date:20040120

On Mon, Jan 19, 2004 at 12:37:05AM +0100, Gafgo wrote:
 Hello there! I am a newbie to FreeBSD but have read a lot of handbooks.
 I have also installed different versions on my old computer just to
 practice (incl 4.8, 4.9, 5.0, 5.1). Now I have bought a new computer and
 wanted to install 4.9 for real. But during boot up this happened:
 ad0: REAL command timeout tag=0 serv=0 - resetting
 ata0: resetting devices...
 and there it hangs. When I tried 5.1 I had no problem. Could it be a
 hardware problem??

It sounds to me as if your new machine has hardware which is supported
under 5.x but not 4.9.  That's a very good reason to install 5.2 --
caveats about early adopters notwithstanding, by all accounts 5.2 is
turning out nicely.  I'd worry about using it for a system that was
mission critical to a business (read: financial consequences if it
isn't up and running), but for a home system I think it would do very
well.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

Re: Kernel Make troubleshooting

On Mon, Jan 19, 2004 at 02:27:39PM -0800, Veronica Brainfluff wrote:
 I am trying to customise my kernel for the very first
 time.  I got through config, make depend and when I
 ran 'make' I got an error called: Error code 1. 
 Attached is my configuration file, DARNBOXKERNEL.  I
 hope you can find out what I did wrong! :)

Yes.  Classic mistake.

Your config contains this line: 

 deviceumass   # Disks/Mass storage - Requires scbus and da

But you don't have any entries for the scbus or da devices.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

Re: Newbie question

2004-01-20 Thread Gafgo

Matthew Seaman wrote:

On Mon, Jan 19, 2004 at 12:37:05AM +0100, Gafgo wrote:
 

Hello there! I am a newbie to FreeBSD but have read a lot of handbooks.
I have also installed different versions on my old computer just to
practice (incl 4.8, 4.9, 5.0, 5.1). Now I have bought a new computer and
wanted to install 4.9 for real. But during boot up this happened:
ad0: REAL command timeout tag=0 serv=0 - resetting
ata0: resetting devices...
and there it hangs. When I tried 5.1 I had no problem. Could it be a
hardware problem??
   

It sounds to me as if your new machine has hardware which is supported
under 5.x but not 4.9.  That's a very good reason to install 5.2 --
caveats about early adopters notwithstanding, by all accounts 5.2 is
turning out nicely.  I'd worry about using it for a system that was
mission critical to a business (read: financial consequences if it
isn't up and running), but for a home system I think it would do very
well.
	Cheers,

	Matthew

 

Thank you both for your help. I´ll go for 5.2.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

how to force network interface ?

2004-01-20 Thread Frank

Hi

I have a HP Proliant DL380 with two broadcomm 10/100/1000 RJ45 interfaces
my problem is the interface does not negociate properly with the switch
interface ( Alcatel 7700 ) and each time I start the server the DUPLEX mode
is set to HALF that I do not want.

The speed is correctly set to 100 

How to set the interface ( bge0 ) to full duplex manually ? 

The machine runs 4.9-R

Thanks

Frank


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to force network interface ?

2004-01-20 Thread Rob

Frank asked on Tue Jan 20, 2004:


 I have a HP Proliant DL380 with two broadcomm 10/100/1000 RJ45 interfaces
 my problem is the interface does not negociate properly with the switch
 interface ( Alcatel 7700 ) and each time I start the server the DUPLEX
mode
 is set to HALF that I do not want.

 The speed is correctly set to 100

 How to set the interface ( bge0 ) to full duplex manually ?

 The machine runs 4.9-R


From reading ifconfig(8) and bge(4), it looks like you should add

  mediaopt full-duplex

to the end of your ifconfig_bge0 entry in /etc/rc.conf.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: GDBE and USB-sticks? [was: GBDE and file-backed filesystems?]

2004-01-20 Thread Joerg Pernfuss

On Mon, 19 Jan 2004 19:59:07 -0500
Michael W. Oliver [EMAIL PROTECTED] wrote:

  One of the readers has replied privately, telling me there's a patch
  for FBSD 5.x, mdcrypt, he also supplied me with a URL for
  downloading(thank you very much!). GDBE, he told me, would most
  probably not work on md-filesystems.
  But another thing came to my mind - is it possible to encrypt
  partitions on a USB-stick using GDBE? (If that worked, it would
  remove the need for encrypted md-files...)
  Benjamin
 
 I will trade links with you.  Here is a link to an article describing
 GBDE on a USB ThumbDrive.  If you are not bound by a privacy request,
 please post the link to the patch you mention above.

Hi,

the one who responded to him without cc:'ing the list was me. Not out
of privacy issues, simply because I responded german.
Should have thought about a general interest on this topic and replied
here. My fault.

The link I gave him was
http://archives.neohapsis.com/archives/freebsd/2002-08/0116.html

The patch was written against a 5.x from Aug 2002, so if it cleanly applies
to nowadays freeBSD I do not know. But from a first glance I think it
should, though I am not that familiar with kernel code.

Joerg


pgp0.pgp
Description: PGP signature

Re: Unexpected soft update inconsistency

2004-01-20 Thread Uwe Doering

Peter Schuller wrote:
Hello,

What's the deal with soft updates and guaranteed consistency? Every time 
journaling is brought up by someone, he/she is promptly told about how soft 
updates does the job at least as well.  I never had a problem with this based 
on what I have read about soft updates. However:

I *very* quickly ran into a case where I got an unexpected soft update 
inconsistency after crashing the machine by doing something naughty with 
Vinum while there was disk activity (note: the filesystem which exhibited the 
problem was not on a vinum volume).

So my question is:

Do soft updates, or do they not, algorithmically guarantee filesystem 
meta-data consistency in the event of a crash?
The design goal for Soft Updates, apart from the performance gain, was 
to keep the disk image in a recoverable state at all times and to limit 
data loss to the last couple of seconds.  This does not mean, however, 
that it guarantees that after a crash fsck(8) will never ask any questions.

Normally, the right thing to do is to answer with 'yes' when it offers 
to remove the file, since that file can be expected to be incomplete. 
This way you are kind of turning back the clock by a couple of seconds, 
from the file system's point of view, until it gets into the time range 
again where all files were still consistent (payload and meta data).

   Uwe
--
Uwe Doering |  EscapeBox - Managed On-Demand UNIX Servers
[EMAIL PROTECTED]  |  http://www.escapebox.net
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

[ISDN-PCI] Supported Card?

2004-01-20 Thread Jaco van Tonder

Hi all,

Can someone please tell me if the ISDN-PCI card from Aceex is supported 
under FreeBSD ?
I want to buy a card like this, but have to make sure that it works first ;)
I cannot figure out what chipset the card is using yet, but I sent a 
mail to the support department
of the company. While waithing I might just give the list a shot I guess. ;)

Card details here: 
http://www.aceex.com.tw/test1/product/catalog/isdn/catalog_isdnpci.pdf

Thank you in advance.

Regards
Jaco van Tonder
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Big troubles running FreeBSD on a Shuttle nForce2

2004-01-20 Thread anubis

On Tue, 20 Jan 2004 02:26 am, Raphael Dinge wrote:
 Hi,

 I've installed a long ago FreeBSD 5.1 on my mother's
 computer which is a shuttle with nvidia nforce2
 motherboard.
 The computer crashes for reasons I can't explain.
 Since 5.2 was out, I installed it, and the problems
 are still consistent.

 The problem is that the computer is crashing (freezing or
 suddenly rebooting). The problem occurs on both 5.1 and
 5.2.

 - In console vga text mode, the computer did not ever crash,
and I was available to 'make install' via ssh from my home
a big variety of different programs,
 - When I launch X, the problems comes, what ever window
manager I used, namely WindowMaker and KDE 3.
 - Crash can occurs when moving a window, launching an
application, clicking on a link in a web browser,
 - The computer is stable running with X if I don't do
anything with the GUI. I can still use ssh to administrate
from my home flawlessly.
 - Crashes are very likely to freeze the computer or to make
it reboot suddenly. Sometimes it will just crash X,
 - Sometimes when X crash, I can see that KDE did catch
a Bad drawable error (this is all the local machine, no
distributed X),
 - Sometimes when moving windows, I can see small horizontal
lines as if the screen was not refreshed well,
 - I was thinking that it did come from the kernel modules,
so I tried :
  - with or without acpi.ko (in 5.1 since acpi
won't run on 5.2 on this computer now) didn't change,
  - with various X card driver, namely 'vesa', 'nv' and
'nvidia' from the ports, didn't change
  - I didn't enable sound kernel module for now
 - Enabling nvidia.ko in loader.conf always stall computer
startup after keyboard probe (did not try on 5.2)
 - I don't use the onchip network controller (not supported
in 5.1), and did bought a network controller running
with sis, flawlessly.

 I must admit I'm completely lost with that problem, since
 I have the same computer at home, but my mother's computer
 was bought 1 year later after mine.

 I don't know from where to start, (hardware test, bios
 params, bios revision, nforce2 motherboard support) since it
 seems I can't find panic log (and I don't know if they exist
 anyway). Googling and searching list archive did not
 give me more informations.

 Any advice will be greatly apreciated.

 Many thanks,


There are a number of issues with this kind of machine and they arent limited 
to freebsd.  We have a number of these machines running windas at work.  1 
works perfectly and the others are a bit flakey.  We had a long look at this 
problem  and what it comes down to is these machines have shared memory for 
the video.  They are very fussy about what kind of ram they use.  This is why 
when you start using the video heavily there is problems.  

Our good machine used good ram and the other funky ones use unsupported ram.

There are 2 possible solutions.  One solution is to look at the nvidia site 
and only use the ram they suggest for igp boards.  Second solution is put in 
a seperate video card.  

Note that there have been revisions on these boards so the one bought 1 year 
later may have significant changes to the bios and the chips such as the on 
board nics.   The nforce 2 boards are great feature wise but they are a bit 
temperamental.  I want to beat them like a red headed step child sometimes.







___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ipfw/nated stateful rules example

2004-01-20 Thread Alex Zbyslaw

Ken Bolingbroke wrote:
I just jumped in the middle here, so I may be out of context.

But, stateful rules don't play nice with NAT.
You're quite right, they don't play nice at all.

[EMAIL PROTECTED] wrote:
I disagree with you that the /etc/rc.firewall is the best example.
It's really a good example of stateless rules, how to use
scripting Symbolic substitution.
I found it OK for stateful rules, as long as you don't use natd! I couldn't
find any examples *anywhere* of how to get it to work.

So I posted on a newsgroup a while back and got a working idea (see below) and
in the meantime came up with one of my own. I found it really helpful to draw
a little picture of the gateway machine and its interfaces and trace how
packets went out including the natd in the middle. When working with natd you
really do have to consider packets that come in/out your *internal* network
interface. Without natd you can effectively ignore them (which all examples do).

Note that in a standard setup it's a little more complicated since packets
that come in from the local network get nat'ed whereas packets originating
from the gateway machine don't. Anyway, here's my final message on the topic
which contains two ways you might go. I have extensively traced the packets
on the second, less elegant solution and it really does work.

Michael Sierchio wrote:

Alex wrote:

The basic thrust of the problematic section is:

ipfw add divert natd all from any to any via external_interface
ipfw add pass udp from any to any ntp out xmit external_interface
ipfw add pass udp from any ntp to any ntp in recv external_interface

Try this:

# local rules for this gateway's traffic (hope DF is set for UDP)
ipfw add allow udp from me to any out xmit $ext_if keep-state
# divert
ipfw add divert natd ip from any to any via $ext_if
# this rule looks a bit strange here, but it's to allow the
# nat-ed packets outbound to leave. If you're concerned about
# egress filtering from the gateway itself, add appropriate
# non-stateful allow rules
ipfw add allow ip from me to any out xmit $ext_if
ipfw add check-state
ipfw add allow udp from any to any in recv $int_if keep_state

Putting the keep-state on the internal ethernet is a neat solution, thanks. (It conflicts somewhat with some of the way my firewall is set up prior to the ntp/natd stuff, but I'm looking at rewriting that).

I did think of one more solution which works on the external interface only, but it's not as elegant.

# Check all inbound ntp calls
ipfw add skipto 20500 udp from any ntp to any in recv $ext_if
# Checks all outbound ntp calls and (by dynamic rule) all inbound ntp calls
ipfw add skipto 2 udp from any to any out xmit $ext_if keep-state
[ rest of firewall including natd go here ]

# Make sure we do not fall through into special rulesets
add deny log all from any to any
# Only get to these rules in two circumstances:
# 1) Any outbound ntp packet which has been keep-state'ed
# 2) Any inbound ntp packet which matched a dynamic rule
ipfw add 2 divert natd all from any to any out xmit $ext_if
ipfw add allow udp from any ntp to any in recv $ext_if
ipfw add allow udp from any to any ntp out xmit $ext_if
ipfw add deny log all from any to any
# Only get here on an incoming ntp packet. Need to see
# if we want to accept it or not. Check-state will
# trigger dynamic rule and skipto 2 on match
ipfw add 20500 divert natd all from any to any in recv ${ext_if}
ipfw add check-state
ipfw add deny log all from any to any
--Alex

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Mozilla: changing IP w/o restarting

2004-01-20 Thread Dan Pelleg

Pat Lashley [EMAIL PROTECTED] writes:

 --On Monday, January 19, 2004 23:05:02 -0500 Jesse Sheidlower [EMAIL PROTECTED] 
 wrote:

 I use Mozilla on my 4.8 laptop. Whenever I switch IP addresses,
 which is frequent, as I use my computer both in the office and
 at home (and on trips, etc.), Mozilla becomes unable to
 resolve any sites it hasn't previously hit. I just get an
 endless, Resolving host www.nytimes.com note in the corner.

 The only way around this is to quit and restart the browser.
 Frankly, this is a pain in the ass, as I usually have six
 or more tabs open at once, each containing something I need,
 and I don't want to re-open everything every time I move the
 computer.

 Is there any way around this? I didn't see anything obvious
 in the Mozilla docs.

 Well, one work-around would be to switch from Mozilla to Galeon
 and use its session capabilities to automatically re-open all
 of the browser windows.  (My primary desktop usually has over
 100 tabs distributed across 45 to 50 galeon windows, spread
 over 5 of my 20 workspaces.  Without sessions, I think the
 occasional crash would send me into a homicidal frenzy...)

