Could someone please tell me which module(s) to use for the realtek 8201
chipset?
Thank you,
Kory Krofft
>
>
-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you
:
inetd is a daemon which will start tftpd when a signal arrives at port
22.
Joep
On Wed, 2006-01-11 at 17:19 -0500, Kory Krofft wrote:
Eric,
I uncommented the line in /etc/inet.d and backed up etc.lrp
On reboot I see no listing in ps and no line in the daemon log or any of
the other logs that
and reports that the dhcp
host is 192.168.254 but it times out without ever booting or even getting a
message from pxelinux.0.
How can I verify tftpd is running?
Thanks,
Kory Krofft
---
This SF.net email is sponsored by: Splunk Inc. Do
a message from
pxelinux.0.
How can I verify tftpd is running?
Thanks,
Kory Krofft
---
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
uot; and see if that offers a clue.
Kory Krofft
Jim Ford wrote:
I'm still struggling with Bering UClibc 2.3.1. There are long gouges down the
learning curve
where I've dug my nails in, but slipped back!
I've not got a fancy set-up: a cable modem to the net, the firewall, sw
John,
It should work fine with all of them. Just be sure to ask for an
ethernet style modem not USB.
I have been using LEAF with RoadRunner for 5 years with no problems.
Kory Krofft
John Desmond wrote:
I've been using LEAF for several years on a DSL line
to Verizon in the Washingto
Eric,
Thank you ! That solved the booting problem. I also saw that sh-httpd
was not found. It turns out that when I make the disk image or when Nero
burns it, sh-httpd becomes sh_httpd. Simple enough to fix. Now the only
remaining issue is getting the time zone info to work. I tried an entry
i
Any idea why I am getting these errors when my bootable uClibc CD boots?
: not foundpkg/mnt/leaf.cfg: 7:
: not foundpkg/mnt/leaf.cfg: 10:
: not foundpkg/mnt/leaf.cfg: 13:
: not foundpkg/mnt/leaf.cfg: 20:
TMPFS filesystem...30M
' for mount option 'size'
pivot_root: pivot_root: Device or resource bus
distro. Yes there are other mini distros out there but I
am familiar with leaf.
Thank you for all your efforts,
Kory Krofft
---
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real u
A progress report.
I have samba working pretty well on Bering uClibc. I created users via
smbpasswd -a .
I opened ports udp 137,138 tcp 139
My smb.conf looks like :
# Global parameters
[global]
encrypt passwords = Yes
security = user
domain logons = Yes
; an OS level of
the
hard drive to copy the backup lrps to for easy addition to my leaf CD.
Kory Krofft
K.-P. Kirchdörfer wrote:
Hi;
Am Donnerstag, 9. Dezember 2004 18:39 schrieb rawdata:
I've been reading up on this new branch of Bering, and I was
considering taking the plunge until I realized that ther
I am using Bering 1.2 with the current samba.lrp. I have no problems accessing my
samba shares
from either my Win2k or Win XP Pro boxes. The firewall does not show up in the network
places browser but
if I type in the ip or the path directly it works fine. I also have drives permanently
mapped t
>1.
>
>Is some config in the Weblet needed to allow hosts on internal
>subnets to
>access the http daemon ?
Yes. You must mane the proper adjustments to /etc/hosts.allow and edit the
CLIENT_ADDRS="192.168.1." line in /etc/sh-httpd.conf.
>
>2.
>Has anyone tried moving logging (and, therefore we
.
Sincerely,
Kory Krofft
---
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills. Sign up for IBM's
Free Linux Tutorials. Learn everything from the bash shell to sys admin.
Click now!
Michael, Ray, Lynn,
It looks simple enough.
I set it up as so:
/etc/dnscache/env/IP
0.0.0.0
/etc/tinydns-private/env/IP
127.0.0.1
/etc/tinydns-public/env/IP
192.168.10.254
ps shows two tinydns processes
I copied the etc/tinydns-private/root/data file I had over to
etc/tinydns
Michael, Ray, Lynn,
What you are all saying makes sense. I have tried reversing the interfaces that
dnscache and tinydns bind to with no improvement. I believe Michael is correct that I
need 2 instances of tinydns but I have no idea how to accomplish this in a lrp
environment. i would guess tha
Ray,
>[...]
