Old train depot

Filed under: Uncategorized — Zarya 27 November, 2009 @ 9:44 am

After some search we found a old train depo in gemany so we went for it and this is the result

{wp-gallery-remote: gallery=0; rootalbum=50515; showalbumtitle=true; showsubalbums=true; showimagesheader=true; imagefilter=include:50525,50645,50653,50585,50605;}

Shooting pictures @ Radio Kootwijk

Filed under: Uncategorized — Zarya 16 November, 2009 @ 8:04 am

{wp-gallery-remote: gallery=0; rootalbum=50243; showalbumtitle=true; showsubalbums=true; showimagesheader=true; imagefilter=include:50511;}

Ipsec gre between OpenBSD en Linux

Filed under: Computers — Zarya 28 October, 2009 @ 10:46 am

Linux Side:

Tools u need are:
racoon
ipsec-tools

/etc/ipsec-tools.conf

spdadd <Remote IP> <Local IP> any
    -P in ipsec esp/transport/<Remote IP>-<Local IP>/require;
spdadd <Local IP> <Remote IP> any
    -P out ipsec esp/transport/<Local IP>-<Remote IP>/require;

/etc/racoon/psk.txt

<Remote IP> <Your PSK>

/etc/racoon/racoon.conf

remote <Remote IP> {
    exchange_mode main;
    proposal {
        encryption_algorithm blowfish;
        hash_algorithm md5;
        authentication_method pre_shared_key;
        dh_group modp1024;
    }
}

sainfo address <Local IP>/32 any address <Remote IP>/32 any {
    pfs_group modp1024;
    encryption_algorithm blowfish;
    authentication_algorithm hmac_md5;
    compression_algorithm deflate;

}

sainfo address <Remote IP>/32 any address <Local IP>/32 any {
    pfs_group modp1024;
    encryption_algorithm blowfish;
    authentication_algorithm hmac_md5;
    compression_algorithm deflate;
}

Configuration on the OpenBSD side:

Keep in mind the if PF is enabled you need to add firewall rules for the ipsec traffic
proto ah
proto esp
proto ipencap
port 500 udp
and check the rules for interface enc0 its advised to set skip on that interface

/etc/ipsec.conf

ike esp transport from <Local IP> to <Remote IP> peer <Remote IP> \
main auth hmac-md5 enc blowfish group modp1024 \
quick auth hmac-md5 enc blowfish group modp1024 \
psk <Your PSK>

/etc/isakmpd/isakmpd.policy

Authorizer: "POLICY"
Comment: This bare-bones assertion accepts everything

/etc/sysctl.conf

net.inet.gre.allow=1
net.inet.ipip.allow=1
net.inet.ah.enable=1
net.inet.esp.enable=1

/etc/rc.conf

isakmpd_flags=""
ipsec=YES

CyanogenMod 4.2.1

Filed under: Computers — Zarya 25 October, 2009 @ 11:28 am

Just upgraded to cm-4.2.1 it looks like that everything is working super
even the mpd client pmix works fine.  I hope that the music player bug is fixed
now its was starting to annoy me but we wil see

Links:
Cyanogenmod
pmix

<<< Previous Page - Next Page >>>

regional
regional
regional
regional