Hey again Craig,
Nope - the files should be pretty much identical to the ones I showed you
except you don't need the text in brackets (port # of any services you run
that use ports below 1024 like ssh or ftp or www)- replace that with the
port numbers of any services you want to run - i.e. 22 for ssh or 21 for ftp
- and don't put the brackets in. If you have more than one service (say
you're running ssh and ftp on the default ports) your config would look like
this:
dst host <IPADDR>
and tcp[2:2] & 0xfc00 == 0
and not dst port 22
and not dst port 21
The other thing is when you are configuring your options you might want to
leave the -v switch out as noted by Steve Jeppesen as it will fill your log
partition. As a reference point here is what you probably want as your
options for LaBrea (you can get to this file by typing in ae
/etc/init.d/LaBrea):
OPTIONS="-i eth0 -l -p 80000 -z -x -F /etc/LaBrea.bpf"
HTH
S
>From: "Craig Caughlin" <[EMAIL PROTECTED]>
>To: "LEAF" <[EMAIL PROTECTED]>
>Subject: [Leaf-user] Will LaBrea work with dynamic IP addresses?
>Date: Fri, 1 Mar 2002 06:31:12 -0800
>
>Hi folks,
>Hey Simon...are you reading this??? -if not, hopefully someone can clarify
>something for me. Should I create the two files as suggested in Simon's
>earlier message (see below) exactly as he has shown...or is there something
>unique about my scenario that I should be substituting when I create these
>files? Thank you, have a great weekend!!!
>
>Craig
>
>1. Create /etc/LaBrea.in have it contain the following:
>
>dst host <IPADDR>
> and tcp[2:2] & 0xfc00 == 0
> and not dst port (port # of any services you run that use ports below
>1024 like ssh or ftp or www)
>
>2. Create /etc/LaBrea.scr it should contain the following:
>
>#!/bin/sh
>
>IPADDR=`ip addr list label eth0 | grep inet | \
>sed '1!d;s/^[^.0-9]*\([.0-9]*\).*$/\1/'`
>
>sed "s/<IPADDR>/$IPADDR/g" /etc/LaBrea.in >/etc/LaBrea.bpf
>
>
>3. Allow LaBrea.scr to be executable:
>
>chmod 744 /etc/LaBrea.scr
>
>4. Edit the dhclient-exit-hooks to with the following changes:
>
># Reload networking to see new address
> reload_all
>
>Add a few lines so you have
>
># Reload networking to see new address
> reload_all
> /etc/LaBrea.scr
> svi LaBrea stop
> svi LaBrea start
>
>5. Back up dhclient and LaBrea - all done :)
>
>
>
>
>
>_______________________________________________
>Leaf-user mailing list
>[EMAIL PROTECTED]
>https://lists.sourceforge.net/lists/listinfo/leaf-user
_________________________________________________________________
MSN Photos is the easiest way to share and print your photos:
http://photos.msn.com/support/worldwide.aspx
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
