From michael at halligan.org Fri Mar 5 17:38:49 2004 From: michael at halligan.org (Michael T. Halligan) Date: Fri, 5 Mar 2004 17:38:49 -0800 (PST) Subject: 802.3ad for failover on Dell PowerConnects & Linux Message-ID: Greetings all! So, my experience with channel bonding/trunking has always either been with going switch to switch, or just doing normal channel bonding over multiple unconnected vlans for link aggregation.. I have a network with a pair of Alteon 184s in front of 2 powerconnect 5224's (unfortunately.. purchasing decision made before I started here). I want to use 802.3ad in failover mode for all of my servers on the powerconnect switches.. My manager seems to think Dell's switch won't support this, though I think he's wrong. I can't actually test any of this until our outage window on sunday.. I'm also unclear as to the network setup.. What I've done before was seperate VLANS for the aggregated trunking.. I'm being told I'll have to turn the two switches into one big vlan (since dell doesn't STP over multiple vlans.. thanks dell), cross-connect the two switches, hook my 184s in as uplinks, and then plug eth0 on all the servers into the left half of the network, eth1 into the right half.. This seems wrong to me.. I'm not familiar with 802.3ad, but it seems that turning everything into one big collision domain will cause MAC address problems, with both ethernet cards responding to arp requests saying they have the virtual channel bonded ip address... Am I wrong on this? ------------------- Michael T. Halligan Chief Geek Halligan Infrastructure Designs. http://www.halligan.org/ 2250 Jerrold Ave #11 San Francisco, CA 94124-1012 (415) 724.7998 - Mobile From djh at servercentral.net Tue Mar 9 11:05:22 2004 From: djh at servercentral.net (Danny Howard) Date: Tue, 09 Mar 2004 13:05:22 -0600 Subject: Hub with wireless uplink or FreeBSD wireless adaptor? Message-ID: <404E1572.4020906@servercentral.net> Fellow SysAdmins: I have free wireless access in my house, but no CAT5. I have borrowed a Belkin USB-802.11b adaptor that work fine with XP. But I want to get going with FreeBSD. And the support for wireless adaptors is less than comprehensive. An ideal solution may be a hub that can bridge its wired connections to its wireless uplink. Given my understanding of wireless and ethernet technologies, this seems a bit weird. (Are WEP keys tied to IPs?) Has anyone experience with a situation like this, and can recommend either a good "wireless uplink hub" or, alternatively, a favored wireless adaptor that I could use with a FreeBSD desktop? TIA, -danny -- Danny Howard djh at servercentral.net Technical Support Manager (312)829-1111 x235 Server Central Network http://www.servercentral.net From chuck+baylisa at snew.com Tue Mar 9 17:06:52 2004 From: chuck+baylisa at snew.com (Chuck Yerkes) Date: Tue, 9 Mar 2004 20:06:52 -0500 Subject: Hub with wireless uplink or FreeBSD wireless adaptor? In-Reply-To: <404E1572.4020906@servercentral.net> References: <404E1572.4020906@servercentral.net> Message-ID: <20040310010652.GA24994@2004.snew.com> Quoting Danny Howard (djh at servercentral.net): > Fellow SysAdmins: > > I have free wireless access in my house, but no CAT5. I have borrowed a > Belkin USB-802.11b adaptor that work fine with XP. > But I want to get going with FreeBSD. And the support for wireless > adaptors is less than comprehensive. > An ideal solution may be a hub that can bridge its wired connections to > its wireless uplink. Ya mean like an Apple Airport? I don't believe direction to "out" is mandated anywhere. > Given my understanding of wireless and ethernet technologies, this seems > a bit weird. (Are WEP keys tied to IPs?) WEP is not tied to IPs. I'm mostly WEP free. IPSec is the place ya otta be cause wep is crap. > Has anyone experience with a situation like this, and can recommend > either a good "wireless uplink hub" or, alternatively, a favored > wireless adaptor that I could use with a FreeBSD desktop? www.netgate.com - based in Spokane - has been great for me. I've used miniPCI or PCCards from there. They're a couple (2? 3?) folks who actually run Unix and are active in support boards for various things. If they say it works with FreeBSD, then it will. So you might find it best to get a PCI->miniPCI or PCCard adapter and a card with an antenna (many PCCards don't have that anymore, esp for 802.11g) and run with that. To digress a bit: I use Open, Net and Free BSD on Soekris boxes ('bought the size of a 6 port switch, 12VDC, boot from compact flash. 