[App_rpt-users] App_rpt-users Digest, Vol 59, Issue 22

Brian Burton kb3ors at gmail.com
Sun Jan 12 21:00:18 UTC 2014


On Sun, Jan 12, 2014 at 2:58 PM, <app_rpt-users-request at ohnosec.org> wrote:

> Send App_rpt-users mailing list submissions to
>         app_rpt-users at ohnosec.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> or, via email, send a message with subject or body 'help' to
>         app_rpt-users-request at ohnosec.org
>
> You can reach the person managing the list at
>         app_rpt-users-owner at ohnosec.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of App_rpt-users digest..."
>
>
> Today's Topics:
>
>    1. Re: Incoming connects (Johnny Keeker)
>    2. Re: PATA SSD drives (David McGough)
>    3. Re: RPM's & Virtuozzo (Bob - AF6D)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sun, 12 Jan 2014 09:11:20 -0800 (PST)
> From: Johnny Keeker <cypresstower at yahoo.com>
> To: Lu Vencl <vencl at att.net>, Jim W7RY <w7ry at centurytel.net>
> Cc: "app_rpt-users at ohnosec.org" <app_rpt-users at ohnosec.org>
> Subject: Re: [App_rpt-users] Incoming connects
> Message-ID:
>         <1389546680.78092.YahooMailNeo at web163604.mail.gq1.yahoo.com>
> Content-Type: text/plain; charset="utf-8"
>
> I had a port forwarding issue with a Xipar node on its own ISP. I bypassed
> the router for testing purposes ONLY. The router was blocking the ports.?
> Seeing I had to wait for another router to arrive, I decided to leave the
> node unprotected just to see if Hackers would actually find it.? With in a
> day, there were so many hits, I couldn't type a single character without it
> scrolling off the screen.? I let it run away with itself until I got
> another router, then powered down the modem, hooked up the router. I waited
> before applying power to the modem. I got a different IP, everything was
> fine after that.....????
> JK?
> knowledge is experience!!!?
>
>
WAN has several nodes, running XIPAR exclussively, right on the interenet
with no problems. IPtables must be utilized.. Built in firewall in just
about any linux version..






> ________________________________
> From: Lu Vencl <vencl at att.net>
> To: Jim W7RY <w7ry at centurytel.net>
> Cc: "app_rpt-users at ohnosec.org" <app_rpt-users at ohnosec.org>
> Sent: Sunday, January 12, 2014 7:48 AM
> Subject: Re: [App_rpt-users] Incoming connects
>
>
>
> Hope you at least have employed a firewall such as via webmin. ?Hackers
> are likely to be targeting your box some day. Just saying from experience.?
>
> Sent from my iPhone, Lu Vencl
>
> On Jan 12, 2014, at 1:00 AM, Jim W7RY <w7ry at centurytel.net> wrote:
>
>
> One of the very first things to do when testing connection issues is to
> put the node in the DMZ of the router. Easy, simple and can quickly
> eliminate lots of settings.
>
> In fact, my node is on the DMZ with a strong password. Never had an issue.
>
> 73
> Jim W7RY
>
>
> On 1/11/2014 7:21 PM, Doug Crompton wrote:
>
> OK I think this is solved. Unfortunately it is hard to diagnose all
> problems when you have an inexperienced person at the other end.
> >
> >It turns out the router was forwarding the right port BUT it was set to
> tcp instead of udp.? I had gone over this several times with the operator
> and I had thought it was right but when we looked at it again it was wrong.
> >
> >When set in the tcp mode it did accept connections but only for a short
> window of time after a prior disconnect from the other direction.
> >
> >Thanks for all the input and sorry to cause all the back and forth on
> this. I learned that you have to be extremely concise when dealing with
> someone remotely who is inexperienced!
> >
> >73 Doug
> >WA3DSP
> >http://www.crompton.com/hamradio
> >
> >
> >
> >
> >________________________________
> >Subject: Re: [App_rpt-users] Incoming connects
> >From: tim.sawyer at mac.com
> >Date: Fri, 10 Jan 2014 20:29:46 -0800
> >CC: app_rpt-users at ohnosec.org
> >To: doug at crompton.com
> >
> >Do a ?tcpdump port 4569? at the Linux command line and incite a connect
> from another node. You should see inbound packets.
