IRC log for #gllug on 20070911

`00:01.05`	`goibhniu`	`that musical tesla coil rocks`
`01:18.41`	`*** join/#gllug Avnit (i=22@gateway/tor/x-2fcdd6275e0117d5)`
`03:54.30`	`*** join/#gllug bilarh_ (n=henrik@bilar.co.uk)`
`04:44.48`	`morsing`	`'morning`
`06:12.47`	`andrew__1`	`hi morsing`
`07:16.43`	`*** join/#gllug niv_one_three (n=niv@bzq-84-108-124-194.cablep.bezeqint.net)`
`07:46.29`	`morsing`	`andrew__1!`
`08:18.55`	`jcookeman`	`morning`
`08:19.24`	`hali`	`morning`
`08:20.24`	`morsing`	`jcookeman!`
`08:20.49`	`jcookeman`	`morsing!`
`08:36.29`	`morsing`	`How are you?`
`08:37.43`	`jcookeman`	`doing fine! thanks. and you?`
`08:38.42`	`morsing`	`Good thanks`
`08:42.20`	`*** join/#gllug bilarh (n=henrik@bilar.co.uk)`
`08:43.18`	`bilarh`	`morning`
`08:48.21`	`jcookeman`	`bilarh!`
`08:48.30`	`*** join/#gllug chr1s (n=chatzill@crag1.plus.com)`
`08:49.10`	`morsing`	`chr1s!`
`09:07.48`	`*** join/#gllug AnneC\|away (n=AnneC@cmarfw01.marlow.spinvox.com)`
`09:07.55`	`*** join/#gllug goibhniu (n=cillian@87-194-36-120.bethere.co.uk)`
`09:10.50`	`*** join/#gllug SlayerXP (n=martin@gw-colt.fotango.com)`
`09:11.24`	`*** join/#gllug chr1s (n=chatzill@crag1.plus.com)`
`09:21.02`	`*** join/#gllug XPSlammer (n=martin@gw-colt.fotango.com)`
`09:27.20`	`sabinef72`	`morning`
`09:27.51`	`bilarh`	`morning`
`09:27.57`	`bilarh`	`popped your sprog yet? :-)`
`09:29.18`	`morsing`	`XPSlammer!`
`09:29.39`	`morsing`	`goibhniu!`
`09:37.54`	`*** join/#gllug Avnit (i=22@gateway/tor/x-dea83a85c8144d98)`
`09:39.30`	`morsing`	`Avnit!`
`09:44.58`	`z00dax`	`morsing: check it`
`09:53.20`	`morsing`	`z00dax!`
`09:53.26`	`morsing`	`z00dax: It's still there`
`09:56.53`	`goibhniu`	`morsing: beer!`
`09:58.43`	`z00dax`	`morsing: excellent`
`10:00.16`	`morsing`	`goibhniu: Chocolate`
`10:00.23`	`morsing`	`z00dax: How's the weather?`
`10:00.44`	`z00dax`	`morsing: thats a trick question.`
`10:01.04`	`z00dax`	`its 14 deg C with scattered clouds and mostly grey, where i am`
`10:01.09`	`z00dax`	`ibot: weather ?`
`10:01.18`	`z00dax`	`ibot: weather london,uk`
`10:06.04`	`z00dax`	`ibot: weather EGLC`
`10:06.12`	`z00dax`	`ibot: weather EGRB`
`10:06.31`	`z00dax`	`ibot: weather 03779`
`10:09.00`	`*** join/#gllug tripitaka (n=chatzill@83.217.101.115)`
`10:10.07`	`morsing`	`tripitaka!`
`10:13.42`	`tripitaka`	`hello morsing`
`10:24.51`	`morsing`	`Coffee`
`10:25.26`	`morsing`	`~seen wethrin`
`10:25.27`	`ibot`	`wethrin is currently on #gllug (4d 10h 52m 23s). Has said a total of 21 messages. Is idling for 3d 22h 36m 37s, last said: 'It is, yes'.`
`11:09.43`	`*** join/#gllug dick_turpin (n=dick_tur@host217-34-163-30.in-addr.btopenworld.com)`
`11:56.31`	`morsing`	`dick_turpin!`
`12:01.16`	`dick_turpin`	`morsing: Hi Ya`
`12:02.25`	`boudiccas`	`here's dick_turpin`
`12:03.04`	`dick_turpin`	`boudiccas: Yep I've been released without charge`
`12:03.42`	`boudiccas`	`thats good news dick_turpin have you been bailed to go back to the station for further questioning though?`
`12:04.16`	`dick_turpin`	`boudiccas: Yes but its OK I've put a contract out on the Hamster`
`12:04.23`	`boudiccas`	`i missed your banter yesterday dick_turpin`
`12:04.37`	`morsing`	`So did I :-P`
`12:05.01`	`dick_turpin`	`boudiccas: Aw shucks I'm glad someone missed me`
`12:05.11`	`boudiccas`	`:)`
`12:05.33`	`morsing`	`dick_turpin: Not me? :(`
`12:06.15`	`dick_turpin`	`morsing: Yes I'm extatic that you missed me as well`
`12:06.26`	`dick_turpin`	`bloody spell checker`
`12:06.45`	`morsing`	`dick_turpin: :)`
`12:06.58`	`morsing`	`~seen sabinef72`
`12:07.01`	`ibot`	`sabinef72 is currently on #gllug (12d 15h 40m 59s). Has said a total of 28 messages. Is idling for 2h 39m 41s, last said: 'morning'.`
`12:07.23`	`boudiccas`	`estatic`
`12:08.10`	`dick_turpin`	`boudiccas: Thanks, I can always rely on you to pick me up on at least one thing :-P`
`12:09.27`	`dick_turpin`	`Had Friday and Monday off, only went on the laptop at home yesterday afternoon to clear down my "Get a bigger penis" emails :-)`
`12:14.57`	`boudiccas`	`ecstatic`
`12:15.08`	`boudiccas`	`i think thats the right one dick_turpin :)`
`12:17.32`	`dick_turpin`	`So has everyone taken a few minutes to remember 9/11 seeing as today is the sixth anniversary?`
`12:18.03`	`morsing`	`No of course not`
`12:23.34`	`boudiccas`	`i remembered that today is my uncles birthday`
`12:24.54`	`bilarh`	`i remembered :-)`
`12:25.08`	`bilarh`	`corr, i can't believe it's six years`
`12:25.15`	`dick_turpin`	`I'm ashamed to say I'd forgotton, I actually feel pretty bad`
`12:25.16`	`bilarh`	`i had just moved to london a couple of months earlier`
`12:25.35`	`bilarh`	`my mum was on the blower telling me to come home`
`12:26.06`	`clive-h`	`I was working for Demon then, we first heard about it on IRC`