2-3 ethernets). Free and perhaps Net support the 802.11g (and 11a) cards. Open won't put Atheros proprietary drivers in their distro for reasons I get. IT's kinda nice running a full unix on a totally silent machine with no moving parts that draws nightlight power. And its a NATbox, IPSec and IPv6 endpoint, Firewall, and home controller (X10 and some digital IO via a terminal server). From peter at usestrict.org Thu Mar 11 10:36:59 2004 From: peter at usestrict.org (Piotr T Zbiegiel) Date: Thu, 11 Mar 2004 10:36:59 -0800 Subject: Hub with wireless uplink or FreeBSD wireless adaptor? In-Reply-To: <404E1572.4020906@servercentral.net> References: <404E1572.4020906@servercentral.net> Message-ID: <1079030218.1608.7.camel@zx.zbagel.net> On Tue, 2004-03-09 at 11:05, Danny Howard wrote: > An ideal solution may be a hub that can bridge its wired connections to > its wireless uplink. I believe you are talking about a 802.11 bridge like the Linksys WET11 http://www.amazon.com/exec/obidos/tg/detail/-/B000066JQU/qid=1079029784/sr=8-2/ref=pd_ka_2/103-2443286-2507864?v=glance&s=electronics&n=507846 The unit offers an ethernet port for your wired device and can establishes a wireless connection with an AP. It includes support for 128-bit WEP. Downside is that it's probably not any cheaper than buying a wireless card that functions under FreeBSD. Later, Peter From rajeev at networktools.org Mon Mar 15 07:59:10 2004 From: rajeev at networktools.org (Rajeev Seth) Date: Mon, 15 Mar 2004 07:59:10 -0800 Subject: Seminar on SNMP Network Management Message-ID: <002501c40aa6$7960c350$7501a8c0@RajeevHPLaptop> Seminar on: SNMP network management When: Mar 19, 2004 Where: San Jose, CA Cost: $69 A seminar on practical network management techniques using SNMP (the Simple Network Management Protocol) brought to you by Network Tools, Inc. www.networktools.org Did you know that various network devices (Ethernet switches, routers, hubs, access multiplexers etc.) in your network are constantly collecting very useful pieces of information. These are referred to as SNMP (Simple Network Management Protocol) MIB (Management Information Base) variables. As the network manager of your enterprise data network or service provider network, you can harness all this unused information very effectively using SNMP to manage it better for performance, fault troubleshooting, accounting etc. Find out simple, yet effective methods to better manage your network using information available via SNMP and with home-grown network tools. SNMP is the most-widely deployed network management protocol in your enterprise data network or service provider network today. Learn the practical details about SNMP technology and how to use it best. Mr. Rajeev Seth, Senior Network Consultant for Network Tools, Inc., will discuss the issues businesses confront while managing their network and how they can use the pervasiveness of SNMP to tackle them. He has delivered this seminar to several network operations managers managing big and small networks around the San Francisco Bay Area. He has over a decade of experience in network and service management for a variety of network technologies, spanning from the enterprise data network (based on Ethernet) to telecom and wide-area networks using Frame Relay, ATM, SONET and WDM. He has worked or consulted for well-known companies such as Ciena, Lockheed, Globalstar, Cisco Systems, Hewlett-Packard, Sun Microsystems, and British Telecom. You Will Learn How To . Monitor networks using SNMP . Find faults in LANs and WANs using SNMP . Solve problems by isolating faults in shared or switched Ethernet LANs . Manage your Ethernet LAN for performance using SNMP . Use open source network tools for performance and fault management Live Demonstrations Live demonstrations, led by your instructor, highlight the use of SNMP for practical fault, and performance management of the classroom 10/100BASE-T Ethernet network. In-class exercises, demonstrated by your expert instructor, include: . SNMP Get and Set on Management Information Base (MIB) variables . Measuring LAN traffic and the effect of switches and routers Course Benefits LANs have become the lifeblood of all modern information systems. LAN problems must be identified and resolved quickly to ensure effective management and distribution of critical information. As the technology continues to evolve, moving from hubs and bridges to switches and VLANs, the knowledge needed to effectively manage the LAN must be continually updated. This live-demo course provides you with a comprehensive set of tools and techniques needed to identify and resolve LAN problems related to faults, performance, security and accounting management issues. You will improve your knowledge of using SNMP to troubleshoot, and maintain switched and routed networks. Participants will leave with a cheat sheet and a resource list for future use. With a better understanding of SNMP Network Management, you'll be much closer to better managing your data network. Who Should Attend This course is valuable for anyone involved in configuring and