ramdisk along with the kernel (Bering changed to a
smaller initrd package for extra flexability in booting and to avoid
patching the kernel), but there has always been a pakcage that got loaded by
the boot-loader as the initial ramdisk and didn't get specified in the LRP=
list.
- --
Charles Steinkuehler
if they were
a bottleneck).
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFC1p1ULywbqEHdNFwRAv4pAKDDh3VsCG0Y68eFGuxtiY1ANXwAUgCghNWj
N6PvPaR+7jTqTpYJIfgrET4=
=DB3b
-END PGP
with
| CF cards so far have been for linux.
Have you tried WinImage:
http://www.winimage.com/winimage.htm
It works great for floppies, but I'm not sure if it will work for a CF card.
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment
) function:
from /bin/POSIXness
qt () { $@ /dev/null 21 ; }
...and it's friend, qte (swallows error out, but leaves main out alone):
qte () { $@ 2/dev/null ; }
Use it like so:
if qt mount.back $pkgname $pkgmnt ; then
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version
terminal consoles BIOS redirection) I don't
remember how...
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFCyvU/LywbqEHdNFwRAtW1AKC8AS5FxLyqdg6lwlDzHW2yc9egfQCgi4tz
awaiting enough free cycles to crawl through the ipsec barf you
sent...
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFCf3b+LywbqEHdNFwRAin9AJ0cjqPVLNsVsHTYC7eaxSzwN5yadwCfebGl
if a tunnel is currently down).
Can you provide the output of ipsec barf (be patient, it takes a while)?
- --
Charles Steinkuehler
[EMAIL PROTECTED]
tempest: -root-
# ipsec look
tempest Wed May 4 14:53:51 UTC 2005
0 10 28 0 019:0:10.34.1.0/24:0 - 10.28.0.0/19:0 =
[EMAIL PROTECTED]:0 (709)
0
ever get swapped out to
disk like application programs can if you have a swap partition enabled).
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
*
know what you're doing, and only for legitimate activities.
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFCZERiLywbqEHdNFwRAru0AJ48n9aZOxGkzfiKl7/v7q/W3BbR2QCgoKar
jvw
eth1
eth5eth1
eth0eth5
eth2eth5
eth3eth5
eth4eth5
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
HTH, holler with any questions...
- --
Charles Steinkuehler
[EMAIL
in the filter table. To see chains from a specific
table (usual options are nat, mangle, and filter...you can look at
/proc/net/ip_tables_names for a complete list), do something like:
iptables -t nat -nvL
iptables -t mangle -nvL
shorewall show nat
shorewall show mangle
- --
Charles Steinkuehler
[EMAIL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Please direct support requests to the leaf-user list
Romek wrote:
| Hello Charles.
|
| is it possible to setup DMZ with this linux router ?
Yes, if you mean with router based on LEAF:
http://www.leaf-project.org/
- --
Charles Steinkuehler
[EMAIL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael D Schleif wrote:
| * Charles Steinkuehler [EMAIL PROTECTED]
[2005:03:14:05:59:33-0600] scribed:
| snip /
|
| If you're familiar with Dachstein-CD, customizing my Bering-CD ISO is
| probably the easiest way to go. You'll need to come up
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael D Schleif wrote:
| * Charles Steinkuehler [EMAIL PROTECTED]
[2005:03:16:06:15:09-0600] scribed:
| Michael D Schleif wrote:
| snip /
|
| | [5] When I need to compile a package, I will need a development
| | environment. Can I assume
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael D Schleif wrote:
| * Charles Steinkuehler [EMAIL PROTECTED]
[2005:03:16:06:15:09-0600] scribed:
| Michael D Schleif wrote:
| snip /
|
| | Thank you, all of you, for your continued efforts with LEAF.
| |
| | P.S., Please, Charles, keep me
the modules package
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFCOJGdLywbqEHdNFwRAnZtAJ9uk8bUJCY1CudOPjxMLrKF407Z7wCg5750
KvEWCia7R56hK7XjbDG7GbU=
=3Ein
-END PGP SIGNATURE
hassle of building a new CD
image is collecting all the packages...if you're willing to do most of that,
I'll commit to making a Bering-uClibc boot disk image.
