RE: shmmax tops out at 2G?
Hello Bill: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bill Moran Sent: Monday, December 11, 2006 2:15 PM To: [EMAIL PROTECTED] Subject: shmmax tops out at 2G? uname -a FreeBSD db00.lab00 6.2-BETA3 FreeBSD 6.2-BETA3 #1: Fri Dec 8 09:27:37 EST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/DB-2850-amd64 amd64 sysctl kern.ipc.shmmax=22 kern.ipc.shmmax: 21 - -2094967296 Looks like an unsigned 32-bit int. That doesn't seem to scale as well as would be expected on 64-bit arch. Is this a mistake, or intentional? I'm working with some big memory systems, and I sure would like to allocate more than 2G for PostgreSQL to use ... -- Bill Moran Collaborative Fusion Inc. --- This may be a silly question but, have you compiled a PAE-enabled kernel? If not, check out /sys/i386/conf/PAE. Regards, Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: What can I use to study Ethernet frames?
Hello: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of g Sent: Sunday, December 10, 2006 11:02 PM To: freebsd-questions@freebsd.org Subject: Re: What can I use to study Ethernet frames? [EMAIL PROTECTED] wrote: Which program can I use to study Ethernet frames? Elisej Babenko ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Try wireshark it is in the ports, it used to be ethereal Cheers --- TCP Dump is also good for this sort of thing. Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Which version to use ( Xeon 64 bits ) egg and chicken problem ...
On Friday, 2006, December 8 at 3:46, [EMAIL PROTECTED] (Frank Bonnet) wrote: Frank Bonnet wrote: Frank Bonnet wrote: Vince wrote: Vince wrote: Sorry lacking coffeee this morning I mean of course /pub/FreeBSD/releases/amd64/ISO-IMAGES/6.2 /me goes back to sleep now. Vince Vince, OK i'm going to have a try with it I'll let you know how it worked. Well :-( it does not work it seems the Adaptec patch for serverRAID 8k is not present in 6.2-RC1 as sysinstall does not find any disk this is an egg and chicken problem ! How to rebuild a new patched amd64 ISO as I only have *this* 64 bits machine and cannot acces to hard disks ? I had a similar problem with my 3ware card when I first installed 6.0. The 3ware card was brand new and not yet in the base system, but a driver was posted on their site. How I solved the problem is that I installed another card that was supported in the base system, another hard drive that worked with the card (UltraDMA 133 card/hard drive IIRC). After installing on that hard drive, and patching to support my raid card, I booted off the patched drive and the raid array was then recognized. I used dump/restore to move the patched system from the IDE hard drive to the raid array, then could boot off the raid array as desired and could remove the extra card/hard drive. HTH. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: shmmax tops out at 2G?
On Wed, Dec 13, 2006 at 12:27:22AM -0800, Michael K. Smith - Adhost wrote: Hello Bill: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bill Moran Sent: Monday, December 11, 2006 2:15 PM To: [EMAIL PROTECTED] Subject: shmmax tops out at 2G? uname -a FreeBSD db00.lab00 6.2-BETA3 FreeBSD 6.2-BETA3 #1: Fri Dec 8 09:27:37 EST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/DB-2850-amd64 amd64 sysctl kern.ipc.shmmax=22 kern.ipc.shmmax: 21 - -2094967296 Looks like an unsigned 32-bit int. That doesn't seem to scale as well as would be expected on 64-bit arch. Is this a mistake, or intentional? I'm working with some big memory systems, and I sure would like to allocate more than 2G for PostgreSQL to use ... -- Bill Moran Collaborative Fusion Inc. --- This may be a silly question but, have you compiled a PAE-enabled kernel? If not, check out /sys/i386/conf/PAE. Yeah, it is ;-) PAE is a hack for legacy i386 systems which cannot run in full 64-bit (amd64) mode - it's not relevant to this problem. Bill's guess is probably right, so someone needs to go over the sysv ipc code and make it 64-bit capable. Kris pgpRyOzVYEy9s.pgp Description: PGP signature
Re: periodic passwd change?
On Tue, Dec 12, 2006 at 10:20:56PM +0100, Erik Norgaard wrote: Anton Shterenlikht wrote: On Fri, Dec 08, 2006 at 09:57:22PM +0100, Erik Norgaard wrote: Anton Shterenlikht wrote: I can't see how to prescribe periodic passwd change, only how to set expiry time. At the moment I put the following line in the root's crontab: 2 2 2 * * pw usermod shterenl -p `date '+\%d-\%m-\%Y'` This makes a user's passwd expire once a month. Is there a better way to force users change their passwds periodically? You can set it in login.conf, when the password is updated the next expire is automatically set. I checked login.conf. It seems that passwordtime option has no effect. I did a brief search and found many postings describing the same problem: many options from login.conf have no effect. Perhaps these are the RESERVED CAPABILITIES' as they are called in the man page. Some people list a patch that supposedly fixes the problem, but I'm not sure if it applies to 6.2-prerelease thatI'm running. thanks anton did you remember to cap_mkdb after? from the man page: Whenever changes to this, or the user's ~/.login_conf, file are made, the modifications will not be picked up until cap_mkdb(1) is used to compile the file into a database. Cheers, Erik yes, I did. Other options, e.g. passwd_prompt from Authentication category do work, but passwordtime has no effect. There are plenty of similar accounts I found on the net, e.g.: www.derkeiler.com/Mailing-Lists/FreeBSD-Security/2003-02/0039.html Many login.conf accounting and authentication options broken Date: Mon, 3 Feb 2003 05:40:48 -0800 From: David Schultz [EMAIL PROTECTED] To: [EMAIL PROTECTED] Most of the accounting options in login.conf(5) and many examples in /etc/login.conf don't seem to work. I can't even find any evidence of a mechanism to support them. (Perhaps an old-timer can tell me where one used to exist, if it used to exist.) ... thanks anton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Does the ADAPTEC serverRAID 8k SAS will be supported at 6.2 ?
Hello Following a post I did several days ago I wonder if the ADAPTEC SAS serverRAID 8k hardware will be integrated to 6.2-R ( i386 and amd64 ) ? Thanks a lot. -- Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mpg123 with shoutcast radio
Hello, mpg123 is a relatively simple program but doesn't work with .pls file. I used this command: % mpg123 -@ http://www.shoutcast.com/sbin/shoutcast-playlist.pls?rn=5761file=filename.pls; but i have this message: HTTP request failed: 404 Not Found My pf firewall and proxy are disabled but anytime, i have the same thing. Estrange no ? Can you help me please ? -- Cheers, Olivier Regnier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Major Version Upgrade 4.11 to 5.x
Lane wrote: On Monday 11 December 2006 01:18, Matthew Seaman wrote: listvj wrote: I'm interested in upgrading from 4.11 to 5.x. I currently track 4.x stable using cvsup, but I've never done a major version upgrade. First, should I bother? My hardware has dual pentium 1.13 processors with 1G ram (I'm considering maxing it out at 4). I host email and web sites for a few domains on this machine and I have four jails configured on it which will have to be upgraded too. I have users counting particularly on mail service not being down for too long. Other than the obvious advice to start with a good backup, can anyone tell me: 1) Will I gain a major benefit from upgrading 2) Where should I look for instructions / advice on upgrading 3) Also any general advice from personal experience. 4) Just how risky is this? Uh -- why upgrade to a branch (5.x) that has already had it's last release and is worse performing than both 4.x and 6.x? You should really be looking at upgrading to 6.2-RELEASE just as soon as it comes out (Real Soon Now). As for risk -- for various reasons you will be better off doing a clean install of 6.x and rebuilding your server from the ground up. It's no more risky than installing any other server -- unless you have some legacy binary-only application that you absolutely have to run, it is virtually certain to succeed. You biggest problem would seem to be the downtime required to do the update -- if you can manage it, probably the least consumer impact method is building the upgraded system on fresh disks on a scratch box, and then finishing the upgrade by a disk-swap. Which also has the added benefit that you have a ready-made back out path. Cheers, Matthew Matthew, I agree with your advice to build the new server with a clean install, if only to prevent any sendmail issues. But I'm not so sure I understand your assessment that 5.x is worse performing than both 4.x and 6.x. While I agree that 6.x is a great improvement in functionality over 5.x, I was not aware of the poor performance record of 5.x. Do you know of any links to benchmark tests, or other data, which would provide some more background on this? That kind of data would greatly influence my opinion in this discussion. Without it I'd be pleased to recommend 5.X, regardless of it's pending drop dead date, wrt support. I certainly see no need to chain myself to any software release cycle, nor, it seems, does the original poster. I'm in awe of his patience, and clearly he is satisfied with the product if he remains on 4.11. Thanks, lane ~Still running 5.x That's comment was based on my experience running a few hundred FreeBSD servers of various models and OS versions. I should qualify that by saying that 4.x performance really shines when you're using single processor boxes and not running heavily multithreaded applications. On the other hand, 6.x does very well all round, especially with multithreaded applications and multiple CPUs. Of course, you also need 6.x for AMD64 support. 5.x wasn't in any sense bad, but the difference in performance between 5.x and 6.x is very obvious even without running exhaustive benchmarks. There's no good reason I know of to prefer 5.x to 6.x. Remember too that the policy about when releases were created and how they were numbered changed between 5.x and 6.x: previously a major version number change was made when some target set of functionality was implemented. Now the major version number is bumped every 18 months (I think -- something like that anyhow), using whatever new stuff has gone into HEAD since the last major bump. 6.x is in many ways what the project had intended 5.x to be, before becoming mired in the difficult transition from 4.x to 5.x. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. Flat 3 7 Priory Courtyard PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW, UK signature.asc Description: OpenPGP digital signature
Qlogic QLA2200G Freebsd 6.1
I have tried to install the above card on an existing FreeBSD 6.1-RELEASE #0 system which refused to boot with the card installed. The processor is AMD Athlon and the motherboard is a Gigabyte GA-K8NS1GMF-9 Can anyone point me to resources that van help or tell me how to go about installing this card? I tried the usual places and could not find anything beyond the fact that their is meant to be support for this Fibre Channel card. Thanks david ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: X server remote login
On 11 Dec Steve Franks wrote: 2) edit the .Xaccess file in the location specified for xdm in the handbook, add a LISTEN * line. I'll have to look it up in the handbook yet. I hope I will find in there how to prevent xdm from listening to the outside world. I only want to allow my local network to connect to each other. -- http://nagual.nl/ --- PGP/GnuPG key: F86289CE ++ Running FreeBSD 6.1 +++ Solaris 10 ++ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: where is the full compile option for sendmail?
