Re: [leaf-user] Broadcom BCM5802 Security Processor

believe there is atleast one available NIC that comes with this chip built-in, though last I heard it was unsupported with Linux IIRC. You'll likely have to search the kernel-devel archives to glean any better information on any possible Linux kernel support. -- ~Lynn Avants Linux Embedded

Re: [leaf-user] Kernel panic-syslinux.cfg no good

On Sunday 01 June 2003 03:51 pm, Erich Titl wrote: [...] boot=dev/fd0u1680:msdos PKGPATH=/dev/fd0u1680 boot=/dev/fd0u1680 note preceeding '/' before 'dev' -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] Receiving Dial up connections from a modem.

to the local LAN. What if the modem was a PCMCIA modem? Likely if the modem is supported, I haven't tried that one. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] lshd / additional users on bering - su command

On Thursday 29 May 2003 09:25 am, Theodore Wynnychenko wrote: any other ideas on login or su? As 'root', do: chmod +4111 /path/to/su If 'su' isn't run suid, then most likely /etc/shadow isn't being read because 'su' is running as your non-root user. -- ~Lynn Avants Linux Embedded

Re: [leaf-user] lshd / additional users on bering - su command

. I don't know what to say I've tried it on my machine and it works. No problem with the time, I just want to see it work as well.. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] lshd / additional users on bering - su command

with the BB usage.. Glad it's working! -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: eBay Get office equipment for less on eBay! http

Re: [leaf-user] Browsing over Bering1.2 router conected with PPPoE don't work

incompatibilities with dnscache that have been found. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: ObjectStore. If flattening out C

Re: [leaf-user] lshd / additional users on bering - su command

* be wrong with simply adding a single binary. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: ObjectStore. If flattening out C++ or Java

Re: [leaf-user] lshd / additional users on bering - su command

On Wednesday 28 May 2003 06:15 pm, Theodore Wynnychenko wrote: any other ideas on login or su? As 'root', do: chmod +4111 /path/to/su If 'su' isn't run suid, then most likely /etc/shadow isn't being read because 'su' is running as your non-root user. -- ~Lynn Avants Linux Embedded Appliance

Re: [leaf-user] sh: can't access tty; job control turned off

) at the end, other don't, possibly you have run into this error unknowingly as well. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored

Re: [leaf-user] Assigning ethernet interfaces to physical NIC's.

switching the order that the modules are listed in /etc/modules or switching slots on the PCI-bus should correct the order for you. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] Assigning ethernet interfaces to physical NIC's.

as the initialization of pcmcia is deferred until later in the boot sequesnce. Hardware such as pcmcia/usb/etc... will _always_ boot later. Pcmcia/usb/etc is not a standard PCI device or configured as such by the kernel. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http

Re: [leaf-user] Bering Ipsec working, but with ping packet loss

at the actual problem from. Our guess accuracy proportionally lowers for each missing piece of the puzzle. I hope this helps, -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] backup lrp package with single shell command

. You could also dig a (possibly) better example out of the 'install scripts' I wrote for Dachstein linked from: http://leaf.sf.net/devel/guitarlynn -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81

Re: [leaf-user] Trouble moving server from Bering-on-cable to BeringuCLib-on-pppoe

as couldn't be reverse mapped) works just fine from the commandline on the machine in question. So basic DNS is working. Just not for sshd. Have you entered the ISP ip address in /etc/hosts and/or /etc/hosts.allow? -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] PPTPD.lrp MSCHAP

is a compile time option. pap works out of the box. ;) -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting

Re: [leaf-user] OSPF

On Tuesday 01 April 2003 03:21 pm, Roger E McClurg wrote: OK people. Time for a dumb question. How do I do OSPF routing under Bering 1.1? Use the zebra package: http://www.eric.kiser.com/download.htm It seems as if Eric K's /devel directory has been assimulated. -- ~Lynn Avants Linux Embedded

Re: [leaf-user] How to add route for IPSec into secondary routing table when roadwarrior up?

through it's startup scripts. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB

Re: [leaf-user] Old Eiger and PPTP

to connect to the remote firewall and then fails to validate the username/password with a timout error. Anyone have any experience of doing this or recommendations? Have you loaded the ip_masq_pptp module? -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net

Re: [leaf-user] sendmail.lrp for Bering?

