• Mudança de servidor

      0 comments
      13th Oct 09
      lcm

    Boas,

    sai da Locaweb e estou entrando no www.justhost.com, falam muito sobre ele e seus serviços, fora o preço que é inquestionável, U$70,80 por 2 anos, hospedagem completa, vamos ver como ele se sai, vou tentar ir atualizando os posts antigos, mas acho que acabei perdendo uns.

    Até!

      News
      

  • Configuração basica de segurança no firewall do mikrotik

      0 comments
      13th Oct 09
      lcm

    #Bloqueando scanners
    #em: /ip firewall filter

    add chain=input protocol=tcp tcp-flags=fin,!syn,!rst,!psh,!ack,!urg action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”NMAP FIN Stealth scan”

    add chain=input protocol=tcp psd=21,3s,3,1 action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”Port scanners to list ” disabled=no

    add chain=input protocol=tcp tcp-flags=fin,syn action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”SYN/FIN scan”

    add chain=input protocol=tcp tcp-flags=syn,rst action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”SYN/RST scan”

    add chain=input protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ack action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”FIN/PSH/URG scan”

    add chain=input protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urg action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”ALL/ALL scan”

    add chain=input protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urg action=add-src-to-address-list address-list=”port scanners” address-list-timeout=2w comment=”NMAP NULL scan”

    #e bloqueando a lista:
    add chain=input src-address-list=”port scanners” action=drop comment=”dropping port scanners” disabled=no

    #Pacotes Invalidos

    add chain=input connection-state=established comment=”Accept established connections”
    add chain=input connection-state=related comment=”Accept related connections”
    add chain=input connection-state=invalid action=drop comment=”Drop invalid connections”
    add chain=input protocol=udp action=accept comment=”UDP” disabled=no
    add chain=input protocol=icmp limit=50/5s,2 comment=”Allow limited pings”
    add chain=input protocol=icmp action=drop comment=”Drop excess pings”
    add chain=input protocol=tcp dst-port=22 comment=”SSH for secure shell”
    add chain=input protocol=tcp dst-port=8291 comment=”winbox”

    #Bloq Virus

    add chain=virus protocol=tcp dst-port=135-139 action=drop comment=”Drop Blaster Worm”
    add chain=virus protocol=udp dst-port=135-139 action=drop comment=”Drop Messenger Worm”
    add chain=virus protocol=tcp dst-port=445 action=drop comment=”Drop Blaster Worm”
    add chain=virus protocol=udp dst-port=445 action=drop comment=”Drop Blaster Worm”
    add chain=virus protocol=tcp dst-port=593 action=drop comment=”________”
    add chain=virus protocol=tcp dst-port=1024-1030 action=drop comment=”________”
    add chain=virus protocol=tcp dst-port=1080 action=drop comment=”Drop MyDoom”
    add chain=virus protocol=tcp dst-port=1214 action=drop comment=”________”
    add chain=virus protocol=tcp dst-port=1363 action=drop comment=”ndm requester”
    add chain=virus protocol=tcp dst-port=1364 action=drop comment=”ndm server”
    add chain=virus protocol=tcp dst-port=1368 action=drop comment=”screen cast”
    add chain=virus protocol=tcp dst-port=1373 action=drop comment=”hromgrafx”
    add chain=virus protocol=tcp dst-port=1377 action=drop comment=”cichlid”
    add chain=virus protocol=tcp dst-port=1433-1434 action=drop comment=”Worm”
    add chain=virus protocol=tcp dst-port=2745 action=drop comment=”Bagle Virus”
    add chain=virus protocol=tcp dst-port=2283 action=drop comment=”Drop Dumaru.Y”
    add chain=virus protocol=tcp dst-port=2535 action=drop comment=”Drop Beagle”
    add chain=virus protocol=tcp dst-port=2745 action=drop comment=”Drop Beagle.C-K”
    add chain=virus protocol=tcp dst-port=3127-3128 action=drop comment=”Drop MyDoom”
    add chain=virus protocol=tcp dst-port=3410 action=drop comment=”Drop Backdoor OptixPro”
    add chain=virus protocol=tcp dst-port=4444 action=drop comment=”Worm”
    add chain=virus protocol=udp dst-port=4444 action=drop comment=”Worm”
    add chain=virus protocol=tcp dst-port=5554 action=drop comment=”Drop Sasser”
    add chain=virus protocol=tcp dst-port=8866 action=drop comment=”Drop Beagle.B”
    add chain=virus protocol=tcp dst-port=9898 action=drop comment=”Drop Dabber.A-B”
    add chain=virus protocol=tcp dst-port=10000 action=drop comment=”Drop Dumaru.Y”
    add chain=virus protocol=tcp dst-port=10080 action=drop comment=”Drop MyDoom.B”
    add chain=virus protocol=tcp dst-port=12345 action=drop comment=”Drop NetBus”
    add chain=virus protocol=tcp dst-port=17300 action=drop comment=”Drop Kuang2?
    add chain=virus protocol=tcp dst-port=27374 action=drop comment=”Drop SubSeven”
    add chain=virus protocol=tcp dst-port=65506 action=drop comment=”Drop PhatBot, Agobot, Gaobot”