On 12/13/06, meilin [EMAIL PROTECTED] wrote: hi all: The original sendmail's compile option is configured by m4,the one distribute with FreeBSD has tripped out some files and can not configure as the usual way,I have man make.conf,however, just find several items for sendmail and a few instructions. I want to know how to fully control the compile option while just do not install sendmail from a original source package? thx very much -- meilin mailto:[EMAIL PROTECTED] If you want to eliminate sendmail from base when you recompile the system you will add the following to /etc/make.conf: *NO_SENDMAIL= true* Sendmail and all related programs should no longer be on the system after a rebuild. This is take directly from the manpage: *NO_SENDMAIL* (*bool*) Set to not build sendmail(8) http://leaf.dragonflybsd.org/cgi/web-man?command=sendmailsection=8 and related programs. Chad ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: List Protocol (was: Major Version Upgrade 4.11 to 5.x)
On Tue, 2006-12-12 at 23:10 -0500, [EMAIL PROTECTED] wrote: Those people don't comprehend a mailing list. They do web pages and web forums and other clumsy devices. Put it on www.freebsd.org if you want it easily accessible to such people. Those people, are probably future FreeBSD user's, and sysadmins. You don't know their age, or anything about them. They could be in college, or high school for all you know. They could be in their 30's in the middle of a career change. They may just not know any better. It would be wise to try to guide those people, as they too count when it comes to supporting FreeBSD and the community that surrounds it. I think the point is that we are not all born sophisticated user's of FreeBSD. Exactly what would you put on the homepage? A big banner stating that all newbies and clueless people in general should...? A message board, since that's what such people are used to? That's my .02 as someone who's been there, done that in probably the most clumsy way possible. :-) Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD 6.2/AMD64: supports TYAN Tomcat n3400B motherboard?
Dear Sirs. For building a server system I would like to use the TYAN Tomcat n3400B motherboard (TYAN S2925G2NR). As far as I know, this motherboard utilises the nVidia nForce 3400 chipset which is similar, or even identical to the new nForce5XX chipsets introduced shortly. The main question is: will FreeBSD 6.2/amd64 work with this board? I need especially both NICs and the SATA-II RAID-0/Mirroring facilities. Thank you very much for your comments. Regards, Oliver -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Newbie on tunnelling
I need to create a VPN between two offices. Each has a LAN that is behind a FreeBSD router/firewall. I have managed to do the following manually: hq-office: kldload if_gre.ko ifconfig gre0 create ifconfig gre0 tunnel 62.8.68.94 62.8.82.142 ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252 route add -net 192.168.1.0/24 -interface gre0 sub-office: kldload if_gre.ko ifconfig gre0 create ifconfig gre0 tunnel 62.8.82.142 62.8.68.94 ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252 route add -net 192.168.0.0/24 -interface gre0 Now my simple question is: How do I automate these commands during boot time? -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +==+ |\ _,,,---,,_ | Odhiambo Washington[EMAIL PROTECTED] Zzz /,`.-'`'-. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +==+ This is an unauthorized cybernetic announcement. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 6.x hangs on AMD64 again
Andrea Venturoli wrote: I think I'm having the same problems. I'm running 6.1(latest patch set)/amd64 on a dual-core Opteron Acer server with SCSI disks and it is hanging completely and suddenly. Checking the hardware was the first thing I did, but it really seems ok (unless it's the second core on the processor). I checked, among the others: the HDs with the vendor's tools, RAM with MemTest86+ and the CPU with different stress tools. If anyone can suggest other diagnostics I'd be happy to comply. I compiled the kernel with debug info, but that's totally useless, since it won't dump anything, just hang there; I don't think even DDB would help, since even the keyboard is not working at that time. If I'm missing something, I'd be glad to be directed to any pointer. The box features an em NIC on board, but since it shows a lot of problems, I removed that driver from the kernel (it's not possible to turn it off in the BIOS, though) and put in a different add-on card. I had some shared IRQs, but managed to solve that issue (even if I think it should not matter). Next, I'll try to disable SMP as soon as I can and see if it helps. Of course upgrading to 6.2 should be attempted, but since this is a production server and 6.2 is still at RC1... This is just to say that, since SMP was disabled, I've had no problems at all. Not that I like using UP on an x2 CPU... bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie on tunnelling
Loading a kernel module at boot time is done by editing (or creating) loader.conf in /boot. And adding [module_name]_load=YES to load a module, so: if_gre_load=YES. Edit rc.conf for startup configurations. Take a look at man rc.conf. The sections on network_interfaces and static_routes will be of some help. On 13/12/06, Odhiambo Washington [EMAIL PROTECTED] wrote: I need to create a VPN between two offices. Each has a LAN that is behind a FreeBSD router/firewall. I have managed to do the following manually: hq-office: kldload if_gre.ko ifconfig gre0 create ifconfig gre0 tunnel 62.8.68.94 62.8.82.142 ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252 route add -net 192.168.1.0/24 -interface gre0 sub-office: kldload if_gre.ko ifconfig gre0 create ifconfig gre0 tunnel 62.8.82.142 62.8.68.94 ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252 route add -net 192.168.0.0/24 -interface gre0 Now my simple question is: How do I automate these commands during boot time? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: List Protocol (was: Major Version Upgrade 4.11 to 5.x)
On Tue, Dec 12, 2006 at 08:36:14PM -0500, Bob Hall wrote: On Tue, Dec 12, 2006 at 04:49:39PM -0800, Ted Mittelstaedt wrote: a young girl in a tank top and boobs out front Isn't that where the boobs are usually installed? Until then STFU you ungrateful bastards. All you once were dumb newbies who didn't know FreeBSD from free beer, and I'll bet more than a few of you sent e-mail to questions, thinking it was an actual person who gave a damn. Boy were you surprised! That's exactly what happened to me, back in the time of FBSD 4.3. And I got a response from an actual knowledgeable person who gave a damn. The only thing better would have been a young girl in a tank top and boobs out front. I vote for both.(I'm greedy) jerry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Failure to compile
On Tue, 12 Dec 2006, Brian Levie wrote: I recently installed FreeBSD 6.1, and copied many Unix files with no problems at all. However when I try to run the C compiler which worked fine with Unix, I get the error message '/usr/bin/cc Exec format error Binary file not executable'. I tried changing permissions and owner with no change. Any suggestions or won't the unix C compiler not work with FreeBSD? FreeBSD has its own cc. It sounds like you copied cc from some other system over it. FreeBSD can run binaries from some other systems, but it's usually not as simple as just copying them over. -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
/pub/FreeBSD/ports/i386/packages-5-stable/All/
Hi all, FreeBSD paqi.smithi.id.au 5.5-STABLE FreeBSD 5.5-STABLE #0: Sun Nov 19 20:22:12 EST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/PAQI5S_2 i386 On 4th December, after a recent portsnap fetch/update, I ran portupgrade -anPP to prefetch all available packages for a well overdue upgrade of all ports on this box, most dating from 5.4-RELEASE CDs blush Apart from taking ~7 hours to fetch ~550MB for ~220 packages, and except for a few non-packageable ports, that went fine. Then on 10th December, after much study of UPDATING and adopting the procedures there for KDE, I ran portupgrade -aPP on those packages, which apart from updating PHP4 then installing PHP5 on top of it (which I'll take up later) went better than I'd dared to dream, taking ~8 hours. Awesome work guys! However after then running portsnap fetch/update to pick up anything new since the 4th, and after upgrading portupgrade, ran another portupgrade -anPP to pick up available packages for the ~35 ports newly out of date, intending to finish off by building any remaining ports from sources. I was glad I'd specified -PP .. every fetch from $subject directory failed. Checking manually, then and again tonight, I see that indeed only the versions of files that were (correctly) current at 4th December are still there now. The latest file date there says 17th November. Is this likely a temporary glitch, or do -stable packages only get updated to match the current ports tree after some expectable delay? Cheers, Ian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6.2/AMD64: supports TYAN Tomcat n3400B motherboard?