-to-date sendmail.lrp, then I'll have to change to a new MTA. Postfix? The only versions of sendmail I know of available for LEAF are ancient (years!). Jacques Nilo's qmail package is a very recent (and secure) MTA. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] eth assign to NIC problem

order in the userland stuff (shorewall, dnscache, dhcpd, etc). -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: The Definitive

Re: [leaf-user] Ipsec Setup with Bering LEAF

will likely include instructions for creating certs as well. I agree with CS in that you will likely find it easier to use the Bering boxes as ipsec-gateways and authenticate with RSA keys. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http

Re: [leaf-user] I would like to use Internet through Gateway in (B) as local.....

vendor to do this for your company. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: The Definitive IT and Networking Event

Re: [leaf-user] FreeS/WAN AES alg

something that integrates well with freeswan, try the SSH-Sentinel. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: The Definitive

Re: [leaf-user] OpenVPN

code and applying the proper patches to the 2.4.20 kernel in the Slink environment, THEN trying to compile OpenVPN? This is likely the best chance you'll have to get it to work, unless the kernel also needs to be patched for compatibility. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer

Re: [leaf-user] Need help with VPN client through LRP

kernel your using. This is for allowing pass-through of the PPTP protocol, not an end-point. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 --- This SF.net email

Re: [leaf-user] AE editor on Bering distro

'. 'aee' simulation is called by 'e3ne'. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by:Crypto Challenge is now open! Get

Re: [leaf-user] 3c509 module problems!

twice to in case of a bad download. It sounds like a different problems to me. I think Brad and Larry have given some good places to consider for possible problems. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81

Re: [leaf-user] Bering: Simple mail transfer agent (somehting like Exim)

not aware of a exim package and I doubt it would compile against glibc-2.0.x. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by:Crypto

Re: [leaf-user] Bering: tinydns configuration

On Friday 21 March 2003 06:37 am, Thomas V. Fischer wrote: Hello all, Does the tinydns for bering support all the functions described on DJBernstein web site? I believe it does for the proper version djbdns packaged. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] LEAF as an ISP?

, but rather let the 'mgetty.lrp' package do all of that. The best documentation I've seen for doing this with LEAF exists here: http://leaf.sourceforge.net/devel/thc/dox/pppserv.txt -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http

Re: [leaf-user] CUSeeMe

any assistance. NP -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by:Crypto Challenge is now open! Get cracking and register

Re: [leaf-user] Samba issues

would be greatly appreciated. You need to setup a home directory for each of the users and login under that username(s) and set the password. Linux/Samba uses shadow-passwords instead of the old passwd file. This is likely the source of your errors. -- ~Lynn Avants Linux Embedded Appliance Firewall

Re: [leaf-user] CUSeeMe

would need? Or a source of information? You'll need to use h323 support, IIRC. There should be ipmasq/iptables modules (or config) to add/use this support. BTW, did the updated udhcp package work better for you? -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: AW: [leaf-user] Internal VPN clients can't connect through Bering

for your setup. The newest ipsec package Jacques has made has NAT-transversal support added as does the latest Shorewall (from shorewall.net). I believe that neither has been tested, but maybe they will do the trick for you. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] Adding Extra Static IP's on External Interface

(and assumably used the same gateway). -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by:Crypto Challenge is now open! Get

Re: [leaf-user] Adding Extra Static IP's on External Interface

but the desired protocol(s). Using static-NAT would also allow the machines to participate as normal LAN machines as well. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81

RE: [leaf-user] Port Forwarding and pcAnywhere

? (Charles, are you around??? How does that part work on Dach?) I don't believe that anything is ever sent back out the added addresses. IIRC, everything w/o a static route is sent out the default gateway with any of the 2.2.x kernels. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] IPsec with Bering 1.1 without MAWK.LRP and IPSEC509.LRP ?

me if I have missed something or if only file is now necessary ? You still need mawk.lrp to run any of the ipsec packages. You will need to use ipsec509 instead of ipsec to use x509 certs. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http

Re: [leaf-user] Winzip and .lrp

to the outside you would have would be dependant on opening http/ftp/etc... services open to the internet and running on the router itself. If this is a large concern of yours, I would suggest moving these services off the router and into a DMZ. -- ~Lynn Avants Linux Embedded Appliance Firewall

Re: [leaf-user] How to set process run at startup?

and load order. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf

Re: [leaf-user] Winzip and .lrp

imagine you'll have any problems. A floppy or other disk type can usually be mounted inside of the case so access to it requires removing the cover. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81

Re: [leaf-user] Anyone have the simple ppp how-to for bering/all firewalls?

On Monday 10 March 2003 07:50 pm, Jeff Newmiller wrote: Regarding inbound connections, I think I have seen something describing them, but cannot recall where right now. http://leaf.sourceforge.net/devel/thc/dox/pppserv.txt -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http

Re: [leaf-user] why isn't serial.o bringing up my modem under Bering 1.1?

