RE: WARNINGs about ipsec
post dmesg please, we aren't telepathic. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of snnn Sent: Monday, February 13, 2006 8:18 PM To: freebsd-questions@freebsd.org Subject: WARNINGs about ipsec WARNING: debug.mpsafenet forced to 0 as ipsec requires Giant WARNING: MPSAFE network stack disabled, expect reduced performance. what does them meat? how to fix? thanks. -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/258 - Release Date: 2/13/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Help with strange web server problem
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Charles Swiger Sent: Monday, February 13, 2006 11:41 AM To: Jerry Bell Cc: freebsd-questions@freebsd.org Subject: Re: Help with strange web server problem On Feb 13, 2006, at 7:58 AM, Jerry Bell wrote: It's hit or miss, but the first time someone visits the web site, they get a server not found page. On hitting refresh, they get the page - no problems. If I wait a while and try again, I get the same problem. Path MTU problem? That would be my vote also. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Interested in selling retail freeBSD sets
The market would pay a lot more if some of these wanna be distributors would actually offer SUPPORT along with the FreeBSD CD. That's what we really want to see happening. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Charles Swiger Sent: Monday, February 13, 2006 10:00 AM To: Robert Slade Cc: René Luckow - Cortex Systems; freebsd-questions@freebsd.org Subject: Re: Interested in selling retail freeBSD sets On Feb 13, 2006, at 12:48 PM, Robert Slade wrote: As I understand it, you are free to redistribute it provided that you do not claim to have produced it nor charge for it. You can charge for producing the CDs though. You are welcome to charge as much for FreeBSD as you like, actually. Of course, you can't stop someone from downloading FreeBSD themselves for free (or for the cost of bandwidth, anyway), so in effect, people charge a reasonable amount for putting together a nice CD/jewel case because that's what the market is willing to pay for -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/258 - Release Date: 2/13/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: horde on freebsd6
Setting up Horde/IMP is what you would term a very 'non trivial' exercise. It and it's series of ports that it's dependent on needs to be laid into the system in a particular way or problems like this happen. And if you want to completely take advantage of all IMP's features such as displaying word and excel documents that are e-mailed, spell checking, and such, you must install a lot more ports than what are listed as dependencies. The IMP port author was apparently shooting for a very stripped-down IMP installation I'm afraid. However once you do get it in, and running, it kicks the crap out of all other webmail interfaces out there. I have a document I can send to you that are my notes from the last Horde/IMP install I did on 6.0, just e-mail me off list. I must warn you though that you probably will have to scratch your entire installation and start over. horde/IMP is not a trivial little php app. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Dave Sent: Monday, February 13, 2006 2:10 PM To: freebsd-questions@freebsd.org Subject: horde on freebsd6 Hello, I've got php4 and apache installed on freebsd6 with several php4 extensions. Now i want to install horde and imp to test them out while atempting to decide if horde would be suitable as a webmail solution. I try the install via ports, but pear always stops saying the port requires the cli or cgi version of php, but i have a conflicting port installed. I've already got php4 installed, does anyone have a workaround for this? Thanks. Dave. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/258 - Release Date: 2/13/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
I'm sure glad that this message didn't pass through my work mailserver so that it's didn't see it, since my work e-mail inbox has 16383 messages in it (the limit that Outlook can display in IMAP mode) and is 412 megabytes in size, and performance is perfectly fine both with Outlook and Horde/IMP. I wouldn't want my mailserver reading it and thinking that it's OK to slack off. And yes I know I need to delete some messages, speak to the hand if your going to make that crack. This is imap-uw/sendmail. Perhaps you might consider that since you haven't run imap-uw in a while that your no longer qualified to make claims about it? Or perhaps you never had it setup properly? Or perhaps your hardware was slow? Nothing is wrong with Postfix / Courier-IMAP but nothing is wrong either with sendmail / uw-imap. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Monday, February 13, 2006 1:53 PM To: Kirk Davis Cc: Greg Groth; freebsd-questions@freebsd.org Subject: Re: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Hey Greg, Sorry if this completely throws a monkey wrench into your plans, but I feel inspired to interject since I once had a nearly identical setup as you... I switched to Postfix and Courier-IMAP since I found that performance of large mailboxes in IMAP-UW was pretty poor, especially over web- based email where messages are not cached. I switched to Postfix because it is so much more simple and straight forward than Sendmail. You should have no problems switching to Postfix, since it is basically Sendmail with a nicer wrapper/configuration. Just food for thought. On Feb 13, 2006, at 4:25 PM, Kirk Davis wrote: Hi Greg, I'm trying to set up a FreeBSD 6.0 box as a mail server, and while everything seems to be working OK for the most part, I have run into two issues that I cannot resolve (I'm new to BSD, please bear with me). Install went as follows: Installed via FTP last night along with src - Sources for everything, IMAP-UW was compiled via ports with WITH_SSL_AND_PLAINTEXT enabled (same for cclient), OpenSSL, Cyrus-SASL2 Cyrus-SASL2-saslauthd were compiled via ports with no flags. Sendmail was installed with the base install and recompiled (after SASL2 was up and running) with the following options added to make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL I followed the instructions I found at http://www.bsdconspiracy.net/howto/sendmail.html, and had no problems with the install except for Sendmail. After recompiling sendmail, I added the following lines to the mail.server.mc file: define(`confAUTH_MECHANISMS',`PLAIN LOGIN')dnl TRUST_AUTH_MECH(`PLAIN LOGIN')dnl define(`CERT_DIR', `/etc/mail/certs')dnl define(`confCACERT_PATH', `CERT_DIR')dnl define(`confCACERT', `CERT_DIR/mycert.pem')dnl define(`confSERVER_CERT', `CERT_DIR/mycert.pem')dnl define(`confSERVER_KEY', `CERT_DIR/mykey.pem')dnl define(`confCLIENT_CERT', `CERT_DIR/mycert.pem')dnl define(`confCLIENT_KEY', `CERT_DIR/mykey.pem')dnl DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl This is your problem. The above line sets up the Sendmail daemon to listen on port 25 but the standard mc file distributed with FreeBSD also sets up a DAEMON port (it's at the end of the MC file). Here is what my DAEMON_OPTIONS lines look like. These should be the only DAEMON_OPTIONS lines in the mc file. dnl Enable for both IPv4 and IPv6 (optional) DAEMON_OPTIONS(`Name=IPv4, Family=inet') DAEMON_OPTIONS(`Name=IPv6, Family=inet6, Modifiers=O') DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl After running (in /etc/mail) make clean, make cf, make install, make restart, SMTP no longer works, and I find the following in maillog and messages Feb 12 20:25:55 mail sm-mta[1213]: daemon IPv4: problem creating SMTP socket Feb 12 20:26:00 mail sm-mta[1213]: NOQUEUE: SYSERR(root): opendaemonsocket: daemon IPv4: cannot bind: Address already in use When I try and stop sendmail, I get a message that the pid for Sendmail cannot be found. I end up killing the missing Sendmail daemon using KSysGuard If I remove this line - DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl from the mail.server.mc file, make cf, make install, make restart, sendmail starts normally. When trying to access from another machine on my network, I can only connect on port 25 without a secure connection (I'm using Thunderbird for this), although SMTP-AUTH is working correctly. Have you tried to setup your mail client to connect to port 465? This is the smtps (SMTP SSL) port. Any ideas on what I might need to do to get SSL / SMTP-AUTH working on SMTP? I took a look at the instructions in the handbook,
Re: IntelSRCS16 SATA RAID Controller
Thanks Ted.. I would like to buy entry server board form Intel , IntelSE3720EP2. regards reza Please supply the motherboard model number you are looking at. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Beastie Sent: Monday, February 13, 2006 3:51 AM To: freebsd-questions@freebsd.org Subject: IntelSRCS16 SATA RAID Controller Dear List.. Is there any compatibility issue regarding IntelSRCS16 SATA RAID Controller with FreeBSD-6.0 Stable ? I'm planning to buy one, but first, ask for experience user in this list for it's compatibility and performance. Please enlight me. regards reza ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/257 - Release Date: 2/10/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: SMP ATA woes on 6.0-RELEASE
Many thanks for the positive replies, the suggestions to cvsup to today were spot-on: the ata modules now load fine from loader.conf on the MP machine. To answer the troll: it's fast, free, proven, and they were $50 on eBay. Cheers Steve -Original Message- From: Mike Tancsa [mailto:[EMAIL PROTECTED] Sent: 14 February 2006 00:51 To: Steve Coles Cc: freebsd-questions@freebsd.org Subject: Re: SMP ATA woes on 6.0-RELEASE On Mon, 13 Feb 2006 13:28:59 -, in sentex.lists.freebsd.questions you wrote: Q: Is this a known bug ? Q: If it is, is it fixed in -STABLE ? Not sure on either of the above specifically, but quite a bit of work has gone into IRQ routing and the ata subsystem since 6.0R. Your problem sounds somewhat similar to what I was seeing on a Dell 4way box back in August which was fixed in Sept http://groups.google.ca/group/muc.lists.freebsd.current/tree/browse_frm/thre ad/54cf58899efae7e1/fe550105a6e0276a?rnum=1hl=enq=freebsd+tancsa+pci_done =%2Fgroup%2Fmuc.lists.freebsd.current%2Fbrowse_frm%2Fthread%2F54cf58899efae7 e1%2F49d7837901cb3e5d%3Flnk%3Dst%26q%3Dfreebsd+tancsa+pci%26rnum%3D96%26hl%3 Den%26#doc_fe550105a6e0276a regardless, there are a lot of bugfixes since 6.0 Q: If so - when is a good cvsup date that gives me a fixed ata driver with a stable stable To today is quite stable. The FreeBSD folks are preparing for a release right now and what is in the tree works very well. ---Mike Mike Tancsa, Sentex communications http://www.sentex.net Providing Internet Access since 1994 [EMAIL PROTECTED], (http://www.tancsa.com) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IntelSRCS16 SATA RAID Controller
I think you mean the SE7320EP2? That is not an entry server board. The entry server board is the E72xx-based boards, the E7320, E7520 and E7525 are the 'regular' non-entry level server motherboards. According to the following: http://www.intel.com/design/servers/RAID/SRCS16/index.htm the SRCS16 raid controller is comprised of 3 SiI3112A SATA controllers. The SiI3112 is listed in the FreeBSD 6.0 ata manpage as being a supported controller. The Silicon Image Medley metadata format is listed in the FreeBSD 6.0 ataraid manpage as being readable. I would assume the SiL3112A uses this metadata format. I think also both ethernet controllers on this motherboard are supported. I can tell you from experience that the Intel SE7210TP1-E motherboard works, but it uses the Intel Pro/1000 ethernet chip and the Intel 6300 ESB sata raid controller. at worst you might have to e-mail Soren if FreeBSD 6.0 does not recognize your raid array, but it would be a very minor change in the code to add it's identification strings to the driver, since all the heavy lifting code is already there. Unfortunately, SATA raid is pretty bleeding edge still, even Windows XP users have had problems with drivers for it working right. You won't have proof positive until you boot it. That is why it's important to buy motherboards from a retailer who will take them back for exchange if needed. Ted -Original Message- From: Beastie [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 14, 2006 12:11 AM To: Ted Mittelstaedt Cc: freebsd-questions@freebsd.org Subject: Re: IntelSRCS16 SATA RAID Controller Thanks Ted.. I would like to buy entry server board form Intel , IntelSE3720EP2. regards reza Please supply the motherboard model number you are looking at. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Beastie Sent: Monday, February 13, 2006 3:51 AM To: freebsd-questions@freebsd.org Subject: IntelSRCS16 SATA RAID Controller Dear List.. Is there any compatibility issue regarding IntelSRCS16 SATA RAID Controller with FreeBSD-6.0 Stable ? I'm planning to buy one, but first, ask for experience user in this list for it's compatibility and performance. Please enlight me. regards reza ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/257 - Release Date: 2/10/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 267.15.6/258 - Release Date: 2/13/2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Unable to install libwww (Perl) on FBSD 5.4
Hi all, I've not no problems installing most of the applications on FBSD 5.4. But I'm stuck with this one: Some background: 1. Just cvsupped 5 min ago 2. 5.4 OS 3. Using Perl 5.8.6 I'm trying to install ports/www/p5-libwww/, but in all the dependencies that it tries to install, it always die on the same part of the error: perl: warning: Setting locale failed. perl: warning: Please check that your locale settings: LC_ALL = (unset), LANG = en_EN.ISO8859-1 are supported and installed on your system. perl: warning: Falling back to the standard locale (C). === Building for p5-Net-1.19,1 0: not found *** Error code 127 I've had this for p5-URI, p5-Net, p5-Compress-Zlib. In the end, I installed the package instead: pkg_add -r libwww Running a test script that includes LWP::UserAgent, I get this warning message; perl: warning: Setting locale failed. perl: warning: Please check that your locale settings: LC_ALL = (unset), LANG = en_EN.ISO8859-1 are supported and installed on your system. perl: warning: Falling back to the standard locale (C). Can anyone tell me how to get around this error/ warning? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
USB Mass Storage problem after upgrade...
I upgraded last night from 6.0-RELEASE p2 to 6.0-RELEASE p4, and I'm now having difficulty mounting my cheap USB mass storage MP3 player. When I plug it in, the device is created properly, but when I try to mount it with mount -t msdos /dev/da0s1 ~/mnt I get mount_msdosfs: /dev/da0s1: Invalid argument. I've umass.ko loaded as a module. The kernel is custom, but consists of GENERIC minus the uscanner device. My SD Card reader still mounts fine. Here's a tail of /var/log/messages: Feb 14 09:35:05 desktop kernel: umass0: detached Feb 14 09:45:58 desktop kernel: umass0: USB MF USB PRODUCT, rev 1.10/10.01, addr 2 Feb 14 09:45:58 desktop kernel: da0 at umass-sim0 bus 0 target 0 lun 0 Feb 14 09:45:58 desktop kernel: da0: SigmaTel MSCN 0100 Removable Direct Access SCSI-4 device Feb 14 09:45:58 desktop kernel: da0: 1.000MB/s transfers Feb 14 09:45:58 desktop kernel: da0: 241MB (493568 512 byte sectors: 64H 32S/T 241C) Feb 14 09:46:07 desktop kernel: Next free cluster in FSInfo (122912) exceeds maxcluster (122896) Can anyone offer me advice on how to resolve this? Peter Harrison -- You have a strong appeal for members of the opposite sex. Oops - this is what you get for piping fortune into your sig, don't take offence! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: More tomcat wierdness
sh -x /usr/local/etc/rc.d/tomcat55.sh stop may shed some light. Ceri On Monday 13 February 2006 15:50, Ceri Davies wrote: sh -x /usr/local/etc/rc.d/tomcat55.sh stop may shed some light. Thanks for the -x tip... unfortunately the output is very long, and I don't have time to study the rc scripts right now as my company's servers are randomly exploding. Ashley ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Help with strange web server problem
What's the best way to go about verifying and fixing that? I have several other BSD servers on the same subnet in that colo that aren't having the problem. Many thanks for your help! Jerry Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Charles Swiger Sent: Monday, February 13, 2006 11:41 AM To: Jerry Bell Cc: freebsd-questions@freebsd.org Subject: Re: Help with strange web server problem On Feb 13, 2006, at 7:58 AM, Jerry Bell wrote: It's hit or miss, but the first time someone visits the web site, they get a server not found page. On hitting refresh, they get the page - no problems. If I wait a while and try again, I get the same problem. Path MTU problem? That would be my vote also. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Help with strange web server problem
The Path MTU problem was fixed 2 years ago. You are beating a dead horse going down that path. My money is on your firewall rules. Debugging problems like this is a process of elimination. First thing is to remove your ipfw firewall from the system. If you complied ipfw into your kernel then recompile to remove it totally. Then test to see if problem is still happening. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jerry Bell Sent: Tuesday, February 14, 2006 6:04 AM To: Ted Mittelstaedt Cc: freebsd-questions@freebsd.org Subject: Re: Help with strange web server problem What's the best way to go about verifying and fixing that? I have several other BSD servers on the same subnet in that colo that aren't having the problem. Many thanks for your help! Jerry Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Charles Swiger Sent: Monday, February 13, 2006 11:41 AM To: Jerry Bell Cc: freebsd-questions@freebsd.org Subject: Re: Help with strange web server problem On Feb 13, 2006, at 7:58 AM, Jerry Bell wrote: It's hit or miss, but the first time someone visits the web site, they get a server not found page. On hitting refresh, they get the page - no problems. If I wait a while and try again, I get the same problem. Path MTU problem? That would be my vote also. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Cant login to FTP server.
Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving directory listing... Command:PWD Response: 257 /usr/home/alive is current directory. Command:TYPE A Response: 200 Type set to A. Command:PASV Response: 227 Entering Passive Mode (87,49,144,133,237,45) Command:LIST Error: Transfer channel can't be opened. Reason: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. Error: Could not retrieve directory listing Command:TYPE A ___SNIP___ /etc/ipf.rules: ___SNIP___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 192.0.2.0/24 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port 3 5 flags S keep state #PASV FTP pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___SNIP___ /etc/ipnat.rules ___SNIP___ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port ftp ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 ___SNIP___ Might the problem be anywhere else besides my ipf and ipnat configs? Could it be the remote client that's the problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Cant login to FTP server.
Daniel You did not say where you were running ftp from. like from LAN box to gateway server or from gateway box to public internet remote ftp site or from public internet remote user to your gateway ftp server. I am guessing its from gateway box to public internet remote ftp site. Your nat rules need to look like this example. You are missing the second rule. map dc0 10.0.10.0/29 - 0/32 proxy port 21 ftp/tcp map dc0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map dc0 10.0.10.0/29 - 0/32 The first rule handles all FTP traffic for the private LAN. The second rule handles all FTP traffic from the gateway. The third rule handles all non-FTP traffic for the private LAN. All the non-FTP gateway traffic is using the public IP address by default so there is no ipnat rule needed. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 7:42 AM To: [EMAIL PROTECTED] Subject: Cant login to FTP server. Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving directory listing... Command:PWD Response: 257 /usr/home/alive is current directory. Command:TYPE A Response: 200 Type set to A. Command:PASV Response: 227 Entering Passive Mode (87,49,144,133,237,45) Command:LIST Error: Transfer channel can't be opened. Reason: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. Error: Could not retrieve directory listing Command:TYPE A ___SNIP___ /etc/ipf.rules: ___SNIP___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 192.0.2.0/24 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port 3 5 flags S keep state #PASV FTP pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___SNIP___ /etc/ipnat.rules ___SNIP___ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port ftp ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 ___SNIP___ Might the problem be anywhere else besides my ipf and ipnat configs? Could it be the remote client that's the problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IP Routing Question
I'm trying to set up the routing table to force requests to certain IP addresses to use a particular ethernet card. I've used the route command in a number of ways, but still can't come up with how to force to use em1 instead of em0, with the right gateway. em0 is aaa.bbb.ccc.207 em1 is aaa.bbb.ccc.200 Both have netmask of 255.255.255.0 em0 goes to the main port, gateway aaa.bbb.ccc.195. em1 goes to a switch, which is aaa.bbb.ccc.196, the gateway to other ip's on the switch. What I want to end up with is: aaa.bbb.ccc.196link#2em1 aaa.bbb.ccc.209link#2em1 I've tried lots of combinations, using the -ifp flag to force em1, but the only way I can get the gateway to say link#2 is to ping the ip first, whereas it gets put in the table even though it's not found, and then doing a route change. I need some way to put this in rc.local so that it's set up when booted. Any ideas? Let me know if more info is needed. TIA, Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Setting Up A Home Network ...
Is it possible to set up internet connection, between a XP Pro box, and a FreeBSD-current box, without the use of a router, I have got two ethernet cards on the box running XP Pro, and one ethernet card on the box running FreeBSD-current, and a cross over cable. Is it theoretically possible ? -- Thanks Regards Kumar ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using dd to Make a Clone of a Drive
Kevin Kinsey wrote: Giorgos Keramidas wrote: On 2006-02-09 14:36, Martin McCormick [EMAIL PROTECTED] wrote: After installing FreeBSD5.4, the ISC dhcp server and ISC bind on a hard drive, I wanted to clone that drive to a second drive so as to generate a second server, using what I had already installed as a template. I used the following command: dd if=/dev/da0 of=/dev/da1 bs=512 It turns out that dd defaults to 512-byte blocks so I didn't really need the bs=512, but I am not sure I haven't made some other type of mistake. The dd command has been running for about 4 hours on a very fast system, with a 1-gig processor, 1 gig of RAM and two 31-GB drives. One would think it should have finished by now, but it is still running. Is this a valid method of copying the entire contents of one drive to another? Thank you. Bah! That's too slow for my taste. I would usually go for a newfs, dump, and restore option. For instance, to create a copy of /usr on a second disk: newfs -U /dev/ad1s1a mount /dev/ad1s1a /mnt dump -0 -a -L /usr | ( cd /mnt ; restore ruvf - ) Copying with dd(1) is not as fast :) Sorry to butt in --- but I'm needing to start cloning too. Looks like a winner to me ... wouldn't this have the added advantage of making same size and geometry (cf. Erik Trulsson, 4 hours ago, this thread) less relevant? As long as the new slice had enough space, geometry shouldn't matter to dump|restore ? Kevin Kinsey Just for the archives: Giorgios' solution is very nice, but needs the -f option and another - to work properly AFAICT, both from experience and from reading dump(8): dump -0 -a -L -f - /usr | (cd /mnt ; restore ruvf - ) If you don't include -f (for file) and - (for stdout), then your command will fail with: DUMP: Cannot open output /dev/sa0 unless you actually have a tape drive, as, of course, any experienced user could have told you would happen, if not when they read the incorrect command line, then when they saw, previously: DUMP: Dumping snapshot of /dev/$somedisk to /dev/sa0 I used the strategy above to clone a working installation of Wine and a rather obscure Win32 program from a 20 GB IDE HDD to an 8GB drive with good success after attempts to re-create a similar installation manually had failed, presumably because something in re: Wine had changed in the interim, though we've been unable to establish this as fact. So, I've adopted dump(8) and restore(8) for disk cloning as a result of this experience. Next step: moving to dump|restore for my home-brew backup routines HTH Someone, Kevin Kinsey -- Heisenberg may have slept here ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Setting Up A Home Network ...
On Tue, 14 Feb 2006 21:48:33 +0800 Kumar [EMAIL PROTECTED] wrote: Is it possible to set up internet connection, between a XP Pro box, and a FreeBSD-current box, without the use of a router, I have got two ethernet cards on the box running XP Pro, and one ethernet card on the box running FreeBSD-current, and a cross over cable. Is it theoretically possible ? if you put 2 nics in the FreeBSD-box with the cross-cable it's possible yes, follow the firewall-instructions : http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html if you want to keep the 2 nics in the ms-windows-machine, i would suggest to ask in a ms-windows-forum/list etc. -- grtjs, albi gpg-key: lynx -dump http://scii.nl/~albi/gpg.asc | gpg --import ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cant login to FTP server.
Hi, the server is connected directly to the wild, and I'm connecting from a remote non-local host. Are you sure that those are ipf rules? They look a lot like ipnat rules. On 2/14/06, fbsd_user [EMAIL PROTECTED] wrote: Daniel You did not say where you were running ftp from. like from LAN box to gateway server or from gateway box to public internet remote ftp site or from public internet remote user to your gateway ftp server. I am guessing its from gateway box to public internet remote ftp site. Your nat rules need to look like this example. You are missing the second rule. map dc0 10.0.10.0/29 - 0/32 proxy port 21 ftp/tcp map dc0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map dc0 10.0.10.0/29 - 0/32 The first rule handles all FTP traffic for the private LAN. The second rule handles all FTP traffic from the gateway. The third rule handles all non-FTP traffic for the private LAN. All the non-FTP gateway traffic is using the public IP address by default so there is no ipnat rule needed. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 7:42 AM To: [EMAIL PROTECTED] Subject: Cant login to FTP server. Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving directory listing... Command:PWD Response: 257 /usr/home/alive is current directory. Command:TYPE A Response: 200 Type set to A. Command:PASV Response: 227 Entering Passive Mode (87,49,144,133,237,45) Command:LIST Error: Transfer channel can't be opened. Reason: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. Error: Could not retrieve directory listing Command:TYPE A ___SNIP___ /etc/ipf.rules: ___SNIP___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 192.0.2.0/24 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port 3 5 flags S keep state #PASV FTP pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___SNIP___ /etc/ipnat.rules ___SNIP___ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port ftp ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 ___SNIP___ Might the problem be anywhere else besides my ipf and ipnat configs? Could it be the remote client that's the problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: video/x-ms-asf-plugin for firefox
Alessandro Buono [EMAIL PROTECTED] writes: Hi did you had an answer on this plug in? I am getting crazy and can find no answer... I don't know about a plugin, but mplayer (and probably other video applications, but that's the first one I checked) claims to be able to play it, so you should be able to set it as an external helper application for firefox. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cant login to FTP server.
I have now changed my ipnat.rules to this: _SNIP_ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port 21 ftp/tcp map rl0 0/0 - 0/32 proxy port 21 ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 _SNIP_ And then I did ipnat -FC -f /etc/ipnat.rules. I still get the same error. On 2/14/06, fbsd_user [EMAIL PROTECTED] wrote: Daniel You did not say where you were running ftp from. like from LAN box to gateway server or from gateway box to public internet remote ftp site or from public internet remote user to your gateway ftp server. I am guessing its from gateway box to public internet remote ftp site. Your nat rules need to look like this example. You are missing the second rule. map dc0 10.0.10.0/29 - 0/32 proxy port 21 ftp/tcp map dc0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map dc0 10.0.10.0/29 - 0/32 The first rule handles all FTP traffic for the private LAN. The second rule handles all FTP traffic from the gateway. The third rule handles all non-FTP traffic for the private LAN. All the non-FTP gateway traffic is using the public IP address by default so there is no ipnat rule needed. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 7:42 AM To: [EMAIL PROTECTED] Subject: Cant login to FTP server. Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving directory listing... Command:PWD Response: 257 /usr/home/alive is current directory. Command:TYPE A Response: 200 Type set to A. Command:PASV Response: 227 Entering Passive Mode (87,49,144,133,237,45) Command:LIST Error: Transfer channel can't be opened. Reason: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. Error: Could not retrieve directory listing Command:TYPE A ___SNIP___ /etc/ipf.rules: ___SNIP___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 192.0.2.0/24 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port 3 5 flags S keep state #PASV FTP pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___SNIP___ /etc/ipnat.rules ___SNIP___ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port ftp ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 ___SNIP___ Might the problem be anywhere else besides my ipf and ipnat configs? Could it be the remote client that's the problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using dd to Make a Clone of a Drive
On 2006-02-14 07:47, Kevin Kinsey [EMAIL PROTECTED] wrote: Kevin Kinsey wrote: Giorgos Keramidas wrote: Bah! That's too slow for my taste. I would usually go for a newfs, dump, and restore option. For instance, to create a copy of /usr on a second disk: newfs -U /dev/ad1s1a mount /dev/ad1s1a /mnt dump -0 -a -L /usr | ( cd /mnt ; restore ruvf - ) Copying with dd(1) is not as fast :) Sorry to butt in --- but I'm needing to start cloning too. Looks like a winner to me ... wouldn't this have the added advantage of making same size and geometry (cf. Erik Trulsson, 4 hours ago, this thread) less relevant? As long as the new slice had enough space, geometry shouldn't matter to dump|restore ? Just for the archives: Giorgios' solution is very nice, but needs the -f option and another - to work properly AFAICT, both from experience and from reading dump(8): dump -0 -a -L -f - /usr | (cd /mnt ; restore ruvf - ) If you don't include -f (for file) and - (for stdout), then your command will fail with: DUMP: Cannot open output /dev/sa0 Oops! Yes, good catch :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
recommendation on graphical ftp client for fbsd/kde
So far tried: konqueror shipped with kde: odd behaviour with authentication kbear: crashes kasablanca; crashes would prefer one that handles tls as well command line works nicely as always... anyone? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: core dump with dump command in single user mode
Joe Auty [EMAIL PROTECTED] writes: Hello, Following the instructions here: http://www.unixcities.com/howto/ index.html I did a: Those directions are a little outdated, but the problem is really just that you didn't follow the directions closely enough: dump -0f - /usr | restore -rf - /backup/usr should have been more like dump -0f - /usr | (cd /backup/usr;restore -xf - ) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Cant login to FTP server.
There taken right from the ipfilter section of the handbook. Maybe you should read that section in the handbook. Post the complete contents of your ipf rules and nat rules for review -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 8:59 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Cant login to FTP server. Hi, the server is connected directly to the wild, and I'm connecting from a remote non-local host. Are you sure that those are ipf rules? They look a lot like ipnat rules. On 2/14/06, fbsd_user [EMAIL PROTECTED] wrote: Daniel You did not say where you were running ftp from. like from LAN box to gateway server or from gateway box to public internet remote ftp site or from public internet remote user to your gateway ftp server. I am guessing its from gateway box to public internet remote ftp site. Your nat rules need to look like this example. You are missing the second rule. map dc0 10.0.10.0/29 - 0/32 proxy port 21 ftp/tcp map dc0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map dc0 10.0.10.0/29 - 0/32 The first rule handles all FTP traffic for the private LAN. The second rule handles all FTP traffic from the gateway. The third rule handles all non-FTP traffic for the private LAN. All the non-FTP gateway traffic is using the public IP address by default so there is no ipnat rule needed. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 7:42 AM To: [EMAIL PROTECTED] Subject: Cant login to FTP server. Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving directory listing... Command:PWD Response: 257 /usr/home/alive is current directory. Command:TYPE A Response: 200 Type set to A. Command:PASV Response: 227 Entering Passive Mode (87,49,144,133,237,45) Command:LIST Error: Transfer channel can't be opened. Reason: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. Error: Could not retrieve directory listing Command:TYPE A ___SNIP___ /etc/ipf.rules: ___SNIP___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 192.0.2.0/24 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port 3 5 flags S keep state #PASV FTP pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___SNIP___ /etc/ipnat.rules ___SNIP___ map rl0 192.168.0.0/16 - 0.0.0.0/32 proxy port ftp ftp/tcp map rl0 192.168.0.0/16 - 0.0.0.0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/16 - 0.0.0.0/32 ___SNIP___ Might the problem be anywhere else besides my ipf and ipnat configs? Could it be the remote client that's the problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL
NAS advice?
