ip

Rewiring Your Optimum Cablevision Connections

Motorola SB5120 Modem
Image via Wikipedia

Cable modems need a strong signal in order to operate properly. The more splitters you pass through successively degrades the signal strength (-3.5dB/splitter). For a while internet service was working fine, but then I would loose the external ip address every no and then. I then investigated the wiring in the house, and it turns out there was silly decisions made. There was a splitter in the basement going to nowhere, with at least 25 feet of cable. I removed the splitter and put in a direct coupler, but the problem persisted. I then moved the modem to the other line split off the main. This required reworking of the entire network and the implementation of a network switch. The minimum amount of splitters, the modem must pass through, is two. The first splitter provides service to downstairs and upstairs. The second splitter provides television to my father tv and the modem. I replaced the second splitter in the sequence, and am moving toward replacing the splitter sending signals to downstairs and upstairs. If I replace the main splitter, which is located outsite, and the problem persists, I will be calling Cablevision for the installation of a completely separate main line coming into the house; this will bypass all splitter and give the maximum signal strength possible.

Reblog this post [with Zemanta]

Lock Down IP Addresses – SSH and Else

If you know the IP addresses that will be connecting to your machine, lock them down. Use the hosts.allow file as follows.


sshd : localhost : allow
sshd : 192.168.3. : allow
sshd : 192.168.1. : allow
sshd : ALL : deny

Using sshd : ALL : deny and listing various allow rules blocks everything other than the allowed rules. Therefore using sshd : IP : allow you will be able to connect to the machine from that IP only and everything else will be rejected. This procedure will substantially increase the security of the server.

Yahoo Domain Hosting 3X the Price

Originally when I started buying domains from Yahoo the cost was around 10$ per year. Then it went up to 13$ per year. Now with the recent financial crisis around the world, Yahoo has decided to tripple their yearly fees TO 34$ yer pear. I am either cancelling my domains at warp speed, or contemplating transferring them to Go Daddy for a fraction of the price. Technically I can host them from my house, but I get nervous with the dynamic IP address provided by Optimum online. I haven’t had an IP address change in a long time, and for all practical purposes without the modem being offline for a long time the IP address rarely ever changes. Overall I am going to cancel as many domains as I can, thus eliminating many of my websites. I am going to remove the websites that do not receive many hits, ect… I will keep my main website, which I plan to have my entire life. I also will keep this domain, because I have many websites consolidated into it, as well as this blog which I cherish as a means of venting and documentation. Maybe I will transfer some domains to Go Daddy, I have a couple of things to think about before the critical date that Yahoo wants payment before it stops hosting the domains.

DOS and Brute Force Prevention Using Fail2ban

Dealing with dos and brute force attacks can be a daunting challenge. You can manually adjust your firewall to block particular ip addresses, but why not automate the process? What if a program can monitor your authentication, and other log files for suspicious activity? In these log files is a tremendous amount of info about failed login attempts, and how many times an ip address connects to your web server. Using this information a program can automatically adjust your firewall to block the offending ip addresses. Fail2ban does just this. The program automatically monitors the log files of many programs. Most important is apache, and ssh. http://www.fail2ban.org/wiki/index.php/Main_Page

Bridge and Default Eth Same IP

When configuring your network, bridges, and taps you want your default Ethernet card to have the same static ip address as the bridge you create in /etc/network/interfaces. Doing so you will have internet access on the host and guest systems. Within the guest system configure the interfaces to be one numerical value higher in order to avoid conflict with the host.