Life, as it were…

Tag: oldblog

Windows Hack – SSH from Command Line

This isn’t really a hack but rather a simple trick to keep your system management tasks as near to each other as possible. The trick I am referring to a the moment is using Putty on Windows. Putty is a nifty and free SSH, Telnet, Rlogin, RAW and Console shell program that allows you to do the aforementioned management tasks from a single application on Windows. Putty is available here.

Now for the easiest trick in the world. Download Putty form that website, rename putty.exe to ssh.exe and place it in the C:WindowsSystem32 directory. This will allow you to launch putty from the command line just like telnet as well as add some other neat things.

From the command line (run or CMD)

ssh -telnet 192.168.1.1
ssh 192.168.1.254

Putty can also just be launched for an interactive setup with “ssh” from the command line. That will launch the newly renamed executable for you to change settings on and connect to the items that you would like to administer. Putty also allows you to tunnel traffic through SSH with localhost connections. I’ll try to make a fun sheet on that as well. One good tutorial I read was how to setup a SOCKS proxy through and SSH tunnel.

December 16, 2007
Firewall Throughput and Performance Testing with TTCP

Lately with my pfSense firewall project I’ve been pretty busy with the configuration but now that I’m slowing down a little and finishing up the last bits, I can concentrate on a very important part of any firewall or server for that matter. I needed a way to test the amount of data (throughput) that the link outside of my firewall could handle and also test the processor and disk usages when at load (performance). I accomplished this by using TTCP, a utility that allows you to send and receive multiple threads of TCP data. At the end of the test, which usually takes about a minute and a half, you get a display of how long the test took, what your buffer size was (that can be modified), and what your total throughput was. The binaries for Windows and other OS’ can be downloaded from here. You will need to have this running two or more computers to get any kind of results. The “receiver” is ran accordingly:

pcattcp.exe -r

The transmitter, another computer on a remote segment of the network can be run with:

pcattcp.exe -t 10.0.0.20

The software will then work it’s magic and give you the report at the end of the test. To test from multiple locations, you can launch multiple sessions one right after another on the receiver side and have multiple computers be transmitters to that single receiver.

The diagram below illustrates what I am speaking to accomplish with this.

Alternatives to TTCP would be iperf and qcheck as well as a whole lot more.

November 16, 2007
Google Doc’s Rocks!

I was surfing the net tonight like I normally do at night and found a very good video on why to use Google docs. I use the online colaboration software as a place to centrally store my most redilly used and edited files to include a todo list for work, my home projects, my resume and my monthly bills. I share my home projects and monthly bills documents with my wife so that we can collaborate on a subject and prevent the email attachment tag game. Here’s the video:

He puts it into words and pictures much better than I can. I like the document icons. 🙂

November 15, 2007
pfsense in the Enterprise

I know I haven’t been updating my blog like I usually do, but to my defense, I have been pretty busy. Lately it seems even though I would like to go home on time, I don’t or can’t because of another pressing issue or a deadline at work. Additionally, I have added a few projects to my todo list. One of which includes building a fully functional, failover capable firewall solution that can handle more traffic than I personally can provide content for. The solution I am speaking of is pfSense. I have mentioned the BSD based firewall solution before but that was only my home firewall. The CD-ROM based version of the distribution works perfectly on even some of the oldest (I’m using that term loosly) hardware and still provides enough throughput for the biggest Cable download speeds you can buy.

At work, as a project, I am (with one of my colleagues) building two firewalls that act as one just like an active/passive failover cluster. Currently I am running release 1.2 RC3 that was released just a few days ago. So far the solution has been stellar to say the least. The developers and the community behind pfSense are really awesome, the capabilities that the “FREE” firewall solution has in it’s back pocket beat the crap out of a Cisco PIX 515 or ASA 5510. Sure, you can do most all of the things that pfSense does with a PIX or ASA from Cisco but It’ll cost you extra. Now with the Snort Package available from pfSense as well as Squid and a BGP package, pfSense is starting to grow some muscles. I will say that Cisco has the VPN department OWNED but hopefully the features that they offer will be developed for OpenVPN in the near future. Now on to the build.

Here is a simplified diagram of the design that I have built successfully:

The design is a no brainer, managed switches inside and outside, two firewalls with a CARP sync connection between and 3 VLAN’s internal to the network that are in noway, shape or form able to talk to each other, unless of course, someone does a little VLAN hopping. I’m not going to worry about that at this point however.

The true beauty behind using pfSense for this solution is the simplicity of the installation and configuration to get it up to a production level. Once you figure out how the different facets of NAT can help you achieve your goal, the configuration is very straight forward. If you want your entire segment to send out traffic as a single IP (NAT Overload) you put it in the Outbound NAT table, if you want to provide services on specific ports, you add them to the Port Forward Table, and if you want your single IP address on the inside to have it’s own dedicated outside IP, add it to the 1:1 NAT Table. Very simple stuff. When you add things to the Port Forward NAT table, it has the ability to auto add a firewall entry for you as well, I usually let it do this and then adjust it’s configuration accordingly.