`12:26.08`	`bilarh`	`all the news sites were completely ddos'ed so i got my news from a car bbs in sweden :D`
`12:26.26`	`goibhniu`	`I was chatting with a girl from australia at the time ... I was the first in the office to hear about it and cnn.com etc were all down`
`12:26.30`	`clive-h`	`Then we went to the NOC and watched it on Sky`
`12:27.17`	`bilarh`	`it was such a surreal feeling as well`
`12:27.22`	`bilarh`	`a bit similar to the tube bombings`
`12:27.35`	`dick_turpin`	`I was at work, we watched it on a crappy black and white TV with a bit of wire as the ariel`
`12:27.44`	`clive-h`	`luckily I was working from home at that point`
`12:28.30`	`morsing`	`boudiccas: Has it always been today?`
`12:28.55`	`goibhniu`	`morsing: it's always now`
`12:29.23`	`morsing`	`goibhniu: You know her uncle?`
`12:29.53`	`goibhniu`	`maybe`
`12:30.50`	`dick_turpin`	`I am boudiccas's uncle :-P`
`12:31.16`	`goibhniu`	`since we're talking about war and imperialism ... I heard an interesting hitler quote the other day`
`12:31.16`	`bilarh`	`dick_turpin: a special uncle? ;-)`
`12:31.29`	`boudiccas`	`yes, his birthday has always been today ever since he was born`
`12:31.48`	`morsing`	`dick_turpin: Historically I think boudiccas is older than you ;-)`
`12:31.54`	`boudiccas`	`dick_turpin; no you're not. my uncle is a retired vicar`
`12:32.26`	`morsing`	`Bye... :')`
`12:32.29`	`morsing`	`:'(`
`12:32.33`	`morsing`	`13:28 < dick_turpin> I am boudiccas's uncle :-P`
`12:32.39`	`morsing`	`Huh?`
`12:32.57`	`goibhniu`	`morsing: I don't know boudiccas' uncle`
`12:33.01`	`morsing`	`Nice`
`12:33.16`	`*** join/#gllug AnneC (n=AnneC@cmarfw01.marlow.spinvox.com)`
`12:33.17`	`dick_turpin`	`boudiccas: In the next episode of #gllug it turns out I am and that the Vicar uncle was in fact a dream`
`12:33.20`	`boudiccas`	`dick_turpin; is a nom de plume, aka peter, whereas my said uncle is called george`
`12:33.53`	`*** join/#gllug AnneC (n=AnneC@cmarfw01.marlow.spinvox.com)`
`12:34.22`	`dick_turpin`	`goibhniu: Thats not difficult is it? :-P`
`12:34.25`	`boudiccas`	`goibhniu; whas he a padre? because uncle was a padre in the army in norhtern ireland for a while`
`12:34.26`	`morsing`	`AnneC!`
`12:34.40`	`AnneC`	`morsing! mac crashed!`
`12:34.47`	`goibhniu`	`AnneC: lol!`
`12:34.48`	`morsing`	`Sounds nice`
`12:34.57`	`bilarh`	`annec: never!`
`12:35.13`	`AnneC`	`always!`
`12:35.14`	`goibhniu`	`boudiccas: I don't think so ... he refused to fight in iraq`
`12:35.32`	`boudiccas`	`ah, right....definetly not the same one then`
`12:35.35`	`AnneC`	`(take it as either 1) morsing talk 2) yahoo! talk) !!`
`12:36.06`	`morsing`	`?`
`12:36.10`	`morsing`	`you'[ve lost me?`
`12:38.42`	`goibhniu`	`"Who, after all, speaks today of the annihilation of the Armenians?"`
`12:41.36`	`tripitaka`	`I know I don't`
`12:42.19`	`boudiccas`	`goibhniu; goerge as in gw280 ?`
`12:42.43`	`goibhniu`	`maybe we should speak of it every year on uncle george's birthday`
`12:42.57`	`goibhniu`	`boudiccas: I doubt it very much`
`12:43.07`	`tripitaka`	`There was an interesting case a couple of weeks ago - the head of the ADL in New England was kicked out for referring to the Armenian Genocide. Israel has good relations with Turkey and tries not to equate the two acts of genocide.`
`12:43.54`	`goibhniu`	`sometimes it's genocide ... sometimes it's just business`
`12:44.10`	`tripitaka`	`(for small values of interesting, obviously)`
`12:44.50`	`clive-h`	`yes but then israel had good relations and supplied arms to apartheid south africa too`
`12:45.19`	`clive-h`	`breaching the international sanctions against south africa`
`12:45.22`	`bilarh`	`israel is a complete rouge state imo`
`12:45.37`	`bilarh`	`the us should invade them`
`12:45.49`	`clive-h`	`I thought they had`
`12:46.06`	`bilarh`	`oh but I forget... they're almost christian :-\`
`12:46.27`	`clive-h`	`except the natives`
`12:47.06`	`bilarh`	`dude, nobody cares about natives :-)`
`12:47.45`	`goibhniu`	`I recently heard that they have suicide bombers on battlestar galactica`
`12:47.50`	`goibhniu`	`is that true?`
`12:48.16`	`tripitaka`	`Nations are like French roundabouts. The people arriving have the most rights, anyone currently on the roundabout has to make way.`
`12:49.26`	`bilarh`	`tripitaka: hehe, nice allegory`
`12:49.54`	`clive-h`	`analogy surely`
`12:50.28`	`bilarh`	`hmm... not sure actually...`
`12:50.34`	`niv_one_three`	`hi all, I would like to know how to handle a scenerio where I got to NIC to the lan. should I run each iptables command twice to allow stuff to the lan?`
`12:50.35`	`bilarh`	`# A symbolic representation: The blindfolded figure with scales is an allegory of justice.`
`12:51.02`	`bilarh`	`niv_one_three: huh? two nic's to the same lan, yes?`