 You could also try setting up something like djbdns's dnscache
 server on the laptop and then set resolv.conf to use 127.0.0.1.
 This may not help though - I seem to recall reading that Mozilla
 tries to improve DNS performance by doing it itself instead of
 trusting the system...  (Actually, I think it was a complaint
 about Netscape; but if it does it at all, it's probably in the
 shared code.)

If this is related to the problem that made mozilla hang for a few seconds
on some lookups (ISTR it being related to missing  records), it has
been fixed a while ago (at least in firebird). The OP didn't specify the
mozilla version he's using

Apart from that, I also like the local DNS cache approach. You can do it
with the built-in named as well.

-- 

  Dan Pelleg
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: [ISDN-PCI] Supported Card?

2004-01-20 Thread Bjorn Eikeland

Can someone please tell me if the ISDN-PCI card from Aceex is supported 
under FreeBSD ?
I want to buy a card like this, but have to make sure that it works 
first ;)
I cannot figure out what chipset the card is using yet, but I sent a 
mail to the support department
of the company. While waithing I might just give the list a shot I 
guess. ;)

Card details here: 
http://www.aceex.com.tw/test1/product/catalog/isdn/catalog_isdnpci.pdf

Thank you in advance.

Regards
Jaco van Tonder
From the link you provided its not possible to tell 100% if the card is 
supported or not, but despite the low resolution on the picture it looks 
very similar to my winbond 6692 chip which is supported by i4b. However 
you really need to find out what chip is on the card to be sure.

hth
-Bjorn
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

wlan card cardbus activation failed

2004-01-20 Thread Michael Hollmann

hi

i am running FreeBSD 5.2 Release #0 on my laptop. my wlan card is 
netgear WG512 Cardbus 32bit. i have no troubles to run this card under 
windows 2000 prof. but on FreeBSD 5.2 i get cardbus activation failed.

should this be fixed now ???

any ideas?

thank´s

michael



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: problem generating certificate for postfix

2004-01-20 Thread Sergey 'DoubleF' Zaharchenko

On Tue, 20 Jan 2004 18:56:42 +1100
Gautam Gopalakrishnan [EMAIL PROTECTED] probably wrote:

 On Tue, Jan 20, 2004 at 09:32:54AM +0200, Hiren wrote:
  greetings all
  i am in the process of generating a certificate for postfix
  i am currently trying to run the following command:
  dd if=/dev/urandom of=/etc/postfix/ssl/post.rand count=1 2/dev/null
  the error i get is:
  dd: unknown operand 2
 
 I guess you're using csh or tcsh. Try using /bin/sh, bash or ksh.
 

Or just use

dd if=/dev/urandom of=/etc/postfix/ssl/post.rand count=1

The informative message going to your terminal about how many (512)
bytes have been written won't be too much trouble, will it?

 hth
 Gautam
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 


-- 
DoubleF
Accuracy, n.:
The vice of being right


pgp0.pgp
Description: PGP signature

Problem with foppy drive

2004-01-20 Thread

Hello ( it means friend on russian)

Now I'll try to answer your questions.
I tested my floppy drive in the same way
1. Boot one Operating System
2. Write some data on the floppy disc (usually it is mp3-files or
   jpg-files)
3. Reboot my PC and boot another OS
4. Check data - everything good
5. Format disc and test again in the same way

Also I read and wrote data on my discs on another PC during this term
and didn't have problems

Next question about hardware

 1. Soltek mainboard
   SL-85DIR
   Socket 478 Mainboard
   Intel 845d series
 2. nVidia G-force 4 MX 440 64MB DDR (AGP)
 3. 512MB DDR RAM memory
 4. Creative Sound Blaster Live!5.1
 5. Winmodem ZyXEL Omni 56K PCI (i thinc FreeBSD know nothing about it)
 6. Asus CD-ROM drive 50x IDE
 7. Yamaha 3200 CD-RW drive
 8. Intel Pentium 4 Processor Socket 478
 9. HDD 40 Gb SEAGATE UDMA 7200 BARRACUDA
10. and this floppy drive
I think that's all
My PC is 1.5 years old.
I bought in 24-July-2002
About scsi:
There is no scsi in my computer so floppy drive is not scsi

when I try :
  mount -t msdos /dev/fd0 /mnt
my system displays :
msdosfs : /dev/fd0: No sush file or directory
I can say that there was no time whan this file existed
so i cannot mount floppy

Here is /var/run/dmesg.boot

Copyright (c) 1992-2003 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD 5.1-RELEASE #0: Fri Jan 16 18:39:42 MSK 2004
root@:/usr/src/sys/i386/compile/NovAD3a
Preloaded elf kernel /boot/kernel/kernel at 0xc054a000.
Preloaded elf module /boot/kernel/acpi.ko at 0xc054a26c.
Timecounter i8254  frequency 1193182 Hz
Timecounter TSC  frequency 1817949908 Hz
CPU: Intel(R) Pentium(R) 4 CPU 1.80GHz (1817.95-MHz 686-class CPU)
  Origin = GenuineIntel  Id = 0xf24  Stepping = 4
  
Features=0x3febf9ffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM
real memory  = 536805376 (511 MB)
avail memory = 515624960 (491 MB)
Pentium Pro MTRR support enabled
npx0: math processor on motherboard
npx0: INT 16 interface
acpi0: AMIINT INTEL845 on motherboard
pcibios: BIOS version 2.10
Using $PIR table, 6 entries at 0xc00f78a0
acpi0: power button is handled as a fixed feature programming model.
Timecounter ACPI-fast  frequency 3579545 Hz
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0.MDET] (Node 
0xc150ec60), AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0._CRS] (Node 
0xc150eba0), AE_AML_REGION_LIMIT
ACPI-0175: *** Error: Method execution failed [\\_SB_.PCI0._CRS] (Node 
0xc150eba0), AE_AML_REGION_LIMIT
can't fetch resources for \\_SB_.PCI0 - AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0.MDET] (Node 
0xc150ec60), AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.MEM_._CRS] (Node 
0xc4047960), AE_AML_REGION_LIMIT
ACPI-0175: *** Error: Method execution failed [\\_SB_.MEM_._CRS] (Node 
0xc4047960), AE_AML_REGION_LIMIT
can't fetch resources for \\_SB_.MEM_ - AE_AML_REGION_LIMIT
acpi_timer0: 24-bit timer at 3.579545MHz port 0x808-0x80b on acpi0
acpi_cpu0: CPU port 0x530-0x537 on acpi0
acpi_button0: Power Button on acpi0
pcib0: ACPI Host-PCI bridge on acpi0
pci0: ACPI PCI bus on pcib0
agp0: Intel 82845 host to AGP bridge mem 0xe000-0xe7ff at device 0.0 on pci0
pcib1: PCIBIOS PCI-PCI bridge at device 1.0 on pci0
pci1: PCI bus on pcib1
pci1: display, VGA at device 0.0 (no driver attached)
pcib2: ACPI PCI-PCI bridge at device 30.0 on pci0
pci2: ACPI PCI bus on pcib2
pcm0: Creative EMU10K1 port 0xc800-0xc81f irq 12 at device 3.0 on pci2
pcm0: SigmaTel STAC9708/11 AC97 Codec
pci2: simple comms at device 4.0 (no driver attached)
isab0: PCI-ISA bridge at device 31.0 on pci0
isa0: ISA bus on isab0
atapci0: Intel ICH2 UDMA100 controller port 0xfc00-0xfc0f at device 31.1 on pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
uhci0: Intel 82801BA/BAM (ICH2) USB controller USB-A port 0xe800-0xe81f irq 12 at 
device 31.2 on pci0
usb0: Intel 82801BA/BAM (ICH2) USB controller USB-A on uhci0
usb0: USB revision 1.0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
pci0: serial bus, SMBus at device 31.3 (no driver attached)
uhci1: Intel 82801BA/BAM (ICH2) USB controller USB-B port 0xec00-0xec1f irq 10 at 
device 31.4 on pci0
usb1: Intel 82801BA/BAM (ICH2) USB controller USB-B on uhci1
usb1: USB revision 1.0
uhub1: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
fdc0: cmd 3 failed at out byte 1 of 3
sio0 port 0x3f8-0x3ff irq 4 on acpi0
sio0: type 16550A
sio1 port 0x2f8-0x2ff irq 3 on acpi0
sio1: type 16550A
ppc0 port 0x378-0x37f irq 7 on acpi0
ppc0: Generic chipset (NIBBLE-only) in COMPATIBLE mode
ppbus0: Parallel port bus on ppc0
plip0: PLIP network interface on ppbus0
lpt0: Printer on

Just showing my support

2004-01-20 Thread Allen Jaworski

Hello all,
 My Name Is Allen Jaworski and I am starting a small blog to show friends and family 
how to take better care of the computers. I have always been facinated in open source 
programing. I am asking permission so I can include a link in my blog to your website. 
Currently I am using Windows XP and Redhat Linux in my computers at home because lack 
of a budget. But I will soon be giving FreeBsd a try however.

Thank you for your time,
Allen Jaworski
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to force network interface ?

2004-01-20 Thread Frank

On Tue, Jan 20, 2004 at 08:36:19PM +1030, Rob wrote:

 From reading ifconfig(8) and bge(4), it looks like you should add
 
   mediaopt full-duplex
 
 to the end of your ifconfig_bge0 entry in /etc/rc.conf.
 

Well this doesn't seems to work 
it seems to break the interface
and I cannot ping the machine anymore.
removing the option make things goes
better BUT it is set to HALF DUPLEX
again ( aargh )

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

[no subject]

2004-01-20 Thread saad Hage (hotmail)

Hi,

 How I can update Ports via Wingate Proxy? Actually I receive an error saying me he 
cannot found the host name.

Thanks


Saad Hage
[EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Big troubles running FreeBSD on a Shuttle nForce2

2004-01-20 Thread Raphael Dinge

Hi Anubis,

We had a long look at this problem  and what it comes
down to is these machines have shared memory for the
video.

There are 2 possible solutions.  One solution is to look 
at the nvidia site and only use the ram they suggest for 
igp boards.  Second solution is put in a seperate video 
card.
Those solutions sounds good to me.
Is there a sysutil that would heavily test the ram
in my very specific case ?
Many thanks for the quick answer,

--
+===
Raphael Dinge   | Ohm Force
DSP developer  Software designer   | DA Software
mailto:[EMAIL PROTECTED] | www.ohmforce.com
+===
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Big troubles running FreeBSD on a Shuttle nForce2

2004-01-20 Thread Gautam Gopalakrishnan

On Tue, Jan 20, 2004 at 03:09:10PM +0100, Raphael Dinge wrote:
 Those solutions sounds good to me.
 Is there a sysutil that would heavily test the ram
 in my very specific case ?

http://www.memtest86.com/

Gautam


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: [5.2] Startup script won't install

On Mon, 2004-01-19 at 13:38, Thomas T. Veldhouse wrote: 
  # (cd /usr/ports/net/openldap21-server  make all install clean)
 
 
  Thanks. How do I know when this is needed for everything? Or should I
  always use the 'all' argument? I have not been able to figure out
  where to look for instructions under each port.
 
 'all' is the default make target in just about all ports, so it is actually
 redundant.
 

Still no luck, it only confirms the placement of the slapd daemon at the
end of the install. Everything goes well, but no slapd.sh in rc.d. Any
ideas?

-- 
Robert

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: ipfw/nated stateful rules example

As the original poster of this thread, I want to say thank you to
Ken Bolingbroke who posted his rule set and to the other posters who
voiced their comments.

I want to point out that Ken Bolingbroke acknowledged that has work
around of doing keep-state on both the Lan interface and the public
interface only works because the returning public packet is being
matched by stateful table entries posted from the Lan interface
keep-state rules. Yes he provided he could make it work, but not
work correctly. In the true security sense, this is un-secure and
invalidates the whole purpose of using keep-state rules at all.

I an surprised that I have not yet heard the old timers dogma that
the Nated process it self is really performing an keep-state like
process and that is why keep-state does not work with divert/Natd.
There is some truth to that because the Nat process does have to
keep it's own internal table to remap IP address, but it just
blindly does the mapping with out any regard to if the packet
belongs to an authorized session conversation, like the keep-state
function does.

The conclusion so far is that ipfw1 and ipfw2 using keep-state rules
on the interface facing the public internet with divert/nated does
not work period. By all accounts this is an long time bug propagated
by the continued use of the legacy divert keyword sub-routine call
to ipfw's userland Natd function. The using of keep-state rules on
the interface facing the public internet is restricted to situations
where there are no Lans behind the ipfw firewall or when 'user
ppp' -NAT function is used. I have tested using ipnat as an front
end to ipfw with keep-state but that also ends up handing off the
packet to ipfw at the wrong time.

Now that ipfw2 has replaced ipfw1 in 5.2, maybe some of that ipfw2
programming teams effort can be directed at fixing this problem. The
IPNAT code of IPFILTER runs in the kernel and could be modified to
be ipfw2's external Nat function.

So firewall users who want the maximum level of protection have to
use IPFILTER. IPFILTER has had the keep state function long before
the keep-state option was ever added to ipfw1.

Still would like to be provided wrong on my conclusion.






-Original Message-
From: Micheal Patterson [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 20, 2004 12:50 AM
To: Ken Bolingbroke; fbsd_user
Cc: [EMAIL PROTECTED]
Subject: Re: ipfw/nated stateful rules example


- Original Message -
From: Ken Bolingbroke [EMAIL PROTECTED]
To: fbsd_user [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, January 19, 2004 10:28 PM
Subject: RE: ipfw/nated stateful rules example



 On Mon, 19 Jan 2004, fbsd_user wrote:

  That's a play on words. And still does not prove stateful rules
work on
  the interface facing the public internet. There is no
documentation that
  says keep-state and limit only works on the interface facing the
private
  Lan network. And the implied meaning is they are to be used on
the
  interface facing the public internet.

 I just jumped in the middle here, so I may be out of context.

 But, stateful rules don't play nice with NAT.  Consider non-NAT, a
public
 IP address contacting an Internet address:

   67.161.59.61 - 66.218.71.91

 A rule is created for 66.218.71.91 coming to 67.161.59.61.  When
 66.218.71.91 replies, the stateful rule lets it in.  This is good.


 But consider NAT:

  10.0.0.10 changed to 67.161.59.61 - 66.218.71.91

 If you do a keep-state before NAT, you have a rule to allow
66.218.71.91
 to 10.0.0.10, but the return incoming packet will be
66.218.71.91 -
 67.161.59.61, so the rule doesn't match.

