Michael's blog OSS / Linux, networking and my private life

5 Aug/10 2

Alix 2D13 as a firewall

Recently, I run a firewall on my Alix 2d13 than on Entertain connection.

I ordered the part as a bundle consisting of the Alix, housing, CF card and power supply on the Varia-Store . As I have firewall distribution for IPFire decided reason for this was the native Alix and VDSL with VLAN7 support for IPTV and 8, in addition, there is a package for the necessary igmpproxy.

The whole thing works! Really just perfect and the performance of the VPN is much better than my previous router or telecom gefritzten version of it. Installation is even step by step in the documentation described.

The last major update to 2.7 from 2.5 has IPFire while requires a little time to install but works in total without error, speaks thus of great quality work in the distribution IPFire

All in all a good package and to recommend any of a knack for hardware and Linux.

Filed under: it , linux , networking , routing 2 comments
24 Okt/08 3

Apache2 mpm-worker and fcgid

After Apache has felt the occasional times used on this site breaks thinking I've decided to replace the mpm-prefork mpm-worker with the version that is now also called by PHP FastCGI.

Below is a small configuration instructions.

  • Installing the required packages: 

  aptitude install libapache2-mod-fcgid apache2-mpm-worker php5-cgi

  • Configuration of the Apache 

  a2dismod php5
 a2enmod actions
 a2enmod fcgid

  • Customizing the Apache Configuration

/ Etc/apache2/mods-enabled/fcgid.conf 

 AddHandler fcgid-script. Fcgi
 Socketpath / var/lib/apache2/fcgid/sock
 IPCConnectTimeout 60

/ Etc/apache2/conf.d/php5-fcgid.conf 

 # Path to php.ini - defaults to / etc / phpX / cgi
 DefaultInitEnv PHPRC = / etc/php5/cgi

 # Number of PHP childs that will be launched.  Leave undefined to let PHP decide.
 DefaultInitEnv PHP_FCGI_CHILDREN # 3

 # Maximum requests before a process is stopped and a new one is launched
 DefaultInitEnv PHP_FCGI_MAX_REQUESTS 2500

 # Define a new handler "php-fcgi" for ". Php" files, plus the action that must follow
 AddHandler php-fcgi. Php
 Action php-fcgi / fcgi-bin/php-fcgi-wrapper

 # Define the MIME type for. "Php" files
 AddType application / x-httpd-php. Php

 # Define alias "/ fcgi-bin /".  The action above is using this value, Which that means
 # You could run another "php5-cgi" command by just changing this alias
 Alias ​​/ fcgi-bin / / var/www/fcgi-bin.d/php5-default /

 # Turn on the fcgid-script handler for all files within the alias "/ fcgi-bin /"

 SetHandler fcgid-script
 Options + ExecCGI

  • Creating the wrapper under

/ Var/www/fcgi-bin.d/php5-default/php-fcgi-wrapper 

 # / Bin / sh # Wrapper for PHP-fcgi # This wrapper can be used to define settings before launching the PHP-fcgi binary.  # Define the path to php.ini.  This defaults to / etc / phpX / cgi.  # Export PHPRC = / export PHPRC = var/www/fcgi-bin.d/php5-web01/phprc / etc/php5/cgi # Define the number of PHP childs that will be launched.  Leave undefined to let PHP decide.  PHP_FCGI_CHILDREN export support = 5 # Maximum requests before a process is stopped and a new one is launched export PHP_FCGI_MAX_REQUESTS = 5000 # Launch the PHP CGI binary # This can be any other version of PHP is compiled with FCGI Which.  exec / usr/bin/php5-cgi

  • The new wrapper to make it executable 

  chmod + x / var/www/fcgi-bin.d/php5-default/php-fcgi-wrapper

  • Finally, Apache must be restarted again 

  / Etc/init.d/apache2 restart

Tags: , , , 3 Comments
18 Okt/08 0

Viscosity - tunnel vision, only better?

After I running Tiger for a long time tunnel vision have used as a GUI for OpenVPN, the manager had crashed constantly since moving to Leopard no longer possible, tunnel vision is.

