Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.

xml

Print

Gentoo vpnc HOWTO Updat

Summary: This
docum to
Content:1. Introductio conne
works
VPN c
1. Introduction
utilizin ge
the co
If you're
en nnect
you reading
work
likely
ng
to from your nee
thi
travel.
utilize
Many
concentrator
VPN
Cisco
illing
compa
Davidneed
H. Askew 300
to
bet bies
thatforced
think
most
to Author
ell,
connec
that
Linux
to this
use
th
document
that coconnecting
VPN
and
informs
le willis you veh
yt
Sven Vermeulen
to setup
el using
orkstation
a working
your Ge
or t
Contributor

What this document is Christian Faulhammer

Contributor
A guide
rkings
vpnc toof
the bas
Thomas Fischer
A discussion
d routing
ate to VPNs
issues
of DN
Contributor
Examples
VPN sessions
of mana
Joshua Saddler
Useful
opefully)
tips and tric
Editor

What this document is not Donate to su

develo
An N/encryption
in-depth
ies guide
te
A feature
planation
vpnc by of
featur

Assumptions

Theat
assumptions
this point are
m

You
led
have Gentoo
You
sshave Internet
Youawant
Cisco
centrator
to3000
conne
V
You
ure,
know
new
build,
how
kernel
and
to c

2. Kernel Configuration

In order
ablenection
to
for
vice
open
driverLinux
support Universal TUN/TAP
a de to
V
must
kernel.
be
hy enabled
do
w What is you a rela
is
ne ini
forward
the dialog:
kernel
explanation confi

Code Listing 2.1: CONFIG_TUN

1 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

TUN/TAP provides packet reception and transmission for user space

programs. It can be viewed as a simple Point-to-Point or Ethernet
device, which instead of receiving packets from a physical media,
receives them from user space program and instead of sending packets
via physical media writes them to the user space program.

When a program opens /dev/net/tun, driver creates and registers

corresponding net device tunX or tapX. After a program closed above
devices, driver will automatically delete tunXX or tapXX device and
all routes corresponding to it.

Youifcan
your
/TAP
verify
ollowing
kernel
support
your
ha
c

Code Listing 2.2: Checking the kernel config

# grep "TUN" /usr/src/linux/.config

CONFIG_INET_TUNNEL=m
# CONFIG_INET6_TUNNEL is not set
# CONFIG_IPV6_TUNNEL is not set
(TUN/TAP enabled as a module)
CONFIG_TUN=m
# CONFIG_8139TOO_TUNE_TWISTER is not set

As you
CONFIG_TUN=m iscan
compiled
le. If
ur
seeit
setup
is
abo
di
a
enable
of choice,
ll,
itreboot
in
hisyour
ntinuing
docum
rebuild
and
ker
with the next steps.

Code Listing 2.3: Configuration location in the kernel configuration dialog

Device Drivers --->

Network device support --->
[*] Universal TUN/TAP device driver support

If you
upport
built
ernel,
formation
directly
TUN/TA
dmesg you
output
sh
in
like the following:

Code Listing 2.4: Checking dmesg output

# dmesg | grep TUN

Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky

If you
upport
u
build
first
tun module:
as
TUN/TA
must
a mod
lo

Code Listing 2.5: Load tun module

# modprobe tun
# lsmod
Module Size Used by
tun 7296 0

Now
tun module
that
k
dmesg output.
the
somethin
is loaded
You
following:

Code Listing 2.6: Checking dmesg output

2 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

# dmesg | grep TUN

Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky

3. Install Needed Software

Now
orking
that
need you
kernel
net-misc/vpnc: tohave
insta
set

Code Listing 3.1: Installing vpnc

# emerge -av net-misc/vpnc

4. Example Setup

In order
llowing
lear,
tolesections
make
we
setup
or need
thethe
to
purposes
e, we
you will
rk
of
have
of
this
.assum
All
seve
aexeh
computers
92.168.0.0
5.0n network.
question
are
entoo
/ on
255 th
boxrewall,
using
DNS,querades
DHCP,
an etc
d iptable
the... ca
a
public
eives IP
also
from
naddress
on
have
h an
you
the a
ISit
L w
wantinto
to be
your able
office
to V

Our
nexample
configuration
e the followin
worksl

Code Listing 4.1: Our workstation configuration

3 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

(Name server configuration)

# cat /etc/resolv.conf
nameserver 192.168.0.1

(Network configuration)
# cat /etc/hosts
127.0.0.1 desktop localhost
192.168.0.1 router
192.168.2.2 mediacenter