 If you do a keep-state after NAT, then you have a rule to allow
 66.218.71.91 to 67.161.59.61.  The return incoming packet matches
that
 rule, but it accepts the packet and packet processing stops, so
it's never
 passed through NAT, and never makes it back to 10.0.0.10.


 So as it stands now, I don't see that you can use stateful
connections
 with NAT, unless check-state is changed to allow a packet to be
passed
 through NAT.

 Ken Bolingbroke

Ken, try this one. This is what I use here at home and it does
indeed work:

Launch NATD with natd -interface ep0 -s -m -u (Only RFC1918 packets
get
altered)

## Divert everything to NAT.
ipfw add 1 divert natd ip from any to any via ep0

#Prevent inbound spoof attempts for my lan range
ipfw add 10 deny ip from 192.168.1.0/24 to any in via ep0

#Check State Rules
ipfw add 20 check state

#LAN Allow Stateful
ipfw add 31 allow ip from 192.168.1.0/24 to any keep-state

#Allow Outbound Stateful.
ipfw add 40 allow ip from 68.12.xx.xx to any keep-state

NAT keeps a seperate table of it's translations to provide a back
channel.
Traffic comes in, generates a dynamic ruleset, gets translated,
heads out
and creates the 2nd dynamic for the packet. You'll end up with
something
like this

ipfw -d list

snip

## Dynamic rules:
00040 4 692 (T 18, slot 215) - tcp, 68.12.xx.xx3777-
216.239.57.99 80
00031 35 20374 (T 10,

Re: [5.2] Startup script won't install

2004-01-20 Thread Antoine Jacoutot

On Tuesday 20 January 2004 15:38, Robert Fitzpatrick wrote:
 On Mon, 2004-01-19 at 13:38, Thomas T. Veldhouse wrote:
 Still no luck, it only confirms the placement of the slapd daemon at the
 end of the install. Everything goes well, but no slapd.sh in rc.d. Any
 ideas?

My slapd statup script is in:
/etc/rc.d/slapd
I didn't watch the thread, but did you look there ?

Antoine

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: how to force network interface ?

Are you sure all your down stream switches and hubs are full-duplex?
If one is not, it will force the whole leg to it's setting.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Frank
Sent: Tuesday, January 20, 2004 8:43 AM
To: Rob
Cc: [EMAIL PROTECTED]
Subject: Re: how to force network interface ?

On Tue, Jan 20, 2004 at 08:36:19PM +1030, Rob wrote:

 From reading ifconfig(8) and bge(4), it looks like you should add

   mediaopt full-duplex

 to the end of your ifconfig_bge0 entry in /etc/rc.conf.

Well this doesn't seems to work
it seems to break the interface
and I cannot ping the machine anymore.
removing the option make things goes
better BUT it is set to HALF DUPLEX
again ( aargh )

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Just showing my support

2004-01-20 Thread Jason Stewart

On 19/01/04 12:35 -0600, Allen Jaworski wrote:
 Hello all,
  My Name Is Allen Jaworski and I am starting a small blog to show friends and family 
 how to take better care of the computers. I have always been facinated in open 
 source programing. I am asking permission so I can include a link in my blog to your 
 website. Currently I am using Windows XP and Redhat Linux in my computers at home 
 because lack of a budget. But I will soon be giving FreeBsd a try however.


FreeBSD is free to download. You don't have to ask permission to link
to the website either. This mailing list is made up of people who like
to help each other out with FreeBSD, so when you get to installing and
configuring it, this list will come in handy.

Jason

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Mozilla: changing IP w/o restarting

2004-01-20 Thread Jesse Sheidlower

On Tue, Jan 20, 2004 at 07:01:35AM -0500, Dan Pelleg wrote:
 
 If this is related to the problem that made mozilla hang for a few seconds
 on some lookups (ISTR it being related to missing  records), it has
 been fixed a while ago (at least in firebird). The OP didn't specify the
 mozilla version he's using

I'm using Mozilla 1.5. I haven't had any problems with short hangs,
FWIW.

Jesse Sheidlower
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Just showing my support

2004-01-20 Thread Jerry McAllister

 
 Hello all,
  My Name Is Allen Jaworski and I am starting a small blog to show friends and family 
 how to take better care of the computers. I have always been facinated in open 
 source programing. I am asking permission so I can include a link in my blog to your 
 website. Currently I am using Windows XP and Redhat Linux in my computers at home 
 because lack of a budget. But I will soon be giving FreeBsd a try however.

I don't think anyone will object to your putting a link on your site
to the main FreeBSD web page.  In fact, it is probably encouraged.

One thing you can do to make people more happy though is when you
post messages to any of the Email lists, either set your Email
program to break lines at about 70 characters or manually break
lines at about that width by hitting a Carriage Return (Enter) for
each line.   That will help those of us using text based Email 
readers to read you messages and will make it more likely that people
will respond to them.

jerry

 
 Thank you for your time,
 Allen Jaworski
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 
 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Web Editing?

2004-01-20 Thread Kirk Strauser

At 2004-01-20T05:45:32Z, Paul A. Hoadley [EMAIL PROTECTED] writes:

 Are you using PSGML's xml-mode?  I find it's not indenting my XHTML
 documents too well (for example, it seems to assume something like 'div'
 is an inline rather than a block level element, and then won't indent the
 closing tag properly if I move it onto a new line), though I haven't tried
 to debug it too extensively.

Nope.  I use html-helper-mode which has the nice ability to narrow in to
sections of non-HTML code (i.e. Javascript, PHP, etc.) and syntax-highlight
as appropriate within those subsections.  I don't really use PHP anymore
(yay Zope!) and all of my Javascript is now in stand-alone files that get
included (XHTML prefers you not embed JS into the document), but I still use
it from force of habit.
-- 
Kirk Strauser


pgp0.pgp
Description: PGP signature

RE: Problem with foppy drive

Friend
I think I see your problem in the boot log.
FBSD is having problems reading your PC's bios.
Enter your PC bio's menu and disable all options dealing with power
management.
While you are there also disable any plug-n-play option and if there
is an operating system option change that to 'other' or at least not
ms/windows.

http://www.freebsd.org/cgi/man.cgi?query=acpiapropos=0sektion=0ma
npath=FreeBSD+5.2-RELEASE+and+Portsformat=html

acpi -- Advanced Configuration and Power Management support



-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of 

Sent: Tuesday, January 20, 2004 8:16 AM
To: [EMAIL PROTECTED]
Subject: Problem with foppy drive

Hello ( it means friend on russian)

Now I'll try to answer your questions.
I tested my floppy drive in the same way
1. Boot one Operating System
2. Write some data on the floppy disc (usually it is mp3-files or
   jpg-files)
3. Reboot my PC and boot another OS
4. Check data - everything good
5. Format disc and test again in the same way

Also I read and wrote data on my discs on another PC during this
term
and didn't have problems

Next question about hardware

 1. Soltek mainboard
   SL-85DIR
   Socket 478 Mainboard
   Intel 845d series
 2. nVidia G-force 4 MX 440 64MB DDR (AGP)
 3. 512MB DDR RAM memory
 4. Creative Sound Blaster Live!5.1
 5. Winmodem ZyXEL Omni 56K PCI (i thinc FreeBSD know nothing about
it)
 6. Asus CD-ROM drive 50x IDE
 7. Yamaha 3200 CD-RW drive
 8. Intel Pentium 4 Processor Socket 478
 9. HDD 40 Gb SEAGATE UDMA 7200 BARRACUDA
10. and this floppy drive
I think that's all
My PC is 1.5 years old.
I bought in 24-July-2002
About scsi:
There is no scsi in my computer so floppy drive is not scsi

when I try :
  mount -t msdos /dev/fd0 /mnt
my system displays :
msdosfs : /dev/fd0: No sush file or directory
I can say that there was no time whan this file existed
so i cannot mount floppy

Here is /var/run/dmesg.boot

Copyright (c) 1992-2003 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993,
1994
The Regents of the University of California. All rights
reserved.
FreeBSD 5.1-RELEASE #0: Fri Jan 16 18:39:42 MSK 2004
root@:/usr/src/sys/i386/compile/NovAD3a
Preloaded elf kernel /boot/kernel/kernel at 0xc054a000.
Preloaded elf module /boot/kernel/acpi.ko at 0xc054a26c.
Timecounter i8254  frequency 1193182 Hz
Timecounter TSC  frequency 1817949908 Hz
CPU: Intel(R) Pentium(R) 4 CPU 1.80GHz (1817.95-MHz 686-class CPU)
  Origin = GenuineIntel  Id = 0xf24  Stepping = 4

Features=0x3febf9ffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,
MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM
real memory  = 536805376 (511 MB)
avail memory = 515624960 (491 MB)
Pentium Pro MTRR support enabled
npx0: math processor on motherboard
npx0: INT 16 interface
acpi0: AMIINT INTEL845 on motherboard
pcibios: BIOS version 2.10
Using $PIR table, 6 entries at 0xc00f78a0
acpi0: power button is handled as a fixed feature programming model.
Timecounter ACPI-fast  frequency 3579545 Hz
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0.MDET]
(Node 0xc150ec60), AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0._CRS]
(Node 0xc150eba0), AE_AML_REGION_LIMIT
ACPI-0175: *** Error: Method execution failed [\\_SB_.PCI0._CRS]
(Node 0xc150eba0), AE_AML_REGION_LIMIT
can't fetch resources for \\_SB_.PCI0 - AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.PCI0.MDET]
(Node 0xc150ec60), AE_AML_REGION_LIMIT
ACPI-1287: *** Error: Method execution failed [\\_SB_.MEM_._CRS]
(Node 0xc4047960), AE_AML_REGION_LIMIT
ACPI-0175: *** Error: Method execution failed [\\_SB_.MEM_._CRS]
(Node 0xc4047960), AE_AML_REGION_LIMIT
can't fetch resources for \\_SB_.MEM_ - AE_AML_REGION_LIMIT
acpi_timer0: 24-bit timer at 3.579545MHz port 0x808-0x80b on acpi0
acpi_cpu0: CPU port 0x530-0x537 on acpi0
acpi_button0: Power Button on acpi0
pcib0: ACPI Host-PCI bridge on acpi0
pci0: ACPI PCI bus on pcib0
agp0: Intel 82845 host to AGP bridge mem 0xe000-0xe7ff at
device 0.0 on pci0
pcib1: PCIBIOS PCI-PCI bridge at device 1.0 on pci0
pci1: PCI bus on pcib1
pci1: display, VGA at device 0.0 (no driver attached)
pcib2: ACPI PCI-PCI bridge at device 30.0 on pci0
pci2: ACPI PCI bus on pcib2
pcm0: Creative EMU10K1 port 0xc800-0xc81f irq 12 at device 3.0 on
pci2
pcm0: SigmaTel STAC9708/11 AC97 Codec
pci2: simple comms at device 4.0 (no driver attached)
isab0: PCI-ISA bridge at device 31.0 on pci0
isa0: ISA bus on isab0
atapci0: Intel ICH2 UDMA100 controller port 0xfc00-0xfc0f at
device 31.1 on pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
uhci0: Intel 82801BA/BAM (ICH2) USB controller USB-A port
0xe800-0xe81f irq 12 at device 31.2 on pci0
usb0: Intel 82801BA/BAM (ICH2) USB controller USB-A on uhci0
usb0: USB revision 1.0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered

Re: Big troubles running FreeBSD on a Shuttle nForce2

2004-01-20 Thread Lewis Thompson

On Tue, Jan 20, 2004 at 09:08:53PM +, anubis wrote:
 On Tue, 20 Jan 2004 02:26 am, Raphael Dinge wrote:
  I've installed a long ago FreeBSD 5.1 on my mother's computer which
  is a shuttle with nvidia nforce2 motherboard.  The computer crashes
  for reasons I can't explain.  Since 5.2 was out, I installed it, and
  the problems are still consistent.

 There are a number of issues with this kind of machine and they arent
 limited to freebsd.  We have a number of these machines running windas
 at work.  1 works perfectly and the others are a bit flakey.  We had a
 long look at this problem  and what it comes down to is these machines
 have shared memory for the video.  They are very fussy about what kind
 of ram they use.  This is why when you start using the video heavily
 there is problems.

 Our good machine used good ram and the other funky ones use
 unsupported ram.

 There are 2 possible solutions.  One solution is to look at the nvidia
 site and only use the ram they suggest for igp boards.  Second
 solution is put in a seperate video card.

I am using a stick of Crucial 256MB DDR266 PC2100 RAM.  I picked it up a
few months ago from www.ebuyer.com for £29.99.

  I have no problems with this, so it might be worth checking out.

  What I'd suggest is swap the RAM from your Shuttle to your Mum's
Shuttle and see how you get on.  If they switch around you can really be
sure it is the RAM.

  Best wishes,

-lewiz.

-- 
I was so much older then, I'm younger than that now.  --Bob Dylan, 1964.

-| msn:[EMAIL PROTECTED] | jabber:[EMAIL PROTECTED] | url:www.lewiz.org |-


pgp0.pgp
Description: PGP signature

df reporting wrong size on NFS mounted share

2004-01-20 Thread scott renna

Hello,

Im wondering if anyone has run into this situation
before.  I'm currently noticing something strange with
an NFS mounted share.  I have a 5.2 machine mounting a
share off of another 5.2 machine.  I'm using NFS
version 3 and using tcp as opposed to udp.  What
happens is that df -h reports the total size of the
share to be 496MB.  However, df -h on the NFS server
reports the total size to be 112GB.  

Has anyone seen behavior such as this before?

Thanks
scott

__
Do you Yahoo!?
Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes
http://hotjobs.sweepstakes.yahoo.com/signingbonus
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: [5.2] Startup script won't install

On Tue, 2004-01-20 at 09:45, Antoine Jacoutot wrote:
 My slapd statup script is in:
 /etc/rc.d/slapd
 I didn't watch the thread, but did you look there ?
 

There it is:) I was searching for slapd.sh :\ 

-- 
Robert


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ipfw/nated stateful rules example

2004-01-20 Thread Alex Zbyslaw

fbsd_user wrote:

The conclusion so far is that ipfw1 and ipfw2 using keep-state rules
on the interface facing the public internet with divert/nated does
not work period. 
Probably my post hasn't reached you yet.  I think you are mistaken if you mean 
that keep-state rules cannot be securely used in a NAT configuration -- see 
two examples in my post.  The mistake I believe you are making is in talking 
about only the public-internet facing interface.  What you are trying to do is 
to ensure that *conversations* from anywhere on your internal network can be 
keep-stated when talking to the external network.  But the packets *start* on 
the internal facing interface.  It just so happens that without NAT you can 
ignore this bit of the conversation, but once you include it, you cannot.

