Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - blacklotus

Pages: [1]
1
Feature requests & roadmap / Re: DHCP & network configuration revamp
« on: November 05, 2008, 06:47:00 pm »
Done ;) I'm gonna do some more testing before I upload it. The gateway mode is business as usual (IP aliasing if you have only 1 nic), the standard mode does away with all that and gives you just one normal interface. I need to do some more testing though, because I'm sure lots of scripts expect two NICs (other than the ones I've already patched).

i have to say, that layout you have proposed is awesome! a lot of us already have an advanced firewall (or maybe need vpn, etc) and would like to integrate linuxmce into that.

i would probably add just a couple more options.
1. the ability for multiple nics (or vlans interfaces) without enabling gateway & ability to choose which interfaces (if any) will have the dhcp server enabled. multihomed
2. if enabling vlans for a nic u can just keep adding interfaces? drop down to select nics for the interfaces
3. maybe a little advanced, but even if there is only 1 interface, allow the ability to be a dhcp server for other subnets(?). for those of us that setup a router or firewall to relay dhcp between subnets?

i love it though and its great that others are acknowledging the deficiencies in network setup. that's the single biggest reason i haven't successfully implemented LMCE yet

2
Installation issues / Re: DHCP - combine with other DHCP - HOWTO?
« on: May 08, 2008, 04:43:44 pm »
You already have that ability, it just requires additional setup,  I wish "us who know networks" would realize that for a change.  As for the GATEWAY ADDRESS "problem", it is set to the core for a reason.

I'm curious, what "reason" would require dhcp only handing out the lan ip of the core if you weren't using the core for routing? just wondering about that.

Being able to choose what the dhcp hands out for the gateway address would be my single biggest request.

more flexibility would be nice, but i don't mind using the core as the dhcp server. after all, we can just put it in its own subnet if we don't want it to interfere with other parts of the network. just let us define the gateway dhcp hands out please! pretty, pretty please?

I think I'll leave that for "us who know networks" to figure out, as I have no interest in yet another pointless discussion on how everything needs to be changed to fascilitate some self proclaimed networking "experts" who can only see the features they want to use as important. 

cmon, that's ridiculous for you to have such a narrowminded viewpoint of the situation. have you never dealt with a network in which the dhcp server was NOT a router?

because it looks like the assumption you are making is that dhcp server are always routers/gateways. if that is the case then it's amusing to hear you call yourself a networking expert

3
Installation issues / Re: DHCP - combine with other DHCP - HOWTO?
« on: April 29, 2008, 08:53:33 am »
You already have that ability, it just requires additional setup,  I wish "us who know networks" would realize that for a change.  As for the GATEWAY ADDRESS "problem", it is set to the core for a reason.

I'm curious, what "reason" would require dhcp only handing out the lan ip of the core if you weren't using the core for routing? just wondering about that.

Being able to choose what the dhcp hands out for the gateway address would be my single biggest request.

more flexibility would be nice, but i don't mind using the core as the dhcp server. after all, we can just put it in its own subnet if we don't want it to interfere with other parts of the network. just let us define the gateway dhcp hands out please! pretty, pretty please?

4
Installation issues / Re: DHCP - combine with other DHCP - HOWTO?
« on: April 25, 2008, 11:52:20 am »
that's my point as well. why does everyone assume that no one here knows anything about networking here? i know a lot about networking but my *nix skills are lacking. anyways, i have my home network divided into 4 segments and 2 of them are vpn'd back to my office (lan+voip). the other one is the rest of the home + wireless.
not no one, but ask 100 people that run a computer at home about subnetting or static routes. I'd assume only one or two could answer the question.

Quote
why can't they make a FULLY CONFIGURABLE single nic install where you can change all the settings during setup?
who is they? can you?

best regards,
Hari

ok i'll agree with you about the basic home user not knowing about subnets, vlan's etc BUT i'm not even asking the LinuxMCE team to make the core work with vlan's and multiple subnets, although that would be nice. all i'm asking is that you give us the ability to allow the core to work on ONE subnet, us who know networks can take care of the rest.

for example:
during the initial setup process it could ask for networking setup with a simple progression of menu's with this type of structure:
-----------------------------------------------------------------------

