Comments for Igor David

Comment on TCPflow by zlaja

zlaja — Sun, 15 Jul 2012 22:05:30 +0000

da vidim kako izgleda

Comment on Amazon VPC + ipsec + racoon + quagga by admin

admin — Sat, 07 Jul 2012 07:32:57 +0000

Hello Larry,

Did you had any success with this?

–
Igor

Comment on Amazon VPC + ipsec + racoon + quagga by lhughes

lhughes — Mon, 21 May 2012 16:09:49 +0000

David,
We can’t seem to MASQUERADE or NAT that IP Address (10.0.0.4) from the VPC instance via the vpn.
It looks like to me that bgpd and or zebra are routing directly to the Kernel and that is why I can’t NAT that address. Is there anyway to make bgpd or zebra NAT? If there is, then that would solve my issue and still only using one (1) nic?

Thanks,
Larry

Comment on Amazon VPC + ipsec + racoon + quagga by lhughes

lhughes — Sun, 20 May 2012 02:52:06 +0000

Thanks,
Using two (2) NICs is not a problem, but how would I set it up to NAT or MASUERADE 10.0.0.4 from the VPN only to the realworld?

Thanks,
Larry

Comment on Amazon VPC + ipsec + racoon + quagga by admin

admin — Sat, 19 May 2012 12:37:58 +0000

Hello Larry,

Thank you.

With this setup, you can reach your VPC private instances from your home network and vice-verse.

But for routing further and using MASQUERADE, I am not sure if this will work since in this setup I have used only one Ethernet interface, and what I saw on the Internet regarding using one interface & masquerade, the situation is not promising:

Yes and no. With the “IP Alias” kernel feature, users can setup multiple aliased interfaces such as eth0:1, eth0:2, etc but its is NOT recommended to use aliased interfaces for IP Masquerading. Why? Providing a secure firewall becomes very difficult with a single NIC card. In addition to this, you will experience an abnormal amount of errors on this link since incoming packets will almost simultaneously be sent out at the same time.

However, I see some successful stories, too, such as:

(this is my ex-colleague btw ):

http://www.miljan.org/main/2006/12/26/linux-nat-with-one-network-interface/

I’ll try to setup this, also if you will have any success feel free to comment.

Comment on Amazon VPC + ipsec + racoon + quagga by lhughes

lhughes — Thu, 17 May 2012 19:53:10 +0000

David, nice job we setup a debian box, hooked it all up, but our vpc instance is ip address 10.0.0.4 when we try to use the web browser in the instance the ip address 10.0.0.4 makes the DNS queries etc after it comes down the tunnel to our datacenter. How can we change the routing so when 10.0.0.4 hits our vpn router box (debian), we can MASQUERADE that IP to the ip address of said vpn router box? And of course back again?
Many Thanks,
Larry Hughes

Comment on NERDTree vim plugin by peratest

peratest — Thu, 19 May 2011 20:14:50 +0000

Hello,

just to check how did NERDTree got it`s name?

Comment on apache keepalive configuration by admin

admin — Wed, 04 Aug 2010 21:30:53 +0000

we were using apachetop, webalizer, google analytics and Linux shell to determine those values

Comment on apache keepalive configuration by martin

martin — Wed, 04 Aug 2010 21:26:15 +0000

hello,

how did you manage to determine those values, e.g. what are default values and how did you know to change them in proper way?

Comment on Google Analytics Plugin Problem in WordPress 2.8.5 by Reg Cleaners

Reg Cleaners — Fri, 07 May 2010 03:02:09 +0000

backup problem…

Thanks for the information. Any other posts or blogs you can recommend on this topic?…