In any case, my somewhat messy example which puts the keep-state on a skipto 
rule still manages without *looking* at the internal interface, though it does 
take into consideration the whole conversation.

Still would like to be proved wrong on my conclusion.
If you find any bugs in the two alternatives I posted then I would love to know.

--Alex
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to force network interface ?

2004-01-20 Thread Frank

On Tue, Jan 20, 2004 at 09:46:35AM -0500, fbsd_user wrote:
 Are you sure all your down stream switches and hubs are full-duplex?
 If one is not, it will force the whole leg to it's setting.

yes I am sure 

I have tested the 3 possibility
I am able to parameter on my switch

half
full
auto

in any case the interface always comes up
in HALF DUPLEX on the server...

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: Just showing my support

Do not know what   blog   means. Please clarify.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Allen
Jaworski
Sent: Monday, January 19, 2004 1:36 PM
To: [EMAIL PROTECTED]
Subject: Just showing my support

Hello all,
 My Name Is Allen Jaworski and I am starting a small blog to show
friends and family how to take better care of the computers. I have
always been facinated in open source programing. I am asking
permission so I can include a link in my blog to your website.
Currently I am using Windows XP and Redhat Linux in my computers at
home because lack of a budget. But I will soon be giving FreeBsd a
try however.

Thank you for your time,
Allen Jaworski
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Configuring E-mail Services on a Standalone Wkst

2004-01-20 Thread Shantanoo

+++ Micheal Patterson [freebsd] [18-01-04 11:13 -0600]:
| 
| - Original Message - 
| From: Bob Perry [EMAIL PROTECTED]
| To: FreeBSD-Questions [EMAIL PROTECTED]
| Sent: Sunday, January 18, 2004 1:47 AM
| Subject: Configuring E-mail Services on a Standalone Wkst
| 
| 
|  Hello,
| 
|  I have two PCs, an NT 4.0 box and a FreeBSD 4.8 system.   I'm connected
|  to the internet via dial-up (56k modem) and using the mail system found
|  in Mozilla.  I understood that mail services was a natural with FreeBSD
|  so I thought I would take the opportunity to learn what I could about
|  setting up a mail server.  I've become familiar with SMTP, MUAs, MTAs,
|  qpopper, and fetchmail but it seems like some of the more necessary
|  components are a static IP address, 24/7 connection, and accurate DNS
|  information set up on my system.  If this an accurate assessment, I may
|  have to be satisfied setting up my e-mail services for a standalone
|  workstation because I can't afford a static IP address or 24/7 connection.
| 
|  If a full-fledged e-mail server isn't feasible, can I still use software
|  like sendmail, mutt, qpopper, and fetchmail for a standalone
|  workstation?  Do they offer any real advantages over the mail systems
|  that come with Mozilla, Netscape, etc.?   Any, and all comments are
| welcome.
| 
|  Thank you.
|  Bob Perry
| 
|  -- 
|  FreeBSD 4.8-RELEASE-p13 0#
| 
| What I've done in the past with dialup is this:
| 
| Configure sendmail to use a smart host. This would point to your ISP's mail
| server.
| Configure fetchmail to run every 10 minutes to check for incoming mail.
| Configure qpopper, imapd services so you can recieve your mail from the bsd
| box.
| 
| On your client computer (Windows), configure it to send and recieve mail
| from your unix box.
| 
| In this config, fetchmail will retrieve mail from your isp, pipe it through
| your local sendmail. This allows you to place your own filters on incoming
| mail and scan it for viri using the software of your choice. Then when you
| send mail out, it hits the sendmail server and is forwarded on to your ISP.

Instead of smarthost, I use free dynanic DNS services. Thus, my DNS
record in complete. I am able to send mail to all the addresses in my
address book.

Shantanoo

| 
| --
| 
| Micheal Patterson
| Network Administration
| TSG Incorporated
| 405-917-0600
| 
| 
| --
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

DNS access on private (RFC 1918) network

2004-01-20 Thread Kenneth W Cochran

Hello:

I get messages like the following in my syslog all the time:

Jan 20 09:00:40 kern.info localhost /kernel: Connection attempt to UDP 
192.168.0.1:1990 from 192.168.0.1:53
Jan 20 09:02:48 kern.info localhost /kernel: Connection attempt to UDP 
192.168.0.1:2052 from 192.168.0.1:53
Jan 20 09:02:53 kern.info localhost /kernel: Connection attempt to UDP 
192.168.0.1:2053 from 192.168.0.1:53
Jan 20 09:03:03 kern.info localhost /kernel: Connection attempt to UDP 
192.168.0.1:2054 from 192.168.0.1:53
Jan 20 09:03:37 kern.info localhost /kernel: Connection attempt to UDP 
192.168.0.1:2055 from 192.168.0.1:53

I'm (trying to :) run a cache-only nameserver, and it seems to work,
albeit with the above messages getting generated/logged all the time.

OS: FreeBSD-stable as of 15 January 2004
BIND version: 8.3.7-REL
log_in_vain is set to 1 in /etc/rc.conf.
allow-query { 127.0.0.1; 192.168.0.0/16; }; in named.conf.

I'd like to fix this but so far haven't found the answer in the
various FMs to RT. :) (the Cricket Book, 3rd ed  the manpages)

Any ideas?  FAQ/documentation/howto pointers are very welcome.

Thanks,

-kc
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: [5.2] Startup script won't install

2004-01-20 Thread Thomas T. Veldhouse

Robert Fitzpatrick wrote:
 
 Still no luck, it only confirms the placement of the slapd daemon at
 the end of the install. Everything goes well, but no slapd.sh in
 rc.d. Any ideas?

It installed the startup scripts as

/etc/rc.d/slapd
/etc/rc.d/slurpd


You will need to add these to your /etc/rc.conf file:
slapd_enable=YES
slapd_flags='-h ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://0.0.0.0/;'
slapd_sockets=/var/run/openldap/ldapi
slurpd_enable=NO


Tom Veldhouse
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Just showing my support

2004-01-20 Thread Louis LeBlanc

On 01/20/04 09:48 AM, fbsd_user sat at the `puter and typed:
 Do not know what   blog   means. Please clarify.

It's part of that new webspeak lingo.  Short for Web Log.  It's the
place some people like to put their thoughts and ideas out for others
to read and consider - sometimes only a select few, sometimes for
anyone.  Sometimes they identify themselves, sometimes it's purely
anonymous.

It's all part of that sharing of ideas thingy.  Probably be the next
big point of study for social interaction scholars, historians, and
the like.

No, I don't have one myself.  Some of my ideas are a bit too obvious
to me, and probably a bit too radical for others.  So the world's just
not ready. :)

L
 From: [EMAIL PROTECTED]
 [mailto:[EMAIL PROTECTED] Behalf Of Allen
 Jaworski
 Sent: Monday, January 19, 2004 1:36 PM
 To: [EMAIL PROTECTED]
 Subject: Just showing my support
 
 Hello all,
  My Name Is Allen Jaworski and I am starting a small blog to show
 friends and family how to take better care of the computers. I have
 always been facinated in open source programing. I am asking
 permission so I can include a link in my blog to your website.
 Currently I am using Windows XP and Redhat Linux in my computers at
 home because lack of a budget. But I will soon be giving FreeBsd a
 try however.
 
 Thank you for your time,
 Allen Jaworski
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 [EMAIL PROTECTED]
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 
 

-- 
Louis LeBlanc   [EMAIL PROTECTED]
Fully Funded Hobbyist, KeySlapper Extrordinaire :)
http://www.keyslapper.org ԿԬ

The universe is all a spin-off of the Big Bang.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

viewing sgml documents

When ports install sgml documents to /usr/local/share/doc/*, what apps are 
used to view them without the markups?

Thanks,

Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

oops!! now i cant boot

2004-01-20 Thread Rogue Spider

I was tring to get my ess sound card working
on freeBSD 5.0, so i edited /boot/default/loader.conf
it edited in insert mode and i messed up
[no] became [yesno] and i saved before i relized
it and rebooted no it locks up and tells me there is
a problem and thats it.
i tried vty4 but do not know the commands
is there a way to edit the file loader.conf
using vty4 of something ?please?

=

No Hope in the future Look To the past to find redimsioun.

__
Do you Yahoo!?
Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes
http://hotjobs.sweepstakes.yahoo.com/signingbonus
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Upgraded 5.1 - 5.2, now VNC over SSH fails w/ TCP_NODELAY

2004-01-20 Thread Scott I. Remick

Well crap, everything was going so well. I upgraded from 5.1 to 5.2 using
cvsup, recompiled (nearly) all my ports (some KDE stuff is still
complaining, but that shouldn't be relevant here). I have openssh installed
via ports:

su-2.05b# pkg_info | grep ssh
openssh-3.6.1_5 OpenBSD's secure shell client and server (remote login
prog

And my /etc/rc.conf contains:

sshd_enable=YES
sshd_program=/usr/local/sbin/sshd

Under 5.1, I'd SSH in (via PuTTY), then use port-forwarding to forward
localhost:7001 to remote:5901. I could then run VNC, connect to
localhost:7001, and tunnel my VNC session over SSH.

Since upgrading to 5.2 (nothing else has changed), while I can still SSH
in, attempting to tunnel VNC fails and I get the following error in my
PuTTY log:

2004-01-20 11:34:21 Opening forwarded connection to localhost:5901
2004-01-20 11:34:22 Forwarded connection refused by server

On the FreeBSD box, I see:

Jan 20 11:33:57 scott sshd[78580]: error: getsockopt TCP_NODELAY:
Connection reset by peer

This is using the same configs, profiles, etc. Nothing has changed except
the upgrade of the FreeBSD box from 5.1 to 5.2. Any thoughts?

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Port Forwarding

On Mon, 2004-01-19 at 21:04, Rishi Chopra wrote:
 No, those are the values in the file.  I had posted a previous question 
 to the list asking what the right values should be (my rl0 interface is 
 configured via DHCP) - any ideas what I should put in this section?
 
 James Earl wrote:
 
  On Mon, 2004-01-19 at 13:58, Rishi Chopra wrote:
  
 Here's the rc.firewall file, with comments trimmed for formatting:
 
 [Ss][Ii][Mm][Pp][Ll][Ee])
  
 
  # set these to your outside interface network and netmask and ip
  oif=rl0
  omask=255.255.255.0
  oip=me
  
  
  I'm assuming these aren't the real values you have in your actual
  rc.firewall.
  

Maybe I shouldn't have been surprised to see 255.255.255.0 as your ISP's
subnet mask... I'm not sure.  I'm definitely not an expert.  Is that in
fact your ISP's subnet mask?

James


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

UDP errors and syslog BSD

2004-01-20 Thread Brent Bailey

Hello ,
Im using Frebsd as a syslog server at work. Everything seemed to be ok
untill i decided to run
netstat -s -p udp
as part of my nitely reporting. there are 5 routers pointed at this syslog
server so it seen ALOT of UDP traffic

ive noticed the following :
UDP stats:

udp:
    38123594 datagrams received
    0 with incomplete header
    0 with bad data length field
    2 with bad checksum
    352023 with no checksum
    319427 dropped due to no socket
    386465 broadcast/multicast datagrams dropped due to no socket
    5775699 dropped due to full socket buffers
    0 not for hashed pcb
    31642001 delivered
    15879668 datagrams output


the errors im concerned about are
5775699 dropped due to full socket buffers

and
 319427 dropped due to no socket

the first makes me think that the buffers are depleted and cant written to
if so ...how do i correct this ?

any help is very appreciated




-- 
Brent Bailey


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Port Forwarding

If you want your gateway to forward DNS queries from your private
network, you will probably have to run named to answer the DNS queries
and forward them out to your ISP's name servers.

You may also want to run a DHCP server.

I don't believe ipfw has the forwarding capability your looking for in
this case.

You may want to get the DNS setup first, and then enable ipfw once you
know that named is setup properly.

As for the firewall rules, you'd probably just have to modify slightly
the DNS related ones that already exist under SIMPLE.  Instead of
letting DNS queries in from the outside, you want to let DNS queries in
from the inside.

Let me know if you have any other questions, and I'll try to help.

James

On Mon, 2004-01-19 at 21:06, Rishi Chopra wrote:
 If I want the gateway to forward DNS queries (e.g. have the win2k box 
 query the gateway for DNS requests) what do I need to do?  What would 
 the rule look like?
 
 James Earl wrote:
 
  On Mon, 2004-01-19 at 13:58, Rishi Chopra wrote:
  
 What I want to do:  (1) Change firewall type from 'OPEN' to 'SIMPLE' and 
 (2) Forward ports 412 and 5800 to my Win2k box.
 
 What I have:  The setup is pictured below. 
 IPFIREWALL_DEFAULT_TO_ACCEPT, IPDIVERT and IPFILTER are all enabled in 
 my kernel config file,  are also enabled.  Rule-of-thumb advice about 
 how best to secure a network is not necessary in this case (the Win2k 
 box has its own firewall installed (ZoneAlarm) and I already know too 
 much about security).
 
 ISP  FreeBSD GatewayWin2k Box
 
 
 --rl0--rl1---
 
 ALLDHCP 192.168.0.1 192.168.0.2
 
 The problem:  When I chenge the firewall type to SIMPLE from OPEN, the 
 Win2k box can no longer query DNS and pings to the 192.168.0.1 address 
 do not work.  With the firewall type set to OPEN, there are no problems 
 whatsoever.  I am also new to the IPFW syntax.
 
 What I would like to know is: (1) the syntax for forwarding incomming 
 connections from rl0 to rl1 (and ultimately to 192.168.0.2) and (2) 
 whether the syntax for allowing connections to the outside network (such 
 as DNS) is correct and if some other problem is preventing the win2k box 
 from querying DNS when SIMPLE is enabled.
  
  
  The FreeBSD Handbook can describe port redirection using NAT better than
  I can:
  
  http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-natd.html
  
  With the SIMPLE firewall rules, all your machines on your LAN should be
  able to establish connections.  Make sure that you have your ISP's DNS
  servers IP's specified on the win2k machine, and also that your FreeBSD
  machines IP is setup as the default gateway in win2k.
  