    #colocar la no inicio para verificar primeiro se e virus

    add chain=forward action=jump jump-target=virus comment=”jump to the virus chain”

    #prevenir ssh brute force
    #/ip firewall filter

    add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklist action=drop comment=”drop ssh brute forcers” disabled=no

    add chain=input protocol=tcp dst-port=22 connection-state=new src-address-list=ssh_stage3 action=add-src-to-address-list address-list=ssh_blacklist address-list-timeout=10d comment=”” disabled=no

    add chain=input protocol=tcp dst-port=22 connection-state=new src-address-list=ssh_stage2 action=add-src-to-address-list address-list=ssh_stage3 address-list-timeout=1m comment=”” disabled=no

    add chain=input protocol=tcp dst-port=22 connection-state=new src-address-list=ssh_stage1 action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m comment=”” disabled=no

    add chain=input protocol=tcp dst-port=22 connection-state=new action=add-src-to-address-list address-list=ssh_stage1 address-list-timeout=1m comment=”” disabled=no

      Uncategorized

  • Lista de bloqueio de virus mikrotik

      0 comments
      13th Oct 09
      lcm

    add chain=virus protocol=tcp dst-port=6776 action=drop disable=no
    add chain=virus protocol=tcp dst-port=32418 action=drop disable=no
    add chain=virus protocol=tcp dst-port=52317 action=drop disable=no
    add chain=virus protocol=tcp dst-port=10520 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31 action=drop disable=no
    add chain=virus protocol=tcp dst-port=40421 action=drop disable=no
    add chain=virus protocol=tcp dst-port=777 action=drop disable=no
    add chain=virus protocol=UDP dst-port=10666 action=drop disable=no
    add chain=virus protocol=tcp dst-port=30029 action=drop disable=no
    add chain=virus protocol=tcp dst-port=666 action=drop disable=no
    add chain=virus protocol=tcp dst-port=666 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5000 action=drop disable=no
    add chain=virus protocol=UDP dst-port=31337 action=drop disable=no
    add chain=virus protocol=tcp dst-port=8787 action=drop disable=no
    add chain=virus protocol=UDP dst-port=1349 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1999 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1243 action=drop disable=no
    add chain=virus protocol=tcp dst-port=10452 action=drop disable=no
    add chain=virus protocol=tcp dst-port=3332 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12973 action=drop disable=no
    add chain=virus protocol=UDP dst-port=31337 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31337 action=drop disable=no
    add chain=virus protocol=tcp dst-port=34324 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12349 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1042 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5400 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31337 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5556 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31336 action=drop disable=no
    add chain=virus protocol=tcp dst-port=4321 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31666 action=drop disable=no
    add chain=virus protocol=tcp dst-port=10101 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=36794 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2115 action=drop disable=no
    add chain=virus protocol=tcp dst-port=61348 action=drop disable=no
    add chain=virus protocol=UDP dst-port=9 action=drop disable=no
    add chain=virus protocol=tcp dst-port=20203 action=drop disable=no
    add chain=virus protocol=tcp dst-port=10607 action=drop disable=no
    add chain=virus protocol=tcp dst-port=9876 action=drop disable=no
    add chain=virus protocol=tcp dst-port=911 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2 action=drop disable=no
    add chain=virus protocol=tcp dst-port=32418 action=drop disable=no
    add chain=virus protocol=UDP dst-port=31338 action=drop disable=no
    add chain=virus protocol=tcp dst-port=41 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2140 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6674 action=drop disable=no
    add chain=virus protocol=UDP dst-port=31337 action=drop disable=no
    add chain=virus protocol=tcp dst-port=999 action=drop disable=no
    add chain=virus protocol=UDP dst-port=26274 action=drop disable=no
    add chain=virus protocol=UDP dst-port=47262 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=65000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2600 action=drop disable=no
    add chain=virus protocol=tcp dst-port=58-59 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1010 action=drop disable=no
    add chain=virus protocol=tcp dst-port=23476 action=drop disable=no
    add chain=virus protocol=tcp dst-port=48-50 action=drop disable=no
    add chain=virus protocol=UDP dst-port=12623 action=drop disable=no
    add chain=virus protocol=tcp dst-port=3459 action=drop disable=no
    add chain=virus protocol=UDP dst-port=3801 action=drop disable=no
    add chain=virus protocol=tcp dst-port=23456 action=drop disable=no
    add chain=virus protocol=tcp dst-port=4567 action=drop disable=no
    add chain=virus protocol=tcp dst-port=79 action=drop disable=no
    add chain=virus protocol=tcp dst-port=50766 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1492 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12345-12346 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6969 action=drop disable=no
    add chain=virus protocol=tcp dst-port=21554 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12223 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31780 action=drop disable=no
    add chain=virus protocol=UDP dst-port=31791-31792 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2023 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31 action=drop disable=no
    add chain=virus protocol=tcp dst-port=8897 action=drop disable=no
    add chain=virus protocol=tcp dst-port=99 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6669 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2283 action=drop disable=no
    add chain=virus protocol=tcp dst-port=7789 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1027 action=drop disable=no
    add chain=virus protocol=tcp dst-port=16772 action=drop disable=no
    add chain=virus protocol=tcp dst-port=4590 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2155 action=drop disable=no
    add chain=virus protocol=tcp dst-port=9400 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6939 action=drop disable=no
