Saturday, July 30, 2016

Motors That Came With the Old Woodworking Tools

A while ago, I posted about being a tool junkie and picking up quite a few tools and that there were five or six motors included.  I didn't go into depth about the motors, because I didn't see tags at a quick glance, and there were many enough that I didn't want to look to make that post even longer than it is.  So, I finally got over my laziness, uh, preference to prevent long posts, and went out to check the motors and identify them.  So, here they are.  The first motor didn't have an identification tag on it.  But, deductions say it is an A/C motor, since all of the rest were.  I don't really have a way to identify it at this point.  So, I'll skip that one.

The second one I pulled out was a Robbins & Myers 3/4HP, 220v A/C motor that spins at 1725 RPM.  Serial number is MM18377TQ, and a brief company history was provided by Vintage Machinery :



The third one I pulled out was a single-phase Westinghouse 315P194.  It is a 1/2 HP, 110v A/C motor that spins at 1725 RPM, and is a cheap motor on eBay ($20?).  It looks like the best candidate for use in the South Bend lathe.  The original motor for the lathe was 1/3 HP, so it should have plenty of power.

 



The fourth one was a General Electric Model 5KH35KG103X.  It's a 1/4HP, 115v, continuous duty A/C motor that spins at the normal 1725 RPM.  The serial number had "WMA" stamped.  On eBay, this would probably sell at around $50 + shipping :



The fifth one was a Dayton single-phase/split-phase A/C motor for 115v, 1/3 HP.  The model number is S55NXCCZ-1691 (number 6K030), and it cranks in the normal-for-old-A/C-motor speed of 1725 RPM.  On eBay, probably around $37+shipping :


The sixth one turned out to be a General Electric model 5KC45AB1107X, a single phase 1/6 HP, 110v A/C motor cranking (surprise!) in at 1725 RPM. :



There were quite a few motors in that lot (6), but none of them are the same.  From a 220v 3/4HP motor to a 110v 1/6HP motor, there are plenty for what I want (you might say over-abundance).  My next task is building a stand for the tools, and organizing things a bit for space.

Monday, July 25, 2016

Trying to Start, Failing

Well, I tried (yet again) to start my car.  It failed (yet again) to start.  Permit me to growl menacingly.

Grrrrr!

So, here's where we lie.  I connected the battery, lifted the back end, and installed the starter.  I turned the key.... and had nothing.  To eliminate the starter as the problem, I grabbed a screw driver and crossed the battery line and the starter solenoid line.  It spun.  That means the starter is okay.  Now, keep in mind, it spun - it never engaged.  A new problem has arisen - I have the wrong starter size.

Well, I also knew I had a wiring issue.  So, back to the inside, I turned the key again, watching to see if we had 12 volts at the starter (we did before).  Unfortunately, while I was doing that, I noticed magic smoke escaping from one of the wires.  That means it got too hot because the wire was too small.

It was around that time I also realized why the thing was failing earlier and I had to jump the neutral safety switch - I never connected the neutral safety switch to ground.  Here's what I have to do :

  1. Locate a good starter that fits the replacement engine and the MacLeod scatter shield
  2. Fix the wiring.
  3. Finish the Neutral Safety switch.

Let's see where this goes!  (I hate electrical sometimes.)

Monday, July 18, 2016

Checking a Drill Press Spindle using a Lathe

Well, I was unable to find replacement parts for the drill press (who can find Guardian Power Tools, let alone even a manual for FDM-58-12S?).  As a result, I had to check the spindle to see if it was even worth any more work.  To do this, I used two centers (a live on in the tail stock).  I put up my dial indicator, and took measurements at three points (any other points are pointless, pardon the pun, because they are not bearing surfaces).  The three points are :


The reason for these three points are :
  • A is the lower bearing surface - this has to be accurate - but, if it is out of round, it was probably manufactured badly.
  • B is the upper bearing surface - and this is where you will see the most "out of round" as you turn it by hand.
  • C is the spline area - if this is out of round, the thing was manufactured poorly.
The spline isn't "as" necessary, since it isn't a bearing surface, but it will wear faster if it isn't.  So, I threw it all onto the lathe.  I don't have a drift key, so I cannot get the chuck/arbor off, so I already know I am inaccurate on one end.  The dial indicator specified that I was about 0.002" out of round at the lower bearing area.  I moved to the middle, and found I was only 0.004" out of round.  Surprisingly, that is pretty good for a drill press.



The maximum out-of-round on the upper bearing surface is 0.004"

This means I can simply replace the bearing, and put it back together, and have a drill press in great shape!