(as any LEAF variant has always required IIRC). I don't believe there is an (easy) way to set up getty to do modems. Also, make sure that mgetty answers the modem, not the modem itself. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net

Re: [leaf-user] Receiving DHCP broadcasts

platforms. Try it free. www.etnus.com leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html -- ~Lynn Avants Linux

Re: [leaf-user] why isn't serial.o bringing up my modem under Bering 1.1?

. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://www.guitarlynn.homelinux.org:81 --- This SF.net email is sponsored by: Etnus, makers of TotalView, The debugger for complex code. Debugging C/C

Re: [leaf-user] sh-httpd Authentication

and tunneling the http(s) connection. Mosquito has done this with thttpd and stunnel on their release. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.net email is sponsored by: Scholarships

Re: [leaf-user] VPN passthrough success

learned a lot about LRP. NP, I'm glad it is working! Please note, we're LEAF and not LRP. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This sf.net email is sponsored by:ThinkGeek Welcome to geek

Re: [leaf-user] vpn with dynamic ip (long)

be safer IMHO if you feel it is necessary. Otherwise what you have is the typical suggestion and will work as you have noted. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This sf.net email is sponsored

[leaf-user] LEAF in Sourceforge top 50 0.5% club

Just to let everyone know, LEAF has broke into the Sourceforge Top 50 and top 0.5% club for the last two days. Congratulations to all the developers and users for making this possible. http://sourceforge.net/project/stats/?group_id=13751 Not bad for an embedded OS! -- ~Lynn Avants Linux

Re: [leaf-user] Bering: alias interface and pppoe

a few people using alias'ed interfaces with Bering w/o reported problems, though I don't know if any of them are using PPPoE. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.net email

Re: [leaf-user] Update: Short term LEAF project goals

On Wednesday 19 February 2003 04:18 pm, Matt Schalit wrote: Lynn Avants wrote: Matt, Are lshd, Sounds new. what's the benefit of lshd? It is somewhat compatible with SSH, but smaller. It is available for uClibc-bering and probably Bering as well. stunnel, Mosquito and other off-LEAF

[leaf-user] ANNOUNCE: New udhcp packages available

/viewcvs.cgi/leaf/devel/guitarlynn/udhcp.lrp.dachstein?rev=1.5content-type=text/vnd.viewcvs-markup In case the URL wraps badly, both are linked from: http://leaf.sf.net/devel/guitarlynn Enjoy! -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] ANNOUNCE: New udhcp packages available

, which can happen at boot. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.net email is sponsored by: SlickEdit Inc. Develop an edge. The most comprehensive and flexible code editor you can use

Re: [leaf-user] rtl8139.o and Bering 1.1

, unlike my experience with the different tulip chipsets. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.net email is sponsored by: SlickEdit Inc. Develop an edge. The most comprehensive

Re: [leaf-user] Update: Short term LEAF project goals

dependancy/patching is needed from version to version, Allowing a 'dep check' would allow much easier updating on all fronts. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.net email is sponsored

Re: [leaf-user] Update: Short term LEAF project goals

??? -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.net email is sponsored by: SlickEdit Inc. Develop an edge. The most comprehensive and flexible code editor you can use. Code faster. C/C++, C#, Java

Re: [leaf-user] New to LEAF Bering, new a bit of direction

/devel/cstein/Packages/Utilities.htm There is certainly no apt-get on this small of an OS. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven

Re: [leaf-user] Bearing 1.1 winimage problems UPDATE

to backup to. There is a huge difference to the backup program between fd0 (1440) and fd0u1680 floppy format sizes. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This sf.net email is sponsored

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

12.237.136.59192.168.1.3 500 500 1010 Other than that I can't say, unless there is something Cisco-specific that I am not aware of. I would check your logs for a denied packet or two from the Cisco VPN end-point. -- ~Lynn Avants Linux Embedded Firewall Project

Re: [leaf-user] Bering vs. Bering-Uclib

that is processed. If you can link a 'failed page', I can tell you whether or not this is the problem. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This sf.net email is sponsored by:ThinkGeek Welcome

Re: [leaf-user] shorewall masquerading packets behind ipsec tunnel

imagine that treating the mountaingate subnet as a local network on valleygate via ipsec0 in Shorewall will likely solve your problem. This would also allow the wireless link to remain encrypted. I hope this helps! -- ~Lynn Avants Linux Embedded Appliance Firewall developer http