1:automatic (current config, continues on its merry way)
2:manual
    1:Firewall Mode (NAT enabled)
         set LAN nic and ip address/mask
         set Public nic and ip address/mask/gateway (options for DHCP, PPPoE/adsl also available)
         the dhcp server is automatically enabled with the usual options
         other things like RIP config/static routes could be configured through web admin
         DONE
    2:Router Mode (no NAT)
         set up interfaces and ip addresses/masks (VLAN capability would be nice for future!)
         1 enable DHCP on interface(s)
              choose interface(s) to enable dhcp on
              under each dhcp server be able to set at the very least:
                  set ip address pool/range
                  set netmask (could be auto assigned to same as interface's)
                  GATEWAY ADDRESS (could point to another gateway/firewall or be
                  this machine if routing to NAT Firewall)
                  set dns server(s)
                  any other dhcp options as fancy as you want to get like like custom scope options, WINS, etc
                  it will auto configure itself as the boot server
              other things like RIP config/static routes could be configured through web admin
        2 do not enable DHCP
        DONE
    3:Single Adaptor
        set up ip address/mask and default gateway
        do you want to set up DHCP server?
             1. yes
                  set ip address pool/range
                  set netmask (could be auto assigned to same as interface's)
                  GATEWAY ADDRESS (could point to any other gateway/firewall)
                  set dns server(s)
                  any other dhcp options as fancy as you want to get like like custom scope options, WINS, etc
                  it will auto configure itself as the boot server
             2. no
        other things like RIP config/static routes could be configured through web admin
        DONE

-----------------------------------------------------------------------------

what do you think? i think a solution like this would satisfy and take care of the needs or many more people than right now.

the other thing you have to think about when it comes to network knowledge are these:
a. even if some people don't know about all the networking options, it doesn't mean that they wouldn't learn to use it more if it were easier to configure and more accessible to them
b. once LinuxMCE matures more these systems will be installed more by professionals in high-end homes perhaps. these installers would definitely need more setup sonfigurability to get the systems to work on the myriad of setups out there.

Are these things i'm requesting THAT impossible to do? before you tell me to code it myself i'll apologize that i lack the skills and the time to dedicate to learn those skills at that moment.

What i can do is lend my assistance in helping to layout configuration options and (hopefully) explain what would make greater flexibility more accessible to the general user AND more the knowledgeable ones.

5
first off, i appreciate your quick reply. perhaps i need to clarify myself on a few things

I'm not familiar with that name nor did i look it up, it sounds like an onboard raid for a MB though.  If that's the case, don't even bother with it.  software raid is the way to go.
highpoint technologies is a manufacturer of raid add-in cards. Mine is the RocketRAID 2320 it's a PCIe 8 port SATAII raid5 card. they're not the BEST, but they're not too much $$$ (instead of $500 for an areca, mine was $250). my biggest reasons for using an add-in card are portability (not tied to os or machine), performance and flexibility, online raid level/size migration is a HUGE plus!

Quote
That's easy and just a little bit of exploring should solve that anyways.  Don't be afraid of breaking anything or you'll never learn.  If you think it's a bad idea, ask before you do it.  The secret location of KDE is in the advanced options section though.
ok, all i have up on the screen is the "core" window. the only options i see are the tabs up top which are: Start, Connections, Log Options, View Log, Configuration Files
where are the "advanced" options?
all i want to do is be able to bring up the full kde desktop temporarily so i can add drivers and do a few other things. other than that i plan to leave it in the closet.

Quote
Ahh... What are you talking about here?  driver for the raid?   But on the topic of packages, you will always use Debian because K/Ubuntu is debian based.

ok, here's the link to the driver page for my raid card: http://www.highpoint-tech.com/USA/bios_rr2320.htm

they ONLY give me the options of red had enterprise, fedora, suse/enterprise, freebsd and open source. do i use suse? and if so, which one? since highpoint has open source drivers it would be nice if the Linux MCE or ubuntu team included some of these raid drivers in the installation.

if i have to go with open source, any pointers on best/easiest way to compile them? i'm a *nix n00b, but am not afraid of a terminal or command lines


6
i want to install the highpoint raid drivers on my lmce core (never been used/setup) machine. its on the lan but i haven't gotten much further.

first of all, on the core i have no idea how to bring up the kde desktop or a terminal. i'm a n00b!

secondly, i'm so confused. i don't know which driver to use. is it supposed to be debian? they give me the option of red had enterprise, fedora, suse/enterprise, freebsd and open source.

what/how is the easiest way to install these so i can start using the box.

btw, for clarification. i already have the core working off a regular drive the raid is for media.

