**** BEGIN LOGGING AT Wed May 13 02:59:57 2009 May 13 06:38:54 Hi! Buongiorno! May 13 08:41:28 morning May 13 08:41:44 morgen May 13 08:41:52 was neues von cyrus ? May 13 08:44:18 ja May 13 08:44:25 er bekommt volle bandbreite mit rc1 May 13 08:44:29 bzw trunk/ May 13 08:44:34 was 2-3 tage neuer ist May 13 08:44:51 ich werde es beim nächsten release vorher testen und dir sagen was du erwarten solltests May 13 08:45:01 good morning May 13 08:45:05 Hi Decodecoding May 13 08:45:16 * blogic is installing a hackintosh May 13 08:45:56 hackintosh in a MSI wind? May 13 08:48:59 0no May 13 08:49:01 a desktop pc May 13 09:12:22 blogic, I have an external IP hammering on my ftp server doing hundreds of attemps to log in. How can I block that IP? May 13 09:12:41 hmmm May 13 09:12:48 you need to add a iptable rule May 13 09:12:51 or disable ftp May 13 09:13:00 I mean, this is on the fonera ftp server May 13 09:13:12 i do not know directly what the iptables rule would be right now May 13 09:13:57 In Filezilla Server you can set a ban time for IPs failing e certain number of login attemps May 13 09:13:59 iptables -I INPUT -s bad_ip_address -p tcp --dport 21 -j DROP May 13 09:15:18 that could be a good feature fot fonera ftp. May 13 09:15:57 I'll try that rule manually May 13 09:17:24 use: iptables -D INPUT -s bad_ip_address -p tcp --dport 21 -j DROP to remove it again May 13 09:18:04 you can see the hitcount with: iptables -nvL INPUT May 13 09:19:02 if it's a somewhat intelligent bot, it will stop spamming if no responses are given anymore May 13 09:20:32 I can't shake them May 13 09:20:38 xMff: we should add knockd :) May 13 09:20:55 blogic: ipt_limit, to enforce soft limits May 13 09:21:12 must normal users lack tools for port knocking imho May 13 09:21:14 *most May 13 09:21:26 http://pastebin.com/m794032f6 May 13 09:21:49 ah, chinese... how unexpected May 13 09:22:17 The thing is pure-ftp reports ERROR too many login failures, but does nothin about it.... May 13 09:22:47 I think it will drop the connections then but the client will jsut reconnect May 13 09:23:32 Decodecoding: btw, you can also paste the hostname instead of ip address in the iptables rule May 13 09:23:47 I see May 13 09:25:59 blogic: maybe develop something like failtoban, that can also monitor ftp connection attempts May 13 09:27:43 hmm May 13 09:28:43 or let pureftpd write a tempfile with failed ips and make rules for them, then a cronjob would be enough May 13 09:35:01 yeah May 13 09:36:39 beat those hackers! May 13 09:36:55 crackers! May 13 09:37:04 yes sorry May 13 09:37:07 :) May 13 11:18:16 I've disabled ftp temporarily. May 13 13:27:49 hi friends May 13 13:29:03 little question: is there a way to store the settings and to reload them after fw-upgrade? May 13 13:32:36 @ iurgi + blogic: is there a way to store the settings and to reload them after fw-upgrade? May 13 13:52:19 Kyros: we will add it soonish May 13 14:07:10 blogic, any clue on the memory problems? Could it be I have a defective fonera? May 13 14:35:25 Decodecoding what's the memory problem? May 13 14:48:12 hello May 13 14:48:24 The crashes while using torent app May 13 14:50:25 fon has amind of it's own.. :p May 13 14:50:38 maybe he thinks you shouldn't be dowloading that torrent.. :p May 13 14:54:52 I only download linux .iso images for testing them May 13 14:56:55 me too. :) and I delete them immediately... just like fon's boss... ;) May 13 16:47:09 hello May 13 16:49:52 has anybody checked wether webcam works or not in the last firmware 2.2.6.0 May 13 16:51:50 i have not tested it May 13 16:51:55 i will do it tomorrow May 13 16:54:00 i have tested it with a logitech e3500 May 13 16:54:05 it used to work with flipper 2.2.5 May 13 16:54:13 now it doesnt May 13 16:54:44 not from