2002 09 26


                    LINUX NEWS
            http://www.Cramsession.com
          September 26, 2002 - Issue #100


TABLE OF CONTENTS

1) Sean’s Notes

2) Linux News

    Slapper Continues to Spread
    OEone HomeBase DESKTOP
    SuSE eMail Server: Best of Show?
    PostNuke Developer's Site Launched

3) Linux Resources

    Poke The Penguin, But Not Too Much!
    Syncing a USB PDA to Linux
    Instant Messaging Clients Compared
    Red Hat: Slapper Help
    Logical Volume Management

4) App o’ the Week

~~~~~~~~~~~~~~~~~~~~~~~~ ADVERTISEMENT ~~~~~~~~~~~~~~~~~~~~~~~~~

Do you have a cassette player in your vehicle? How about a CD player? Have you ever thought of using either as a study tool for your new certification? We carry cassettes and CDs for CompTia, Microsoft MCSE, Novell, Cisco, and the Windows 2000 exams. You’ll learn more in less time–by hearing the questions you increase concentration and you can study while you commute to work or even while exercising. We also include a 90-day money-back guarantee.

http://ad.brainbuzz.com/?RC06&AIV63







For information on how to advertise in this newsletter
please contact mailto:adsales@CramSession.com or visit
http://cramsession.com/marketing/default.asp

-------------------------
1) Sean's Notes
-------------------------

I might have mentioned it before, but most of my day to day work
is as a network engineer, working on switches, routers, and
firewalls. I've always been a strong advocate of using Linux
boxes as firewalls, but have you ever thought of using them as
a router?

As bandwidth demands increase, providers are moving toward metro
Ethernet access. Rather than point to point T1's, you can have
10Mbit over Ethernet. The hardware to do the serial T1 has
existed on the PC for a while, but most prefer to buy a
dedicated router rather than mess with the Voodoo that is leased
lines and Frame Relay.

So a Linux box can route packets, big deal! In a large network,
dynamic routing is used to keep routes straight, and to provide
redundant paths. Unix has always supported basic routing
protocols like RIP (Routing Information Protocol), but more
advanced protocols like OSPF and BGP are out of reach. Those who
have played on routers will also know the flexibility that goes
on top of that, such as redistribution between protocols and
various filters.

So, a while back, a couple of guys got together and decided to
add some serious routing protocols to Linux. The project is
called Zebra, and is located at http://www.zebra.org. The
interface is, for the most part, a clone of the Cisco IOS,
though there are some enhancements that will either make you
weep for joy, or with frustration.

I pulled down a rpm of Zebra 0.93a from RPMfind.net, upgrading
the version that came with Red Hat. Once installed, you can fire
up the zebra daemon (/etc/rc.d/init.d/zebra start). To access
the router, you either run "vtysh", or telnet to port 2601.

Here's where the quirkiness of zebra kicks in. Each routing
process (zebra, bgpd, ospfd, etc) listens on a different port.
So, to configure Zebra itself, you telnet to 2601. To configure
bgp, you use 2605. Each configuration is separate from each
other. vtysh shows it all, but you can't save your changes from
within it.

That aside, people familiar with the Cisco IOS will be right at
home. Here's the routing table from zebra:


<div class="highlight"><pre><code class="bash">&gt; show ip route
Codes: K - kernel route, C - connected, S - static, R - RIP,
       O - OSPF,  B - BGP, &gt; - selected route, * - FIB route

K&gt;* 0.0.0.0/0 via 192.168.1.1, eth0
C&gt;* 10.0.0.0/8 is directly connected, eth1
C&gt;* 127.0.0.0/8 is directly connected, lo
B&gt;* 172.16.0.0/16 <span class="o">[</span>20/0<span class="o">]</span> via 10.0.0.2, eth1, 00:05:07
B   192.168.0.0/24 <span class="o">[</span>20/0<span class="o">]</span> via 10.0.0.2, eth1, 00:05:07
K&gt;* 192.168.0.0/24 via 10.0.0.2, eth1
C&gt;* 192.168.1.0/24 is directly connected, eth0
K&gt;* 192.168.3.0/24 via 10.0.0.2, eth1

With Zebra, any route learned by a routing protocol is propagated
to the kernel. So, from the <span class="nb">command </span>line, my routing table looks
like:

<span class="nv">$ </span>netstat -rn
Kernel IP routing table
Destination     Gateway         Genmask         Iface
10.0.0.0        0.0.0.0         255.255.255.0   eth1
172.16.0.0	    10.0.0.2	      255.255.0.0    	eth1
192.168.3.0     10.0.0.2        255.255.255.0   eth1
192.168.1.0     0.0.0.0         255.255.255.0   eth0
192.168.0.0     10.0.0.2        255.255.255.0   eth1
192.168.9.0     0.0.0.0         255.255.255.0   vmnet8
10.0.0.0        0.0.0.0         255.0.0.0       eth1
127.0.0.0       0.0.0.0         255.0.0.0       lo
0.0.0.0         192.168.1.1     0.0.0.0         eth0
</code></pre></div>


The difference is that here, you can't see where you learned
the route from. However the fact remains, your box can interact
with other routers.

Those looking to augment their network test labs, or gain some
experience on Cisco devices without owning any, will also find
Zebra to be useful. The command syntax is almost directly ripped
from IOS, except that addresses are generally entered x.x.x.x/y
instead of x.x.x.x y.y.y.y. Subtle difference, but quicker for