managing or maintaining data networks in both the enterprise and service provider environments. Network administrators, IT Directors and managers of network operations centers should all benefit from this half-day seminar. A basic knowledge of "Introduction to Internetworking" is assumed for participants in this seminar. March 19, 2004 9 AM to 12 noon Cost: $69 Register here securely for the seminar http://www.acteva.com/booking.cfm?bevaid=62017%20 For more details, see http://www.networktools.org/SNMPnetMgmt.htm From rajeev at networktools.org Mon Mar 15 08:09:31 2004 From: rajeev at networktools.org (Rajeev Seth) Date: Mon, 15 Mar 2004 08:09:31 -0800 Subject: Seminar on SNMP Network Management Message-ID: <004801c40aa7$e9d45740$7501a8c0@RajeevHPLaptop> Seminar on: SNMP network management When: Mar 19, 2004 Where: San Jose, CA Cost: $69 A seminar on practical network management techniques using SNMP (the Simple Network Management Protocol) brought to you by Network Tools, Inc. See us at http://www.networktools.org Did you know that various network devices (Ethernet switches, routers, hubs, access multiplexers etc.) in your network are constantly collecting very useful pieces of information. These are referred to as SNMP (Simple Network Management Protocol) MIB (Management Information Base) variables. As the network manager of your enterprise data network or service provider network, you can harness all this unused information very effectively using SNMP to manage it better for performance, fault troubleshooting, accounting etc. Find out simple, yet effective methods to better manage your network using information available via SNMP and with home-grown network tools. SNMP is the most-widely deployed network management protocol in your enterprise data network or service provider network today. Learn the practical details about SNMP technology and how to use it best. Mr. Rajeev Seth, Senior Network Consultant for Network Tools, Inc., will discuss the issues businesses confront while managing their network and how they can use the pervasiveness of SNMP to tackle them. He has delivered this seminar to several network operations managers managing big and small networks around the San Francisco Bay Area. He has over a decade of experience in network and service management for a variety of network technologies, spanning from the enterprise data network (based on Ethernet) to telecom and wide-area networks using Frame Relay, ATM, SONET and WDM. He has worked or consulted for well-known companies such as Ciena, Lockheed, Globalstar, Cisco Systems, Hewlett-Packard, Sun Microsystems, and British Telecom. You Will Learn How To . Monitor networks using SNMP . Find faults in LANs and WANs using SNMP . Solve problems by isolating faults in shared or switched Ethernet LANs . Manage your Ethernet LAN for performance using SNMP . Use open source network tools for performance and fault management Live Demonstrations Live demonstrations, led by your instructor, highlight the use of SNMP for practical fault, and performance management of the classroom 10/100BASE-T Ethernet network. In-class exercises, demonstrated by your expert instructor, include: . SNMP Get and Set on Management Information Base (MIB) variables . Measuring LAN traffic and the effect of switches and routers Course Benefits LANs have become the lifeblood of all modern information systems. LAN problems must be identified and resolved quickly to ensure effective management and distribution of critical information. As the technology continues to evolve, moving from hubs and bridges to switches and VLANs, the knowledge needed to effectively manage the LAN must be continually updated. This live-demo course provides you with a comprehensive set of tools and techniques needed to identify and resolve LAN problems related to faults, performance, security and accounting management issues. You will improve your knowledge of using SNMP to troubleshoot, and maintain switched and routed networks. Participants will leave with a cheat sheet and a resource list for future use. With a better understanding of SNMP Network Management, you'll be much closer to better managing your data network. Who Should Attend This course is valuable for anyone involved in configuring and managing or maintaining data networks in both the enterprise and service provider environments. Network administrators, IT Directors and managers of network operations centers should all benefit from this half-day seminar. A basic knowledge of "Introduction to Internetworking" is assumed for participants in this seminar. March 19, 2004 9 AM to 12 noon Cost: $69 Register here securely for the seminar http://www.acteva.com/booking.cfm?bevaid=62017%20 For more details, see http://www.networktools.org/SNMPnetMgmt.