(Interface configuration)
# ifconfig -a
eth0 Link encap:Ethernet HWaddr 00:11:2F:8D:08:08
inet addr:192.168.0.2 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::211:2fff:fe8d:808/64 Scope:Link
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500 Metric:1
RX packets:3657889 errors:0 dropped:0 overruns:0 frame:0
TX packets:2305893 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2193722103 (2092.0 Mb) TX bytes:1415104432 (1349.5 Mb)
Interrupt:185 Memory:fac00000-0

lo Link encap:Local Loopback

inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:35510 errors:0 dropped:0 overruns:0 frame:0
TX packets:35510 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:16023838 (15.2 Mb) TX bytes:16023838 (15.2 Mb)

(Routing information)
# netstat -r
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
192.168.0.0 * 255.255.255.0 U 0 0 0 eth0
loopback desktop 255.0.0.0 UG 0 0 0 lo
default router 0.0.0.0 UG 0 0 0 eth0

5. Configuring vpnc

Now vpnc installed

that n example
you
, let's
s
and
have
ofdisc
we
to
settingvpnc. The for
vpnc connection
upconfiguratio
n be locat s
places, ow ant many depending
, to
vpnc looks
setup. firs
profiles o
/etc/vpnc/default.conf for ngs.
itsat connecti
If
file,
it doe
the
/etc/vpnc.conf. This dress setup
ample a single
will
and o
configuration n /etc/vpnc.conf. Make file
sure
loc
/default.conf file.

Code Listing 5.1: Example /etc/vpnc.conf file

IPSec gateway vpngateway.domain.org

IPSec ID group_id
IPSec secret group_password
Xauth username network_signon
Xauth password network_password

4 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

The ample configuration

modified ppropriate
above
ur to
sh re
fi
setup.
tion The
vpngateway.domain.org can domain
be
gatewaya fu
IP address.
secret e given
work
options
The
ou to
adm
ID
yo s
cannot
ation ave obtain
but
a
a Window
you
workin
thiscuin
utilizes
o VPN u the have
our
client,
official
me
profile
to do
and
theC
password
r your ign-on, ows
normal
options
t. such
NT nedo
a

If you
ort are
indows
your hat
forced
profile
is
you mach
a to
wfr
file ending
he information
. Below
in .pcf. This
is

Code Listing 5.2: Example profile.pcf file

[main]
Description=
Host=VPNGATEWAY.DOMAIN.ORG
AuthType=1
GroupName=group_id
GroupPwd=
enc_GroupPwd=F3256220AA200A1D532556024F4F314B0388D48B0FBF2DB12
EnableISPConnect=0
ISPConnectType=0
ISPConnect=FOOBAR
ISPCommand=
Username=
SaveUserPassword=0
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=1
MSLogonType=0
EnableNat=1
TunnelingMode=0
TcpTunnelingPort=10000
CertStore=0
CertName=
CertPath=
CertSubjectName=
CertSerialHash=00000000000000000000000000000000
SendCertChain=0
VerifyCertDN=
DHGroup=2
ForceKeepAlives=0
PeerTimeout=90
EnableLocalLAN=0
EnableSplitDNS=1
ForceNetLogin=0

In the
we Host, above
canGroupName and see
enc_GroupPwd. Your
examp
entri
Username and
UserPassword may orted or setup. may
depen To
no
working tion se out
pcf2vpnc, included
vpnc of it,
configw
you

Note: You
ssword
can
m the
decrypt
cisco-decrypt program,
with
thethe
late
theh
s
vpnc.

5 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

Testing your setup

Now nfiguration
that
time
you
To to
vpnc you
start
test
have
in do
pla
y
following:

Code Listing 5.3: Example vpnc usage

# vpnc
Enter password for username@vpngateway.domain.org:
VPNC started in background (pid: 14788)...

As e
youabove
ut,
can
vpnc once
(as
comma
see
pted
root),
you
from
for r
your
entering
d, password.
which
oed vpnc your
back
willpn
process
lly become
d process.
will automa
a bac

Note: If youXauth password option

specified
vpnc config
l not
in your
file,
be
theprth
your vpnc startup.
password
vpnc needs nsAdditiona
not
some
atspec e
configurationou have
thing, ask
forgotten
don't
file,
you or
wor
forif