> >
> >
> >I have seen ISP?s block port 4569 but not FiOS. I?m on FiOS with an
> actiontek router and it works fine.
> >
> >--
> >Tim
> >:wq
> >
> >On Jan 10, 2014, at 7:41 PM, Doug Crompton <doug at crompton.com> wrote:
> >
> >I am remotely trying to troubleshoot a friends new Allstar installation.?
> I can ssh in and connect out to nodes but I cannot connect in to the system
> from external nodes. Port 4569 is forwarded.
> >>
> >>I discovered this link -
> >>
> >>http://www.voip-info.org/wiki/view/IAX
> >>
> >>about consistent NAT and I was wondering if that might be the problem.
> >>
> >>I was able to connect in one time right after a reboot which might
> support the NAT issue.
> >>
> >>The router is an Actiontek MI424WR GigE? as supplied by Verizon on their
> FIOS system.
> >>
> >>Is anyone else having a problem with this router or have any ideas on
> this??
> >>
> >>Nothing is logged at the server or shows up in the client on the system
> which kind of points to a routing failure.
> >>
> >>Is there a good way to check for open port 4569 as I don't think normal
> port scan programs will check this.
> >>
> >>73 Doug
> >>WA3DSP
> >>http://www.crompton.com/hamradio
> >>_______________________________________________
> >>App_rpt-users mailing list
> >>App_rpt-users at ohnosec.org
> >>http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> >
> >
> >
> >_______________________________________________
> App_rpt-users mailing list App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
>
> _______________________________________________
> >App_rpt-users mailing list
> >App_rpt-users at ohnosec.org
> >http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> >
>
> _______________________________________________
> App_rpt-users mailing list
> App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://ohnosec.org/pipermail/app_rpt-users/attachments/20140112/ffa98818/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 2
> Date: Sun, 12 Jan 2014 13:18:00 -0500 (EST)
> From: David McGough <kb4fxc at inttek.net>
> To: Keith Goobie <keith at goobie.org>
> Cc: "app_rpt-users at ohnosec.org" <app_rpt-users at ohnosec.org>
> Subject: Re: [App_rpt-users] PATA SSD drives
> Message-ID:
>         <Pine.LNX.4.44.1401121316430.16158-100000 at goliath.inttek.net>
> Content-Type: TEXT/PLAIN; charset=ISO-8859-1
>
>
> I will 2nd Keith's comments. I run thru a rash of Crucial SATA SSD's in
> the 128GB (more or less) class that seem to fail after a few weeks of use.
> VERY annoying!!!
>
>
>
> On Sun, 12 Jan 2014, Keith Goobie wrote:
>
> > Doug
> >
> > I would be extremely leery about the use of Crucial SSD?s.  While they
> have
> > been a strong product line in the past, their quality control of late has
> > translated into products that do not work.  Most recently they have been
> > accused of flooding the market with product that they know to be
> defective.
> > Buyer beware!
> >
> > We got lured lured in by their defective product, and spent many wasted
> > hours, doing problem analysis and OS rebuilds.  When we dug in further
> > through research on the net, and confirmed what is printed above, we
> > abandoned Crucial and quickly moved to another product.
> >
> > At our remote site we are using OCZ (x2) and SANDISK.  Both have been
> great
> > performers.
> >
> > We are running Centos on all SSD?s. (DNS/Web/Mail, DSTAR and Allstar).
> >
> > Keith / VA3YC
> >
> >
> > On 1/11/14 10:25 PM, "Doug Crompton" <doug at crompton.com> wrote:
> >
> > > Since many of us are using older computers for our servers that have
> PATA hard
> > > drives I was wondering if anyone has installed a replacement SSD and
> if so
> > > what has worked?
> > >
> > > I imagine that the drives are transparent and should have no OS
> problems?
