Recently there were some posts about set-up multiple IPs to one NIC in Bering.
I am interested in the setup but mine is 'Dachstein' and in my case I can get 2
dynamic IPs, not static.
Could you help me with that?
Specifically I would like to have eth0:0 and eth0:1 be assigned the IPs given fro
Hello, my son would like to do file xfer with a friend using ICQ. How would I go about
configuring that?
I am using DCD.
Thank you.
---
Sponsored by:
ThinkGeek at http://www.ThinkGeek.com/
---
Here is the only command I have in my /etc/ipchains.forward (credited to
Charles Steinkuehler) to route between 192.168.9.x and 192.168.3.x
internal subnets
$IPCH -A forward -j ACCEPT -s 192.168.9.0/24 -d 192.168.3.0/24 -b
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROT
You can look at links on how to set up passive FTP server behind firewall on
http://c0wz.steinkuehler.net/.
Basically you need to do the setup on both router and FTP server.
- On the router you port-forwarding port 20, 21 and a some additional ports (e.g.
65520-65529 as in the email suggested)
Hi,
After successful FreeS/WAN setup with 2 subnets using Daschtein CDs on
both sides, I try to set up for the Road-Warrior on XP/W2K. I tried the
steps for built-in IPSEC as Chad suggested
(http://leaf.sourceforge.net/devel/jnilo/buipsec.html#AEN1227) but
always got stuck at the step
l) select
It would be definitely great. Thanks.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Upali
Weerasinghe
Sent: Sunday, April 28, 2002 6:42 AM
To: Chad Carr; Charles Steinkuehler
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] VPN error,
Chad, thank you for your offer. I will definitely look at it.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Chad Carr
Sent: Saturday, April 27, 2002 7:32 PM
To: Charles Steinkuehler
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: [Leaf-user]
Thank you very very much, Charles, I could ping the other private
machines and I am asking them to ping me and use a couple of services on
my private server for thorough test. I hope it will be fine.
The next step for me is to setup for the Road Warrior. I have 2
questions:
1. Do you know of any
192.168.9 and .3 are my private, so adding the rule as you suggested is for them only,
right.
For accessing 192.168.1 (the remote ipsec private), do I have to do the similar thing,
i.e.:
$IPCH -A forward -j ACCEPT -s 192.168.9.0/24 -d 192.168.1.0/24 -b
: Thursday, April 25, 2002 8:47 AM
To: MLU
Cc: [EMAIL PROTECTED]
Subject: Re: [Leaf-user] VPN error, please help
The error is probably due to trying to ping without IPSec running, but
with
some ipchains rules left over (like the forward rule that allows traffic
between your two private networks
PROTECTED]
Subject: Re: [Leaf-user] VPN error, please help
From: "MLU " <[EMAIL PROTECTED]>
> I strongly hope that's my mistake somewhere and not the ISP's. If the
ISP
blocks the IPSEC, could I connect to my office's VPN server? I still can
do
that before this
: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] VPN error, please help
Hi Charles & MLu,
I'm having similar problems, and have found this thread helpful. I've
been wondering, do we have to declare the routing on the gateways, or
shouldn't ipsec handle this? Also
I strongly hope that's my mistake somewhere and not the ISP's. If the ISP blocks the
IPSEC, could I connect to my office's VPN server? I still can do that before this
experiment (removing ipsec module...).
The bad (and probably good -:)) news is that I do not see anything logged into
/var/log/
Hi Charles and Lynn.
Thank you for your suggestions. Things are not changed much after
I did the following as you advised:
- As per Lynn's remark, I now use only one /etc/ipsec.conf on
both sides. The FreeSWAN doc said that you may need to change
the line "interfaces=", but they are identi
Thank you Charles.
After making the RSA right, I restarted the ipsec service on both
side and then I try to ping a machine on 192.168.1.x from 192.168.9.x subnet but the
ping times out and there is nothing in auth.log or syslog suggesting a reason.
Could you please suggest what I should look a
Thank you very Charles, I will modify the RSA key in the config when I
get home.
In the network.conf I have
EXTERN_PROTO0="50 0/0"
EXTERN_PROTO1="51 0/0"
and
EXTERN_UDP_PORTS="0/0_500"
on both sides
so I think I do not have to set firewall=yes, right?
I would request for bind-8 to be put on the next Dachstein CD.
Thank you.
___
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
I am doing remotely so that's why. Will do it when at home and after attaching a
monitor. Outch!!!
Thanks a lot, Charles.
-- Original Message --
From: "Charles Steinkuehler" <[EMAIL PROTECTED]>
Date: Thu, 18 Apr 2002 09:40:14 -0500
>> Thank you Charle
Thank you Charles. Do you mean 'bang' by hitting some random keys, several times, and
by 'cat' as e.g.
cat file1 > file2 and so on
I am doing it now but see no efect yet.
-- Original Message --
From: "Charles Steinkuehler" <[EMAIL PROTECTED]>
Date: Th
Thank you Charles.
I will try to find somebody running Dachstein firewall and test with them. But then I
need to modify my internal subnet so that it is different from the one on their
system. For e.g., 192.168.9.x instead of 192.168.1.x, as probably they will use
192.168.1.x by default.
Is t
Sorry I missed one question:
what does the asterisk (*) mean in the second-line in LaBrea logging below. What is
difference of 2nd and 3rd lines
Mar 4 10:57:13 router LaBrea: Teergrubing: 216.x.x.x 63407 -> 24.x.x.x 113
Mar 4 10:57:13 router LaBrea: Activity: 216.x.x.x 63407 -> 24.x.x.x 113
rst of all, this
forces data throttling to 5 bytes (see the "-t" option above) referring to this issue?
P.S. Here is the output from running nmap against port 27
[root@rogers mlu]# nmap -p 27 -O 24.x.x.x
Starting nmap V. 2.53 by [EMAIL PROTECTED] ( www.insecure.org/nmap/ )
Interesti
Thanks to Steve and other instructions from Simon and Charles, I could fire up LaBrea
without to much trouble. I have Web and ssh running so I use
/usr/sbin/LaBrea -i eth0 -l -v -p 8 -z -x -F /etc/LaBrea.bpf
with LaBrea.bpf containing:
dst host 24.x.x.x
and tcp[2:2] & 0xfc00 == 0
and not
23 matches
Mail list logo
