Re: [CentOS] can't access irc server on xen domU, please help

Rudi Ahlers wrote on Sun, 10 Aug 2008 08:41:55 +0200: > The only open ports are: > PORT STATE SERVICE > 80/tcp open http > 443/tcp closed https > 7001/tcp closed afs3-callback > 8000/tcp closed http-alt > 8080/tcp closed http-proxy > 8081/tcp closed blackice-icecap Compare that with you

Re: [CentOS] can't access irc server on xen domU, please help

On 8/10/08, Kai Schaetzl <[EMAIL PROTECTED]> wrote: > Rudi Ahlers wrote on Sun, 10 Aug 2008 08:41:55 +0200: > >> The only open ports are: >> PORT STATE SERVICE >> 80/tcp open http >> 443/tcp closed https >> 7001/tcp closed afs3-callback >> 8000/tcp closed http-alt >> 8080/tcp closed http-

Re: [CentOS] can't access irc server on xen domU, please help

[EMAIL PROTECTED] wrote on Sun, 10 Aug 2008 14:11:06 +0200: > >> 443/tcp closed https sorry, I dind't look close enough. "closed", of course, means closed ;-) Did you disable firewall for testing on *every* host that is involved (e.g. on the hosts you try to access/run nmap from), including th

[CentOS] conntrack-tools and Session syncing

Hi folks, I have 2 firewalls, setup with Centos 5.2. They are also routers, connected to 2 upstream routers. I have some cases where connections from servers to the internet leave my network via router2 and answers come back via router1. So I added conntrack tools to both routers/firewalls t

Re: [CentOS] can't access irc server on xen domU, please help

Hey Kai, I just made an interesting discovery. As I said in my previous post, the domU is running on a different subnet from the dom0 - and although the traffic from the dom0 to the domU doesn't travel via a switch, it does seem like this is causing a problem The dom0 is on x.x.136.110/27 (x.x.13

Re: [CentOS] can't access irc server on xen domU, please help

Just an update on this, when I add x.x.136.105 to the domU, and ran nmap on that IP, the IRC ports are open, so that confirms my "theory" - this is then a routing issue between the dom0 & domU, right? But how do I fix it? On 8/10/08, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Hey Kai, > > I ju

Re: [CentOS] can't access irc server on xen domU, please help

[EMAIL PROTECTED] wrote on Sun, 10 Aug 2008 14:55:30 +0200: > How do I work with a XEN domU on a different subnet than the XEN dom0? If you just want to "work" with it, you can use xm console. If you want to have a network connection between the two, it's like with any other host, there is no d

Re: [CentOS] can't access irc server on xen domU, please help

[EMAIL PROTECTED] wrote on Sun, 10 Aug 2008 15:00:02 +0200: > But how > do I fix it? Your router is probably routing between the one subnet and outside and the other subnet and outside, but not between the two. Easiest solution is to do what you did: use IP in same subnet. For my Office network

Re: [CentOS] can't access irc server on xen domU, please help

Yes, the VPS needs internet access. So, do I need to make changes on the network firewall? Or what do I do? I have since addes x.x.136.56 to the hom dom0, and when I nmap the domU, I can see the IRC ports open, but I now I can't connect to them from the internet. But how do I tell the domU to ro

Re: [CentOS] can't access irc server on xen domU, please help

If I use birdge mode for the VPS's, which is the defalt for XEN, then surely the host OS's networking won't make any difference, right? On 8/10/08, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Yes, the VPS needs internet access. > > So, do I need to make changes on the network firewall? Or what

Re: [CentOS] conntrack-tools and Session syncing

On Sunday 10 August 2008 08:36, Dirk H. Schulz wrote: > That works as expected. If e.g. I ping from an inside server to somewhere > outside, ICMP request leaves via router2, the answer comes back via > router1. conntrack -e on router1 shows this session (as unreplied), BUT > the firewall blocks

Re: [CentOS] conntrack-tools and Session syncing

Hi Robert, --On 10. August 2008 10:04:37 -0400 Robert Spangler <[EMAIL PROTECTED]> wrote: On Sunday 10 August 2008 08:36, Dirk H. Schulz wrote: That works as expected. If e.g. I ping from an inside server to somewhere outside, ICMP request leaves via router2, the answer comes back via ro

Re: [CentOS] can't access irc server on xen domU, please help

[EMAIL PROTECTED] wrote on Sun, 10 Aug 2008 16:04:20 +0200: > If I use birdge mode for the VPS's, which is the defalt for XEN, then > surely the host OS's networking won't make any difference, right? Depends on how you define "any difference". As I said if you use bridge mode standard xen networ

Re: [CentOS] can't access irc server on xen domU, please help

sorry, Kai, I didn't want to confuse you. I don't use xen routed networking. I presume (if I install the XEN guests with virt-install), that I'm using bridged mode - there is a xenbr0 & a few vif.x interfaces. But I think I know where the problem lies. I need to setup a route between the 2 subnets