(I am cross posting to FreeBSD questions and Bacula Users, I will not be cross posting replies) I've been crying for four years that we needed a decent backup system and I always got put off. It's on order, can you resubmit an updated equipment list. Yea, checks in the mail. So yesterday I am told that we have some equipment we got in another deal and I can have it to backup my NOC. I plan to run Bacula which I already have on some individual machines. I want to have Bacula clients on all my machines talking to a single machine running the Bacula director, hopefully using the NAS machines for storage. This is the equipment they threw at me, it is old, but amazingly, unused. One Dell Poweredge 750, 2.8ghz CPU, 1gb ram, 2 500gb SATA Maxtor drives(yuk!), CERC SATA controller. Two Dell Powervault 725N, 2.0ghz CPU, 512mb ram, 2 480gb Drives. One of these machines has a SATA controller. I would really rather have SCSI, I've changed a deskdrawer full of SATA drives in the past 12 months(literally). But, we use what we can get, beats nothing. My questions! I will install FreeBSD on the Poweredge. Should I, could I, install FreeBSD on the Powervaults? I've no experience with them. If they are stable, I would just as soon plug them in and let them go. They will be behind the PIX and on a seperate network (1gb) connected to the backside of each server. The Powervaults will do nothing but export NFS mounts for the Bacula director to write backup files to. Any thoughts are welcome. DAve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: General Question
M. Cummins wrote: Hi. Sorry about the HTML formatted email. I'm extremely interested in installation of a FreeBSD build on a Dell Dimension XPS P133s 133 MHz / 16 MB RAM, with a S3 Trio 64+ PCI (765) and D-Link DFE 530-TX PCI adapter. I've noted the HCL for version 5 (or maybe it was 6?) but I figure I would do better to simply ask - what version do I need to run with my current hardware, and what is the highest version I can run on the machine that I plan to install on? Before you get too far on the reply, please also consider that I primarily want to use the computer for a webserver (for my LAN) in console mode (I doubt a GUI is a good idea considering the hardware I'm using. Oh, and sorry if this is inapproprite, but I have no experience with UNIX and really need to learn it. I figured FreeBSD was my best shot at it, based on what I've seen. I've been looking at 2.2.8 and it seems to be a decent choice, but I do consider that you probably know more about this than I do. We've all been there. Why don't you start with something like http://www.google.se/search?num=100hl=enq=freebsd+%22minimum+requirements%22+install+site%3Afreebsd.orgbtnG=Search to see what others did and experienced ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: recommendation on graphical ftp client for fbsd/kde
Per olof Ljungmark wrote: So far tried: konqueror shipped with kde: odd behaviour with authentication kbear: crashes kasablanca; crashes would prefer one that handles tls as well did you try gftp ? - /usr/ports/ftp/gftp (it can do ftp and sftp) -- grtjs, albi gpg-key: lynx -dump http://scii.nl/~albi/gpg.asc | gpg --import ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
From: Kirk Davis [EMAIL PROTECTED] To: Greg Groth [EMAIL PROTECTED] CC: freebsd-questions@freebsd.org Subject: RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Date: Mon, 13 Feb 2006 14:25:04 -0700 Hi Greg, I'm trying to set up a FreeBSD 6.0 box as a mail server, and while everything seems to be working OK for the most part, I have run into two issues that I cannot resolve (I'm new to BSD, please bear with me). Install went as follows: Installed via FTP last night along with src - Sources for everything, IMAP-UW was compiled via ports with WITH_SSL_AND_PLAINTEXT enabled (same for cclient), OpenSSL, Cyrus-SASL2 Cyrus-SASL2-saslauthd were compiled via ports with no flags. Sendmail was installed with the base install and recompiled (after SASL2 was up and running) with the following options added to make.conf: # SASL (cyrus-sasl v2) sendmail build flags... SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL I followed the instructions I found at http://www.bsdconspiracy.net/howto/sendmail.html, and had no problems with the install except for Sendmail. After recompiling sendmail, I added the following lines to the mail.server.mc file: define(`confAUTH_MECHANISMS',`PLAIN LOGIN')dnl TRUST_AUTH_MECH(`PLAIN LOGIN')dnl define(`CERT_DIR', `/etc/mail/certs')dnl define(`confCACERT_PATH', `CERT_DIR')dnl define(`confCACERT', `CERT_DIR/mycert.pem')dnl define(`confSERVER_CERT', `CERT_DIR/mycert.pem')dnl define(`confSERVER_KEY', `CERT_DIR/mykey.pem')dnl define(`confCLIENT_CERT', `CERT_DIR/mycert.pem')dnl define(`confCLIENT_KEY', `CERT_DIR/mykey.pem')dnl DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl This is your problem. The above line sets up the Sendmail daemon to listen on port 25 but the standard mc file distributed with FreeBSD also sets up a DAEMON port (it's at the end of the MC file). Here is what my DAEMON_OPTIONS lines look like. These should be the only DAEMON_OPTIONS lines in the mc file. dnl Enable for both IPv4 and IPv6 (optional) DAEMON_OPTIONS(`Name=IPv4, Family=inet') DAEMON_OPTIONS(`Name=IPv6, Family=inet6, Modifiers=O') DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl That is what I was guessing, however I couldn't find a Sendmail for Dummies book that could explain The DAEMON_OPTIONS in language I understand. It's very easy to get lost in the online docs and the O'Reilly book, for me anyway. DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')dnl After running (in /etc/mail) make clean, make cf, make install, make restart, SMTP no longer works, and I find the following in maillog and messages Feb 12 20:25:55 mail sm-mta[1213]: daemon IPv4: problem creating SMTP socket Feb 12 20:26:00 mail sm-mta[1213]: NOQUEUE: SYSERR(root): opendaemonsocket: daemon IPv4: cannot bind: Address already in use When I try and stop sendmail, I get a message that the pid for Sendmail cannot be found. I end up killing the missing Sendmail daemon using KSysGuard If I remove this line - DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl from the mail.server.mc file, make cf, make install, make restart, sendmail starts normally. When trying to access from another machine on my network, I can only connect on port 25 without a secure connection (I'm using Thunderbird for this), although SMTP-AUTH is working correctly. Have you tried to setup your mail client to connect to port 465? This is the smtps (SMTP SSL) port. Yes I have. The above mentioned How-To states to have MS products connect on port 25, which didn't make a whole lot of sense to me, so I tried both 25 and 465 using Thunderbird. Thunderbird returned with a message that the SMTP server was not accepting connections. Now that I know what's wrong with my MC file, I'm guessing I havge to take a stronger look at my certificates and make sure that they're working correctly. I might have a path screwed up somewhere. Seems that if it's listening on 465, everything should be OK with Sendmail, but there might be a problem with SSL. Any ideas on what I might need to do to get SSL / SMTP-AUTH working on SMTP? I took a look at the instructions in the handbook, but they were written for SASL1. Running netstat shows smtps listening on 465, but when I try to telnet to that port, the server drops the connection. Hmm... It should connect but you will not see anything since it is expecting an SSL connection. My second problem is rather simple, after I create an IMAP folder, I am unable to delete it using a remote client. Thunderbird responds with The mail server responded: RENAME failed: Can't create mailbox node /home/User/Trash/: File exists. Nothing shows up in any of the server logs though. I have not seen this problem although I have it setup for an office of Outlook users. I would check the permissions on the folders
RE: Setting Up A Home Network ...
yes xp pro can run as gateway with lan behind it -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of albi Sent: Tuesday, February 14, 2006 8:56 AM To: Kumar Cc: freebsd-questions@freebsd.org Subject: Re: Setting Up A Home Network ... On Tue, 14 Feb 2006 21:48:33 +0800 Kumar [EMAIL PROTECTED] wrote: Is it possible to set up internet connection, between a XP Pro box, and a FreeBSD-current box, without the use of a router, I have got two ethernet cards on the box running XP Pro, and one ethernet card on the box running FreeBSD-current, and a cross over cable. Is it theoretically possible ? if you put 2 nics in the FreeBSD-box with the cross-cable it's possible yes, follow the firewall-instructions : http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls. html if you want to keep the 2 nics in the ms-windows-machine, i would suggest to ask in a ms-windows-forum/list etc. -- grtjs, albi gpg-key: lynx -dump http://scii.nl/~albi/gpg.asc | gpg --import ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
Hi, You can try using ipf filter to impose source-policy routing: cat ipf.example pass in quick on em1 to em1:192.168.1.2 from 10.1.0.0/16 to a.b.c.d/32 ^d ipf -f ipf.example This way you will re-route all packets coming from source 10.1/16 to destination a.b.c.d to go to address 192.168.1.2 not to a.b.c.d Note that you have to rebuild your kernel in order to have options IPFILTER enabled. Regards, gg. I'm trying to set up the routing table to force requests to certain IP addresses to use a particular ethernet card. I've used the route command in a number of ways, but still can't come up with how to force to use em1 instead of em0, with the right gateway. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: core dump with dump command in single user mode
On Feb 14, 2006, at 9:08 AM, Lowell Gilbert wrote: Joe Auty [EMAIL PROTECTED] writes: Hello, Following the instructions here: http://www.unixcities.com/howto/ index.html I did a: Those directions are a little outdated, but the problem is really just that you didn't follow the directions closely enough: dump -0f - /usr | restore -rf - /backup/usr should have been more like dump -0f - /usr | (cd /backup/usr;restore -xf - ) Okay, I'm still getting: no space left in string table abort? If I say n, it just core dumps Any other suggestions? Would using dd be a valid workaround to cloning my disk? My disk is over a 100 gigabytes, could this be what is causing dump to crap out? --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: recommendation on graphical ftp client for fbsd/kde
albi wrote: Per olof Ljungmark wrote: So far tried: konqueror shipped with kde: odd behaviour with authentication kbear: crashes kasablanca; crashes would prefer one that handles tls as well did you try gftp ? - /usr/ports/ftp/gftp (it can do ftp and sftp) looks good. thanks a lot! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IP Routing Question
You are not correct in that last statement. ipfilter does not have to be compiled into kernel to work. You should read the handbook ipfilter firewall section where it clearly states that is not necessary and tells you how to do it. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Goran Gajic Sent: Tuesday, February 14, 2006 9:44 AM To: [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Subject: Re: IP Routing Question Hi, You can try using ipf filter to impose source-policy routing: cat ipf.example pass in quick on em1 to em1:192.168.1.2 from 10.1.0.0/16 to a.b.c.d/32 ^d ipf -f ipf.example This way you will re-route all packets coming from source 10.1/16 to destination a.b.c.d to go to address 192.168.1.2 not to a.b.c.d Note that you have to rebuild your kernel in order to have options IPFILTER enabled. Regards, gg. I'm trying to set up the routing table to force requests to certain IP addresses to use a particular ethernet card. I've used the route command in a number of ways, but still can't come up with how to force to use em1 instead of em0, with the right gateway. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFILTER rule error
Hi, Sorry, I really do not want you to guess! Here is what you asked: kernel conf: --- ... optionsIPFILTER optionsIPFILTER_LOG #optionsIPFILTER_DEFAULT_BLOCK #optionsIPSTEALTH ... --- rc.conf: --- ... ifconfig_rl0=inet 10.0.1.1 netmask 255.255.255.248 ... ipnat_enable=YES ipfilter_enable=YES ipmon_enable=YES ... --- services: --- ... sunrpc 111/tcprpcbind #SUN Remote Procedure Call sunrpc 111/udprpcbind #SUN Remote Procedure Call ... --- ipf.rules: --- block in log on rl0 all head 20 block out log on rl0 all head 25 pass in quick on rl0 \ proto tcp/udp from any to any port = sunrpc keep state group 20 pass in quick on rl0 \ proto tcp/udp from any to any port = 717 keep state group 20 pass out quick on rl0 \ proto udp from any to any port = 111 keep state group 20 Steps to load the rules: ipf -Fa ipf -f /etc/ipf.rules 1:ioctl (add/insert rule): No such process And there is one more problem - despite that I have packet logging enabled by default (-Ds) through syslogd, log is empty! syslog.conf: ... security.* /var/log/security ... That file exists and have root rw permissions. If this help: after I'd moved to 6.0 from 5.4 (backup-format-install-restore), this config stopped to work. I know that I'm doing something wrong but what exactly? Regards, Muxas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFILTER rule error
Maxim Vetrov wrote: Hi, kernel conf: --- ... optionsIPFILTER optionsIPFILTER_LOG #optionsIPFILTER_DEFAULT_BLOCK #optionsIPSTEALTH ... --- The rc scripts should load these modules if they are not compiled with the kernel, in that case they would show up with kldstat. Try use kldstat and sysctl -a to see what's in your kernel, grep for ipf. services: --- ... sunrpc 111/tcprpcbind #SUN Remote Procedure Call sunrpc 111/udprpcbind #SUN Remote Procedure Call ... --- ipf.rules: --- block in log on rl0 all head 20 block out log on rl0 all head 25 pass in quick on rl0 \ proto tcp/udp from any to any port = sunrpc keep state group 20 pass in quick on rl0 \ proto tcp/udp from any to any port = 717 keep state group 20 pass out quick on rl0 \ proto udp from any to any port = 111 keep state group 20 Steps to load the rules: ipf -Fa ipf -f /etc/ipf.rules 1:ioctl (add/insert rule): No such process 1st: IIRC, the number in the error line indicates the line the error occurred in - not sure though. That would be your first rule. I don't know if you posted the whole ruleset or if you cut out what seemed irrelevant to keep the post short. 2nd: Reading the ipf-howto I see no examples where port names are used, try using the port number to eliminate that posibility. And there is one more problem - despite that I have packet logging enabled by default (-Ds) through syslogd, log is empty! syslog.conf: ... security.* /var/log/security ... That file exists and have root rw permissions. If you want to log to a separate file, why not let ipmon do that directly? # ipmon -D /var/log/security Secondly, the empty log may not be that surprising in the first place if your ruleset is not loaded correctly. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt Subject ID: 9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72 Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NAS advice?