On 2006/12/13 4:47, O. Hartmann seems to have typed: TYAN Tomcat n3400B motherboard (TYAN S2925G2NR). [snip] The main question is: will FreeBSD 6.2/amd64 work with this board? I don't see it on the list of tested motherboards. If compatibility is really important to you, check the list: http://www.freebsd.org/platforms/amd64/motherboards.html It may work, it may not. Just because its not on the list, doesn't mean that it won't work, it just hasn't been tested. OTOH, it may not be on the list because it doesn't work. Just from skimming the list, it seems that many nVidia chipsets have issues with their ethernet controller. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie on tunnelling
* On 13/12/06 15:48 +, Chris wrote: | Loading a kernel module at boot time is done by editing (or creating) | loader.conf in /boot. And adding [module_name]_load=YES to load a module, | so: if_gre_load=YES. | | Edit rc.conf for startup configurations. Take a look at man rc.conf. The | sections on network_interfaces and static_routes will be of some help. | | On 13/12/06, Odhiambo Washington [EMAIL PROTECTED] wrote: | | I need to create a VPN between two offices. Each has a LAN that is | behind a FreeBSD router/firewall. | | I have managed to do the following manually: | | hq-office: | kldload if_gre.ko | ifconfig gre0 create | ifconfig gre0 tunnel 62.8.68.94 62.8.82.142 | ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252 | route add -net 192.168.1.0/24 -interface gre0 | | sub-office: | kldload if_gre.ko | ifconfig gre0 create | ifconfig gre0 tunnel 62.8.82.142 62.8.68.94 | ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252 | route add -net 192.168.0.0/24 -interface gre0 | | Now my simple question is: How do I automate these commands during boot | time? | So, if I compiled kernel with device gre (FreeBSD 5.5 here, sorry) then there is no need to load the module via loader.conf, yes? So in rc.conf. would the following suffice (for hq-office)? cloned_interfaces=gre0 ifconfig_gre0=inet 10.0.0.1 10.0.0.2 tunnel 62.8.68.94 62.8.82.142 up How about the static route portions? It's still not clear to me how to take care of them in rc.conf. TIA -Wash http://www.netmeister.org/news/learn2quote.html DISCLAIMER: See http://www.wananchi.com/bms/terms.php -- +==+ |\ _,,,---,,_ | Odhiambo Washington[EMAIL PROTECTED] Zzz /,`.-'`'-. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 +==+ APL is a mistake, carried through to perfection. It is the language of the future for the problems of the past: it creates a new generation of coding bums. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6.2/AMD64: supports TYAN Tomcat n3400B motherboard?
On 12/13/06, Peter A. Giessel [EMAIL PROTECTED] wrote: On 2006/12/13 4:47, O. Hartmann seems to have typed: TYAN Tomcat n3400B motherboard (TYAN S2925G2NR). [snip] The main question is: will FreeBSD 6.2/amd64 work with this board? I don't see it on the list of tested motherboards. If compatibility is really important to you, check the list: http://www.freebsd.org/platforms/amd64/motherboards.html It may work, it may not. Just because its not on the list, doesn't mean that it won't work, it just hasn't been tested. OTOH, it may not be on the list because it doesn't work. Just from skimming the list, it seems that many nVidia chipsets have issues with their ethernet controller. ___ If this is the case than why not include a Doesn't Work list as well? That would stop the guessing on whether it doesn't work or hasn't been tested. If hardware doesn't appear on the It Works nor the Doesn't Work lists, than one can assume that it hasn't been tested. This could save a lot of headaches (and $$$). Chad ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie on tunnelling
On 12/13/06, Odhiambo Washington [EMAIL PROTECTED] wrote: * On 13/12/06 15:48 +, Chris wrote: | Loading a kernel module at boot time is done by editing (or creating) | loader.conf in /boot. And adding [module_name]_load=YES to load a module, | so: if_gre_load=YES. | | Edit rc.conf for startup configurations. Take a look at man rc.conf. The | sections on network_interfaces and static_routes will be of some help. | | On 13/12/06, Odhiambo Washington [EMAIL PROTECTED] wrote: | | I need to create a VPN between two offices. Each has a LAN that is | behind a FreeBSD router/firewall. | | I have managed to do the following manually: | | hq-office: | kldload if_gre.ko | ifconfig gre0 create | ifconfig gre0 tunnel 62.8.68.94 62.8.82.142 | ifconfig gre0 inet 10.0.0.1 10.0.0.2 netmask 255.255.255.252 | route add -net 192.168.1.0/24 -interface gre0 | | sub-office: | kldload if_gre.ko | ifconfig gre0 create | ifconfig gre0 tunnel 62.8.82.142 62.8.68.94 | ifconfig gre0 inet 10.0.0.2 10.0.0.1 netmask 255.255.255.252 | route add -net 192.168.0.0/24 -interface gre0 | | Now my simple question is: How do I automate these commands during boot | time? | So, if I compiled kernel with device gre (FreeBSD 5.5 here, sorry) then there is no need to load the module via loader.conf, yes? So in rc.conf. would the following suffice (for hq-office)? cloned_interfaces=gre0 ifconfig_gre0=inet 10.0.0.1 10.0.0.2 tunnel 62.8.68.94 62.8.82.142 up How about the static route portions? It's still not clear to me how to take care of them in rc.conf. TIA -Wash As I believe you were previously instructed, read the manual (it's all in there): http://www.freebsd.org/cgi/man.cgi?query=rc.confapropos=0sektion=0manpath=FreeBSD+6.1-RELEASEformat=html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6.2/AMD64: supports TYAN Tomcat n3400B motherboard?