Re: [CentOS] can't get Ethernet SNMP information

2008/8/9 Rudi Ahlers <[EMAIL PROTECTED]>: > It could be, but I don't know snmp at all. What do I need to change, if you > don't mind telling me? You can try creating a /etc/snmp/snmpd.conf file with only this line in it: rocommunity public 192.168.1.0/24 If you want, change "public" to a (secret

Re: [CentOS] conntrack-tools and Session syncing

On Sunday 10 August 2008 11:03, Dirk H. Schulz wrote: > >> That works as expected. If e.g. I ping from an inside server to > >> somewhere outside, ICMP request leaves via router2, the answer comes > >> back via router1. conntrack -e on router1 shows this session (as > >> unreplied), BUT th

Re: [CentOS] Xen and bonding on Centos 5.2

If you are using kernel 92.1.6 it's because apparently there is a bug. I haven't tried 92.1.10 to check if it has been solved. On 5.2 stock kernel on the other hand I have no problems. Francesco Policlinico San Marco Italy - Original Message - From: "Dirk H. Schulz" <[EMAIL PROTECTED]>

Re: [CentOS] conntrack-tools and Session syncing

Hi Robert, --On 10. August 2008 13:56:22 -0400 Robert Spangler <[EMAIL PROTECTED]> wrote: - snip - OK, I don't know this tool you are using to syn the conntracking of all the firewalls. Could you post a link to it? Yes, of course:

[CentOS] Writable Centos LiveCD on Embeded Linux?

Hi all, I was wondering if it possible to have a Centos LiveCD installation boot from a Compact Flash in a embeded x86 (Wrap/Alix) platform *and* be able to save the changes made to the File System back to the Flash memory. So, the next time the LiveCD boots it will have all the changes made.

Re: [CentOS] Writable Centos LiveCD on Embeded Linux?

On Sun, Aug 10, 2008 at 12:39 PM, Oliver Schulze L. <[EMAIL PROTECTED]> wrote: > Hi all, > I was wondering if it possible to have a Centos LiveCD installation boot > from > a Compact Flash in a embeded x86 (Wrap/Alix) platform *and* be able to > save the changes made to the File System back to the

Re: [CentOS] Xen and bonding on Centos 5.2

Francesco, --On 10. August 2008 20:18:28 +0200 Francesco Camisa <[EMAIL PROTECTED]> wrote: If you are using kernel 92.1.6 it's because apparently there is a bug. I haven't tried 92.1.10 to check if it has been solved. On 5.2 stock kernel on the other hand I have no problems. The server that

Re: [CentOS] Writable Centos LiveCD on Embeded Linux?

Hi Stephen, I read about the overlay feature in Fedora9, but I don't know if when the changes to the FS are so big (like going from 5.1 to 5.2) the overlay will grow and grow over time. And the overlay solution will require too much space. Thanks Oliver Stephen John Smoogen wrote: On Sun, Au

Re: [CentOS] Writable Centos LiveCD on Embeded Linux?

On Sun, Aug 10, 2008 at 1:19 PM, Oliver Schulze L. <[EMAIL PROTECTED]> wrote: > Hi Stephen, > I read about the overlay feature in Fedora9, but I don't know if when the > changes > to the FS are so big (like going from 5.1 to 5.2) the overlay will grow and > grow > over time. And the overlay solutio

Re: [CentOS] Mount a Xen disk image file

Kai, I am sorry, but I simply do not understand at the moment. I thought xvda is the method the disks are mounted into the VM - you sound like it being the format of the disk itself. Please explain. Dirk --On 8. August 2008 20:31:15 +0200 Kai Schaetzl <[EMAIL PROTECTED]> wrote: Dirk H.

Re: [CentOS] Writable Centos LiveCD on Embeded Linux?

Hi Stephen, thanks for answering. I'm trying to see if I can get a router using an embeded platform, alix in this case. Since the Alix platform is getting more powerfull and the 1GB compatch flash is also getting cheaper, I was think in createing a full Centos distro booting in that platform.

Re: [CentOS] Help: Server security compromised?

On Thu, Aug 7, 2008 at 11:53 PM, Ray Leventhal <[EMAIL PROTECTED]> wrote: > > My US$0.02 on this.I'm a fan of apf as a front-end to iptables...but it > takes some reading to understand the switches and the entire RAB (reactive > address blocking) configuration options. Sadly, RAB is poorly do

[CentOS] gcc editor for newbie (Emacs or vim or ?)

I downloaded the .pdf version of "Thinking in C++" and I've begun to read that and I did yum groupinstall 'Development Tools' I'm a Newbie Desktop user, jumping into the deep end of the pool. Should I try to learn vi (Vim) (which obviously will help me, if I ever need to administer a remote box)

Re: [CentOS] rebuilding the kernel.

Johnny Hughes wrote: Yahia Tachwali wrote: Yahia Tachwali wrote: Thank you very much for the link.. I have built a new bootable kernel 2.6.9-67 on my machine. However I still have a problem :( During the installation at "make menuconfig" stage after "make oldconfig" I have added the gener

Re: [CentOS] gcc editor for newbie (Emacs or vim or ?)