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Charles Steinkuehler wrote:
| The main hassle of building a new CD
| image is collecting all the packages...if you're willing to do most of that,
| I'll commit to making a Bering-uClibc boot disk image.
Heh...the uClibc guys make finding the packages
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
K.-P. Kirchdörfer wrote:
| Am Montag, 14. März 2005 13:35 schrieb Charles Steinkuehler:
| Charles Steinkuehler wrote:
|
| It looks like everything I need is there with the exception of:
|
| - vim (gotta have the real thing!)
|
| - rsync (used
-client settings (as well as much better security, since you don't
have the same secret shared between ~10 people...as Benjamin Franklin said,
Three may keep a secret if two of them are dead :-).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email
(and sometimes necessary) when interfacing to
obscure and/or older equipment, especially that which predates the current
CIDR subnetting techniques.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read
=1 = 0x0001
ICMP_REDIRECT = 2^5 = 32 = 0x0020
ICMP_ECHO = 2^8 = 256 = 0x0100
old value= 6168 = 0x1818
new value= 6457 = 0x1939
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Mozilla
is the number of systems active on the subnet you sent the
broadcast packet to), and various other forms of attack (like potentially
circumventing firewall rules by sending traffic to a broadcast IP instead of
the IP of the actual host).
- --
Charles Steinkuehler
[EMAIL PROTECTED]
-BEGIN PGP
anyway! :)
Let us all know if you get it working with uClibc.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag--drop reports. Save time
mention enabling nat-traversal on the XP machine, but your
connection defaults set nat_traversal=no, and the road-warrior connection
descriptions don't seem to override this. This mis-match could also be
causing your problem (or adding to it).
--
Charles Steinkuehler
[EMAIL PROTECTED
.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag--drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS
then your program exits (list the delay...DNS and TCP
timeouts are pretty easy to identify by the delay), and exactly what your
program prints out (it's unclear what is actual program output, above, and
what is inline commenting provided by you).
--
Charles Steinkuehler
[EMAIL PROTECTED
the partiton
type is 'fd', and the kernel (which acutally *DOES* care about the partition
type field) will properly auto-detect your RAID partitons.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
The SF.Net email is sponsored by: Beat the post
?
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almosthttp://www.thinkgeek.com/sfshirt
# Launch the desired editor:
eval $EDITOR $@
...to...
# Launch the desired editor, or e3ne if undefined:
eval ${EDITOR:-/bin/e3ne} $@
Which will default ot /bin/e3ne if EDITOR isn't defined...
--
Charles Steinkuehler
[EMAIL PROTECTED
autodetect).
That shouldn't be your problem, however, as I don't think the raid-tools
stuff cares about the partition type...that's mainly needed for correct
auto-detection of raid by the kernel when booting.
I'm still thinking about what else might be wrong...
--
Charles Steinkuehler
[EMAIL
Michael McClure wrote:
Charles Steinkuehler wrote:
Michael McClure wrote:
Thanks for the reply. Should I be using a different version/release
that would work better for RAID? If so, pls let me know. As far as
your info requests, see below.
thanks.
mike.
# lsmod
Module PagesUsed
the files to
another host.
As it is, it looks like I should create my CF disk with a second file
system on it just for
the purpose of 'partial backups'.
That might be handy, and allow you to simply copy new LRP files onto your CF
disk, reboot, and have an upgraded system, but
--
Charles Steinkuehler
...
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http
to be
different than the release distribution (see instructions for making a new
CD in the Dachstein-CD Readme file).
Otherwise, let me know more about what you're trying to do and I'll see if I
can help.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF
have been doing lots of server upgrades lately).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real users.
Discover which products truly
changes to
it's local environment are purged when the program exits.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real users.
Discover
understand what you're doing to convert a floppy-boot disk image into a CD
boot without making a couple of 'coasters' in the process. :)
Just holler if you have any questions.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored
connection protocols (ie: slip or ppp), requiring you to run a custom client
which is typically windows only.
The folks on leaf-user can help you configure your system if you decide to
go with a LEAF based linux firewall.
--
Charles Steinkuehler
[EMAIL PROTECTED
spend time and effort bringing your thought process around to the
linux/unix way of doing things, rather than trying to squeeze linux into a
DOS mold...