> > >
> > > Here is a link to one that looks like it would work -
> > >
> > >
> http://www.crucial.com/store/ssd.aspx?gclid=CLadwPrT97sCFeFlOgodYwYA0g&cpe=pd_
> > > google_us&ef_id=UtIGvwAABE7D at Wq4:20140112030639:s
> > >
> > > 73 Doug
> > > WA3DSP
> > > http://www.crompton.com/hamradio
> > >
> > >
> > >
> > > _______________________________________________
> > > App_rpt-users mailing list
> > > App_rpt-users at ohnosec.org
> > > http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> >
> >
>
>
>
> ------------------------------
>
> Message: 3
> Date: Sun, 12 Jan 2014 11:58:10 -0800
> From: "Bob - AF6D" <bob at af6d.com>
> To: <app_rpt-users at ohnosec.org>
> Subject: Re: [App_rpt-users] RPM's & Virtuozzo
> Message-ID: <DCF9A169678A45628D308E51B9422287 at desktop>
> Content-Type: text/plain;       charset="us-ascii"
>
> Virtuozzo is the same as a VM (in purpose) but it doesn't work the same way
> as VMWare. Virtuozzo natively installs the current version of Centos as an
> "OS Package" when one creates a "container." This is why I asked about a
> RPM
> or other means of installing core packages of Asterisks.
>
> Virtuozzo is an integrated environment with the ability to "bounce" a
> "container" to another "hardware node" in the event of a hardware failure,
> such as a failing RAID. It has an integrated ability to do a scheduled
> backup do a dedicated back-up server(s). Resources may be allocated at the
> hardware node level or from a master control panel known as HSP. My network
> sits behind a very capable hardware firewall with 100Mbps available at any
> time.
>
> I have a substantial investment in Virtuozzo. I have a dual processor
> dedicated server with RAID sitting next to me capable of running Asterisks
> on its own but on its own it doesn't have the ability to use a very strong
> feature set of Virtuozzo. Virtualization is easy; integrated and managed
> virtualization is a different story.
>
> -----Original Message-----
> From: app_rpt-users-bounces at ohnosec.org
> [mailto:app_rpt-users-bounces at ohnosec.org] On Behalf Of
> app_rpt-users-request at ohnosec.org
> Sent: Sunday, January 12, 2014 6:49 AM
> To: app_rpt-users at ohnosec.org
> Subject: App_rpt-users Digest, Vol 59, Issue 20
>
> Send App_rpt-users mailing list submissions to
>         app_rpt-users at ohnosec.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> or, via email, send a message with subject or body 'help' to
>         app_rpt-users-request at ohnosec.org
>
> You can reach the person managing the list at
>         app_rpt-users-owner at ohnosec.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of App_rpt-users digest..."
>
>
> Today's Topics:
>
>    1. Re: Incoming connects (Lu Vencl)
>    2. Re: PATA SSD drives (Keith Goobie)
>    3. Clipping last 20mS of RX Audio? (Chris Hill)
>    4. Re: RPM's & Virtuozzo (Geoff)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sun, 12 Jan 2014 07:48:19 -0500
> From: Lu Vencl <vencl at att.net>
> To: Jim W7RY <w7ry at centurytel.net>
> Cc: "app_rpt-users at ohnosec.org" <app_rpt-users at ohnosec.org>
> Subject: Re: [App_rpt-users] Incoming connects
> Message-ID: <FEDCB81D-2746-44CA-AC68-2085B3FFD4BF at att.net>
> Content-Type: text/plain; charset="utf-8"
>
> Hope you at least have employed a firewall such as via webmin.  Hackers are
> likely to be targeting your box some day. Just saying from experience.
>
> Sent from my iPhone, Lu Vencl
>
> > On Jan 12, 2014, at 1:00 AM, Jim W7RY <w7ry at centurytel.net> wrote:
> >
> > One of the very first things to do when testing connection issues is to
> put the node in the DMZ of the router. Easy, simple and can quickly
> eliminate lots of settings.
> >
> > In fact, my node is on the DMZ with a strong password. Never had an
> issue.
> >
> > 73
> > Jim W7RY
> >
> >> On 1/11/2014 7:21 PM, Doug Crompton wrote:
> >> OK I think this is solved. Unfortunately it is hard to diagnose all
> problems when you have an inexperienced person at the other end.
