Friday, 3 July 2015

For those of us in computing Zero-config or Bonjour or Avahi is the bane of our lives, especially when trying to shoe horn it into an enterprise network because it will not travel across vlans,  Bonjour packets will not pass a Layer 3 boundary. What's needed to make Bonjour work across subnets is a proxy and here is a free open source working alternative......

There are many off the shelf products out there which do the job but you usually have to pay a fortune for the privilege.....

Well I've just implemented an Avahi reflector using nothing more than a cheap laptop running Debian 8 (Jessie) and a network cable and made it work over 20 vlans

All you need is a network port on a switch (ours are Cisco 3750's) which can give you a 8021q trunk connection, a pc, it doesn't have to be high powered ours is running on an Atom cpu on 2GB of ram, it doesn't actually need that much it currently sits in 351MB of memory running at full tilt, it barely tickles the cpu's .....

So install your headless debian server (there are many how to's out there)

load vlan and modprobe it into the kernel

# /etc/modules: kernel modules to load at boot time.
# This file contains the names of kernel modules that should be loaded
# at boot time, one per line. Lines beginning with "#" are ignored.

setup your vlans on eth0 

vconfig add eth0 50  # or whatever it's called

repeat and rinse until you've added them all

go edit your /etc/network/interfaces

and put in each vlan with a fixed IP address in the form of

 iface eth0.50 inet static
auto eth0.60
iface eth0.60 inet static
auto eth0.120
iface eth0.120 inet static

My 50 vlan has a gateway so that it can get updates and be ssh'd into remotely
but it's not necessary it will work without a gateway

so include all of the vlans you want to rebroadcast the bonjour packets on, make sure that you aren't using an IP address already assigned on the vlan in question, best way to avoid this is to put an exclusion in your DHCP server in each vlan and use the same last number on each vlan 

In my case I've assigned 10.11.XXX.9 to all of my fingers in the vlans so to speak

then edit avahi-daemon.conf in /etc/avahi and turn on 


you may have a problem with avahi stopping because of a unicast local problem but you can work around that by editing crontab for root and simply putting this line in 

* * * * * rm -rf /var/run/avahi-daemon/disabled-for-unicast-local
0 * * * * service avahi-daemon restart

the first line stops the avahi-daemon shutting down because of a .unicast local problem and restarts it every hour, and keeps deleting the file if it reappears.....

go back into the terminal and check with ifconfig that all your vlans are sending and receiving data

eth0.233  Link encap:Ethernet  HWaddr c8:9c:xx:xx:xx:xx  
          inet addr:  Bcast:  Mask:
          inet6 addr: fe80::ca9c:dcff:fe84:cb9f/64 Scope:Link
          RX packets:1338 errors:0 dropped:0 overruns:0 frame:0
          TX packets:17959 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:567767 (554.4 KiB)  TX bytes:4442622 (4.2 MiB)

eth0.240  Link encap:Ethernet  HWaddr c8:xx:xx:xx:xx:xx  
          inet addr:  Bcast:  Mask:
          inet6 addr: fe80::ca9c:dcff:fe84:cb9f/64 Scope:Link
          RX packets:16884 errors:0 dropped:0 overruns:0 frame:0
          TX packets:2635 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:5503572 (5.2 MiB)  TX bytes:1168738 (1.1 MiB)

and bobs yer uncle....

fire up your ipad and you'll see everything on every vlan, it also allows you to see all of your Apple TV's over every vlan and wifi and even allows you to connect your Apple TV's to ethernet cables rather than relying on wifi connections. You'll also see all of your VNC and SFTP and anything else broadcast on mdns 

I've also managed to get airprint working on non airprint printers, using linux CUPS ...if you're interested in implementing it drop me an email, it will work with ANY printer.

Enjoy !!!! 

Sunday, 18 January 2015

Charlie Hebdo Shootings in Paris

I like many others around the world were shocked and horrified  by the brutal killings in Paris at the Charlie Hebdo offices.

But a few things bother me and simply do not stand up to scrutiny.

Namely when you look at the raw uncensored footage of when the "terrorists" kill the police officer Ahmed Merabet.

First off he'd been shot by an AK47 7.62mm round which is why he is lying on the floor which in itself is devastating enough and would put a hole as an exit wound the size of your fist or bigger, yet even though he had been rolling around on the floor after being shot there is no blood on the pavement, none not one bit.