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product
Stephen Lee wrote:
On Sun, 2004-12-05 at 10:59, Charles Steinkuehler wrote:
Stephen Lee wrote:
Hi,
I've got two Bering boxen joined with a super-freeswan-1.99.6.2 VPN
connection. As a GW-GW tunnel they are running great. Very stable! I
want to allow roadwarriors (WinXP pro) to tunnel
an appropriate compile environemnt).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real users.
Discover which products truly live up
'
connection, or use the also= and include= settings in the connection
description.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real users
suspect what they mean by
propriarity/openssl is that openvpn uses their own protocol (built on top
of the openssl libraries), rather than an actual standard, like IPSec.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF email is sponsored
configurations changes would I need to make on the firewall?
You might be able to get this to work if you nat-traversal for the
connection to the Pix, and initiate the connection from inside your leaf
firewall, or if you have more than one external IP.
--
Charles Steinkuehler
[EMAIL PROTECTED
enough to require a routing protocol).
There's a nice picture of the basic idea on the Cisco website:
http://www.cisco.com/warp/public/707/gre_ipsec_ospf.html#diag
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored
you pay for SOHO class access).
If your ISP is blocking the encrypted traffic, using NAT-traversal (which
tunnels the encrypted data across UDP port 500) should solve the problem,
but I'd suspect firewall rules first.
--
Charles Steinkuehler
[EMAIL PROTECTED
an upgrade to 1.99.8 or beyond might be better.
Upgrading is fairly easy once I have a 2.4.x glibc binary.
Do you have appropriate [left|right]nexthop stanzas in your connection
descriptions? This doesn't sound like a problem that will be solved by a
newer version of [free|open]s/wan.
--
Charles
to your 'right' interface, which is what's causing your
problems (ie: IPSec traffic not routed through your default gateway).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download
. I'm not sure if either supported plain
RSA keys or not, but there at least used to be demo versions available for
download, so it should be easy enough to check.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored
. I personally use the /etc/ipsec directory for any files other than
ipsec.conf and ipsec.secrets that relate to ipsec.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This Newsletter Sponsored by: Macrovision
For reliable Linux application
, or you'll revert back to the older version on the CD (although your
config files will not be lost), so burning a new CD image is the safest bet.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by:
Sybase ASE Linux
instructions! :)
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us what you think of them. Give us
Your Opinions, Get Free ThinkGeek Gift
of different clients. All data is sent
on UDP port 500 in this mode, rather than using IP protocols 50/51 for
encrypted data and UDP only for keying.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide
for the road-warrior system(s), your problem with
the unknown connection description will go away, and everything will start
working as it does now when you hard-code the road-warrior's local IP as the
right-hand subnet.
--
Charles Steinkuehler
[EMAIL PROTECTED
.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us what you think of them. Give us
Your Opinions, Get Free ThinkGeek Gift Certificates! Click
LEAF box is trying to send
UDP port 500 'keep-alive' packets to the far end (to prevent the connection
masquerading in your NAT router from timing out) and it never gets a
response (strongly suggesting the winxp box isn't properly configured for
NAT traversal IPSec).
--
Charles Steinkuehler
at
least we can all make some money day-trading. :-)
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us what you think of them. Give us
Your
APs!
Good luck!
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us what you think of them. Give us
Your Opinions, Get Free ThinkGeek Gift
installation graphic that showed the WAP
plugged directly into the cable/dsl-modem?).
Keep us posted on what you find!
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use
% packet loss due to DSL line quality going south after
several years of good service, and I can vouch for the fact that it was
unplesent. I don't even want to think about what 50%+ packet loss would be
like.
As before, keep us posted!
--
Charles Steinkuehler
[EMAIL PROTECTED
Calvin D. Webster wrote:
Charles Steinkuehler wrote:
Forgot to cc: list...
Calvin Webster wrote:
On Fri, 2004-10-01 at 15:02, Martin Hejl wrote:
Calvin Webster wrote:
Has anyone had problems rendering the LEAF status pages in
Mozilla? All I get in the Mozilla 1.4.2 browser window is the
plain
is with sh-httpd, not Mozilla.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products in your business? Tell us what you think of them. Give us
Your Opinions, Get Free
renewing your lease, or checking to see
if you're loosing your default lease when the dhcp lease gets renewed?