  You shouldn't be able to ping the FreeBSD gateway from the win2k machine
  because of the FreeBSD gateway's firewall.
  
  Anther test... try accessing a machine out on the Internet using it's ip
  address and see if you get out.
  
  James
  
  
  

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: usernames with uppercase

2004-01-20 Thread Darek M

Spades wrote:

Hi,

I tried to add a username ie. Bryan, but FreeBSD doesn't allow me
to do so. It gives me illegal username error. Any idea how to go
about adding usernames like 'Bryan-admin' etc.
Please help.

Thanks..

Bryan
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
 

su-2.05a# pw useradd -n Darek -s /usr/local/bin/bash
su-2.05a# cat /etc/passwd | grep Darek
Darek:*:6672:6673:User :/home/Darek:/usr/local/bin/bash
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Wrong pixmaps directory (port problem).

2004-01-20 Thread Lewis Thompson

Hi,

I'm trying to create a port and everything is working fine, except that
the pixmaps get installed in /usr/X11R6/share/pixmaps/app instead of
/usr/X11R6/share/gnome/pixmaps/app.

  Apart from these pixmaps there is just the application binary itself.

  Can anybody suggest how I can get it to install the pixmaps in the
correct location?

  Thanks very much,

-lewiz.

-- 
I was so much older then, I'm younger than that now.  --Bob Dylan, 1964.

-| msn:[EMAIL PROTECTED] | jabber:[EMAIL PROTECTED] | url:www.lewiz.org |-


pgp0.pgp
Description: PGP signature

Re: GDBE and USB-sticks? [was: GBDE and file-backed filesystems?]

2004-01-20 Thread Benjamin Walkenhorst

On Mon, 19 Jan 2004 19:59:07 -0500
Michael W. Oliver [EMAIL PROTECTED] wrote:

 I will trade links with you.  Here is a link to an article describing
 GBDE on a USB ThumbDrive.  If you are not bound by a privacy request,
 please post the link to the patch you mention above.

Thank you very much! 
Uh, I would have posted the URL, now that I'm at home, but since it's
already been posted by Mr. Pernfuss, ... I refer to his reply. =)

I've tried setting up up an encrypted USB-stick, and it works.
The tutorial explains how to encrypt the entire stick.

 Thanks!

Well, I've got thank you. =)

Kind regards,

Benjamin



pgp0.pgp
Description: PGP signature

Re: Can FreeBSD Install damage an NTFS Partition

2004-01-20 Thread Benjamin Walkenhorst

Hello,

On Tue, 20 Jan 2004 03:36:06 -0500
James R. Phillips [EMAIL PROTECTED] wrote:
 So - can a FreeBSD install in free space on the second drive somehow 
 damage an NTFS partition on the first drive?  Has this happened to 
 anyone else?

Well, I can't tell you for sure, but chances are pretty small in my
experience. I've been keeping no less than three operating systems on a
single hdd for quite some time no, and even four have been working in
parallel for months, with lots of reinstalls.
I actually use one primary OS (Linux, now I'm considering a migration to
FreeBSD), windows for games, and one to two OS'es to toy around with,
among these Free- (both 4.9 and 5.2), Net- (1.6.1) and OpenBSD (3.2 and
3.4). No problem whatsoever. Especially not of the kind you were facing.

So the chances of the installer killing your windows by accident are
really low, I'd say. It might have killed windows by some mistake of
yours (you sound like you know what you're doing, but nobody's
perfect...), though I don't think so, since you didn't even install
FreeBSD to the same hdd. 
Maybe, just maybe, you tried to access the ntfs-partition in
read/write-mode by accident from either Linux or FreeBSD? Write-support
for NTFS is still considered experimental, in both systems.

Otherwise I would rather suspect windows of killing itself - it looks
like too smart an action for windows to take, but it's known to do that,
sometimes. Well, 9x/ME is. But Win2k seems to very stable for a windows,
unless some worm or virus has found its way to your system... 

Maybe something with the bootloader? But you say, windows BSOD'ed you,
so you must have been past the bootloader. 

By now it's too late, but you could have compared the wrecked
NTFS-system and the backups you've made to find out what has changed.
;-/

If it was FreeBSD's fault, I think it might have been the bootloader. I
don't know how well FreeBSD boots of other hdd's than the first (Windows
simply does't, for example), maybe it tried to install its bootloader to
the first hdd before noticing that's not where FreeBSD was... 
On the other hand, that sounds strange, too. 

Kind regards,

Benjamin


pgp0.pgp
Description: PGP signature

RE: ipfw/nated stateful rules example

Alex Yep I missed you previous post, this lists mail has increased
since 5.2 showed up on the FTP sites and I just missed your post in
all volume.

First of all the method of doing keep-state on both the internal Lan
interface and the external is an violation of security protocol
because the packets are being allowed to pass based on stateful info
posted by the wrong interface. This method is an example of making
the firewall function incorrectly which is not the goal of an secure
firewall. The method is discard as not viable.

Now on to your second method of coding the rules file with
gymnasiast goto statements. From an user view point, this kind of
coding should not be necessary just to get keep-state rules to
function. And if it is  necessary then it should be so documented in
man ipfw that way  and a working example should be included in /etc
along the other example. That being said, lets look at what you
posted.

  this first part has already been address and
discarded

The basic thrust of the problematic section is:

ipfw add divert natd all from any to any via external_interface
ipfw add pass udp from any to any ntp out xmit external_interface
ipfw add pass udp from any ntp to any ntp in recv external_interface

Try this:

# local rules for this gateway's traffic
ipfw add allow udp from me to any out xmit $ext_if keep-state
# divert
ipfw add divert natd ip from any to any via $ext_if

# this rule looks a bit strange here, but it's to allow the
# nat-ed packets outbound to leave.  If you're concerned about
# egress filtering from the gateway itself, add appropriate
# non-stateful allow rules
ipfw add allow ip from me to any out xmit $ext_if
ipfw add check-state
ipfw add allow udp from any to any in recv $int_if keep_state

Putting the keep-state on the internal ethernet is a neat solution,
thanks. (It conflicts somewhat with some of the way my firewall is
set up prior to the ntp/natd stuff, but I'm looking at rewriting
that).


  start of second method  *


I did think of one more solution which works on the external
interface only, but it's not as elegant.

  # Check all inbound ntp calls
  ipfw add skipto 20500 udp from any ntp to any in recv $ext_if
  # Checks all outbound ntp calls and (by dynamic rule) all inbound
ntp calls
  ipfw add skipto 2 udp from any to any out xmit $ext_if
keep-state

  [ rest of firewall including natd go here ]

  # Make sure we do not fall through into special rulesets
  add deny log all from any to any

  # Only get to these rules in two circumstances:
  # 1) Any outbound ntp packet which has been keep-state'ed
  # 2) Any inbound ntp packet which matched a dynamic rule
  ipfw add 2 divert natd all from any to any out xmit
$ext_if
  ipfw add allow udp from any ntp to any in recv $ext_if
  ipfw add allow udp from any to any ntp out xmit $ext_if
  ipfw add deny log all from any to any

  # Only get here on an incoming ntp packet.  Need to see
  # if we want to accept it or not.  Check-state will
  # trigger dynamic rule and skipto 2 on match
  ipfw add 20500 divert natd all from any to any in recv
${ext_if}
  ipfw add check-state
  ipfw add deny log all from any to any

  end of second method  *

First of all the first skipto rule

ipfw add skipto 20500 udp from any ntp to any in recv $ext_if
ipfw add skipto 2 all from any to any out xmit $ext_if
keep-state

uses ntp as an port name on the from object. Ntp is the name given
in /etc/services for port number 123 which is the tcp time network
protocol. This has to be an typo as there is no way this can have
any meaning about what we are talking about. So I will take ntp to
mean an symbolic as in $ntp which holds the private ip address of
Lan network.

Looking closer at your skipto rules they only executes on udp
packets and the second statement has keep state on it.  Plus your
skipto locations are using stateless rules

There is no use going any further, this is non-logical all ready.

When and if you can get your shipto method to only use stateful
rules and the check-state rule to process the divert rule correctly
then you will have something to talk about.

Until them, my statement still stands.



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

hi

2004-01-20 Thread Pleasurzzz4u

i was reading your website eas wonderng how to obtain services for free.. it 
wasnt clear exactly how to sign up and use freebsd. Are there floppy disks?
If you want to letme know.. more in detail im seeking a great web server that 
wont censor my website and that will maintaince errrors quickly..
 i dont find this on aol.. where im terribly hacked..
you can respond  to me at [EMAIL PROTECTED]
 or call me at 847-971-7863 with more info 
thank you
Peacheswrites
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: UDP errors and syslog BSD

2004-01-20 Thread Charles Swiger

On Jan 20, 2004, at 12:02 PM, Brent Bailey wrote:
the errors im concerned about are
5775699 dropped due to full socket buffers
and
 319427 dropped due to no socket
the first makes me think that the buffers are depleted and cant 
written to
if so ...how do i correct this ?
netstat -m should list the network memory buffers and their usage.  
You might try adding:

options NMBCLUSTERS=8192

...to your kernel config file and rebuilding your kernel, if you were 
running low.

--
-Chuck
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Related Q: (was) Re: Newbie question

2004-01-20 Thread Gary Kline

On Tue, Jan 20, 2004 at 08:59:25AM +, Matthew Seaman wrote:
 
 It sounds to me as if your new machine has hardware which is supported
 under 5.x but not 4.9.  That's a very good reason to install 5.2 --
 caveats about early adopters notwithstanding, by all accounts 5.2 is
 turning out nicely.  I'd worry about using it for a system that was
 mission critical to a business (read: financial consequences if it
 isn't up and running), but for a home system I think it would do very
 well.
 

I'm going toput 5.2 on my new DNS server; but from scratch.
SWondering how dificult it is to upgrade from 4.[78] to 5.[latest].
Is the UPGRADING file suffieient?  I've heard the 5.X is the
cat's meow

tia,

gary
 


-- 
   Gary Kline [EMAIL PROTECTED]   www.thought.org Public service Unix

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Proper way to upgrade OpenSSH on FreeBSD 4.9

2004-01-20 Thread Jason Williams

Good morning everyone.

I just had a couple of questions about upgrading OpenSSH on a FreeBSD 4.9 box.
Being that 4.9 ships with:
OpenSSH_3.5p1 FreeBSD-20030924, SSH protocols 1.5/2.0, OpenSSL 0x0090703f

I wanted to upgrade my version of OpenSSH to a more recent version.

My question is, what is the proper method in doing so?

I see that, currently in the ports tree, openssh 3.7.1p2 is available for 
install.
There is also the possibility of installing from source.

I would think that using the ports tree may be a very good option, as you 
can upgrade later with portupgrade.

With that in mind, what is the best method in doing this?
If I decided to use the ports tree to upgrade my openssh, do I need to do 
anything before hand? Backup? Save etc...(I should mention, im testing this 
on a test system first).

I appreciate the input and advice anyone lends.

Cheers,

Jason 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

grepping distinct lines from many text files ?

2004-01-20 Thread Ion-Mihai Tetcu

Hi,


I know I have done this before, but I don't remember how ;)

I have a collection of text files in one directory, and each file can
contain one or more lines of text, of which any of them could also be in
another file and what I want is to do something like:

CUCU=`cat /path/do/dir/* | some_filer_program`

and have in $CUCU the distinct lines from all the files.

Something like SQL's SELECT DISTINCT FROM 

Any pointers ?


Tnx,

-- 
IOnut
Unregistered ;) FreeBSD user
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Updating ports over Proxy (was: no subject)

2004-01-20 Thread Daan Vreeken [PA4DAN]

On Tuesday 20 January 2004 14:46, saad Hage (hotmail) wrote:
 Hi,

  How I can update Ports via Wingate Proxy? Actually I receive an error
 saying me he cannot found the host name.
Try setting HTTP_PROXY and FTP_PROXY before you upgrade / add a package like 
this :
export HTTP_PROXY=the.proxy.addres:8080
(Change the address  port to that of the proxy server)

grtz,
Daan
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Using FreeBSD to burn in computers

2004-01-20 Thread Thane Sherrington

I'm new to this list, and I'm not a Free-BSD wizard by any means, but for 
some time we've been using FreeBSD to burning new systems and to test 
systems for stability issues.  Below is the procedure we've been 
using.  One problem we seem to be having now is that if we run top while 
the various makes are running, we don't appear to be filling the RAM, so 
I'm looking for a way to stress the RAM more completely.  If people would 
like to take a look at the procedure below and comment on it, I'd really 
appreciate it.  Using this system has allowed be to find problems quickly 
that other diagnostic procedures take days to find.

T

1)Download FreeBSD 5.1 (I don't know if this is the best version, since 4.8 
is the current stable release, but that's what I'm using.  I downloaded 
the large first CD, but I've been told I only need the mini, so I'm 
downloading that now and am switching to that.  You will need more than one 
computer to test this on, because I have gotten corrupted ISOs a couple of 
times on FreeBSD downloads, so you need more than one computer to check to 
see if it's an ISO issue, a bad CD, or a probem with the computer.)
2)Install FreeBSD - this part is simple:
a)Boot with the CD in the drive.
b)Choose Custom
c)Choose Partition (if it gives you a warning about Geometry, hit Ok - I 
haven't seen this cause a problem, and it appears to be something about 
some hard drives that FreeBSD doesn't like.)
d)Press (A)ll
e)Press (Q)uit
f)Hit Enter on BootMgr
g)Choose Label
h)Press (A)ll
i)Press (Q)uit
j)Choose Distributions
k)Press Space on All
l)Hit Yes on ports
m)Exit
n)Choose Media
o)Choose CD/DVD
p)Choose Commit
q)Hit Yes to start

Depending on the speed of the system, this can take awhile.  If it fails in 
this step, then the hard drive is bad, the CD Drive is bad, the CD is bad, 
or there is a cable or connection problem.  I keep two CDs with known good 
ISO burns so I can check if it's a CD issue.

When it's done, say No to going back and checking setup.

Let the machine reboot (remember to remove the CD - I find FreeBSD won't 
let the drive door open until the system has started the reboot, so timings 
an issue.)
2)Configure FreeBSD
a)Login as root (no password)
b)Connect your NIC to your router.
c)Type sysinstall to configure DHCP
d)Go to configure
e)Choose Network
f)Select the NIC
g)Say No to IPV6
h)Say Yes to DHCP
i)Give a host and domain name, tab to OK and hit enter.
j)Exit Sysinstall

At this point, you should be able to ping a site.

