New user's registration have been closed due to high spamming and low trafic on this forum. Please contact forum admins directly if you need an account. Thanks !

Search found 1526 matches

by Gordon
26 Apr 2012, 14:29
Forum: B2 & B3 Support
Topic: port forwarding for guildwars2
Replies: 2
Views: 6522

Re: port forwarding for guildwars2

What you did should be sufficient as far as the Bubba is concerned. Most likely the cause of the issue is with your workstation. First off: the application needs to be running to open up port 6112 - was that the case when you checked with `canyouseeme`? If you're not afraid of the DOS prompt you can...
by Gordon
22 Apr 2012, 03:20
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

Re: Fail2ban or csf ?

Oh, but that's not the point. The geoip match is just a neat trick to limit as many people as possible without blocking myself when I'm in a known place with an unknown IP address. If you have no use for such a feature, then don't use it. The part that matches your particular search is the ipsets. T...
by Gordon
20 Apr 2012, 09:41
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

Re: Fail2ban or csf ?

How about I create a package for the software you need, so you can go straight to the example firewall script?
by Gordon
19 Apr 2012, 08:25
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

Populating the blacklist

I'm truly sorry. As said I have been experimenting with this setup in a VM and had not yet done any tests on the B3 itself. If you already installed ipset using aptitude then please remove it. You need to install from source to make this work. aptitude remove ipset cd /usr/src wget http://ipset.netf...
by Gordon
19 Apr 2012, 07:28
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

Example firewall script

Here's an example script: #!/bin/sh # Which countries to allow access to private services GEOIP_ALLOWED=NL,BE # Names of the ipsets used by the firewall IPSETS="blacklist whitelist" # Which modules to load (some do not auto-load) MODULES="nf_conntrack_ftp ip_set ip_set_hash_ip xt_geoi...
by Gordon
18 Apr 2012, 10:09
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

xtables-addons: Geoip

If you like to use the geoip match, you need to have a database (and maintain it regularly). Create the correct folder first (the location is hardcoded in the source): mkdir /usr/share/xt_geoip There are two scripts provided in the xtables-addons source to build the geoip database: a shell script th...
by Gordon
18 Apr 2012, 10:08
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

xtables-addons and ipset

Okay then... Here's a small draft. Let's start with required software. You need 'xtables-addons' and 'ipset' and you want 'sudo' (you need to be root to run ipset). Since not all of these are in the excito repository, we'll need to update the sources list: # Create new file squeeze.list in the sourc...
by Gordon
18 Apr 2012, 09:56
Forum: B2 & B3 Feature Requests
Topic: Please remove xfrm and netkey from the kernel
Replies: 7
Views: 20774

Please remove xfrm and netkey from the kernel

I know people have been nagging for these modules, but please make them modules and not part of the kernel. I can now no longer operate my VPN because xfrm and netkey are blocking KLIPS.
by Gordon
18 Apr 2012, 09:54
Forum: Howtos
Topic: Openswan (ipsec vpn) on the B3
Replies: 1
Views: 9934

Re: Openswan (ipsec vpn) on the B3

PROBLEM! I found 2 issues trying to activate my config: 1: The kernel source is corrupted. While compiling the module, it is stamped with an incorrect kernel version, causing it not to load. The fix appears to be to run the following patch content before doing anything else with the source: --- Make...
by Gordon
17 Apr 2012, 12:51
Forum: Howtos
Topic: Display the HDD temperature in the web portal [patch]
Replies: 33
Views: 71141

Re: Display the HDD temperature in the web portal [patch]

New patch file...

unpack with command (I'm not allowed to attach a file with .patch extension)

Code: Select all

tar -xzf gui-hddtemp.tgz 
by Gordon
17 Apr 2012, 10:46
Forum: Howtos
Topic: Fail2ban or csf ?
Replies: 10
Views: 23050

Re: Fail2ban or csf ?

According to the home page CSF may require rewriting some regex rules on Debian. Sounds like tricky business. Fail2ban seems more promising to me, but that may be because I like Shorewall - I wrote a little howto on running this on the B3 just a few topics down. I'm not sure about the "TCP-Wrap...
by Gordon
15 Apr 2012, 16:08
Forum: B2 & B3 Support
Topic: WD green / Load Cycle
Replies: 6
Views: 5887

Re: WD green / Load Cycle

Hate to budge in, but just rebooting is not sufficient according to the announcements. You have to shut down, actually pull the cord and reconnect after having waited for a few seconds.
by Gordon
11 Apr 2012, 11:14
Forum: Howtos
Topic: Openswan (ipsec vpn) on the B3
Replies: 1
Views: 9934

Openswan (ipsec vpn) on the B3

For those that remember the problems I ran into trying to install Strongswan. Here's the howto for getting things back up with Openswan after upgrading to software version 2.4 (kernel 2.6.39) First we need to grab some sources, including the kernel source (don't worry - we're not going to do the len...
by Gordon
26 Mar 2012, 06:33
Forum: B2 & B3 Support
Topic: B3 not seen in all ip- networks
Replies: 2
Views: 9899

Re: B3 not seen in all ip- networks

Hi Rene, I'd guess UPC has explicitly configured their network to not allow routeback to other UPC customers. They'll most likely have done this to prevent customers from seeing each others Windows shares and probably don't care that this also blocks traffic that people might actually want. In fact,...
by Gordon
11 Mar 2012, 11:22
Forum: B2 & B3 Support
Topic: Assign /admin to port
Replies: 7
Views: 9715

Re: Assign /admin to port

First I would check with "apachectl -St" if your setup of port 8081 is actually working. apachectl: command not found Did you `su` to become root? Also, I'm not sure how to read the localhost:8081 bit. Are you using something like wget to verify that the server returns a page, or is this ...