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.net email is sponsored by: IT Product Guide on ITManagersJournal
Use IT products
remember I've to become a donor :-)
Note that the putty folks also provide pscp (a version of scp), which
can easily transfer files across an ssh link w/o requiring sftp.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email
, and indicates mathmatical expansion, while
single parens $( ... ) are used for command substitution (ie: the same
as backticks, or `...`, the enclosed command is run and it's output is
substituted for the expression).
example
# echo $((1+1))
2
# echo $(1+1)
1+1: not found
/example
--
Charles Steinkuehler
.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink Toner - Free Shipping and Free Gift
as whitespace so you could use something like:
LRP=$KCMD_LRP
pkg1
pkg2
pkg3
pkg4
pkg5
or multiple LRP= lines (remember to include the previous contents of
$LRP on each subsequent line!):
LRP=$KCMD_LRP pkg1 pkg2
LRP=$LRP pkg3 pkg4 pkg5
--
Charles Steinkuehler
[EMAIL PROTECTED
Godfried Duodu wrote:
$KCMD_LRP refers system packgage or what?
$KCMD_LRP expands to the contents of the kernel command line parameter
LRP=...
You may choose to use the kernel command line settings in leaf.cfg by
referencing the $KCMD_* variables, or ignore them entirely.
--
Charles
:
LEAFCFG=device[:filesystem]
If your configuration is simple enough, you can put a default
configuration in the kernel command line (with LRP=), or you can modify
the parsing of $KCMD_LEAFCFG in /linuxrc to handle multiple devices and
build a new initial ramdisk.
--
Charles Steinkuehler
[EMAIL
Erich Titl wrote:
Charles
interesting approach do you do any mac based filtering?
Not at the moment...filtering is strictly based on IP (and on the
interface a system is connected to).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net
instead:
LRP=$KCMD_LRP rsync
LRP=$LRP daemontl
LRP=$LRP weblet
Note the removal of KCMD_ from all but the first LRP= line, so you don't
over-write previous changes to the LRP environment variable, but append
to it, which seems to be what you're trying to accomplish.
HTH,
--
Charles Steinkuehler
Erich Titl wrote:
At 17:11 16.07.2004, Charles Steinkuehler wrote:
Erich Titl wrote:
Charles
At 06:57 16.07.2004 -0500, Charles Steinkuehler wrote:
Erich Titl wrote:
Charles
interesting approach do you do any mac based filtering?
Not at the moment...filtering is strictly based on IP
what you want with proxy-arp
and shorewall. I'm running a 6-port router with 4 ports on the same
network (using proxy-arp) and filtered from each other with shorewall.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored
. Other info that might be of
some use:
- A dump of the arp cache from the firewall and the DMZ system(s) after
trying to ping outside the DMZ would be
- A tcpdump of traffic on the DMZ interface while running the above ping
tests.
--
Charles Steinkuehler
[EMAIL PROTECTED
are not showing up on your network, you
have a basic configuration problem. There should be no need to work
around the missing requests, rather you would fix whatever configuration
error is causing the requests to never be generated in the first place.
--
Charles Steinkuehler
[EMAIL PROTECTED
traffic, not just keying exchanges).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend Black Hat Briefings Training, Las Vegas July 24-29 -
digital self defense, top technical experts
without throwing any more
complexity than necessary into the mix!
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend Black Hat Briefings Training, Las Vegas July 24-29 -
digital self
Tom Eastep wrote:
Charles Steinkuehler wrote:
Ryan Rich wrote:
By the way, the private ip address does work as the address for eth1, but
per your advice I will change this to the same addresses I used for the
eth0 interface if this is a more commonly accepted practice.
If it works as a private IP
then
add extentions to ifup/ifdown to match.
- DMZ systems can use either the IP of the DMZ interface of your
firewall, or the same default gateway as the firewall itself.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored
as it should.
Or using iproute2 (I like sticking to the ip command, and to the man
with a hammer...):
ip neighbor show
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend Black Hat
(with no firewall rules in place), you
can try to get shorewall setup to deal with the dual networks on the
same wire issue. Again, I haven't done this myself, and it's a fairly
odd setup, but I think it should be possible (shorewall's pretty darn
flexible!!!).
