Podrška #11745
Zatvoren
internet pristup officesa onemogucen
Dodano od Ernad Husremović prije oko 19 godina. Izmjenjeno prije oko 18 godina.
0%
Opis
internet pristup officesa onemogucen
ref. trac ticket: http://trac.sigma-com.net/sa-ScInfrastructure/ticket/657
Izmjenjeno od Ernad Husremović prije oko 19 godina
problem je što je router prolupao sa datumom
root@sc_linksys_1:~# date Fri Jan 7 15:18:05 CET 2000
Izmjenjeno od Ernad Husremović prije oko 19 godina
osvježio sam dyndns putem web interfejsa sa svog klijenta
na internet hostu vps-oh1.sigma-com.net (alias ns.sigma-com.net) bilo je mailova
[root@ernadh ~]# postfix flush
Izmjenjeno od Ernad Husremović prije oko 19 godina
međutim interesantno je da ovo ne radi:
root@sc_linksys_1:/# ntpclient -h ntp.ubuntu.com -s
pokušao i druge servere
root@sc_linksys_1:/# ntpclient -h zg1.ntp.carnet.hr root@sc_linksys_1:/# ntpclient -h ntp.cuhk.edu.hk
sa mog klijenta radi
root@sc_linksys_1:/# df
Filesystem 1k-blocks Used Available Use% Mounted on /dev/root 1024 1024 0 100% /rom none 7148 28 7120 0% /tmp /dev/mtdblock/4 2240 684 1556 31% /jffs /jffs 1024 1024 0 100% /
da nije zauzeće root sistema
Izmjenjeno od Ernad Husremović prije oko 19 godina
root@sc_linksys_1:/usr/sbin# ls -l iptables-* -h -rwxr-xr-x 1 root root 57.9k Nov 7 2006 iptables-restore -rwxr-xr-x 1 root root 53.8k Nov 7 2006 iptables-save root@sc_linksys_1:/usr/sbin# rm iptables-save root@sc_linksys_1:/usr/sbin# rm iptables-restore
Izmjenjeno od Ernad Husremović prije oko 19 godina
hm nptclient odgovara, ni ez-ip-update takodje
root@sc_linksys_1:/etc/ppp# ipkg files ez-ipupdate Package ez-ipupdate (3.0.11b8-2) is installed on root and has the following files: /usr/sbin/ez-ipupdate /etc/ez-ipupdate.conf /etc/hotplug.d/iface/10-ez-ipupdate
Izmjenjeno od Ernad Husremović prije oko 19 godina
samo se ukoči
root@sc_linksys_1:/etc/ppp# ez-ipupdate -c /etc/ez-ipupdate.conf -i ppp0 ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay
Izmjenjeno od Ernad Husremović prije oko 19 godina
slično kao ntpclient
root@sc_linksys_1:/etc/ppp# ntpclient -h ntp.ubuntu.com -s
Izmjenjeno od Ernad Husremović prije oko 19 godina
ovo treba poslijepodne provjeriti da sada ne diram router
Izmjenjeno od Ernad Husremović prije oko 19 godina
opet se promjenila adresa
restartovao router
root@sc_linksys_1:~# ps ax
PID Uid VmSize Stat Command
1 root 356 S init
2 root SW [keventd]
3 root RWN [ksoftirqd_CPU0]
4 root SW [kswapd]
5 root SW [bdflush]
6 root SW [kupdated]
8 root SW [mtdblockd]
67 root SWN [jffs2_gcd_mtd4]
91 root 344 S logger -s -p 6 -t
94 root 356 S init
95 root 364 S syslogd -C 16
96 root 320 S klogd
489 root 400 S /bin/sh /sbin/ifup.pppoe wan
503 root 596 S /usr/sbin/pppd nodetach plugin rp-pppoe.so connect /bin/true usepeerdns defaultroute replacedefaultroute ipparam wan linkname wan
506 root 324 S wifi up
529 nobody 376 S dnsmasq -I ppp0
537 root 392 S /usr/sbin/dropbear
540 root 364 S httpd -p 80 -h /www -r OpenWrt
545 root 264 S telnetd -l /bin/login
550 root 336 S crond -c /etc/crontabs
575 root 416 S /bin/sh /sbin/hotplug iface
581 root 316 S /usr/sbin/ez-ipupdate -c /etc/ez-ipupdate.conf -i ppp0
582 root 344 S logger -t ez-ipupdate
586 root 248 S /usr/sbin/ntpclient -c 1 -s -h ntp.ubuntu.com
591 root 596 R /usr/sbin/dropbear
592 root 444 S -ash
598 root 344 R ps ax
ali kao što se može gore vidjeti ez-ipupdate, ntpclient ne mogu završiti svoje poslove
Izmjenjeno od Ernad Husremović prije oko 19 godina
hm ipak je izgleda do router-a, otvorio sam udp 123 (ntp port)
root@sc_linksys_1:/etc# ntpclient -h ntp.ubuntu.com -s 36524 02270.704 56472.0 13.0 227015476798792.5 44403.1 0
i sada radi
Izmjenjeno od Ernad Husremović prije oko 19 godina
hm izgleda da je došlo do nekih promjena na dyndns servisu, kada sam zadao ručno parametre