Code Listing 5.4: Sample interface configuration changes made by vpnc

# ifconfig -a
eth1 Link encap:Ethernet HWaddr 00:11:2F:8D:08:08
inet addr:192.168.0.2 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::211:2fff:fe8d:808/64 Scope:Link
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2101119 errors:0 dropped:0 overruns:0 frame:0
TX packets:1577559 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1757862627 (1676.4 Mb) TX bytes:732200131 (698.2 Mb)
Interrupt:177 Memory:faa00000-0

sit0 Link encap:IPv6-in-IPv4

NOARP MTU:1480 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00

inet addr:192.168.160.42 P-t-P:192.168.160.42 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1412 Metric:1
RX packets:1 errors:0 dropped:0 overruns:0 frame:0
TX packets:9 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:500
RX bytes:60 (60.0 b) TX bytes:616 (616.0 b)

Code Listing 5.5: Sample routing modifications made by vpnc

# netstat -r
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
vpn01.domain.or router 255.255.255.255 UGH 1500 0 0 eth1
192.168.0.0 * 255.255.255.0 U 0 0 0 eth1
loopback desktop 255.0.0.0 UG 0 0 0 lo
default * 0.0.0.0 U 0 0 0 tun0

6 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

As e
you
above
ut(s),
can
vpnc hascomma
see
done
from
th

Created
rk interface,
terface
the
ffic tun0
acros
toaha
v
n
tunnel
Obtained
s for
mthe
your
the
tun0
IP
VPNad
d
Set your
the default
VPN gate
rou

At this
station
mmunicating
point,
via
is vpnc
capabl
your
the VPw
sets
toyour
your
ll network
vel
default
VPN
enacross
if
gat
tra
ro
it
destined
t orifically
elsewhere
for
itional
,
thespecifi
this
rout
Inte
n
basic
n may
type
butsteps
be
for
of satisfa
most,
conne
nee

Additional
ight wantthings
to have
yo

DNS for the VPN

A routing
l only
ed send
e
for
setup
virtual
the
traff
tha
VP
t
way,
e Internet
you
ted can
your
to the
while
brow
per
VP
etc. the
traffic
tunnel.
going ac
A script
his,
vpnc just
because
to
bydoesn't
manage
defaul

When
endxecute
you
the are
vpnc-disconnect. VPN
An read
exam
ses
below.

Note: Don't
cause
disconnect
al things
mple
we have
below
to yet
tes
ad
informational
. purpose

Code Listing 5.6: vpnc-disconnect

# vpnc-disconnect
Terminating vpnc daemon (pid: 26250)

6. Set up DNS

Unfortunately,
vpnc doesn't
p and
NS handle
manag
lished
for you t
tunnel. to decide
uldThe
ld
bejust
user
how
handle
ove
is
D
/etc/resolv.conf whenthat
VPN
you
would
ueries
conne
DNS ut
regardless r noted the
for
This
of
traffic
l
your
wheth
is a V
is
solution ly need
e tunnel,
and
and
to ad
if
conne
then
you
do
no y
s
further. t to rbe
tunnel
But,
ngthy
ableif
d you
conn
to
peri
lew
don't NS want
uests
servers
traffic,
your
forhandyou
wor
rea

Thellow
ideal
ur you
DNS
setup
categorie
to
d queri
and
sepa
wou
other.
, allueries
Under
VPN-related
ed by
ted
would
this
DNS
atse
thePNother
queries
tunnel
to
end be
l or
and
of
would
answ
ISP
you
a
supplied
This ill is
be
DNS
. the
demons
setup
serve

Note: We elated
will
e consider
any
to
DNS
the
query
ain,
queri
exam
suc
VPN
be
as host1.example.org
r server1.example

So gs
how up,
estsdo theso
made
youthat
examp
get setto
on
sentNStore
servers?
VPN going
ll a ut
supplie
local
to
don'
Wene
D
worry,
thanre
it's
youseveral
kages
much
he
think.
type
tha
eas
soT
of setup
for demonstratio
the we
dnsmasq will be
purposes
desire, ut
emerge it now:

7 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

Note: This reDNS

will
to the
only
not
server
om
network
be
answe
avai
sof
localhost,
127.0.0.1.

Code Listing 6.1: Install dnsmasq

# emerge dnsmasq

Nown option
you
dnsmasq startup
need
e followin
tot your
optio
to ad
your
.example.org
needs.
ppropriate
he lid
IP
Substit
addr
DNS
wit
do
server
he VPNthat belongs
tunnel.