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: Rajeev Seth (rajeev at networktools.org).vcf Type: text/x-vcard Size: 259 bytes Desc: not available URL: From extasia at extasia.org Mon Mar 15 23:22:44 2004 From: extasia at extasia.org (David Alban) Date: Mon, 15 Mar 2004 23:22:44 -0800 Subject: [baylisa] SIG-BEER-WEST this Saturday 3/20 in San Francisco Message-ID: <20040315232244.A14387@gerasimov.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 http://extasia.org/sig-beer-west/ SIG-beer-west Saturday, March 20, 2004 at 6:00pm San Francisco, CA Beer. Mental stimulation. This event: Saturday, 03/20/2004, 6:00pm, at the 21st Amendment Brew Pub, San Francisco directions: http://www.21st-amendment.com/location/index.html beer: http://www.21st-amendment.com/beer/index.html food: http://www.21st-amendment.com/food/food2.html#dinner Coming events (third Saturdays): Saturday, 04/17/2004, 6:00pm, location to be determined Saturday, 05/15/2004, 6:00pm, location to be determined Saturday, 06/19/2004, 6:00pm, location to be determined Saturday, 07/17/2004, 6:00pm, location to be determined San Francisco's next social event for techies and their friends, sig-beer-west, will take place at 6:00pm on Saturday, March 20, 2004 at [6]21st Amendment Brew Pub in San Francisco, CA. [6] http://www.21st-amendment.com/21A.html 21st Amendment's selection of beer includes their own delightful [7]brews, and a fair selection of guest brews. They have a full [8]food menu and I can personally recommend the sweet potato straws and the grilled Monterey Bay squid. Festivities will start at 6:00pm and continue until we've all left. [7] http://www.21st-amendment.com/beer/index.html [8] http://www.21st-amendment.com/food/food2.html#dinner Directions to 21st Amendment can be found on their [9]directions page. They're about a fifteen minute walk down 2nd St. from the Montgomery BART station. [9] http://www.21st-amendment.com/location/index.html When you show up, you should look for some kind of home made sig-beer-west sign. We will try to make it obvious who we are. :-) Note: Please look for the sig-beer-west sign, not for a particular person. sig-beer-west may have different hosts from month to month. Everyone is welcome at this event. We mean it! Please feel free to forward this information and to invite friends, co-workers, and others (all of legal drinking age) who might enjoy lifting a glass with interesting folks from all over the place. Can't come this month? Mark your calendar for next month. (Do it now before you forget!) sig-beer-west occurs on the third Saturday of the month. Any questions, comments, suggestions of things to do later on that evening, or new venue suggestions ... email the current sig-beer-west Instigator. The Instigator's Username is extasia. The Instigator's email address is *the Username* at *the Username* dot *org*. sig-beer-west FAQ 1. Q: Your announcement says "techies and their friends". How do I know if I'm a techie, or a friend of one? A: Well, actually, you don't have to be a techie to attend. You just have to be able to find the sig-beer-west sign at this month's event. That's it. Simple, huh? 2. Q: I'm not really a beer person. In fact I'm interested in hanging out, but not in drinking. Would I be welcome? A: Absolutely! The point is to hang out with fun, interesting folks. Please do join us. 3. Q: Is parking difficult in the city, like maybe I should factor this into my travel time? A: Yes. Note for March 2004: 21st Amendment is a fifteen minute walk from Montgomery BART. You may want to consider [10]BARTing and not worrying at all about parking. [10] http://www.bart.gov/ ______________________________________________________________________ sig-beer-west was started in February 2002 when a couple Washington, D.C. based systems administrators who moved to the San Francisco Bay area wanted to continue a [11]dc-sage tradition, sig-beer, which is described in dc-sage web space as: SIG-beer, as in "Special Interest Group - Beer" ala ACM, or as in "send the BEER signal to that process". The original SIG-beer gathering takes place in Washington DC, usually on the first Saturday night of the month. [11] http://www.dc-sage.org/ ______________________________________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFAVgxiPh0M9c/OpdARAoaVAJ9JL1/g2wrF8azJ6gXm0hKaXTKNsACcCfvw m4fzLtH6aHHtVicUNOiJCkc= =rUm+ -----END PGP SIGNATURE----- From fscked at pacbell.net Tue Mar 16 21:16:28 2004 From: fscked at pacbell.net (richard childers / kg6hac) Date: Tue, 16 Mar 2004 21:16:28 -0800 Subject: Wonder Why Ellison Resigned? www.orafraud.org Message-ID: <4057DF2C.5070906@pacbell.net> Fact is, ORAFRAUD.ORG was registered, and went live, 10 January 2004. Fact is, earliest references to Larry Ellison's "resignation" are 13 January 2004. You do the math ... and draw your own