3)Get cvsup
a)Type sysinstall (perhaps you can do this step without exiting sysinstall 
in the above step, but I like to go out and do a ping to be sure things are 
working.)
b)Choose Configure
c)Choose Packages
d)Choose FTP
e)Choose Site (I use Primary)
f)Click Yes to the Network question
g)Choose Net
h)Choose cvs-without-gui
i)Choose Install
j)Choose Ok
k)Exit
l)Exit
m)type shutdown -h now to restart

4)Running cvsup
a)Login as root
b)cd /usr/local/bin
c)cvsup -h cvsup5.freebsd.org /usr/share/examples/cvsup/ports-supfile
Let that run (about 10-15 minutes in my experience.)
d)type shutdown -h now to restart (I've no idea if this is necessary, but 
coming from the Windows world, I reboot after most installs.) :)

5)Running the makes
a)cd /usr/src
b)make world; make world; make world; make world; make world (my idea here 
is to run make world and make on XFree86 concurrently, thus stressing the 
system further - I'm not sure if this is a good idea or not, but I'm sure 
someone will correct me.)
c)cd /usr/ports/x11-servers/XFree86-4-Servers
d)make (it will tell you it doesn't have all the files, and will download 
the ones it needs - this takes less than five minutes on my system.  Then 
the make will run - this is a long make, and will probably take four or 
five hours.)
d)cd /usr/ports/x11/kde3
e)make (it will tell you it doesn't have all the files, and will download 
the ones it needs - this takes less than five minutes on my system.  Then 
the make will run - this is a long make, and will probably take four or 
five hours.)

At this point, you have run makes on the world, XFree86, and 
kde3.  Assuming you have gotten no signal [number] errors, you're hardware 
is probably fine.  If it fails with a code 1 or code 2, then it's probably 
software, and you need to either reinstall or redownload, or use a 
different version or something. :)

If you want to test the system under more stress, I believe you can do the 
following:
1)login as root
2)cd /usr/src
3)make world; make world; make world; make world; make world; make world; 
make world; make world   (I recommend multiple make worlds, as I have seen 
failures on the second or third make world, even after the first 
passed.  You can run as many of these as you like, they take less time than 
the makes below, and the idea is to have the both running simultaneously - 
so you probably want four make worlds for the XFree86, and another 4 for 
the kde3.)
3)Press Alt-F2 (takes you to console 2)
4)login as root

Re: grepping distinct lines from many text files ?

2004-01-20 Thread Chris Pressey

On Tue, 20 Jan 2004 20:56:21 +0200
Ion-Mihai Tetcu [EMAIL PROTECTED] wrote:

 Hi,
 
 
 I know I have done this before, but I don't remember how ;)
 
 I have a collection of text files in one directory, and each file can
 contain one or more lines of text, of which any of them could also be in
 another file and what I want is to do something like:
 
 CUCU=`cat /path/do/dir/* | some_filer_program`
 
 and have in $CUCU the distinct lines from all the files.
 
 Something like SQL's SELECT DISTINCT FROM 
 
 Any pointers ?

man 1 uniq
?

-Chris
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: grepping distinct lines from many text files ?

2004-01-20 Thread Charles Swiger

On Jan 20, 2004, at 1:56 PM, Ion-Mihai Tetcu wrote:
CUCU=`cat /path/do/dir/* | some_filer_program`

and have in $CUCU the distinct lines from all the files.
Try:

CUCU=`cat /path/to/files/* | sort | uniq`

--
-Chuck
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: UDP errors and syslog BSD

2004-01-20 Thread Dan Nelson

In the last episode (Jan 20), Brent Bailey said:
 Im using Frebsd as a syslog server at work. Everything seemed to be ok
 untill i decided to run
 netstat -s -p udp
 as part of my nitely reporting. there are 5 routers pointed at this syslog
 server so it seen ALOT of UDP traffic
 
 ive noticed the following :
 UDP stats:
 
 the errors im concerned about are
 5775699 dropped due to full socket buffers

I think this means that a process isn't reading data fast enough from
its socket.  It's not a global buffer shortage (you'd get lots of
errros in /var/log/mesages in that case).  You can raise the buffer
size for a specific socket by calling setsockopt() with the SO_RCVBUF
option.  You can change the systemwide default with the
net.inet.udp.recvspace sysctl.
 
 and
  319427 dropped due to no socket

This just counts the number of packets sent to UDP ports where there
was no listening process.  Say for example you had to stop and restart
syslogd, any syslog packets received while it was down would increment
that counter.

-- 
Dan Nelson
[EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: grepping distinct lines from many text files ?

2004-01-20 Thread Ion-Mihai Tetcu

On Tue, 20 Jan 2004 14:02:54 -0500
Charles Swiger [EMAIL PROTECTED] wrote:

 On Jan 20, 2004, at 1:56 PM, Ion-Mihai Tetcu wrote:
 
  CUCU=`cat /path/do/dir/* | some_filer_program`
 
  and have in $CUCU the distinct lines from all the files.
 
 Try:
 
 CUCU=`cat /path/to/files/* | sort | uniq`

Thanks, that is what I was looking for.

I've did a apropos unique and didn't thought to do an apropos uniq :


-- 
IOnut
Unregistered ;) FreeBSD user
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Web Editing?

2004-01-20 Thread Dinesh Nair


On Tue, 20 Jan 2004, Greg 'groggy' Lehey wrote:

 That's your call.  A number of us have good reasons, and that's why many
 of us use bollox.

i'm presuming this is an editor of sorts ? :)

Regards,   /\_/\   All dogs go to heaven.
[EMAIL PROTECTED](0 0)http://www.alphaque.com/
+==oOO--(_)--OOo==+
| for a in past present future; do|
|   for b in clients employers associates relatives neighbours pets; do   |
|   echo The opinions here in no way reflect the opinions of my $a $b.  |
| done; done  |
+=+

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Related Q: (was) Re: Newbie question

On Tue, Jan 20, 2004 at 10:23:57AM -0800, Gary Kline wrote:
 On Tue, Jan 20, 2004 at 08:59:25AM +, Matthew Seaman wrote:
  
  It sounds to me as if your new machine has hardware which is supported
  under 5.x but not 4.9.  That's a very good reason to install 5.2 --
  caveats about early adopters notwithstanding, by all accounts 5.2 is
  turning out nicely.  I'd worry about using it for a system that was
  mission critical to a business (read: financial consequences if it
  isn't up and running), but for a home system I think it would do very
  well.
  
 
   I'm going toput 5.2 on my new DNS server; but from scratch.
   SWondering how dificult it is to upgrade from 4.[78] to 5.[latest].
   Is the UPGRADING file suffieient?  I've heard the 5.X is the
   cat's meow

UPGRADING should be sufficient if you are an experienced user.
However, you will miss out on the ability to do various things, like
create UFS2 filesystems or repartition your drives -- the shared root
feature makes quite a difference.  I think a wipe and re-install is
generally a good idea over a major version bump, but if you can't do
that, then update in place is the next best thing.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

Re: Proper way to upgrade OpenSSH on FreeBSD 4.9

2004-01-20 Thread Joerg Pernfuss

On Tue, 20 Jan 2004 10:50:06 -0800
Jason Williams [EMAIL PROTECTED] wrote:

 My question is, what is the proper method in doing so?
 I see that, currently in the ports tree, openssh 3.7.1p2 is available
 for install.
 There is also the possibility of installing from source.
 I would think that using the ports tree may be a very good option, as
 you can upgrade later with portupgrade.

From ports should be better imho. It's a source install too.
Additionally it is automated and integrated.

 
 With that in mind, what is the best method in doing this?

You have (at least) two possibilities when installing from ports.
a) normal installation
will install the new sshd to /usr/local/sbin/ and leave the old version
as it is. then change rc.conf :
 sshd_program=/usr/local/sbin/sshd
 sshd_flags=-f /usr/local/etc/ssh/sshd_config
or whereever you install the files to.
This way you can change back to the old version by changing the rc.conf
back to its defaults.

b) overwrite installation
specify OPENSSH_OVERWRITE_BASE (check the Makefile, but that should be
it) when installing the port. This overwrites the old base system sshd.
No need for rc.conf changes, but be sure to define NO_OPENSSH= YES in
your make.conf - otherwise the next buildworld will overwrite your
port installed sshd again.

Joerg


pgp0.pgp
Description: PGP signature

how to config FBSD pc to work on non-dhcp lan

Have FBSD gateway connected to internet with private Lan behind it.
Manually configured an MS/Windows on Lan.
Now trying to add FBSD PC to Lan.

Put ifconfig statement in rc.conf to assign PC it's Lan IP address.
Loaded resolv.conf  with IP address of ISP's DNS server.
Can ping gateway and Lan Windows box.
Gateway and Lan windows box has public access.
FBSD Lan PC can not ping Public Internet ip address or resolve
domain names.
Ping to public internet ip address get msg   sendto  no route to
host
10.0.10.0/29 is the Lan subnet. Gateway is 10.0.10.2. Windows box is
10.0.10.5.
The ifconfig display on both the gateway and FBSD lan box show the
correct
assigned IP address and broadcast ip address of 10.0.10.7 just like
what I expected.

What other config files need to be configured on the FBSD Lan PC to
get it
to communicate through the gateway to the public internet?

This is what I has so far on the FBSD Lan PC

rc.conf
clear_tmp_enable=YES
moused_enable=YES
moused_port=/dev/psm0
moused_type=auto
moused_flags=-m 2=3

allscreens_flags=-m on -c blink -h 200
saver=warp
hostname=gateway.fbsdjones.com
ifconfig_dc0=inet 10.0.10.1 netmask 255.255.255.248

resolv.conf
nameserver 68.168.240.2

The gateway's rc.conf has
ifconfig_dc0=inet 10.0.10.2  netmask 255.255.255.248














___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to config FBSD pc to work on non-dhcp lan

On Tue, 2004-01-20 at 13:27, fbsd_user wrote:
 Have FBSD gateway connected to internet with private Lan behind it.
 Manually configured an MS/Windows on Lan.
 Now trying to add FBSD PC to Lan.
 
 Put ifconfig statement in rc.conf to assign PC it's Lan IP address.
 Loaded resolv.conf  with IP address of ISP's DNS server.
 Can ping gateway and Lan Windows box.
 Gateway and Lan windows box has public access.
 FBSD Lan PC can not ping Public Internet ip address or resolve
 domain names.
 Ping to public internet ip address get msg   sendto  no route to
 host
 10.0.10.0/29 is the Lan subnet. Gateway is 10.0.10.2. Windows box is
 10.0.10.5.
 The ifconfig display on both the gateway and FBSD lan box show the
 correct
 assigned IP address and broadcast ip address of 10.0.10.7 just like
 what I expected.
 
 What other config files need to be configured on the FBSD Lan PC to
 get it
 to communicate through the gateway to the public internet?
 
 This is what I has so far on the FBSD Lan PC
 
 rc.conf
 clear_tmp_enable=YES
 moused_enable=YES
 moused_port=/dev/psm0
 moused_type=auto
 moused_flags=-m 2=3
 
 allscreens_flags=-m on -c blink -h 200
 saver=warp
 hostname=gateway.fbsdjones.com
 ifconfig_dc0=inet 10.0.10.1 netmask 255.255.255.248
 
 resolv.conf
 nameserver 68.168.240.2
 
 The gateway's rc.conf has
 ifconfig_dc0=inet 10.0.10.2  netmask 255.255.255.248

Looks like your missing:

defaultrouter=

in your rc.conf


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to config FBSD pc to work on non-dhcp lan

2004-01-20 Thread Charles Swiger

On Jan 20, 2004, at 3:27 PM, fbsd_user wrote:
[ ... ]
FBSD Lan PC can not ping Public Internet ip address or resolve
domain names.  Ping to public internet ip address get msg
sendto no route to host
[ ... ]
rc.conf
clear_tmp_enable=YES
moused_enable=YES
moused_port=/dev/psm0
moused_type=auto
moused_flags=-m 2=3
allscreens_flags=-m on -c blink -h 200
saver=warp
hostname=gateway.fbsdjones.com
ifconfig_dc0=inet 10.0.10.1 netmask 255.255.255.248
/etc/rc.conf should have a statement like:

defaultrouter=10.0.10.2

...or try adding a default route by hand, route add default 10.0.10.2.

--
-Chuck
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to config FBSD pc to work on non-dhcp lan

On Tuesday 20 January 2004 02:27 pm, fbsd_user wrote:
 Have FBSD gateway connected to internet with private Lan behind it.
 Manually configured an MS/Windows on Lan.
 Now trying to add FBSD PC to Lan.

 Put ifconfig statement in rc.conf to assign PC it's Lan IP address.
 Loaded resolv.conf  with IP address of ISP's DNS server.
 Can ping gateway and Lan Windows box.
 Gateway and Lan windows box has public access.
 FBSD Lan PC can not ping Public Internet ip address or resolve
 domain names.
 Ping to public internet ip address get msg   sendto  no route to
 host
 10.0.10.0/29 is the Lan subnet. Gateway is 10.0.10.2. Windows box is
 10.0.10.5.
 The ifconfig display on both the gateway and FBSD lan box show the
 correct
 assigned IP address and broadcast ip address of 10.0.10.7 just like
 what I expected.

 What other config files need to be configured on the FBSD Lan PC to
 get it
 to communicate through the gateway to the public internet?

 This is what I has so far on the FBSD Lan PC

 rc.conf
 clear_tmp_enable=YES
 moused_enable=YES
 moused_port=/dev/psm0
 moused_type=auto
 moused_flags=-m 2=3

 allscreens_flags=-m on -c blink -h 200
 saver=warp
 hostname=gateway.fbsdjones.com
 ifconfig_dc0=inet 10.0.10.1 netmask 255.255.255.248

 resolv.conf
 nameserver 68.168.240.2

 The gateway's rc.conf has
 ifconfig_dc0=inet 10.0.10.2  netmask 255.255.255.248

The new FreeBSD PC's /etc/rc.conf needs the following line:
defaultrouter=10.0.10.2

Best of luck,

Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: how to config FBSD pc to work on non-dhcp lan

2004-01-20 Thread Lance E. Lott

Where's your defaultrouter line???

