----- Original Message ----- From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Saturday, November 03, 2001 3:04 PM Subject: Leaf-user digest, Vol 1 #334 - 7 msgs
> Send Leaf-user mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, visit > https://lists.sourceforge.net/lists/listinfo/leaf-user > or, via email, send a message with subject or body 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Leaf-user digest..." > > > Today's Topics: > > 1. Need an advice. by MAC access and traffic shape. (Dmitri Gofmekler) > 2. keep the same ip with pppoe connection (sylvain pelletier) > 3. Re: Weblet suggestion (Michael D. Schleif) > 4. Re: Weblet suggestion (Charles Steinkuehler) > 5. IPchains / Forwarding question (Kory Krofft) > 6. Re: keep the same ip with pppoe connection (Robert Chambers) > 7. Re: IPchains / Forwarding question (Patrick Benson) > > --__--__-- > > Message: 1 > From: "Dmitri Gofmekler" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Date: Sat, 3 Nov 2001 17:23:25 +0200 > Subject: [Leaf-user] Need an advice. by MAC access and traffic shape. > > Hello all! > > I need to build less complex router that I had done before, so asking for an > advice. I have to build the router that can do the following: > > 1. Route between 2 or 3 interfaces. (one interface connected to ISP, > others - sub-clients). > > 2. Because all clients is a home users, so it is possible that one of them > will download the 650MB .avi file using a 10 connections of FlashGET and > "eats" all traffic :) So routers must limit the traffic by some clever > rules, so if 5 clients is using the net, so each of them should have <some > constant/5>kbps speedlimit. Or maybe is present some other, more clever > algorythms? > > 3. Because on sub-client side Ethernet hub stays in public place, I have to > control the net usage by MAC address of client's lan adapter. So the router > should not forward any packets, came from unregistered lan adapter. (and if > possible, to check IP address/mac address accordance. Other way, I'll just > will give the addresses by DHCP based on mac address). > > Any advices are very welcome. > > Thanks in advance, > Dmitri. > > > > --__--__-- > > Message: 2 > From: "sylvain pelletier" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Date: Sat, 3 Nov 2001 17:05:10 +0100 > Subject: [Leaf-user] keep the same ip with pppoe connection > > This is a multi-part message in MIME format. > > ------=_NextPart_000_0011_01C16489.B25F1F00 > Content-Type: text/plain; > charset="iso-8859-1" > Content-Transfer-Encoding: quoted-printable > > My ISP wich provide me my cable connection works now with pppoe. > I would have a static ip. > I think a little script can do that, but if someone have already make = > it, I would happy > > Bye > Sylvain > > ------=_NextPart_000_0011_01C16489.B25F1F00 > Content-Type: text/html; > charset="iso-8859-1" > Content-Transfer-Encoding: quoted-printable > > <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> > <HTML><HEAD> > <META http-equiv=3DContent-Type content=3D"text/html; = > charset=3Diso-8859-1"> > <META content=3D"MSHTML 6.00.2600.0" name=3DGENERATOR> > <STYLE></STYLE> > </HEAD> > <BODY bgColor=3D#ffffff> > <DIV><FONT face=3DArial size=3D2>My ISP wich provide me my cable = > connection=20 > works now with pppoe.</FONT></DIV> > <DIV><FONT face=3DArial size=3D2>I would have a static ip.</FONT></DIV> > <DIV><FONT face=3DArial size=3D2>I think a little script can do that, = > but if someone=20 > have already make it, I would happy</FONT></DIV> > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > <DIV><FONT face=3DArial size=3D2>Bye</FONT></DIV> > <DIV><FONT face=3DArial size=3D2>Sylvain</FONT></DIV></BODY></HTML> > > ------=_NextPart_000_0011_01C16489.B25F1F00-- > > > > --__--__-- > > Message: 3 > Date: Sat, 03 Nov 2001 10:33:48 -0600 > From: "Michael D. Schleif" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > Organization: mds resource > To: Charles Steinkuehler <[EMAIL PROTECTED]> > CC: John P <[EMAIL PROTECTED]>, > LEAF User List <[EMAIL PROTECTED]> > Subject: Re: [Leaf-user] Weblet suggestion > > > Charles Steinkuehler wrote: > > > > > > Anyone know of an extended-precision shell-script math library before I > > go > > > > off and write one? > > > > > > After years and years of Perl programming, I've recently returned to my > > > roots: awk, sed and shell. > > > > > > I often use sed in shell scripting, because it gives me better control > > > over regexp's than grep. O, how quickly I forgot the power of awk! > > > > > > ``... all numeric values are represented within awk in double-precision > > > floating point.'' > > > > > > O boy, is that sucker fast -- compared to myriads of calls to sed! It > > > may take a different way of looking at your math problems; but, > > > especially with awk's powerful matrix handling, I