`12:51.04`	`niv_one_three`	`or may I define both ethernet and wireless to be one entety`
`12:51.19`	`tripitaka`	`I thought an allegory was like a narrative analogy`
`12:51.42`	`tripitaka`	`niv_one_three are you bonding them?`
`12:51.50`	`niv_one_three`	`the pc has three NIC, one to WAN one ether to lan and the other wireless to LAN`
`12:52.00`	`niv_one_three`	`what is bonding?`
`12:52.09`	`niv_one_three`	`should I bond them?`
`12:52.29`	`bilarh`	`hmm, i guess analogy might fit better`
`12:52.39`	`bilarh`	`no, don't bond a wireless and ethernet nic`
`12:52.47`	`bilarh`	`niv_one_three: what's the actual problem?`
`12:52.48`	`tripitaka`	`niv_one_three: if it was me, I might bond the wired LAN and the wireless LAN in failover mode, with a high priority on the wired LAN. Not sure if it would work.`
`12:53.11`	`niv_one_three`	`where can I learn how to do it?`
`12:53.35`	`bilarh`	`niv_one_three: what are you trying to do?`
`12:53.44`	`bilarh`	`please state your problem, caller :-)`
`12:58.19`	`morsing`	`Mmm... Mead`
`12:59.58`	`tripitaka`	`ps aide > tripwire`
`13:01.00`	`morsing`	`tripitaka: You talking about the free tripwire or the proper one?`
`13:01.33`	`tripitaka`	`the free one. I imagine the centralised control of the commercial one helps`
`13:01.57`	`morsing`	`The commercial on is coooooooooooooooool :)`
`13:02.00`	`morsing`	`one`
`13:02.09`	`tripitaka`	`morsing: How much did you pay?`
`13:02.11`	`clive-h`	`I've used gpl tripwire`
`13:02.18`	`clive-h`	`never used aide`
`13:02.53`	`tripitaka`	`I've been using free (beer) tripwire, and just started looking at aide, the admin and config is a lot easier`
`13:03.13`	`niv_one_three`	`bilarh: I am tring to use two different NIC to my LAN`
`13:03.57`	`niv_one_three`	`I use a script to firewall the NIC that is connected to the WAN the the NIC to the LAN`
`13:04.45`	`*** join/#gllug Avnit (i=22@gateway/tor/x-9f1de7f6366214d3)`
`13:04.51`	`tripitaka`	`niv_one_three: aplogies, could you make that a bit clearer?`
`13:05.06`	`niv_one_three`	`I want to know hoe to deal with the case of having two NIC to LAN. need I write each line that tells iptables to allow from the LAN twice?`
`13:05.12`	`bilarh`	`niv_one_three: just run the same iptables rules for both nics...`
`13:05.19`	`niv_one_three`	`thanks`
`13:05.20`	`bilarh`	`niv_one_three: y es`
`13:05.23`	`niv_one_three`	`that was the issue`
`13:05.28`	`bilarh`	`ok :-)`
`13:05.33`	`bilarh`	`or actually`
`13:05.34`	`bilarh`	`i mean`
`13:05.41`	`bilarh`	`you don't have to specify the nic at all`
`13:05.42`	`niv_one_three`	`me question is, what is the smarter way to achive it?`
`13:05.45`	`bilarh`	`in which case one rule could work`
`13:05.55`	`bilarh`	`what's your current ruleset?`
`13:06.00`	`bilarh`	`(http://www.pastebin.ca)`
`13:06.14`	`niv_one_three`	`what tripitaka , suggested sounds better to me.`
`13:06.48`	`bilarh`	`ok`
`13:06.49`	`niv_one_three`	`how may I unite the to NIC and favore the wired one?`
`13:06.57`	`bilarh`	`look up nic bonding`
`13:07.15`	`niv_one_three`	`what are the down side of using this bonding?`
`13:07.16`	`tripitaka`	`niv_one_three: I have no idea if bonding would work with a fixed and a wireless NIC`
`13:07.39`	`bilarh`	`it might worke if you use arp-cache sensing instead of the normal sensing (i forget the name...)`
`13:07.42`	`tripitaka`	`it depends on how the kernel sees the up/down state of a wireless NIC`
`13:07.51`	`niv_one_three`	`thanks, as far as I remember the section about bonding , prefered using NAY`
`13:07.59`	`niv_one_three`	`s/NAY/NAT`
`13:08.07`	`bilarh`	`huh?`
`13:08.18`	`bilarh`	`ethernet bonding has nothing to do with nat'ing`
`13:08.49`	`niv_one_three`	`thanks`
`13:08.55`	`bilarh`	`why don't you just run the wlan as normal and run dhclieint`
`13:09.00`	`niv_one_three`	`I do need to educate myself on this`
`13:09.26`	`niv_one_three`	`I am using dnsmasq`
`13:09.54`	`niv_one_three`	`in fact the whole subnet is not easy for me now`
`13:10.00`	`bilarh`	`dhclient on the eth0 interface, i mean`
`13:10.09`	`niv_one_three`	`I had four subnets`
`13:10.34`	`clive-h`	`I'd say you want multi-pathing rather than NIC bonding`
`13:10.47`	`clive-h`	`but I might be wrong`
`13:10.48`	`niv_one_three`	`one for the wired lan. one for the vpn. and one for the remote lan I also connet to`
`13:11.09`	`goibhniu`	`dick_turpin: http://images.wikia.com/uncyclopedia/images/2/2d/World_Trade_Center.gif`
`13:11.27`	`niv_one_three`	`sorry three subnets`
`13:11.31`	`clive-h`	`I make that three`
`13:11.43`	`niv_one_three`	`I would like to put the wireless in its own subnet`
`13:12.01`	`dick_turpin`	`ibot: clip goibhniu round the lughole`
`13:12.14`	`niv_one_three`	`now, how can a host from the wireless ping the ethernet subnet?`