On Tue, Feb 14, 2006 at 08:59:44AM -0500, DAve wrote: My questions! I will install FreeBSD on the Poweredge. Should I, could I, install FreeBSD on the Powervaults? I've no experience with them. If they are stable, I would just as soon plug them in and let them go. The Dell's are great with FreeBSD, but pay attention if it has one of those Dell DRAC controllers for remote management that it will appear to FreeBSD as an usb keyboard + mouse and therefore take precedence over an ps/2 keyboard or an usb keyboard which will be handled as an extra keyboard. Therefore, before you reboot after installation from the shell prompt make sure you add keyboard=/dev/kbd0 to your rc.conf _before_ rebooting. Good luck with your project -- Med venlig hilsen / Best regards Brian Josefsen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IPFILTER rule error
First of all you really need to read the ipfilter section of the FreeBSD handbook. The correct solution is exampled in the handbook. You do not need to compile ipfilter in to the kernel to work. From your rules I see no need for that head/group stuff so remove it. I see rl0 being assigned to private ip address which means that Nic is facing your LAN which is behind your gateway box. That ip address range is not routable on the public internet. You have something mess up big time. Your firewall rules is suppose to be on the Nic facing the public internet. You nat the public ip address to you private LAN ip address. The reason you have no log records is because your firewall rules have syntax error and are never loaded. Only rules with log keyword will generate log records. Only use rules with quick option. Do not mix quick and non quick rules. You need pass in rules for you ISP's dns and dhcp servers to access your box. Explain in detail your network layout. Do you have LAN? How are you connected to the public internet? Again I strongly recommend you read the ipfilter section of the handbook your answers are there. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Maxim Vetrov Sent: Tuesday, February 14, 2006 7:57 PM To: freebsd-questions@FreeBSD.org Subject: Re: IPFILTER rule error Hi, Sorry, I really do not want you to guess! Here is what you asked: kernel conf: --- ... optionsIPFILTER optionsIPFILTER_LOG #optionsIPFILTER_DEFAULT_BLOCK #optionsIPSTEALTH ... --- rc.conf: --- ... ifconfig_rl0=inet 10.0.1.1 netmask 255.255.255.248 ... ipnat_enable=YES ipfilter_enable=YES ipmon_enable=YES ... --- services: --- ... sunrpc 111/tcprpcbind #SUN Remote Procedure Call sunrpc 111/udprpcbind #SUN Remote Procedure Call ... --- ipf.rules: --- block in log on rl0 all head 20 block out log on rl0 all head 25 pass in quick on rl0 \ proto tcp/udp from any to any port = sunrpc keep state group 20 pass in quick on rl0 \ proto tcp/udp from any to any port = 717 keep state group 20 pass out quick on rl0 \ proto udp from any to any port = 111 keep state group 20 Steps to load the rules: ipf -Fa ipf -f /etc/ipf.rules 1:ioctl (add/insert rule): No such process And there is one more problem - despite that I have packet logging enabled by default (-Ds) through syslogd, log is empty! syslog.conf: ... security.* /var/log/security ... That file exists and have root rw permissions. If this help: after I'd moved to 6.0 from 5.4 (backup-format-install-restore), this config stopped to work. I know that I'm doing something wrong but what exactly? Regards, Muxas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: General Question
On Mon, Feb 13, 2006 at 09:35:37PM -0700, M. Cummins wrote: Hi. Sorry about the HTML formatted email. I'm extremely interested in installation of a FreeBSD build on a Dell Dimension XPS P133s 133 MHz / 16 MB RAM, with a S3 Trio 64+ PCI (765) and D-Link DFE 530-TX PCI adapter. I've noted the HCL for version 5 (or maybe it was 6?) but I figure I would do better to simply ask - what version do I need to run with my current hardware, and what is the highest version I can run on the machine that I plan to install on? Before you get too far on the reply, please also consider that I primarily want to use the computer for a webserver (for my LAN) in console mode (I doubt a GUI is a good idea considering the hardware I'm using. I don't believe there is anything which has been done to the latest versions to *prevent* it from running on your machine. Since you mentioned FreeBSD 2.2.8, I have fond memories of abusing almost exactly the same machine you describe but with a whopping 24 MB of RAM. Ran Apache, NetAtalk, Samba, the basic X11 system with practically no window manager. Netscape Navigator for http client and exmh2 for email. Also burned a lot of CD's on that machine, and wrote a lot of DAT tapes. Built another machine around a PII-233 with (4) DAT3 drives. Would run all 4 DAT drives at once. No problems. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
boot problems with FreeBSD, WindowsXP (and Linux)
Hello, I've been having some problems with my computer arising out of an install of FreeBSD 5.4 which I can't seem to solve. First of all, I started with an 80 GB HD partitioned as such: c: 20 GB NTFS d: 20 GB NTFS e: 40 GB FAT I first installed a copy of Ubuntu Linux 4.1 onto the Windows d:. This worked fine, but it was only to get a look at it before putting FreeBSD onto the same partition. My 5.4 installation works fine and I can mount both /dev/ad0s1 and /dev/ad0s3 (NTFS and MSDOS respectively). The problem is that Windows XP not fails to boot. It appears to start but then flashes blue and restarts the computer. Repairing with the Windows disk also causes a reboot and a reinstall would mean overwriting both FreeBSD (which I could reinstall) but more importantly the 40 GB FAT partition which I'd rather not loose. I don't need Windows in fact but my FreeBSD is a work in progress so I'd like to have a copy of Linux to tide me over until everything is up and working. The problem is that all of the Linux distros that I've tried (Fedora 4, SUSE, Mandirva, Ubuntu) have complained about the current partitioning scheme and want to use the entire disk. FreeBSD's fdisk gives the following: Disk name: ad0 FDISK Partition Editor DISK Geometry: 9729 cyls/255 heads/63 sectors = 156296385 sectors (76316MB) OffsetSize(ST) End Name PType Desc Subtype Flags 0 63 62 - 12 unused 0 63 40965687 40965749 ad0s1 4 NTFS/HPFS/QNX 7 40965750 39230730 80196479 ad0s4 8 freebsd 165 80196480 1 80196480 - 12 unused 0 80196481 173501981931499 ad0s2 4 extended DOS 5 81931500 74364885 156296384 ad0s3 4 extended DOS 5 56296385 5103 156301487 - 12 unused 0 Fdisk also complains about incorrect geometry but uses what it considers probably correct. And it says that ad0s2 does not begin on a track boundary. I cannot mount ad0s2 and I feel that it is somehow the problem. What can I do to either correct Windows or install Linux without destroying my 40GB FAT partition (ad0s3)? _ MSN Hotmail : créez votre adresse e-mail gratuite à vie ! http://www.imagine-msn.com/hotmail/default.aspx?locale=fr-FR ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
From: Ted Mittelstaedt [EMAIL PROTECTED] To: Joe Auty [EMAIL PROTECTED], Kirk Davis [EMAIL PROTECTED] CC: Greg Groth [EMAIL PROTECTED], freebsd-questions@freebsd.org Subject: RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Date: Tue, 14 Feb 2006 00:34:28 -0800 I'm sure glad that this message didn't pass through my work mailserver so that it's didn't see it, since my work e-mail inbox has 16383 messages in it (the limit that Outlook can display in IMAP mode) and is 412 megabytes in size, and performance is perfectly fine both with Outlook and Horde/IMP. I wouldn't want my mailserver reading it and thinking that it's OK to slack off. And yes I know I need to delete some messages, speak to the hand if your going to make that crack. This is imap-uw/sendmail. Perhaps you might consider that since you haven't run imap-uw in a while that your no longer qualified to make claims about it? Or perhaps you never had it setup properly? Or perhaps your hardware was slow? Nothing is wrong with Postfix / Courier-IMAP but nothing is wrong either with sendmail / uw-imap. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Monday, February 13, 2006 1:53 PM To: Kirk Davis Cc: Greg Groth; freebsd-questions@freebsd.org Subject: Re: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Hey Greg, Sorry if this completely throws a monkey wrench into your plans, but I feel inspired to interject since I once had a nearly identical setup as you... I switched to Postfix and Courier-IMAP since I found that performance of large mailboxes in IMAP-UW was pretty poor, especially over web- based email where messages are not cached. I switched to Postfix because it is so much more simple and straight forward than Sendmail. You should have no problems switching to Postfix, since it is basically Sendmail with a nicer wrapper/configuration. Just food for thought. I appreciate both of your comments, as I have stated I am new to BSD. Part of my problem is the huge amount of software available, and no good way to determine what will work better for my situation. Perhaps if I explain my situation, it would help some. We've been running Sendmail and a POP-Before-SMTP script for the last 6 years on a Redhat box. I think it started out on 5.2, and was up to 7.3 when it crashed 3 weeks ago. I had been planning to upgrade the server, and had a new box ready to go, but I had stalled on the OS. I didn't want to go down the Redhat route because of strictly personal issues that are more opinions than fact, and a friend suggest FreeBSD. The server crash pretty much forced my hand, and my goal was to replicate what we had in place ASAP. Because of my (limited) knowledge of Sendmail, I went that route as I know nothing of the alternatives. I went with IMAP-UW because not because of anything I had read, but because I was attempting to get the POP-Before-SMTP port to work (which it didn't - long story), and IMAP-UW seemed a good alternative as it is a POP and IMAP server and was easily configured in POP-Before-SMTP. Since I could not find a POP-Before-SMTP solution that I could get to operate (I had problems with POP-Before-SMTP, and DRAC before throwing in the towel), I decided to switch to SMTP-AUTH. So here's my situation, we have about 25 users on the server. I need POP and IMAP that will operate with and without SSL, and SMTP that can handle SMTP-AUTH with and without SSL. Out of the 25 users, I have 3 that are email packrats, and have between 2-4 gigs of email apiece. They are currently using POP on Outlook Express, but will be switching over to IMAP on Thunderbird in the near future (I also have 5 users that I'm not sure what client they are using, we're hosting their domain - long story). Our office peronnel will be migrating to IMAP, using SSL when out of the office, and plain text when in. The five users in which we are hosting their email will remain on POP, and although SSL would be nice, I want the ability to offer plain text in case I run into client issues. Similar circumstances for SMTP, I can relay by domain for users on our network, and would like to use SMTP-AUTH for off-ste users. SSL preferred, but offer plain text in case of client issues. Last issue would be something that will play nice with SquirrelMail. Although I'm very familiar with administering Sendmail (starting, stopping, backing up, running makemaps), configuring is another story. While SMTP is pretty much running as stable as it ever has, I still have issues from time to time. For instance I am sending this from Hotmail as this list is currently bouncing email from my server because of some error I have not investigated yet. At this moment I am pretty much open to anything, but I don't have a good way of evaluating different options other than trial and error (and I'm kind of short on time). I know that a lot of times it comes
RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems
Sorry for the double submission, I totally screwed up. I have added my response this time... From: Ted Mittelstaedt [EMAIL PROTECTED] To: Joe Auty [EMAIL PROTECTED], Kirk Davis [EMAIL PROTECTED] CC: Greg Groth [EMAIL PROTECTED], freebsd-questions@freebsd.org Subject: RE: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Date: Tue, 14 Feb 2006 00:34:28 -0800 I'm sure glad that this message didn't pass through my work mailserver so that it's didn't see it, since my work e-mail inbox has 16383 messages in it (the limit that Outlook can display in IMAP mode) and is 412 megabytes in size, and performance is perfectly fine both with Outlook and Horde/IMP. I wouldn't want my mailserver reading it and thinking that it's OK to slack off. And yes I know I need to delete some messages, speak to the hand if your going to make that crack. This is imap-uw/sendmail. Perhaps you might consider that since you haven't run imap-uw in a while that your no longer qualified to make claims about it? Or perhaps you never had it setup properly? Or perhaps your hardware was slow? Nothing is wrong with Postfix / Courier-IMAP but nothing is wrong either with sendmail / uw-imap. Ted -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Monday, February 13, 2006 1:53 PM To: Kirk Davis Cc: Greg Groth; freebsd-questions@freebsd.org Subject: Re: Sendmail - IMAP-UW - Cyrus-SASL2 - SMTPAUTH problems Hey Greg, Sorry if this completely throws a monkey wrench into your plans, but I feel inspired to interject since I once had a nearly identical setup as you... I switched to Postfix and Courier-IMAP since I found that performance of large mailboxes in IMAP-UW was pretty poor, especially over web- based email where messages are not cached. I switched to Postfix because it is so much more simple and straight forward than Sendmail. You should have no problems switching to Postfix, since it is basically Sendmail with a nicer wrapper/configuration. Just food for thought. I appreciate both of your comments, as I have stated I am new to BSD. Part of my problem is the huge amount of software available, and no good way to determine what will work better for my situation. Perhaps if I explain my situation, it would help some. We've been running Sendmail and a POP-Before-SMTP script for the last 6 years on a Redhat box. I think it started out on 5.2, and was up to 7.3 when it crashed 3 weeks ago. I had been planning to upgrade the server, and had a new box ready to go, but I had stalled on the OS. I didn't want to go down the Redhat route because of strictly personal issues that are more opinions than fact, and a friend suggest FreeBSD. The server crash pretty much forced my hand, and my goal was to replicate what we had in place ASAP. Because of my (limited) knowledge of Sendmail, I went that route as I know nothing of the alternatives. I went with IMAP-UW because not because of anything I had read, but because I was attempting to get the POP-Before-SMTP port to work (which it didn't - long story), and IMAP-UW seemed a good alternative as it is a POP and IMAP server and was easily configured in POP-Before-SMTP. Since I could not find a POP-Before-SMTP solution that I could get to operate (I had problems with POP-Before-SMTP, and DRAC before throwing in the towel), I decided to switch to SMTP-AUTH. So here's my situation, we have about 25 users on the server. I need POP and IMAP that will operate with and without SSL, and SMTP that can handle SMTP-AUTH with and without SSL. Out of the 25 users, I have 3 that are email packrats, and have between 2-4 gigs of email apiece. They are currently using POP on Outlook Express, but will be switching over to IMAP on Thunderbird in the near future (I also have 5 users that I'm not sure what client they are using, we're hosting their domain - long story). Our office peronnel will be migrating to IMAP, using SSL when out of the office, and plain text when in. The five users in which we are hosting their email will remain on POP, and although SSL would be nice, I want the ability to offer plain text in case I run into client issues. Similar circumstances for SMTP, I can relay by domain for users on our network, and would like to use SMTP-AUTH for off-ste users. SSL preferred, but offer plain text in case of client issues. Last issue would be something that will play nice with SquirrelMail. Although I'm very familiar with administering Sendmail (starting, stopping, backing up, running makemaps), configuring is another story. While SMTP is pretty much running as stable as it ever has, I still have issues from time to time. For instance I am sending this from Hotmail as this list is currently bouncing email from my server because of some error I have not investigated yet. At this moment I am pretty much open to anything, but I don't have a good way of evaluating different options other
re: dump core dump, now emergency boot CD
Hello, Since the dump command has been producing core dumps for me, I'm thinking of running dump from an emergency boot CD. Is this possible? Wise? How would I do this? The 5.4 Release CD #1 just boots into the installer. Thanks in advance for your help! --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
best approach to clone a disk?
Okay, In taking the advice of an earlier poster in suggesting that the instructions located here: http://www.unixcities.com/howto/ Are rather old, allow me to make my question a little broader in scope: What is the best way to clone a disk in FreeBSD? Do you have any step- by-step instructions? The instructions I used above (even replacing the restore -r flag with a -x) produced a core dump. Can I use DD on two disks of different size? Do you recommend Ghost for Unix? Any other suggestions or recommendations should the dump command just not work for me? Thanks in advance! --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
Hi Joe: On Tuesday 14 February 2006 10:49, Joe Auty wrote: Okay, In taking the advice of an earlier poster in suggesting that the instructions located here: http://www.unixcities.com/howto/ Are rather old, allow me to make my question a little broader in scope: What is the best way to clone a disk in FreeBSD? Do you have any step- by-step instructions? The instructions I used above (even replacing the restore -r flag with a -x) produced a core dump. Can I use DD on two disks of different size? Do you recommend Ghost for Unix? Any other suggestions or recommendations should the dump command just not work for me? One of our grad students recently posted a how to on using Frisbee here at ISIS. The only difference is that you'll need another server somewhere with imagezip install instead of ours. You can find the how to here: https://research.isis.vanderbilt.edu/ir_wiki/Using_Frisbee_to_take_an_image_of_a_hard_drive Please let us know if it contains any omissions or errors and we'll fix the page. Btw, I've been told that this will only image a partition, not the master boot record, so you'll need that on the destination as well. This is what emulab uses to image drives, and works for several OS's, including FreeBSD, Linux, and Windows. hth... don Thanks in advance! --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Don Hinton don.hinton at vanderbilt.edu tel: 615.480.5667 ISIS, Vanderbilt University skype: donhinton http://people.vanderbilt.edu/~don.hinton/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
Joe Auty on 2006-02-14 11:49:05 -0500: What is the best way to clone a disk in FreeBSD? [...] Can I use DD on two disks of different size? Do you recommend Ghost for Unix? g4u is a very nice wrapper for dd. I've had great success with it for identically-sized disks; there shouldn't be a problem if the target disk is larger than the source disk, because you can edit the partitions around and then growfs. Don't overlook tar, though - it doesn't care about disk sizes as long as you have enough free space, doesn't care about partitions, and is simpler in many cases. If you boot up to the fixit image from an install CD you can partition and newfs to however you like and then untar. pgpmiIJCEPsaF.pgp Description: PGP signature
Why myserver be locked ?