    add chain=virus protocol=UDP dst-port=146 action=drop disable=no
    add chain=virus protocol=tcp dst-port=146 action=drop disable=no
    add chain=virus protocol=tcp dst-port=555 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6969 action=drop disable=no
    add chain=virus protocol=tcp dst-port=121 action=drop disable=no
    add chain=virus protocol=tcp dst-port=113 action=drop disable=no
    add chain=virus protocol=tcp dst-port=20203 action=drop disable=no
    add chain=virus protocol=tcp dst-port=31 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1269 action=drop disable=no
    add chain=virus protocol=tcp dst-port=20000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1050 action=drop disable=no
    add chain=virus protocol=tcp dst-port=16484 action=drop disable=no
    add chain=virus protocol=tcp dst-port=17777 action=drop disable=no
    add chain=virus protocol=tcp dst-port=555 action=drop disable=no
    add chain=virus protocol=tcp dst-port=138 action=drop disable=no
    add chain=virus protocol=tcp dst-port=137 action=drop disable=no
    add chain=virus protocol=tcp dst-port=139 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12345 action=drop disable=no
    add chain=virus protocol=tcp dst-port=20034 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5031 action=drop disable=no
    add chain=virus protocol=tcp dst-port=7300 action=drop disable=no
    add chain=virus protocol=tcp dst-port=57341 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1313 action=drop disable=no
    add chain=virus protocol=tcp dst-port=30100 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1024 action=drop disable=no
    add chain=virus protocol=UDP dst-port=1200 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5011 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1969 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5637 action=drop disable=no
    add chain=virus protocol=tcp dst-port=555 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2801 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12345 action=drop disable=no
    add chain=virus protocol=tcp dst-port=3700 action=drop disable=no
    add chain=virus protocol=UDP dst-port=10067 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6969 action=drop disable=no
    add chain=virus protocol=tcp dst-port=11223 action=drop disable=no
    add chain=virus protocol=tcp dst-port=22222 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1024 action=drop disable=no
    add chain=virus protocol=tcp dst-port=531 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1095 action=drop disable=no
    add chain=virus protocol=tcp dst-port=65535 action=drop disable=no
    add chain=virus protocol=tcp dst-port=8989 action=drop disable=no
    add chain=virus protocol=tcp dst-port=7000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=53001 action=drop disable=no
    add chain=virus protocol=tcp dst-port=3128 action=dro disable=no
    add chain=virus protocol=tcp dst-port=5569 action=drop disable=no
    add chain=virus protocol=tcp dst-port=666 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6667 action=drop disable=no
    add chain=virus protocol=tcp dst-port=54321 action=drop disable=no
    add chain=virus protocol=tcp dst-port=21554 action=drop disable=no
    add chain=virus protocol=tcp dst-port=11223 action=drop disable=no
    add chain=virus protocol=tcp dst-port=605 action=drop disable=no
    add chain=virus protocol=tcp dst-port=11000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5555 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6912 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1981 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1600 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1001 action=drop disable=no
    add chain=virus protocol=tcp dst-port=30303 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5000 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1207 action=drop disable=no
    add chain=virus protocol=tcp dst-port=33911 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1807 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1170 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2565 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1243 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1243 action=drop disable=no
    add chain=virus protocol=tcp dst-port=10086 action=drop disable=no
    add chain=virus protocol=tcp dst-port=421 action=drop disable=no
    add chain=virus protocol=tcp dst-port=61466 action=drop disable=no
    add chain=virus protocol=tcp dst-port=3456 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2140 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2716-9999 action=drop disable=no
    add chain=virus protocol=tcp dst-port=40412 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6000-6400 action=drop disable=no
    add chain=virus protocol=UDP dst-port=65432 action=drop disable=no
    add chain=virus protocol=tcp dst-port=65432 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2001 action=drop disable=no
    add chain=virus protocol=UDP dst-port=29891 action=drop disable=no
    add chain=virus protocol=tcp dst-port=23 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1999 action=drop disable=no
    add chain=virus protocol=UDP dst-port=34555 action=drop disable=no
    add chain=virus protocol=tcp dst-port=23 action=drop disable=no
    add chain=virus protocol=tcp dst-port=23456 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1234 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1020 action=drop disable=no
    add chain=virus protocol=tcp dst-port=6669 action=drop disable=no
    add chain=virus protocol=tcp dst-port=4242 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1024 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1245 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12361 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12631 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2583action=drop disable=no
    add chain=virus protocol=tcp dst-port=1080 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1080 action=drop disable=no
    add chain=virus protocol=tcp dst-port=135 action=drop disable=no
    add chain=virus protocol=tcp dst-port=999 action=drop disable=no
    add chain=virus protocol=tcp dst-port=12345 action=drop disable=no
    add chain=virus protocol=tcp dst-port=2300 action=drop disable=no
    add chain=virus protocol=tcp dst-port=5550 action=drop disable=no
    add chain=virus protocol=tcp dst-port=1090 action=drop disable=no
    add chain=virus protocol=tcp dst-port=37651 action=drop disable=no

