RE: dtdns
BY: All

After almost 20 years of service DTDNS is being discontinued. If you are currently on the service you likely got an email by now.

... [CE] Those who choose security over liberty deserve neither.

--- WWIV 5.4.0.2738
* Origin: Inland Utopia BBS * California * iutopia.dtdns.net:2323 (1:218/109)

Matt...

After almost 20 years of service DTDNS is being discontinued. If you are MM>currently on the service you likely got an email by now.

I'll bet that soon, there won't be any free DNS deals left.

Daryl

===
■ OLX 1.53 ■ 665 and 667 - Satan's neighbors.
--- SBBSecho 3.05-Win32
* Origin: FIDONet: The Thunderbolt BBS - wx1der.dyndns.org (1:19/33)

Hello Daryl!

02 Jul 2018 18:25, Daryl Stout wrote to MATT MUNSON:

I'll bet that soon, there won't be any free DNS deals left.

what do i win if i can prove you fail here ?


Regards Benny

... there can only be one way of life, and it works :)

--- Msged/LNX 6.1.2 (Linux/4.17.3-gentoo (x86_64))
* Origin: I will always keep a PC running CPM 3.0 (2:230/0)

After almost 20 years of service DTDNS is being discontinued. If you are MM>currently on the service you likely got an email by now.

I'll bet that soon, there won't be any free DNS deals left.
Daryl

Well I got my email finally notifing me of their closure. If you did notice the majority of my bbs's have a darktech.org as part of their address. I went to No-IP and found that they offer up to 3 free ddns.net or other for your bbs. But I need to manage my DNS and signed up for that. I can now have all my bbs's have an rdfig.net (pbmystic.rdfig.net) and manage my DNS. I have DKIM for my main web server and needed to edit the records, etc.

So I am slowly updating all my info on my boards to reflect the new addresses. I will be updating my Ads in the Fido network to reflect the new information.

Well that's it for now.

--- PCBoard (R) v15.4/250 Beta
* Origin: PCB Prison BBS, Mesquite, Tx pb.darktech.org:1023 (1:124/5015)

Hello Daryl,

02 Jul 18 18:25 at you wrote to MATT MUNSON:

I'll bet that soon, there won't be any free DNS deals left.

That's why I switched to a paid plan at No-IP years ago. Not only that, their smart DDNS update client runs as a daemon on my BBS and I don't have to worry about updating anything manually.

When you connect to bbs.outpostbbs.net, that redirects to outpostbbs.ddns.net to connect to my BBS.

Later,
Sean

... WinErr 00A: Promotional literature overflow - Mailbox full
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

On 2018 Jul 03 09:03:00, you wrote to Daryl Stout:

So I am slowly updating all my info on my boards to reflect the new addresses. I will be updating my Ads in the Fido network to reflect
the new information.

don't forget to have your NC(s) update your nodelist entries, too..

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Fire roast frost open Jack an on....uhh, darn it....Hey! More eggnog!
---
* Origin: (1:3634/12.73)

So I am slowly updating all my info on my boards to reflect the new addresses. I will be updating my Ads in the Fido network to reflect the new information.

don't forget to have your NC(s) update your nodelist entries, too..

Thanks for reminding me. I had forgotten to do so.

Ruben Figueroa aka Zazz
Mystic Prison Board Sysop
telnet://pb.darktech.org:24
Web: www.rdfig.net

--- Mystic BBS v1.12 A39 2018/04/21 (Windows/32)
* Origin: Mystic Prison Board*Mesquite Tx*pb.darktech.org:24 (1:124/5014)

Hello Daryl!

I'll bet that soon, there won't be any free DNS deals left.

what do i win if i can prove you fail here ?