root@sc_linksys_1:~# ez-ipupdate --service-type dyndns -i ppp0 --user hsamra:hernad --host officesa.dyndns.biz --server dyndns.org ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay connected to dyndns.org (63.208.196.110) on port 80 request successful
stvar radi
naime dodatni parametar koji sam zadao je server: dyndns.org
Izmjenjeno od Ernad Husremović prije oko 19 godina
dodao sam parametar u conf
server=dyndns.org:80
i sada mi update radi
root@sc_linksys_1:~# ez-ipupdate -c /etc/ez-ipupdate.conf ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay connected to dyndns.org (63.208.196.110) on port 80 request successful
Izmjenjeno od Ernad Husremović prije oko 19 godina
gornji parametri nisu ispravni,
naime juče ujutro sam morao privatno ići za zagreb pa sam provjerio da li radi update i vidio da opet ne radi
onda sam pogledao na dyndns site-u i utvrdio da je ispravan config
service-type=dyndns user=hsamra:hernad host=officesa.dyndns.biz server=members.dyndns.org
znači server je member.dyndns.org
međutim update opet sa klijenta nije funkcionisao. Update sam izvršio sa web browser-a.
Rekao sam jasku da on to u toku dana ručno provjerava (s obzirom da je imao terene u sarajevu)
jutros sam otišao na web site www.dyndns.org i vidio da web interfejs nije dostupan. Nakon toga sam vidio da je dyndns predmet DDOs napada i da je to vjerovatno uzrok problema
Emergency Upgrades/DDoS Attack on members.dyndns.org Wed, 14 Mar 2007 02:38 As an update to our previous post regarding the DDoS on members.dyndns.org, we are planning to make some modifications to our infrastructure this evening during an emergency upgrade period. During this time, the update interface, website, and WebHop services will be unavailable. This period will begin at 4:00 UTC on March 14 and will last for two hours. During this entire time, we continue to answer DNS queries normally. DDoS Attack on members.dyndns.org Sat, 10 Mar 2007 22:55 As of March 9th, 17:00 UTC, members.dyndns.org has been subject to a number of Distributed Denial of Service attacks. DynDNS Administrators have been taking a number of steps to try to mitigate and minimize the impact of the attack. As of March 10th, 17:00 UTC, steps were taken to isolate our main website, www.dyndns.com, out of the line of fire of the attack. We're continuing to analyze and evaluate the situation, however, customers may experience periods where update clients are unable to update DNS hostnames. Customers should simply re-try their update. We'll continue to post updates to this situation as they become available.
Izmjenjeno od Ernad Husremović prije oko 19 godina
root@sc_linksys_1:~# ez-ipupdate -c /etc/ez-ipupdate.conf
ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay connected to members.dyndns.org (63.208.196.94) on port 80 members.dyndns.org says that your IP address has not changed since the last update
Izmjenjeno od Ernad Husremović prije oko 19 godina
malo kasnije
root@sc_linksys_1:~# ez-ipupdate -c /etc/ez-ipupdate.conf ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay connect: Connection timed out error connecting to members.dyndns.org:80
Izmjenjeno od Ernad Husremović prije oko 19 godina
hm ...
logread -f
Mar 14 07:12:11 (none) user.notice ez-ipupdate: connect: Connection timed out Mar 14 07:12:11 (none) user.notice ez-ipupdate: error connecting to members.dyndns.org:80
Izmjenjeno od Ernad Husremović prije oko 19 godina
zbog gornjeg problema morao sam da ponovim operaciju
root@sc_linksys_1:~# ez-ipupdate -c /etc/ez-ipupdate.conf ez-ipupdate Version 3.0.11b8 Copyright (C) 1998-2001 Angus Mackay connected to members.dyndns.org (63.208.196.94) on port 80 request successful
ovaj put to je bilo uspješno
Izmjenjeno od Ernad Husremović prije oko 18 godina
- Status promijenjeno iz Novo u Zatvoreno