inferences. Regards, -- richard -- Richard Childers / Senior Engineer Daemonized Networking Services 945 Taraval Street, #105 San Francisco, CA 94116 USA [011.]1.415.759.5571 http://www.daemonized.com From chuck+baylisa at snew.com Tue Mar 16 22:25:21 2004 From: chuck+baylisa at snew.com (Chuck Yerkes) Date: Wed, 17 Mar 2004 01:25:21 -0500 Subject: Wonder Why Ellison Resigned? www.orafraud.org In-Reply-To: <4057DF2C.5070906@pacbell.net> References: <4057DF2C.5070906@pacbell.net> Message-ID: <20040317062521.GA20459@2004.snew.com> Quoting richard childers / kg6hac (fscked at pacbell.net): > Fact is, ORAFRAUD.ORG was registered, and went live, 10 January 2004. > > Fact is, earliest references to Larry Ellison's "resignation" are 13 > January 2004. > > You do the math ... and draw your own inferences. And innuendo and few facts. We did this too recently. No, I'll ignore the whole thing. But thanks. No back under your bridge. From strata at virtual.net Thu Mar 18 15:15:29 2004 From: strata at virtual.net (Strata R Chalup) Date: Thu, 18 Mar 2004 15:15:29 -0800 Subject: BayLISA TONIGHT, "Section 508 and Legal Stuff for RFP Seeking Geeks" Message-ID: <405A2D91.90604@virtual.net> BayLISA Monthly Technical Talk & General Meeting -------- Please RSVP to rsvp at baylisa.org so that we can get an idea of how many will be attending. This event is open to the general public, you do not need to be a member to attend. -------- Where: Apple Computer, De Anza Bldg 3 (Blue Apple parking lot) Addr: 10500 N. De Anza Blvd, Cupertino, CA http://www.baylisa.org/locations/current.html -------- Date: Thursday, March 18 2004 Time: 7:30pm - 9:30pm PST Section 508 and Legal Stuff for RFP Seeking Geeks Stuart Hershey Everything anyone needed to know about working on any 508-compliant federally or CA state-funded IT project contract, (excluding military, encryption or back-office application use), but lacked the vocabulary to formulate a reply to during the key interview... -------- BayLISA meets every month on the 3rd Thursday of the month. A short period of announcements of general interest to the sysadmin community is presented, followed by a technical talk. Anyone may make an announcement; typical are upcoming presentations, user group meetings, employment offers, etc. For further information on BayLISA, check out our web site: http://www.baylisa.org/ Directions and details about the current meeting and future events: http://www.baylisa.org/events/ BayLISA makes video tapes of the meetings available to members. Tape library is often available at the general meeting, or for more information on available videos, please send email to "video at baylisa.org". If you have suggestions for speakers, or would like to volunteer to present a talk at one of our meetings, please email the Board and Working Group at "blw at baylisa.org". Thanks! -- ======================================================================== Strata Rose Chalup [KF6NBZ] strata "@" virtual.net VirtualNet Consulting http://www.virtual.net/ ** Project Management & Architecture for ISP/ASP Systems Integration ** ========================================================================= From david at catwhisker.org Tue Mar 23 05:38:31 2004 From: david at catwhisker.org (David Wolfskill) Date: Tue, 23 Mar 2004 05:38:31 -0800 (PST) Subject: Spamming should be Bad For Business! Message-ID: <200403231338.i2NDcV0h007678@bunrab.catwhisker.org> During my morning's traversal of the posts "held for moderation" in the FreeBSD.org mailing lists [I'm also postmaster@ there], I started seeing several copies of a message From: "Datex Purchasing" Subject: Looking to buy Sender: "Datex Purchasing" ... stating that they were looking to buy disk drives. The message (purportedly from one "Ken Becker" of Datex Storage) goes on to give the usual sort of lame excuse for spamming (that I won't quote because it would be likely to increase the spamassassiin score for this message). Normally, I merely tag these as "definitely spam" and discard them. After about the 5th one, I decided to send this twit a "reject message" to let him know that I would be avoiding doing business with him and any firm with which he is associated, and recommending to my colleagues that they consider doing so as well. This message is in fulfillment of that promise. I have set up the BayLISA SMTP server (as well as my own at home) to decline to accept mail that is from the datexstorage.com domain, is being delivered by a machine in that domain, or that mentions the phone number he gave in his spam. Naturally, the SMTP reject message provides a (good) reason for the rejection. I suppose I'm a tad irritated.... :-} In any case, please be aware that the attempted spam existed, and feel free to use that information when you choose to do business. (There is a copy of my