ff:ff
inet 64.113.72.222/24 brd 64.113.72.255 scope global eth
sorry, sent that last email with the wrong email account... should have
been [EMAIL PROTECTED] ... sorry for the inconvenience
-david
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
I tried adding a second static IP to my dachstein floppy 1.0.2 ... so i go
into /etc/network.conf and uncommented the line
eth0_IP_EXTRA_ADDRS="w.x.y.z" (where w.x.y.z is my new static ip)
and reloaded (svi network reload)... no luck. so i went to the instructions
for configuring network.conf, w
due to the one-way nature of the ipforwarding rules, you cannot take
advantage of the portforwarding your firewall does... i.e. htting
http://external.ip: will not show you what you see when you go to
http://192.168.1.10: ... to test your firewall rules, you need a net
connection that isn'
well, i am hoping to do some static leases, which worked fine under the
isc dhcpd... i'll do some looking and try to figure it out. thanks
-david
On Mon, 2002-02-18 at 13:49, guitarlynn wrote:
> On Monday 18 February 2002 11:27, David Goodrich wrote:
> > thanks for the good work
thanks for the good work, it's nice to have a smaller dhcp server :]
but i am curious... is there any way to use a "traditional" dhcpd.conf
instead of the user-friendly udhcpd.conf you have provided? thanks.
-david goodrich
On Mon, 2002-02-18 at 05:11, guitarlynn wrote:
In regards to your question about using static ip's on the internal
machines, there's two different dhcp-related modules... there's
dhclient, which is a dhcp client for your router, enabling your router
to pick up an external IP automatically. I gather from what you said
that you have a static ex
o:[EMAIL PROTECTED]]
Sent: Tuesday, January 29, 2002 7:04 PM
To: david goodrich; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] ip filtering
> This is something of an odd request, but here goes... I'm a college
> student, and use my dachstein 1.0.2 floppy firewall to keep my servers
This is something of an odd request, but here goes... I'm a college
student, and use my dachstein 1.0.2 floppy firewall to keep my servers
away from all the hacktivity on the local net... I forward the necessary
services to my servers, easy enough. But here's the deal: my floor
wants to put on a
I followed the Serial-HOWTO on lrp.steinkuehler.net and I'm still not
getting console messages on my dachstein 1.0.2 floppy setup... however,
from the boot logs...
Jan 29 00:39:40 firewall kernel: Warning: unable to open an
initial console.
Jan 29 00:39:40 firewall kernel: Serial
Is there a dhcpd.leases or equivalent file where I can determine which
computers have leased which ip's? one would /think/ something like this
exists, but I can't find it... I'm running dachstein 1.0.2 floppy, w/
the included dhcpd. Thanks.
-david
i'm attempting to run a null-modem cable from my router to my main pc to
manage my router w/o a monitor & keyboard permanently attached... so as
instructed in the serial-howto, i typed
echo "hello world" > /dev/ttyS0
to test the serial link...it returned
cannot create /dev/ttyS0: error 19
i tried using the "_" and it didn't work. unless being on the internal
network has something to do with it ... http://complex.wox.org... any ideas?
thanks in advance
-david
-Original Message-
From: David B. Cook
To: David Goodrich
Cc: '[EMAIL PROTECTED]'
Sent
uter is
nat'ing packets just fine (i'm writing this email from behind it) and...
yeah... i don't know what more information you need from me, but let me know
what you do need. if you have any idea what's wrong, i'd appreciate the help
:] thanks again
-david goodrich
from
[static ip]. thanks in advance.
-david goodrich
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
27 matches
Mail list logo