Lance

At 02:27 PM 1/20/2004, you wrote:

Have FBSD gateway connected to internet with private Lan behind it.
Manually configured an MS/Windows on Lan.
Now trying to add FBSD PC to Lan.
Put ifconfig statement in rc.conf to assign PC it's Lan IP address.
Loaded resolv.conf  with IP address of ISP's DNS server.
Can ping gateway and Lan Windows box.
Gateway and Lan windows box has public access.
FBSD Lan PC can not ping Public Internet ip address or resolve
domain names.
Ping to public internet ip address get msg   sendto  no route to
host
10.0.10.0/29 is the Lan subnet. Gateway is 10.0.10.2. Windows box is
10.0.10.5.
The ifconfig display on both the gateway and FBSD lan box show the
correct
assigned IP address and broadcast ip address of 10.0.10.7 just like
what I expected.
What other config files need to be configured on the FBSD Lan PC to
get it
to communicate through the gateway to the public internet?
This is what I has so far on the FBSD Lan PC

rc.conf
clear_tmp_enable=YES
moused_enable=YES
moused_port=/dev/psm0
moused_type=auto
moused_flags=-m 2=3
allscreens_flags=-m on -c blink -h 200
saver=warp
hostname=gateway.fbsdjones.com
ifconfig_dc0=inet 10.0.10.1 netmask 255.255.255.248
resolv.conf
nameserver 68.168.240.2
The gateway's rc.conf has
ifconfig_dc0=inet 10.0.10.2  netmask 255.255.255.248












___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.558 / Virus Database: 350 - Release Date: 1/2/2004

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.558 / Virus Database: 350 - Release Date: 1/2/2004
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Netgear WG511 (no driver attached)

2004-01-20 Thread Andrew Hall

Greetings,

Please forgive the cross post (sent to freebsd-mobile also), but I have
not received a reply from -mobile yet.

I have Netgear WG511 running on 5.2-CURRENT.  If I boot with the card or
insert it after boot I get the following output: 

cardbus0: network at device 0.0 (no driver attached)
cbb0: CardBus card activation failed

I have the wireless devices wlan, an, awi, wi, cbb, pccard and cardbus
all compiled directly in my kernel. Can someone pleae point me to some
documentation on how to define a driver for this card to use and to
configure wireless networking in FreeBSD? 

Thanks in advance, 

Andrew

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

no more wireless

2004-01-20 Thread Kenzo

My Pcmcia wireless card used to work on my laptop, now it doesn't.
I can't think of what I might of done to make that happen.
The card is a Cisco Aironet 350.
I'm running FBSD4.9.
My kernel is confiured with the an option, but nothing happens when I take
the card in and out.
I even recompiled it with the generic one and it still doesn't come on.

I dual boot the laptop with winXP.
when I boot to the XP side, it works fine.
So it's not a hardward issue.

attached is my kernel conf.
Thanks.



kernel.dat
Description: Binary data
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Netgear WG511 (no driver attached)

On Tuesday 20 January 2004 03:35 pm, Andrew Hall wrote:
 Greetings,

 Please forgive the cross post (sent to freebsd-mobile also), but I have
 not received a reply from -mobile yet.

 I have Netgear WG511 running on 5.2-CURRENT.  If I boot with the card or
 insert it after boot I get the following output:

 cardbus0: network at device 0.0 (no driver attached)
 cbb0: CardBus card activation failed

 I have the wireless devices wlan, an, awi, wi, cbb, pccard and cardbus
 all compiled directly in my kernel. Can someone pleae point me to some
 documentation on how to define a driver for this card to use and to
 configure wireless networking in FreeBSD?

 Thanks in advance,

 Andrew

I think your card uses the ath driver, which is not in your list of compiled 
devices.  See:

http://www.freebsd.org/cgi/man.cgi?query=athsektion=4manpath=FreeBSD
+5.2-RELEASE

Best of luck,

Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

BIND in chroot jail

I see the bind user is defined as BIND Sandbox, does this mean the
default port install of bind9 sets bind up in a chroot jail?

-- 
Robert

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: no more wireless

On Tuesday 20 January 2004 03:49 pm, Kenzo wrote:
 My Pcmcia wireless card used to work on my laptop, now it doesn't.
 I can't think of what I might of done to make that happen.
 The card is a Cisco Aironet 350.
 I'm running FBSD4.9.
 My kernel is confiured with the an option, but nothing happens when I
 take the card in and out.
 I even recompiled it with the generic one and it still doesn't come on.

 I dual boot the laptop with winXP.
 when I boot to the XP side, it works fine.
 So it's not a hardward issue.

 attached is my kernel conf.
 Thanks.

Does the card appear in dmesg when its in the slot during bootup? When you put 
the card in the slot, have you checked dmesg?

Do you have any other pcmcia cards that you use?  Are they recognized when you 
put them in?

Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

FreeBSD tunnels / performance et'al (gif/tun etc.)

2004-01-20 Thread Karl Pielorz

Hi All,

I've just setup a FreeBSD tunnel (we've tried both gif and tun [via 
nos-tun]) now between two fairly large networks of machines...

We've routed multiple class C networks over the tunnel - only to find the 
performance is, basically abysmal :(

If I do a transfer from the machines 'wan' facing addresses directly, it 
works fine [we get about 230Kbytes a sec, on a 2mbit link between the 
hosts] - if I do a transfer from machine to machine via the tunnel endpoint 
IP's - we get about 140-160Kbytes a second...

But 'general' traffic going across the link gets really lousy rates, and 
seems very 'staccato' (e.g. a few hundred bytes per second to a host).

We've been careful re. MTU sizes by deploying tcpmssd where needed (e.g. 
for gif)

Has anyone got any experience of routing large networks of traffic via 
tunnels under FreeBSD?

As a comparison a linksys vpn box did the same thing for a single VPN and 
got nearly 200k with one host, and degraded 'fairly' with others online 
[but unfortunately doesn't have the support for multiple networks over the 
VPN etc. that we need].

Any help, info, or experience greatly appreciated...

-Karl
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: NFS Samba problems

2004-01-20 Thread Zac Brown

Brian,
When you say The error you're seeing, RPCPROG_NFS: Program not registered, 
is nfsd complaining that it can't talk to portmap (which registers RPC services). 
Are we talking the portmapper on the local computer, or the portmapper on the remote 
computer. 

Also for anyone else, I've gotten further with my mount_smbfs problem, but 
still getting errors. It returns:

phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /home
mount_smbfs: vfsload(smbfs): File exists

ANY time I use mount_smbfs, it doesn't even matter if the computer I'm trying to 
connect to has Samba or not. It returns it for all calls to mount_smbfs. I did add 
NETSMB, NETSMBCRYPTO, LIBICONV, LIBMCHAIN, and SMBFS to my kernel config and 
recompiled as well as issuing kldload smbfs so that smbfs was added to my 
/boot/loader.conf. If I've done something I shouldn't have please by all means correct 
me.

Zac Brown



On Tue, 20 Jan 2004 11:13:46 -0500
Brian Minder [EMAIL PROTECTED] wrote:

 On Mon, Jan 19, 2004 at 09:27:33PM -0600, Zac Brown wrote:
  The problems in the earlier post are irrelevant because I figured out I was trying 
  to connect to the wrong IP now but I have a new problem. When I use mount_smbfs I 
  get the following error:
  
  phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /mnt/home
  mount_smbfs: unable to open connection: syserr = Connection refused
  
  And when I try to mount the nfs share I get the following error:
  
  phineas# mount -t nfs 192.168.0.3:/home/zac /mnt/home
  192.168.0.3:/home/zac: nfsd: RPCPROG_NFS: Program not registered
  
  Any help or enlightenment would be greatly appreciated. Thanks in advance.
 
 Make sure you have the following line in your /etc/rc.conf:
 
 nfs_client_enable=YES
 
 This will start portmap when the system boots.  The error you're seeing,
 RPCPROG_NFS: Program not registered, is nfsd complaining that it can't
 talk to portmap (which registers RPC services).
 
 Sorry, but I don't have any experience with SMBFS mounts, so I can't be of
 much help there.
 
 Hope that helps,
 
 -Brian
 
 -- 
 [EMAIL PROTECTED]1024/8C7C4DE9


-- 
Zac Brown
http://rufius.com

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: no more wireless

2004-01-20 Thread Kenzo

No the card doesn't appear in dmesg.
I tried other wireless cards and an old pcmcia modem and nothing.
I just get the prompt card inserted card removed. that's it.
Could my laptop be going bad?
If so, how come it works on the windows side.
the same card works perfectly on windows.

any other ideas?

- Original Message - 
From: Andrew L. Gould [EMAIL PROTECTED]
To: Kenzo [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, January 20, 2004 4:04 PM
Subject: Re: no more wireless


 On Tuesday 20 January 2004 03:49 pm, Kenzo wrote:
  My Pcmcia wireless card used to work on my laptop, now it doesn't.
  I can't think of what I might of done to make that happen.
  The card is a Cisco Aironet 350.
  I'm running FBSD4.9.
  My kernel is confiured with the an option, but nothing happens when I
  take the card in and out.
  I even recompiled it with the generic one and it still doesn't come on.
 
  I dual boot the laptop with winXP.
  when I boot to the XP side, it works fine.
  So it's not a hardward issue.
 
  attached is my kernel conf.
  Thanks.

 Does the card appear in dmesg when its in the slot during bootup? When you
put
 the card in the slot, have you checked dmesg?

 Do you have any other pcmcia cards that you use?  Are they recognized when
you
 put them in?

 Andrew Gould


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: NFS Samba problems

2004-01-20 Thread Zac Brown

Brian,
When you say The error you're seeing, RPCPROG_NFS: Program not registered, 
is nfsd complaining that it can't talk to portmap (which registers RPC services). 
Are we talking the portmapper on the local computer, or the portmapper on the remote 
computer. 

Also for anyone else, I've gotten further with my mount_smbfs problem, but 
still getting errors. It returns:

phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /home
mount_smbfs: vfsload(smbfs): File exists


ANY time I use mount_smbfs, it doesn't even matter if the computer I'm trying to 
connect to has Samba or not. It returns it for all calls to mount_smbfs. I did add 
NETSMB, NETSMBCRYPTO, LIBICONV, LIBMCHAIN, and SMBFS to my kernel config and 
recompiled as well as issuing kldload smbfs so that smbfs was added to my 
/boot/loader.conf. If I've done something I shouldn't have please by all means correct 
me.

BTW: My rc.conf contains the following entries in that order for reference:

nfs_client_enable=YES
nfs_client_flags=
mountd_enable=YES
rpcbind_enable=YES
portmap_enable=YES

Zac Brown



On Tue, 20 Jan 2004 11:13:46 -0500
Brian Minder [EMAIL PROTECTED] wrote:

 On Mon, Jan 19, 2004 at 09:27:33PM -0600, Zac Brown wrote:
  The problems in the earlier post are irrelevant because I figured out I was trying 
  to connect to the wrong IP now but I have a new problem. When I use mount_smbfs I 
  get the following error:
  
  phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /mnt/home
  mount_smbfs: unable to open connection: syserr = Connection refused
  
  And when I try to mount the nfs share I get the following error:
  
  phineas# mount -t nfs 192.168.0.3:/home/zac /mnt/home
  192.168.0.3:/home/zac: nfsd: RPCPROG_NFS: Program not registered
  
  Any help or enlightenment would be greatly appreciated. Thanks in advance.
 
 Make sure you have the following line in your /etc/rc.conf:
 
 nfs_client_enable=YES
 
 This will start portmap when the system boots.  The error you're seeing,
 RPCPROG_NFS: Program not registered, is nfsd complaining that it can't
 talk to portmap (which registers RPC services).
 
 Sorry, but I don't have any experience with SMBFS mounts, so I can't be of
 much help there.
 
 Hope that helps,
 
 -Brian
 
 -- 
 [EMAIL PROTECTED]1024/8C7C4DE9


-- 
Zac Brown
http://rufius.com

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: no more wireless

On Tuesday 20 January 2004 04:18 pm, Kenzo wrote:
 No the card doesn't appear in dmesg.
 I tried other wireless cards and an old pcmcia modem and nothing.
 I just get the prompt card inserted card removed. that's it.
 Could my laptop be going bad?
 If so, how come it works on the windows side.
 the same card works perfectly on windows.

 any other ideas?

Is it possible that your pcmcia configuration got changed somehow?

The whole pcmcia thing is a magical black box to me.  Hopefully someone more 
knowledgeable will chime in soon.  ;-)

Best of luck,

Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ideas for an old BSD laptop?

2004-01-20 Thread Jonathon McKitrick


Hi all,

I haven't used my infamous Toshiba Satellite with FreeBSD 4.8 very much
since I got my desktop system with a flatscreen.  I'm trying to think of
something interesting to do with it now.  I don't really need a separate
firewall, and it doesn't make sense to use it as a fileserver.  With a ppp
connection, it couldn't easily be a webserver either.

Any ideas on something interesting to use it for?  Maybe some kind of
learning experience?

NOTE: Please CC me, as I am not currently subscribed.  Thanks.

jm
-- 
My other computer is your windows box.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Web Editing?

2004-01-20 Thread Greg 'groggy' Lehey

On Wednesday, 21 January 2004 at  2:39:58 +0800, Dinesh Nair wrote:

 On Tue, 20 Jan 2004, Greg 'groggy' Lehey wrote:

 That's your call.  A number of us have good reasons, and that's why many
 of us use bollox.

 i'm presuming this is an editor of sorts ? :)

It appears to be a combination of vi and Emacs.

Greg
--
When replying to this message, please copy the original recipients.
If you don't, I may ignore the reply or reply to the original recipients.
For more information, see http://www.lemis.com/questions.html
See complete headers for address and phone numbers.


pgp0.pgp
Description: PGP signature

Re: ideas for an old BSD laptop?

2004-01-20 Thread Didier Wiroth

Perhaps you could use it as a thin terminal client with vnc or even windows terminal 
client (http://www.rdesktop.org/).


 Messages d´origine 
De: Jonathon McKitrick [EMAIL PROTECTED]
Date: mardi, janvier 20, 2004 11:36 pm
Objet: ideas for an old BSD laptop?

 
 Hi all,
 
 I haven't used my infamous Toshiba Satellite with FreeBSD 4.8 very 
 muchsince I got my desktop system with a flatscreen.  I'm trying 
 to think of
 something interesting to do with it now.  I don't really need a 
 separatefirewall, and it doesn't make sense to use it as a 
 fileserver.  With a ppp
 connection, it couldn't easily be a webserver either.
 
