stdout

Mon, 23 Apr 2012

Filtering ports by user

You can filter ports on the local machine by user with iptables using something like this: 

iptables -A OUTPUT -p tcp --dport 1234 -d localhost -m owner ! --uid-owner root -j REJECT

Will restrict port 1234 on localhost to only be accessible by root.

Found at Paranoid Penguin: Using iptables for Local Security.

[11:18] | [/unix] | Filtering ports by user

Thu, 05 Apr 2012

TG582n - more

gord on irc worked out how to see a list of supported devices: 

Administrator}=>mobile device list
Name           : ZTE_MF627 (preconfigured)
	Storage id     : 19D2:2000
	Modem id       : 19D2:0031
	modeswitch     : 55534243123456782000000080000c85010101180101010101000000000000
	AT interface   : 1
	Data interface : 3
	Force USB 1.1  : yes

	Name           : ZTE_MF100 (preconfigured)
	Storage id     : 19D2:2000
	Modem id       : 19D2:0017
	modeswitch     : 55534243123456782000000080000c85010101180101010101000000000000
	AT interface   : 1
	Data interface : 2
	Force USB 1.1  : yes

	Name           : HUAWEI_E1690 (preconfigured)
	Storage id     : 12D1:1446
	Modem id       : 12D1:1001
	modeswitch     : 55534243000000000000000000000011060000000000000000000000000000
	AT interface   : 2
	Data interface : 0
	Force USB 1.1  : yes

	Name           : Zoom_4595 
	Storage id     : 1C9E:F000
	Modem id       : 1C9E:9603
	modeswitch     : 55534243123456788000000080000606f50402527000000000000000000000
	AT interface   : 1
	Data interface : 2
	Force USB 1.1  : yes

	Name           : H_E220 
	Storage id     : 0000:0000
	Modem id       : 12D1:1003
	modeswitch     : 
	AT interface   : 1
	Data interface : 0
	Force USB 1.1  : yes

	Name           : H_E1725Cu 
	Storage id     : 12D1:1446
	Modem id       : 12D1:1417
	modeswitch     : 55534243000000000000000000000011060000000000000000000000000000
	AT interface   : 3
	Data interface : 0
	Force USB 1.1  : yes

	Name           : H_E180 
	Storage id     : 0000:0000
	Modem id       : 12D1:1003
	modeswitch     : 
	AT interface   : 1
	Data interface : 0
	Force USB 1.1  : yes

	Name           : Alcatel 
	Storage id     : 1BBB:F000
	Modem id       : 1BBB:0000
	modeswitch     : 55534243123456788000000080000606f50402527000000000000000000000
	AT interface   : 1
	Data interface : 3
	Force USB 1.1  : yes

	Name           : Telsey 
	Storage id     : 1C9E:F000
	Modem id       : 1C9E:9603
	modeswitch     : 55534243123456788000000080000606f50402527000000000000000000000
	AT interface   : 1
	Data interface : 2
	Force USB 1.1  : yes

	Name           : ZTE_MF110 
	Storage id     : 19D2:2000
	Modem id       : 19D2:0016
	modeswitch     : 55534243123456782000000080000c85010101180101010101000000000000
	AT interface   : 1
	Data interface : 2
	Force USB 1.1  : yes

	Name           : H_E1762 
	Storage id     : 12D1:1446
	Modem id       : 12D1:140C
	modeswitch     : 55534243000000000000000000000011060000000000000000000000000000
	AT interface   : 3
	Data interface : 0
	Force USB 1.1  : yes

	Name           : H_E1752Cu 
	Storage id     : 12D1:1446
	Modem id       : 12D1:140C
	modeswitch     : 55534243000000000000000000000011060000000000000000000000000000
	AT interface   : 3
	Data interface : 0
	Force USB 1.1  : yes

	Name           : H_E1752Cu_OV 
	Storage id     : 12D1:1446
	Modem id       : 12D1:1417
	modeswitch     : 55534243000000000000000000000011060000000000000000000000000000
	AT interface   : 3
	Data interface : 0
	Force USB 1.1  : yes

	No device detected

[19:12] | [/aa] | TG582n - more

Technicolor TG582N and 3G

I just got the Technicolor TG582N router from A&A, after my previous router developed an annoying habit of dropping all my packets.

One of the things I wanted to try was getting the "3G backup" support working. This is not very well documented on the internet at the moment.

The best documentation I could find (with the help of #A&A on irc) was the Be user group Mobile internet document.

I tried this out with an old Vodafone dongle - labelled as a "Vodafone Mobile Connect Model K3565 - Rev 2", but which I believe is really a badged Huawei E220.

I backed up the configuration as recommended.

I logged in via telnet and tried to run the Be documented commands. I found I had to add an initial mobile ifadd as the umts interface did not exist: 

{Administrator}=>mobile ifadd intf=umts
{Administrator}=>mobile ifconfig intf=umts apn=CHANGEME
{Administrator}=>ppp ifadd intf=mobilebroadband
{Administrator}=>ppp ifconfig intf=mobilebroadband dest=umts
{Administrator}=>nat ifconfig translation=enabled intf=mobilebroadband
{Administrator}=>ppp rtadd intf=mobilebroadband dst=0.0.0.0
{Administrator}=>exit

I then went to the web interface http://192.168.1.254/_pppom_cfg.lp?be=0&l0=2&l1=2&name=mobilebroadband - replace 192.168.1.254 with the IP address of your router, and entered the username, password, and APN. For my vodafone SIM, the username was web, the password was web, and the APN was pp.internet.

You should then be able to fiddle around with telling the interface to connect, and unplugging the DSL. The new connection should show up under "Broadband Connection - Internet Services".

I'm not sure how to make failover work, or if anything extra is required. Since I was using a vodafone dongle, and my machines are statically configured to use A&A's DNS servers, I lost working DNS.

Hopefully someone else can fill in the rest of the details to make things behave sensibly, and even try an A&A SIM.

I also tried with a Huawei E367 - doesn't seem to be recognised.

[18:55] | [/aa] | Technicolor TG582N and 3G

< April 2012
SuMoTuWeThFrSa
1 2 3 4 5 6 7
8 91011121314
15161718192021
22232425262728
2930     

Contact: Michael Stevens <mstevens@etla.org>

RSS: RSS feed

Atom: Atom feed

Valid XHTML 1.0!

Valid CSS!