`13:12.22`	`antiphase`	`It's called "routing"`
`13:12.28`	`niv_one_three`	`right`
`13:12.36`	`antiphase`	`The Internets uses it extensively`
`13:12.37`	`niv_one_three`	`and I need to tell iptables to do this`
`13:12.39`	`niv_one_three`	`...`
`13:12.45`	`clive-h`	`no`
`13:12.49`	`dick_turpin`	`goibhniu: I need to teach ibot how to clip people round the lughole`
`13:12.52`	`antiphase`	`You need to turn on IP forwarding if it's between interfaces`
`13:12.59`	`clive-h`	`you need to tell the kernel to do the routing`
`13:13.08`	`niv_one_three`	`right`
`13:13.20`	`tripitaka`	`goibhniu: http://i64.photobucket.com/albums/h170/kmcdude/hulksmashwtc500.jpg`
`13:13.28`	`clive-h`	`It sounds horrendously complex`
`13:13.32`	`niv_one_three`	`just like I do from the eth0 attached to the WAN to forward to the LAN interface..`
`13:14.02`	`clive-h`	`I'm really rather confused as to how many interfaces you have`
`13:14.10`	`niv_one_three`	`sorry`
`13:14.45`	`niv_one_three`	`let me count them again: eth0 - WAN . ath0 - LAN . eth2 - LAN . TUN0 - VPN`
`13:14.57`	`clive-h`	`I make that 4`
`13:15.05`	`clive-h`	`yet above you said 3`
`13:15.09`	`antiphase`	`I don't know what the last half an hour of waffle about bonding and the like has been about. What you want it pretty trivial, and is documented almost everywhere`
`13:15.16`	`niv_one_three`	`and a remote LAN I forward over the vpn to`
`13:15.46`	`niv_one_three`	`antiphase, you are right`
`13:15.55`	`clive-h`	`ath0 is unlikely to be a LaN`
`13:16.09`	`clive-h`	`I'd guess it's wireless`
`13:16.24`	`niv_one_three`	`its the wireless`
`13:16.59`	`antiphase`	`Since Atheros drivers only support being a client last time I checked, you might as well ignore it unless you actually use wireless as your primary internet connection to the machine`
`13:16.59`	`bilarh`	`niv_one_three: hang on... don't you have an access point with an ethernet port?`
`13:17.12`	`clive-h`	`I think it would help a lot if you thought carefully before pressing enter`
`13:17.25`	`niv_one_three`	`I may run something along the lines of ; run this port forward for all LAN NIC, that is ath0, eth2,tun0`
`13:17.47`	`bilarh`	`niv_one_three: are you running your wlan in ad-hoc mode?`
`13:18.20`	`antiphase`	`echo 1> /proc/sys/net/ipv4/ip_forward`
`13:18.37`	`niv_one_three`	`bilarh , I got an access point with ethernet ports, but I use it only to hub the wireless lan`
`13:19.15`	`bilarh`	`niv_one_three: so why isn't your linux machine hooked up to the access point with an ethernet cable? Is your linux machine not a vpn router?`
`13:19.17`	`niv_one_three`	`antiphase : I query about the iptables part`
`13:19.41`	`antiphase`	`Fuck iptables until you can actually make forwarding work`
`13:19.56`	`antiphase`	`Then decide what behaviour you want`
`13:19.58`	`bilarh`	`antiphase: although if his default policy is deny... :-)`
`13:20.01`	`niv_one_three`	`bilarh, well, I use a pc as a NAT as it allows QoS`
`13:20.37`	`niv_one_three`	`farwading works fine now`
`13:20.44`	`niv_one_three`	`with one NIC to lan`
`13:21.02`	`bilarh`	`niv_one_three: ok. I strongly suggest ditching the wlan nic and connecting to the access point with an ethernet cable anyway`
`13:21.07`	`niv_one_three`	`ok, I think all are engry at me`
`13:21.15`	`niv_one_three`	`sorry about that`
`13:21.25`	`bilarh`	`niv_one_three: we're just confused about what you want :)`
`13:21.54`	`niv_one_three`	`bilarh: I can reach the access point using a cable`
`13:22.06`	`niv_one_three`	`s/can/can't`
`13:22.16`	`niv_one_three`	`s/can/can\'t`
`13:22.46`	`bilarh`	`so what is not actually working at the moment?`
`13:22.52`	`niv_one_three`	`I use the access point only for the wireless subnet`
`13:23.28`	`niv_one_three`	`hosts from the second added NIC can't get dhcp response`
`13:23.32`	`tripitaka`	`niv, could you knock up a network diagram in mspaint and post it somewhere we can see it? Might help.`
`13:23.53`	`niv_one_three`	`this is for the NAT script block DHCP calls be default to them`
`13:24.53`	`niv_one_three`	`I guess I just need to rewrite the NAT script to allow all it allows to the first LAN to the other LAN`
`13:25.01`	`niv_one_three`	`very well`
`13:25.41`	`bilarh`	`niv_one_three: iptables --flush`
`13:26.42`	`niv_one_three`	`I to declere both cards in the begening of the script`
`13:26.53`	`bilarh`	`iptables -P FORWARD ACCEPT`
`13:26.53`	`bilarh`	`iptables -P INPUT ACCEPT`
`13:26.53`	`bilarh`	`iptables -P OUTPUT ACCEPT`
`13:26.53`	`bilarh`	`does it work now?\`
`13:26.53`	`bilarh`	`is your dhcp server listening on the right interface?`
`13:28.37`	`niv_one_three`	`for LAN in "eth2 ath0" ; do iptables --I INPUT -i ${LAN} -p udp --dport 67:68 --sport 67:68 -j ACCEPT ; done`