reject message in the /etc/mail/access RCS log on www.baylisa.org.) Cheers, david -- David H. Wolfskill david at catwhisker.org I do not "unsubscribe" from email "services" to which I have not explicitly subscribed. Rather, I block spammers' access to SMTP servers I control, and encourage others who are in a position to do so to do likewise. From chuck+baylisa at snew.com Tue Mar 23 11:21:01 2004 From: chuck+baylisa at snew.com (Chuck Yerkes) Date: Tue, 23 Mar 2004 11:21:01 -0800 Subject: selling drives... (Re: Spamming should be Bad For Business!) In-Reply-To: <200403231338.i2NDcV0h007678@bunrab.catwhisker.org> References: <200403231338.i2NDcV0h007678@bunrab.catwhisker.org> Message-ID: <20040323192101.GA13749@2004.snew.com> Quoting David Wolfskill (david at catwhisker.org): > During my morning's traversal of the posts "held for moderation" > in the FreeBSD.org mailing lists [I'm also postmaster@ there], I > started seeing several copies of a message > > From: "Datex Purchasing" > Subject: Looking to buy > Sender: "Datex Purchasing" > > ... > stating that they were looking to buy disk drives. I have a number of 424MB and 535MB drives I'd sell, though. I paid around $450 for them. I also have a $900 2.5G Barracuda and a $400 80MB drive I used on my MacSE. Please let him know that they are available for 75% my purchase price. (with I hadn't tossed those 105MB and 40MB drives in the last move. wait, I still have a 75MB RLL drive in a motorola mini. I know that one cost $2000 in 1984. I'd add that in). From bill at wards.net Tue Mar 23 12:18:52 2004 From: bill at wards.net (William R Ward) Date: Tue, 23 Mar 2004 12:18:52 -0800 Subject: PenLUG meeting this Thursday, 25-Mar-2004 Message-ID: <16480.39852.586832.709062@komodo.home.wards.net> The Peninsula Linux Users' Group is meeting this week, and you are invited. The theme is "Video Editing on Linux." Here are the details about this meeting. For more information or directions go to http://www.penlug.org/ Please join our "members" mailing list, or the "announce" list if you just want announcements of upcoming events. Follow the links from our home page. Our website is a TWiki; please feel free to create a user account and modify the website if you have something to contribute. Thanks! Date: Thursday, March 25, 2004 Time: 7:00 - 9:00 PM Location: 100 Oracle Parkway, Redwood Shores, CA 94065 Room 1op104 Conference Call: If you cannot attend in person, but would like to dial in and listen, please send mail to conferencecall at penlug.org and we will try to accomodate you. Agenda: ======= 7:00 - 8:30 PM: Keynote: Dale Schouten: "Kino: Digital video for Linux" 8:30 - 9:00 PM: Members' Minutes 9:00 PM: Adjourn to IHOP (Belmont) for social & food time Keynote presentation by Dale Schouten: "Kino: Digital video for Linux" ====================================================================== Dale will demonstrate Kino, a tool that enables you to manipulate and edit digital video on Linux. Dale started his career in Computer Science by spending entirely too long in graduate school at the University of Illinois where he eventually earned a PhD, specializing in Optimizing and Parallelizing compilers. Since that time he has spent his on-hours working on optimizations of various sorts for Intel's compiler group. Unfortunately, none of this has done anything to prepare him to speak intelligently on digital video of any sort. The arrival of his first child, some 6 years ago, complete with the requisite purchase of a camcorder has led him to the sense that he really ought to do something with all those precious tapes collecting dust before they degrade any further. This, along with a steady interest in all things Linux, has driven him to develop some minimal familiarity with digital video editing on Linux. After many hours poring over various websites and FAQ's, he is happy to share some of this hard-won information in the form of a simple demo of kino, demonstrating how to put pieces together, trim things out and add a few simple transitions between scenes. Members' Minutes ================ Members will have an opportunity to take a few minutes to... * Describe their latest Linux discovery * Ask questions and get help from other members * Discuss Linux projects You can just stand up and talk, or give a short demo or presentation. If you need audio/visual support for your Members' Minute, please contact Bill in advance to arrange for your needs. So we can have an idea of how many people to expect, please email rsvp at penlug.org if you are planning to attend. -- William R Ward bill at wards.net http://www.wards.net/~bill/ ----------------------------------------------------------------------------- The most damaging phrase in the language is, "It's always been done that way." -- Admiral Grace Hopper From holland