[ previous ] [ next ] [ threads ]
 
 From:  "Christopher M. Iarocci" <iarocci at eastendsc dot com>
 To:  Vince Van De Coevering <vpv at figaros dot com>, m0n0wall mailing list <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] Excellent (and affordable) m0n0 platform
 Date:  Tue, 20 Sep 2005 21:18:04 -0400
Vince,

Even after using a serial port enabled image, I get nothing from the 
Intrusion box.  I'm off to strip the ide to CF converter out of my 
current m0n0wall box to see if it makes a difference.

Chris


Vince Van De Coevering wrote:

>Have you tried the method I forwarded from Benoit?  (pasted here for your
>convenience)
>
>Here is the recipe (please share it in the mailing list - I am not
>suscribed):
> 
>Write your m0n0wall image (the Generic-PC one, very important) to your
>CompactFlash card.
> 
>Now you have to modify the filesystem on it (create a tiny file at the root)
>with these simple steps.
> 
>Download and run the excellent "m0n0wall Live Installer", by Chris Buechler:
>http://chrisbuechler.com/index.php?id=17
> 
>Boot it (I use VMware and I connect my USB CF card reader as a "Physical
>Disk", seen as ad0 in BSD) and use the following commands to enable the
>Serial Console:
> 
>camcontrol devlist
>atacontrol list
> 
>mkdir /mnt/cf
>mount /dev/<device name reported by atacontrol or camcontrol> /mnt/cf
>echo -h>/mnt/cf/boot.config
>sync
>umount /mnt/cf
> 
>Now your Generic-PC m0n0wall image is "Serial Console" enabled.  :-)
> 
>Connect to your PDS with a null-modem cable and run your favorite Terminal
>Emulation program at 9600n81.
>
>Vince Van De Coevering
>IT Manager
>Figaro's Italian Pizza, Inc.
>503-371-9318 x216
>vpv at figaros dot com
>
>  
>
>>-----Original Message-----
>>From: Christopher M. Iarocci [mailto:iarocci at eastendsc dot com] 
>>Sent: September 19, 2005 4:57 PM
>>To: Vince Van De Coevering
>>Cc: 'm0n0wall at lists dot m0n0 dot ch'
>>Subject: Re: [m0n0wall] Excellent (and affordable) m0n0 platform
>>
>>
>>Vince,
>>
>>Could you be specific in your steps?
>>
>>When you insert a working CF card, did you remove the hard 
>>drive?  Was 
>>the CF card already written with a m0n0wall image?  Which saved image 
>>are you referring to that you upload with your browser?
>>
>>I'm not interested in the original system at all, I just want 
>>it to run 
>>m0n0wall.  Mine just seems to not even boot from the CF card. 
>> Of course 
>>Intrusions omission of a video port makes it all but impossible to 
>>accurately tell what is going on.  I have half a mind to just 
>>order the 
>>panel from Industrial Design that includes the video, 
>>keyboard, mouse ports.
>>
>>Chris
>>
>>
>>Vince Van De Coevering wrote:
>>
>>    
>>
>>>Sorry this response is so late... The wife "ordered" a computer free
>>>weekend....
>>>
>>>Its been my experience that nothing shows up on the serial 
>>>      
>>>
>>port.  In its
>>    
>>
>>>original CheckPoint config the serial port shows the kernel 
>>>      
>>>
>>loading and an
>>    
>>
>>>option to login.  For every unit I've tried its simply been 
>>>      
>>>
>>a matter of
>>    
>>
>>>installing a working CF card, connecting via the web gui at 
>>>      
>>>
>>the default
>>    
>>
>>>address, and uploading the saved image from my web browser.  
>>>
>>>The original system appears to be maintained/flashed through 
>>>      
>>>
>>a series of
>>    
>>
>>>update programs obtainable from Intrusion.
>>>
>>>
>>>Vince Van De Coevering
>>>IT Manager
>>>Figaro's Italian Pizza, Inc.
>>>503-371-9318 x216
>>>vpv at figaros dot com
>>>
>>> 
>>>
>>>      
>>>
>>>>-----Original Message-----
>>>>From: Christopher M. Iarocci [mailto:iarocci at eastendsc dot com] 
>>>>Sent: September 17, 2005 6:53 AM
>>>>To: Christopher M. Iarocci
>>>>Cc: Vince Van De Coevering; m0n0wall at lists dot m0n0 dot ch
>>>>Subject: Re: [m0n0wall] Excellent (and affordable) m0n0 platform
>>>>
>>>>
>>>>In answer to my own question, no, a null modem cable and 
>>>>hyperterminal 
>>>>will not show you the bios when it's booting up.
>>>>
>>>>Christopher M. Iarocci wrote:
>>>>
>>>>   
>>>>
>>>>        
>>>>
>>>>>Vince,
>>>>>
>>>>>Any clue how to get into the bios of these things?  I 
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>didn't have as 
>>>>   
>>>>
>>>>        
>>>>
>>>>>much luck as you.  I got a PDS2300 which originally had a 
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>hard drive.  
>>>>   
>>>>
>>>>        
>>>>
>>>>>I do not want to keep the hard drive so I removed it, and 
>>>>>          
>>>>>
>>put in my 
>>    
>>
>>>>>m0n0wall written CF card in the appropriate slot.  
>>>>>          
>>>>>
>>However, it does 
>>    
>>
>>>>>not seem to be booting (or at least I don't think).  I 
>>>>>          
>>>>>
>>must have to 
>>    
>>
>>>>>tell the bios to use the CF card.  Just not sure how to get 
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>in it, or 
>>>>   
>>>>
>>>>        