      Uncategorized

  • desabilitar autorun em todas as unidades

      0 comments
      13th Oct 09
      lcm

    Virus de pendrive são uma praga para ambientes corporativos, é mais que fundamental desabilita-lo.
    para desabilita-lo siga esses passos:

    iniciar -> executar
    digite gpedit.msc
    configurações do computadore -> modelos administrativos -> sistema

    de um clique duplo em “desativar auto executar”
    clique em ativar e depois selecione “todas as unidades”

    pronto, pelo menos o virus nao vai ser executado pelo proprio windows!!!

      Uncategorized

  • Acessar pastas de usuários de outro sistema operacional

      0 comments
      13th Oct 09
      lcm

    Ao colocar um hd com Rwindows previamente instalado em outro Rwindows, vc irá se deparar com a seguinte situação:
    ACESSO NEGADO!!!
    essa é a mensagem que irá aparecer ao acessar as pastas dos usuários em documents and settings, porta fechada, janela encontrada:

    1. Desativar o compartilhamento simples de arquivo:

    -Clique em Iniciar e em Meu computador.
    -No menu Ferramentas, clique em Opções de pasta e na guia Modo de Exibição.
    -Em Configurações avançadas, clique para limpar a caixa de seleção Usar compartilhamento simples de arquivo (recomendável) e clique em OK.

