2005
10.02

massive overhaul

after many a sleepless nights, i finally have all the proper permissions and i can finally post to my own blog. all the software has been fully upgraded to relieve some speed issues and some other minor ticks.

just in case of any quirks, glitches or anomalies, shoot me an email and ill try to fix it. or you guys can just point and laugh….like you always do…….

the mgmnt

2005
09.29

nokia ip330 or wrap 1+3 embed ?

im considering selling the nokia ip330 so i can replace it with a wrap 1+3 board. for what i need, it looks as if the wrap might be better suited since i have to support multiple machines via wired and wifi with range and speed being the ultimate factor.

pfsense is going to remain the router software that i use, it has been rock solid and easy to configure (especially the load balancing feature and the carp set up).

any body interested in the nokia shoot me an email.

the nokia will be sold without an os (to many settings that are not worth changing – easier to erase) in a working condition with rackmount arms and a copy of pfsense (embed – wrap) on cd (even though it is free).

2005
09.29

new machine added to the network – i love the design of these machines. granted that va linux does not make servers anymore, so you can find them for dirt cheap. plus, they run real quiet and its a dual proc machine to begin with.

os – netbsd 2.0.2 w/ full ssh and web serve capabilities.

Dual 1ghz P3 CPUs
1024MB, Sync, 133mhz CL3, ECC, Reg RAM
Floppy
CDROM Drive (IDE)
9 gig 10k RPM SCSI LVD Hard Drive (System can hold 4 Hot-swap SCSI HD)
Built-in Intel 10/100 NIC
Cirrus Logic 5480 Video
2 - Serial ports
1- parallel port
2- USB ports
Plus netgear 10/100/1000 NIC w/ additional usb

ill post pics later of the setup..

2005
09.14

i decided to post a picture of my dog that my girlfriend took with my camera. i dont normally post anything other than stuff i need to remember about systems i work with and am contemplating doing work to.

her name is gia
she is 1’1″ high
she doesn’t like telling her sign to strange men
she enjoys long walks anywhere and chasing stuffed animals
her turn ons are food, stuffed animals and more food
her turn offs are baths, broccoli and haircuts
….and she likes peanut butter

this is my cat
his name is nero
he is a ferocious killing machine
dont let the picture of him in the sink change your opinion of him
he will kill you if given the chance.

2005
09.05

pfsense up and running

up and running –
after the issue with the mac address(es) with the network interfaces fixed, then the firewall would not allow access to any ftp connections going outbound. thankfully Holger on the pfsense support mailing list suggested to select the “Disable the userland FTP-Proxy application” on the system – advanced window. after that smooth sailing. Thanks again Holger.

below is a link to the screen shot of the status: interfaces window showing the in/out packet stats for the three interfaces on the ip330. as you can see the mac address for the opt1 interface is still spoofed (01:02:03:04:05:ff where it shows up as ff:ff:ff:ff:ff:ff as noted in the alert/status bar at the top of the screen in blue) but it is up and running and tested to make sure that the mac spoofing doesnt affect any connected device.

2005
08.28

once those spoofmac lines are added in – just reboot and assign your devices like normal. once done it will spit out the mac addy’s (actual).

with the opt1 device, when it is assigned, it is the only device that will retain the spoofed mac address in the settings.

in dmesg, the fxp0 – 2 devices will still show with a mac address of ff:ff:ff:ff:ff:ff. only when lan, wan and opt1 are assigned will you see the changes in mac address. dmesg : grep fxp will always show the mac address as ff:ff:ff:ff:ff:ff.

example (pfsense console option 1):

Valid interfaces are:

fxp0 00:a0:8e:da:29:54 (up)
fxp1 00:a0:8e:e4:4e:4b
fxp2 01:02:03:04:05:ff

—————-
dmesg : grep fxp output from shell (ssh pfsense):

fxp0: <Intel 82558 Pro/100 Ethernet> port 0x6800-0x681f mem 0xe0300000-0xe0300fff,0xe0000000-0xe00fffff irq 10 at device 13.0 on pci0
miibus0: <MII bus> on fxp0
fxp0: Ethernet address: ff:ff:ff:ff:ff:ff
fxp1: <Intel 82558 Pro/100 Ethernet> port 0x6c00-0x6c1f mem 0xe0302000-0xe0302fff,0xe0100000-0xe01fffff irq 12 at device 14.0 on pci0
miibus1: <MII bus> on fxp1
fxp1: Ethernet address: ff:ff:ff:ff:ff:ff
fxp2: <Intel 82558 Pro/100 Ethernet> port 0x7000-0x701f mem 0xe0301000-0xe0301fff,0xe0200000-0xe02fffff irq 5 at device 15.0 on pci0
miibus2: <MII bus> on fxp2
fxp2: Ethernet address: ff:ff:ff:ff:ff:ff
fxp1: Microcode loaded, int_delay: 1000 usec bundle_max: 0
fxp0: Microcode loaded, int_delay: 1000 usec bundle_max: 0
fxp2: Microcode loaded, int_delay: 1000 usec bundle_max: 0