The CARP (sync mechanism) for pfSense is quite easy to configure as well. Their is a very nice tutorial on http://www.pfsense.com that shows you how to accomplish this. Basically on the primary firewall, you put in the IP of the other firewall, tell it what interface to sync through and what to sync, and voila, you are done.

I’ve barely started putting services behind the firewall but will be pushing the project live here very soon. I will keep you posted on how it performs, the battles that I had to fight to get things to work and offer any guidance that I may have that would benefit you. Thanks for reading.

November 14, 2007
Windows / Linux Software Equivalents

Windows is definitely the big player in the game still, however Linux usage is gaining some steam. This post is going to concentrate on what programs you can use to make the switch to Linux. This process is not going to be entirely pain free if you are an avid user of all things computer related, however, if you are just a basic office user/worker or only need to check your email and play a few basic online games, Linux might be for you. There are literally thousands of choices for most applications out there so I’m only going to name the ones that I like or use and also only ones that work on Ubuntu. If you have any additions, please let me know.

Windows vs. Linux (Ubuntu)

Internet Browsing
W – Internet Explorer
U – Firefox

Email Clients
W – Outlook, Outlook Express
U – Thunderbird, Evolution

Chat Clients
W – MSN, Yahoo, Google Talk, AIM, mIRC
U- Gaim / Pigdin, xChat, BitchX

Com Port Communications
W – Hyperterminal
U – MiniCom

FTP Client
W – Filezilla FTP Client
U – Filezilla FTP Client

Remote Access Servers
W – Terminal Server, RealVNC, TightVNC, WinVNC
U – FreeNX, RealVNC, TightVNC

P2P Filesharing
W – Limewire, Bearshare, Bittorrent
U – Limewire, Azureus

VoIP Clients
W – Skype, X-Lite
U – Skype, Linphone, Twinkle

Drawing / Photo Editing
W – Paint.net, Photoshop, MSPaint
U – GIMP
3D Annimation / Rendering
W – 3D Studio MAX, Blender
U – Blender, Maya

DVD Players
W – Windows Media Player, PowerDVD
U – MPlayer, Kaffine, VLC

MP3 / Music Players
W – Winamp, iTunes
U – RhymeBox, K3b

Office Productivity
W – Microsoft Office
U – OpenOffice.org

Network / Relation Mapping
W – Microsoft Visio
U – Dia

Accounting / Financial
W – Quicken, Microsoft Money
U – GnuCash

Desktop Publishing
W – Microsoft Publisher, Quark
U – Scribus

PDF Editing
W – Adobe Acrobat Professional
U – PDFEdit, pdftk

Imaging
W – Norton Ghost
U – G4u, dd

Partition Resizing
W – Norton Partition Magic
U – GParted

Backup Software
W – Symantec Backup Exec
U – BackupPC, Amanda

Web Servers
W – Microsoft IIS
U – Apache

File Servers
W – Microsoft File Services
U – Samba

Email Servers
W – Microsoft Exchange
U – Postfix, Sendmail

AntiVirus Software
W – Symantec AV, Mcafee
U – ClamAV, AVG

For more of these “like” software lists, please visit what I believe to be the most complete list on the internet, Table of Equivalents.

November 1, 2007
Send an email with telnet

This little piece of info has been beaten to death on the Internet, posted hundreds of times on hundreds of websites. The only reason that I am posting it here is to help me remember it after I haven’t done it in quite a while. (The filing cabinet theory)

Telnet to the mail server of your choice (note the 25 at the end)

telnet mail.domain.com 25

Say hello to the receiving mail server with HELO

helo sender.com

Tell the receiving mail server who is sending the email

mail from: [email protected]

Tell the receiving mail server whom you are emailing

rcpt to: [email protected]

Send any message you wish

data

hello spamuser1, i know where you live.

End with a single . (period) on a line

.

All done. The receiving mail server should tell you that the message has been queued for delivery.

The whole message track should look like this

telnet mail.domain.com 25 helo mail from: rcpt to: data hello spamuser1, i know where you live. .

I would say on average, I use this technique for testing mail servers 3 times a week now. Seem’s pretty high, but it sure beats logging into a webmail server and sending mail, then looking for the message to process through the logs for verification. Just telnet, and verify in 10 seconds or less. Have fun, happy telnetting.

October 22, 2007
Free Software – Clone Different Sized Drives
There are definitely some commercial alternatives to this process, however, like I’ve said before, I’m cheap. If, I were to purchase software to do this, I would get a copy of Symantec Ghost, Partition Magic, or HD Clone Professional edition. But for this post, we are going to discuss how to do this process for free. I’m not going to go into much detail, however, if you have any questions, please feel free to contact me or post a comment.
- Download the Ultimate Boot CD (Free)
- Burn the ISO to CD using ImgBurn (Free)
- Install 2nd HD in computer that you wish to clone
- Boot that computer from the CD that you burned
- Choose “File System Utilities” from the OS Menu
- Choose HDClone (Free Edition)
  - Walk Through the Questions it asks you on screen. Very basic.
Note: After the clone of the smaller to larger drive is complete, remove the smaller drive from the system, install the larger drive as you would normally do, and boot again off of the Ultimate Boot CD
- Boot from the CD again
- Find partition tools in the menu and choose “Partition Resizer”
  - Answer the questions on there just as you did before. Very basic. The last part will be simi graphical; just use the page up button to max out the partition size that you wish to use.
When this process is finished, remove the CD from the CD Rom tray and reboot into your newly cloned and repartitioned system. Everything should function as nothing has changed; however I recommend defragmenting and running CHKDSK on the drive right away to avoid any potential disasters. The process is very simple, clean and cost you zero dollars to do. Very nice in my book.
October 22, 2007
Environmental Technology