Then there is the moment when the "terrorist" walks/jogs up to him to finish him off with a head shot..... and this is where I have to suspend belief for the following reasons.

All pointed bullets that do not deform end their tissue path travelling base first, since this puts their centre of mass forward; this is their stable attitude. The rotation imparted to the bullet by the rifled gun barrel is sufficient to force the bullet to travel point-forward in air (in properly designed weapons), but not in tissue where such factors as bullet shape and the location of centre of mass far outweigh rotation effects.  the AK-47 and the AK-74 represent what is seen in most shots. Sometimes the bullet yaws to 180°, or the base-forward position, in one cycle. These variations, along with the curvature in bullet path at or near the end of tissue path, are of far less importance than the distance the bullet travels point-forward before significant yaw begins, a tumbling bullet would explode your head.

So a head shot at that range would blow his head apart like a water melon because the AK47 round is notorious for being unstable once it hits a target and it yaws within one twist within the first few inches of impact, especially when hitting bone and a tumbling bullet produces devastating injuries, of which we can see none in the raw video.

At the moment the "terrorist" fires at the policeman's head it doesn't move at all, his head would be whipped forwards with the impact of this particularly heavy round which leaves the muzzle at 2,350 ft/s 

You would expect to see major trauma from being shot at that range especially in such an area which is rich in blood such as the head.

Furthermore there is a video out there which has slowed down the frames and zoomed in, you can clearly see that the bullet strikes the pavement about a foot above his head to the right.

Now all the media outlets are reporting him as being finished off with a head shot .....that simply isn't true, it can't be,  nothing that happens in the raw footage points to him having been shot in the head. What you do see is the "terrorist" missing his head.......

I spotted this immediately I know what a high velocity round can do and that "terrorist" missed.

So that means the policeman pretended to be shot to possibly stop being shot at any more ? who knows, maybe he did die of his other wounds but the fact there was no blood, no massive trauma at the scene....or maybe he wasn't shot at all .....who simply doesn't add up

But the plot thickens
On the same day Helric Fredou, 45, the deputy director of the regional judicial police in Limoges turned his gun on himself, hours after Cherif and Said Kouachi killed 12 people in an attack which included the death of two policemen, the media reports he was depressed ?

Couple this with the recent announcements of cyber war games with the US and UK and the requests to drop encryption entirely to the big companies and put forward the snoopers charter again to effectively allow the UK government to listen in on ANY communications.

I have no doubt at all that our politicians will use this "event" for want of a better word and twist it
to get what they want regarding the effective removal of our privacy under the guise of anti terror laws, keep the people frightened and they'll agree to anything.....

That to me rings huge alarm bells, there are conspiracy theories out there that the Charlie Hebdo shootings were a false flag event, to smear muslims and whip up support for the west to go back into Iraq and all the other places ISIS are and wage another ground war......Do you know what ? nothing surprises me these days, remember the WMD's ? nothing found, but oooops we're in a ground war lasting years and David Kelly the weapons expert commits suicide in highly suspicious circumstances......

The more you read about the backgrounds and the events leading up to the shootings and the fact that one of the terrorists left their ID in the get away car (REALLY ?)  it does smell a bit too convenient.

Whilst I have no doubt people died as a result of what happened in Paris I don't think we are being given the full story.......

I'm cynical about what we are spoon fed by the media most of the time, there is always a hidden agenda these days 

Somebody is making a lot of money out of these wars, follow the money ......

There is more to this story and that is the actual bit of footage of the policeman getting shot.... it simply does not add up any photographer worth his or her salt would spot these scale and aspect ratio errors, but on the shaky video you don't notice it as much unless you slow the video down.

look at this frame taken from the "video" note how high the terrorist is in relation to the billboard he is just about to pass

There he is again as you can see the billboard towers above him by a good 3 or 4 feet ??? and he is close to the billboard so his relative height is easy to judge

Now here is a picture from Google Earth of the very same place, notice how high the billboard is ? that would make the terrorist about 2 feet tall, there are other inconsistencies as well background items appearing
through the terrorist as he passes them and how they seem to hover on the ground....something isn't right here ......

In the picture below here is a woman here walking past several feet behind the same billboard.....look how tall she is in relation ???

What is going on ?