 Any ideas on something interesting to use it for?  Maybe some kind of
 learning experience?
 
 NOTE: Please CC me, as I am not currently subscribed.  Thanks.
 
 jm
 -- 
 My other computer is your windows box.
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-
 [EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: no more wireless

2004-01-20 Thread Kenzo

- Original Message - 
From: Andrew L. Gould [EMAIL PROTECTED]
To: Kenzo [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, January 20, 2004 4:29 PM
Subject: Re: no more wireless

 Is it possible that your pcmcia configuration got changed somehow?

I don't know, I don't see how, unless when I made world or something.
thanks.

 The whole pcmcia thing is a magical black box to me.  Hopefully someone
more
 knowledgeable will chime in soon.  ;-)

 Best of luck,

 Andrew Gould

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

vpn options advice

2004-01-20 Thread Jeanne

Hi,

Management requested that I set up a vpn tunnel for themselves and developers to do 
some work from home on their Win2k machines. So, I set up a bsd vpn server using mpd 
which worked fine from my Win2k machine at home - on a public IP. However, as it turns 
out, they all have home networks running NAT using your typical compusa home routers, 
and so my vpn tunnel has been deemed unacceptable.

Anyone have any thoughts or options I could present? A hardware router that they could 
use at home that might work with a bsd vpn server on the other end? Unfortunately, 
installing bsd gateways in their homes just isn't an option. Nor is just telling them 
to plug directly into their cable modem, at least not without much tact.

Networking isn't my strong suit, so thanks in advance for your time and patience.

Cheers,

Jeanne

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: no more wireless

On Tue, 2004-01-20 at 15:56, Kenzo wrote:
 - Original Message - 
 From: Andrew L. Gould [EMAIL PROTECTED]
 To: Kenzo [EMAIL PROTECTED]; [EMAIL PROTECTED]
 Sent: Tuesday, January 20, 2004 4:29 PM
 Subject: Re: no more wireless

  Is it possible that your pcmcia configuration got changed somehow?

 I don't know, I don't see how, unless when I made world or something.
 thanks.

What are you running, 4.9-RELEASE, 4.9-STABLE, 4.9-CURRENT?

James

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ideas for an old BSD laptop?

2004-01-20 Thread Tom Parquette

Jonathon McKitrick wrote:
Hi all,

I haven't used my infamous Toshiba Satellite with FreeBSD 4.8 very much
since I got my desktop system with a flatscreen.  I'm trying to think of
something interesting to do with it now.  I don't really need a separate
firewall, and it doesn't make sense to use it as a fileserver.  With a ppp
connection, it couldn't easily be a webserver either.
Any ideas on something interesting to use it for?  Maybe some kind of
learning experience?
NOTE: Please CC me, as I am not currently subscribed.  Thanks.

jm
Actually,
I'm in a similar situation but because of laptop memory.  (I only have 
16MB RAM available.)

I was planning to use it to play with kerberus 5 as the KDC.

Since it is just a little home network, I'm not worried about physical 
security.  ;-)  e.g. Someone walking away with my kerberus box.
Cheers...

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ideas for an old BSD laptop?

2004-01-20 Thread Andrew Hall

[EMAIL PROTECTED], Lophtcrack, [EMAIL PROTECTED] or any of the other distributed
computing projects.

Drew

On Tue, 2004-01-20 at 17:55, Didier Wiroth wrote:
 Perhaps you could use it as a thin terminal client with vnc or even windows terminal 
 client (http://www.rdesktop.org/).
 
 
  Messages d´origine 
 De: Jonathon McKitrick [EMAIL PROTECTED]
 Date: mardi, janvier 20, 2004 11:36 pm
 Objet: ideas for an old BSD laptop?
 
  
  Hi all,
  
  I haven't used my infamous Toshiba Satellite with FreeBSD 4.8 very 
  muchsince I got my desktop system with a flatscreen.  I'm trying 
  to think of
  something interesting to do with it now.  I don't really need a 
  separatefirewall, and it doesn't make sense to use it as a 
  fileserver.  With a ppp
  connection, it couldn't easily be a webserver either.
  
  Any ideas on something interesting to use it for?  Maybe some kind of
  learning experience?
  
  NOTE: Please CC me, as I am not currently subscribed.  Thanks.
  
  jm
  -- 
  My other computer is your windows box.
  ___
  [EMAIL PROTECTED] mailing list
  http://lists.freebsd.org/mailman/listinfo/freebsd-questions
  To unsubscribe, send any mail to freebsd-questions-
  [EMAIL PROTECTED]
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ideas for an old BSD laptop?

2004-01-20 Thread Jonathon McKitrick

On Tue, Jan 20, 2004 at 06:07:58PM -0500, Andrew Hall wrote:
: [EMAIL PROTECTED], Lophtcrack, [EMAIL PROTECTED] or any of the other distributed
: computing projects.

Do any of these have graphical displays?  :-)

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: NFS Samba problems

2004-01-20 Thread Zac Brown

Problem resolved, IP conflict :) Thanks for everyone's suggestions.


On Tue, 20 Jan 2004 16:10:02 -0600
Zac Brown [EMAIL PROTECTED] wrote:

 Brian,
   When you say The error you're seeing, RPCPROG_NFS: Program not registered, 
 is nfsd complaining that it can't talk to portmap (which registers RPC services). 
 Are we talking the portmapper on the local computer, or the portmapper on the remote 
 computer. 
 
   Also for anyone else, I've gotten further with my mount_smbfs problem, but 
 still getting errors. It returns:
 
   phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /home
   mount_smbfs: vfsload(smbfs): File exists
 
 ANY time I use mount_smbfs, it doesn't even matter if the computer I'm trying to 
 connect to has Samba or not. It returns it for all calls to mount_smbfs. I did add 
 NETSMB, NETSMBCRYPTO, LIBICONV, LIBMCHAIN, and SMBFS to my kernel config 
 and recompiled as well as issuing kldload smbfs so that smbfs was added to my 
 /boot/loader.conf. If I've done something I shouldn't have please by all means 
 correct me.
 
 Zac Brown
 
 
 
 On Tue, 20 Jan 2004 11:13:46 -0500
 Brian Minder [EMAIL PROTECTED] wrote:
 
  On Mon, Jan 19, 2004 at 09:27:33PM -0600, Zac Brown wrote:
   The problems in the earlier post are irrelevant because I figured out I was 
   trying to connect to the wrong IP now but I have a new problem. When I use 
   mount_smbfs I get the following error:
   
   phineas# mount_smbfs -I 192.168.0.3 //[EMAIL PROTECTED]/homes /mnt/home
   mount_smbfs: unable to open connection: syserr = Connection refused
   
   And when I try to mount the nfs share I get the following error:
   
   phineas# mount -t nfs 192.168.0.3:/home/zac /mnt/home
   192.168.0.3:/home/zac: nfsd: RPCPROG_NFS: Program not registered
   
   Any help or enlightenment would be greatly appreciated. Thanks in advance.
  
  Make sure you have the following line in your /etc/rc.conf:
  
  nfs_client_enable=YES
  
  This will start portmap when the system boots.  The error you're seeing,
  RPCPROG_NFS: Program not registered, is nfsd complaining that it can't
  talk to portmap (which registers RPC services).
  
  Sorry, but I don't have any experience with SMBFS mounts, so I can't be of
  much help there.
  
  Hope that helps,
  
  -Brian
  
  -- 
  [EMAIL PROTECTED]1024/8C7C4DE9
 
 
 -- 
 Zac Brown
 http://rufius.com
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 
 


-- 
Zac Brown
http://rufius.com

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

If you would like to comment on the death penalty go to www.newsc hat.org

2004-01-20 Thread newschat

NEWSCHAT.ORG
Sponsored By HWH PR/ New Media

Every week or so we have a new topic. We need your opinion on the
following..

A federal judge in Boston declared, in a death penalty case, that there was
mounting evidence innocent people were being executed. In his decision, he
noted that there were exonerations of over 100 people on death row based on
DNA and other evidence.  But he refused to declare the death penalty
unconstitutional. 

Nevertheless, the Massachusetts governor, a conservative politician, is
considering suspending executions and urging the legislature to rewrite
capital criminal law to avoid, insofar as possible, mistaken convictions and
executions.

The previous Illinois governor commuted many death penalty convicts to life
imprisonment without parole just before his term ended. He cited the much
exoneration of capital crime convicts as reason for the commutations.

Project Innocence, based at Cardozo Law School in New York has won the
exoneration of many persons convicted of capital murder and sentenced to
death. Their use of DNA evidence was groundbreaking.

On the other hand, the Attorney General of the United States, John Ashcroft,
has directed his regional federal prosecutors to seek the death penalty in
many more murder cases. Mr. Ashcroft has argued that capital punishment is
justified in numerous egregious murder cases. However, in the last 20
federal capital cases, federal juries rendered acquittals or life
imprisonments in 19 cases. 

A federal jury recently refused to mete out the death penalty to one of the
Washington area snipers and elected to send him to prison for life without
parole instead. Since juries are increasingly rejecting the capital
punishment in the penalty phase of trials, the Justice Department may
actually be engaging in a counterproductive exercise.

The Supreme Court of the United States has held that courts may take into
account evolving standards of decency in deciding whether punishments
violate the 8th Amendment prohibition on cruel and unusual punishment.

And now, comes the question of the death penalty for Saddam Hussein and his
cohorts. 

Newschat.org would like your opinion. Simply log onto www.newschat.org,
register and give us your comments.

Free Membership
Click here to join
http://www.newschat.org
For More Info: [EMAIL PROTECTED]


To Unsubscribe to this Email Please Click Below
http://www.newschat.org/newschat/emailAddform.cfm


HWHPR Enterprises 2004






___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: BIND in chroot jail

On Tue, Jan 20, 2004 at 05:04:16PM -0500, Robert Fitzpatrick wrote:
 I see the bind user is defined as BIND Sandbox, does this mean the
 default port install of bind9 sets bind up in a chroot jail?

No -- all that means is that named(8) runs as a non-privileged user by
default.

However, running Bind9 in a chroot jail is really quite easy.  First
of all, with Bind9, there's no need to install the software under the
chroot path.  Just install the Bind9 port as normal.

Add the following (mutatis mutandem) to your /etc/rc.conf to make
named(8) from Bind9 start up and chroot itself:

named_enable=YES
named_flags=-c /etc/namedb/named.conf -u bind -t /var/named
named_program=/usr/local/sbin/named

That chroots named(8) under /var/named -- so the named.conf file
referred to is actually /var/named/etc/named/named.conf -- you'll also
want a named.root file in /var/named/etc/namedb which you can copy
from /etc/namedb.

Now set up the chroot area.  You need to create directories:

drwxr-xr-xroot wheel   /var/named
drwxr-xr-xroot wheel   /var/named/var
drwxr-xr-xbind bind/var/named/var/run
drwxr-xr-xroot wheel   /var/named/etc
drwxr-xr-xroot wheel   /var/named/etc/namedb
drwxr-xr-xroot wheel   /var/named/etc/namedb/p [Optional]
drwxr-xr-xbind bind/var/named/etc/namedb/s [Optional]
drwxr-xr-xbind bind/var/named/etc/namedb/dump  [Optional]
drwxr-xr-xroot wheel   /var/named/dev

The directories I've marked optional are set up in my named.conf as
the locations for: 'p' -- zone files which this is the master for, 's'
-- zone files this server is a secondary for and 'dump' -- the default
location to dump named cache and statistics.

Copy the configuration files previously mentioned into place in
/var/named/etc/namedb.

Additionally you will need to:

cp /etc/localtime /var/named/etc/localtime

and you will need to set up the following character devices:

-r-xr-xr-x  1 root  wheel 44235 Sep 25  2002 MAKEDEV*   [FBSD 4.x only]
crw-rw-rw-  1 root  wheel2,   2 Sep 25  2002 null
crw-r--r--  1 root  wheel2,   3 Sep 25  2002 random
crw-rw-rw-  1 root  wheel   22,   2 Sep 25  2002 stderr
crw-rw-rw-  1 root  wheel   22,   0 Sep 25  2002 stdin
crw-rw-rw-  1 root  wheel   22,   1 Sep 25  2002 stdout
crw-rw-rw-  1 root  wheel1,   0 Sep 25  2002 tty
crw-r--r--  1 root  wheel2,   4 Sep 25  2002 urandom
crw-rw-rw-  1 root  wheel2,  12 Sep 25  2002 zero

Use MAKEDEV to do that under FreeBSD 4.x (Copy the original from
/dev/MAKEDEV).  Under FreeBSD 5.x, set these devices up by editing
/etc/devd.conf -- see devd.conf(5).

Finally, if you want to log named(8) events via syslogd(8), you will
need to add to /etc/rc.conf:

syslogd_flags=-ss -l /var/named/var/run/log

and that is really just about it, bar the usual chores of editing
named.conf(5) and maintaining the various DNS zone data files.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

Re: Netgear WG511 (no driver attached)

2004-01-20 Thread Andrew Hall

Andrew,

Thanks for the suggestion.  I have recompiled my kernel with 

device  ath
device  ath_hal

and rebooted, and got the same behavior.  I will attempt to cvsup and
upgrade just for kicks.  Anyone have any other suggestions?

TIA,

Drew

On Tue, 2004-01-20 at 16:54, Andrew L. Gould wrote:
 On Tuesday 20 January 2004 03:35 pm, Andrew Hall wrote:
  Greetings,
 
  Please forgive the cross post (sent to freebsd-mobile also), but I have
  not received a reply from -mobile yet.
 
  I have Netgear WG511 running on 5.2-CURRENT.  If I boot with the card or
  insert it after boot I get the following output:
 
  cardbus0: network at device 0.0 (no driver attached)
  cbb0: CardBus card activation failed
 
  I have the wireless devices wlan, an, awi, wi, cbb, pccard and cardbus
  all compiled directly in my kernel. Can someone pleae point me to some
  documentation on how to define a driver for this card to use and to
  configure wireless networking in FreeBSD?
 
  Thanks in advance,
 
  Andrew
 
 I think your card uses the ath driver, which is not in your list of compiled 
 devices.  See:
 
 http://www.freebsd.org/cgi/man.cgi?query=athsektion=4manpath=FreeBSD
 +5.2-RELEASE
 
 Best of luck,
 
 Andrew Gould
 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

[5.2] ProFTPD