On 2006/12/13 8:31, Chad Gross seems to have typed: If this is the case than why not include a Doesn't Work list as well? That would stop the guessing on whether it doesn't work or hasn't been tested. If hardware doesn't appear on the It Works nor the Doesn't Work lists, than one can assume that it hasn't been tested. This could save a lot of headaches (and $$$). Because it relies on user input. Someone may have tried it and just gave up instead of filing a PR. Read the list, there are a lot that say things like Stops booting while accessing the SATA drives. Problems with on-board ethernet. or Random freezes with onboard SATA controller, SATA-RAID not recognized. Onboard ethernet not recognized. AGP not recognized. That sounds like a doesn't work to me, however if the user just gives up, nothing is going to be reported. P.S. cross-posting two lists is bad form. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Increasing ptys/ttys beyond 128
I've done some searching on the web, but everything I've come across is either out of date and says to recompile the kernel, or else says that after 5.1 the devfs does it automatically. I don't think that's the case. I'm running 6.1 and I need more than the [pt]ty[p-sP-S] devices that will auto-clone in devfs. I've tried adding lines like the following to /etc/default/devfs.rules: add path 'ptyt*' unhide add path 'ttyt*' unhide But that doesn't do the trick. The syntax unhide implies to me that the [p-sP-S] nodes exist but but are hidden by the hide_all ruleset. What do I have to do to allow the creation of more ptys? Thanks, e. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipf stateful rules
Nathan Watson wrote: Hello, I'm running FreeBSD 6.1 with IPF/IPNAT, and I'm having a problem getting my rules to work. The problem is mainly that I want no restrictions on outbound traffic, and I'm not sure how to apply stateful filtering to that. I have the following rule (hme0 is my external interface): pass out quick on hme0 all If I change that to pass out quick on hme0 all keep state, will that only open the port that the outbound packet was on? Are there any problems that can arise from allowing all outbound traffic? At the moment, my ruleset doesn't pass packets at all... I'm just having lots of troubles here. My ruleset is below, and everything seems to be caught by the last block all rule. Any suggestions? You can use pass out quick on hme0 all keep state just to allow outgoing traffic without restriction. You didn't mention the IPNAT ruleset which could explain your problem. For your use I would have something like : map hm0 0.0.0.0/0 - 0.0.0.0/32 Cheers, Julien Thanks, nwatson # no restrictions on internal LAN pass out quick on hme1 all pass in quick on hme1 all # no restrictions on loopback pass out quick on lo0 all pass in quick on lo0 all # no outbound restrictions pass out quick on hme0 all keep state # block all from non-routable or reserved address space block in quick on hme0 from 172.16.0.0/12 to any# private block in quick on hme0 from 10.0.0.0/8 to any # private block in quick on hme0 from 127.0.0.0/8 to any # loopback block in quick on hme0 from 0.0.0.0/8 to any# loopback block in quick on hme0 from 169.254.0.0/16 to any # dhcp auto-config block in quick on hme0 from 192.0.2.0/24 to any # reserved for docs block in quick on hme0 from 204.152.64.0/23 to any # sun cluster interconnect block in quick on hme0 from 224.0.0.0/3 to any # class d e multicast # inbound blocks block in quick on hme0 all with frags # frags block in quick on hme0 proto tcp all with short # short tcp packets block in quick on hme0 all with opt lsrr# source routed packets block in quick on hme0 all with opt ssrr# source routed packets block in log first quick on hme0 proto tcp from any to any flags FUP# nmap os fingerprint attempts, log block in quick on hme0 all with ipopts # anything with special options block in quick on hme0 proto icmp all icmp-type 8 # public pings block in log first quick on hme0 proto tcp/udp from any to any port = 137 # netbios name block in log first quick on hme0 proto tcp/udp from any to any port = 138 # netbios datagram block in log first quick on hme0 proto tcp/udp from any to any port = 139 # netbios session block in log first quick on hme0 proto tcp/udp from any to any port = 81 # hosts2 name server requests # allow these pass in quick on hme0 proto tcp from any to any port = 22 flags S keep state # ssh pass in quick on hme0 proto tcp from any to any port = 25 flags S keep state # smtp pass in quick on hme0 proto tcp from any to any port = 236 flags S keep state # http pass in quick on hme0 proto tcp from any to any port = 237 flags S keep state # zimbra https pass in quick on hme0 proto tcp from any to any port = 113 flags S keep state # ident pass in quick on hme0 proto tcp from any to any port 5800 5900 flags S keep state # vnc pass in quick on hme0 proto tcp/udp from any to any port 6881 6889 keep state # bittorrent pass in quick on hme0 proto tcp from any to any port = 7071 flags S keep state # zimbra admin https # block, log all remaining traffic block in log first quick on hme0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
pxe jumpstart sysinstall doesn't see disk
I'm setting up a pxe boot/jumpstart (using 6.1-RELEASE) and sysinstall won't recognize the drive (SATA on a Dell 1425). The pxe install starts off fine, up through the point where sysinstall gets its DHCP information (per my custom install.cfg, relevant portions copied below). If I install off CD everything works; sysinstall sees ad4 and can work its magic on it, but using the *same* sysinstall (pulled from the CD image), the *same* mfsroot (with the addition of the install.cfg), and the *same* kernel, it doesn't work for the net install. As I mentioned above, after getting an IP address via DHCP sysinstall bombs with this message: +- Message -+ |No disks found! Please verify that your disk controller is being | |properly probed at boot time. See the Hardware Guide on the | |Documentation menu for clues on diagnosing this type of problem. | +---(100%)--+ When I try to go through an interactive install at that point I get the same message from any avenue that tries to pull up disk partitioning. At that point I drop to a shell where I can see /dev/ad4*, and can newfs /dev/ad4. I start a second instance of sysinstall which has the same problem, but creates a sysinstall.debug that says it sucessfully detected ad4. I've read through the FreeBSD handbook's section on jumpstart, Doug White's quick and dirty guide, and a few others (including the rather old but very helpful http://www.tnpi.biz/computing/freebsd/pxe-netboot.shtml). Unfortunately, they all stop at sysinstall and assume it works from then on. At this point I'm short on troubleshooting ideas and would appreciate help --or experience-- to get me back on track. This is the end of the sysinstall.debug, including the probe lines that find ad4: DEBUG: deviceTry: Making raw device for /dev/cuad15 [28, 143] DEBUG: deviceTry: final attempt for /mnt/dev/cuad15 returns -1 DEBUG: Found a disk device named ad4 DEBUG: Found a DOS partition ad4s2 on drive ad4 DEBUG: mkdir(/tmp/.doc) DEBUG: mkdir(/tmp/.doc..) DEBUG: Executing command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' /usr/bin/gunzip: not found DEBUG: Command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' returns status of 127 DEBUG: Executing command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' /usr/bin/gunzip: not found DEBUG: Command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' returns status of 127 DEBUG: Executing command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' /usr/bin/gunzip: not found DEBUG: Command `/usr/bin/gunzip /stand/help/INSTALL.TXT /tmp/.doc/doc.tmp' returns status of 127 DEBUG: Executing command `rm -rf /tmp/.doc' DEBUG: Command `rm -rf /tmp/.doc' returns status of 0 Here are the network and disk sections of my install.cfg. Yes, I'm intentionally using the second interface (em1) and on a Dell 1425 with a single SATA drive: ad4. # Which installation device to use nfs=10.0.0.9:/tftpboot/FreeBSD netDev=em1 # N.B. dell 1425 gig e tryDHCP=YES mediaSetNFS * snip * # Now set the parameters for the partition editor on disk 0. disk=ad4# N.B. dell 1425 partition=all bootManager=standard diskPartitionEditor #diskPartitionWrite # All sizes are expressed in 512 byte blocks! # # 2G /, 2G swap, 8G /var 8388608, /usr gets the rest # ad4s1-1=ufs 4194304 / ad4s1-2=swap 4194304 none ad4s1-3=ufs 16777216 /var ad4s1-4=ufs 0 /usr # Let's do it! diskLabelEditor #diskLabelCommit ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Missing pkg-descr
Dear FreeBSD, The following Missing pkg-descr is happening to me a lot, with many packages. This time it was during portinstall jdk15. === Installing for m4-1.4.8_1 === Generating temporary packing list ** Missing pkg-descr for m4-1.4.8_1. *** Error code 1 Stop in /usr/ports/devel/m4. *** Error code 1 This time it is on a brand-new install of FreeBSD 6.2. How can I be responsible for the pkg-descr. This is the second time I have asked this question. I got no help before. My email was down briefly. Did I miss the answer? Thank you, -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Missing pkg-descr - Correction
Correction: This problem happened during make all install for the port java/jdk15 (Not portinstall) - Forwarded message from Wayne M. Barnes [EMAIL PROTECTED] - Date: Wed, 13 Dec 2006 12:19:18 -0600 From: Wayne M. Barnes [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Subject: Missing pkg-descr User-Agent: Mutt/1.4.2.1i Dear FreeBSD, The following Missing pkg-descr is happening to me a lot, with many packages. This time it was during portinstall jdk15. === Installing for m4-1.4.8_1 === Generating temporary packing list ** Missing pkg-descr for m4-1.4.8_1. *** Error code 1 Stop in /usr/ports/devel/m4. *** Error code 1 This time it is on a brand-new install of FreeBSD 6.2. How can I be responsible for the pkg-descr. This is the second time I have asked this question. I got no help before. My email was down briefly. Did I miss the answer? Thank you, -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] - End forwarded message - -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Increasing ptys/ttys beyond 128