Sunday, July 17, 2016

Toying with a Hosafe IP Camera

I was curious about a few things, and one thing led to another.  I purchased a HoSafe IP camera, HOSAFE-2MB3W 1080P, and wanted to see what it would do on the network.  I tossed squid into the mix and forced everything on the IP camera's network to funnel through Squid, only to find :
    1468748798.090    711 192.168.128.31 TCP_MISS/200 591 GET http://www.jovetech.com/down/YST/S/yst_home.txt - HIER_DIRECT/119.188.172.17 text/plain
    
That returned :
    DIP:112.4.212.199:9210
    DIP:221.234.43.228:9210
    WIP:112.84.180.43:9210
    WIP:58.56.111.4:9210
    WIP:119.188.172.5:9210
    DIP:58.56.111.11:9210
    DIP:120.192.81.186:9210
    WIP:120.192.84.26:9210
    
Those IP addresses are owned by :
    person:         Chinanet Hostmaster
    nic-hdl:        CH93-AP
    e-mail:         anti-spam@ns.chinanet.cn.net
    address:        No.31 ,jingrong street,beijing
    address:        100032
    phone:          +86-10-58501724
    fax-no:         +86-10-58501724
    country:        CN
    changed:        dingsy@cndata.com 20070416
    changed:        zhengzm@gsta.com 20140227
    mnt-by:         MAINT-CHINANET
    source:         APNIC
    
Looks like a legitimate request, right?  Ouch.  I knew those ports needed to get blocked (port 9210).  Next, I thought I'd try to scan it to see some details :
    [root@hostname squid]# nmap -sT -O 192.168.128.31
    
    Starting Nmap 6.40 ( http://nmap.org ) at 2016-07-17 20:03 MDT
    Nmap scan report for 192.168.128.31
    Host is up (0.0013s latency).
    Not shown: 995 closed ports
    PORT     STATE SERVICE
    23/tcp   open  telnet
    80/tcp   open  http
    554/tcp  open  rtsp
    8099/tcp open  unknown
    9101/tcp open  jetdirect
    MAC Address: E0:62:90:E4:E2:34 (Jinan Jovision Science & Technology Co.)
    Device type: general purpose
    Running: Linux 2.6.X|3.X
    OS CPE: cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3
    OS details: Linux 2.6.32 - 3.2
    Network Distance: 1 hop
    
    OS detection performed. Please report any incorrect results at http://nmap.org/submit/ .
    Nmap done: 1 IP address (1 host up) scanned in 4.98 seconds
    [root@hostname squid]#
    
A little research, and I found ports 8099 and 9101 were related to some ONVIF and DVR functionality of the camera.  I was actually more interested in the "23/tcp open telnet" line to gain root access.  I currently cannot find the default credentials.  I may have to really get more in depth.

I also threw a simple HTTP request at it to see what it returned.
    
    GET / HTTP/1.0
    Host: camera-backporch
    
    HTTP/1.0 200 OK
    Server: thttpd/2.25b 29dec2003
    Content-Type: text/html; charset=utf-8
    Date: Sat, 15 Jan 2000 05:43:43 GMT
    Last-Modified: Thu, 26 Mar 2015 02:37:24 GMT
    Accept-Ranges: bytes
    Connection: close
    Content-Length: 9872
    
    <!doctype html>
    <html>
      <head>
        <!-- use webkit mode for 360 -->
        <meta name="renderer" content="webkit">
        <meta http-equiv="X-UA-Compatible" content="IE=10" />
        <meta charset="utf-8" />
        <script src="js/jq.js">
        <script src="js/jq.browser.js">
        <script src="js/jq.i18n.p.js">
        <script src="js/u.js">
        <link rel="stylesheet" href="css/reset.css" />
        <link rel="stylesheet" href="css/style.css" />
        <script src="js/index.js">
        <title data-i18n-l="jovision">
      </head>
    [ ... snip ... ]
          </div>
        </div>
        <div id="footer" data-i18n-l="jovision">
    </body>
    </html>
    Connection closed by foreign host.
    [root@ch squid]#
    
The "Server: thttpd/2.25b 29dec2003" header was beneficial, but the last "<div id="footer" data-i18n-l="jovision"></div>" line seemed to match the MAC address description with a reference to "Jovision", and also corresponds to the "jovetech" reference from Squid.  Huh!  Looks like it tries to dial home!

Monday, July 11, 2016

Solar Panels - Quick Info

Well, we had someone stop by the house today about Solar Panels.  Not many companies will sell you a mono crystalline solar panel - most simply advertise and sell only the cheaper polycrystalline panels.  These guys were more than willing to sell whatever panel you want, including the Panasonic VBN325SA16 325 Watt panels.  They suggest about 16 panels, and gave an estimated 23k cost (panels, a SolarEdge power inverter, and installation costs).  I know I could find 16 of those panels on eBay for $7,000, but the installation costs and the warranty just might be worth it.  It's the first real time I've thought about a company actually doing a Solar install rather than me.

Tuesday, July 5, 2016

I Am A Junkie - A Tool Junkie

Hello. My name is Silverhawk. I haven't been sober (tool-wise) for some time. Someone had posted about old tools on a local classifieds website, and so I jumped at the chance. I offered $220, and ended up with a small lathe (yes, it is tiny, but it's a cute little thing), an old Montgomery Ward scroll saw, a pedestal grinder (without the pedestal), a small table saw, a drill, a couple of pulleys, a small hand drill, and five or six motors. I have yet to determine if the motors actually work.  If they do, I came out ahead. If they don't.... well, we shall see.