suggest -- strongly -- > > > that you consider awk for this job. I vaguely remember a ksh extended > > > precision math library; but, that url no longer functions. And, [b]ash > > > is *not* ksh! No matter what math routines you find or develop, I > > > seriously doubt that you will compete with the already compiled speed of > > > awk . . . > > > > I would love to use something off the shelf like awk, or even dc, but I > > don't really want to add another 25K (dc) to 100K (mawk) binary just to do > > some simple addition and subtraction on byte/packet counts, since I think a > > lot of folks running on floppy would still like to use this, and most floppy > > installs are pretty pressed for size... > > Oooo, I forgot the ``cost'' of adding [m]awk . . . > > Does ash support arrays? I think that you're going to need it . . . > > -- > > Best Regards, > > mds > mds resource > 888.250.3987 > > Dare to fix things before they break . . . > > Our capacity for understanding is inversely proportional to how much we > think we know. The more I know, the more I know I don't know . . . > > > --__--__-- > > Message: 4 > From: "Charles Steinkuehler" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Cc: "John P" <[EMAIL PROTECTED]>, > "LEAF User List" <[EMAIL PROTECTED]> > Subject: Re: [Leaf-user] Weblet suggestion > Date: Sat, 3 Nov 2001 11:33:21 -0600 > > > > I would love to use something off the shelf like awk, or even dc, but I > > > don't really want to add another 25K (dc) to 100K (mawk) binary just to > do > > > some simple addition and subtraction on byte/packet counts, since I > think a > > > lot of folks running on floppy would still like to use this, and most > floppy > > > installs are pretty pressed for size... > > > > Oooo, I forgot the ``cost'' of adding [m]awk . . . > > > > Does ash support arrays? I think that you're going to need it . . . > > No array support in ash, but it's not really necessary, just convinent. > What would be even nicer is a bit more string functionality, but I think I > can do everything I need with the available parameter expansions (ie > ${parameter%word}, ${#parameter} and similar). > > The resulting code will probable be pretty slow compared to compiled code, > but it should be pretty small (probably a few hundred bytes for arbitrary > precision add/subtract routines). OK, they won't likely be 'true' arbitrary > precision, but the limits would be set by the maximum size of a shell > variable, and maximum recursion depth for functions. I think both limits > are pretty big (but not arbirarily large)...certianly big enough to handle > byte counts for even a busy router with a long uptime... > > Charles Steinkuehler > http://lrp.steinkuehler.net > http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) > > > > > > > --__--__-- > > Message: 5 > Date: Sat, 03 Nov 2001 13:03:54 -0500 > From: Kory Krofft <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: [Leaf-user] IPchains / Forwarding question > > Hi, I am slightly above a novice at linux. I am using Chuck's Dachstein > lrp for my home network. I am a Road Runner subscriber in a small town > so I have lots of bandwidth compared to friends in other locations. I > have been "chosen" to to host several online games for semiprivate > tournaments and want to be able to use a machine behind the lrp box to > do it. I have read the IPchains how to and am lost in the syntax. none > of the How -To's are clear to me what commands to place in which files > to be able to provide access to a game server on my internal network. > Please tell me how to do this and explain the commands and syntax so I > will have some understanding of what they do. > > Thank you, > > Kory Krofft > > > > > --__--__-- > > Message: 6 > Date: Sat, 03 Nov 2001 12:14:32 -0600 > From: Robert Chambers <[EMAIL PROTECTED]> > To: sylvain pelletier <[EMAIL PROTECTED]>, > leaf <[EMAIL PROTECTED]> > Subject: Re: [Leaf-user] keep the same ip with pppoe connection > > > --------------000104040508000709020504 > Content-Type: text/plain; charset=us-ascii; format=flowed > Content-Transfer-Encoding: 7bit > > Try Kenneth Hadleys version it has pppoe in it. I am using it on a DSL > line from Covad and it works great. Also Charles has a version of his > Dachstien with pppoe that he is looking for people to experiment with it > for him. > Robert Chambers > > sylvain pelletier wrote: > > > My ISP wich provide me my cable connection works now with pppoe. > > > > I would have a static ip. > > > > I think a little script can do that, but if someone have already make > > it, I would happy > > > > > > > > Bye > > > > Sylvain > > > > > --------------000104040508000709020504 > Content-Type: text/html; charset=us-ascii > Content-Transfer-Encoding: 7bit > > <html> > <head> > </head> > <body> > Try Kenneth Hadleys version it has pppoe in it. I am using it on a DSL line > from Covad and it works great. Also Charles has a version of his Dachstien > with pppoe that he is looking for people to experiment with it for him.