Berkeley CSUA MOTD:Entry 16368
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/07/08 [General] UID:1000 Activity:popular
7/8     

1999/8/21-24 [Computer/Networking] UID:16368 Activity:high
8/21    Anyone know any reason why my connection to soda would drop after
        a period of inactivity.  I've set up a firewall to block all
        connections below 1024 and I'm guessing that has something to do
        with it.  Any ideas?
        \_ Your firewall is dropping the connection.  You need to increase
           its idle timeout for established TCP connections; if you tell us
           what kind of firewall you have, we can probably help.
           \_ cool, thanks.  it's linux 2.2 ipchains.
              \_ You can use "ipchains -MS 86400 0 0" to increase the timeout
                 to a day.
                 \_ thanks.
        \_ keep alives not keeping alive or you have an idle timeout on your
           shell.
           \_ It was working fine until I moved it behind a firewall.
           \_ What's "keep alives"?
                \_ Soda's TCP stack will send a zero-length packet after
                              \_ never understood why they called TCP a stack.
                                \_ Technically TCP is a layer in the protocol
                                   stack.
                                   \_ You mean that 7 layer OSI model?
                                        \_ No, the similar, but less layered
                                           TCP/IP model.  Some examples:
                                                                NFS
                                                 HTTP           Sun RPC
                                                 TCP            TCP or UDP
                                                 IP             IP
                                                 PPP/SLIP       Ethernet
                                \_ Never understood why the millennium bug is
                                   not called the century bug instead either.
                                        \_ Because millennium sounds more
                                           impressive.  (Both are wrong of
                                           course, since the next century
                                           and next millenium start 1/1/2001).
                   you've been idle for a while to make sure your machine
                   is still alive, to force either an ACK or a RST.  If it
                   gets neither it decides your machine is dead and kills the
                   connection.  Soda is currently set to send a keep alive
                   after 24 hours of inactivity.
2025/07/08 [General] UID:1000 Activity:popular
7/8     

You may also be interested in these entries...
2008/8/5-10 [Computer/Networking] UID:50788 Activity:nil
8/5     It looks like my company has started blocking HTTPS tunneling.
        I used to do this by tunneling SSH through the HTTP/HTTPS proxy
        server, but this seems to have stopped working. Does anyone know
        how the implementation of tunneling detection works, and whether
        there are widely available implementations? We run a bunch of MS
        stuff, so I imagine we're running an MS proxy server or something.
	...
2007/6/28-7/2 [Computer/SW/SpamAssassin] UID:47111 Activity:nil
6/28    Q: What are folks using these days for anti-spam measures?  I'm
        looking for something that integrates with my MTA (postfix) or my
        delivery agent (sieve).  Currently I'm using a crufty version of
        spamassassin wired into postfix via amavisd-new.  It's decent, but I
        don't want to be bothered with manually upgrading spamassassin or
        updating rulesets on a regular basis.  Anyone have any experience
	...
2006/2/18-23 [Computer/Networking] UID:41923 Activity:low
2/18    My DSL modem's ip address is 192.168.0.1, my internal network
        behind my router is 10.0.0.x. Is there a way I can configure
        the router so I can access the DSL modem from my 10.0.0.x
        network directly without re-wiring? Static routes? I tried it
        but no much luck. I also tried changing my internal network to
        192.168.0.x, but still does not work. Thanks.
	...
2006/1/28-31 [Computer/Networking] UID:41585 Activity:low
1/28    Just switched to Comcast from SBC and generally happy with it.  But
        can someone please explain to me why they are constantly pumping
        ARP traffic through the network?  It seems harmless, but I'm curious
        as I didn't see it with DSL.  It's a little disconcerting to see
        constant traffic on your router, even if ARPs are harmless from
        a bandwidth perspective, and it makes the WAN send/receive light
	...
2006/1/22-24 [Computer/Networking] UID:41477 Activity:nil
1/21    I am trying to setup a small network for my girlfriend's
        mom's company.  They just bought an accounting package
        which requires windows 2003 server.  And they want internet
        access from each computer.  How should the network be setuped?
        Would it be dumb to use static IP for each computer and a
        computer as internet gateway?
	...
2005/8/29-30 [Computer/Networking] UID:39329 Activity:moderate 54%like:37400
8/29    What's the difference between a hub, a switch and a router?  Thx.
        \_ AFAIK, probably be corrected by someone:
           hub: Allows communication on a LAN with bandwith shared amongs all
                the nodes on the hub and maxing out at the max line speed.
           switch: Allows communication on a LAN with bandwith greater than
                the max line speed (point to point)
	...
2005/6/2-3 [Computer/Networking] UID:37941 Activity:moderate
6/2     I've been to many places and almost every place I go to have
        802.11b/g. However, almost all of them have protected access,
        which I presume they use because they don't want people stealing
        their bandwidth. So here is one idea I think will really
        revolutionize 802.11X... an option in the router that allows you to
        specify the percentage of unprotected bandwidth you are willing to
	...
2005/5/23-25 [Computer/Networking] UID:37799 Activity:nil
5/23    Has anyone played with carp/pfsync on OpenBSD? I have a simple
        two firewall setup, one fw running 3.6, the other running 3.7.
        Right now the 3.6 system is the "master" and everything seems
        to work properly except that I can't ping the virtual ip from
        the master system. Any ideas?
        \_ I've seen this with a lot of virtual IP/failover/load balancers.
	...
2004/4/25-26 [Computer/Networking] UID:13373 Activity:nil
4/25    Anyone else experiencing problems getting mail, and delays
        starting SSH (all TCP?) connections to Soda?
        \_ nope.  But I did once at a company where the firewall didn't
           allow reverse DNS lookups.
        TBMS, after logging in, 80 seconds before getting term type query
        from .cshrc. Increased timeout to 90 for SSL/IMAP mail on port 993
	...
2004/3/22-23 [Computer/Networking] UID:12802 Activity:nil
3/22    Is there a host on the net that has every port CLOSED?  I want to
        portscan it to find out which ports my network provider is filtering.
        \_ no. that would be a retarded waste of a machine.
                \_ Or it would be a secure client.
                \_ No, just a interesting use for 1 IP address.
           \_ you can add a hostbased firewall rule that sends a RST
	...
2004/1/15-16 [Computer/Networking] UID:11786 Activity:kinda low
1/14    I am getting DSL for the first time.  The instruction from SBC says
        that I have to install stuff from their CD and leave the modem on for
        10 days for them to "maximize the speed."  I don't really want to
        install their custom browser and god-knows-what.  Can I just ignore
        their instructions and still get the highest speed possible?
        \_ do the entire install, then afterward, just use the EnterNet
	...
2003/9/22-23 [Computer/Networking] UID:10277 Activity:nil
9/22    I'm looking to expand my lan to include wireless.  The thing is, I
        like the linux-box router/firewall I already have set up.  Can I
        configure a wireless router station to run with a DHCP IP so I can
        continue to route everything through my hardwired linux-box?
        Many thanks.  --erikred
        \_ just get a wireless AP... not a router/AP -shac
	...