`13:28.41`	`niv_one_three`	`right?`
`13:29.05`	`niv_one_three`	`bilarh : allready got this rules`
`13:29.41`	`niv_one_three`	`these`
`13:33.09`	`*** join/#gllug dick_turpin (n=dick_tur@host217-34-163-30.in-addr.btopenworld.com) [NETSPLIT VICTIM]`
`13:33.09`	`*** join/#gllug bilarh (n=henrik@bilar.co.uk) [NETSPLIT VICTIM]`
`13:33.09`	`*** join/#gllug cpufreak (n=cpu@nurburgr.ing.me.uk) [NETSPLIT VICTIM]`
`13:34.16`	`dick_turpin`	`bilarh: See what you did!!`
`13:34.30`	`bilarh`	`dick_turpin: sowwy :'(`
`13:34.49`	`niv_one_three`	`did you all saw my for command?`
`13:34.53`	`niv_one_three`	`any responce?`
`13:35.03`	`niv_one_three`	`response`
`13:35.11`	`bilarh`	`niv_one_three: yes, i had a response :-)`
`13:35.19`	`bilarh`	`13:29 < bilarh> iptables -P FORWARD ACCEPT`
`13:35.19`	`bilarh`	`13:29 < bilarh> iptables -P INPUT ACCEPT`
`13:35.19`	`bilarh`	`13:29 < bilarh> iptables -P OUTPUT ACCEPT`
`13:35.30`	`bilarh`	`niv_one_three: ^^^^^ ;-)`
`13:35.41`	`niv_one_three`	`yes I get these lines allready`
`13:35.45`	`niv_one_three`	`work fine`
`13:35.48`	`bilarh`	`ok, what happens now then?`
`13:35.50`	`bilarh`	`does it work?`
`13:35.55`	`niv_one_three`	`issue is with allowing dhcp from lan`
`13:36.00`	`niv_one_three`	`it workd`
`13:36.02`	`niv_one_three`	`it works`
`13:36.32`	`niv_one_three`	`well allowing all is not a goo idea..`
`13:36.48`	`niv_one_three`	`some firewall is in order..`
`13:41.07`	`bilarh`	`btw, does your script really say "--I INPUT"?`
`13:41.14`	`bilarh`	`because it should only be -I :)`
`13:43.08`	`niv_one_three`	`hmmm`
`13:43.47`	`niv_one_three`	`its -I INPUT`
`13:43.49`	`niv_one_three`	`ok,`
`13:44.16`	`bilarh`	`ah`
`13:44.17`	`bilarh`	`hehe`
`13:44.24`	`bilarh`	`[root@uk01gd55 ~]# for LAN in "eth2 ath0"; do`
`13:44.25`	`bilarh`	`> echo LAN = $LAN`
`13:44.25`	`bilarh`	`> done`
`13:44.25`	`bilarh`	`LAN = eth2 ath0`
`13:44.25`	`bilarh`	`[root@uk01gd55 ~]#`
`13:44.42`	`bilarh`	`that might be your problem, right there`
`13:45.15`	`niv_one_three`	`ok, no errors in /var/log/messeges after running the script`
`13:45.41`	`bilarh`	`that's because it would spit the errors out on stderr or stdout`
`13:46.10`	`bilarh`	`change it to: for LAN in eth2 ath0; do <blah>`
`13:51.55`	`*** part/#gllug AnneC (n=AnneC@cmarfw01.marlow.spinvox.com)`
`13:52.39`	`z00dax`	`tripitaka: did you get the tripwire update ?`
`13:54.10`	`tripitaka`	`z00dax: I see nothing under http://centos.karan.org/el4/extras/stable/x86_64/RPMS/repodata/repoview/T.group.html`
`13:54.34`	`z00dax`	`tripitaka: use yum`
`13:54.37`	`tripitaka`	`pebcak?`
`13:54.43`	`z00dax`	`yum clean metadata; yum install tripwire`
`13:54.57`	`tripitaka`	`it's actually for a RHEL4 machine`
`13:55.00`	`tripitaka`	`no yum`
`13:55.11`	`tripitaka`	`which repo would have it?`
`13:55.24`	`*** join/#gllug chris- (n=chatzill@crag1.plus.com)`
`13:55.30`	`z00dax`	`in which case, add this line to /etc/sysconfig/rhn/sources`
`13:55.32`	`z00dax`	`<PROTECTED>`
`13:55.39`	`z00dax`	`and up2date --dry-run tripwire`
`13:57.30`	`z00dax`	`or, if you really must - http://centos.karan.org/el4/extras/stable/x86_64/RPMS/tripwire-2.4.1.2-3.el4.kb.x86_64.rpm`
`13:58.52`	`tripitaka`	`thanks z00dax!`
`13:59.00`	`z00dax`	`no worries`
`14:01.07`	`*** join/#gllug klur (n=klur@cmarfw01.marlow.spinvox.com)`
`14:02.42`	`z00dax`	`tripitaka: but do let me know if it works :) I built it - have not tested it`
`14:05.28`	`*** part/#gllug dick_turpin (n=dick_tur@host217-34-163-30.in-addr.btopenworld.com)`
`14:11.02`	`*** join/#gllug tripitaka (n=chatzill@83.217.101.115)`
`14:12.11`	`tripitaka`	`z00dax: tripwire x86_64 works fine`
`14:14.44`	`z00dax`	`tripitaka: cool :)`
`14:17.55`	`*** join/#gllug londo__ (n=georgiou@heppc218.hep.ph.ic.ac.uk)`
`14:19.59`	`*** join/#gllug Leeds (i=1000@n219078037109.netvigator.com)`
`14:23.50`	`*** join/#gllug flips_and_rails (n=stu@cv-kraken.cv.ic.ac.uk)`
`14:48.48`	`bilarh`	`are solaris passwd and shadow files compatible with linux?`
`14:49.02`	`bilarh`	`i.e do they do the same hashing for passwords etc?`
`14:49.02`	`antiphase`	`Do they look similar? ;)`
`14:49.11`	`bilarh`	`it's mainly the hashing i'm unsure of :)`
`14:49.24`	`Leeds`	`I think Linux has more options for crypto engines to use`
`14:49.34`	`bilarh`	`so slowaris -> linux shouldn't be a problem?`
`14:49.38`	`antiphase`	`It's either salted MD5 or salted DES crypt, either of which will work with Linux`
`14:49.53`	`bilarh`	`i need to migrate a nis server from solaris to linux`
`14:50.02`	`antiphase`	`PHILISTINE!`
`14:50.06`	`antiphase`	`;)`
`14:50.09`	`Leeds`	`NIS on Linux?`
`14:50.14`	`bilarh`	`ibot: dictionary philistine`
`14:50.15`	`ibot`	`see dict philistine`
`14:50.28`	`bilarh`	`ibot: dict philistine`