On Wed, Dec 13, 2006 at 10:42:46AM -0700, Eric Brunson wrote: I've done some searching on the web, but everything I've come across is either out of date and says to recompile the kernel, or else says that after 5.1 the devfs does it automatically. I don't think that's the case. I'm running 6.1 and I need more than the [pt]ty[p-sP-S] devices that will auto-clone in devfs. I've tried adding lines like the following to /etc/default/devfs.rules: add path 'ptyt*' unhide add path 'ttyt*' unhide But that doesn't do the trick. The syntax unhide implies to me that the [p-sP-S] nodes exist but but are hidden by the hide_all ruleset. What do I have to do to allow the creation of more ptys? I don't think you can have more than 256 pty devices in 6.1 The code in the kernel that handles ptys only allow for pty[pqrsPQRS][0-9a-v] (and the corresponding tty[pqrsPQRS][0-9a-v] of course.) This gives you a total of 8*32 = 256 pty devices. (Not 128 as the subjectline implies.) (I don't think you could have more than 256 ptys back in 4.x either, but back then the default setup only gave you 32 ptys, and all the instructions I have seen for increasing that number only told how to let you use all 256 possible devices, but not more than that.) To get more ptys than 256 you will have to start hacking the kernel. (There does seem to be an alternate naming system for ptys available in 7-CURRENT but it has not been back-ported to 6.x. See the pty(4) manpage from -CURRENT for details on how it works.) -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Missing pkg-descr - Correction
Wyane, Is there a specific reason you need ports/jdk15? If not, try java/diablo-jdk15. The latter is the result of the FreeBSD Foundation's deal with Sun. Chad On 12/13/06, Wayne M. Barnes [EMAIL PROTECTED] wrote: Correction: This problem happened during make all install for the port java/jdk15 (Not portinstall) - Forwarded message from Wayne M. Barnes [EMAIL PROTECTED] - Date: Wed, 13 Dec 2006 12:19:18 -0600 From: Wayne M. Barnes [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Subject: Missing pkg-descr User-Agent: Mutt/1.4.2.1i Dear FreeBSD, The following Missing pkg-descr is happening to me a lot, with many packages. This time it was during portinstall jdk15. === Installing for m4-1.4.8_1 === Generating temporary packing list ** Missing pkg-descr for m4-1.4.8_1. *** Error code 1 Stop in /usr/ports/devel/m4. *** Error code 1 This time it is on a brand-new install of FreeBSD 6.2. How can I be responsible for the pkg-descr. This is the second time I have asked this question. I got no help before. My email was down briefly. Did I miss the answer? Thank you, -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] - End forwarded message - -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Missing pkg-descr - Correction
On Dec 13, 2006, at 10:23 AM, Wayne M. Barnes wrote: The following Missing pkg-descr is happening to me a lot, with many packages. This time it was during portinstall jdk15. === Installing for m4-1.4.8_1 === Generating temporary packing list ** Missing pkg-descr for m4-1.4.8_1. *** Error code 1 Stop in /usr/ports/devel/m4. *** Error code 1 This time it is on a brand-new install of FreeBSD 6.2. How can I be responsible for the pkg-descr. This is the second time I have asked this question. I got no help before. My email was down briefly. Did I miss the answer? This suggests that your ports tree is incomplete for some reason; you should review how you are updating the ports tree and see whether there is some problem there-- or check the Handbook for other methods of updating /usr/ports... -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Increasing ptys/ttys beyond 128
Erik Trulsson wrote: On Wed, Dec 13, 2006 at 10:42:46AM -0700, Eric Brunson wrote: I've done some searching on the web, but everything I've come across is either out of date and says to recompile the kernel, or else says that after 5.1 the devfs does it automatically. I don't think that's the case. I'm running 6.1 and I need more than the [pt]ty[p-sP-S] devices that will auto-clone in devfs. I've tried adding lines like the following to /etc/default/devfs.rules: add path 'ptyt*' unhide add path 'ttyt*' unhide But that doesn't do the trick. The syntax unhide implies to me that the [p-sP-S] nodes exist but but are hidden by the hide_all ruleset. What do I have to do to allow the creation of more ptys? I don't think you can have more than 256 pty devices in 6.1 The code in the kernel that handles ptys only allow for pty[pqrsPQRS][0-9a-v] (and the corresponding tty[pqrsPQRS][0-9a-v] of course.) This gives you a total of 8*32 = 256 pty devices. (Not 128 as the subjectline implies.) Actually, that is incredibly helpful. We're having problems with expect, but when expect searches for a free pty, it only searches [0-9a-f], which only gives us 128 ptys. There's another problem with this search resulting in failures after 64 pty allocations which I was trying to avoid patching in expect, but if I can get 256 processes out of it, I'll patch away. Man, 5 days of searching the web and you set me straight in 48 minutes... I should have started here first. :-) Thanks a *ton*! (I don't think you could have more than 256 ptys back in 4.x either, but back then the default setup only gave you 32 ptys, and all the instructions I have seen for increasing that number only told how to let you use all 256 possible devices, but not more than that.) To get more ptys than 256 you will have to start hacking the kernel. (There does seem to be an alternate naming system for ptys available in 7-CURRENT but it has not been back-ported to 6.x. See the pty(4) manpage from -CURRENT for details on how it works. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
Hi Lane, We have tried that too.. We have the same rules that in the other servers where we can send e-mail without launching sendmail as daemon. Anyway we have tried disabling all the rules with: ipfw -f -q flush And listing the rules: 65535 87358 61876 allow ip from any to any mail -v [EMAIL PROTECTED] Subject: test test. . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. mail -v [EMAIL PROTECTED] Subject: test test . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. Also searched about sendmail in the BSD FAQ, Handbook, if we should change some file in /etc/mail, but (maybe should look again?) didn't find anything about which file should we modify, let's say.. submit.mc? freebsd.submit.mc? Suggestions? Thank you for your help. On 12/8/06, Lane [EMAIL PROTECTED] wrote: On Friday 08 December 2006 11:16, Tuareg wrote: On 12/5/06, Lane [EMAIL PROTECTED] wrote: On Tuesday 05 December 2006 21:49, Wasp King wrote: is there a way that one can specify a log place to see daily logs like you receive from [EMAIL PROTECTED], when sendmail is turned on? there must be a way to enable only local mail delivery...but I am not sure how.. would like to shut down sendmail but want to see security logs. thanks. Zach using FreeBSD 4.2 and sendmail 8.x (maybe). _ __ IIRC, sendmail has three controlling values in /etc/rc.conf: sendmail_enable=YES sendmail_enable=NO and sendmail_enable=NONE The third value, NONE, causes the boot process to ignore any attempt to start sendmail. The second value, NO, causes the boot process to start sendmail for local delivery, only (i.e. do NOT accept inbound connections from external hosts). The first value, YES, causes the boot process to start sendmail for outgoing and incoming SMTP connections. There are many tweaks that you can use in /etc/rc.conf - (refer to /etc/defaults/rc.conf) - that will allow various flavors of sendmail usage. See also, /etc/rc.sendmail. In your case sendmail_enable=NO should allow the local system to send periodic information to [EMAIL PROTECTED], or whatever alias you use in /etc/mail/aliases, while disallowing external hosts from sending email by way of the local host. Note that this requires that you pay heed to /etc/mail/Makefile and associated README documentation in /usr/src/contrib/sendmail and below. Best of luck! lane Hi... Where I'm working, have many servers with FreeBSD 4.x and 5.x, this servers are enable to send mail but the daemon of sendmail is not launched. Now, we have installed FreeBSD 6.1 STABLE, but can't reply this schema. Which file needs to be modified in /etc/mail to allow the server to send emails to our real mailserver so we can receive the results of some scripts without launching the daemon of sendmail? We have tried using sendmail=NO, in rc.conf, but we only get this messages: [EMAIL PROTECTED] Connecting to [127.0.0.1] via relay... [EMAIL PROTECTED] Deferred: Permission denied Thank you for your help in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Your problem is likely related to ipfw, or firewall_type, firewall_enable in /etc/rc.conf. The permission denied error implies that your firewall ruleset is preventing the outgoing connection. Try: ipfw show to see your current firewall rules. Also read through /etc/rc.firewall and /etc/defaults/rc.conf to get some more information on the firewall issues. When you've gotten that resolved you should have enough information to get sendmail working the way you want. lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