>OK. The problem here is that qmail does not know that mail to
>[EMAIL PROTECTED] is mail for local delivery, so it tries to relay
>it to I
>can't-guess-where (can that host resolve kroffts.com?). This is, no
>doubt,
>a side effect of moving from kroffts.com to kroffts.dmz (or whatever
>Now, from here, I can conenct to your Web home page. I can also
>connect to
>your SMTP server, but with a long delay:
>
>[EMAIL PROTECTED]:~$ telnet kroffts.com 25
>Trying [a.b.c.d - address deleted]...
>Connected to dhcp024-210-193-152.woh.rr.com.
>Escape character is '^]'.
>[delay between 2 and
5 kkrofft mailuser 120 Dec 16 23:11 Maildir
Thanks to all who are able to suggest what I need to fix. I am sure I need work on the
tinydns config on the router and some user config assistance on the qmail server side.
Thank you,
Kory Krofft
Michael,
I set up the /etc/tinydns-private/root/data file per your suggestion,
=localhost:127.0.0.1
.localhost:127.0.0.1:a
.1.0.0.127.in-addr.arpa:127.0.0.1:a
.kroffts.home:127.0.0.1:a
.1.168.192.in-addr.arpa:127.0.0.1:a
=markii.kroffts.home:192.168.1.254
=coventry.kroffts.hom
call it. But since the subnets are different, it should not be
the same as the private lan?
Kory
On Mon, 22 Dec 2003 21:47:33 -0600, Michael D Schleif wrote:
>Kory Krofft <[EMAIL PROTECTED]> [2003:12:22:20:24:44-0500] scribed:
>
>
>>I believe as Ray has mentioned that the
Michael,
cat /etc/tcp.smtp gives
127.:allow,RELAYCLIENT=""
192.168.:allow,RELAYCLIENT=""
Kory
On Mon, 22 Dec 2003 21:51:31 -0600, Michael D Schleif wrote:
>Kory Krofft <[EMAIL PROTECTED]> [2003:12:22:20:24:44-0500] scribed:
>
>
>>>What
Lynn,
See below
>
>>I believe as Ray has mentioned that the major issue may be a
>>reverse
>>lookup that qmail is doing which causes the timeout error on the
>>mail
>>client. I am still looking into what dns settings I need to change
>>to fix
>>that possibility.
>
>I was assuming that all the
nd loc
networks. It works for lookups resolving internet hosts.
I will repost and ask what the proper setup is for dns service to resolve my 2
internal networks.
>Sorry I cannot take you all the way to an answer, but with the
>problem
>identified as a DNS misconfiguration, surely
Michael,
Thanks for the response. See below...
>Kory Krofft <[EMAIL PROTECTED]> [2003:12:21:12:53:56-0500] scribed:
>>I now need to get Qmail up and running so I can host my own email.
>>I followed the "qmail LEAF/LRP user's guide" but I am missing
>>so
Ray,
I was able to connect to the pop server using telnet it seemed to take quite a while
to get a response but I was able to retreive and read the test message sent to
lrpqmail.
>
>I don't know your setup well enough to tell you what is going on in
>the
>Shorewall DROP log, but since it involv
Ray,
Sorry I was not clearer about the overall config. Comments inline.
>Kory -- Because (I think) your setup involves two separate LEAF
>systems --
>one running as a router/firewall, the other as a DMZ/Qmail server --
>you
>might want to be a bit clearer about which system you are reporting
>each
a router distribution.
>
>In any respect, you should see if you can telnet in a pop/smtp
>session to the
>mail server and see where the process bombs out manually. If you
>can't SMTP
>in as a valid mail user, the most likely culprit is the fact that
>the server
&
I have successfully set up my DMZ, registered a domain, compiled a custom version of
ez-ipupdate to handle a non standard service, reconfigured weblet to act as a basic
web content server.
I now need to get Qmail up and running so I can host my own email.
I followed the "qmail LEAF/LRP user's gu
to my rules file just to keep from logging the entries and filling up
my logs. Correct?
Thanks as always,
Kory Krofft
---
This SF.net email is sponsored by: IBM Linux Tutorials.
Become an expert in LINUX or just sharpen your skills. Sign up
Julian,
Thank you so much. I knew I was overlooking something simple. It
works great now.
Thanks again,
Kory
On Tue, 16 Dec 2003 11:21:55 +, Julian Church wrote:
>On Mon, 15 Dec 2003 21:07:18 -0500, Kory Krofft <[EMAIL PROTECTED]>
>wrote:
>
>>The weblet config file ha
nnect just
fine.
The weblet config file has a setting for which networks can access
it. I tried setting it to 0.0.0.0 but that did not help.