`14:50.44`	`bilarh`	`antiphase: bastard ;-)`
`14:50.59`	`bilarh`	`leeds: yes`
`14:51.08`	`bilarh`	`leeds: we're moving towards being a linux only shop`
`14:51.15`	`bilarh`	`and besides, this nis server is an old ultra-10`
`14:51.20`	`bilarh`	`and it's the only nis server we have`
`14:51.22`	`bilarh`	`i.e. no slaves`
`14:51.41`	`bilarh`	`the bloody thing hasn't even been patched since 2001 because it can't be rebooted`
`14:51.54`	`goibhniu`	`bilarh: you rock`
`14:52.23`	`bilarh`	`goibhniu: did you know that the sun shines out of my arse? :)`
`14:52.32`	`bilarh`	`i only figured out the other day`
`14:52.56`	`goibhniu`	`sun shines out of your slow arse?`
`14:53.11`	`goibhniu`	`so you're migrating to linux to stop it?`
`14:53.29`	`bilarh`	`what's wrong with nis on linux anyway?`
`14:55.57`	`tripitaka`	`it's unencrypted`
`14:56.14`	`tripitaka`	`give me ten minutes and a hub and I have all your user logins`
`14:56.31`	`bilarh`	`tripitaka: you don't understand... we still use rsh with hosts.equiv here`
`14:56.38`	`Leeds`	`nice`
`14:56.49`	`tripitaka`	`in that case, I can do without the hub`
`14:56.52`	`tripitaka`	`or the ten minutes`
`14:56.54`	`bilarh`	`;)`
`14:57.38`	`bilarh`	`unfortunately, disabling rsh kills our apps`
`14:57.49`	`bilarh`	`i know it's shite, but there you go`
`14:57.52`	`tripitaka`	heh: notes in `man hosts.equiv`: "Some exception-
`14:57.54`	`tripitaka`	`<PROTECTED>`
`14:57.55`	`tripitaka`	`<PROTECTED>`
`14:58.19`	`tripitaka`	`I imagine there are lots of exceptionally paranoid admins who run rsh`
`14:59.01`	`tripitaka`	`bilarh: Can you not spoof it with ssh and pki?`
`14:59.07`	`antiphase`	`It still comes enabled by default in Solaris 10, along with rlogin`
`14:59.39`	`bilarh`	`tripitaka: well, to be honest, there's not that much difference in security then, is there?`
`14:59.44`	`bilarh`	`apart from the encryption`
`14:59.51`	`bilarh`	`but the passwords wouldnt' be transmitted with rsh anyway`
`14:59.56`	`tripitaka`	`so the opposite of openbsd's motto?`
`15:00.14`	`tripitaka`	`guaranteed two remote holes in the default install, for more than 10 years!`
`15:00.54`	`bilarh`	`anyway, legacy systems are great... i've got my work cut out :)`
`15:01.19`	`tripitaka`	`bilarh: I believe the main problem is with dns spoofing or IP address tomfoolery. If I can persuade your server that my laptop is 1.2.3.4, I can hop on to your server`
`15:01.37`	`bilarh`	`tripitaka: yeah i know :-\`
`15:01.46`	`tripitaka`	`ssh would require that I have a private key with matches the pubkey on your server`
`15:02.00`	`bilarh`	`true`
`15:02.16`	`bilarh`	`hehe :-)`
`15:02.25`	`bilarh`	`anyway, gotta go... the traffic jams await me`
`15:07.25`	`boudiccas`	`i would've thought blowing eggs is nicer than sucking eggs!???`
`15:14.13`	`niv_one_three`	`Ok gang, I am runing the farwarding rules in a for loop`
`15:14.34`	`niv_one_three`	`guess I just went too far seeking to achive this simple goal`
`15:15.14`	`niv_one_three`	`in any case I still want to understand subnets: can two home routrs lie in the same subnet?`
`15:15.48`	`niv_one_three`	`I mean the subnet is 255.255.255.240 and the two routers have a near IP`
`15:16.05`	`niv_one_three`	`say 192.169.1.1 and 192.168.1.2`
`15:16.47`	`niv_one_three`	`and the two are attached to one pc with two NIC accordingly`
`15:19.47`	`antiphase`	`192.169 isn't a reserved address range, as it happens`
`15:20.56`	`antiphase`	`The whole point of subnets is that they represent a set of addresses that are usable on the same network segment`
`15:21.13`	`antiphase`	`Anything outside of that segmentwill have to be routed elsewhere by a router`
`15:21.26`	`jcookeman`	`Who wants a quick pint in the west end?`
`15:23.28`	`tripitaka`	`niv_one_three: this may help http://www.subnetmask.info/`
`15:23.56`	`tripitaka`	`for best results, draw a diagram of what you have/want with interface names, IP addresses etc`
`15:24.44`	`antiphase`	`They lose, simply by virtue of using the term "Class A/B/C" and not mentioning CIDR anywhere`
`15:25.00`	`antiphase`	`Surely there's a decent up-to-date networking tutorial _somehwere_?`
`15:25.01`	`jcookeman`	`antiphase: yes`
`15:35.53`	`morsing`	`Beer`
`15:38.36`	`jcookeman`	`<jcookeman> Who wants a quick pint in the west end?`
`15:39.10`	`boudiccas`	`jcookeman; you buying?`
`15:39.21`	`jcookeman`	`yeah I'll get first round`
`15:45.52`	`*** join/#gllug AnneC (n=AnneC@cmarfw01.marlow.spinvox.com)`
`15:49.13`	`*** join/#gllug mylesbraithwaite (n=mylesbra@CPE0050181121d5-CM0012254493da.cpe.net.cable.rogers.com)`
`15:55.36`	`morsing`	`mylesbraithwaite!`
`16:00.11`	`niv_one_three`	`sorry my bad ment to write 192.168.1.1 and 192.168.1.2`