<br> > Robert Chambers<br> > <br> > sylvain pelletier wrote:<br> > <blockquote type="cite" cite="001401c16481$50b7b4e0$0101a8c0@maisonrv1u486e"">mid:001401c16481$50b7b4e0$0101a8c0@maisonrv1u486e";> > <meta content="MSHTML 6.00.2600.0" name="GENERATOR"> > <style></style> > <div><font face="Arial" size="2">My ISP wich provide me my cable connection > works now with pppoe.</font></div> > <div><font face="Arial" size="2">I would have a static ip.</font></div> > <div><font face="Arial" size="2">I think a little script can do that, but > if someone have already make it, I would happy</font></div> > <div> </div> > <div><font face="Arial" size="2">Bye</font></div> > <div><font face="Arial" size="2">Sylvain</font></div> > </blockquote> > <br> > </body> > </html> > > --------------000104040508000709020504-- > > > > --__--__-- > > Message: 7 > Date: Sat, 03 Nov 2001 20:52:50 +0100 > From: Patrick Benson <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: [Leaf-user] IPchains / Forwarding question > > Kory Krofft wrote: > > > > Hi, I am slightly above a novice at linux. I am using Chuck's Dachstein > > lrp for my home network. I am a Road Runner subscriber in a small town > > so I have lots of bandwidth compared to friends in other locations. I > > have been "chosen" to to host several online games for semiprivate > > tournaments and want to be able to use a machine behind the lrp box to > > do it. I have read the IPchains how to and am lost in the syntax. none > > of the How -To's are clear to me what commands to place in which files > > to be able to provide access to a game server on my internal network. > > Please tell me how to do this and explain the commands and syntax so I > > will have some understanding of what they do. > > > > Thank you, > > > > Kory Krofft > > Scott Best has a very good solution for your situation, take a look at > his echowall.lrp package, makes port forwarding look real easy. Make a > copy of the package and change the name to echowall.tgz and untar the > contents. Take a look at the documentation. Instead of detecting IP > addresses, which can change from time to time, the script uses the MAC > addresses on the network cards. If you want to avoid complex syntax by > editing rules on your own this is the way to go, if you want to run a > variety of servers inside your network. But it can be healthy to > understand how the syntax works, on the way, otherwise it will be > difficult to detect and recognize potential intruders!... :) > > http://freshmeat.net/projects/echowall/ > http://leaf.sourceforge.net/devel/sbest/echowall/ > > A snippit from the documentation on what echowall supports: > > Supported services > ================== > Version 1.30 of echowall supports all the normal stuff, like > DHCP, DNS, pings, identd, traceroute, etc. In addition, the > collection of user-selectable services that require special > port-forwarding rules includes: > > # -- AIM (only needed for file-transfer in AIM) > # -- ASHERON (Microsoft's _Asheron's Call_ game) > # -- BATTLENET (head-to-head games like Starcraft) > # -- CIPE (lightweight VPN application) > # -- CUSEEME (CUSeeMe's videoconferencing software) > # -- DIRECTX (most every Microsoft game; versions 7 & 8) > # -- DNS (Domain Name Server) > # -- EF (EchoFree personal-VPN application) > # -- FTP (File Transfer Protocol, active-mode) > # -- FW1 (a VPN protocol for Checkpoint's SecureRemote) > # -- HLIFE (Half-Life and descendant games, eg > CounterStrike) > # -- HTTP, HTTPS (Webserver) > # -- ICQ (Internet chatting, instant messaging) > # -- IPSEC (ESP okay. AH works only if firewall is > endpoint.) > # -- IRC (Internet Relay Chat for Unix, a-la RFC-1459) > # -- NAPSTER (you know, Napster) > # -- NET2PHONE (Net2Phone VoIP service) > # -- NETMEET (Microsoft Netmeeting, outgoing only) > # -- NEWS (NNTP News Server) > # -- PASVFTP (File Transfer Protocol, passive-mode) > # -- PCANYWHERE (remote control software for Windows) > # -- POP3 (Post-Office Protocol email server) > # -- PPTP (Windows-VPN, needs ipfwd to handle IP > encapsulation) > # -- QUAKE (head-to-head 1st person shooting) > # -- SMB (Samba: Windows-based file and printer sharing) > # -- SMTP (Email Server) > # -- SSH_DEFAULT (secure shell to standard port) > # -- SSH_CUSTOM (secure shell to a user-custom port) > # -- TELNET (non-secure shell) > # -- UNREAL (UnReal Tournament) > # -- VNC (Virtual Network Computer) > > > -- > Patrick Benson > Stockholm, Sweden > > > > --__--__-- > > _______________________________________________ > Leaf-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/leaf-user > > > End of Leaf-user Digest _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