What can I do to allow external requests to be answered by the
weblet?
Thanks,
Kory Krofft
---
This S
On Fri, 28 Nov 2003 11:04:24 -0800, Tom Eastep wrote:
>On Fri, 2003-11-28 at 10:42, Kory Krofft wrote:
>>I have been trying to set up a webserver in a DMZ using the
>>Shorewall
>>3 interfaces examples. I have a test machine with a dialup account
>>that I can use to test
DNATnet dmz:192.168.10.1 tcp25
DNATnet dmz:192.168.10.1 udp25
Any ideas?
Thank you,
Kory Krofft
---
This SF.net email is sponsored by: SF.net Giveback Program.
Does SourceForge.net help you be
the firewall
weblet not the DMZ.
I know I am missing something simple but I can't figure out what.
Any suggestions are appreciated.
Kory Krofft
---
This SF.Net email sponsored by: ApacheCon 2003,
16-19 November in Las Vegas. Learn firs
menus but cannot get it to accept my
device or filename choices. I have tried:
"Device hdc1: Filesystem ext3:"
hdc1: ext3:
hdc1 ext3
all to no avail. What is the correct syntax to modify the destination
for backups? Can I point to a subdirectory on hdc1?
Thank you,
K
creating a journal on the partition.
Hope this helps,
Kory Krofft
On Sun, 22 Jun 2003 11:58:19 -0100 (GMT+1), Jørn Eriksen wrote:
>Hello there,
>
>U could use this one:
>http://leaf.sf.net//devel/thc/files/kwarchive/fdisk.lrp
>
>Best regards
>Jorn
>
>
>>Good morning!
Lynn,
I am not sure what caused it to fail. I downloaded a Linux rescue CD
image and used it to run mke2fs -j on the the drive. It now mounts as
ext3 just fine.
Thanks for the suggestions.
Kory
On Thu, 19 Jun 2003 02:50:19 -0500, Lynn Avants wrote:
>On Sunday 15 June 2003 09:55 pm, K
. I got the same
result both times.
Thanks again,
Kory
On Sun, 15 Jun 2003 14:09:04 -0500, Lynn Avants wrote:
>On Sunday 15 June 2003 10:14 am, Kory Krofft wrote:
>[...]
>>Once I get the modules loaded, do I need to run fdisk to convert
>>the
>>filesystem or can I jus
jbd.o
Which of the 2 files (jbd.o, ext3.o) must come first in
boot/etc/modules?
Once I get the modules loaded, do I need to run fdisk to convert the
filesystem or can I just edit the fstab file to mount as ext3?
Thanks,
Kory Krofft
Thanks Tom,
I knew it was something simple I overlooked. All is smooth as silk now.
Kory
Tom Eastep wrote:
Kory Krofft wrote:
For some time my logs have been filling up with entries for traffice
attempts between my internal network and the firewall. I am running a
more or less stock
loctcp 67,68
Or should I just:
DROP locfw tcp 67,68
DROP fw loctcp 67,68
Thank you,
Kory Krofft
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek he
oking,
KK
Gene Smith wrote:
Brad Fritz wrote:
On Sat, 04 Jan 2003 11:58:26 EST Kory Krofft wrote:
Brad: Output from tcpdump as well as an Ethereal dump
are at:
http:home.woh.rr.com/kkrofft/etherealout
http:home.woh.rr.com/kkrofft/tcpdump.txt
FYI: I see the tcpdump.txt but not ethereal
Pro DNS client and since then I have seen no
lags so that
may be the solution.
Thanks for all the help,
Kory Krofft
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http:
Brad,
Here is what I can provide. I do not doubt you that Leaf may not be the
culprit.
I have removed the secondary DNS IP from the TCP config and run several
of the
tests you suggested. I noticed however that once I removed the IP I no
longer am
experiencing the lag. It has only been a few hou
ear in our
corporate environments.
Thanks again,
Kory Krofft
Steve Fink wrote:
Kory,
As a general fix running DNSCache on your LEAF box should solve this
problem. Win2k will request the lookup from the DNSCache and receive an
answer. This also should cause the LEAF box to fire you
shutting them out. I could upgrade from Netscape 4.78 to a newer version
but I like the multiple user profiles that 4.78 and earlier had which
were
removed in the 6.0 and beyond.
Thanks for the suggestions.
Kory Krofft
Mike Hahn wrote:
>
> You may try running a netmon or ethereal trace
e can be turned off but have not
> been able to find it again so that I can turn it off on my system here
> either. M$ Technet may have the answer somewhere.
