Comments for bits | andy smith's blog

Comment on Bridged interfaces with Vagrant by Chris

Chris — Fri, 22 Mar 2013 01:22:17 +0000

Wasn’t just you…I’ve been banging my head against the wall for 35 minutes, ended up destroying and rebuilding the VM before I came across your post

Thanks!

Comment on A Prelude to better things – Open Source and IDS by gheorghe

gheorghe — Fri, 08 Feb 2013 16:45:21 +0000

For reference, the file that needs to be modified is /usr/share/libpreludedb/classic/mysql.sql

Comment on IPv6 for a Linux generation by Andy Smith

Andy Smith — Fri, 09 Nov 2012 19:39:02 +0000

Hi Tamas,

You’re right. As with the older comment above, the networks I used as an example are based on real ones I was using at the time, and I got the networks mixed up. Thanks for pointing it out, and I’ll edit the post!

Comment on IPv6 for a Linux generation by Tamas Pisch

Tamas Pisch — Fri, 09 Nov 2012 09:42:29 +0000

I don’t understand something:
# Allow SSH and HTTPS inbound to our DMZ
ip6tables -A FORWARD -i he-ipv6 -d 2001:470:90d3:1::/64 -p tcp
-m multiport –dports 22,443 -j ACCEPT

Why 2001:470:90d3:1::/64, and why not 2001:470:90d3:2::/64, because that is the DMZ network?

Comment on A whole lot of nothing by Alexander White

Alexander White — Tue, 25 Sep 2012 19:55:34 +0000

I hope come next year’s election that this interview is played to remind voters the mistake they made. Why he wasn’t forced out for his love of the Taliban, I’ll never know. The man is a Grade A Nazi. FULL STOP.

Comment on A Prelude to better things – Open Source and IDS by Eric Teeter

Eric Teeter — Wed, 18 Jul 2012 16:21:18 +0000

Ubuntu 12.04 uses newer MySql so the database setup file for Prelude-Manager, has TYPE=InnoDB and the newer MySql requires ENGINE=InnoDB. What is the file name and location so that I can modify to get it work.

Comment on RedHat, NFS and static ports by bill

bill — Wed, 27 Jun 2012 09:16:27 +0000

This is really useful… came second in my google search for 892/TCP. Will really help me understand and transcribe this rulebase someones filled full of gibberish.

Comment on The countdown begins by HamTests 2012 IOTA Trip – Update | HamTests Blog

HamTests 2012 IOTA Trip – Update | HamTests Blog — Sun, 24 Jun 2012 21:41:23 +0000

[...] Andy M0VKG won’t be joining us as he’s scored himself a job in Victoria, Canada so will already be there by the time this trip happens. We will, however, be [...]

Comment on IPTables: Fun with MARK by Ferry

Ferry — Mon, 26 Mar 2012 03:27:26 +0000

Hai,

i want to limit bandwidth and route to 3 gateway, my rules show like this:
ip rule add fwmark 11 table $TABLE_1
ip rule add fwmark 12 table $TABLE_2
ip rule add fwmark 14 table $TABLE_3

iptables -t mangle -A PREROUTING -m state –state new -j MARK –set-xmark 0×1
iptables -t mangle -A PREROUTING -m state –state new -m statistic –mode random –probability 0.3 -j MARK –set-xmark 0×2
iptables -t mangle -A PREROUTING -m state –state new -m statistic –mode random –probability 0.3 -j MARK –set-xmark 0×4

for tc:

iptables -t mangle -A FORWARD -o eth0 -p tcp –sport 80 -j MARK –set-xmark 10
iptables -t mangle -A FORWARD -o eth0 -p udp –sport 80 -j MARK –set-xmark 10
iptables -t mangle -A PREROUTING -p tcp –dport 80 -j MARK –set-xmark 10

it’s that mean if packet goes to port 80 and table1 will marked 11? If I have a lot of port marking rule, do i have to write complex ip rule?

Do you have something more simple? or it really have to be complicated like that?

Comment on Authenticating Active Directory users on Linux with Likewise Open by Delicious Bookmarks for December 18th from 02:49 to 10:16 « Lâmôlabs

Delicious Bookmarks for December 18th from 02:49 to 10:16 « Lâmôlabs — Sun, 18 Dec 2011 16:02:34 +0000

[...] bits | andy smith’s blog » Authenticating Active Directory users on Linux with Likewise … – December 18th ( tags: likewise linux activedirectory ad setup howto guide tutorial ) [...]