Re: [leaf-user] Packages Unavailable - SF problems?!

2006-04-27 Thread Mike Noyes 
On Wed, 2006-04-26 at 18:12, groups, freeman wrote:
 I've noticed for the past day-ish that two packages I'm interested in 
 (tc, qos-htb) have been unavailable from the sf website.
 
 e.g. URL:
 http://cvs.sourceforge.net/viewcvs.py/leaf/bin/bering-uclibc/packages/qos-htb.lrp?rev=HEADcontent-type=application/octet-stream
 
 times out eventually and gives this as the resultant document:
 Connection: close

groups,
SF froze anonymous cvs due to an issue they had with developer cvs. See
SF site status:

SourceForge.net Site Status
http://sourceforge.net/docs/A04/

Please try our cvs rsync backup at:

rsync.steinkuehler.net::leaf-cvs/leaf/bin/packages/uclibc-0.9/20/

-- 
Mike Noyes mhnoyes at users.sourceforge.net
http://sourceforge.net/users/mhnoyes/
SF.net Projects: leaf, phpwebsite, phpwebsite-comm, sitedocs



---
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642

leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/

Re: [leaf-user] dnsmasq: dhcp doesn't return netmask

2006-04-27 Thread biblonchk 
Hi, Eric

First of all, I appologize for the late answer.

The dnsmasq version used on the gw is the one packaged with BUC 2.4 iso.

For the moment, i doesn't have access to the LAN in question
for tcpdumping what's going on. i hope to report about this point 
at the end of week-end. (for this test, i will unplug all clients 
from lan except my one just to see what's happend)

Please, notice also: before having discovered the issue in question, 
i'm absolutly sure that netmask has been set correctly once or twice
(i saw it). But for an unknown reason, it was gone at next day and i
couldn't got it okay since them. BUC's host was also the only system
servicing dns and dhcp on our lan (for now, those services have been
migrated on another infrastructure (djb+dhcpd)).

kindest regards
bib




On Fri, 21 Apr 2006 12:15:21 +0200 (CEST)
Eric Spakman [EMAIL PROTECTED] wrote:

 Hello Barnabé
 
 I don't see anything obviously wrong in your setup. I'll try to create a
 simular setup later to see if I get the same problem.
 
 Can you try to run a packet sniffer (tcpdump, ethereal) on you workstation
 or router (tcpdump) to pinpoint why the netmask isn't advertised?
 
 Which version of dnsmasq are you using?
 
 Eric
 
  Hello, Eric
  Thank you for your help.
  Sorry for late answer but my 'webmail' reply was rejected by server.
  I've just tried your tip, removing explicit netmask in dhcp-range.
  This didn't resoved this issue.
 
 
  Furthermore, I've tried following change without any success:
  a) added: interface=eth2 no-dhcp-interface=eth2 b) removed:
 dhcp-option=1...
  (mask)
  dhcp-option=28... (broadcast) note: broadcast address still okay
  c) removed both eth2 params above
 
  Shorewall dhcp rules seems to be okay and i can ping
  any address on the 192.168.1.0/25 subnet from the firewall.
 
 
  1. Exerp or 'shorewall show'
  --
  --
  Chain OUTPUT
  9 2952 ACCEPT udp  --  * eth1 0.0.0.0/0 0.0.0.0/0 udp dpts:67:68
  Chain eth1_in
  15 6656 ACCEPT udp  --  *   *0.0.0.0/0 0.0.0.0/0 udp dpts:67:68
 
 
 
  2. Content of LRPs config:
  --
  --
  LRP=root config etc local modules libcrpto libm libz log dropbear
  ulogd iptables shorwall  ppp pppoe  ntpdate ntpsimpl dnsmasq
 
 
 
 
  On Tue, 18 Apr 2006 20:33:33 +0200 (CEST)
  Eric Spakman [EMAIL PROTECTED] wrote:
 
 
  Hello Barnabé,
 
 
  Did you try it without explicitly seting the netmask?
 
 
  dhcp-range=192.168.1.97,192.168.1.110,10m
 
  Eric
 
 
  Dear all,
  I wonder why dnmasq's dhcp doesn't returns the netmask, which should
  be 255.255.255.128
  on both LAN and DMZ. Here is the dhcpcd log exerp on my (gentoo-linux)
   workstation:
 
 
 
  Apr 18 11:39:48 julie dhcpcd[14872]: subnetMask option is missing in
   DHCP
  server response. Assuming 255.255.255.0
 
 
  Same thing appens for macOSX systems on the same lan.
 
