[leaf-user] puzzle: listen on port X on internal interface, and send data to remote host with dynamic ip]
Hi all, I have a strange goal. the setup: two sites (a and b) both with linux machines running shorewall. a machine at site 'a' needs to connect to services on a machine at site 'b'. both sites have dsl with dynamicaly assigned ip addresses. site 'b's ip can be resolved from siteb.dynamic.dns.com (one of those fancy dynamic-dns sites) the goal: to have a computer at site 'a' connect to a port on the internal nic of the router at site 'a' and have it transparently communicate through this port to a computer at site 'b'. this will be a windows networking/smb connection, so the client machine and the server can't specify a port number. For various reasons we cannot expose the standard smb port at site 'b'. I know i can use DNAT on the router at site 'b' to accept connections on port 12345 and send them to the server port 139. what can i use at site 'a' to accept connections on port 139 on the local interface and forward them to siteb.dynamic.dns.com port 12345? If I specify the fqdn in the shorewall config I see two problems: it either will not work at all, or it'll resolve the address once (when shorewall is started) and never again. I'd like to avoid setting up a vpn as i'm short on time, and I can't install ssh on either machine. ideas? comments? suggestions? thanks, +matt ps. let me know if you need me to clarify anything ___ Shorewall-users mailing list Post: [EMAIL PROTECTED] Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users Support: http://www.shorewall.net/support.htm FAQ: http://www.shorewall.net/FAQ.htm --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] puzzle: listen on port X on internal interface, and send data to remote host with dynamic ip]
Matt Matt wrote: Hi all, I have a strange goal. the setup: two sites (a and b) both with linux machines running shorewall. a machine at site 'a' needs to connect to services on a machine at site 'b'. both sites have dsl with dynamicaly assigned ip addresses. site 'b's ip can be resolved from siteb.dynamic.dns.com (one of those fancy dynamic-dns sites) the goal: to have a computer at site 'a' connect to a port on the internal nic of the router at site 'a' and have it transparently communicate through this port to a computer at site 'b'. this will be a windows networking/smb connection, so the client machine and the server can't specify a port number. For various reasons we cannot expose the standard smb port at site 'b'. I know i can use DNAT on the router at site 'b' to accept connections on port 12345 and send them to the server port 139. what can i use at site 'a' to accept connections on port 139 on the local interface and forward them to siteb.dynamic.dns.com port 12345? If I specify the fqdn in the shorewall config I see two problems: it either will not work at all, or it'll resolve the address once (when shorewall is started) and never again. I'd like to avoid setting up a vpn as i'm short on time, and I can't install ssh on either machine. ideas? comments? suggestions? This is a typical VPN situation, short of time use OpenVPN to solve this. my 0.02 Erich --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] puzzle: listen on port X on internal interface, and send data to remote host with dynamic ip]
Matt, Erich Titl wrote: Matt Matt wrote: Hi all, I have a strange goal. the setup: two sites (a and b) both with linux machines running shorewall. a machine at site 'a' needs to connect to services on a machine at site 'b'. both sites have dsl with dynamicaly assigned ip addresses. site 'b's ip can be resolved from siteb.dynamic.dns.com (one of those fancy dynamic-dns sites) the goal: to have a computer at site 'a' connect to a port on the internal nic of the router at site 'a' and have it transparently communicate through this port to a computer at site 'b'. this will be a windows networking/smb connection, so the client machine and the server can't specify a port number. For various reasons we cannot expose the standard smb port at site 'b'. I know i can use DNAT on the router at site 'b' to accept connections on port 12345 and send them to the server port 139. what can i use at site 'a' to accept connections on port 139 on the local interface and forward them to siteb.dynamic.dns.com port 12345? If I specify the fqdn in the shorewall config I see two problems: it either will not work at all, or it'll resolve the address once (when shorewall is started) and never again. I'd like to avoid setting up a vpn as i'm short on time, and I can't install ssh on either machine. ideas? comments? suggestions? This is a typical VPN situation, short of time use OpenVPN to solve this. my 0.02 Erich Zebedee might be a quick and dirty solution. Secure tunnel. VPN like. Runs on Windows and Linux. I use it to tunnel VNC. Google it. Sean --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] Microtik Routerboard 500