My father subscribes to Inc. magazine which is one of my favorites. I don’t get a subscription because my dad gives them to me when he’s done and I’m cheap. I think you already knew that from my previous posts of “free” tech, but just in case you didn’t know….I am cheap. This in it’s own way is an environmentally friendly gesture. Less paper prints, or I would like to think so anyways, though, I’m sure they have a set number of prints they must roll out, I just don’t participate in the disposal of those prints, and tree killing. 🙂 I’m not a tree hugger, but I hate printing things out when I don’t have to. The same goes for technical things, if I can get it on the computer, I will. It’s searchable, highlightable, and saveable. SHSable.

OK, back to the original subject. Approximately 14,000 blogs have agreed today to post something about the environment. This could include how to’s for making your own Eco friendly detergents, cleaners, or batteries. It could include how to make a solar grid work for your home, install a wind generator, or even explain the benefits of geothermal heat. The reason I mentioned Inc. magazine was it’s never ending ability to always put an Eco friendly spin on technology, include articles about businesses and entrepreneurs who are Eco friendly and they look good doing it. Just go to the website, http://www.inc.com and see for yourself.

Here are a few of my favorite Eco friendly videos. It really makes you wonder what they will come out with next.

Water::..

Solar::..

Wind::..

Earth::..

Captain Planet::..

October 15, 2007
Google Apps Expanded

Today I received a PDF from one of my subscription sites that talked about Google Apps in the enterprise. Though, I don’t know the full ramifications for switching a large company over to this suite of tools, I do think it would reap the same benefits as the small business just in a larger scale. I wanted to clarify that Google Apps does have a 1 for 1 with Microsoft and the open source community.

I’m interested in what Google will come up with next. I will do my best to keep you all informed on the new features, changes, and additions that Google will add to the mix.

October 12, 2007
Google Apps – Colaboration Revolution
Google Apps is one of the topics you here about every now and then. Open up a tech magazine and you see it in there somewhere, read your favorite blog, which most likely has Google AdSense on it to help generate revenue has Google Apps as an add and honestly; I don’t think this product suite has gotten the attention from the tech community that it deserves. Let’s just take Google out of this one for a minute. Picture that you are a small business owner, have a failing email server, are running on an old version of Microsoft Office that has a really annoying error every time you try to save, you have rigorous practices to attempt to backup all of your data including your email and documents and then comes a shiny new product suite that fit’s your bill quite nicely. The ability to offload all of my email server problems to Google which by the way syncs your email across multiple servers for redundancy (you don’t see that in any mom and pop shops), your Office Suite can be replaced by Goggle Doc’s and spreadsheets which is actually three applications, a word process or much like Microsoft Word or Open Office.org Writer, a spreadsheet application like Microsoft Excel or Open Office’s calc; and a presentation software which is a replacement for Microsoft PowerPoint or Open Office’s Impress. Did I mention that this is all free? You get 2Gb of online email storage; an office suite; collaboration software (Chat / Multi User Google Docs), a standards based calendering system which you can import and export to and from other applications, a free web editor (though not very intuitive), and the best part of all, it’s free. One limit however is, I do have to say that the bigger screen the better on these app’s though. Because you do your document work inside a web browser; the bookmarks; buttons; and URL bar are kind of just taking up extra space which reduces the space in which you view the document.

There are 3 different versions of Google Apps available. Standard, premium, and Education. The first one, standard, is the one that I use. It is limited to 2Gb of email storage space, does not have some API’s that you can write against for single sign on; authentication and other policy and management goo. It also lacks a little bit of support that the other two get. But it is free. The premium edition has 25Gb of storage space and cost’s $50 per user per year. Which, is actually pretty cheap if you ask me. Other than that, the premier and education versions are the same. Some institutions actually have upwards of 65,000 users on Google App’s. I’m just in awe of that.

Links:
- Curtis-LaMasters.com Mail Login
Another feature that I forgot to mention is the tie in for Blackberry and Trio Smart Phone support. Through a mobile application that needs to be installed on either the Blackberry or Trio phones, you can easily connect to, read and write emails, check your calendar, and chat with users on Google Talk. For just web capable phones, there’s the Google Apps mobile page which is http://m.google.com/a . From there, you can check your email, write a quick one, chat and view your calendar. I hope you all take a few minutes to look at the video’s that I have mentioned above that explain all the cool stuff that Google Apps offeres, and possibly try it out on a domain of your own. It is amazingly easy to setup and maintain. If you are too lazy to click on the links above, here is the short and sweet version of the Google App’s presentation.
October 11, 2007