[10:26] <bip> anybody has experince with ltsp running on dapper ?
[10:37] <fabbione> bip: -> #edubuntu
[10:37] <bip> ok
[10:37] <bip> grazie fabbione
[10:37] <bip> ma ho risolto ;-)
[10:37] <bip> maybe ;-)
[04:01] <Bakgat> hi all
[04:02] <Bakgat> anyone here well versed in networking on an ubuntu system (interfaces, shorewall, etc)
[04:02] <Pygi> Bakgat: what exactly do you need?
[04:02] <Bakgat> Hi Pygi
[04:02] <Pygi> Hi Bakgat
[04:03] <Bakgat> I've set up a mail server based on instuctions from http://flurdy.com/docs/postfix/#install_pack
[04:03] <Bakgat> very detailed & helpfull
[04:04] <Bakgat> Everything seems to have gone ok (took me better part of a whole day to set up). but i ca't seem to access the networks.
[04:04] <Bakgat> I originally set it up with only a single NIC, detailed in /etc/network/interfaces
[04:05] <Bakgat> i've atempted to fill in as much detail in /etc/shorewall/* , but i seem to have missed something, cause if i ifconfig, i only c the loopback
[04:06] <Bakgat> this box is going 2 act as mail & web server from a dnz zone. i have a seperate box that acts as a router/firewall/proxy/etc
[04:08] <Bakgat> my firewall will transparrently route traffic & handle security from internet, wired network, wireless network & dmz, but that's a topic 4 another day
[04:08] <Bakgat> where do we start?
[04:09] <Bakgat> the mail service & some other services seem ok
[04:09] <Bakgat> i just can't get the nic to gell
[04:15] <Bakgat> Pygi, u still there?
[04:16] <Pygi> Bakgat: not really, and yes :-/
[04:21] <Bakgat> so, what do u suggest?
[04:23] <Pygi> tried restarting "networking"?
[04:24] <Bakgat> yip
[04:24] <infinity> You're configureing your network in /etc/network/interfaces?
[04:25] <infinity> And does "ifup eth0" (or whatever interface) work?
[04:25] <Bakgat> yip. will give detail soon
[04:25] <Bakgat> nope
[04:25] <infinity> Do you get any errors?
[04:25] <Bakgat> networking/interfaces set to dhcp 4 now
[04:25] <Bakgat> checking log not
[04:26] <Bakgat> now
[04:26] <ivoks> ifconfig | grep eth0
[04:26] <ivoks> check out if kernel recognized your nic as eth0
[04:26] <ivoks> or maybe some other nic is eth0 (this is not so rare as it seems)
[04:26] <Bakgat> ok. where/how do i do that?
[04:27] <Bakgat> ifconfig only lists loopback
[04:27] <ivoks> in konsole/terminal
[04:27] <infinity> "ifconfig -a" to show interface that aren't up.
[04:27] <Bakgat> ok. hang on
[04:27] <infinity> s/interface/interfaces/
[04:27] <ivoks> may bad...
[04:27] <ivoks> dmseg | grep eth0
[04:27] <ivoks> not ifconfig :)
[04:28] <Bakgat> cool! sees all nic, just not assigning adddr.
[04:28] <Bakgat> not seeing dmseg cmd
[04:28] <infinity> Kay, then your /etc/network/interfaces is wrong. :)
[04:29] <ivoks> mii-tool?
[04:29] <Bakgat> mii-tool, check
[04:29] <Bakgat> eth0: Bad addr, eth1 op not supp
[04:30] <Bakgat> no MII interfaces found
[04:31] <Bakgat> bad network/interfaces?
[04:34] <ivoks> eth0: bad addr?
[04:34] <Bakgat> will set interfaces 2 static in interfaces
[04:34] <ivoks> huh?
[04:34] <ivoks> your eth0 gets ip from dhcp?
[04:35] <Bakgat> mii-tool reports SIOCGMIIPHY on 'eth0' failed: Bad Address
[04:35] <Bakgat> for now
[04:35] <Bakgat> wil set to static
[04:35] <ivoks> dont
[04:35] <ivoks> do ifdown eth0
[04:35] <ivoks> and then manually get address from dhcp
[04:35] <ivoks> dhclient eth0
[04:36] <Bakgat> sit0: unknown hardware addr type 776
[04:37] <Bakgat> do u have skype addr? typing's a schlep
[04:37] <ivoks> nope
[04:38] <Bakgat> ok
[04:39] <ivoks> forget about sit0
[04:39] <ivoks> what did it tell you about eth0?
[04:39] <Bakgat> no-go. hardware. let me just reboot with single nic
[04:43] <Bakgat> sweet! got a DHCP lease (192.168.0.232), but not I need to set it up as static (192.168.0.100/255.255.255.0 for test & config, but 192.0.0.10/255.255.255.0 in production)
[04:44] <ivoks> i told you to run dmsg | grep eth0
[04:44] <ivoks> that other nic was eth0, and the second one was eth1
[04:46] <Bakgat> disabled eth1 in bios, dmesg picks up on eth0. gives hardware id, mac, irq, link up, no ip6 routers
[04:47] <Bakgat> i can c the apache server via http, but other services to working (phpmyadmin, squirrelmail)
[04:47] <Bakgat> *other services not working*
[04:48] <infinity> Bakgat: dID YOU JUST SAY 192.0.0.10?