>>>>
>>>>>view it.  Will the bios come over the serial port using a 
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>null modem 
>>>>   
>>>>
>>>>        
>>>>
>>>>>cable and a terminal program like hyperterminal?
>>>>>
>>>>>Chris
>>>>>
>>>>>
>>>>>Vince Van De Coevering wrote:
>>>>>
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>>>Chris,
>>>>>>
>>>>>>I used a USB card reader to write the CF card using the 
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>instructions 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>on the
>>>>>>m0n0 site and plugged the CF card into the built in CF socket.
>>>>>>
>>>>>>No changes to the NIC configs were necessary. 
>>>>>>I know that an IDE to CF adapter works on the ide channel 
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>on the PDS2100
>>>>   
>>>>
>>>>        
>>>>
>>>>>>motherboard (because I broke a pin on the built in CF 
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>socket).  There 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>is a 5
>>>>>>volt socket on the motherboard to power the adapter.
>>>>>>
>>>>>>The first PDS2100 I used did not have the a drive installed 
>>>>>>(Checkpoint was
>>>>>>loaded from the CF card).  I'm going to try a hard drive 
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>install on 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>the unit
>>>>>>currently on my test bench.  I'll pull the drive, attach it to my 
>>>>>>desktop
>>>>>>system and use the write utility.  There isn't much point 
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>in having 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>the hard
>>>>>>drive installed unless you boot from it, especially if 
>>>>>>            
>>>>>>
>>the logs are
>>    
>>
>>>>>>forwarded a dedicated logging server.
>>>>>>Vince Van De Coevering
>>>>>>IT Manager
>>>>>>Figaro's Italian Pizza, Inc.
>>>>>>503-371-9318 x216
>>>>>>vpv at figaros dot com
>>>>>>
>>>>>>
>>>>>>
>>>>>>       
>>>>>>
>>>>>>            
>>>>>>
>>>>>>>-----Original Message-----
>>>>>>>From: Christopher M. Iarocci 
>>>>>>>              
>>>>>>>
>>[mailto:iarocci at eastendsc dot com] Sent: 
>>    
>>
>>>>>>>September 15, 2005 4:56 PM
>>>>>>>To: Vince Van De Coevering
>>>>>>>Subject: Re: [m0n0wall] Excellent (and affordable) m0n0 platform
>>>>>>>
>>>>>>>
>>>>>>>Vince,
>>>>>>>
>>>>>>>I just realized that the PDS2300 must be using SIS chipset NIC 
>>>>>>>cards, which is why you were able to just log right in.  I'm 
>>>>>>>assuming you did not have to change the NIC assignment at the 
>>>>>>>console at all, which can only lead to the conclusion that the 
>>>>>>>default SIS driver works on the NICs built into the 
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>device.  My last 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>question then is, did you use an IDE to CF adaptor to write your 
>>>>>>>card, or did you use a USB card reader/writer?  Also, did 
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>you remove 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>the hard drive from the device?
>>>>>>>
>>>>>>>Chris
>>>>>>>
>>>>>>>Vince Van De Coevering wrote:
>>>>>>>
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>Chris,
>>>>>>>>
>>>>>>>>You can configure m0n0 without the using the serial console.
>>>>>>>>
>>>>>>>>I put the generic m0n0 image on a cf card, installed the     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>card, and booted
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>the unit.  Using a crossover cable I connected a pc and set     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>it to an IP on
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>the default address block (192.168.1.x) and pointed my 
>>>>>>>>                
>>>>>>>>
>>browser at
>>    
>>
>>>>>>>>192.168.1.1 and was greeted by the m0n0 GUI.  From there I     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>was able to
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>configure everything.
>>>>>>>>When I get some spare time (and a spare machine) I'm going     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>to look a bit
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>closer at FreeBSD.  I generally use Gentoo Linux when I 
>>>>>>>>                
>>>>>>>>
>>need     
>>    
>>
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>a unix-based
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>server.
>>>>>>>>
>>>>>>>>Vince Van De Coevering
>>>>>>>>IT Manager
>>>>>>>>Figaro's Italian Pizza, Inc.
>>>>>>>>503-371-9318 x216
>>>>>>>>vpv at figaros dot com
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>   
>>>>>>>>
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>>>-----Original Message-----
>>>>>>>>>From: Christopher M. Iarocci 
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>[mailto:iarocci at eastendsc dot com] Sent: 