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

[ DestAddr[/DestMask] ] #EXTERN_PROTO0=50 0.0.0.0 #EXTERN_PROTO1=51 0.0.0.0 I hope this helps! -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This sf.net email is sponsored by:ThinkGeek Welcome

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

On Friday 14 February 2003 07:22 am, Charles Steinkuehler wrote: Lynn Avants wrote: Open the protocols (50 51): EXTERN_PORTS=50_0.0.0.0 51_0.0.0.0 Note that this should be EXTERN_PROTOS, not EXTERN_PORTS. I have used the line I posted, which is EXTERN_PORTS on the stock image. It appears

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

. It is possible that your ISP is blocking IPSec access, but that would be pure speculation at this point and very rare. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored

Re: [leaf-user] Bering/Shorewall vs. Dachstein

conjecture is correct. I would to. It would be quite interesting to see how the connection is setup initally w/o port-fw'ing. It's not breaking in the NAT ports, so this must be application specific, especially with use of TCP . Very interesting! ;-) Thanks, -- ~Lynn Avants Linux Embedded

Re: [leaf-user] It Works!!

? -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

-forward udp 500 to the Win98 client. This will require loading the ip_masq_portfw module as well. You are running a 'pass-through' type connection, refer to: http://leaf-sourceforge.net/devel/guitarlynn/ipsec.txt -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net

Re: [leaf-user] PPPoE, IPSec and MTU size problems

, mapping the drives fixes this problem (to some degree). Is my guess in the ballpark? -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte

Re: [leaf-user] PPPoE, IPSec and MTU size problems

. That's probably because xDSL uses a MTU of 1492 to account for encryption latency. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte

Re: [leaf-user] PPPoE, IPSec and MTU size problems

the rfc's passed before forcing them on everyone. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server

Re: [leaf-user] Cisco VPN client through (Dachstein) LRP

! -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: FREE SSL Guide from Thawte are you planning your Web Server Security? Click here to get a FREE Thawte SSL guide and find

Re: [leaf-user] It Works!!

On Wednesday 12 February 2003 01:27 am, Jeff Newmiller wrote: On Tue, 11 Feb 2003, Lynn Avants wrote: On Tuesday 11 February 2003 09:28 pm, David Pitts wrote: That was the odd thing. No error messages that I could see, it just didn't work on boot, although it was fine from the command

Re: RE : [leaf-user] Aliasing IP Addres : HOWTO do ?

On Wednesday 12 February 2003 10:13 am, Francois BERGERET wrote: But, if I can remember, a standard record for one NIC is like this : auto eth3:0 iface eth3:0 inet static address 192.168.73.254 netmask 255.255.255.0 broadcast 192.168.73.255 -- ~Lynn Avants Linux Embedded

Re: [leaf-user] Bering/Shorewall vs. Dachstein

that Tom hasn't stated and I haven't gone through any white-papers on this type of exploit (connection). ;-) It will definately be interesting if there is something else involved though.. I would like to hear about it as well! -- ~Lynn Avants Linux Embedded Appliance Firewall developer http

Re: [leaf-user] My Dachstein not quite up and running

the server is live I can only make changes to it when the office is empty or it'll disrupt the workflow. What does it mean to update the MX records? Your DNS settings for the internet at large to resolve the new ip address of your mail server (the firewall). -- ~Lynn Avants Linux Embedded Appliance

Re: [leaf-user] Non-FPU Kernels

? Is this my only option? Could Bering work in this setup? Yes, the older 2.2.16 kernel will work. I'm not aware of a non-FPU kernel for Bering, but there may possibly be one buried somewhere at: http://leaf.sourceforge.net/devel/jnilo -- ~Lynn Avants Linux Embedded Firewall Project developer http

Re: [leaf-user] Aliasing IP Addres : HOWTO do ?

... eth0:0 192.168.73.254/24 on this NIC eth0:1 44.151.100.254/24. There are quite a few posts in the leaf-user archives on this as well. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email

Re: [leaf-user] It Works!!

on that. So we will meet again. Hopefully it will be less frustrating next time. ;-) -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: SourceForge Enterprise Edition

Re: [leaf-user] Bering/Shorewall vs. Dachstein

a connection, but I may be wrong in this assumption w/o trying the application first. -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM

Re: [leaf-user] It Works!!

for your patience. I don't actually find any of this frustrating. I only do it for fun and learning and I find it very good for both! I agree. ;-) -- ~Lynn Avants Linux Embedded Appliance Firewall developer http://leaf.sourceforge.net

Re: [leaf-user] More Bering IPSec questions ...

