RE: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP withreserved IPs on wlan0?

I have used openwrt, but not recent version of it. I have been using Ubiquiti EdgeRouters running the stock EdgeOS. Very solid routers. I even have one sitting up in a tree in a Tupperware container in the snowy mountains! I recently discovered that EdgeOS is based on Debian and you can insta

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

On Mon, 8 Feb 2021 16:42:40 -0500 Dan Ritter wrote: > Celejar wrote: > > > If you are OK buying used equipment, Intel-based gigabit NICs, 4 ports > > > to a PCIe slot, cost about $35 (or $70 new). If you've got a 5 year old > > > > My understanding - please correct me if I'm wrong - is that wit

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

Celejar wrote: > > If you are OK buying used equipment, Intel-based gigabit NICs, 4 ports > > to a PCIe slot, cost about $35 (or $70 new). If you've got a 5 year old > > My understanding - please correct me if I'm wrong - is that with those > types of cards, the ports are distinct and aren't actu

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

On Mon, 8 Feb 2021 11:03:35 -0500 Dan Ritter wrote: > Celejar wrote: > > > I can be glad that OpenWRT has improved their security practices > > > and simultaneously not be interested in using it. > > > > I think we are really in basic agreement. The reason I use OpenWRT is > > that I use a resi

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

> I think we are really in basic agreement. The reason I use OpenWRT is > that I use a residential all-in-one WAP / switch / router, which Debian > is unsuitable for. If I ever go the separate WAP / switch / router > route, I'll probably use Debian on the router for the reasons you > give: good sup

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

Celejar wrote: > > I can be glad that OpenWRT has improved their security practices > > and simultaneously not be interested in using it. > > I think we are really in basic agreement. The reason I use OpenWRT is > that I use a residential all-in-one WAP / switch / router, which Debian > is unsuit

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

On Mon, 8 Feb 2021 09:57:13 -0500 Dan Ritter wrote: > Celejar wrote: > > On Mon, 8 Feb 2021 08:36:34 -0500 > > Dan Ritter wrote: > > > > > OpenWRT's security process doesn't look as terrible as it used > > > to be, but it doesn't really look good right now, just trying to > > > be better. > >

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

Celejar wrote: > On Mon, 8 Feb 2021 08:36:34 -0500 > Dan Ritter wrote: > > > OpenWRT's security process doesn't look as terrible as it used > > to be, but it doesn't really look good right now, just trying to > > be better. > > Again, let's look at specific examples of vulnerabilities present i

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

On Mon, 8 Feb 2021 08:36:34 -0500 Dan Ritter wrote: > Celejar wrote: > > On Mon, 8 Feb 2021 06:41:23 -0500 > > Dan Ritter wrote: > > > > > Gregory Seidman wrote: > > > > If you want a Linux router/AP, I recommend OpenWRT over Debian. It runs > > > > on > > > > ... > > > > > Debian gets sec

Re: Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

Celejar wrote: > On Mon, 8 Feb 2021 06:41:23 -0500 > Dan Ritter wrote: > > > Gregory Seidman wrote: > > > If you want a Linux router/AP, I recommend OpenWRT over Debian. It runs on > > ... > > > Debian gets security updates in a timely manner (for stable). > > > > How's OpenWRT's security te

Security: OpenWRT vs. Debian [Was:] Re: Linux router AP with reserved IPs on wlan0?

On Mon, 8 Feb 2021 06:41:23 -0500 Dan Ritter wrote: > Gregory Seidman wrote: > > If you want a Linux router/AP, I recommend OpenWRT over Debian. It runs on ... > Debian gets security updates in a timely manner (for stable). > > How's OpenWRT's security team? I'm not sure if this is a genuine

Re: Linux router AP with reserved IPs on wlan0?

Gregory Seidman wrote: > If you want a Linux router/AP, I recommend OpenWRT over Debian. It runs on > a variety of router hardware, but also PCs: > https://openwrt.org/docs/guide-user/installation/openwrt_x86 > > Importantly, it uses UCI > fo

Re: Linux router AP with reserved IPs on wlan0?

If you want a Linux router/AP, I recommend OpenWRT over Debian. It runs on a variety of router hardware, but also PCs: https://openwrt.org/docs/guide-user/installation/openwrt_x86 Importantly, it uses UCI for configuration of switches, network

Re: Linux router AP with reserved IPs on wlan0?