    2. Clique com o botão direito na pasta sobre a qual quiser ter propriedade e clique em Propriedades.

    3. Clique na guia Segurança e em OK na mensagem de Segurança, se aparecer.

    4. Clique em Avançado e na guia Proprietário.

    5. Na lista Nome, clique no seu nome de usuário, em Administrador se tiver feito logon como um administrador, ou clique no grupo de Administrators.

    Se quiser se tornar proprietário do conteúdo dessa pasta, clique para marcar a caixa de seleção Substituir o proprietário em sub-recipientes e objetos.

    6. Clique em OK.

    Você pode receber a seguinte mensagem de erro, em que Pasta é o nome da pasta sobre a qual você quer ter propriedade:
    Você não tem permissão para ler o conteúdo do diretório Pasta. Você quer substituir as permissões do diretório por permissões que lhe concedam controle total? Todas as permissões serão substituídas se você pressionar Sim.

    7. Clique em Sim.

    8. Clique em OK e aplique novamente as permissões e configurações de segurança que quiser para a pasta e seu conteúdo.

    Problema resolvido, duvidas?, comment…

      lembrete, windows

  • Balanceamento de carga com duas placas de rede no linux.

      0 comments
      13th Oct 09
      lcm

    Neste artigo mostrarei como fazer um balanceamento de carga entre duas ou mais placas de rede em um servidor linux, podendo ser executado qualquer tipo de serviço linux.
    No ambiente de implementação foi utilizado um servidor Dell 2500 com dois processadores Intel Pentium(r) III; 1000 Mhz, 1GB DIMM pc133, hd 80 GB SCSI, e como sistema operacional foi utilizado o debian 4r4a
    Para começar temos q ue prestar atenção na compilação do kernel, e ter certeza que compilou o módulo BONDING em:
    [ ] Device Drivers
    [ ] Network Device Support
    [ ] Bonding Driver Support

    para verificar se você tem o módulo BONDING compilado execute:

    # modinfo bonding

    Deve aparecer algo como:

    filename:       /lib/modules/2.6.14/kernel/drivers/net/bonding/bonding.ko
    parmtype:       max_bonds:int
    parm:           max_bonds:Max number of bonded devices
    parmtype:       miimon:int
    parm:           miimon: Link check interval in milliseconds
    parmtype:       updelay:int
    parm:           updelay:Delay before considering link up, in milliseconds
    parmtype:       downdelay:int
    parm:           downdelay:Delay before considering link down, in milliseconds
    parmtype:       use_carrier:int
    parm:           use_carrier:Use netif_carrier_ok (vs MII ioctls) in miimon; 0 for off, 1 for on (default)
    parmtype:       mode:charp
    parm:           mode:Mode of operation : 0 for round robin, 1 for active-backup, 2 for xor
    parmtype:       primary:charp
    parm:           primary:Primary network device to use
    parmtype:       lacp_rate:charp
    parm:           lacp_rate:LACPDU tx rate to request from 802.3ad partner (slow/fast)
    parmtype:       xmit_hash_policy:charp
    parm:           xmit_hash_policy:XOR hashing method : 0 for layer 2 (default), 1 for layer 3+4
    parmtype:       arp_interval:int
    parm:           arp_interval:arp interval in milliseconds
    parmtype:       arp_ip_target:array of charp
    parm:           arp_ip_target:arp targets in n.n.n.n form
    license:        GPL
    version:        2.6.4
    description:    Ethernet Channel Bonding Driver, v2.6.4
    author:         Thomas Davis, tadavis@lbl.gov and many others
    vermagic:       2.6.14 preempt K7 gcc-3.3
    depends:
    srcversion:     1E88D1C30D529F921F5B399

    Se aparecer algo como:

    modinfo: could not find module bonding

    O módulo não está disponível no sistema.

