Why is it that whenever we try to fix something, we always break at least one other? I setup a DMZ on my Netgear FVX538 Firewall at home to put my PS3 into so that I could reduce lag as much as possible by opening the NAT to it. No problem, configured the PS3, configured the DMZ, activated it, checked that web and email incoming were still working. Great.
Errrr, yeah, except that I get to work this morning and the VPN from my desk via the work FVX538 to home isn’t working. I suspect that the VPN requires some WAN-LAN rules setting up so that it knows that the VPN needs routing to the LAN, instead of the DMZ becoming the default. I think I need to open UDP port 500 for the Internet Key Exchange (IKE) traffic and UDP port 1701 for L2TP traffic (not sure if I need that one). Question is, what address do I forward them to? The router itself?
Of course, I could configure this and test it from work, except that my VPN is working and remote access to the router isn’t working either, so it’ll have to wait until tonight.
All this just so I don’t suck quite as much at COD: MW2!
Update 29/04/10 09:52
Not so easy, it seems. Setting up forwarding for the VPN ports gave me a connection which showed as connected at both ends but unable to route any traffic through at all. Traceroute from either end only got as far the local firewall. I have the inbound VPN ports forwarded to the firewall LAN address, maybe it has to be forwarded to somewhere else? For now, I’ll have to undo the DMZ configuration to get my VPN working again for now and play with it some more when I have more time.
If you do regular backups of your servers, when you come to restore you nearly always find something you didn’t realise you should have backed up. One thing that can slip through the net on Linux mail servers is the spamassassin database. If you use a cron job to analyse your spam messages everyday and learn from them, spamassassinwill have created a database of identifiers and tokens which can be lost if not backed up.
I had to look at a laptop last week which was infected with some kind of spyware although someone had already had a go at removing it and partially succeeded to the point that the exact nature of the spyware wasn’t apparent. Websites were being redirected, often to sites that were not even available, possibly due to being already shut down. AVG couldn’t update and Malwarebytes Anti-Malware would not install and run, even by changing the executable names. I couldn’t get any anti-spyware to load even in safe mode.
I use computers at several locations and often require data and login details to do my work at those sites. Whenever I can I use my EeePC for these tasks but sometimes that’s not possible so I was looking for another way to keep secure data and key applications available to me at all times.
Recent Comments