`16:01.09`	`niv_one_three`	`yes I do understand some of the subnet idea`
`16:01.38`	`niv_one_three`	`as for my question, I am aware the switch inside "home-routers" is limited to a small subnet`
`16:02.12`	`niv_one_three`	`what I asked is if its ok to put two switchs (which are in two home routers) in the same subnet`
`16:02.20`	`antiphase`	`Simple switches don't know about subnets`
`16:02.29`	`niv_one_three`	`i am not gona use their NAT function any way`
`16:02.39`	`niv_one_three`	`thanks anti`
`16:03.17`	`tripitaka`	`niv_one_three: please list all the hardware devices you have, and how they are interconnected.`
`16:03.40`	`niv_one_three`	`I need a bit more time for this`
`16:07.48`	`niv_one_three`	`anti, so may the switch inside the home router, be used for two different subnets?`
`16:08.54`	`niv_one_three`	`say I use 192.168.1.0/24 for a lan I trust and 192.168.2.0/24 for a guest lan?`
`16:09.59`	`antiphase`	`All a switch does is move packets between ports which are asociated with a particular MAC address`
`16:10.16`	`antiphase`	`Any higher level logic is the responsibility of another device`
`16:10.57`	`antiphase`	`See "Layer 2" and "ARP"`
`16:12.20`	`niv_one_three`	`so it only saves the ARP of each associated port`
`16:12.33`	`niv_one_three`	`very well`
`16:12.46`	`antiphase`	`The switch is only aware of which MAC address is available through each port`
`16:13.13`	`antiphase`	`ARP is a higher level protocol which associates IP addresses (L3) with MAC addresses (L2)`
`16:13.26`	`niv_one_three`	`but it needs to know from which port to pass info to what target port ?`
`16:14.13`	`niv_one_three`	`how does the switch knows to move a packet from port 1 MAC1 to port 2 MAC2?`
`16:14.31`	`niv_one_three`	`min, I think I know`
`16:14.48`	`niv_one_three`	`the port that send the info has the target mac in the packet`
`16:14.49`	`antiphase`	`Because the header that is put onto the packet when it leaves a device has a destination MAC address in it`
`16:14.49`	`niv_one_three`	`right?`
`16:14.54`	`jcookeman`	`niv_one_three: a switch use what's called content-addressable memory (CAM)`
`16:15.19`	`niv_one_three`	`right right - I remember how it all fits. thanks`
`16:15.20`	`jcookeman`	`ASICs, or hardware, keep track of what macs are on what port`
`16:15.29`	`jcookeman`	`and forward the frames based on this memory`
`16:16.25`	`niv_one_three`	`can a switch block "magic packet" the kind used for wake on lan?`
`16:16.30`	`jcookeman`	`the answer to your question about multiple subnets on your routers switch is most certainly no`
`16:16.33`	`Leeds`	`"who holds back the electric car, who makes Steve Guttenberg a star?"`
`16:16.33`	`niv_one_three`	`i think its a UDP packet`
`16:17.19`	`niv_one_three`	`jcookeman: why not?`
`16:17.57`	`jcookeman`	`because most consumer routers will not support that`
`16:18.39`	`jcookeman`	`what you are trying to do is vlan and vlan routing`
`16:19.06`	`jcookeman`	`there are some higher end Cisco home office products that can do it`
`16:19.10`	`niv_one_three`	`nothing to do with vlan mate`
`16:19.35`	`clive-h`	`WRT54G's will do vlan`
`16:19.37`	`niv_one_three`	`well, I must go home now`
`16:19.45`	`niv_one_three`	`thnaks all`
`16:19.53`	`jcookeman`	`you want two subnets on the same switch?`
`16:19.53`	`niv_one_three`	`have a safe way home`
`16:19.56`	`jcookeman`	`cheers`
`16:20.06`	`niv_one_three`	`you want two subnets on the same switch? -> yes I do`
`16:20.11`	`clive-h`	`on different ports i think`
`16:20.17`	`jcookeman`	`yes you need vlans`
`16:20.18`	`niv_one_three`	`rioght`
`16:20.54`	`antiphase`	`You don't need to use vlans, it's less crude though :)`
`16:20.55`	`niv_one_three`	`<PROTECTED>`
`16:21.11`	`jcookeman`	`yes you dont need vlans, but it's considered bad practice`
`16:21.32`	`jcookeman`	`anyway, what about those beers lads?`
`16:51.19`	`*** join/#gllug bilarh_ (n=henrik@bilar.co.uk)`
`18:54.19`	`morsing`	`~seen AnneC`
`18:54.21`	`ibot`	`annec is currently on #gllug (3h 8m 29s), last said: '(take it as either 1) morsing talk 2) yahoo! talk) !!'.`
`18:56.32`	`*** join/#gllug Avnit (i=22@gateway/tor/x-2596d51c36ccb17c)`
`18:57.06`	`morsing`	`Avnit!`
`19:10.16`	`*** join/#gllug goibhniu (n=cillian@87-194-36-120.bethere.co.uk)`
`19:15.07`	`morsing`	`goibhniu!`
`19:15.37`	`*** join/#gllug mylesbraithwaite (n=mylesbra@206-248-178-183.dsl.teksavvy.com)`
`19:15.44`	`morsing`	`mylesbraithwaite!`
`19:18.04`	`hali`	`roast beef ftw!`
`19:19.08`	`morsing`	`goibhniu: Where did AnneC go?`
`19:19.37`	`goibhniu`	`morsing: she uses a mac`
`19:19.53`	`goibhniu`	`she needs to reboot every 30 mins I think`
`19:21.11`	`goibhniu`	`or maybe she's just enjoying IRL`
`19:26.44`	`morsing`	`How can anyone enjoy IRL? It's a necessity`