Code Listing 6.2: /etc/conf.d/dnsmasq

Config file for /etc/init.d/dnsmasq

# See the dnsmasq(8) man page for possible options to put here.
DNSMASQ_OPTS="-S /.example.org/192.168.125.10"

Next,
e first
make entry sure
127.0.0.1, in tha
/etc/reso
followed
of rvers
the by the
backup that
theDNSloca
sho D
dnsmasq
or ifait DNS
needs
fails
currently che.
query
to to
sta
An f
example /etc/resolv.conf is show

Code Listing 6.3: /etc/resolv.conf

nameserver 127.0.0.1
nameserver 192.168.0.1

Now
p a
that
nnel
rule
start
you DNS,
forhave
dnsmasq. your
yo

Code Listing 6.4: Starting up dnsmasq

# /etc/init.d/dnsmasq start
# rc-update add dnsmasq default

7. Configuring the routing table

The ldideal
beestined
if
would
scenario
onlylink.
for
the
trav
VP
A t
thisPN
point,
traffic
tunnelthe
youspecify
will
setup
tunne
havetra
additional
er to
ou fix
need
etworks
routes.
this
youto
situa
on
kn
ar
In
yourwayVPN.
ded
to kfind
informati
The
a or,
networ
out
eas
but th
sometimes
uctant
uestions.
etwork
to they
answer
vide If
are
adth
yo
needed
e trial
ents
information
andwill error
be re

When
as
vpnc set the
the
t
started,
the VPNtunnel
set
defau
yo
tunn
default
rmal, rk
route
as
so expecte
that
backthin
t

Code Listing 7.1: Resetting your default route

# route add default gw 192.168.0.1

Earlier,
ices red
were
when
pecified
foro being
your
DNS aV
handle
g domain.
add
your
168.125.0
a examp
route
t You
DNS fo
n
queries will work.

8 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

Code Listing 7.2: Adding a route for dns

# route add -net 192.168.125.0 netmask 255.255.255.0 dev tun0

At this
d add
tes
point,
any
for
(such
t you
known
additio
assh
192.168.160.0,
cludes
eceived
P the
virtual
r IP
by
whi
ad
th
d
friendly
strator
uired
network
ise,
gave
info,
ing
youyou
adm
gre
m
hostscting
you
ive to
ut
yourself
will
frequent
what
lebe co
yo
a
should look like.

Note: Due
n to
using
rvices
your
stVPN
specify
setup,
ied
by nam
netww
th
domain nce:le.org
webserver1.e
name, for ins

Code Listing 7.3: Ping example

# ping intranet1.example.org
PING intranet1.example.org (172.25.230.29) 56(84) bytes of data.

--- intranet1.example.org ping statistics ---

18 packets transmitted, 0 received, 100% packet loss, time 16997ms

As e
you
above
ing
can probes exampl
see
intranet1.example.org were
from
to
unsuccessful.
ed to
t subnet.
add aSo
route
w

Code Listing 7.4: another route command example

# route add -net 172.25.230.0 netmask 255.255.255.0 dev tun0

A few
mmands
uld
pingbe
toand
g
later,
awell
table
well
rout
on
yw

8. Manage the connection

Calling vpnc when needed

Next
iptis
to
connection.
an
manage
xecute
example
an it
thY
(
xterm
tionto
all
tostart
ess
you
yourt return
the
a
have
VPN
con
VPN.
ll need
Obviously
r your
ing
to nal
setup,
modify
to add
you
routes
ed. that you may

Code Listing 8.1: Example session management script

9 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

#!/bin/bash

source /sbin/functions.sh

ebegin "Connecting to the VPN"

vpnc
eend

ebegin "Modifying the routing table"

route add default gw 192.168.0.1
route add -net 172.25.230.0 netmask 255.255.255.0 dev tun0
route add -net 192.168.160.0 netmask 255.255.255.0 dev tun0
route add -net 192.168.125.0 netmask 255.255.255.0 dev tun0
eend

einfo "Press any key to disconnect ..."

read $disconnect

ebegin "Disconnecting from the VPN"

vpnc-disconnect
eend
ebegin "Reconfiguring the default routing table"
route add default gw 192.168.0.1
eend

einfo "VPN should now be disconnected"

Start vpnc on boot

Version contains
0.4.0-r1
tiple
an init
of
configurations. ault script
onf, but
tions
looks
as
Thema
can ssible.beshutdown
imagined
custom-m
Before
n be an
ar
an
executed ected thecript
by
that
correspon
their
1-r1).
(since
are na
c
Their names end in
/etc/init.d/scripts.d/ directory.
namingched The
sche
in th
table.

init script name needed configuration file preup script name

/etc/init.d/vpnc /etc/vpnc/vpnc.conf /etc/vpnc/scripts.d/vpnc-preup.sh

/etc/init.d/vpnc.work /etc/vpnc/work.conf /etc/vpnc/scripts.d/work-preup.sh

Addlevel
vpnc
commands
with
for
to uration
default
the
the folsta
(i
Don't
tunforget
built
module
kernels
it
to
anism
that
add
(if yo
w
aa
startup.