7
Installation issues / Re: DHCP - combine with other DHCP - HOWTO?
« on: April 24, 2008, 09:07:37 am »
without networking experience, yes your right...

I guess hari, my problem is this.  I have this problem of assuming anyone seeking help from the forums is also seeking to educate themselves.  If I don't put this information out there, then they will never educate themselves.  You see, I don't like giving people simple solutions, that reminds of the old ass saying "Give a man a fish, feed him for a day, teach a man to fish, feed him for a lifetime"

Basically what i'm trying to say, is I treat everyone equal, so if someone asks about getting something working, I will give them my opinion based on my own expertise, maybe dumb down some of the terminology.  And I have no problem whatsoever explaining or walking people through my proposed solutions.  Maybe they will learn something in the long run...


THANK YOU thank you thank you.
that's my point as well. why does everyone assume that no one here knows anything about networking here? i know a lot about networking but my *nix skills are lacking. anyways, i have my home network divided into 4 segments and 2 of them are vpn'd back to my office (lan+voip). the other one is the rest of the home + wireless.

i don't mind having the lmce box act as dhcp on the insecure vlan, but i will not replace my firewall. i would like to set up some of my cisco ip phones on the lmce box on the untusted vlan.
i also would like to add some access from one of my pc's on the trusted lan to the core so i can't (or don't want to) use nat'ing on the lmce. i also don't like the idea of the lmce dhcp server forcing its own ip as the gateway address. is there any way i can change the dhcp config to hand out the firewall ip as the gateway?

i don't want to take out the internet just because i take down the lmce core for maint, etc.

why can't they make a FULLY CONFIGURABLE single nic install where you can change all the settings during setup?

8
ok, i am very happy with the firewall i'm using (astaro security Linux) and using the builtin firewall of the core is not an option for me. i only want to use either 1 nic or team up 2 of them together.

that being said, i have no problems setting up the core as my dhcp server, but the ip address it hands out for the default gateway is its own. how do i correct this?

Also, it would be great if the core could support vlans natively, or even multiple internal interfaces, so that it can be multihomed. There are reasons for having even a home network segmented yet wanting the segments all to have direct access to the core. i know linux would have no problem supporting vlans.

i'm a linux noob, but am not afraid of a command line. how much trouble would it be to make the single gigabit interface on my core belong to 2 different vlans and have a dhcp server on the core set up for both of them, with the default gateway pointing to the proper firewall ip?

i believe its the marvell yukon ethernet chip

9
Feature requests & roadmap / Re: Firewall and Proxy
« on: February 27, 2008, 04:30:02 am »
For all who need a firewall,
go to www.astaro.com
Use it on a VIA 1GHz with 3 NICs for my network and woks vry fine
Regards
zaphod

i have to agree with zaphodb.

i use astaro v7 with a quad port nic (bought 4 of them on ebay for $25, LSI quad port) and i'd have to say its easily one of the most powerful, flexible firewall distros out there. the object oriented configuration reminds me of the SonicOS used in Sonicwall's, but IT IS FAR BETTER. i've configured many types of firewall's and routers and i'd have to say its really good enough to stand up to any. if you get the business version it costs thousands of dollars(its just free for personal use and less than 10 users). it has http/smtp proxy, ipsec vpns, qos, antivirus and pretty any other option you'd want, but you only have to enable the features you want to use so you don't waste resources.

Even though i didn't get them, intel pro series nics are by far the most compatible with every linux/BSD distro and they carry the most features.

it's better to just use a separate firewall for your network then you don't have to kill your internet access when you're upgrading linuxmce etc. you can use a relatively low spec older pc and recycle.

another option i also use (i use both astaro and pfsense) if you want to use lower resources is pfSense. it's based on m0n0wall with more features and packages. it uses FreeBSD which generally since v5.0 has had a faster, more efficient network stack than linux and i run it on a PIII 500 with 256MB ram. if you'd like to find out more about FreeBSD 7.0's network enhancements you can check this: http://www.onlamp.com/pub/a/bsd/2008/02/26/whats-new-in-freebsd-70.html (Finally some the of the TCP offload features of gigabit nics will be supported!!, may be too geeky for some)