    Tenha certeza que selecionou a opção no menu do kernel:

    # make xconfig

    Tenha certeza que compilou os módulos:

    # make modules

    Tenha certeza que instalou os módulos:

    # make modules_install

    Se o módulo esta ok vamos para a proxima etapa:

    Para facilitar adicione ao repositorio do apt o caminho:

    deb http://ftp.debian.org/debian/ etch main contrib

    # apt-get update

    # apt-get install ifenslave

    Após instalado não há necessidade de configurar ip nas interfaces físicas, so devemos levantá-las(up)

    # ifconfig eth1 up
    # ifconfig eth0 up

    O ip virtual que vai ser utilizado é o 10.20.0.36, com a mascara 255.255.0.0, segue os comandos utilizados:

    # modprobe bonding
    # ifconfig bond0 10.20.0.36 netmask 255.255.0.0
    # ifenslave -v bond0 eth0 eth1
    ifenslave.c:v1.1.0 (December 1, 2003)
    o Donald Becker (becker@cesdis.gsfc.nasa.gov).
    o Detach support added on 2000/10/02 by Willy Tarreau (willy at meta-x.org).
    o 2.4 kernel support added on 2001/02/16 by Chad N. Tindel
    (ctindel at ieee dot org).
    ABI ver is 2
    Interface ‘eth0?: flags set to 1062.
    Interface ‘eth0?: address cleared
    Master ‘bond0?: hardware address set to 00:13:d4:24:c4:3c.
    Interface ‘eth1?: flags set to 1042.
    Interface ‘eth1?: address cleared

    Ao configurar-mos o bonding, perdemos a rota default, então vamos colocar a rota padrão de novo na tabela de roteamento:

    # route add default gw 10.20.0.1

    Por fim não esquecer de criar um script como o abaixo e colocar para executar no /etc/rc.local, para toda vez que o servidor inicializar executar o bonding

    #!/bin/bash

    ifconfig eth0 up

    ifconfig eth1 up

    modprobe bonding

    ifconfig bond0 10.20.0.36 netmask 255.255.0.0

    ifenslave -v bond0 eth0 eth1

    route add default gw 10.20.0.1

    Por Hoje!!!

    duvidas?, comment…

    Fonte: http://www.vivaolinux.com.br/artigo/Balanceamento-de-carga-entre-2-placas-de-rede/?pagina=4

      Linux
      , , ,

  • DDns no Mikrotik usando o www.changeip.com

      0 comments
      13th Oct 09
      lcm

    Intro:

    Para os que tem IP dinâmico, como velox, e querem acesso ao seu servidor ou computador sem ter que descobrir o ip, utilizem esta dica abaixo, que possibilita a execução de um ddns(dns através de ip dinâmico) no routerOS (Mikrotik), através de scripts.

    Vamos Lá:

    crie um script e insira o seguinte conteudo, alterando as primeiras variaveis para as informações da sua conta no www.changeIP.com

    :log info "DDNS: Begin"

    :global ddns-user “NOMEDEUSUARIO”
    :global ddns-pass “SUASENHA”
    :global ddns-host “SEUDDNS”
    :global ddns-interface “INTERFACECOMIPDINAMICO”

    :global ddns-ip [ /ip address get [/ip address find interface=$ddns-interface] address ]

    :if ([ :typeof $ddns-lastip ] = nil ) do={ :global ddns-lastip 0.0.0.0/0 }

    :if ([ :typeof $ddns-ip ] = nil ) do={

    :log info (”DDNS: No ip address present on ” . $ddns-interface . “, please check.”)

    } else={

    :if ($ddns-ip != $ddns-lastip) do={

    :log info “DDNS: Sending UPDATE!”
    :log info [ /tool dns-update name=$ddns-host address=[:pick $ddns-ip 0 [:find $ddns-ip "/"] ] key-name=$ddns-user key=$ddns-pass ]
    :global ddns-lastip $ddns-ip

    } else={

    :log info “DDNS: No change”

    }

    }

    :log info “DDNS: End”

    Para finalizar insira um novo agendamento (scheduler) para executar este script de tempos em tempos, faça a sua configuração, duvidas? comment…

      Mikrotik
      , , , ,