[Anonymous]

Thanks for the quick reply!

I think I’ve made some progress. I’m not sure this is what you meant by Debug mode but I produced this log. I’m not sure specifically what the error means, but if you had any ideas that would be great.

2003-07-29 15:37:46: DEBUG2: cftoken.l:187:yylex(): <23>
2003-07-29 15:37:46: DEBUG2: cftoken.l:308:yylex(): <23>
n not be checked because sadb message doesn’t support it.ompression algorithm ca/etc/racoon/logit.txt (93%)
2003-07-29 15:37:46: DEBUG: sainfo.c:100:getsainfo(): anonymous sainfo selected.2003-07-29 15:37:46: DEBUG2: cfparse.y:1354:cfparse(): parse successed.
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: ::1 (lo0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: fe80::1 (lo0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: 127.0.0.1 (lo0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: 10.10.10.105 (gif0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: fe80::20a:95ff:fe9c:fc (gif0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: fe80::20a:95ff:fe9c:fc (en0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:205:grab_myaddrs(): my interface: 192.168.2.100 (en0)
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:472:autoconf_myaddrsport(): configuring default isakmp port.
2003-07-29 15:37:46: DEBUG: grabmyaddr.c:494:autoconf_myaddrsport(): 7 addrs are configured successfully
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1349:isakmp_open(): failed to bind (Address already in use).
2003-07-29 15:37:46: ERROR: isakmp.c:1372:isakmp_open(): no address could be bound.

Thanks,

Al

[Anonymous]

Cisco makes a client for OSX which works quite well. Ask your SysAdmin to download it for you (you need a CCO login in order to access it on their site AFAIK).

[Anonymous]

I have SquirrelMail ruinning on my server as well. I set up SM to use mySQL for the address book and I wrote a little command line tool to populate the database from my address book. You can have the source for that. You will have to setup mySQL etc. yourself though.

I then have a cron command run and generate the SQL statements on my main machine. I then run the SQL statements though a mySQL command line tool to send the data to the server.

This seems like a lot of work, but I can send you all the bits I have if that helps.

Current I have my address book info being sent to an LDAP server running on my server and I have SquirrelMail access that. You could use that instead if you wanted. It was a bit of a pain to set up, but it works fine. The nice thing about this approach is that all users on SQ can access the same data easily.

I hope this all makes sense to you 🙂

Let me know if you would like any of my scripts etc.

[Anonymous]

Hey, thanks for the offer. I have an IP,a username, a shared secret, and then an IP and subnet mask for the tunnel. Please let me know if u need anything else

thanx in advance

[Anonymous]

A followup — the link works fine as i can establish a secure IPsec connection using manual keying.

Now — if only i could get racoon working!

[Anonymous]

This was suposed to be a reply to the message on the similar topic. My mistake!

[Anonymous]

Gary,

I figured out the reason it wasn’t working. As we all know the trash contains items from any volume we have thrown out. There was something wrong with the firewire drive that was keeping me from creating and deleting any file. I still don’t know why but I was able to create, mount, and then restore successfully.

[Anonymous]

Hi,

thank you for your reply. The problem i have is that i can¥t find the option button after pess “apple k”. I use the mac os x 10.2. Is it possible that i have to use an other version??? Or i am to stupid to do this???

thanx freez 🙂

[Anonymous]

I have used both Apple Network Assistant and Apple Remote Desktop. Apple Network Assistant has more features than Remote Desktop. The ability to use the admin workstation to broadcast the input to it’s microphone to all other workstations speakers. I can’t remember the other ones off the top of my head, but there are other features that have been omitted from Remote Desktop. I used Network Assistant to “re-image” all the computers in classrooms back to a pre-configured base state. it worked pretty good.

[Anonymous]

Some thoughts after days with configuring home directorys for students.

When working with video, I also dont want them to use homes on the server.
But sooner or later everybody will edit video, the solution must be generic.

Homes on client machines…is a problem since they can be off or at sleep, or involved in something else…

I make all homes on the server.
I make three accounts local on every client, identically.
1- My own admin on the client
2- A user admin, if they or a teacher needs to access the client.
3- A student account, (login and psw written on the wall)

The 3d, student account, has its home local on every computer, the files stays local.