I'm using this for one of my home IP's because although Astaro is more flexible, it and a couple of other firewall distros couldn't keep up with BitTorrent and 8000-10000 simultaneous connections and 12mbps cable internet. the Athlon64 3200+ cpu would be maxed out. i moved the firewall rules around to optimize things but i think the problem mainly had to do with the fact that all packets traveling to or from an interface had to go through all the firewall rules and the firewall rules could not be bound to a particular interface (maybe blame the flexibility of the design, to put no limitations on  how you want to route or restrict traffic?). Just recently with Astaro v7.1 (i believe) they now allow firewall rules (or should i say objects) to be bound to interfaces, but not before i switched to pfsense at home.

i then setup pfsense with an old PIII 500/256MB just to test things out and with the maximum traffic/connections i never got over 20% CPU! this is with 2 ipsec vpn tunnels running btw. since then i've upgraded to a Duron 950/512MB cause i had it lying around, but now i'm considering switching back to Astaro becuase of the changes they've made to the firewall engine. i'm pretty sure pfsense will always be more efficient but i love the flexibility and feature set of Astaro.

anyways my $.02 on the subject. i always believe that your perimeter protection should be separate from any type of server for security and flexibility. if power usage is a concern then you can always use a low spec older pc or get one of the via c3/c7 itx boards. the jetway boards can come with 3 10/100 or 10/100/1000 lan interfaces.

10
i know now that nvidia are the recommended vid cards for use with linuxmce and linux in general, but now since the last 2 months AMD has released better linux drivers as well as "opened up" an open source version of their drivers. it's still a little early but it looks like the oss driver is already doing pretty well. does this mean we'll see more support and better performance with AMD/ATI and linuxmce?

i'm asking because right now the hd38XX series, while not smashing any performance records (i think it does hold its own, however) runs cooler and they all have full hdmi support. they just seem like a natural fit for htpc's. it would be REALLY nice to get full h.264 acceleration through the cards as well.

i also happen to be in the market for a new card for an htpc that would dual boot windows for when i want some big screen gaming (mostly racing games/simulators).

so all things considered (i know the future can be a little murky) should i go with an nVidia 8800GT or an AMD HD3870?

11
Feature requests & roadmap / Re: AV Wizard Enhancements
« on: November 13, 2007, 05:57:10 am »
For example, I read on avsforum that my SONY Rear Projection HDTV does perfect 1:1 pixelmapping with the following modeline:
"1224x688" 79.393 1224 1328 1456 1664 688 733 738 796 -hsync +vsync

Just Curious, which sony hdtv do you have? sounds like mine, but i'd like to get it to do 1:1 in windows, that is until linuxmce gets mature enough. Even then, i still will prob have to run emulated games on windows tho

ryan

12
Feature requests & roadmap / Re: Firewire STB recording in Myth?
« on: November 13, 2007, 04:19:38 am »
I have successfully streamed and changed channels from My DCT6200 (did not try recording yet) using LinuxMce 7.04 I followed the mythtv firewire notes to get it going.

I noticed everyone mentions the DCT64XX series. I have a newer (digital only) DCT32XX series. Does the same driver work for these? Also, if you want more than 2 tuners can you connect multiple ones to the same core server?

13
Feature requests & roadmap / Need Intermediate Installation Option in DVD
« on: October 27, 2007, 06:21:50 am »
I have the unfortunate problem of being stuck in the middle with my installation options. I'm a complete Linux n00b (at least on command line), yet I extensively use Linux and FreeBSD appliances for personal and business use (FreeNAS, Astaro, pfSense, m0n0wall, IPCop, Smoothwall, endian, etc) as well as the usual commercial router/firewalls.

So I have extensive knowledge of networking but only really work with easy to install Linux appliances. Yet I know how I want them set up (especially with regards to networking).

For example, at my home I use pfSense as a firewall with a VPN tunnel to my work. It has a quad nic in it and I have 4 discrete security zones, WAN, Trusted LAN (VPN access to work), VoIP, and Untrusted LAN. I only have the trusted LAN connected to my home office computer and laptop, the rest of the house and wireless have both untrusted and VoIP access through 802.1q VLAN trunking. That way anyone else who hooks up in the home has no access to my work LAN or main office. Everything is connected together with my managed 24 port gigabit and 24 port 10/100 PoE switches. I know this is WAAAY more than the average home network setup but just filling you in with what I have now.