> >>
> >> It turns out the router was forwarding the right port BUT it
> was set to tcp instead of udp.  I had gone over this several times with the
> operator and I had thought it was right but when we looked at it again it
> was wrong.
> >>
> >> When set in the tcp mode it did accept connections but only for a short
> window of time after a prior disconnect from the other direction.
> >>
> >> Thanks for all the input and sorry to cause all the back and
> forth on this. I learned that you have to be extremely concise when dealing
> with someone remotely who is inexperienced!
> >>
> >> 73 Doug
> >> WA3DSP
> >> http://www.crompton.com/hamradio
> >>
> >>
> >> Subject: Re: [App_rpt-users] Incoming connects
> >> From: tim.sawyer at mac.com
> >> Date: Fri, 10 Jan 2014 20:29:46 -0800
> >> CC: app_rpt-users at ohnosec.org
> >> To: doug at crompton.com
> >>
> >> Do a ?tcpdump port 4569? at the Linux command line and incite a connect
> from another node. You should see inbound packets.
> >>
> >> I have seen ISP?s block port 4569 but not FiOS. I?m on FiOS with an
> actiontek router and it works fine.
> >> --
> >> Tim
> >> :wq
> >>
> >> On Jan 10, 2014, at 7:41 PM, Doug Crompton <doug at crompton.com> wrote:
> >>
> >> I am remotely trying to troubleshoot a friends new Allstar installation.
> I can ssh in and connect out to nodes but I cannot connect in to the system
> from external nodes. Port 4569 is forwarded.
> >>
> >> I discovered this link -
> >>
> >> http://www.voip-info.org/wiki/view/IAX
> >>
> >> about consistent NAT and I was wondering if that might be the problem.
> >>
> >> I was able to connect in one time right after a reboot which might
> support the NAT issue.
> >>
> >> The router is an Actiontek MI424WR GigE  as supplied by Verizon on their
> FIOS system.
> >>
> >> Is anyone else having a problem with this router or have any ideas on
> this?
> >>
> >> Nothing is logged at the server or shows up in the client on the system
> which kind of points to a routing failure.
> >>
> >> Is there a good way to check for open port 4569 as I don't think normal
> port scan programs will check this.
> >>
> >> 73 Doug
> >> WA3DSP
> >> http://www.crompton.com/hamradio
> >> _______________________________________________
> >> App_rpt-users mailing list
> >> App_rpt-users at ohnosec.org
> >> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> >>
> >>
> >>
> >> _______________________________________________
> >> App_rpt-users mailing list
> >> App_rpt-users at ohnosec.org
> >> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> >
> > _______________________________________________
> > App_rpt-users mailing list
> > App_rpt-users at ohnosec.org
> > http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> <
> http://ohnosec.org/pipermail/app_rpt-users/attachments/20140112/02dfc666/at
> tachment-0001.html>
>
> ------------------------------
>
> Message: 2
> Date: Sun, 12 Jan 2014 07:48:20 -0500
> From: Keith Goobie <keith at goobie.org>
> To: Doug Crompton <doug at crompton.com>,  "app_rpt-users at ohnosec.org"
>         <app_rpt-users at ohnosec.org>
> Subject: Re: [App_rpt-users] PATA SSD drives
> Message-ID: <CEF7F944.293FA%keith at goobie.org>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Doug
>
> I would be extremely leery about the use of Crucial SSD?s.  While they have
> been a strong product line in the past, their quality control of late has
> translated into products that do not work.  Most recently they have been
> accused of flooding the market with product that they know to be defective.
> Buyer beware!
>
> We got lured lured in by their defective product, and spent many wasted
> hours, doing problem analysis and OS rebuilds.  When we dug in further
> through research on the net, and confirmed what is printed above, we
> abandoned Crucial and quickly moved to another product.
>
> At our remote site we are using OCZ (x2) and SANDISK.  Both have been great
> performers.
>
> We are running Centos on all SSD?s. (DNS/Web/Mail, DSTAR and Allstar).