Mittlwerweile although there are again a beta which will probably work better because I've tried so far does not.

Now, there is a new frontend called Viscosity . Currently the beta is still free, then it will cost, according to testimony of the developer about $ 9. In comparison to the previous tunnel vision, but it can also manage the configuration, ie it is no longer obliged to maintain the configuration file manually. In addition, there is the possibility to import existing configurations of tunnel vision.

Here are some screenshots of Viscosity

Tags: , , , no comments
26 Sep/08 0

Network performance, the x.te

So today after work I have now replaced the Powerlan adapter through a proper network cables and what should I say the same problem as before, when streaming video met regularly with a shrug.

So keep on troubleshooting and behold, the debt is probably the 4 port switch / hub in the Linksys WRT54G router (which was also tested with multiple devices), which absorbs part obviously packages .......

WRT to the switch and replaced with a right already running everything as the devil.

So now I need more new wireless components, will probably be an Airport Extreme. The problem occurs in any case even when bridging from wireless to the "normal" network.

Tags: , , No Comments
20 Sep/08 1

Samba performance optimizations

Once again I am currently looking for various "verschnellerungen" for my home network now Samba was my turn to start had a maximum transmission rate 6Mbit whether over Powerline or WiFi.

Is used in my standart Debian Etch package, the following changes have taken care in combination for an improvement of about 14 Mbps:

write cache size = 262144
max xmit = 131072
use sendfile = yes
strict locking = no
socket options = TCP_NODELAY SO_RCVBUF = 65536 SO_SNDBUF IPTOS_LOWDELAY = 65536

The biggest improvement has been achieved but the SO_RCVBUF and SO_SNDBUF increase by variables that previously was deposited here each 8192nd

Meanwhile, I'm just under 20Mbit but surely there is something else.

Tags: , , 1 Comment
18 Sep/08 2

Update: Powerline adapters

Now that I finally was fed up and has won inertia I bought new Powerline adapter.

Previously I had worked the 85Mbit version to say the least bad, now, after upgrading to the versions of 200Mbit Netgear ( dLAN 200 AVeasy ) I'm pleasantly surprised. Meanwhile, considerable 40Mbit actually go through the power lines that is a significant progress to advance.

Tags: , 2 Comments
31 Aug/08 0

DNS tunnel

Gerd was just on his blog an interesting article about DNS tunneling , published the whole thing is just for staying in places with wireless hotspots very interesting since it often allows DNS queries directly to the Internet but the rest is blocked.

Tags: , No Comments
15 Aug/08 5

Network vs. cable. Powerline adapters

After I had already noticed the more I want to network performance can remain strong at home, I have been last week (the suffering was finally high enough) for troubleshooting. The tool IPerf has uncovered the problems.

For the connection between the hall from the ground floor and the DSL connection in the basement I use powerline adapter from Zyxel (PL-100) and to my horror I realized that the promised 85Mbps which will supposedly go on the grid, only 2 words, two Mbit remain. Why is unfortunately not possible to say exactly because the Poser line adapter, of course, are unmanaged components.

The whole thing is an absolute disaster ... and I've always been wondering why streaming video works, etc. totally or not at all ponderous. The troubleshooting will be as disastrous's not what I expected.

Now normal network cable to be laid ... I should have done from the beginning.

Tags: , , 5 Comments
3 Sep/07 0

DRBD Blog

Here you find useful information on DRBD, the filesystem for cluster heartbeat:

http://fghaas.wordpress.com/

Tags: , , , No Comments
27 Mrz/07 0

BGP simulator

Today i found a BGP simulatur available through: http://cbgp.info.ucl.ac.be/

Tags: , No Comments
  

Translator

German flagEnglish flagFrench flagSpanish flagRussian flag                                     

Facebook

Michael Streb

Create your profile banner

Tags

WP Cumulus Flash tag cloud by Roy Tanck and Luke Morton requires Flash Player 9 or better.

Twitter: mstreb

Recent Comments

Categories

Archive

Blogroll

License