To make things easier I create four links on the student-local-accounts desktop:
-print center (a lot of trouble when the queu is stopped etc…)
-/Network/…/server
-The home/documents folder, named “The lokal documents on this machine”
-The /Users/Shared folder named “The shared documents on this machine”

Now they can work locally, access the server if they need, were they can access their own home, as guests though.
They can also leave files in the local “shared” folder, for later, loged in as user, move to the server.

To keep the folders there I run a script daily to create the links.
I also run a crontab every 5th minute to set the priviliges off the shared folder…
***crontab:
#set priviliges shared
*/5 * * * * chmod -R 777 /Users/Shared

#create folders
10 17 * * * /usr/bin/scripttomakefolders.sh

***

script to create folders:
***
#!/bin/sh
sudo ln -sfh /Network/Servers/domain.com/server /Users/studentaccount/Desktop/
sudo ln -sfh /Users/studentaccount/Documents /Users/studentaccount/Desktop/Local_Documents
sudo ln -sfh /Applications/Utilities/”Print Center.app” /Users/studentaccount/Desktop
sudo ln -sfh /Users/Shared /Users/studentaccount/Desktop/Shared_Local_Documents
***

I also…erase all but three folders in the local home
Documents, library, desktop:
***
sudo rm -fdR /Users/elev/Movies
sudo rm -fdR /Users/elev/Music
sudo rm -fdR /Users/elev/Pictures
sudo rm -fdR /Users/elev/Public
sudo rm -fdR /Users/elev/Sites
***

Thats for the clients!*******************************

More I want to share, that made my last days easier:
1)
If, like me, You want the home dirs on other places then /Users on the server, like on an other drive etc, You must configure the “Advanced” under “Home” in WorkgrpManager…

The hints there are WRONG!!!!! ..took me sweat and tears to figure out:
http://docs.info.apple.com/article.html?artnum=107624

2)
Its easy to move accounts from the local netinfo directory to the shared /root directory, if You do it in Netinfo manager…hm.. maybe I read that here. Ask how.
8I had all school students and staff under the local…

3)
Under /system/library/User template/eng…/
The home directory template is located. I altered it like I wanted it, with links on students desktop and “Read me” files etc. Cool!

But then again…the school hasnt started yet…everything Ive done might crash and burn when 100 students login simultanesly…

Joachim Schmidt
[email protected]

[Anonymous]

At Network Preference Pane Ive set,

Manually configuration of the computerís IP Address, Subnet Mask [255.255.255.0, you knowÖ]; Router with the DSL router IP address and DNS servers IPs.

All three NICs have same conf. but the computerís IP Address thats different for each NIC.

Thanks.

[Anonymous]

Check out Fugu. Freeware – graphical ftp type interface. Cool

[Anonymous]

I need to add to my previous post…

(VPNs > AutoKey IKE > Edit)
Security Level “Compatible”
VaporSec ‘Phase 2’ tab set PFS Group to “none”

Sorry for the memory lapse…

lonnie

[Anonymous]

I was able to get VaporSec 1.0 and a NetScreen running 4.0.0r6.

I set both VaporSec and the NetScreen to use:
(VPNs > AutoKey Advanced > Gateway > Edit, Advanced)
Mode: “Aggressive”
VaporSec ‘Main’ tab set Mode to “aggressive”

(VPNs > AutoKey Advanced > Gateway > Edit)
Security Level “Compatible”
VaporSec ‘Phase 2’ tab set PFS Group to “none”

Otherwise, VaporSec’s defaults are fine.

Works very nicely.

lonnie

[Anonymous]

[quote:d9fbbb2186=”curtisf”]What I can’t seem to find is a niutil command to add an additional shortname. does anyone know what this command is?[/quote:d9fbbb2186]
AFAIK there are two fields two enter a name: first is called “name”, second is “realname”.
to change the realname-entry of a user “osxuser” on localhost, you could use
niutil -createprop . /users/osxuser realname newosxusername

hope this helps.

[Author]

Posts