>
> Andrew Gray
>
> -Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of K
Lynn,
Thanks for weighing in on this. Unchecking the autodetect had no effect.
it seems some URLs are not a problem so I am getting used to checking my
mail pop prior to browsing and by the time I finish the mail the
browsers
work fine. I see some mention of appending dns suffixes in the TCP setup
:
>
> Kory Krofft wrote:
> > Happy Holidays all!
> >
> > I am back with a slightly off topic problem that I am hoping someone
> > here has seen before. I posted to the alt.os.win2000 ng but got no
> > help.
> >
> > I recently upgraded my computer to W
resolve the IP
into a
FQN? There is an entry in the hosts file for the win2k system. I can
ping it from
the firewall by either IP or name.
If you have any other things I can investigate I will be glad to report
back.
Thanks again,
Kory
> At 03:07 PM 12/24/02 -0500, Kory Krofft wrote:
>
internet flawlessly except for the Win2K
box. It is configured with the primary dns as the internal i'face on
the firewall as it should be. The firewall logs show nothing for the
time period when the connections fail.
Any suggestions will be gratefully accepted.
Thank you,
Kory K
If the hardware works this should do it.
Kory Krofft
Kache wrote:
>
> Thank you for your help. Now I've kinda got off on a
> tangent trying to control my LEAF through a terminal
> that's connected via the null modem cable. I've been
> trying to connect to the
as
tcp 139.
Kory Krofft
youngdo wrote:
>
> Hi!
>
> I am a Bering v1.0-stable user.
>
> Is shorewall configured by default to drop/reject udp broadcasts?
>
> I'm trying to setup samba and my windows machines can't see the samba server
> (which is also the fir
ee100pro,
net speed - 100mbit, samba version 2.2.5
My questions:
1.Should the cpu speed make a difference?
2.Where should I look for the cause of the collisions.
3.Would a Cyrix MII 300 be a stable substitute for the Pentium 225?
Thanks,
Kory Krofft
OK so I answered my own question. mount -t ext2 /dev/hdc1 /mnt did the
trick. I now have a usable IDE disk drive with an ext2 ext2 partition.
Now I can go back to getting Samba working.
Thanks for all the guidance.
KK
Kory Krofft wrote:
>
> Erich and all...
>
> I have loaded ex
Erich and all...
I have loaded ext2.0 but not until after the tmpfs.o.
Will it matter where it is in the order as long as it
is after ide-disk.o? Since I could not mount /dev/hdc1
due to errors that looked like a bad format I was
trying to use the mkfs.minix not realizing that it was
for virtual d
Ok, I loaded the ide-disk.o module and Bering now recognizes the drive
(I think).
# mount /dev/hdc1 /mnt results in the following:
VFS: Can't find a Minix or Minix V2 filesystem on device 16:01.
FAT: Did not find valid FSINFO signature.
Found signature1 0x0 signature2 0x0 sector=1.
Directory 1:
;
> On Sun, 10 Nov 2002, Kory Krofft wrote:
>
> > Date: Sun, 10 Nov 2002 20:13:55 -0500
> > From: Kory Krofft <[EMAIL PROTECTED]>
> > To: "[EMAIL PROTECTED]" <[EMAIL PROTECTED]>
> > Subject: [leaf-user] Samba, Ide, Mount ???'s
> >
&
configured
What am I missing? ls /dev lists hdc1 as a device.
Thanks,
Kory Krofft
---
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
net fw tcp 67,68
By not following the "drop" with a log level it should not log the
attempts.
Am I coorect in this understanding?
Thank you,
Kory Krofft
---
This sf.net email is sponsored by: OSDN - Tired of that same old
cell pho
all who weighed in in my queries.
Kory Krofft
---
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone? Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sou
Cass,
Did you enter the line as presented in the /etc/crontab file?
* * * * * root /bin/date >> /tmp/mycrontest.txt
I tried it just as posted and I get nothing in the /tmp directory.
I tested it from the command line and it of course worked fine.
Does anyone have a clue what might need fixed in
Cass,
Cass Tolken wrote:
>
> Hi Kory,
> Do these commands work as expected when executed from the command line
> (not from the crontab file?) If they do then the problem is probably
> within the cron mechanism.
Yes. They work Fine from the command line.
>
> Your syntax looks fine. I tried
* * 1,2,3,4,5 root /sbin/shorewall allow 192.168.1.4
The intent is to block my son's internet access from 10:00pm to 7:00 am
on school nights.