Hello I have a Dell1600SC server. The server has 4 CPU and 2 Gbyte Ram. I had been using it based Redhat9 till a month ago. The server was working without problem. After that, I installed FreeBSD6 Release on it. The server started to run be locked. When it is locked, it becomes as freeze.I am not able to do anything on it. I don't believe in any hardware error. I have to push the reset button to reboot it. When I rebooted by the reset button, the machine has not given me any error message in dmesg and /var/log/messages. When the machine rebooted, it works normaly with all of it's services. What should I do ? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
acl inherit and protected access control flags
Greetings People: In setting up a Samba server w/ACL support I note the following from Samba docs regarding map acl inherit: This boolean parameter controls whether smbd(8) will attempt to map the 'inherit' and 'protected' access control entry flags stored in Windows ACLs into an extended attribute called user.SAMBA_PAI. This parameter only takes effect if Samba is being run on a platform that supports extended attributes (Linux and IRIX so far) and allows the Windows 2000 ACL editor to correctly use inheritance with the Samba POSIX ACL mapping code. From what I garner from the FBSD man pages on ACL FreeBSD does not implement the inherit and protected flags. Can someone please confirm? Please cc as I'm not subscribed to fbsd-questions. TIA- -- Best regards, Ken Gunderson Q: Because it reverses the logical flow of conversation. A: Why is putting a reply at the top of the message frowned upon? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
On Feb 14, 2006, at 12:04 PM, Don Hinton wrote: Hi Joe: On Tuesday 14 February 2006 10:49, Joe Auty wrote: Okay, In taking the advice of an earlier poster in suggesting that the instructions located here: http://www.unixcities.com/howto/ Are rather old, allow me to make my question a little broader in scope: What is the best way to clone a disk in FreeBSD? Do you have any step- by-step instructions? The instructions I used above (even replacing the restore -r flag with a -x) produced a core dump. Can I use DD on two disks of different size? Do you recommend Ghost for Unix? Any other suggestions or recommendations should the dump command just not work for me? One of our grad students recently posted a how to on using Frisbee here at ISIS. The only difference is that you'll need another server somewhere with imagezip install instead of ours. You can find the how to here: https://research.isis.vanderbilt.edu/ir_wiki/ Using_Frisbee_to_take_an_image_of_a_hard_drive Please let us know if it contains any omissions or errors and we'll fix the page. Btw, I've been told that this will only image a partition, not the master boot record, so you'll need that on the destination as well. This is what emulab uses to image drives, and works for several OS's, including FreeBSD, Linux, and Windows. hth... don Thanks Don! However, I'm not completely sure that I have the disk space available to create an image. I was actually looking to do a complete copy of one local disk to another local disk, not create an image of the disk for deployment. Do these instructions still apply? --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
On Feb 14, 2006, at 12:07 PM, Alec Berryman wrote: Joe Auty on 2006-02-14 11:49:05 -0500: What is the best way to clone a disk in FreeBSD? [...] Can I use DD on two disks of different size? Do you recommend Ghost for Unix? g4u is a very nice wrapper for dd. I've had great success with it for identically-sized disks; there shouldn't be a problem if the target disk is larger than the source disk, because you can edit the partitions around and then growfs. Don't overlook tar, though - it doesn't care about disk sizes as long as you have enough free space, doesn't care about partitions, and is simpler in many cases. If you boot up to the fixit image from an install CD you can partition and newfs to however you like and then untar. Hmmm... Could you tell me more about how the fixit images work? I've never had to do that... basically, I just need something that will allow me to boot up into single user mode. I've been using the source disk in single user mode, and doing a mount -u / to make sure that it is mounted read only. Before I go this route, I'm thinking it might be wise to give dump another try from a working boot CD. What is the best way to create myself a boot CD that I can use to boot up in single user mode? As far as your tar idea, the idea seems great, although I'm not sure whether I have enough space to store both the tarball and the space needed to extract the tarball to. We are talking over a 100 gig here. Thanks for your advice! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Why myserver be locked ?
Halid Faith wrote: Hello I have a Dell1600SC server. The server has 4 CPU and 2 Gbyte Ram. I had been using it based Redhat9 till a month ago. The server was working without problem. After that, I installed FreeBSD6 Release on it. The server started to run be locked. When it is locked, it becomes as freeze.I am not able to do anything on it. I don't believe in any hardware error. I have to push the reset button to reboot it. When I rebooted by the reset button, the machine has not given me any error message in dmesg and /var/log/messages. When the machine rebooted, it works normaly with all of it's services. What should I do ? Can you reproduce the problem? Have you made any observations up till the system freezes up? Check logfiles for error messages, you may set loglevel up so all debugging is also logged. If you don't find any error messages in the log files then try to disable ALL services and see if it runs stable. Enable one service at the time and let it run for a while to check that the system is still stable. First enable services included in base like syslog, ssh and named. Then go on to enable other services. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt Subject ID: 9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72 Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
On Feb 14, 2006, at 12:07 PM, Alec Berryman wrote: Joe Auty on 2006-02-14 11:49:05 -0500: What is the best way to clone a disk in FreeBSD? [...] Can I use DD on two disks of different size? Do you recommend Ghost for Unix? g4u is a very nice wrapper for dd. I've had great success with it for identically-sized disks; there shouldn't be a problem if the target disk is larger than the source disk, because you can edit the partitions around and then growfs. Don't overlook tar, though - it doesn't care about disk sizes as long as you have enough free space, doesn't care about partitions, and is simpler in many cases. If you boot up to the fixit image from an install CD you can partition and newfs to however you like and then untar. Also, I see that growfs operates off of free sectors. If I were to use dd/g4u, how would I know how many sectors are available for me to grow the partition to? The df command only seems to operate in blocksizes, not sectors. This is rather new to me... --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: best approach to clone a disk?
I use the Norton ghost program. You have to first install ghost on a window box and then create a ms/dos bootable floppy with ghost on it. Them boot your FreeBSD box with that floppy and ghost image the hard drive with mbr to cdrom or dvd. You can then boot the target box with that same floppy and restore the cdrom/dvd even if the hd is bigger than the source one. Using 2003 version of ghost I first zero out all the free space on FreeBSD so ghost will compress it in the backup image which makes ghost run faster on bkup and restore. dd if=/dev/zero of=/filler bs=1m ; rm /filler dd if=/dev/zero of=/tmp/filler bs=1m ; rm /tmp/filler dd if=/dev/zero of=/usr/filler bs=1m ; rm /usr/filler dd if=/dev/zero of=/var/filler bs=1m ; rm /var/filler Of course this is a hands on method. You have to have physical access to the source and target pc's to do this. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Tuesday, February 14, 2006 11:49 AM To: freebsd-questions@freebsd.org Subject: best approach to clone a disk? Okay, In taking the advice of an earlier poster in suggesting that the instructions located here: http://www.unixcities.com/howto/ Are rather old, allow me to make my question a little broader in scope: What is the best way to clone a disk in FreeBSD? Do you have any step- by-step instructions? The instructions I used above (even replacing the restore -r flag with a -x) produced a core dump. Can I use DD on two disks of different size? Do you recommend Ghost for Unix? Any other suggestions or recommendations should the dump command just not work for me? Thanks in advance! --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: best approach to clone a disk?
Cloning a complete HD mbr and all to second HD in same FreeBSD box is a snap using ghost. That's the way I make additional FreeBSD workstation pc'a. I take the HD from the target and plug it into the FreeBSD box, then boot ghost from floppy, do ghost hd to hd copy, remove cloned HD and put it into target box and boot it up and it runs just like the original. This is not the Freebsd way. But its quick and can also be used for my window boxs on my LAN. You get double the bang for your buck. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Tuesday, February 14, 2006 12:26 PM To: Alec Berryman Cc: freebsd-questions@freebsd.org Subject: Re: best approach to clone a disk? On Feb 14, 2006, at 12:07 PM, Alec Berryman wrote: Joe Auty on 2006-02-14 11:49:05 -0500: What is the best way to clone a disk in FreeBSD? [...] Can I use DD on two disks of different size? Do you recommend Ghost for Unix? g4u is a very nice wrapper for dd. I've had great success with it for identically-sized disks; there shouldn't be a problem if the target disk is larger than the source disk, because you can edit the partitions around and then growfs. Don't overlook tar, though - it doesn't care about disk sizes as long as you have enough free space, doesn't care about partitions, and is simpler in many cases. If you boot up to the fixit image from an install CD you can partition and newfs to however you like and then untar. Hmmm... Could you tell me more about how the fixit images work? I've never had to do that... basically, I just need something that will allow me to boot up into single user mode. I've been using the source disk in single user mode, and doing a mount -u / to make sure that it is mounted read only. Before I go this route, I'm thinking it might be wise to give dump another try from a working boot CD. What is the best way to create myself a boot CD that I can use to boot up in single user mode? As far as your tar idea, the idea seems great, although I'm not sure whether I have enough space to store both the tarball and the space needed to extract the tarball to. We are talking over a 100 gig here. Thanks for your advice! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
Joe Auty on 2006-02-14 12:30:36 -0500: Also, I see that growfs operates off of free sectors. If I were to use dd/g4u, how would I know how many sectors are available for me to grow the partition to? The df command only seems to operate in blocksizes, not sectors. This is rather new to me... You'd find out the number of additional disk sectors during the fdisk or bsdlabel portion of your resizing adventure. pgp0YQTsn9fxv.pgp Description: PGP signature
Re: best approach to clone a disk?
Joe Auty on 2006-02-14 12:26:11 -0500: Hmmm... Could you tell me more about how the fixit images work? Boot up your FreeBSD install media, select the 'Fixit' option (it's most of the way down, keyboard shortcut 'f'), and then choose 'CDROM/DVD'. You'll have a basic FreeBSD install in memory and you can mount whatever partitions you like. pgpkupf2M7Wmd.pgp Description: PGP signature
Re: best approach to clone a disk?
Thanks for this! Unfortunately, I don't really have access to a Windows PC, and I'm also not sure I have enough space to both store an image, and extract the files from the image to the same hard drive... I'm thinking of trying the instructions here: http://www.feyrer.de/g4u/#copydisk and using growfs to grow the partition size. I'm just not sure how to determine how many sectors I should grow the disk to, but perhaps I can cross that bridge when it comes... any ideas? On Feb 14, 2006, at 12:50 PM, fbsd_user wrote: I use the Norton ghost program. You have to first install ghost on a window box and then create a ms/dos bootable floppy with ghost on it. Them boot your FreeBSD box with that floppy and ghost image the hard drive with mbr to cdrom or dvd. You can then boot the target box with that same floppy and restore the cdrom/dvd even if the hd is bigger than the source one. Using 2003 version of ghost I first zero out all the free space on FreeBSD so ghost will compress it in the backup image which makes ghost run faster on bkup and restore. dd if=/dev/zero of=/filler bs=1m ; rm /filler dd if=/dev/zero of=/tmp/filler bs=1m ; rm /tmp/filler dd if=/dev/zero of=/usr/filler bs=1m ; rm /usr/filler dd if=/dev/zero of=/var/filler bs=1m ; rm /var/filler Of course this is a hands on method. You have to have physical access to the source and target pc's to do this. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Tuesday, February 14, 2006 11:49 AM To: freebsd-questions@freebsd.org Subject: best approach to clone a disk? Okay, In taking the advice of an earlier poster in suggesting that the instructions located here: http://www.unixcities.com/howto/ Are rather old, allow me to make my question a little broader in scope: What is the best way to clone a disk in FreeBSD? Do you have any step- by-step instructions? The instructions I used above (even replacing the restore -r flag with a -x) produced a core dump. Can I use DD on two disks of different size? Do you recommend Ghost for Unix? Any other suggestions or recommendations should the dump command just not work for me? Thanks in advance! --- Joe Auty NetMusician: web publishing software for musicians http://www.netmusician.org [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
What is your strategy for dealing with disks of different sizes, like mine are? On Feb 14, 2006, at 1:01 PM, fbsd_user wrote: Cloning a complete HD mbr and all to second HD in same FreeBSD box is a snap using ghost. That's the way I make additional FreeBSD workstation pc'a. I take the HD from the target and plug it into the FreeBSD box, then boot ghost from floppy, do ghost hd to hd copy, remove cloned HD and put it into target box and boot it up and it runs just like the original. This is not the Freebsd way. But its quick and can also be used for my window boxs on my LAN. You get double the bang for your buck. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joe Auty Sent: Tuesday, February 14, 2006 12:26 PM To: Alec Berryman Cc: freebsd-questions@freebsd.org Subject: Re: best approach to clone a disk? On Feb 14, 2006, at 12:07 PM, Alec Berryman wrote: Joe Auty on 2006-02-14 11:49:05 -0500: What is the best way to clone a disk in FreeBSD? [...] Can I use DD on two disks of different size? Do you recommend Ghost for Unix? g4u is a very nice wrapper for dd. I've had great success with it for identically-sized disks; there shouldn't be a problem if the target disk is larger than the source disk, because you can edit the partitions around and then growfs. Don't overlook tar, though - it doesn't care about disk sizes as long as you have enough free space, doesn't care about partitions, and is simpler in many cases. If you boot up to the fixit image from an install CD you can partition and newfs to however you like and then untar. Hmmm... Could you tell me more about how the fixit images work? I've never had to do that... basically, I just need something that will allow me to boot up into single user mode. I've been using the source disk in single user mode, and doing a mount -u / to make sure that it is mounted read only. Before I go this route, I'm thinking it might be wise to give dump another try from a working boot CD. What is the best way to create myself a boot CD that I can use to boot up in single user mode? As far as your tar idea, the idea seems great, although I'm not sure whether I have enough space to store both the tarball and the space needed to extract the tarball to. We are talking over a 100 gig here. Thanks for your advice! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RELENG_6 and a Razer Copperhead mouse don't work
Hi all I run FreeBSD RELENG_6 on an A8N32-SLI Deluxe motherboard http://www.asus.com/products4.aspx?l1=3l2=15l3=0model=744modelmenu=1 with a Razer Copperhead (www.razerzone.com) mouse connected via USB. The OS boots without error and also recognizes my USB keyboard. But when I try to configure my mouse with sysinstall the mouse cursor flickers for a split second and then disappears. An entry /dev/ums0 in rc.conf doesn't help either. It also doesn't work in X, of course. A Logitech MX300 USB mouse works however. Has anyone managed to get this Razer mouse (which is quite comfy) to run correctly with FreeBSD? Or can anyone recommend a gamer-class/high-precision mouse that works correctly? I like my FPS, so that's important to me. Thanks in advance, lars. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
On 2/14/2006 5:44 AM Steve Douville wrote: I'm trying to set up the routing table to force requests to certain IP addresses to use a particular ethernet card. I've used the route command in a number of ways, but still can't come up with how to force to use em1 instead of em0, with the right gateway. em0 is aaa.bbb.ccc.207 em1 is aaa.bbb.ccc.200 Both have netmask of 255.255.255.0 em0 goes to the main port, gateway aaa.bbb.ccc.195. em1 goes to a switch, which is aaa.bbb.ccc.196, the gateway to other ip's on the switch. What I want to end up with is: aaa.bbb.ccc.196link#2em1 aaa.bbb.ccc.209link#2em1 I've tried lots of combinations, using the -ifp flag to force em1, but the only way I can get the gateway to say link#2 is to ping the ip first, whereas it gets put in the table even though it's not found, and then doing a route change. I need some way to put this in rc.local so that it's set up when booted. What happens with a simple 'route add certain ip address aaa.bbb.ccc.196? Or am I misinterpreting what you wish to achieve? HTH, Drew -- Visit The Alchemist's Warehouse Magic Tricks, DVDs, Videos, Books, More! http://www.alchemistswarehouse.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Why myserver be locked ?