Tuareg ... follow to difficult it find I as post top don't please ... to say it another way ... please don't top post, as I find it difficult to follow ... On Wednesday 13 December 2006 13:12, Tuareg wrote: Hi Lane, We have tried that too.. We have the same rules that in the other servers where we can send e-mail without launching sendmail as daemon. Anyway we have tried disabling all the rules with: ipfw -f -q flush And listing the rules: 65535 87358 61876 allow ip from any to any mail -v [EMAIL PROTECTED] Subject: test test. . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. mail -v [EMAIL PROTECTED] Subject: test test . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. Also searched about sendmail in the BSD FAQ, Handbook, if we should change some file in /etc/mail, but (maybe should look again?) didn't find anything about which file should we modify, let's say.. submit.mc? freebsd.submit.mc? Suggestions? Thank you for your help. On 12/8/06, Lane [EMAIL PROTECTED] wrote: On Friday 08 December 2006 11:16, Tuareg wrote: On 12/5/06, Lane [EMAIL PROTECTED] wrote: On Tuesday 05 December 2006 21:49, Wasp King wrote: is there a way that one can specify a log place to see daily logs like you receive from [EMAIL PROTECTED], when sendmail is turned on? there must be a way to enable only local mail delivery...but I am not sure how.. would like to shut down sendmail but want to see security logs. thanks. Zach using FreeBSD 4.2 and sendmail 8.x (maybe). _ __ IIRC, sendmail has three controlling values in /etc/rc.conf: sendmail_enable=YES sendmail_enable=NO and sendmail_enable=NONE The third value, NONE, causes the boot process to ignore any attempt to start sendmail. The second value, NO, causes the boot process to start sendmail for local delivery, only (i.e. do NOT accept inbound connections from external hosts). The first value, YES, causes the boot process to start sendmail for outgoing and incoming SMTP connections. There are many tweaks that you can use in /etc/rc.conf - (refer to /etc/defaults/rc.conf) - that will allow various flavors of sendmail usage. See also, /etc/rc.sendmail. In your case sendmail_enable=NO should allow the local system to send periodic information to [EMAIL PROTECTED], or whatever alias you use in /etc/mail/aliases, while disallowing external hosts from sending email by way of the local host. Note that this requires that you pay heed to /etc/mail/Makefile and associated README documentation in /usr/src/contrib/sendmail and below. Best of luck! lane Hi... Where I'm working, have many servers with FreeBSD 4.x and 5.x, this servers are enable to send mail but the daemon of sendmail is not launched. Now, we have installed FreeBSD 6.1 STABLE, but can't reply this schema. Which file needs to be modified in /etc/mail to allow the server to send emails to our real mailserver so we can receive the results of some scripts without launching the daemon of sendmail? We have tried using sendmail=NO, in rc.conf, but we only get this messages: [EMAIL PROTECTED] Connecting to [127.0.0.1] via relay... [EMAIL PROTECTED] Deferred: Permission denied Thank you for your help in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Your problem is likely related to ipfw, or firewall_type, firewall_enable in /etc/rc.conf. The permission denied error implies that your firewall ruleset is preventing the outgoing connection. Try: ipfw show to see your current firewall rules. Also read through /etc/rc.firewall and /etc/defaults/rc.conf to get some more information on the firewall issues. When you've gotten that resolved you should have enough information to get sendmail working the way you want. lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, What happens when you do this: telnet localhost Does the connection time out? Or do you get a sendmail prompt? I'm sort of mixed up on the order of the posts, here. But let me see if I can rephrase the problem and then possibly help you
Re: Increasing ptys/ttys beyond 128
I have a patch for expect, what's the process for getting it reviewed for incorporation into ports? Eric Brunson wrote: Erik Trulsson wrote: On Wed, Dec 13, 2006 at 10:42:46AM -0700, Eric Brunson wrote: I've done some searching on the web, but everything I've come across is either out of date and says to recompile the kernel, or else says that after 5.1 the devfs does it automatically. I don't think that's the case. I'm running 6.1 and I need more than the [pt]ty[p-sP-S] devices that will auto-clone in devfs. I've tried adding lines like the following to /etc/default/devfs.rules: add path 'ptyt*' unhide add path 'ttyt*' unhide But that doesn't do the trick. The syntax unhide implies to me that the [p-sP-S] nodes exist but but are hidden by the hide_all ruleset. What do I have to do to allow the creation of more ptys? I don't think you can have more than 256 pty devices in 6.1 The code in the kernel that handles ptys only allow for pty[pqrsPQRS][0-9a-v] (and the corresponding tty[pqrsPQRS][0-9a-v] of course.) This gives you a total of 8*32 = 256 pty devices. (Not 128 as the subjectline implies.) Actually, that is incredibly helpful. We're having problems with expect, but when expect searches for a free pty, it only searches [0-9a-f], which only gives us 128 ptys. There's another problem with this search resulting in failures after 64 pty allocations which I was trying to avoid patching in expect, but if I can get 256 processes out of it, I'll patch away. Man, 5 days of searching the web and you set me straight in 48 minutes... I should have started here first. :-) Thanks a *ton*! (I don't think you could have more than 256 ptys back in 4.x either, but back then the default setup only gave you 32 ptys, and all the instructions I have seen for increasing that number only told how to let you use all 256 possible devices, but not more than that.) To get more ptys than 256 you will have to start hacking the kernel. (There does seem to be an alternate naming system for ptys available in 7-CURRENT but it has not been back-ported to 6.x. See the pty(4) manpage from -CURRENT for details on how it works. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Missing pkg-descr - Correction
On Wednesday 13 December 2006 12:23, Wayne M. Barnes wrote: Correction: This problem happened during make all install for the port java/jdk15 (Not portinstall) - Forwarded message from Wayne M. Barnes [EMAIL PROTECTED] - Date: Wed, 13 Dec 2006 12:19:18 -0600 From: Wayne M. Barnes [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Subject: Missing pkg-descr User-Agent: Mutt/1.4.2.1i Dear FreeBSD, The following Missing pkg-descr is happening to me a lot, with many packages. This time it was during portinstall jdk15. === Installing for m4-1.4.8_1 === Generating temporary packing list ** Missing pkg-descr for m4-1.4.8_1. *** Error code 1 Stop in /usr/ports/devel/m4. *** Error code 1 This time it is on a brand-new install of FreeBSD 6.2. How can I be responsible for the pkg-descr. This is the second time I have asked this question. I got no help before. My email was down briefly. Did I miss the answer? Thank you, -- Wayne M. Barnes, Ph.D., President lab at: DNA Polymerase Technology, Inc. The Inventery 11 Princeton Avenue 1508 S. Grand Blvd University City, MO 63130 St. Louis, MO 63104 fax (314)754-9556 Phone: 314.680.0575 email: [EMAIL PROTECTED] - End forwarded message - Wayne, I think you may have missed the answer. What directory are you running make from? Is it /usr/ports/java/jdk15? /usr/ports is the default location for ports, but you may get this error if you attempt to make a valid port from an invalid directory, or with invalid entries in /usr/ports/Mk or even in /etc/make.conf How are you updating your ports tree? lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
Tuareg, What happens when you do this: telnet localhost Does the connection time out? Or do you get a sendmail prompt? I think you mean: telnet localhost 25 Makes a bit of difference! -- Jay Chandler Network Administrator, Chapman University ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /pub/FreeBSD/ports/i386/packages-5-stable/All/
On Thu, Dec 14, 2006 at 03:44:13AM +1100, Ian Smith wrote: Hi all, FreeBSD paqi.smithi.id.au 5.5-STABLE FreeBSD 5.5-STABLE #0: Sun Nov 19 20:22:12 EST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/PAQI5S_2 i386 On 4th December, after a recent portsnap fetch/update, I ran portupgrade -anPP to prefetch all available packages for a well overdue upgrade of all ports on this box, most dating from 5.4-RELEASE CDs blush Apart from taking ~7 hours to fetch ~550MB for ~220 packages, and except for a few non-packageable ports, that went fine. Then on 10th December, after much study of UPDATING and adopting the procedures there for KDE, I ran portupgrade -aPP on those packages, which apart from updating PHP4 then installing PHP5 on top of it (which I'll take up later) went better than I'd dared to dream, taking ~8 hours. Awesome work guys! However after then running portsnap fetch/update to pick up anything new since the 4th, and after upgrading portupgrade, ran another portupgrade -anPP to pick up available packages for the ~35 ports newly out of date, intending to finish off by building any remaining ports from sources. I was glad I'd specified -PP .. every fetch from $subject directory failed. Checking manually, then and again tonight, I see that indeed only the versions of files that were (correctly) current at 4th December are still there now. The latest file date there says 17th November. Is this likely a temporary glitch, or do -stable packages only get updated to match the current ports tree after some expectable delay? There's always a lag, of course (computers aren't yet infinitely fast ;-). It's usually only a lag of a couple of days for 6.x, longer for 5.x since it's a legacy branch and not our main focus of activity. However the main FTP distribution server has been offline with hardware failure for the past week or two, so I can't push out any of the subsequent updates. Hopefully this will be resolved soon (it's also holding up the 6.2 release cycle). Kris pgpMT8zVTzbiv.pgp Description: PGP signature
Re: how do I see security logs without turning on sendmail? (Minor correction ...)
