The interesting part is 1/8 was just allocated. That’s hard to look at without reading it as one-eighth. IANA predicts all address blocks will be completely assigned by late 2011. I guess the real switch to IPv6 will be a forced one after all.

Proxytunnel is a program that connects stdin and stdout to a server somewhere on the network, through a standard HTTPS proxy. Getting it built seems to be pretty straight forward stuff.

While there are application groups for just about every category of software from graphics, software development, office productivity, multimedia, and others, there’s no specific group for security or auditing related packages. Here’s a list of the security and auditing related packages that are now available in the standard Fedora 12 repositories. From intrusion detection to data recovery, Fedora has come a long way in the last couple of years.

I still prefer a flat ascii file either loading the rules one at a time, or the built in iptables save/restore which basically does the same thing. But if you like/want/need a GUI application, then skip the lokkit firewall configuration tool in favor of system-config-firewall. It makes configuration of your firewall as easy as the simple Windows firewall, but with the option detail you expect from Linux.

If you have two antennae, replace one with a direction antenna. Leaving the other as a omni-directional pole should give you a good area of coverage while the directional antenna serves to extend your wifi range to needed areas such as your backyard or that room down the hall and around the corner. If you only have one antenna, crack open the plastic casing on your router and look for a little socket for a second antenna. It’s cheaper for manufacturers to produce one hardware design and just downgrade the hardware to make more than one model than it is to have multiple, completely different designs.

Make sure a firewall rule isn’t blocking NFS. If NFS is running on the server and clients _can_ mount, but it’s just really slow, then things get a little hairly. You can’t just look for a problem on a client or a fix a misconfigured server. You’ll have to look at the whole ball of wax… If MTU mismatch doesn’t seem to be a problem, try going the other way and increasing the MTU size. Use the traceroute command to look for unexpected routing hops or delays.

This is pretty simple, just like in Windows. You could probably set it up quicker in Linux too. Too much clicking in windows.

If you want to get an estimate of bandwidth speeds between two machines, but you don’t want to factor in storage read/write speeds, iperf is the perfect tool.

My new mobo has two gigE ports, so I figure why not trunk them together to work as one network device? This will work great for a Linux based network storage device (NAS). This will create a virtual interface named bond0 with the external ip address of 192.168.1.100. Anything else on my network will see this computer with this address. It doesn’t matter which interface is actually plugged in, one, the other, or both. As long as one is plugged in it will continue to function.

Opportunistic locking is part of the Windows client file caching mechanism. Samba implements opportunistic locking as a server-side component of the client caching mechanism. Samba/CIFS doesn’t play nice with NFS, so if you’re in a mixed environment where some windows machines access and modify the same files that Linux or Solaris touch through NFS, then disable the oplocks. This is important for things like database files to avoid corruption!