Hello On the machine, qmail , pop3,smtp,imap,http,htps,openssl,secureimap,securepop3 and clamav-antivirus run. Do these services cause be locked the machine ? Also my sysctl.conf is below; kern.ipc.maxsockbuf=2097152 kern.ipc.somaxconn=8192 kern.maxfiles=24656 kern.maxfilesperproc=22190 kern.ipc.nmbclusters=51200 net.inet.tcp.rfc1323=1 net.inet.tcp.sendspace=65535 net.inet.tcp.recvspace=65535 net.inet.udp.recvspace=65535 net.inet.udp.maxdgram=65535 net.local.stream.recvspace=65535 net.local.stream.sendspace=65535 net.inet.icmp.bmcastecho=0 net.inet.icmp.maskrepl=0 net.inet.ip.accept_sourceroute=0 net.inet.ip.sourceroute=0 net.inet.icmp.drop_redirect=1 net.inet.tcp.delayed_ack=0 net.inet.ip.forwarding=1 Do above sysctl settings cause be locked the machine ? - Original Message - From: Erik Norgaard [EMAIL PROTECTED] To: Halid Faith [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 7:29 PM Subject: Re: Why myserver be locked ? Halid Faith wrote: Hello I have a Dell1600SC server. The server has 4 CPU and 2 Gbyte Ram. I had been using it based Redhat9 till a month ago. The server was working without problem. After that, I installed FreeBSD6 Release on it. The server started to run be locked. When it is locked, it becomes as freeze.I am not able to do anything on it. I don't believe in any hardware error. I have to push the reset button to reboot it. When I rebooted by the reset button, the machine has not given me any error message in dmesg and /var/log/messages. When the machine rebooted, it works normaly with all of it's services. What should I do ? Can you reproduce the problem? Have you made any observations up till the system freezes up? Check logfiles for error messages, you may set loglevel up so all debugging is also logged. If you don't find any error messages in the log files then try to disable ALL services and see if it runs stable. Enable one service at the time and let it run for a while to check that the system is still stable. First enable services included in base like syslog, ssh and named. Then go on to enable other services. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt Subject ID: 9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72 Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhclient and bootpd on same system OK?
Rob [EMAIL PROTECTED] writes: I have a home network with a router connected to the external internet, and four PCs on the home network. The router provides IPs with its DHCP server. (The router is a small commercial box skrewed to the wall). One of the PCs on the home network is a FreeBSD (6-Stable). This FreeBSD PC runs dhclient to get its IP configuration. So far so good. All other PCs on the network are Windows PCs, but have a BIOS that allow Network boots. Therefore I would like to set up the possibility to boot these PCs as diskless boxes from the FreeBSD PC, using the bootpd server. Hence, I'd like to make this FreeBSD PC a bootpd server. But it is already running dhclient. Would such a setup cause conflicts? It should be fine. Client and server use different UDP ports. But you'd have to try it to be sure. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
General Guidance Using Snort Inline
I've installed snort 2.4.3 on a 6.0 machine and have it logging successfully to a MySQL database on another machine in my home network. I also have BASE installed on that machine to view the alerts. Now I'd like to move forward and do things like block an IP address for 1 hour that has generated 5 alerts on the same rule in the past minute. I've Googled and read about snort inline. But what I've read suggests that snort works with ipfilter. I'm running ipfw2 for my firewall on the same box that's running snort. To use snort inline, do I have to covert my entire firewall to ipfilter? Or will snort use ipfilter to do its inline stuff and ipfw2 can continue to work on its own? I'm confused about how this should work and would appreciate any nudges to guides regarding this setup. Thanks, Drew -- Visit The Alchemist's Warehouse Magic Tricks, DVDs, Videos, Books, More! http://www.alchemistswarehouse.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Why myserver be locked ?
I would stop over riding all those sysctl knobs and see what happens when using the defaults. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Halid Faith Sent: Tuesday, February 14, 2006 1:45 PM To: Erik Norgaard Cc: freebsd-questions@freebsd.org Subject: Re: Why myserver be locked ? Hello On the machine, qmail , pop3,smtp,imap,http,htps,openssl,secureimap,securepop3 and clamav-antivirus run. Do these services cause be locked the machine ? Also my sysctl.conf is below; kern.ipc.maxsockbuf=2097152 kern.ipc.somaxconn=8192 kern.maxfiles=24656 kern.maxfilesperproc=22190 kern.ipc.nmbclusters=51200 net.inet.tcp.rfc1323=1 net.inet.tcp.sendspace=65535 net.inet.tcp.recvspace=65535 net.inet.udp.recvspace=65535 net.inet.udp.maxdgram=65535 net.local.stream.recvspace=65535 net.local.stream.sendspace=65535 net.inet.icmp.bmcastecho=0 net.inet.icmp.maskrepl=0 net.inet.ip.accept_sourceroute=0 net.inet.ip.sourceroute=0 net.inet.icmp.drop_redirect=1 net.inet.tcp.delayed_ack=0 net.inet.ip.forwarding=1 Do above sysctl settings cause be locked the machine ? - Original Message - From: Erik Norgaard [EMAIL PROTECTED] To: Halid Faith [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 7:29 PM Subject: Re: Why myserver be locked ? Halid Faith wrote: Hello I have a Dell1600SC server. The server has 4 CPU and 2 Gbyte Ram. I had been using it based Redhat9 till a month ago. The server was working without problem. After that, I installed FreeBSD6 Release on it. The server started to run be locked. When it is locked, it becomes as freeze.I am not able to do anything on it. I don't believe in any hardware error. I have to push the reset button to reboot it. When I rebooted by the reset button, the machine has not given me any error message in dmesg and /var/log/messages. When the machine rebooted, it works normaly with all of it's services. What should I do ? Can you reproduce the problem? Have you made any observations up till the system freezes up? Check logfiles for error messages, you may set loglevel up so all debugging is also logged. If you don't find any error messages in the log files then try to disable ALL services and see if it runs stable. Enable one service at the time and let it run for a while to check that the system is still stable. First enable services included in base like syslog, ssh and named. Then go on to enable other services. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt Subject ID: 9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72 Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
What doesn't work on desktop FreeBSD ? (ex Webcams)
I bought a QuickCam Orbit MP, which I apparently must use under Windows (or Linux). From what I've seen online, not many (if any), people are using webcams under FreeBSD. I was curious if there were other things that also were not realistic to do (I'm not complaining). Some of the things that do work are my soundcard, nVidia card, gigabit NIC, opengl games, wine, accelerated qemu, hp inkjet printer, and lots of wonderful free software. Qemu nullified my need for VMWare (though I own 5.5 for win and linux). OpenOffice, Abiword, and Firefox with flash and java works. Lots of stuff works. I'm just curious if I am going to hit any roadblocks down the road. (Maybe there is a way to get my Quickcam to work using the RH 8.0compatibilty layer) thank! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
On 2/14/2006 11:17 AM Steve Douville wrote: Weird stuff... route add -host aaa.bbb.ccc.209 aaa.bbb.ccc.196 -ifp em1 What happens if you leave off the -ifp em1? Cheers, Drew doesn't work even if i've already set aaa.bbb.ccc.196 link#2 em1 The only way things work well is if the gateway is set to link#2. The only way I can set it to link#2 is if the address was accessed, unsuccessfully, creating a record with link#1 as the gateway and then issuing a route change command to move it to link#2. it'd be much easier if i could just type route add -host aaa.bbb.ccc.xxx link#2 -ifp em1 but it doesn't recognize link#2 as a valid address, even though it uses it in the table by default!! Haven't tried the ipfilter yet. Maybe i'll give that a whirl, too. - Original Message - From: Drew Tomlinson [EMAIL PROTECTED] To: Steve Douville [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 1:45 PM Subject: Re: IP Routing Question What happens with a simple 'route add certain ip address aaa.bbb.ccc.196? Or am I misinterpreting what you wish to achieve? HTH, Drew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
By default, it sets the netif to em0 - Original Message - From: Drew Tomlinson [EMAIL PROTECTED] To: Steve Douville [EMAIL PROTECTED] Cc: FreeBSD Questions freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 2:40 PM Subject: Re: IP Routing Question On 2/14/2006 11:17 AM Steve Douville wrote: Weird stuff... route add -host aaa.bbb.ccc.209 aaa.bbb.ccc.196 -ifp em1 What happens if you leave off the -ifp em1? Cheers, Drew doesn't work even if i've already set aaa.bbb.ccc.196 link#2 em1 The only way things work well is if the gateway is set to link#2. The only way I can set it to link#2 is if the address was accessed, unsuccessfully, creating a record with link#1 as the gateway and then issuing a route change command to move it to link#2. it'd be much easier if i could just type route add -host aaa.bbb.ccc.xxx link#2 -ifp em1 but it doesn't recognize link#2 as a valid address, even though it uses it in the table by default!! Haven't tried the ipfilter yet. Maybe i'll give that a whirl, too. - Original Message - From: Drew Tomlinson [EMAIL PROTECTED] To: Steve Douville [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 1:45 PM Subject: Re: IP Routing Question What happens with a simple 'route add certain ip address aaa.bbb.ccc.196? Or am I misinterpreting what you wish to achieve? HTH, Drew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: What doesn't work on desktop FreeBSD ? (ex Webcams)
On Tue, Feb 14, 2006 at 02:33:15PM -0500, Xn Nooby wrote: I bought a QuickCam Orbit MP, which I apparently must use under Windows (or Linux). From what I've seen online, not many (if any), people are using webcams under FreeBSD. I was curious if there were other things that also were not realistic to do (I'm not complaining). Some of the things that do work are my soundcard, nVidia card, gigabit NIC, opengl games, wine, accelerated qemu, hp inkjet printer, and lots of wonderful free software. Qemu nullified my need for VMWare (though I own 5.5 for win and linux). OpenOffice, Abiword, and Firefox with flash and java works. Lots of stuff works. I'm just curious if I am going to hit any roadblocks down the road. My printer works, but the scanner portion requires a reboot to windows or I have plug it into my powerbook. It's an HP PSC something or other. Midi - well... most open source operating systems aren't great in that area My nvidia card works except that gtk2 applications get this very strange text decay pretty often. It's very strange that the text gets very blurry and distorted sometimes. Only happens with the nvidia driver and composite render accel. I posted to the nvidia freebsd forum about it, one other person verified the issue... doesn't look like it's going to get fixed any time soon. (note - never had that problem with linux) My quickcam pro doesn't work, but I never expected it to really. My ipod video is recognized but I can't access the device. I hear this may be fixed now, I have to cvsup my tree and see if it works now. I have a couple of logitech dual action joypad things, they kinda work, but they don't fully work. Luckily I have 2 other operating systems to choose from if I really need to use one of the non-working things I mentioned above ;) Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
On 2/14/2006 11:43 AM Steve Douville wrote: By default, it sets the netif to em0 OK, then what about 'route add -host aaa.bbb.ccc.209 aaa.bbb.ccc.200'? And if that doesn't work, can I please see 'netstat -rn'? You can obfuscate the IPs if you wish. Cheers, Drew - Original Message - From: Drew Tomlinson [EMAIL PROTECTED] To: Steve Douville [EMAIL PROTECTED] Cc: FreeBSD Questions freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 2:40 PM Subject: Re: IP Routing Question On 2/14/2006 11:17 AM Steve Douville wrote: Weird stuff... route add -host aaa.bbb.ccc.209 aaa.bbb.ccc.196 -ifp em1 What happens if you leave off the -ifp em1? Cheers, Drew doesn't work even if i've already set aaa.bbb.ccc.196 link#2 em1 The only way things work well is if the gateway is set to link#2. The only way I can set it to link#2 is if the address was accessed, unsuccessfully, creating a record with link#1 as the gateway and then issuing a route change command to move it to link#2. it'd be much easier if i could just type route add -host aaa.bbb.ccc.xxx link#2 -ifp em1 but it doesn't recognize link#2 as a valid address, even though it uses it in the table by default!! Haven't tried the ipfilter yet. Maybe i'll give that a whirl, too. - Original Message - From: Drew Tomlinson [EMAIL PROTECTED] To: Steve Douville [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 1:45 PM Subject: Re: IP Routing Question What happens with a simple 'route add certain ip address aaa.bbb.ccc.196? Or am I misinterpreting what you wish to achieve? HTH, Drew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Bootstrapping usb flash
I have a Lacie Orange 7Gb usb flash drive, into which I've tried to install FreeBSD 6-RELEASE a couple of times. I've had no luck booting it, only a invalid diskslice -message after normal installation and boot. However, netbsd3 boots nicely with default install off the drive, as does archlinux after modifying the mkinitrd.conf a little. I was wondering if there is something I could do to make FreeBSD boot off it too, since it is the OS I would prefer. TIA ps. I'm not subscribed atm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
On 2006-02-14 13:19, Joe Auty [EMAIL PROTECTED] wrote: What is your strategy for dealing with disks of different sizes, like mine are? See a very similar thread which started a few days back: http://lists.freebsd.org/pipermail/freebsd-questions/2006-February/112498.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Samba port
Hi, I'm rather new to FreeBSD (I usually use linux and I'm trying Fbsd. I upgraded my samba port yesterday, but after, I couldn't reconnect to it. I found out that the upgrade (using cvsup/portupgrade) removed smb.conf and stopped smb and cups? Why is it this way? It is not the only port that gets stopped on an upgrade. Is that normal? Shouldn't it at least try to restart? Regards, -- Ugo - Please don't send a copy of your reply by e-mail. I read the list. - Please avoid top-posting, long signatures and HTML, and cut the irrelevant parts in your replies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NAS advice?
On Tue, 14 Feb 2006, DAve wrote: (I am cross posting to FreeBSD questions and Bacula Users, I will not be cross posting replies) I've been crying for four years that we needed a decent backup system and I always got put off. It's on order, can you resubmit an updated equipment list. Yea, checks in the mail. So yesterday I am told that we have some equipment we got in another deal and I can have it to backup my NOC. I plan to run Bacula which I already have on some individual machines. I want to have Bacula clients on all my machines talking to a single machine running the Bacula director, hopefully using the NAS machines for storage. This is the equipment they threw at me, it is old, but amazingly, unused. One Dell Poweredge 750, 2.8ghz CPU, 1gb ram, 2 500gb SATA Maxtor drives(yuk!), CERC SATA controller. Be very careful here. I run OpenBSD with CMU RAIDFrame RAID-1 mirrors and FreeBSD 5.3 with GEOM/GMirror RAID-1 on this platform for embeded devices. It's rock-solid, except Dell phased the 750 for the 850 and went from ICH6 to ICH7 Intel Chipsets? Also, they're now OEM'ing Broadcom bge(4) based NICs instead of Intel em(4), so consider yourself lucky in a sense :}. The point is that the 850 will only run the very latest FreeBSD 6.1-BETA1 snapshots contain support for the newer chips. ~lava ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
--On Tuesday, February 14, 2006 11:40:45 -0800 Drew Tomlinson [EMAIL PROTECTED] wrote: On 2/14/2006 11:17 AM Steve Douville wrote: Weird stuff... route add -host aaa.bbb.ccc.209 aaa.bbb.ccc.196 -ifp em1 Shouldn't this be: route add -host aaa.bbb.ccc.ddd aaa.bbb.ccc.209 Where aaa.bbb.ccc.ddd is not the other gateway (aaa.bbb.ccc.196) I.e, aaa.bbb.ccc.ddd should be an address on the switch aaa.bbb.ccc.209 Maybe even adding ' -interface ' at the end of the command. [man route] jw What happens if you leave off the -ifp em1? Cheers, Drew pgpQYBrxCeXFx.pgp Description: PGP signature
Re: choosing a UPS
Hello Peter, Saturday, February 4, 2006, 1:44:57 AM, you wrote: P I am in the market for a UPS to effect automatic shutdown (via DB9) of a P file server (which will run FreeBSD 6.0). I have noticed some large price P fluctuations and I don't understand why. I am comparing units of equal P strength, say 750 VA. Any comments on what I should be looking for? I use UNELT Smart Double 1000 (1000 VA, AVR, works good with NUT (protocol megatec), etc), up to 3 workstations. As UPS it's works without problems, but his soft for windows full shit! But with NUT all works fine. -- Best regards, Playnetmailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NAS advice?