`19:27.59`	`goibhniu`	`I thought my phone line was broken there for 30 mins or so ... scary shit`
`19:28.05`	`morsing`	`:)`
`19:28.07`	`goibhniu`	`I think it's just my phone that's broken`
`19:28.18`	`morsing`	`Well, you're still here`
`19:28.54`	`morsing`	`Thankfully`
`19:29.29`	`goibhniu`	`I was away in IRL for a while though ... I was sweating ... pulling wires from behind wardrobes ... pressing buttons on a telephone ... it was horrible`
`19:30.05`	`*** join/#gllug catalyst (n=catalyst@jamesmorse.plus.com)`
`19:32.50`	`*** join/#gllug kevc (n=kev@kerouac.projectcolo.org.uk)`
`19:35.16`	`gw280`	`PIEPIEPIEPIEPIEPIEPIEPIE`
`19:44.02`	`hali`	`nice beavers on bbc2`
`19:47.53`	`morsing`	`catalyst!`
`19:47.56`	`morsing`	`catalyst: You're back!`
`19:48.02`	`morsing`	`kevc!`
`19:48.17`	`morsing`	`goibhniu: :(`
`19:48.23`	`catalyst`	`I guess I sort of am :o`
`19:48.29`	`morsing`	`catalyst: How have you been?`
`19:48.36`	`catalyst`	`bit tired`
`19:48.42`	`morsing`	`Sounds nice!`
`19:49.56`	`kevc`	`hi`
`19:51.31`	`goibhniu`	`what's down kevc`
`19:54.51`	`goibhniu`	`welcome to london!`
`19:55.08`	`goibhniu`	`east side I hope?`
`19:55.45`	`kevc`	`north east`
`19:55.56`	`goibhniu`	`:D`
`19:56.28`	`hali`	`west is nicer`
`19:56.34`	`hali`	`people are much friendlier`
`19:56.39`	`hali`	`less chavs`
`19:56.53`	`hali`	`and people don't say "init" all the time`
`19:56.56`	`hali`	`nor call you 'mate'`
`19:57.01`	`goibhniu`	`less grimey tho`
`19:57.21`	`hali`	`the only downside with west is the freaking cost`
`19:57.25`	`goibhniu`	`it sounds like cambridge or somewhere crap like that`
`19:57.35`	`kevc`	`i quite like grimey`
`19:57.51`	`kevc`	`cheap and cheerful`
`20:04.14`	`goibhniu`	`kevc how do you like it so far?`
`20:05.57`	`morsing`	`goibhniu: I thought you lived in Wales?`
`20:06.25`	`goibhniu`	`you must be thinking of another goibhniu`
`20:08.34`	`kevc`	`goibhniu: it's alright`
`20:15.31`	`morsing`	`goibhniu: Oh... yeah. you're right, it's the other goibhniu I know`
`20:15.51`	`morsing`	`goibhniu: So why didn't you come for a drink last Friday?`
`20:17.44`	`goibhniu`	`I was after working about 46 hours straight`
`20:17.58`	`goibhniu`	`but thanks for noticiing`
`20:18.41`	`goibhniu`	`I'll be at the gllug meeting on the 22nd`
`20:19.06`	`goibhniu`	`you could have taken pictures of me if you hadn't already made other plans`
`20:27.49`	`morsing`	`goibhniu: :( I'm sorry, didn't mean to upset you`
`20:28.18`	`goibhniu`	`nah it's fine ... I mean ... you'll just have to take pictures of someone else`
`20:28.24`	`goibhniu`	`I'm not hurt or anything`
`20:28.44`	`kevc`	`london doesn't seem to have that big a geek scene?`
`20:29.09`	`goibhniu`	`nah ...mainly lots of rugby enthusiasts ... and tourists`
`20:29.18`	`kevc`	`lots of groups with 2.0 in the title`
`20:30.06`	`goibhniu`	`I believe there are some 2600 meetings from time to time`
`20:30.19`	`morsing`	`~seen floo`
`20:30.21`	`ibot`	`floo <n=gary@host-84-9-83-134.bulldogdsl.com> was last seen on IRC in channel #gllug, 287d 23h 47m 44s ago, saying: 'I can always run linux from cd or dual boot'.`
`20:30.28`	`morsing`	`goibhniu: :(`
`20:30.44`	`goibhniu`	`there is the hacklab and consume.net ... but they may be dead`
`20:30.50`	`kevc`	`seems so`
`20:30.55`	`kevc`	`and nodel?`
`20:31.05`	`goibhniu`	`never heard of it`
`20:31.09`	`kevc`	`there you go`
`20:31.18`	`kevc`	`there is dorkbot, but not really my scene`
`20:31.21`	`goibhniu`	`the open map thing seems to have somefollowing`
`20:31.35`	`goibhniu`	`never heard of dorkbot either`
`20:32.01`	`goibhniu`	`I'm only really into the biggotry myself`
`20:32.09`	`morsing`	`Beer`
`20:32.24`	`kevc`	`I'm all for that`
`20:33.31`	`goibhniu`	`there seem to be perl piss-ups fairly often`
`20:33.58`	`kevc`	`yeah`
`20:34.05`	`kevc`	`unfortunately perl makes my eyes bleed`
`20:34.17`	`kevc`	`the doctor advised against it`
`20:34.22`	`goibhniu`	`I think they just drink though`
`20:56.58`	`morsing`	`G'night`
`21:16.44`	`gregj`	`what again`
`21:17.28`	`gregj`	`morsing: I'm not mean :) I am nice, etc,just don't know what you are asking about :)`
`21:19.00`	`*** join/#gllug Armand (n=armand@82-44-154-93.cable.ubr02.haye.blueyonder.co.uk)`
`21:19.41`	`Armand`	`Hiya. :)`
`21:37.24`	`*** join/#gllug Avnit (i=22@gateway/tor/x-32ec91dfe5e87788)`
`22:08.36`	`*** join/#gllug chris- (n=chatzill@crag1.plus.com)`
`22:09.08`	`*** join/#gllug Provito (n=Provito@pdpc/supporter/sustaining/Provito)`
`22:11.07`	`*** join/#gllug chris- (n=chatzill@crag1.plus.com)`
`22:12.55`	`*** join/#gllug stu_ (n=stu@halls-129-31-69-208.hor.ic.ac.uk)`
`22:22.32`	`*** join/#gllug chris- (n=chatzill@crag1.plus.com)`

Generated by irclog2html.pl Modified by Tim Riker to work with infobot.