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>>>September 07, 2005 7:28 PM
>>>>>>>>>To: Vince Van De Coevering
>>>>>>>>>Cc: 'm0n0wall at lists dot m0n0 dot ch'
>>>>>>>>>Subject: Re: [m0n0wall] Excellent (and affordable) 
>>>>>>>>>                  
>>>>>>>>>
>>m0n0 platform
>>    
>>
>>>>>>>>>Vince Van De Coevering wrote:
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>     
>>>>>>>>>
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>>>>The intrusion.com PDS 2100 series of appliances make 
>>>>>>>>>>               
>>>>>>>>>>
>>>>>>>>>>                    
>>>>>>>>>>
>>>>an         
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>excellent and
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>>affordable m0n0 platform.
>>>>>>>>>>
>>>>>>>>>>There are several on ebay and I just purchased 2 for 
>>>>>>>>>>               
>>>>>>>>>>
>>>>>>>>>>                    
>>>>>>>>>>
>>>>$9.95 each.
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>>>>http://cgi.ebay.com/Intrusion-PDS2300-Firewall-Router-Warrant
>>>>>>>>>>  
>>>>>>>>>>       
>>>>>>>>>>               
>>>>>>>>>>
>>>>>>>>>>                    
>>>>>>>>>>
>>>>>>>>y_W0QQitemZ5800
>>>>>>>>
>>>>>>>>
>>>>>>>>   
>>>>>>>>
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>>>792840QQcategoryZ51168QQssPageNameZWDVWQQrdZ1QQcmdZViewItem
>>>>>>>>>
>>>>>>>>>The one gotcha with these devices is that they don't 
>>>>>>>>>                  
>>>>>>>>>
>>have       
>>    
>>
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>video cards (they
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>use a serial port instead) so you have to connect a PC 
>>>>>>>>>                  
>>>>>>>>>
>>to       
>>    
>>
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>the LAN interface
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>and use a web browser to configure them.  Or you can       
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>customize the kernel
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>     
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>>to
>>>>>>>>
>>>>>>>>
>>>>>>>>   
>>>>>>>>
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>>>use the serial console.
>>>>>>>>>
>>>>>>>>>Most come with 3 10/100 ports, 2 USB ports, Celeron 600 
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>CPU       
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>and 64 or 128
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>megs of ram (can replace the DIMM to increase size).
>>>>>>>>>They have a CF slot for booting and some include 10 meg 
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>SFF       
>>>>   
>>>>
>>>>        
>>>>
>>>>>>>(laptop sized)
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>>hard drives.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>Vince Van De Coevering
>>>>>>>>>IT Manager
>>>>>>>>>Figaro's Italian Pizza, Inc.
>>>>>>>>>503-371-9318 x216
>>>>>>>>>vpv at figaros dot com
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>     
>>>>>>>>>             
>>>>>>>>>
>>>>>>>>>                  
>>>>>>>>>
>>>>>>>>Vince,
>>>>>>>>
>>>>>>>>Have you, or do you know anyone who has modified the kernel     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>to be able   
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>to use the serial console with this unit?  I'm confused at     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>how you would   
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>use the LAN interface to configure the router since the     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>generic version   
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>requires you to first assign that NIC.  Did you modify the     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>XML file to   
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>designate the LAN NIC ahead of the original boot maybe?
>>>>>>>>FYI, I have one of these coming to me.  Wanted to try it     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>out, although   
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>none were to be found as cheap as you bought them.  I paid     
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>$31 on Ebay.
>>>>>>> 
>>>>>>>
>>>>>>>         
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>Thanks.
>>>>>>>>
>>>>>>>>Chris
>>>>>>>>
>>>>>>>>
>>>>>>>>   
>>>>>>>>           
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>>------------------------------------------------------------
>>>>        
>>>>
>>---------
>>    
>>
>>>>   
>>>>
>>>>        
>>>>
>>>>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>>>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>>>>
>>>>>     
>>>>>
>>>>>          
>>>>>
>>>---------------------------------------------------------------------
>>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>>
>>> 
>>>
>>>      
>>>