at guidancetech.com Tue Mar 23 08:27:07 2004 From: holland at guidancetech.com (Rich Holland) Date: Tue, 23 Mar 2004 11:27:07 -0500 Subject: Meeting videos In-Reply-To: <200403231338.i2NDcV0h007678@bunrab.catwhisker.org> Message-ID: <20040323162735.C37C084@jester.pobox.com> Does anyone convert the meetings that are taped (VHS I assume) into something electronically transferable? I'd love to get an MPG or AVI file I could download and watch at my leisure on the airplane, rather than emailing a request for a physical tape, having to find a VCR and time to watch it, and then mailing the tape back. Since moving away from the Bay Area, I've missed the meetings, and as a consultant working at client sites, don't have access to MBONE 99.9% of the time (is it even still being broadcast there?) These days with broadband connections, I'd think electronic versions would be feasible. You can compress an hour or more of video into a file that will fit on a CD and still have very good quality (at least, good enough for a laptop). -- Rich Holland (913) 645-1950 SAP Technical Consultant print unpack("u","92G5S\=\"!A;F]T:&5R(\'!E Message-ID: On Tue, 23 Mar 2004, David Wolfskill wrote: > During my morning's traversal of the posts "held for moderation" > in the FreeBSD.org mailing lists [I'm also postmaster@ there], I > started seeing several copies of a message > > From: "Datex Purchasing" > Subject: Looking to buy > Sender: "Datex Purchasing" > > ... > > stating that they were looking to buy disk drives. i get tons of those junk mails ... = claiming they want to buy cisco/netscreeen/redback/etc - a couple of them even called my ph# ( they're getting smart about their leads c ya alvin From staskh at comcast.net Fri Mar 26 17:15:32 2004 From: staskh at comcast.net (Stas Khirman) Date: Fri, 26 Mar 2004 17:15:32 -0800 Subject: SPAN aggregation Message-ID: <03f401c41399$00c4ad70$3d04a8c0@narus.com> Gentlemen, maybe someone can help me in my quest for perfection , or, alternatively , explain unlimited stupidity of my idea ;-) Task - I need to collect SPAN traffic from 10 different 100Mb switches using a single port (1GE ) sniffer. Unfortunately, switches are from different vendors and RSPAN option is not available. Some small packet lost is acceptable. All monitored switches are in the same location. Solution (??) : I think to use some inexpensive 16x100Mb switch with 1GE uplink to aggregate 10 links connected to appropriated SPAN ports of monitored switches. All incoming 100Mb ports are mirrored to 1GE port. My sniffer is connected to 1GE port and happily collect everything what send by 10 monitored switches. Questions: 1.) Am I dreaming? Is it possible at all? What about switch internal MAC table? Is it gone crazy? What about "bridging loop"? How can I prevent it? 2.) What inexpensive switch for aggregation you may suggest? 3.) How can I prevent mirrored traffic to be looped back to the SPAN port? Can I disable transmit capabilities of my "aggregation" switch? How? Regards Stas From bill at wards.net Wed Mar 31 15:54:40 2004 From: bill at wards.net (William R Ward) Date: Wed, 31 Mar 2004 15:54:40 -0800 Subject: Advice wanted regarding setting up WiFi Message-ID: <16491.23104.627317.427295@komodo.home.wards.net> My brother-in-law who lives in Tokyo bought a new iBook and sent us his old one, along with a WiFi base station. My wife really wants me to hook it up so she can be online in the bedroom, but I'm worried about security. Currently our network consists of 2 Linux and 1 Windoze machine, all connected to a firewall/hub box I bought at Fry's, which in turn connects to the cable modem. The question is, what's the best way to hook up the base station? I'm nervous about plugging it into our existing hub (behind the firewall) because then, anyone in the neighborhood with a WiFi-enabled computer can get online through our connection. That means they could use our bandwidth, hack into our machines, or even send spam through our network. Not that I think that's likely, but I'm paranoid. So I see two options: 1) Add a new firewall box between the cable modem and the WiFi station, and then our existing firewall between that and the wired computers. 