>1< | 2 | 3 We were checking out the various servers that we administer and noticed that one of our hosts is not up to the latest version of BIND. Yum update wasn’t giving us joy, so we grabbed the latest version of BIND: # wget http://ftp.isc.org/isc/bind9/9.5.0-P2/bind-9.5.0-P2.tar.gz –07:10:17– http://ftp.isc.org/isc/bind9/9.5.0-P2/bind-9.5.0-P2.tar.gz Resolving ftp.isc.org… 204.152.184.110, 2001:4f8:0:2::18 Connecting […]
Replace Aging BIND on Virtual Dedicated Host – Part 1 – Compile BIND 9.5.0-P2
Replace Aging BIND on Virtual Dedicated Host – Part 2 – Rip Out Old RPMs
1 | >2< | 3 We are ripping out the old RPMs. Let’s figure out what RPMs they are: # rpm -qa | grep bind bind-9.3.4-8.P1.fc6 bind-libs-9.3.4-8.P1.fc6 Let’s start removing them: # rpm -e bind-libs-9.3.4-8.P1.fc6 error: Failed dependencies: libbind9.so.0 is needed by (installed) bind-9.3.4-8.P1.fc6.i386 libdns.so.22 is needed by (installed) bind-9.3.4-8.P1.fc6.i386 libisc.so.11 is needed by (installed) […]
Replace Aging BIND on Virtual Dedicated Host – Part 3 – Modify SysV Init Scripts and PID Home
1 | 2 | >3< We need a directory for the PID, and put it in /var/run/named: # mkdir /var/run/named # ls -ld /var/run/named drwxr-xr-x 2 root root 4096 Aug 3 07:58 /var/run/named # chown named /var/run/named # chgrp named /var/run/named # ls -ld /var/run/named drwxr-xr-x 2 named named 4096 Aug 3 07:58 /var/run/named # […]
Verifying and Setting Recursion with DiG and BIND
There is another flurry of interest in DNS cache poisoning. The first thing that you should do is turn off recursion if you don’t need it. One way to determine this is with DiG: $ dig -v DiG 9.5.0-P2 $ Verizon operates a well known server that does recursive lookups: $ dig @4.2.2.3 example.com ; […]
Troubleshooting RAS with Device and PPP logs
Two files can be used to troubleshoot RAS problems: device.log and ppp.log. These files need to be enabled in the registry. For device.log, set HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters\Logging to 1. (default is 0) This will show you the communication between the server and the modem. For ppp.log, set HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\PPP\Logging to 1. (default is 0) This will help you […]
LDAP / Palm OS integration
One problem we’ve always had here at NetAdminTools is the management of our various contacts databases. For the most part we use our Palm OS databases. The problem is that it is difficult to synchronize between various Palm OS databases. An even more nasty problem is that it is quite difficult under Linux to synchronize […]
Subnet Reference Guide + Perl script to generate it
Here is our subnet reference guide and The Perl script used to generate it If you want an easy to use subnetting calculator, Subnet-Calculator.org is one of the best ones we’ve seen online. Subnet Reference Guide — Value of individual bits in an eight bit byte if true: Bit 7 = 128 Bit 6 = […]
Latency Tips
If you have a WAN, then one very important concern should be latency. Latency, in this case, is the time that a package of information takes to reach the other end of the slow link. This package of information could be a DNS query, ping, file, or a transaction in a client/server application. Notice that […]
Cisco IOS Upgrade
There are some nasty, nasty SNMP vulnerabilities that have recently been revealed. Many different products are affected. See the CERT Advisory Here. This inspired us to upgrade our Cisco. To upgrade the IOS on your Cisco router, you have a couple of options. You can either upgrade via TFTP, or you can use the console. […]
Recycling a Watchguard Firebox FB10
We picked up a Watchguard Firebox FB-10R from RE-PC (Tukwila) for 15 bucks. There is almost always some kind of auction on Ebay selling a Firebox FB-10. The motherboard on ours, it turns out, was damaged. Now the Firebox FB-10R is just a regular PC clone. It has three 3COM 3C509 NICs in it. We […]
Installing a TFTP Server on Red Hat 8.0
In this story we showed how to upgrade IOS on a Cisco using a TFTP server available from Cisco that ran on Windows. Well, just suppose you wanted to load a new IOS image from a TFTP server on a GNU/Linux box. We will use Red Hat 8.0 to provide a TFTP server. First, install […]
Firewall on a Floppy
Check out floppyfw for a simple firewall and IP sharing device. No hard drive is needed, and 16 megs of RAM is more than enough. The instructions on the site and in the comments in the config files are quite easy to follow. One somewhat tricky problem is if you are using a network card […]
Some Useful RFCs
HTTP: RFC 2068 POP3: RFC 1725 SMTP: RFC 821 FTP: RFC 959
Installing Network Probe
Network Probe is a free network monitor and protocol analyzer that runs on Windows NT/2K/XP, Linux, FreeBSD, Solaris (Intel), and Mac OS X. We downloaded the Linux version by filling out the form here. The form wasn’t too intrusive, and the email with the download information came back quickly. We used version 0.4 for this […]
Setting Up Network Load Balancing on Windows 2000 Advanced Server
Network load balancing is a service that comes with Windows 2000 Advanced Server (not plain old Windows 2000). In this article we will set up Network Load Balancing on a cluster of two systems and test via the telnet service. The Network Load Balancing service is unlike other popular load balancing schemes like Red Hat […]
Using the WLBS CLI tool to Control Network Load Balancing on Windows 2000 Advanced Server
In order to use the WLBS CLI, you need to enable remote control: The WLBS CLI lives as wlbs.exe in system32. Query the cluster: C:\>wlbs query 10.50.100.10 /passw WLBS Cluster Control Utility V2.3. (c) 1997-99 Microsoft Corporation Password: Accessing cluster ‘10.50.100.10’ (10.50.100.40): Host 7 (10.50.100.17) reported: converged Host 1 (10.50.100.11) reported: converged as DEFAULT Host […]
Initial MRTG Configuration
MRTG is a monitoring tool for traffic loads on network-links. It will create HTML pages with visual representation of both the current and historical load on the device. The server we will use for this article is the Gentoo box we built in this article. With Gentoo, we simply run emerge and a bunch of […]
Creating a PPP Connection to a Cisco Aux Port
In this article, we set up MRTG to monitor an old Cisco 1720 router. Now, it is nice to have *two* interfaces on a lab router so that you can route between two physical interfaces. We tried adding a second FastEthernet module instead of the T1 module we have, but the firmware was too old. […]
Using the Ping -f Option to Test for Lost Packets
There is a cool option on some versions of ping. With the -f option, a dot is printed for each ping sent, and a backspace is printed when a ping is received. This gives you an instant visualization of the lost packets. Hit ctrl-c to end the task, and you will then see the latency […]
AreWeDown Trace/Latency Tool
We wrote up a tool that will generate a latency and trace report based on your IP address. Note that this is the IP address that the web server detects your client has. First it pings your IP address with 50 pings or 5 seconds worth of pings, whatever is the most restrictive. If 50 […]