 
 
  Would someone be nice enough in giving me hand for refine diagnostic
  and/or resolve this issue ?
 
  Many thanks in advance for your help
  Kindest regards
  bib
 
 
 
  1) /etc/network/interfaces
  
  auto lo iface lo inet loopback
 
  auto ppp0 iface ppp0 inet ppp pre-up ip link set eth0 up provider
  dsl-provider eth0 auto eth1 iface eth1 inet static address
  192.168.1.121
  netmask 255.255.255.128 broadcast 192.168.1.127 auto eth2 iface eth2
  inet static address 192.168.1.254 netmask 255.255.255.128 broadcast
  192.168.1.255
 
 
 
 
  2) Output of 'ip addr'
  
  1: lo: LOOPBACK,UP mtu 16436 qdisc noqueue
  link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8
   scope host lo 2: dummy0: BROADCAST,NOARP mtu 1500 qdisc noop
  link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff 3: eth0:
  BROADCAST,MULTICAST,UP mtu 1500 qdisc pfifo_fast qlen 1000
  link/ether 00:c0:4f:a4:fa:17 brd ff:ff:ff:ff:ff:ff 4: eth1:
  BROADCAST,MULTICAST,UP mtu 1500 qdisc pfifo_fast qlen 1000
  link/ether 00:10:5a:e1:50:08 brd ff:ff:ff:ff:ff:ff inet
  192.168.1.121/25
  brd 192.168.1.127 scope global eth1 5: eth2: BROADCAST,MULTICAST,UP
  mtu 1500 qdisc pfifo_fast qlen 1000
  link/ether 00:40:f4:41:27:9c brd ff:ff:ff:ff:ff:ff inet
  192.168.1.254/25
  brd 192.168.1.255 scope global eth2 6: ppp0:
  POINTOPOINT,MULTICAST,NOARP,UP mtu 1492 qdisc pfifo_fast qlen 3
  link/ppp inet 182.251.214.183 peer 182.251.211.232/32 scope global
  ppp0
 
 
  3) Output of 'ip route'
  
  182.251.211.232 dev ppp0  proto kernel  scope link  src
  182.251.214.183
  192.168.1.0/25 dev eth1  proto kernel  scope link  src 192.168.1.121
  192.168.1.128/25 dev eth2  proto kernel  scope link  src 192.168.1.254
   default via 182.251.211.232 dev ppp0
 
 
  4) dnsmasq.conf

RE: [leaf-user] Bering Shorewall rejecting packets via VPN?

2006-04-27 Thread Doug Sampson 
 Doug Sampson wrote:
  Hi all,
  
  I'm seeing these messages in my logs:
  
  ..snip..
  Apr 25 14:07:30 firewall Shorewall:all2all:REJECT: IN=tun0 OUT= MAC=
  SRC=10.8.0.14 DST=192.168.1.254 LEN=89 TOS=18 PREC=0x00 
 TTL=255 ID=41848 CE
  PROTO=UDP SPT=5353 DPT=53 LEN=69 
 
 This is vpn to fw traffic
 
 ...
 
  
 
 
  
  Added to /etc/shorewall/policy
  
loc   vpn ACCEPT
vpn loc ACCEPT
 
 and either here or in the rules it has to be allowed ...
 
 ...
 
  
  
  What am I doing wrong?
 
 :-)
 
 cheers
 
 Erich


That seems to be the trick. I'll look into this. Thanks for the response.

~D 


---
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642

leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/