you configure shorewall correct. Do not use the 509 package if you are not using certs, the 509 package probably will not work with PSK's. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET

Re: [leaf-user] Couple of General Questions

. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com

Re: [leaf-user] problems with BEFW11S (wireless router) and LEAF (Bering)

that 192.168.1.253 gets dropped from the table. Ok, what are the ip address(es) of your wireless machine(s) clients, not Linksys. Also, what do the wireless clients have for default gateway and dns servers? -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] Dachstein Port Forwarding

by changing the location (network). I'm assuming you've dropped the proxy configuration that you were using when attempting to use it behind the LEAF box. DNS can also cause problems. I'm assuming you have loaded the ip_masq_portfw module. -- ~Lynn Avants Linux Embedded Firewall Project developer http

Re: [leaf-user] Couple of General Questions

, rather it simply takes some time for the hardware to come up. IIRC, a sleep command needed to be entered to allow time for the hardware to come up in these specific instances. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] More Bering IPSec questions ...

be, I thought the packages (after 1.91 anyway) would bomb out on initiation if the certs weren't loaded (or there) on the x509 package. In any case, it would be one less layer of possible problems until it tries to authenticate using PSK. -- ~Lynn Avants Linux Embedded Firewall Project developer http

Re: [leaf-user] Bering/Shorewall vs. Dachstein

the company that writes the program what needs to be done to work with a stateful firewall (iptables). I would imagine that since it worked with Dachstein, there was probably some high port UDP traffic that iptables stops with conntrack (statefule connection tracking). -- ~Lynn Avants Linux Embedded

Re: [leaf-user] More Bering IPSec questions ...

for that rightnexthop .. is that the gateway entry for the other subnet?) rightnexthop would be the ISP's router(gateway) for the 'other' network. The external interface on the router's themselves are 'right'/'left'. -- ~Lynn Avants Linux Embedded Firewall Project developer http

Re: [leaf-user] Remount issue

down. You can compile one (or possibly find one) that is the full command, but it will have to be compiled with the correct libc. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email

Re: [leaf-user] Win2K and LEAF

archives for 'Win2k DNS', there's a post a couple of months ago that describes a way to prevent Windows from doing this. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email is sponsored

Re: [leaf-user] OT: Genica GN-788 10/100 PCI Network Interface Card , $4.70

heard of the chipset. You might bewary of this. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See

Re: [leaf-user] Win2K and LEAF

?!?. sigh ...sorry about the rant :-/ Been there.. it started my addiction to Xbill. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email is sponsored by: SourceForge Enterprise

Re: [leaf-user] Bering uClibc - ulogd: load_plugins: /usr/lib/ulogd/ulog_*.so - File not found

that you compiled against on the box running the program. If they are compiled against glibc, you'll have to load the same glibc to run it. I hope this helps, -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] Using a wireless router with LEAF (Dachstein, Bering)

appreciated. You use the AP and switch functions on the Linksys don't connect the WAN side of it or route. This connects the wired LAN to the wireless LAN on the same network and your wireless cards can get dhcp from leaf across the bridged Linksys. -- ~Lynn Avants Linux Embedded Firewall

Re: [leaf-user] My Dachstein not quite up and running

}_smtp_192.168.1.1_smtp INTERN_SERVERS=tcp_$192.168.1.2_smtp_10.10.10.200_smtp OK. Have you loaded the portfw module??? -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net --- This SF.NET email is sponsored

Re: [leaf-user] Has anyone had success getting PUMP to receive a hostname via DHCP?

will be greatly appreciated. Thanks Most linux dhcp clients allow options to send a specific hostname, not recieve it. You'll likely need to edit this by hand. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] Log Interpretation Please

missing? # RFC 1918/1627/1597 blocks # $IPCH -A $LIST -j DENY -p all -s 10.0.0.0/8 -d 0/0 -l $* Removing the -l in this line should do it. -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] My Dachstein not quite up and running

to be done to get it to load? No, is it listed in the lsmod command? If not you'll have to download it from Charles' site and add it in /lib/modules on your disk (and backup the modules package). -- ~Lynn Avants Linux Embedded Firewall Project developer http://leaf.sourceforge.net

Re: [leaf-user] Bering uClibc - ulogd: load_plugins: /usr/lib/ulogd/ulog_*.so - File not found

On Thursday 06 February 2003 05:41 am, Laurentiu Drob wrote: Lynn Avants wrote: It sounds as if your shared libraries are compiled for a path that are NOT where the libraries are actually stored at on the LEAF box. This is likely a compile time option. The error message says

<    1   2   3   >