On Wednesday 13 December 2006 13:33, Lane wrote: Tuareg ... follow to difficult it find I as post top don't please ... to say it another way ... please don't top post, as I find it difficult to follow ... On Wednesday 13 December 2006 13:12, Tuareg wrote: Hi Lane, We have tried that too.. We have the same rules that in the other servers where we can send e-mail without launching sendmail as daemon. Anyway we have tried disabling all the rules with: ipfw -f -q flush And listing the rules: 65535 87358 61876 allow ip from any to any mail -v [EMAIL PROTECTED] Subject: test test. . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. mail -v [EMAIL PROTECTED] Subject: test test . EOT [EMAIL PROTECTED] Connecting to localhost.my.domain. via relay... [EMAIL PROTECTED] Deferred: Operation timed out with localhost.my.domain. Also searched about sendmail in the BSD FAQ, Handbook, if we should change some file in /etc/mail, but (maybe should look again?) didn't find anything about which file should we modify, let's say.. submit.mc? freebsd.submit.mc? Suggestions? Thank you for your help. On 12/8/06, Lane [EMAIL PROTECTED] wrote: On Friday 08 December 2006 11:16, Tuareg wrote: On 12/5/06, Lane [EMAIL PROTECTED] wrote: On Tuesday 05 December 2006 21:49, Wasp King wrote: is there a way that one can specify a log place to see daily logs like you receive from [EMAIL PROTECTED], when sendmail is turned on? there must be a way to enable only local mail delivery...but I am not sure how.. would like to shut down sendmail but want to see security logs. thanks. Zach using FreeBSD 4.2 and sendmail 8.x (maybe). ___ __ __ IIRC, sendmail has three controlling values in /etc/rc.conf: sendmail_enable=YES sendmail_enable=NO and sendmail_enable=NONE The third value, NONE, causes the boot process to ignore any attempt to start sendmail. The second value, NO, causes the boot process to start sendmail for local delivery, only (i.e. do NOT accept inbound connections from external hosts). The first value, YES, causes the boot process to start sendmail for outgoing and incoming SMTP connections. There are many tweaks that you can use in /etc/rc.conf - (refer to /etc/defaults/rc.conf) - that will allow various flavors of sendmail usage. See also, /etc/rc.sendmail. In your case sendmail_enable=NO should allow the local system to send periodic information to [EMAIL PROTECTED], or whatever alias you use in /etc/mail/aliases, while disallowing external hosts from sending email by way of the local host. Note that this requires that you pay heed to /etc/mail/Makefile and associated README documentation in /usr/src/contrib/sendmail and below. Best of luck! lane Hi... Where I'm working, have many servers with FreeBSD 4.x and 5.x, this servers are enable to send mail but the daemon of sendmail is not launched. Now, we have installed FreeBSD 6.1 STABLE, but can't reply this schema. Which file needs to be modified in /etc/mail to allow the server to send emails to our real mailserver so we can receive the results of some scripts without launching the daemon of sendmail? We have tried using sendmail=NO, in rc.conf, but we only get this messages: [EMAIL PROTECTED] Connecting to [127.0.0.1] via relay... [EMAIL PROTECTED] Deferred: Permission denied Thank you for your help in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Your problem is likely related to ipfw, or firewall_type, firewall_enable in /etc/rc.conf. The permission denied error implies that your firewall ruleset is preventing the outgoing connection. Try: ipfw show to see your current firewall rules. Also read through /etc/rc.firewall and /etc/defaults/rc.conf to get some more information on the firewall issues. When you've gotten that resolved you should have enough information to get sendmail working the way you want. lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg,
Re: mpg123 with shoutcast radio
On Wed, Dec 13, 2006, at 12:19:48 +0100, Olivier Regnier wrote: Hello, mpg123 is a relatively simple program but doesn't work with .pls file. I used this command: % mpg123 -@ http://www.shoutcast.com/sbin/shoutcast-playlist.pls?rn=5761file=filename.pls; but i have this message: HTTP request failed: 404 Not Found My pf firewall and proxy are disabled but anytime, i have the same thing. Estrange no ? Can you help me please ? Hi. mpg123 doesn't support pls files by itself. I have attached a real simple script that can help make this easier. Just chmod +x it, and then do: ./mpg123_pls.sh http://your.url.com/file.pls; It would probably be good to make a shell alias to the script for easier usage. -Mark -- Internet Radio: Party107 (Trance/Electronic) - http://www.party107.com Rock 101.9 The Edge (Rock) - http://www.rock1019.net IRC: MIXXnet IRC Network - irc.mixxnet.net (Nick: MIXX941) mpg123_pls.sh Description: Binary data ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /pub/FreeBSD/ports/i386/packages-5-stable/All/
On Wed, 13 Dec 2006, Kris Kennaway wrote: On Thu, Dec 14, 2006 at 03:44:13AM +1100, Ian Smith wrote: [..] I was glad I'd specified -PP .. every fetch from $subject directory failed. Checking manually, then and again tonight, I see that indeed only the versions of files that were (correctly) current at 4th December are still there now. The latest file date there says 17th November. Is this likely a temporary glitch, or do -stable packages only get updated to match the current ports tree after some expectable delay? There's always a lag, of course (computers aren't yet infinitely fast ;-). It's usually only a lag of a couple of days for 6.x, longer for 5.x since it's a legacy branch and not our main focus of activity. As we're often enough reminded :) Thought I'd get it all up to date, then cvsup to 6.2 once released. However the main FTP distribution server has been offline with hardware failure for the past week or two, so I can't push out any of the subsequent updates. Hopefully this will be resolved soon (it's also holding up the 6.2 release cycle). Thanks Kris, may it Get Well Soon. BTW, just to try, I'd installed 6.1-R on another box over the net from the boot-only CD, and enjoyed being able to install heaps of packages from sysinstall that way, but was a bit dismayed to find it hadn't kept the fetched packages .. is there a way to ask sysinstall to do that? Cheers, Ian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Shar question
I'm trying to learn how to use shar. I've read the manual. If I pass a directory to shar: shar foo foo.shar Results in a shar file. Problem is that when I unpack it I just end up with an empty directory. I probably need to pass it a flag or something, but I'm not sure which one to use. How do I make a shar file out of a directory and ALL it's contents. TIA Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Alaska Paradise Travel \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - Please visit Alaska Paradise - http://www.alaskaparadise.com --- pgpx1g5yHQb9Q.pgp Description: PGP signature
can I unload a module from within sysinstall ?