I have read the man pages but don't see what I am doing wrong. Please
suggest what I might try.
Thank you,
K
ol
my kids late night surfing. Does the later version offer anything that I
should have such as improved security?
Thanks again for a great package.
Sincerely,
Kory Krofft
Tom Eastep wrote:
> Folks --
>
> a) I don't currently run Bering - my firewall runs a stripped-down RH7.3.
o /var/lib/shorewall directory present.
Thank you for your assistance,
Kory Krofft
Tom Eastep wrote:
>
> On Thu, 15 Aug 2002, Darren Hammond wrote:
>
> > Are you using shorewall-1.3.3 or later?
> >
> > Have a look at the README.TXT file here, this might be what
tarting periodic command scheduler: cron.
I am at a loss to figure out what happens to
/var/lib/shorewall/functions.
Thanks,
Kory
John Desmond wrote:
>
> --- Kory Krofft <[EMAIL PROTECTED]> wrote:
> > I want to upgrade the version of shorewall on my
> > Bering firewa
Shorewall
function. I was hoping someone else had seen this but I will run through
it
again tomorrow evening and try to capture some screen dumps to report
the
actual errors.
Kory
John Desmond wrote:
>
> --- Kory Krofft <[EMAIL PROTECTED]> wrote:
> > I want to upgrade the version
ll
on my cd as soon as I get the upgrade working.
Kory Krofft
Craig wrote:
>
> Hi (again) folks, :-)
> I want to include more .lrp packages (like the IPSec stuff, for example)
> on my Bering floppy...which will ultimately end up on a Bering bootable
> CD. The problem is...there
d on the Bering floppy and indeed
they were
not there.
I tried to copy the new shorwall.lrp onto the boot floppy to replace the
original but that doesn't work either.
Anyone else done it?
Thank you,
Kory Krofft
---
This sf.net email i
Gentlemen,
Thank you for your assistance. It is now working as required. I had
to issue the command as options=0,48 to apply the 100mbit full duplex
to only eth1 as the cable modem on eth0 is of course limited to 10mbit.
Sincerely,
Kory Krofft
Ray Olszewski wrote:
>
> At 09:06 PM 7
pake Ray Olszewski:
> > At 01:01 PM 7/31/02 +0400, Vladimir B. Savkin wrote:
> > >Thus spake Kory Krofft:
> > > > Can someone tell me how I can force my internal NIC (Intel 10/100 using
> > > > PCI eepro module) to run at 100mb full duplex
> > [...]
>
a UPS so it
never goes down.
Thank you,
Kory Krofft
---
This sf.net email is sponsored by: Dice - The leading online job board
for high-tech professionals. Search and apply for tech jobs today!
http://seeker.dice.com/seeker.epl?rel_code=31
checked the Nortel site and
found tricks for several other models but not this one. I can't afford a
service contract with them just to ask this one question.
Sorry about the non leaf question but you guys know everything ;-)
Thank you,
Kory K
Thanks for the response Charles,
I am planning to burn a new CD but I don't see where to edit
syslinux.cfg
to use when burning the new CD. I can copy it from a boot floppy but
where do I have winimage put it to replace the current one on the ISO
image?
Thanks,
Kory
Charles Steinkuehler wrote:
>
ckups and reburn to get a "floppyless" setup once
I have it all configured?
Thank you all,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
sible that the newer kenel in the released version is incompatible
with the serial.o module?
Kory Krofft
Charles Steinkuehler wrote:
>
> > Thanks for the response. Here is where I am so far...
> >
> > [1] modified /etc/inittab so that my serial terminal line looks like thi
it is
possible that the service offered might vary in different parts of the
country.
Kory Krofft
[EMAIL PROTECTED] wrote:
>
> My boss wants to put a linux router behind his
> Road Runner(the ISP) cable modem so he can have a decent
> firewall and possibly port forwarding.
>
> RoadRunn
m 200 with two intel eepro100 cards. Is there a
way to check the irq assigned to the NICs?
Thank you,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
> integrity of your system when you do get it cleaned. www.grc.com is a good
> place to start. good luck!
>
> greyhat
> www.intrusiondefense.com
>
> - Original Message -
> From: "Kory Krofft" <[EMAIL PROTECTED]>
> Newsgroups: comp.os.linux.redhat
> Se
nce of someone having compromised my server for
use by an IRC bot of some kind.