I would like to make my core to be multihomed with 3 gigabit interfaces mostly for efficiency sake and security. I wouldn't want it to be my router, (or handle any routing for that matter) but it can be my dhcp server. I would like 1 interface for my trusted lan, 1 for the untrusted, and a 3'rd just for hooking up HD Homerun boxes and possibly ip cameras. I tried to configure the network settings both in the LinuxMCE browser infterface (waaaay too limited) and in Kubuntu, I found that those changes caused conflicts.

It would be really nice if the easy DVD had a fully automated install as well as a prompted one that asked you what components you want as well as how you would like them with the default options preselected (but changeable, obviously).
The option of setting up the network interface(s) (maybe even support vlan trunking and link aggregation/ teaming?), and individual dhcp settings for each interface, routing (or disabling NAT, firewall), blocking routing. BTW, some firewalls like mine can be the dhcp server and point towards another boot server, although the core wouldn't be able to autodiscover new devices on the lan.

Be able to choose how you want to partition drives or raid arrays, be able to install but possibly choose to not run certain services. I don't need asterisk (at least right now), it would be nice to free up those resources. Also to set it up as a core only machine with no media interface.

It would be great to do all this using the Easy DVD for those of us that aren't that good at customizing the nuts and bolts of Linux because I don't trust myself enough to setup linux and LinuxMCE on my own properly. I'm sure there are others like me out there as well.

What do you guys think? too difficult? stupid? i'm interested to find out

14
Feature requests & roadmap / Re: Parental Controls please?
« on: September 28, 2007, 06:32:09 am »
Surely not, and it has been mentioned that the implementation of pin codes to switch users (or atleast some users) is being worked on.
That way the "parental units" can store stuff on their users that the children doesn't have access to.
Not excactly what you asked for, but can be used for much the same purposes.
That way you can put the movies you want to prevent the young from seing under "user1/data/video" and actually have it protected by a pin code. You can also block access to the storage itself with username and password on the folders and when you tell LMCE to use a share.
That way the ever smarter youngsters can't rearrange stuff on the storage from windows/Kubuntu either.

Thanks for letting me know about that, that would work just fine for me. Before posting, i searched all of this forum for "parent" or "restrict" or "lock" and didn't find this info so i appreciate this :D

I guess we agree then  ;)
But as Zaerk said in that thread you can sort by filename, and that does pretty much what you want if you organize your storage as you mentioned (folders for series name -> Season and then put the associated files there)

While that would work, I'm sure most of us would rather have a separate section for tv shows that we can sort by folder just like was suggested AND retain the movies section so we see big icons and movie posters. Also it would be nice to be able to search these individually and have the genres sorted separately as well. I'm sure if you're in the mood for a movie, you don't care about bringing up all these archived tv shows every time you browse/search.

15
Feature requests & roadmap / Parental Controls please?
« on: September 27, 2007, 01:24:58 pm »
the LinuxMCE just blows me away with the features and flexibility available but I have one HUGE request (ok, maybe 2) ;)

i have would be the ability to perhaps assign either certain directories or use mpaa R and up ratings to restrict certain content unless a code is entered. while i want my children to have access to most content, i can't allow them to access EVERYTHING. i had a very crude way of doing it in media portal using windows user share acceess, but it would be nice to see it implemented properly in LinuxMCE, plus no way to easily change samba user in the interface, right?  i am not as concerned with locking access to tv shows as i am home when these types of shows are on, but the movies need to be regulated.

of course this feature should be optional so only those that want to impose restrictions can.

perhaps it could be set so that after being unlocked, it would remain in that state until either powered off or inactive (no media playing or activity) for 20 min.
surely i'm not the only parent who has this concern? or am I?  :-\

i also would like to stress how much i agree with an earlier post about tv shows and episodic content. it would be nice if we could have another separate section (TV shows?) for these vids and  also maybe specify a naming convention to differentiate and organize shows ie "name of show SxxExx - episode title'

although not entirely necessary I think it should simply have one icon/picture for the entire series, then once that's selected we could drill down to the season and episode. also, is there any web resource to get tv episode info and descriptions off the web? imdb only has one entry for each series

That would be a huge help to those of us who like to keep shows for later watching or sharing with friends.

i'm in no way demeaning the quality of software here, just putting in my $.02
thanks for reading my long post

Pages: [1]