Code Listing 8.2: Adding vpnc to startup scripts

# rc-update add vpnc default

If you
e your
don't
configuration
an passwordwanttell
how the
to
all
output standard
ngand prompts
output
/etc/conf.d/vpnc. Set th
VPNCOUTPUT to yes
default
screen
or no, is to
whe
out
n

10 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

Note: Thendle
init
utDNS
scripts
you
m scripts
t.
can
separa
See
don't
use
to
Tips . and Tricks

9. Tips and Tricks

Graphical remote access

If you
Linux
are
pports
application
esktop
looking
ive
RDP Pro
fo
(
grdesktop a try.
ritten
in
It's
well
in
sktop,
a GTK+
GUI
with
bu
a
require ant n the
it.
dialogs
If
provides,
GUI
you
all conf
tha
don
rdesktop. Ultimately,
is just
sktop.a fronten
grdes

If you
you are
kvpnc. It ery
a
might
a appears
matur
KDE
want
ust
management GUI.

If you
to awhich
need
Windows
NS to
doesn'
entry,
the
connm
address WINS
use of
nmblookup server,
ato
an query
toolavaila
cal
yo
server e of
ant
for
the rtunately,
tothe
machine
stall
connec
host n
samba to get
going
thit,boxes ws
but
to be
you
if you
run
wom
want ecause
to
ral install
other it include
samb
usef

Code Listing 9.1: Installing samba

# emerge -av samba

When
and
test
you its
nmblookup byhave
tools
rver
asking
at
sam
ins
I
address
about
ntelbox1. 192.168.12
a host na

Code Listing 9.2: nmblookup example

# nmblookup -U 192.168.125.11 -R 'wintelbox1'

querying wintelbox1 on 192.168.125.11
172.25.230.76 wintelbox1

Custom scripts on boot

Thets custom-made
for up
the g
a init.dfor
user-d
file the c s
vpnc
xamples
connection.
w to
able
setup
below
ctions so thTh s
to 123.234.x.x
d over
otherhe
theconnec
default
VPNare r
example
up.shnt default
uses
to
re save
starting
resets work
gat th
thengdefault
.
the
Once
tarted,
VPN
gatewayvpncconn h
work-postup.sh
deletes
t gateway,
old
this
ddefault
sets
new resto
thede g
connections
.x.x nnection.
to use to the
123. vp

Code Listing 9.3: /etc/vpnc/scripts.d/work-preup.sh

#!/bin/sh
route -n | grep -E '^0.0.0.0 ' | cut -c 17-32 >/var/tmp/defaultgw

Code Listing 9.4: /etc/vpnc/scripts.d/work-postup.sh

#!/bin/sh
route del -net 0.0.0.0 netmask 0.0.0.0 dev tun1
route add default gw $(cat /var/tmp/defaultgw)
route add -net 123.234.0.0 netmask 255.255.0.0 dev tun1

11 of 12 10/22/10 23:48
Gentoo Linux Documentation -- Gentoo vpnc HOWT O http://www.gentoo.org/doc/en/vpnc-howto.xml

Thesume
example
nection
that
n device.
hethe
script
usesvpY
device
nection's
ile.
name configu
in the

Code Listing 9.5: /etc/vpnc/work.conf

Interface name tun1

IPSec gateway vpn.mywork.com
Pidfile /var/run/vpnc.work.pid

10. Useful Links

vpnc homepage
kvpnc homepage
grdesktop homepa

11. Final Notes

Hopefully
ave ctbeen
to
eby
your
anday
able
nowto
are
VPyo
to
remote
l bugs.gentoo.o
free should
ke
office
to fileor
work.
a you
wis
bu
make
ommendation
an
this
addition
documen re
o

The
cument
contents
nder
Creative
ttribution
are
theoflicense
this
Com /d
license.

Copyright 2001-2010 Gentoo Foundation, Inc. Questions, Comments? Contact us.

12 of 12 10/22/10 23:48