The satisfaction that you were right, and I was wrong. :P

At least I'm not like the episode of "Happy Days", where Fonzie
couldn't say "I was wrong"...it was like "I was wr........" <G>

Daryl

===
■ OLX 1.53 ■ A coin. Good. I will replicate one immediately. - Data
--- SBBSecho 3.05-Win32
* Origin: FIDONet: The Thunderbolt BBS - wx1der.dyndns.org (1:19/33)

So I am slowly updating all my info on my boards to reflect the new addresses J>I will be updating my Ads in the Fido network to reflect the new information.

It's such a PITA to change everything...but they did have a valid
point in their "shutdown message"...too many were abusing the "free
service". In short, the "bad apples" ruined things for everyone else.

Daryl
===
■ OLX 1.53 ■ A computer's attention span is limited by its power cord.
--- SBBSecho 3.05-Win32
* Origin: FIDONet: The Thunderbolt BBS - wx1der.dyndns.org (1:19/33)

Sean,

That's why I switched to a paid plan at No-IP years ago. Not only that, the SD>smart DDNS update client runs as a daemon on my BBS and I don't have to worr SD>about updating anything manually.

When you connect to bbs.outpostbbs.net, that redirects to outpostbbs.ddns.ne SD>to connect to my BBS.

I get a lot of connects with <no name> as the address...and the
majority of these are bots/script kiddies. Unfortunately, one of my
users, a Visiting Sysop, has this as his IP...and I tried to make an
exception for him, while filtering out the others, but I could never get
it to work.

I'm with dyn.org (formerly dyndns.org), but also use the *.synchro.net
that Rob Swindell has for Synchronet Sysops. I did have a user who had
trouble connecting to wx1der.dyndns.org -- but when he used
tbolt.synchro.net, he got in fine. I'm still scratching my head over
that one.

Unfortunately, we're in a stormy weather pattern...again...which means
more downtime. But, we need the rain...fire danger is increasing...but
not to the point of cancelling the fireworks displays tomorrow night.

Daryl

===
■ OLX 1.53 ■ A croquette is a romantic female frog.
--- SBBSecho 3.05-Win32
* Origin: FIDONet: The Thunderbolt BBS - wx1der.dyndns.org (1:19/33)

Hello Daryl,

03 Jul 18 16:54 at you wrote to JAZZ:

It's such a PITA to change everything...but they did have a valid
point in their "shutdown message"...too many were abusing the "free service". In short, the "bad apples" ruined things for everyone else.

That's not exactly the whole story but it's what the owners decided to blame it on.

The parent company was/is notorious for having a broken system and not fixing it. They were also very slow to deal with complaints and I'd heard that there was potential lawsuits brewing (this last part is hearsay).

In any case, I think it's good for all involved to move on to better-maintained and better-cared-for services. I switched to No-IP years ago with a paid account and it's worked perfectly for me.

Later,
Sean

... Health is merely the slowest possible rate at which one can die.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

Hello Daryl,

03 Jul 18 16:57 at you wrote to me:

I get a lot of connects with <no name> as the address...and the

A lot of these small firewall setups aren't enough to handle the crap that's floating around on the Internet. You really need an edge firewall that simply blocks entire countries at first and then will let you ban entire CIDR ranges from connecting. Until you get something with some gusto going you're going to have issues. Even my system is starting to have problems right now so I'd better get going on building myself an IPFire (yes, it reads "I pee fire", heh) box.

Later,
Sean

... Why is the word "abbreviation" such a long word?
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

On 05 Jul 18 09:55:09, Sean Dennis said the following to Daryl Stout:

The parent company was/is notorious for having a broken system and not fixi it. They were also very slow to deal with complaints and I'd heard that th was potential lawsuits brewing (this last part is hearsay).

In any case, I think it's good for all involved to move on to better-maintained and better-cared-for services. I switched to No-IP years ago with a paid account and it's worked perfectly for me.

An idea I had, was deploying a cloud server that would provide DDNS services for Fido members only. It would use the existing DNS infrastructure of fidonet.org, and the Sysop would no longer be at the mercy of a DDNS provider.