On Sun, 10 Aug 2008 17:04:16 -0500 Lanny Marcus <[EMAIL PROTECTED]> wrote: > Should I try to learn > vi (Vim) (which obviously will help me, if I ever need to > administer a remote box) or install Emacs or something else, > for the gcc editor? That's the sort of question where, if you ask ten pe

Re: [CentOS] rebuilding the kernel.

On Sun, Aug 10, 2008 at 3:07 PM, Yahia Tachwali <[EMAIL PROTECTED]> wrote: > Thank you for the info, I have installed the rpm and I ended up with the > following : > -- > [EMAIL PROTECTED] i686]

Re: [CentOS] gcc editor for newbie (Emacs or vim or ?)

On Sun, Aug 10, 2008 at 3:11 PM, Frank Cox <[EMAIL PROTECTED]> wrote: > On Sun, 10 Aug 2008 17:04:16 -0500 > Lanny Marcus <[EMAIL PROTECTED]> wrote: > >> Should I try to learn >> vi (Vim) (which obviously will help me, if I ever need to >> administer a remote box) or install Emacs or something els

Re: [CentOS] rebuilding the kernel.

Akemi Yagi wrote: On Sun, Aug 10, 2008 at 3:07 PM, Yahia Tachwali <[EMAIL PROTECTED]> wrote: Thank you for the info, I have installed the rpm and I ended up with the following : -- [EMAIL

Re: [CentOS] gcc editor for newbie (Emacs or vim or ?)

On Sun, Aug 10, 2008 at 05:04:16PM -0500, Lanny Marcus wrote: > > I downloaded the .pdf version of "Thinking in C++" and I've > begun to read that and I did > yum groupinstall 'Development Tools' I'm a Newbie Desktop > user, jumping into the deep end of the pool. Should I try to learn > vi (Vim)

Re: [CentOS] rebuilding the kernel.

On Sun, Aug 10, 2008 at 4:04 PM, Yahia Tachwali <[EMAIL PROTECTED]> wrote: > Akemi Yagi wrote: >>> >>> 1- getting the kernel: >>> 1.1 access as root >>> 1.2 yum install rpm-build redhat-rpm-config >>> 1.3 su user >>> 1.4 cd >>> 1.5 mkdir -p rpmbuild/{BUILD,RPMS,SOURCES,SPECS,SRPMS} >>> 1.6 ec

Re: [CentOS] gcc editor for newbie (Emacs or vim or ?)

On Sun, 2008-08-10 at 15:40 -0700, Akemi Yagi wrote: > On Sun, Aug 10, 2008 at 3:11 PM, Frank Cox <[EMAIL PROTECTED]> wrote: > > On Sun, 10 Aug 2008 17:04:16 -0500 > > Lanny Marcus <[EMAIL PROTECTED]> wrote: > > > >> Should I try to learn > >> vi (Vim) (which obviously will help me, if I ever need

Re: [CentOS] gcc editor for newbie (Emacs or vim or ?)

Lanny Marcus wrote: I downloaded the .pdf version of "Thinking in C++" and I've begun to read that and I did yum groupinstall 'Development Tools' I'm a Newbie Desktop user, jumping into the deep end of the pool. Should I try to learn vi (Vim) (which obviously will help me, if I ever need to adm

[CentOS] Question about Open SSH Public Keys

Hi People I am setting up some systems with ssh public keys and as part of this I am using the from directive inside .ssh/authorized_keys. Currently I am using the IP address to control the source. eg from="10.0.0.1" but on one CentOS 4 System that is up to date this will only work if I repl

Re: [CentOS] Question about Open SSH Public Keys

Clint Dilks wrote: Hi People I am setting up some systems with ssh public keys and as part of this I am using the from directive inside .ssh/authorized_keys. Currently I am using the IP address to control the source. eg from="10.0.0.1" but on one CentOS 4 System that is up to date this will

Re: [CentOS] Question about Open SSH Public Keys

Jay Leafey wrote: Clint Dilks wrote: Hi People I am setting up some systems with ssh public keys and as part of this I am using the from directive inside .ssh/authorized_keys. Currently I am using the IP address to control the source. eg from="10.0.0.1" but on one CentOS 4 System that is u

Re: [CentOS] rebuilding the kernel.

Akemi Yagi wrote: On Sun, Aug 10, 2008 at 4:04 PM, Yahia Tachwali <[EMAIL PROTECTED]> wrote: Akemi Yagi wrote: 1- getting the kernel: 1.1 access as root 1.2 yum install rpm-build redhat-rpm-config 1.3 su user 1.4 cd 1.5 mkdir -p rpmbuild/{BUILD,RPMS,SOURCES,SPECS,SRPMS} 1.6 echo "%_top

Re: [CentOS] Question about Open SSH Public Keys

You could start the ssh server on that machine with -vvv to get a detailled, verbose logging. That does not always lead to entries making clear what happens, but to entries you can use for googling (or asking here). I would also have a look at DNS - compare forward and reverse lookups (are th