those that think in CIDR.

Unfortunately Zebra's documentation is sparse, so you should be
familiar with routing protocols in general before starting in.

Here's an interesting link showing Zebra as part of a global
load balancing network. An interesting project, if you ask me:

http://www.supersparrow.org/ss-0.0.0/cf/pop_x/gnu_zebra.sh.html

The functionality of Linux as a router is coming close to the
appliance-based routers such as those that Cisco sells. Quality
of Service, routing protocols, and filtering are all available.
Depending on your needs, such as simple routing between Ethernet
interfaces, the cost of a Linux box might be a lot cheaper than
a Cisco router. Mind you, the performance peaks might not be as
high, but if we're only talking about 10Mbit interfaces, it's
not an issue.


Long live the Penguin,

Sean
mailto:swalberg@cramsession.com


-------------------------
2) Linux News
-------------------------

----------------------------
Slapper Continues to Spread
----------------------------

The Slapper worm has been making its rounds by exploiting the
SSL flaws in Apache. It's on its third variant already, and
seems to be causing a great deal of havoc.

http://www.vnunet.com/News/1135304


-----------------------
OEone HomeBase DESKTOP
-----------------------

In an effort similar to Ximian's, OEone has come up with a Linux
desktop. They're trying to bundle it with a sort of Internet
backup service, prices seem fairly reasonable. Just like Ximian,
the install can be done over the Internet, so it might be worth
taking a look. Here's a review from Linuxorbit.

http://www.linuxorbit.com/modules.php?op=modload&name=Reviews&file=
index&req=showcontent&id


---------------------------------
SuSE eMail Server: Best of Show?
---------------------------------

"Pop quiz: what messaging server has group calendaring,
including free/busy notifications, group contacts, POP3 and
IMAP, built-in encryption, Web mail, low system requirements,
high scalability, reasonable cost, and non-restrictive
licensing? Answer: SuSE Linux eMail Server 3.1."

http://networking.earthweb.com/netos/article/0,,12083_1466561,00.ht
ml


-----------------------------------
PostNuke Developer's Site Launched
-----------------------------------

PostNuke is a more serious offshoot of PHPNuke, a Content
Management System written in PHP. They've just announced a
developer's site devoted to extending this fantastic piece of
software.

http://developers.postnuke.com/


-------------------------
3) Linux Resources
-------------------------

------------------------------------
Poke The Penguin, But Not Too Much!
------------------------------------

Here's a fun little Flash program that lets you poke a Penguin.
Do you think he'll put up with it though? Try and see what
happens when you make a penguin angry!

http://www2.gamesville.lycos.com/html_poke/poke_penguin.htm


---------------------------
Syncing a USB PDA to Linux
---------------------------

Follow a sysadmin as he sets up his Visor to back up to his
Linux box over USB!

http://www.linuxplanet.com/linuxplanet/tutorials/4445/1/


-----------------------------------
Instant Messaging Clients Compared
-----------------------------------

"Somehow, some way, people who are new to Linux have gotten the
idea that Linux has limited IM choices. Since the Unix family
was the first to have popular IM clients (with "talk" leading
the way), that's more than a little silly. It is true that if
you want the latest AOL Instant Messenger (AIM) features or MSN
Messenger you're out of luck, but there are many other clients
to choose from, and some will let you talk to your buddies
whether they're on AIM, MSN, or even Yahoo!."

http://freshmeat.net/articles/view/563/


----------------------
Red Hat: Slapper Help
----------------------
Here's a document from Red Hat that specifically talks about
the Slapper worm. Turns out the fix has been available since
the end of July (up2date took care of my web server).

http://www.redhat.com/support/alerts/linux_slapper_worm.html


--------------------------
Logical Volume Management
--------------------------

"With LVM, you can combine partitions or drives into one large
storage pool, called a volume group, and from there create
logical volumes for filesystems." LVM is cool stuff, allowing
on-the-fly disk management.

http://www.linuxjournal.com/article.php?sidY57


-------------------------
4) App o' the Week
-------------------------

PHPMyAdmin is a great web-based administration tool for MySQL
databases. It's currently popular with hosting sites, to make it
easier for users to create tables and manage their database.

http://www.phpmyadmin.net/


-------------------------
(C) 2002 BrainBuzz.com, Inc. All Rights Reserved.
-------------------------
-------------------------

          This message is from CramSession

You are currently subscribed to the following list
   Hottest Linux News and Resources
   as: sean@ertw.com

To un-subscribe from this newsletter by e-mail,
   send a blank email message to:
   mailto:leave-linuxnews-3825955Y@list.cramsession.com

To subscribe to this newsletter and many others visit
our site at:
http://newsletters.cramsession.com/signup/default.asp

-------------------------------------------------------