[04:48] <infinity> Bakgat: Erm, caps lock, sorry.
[04:48] <infinity> Bakgat: But, I hope that was a typo.  192.0.0.0 is a routable subnet, not a private one.  People own that IP address. :)
[04:48] <ivoks> infinity: people think 192.x.x.x is public :)
[04:49] <ivoks> infinity: i saw one big company with 192.192.x.x for private network :)
[04:49] <Bakgat> once in production i'll change the networkning & shorewall. i'm setting up the server @ home office
[04:49] <infinity> ivoks: You mean private, I assume. :)
[04:49] <ivoks> infinity: right :)
[04:49] <infinity> Bakgat: In the 192 space, ONLY 192.168.0.0 is private, no other 192.x subnets.
[04:50] <infinity> (If you really need more IPs than a class B, though that seems unlikely, use 10.0.0.0, which is entirely private)
[04:50] <ivoks> Bakgat: if you need class A, take 10.x.x.x
[04:50] <ivoks> lol
[04:50] <Bakgat> i'm planning the networks from my firewall's PoV into 3 seperate network classes. DNZ in class C, wired network class B, wireless class A. have i got it wrong?
[04:50] <infinity> And I always forget the other one... 172.something?
[04:51] <infinity> Bakgat: Almost certainly.
[04:51] <ivoks> infinity: that one i froget too...
[04:51] <ivoks> Bakgat: you need three class C networks
[04:51] <infinity> Well, or three much smaller networks.
[04:51] <Bakgat> been a while since i've done subnetting, so i'm a bit rusty. used a subnet calc to determine networks
[04:51] <infinity> classless subnetting is the future.
[04:51] <ivoks> Bakgat: for example, 192.168.1.x, 192.168.2.x and 192.168.3.x
[04:52] <ivoks> why bother with subnetting?
[04:52] <ivoks> in this case...
[04:52] <Bakgat> i'd like to seperate networks by subnets so that one network cant accidentaly stumble upon another
[04:52] <ivoks> subnetting is ok only for public subnets
[04:53] <maswan> infinity: 172.16 - 172.31
[04:53] <ivoks> maswan: right :)
[04:53] <infinity> maswan: Thanks, you ever-loving fount of useless knowlege. :)
[04:53] <maswan> We use that here, actually
[04:53] <infinity> Sure, use the one that's hardest to remember.  Makes sense.
[04:54] <ivoks> :)
[04:54] <infinity> I always use 10.0.0.0, because I'm a lazy typist. :)
[04:54] <maswan> Since 10.x is used by the networking people and 192.168 is used alot
[04:54] <maswan> Ok, as long as the campus networking people do things right, we never notice. But... ;)
[04:54] <Bakgat> ok. lets assume this server will sit @ 192.168.0.10/255.255.255.0
[04:54] <ivoks> Bakgat: that's ok
[04:55] <Bakgat> i'd still like to put my other networks on seperate subnets, but that's an exercise for another day
[04:55] <ivoks> Bakgat: ?
[04:55] <ivoks> Bakgat: put the other one in 192.168.1.x
[04:55] <ivoks> and there you have it
[04:56] <Bakgat> I'll go mod my networks/interfaces file quiqly. cool?
[04:56] <ivoks> on different subnets, one can't go to the other
[04:56] <Bakgat> that's the idea
[04:56] <infinity> Well, not really true.
[04:56] <infinity> If they're the same physical network, you can easily hop from one to the other.
[04:56] <ivoks> infinity: what's true these days? :)
[04:56] <Bakgat> the router/firewall must handle routing (i use IPCop)
[04:56] <infinity> But, shhh.
[04:56] <ivoks> infinity: nothing can prevent that :)
[04:57] <Bakgat> i'm looking @ LDAP on a seperate server, but also an exercise for another day
[04:57] <infinity> I was rather surprised to discover that my AUD 150 hunk of junk DSL modem/router actually does VLAN switching.
[04:57] <infinity> Not that I need VLANs at home, but neat anyway.
[04:58] <ivoks> ah, i'm using wifi broadband :)
[04:59] <Bakgat> ok, so I set my networks/interfaces to static as detailed in http://flurdy.com/docs/postfix/#install_pack
[04:59] <Bakgat> now what
[05:00] <Bakgat> net to fix static 2 nic
[05:00] <Bakgat> do I need to set up shorewall next?
[05:01] <Bakgat> would eth0 b net or loc on shorewall in the current stup
[05:01] <Bakgat> would eth0 b 'net' or 'loc' on shorewall in the current setup?
[05:10] <Bakgat> cool. set up my dhcp server to issue lease to server based on mac (will lock down later)
[05:12] <Bakgat> now, how do I configure my shorewall files (bit confising)