Nick

--- Renegade vY2Ka2
* Origin: Joey, do you like movies about gladiators? (1:229/426)

Hello Nick,

05 Jul 18 11:03 at you wrote to me:

An idea I had, was deploying a cloud server that would provide DDNS services for Fido members only. It would use the existing DNS infrastructure of fidonet.org, and the Sysop would no longer be at the mercy of a DDNS provider.

I'd be up for that.

Later,
Sean

... Real knowledge is to know the extent of one's ignorance.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

Hello Nick.

05 Jul 18 11:03, you wrote to Sean Dennis:

In any case, I think it's good for all involved to move on to
better-maintained and better-cared-for services. I switched to
No-IP years ago with a paid account and it's worked perfectly for
me.

An idea I had, was deploying a cloud server that would provide DDNS services for Fido members only. It would use the existing DNS infrastructure of fidonet.org, and the Sysop would no longer be at the mercy of a DDNS provider.

That would be awesome!

Flavio

... "Mas n└o tem nada no saco!" - Mel└o p/ Shade, 3╖ Encontro
--- MacFidoIP 1.0 (OSX)
* Origin: Hyperion's Orbit - Resisting since 1995! (4:801/189.1)

On 2018 Jul 05 09:57:38, you wrote to Daryl Stout:

I get a lot of connects with <no name> as the address...and the

A lot of these small firewall setups aren't enough to handle the crap that's floating around on the Internet. You really need an edge
firewall that simply blocks entire countries at first and then will
let you ban entire CIDR ranges from connecting. Until you get
something with some gusto going you're going to have issues.

agreed... i've been saying this for years...

Even my system is starting to have problems right now so I'd better
get going on building myself an IPFire (yes, it reads "I pee fire",
heh) box.

have you tried smoothwall? ipfire is a fork of smoothwall... there's another one that is also forked from smoothwall but i don't remember its name... i think it also started with "IP"...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... I sense alcoholism runs deep in your lineage.
---
* Origin: (1:3634/12.73)

Sean,

to have issues. Even my system is starting to have problems right now so I' SD>better get going on building myself an IPFire (yes, it reads "I pee fire", SD>heh) box.

You might want to call your urologist, then. :P

Daryl
===
■ OLX 1.53 ■ A Tribble a day keeps the Klingons away
--- SBBSecho 3.05-Win32
* Origin: FIDONet: The Thunderbolt BBS - wx1der.dyndns.org (1:19/33)

Ok, so what about just upgrading to business class services? This way you get a
static IP and never have to worry about dynamic DNS...

--- BBBS/Li6 v4.10 Toy-4
* Origin: ASCIIattic | Classic Computers Belong in the ATTIC! | (1:266/75)

Hello Daryl!

03 Jul 2018 16:53, Daryl Stout wrote to BENNY PEDERSEN:

I'll bet that soon, there won't be any free DNS deals left.

what do i win if i can prove you fail here ?

The satisfaction that you were right, and I was wrong. :P

+1

At least I'm not like the episode of "Happy Days", where Fonzie
couldn't say "I was wrong"...it was like "I was wr........" <G>

its sad that south park is not made anymore, real life made it not needed


Regards Benny

... there can only be one way of life, and it works :)

--- Msged/LNX 6.1.2 (Linux/4.17.3-gentoo (x86_64))
* Origin: I will always keep a PC running CPM 3.0 (2:230/0)

Daryl Stout wrote in a message to MATT MUNSON:

Matt...

After almost 20 years of service DTDNS is being discontinued. If you are
currently on the service you likely got an email by now.

I'll bet that soon, there won't be any free DNS deals left.

I have thought about setting my own up again.

Peace,
Robert

--- timEd/2 1.30+
* Origin: Omicron Theta/2 * Southaven, MS * os2bbs.org:2300 (1:261/20)

Sean Dennis wrote in a message to Daryl Stout:

Hello Daryl,

02 Jul 18 18:25 at you wrote to MATT MUNSON:

I'll bet that soon, there won't be any free DNS deals left.