Tixy writes: > On Sat, 2021-02-06 at 11:00 -0800, John Conover wrote: > > Stefan Monnier writes: > > > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > > > > works well with iptables, with one shortcoming. > > > > > > > > After antagonizing the Google for hours, I can not

Re: Linux router AP with reserved IPs on wlan0?

On Sat, 2021-02-06 at 11:00 -0800, John Conover wrote: > Stefan Monnier writes: > > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > > > works well with iptables, with one shortcoming. > > > > > > After antagonizing the Google for hours, I can not find any way to add > >

Re: Linux router AP with reserved IPs on wlan0?

Stefan Monnier writes: > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > > works well with iptables, with one shortcoming. > > > > After antagonizing the Google for hours, I can not find any way to add > > reserved IPs based on the the MAC address of devices connected on

Re: Linux router AP with reserved IPs on wlan0?

> A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > works well with iptables, with one shortcoming. > > After antagonizing the Google for hours, I can not find any way to add > reserved IPs based on the the MAC address of devices connected on > wlan0, (presumably in dhcpcd.co

Re: Linux router AP with reserved IPs on wlan0?

John Conover wrote: > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > works well with iptables, with one shortcoming. > > After antagonizing the Google for hours, I can not find any way to add > reserved IPs based on the the MAC address of devices connected on > wlan0,

Re: Linux router AP with reserved IPs on wlan0?

On Sat, Feb 06, 2021 at 02:29:08AM -0800, John Conover wrote: > > A wireless router made with hostapd/dnsmasq/dhcpcd is fairly easy, and > works well with iptables, with one shortcoming. > > After antagonizing the Google for hours, I can not find any way to add > reserved IPs based on the the MAC

Re: Linux Router

Captain's Log, stardate Tue, 14 Dec 2004 14:22:48 -0600, from the fingers of Michael Madden came the words: > I figured out what was wrong with my OpenBSD 3.6 setup. I needed to > setup pf=YES in /etc/rc.conf.  I must have missed this when reading > though the install documentation. > > Anyhow the

Re: Linux Router

Captain's Log, stardate Tue, 14 Dec 2004 12:23:08 -0600, from the fingers of Michael Madden came the words: >> The main point is that there are so many things to do in Linux in >> order to configure it for masquerading (Recompiling Kernel etc). >> There also so many different commands that do exac

Re: Linux Router

I figured out what was wrong with my OpenBSD 3.6 setup. I needed to setup pf=YES in /etc/rc.conf. I must have missed this when reading though the install documentation. Anyhow these are the steps that worked for me: 1.) Install OpenBSD 3.6 according to the directions at: http://www.openbsd.org

Re: Linux Router

> The main point is that there are so many things to do in Linux in order to > configure it for masquerading (Recompiling Kernel etc). There also so many > different commands that do exactly the same thing but in different ways. If a > person is starting off in firewalling it's not good to overw

Re: Linux Router

On Mon, 2004-12-13 at 15:46 -0800, Scarletdown wrote: > Michael Madden wrote: > > > Alex Barylo wrote: [snip] > > > Freesco is a pretty decent floppy based router. > > freesco.org Note, though, that it uses kernel 2.0.39. -- - R

Re: Linux Router

On Mon, Dec 13, 2004 at 05:31:18PM -0600, Michael Madden wrote: > > Thanks for all the advice. I guess something like > LRP appealed to me more since it was floppy based > and didn't require setting up a distro with many > unneeded utilities. Does anyone know of an active > flop

Re: Linux Router

Captain's Log, stardate Mon, 13 Dec 2004 19:26:40 -0500, from the fingers of Bruce Park came the words: > Ken Gilmour wrote: >> The only problem i have with Linux's iptables as opposed to >> OpenBSD's PF is that iptables has an overwhelming amount of stuff >> it can do and you can easily break it

Re: Linux Router

Ken Gilmour wrote: Captain's Log, stardate Mon, 13 Dec 2004 14:11:46 -0600, from the fingers of Michael Madden came the words: Does anyone know of a decent Linux based router project out there? In the past I've used LRP (http://www.linuxrouter.org), but it looks like the project isn't maintained

Re: Linux Router

I second that - I use my old AMD-K6 box with Sarge as a firewall. I use and _highly_ recommend FIAIF firewall (http://www.fiaif.net/) - I picked it up from securityfocus.com top tools. HTH, Alex. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [E

