>
> I have an old laptop that is running Linux that I'd rather not invest in a
> pc-nic for it, but I do have a null modem serial cable to connect to the LRP
> box. Is there a way to get an IP over the serial line. Similar to using a
> modem I would think? Or is this something that has not be
Also, to create a user, you have to create a line in both the
/etc/passwd and /etc/shadow files. In /etc/shadow, copy the root line,
insert your new user name where root is, then delete the corresponding
password. Apparently LEAF needs the additional info on the shadow line
or it doesn't "take"
;
> Regards,
> Eric
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of
> [EMAIL PROTECTED]
> Sent: Friday, June 21, 2002 1:41 PM
> To: Jonathan French
> Cc: [EMAIL PROTECTED]
> Subject: Re: [leaf-user] Double Private Netw
Howdy,
I've been setting up a VPN. One of my clients has a Charter Pipeline
internet connection at home, and wants to communicate with the LEAF box
at his work via FreeS/WAN. I got him a D-Link firewall box to stick
between his cable modem and his computer as an added layer of security.
Then
Actually, the instructions for 2.9.4 aren't too far off - I used what I
had set up 2.9.4/2.9.8, and copied the ppp.lrp and mgetty.lrp directly
to Dachstein. The only real change was using the larger Dachstein
kernel that had serial support compiled in. You will probably need to
find new modules
You need to backup etc.lrp - that holds the network.conf file. Anytime
you make changes to files or create new ones, they must be backed up to
the floppy.
Good Luck,
Jon
Dave Sorf wrote:
>
> Hello,
> i have bad question.
> I don't know how save and finish configuring files in Oxygen in first t
Just comment out ("#" at beginning of line) any interfaces that you
are not using - LEAF products are "smart" in that they loop through
the interface names that are defined in network.conf.
Good Luck,
Jon
Mohd Nazri Bin Ab Hamid wrote:
>
> what about the configuration for eth1 that is not use
Make sure you use the normal kernel, as the "small" kernel does not have
serial support.
- Jon
Mohd Nazri Bin Ab Hamid wrote:
>
> can dachstein-cd-v1.0.2 work for eth0 and ppp0
>
> what about the configuration for eth1 that is not use but it is in the
> network.conf/ipfilter.conf
>
>
Howdy,
I got the pre-shared key to work, so of course now it is time to fix
what's working and try RSA. Ok, just a few simple questions I hope:
1) Sentinel: Once a certificate is generated with an associated name,
and I export the public key, when it is put into ipsec.conf, do I put
Hi Charles,
Thanks, leftfirewall=yes lets me ping a machine on the other subnet
now. I think I added a few too many extra ipchains rules, but now that
it is working I can back off on them.
- Jon
Charles Steinkuehler wrote:
>
> > > Look at your local routing setup (ip route or n
#x27;ed subnets. I had turned this on before, but I
don't think the previous "route add" statement is set. Doing this from
30 miles away makes it a bit harder.
Thanks for your help,
Jon
>
> From: "Jonathan French" <[EMAIL PROTECTED]>
> > I'm havi
I should probably amend that last statement - my current test setup is:
192.168.2.X - ipsec gateway {default} - 2Wire firewall - SSH Sentinel
And I am experiencing the same problems that MLu mentioned. If I try to
add a route on the subnet machines (ok, sigh windows), I get error 87.
Do I eve
Hi Charles & MLu,
I'm having similar problems, and have found this thread helpful. I've
been wondering, do we have to declare the routing on the gateways, or
shouldn't ipsec handle this? Also, what if the ipsec router is not the
default gateway for a machine that you are trying to ping from
el
Thanks Charles - fortunately the non-IPSec router is not Dachstein. I
am really impressed by your work on Dachstein, and was especially glad
to see the inclusion and improvements to the multiple disk option.
- Jon
Charles Steinkuehler wrote:
>
> Hmm...must be the day for VPN questions
Howdy,
I'm trying to get two different subnets (behind two different IP
Masq'ing LRP boxes) to talk over IPSec. I am using a Sentinel 1.3
client on one side {"right" machine}, and am using it's diagnostics to
try to make the connection on the IPSec gateway {"left"}. I have turned
off m
Just an odd thought...
For routers, perhaps one could use random packets to provide the random
data for /dev/random?
Well, I told you it was an odd thought.
- Jon
Charles Steinkuehler wrote:
>
> > I'm running several Dachstein 1.02 boxes doing IPSEC. I've been using
> > shared secrets
Bek Korn wrote:
> Hello,
> I have a problem on my dial up server where the computer picks up the phone fine
>when I'm using hypertermanal but not with a ppp dialup, it says that the password is
>not correct. I have it set up so it uses the pap-secrets file instead of the regular
>login file. I
Hi Lonnie,
Since you already have a Samba server running, you can tell it to act
as the WINS server also, which will allow Windows machines to see each
other across subnets. What kind of firewall is it? Do you use IP Masq?
There is a bit of debate as to whether or not a WINS ser
Oh, and Dave was using a 2.0.x box, so I would guess ipchains would not
be an option - I don't know if this matters or not in terms of the
forwarding rules.
- Jon
Jonathan French wrote:
>
> Hi Charles,
>
> Um, my mindset was probably the old "if you have a
Hi Charles,
Um, my mindset was probably the old "if you have a hammer, every problem
looks like a nail" situation. I have always required a proxy-arp
situation, so I hadn't considered separate ppp "hosts". So you can drop
the : (lets client specify) and proxyarp, and just get
a ppp interface,
At the risk of speaking without a clue as to your actual setup...
On an LRP box you can associate the PPP server IPs with the internal
masqueraded network, rather than with an external network (still
proxyarp). You may need to add a network card to create a fake internal
net...
Hope this is so
> Meanwhile, did you check http://lrp.c0wz.com ?
>
> Rick has a mini-HOWTO on ppp servers.
The howto was written with 2.9.4, and works with 2.9.8 also. As it is
pretty package specific, as long as you can get a ppp(d).lrp and a
mgetty.lrp and the required modules, you should be fine.
I did a little googling, and it would appear that the 3c509 has a
utility to turn off PNP. You probably then also want to specify the IRQ
& memory.
Your IF0 netmask could probably be 255.0.0.0 (anyone?), although for
your purpose it may be fine.
It does not appear that you have defined the sub
To follow up on Danny's answers, and to save you a lot of trouble, if it
doesn't cost too much skip the 3 NICs and just use two and buy an extra
hub. Use one NIC for the DSL, and plug the second NIC into the extra
hub (or switch) which then services the other two hubs. That way you
won't have a
Hm, anyone out there know the status of USB modems and LEAF's kernel?
It would probably be easier just to buy a cheap serial modem...
- Jon
> Fourty Four Computer Centre wrote:
>
> i've read your how-to on PPP Server..
>
> and it's true for serial modem.
> but now how can i configure LRP to
25 matches
Mail list logo