Has anyone used the freenas.org distro? On what equipment? Thanks. On 2/14/06, Brian A. Seklecki [EMAIL PROTECTED] wrote: On Tue, 14 Feb 2006, DAve wrote: (I am cross posting to FreeBSD questions and Bacula Users, I will not be cross posting replies) I've been crying for four years that we needed a decent backup system and I always got put off. It's on order, can you resubmit an updated equipment list. Yea, checks in the mail. So yesterday I am told that we have some equipment we got in another deal and I can have it to backup my NOC. I plan to run Bacula which I already have on some individual machines. I want to have Bacula clients on all my machines talking to a single machine running the Bacula director, hopefully using the NAS machines for storage. This is the equipment they threw at me, it is old, but amazingly, unused. One Dell Poweredge 750, 2.8ghz CPU, 1gb ram, 2 500gb SATA Maxtor drives(yuk!), CERC SATA controller. Be very careful here. I run OpenBSD with CMU RAIDFrame RAID-1 mirrors and FreeBSD 5.3 with GEOM/GMirror RAID-1 on this platform for embeded devices. It's rock-solid, except Dell phased the 750 for the 850 and went from ICH6 to ICH7 Intel Chipsets? Also, they're now OEM'ing Broadcom bge(4) based NICs instead of Intel em(4), so consider yourself lucky in a sense :}. The point is that the 850 will only run the very latest FreeBSD 6.1-BETA1 snapshots contain support for the newer chips. ~lava ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- -jmg -sapere aude ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Large imap server.
Bill Campbell writes: Cyrus scaling? We currently user Courier and so far I am far from impressed with it's scalability. We have NFS servers for the storage and then front end machines for the POP/IMAP connections. The footprint per connection is about 3MB to 5MB on the client. On a machine with 2GB that means about 600 connections... but the machines usually are dying around 400 connections. Perhaps on one mongo server. I have read totally the opposity that the only way to scale a mail setup beyond 10s of thousands is with Cyrus .. or some other propietary system. Have note read of any truly large Courier installation. imap from a central server housing home directories, and have seen essentially linear performance as servers are added. How many connections can you handle per front-end machine? What type of configuration? I inheritted the setup I am working with and little by little we are building things right.. including better mail store machines. Also as part of the initial question was which sysctl/kernel settings are usefull in dedicated mail clients/servers ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
15 digit HEX string in /var/log/messages
Greetings all, Running FreeBSD 5.4 stable on intel x86 platform. Need help in deciphering /figuring out what is the cause of strange 15 character HEX strings that is logging in /var/log/messages: [...] Feb 14 13:11:39 hostx kernel: 3E0D0A3C6172656 Feb 14 13:14:12 hostx kernel: 4163636570742D4 Feb 14 13:14:19 hostx kernel: 69742532464C697 Feb 14 13:14:26 hostx kernel: 4163636570742D4 Feb 14 13:31:44 hostx kernel: 732E616861696E7 Feb 14 13:32:31 hostx kernel: 415577426F41475 Feb 14 13:32:31 hostx kernel: 415577426F41475 Feb 14 13:33:40 hostx kernel: 2A0D0A416363657 Feb 14 13:33:48 hostx kernel: 2E616861696E746 Feb 14 13:33:49 hostx kernel: 736573736D656E7 Feb 14 13:43:22 hostx kernel: 45414141412F2F2 Feb 14 14:00:38 hostx kernel: 780D0A416363657 Feb 14 14:02:45 hostx kernel: 0A200D0A09626F7 Feb 14 14:13:19 hostx kernel: 70616765732F686 Feb 14 14:39:10 hostx kernel: 64066FF3ED39E31 Feb 14 14:47:57 hostx kernel: 414141414141414 [...] This has been occurring for several weeks now. First thought was some type of attack but our IDS doesn't pick up anything unusual. Google searches doesn't give any clues. Can anyone shed some light on this? TIA. --T ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NAS advice?
Brian A. Seklecki wrote: On Tue, 14 Feb 2006, DAve wrote: (I am cross posting to FreeBSD questions and Bacula Users, I will not be cross posting replies) I've been crying for four years that we needed a decent backup system and I always got put off. It's on order, can you resubmit an updated equipment list. Yea, checks in the mail. So yesterday I am told that we have some equipment we got in another deal and I can have it to backup my NOC. I plan to run Bacula which I already have on some individual machines. I want to have Bacula clients on all my machines talking to a single machine running the Bacula director, hopefully using the NAS machines for storage. This is the equipment they threw at me, it is old, but amazingly, unused. One Dell Poweredge 750, 2.8ghz CPU, 1gb ram, 2 500gb SATA Maxtor drives(yuk!), CERC SATA controller. Be very careful here. I run OpenBSD with CMU RAIDFrame RAID-1 mirrors and FreeBSD 5.3 with GEOM/GMirror RAID-1 on this platform for embeded devices. It's rock-solid, except Dell phased the 750 for the 850 and went from ICH6 to ICH7 Intel Chipsets? Also, they're now OEM'ing Broadcom bge(4) based NICs instead of Intel em(4), so consider yourself lucky in a sense :}. The point is that the 850 will only run the very latest FreeBSD 6.1-BETA1 snapshots contain support for the newer chips. ~lava Ahh, so they will be fully supported chipsets and on the way to legacy by them time I am allowed to purchase new equipment again ;^). Thanks for the heads up, good to know if I come by an 850 for a client's colo box. I've been getting PE2650's, at least the last two I converted to FreeBSD webservers were. They work beautifully BTW. DAve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Samba port
On Tue, Feb 14, 2006 at 03:31:02PM -0500, Ugo Bellavance wrote: Hi, I'm rather new to FreeBSD (I usually use linux and I'm trying Fbsd. I upgraded my samba port yesterday, but after, I couldn't reconnect to it. I found out that the upgrade (using cvsup/portupgrade) removed smb.conf and stopped smb and cups? Why is it this way? It is not the only port that gets stopped on an upgrade. Is that normal? Shouldn't it at least try to restart? portupgrade (and portmanager) will try to restart upgraded daemons (smbd, exim, or whatever) in order that they run the new code. As far as I am aware, an upgraded port should not touch an existing config file. Did you upgrade from version 2 to version 3? This might account for it, but I can't remeber if I had similar problems making that particular journey. Anyway, for clues, you can try starting samba directly: # /usr/local/etc/rc.d/samba.sh start and see what debuggibg you get. Welcome to FreeBSD, btw. Hope you stick around! HTH, Dan -- Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3B9D 8BBB EB03 BA83 5DB4 3B88 86FC F03A 90A1 BE8F _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ pgpwsBBUReM9C.pgp Description: PGP signature
Re: Large imap server.
Foo Ji-Haw writes: I've been using FreeBSD + courier IMAP + MySQL (for user authentication). It's hardly a load issue for more than 200,000 users, and that was years ago. Would you mind sharing some info on the setup? First time I read about a courier setup of that size. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: choosing a UPS
Could you tell how do you configure the ups? Thanks On 2/14/06, Playnet [EMAIL PROTECTED] wrote: Hello Peter, Saturday, February 4, 2006, 1:44:57 AM, you wrote: P I am in the market for a UPS to effect automatic shutdown (via DB9) of a P file server (which will run FreeBSD 6.0). I have noticed some large price P fluctuations and I don't understand why. I am comparing units of equal P strength, say 750 VA. Any comments on what I should be looking for? I use UNELT Smart Double 1000 (1000 VA, AVR, works good with NUT (protocol megatec), etc), up to 3 workstations. As UPS it's works without problems, but his soft for windows full shit! But with NUT all works fine. -- Best regards, Playnetmailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: General Guidance Using Snort Inline
I am pretty sure there are modules for PF(so i guess IPFW2 should have also). Try google and the snort mail list On 2/14/06, Drew Tomlinson [EMAIL PROTECTED] wrote: I've installed snort 2.4.3 on a 6.0 machine and have it logging successfully to a MySQL database on another machine in my home network. I also have BASE installed on that machine to view the alerts. Now I'd like to move forward and do things like block an IP address for 1 hour that has generated 5 alerts on the same rule in the past minute. I've Googled and read about snort inline. But what I've read suggests that snort works with ipfilter. I'm running ipfw2 for my firewall on the same box that's running snort. To use snort inline, do I have to covert my entire firewall to ipfilter? Or will snort use ipfilter to do its inline stuff and ipfw2 can continue to work on its own? I'm confused about how this should work and would appreciate any nudges to guides regarding this setup. Thanks, Drew -- Visit The Alchemist's Warehouse Magic Tricks, DVDs, Videos, Books, More! http://www.alchemistswarehouse.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP Routing Question
196 is the switch... 209 is a port on the switch - Original Message - From: John Webster [EMAIL PROTECTED] To: Drew Tomlinson [EMAIL PROTECTED] Cc: Steve Douville [EMAIL PROTECTED]; FreeBSD Questions freebsd-questions@freebsd.org Sent: Tuesday, February 14, 2006 4:08 PM Subject: Re: IP Routing Question ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Samba port
Daniel Bye wrote: On Tue, Feb 14, 2006 at 03:31:02PM -0500, Ugo Bellavance wrote: Hi, I'm rather new to FreeBSD (I usually use linux and I'm trying Fbsd. I upgraded my samba port yesterday, but after, I couldn't reconnect to it. I found out that the upgrade (using cvsup/portupgrade) removed smb.conf and stopped smb and cups? Why is it this way? It is not the only port that gets stopped on an upgrade. Is that normal? Shouldn't it at least try to restart? portupgrade (and portmanager) will try to restart upgraded daemons (smbd, exim, or whatever) in order that they run the new code. Maybe it tried, but the config for samba disappeared. I don't know why it didn't restart cups though. As far as I am aware, an upgraded port should not touch an existing config file. Did you upgrade from version 2 to version 3? This might account for it, but I can't remeber if I had similar problems making that particular journey. No, it was just a security upgrade. Anyway, for clues, you can try starting samba directly: # /usr/local/etc/rc.d/samba.sh start and see what debuggibg you get. I got it now, I copied the samba conf file, restarted cups, then samba. Welcome to FreeBSD, btw. Hope you stick around! Hard to tell. Very different from linux. I try to learn FreeBSD since it seems interesting, but I'm meeting many problems that I don't get in linux. For example, with yum, up2date or apt, such an upgrade would have been w/o issue. HTH, Dan -- Ugo - Please don't send a copy of your reply by e-mail. I read the list. - Please avoid top-posting, long signatures and HTML, and cut the irrelevant parts in your replies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cant login to FTP server.
Hi, I've been looking at the FreeBSD handbook's section about ipnat and ipf for a few hours now, but I cannot seem to make this work. Outgoing FTP'ing works just fine. In fact, I have absolutely no problems making outgoing FTP connections from my workstation (Which is behind my server) Also, I have absolutely no problem with making connections to my server from inside my LAN. The problem is when someone tries to connect to my servers FTP server. It just doesnt work! In addition to the rules and log I pasted below, here are my tweaked rulesets: /etc/ipf.rules: ___IPF___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Allow everything on local net pass in on sis0 all pass out on sis0 all # loopback stuff pass in quick on lo0 all pass out quick on lo0 all # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 169.254.0.0/16 to any block in quick on rl0 from 192.0.2.0/24 to any block in quick on rl0 from 204.152.64.0/23 to any block in quick on rl0 from 224.0.0.0/3 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server (Commented out... the Steam Dedicated Server blows) #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port = 27015 # SRCDS Rcon # Block everything else block in quick on rl0 all ___IPF___ /etc/ipnat.rules __IPNAT__ map rl0 192.168.0.0/29 - 0/32 proxy port 21 ftp/tcp map rl0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map rl0 192.168.0.0/29 - 0/32 portmap tcp/udp 1025:65000 map rl0 192.168.0.0/29 - 0/32 __IPNAT__ On 2/14/06, fbsd_user [EMAIL PROTECTED] wrote: There taken right from the ipfilter section of the handbook. Maybe you should read that section in the handbook. Post the complete contents of your ipf rules and nat rules for review -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 8:59 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Cant login to FTP server. Hi, the server is connected directly to the wild, and I'm connecting from a remote non-local host. Are you sure that those are ipf rules? They look a lot like ipnat rules. On 2/14/06, fbsd_user [EMAIL PROTECTED] wrote: Daniel You did not say where you were running ftp from. like from LAN box to gateway server or from gateway box to public internet remote ftp site or from public internet remote user to your gateway ftp server. I am guessing its from gateway box to public internet remote ftp site. Your nat rules need to look like this example. You are missing the second rule. map dc0 10.0.10.0/29 - 0/32 proxy port 21 ftp/tcp map dc0 0.0.0.0/0 - 0/32 proxy port 21 ftp/tcp map dc0 10.0.10.0/29 - 0/32 The first rule handles all FTP traffic for the private LAN. The second rule handles all FTP traffic from the gateway. The third rule handles all non-FTP traffic for the private LAN. All the non-FTP gateway traffic is using the public IP address by default so there is no ipnat rule needed. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 7:42 AM To: [EMAIL PROTECTED] Subject: Cant login to FTP server. Hi, I have some FTP login problems. I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled. ___SNIP___ Status: Connecting to dienub.org ... Status: Connected with dienub.org. Waiting for welcome message... Response: 220 m00h.dienub.org FTP server (Version 6.00LS) ready. Command:USER ** Response: 331 Password required for alive. Command:PASS ** Response: 230 User alive logged in. Command:FEAT Response: 500 FEAT: command not understood. Command:SYST Response: 215 UNIX Type: L8 Version: BSD-199506 Status: Connected Status: Retrieving
Re: core dump with dump command in single user mode
Joe Auty [EMAIL PROTECTED] writes: On Feb 14, 2006, at 9:08 AM, Lowell Gilbert wrote: Joe Auty [EMAIL PROTECTED] writes: Hello, Following the instructions here: http://www.unixcities.com/howto/ index.html I did a: Those directions are a little outdated, but the problem is really just that you didn't follow the directions closely enough: dump -0f - /usr | restore -rf - /backup/usr should have been more like dump -0f - /usr | (cd /backup/usr;restore -xf - ) Okay, I'm still getting: no space left in string table abort? If I say n, it just core dumps Funny, I can't find that message in the source for dump at all. The message, in -STABLE, is Do you want to abort dump?. I also can't seem to find the string table error message, but I may just have failed to search the right library so far. Are you running something before 5.2? Any other suggestions? Plenty. If there are no special files (fifos, etc.) on the disk, any archiver will do it. e.g., tar(1) Would using dd be a valid workaround to cloning my disk? Sure. If you really want a *clone* of the disk, it's a good option. If having the same data files in the same filestructure would do, then copying other attributes is overkill. My disk is over a 100 gigabytes, could this be what is causing dump to crap out? Could be. Check your memory statistics while you're doing it, and see if you run out of VM. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best approach to clone a disk?