Re: Linux Router

On Mon, Dec 13, 2004 at 05:31:18PM -0600, Michael Madden wrote: > unneeded utilities. Does anyone know of an active > floppy based firewall (Linux or *BSD)? No. Use an old laptop with a hard drive, and two PCMCIA net cards. Take one floppy. Put the OpenBSD install image on it. Install OpenBSD vi

Re: Linux Router

Michael Madden wrote: Alex Barylo wrote: I second that - I use my old AMD-K6 box with Sarge as a firewall. I use and _highly_ recommend FIAIF firewall (http://www.fiaif.net/) - I picked it up from securityfocus.com top tools. HTH, Alex. Thanks for all the advice. I guess something like LRP appeal

Re: Linux Router

Captain's Log, stardate Mon, 13 Dec 2004 17:31:18 -0600, from the fingers of Michael Madden came the words: > Thanks for all the advice.  I guess something like > LRP appealed to me more since it was floppy based > and didn't require setting up a distro with many > unneeded utilities. Does anyone

Re: Linux Router

Croy, Nathan wrote: From: Michael Madden [mailto:[EMAIL PROTECTED] Sent: Monday, December 13, 2004 5:31 PM Thanks for all the advice. I guess something like LRP appealed to me more since it was floppy based and didn't require setting up a distro with many unneeded utilities. Does anyone know of an

Re: Linux Router

On Mon, 2004-12-13 at 17:31 -0600, Michael Madden wrote: > Alex Barylo wrote: [snip] > > Thanks for all the advice. I guess something like > LRP appealed to me more since it was floppy based > and didn't require setting up a distro with many > unneeded utilities. Does anyone know of an active > f

RE: Linux Router

> From: Michael Madden [mailto:[EMAIL PROTECTED] > Sent: Monday, December 13, 2004 5:31 PM > > Thanks for all the advice. I guess something like > LRP appealed to me more since it was floppy based > and didn't require setting up a distro with many > unneeded utilities. Does anyone know of an act

Re: Linux Router

Alex Barylo wrote: I second that - I use my old AMD-K6 box with Sarge as a firewall. I use and _highly_ recommend FIAIF firewall (http://www.fiaif.net/) - I picked it up from securityfocus.com top tools. HTH, Alex. Thanks for all the advice. I guess something like LRP appealed to me more since it

Re: Linux Router

Captain's Log, stardate Mon, 13 Dec 2004 14:11:46 -0600, from the fingers of Michael Madden came the words: > Does anyone know of a decent Linux based router project out there? > In the past I've used LRP (http://www.linuxrouter.org), but it > looks like the project isn't maintained anymore. > > M

Re: [Linux: Router] What does I need ???

Michelle Konzack wrote: > Now, my Question is, WHAT DOES I NEED to install a simpel Router ??? > ... > Curently I must work with IP-Masquerading only... > ...but it runs. > > OK, I have a LRP 2.9.4 box running which is based on Debian 2.1 (2.0.36). > I have no knowledge from ipchains and ... I

Re: Linux router and NetMeeting

On Mon, 30 Aug 1999 [EMAIL PROTECTED] wrote: > > > I think someone needs to write an IP masq helper module for Netmeeting. I > just got the port specs from M$'s site, and I'm looking into how to do it > right now. I'll post what I have in a few days (Don't have time to do any > coding during w

Re: Linux router and NetMeeting

I think someone needs to write an IP masq helper module for Netmeeting. I just got the port specs from M$'s site, and I'm looking into how to do it right now. I'll post what I have in a few days (Don't have time to do any coding during work days. :< ), and hopefully... I could also use someone to

Re: Linux router and NetMeeting

This is because the router uses NAT and the packets arriving at your friend's computer appear to come from your router, not your NT server. I'm not familiar with Netmeeting, but if it tries to create a return connection, this may not work. Several other protocols do this and only some of them are

Re: Linux Router Project -- About to get working and need more people!

I'm willing to help. Although not a networking guru I've created several Debian networking-based packages (Merit radiusd, Hylafax, MRTG, gated [internal use only], nocol). -- Dermot Bradley Derry/Belfast, Northern Ireland [EMAIL PROTECTED] [EMAIL PROTECTED] -- TO UNSUBSCRIBE FROM THIS MAILING L

Re: Linux Router Project -- About to get working and need more people!

Try the root on the resc1440.bin floppy . It contains a functional Unix tool set, a good shell, and an editor. It fits on a 1.44MB ramdisk image, compresses down to 700KB on the floppy, leaves enough room for the kernel on the same 1.44MB floppy, and supports shared libraries. You would be hard pre