Can anyone decipher the log entry and tell me what my next step should
be
to find and stop the package that is using my ftp port?
Thank you,
Kory Krofft
___
Leaf-user maili
?
Thanks for the sanity check,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
Lynn,
The latest from RR on my complaint is a request from them a couple of
days ago.
The wanted to know what my timezone was and even though it shows up in
my email
header I had to send it to them again before they would look into
anything.
I have not had any additional response but the offendin
ve used this method and stopped many hackers from continually
> port scanning my boxes, though I'm sure they just grab another IP from a
> different vendor.
>
> -Scott
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Kory K
,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
Dan,
I don't know about Roxio but Adaptec has an option under the file menu
that says "create from image" then you pick ISO from the options. I
would
bet Roxio has a similar option somewhere.
Kory
> Dan Fuchs wrote:
>
> Hi,
>
> Could someone help me? I am trying to make a CD from
> Oxygen_2.1.
tcp -L $EXTERN_IP 20 -R 192.168.1.200 20
$IPMASQADM portfw -a -P tcp -L $EXTERN_IP 21 -R 192.168.1.200 21
$IPMASQADM autofw -A -r tcp 20 21 -h 192.168.1.200
I hope this helps,
Kory Krofft
Joris Kempen wrote:
>
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mai
Much deleted...
> > Believe it or not I learned most of what I know about *nix from
> > administering a group of
> > SGI Indigo and Indigo2's on a Pro/e Cad system. I was able to connect
> > the engineering
> > net to the company PC net and share printers and set up email when the
> > IS dept co
I have pretty much given up on the DMZ setup for now. I am at a point
where I
believe that something may be wrong with eth2 in the Dach box. I simply
can't get
name resolution to work from the DMZ to the internet. I tried swapping a
windows
laptop in place of the Red Hat machine since on my prim
Charles Steinkuehler wrote:
>
> You *DO* need to have your DMZ system setup correctly, however. It needs an
> IP in the 291.268.10.0/24 subnet, and it needs to use the DMZ interface of
> the firewall (192.168.10.254) as it's default gateway.
I assume that you meant 192.168.1.0/24. Here is th
Charles,
Thanks for the info. I started with a fresh boot disk over the weekend
and carefully tried to follow the network.txt help file sections on
setting up a DMZ. This took care of the script errors.
Charles Steinkuehler wrote:
...
> >
> > INTERN_IF="eth1"# Internal Interfa
.3.12 www 192.168.2.1 8080"
# Allow all outbound traffic from DMZ (YES)
# or just traffic from port-forwarded servers (NO)
DMZ_OUTBOUND_ALL=YES
Are there any other settings I need to check?
Thank you,
Kory Krofft
Charles Steinkuehler wrote:
> A bit of background...
>
> The defaul
DMZ
server.
There will most likely never be more than one machine on the DMZ.
Thank you,
Kory Krofft
Charles Steinkuehler wrote:
> A bit of background...
>
> The default dachstein firewall scripts will NOT route traffic between
> interfaces unless EXPLICITLY told to do so. If you
work fine.
Thanks again,
Kory
Ray Olszewski wrote:
>
> At 06:24 PM 12/25/01 -0500, Kory Krofft wrote:
> >Ray,
> ...
> >If I ping www.msn.com or www.rr.com it resolves the ip's but the request
> >times out.
>
> The same thing happens with these two FQDNs if I t
> And all machines will have subnet masks of 255.255.255.0
>
> ...With gateway of 192.168.1.1
>
> ...Then, the LEAF box will take care of the rest!
>
> Cheers!
> Dan
>
> PS: K.I.S.S.: Keep It Simple, S**thead!
>
> >
Ray,
Thanks. I will try to be specific. See if this helps.
Subnet 1 is a windows based network all Win98 machines.
>From it I can ping eth1, eth2 of the lrp and of course all the other
machines on that net.
If I ping www.msn.com or www.rr.com it resolves the ip's but the request
times out.
The
ixed IPs of 192.168.1.x. This consists of a
houseful of Win 98 machines used for email and web access primarily. The
DMX is a Redhat machine.
Thanks,
Kory
> Hope this helps!
> Dan
>
> >-Original Message-
> >From: Kory Krofft
> >Sent: Tuesday
.
Thank you,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
Can some one direct me to a How-To for setting up a DMZ that would
relate to LRP, Specifically Dachstein.
Thank you,
Kory Krofft
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
1 - 100 of 114 matches
Mail list logo