On every router, there are certain routes that are useful to install to prevent leakage of invalid traffic related to private address space.
Tag - guide
Saturday, May 26 2012
Installing ipset on CentOS 6
By Phil on Saturday, May 26 2012, 10:00 - Linux & Open Source
I assume this will work on RedHat 6 too:
# yum install http://people.redhat.com/twoerner/BZ/477115/ipset-6.7-2.el6.x86_64.rpm http://people.redhat.com/twoerner/BZ/477115/libmnl-1.0.1-1.el6.x86_64.rpm http://people.redhat.com/twoerner/BZ/477115/libmnl-devel-1.0.1-1.el6.x86_64.rpm
Yes, you can copy and paste.
Note that this isn't adding any repositories, so I'm not sure what impact this will have in future since the packages won't get automatically updated by `yum update` (security updates, breakage when kernel updates etc?)
Thursday, February 10 2011
Native IPv6 with Internode and CentOS
By Phil on Thursday, February 10 2011, 23:32 - Interwebs
This is a WIP. Notes so far.
At the moment, this results in an error from DHCPv6 Client when trying to assign an addrss to ppp200:
Feb 10 23:28:50 tank dhcp6c[1063]: transmit failed: Network is unreachable
Manually adding an address makes it work:
Feb 10 23:28:47 tank dhcp6c[1382]: request prefix is 2001:44b8:7206:d180::/60
# ip -6 a a 2001:44b8:7206:d180::1/48 dev ppp200 # ping6 2001:44b8:1::6 PING 2001:44b8:1::6(2001:44b8:1::6) 56 data bytes 64 bytes from 2001:44b8:1::6: icmp_seq=0 ttl=59 time=27.8 ms 64 bytes from 2001:44b8:1::6: icmp_seq=1 ttl=59 time=27.3 ms 64 bytes from 2001:44b8:1::6: icmp_seq=2 ttl=59 time=27.6 ms
Tuesday, October 19 2010
Custom Actions with fail2ban
By Phil on Tuesday, October 19 2010, 09:29 - Linux & Open Source
Most people are familiar with the fail2ban package available for protecting against brute-force password attacks against your servers.
Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address.
What you might not have experimented with is it's ability to execute custom actions instead (or as well as) blocking the source IP in iptables.
Saturday, January 30 2010
Migrating Physical Machine to Virtual Machine
By Phil on Saturday, January 30 2010, 22:00 - Linux & Open Source
This a quick step-by-step for migrating a Physical computer to a Virtual Box instance. It was written for an Arch Linux based installation, and requires no special software except for an Arch Linux installation CD / ISO image.
Monday, November 2 2009
Adding Swatch Internet Time to Gnome
By Phil on Monday, November 2 2009, 16:47 - Linux & Open Source
How to add an applet to your Gnome panel displaying Swatch Internet Time
Friday, January 9 2009
Custom Partitioning on ArchLinux with Linode
By Phil on Friday, January 9 2009, 15:31 - Computing