That's why I switched to a paid plan at No-IP years ago. Not only
that, their smart DDNS update client runs as a daemon on my BBS
and I don't have to worry about updating anything manually.

When you connect to bbs.outpostbbs.net, that redirects to outpostbbs.ddns.net to connect to my BBS.

Which is one reason I have been using namecheap.com for years. They have a dyndns update client that you can use when you register a domain with them. I use it to keep my domains all synced with my IP address here and it works well.

Peace,
Robert

--- timEd/2 1.30+
* Origin: Omicron Theta/2 * Southaven, MS * os2bbs.org:2300 (1:261/20)

Hello mark,

06 Jul 18 12:45 at you wrote to me:

have you tried smoothwall? ipfire is a fork of smoothwall... there's another one that is also forked from smoothwall but i don't remember
its name... i think it also started with "IP"...

IPCop. IPFire is a fork of IPCop.

Right now, I just don't have time. My work and family life are taking up most of my time but I am hoping to be able to do so very soon.

Later,
Sean

... Making up your mind is the hard part - the rest is pure work.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

Hello Robert,

07 Jul 18 09:28 at you wrote to me:

Which is one reason I have been using namecheap.com for years. They
have a dyndns update client that you can use when you register a
domain with them. I use it to keep my domains all synced with my IP address here and it works well.

Once I finally get my own place, I'm working on getting a T1 line put in. They're pretty cheap around here, about $200/month (or less). Not looking for speed but more for reliability. Then I'll host *.outpostbbs.net at home.

Later,
Sean

... Knowledge is the food of the soul.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

its sad that south park is not made anymore, real life made it not needed

Ummmm, unless they just stopped filming it, a new season aired a few months back. I have not heard anything about that season being the last.

Mike

---
* SLMR 2.1a * My grubby halo, a vapour trail in the empty air...
* Origin: Capitol City Online - capitolcityonline.net (1:2320/105)

RE: Re: dtdns
BY: Sean Dennis(1:18/200)

I get a lot of connects with <no name> as the address...and the

A lot of these small firewall setups aren't enough to handle the crap that's floating around on the Internet. You really need an edge
firewall that simply blocks entire countries at first and then will
let you ban entire CIDR ranges from connecting. Until you get
something with some gusto going you're going to have issues. Even my

Even with country blocking filters they still try to contact my server :(

I wonder if I should try the Symantec or Bitdefender hardware firewall products.

... [CE] ôIÆm not afraid of al Qaeda, IÆm afraid of al Cracker.ö -Chris Rock

--- WWIV 5.4.0.2738
* Origin: Inland Utopia BBS * utopiabbs.duckdns.org:2323 (1:218/109)

On 2018 Jul 05 20:33:46, you wrote to Sean Dennis:

A lot of these small firewall setups aren't enough to handle the crap
that's floating around on the Internet. You really need an edge
firewall that simply blocks entire countries at first and then will
let you ban entire CIDR ranges from connecting. Until you get
something with some gusto going you're going to have issues. Even my

Even with country blocking filters they still try to contact my server
:(

of course they do... they're simply scanning ranges of IP numbers... if you don't block them at the perimeter, your server(s) are going to have to deal with them... even it if means you have country blocks that your servers need to
handle to know if they should drop the connection or not... that's why folks like sean and myself have been saying to drop this junk at the perimeter firewall... that way your server(s) (sbbs, nginx, apache, ftp server, nntp server, etc) don't have to deal with it...