2) Add a second ethernet port to our Linux server and connect the WiFi to that, and use Linux's built-in firewall to control access. Either way, I would also want to set up something to provide authentication (NoCatAuth?) so only authorized users can use it. I have very little spare time to mess with this, so I want something that can be set up easily. I also don't have the budget to be buying a lot of hardware. With these constraints in mind, what's the best solution? --Bill. -- William R Ward bill at wards.net http://www.wards.net/~bill/ ----------------------------------------------------------------------------- Never doubt that a small group of thoughtful, committed citizens can change the world. Indeed, it's the only thing that ever has. -- Margaret Mead From alvin at Mail.Linux-Consulting.com Wed Mar 31 18:12:41 2004 From: alvin at Mail.Linux-Consulting.com (Alvin Oga) Date: Wed, 31 Mar 2004 18:12:41 -0800 (PST) Subject: Advice wanted regarding setting up WiFi In-Reply-To: <16491.23104.627317.427295@komodo.home.wards.net> Message-ID: hi ya bill i'll take the flame bait On Wed, 31 Mar 2004, William R Ward wrote: > The question is, what's the best way to hook up the base station? I'm > nervous about plugging it into our existing hub (behind the firewall) > because then, anyone in the neighborhood with a WiFi-enabled computer > can get online through our connection. That means they could use our > bandwidth, hack into our machines, or even send spam through our > network. Not that I think that's likely, but I'm paranoid. "it" is very very likely to happen .. consider it trivial for those doing that kind of work always put your vpn, wireless, dhcp ( anonymous/anybodycan ) connections OUTSIDE your real internal firewall .... FW1 for your cablemodem/dmz FW2 for your internal connections > So I see two options: > 1) Add a new firewall box between the cable modem and the WiFi > station, and then our existing firewall between that and the wired > computers. bingo.. you can do that too but can that firewall will be able to distinguish your laptop in the bedroom from your neighbor and the van sitting outside on the road or passing by on the road > 2) Add a second ethernet port to our Linux server and connect the > WiFi to that, and use Linux's built-in firewall to control access. wont help .... they have complete access to the "linux server" > Either way, I would also want to set up something to provide > authentication (NoCatAuth?) so only authorized users can use it. assume everybody is an authorized user including the van on the street for wireless authentication .. - do NOT use WEP ... its as good as giving away your key to the house - use IPSec .. on the access point and the wireless laptop ( you're hosed if you using a fries special for the ap ( and i donno if the dlink/linksys can use ipsec instead of wep > I have very little spare time to mess with this, so I want something > that can be set up easily. I also don't have the budget to be buying > a lot of hardware. just an itty bitty 486 machine is good enoug for a firewall c ya alvin From tony at usenix.org Wed Mar 31 23:05:37 2004 From: tony at usenix.org (Tony Del Porto) Date: Wed, 31 Mar 2004 23:05:37 -0800 Subject: Advice wanted regarding setting up WiFi In-Reply-To: <16491.23104.627317.427295@komodo.home.wards.net> References: <16491.23104.627317.427295@komodo.home.wards.net> Message-ID: Bill, On Mar 31, 2004, at 3:54 PM, William R Ward wrote: > > My brother-in-law who lives in Tokyo bought a new iBook and sent us > his old one, along with a WiFi base station. My wife really wants me > to hook it up so she can be online in the bedroom, but I'm worried > about security. > ... > So I see two options: > 1) Add a new firewall box between the cable modem and the WiFi > station, and then our existing firewall between that and the wired > computers. > 2) Add a second ethernet port to our Linux server and connect the > WiFi to that, and use Linux's built-in firewall to control access. Since you only have one IP Option 2 is probably the easiest. I do this at home and at conferences with OpenBSD and pf fairly trivially; not sure how easy the ruleset is to create with IPChains. > Either way, I would also want to set up something to provide > authentication (NoCatAuth?) so only authorized users can use it. If it is only your wife's laptop that will be on the wireless network WEP, MAC address restriction, and running the network closed should be sufficient to keep casual attackers off your network. WEP cracking needs a certain amount of traffic which doesn't take long to generate on a busy network, but may take a while longer on a home network with one host. The true paranoid will only allow IPSEC connections to the gateway as Alvin recommended. There is a software package that makes this easier: http://www.freeswan.org/ It looks like they've stopped development, but the release works. OS X as of 10.2 has IPSEC capability, but I've never configured it so I don't know how easy or not it is. > I have very little spare time to mess with this, so I want something > that can be set up easily. I also don't have the budget to be buying > a lot of hardware. > > With these constraints in mind, what's the best solution? I'd look at FreeS/WAN if the risk of someone stumbling on your network, spoofing your Wife's laptop's MAC address, cracking the WEP key, and then doing illegal things is unacceptable. Good Luck! Tony