similar to: iHEADS UP: ipsec packet filtering change

> -----Original Message----- > From: Greg Panula [mailto:greg.panula@dolaninformation.com] > Sent: 12 May 2003 11:10 > To: Matthew Braithwaite > Cc: stable@freebsd.org > Subject: Re: iHEADS UP: ipsec packet filtering change > > You don't really need the gif tunnels for ipsec. Gif is more geared > towards ipv4 <=> ipv6 type tunnels. A few of ipsec

Hello, I have given myself quite the headache trying to make this VPN work correctly. I am attempting to use racoon to establish keys and construct an encrypted tunnel between one host(A.A.A.A) with a routable IP address and another that has a private address(10.0.0.2) with a cable modem(B.B.B.B) forwarding all ports to the private address(10.0.0.2). Here is a quick topographic dipiction of the

Hello Greg, I am writing you, because I saw your responses to a couple of messages on the freebsd-security mailing list related to freebsd vpn and nat. My situations is rather unique, and I am needing an expert's eyes to glance at it and confirm whether it is doable or not. I have a simple diagram that illustrates what I am trying to do, and it is located here (about 40k):

Hi! I'm trying to increase security on my FreeBSD 4.8 firewall/DSL router/VPN router. My problem is with firewalling the VPN part. I'm using a tunnel to a RedHat 7.1 box running FreeS/WAN. This tunnel allows traffic from my internal net (172.17.0.0/24) to that box only: spdadd 172.17.0.0/24 $REDHAT/32 any -P out ipsec esp/tunnel/$MYADDR-$REDHAT/unique; spdadd $REDHAT/32 172.17.0.0/24

I'm trying to convert an S-Plus program to R.  Since I'm a SAS programmer I'm not facile is either S-Plus or R, so I need some help.  All I did was convert the underscores in S-Plus to the assignment operator <-.  Here are the first few lines of the S-Plus file:   sshc _ function(rc, nc, d, method, alpha=0.05, power=0.8,              tol=0.01, tol1=.0001, tol2=.005, cc=c(.1,2),

I'm attempting to get a HP R1500 G2 UPS working with Solaris 10 connected via USB. Thanks to Arnaud's patch to drivers/tripplite-hid.c found at http://lists.alioth.debian.org/pipermail/nut-upsuser/2010-February/005887.html things mostly work. upsc ups01 shows a couple of things that don't look quite right. [....] battery.temperature: -234.1 [....] ups.alarm: No battery installed!

I will shortly be replacing a couple of proprietary VPN boxes with a FreeBSD solution. Section 10.10 of the Handbook has a detailed description of how to do this. However I remember a lot of discussion about a year ago about whether the gif interface was necessary to set up VPNs like this or whether it was just a convenience, for "getting the routing right". A number of people said

Hi, I'm trying to get IPsec running between 2 FreeBSD (VMware) boxes, using racoon2. spmd and iked start up okay, but I get an error when I try a ping across the tunnel. /var/log/messages shows: May 5 13:52:36 biosa-vm4 iked: [INTERNAL_ERR]: if_spmd.c:726: SLID failed: 550 Operation failed May 5 13:52:36 biosa-vm4 iked: [INTERNAL_ERR]: isakmp.c:647:isakmp_initiate_cont(): 0:172.20.36.55[0]

I am trying to get a tunnel from a cisco 1760 with IOS 12.2.15.t13 to a freebsd 4.9 install with racoon. I have package version freebsd-20040408a and internal version 20001216 in my log file. I posted the full racoon and cisco log below my configs. Racoon keeps saying: 2004-07-26 16:24:03: DEBUG: isakmp.c:2295:isakmp_printpacket(): begin. 2004-07-26 16:24:03: DEBUG:

On Aug 7, 2013, at 7:40 AM, Jan Phillip Greimann wrote: > I tried to set up nut with our new arrived HP R1500 G3 UPS but there is a failure with the usb connection. After trying "/lib/nut/usbhid-ups -DD -a hp1500" the log says there are "libusb_get_interrupt: Connecion timed out". If you start upsd, what does "upsc hp1500" return? There are two ways to fetch

Hello, I've got samba running on a FreeBSD box that has two interfaces, ep0 which is an external interface, and ep1 which is for internal use only. I only want samba to listen on ep1 so if i'm ever portscanned port 137/139 will not show up as open on the external interface. I've added these lines to the global section of my smb.conf file: hosts allow=192.168.0.

? 2007-3-15???8:00?freebsd-security-request@freebsd.org ??? > Send freebsd-security mailing list submissions to > freebsd-security@freebsd.org > > To subscribe or unsubscribe via the World Wide Web, visit > http://lists.freebsd.org/mailman/listinfo/freebsd-security > or, via email, send a message with subject or body 'help' to > freebsd-security-request@freebsd.org

Hi everyone. I'm encountering problems with the management of the id of the users, in the DC and in the domain members (RFC2370). I'm using Samba Version 4.2.10-Debian on Debian8.5. This is the DC configuration / result. root at samba4:/var/lib/samba# cat /etc/samba/smb.conf |grep -v '#' [global] workgroup = MYNET realm = ad.mynet.lan netbios name = SAMBA4 server

I posted the following a month ago but have only managed to get to fixing on this over the holidays.? Rowland mentions that I needed to add my domain info, it?s now included and I still have the same issue. Thanks and Happy New YearOld post begins below with edits Hello ? I have a problem with my Windows 10 drive connections dropping every 24 hours, very briefly.? It's enough to cause me to

I changed my SMB.conf on the DC's and the member as per your instructions. Now the connection dropped at 10 hours, which appears to be the default end time of the certificate. KLIST on a windows box returns..... Cached Tickets: (3) #0> Client: hans @ MYNET.MYNET.COM Server: krbtgt/ MYNET.MYNET.COM @ MYNET.MYNET.COM KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)

Hi I using ipp2p to block p2p traffic. How to enable to use p2p to me host in my net ? I using this setup: iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul --ares -j DROP This setup: iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul --ares -d ! mynet -j DROP iptables -A FORWARD -m ipp2p --ipp2p --bit --apple --winmx --soul --ares -s ! mynet -j DROP not

Hi, I have one Samba4 server running as Active Directory Domain Controller. It's working like a charm. So I needed to add another server to be a Member Server (File Server). The server is running samba-4.0.9. Configured and compiled ok: ./configure --prefix=/usr/local/samba --sysconfdir=/etc --localstatedir=/var --mandir=/usr/man --bindir=/usr/bin --sbindir=/usr/sbin --libdir=/lib

Hello I have a problem with my Windows 10 drive connections dropping every 24 hours, very briefly. It's enough to cause me to be unable to save my file, or access a geodatabase. I have followed much trouble shooting and I believe that its due to the KDC Service ticket lifetime expiring, I have it set for 24 hours in smb.conf. I have a Samba 4.9 DC and an Ubuntu 18.04 member file

Hi R-users, I just started learning R. I have a project on lot quality assurance sampling (LQAS). In this project I have to develop LQAS plans to make decision on stopping / continuing a programme. The LQAS plans is based on cluster sampling: selection of k clusters (villages) of m children each for a total sample of n. In this connection I would like to estimate the classification errors ( alpha

Hi R-users, I just started learning R. I have a project on lot quality assurance sampling (LQAS). In this project I have to develop LQAS plans to make decision on stopping / continuing a programme. The LQAS plans is based on cluster sampling: selection of k clusters (villages) of m children each for a total sample of n. In this connection I would like to estimate the classification errors ( alpha