--
Charles Steinkuehler
[EMAIL
) or use nat-traversal (which 'tunnels' the
protocol 50 traffic across UDP).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend Black Hat Briefings Training, Las Vegas July 24-29
support as Dachstein :), so I'm not sure if ipsec masquerading is
possible with 2.4 kernels or what the 'helper' modules/programs would be.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training
to start at
zero and there can be no missing numbers (ie:
INTERN_SERVER0=...
INTERN_SERVER1=...
INTERN_SERVER2=...
...
If you already have some of these rules defined, you'll need to adjust
the index accordingly.
--
Charles Steinkuehler
[EMAIL PROTECTED
boot disks. Other than having to run the lock
command before syslinux, I had no problems using either of these
environments.
Of course, the surest method is probably to run syslinux from linux or a
'legacy' dos environemnt.
--
Charles Steinkuehler
[EMAIL PROTECTED
start dumping the raw traffic, and start zeroing in on
what looks like the culprit. Not too hard to do if you are familiar
with the normal traffic patterns generated by your network.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net
to indicate a space is required, or
if that seems too ugly, force there to always be at least one option
passed to mount, ie:
qt mount -t tmpfs tmpfs /tmp -o defaults${tmp_size:+,size=$tmp_size}
--
Charles Steinkuehler
[EMAIL PROTECTED
of this, but it would need to be tested.
Any volunteers to make a new initrd.lrp and try this?
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend Black Hat Briefings Training, Las Vegas
though
dhcpcd.exclude.list is there) and I am not at all well-versed in shell
scripting.
You probalby want something like:
for file in *.exclude.list ; do
mv $file ${file}ed
done
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net
and do
away with boot=) dis-agree on the search order of the PKGPATH entries.
Which way is 'right' depends on your perspective. :-)
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email sponsored by Black Hat Briefings Training.
Attend
a version you can run from a dos command
prompt (or from dos window inside Windows). IIRC, the provided linux
binary is statically linked, so no C library problems...it will run on
LEAF, or RedHat, or whatever.
--
Charles Steinkuehler
[EMAIL PROTECTED
not be
suprised to find some incorrect documentation floating around.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference
Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer
a substitute command is followed by two patterns and optional
flags), you have to escape the new seperator or sed will try to
interpret it as a command.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by The 2004
ought to
get your VPN working, but I can't tell you exactly what ports/protocols
to allow without knowing what type of VPN you're trying to create (ie:
PPTP, IPSec, etc).
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored
.
To forward the ports (replace INTERN_IP with the IP of the internal
machine to recieve the calls):
INTERN_SERVER0=udp ${EXTERN_IP} 5060 INTERN_IP
INTERN_SERVER1=udp ${EXTERN_IP} 5004 INTERN_IP
INTERN_SERVER2=udp ${EXTERN_IP} 69 INTERN_IP
--
Charles Steinkuehler
[EMAIL PROTECTED
/log that are larger than 35K
bytes.
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by the new InstallShield X.
From Windows to Linux, servers to mobile, InstallShield X is the
one installation-authoring solution
-05.tgz
--
Charles Steinkuehler
[EMAIL PROTECTED]
---
This SF.Net email is sponsored by the new InstallShield X.
From Windows to Linux, servers to mobile, InstallShield X is the one
installation-authoring solution that does it all. Learn more
need to make the
sh-httpd user a memeber of the wheel group (which is setup by default).
Find the user weblet is running as by looking at /etc/inetd.conf.
Find the group with read access to the log files with ls -l /var/log.
--
Charles Steinkuehler
[EMAIL PROTECTED
:::
/etc/hosts.allow
ALL: 10.10.52.0/255.255.255.0
ALL: 10.10.53.0/255.255.255.0
sh-httpd: 139.142.43.131/255.255.255.224
sh-httpd: 139.142.43.176/255.255.255.224
sh-httpd: 142.167.207.162/255.255.255.0
/etc/hosts.deny
ALL: PARANOID
ALL: ALL
-Original Message-
From: Charles Steinkuehler [mailto
101 - 200 of 1107 matches
Mail list logo
