Post Diluvian

I was studying this morning and discovered the term “post diluvian” meaning after the worldwide flood as described in Genesis 6-9

I am not 100% happy with “Cadere” as the blog title so have changed it to “Post Diluvian” as it sounds cool and mysterious and it is based on a theological concept.

I like it !

I found out about monowall about a year and a half ago and really love it. Some of it’s best features are :

• Easy to deploy (via PC / Embedded or even as a VM)
• Easy to Manage (web based management interface second to none)
• Powerful. It is easy to create a good strong firewall rule set. Traffic Shaper, Captive Portal, PPTP and IPSec VPNs, User manager, Single config file (easy backup of configs) and the list goes on.
• Reliable & Good community support available

In the last month I bought a 2-Factor Authentication system from Wikidsystems.com and have set it up as my authentication mechanism for my monowall-terminated PPTP VPN. The steps to set this up are :

• Install Wikid Auth server via the ISO or use the RPMs (I found the ISO easier and just upgraded the RPMs after install)
• Enable the Radius Protocol modules for your wikid domain (I have the IP Address for the Radius server set as 127.0.0.1 – not sure why that works but it obviously still spawns a radius daemon on the wikid auth server’s real interface) I also had the “Multihomed” setting set to ‘on’ (the default).
• Setup a network client for your monowall using radius and a shared secret  (I have the network client pointing to the interface address of my vlan, not the LAN interface address) 
• Setup a Token Client and ensure that you can authenticate to the wikid auth server.

On the monowall :

• Set the PPTP VPN settings to use Radius authentication. Set the IP address of the radius server to the IP of the Wikid Auth server and set the shared secret that you specified on the Wikid Auth Server.
• **Reboot the Monowall** – I spent a day trying to figure out why this was not working. I setup a Iptables firewall rule to log all traffic and could not see any traffic coming from the monowall while trying to authenticate to the VPN. Eventually out of frustration I rebooted the firewall and viola it worked !!

Since then it has been working pretty well. I have a Token on my phone and one on my Mac, although the mac token and phone tokens are a few versions behind the current version (the current token wants a higher Java version than you can get on a Mac, which is quite frustrating).

One other issue I have is I have to request a passcode 2-4 times before I get a passcode. On my phone this is not the case so it could be a network issue or perhaps a mac / token issue. Frustrating nonetheless.

Other than those two minor issues the solution works well and I like the Wikid Auth system. Another cool feature is you can have wikid “domains” which allow you to have different zones of authentication while using only one token, for example I can use a domain to authenticate to my VPN and another (same token, protected by a different PIN) to authenticate to my linux servers !

Went to bed at 2am last night. Got a 2hour+ bike ride coming up. ugh. Need to fix my bike. Hmurph.

Anyway moping over… I saw an interesting article on iridesco’s blog about naps 

If you are a 3 Australia subscriber you can get your voicemail for your mobile phone delivered to your Google apps mailbox. It only takes 3 steps :

• Go to Settings then Accounts in the Google apps web interface
• Click on Add another mail account
• Enter mail.three.com.au as the incoming mail server and enter your username and password. Be sure to enter your username in the form of username@three.com.au (Don’t use SSL as it won’t work)

Presto – your voicemail will be downloaded automatically to your inbox as a .WAV file for listening. You can also play with other settings like leaving a copy of the messages on the server and labeling the emails as voicemails but I’ll leave that up to you.

Hilton.

my blog is back online ! yay ! I have found a suitable host and will be monitoring it’s continued suitability. Now I can blog about God and theology and other stuff I find interesting again! Yay!

Btw it is my lovely wifey’s birthday today ! I cherish this day and am so grateful for her – I love you Jussie !

H

I have just moved my Demeillon.net site to Media Temple to see how their hosting stacks up. I have also just baked my first batch of sconnes and they turned out really yummy. It is 7:54 on Sunday morning and I am debating whether to go to church or whether to clean up our new house. I don’t really want to go to church this morning as we will be going this evening.

In the back of my mind I am not sure if starting a personal blog will be as effective as just updating facebook regularly.On the facebook side it is more accessible but on the wordpress side I get to ‘have a site’ and start developing some ‘internet momentum’.

If you’d asked me what the general topic of my blog is I would answer theology. I am fascinated by theology and intend to be learning about God my whole life.

Cheers