Giorgos Keramidas wrote: On 2006-02-14 13:19, Joe Auty [EMAIL PROTECTED] wrote: What is your strategy for dealing with disks of different sizes, like mine are? See a very similar thread which started a few days back: http://lists.freebsd.org/pipermail/freebsd-questions/2006-February/112498.html Yes, and I just posted a brief report on my experience with this today, with the same thread subject line. Other than the fact that Giorgos had forgotten three keystrokes, which I corrected in my one for the archives post this morning, I have a feeling my 12-year-old son, or at least my college age apprentice could have cloned a FreeBSD installation in a relatively short period of time with dump | restore. Or maybe a trained monkey. Nah, nevermind Kevin Kinsey -- Trying to define yourself is like trying to bite your own teeth. -- Alan Watts ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Cant login to FTP server.
Daniel change this # Allow everything on local net pass in on sis0 all pass out on sis0 all to this # Allow everything on local net pass in quick on sis0 all pass out quick on sis0 all change this pass out quick on rl0 proto tcp all keep state to pass out quick on rl0 proto tcp all flags S keep state change this # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd to this # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port = 21 flags S keep state #FTP pass in quick on rl0 proto tcp from any to any port = 22 flags S keep state #SSH pass in quick on rl0 proto tcp from any to any port = 80 flags S keep state #WWW pass in quick on rl0 proto tcp from any to any port = 113 flags S keep state #oidentd Next you say that remote users on the public internet can not ftp into your gateway firewall/ftp box. The way your firewall is configured only passive ftp can pass through. Your public internet remote user has to tell his ftp login request to use passive mode. To allow active native ftp from remote users add this # To allow remote active ftp data channel pass in quick on rl0 proto tcp from any to any port = 20 flags S keep state Your local LAN users can use either passive or active ftp because you have no restrictions as shown by there rules. # Allow everything on local net pass in on sis0 all pass out on sis0 all Here's an very important security point about ftp. FTP passes the login id/pw and data in the clear and it can be captured by a sniffer any place between the remote and host site. Once the valid login id/pw is captured the attacker can gain access to your box as authorized user and then start trying to gain root access after which your box is compromised. Think very hard about allowing native ftp access to you box, it's a very big security risk. You should not be making native ftp available to public login unless you are running a anonymous ftp server within a jail. You should use SSH's sftp which first creates a tunnel between remote and host and then encrypts the login id/pw and the complete data stream. Check the archives for the last few days for thread about seting up ssh. There is a complete step by step how to posted in the thread. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daniel A. Sent: Tuesday, February 14, 2006 5:37 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Cant login to FTP server. Hi, I've been looking at the FreeBSD handbook's section about ipnat and ipf for a few hours now, but I cannot seem to make this work. Outgoing FTP'ing works just fine. In fact, I have absolutely no problems making outgoing FTP connections from my workstation (Which is behind my server) Also, I have absolutely no problem with making connections to my server from inside my LAN. The problem is when someone tries to connect to my servers FTP server. It just doesnt work! In addition to the rules and log I pasted below, here are my tweaked rulesets: /etc/ipf.rules: ___IPF___ # Let clients behind the firewall send out to the internet, and replies to # come back in by keeping state. pass out quick on rl0 proto tcp all keep state pass out quick on rl0 proto udp all keep state pass out quick on rl0 proto icmp all keep state # Allow everything on local net pass in on sis0 all pass out on sis0 all # loopback stuff pass in quick on lo0 all pass out quick on lo0 all # Since nothing should be coming from these address ranges, block them block in quick on rl0 from 192.168.0.0/16 to any block in quick on rl0 from 172.16.0.0/12 to any block in quick on rl0 from 127.0.0.0/8 to any block in quick on rl0 from 10.0.0.0/8 to any block in quick on rl0 from 169.254.0.0/16 to any block in quick on rl0 from 192.0.2.0/24 to any block in quick on rl0 from 204.152.64.0/23 to any block in quick on rl0 from 224.0.0.0/3 to any # Let's let people access the services running behind this system # Let's let people access the services running on this system pass in quick on rl0 proto tcp from any to any port = 21 #FTP pass in quick on rl0 proto tcp from any to any port = 22 #SSH pass in quick on rl0 proto tcp from any to any port = 80 #WWW pass in quick on rl0 proto tcp from any to any port = 113 #oidentd # Steam Dedicated Server (Commented out... the Steam Dedicated Server blows) #pass in quick on rl0 proto udp from any to any port = 1200 # Friends network #pass in quick on rl0 proto udp from any to any port 26999 27016 # Gameport #pass in quick on rl0 proto udp from any to any port = 27020 #pass in quick on rl0 proto tcp from any to any port 27029 27040 #pass in quick on rl0 proto tcp from any to any port =
Questions about FreeBSD arp table
I have a few questions with arp on FreeBSD Does the FreeBSD maintain its arp information in a File? Does rebooting FreeBSD clear the arp table? am I correct with arp -d * should clear all arp information? Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IPv6 and a local network behind a gateway
Hi all, I saw some time ago a similiar question on the mailinglist but the relevant config files were on a temporarly server, so I can't reconstruct the situation. So I hope someone could say the things a second time ;-) Here is my setup: I'm running a FreeBSD server behind a DSL-Box (NAT) with one network interface. This server is connected with two other workstation through a switch. I register by sixxs (a IPv6 service provider). After some installation I got my IPv6 connection between the sixxs provider and my FreeBSD server running! I can ping www.kame.net and when I go to ww.kame.net with lynx I can see the dancing kame. So the setup should be fine. I setup rtadvd for the workstations and it seems to be ok. The workstations get their IPv6 addresses but I can't ping anything outside my LAN. Summary: Connecting to the IPv6-world from the FreeBSD-server is OK but I don't get any connection from the clients. Here are the configs: /etc/rc.conf ipv6_enable=YES ipv6_defaultrouter=2001:6f8:900:612::1%em0 ipv6_default_interface=gif0 gif_interfaces=gif0 gifconfig_gif0=192.168.130.2 212.224.0.189 ipv6_ifconfig_gif0=2001:6f8:900:612::2 2001:6f8:900:612::1 prefixlen 128 ipv6_gateway_enable=YES ipv6_ifconfig_em0=2001:6f8:900:612::3 prefixlen 64 rtadvd_enable=YES rtadvd_interfaces=em0 /etc/rtadvd.conf em0:\ :addrs#1:addr=2001:6f8:900:612:::prefixlen#64:tc=ether: Hardware (FreeBSD server): one network interface card: em0 Software (FreeBSD server): default installation with the latest updates tcpdump from the FreeBSD server when I try to ping6 www.kame.net from a client # tcpdump -ni gif0 icmp6 00:59:36.917672 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 0, length 16 00:59:37.922935 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 1, length 16 00:59:38.930710 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 2, length 16 00:59:39.933212 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 3, length 16 00:59:40.938355 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 4, length 16 00:59:41.943378 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 5, length 16 00:59:42.948514 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 6, length 16 00:59:43.953657 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 7, length 16 00:59:44.958794 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 8, length 16 00:59:45.963937 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 9, length 16 00:59:46.969333 IP6 2001:6f8:900:612:211:24ff:fee1:776c 2001:200:0:8002:203:47ff:fea5:3085: ICMP6, echo request, seq 10, length 16 I don't have an more ideas! I always thought the problem is the server behind the NAT but the surfen and ping'ing from the server itself is no problem, so I think the problem must be somewhere else?! Best regards, Stefan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Questions about FreeBSD arp table
On 2006-02-14 15:50, Sean Murphy [EMAIL PROTECTED] wrote: I have a few questions with arp on FreeBSD Does the FreeBSD maintain its arp information in a File? No. It's not really necessary, the way arp works now. Does rebooting FreeBSD clear the arp table? Yes. It would be silly to keep an arp table from a previous run of the system and then mess things up when, for instance, a laptop moves from one network to another, right? :) am I correct with arp -d * should clear all arp information? No. But you can use ``arp -d -a'' for this. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sysinstall 6.1 b1 input/output error unable to transfer from both CD or FTP
hello list in the middle of installing freebsd [6.1 b1] over an earlier ubuntu trial during transfer from CD to hard drive, i began to see unable to transfer ... from acd0 error messages for first the doc, manpages, dict, and base distributions. i switched the install media to ftp and successfully installed the doc, manpages and dict distributions (i think!) before again encountering the write failure on transfer error for the base distribution. i burned the install cds at a 16x speed and 'verified' them with nero, if that makes any difference. my archive searches with the errors above pasted in produced conflicting or dated results. is there a way to easily narrow down the list of culprits? any help greatly appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Weird ipf redirected traffic with WCCP
Hey guys, I wonder if you can help me figure out why my squid proxy never sees any traffic on the loopback,3128 I've setup ipf to log everything and it appears after the redirection it immediately gets spat out the ethernet interface to be lost in the ether. Why on earth would the routing table / ipf doing that?? Squid sees nothing and nothing appears on the loopback interface. == Feb 15 10:57:24 thing3 ipmon[296]: 10:57:24.071776 fxp0 @-1:-1 p 204.21.169.1 - 204.21.169.66 PR gre len 20 (72) IN Feb 15 10:57:24 thing3 ipmon[296]: 10:57:24.071791 gre0 @-1:-1 p 192.168.1.28,2147 - 127.0.0.1,3128 PR tcp len 20 48 -S IN NAT Feb 15 10:57:24 thing3 ipmon[296]: 10:57:24.071824 fxp0 @-1:-1 p 127.0.0.1,3128 - 192.168.1.28,2147 PR tcp len 20 48 -AS OUT == Any ideas? Thanks, Alan. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
automount external usb hard drive?
Hi, is it possible to have an external USB hard drive automounted once connected? I am designing a backup solution for some non-technical folks and this would help greatly. I will be running FreeBSD 6.0. Thanks in advance. -- Peter __ Find your next car at http://autos.yahoo.ca ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Large imap server.
On Tue, Feb 14, 2006, Francisco Reyes wrote: Bill Campbell writes: Cyrus scaling? We currently user Courier and so far I am far from impressed with it's scalability. We have NFS servers for the storage and then front end machines for the POP/IMAP connections. The footprint per connection is about 3MB to 5MB on the client. On a machine with 2GB that means about 600 connections... but the machines usually are dying around 400 connections. I'm looking at an ISP's server now with about 7,500 mailboxes with a load average about 0.29 using courier-imap to serve POP and IMAP clients. This server is answering about 4,800 courier connections per hour (mostly POP3). Granted that POP3 connections are typically very short duration compared to IMAP which may be open for extended periods of time. This server is the primary NFS server with 2GB of RAM, with dual 3GhZ Pentium IVs. While not a truly low-end box, it probably cost about $1,500USD. This system as one publically accessible MX server that handles all incoming messages, rejecting about a million connections using a combination of DNSRBLs and postfix rules. It runs all the incoming mail through with postfix, amavisd, and clamav, then passes messages that get through without virii or phishing to one of four boxes that use spamassassin to route spam into spam folders. We chose to run a single incoming MX server since the spammers would simply cycle amongst backup MX servers when rejected. These four boxes run with a load average about 3.0 or less, and have 1GB RAM on 2.66GhZ Celerons -- not exactly high-end boxes these days. The hardware cost of these machines is probably about $600USD each. Any or all of these machines could serve POP and IMAP as well, but we prefer to let them concentrate on spamassassin which is a true RAM hog. Adding capacity in this type of system is trivial, relatively inexpensive, and, other than the central NFS user store, not vulnerable to a single point of failure (each machine has its own openldap server for authentication which can be rebuilt from the master very easily, which can be required as the openldap doesn't respond well to unclean shutdowns). Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 http://www.celestial.com/ You need only reflect that one of the best ways to get yourself a reputation as a dangerous citizen these days is to go about repeating the very phrases which our founding fathers used in the struggle for independence. -- Charles A. Beard ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: stale dependencies in pkgdb
Andrew wrote:
On Fri, 2006-02-10 at 11:42 -0500, Robert Huff wrote:
Andrew writes:
I've run pkgdb -F as portupgrade suggests, deleting stale
dependencies, but they seem to keep reappearing.
I'm not an expert on pkgdb, but I'm pretty sure that's the way
it works.
You need to fix, not delete, the stale dependencies. This may
take some effort the first time around.
Beyond that, I question the wisdom of any automatic
solution. There are definitely times when I do _not_ want to accept
the fixes proposed by pkgdb -F.
My apologies; I re-read the man pages for portupgrade and pkgdb and I
think I understand what's going on now. Thanks anyway...
-Andrew
A good solution in the long term, rather than fixing dependencies every
time you do an upgrade, is to look at the ALT_PKGDEP section of
pkgtools.conf. Here is how i addressed the cdrtools dependency you
mentioned.
ALT_PKGDEP = {
'cdr-tools*' = 'cjk-cdrtools*',
'pcre-*' = 'pcre-utf8',
}
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: automount external usb hard drive?
On Tue, Feb 14, 2006 at 08:01:44PM -0500, Peter wrote:
Hi, is it possible to have an external USB hard drive automounted once
connected?
It certainly is - you need to create a hook for for your device in
/etc/usbd.conf. To find out the required details, run usbd from the
command line:
# /etc/rc.d/usbd stop
# usbd -dv
Connect your device, and take a note of the values for the device-attach
event. For example, this is what I get when connecting a Disgo Lite USB
key drive.
usbd: device-attach event at 1139967116.311696000, disgo, vendor 0x08ec:
vndr=0x08ec prdct=0x0008 rlse=0x0100 clss=0x subclss=0x prtcl=0x
device names: umass0
This is what the corresponding entry in /etc/usbd.conf looks like:
device Disgo Lite USB Key
devname umass[0-9]+
vendor 0x08ec
product 0x0008
release 0x0100
attach sleep 3; mount -t msdosfs /dev/`camcontrol devlist | awk
'/disgo/ {print $NF}' | sed -e 's/(\(.*\))/\1s1/'` /mnt/disgo
Note the attach command must be one continuous line - you can't break
up long commands to prettify the file. The attach command here works for
me - you might need something else, depending on your specific
requirements. For example, if you regularly attach more than one
storage device, you will certainly want a smarter way of handling them!
Of course, you will need to make sure you explicitly unmount the file
system before detaching the device.
man usbd, man usbd.conf and man camcontrol for more details.
Dan
--
Daniel Bye
PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc
PGP Key fingerprint: 3B9D 8BBB EB03 BA83 5DB4 3B88 86FC F03A 90A1 BE8F
_
ASCII ribbon campaign ( )
- against HTML, vCards and X
- proprietary attachments in e-mail / \
pgpCXv2MEtuTj.pgp
Description: PGP signature
Re: Large imap server.
Specifically my mail server combo was: FreeBSD 4.1 + Qmail + Courier IMAP + MySQL 3.22 Qmail handles all incoming mails. With a simple Perl script using Mail::Audit, incoming mails are dropped to whatever directory is specified by a lookup on the MySQL table. Courier IMAP uses the same table to respond to IMAP connections. Since Maildir is used, we have experienced 0 mail corruptions since we moved away from Sendmail. Hope this helps. - Original Message - From: Francisco Reyes [EMAIL PROTECTED] To: Foo Ji-Haw [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; freebsd-questions@freebsd.org Sent: Wednesday, February 15, 2006 5:35 AM Subject: Re: Large imap server. Foo Ji-Haw writes: I've been using FreeBSD + courier IMAP + MySQL (for user authentication). It's hardly a load issue for more than 200,000 users, and that was years ago. Would you mind sharing some info on the setup? First time I read about a courier setup of that size. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