2005
08.26

pfsense 0.80.2 config.xml snippets

here are some of the config.xml snippets that i used to make this work (this is not my original work – originally done by Chris Buechler at/for m0n0wall):

<interfaces>
               <lan>
                        <if>fxp0</if>
                        <ipaddr>192.168.0.250</ipaddr>
                        <subnet>24</subnet>
                        <media/>
                        <mediaopt/>
                        <bandwidth>100</bandwidth>
                        <bandwidthtype>Mb</bandwidthtype>
                        <bridge/>
                </lan>
                <wan>
                        <if>fxp1</if>
                        <mtu/>
                        <gateway/>
                        <blockpriv/>
                        <media/>
                        <mediaopt/>
                        <bandwidth>10</bandwidth>
                        <bandwidthtype>Mb</bandwidthtype>
                        <spoofmac/>
                        <schedulertype>priq</schedulertype>
                        <ipaddr>dhcp</ipaddr>
                        <dhcphostname/>
                </wan>
                <opt1>
                        <if>fxp2</if>
                        <descr>OPT1</descr>
                        <bridge/>
                        <enable/>
                        <bandwidth>15</bandwidth>
                        <bandwidthtype>Kb</bandwidthtype>
                        <ipaddr>192.168.0.254</ipaddr>
                        <subnet>24</subnet>
                        <gateway/>
                        <spoofmac>01:02:03:04:05:ff</spoofmac>
                        <mtu>1500</mtu>
                </opt1>

once those spoofmac lines are added in – just reboot and assign your devices like normal. once done it will spit out the mac addy’s (actual).

2005
08.26

i finally decided to go with pfsense 0.80.2 on the nokia ip 330 after trying a couple of other solutions. pfsense was the one with the least amount of headaches (even though the biggest headache on the nokia ip330’s is the spoofing of the mac addy’s since they only show up as ff:ff:ff:ff:ff:ff). once the spoofing was done, the actual mac addresses are registered with pfsense.

so during dmesg:

fxp0: <Intel 82558 Pro/100 Ethernet> port 0x6800-0x681f mem 0xe0300000-0xe0300ff
f,0xe0000000-0xe00fffff irq 10 at device 13.0 on pci0
miibus0: <MII bus> on fxp0
inphy0: <i82555 10/100 media interface> on miibus0
inphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
fxp0: Ethernet address: ff:ff:ff:ff:ff:ff
fxp1: <Intel 82558 Pro/100 Ethernet> port 0x6c00-0x6c1f mem 0xe0302000-0xe0302ff
f,0xe0100000-0xe01fffff irq 12 at device 14.0 on pci0
miibus1: <MII bus> on fxp1
inphy1: <i82555 10/100 media interface> on miibus1
inphy1: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
fxp1: Ethernet address: ff:ff:ff:ff:ff:ff
fxp2: <Intel 82558 Pro/100 Ethernet> port 0x7000-0x701f mem 0xe0301000-0xe0301ff
f,0xe0200000-0xe02fffff irq 5 at device 15.0 on pci0
miibus2: <MII bus> on fxp2
inphy2: <i82555 10/100 media interface> on miibus2
inphy2: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
fxp2: Ethernet address: ff:ff:ff:ff:ff:ff

but after you edit the config.xml file, reboot and then assign your lan wan and opt1 ports, the mac addresses show up (not in the dmesg though)
so you have working ports.

i used the embed cf version on the stock drive that comes with the nokia, thats why on the image you’ll notice that it says platform:wrap.

i liked all the other solutions that i tried, just some of them either had different functions that i didnt need or lacked functions that i wanted or the support for a nokia ip330 was non existant (not all of them were *bsd based).

2005
08.19

edgar allen poe + pron = the truth

once upon a midnight dreary
while i pron surfed weak and weary
over many a strange and spurious site of ‘ hot xxx galore’.

While i clicked my fav’rite bookmark
suddenly there came a warning
and my heart was filled with mourning
mourning for my dear amour
” ‘Tis not possible!”, i muttered, ”
give me back my free hardcore!”…..

quoth the server, 404.

2005
08.17

machines in house

these are the machines in the house (that are running):

saturn:
dual p3 1 ghz
1gb of ram
integrated dual nic
os: netbsd 2.0.2 /w enlightenment 16.7

earth:
celeron 2 ghz
1 gb of ram
ultra320 driven (no ide)
os: suse 9.2 /w enlightenment 16.7

mars:
amd athlon 1.4 ghz
512mb ram
os: winxp pro

jupiter:
p4 2ghz
1.5 gb ram
dual ultra320 controllers
dual ide raid controllers
os: winxp pro

lapetus:
dual 300mhz ultrasparc 3
2gb ram
dual 4gb sscsi hd
os: netbsd 2.0 /w no gui

(pending) router/gateway/firewall:
nokia ip330 2330
os: m0n0wall or pfsense. im going to try them both and see which i prefer

laptops not listed