network...nor wan May 13 17:15:02 ok May 13 17:15:06 i will update it tomorrow May 13 18:01:33 hi, from time to time, i loose my lan and wlan connection, anything know about it? May 13 18:02:04 no May 13 18:08:47 hm, fonera is also very slow, have about 40 files in downlod que May 13 18:09:25 wan connection from fonera works fine everytime May 13 18:11:20 Fonera local6.info chillispot[2365]: options.c: 782: Rereading configuration file and doing DNS lookup May 13 18:11:37 Fonera user.notice root: adding tun0 to firewall zone hotspot May 13 18:11:47 thats what logread says at this time May 13 18:12:46 https://www.mibbit.com/pb/DITxzy May 13 18:22:59 damn connection lost again May 13 18:26:08 https://www.mibbit.com/pb/G7X1YR May 13 19:05:06 * Iurgi won't miss today's match :-d May 13 19:21:18 soo any future release? are more surprises coming? May 13 19:21:42 of ... ? May 13 19:21:50 fonera 2.0 May 13 19:22:10 or even fonera 2100...a repeater mode woudl be nice May 13 19:27:27 on which one ? May 13 19:27:39 2100 or 2.0 ? May 13 19:51:09 i am using freewlan in order to get qrm (repeater)working but it is not so simple May 13 19:51:59 i once saw 1 year ago..that fon was going to include the possibility to use a wireless bridge mode May 13 19:52:18 it would be helpful to locate foneras near windows May 13 19:52:38 i am talking about 2100/2200 May 13 20:29:04 damn disconnect feature ;) May 13 20:29:31 does it correlate with the dhcp lease time of your isp? May 13 20:29:41 or wan router May 13 20:30:03 no, wan is ok, only lan and wlan May 13 20:30:29 I mean, maybe the wan ip is refreshed and nat rules do not catch up or sth. like that May 13 20:30:35 but unlikely May 13 20:30:53 would be interesting to know what actually prevents the traffic forwarding May 13 20:30:55 no, wan ip is ok, no refresh May 13 20:31:03 did you watched dmesg? May 13 20:31:12 any warnings about a full conntrack table? May 13 20:31:22 ? May 13 20:31:32 conntrackt table ? May 13 20:31:55 yeah, that things holds info about open (natted) connections May 13 20:32:10 if it runs full, no new connections can be made from lan or wifi to wan May 13 20:32:28 i think it is because i have ~40 files in rs.com dl que and downloading May 13 20:32:43 hm, wlan brokes complete May 13 20:33:09 have you tried to log in with ssh if it's broken and look what "logread" and "dmesg" report? May 13 20:33:09 and fonera is slow, i think it is too much for my little fonera May 13 20:33:40 yes, posted lnks in the last 2 hours May 13 20:34:20 but can't see them anymore, because of the disconnect ;) maybe you ? May 13 20:35:17 yeah, just took a look May 13 20:35:33 but I don't know enough about the firmware to interpret the messages May 13 20:36:03 iurgi can! May 13 20:36:56 can you post them again, so i can save em ? May 13 20:37:15 moment May 13 20:37:26 https://www.mibbit.com/pb/DITxzy - https://www.mibbit.com/pb/G7X1YR May 13 20:38:41 thx May 13 20:42:26 next time it happens, try also to save the output of "iptables -nvL; iptables -t nat -nvL" May 13 20:44:50 ok, tryed it, so much entrys, putty don't show all of them May 13 20:45:12 https://www.mibbit.com/pb/O8qCPg May 13 20:45:17 you have a disk attached? May 13 20:45:26 will try it, when it happens next time May 13 20:45:30 yes, i have May 13 20:45:51 then you could also do this: (iptables -nvL; iptables -t nat -nvL) > /patch/where/disk-is-mounted/debug.txt May 13 20:46:01 then you can pull the generated file with samba or ftp May 13 20:46:56 but maybe you should wait until someone from the firmware team gives directions :) May 13 20:47:01 not that this breaks something May 13 20:49:10 running rc1 maybe thats the thing May 13 21:52:28 good night May 13 21:57:48 Hi ya **** ENDING LOGGING AT Thu May 14 02:59:57 2009