>
> Keith / VA3YC
>
>
> On 1/11/14 10:25 PM, "Doug Crompton" <doug at crompton.com> wrote:
>
> > Since many of us are using older computers for our servers that have PATA
> hard
> > drives I was wondering if anyone has installed a replacement SSD and if
> so
> > what has worked?
> >
> > I imagine that the drives are transparent and should have no OS problems?
> >
> > Here is a link to one that looks like it would work -
> >
> >
>
> http://www.crucial.com/store/ssd.aspx?gclid=CLadwPrT97sCFeFlOgodYwYA0g&cpe=p
> d_
> > google_us&ef_id=UtIGvwAABE7D at Wq4:20140112030639:s
> >
> > 73 Doug
> > WA3DSP
> > http://www.crompton.com/hamradio
> >
> >
> >
> > _______________________________________________
> > App_rpt-users mailing list
> > App_rpt-users at ohnosec.org
> > http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
>
> --
> keith at goobie.org
> Keith Goobie
> Richmond Hill, ON, CANADA
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> <
> http://ohnosec.org/pipermail/app_rpt-users/attachments/20140112/7f645932/at
> tachment-0001.html>
>
> ------------------------------
>
> Message: 3
> Date: Sun, 12 Jan 2014 06:16:49 -0800
> From: Chris Hill <kilo7alphazulu at verizon.net>
> To: app_rpt-users at ohnosec.org
> Subject: [App_rpt-users] Clipping last 20mS of RX Audio?
> Message-ID: <C7B54159-380D-42B7-934B-BF0EC0F78667 at verizon.net>
> Content-Type: text/plain; charset=us-ascii
>
> Greetings Group:
>
> I am looking for the setting that will allow clipping off about 20mS of
> radio received audio to prevent passing squelch burst onto the network.
> Receiver in use has PL and COR gated logic to the URIx but for those users
> without reverse burst PL radios, the noise burst is an issue.
>
> Thanks,
> Chris K7AZ
> 29275
>
> ------------------------------
>
> Message: 4
> Date: Sat, 11 Jan 2014 08:49:26 -0600
> From: Geoff <ars.w5omr at gmail.com>
> To: app_rpt-users at ohnosec.org
> Subject: Re: [App_rpt-users] RPM's & Virtuozzo
> Message-ID: <52D159F6.8040506 at gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"; Format="flowed"
>
>
> On 01/11/2014 03:55 AM, Bob - AF6D wrote:
> >
> > Are RPMs available, or could they be created for those of that run
> > Virtuozzo for Linux by Parallels, as well as other virtualization
> > software? I generally run one-two virtual servers on an Intel quad
> > core XEON for unparalleled performance and have the security of daily
> > backups and the ability to "bounce" a "container" from a failing
> > "hardware node" to another "hardware node." I use CentOS on all of my
> > over 100 machines. All of my motherboards have at least one serial
> > port as do most server boards in production. OpenVZ is the free
> > version of Virtuozzo and serves as the test bed for it. The ability to
> > backup and restore anywhere, as well as to bounce or migrate anywhere
> > have saved my butt many times.
> >
> >
>
> Couldn't you just install from CD into a VM?
>
> or even
> mount -o loop disk1.iso /mnt/point/
>
> There are claims all over this list that acid/allstar/asterisk works
> fine in a VM.
>
>
>
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL:
> <
> http://ohnosec.org/pipermail/app_rpt-users/attachments/20140111/60cee473/at
> tachment.html>
>
> ------------------------------
>
> _______________________________________________
> App_rpt-users mailing list
> App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
>
>
> End of App_rpt-users Digest, Vol 59, Issue 20
> *********************************************
>
>
>
>
> ------------------------------
>
> _______________________________________________
> App_rpt-users mailing list
> App_rpt-users at ohnosec.org
> http://ohnosec.org/cgi-bin/mailman/listinfo/app_rpt-users
>
>
> End of App_rpt-users Digest, Vol 59, Issue 22
> *********************************************
>



-- 
Brian
KB3ORS
Trustee W3WAN
WAN-RS Tech Support
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.keekles.org/pipermail/app_rpt-users/attachments/20140112/42b91a06/attachment.html>


More information about the App_rpt-users mailing list