Good day all, I am considering replacing a bunch of old dual floppy machines with the microtik routerboard 500 (http://www.routerboard.com/). These boards have a CF card slot and can be configured to boot off of them. I believe the units has a MIPS 79RC32434 processor. I am currently running Leaf Bering uClibC 2.0 but will migrate to 2.2. I use these for IPSEC connections between several remote offices. Has anyone ported Leaf bering to the routerboard or can anyone give me some starting pointers? My concerns are how to get from my two floppies to the CF card, and if the existing code will work with the MIPS processor. Darcy --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Microtik Routerboard 500
Darcy Darcy Parker (Home) wrote: Good day all, I am considering replacing a bunch of old dual floppy machines with the microtik routerboard 500 (http://www.routerboard.com/). These boards have a CF card slot and can be configured to boot off of them. I believe the units has a MIPS 79RC32434 processor. I am currently running Leaf Bering uClibC 2.0 but will migrate to 2.2. I use these for IPSEC connections between several remote offices. Has anyone ported Leaf bering to the routerboard or can anyone give me some starting pointers? My concerns are how to get from my two floppies to the CF card, and if the existing code will work with the MIPS processor. Looks like a nice little animal, I doubt though, code compiled for the x86 architecture will run on it. You will probably have to recompile everything. It probably will outrun the Geode SC1100 but unless you need that extra speed you could go for a WRAP, which is supported. cheers Erich --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
Re: [leaf-user] Microtik Routerboard 500
On Thu, 2005-06-09 at 09:36 -0600, Darcy Parker (Home) wrote: Good day all, Hi Darcy! I am considering replacing a bunch of old dual floppy machines with the microtik routerboard 500 (http://www.routerboard.com/). These boards have a CF card slot and can be configured to boot off of them. I believe the units has a MIPS 79RC32434 processor. I am currently running Leaf Bering uClibC 2.0 but will migrate to 2.2. I use these for IPSEC connections between several remote offices. Has anyone ported Leaf bering to the routerboard or can anyone give me some starting pointers? My concerns are how to get from my two floppies to the CF card, and if the existing code will work with the MIPS processor. It will not work. MIPS is not compatible to i386/i486 architecture, so anything compiled for it won't run (Another difference would be, that i386 are little endian processors while (true) MIPS is big endian). I am thinking about porting bering-uclibc to linksys which uses a MIPSel (MIPS in little endian) processor, but even this won't be compatible. buildtool as it is now, is not ready for crosscompiling (although the kernel and uclibc/busybox should run on MIPS/MIPSEL), it will be some day, hopefully, but there are still some problems that will occure (apart from compilation problems that some sources will show, i suppose), one is : how to boot it ? Depending on the board, you might need a special boot loader, you might not have an ide disc (only flash ram), at least this is the case for the linksys... Would be an interesting project, of course. So don't expect an easy solution for this, you might consider one of the standard leaf i386 based boards like WRAP or soekris... Darcy --arne -- Arne Bernin [EMAIL PROTECTED] http://www.ucBering.de --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
RE: [leaf-user] Bering-uClibc Docs and IPSEC: FreeSwan or OpenSwan?
On Fri, 2005-04-29 at 11:51, Calvin Webster wrote: It would sure be nice to have a single source for the docs, since there are so many of them. Calvin, I hope to do that when I upgrade our docbook build script. XIncludes are the key, and all the documents in doc should end up in a single browse-able entity. http://leaf-project.org/doc/ Note: our FAQs will end up in a phpWebSite wiki. -- Mike Noyes mhnoyes at users.sourceforge.net http://sourceforge.net/users/mhnoyes/ SF.net Projects: leaf, phpwebsite, phpwebsite-comm, sitedocs --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
[leaf-user] Leaf guide
Hi Could anyone send me the leaf guide collection in PDF format? link http://www.leaf-project.org/doc/guide/leaf-guide-collection.pdf does not work Thanks Fabricio Vargas --- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61 plasma display: http://www.necitguy.com/?r=20 leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