The table saw is labeled "Sears  Roebuck and CO.", model number 103.0211.  It's a nifty, belt-driven little device that was made fairly solidly.  The bearings run pretty good, and they were kind enough to throw in a nice blade along with it.






The scroll saw is labeled with "14FD8398".  It is frozen, but it can be freed up with some acetone/AFT :



Also included was a nice little "drill" attachment that could easily be made into a grinding attachment for the lathe :


As well, a grinder was also thrown in :



The bearings all seem to operate.  Everything in the lot uses belt drive, but the small lathe's pulley is small enough, I don't know if we'd ever find a belt that will fit it.  I think I might donate that to my nephew and his desire to make pens.

The small lathe is a King-Seeley, and doesn't allow for much in the way of tapers.  Here's the lathe next to it's big brother from about the same year (yes, both are from 1941) :



And the small lathe itself :





That really is a cute little thing!  Here's the rest of it :


Saturday, July 2, 2016

Transparent Proxy with CentOS 7, Squid, and Firewalld

Squid is fairly easy to set up.  The firewall took me a little longer, however, in CentOS 7 (IPTABLES isn't the default firewall any more, and instead, a new player is in the ring, firewalld).  This nice little tool can be much more user friendly, if you know what you are doing.  I started out here intending to place Squid (a proxy server) in between my internal network and the outside world for two reasons :
  • I wanted to prevent requests to pages or sites that were not kid-friendly
  • I wanted to cache some of the most heavily used images and sites to speed up requests and page loads
It did take me a bit to figure it out, but I managed.

The first step is to ensure the interfaces fall into the right zones.  Trust me on this, it's pretty important.  I found (before I did this) that often on boot up, DNS would fail to operate until I stopped and started the firewalld service after the initial boot.  Open up each of the /etc/sysconfig/network-scripts/if-cfg* interface files (safe to skip the lo* interface, obviously), and add a single line to them :
    ZONE=external
    
Options here are "work", "trusted", "internal", and "public".  Pick the right interfaces - this is vital.

Once you have that in place, enable IP forwarding :
    echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.conf
    
The third step was enabling masquerading for my internal house guests, and to allow established connections.  This was done using :
    firewall-cmd --permanent --direct --add-rule ipv4 nat POSTROUTING 0 -o enp1s0 -j MASQUERADE
    firewall-cmd --permanent --direct --add-rule ipv4 filter FORWARD 0 -i enp1s0 -o enp2s0 -m state --state RELATED,ESTABLISHED -j ACCEPT
    
Once that is working I wanted to punch a couple of holes through the firewall :
    firewall-cmd --zone=external --add-service=http --permanent
    firewall-cmd --zone=external --add-service=https --permanent
    firewall-cmd --zone=external --add-rich-rule="rule family=\"ipv4\" source address=\"123.45.67.89\" port protocol=\"tcp\" port=\"22\" accept"
    
Note that mine shows that I am only accepting SSH connections from a specific IP address - this is to prevent those jackass hackers from trying to brute force there way in through SSH.  If you need, it could have been a simple "--add-service=ssh" instead.

And lastly, you HAVE to make sure to intercept HTTP connections from the inside of the network, heading to the outside of the network.  I didn't want Squid responding to internal-to-internal connections, possibly getting in the way of some of the video feeds going across the network.
    firewall-cmd --zone=trusted --permanent --add-rich-rule=rule family="ipv4" source address="192.168.0.0/16" destination address="192.168.0.0/16" invert="True" forward-port port="80" to-port="3128" to-addr="192.168.8.1" protocol="tcp"
    
The above rule will fire off IF a request comes from an internal IP address (192.168.8.123), that is heading to Google.com for port 80 (HTTP).  It reroutes that to the local port 3128 (which is where squid is listening), and Squid handles the request from there on out (allowing the cache or block).  However, since we added the "destination address" with a following "invert", we are going to ignore anything that is NOT going to the outside world.

Squid

It's fairly easy - just install squid (yum install squid), open the "/etc/squid/squid.conf" file, and locate the line that reads "http_port 3128" .  Add a space followed by "intercept", e.g. "http_port 3128 intercept", and Squid will now act as a transparent proxy.

Since I also wanted to block some sites, I threw in a list of server names into a file called "/etc/squid/bad-sites.acl", e.g. :
    .redtube.com
    .youporn.com
    .playboy.com
    
and in the squid.conf file, I added the following at the top :
    acl bad_sites dstdomain "/etc/squid/bad-sites.acl"
    
Then, I located a line that began with "INSERT YOUR OWN RULE(S) HERE", and added :
    http_access deny bad_sites
    
After the comment block for that.  Restart it, and it will be blocking the sites listed in the bad-sites.acl!  Congratulations on setting up a transparent proxy!