I wonder if I should try the Symantec or Bitdefender hardware firewall products.

absolutely not... that is not ON your perimeter... that's IN your network... this is what we're talking about... right now, you have this...


internet -> ISP modem -> your network(s)


so everything is on your ISP modem to do all the work... for the most part, it is quite capable... but it cannot handle large lists and you cannot customize it to add things like intrusion detection or intrusion protection services (aka
IDP/IPS)... what we're saying is to do this...


internet -> ISP modem -> perimeter firewall -> your network(s)


in this setup, your ISP modem is (hopefully) in "bridge mode"... that means it is basically out of the loop other than converting your DSL or cable internet signal into TCP/IP for your network comms... it doesn't do anything else... no routing, no DHCP, no nothing... everything now is done by your perimeter firewall... a firewall that has plenty of storage and memory... a firewall that
you can actually sit down and enter huge lists of country IP ranges to block...
a firewall that can actually detect when something nefarious is trying to get in or out... if your ISP modem can't do bridge mode, then it simply means that your connection will be double-NAT'ed... that means that you'll have a RFC-1918
address on your firewall's WAN port and it'll be handing out addresses and managing connections for another (set of) RFC-1918 addresses... it isn't a big deal but it can really hamper some tasks...

granted, this means having another machine running as well as having another switch/hub or two or three but this is a huge sight better than relying on those black boxes the ISPs give you or that you purchase at Best Buy or Circuit
City or other similar places that sell electronics... i'll never set up another
network without a perimeter firewall... ever...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Thou shall flirt shamelessly with all members of the opposite sex.
---
* Origin: (1:3634/12.73)

Hello Matt,

05 Jul 18 20:33 at you wrote to me:

Even with country blocking filters they still try to contact my server
:(

Is this part of your edge device (outside firewall) or is this in your lan?

I wonder if I should try the Symantec or Bitdefender hardware firewall products.

They probably won't do what you want. You should look at IPFire which can create physically and logically separate networks.

Later,
Sean

... Procedures designed to implement the purpose won't quite work.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)

Hello Raul.

07 Jul 18 11:57, you wrote to me:

Ok, so what about just upgrading to business class services? This way
you get a static IP and never have to worry about dynamic DNS...

It is a possibility. In my case I have always used no-ip.com services, it has worked well for my 2 systems.

Flavio

... "EU SOU PETER PAN! " - Cris
--- MacFidoIP 1.0 (OSX)
* Origin: Hyperion's Orbit - Resisting since 1995! (4:801/189.1)

Raul Perez wrote in a message to Flavio Bessa:

Ok, so what about just upgrading to business class services? This
way you get a static IP and never have to worry about dynamic
DNS...

Or you can register a real domain with NameCheap and use their DynDNS service? :)

As far as upgrading to business class service, if you are with Comca$t, then you're screwed into a contract for 2 years.

Peace,
Robert

--- timEd/2 1.30+
* Origin: Omicron Theta/2 * Southaven, MS * os2bbs.org:2300 (1:116/18)

mark lewis wrote in a message to Matt Munson:

internet -> ISP modem -> perimeter firewall -> your network(s)

Which is similar to my setup:

Internet -> AT&T Fiber Modem -> pfSense box -> My network

Granted my pfSense box is an old HP ProLiant DL360 G3 1U server, but it is is big enough for me: 3GB RAM, dual Xeon 2GHz processors, 125GB storage (RAID 1), and two GBit network interfaces :)

--- timEd/2 1.30+
* Origin: Omicron Theta/2 * Southaven, MS * os2bbs.org:2300 (1:116/18)

RE: Re: dtdns
BY: Sean Dennis(1:18/200)

They probably won't do what you want. You should look at IPFire
which can create physically and logically separate networks.

Maybe a Raspberry Pi could be my permiter firewall.

... [CE] 2 + 2 = 5 for extremely large values of 2.

--- WWIV 5.4.0.2738
* Origin: Inland Utopia BBS * utopiabbs.duckdns.org:2323 (1:218/109)

Hello Matt,

15 Jul 18 10:14 at you wrote to me:

Maybe a Raspberry Pi could be my permiter firewall.

No, I'd think you would want something more robust to do that with. A Pi is good for a lot of things but I'd want something with more horsepower under the hood if you're going to be blocking 20,000+ networks from coming into your network.

Later,
Sean

... The person who has no opinion will seldom be wrong.
--- GoldED+/LNX 1.1.5-b20170303
* Origin: Outpost BBS * Limestone, TN, USA (1:18/200)