I need to load a new kernel module during sysinstall so that I can see my raid controller. Easy - I go into configure, load, and load it off the floppy. Easy. BUT, freebsd already has a xyz.ko, and it is already loaded, so it fails. So my question is, how do I unload the existing xyz.ko before I load the new one ? Can I do it in sysinstall ? Can I do it in the loader prompt prior to sysinstall ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, What happens when you do this: telnet localhost telnet localhost 25 Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Operation timed out telnet: Unable to connect to remote host Does the connection time out? Or do you get a sendmail prompt? Yes, the connection time out. No, I don't get the sendmail prompt, because there is no sendmail running. ps axwww | grep sendmail 47237 p0 R+ 0:00.00 grep sendmail I'm sort of mixed up on the order of the posts, here. But let me see if I can rephrase the problem and then possibly help you find a solution ... It seems to me that the problem is that you cannot determine how to make FreeBSD 6.x do like other hosts under your influence, so that it will send email from [EMAIL PROTECTED] to another (possibly a hub) server? Is that correct? Yes, we have older versions of FreeBSD (4.x and 5.x) running on remote servers where we can't interrupt the service, in this servers, we can send e-mails to our main e-mail server, were we get reports of scripts. In those servers, we don't have running sendmail, look: ps axwww | grep sendmail 19702 p0 D+ 0:00.00 grep sendmail % %telnet localhost 25 Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Permission denied telnet: Unable to connect to remote host But, we are able to send emails: mail -v [EMAIL PROTECTED] Subject: Test Testing from FreeBSD 4.6-RELEASE . EOT [EMAIL PROTECTED] Connecting to main.server.com via esmtp... 220 main.server.com ESMTP EHLO server.FreeBSD.4.6-RELEASE 250-main.server.com Hello 250-8BITMIME 250-SIZE 31457280 250-ETRN 250-DSN 250 PIPELINING MAIL From:[EMAIL PROTECTED] SIZE=78 250 Sender OK RCPT To:[EMAIL PROTECTED] 250 Recipient OK DATA 354 Enter your message, followed by a dot on a line by itself . 250 AYQ81844 Message accepted for delivery [EMAIL PROTECTED] Sent (AYQ81844 Message accepted for delivery) Closing connection to main.server.com QUIT 221 main.server.com Goodbye First I assume that these other FreeBSD installations are also using sendmail. If that is NOT correct then your best hope is to replicate your mta configuration from those other hosts. In fact that might not be a bad idea regardless of what they are running :) You are right, all this installations are also using sendmail. But again, assuming you want to run sendmail and ONLY allow the localhost to transmit out to another host for collection and/or distribution, enter this value into /etc/rc.conf: sendmail_enable=NO Now edit /etc/mail/freebsd.mc. Locate the term SMART_HOST, uncomment that line, and enter the IP address or fully qualified domain name of your upstream server in place of 'your.isp.mail.server' Note: If 'your.isp.mail.server' is NOT resolvable on the localhost, then you must use the IP address. When you use the IP address, you must put it in [square brackets], like [192.168.2.1]. Now from /etc/mail, type make all install then shutdown and restart the server using your method of choice, or just type /etc/rc.d/sendmail restart And try to send email again. All should work now. But you must remember to configure the TARGET mail server to allow this host to send. I'll leave that as an exercise for you. lane Have some doubts... about this procedure.. I'm going to explain why In this server (from the example, server.FreeBSD.4.6-RELEASE, where we can send e-mail, but sendmail it's not running, rc.conf contains: sendmail_enable=NONE, sendmail it's not running: ps axwww | grep sendmail 19702 p0 D+ 0:00.00 grep sendmail And how I showed you in this messages, we are able to send messages, well.. root can do it, as a normal user I can't: mail -v [EMAIL PROTECTED] Subject: TEST Testing from FreeBSD 4.6-RELEASE . EOT collect: Cannot write ./dfkBDJDkW19705 (bfcommit, uid=xxx): Permission denied queueup: cannot create queue temp file ./tfkBDJDkW19705, uid=xxx: Permission denied The older sysadmin who made this configuration with FreeBSD 4.6-RELEASE, quit the job and didn't leave any documentation, a how to, nothing, were he explain how he did this. That's the reason why we are looking to repeat this configuration with FreeBSD 6.1-RELEASE, but couldn't do it.. yet. Thank you for your help. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
javaws
I've been googleing all morning on this one... I'm need to get javaws to work. I am using FreeBSD6.1-RELEASE amd64. I've tried installing the diablo packages (both jdk and jre), and apparently it does not include javaws, is this correct? I've tried installing the linux-sun-jdk15 package. It installed okay, but javaws is broken: [EMAIL PROTECTED] /usr/ports/java/linux-sun-jdk15]# javaws Java Web Start splash screen process exiting ... Bad installation: JAVAWS_HOME not set: No such file or directory And I've tried compiling /usr/ports/java/jdk15 and it fails: # # SIGSEGV (0xb) at pc=0xefd4, pid=28699, tid=49156 # # Java VM: Java HotSpot(TM) Client VM (1.4.2_12-b03 mixed mode) # Problematic frame: # C 0xefd4 # # An error report file with more information is saved as hs_err_pid28699.log # # If you would like to submit a bug report, please visit: # http://java.sun.com/webapps/bugreport/crash.jsp Any pointers or ideas? javaws is a necessity for me. Thanks, Brian. I have attached hs_err_pid28699.log -- ___ Get your free email from http://www.linuxmail.org Powered by Outblaze hs_err_pid28699.log Description: Binary data ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shar question
In response to Beech Rintoul [EMAIL PROTECTED]: I'm trying to learn how to use shar. I've read the manual. If I pass a directory to shar: shar foo foo.shar Results in a shar file. Problem is that when I unpack it I just end up with an empty directory. I probably need to pass it a flag or something, but I'm not sure which one to use. How do I make a shar file out of a directory and ALL it's contents. shar needs to know all the files it's to put into the archive, it doesn't walk the tree for you. Thus you could do: share file1.txt file2.txt file3.txt archive.shar to selectively grab only the specified files. When grabbing an entire directory tree, you can use the syntax: share `find \start\of\directory\tree -print` archive.shar which is hinted at in the man page. The backticks cause the find command to be executed, and the output of find is given to shar. -- Bill Moran Collaborative Fusion Inc. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On Wednesday 13 December 2006 14:31, Tuareg wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, What happens when you do this: telnet localhost telnet localhost 25 Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Operation timed out telnet: Unable to connect to remote host Does the connection time out? Or do you get a sendmail prompt? Yes, the connection time out. No, I don't get the sendmail prompt, because there is no sendmail running. ps axwww | grep sendmail 47237 p0 R+ 0:00.00 grep sendmail I'm sort of mixed up on the order of the posts, here. But let me see if I can rephrase the problem and then possibly help you find a solution ... It seems to me that the problem is that you cannot determine how to make FreeBSD 6.x do like other hosts under your influence, so that it will send email from [EMAIL PROTECTED] to another (possibly a hub) server? Is that correct? Yes, we have older versions of FreeBSD (4.x and 5.x) running on remote servers where we can't interrupt the service, in this servers, we can send e-mails to our main e-mail server, were we get reports of scripts. In those servers, we don't have running sendmail, look: ps axwww | grep sendmail 19702 p0 D+ 0:00.00 grep sendmail % %telnet localhost 25 Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Permission denied telnet: Unable to connect to remote host But, we are able to send emails: mail -v [EMAIL PROTECTED] Subject: Test Testing from FreeBSD 4.6-RELEASE . EOT [EMAIL PROTECTED] Connecting to main.server.com via esmtp... 220 main.server.com ESMTP EHLO server.FreeBSD.4.6-RELEASE 250-main.server.com Hello 250-8BITMIME 250-SIZE 31457280 250-ETRN 250-DSN 250 PIPELINING MAIL From:[EMAIL PROTECTED] SIZE=78 250 Sender OK RCPT To:[EMAIL PROTECTED] 250 Recipient OK DATA 354 Enter your message, followed by a dot on a line by itself . 250 AYQ81844 Message accepted for delivery [EMAIL PROTECTED] Sent (AYQ81844 Message accepted for delivery) Closing connection to main.server.com QUIT 221 main.server.com Goodbye First I assume that these other FreeBSD installations are also using sendmail. If that is NOT correct then your best hope is to replicate your mta configuration from those other hosts. In fact that might not be a bad idea regardless of what they are running :) You are right, all this installations are also using sendmail. But again, assuming you want to run sendmail and ONLY allow the localhost to transmit out to another host for collection and/or distribution, enter this value into /etc/rc.conf: sendmail_enable=NO Now edit /etc/mail/freebsd.mc. Locate the term SMART_HOST, uncomment that line, and enter the IP address or fully qualified domain name of your upstream server in place of 'your.isp.mail.server' Note: If 'your.isp.mail.server' is NOT resolvable on the localhost, then you must use the IP address. When you use the IP address, you must put it in [square brackets], like [192.168.2.1]. Now from /etc/mail, type make all install then shutdown and restart the server using your method of choice, or just type /etc/rc.d/sendmail restart And try to send email again. All should work now. But you must remember to configure the TARGET mail server to allow this host to send. I'll leave that as an exercise for you. lane Have some doubts... about this procedure.. I'm going to explain why In this server (from the example, server.FreeBSD.4.6-RELEASE, where we can send e-mail, but sendmail it's not running, rc.conf contains: sendmail_enable=NONE, sendmail it's not running: ps axwww | grep sendmail 19702 p0 D+ 0:00.00 grep sendmail And how I showed you in this messages, we are able to send messages, well.. root can do it, as a normal user I can't: mail -v [EMAIL PROTECTED] Subject: TEST Testing from FreeBSD 4.6-RELEASE . EOT collect: Cannot write ./dfkBDJDkW19705 (bfcommit, uid=xxx): Permission denied queueup: cannot create queue temp file ./tfkBDJDkW19705, uid=xxx: Permission denied The older sysadmin who made this configuration with FreeBSD 4.6-RELEASE, quit the job and didn't leave any documentation, a how to, nothing, were he explain how he did this. That's the reason why we are looking to repeat this configuration with FreeBSD 6.1-RELEASE, but couldn't do it.. yet. Thank you for your help. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Post /etc/rc.conf from one of the servers that does what you want and that should lead us to what mta is handling email. Also, please post a copy of ls -al /usr/local/etc/rc.d from that same working server, just in case there is a custom script starting the mta. lane
Re: Shar question
On Wednesday 13 December 2006 11:38, Bill Moran wrote: In response to Beech Rintoul [EMAIL PROTECTED]: I'm trying to learn how to use shar. I've read the manual. If I pass a directory to shar: shar foo foo.shar Results in a shar file. Problem is that when I unpack it I just end up with an empty directory. I probably need to pass it a flag or something, but I'm not sure which one to use. How do I make a shar file out of a directory and ALL it's contents. shar needs to know all the files it's to put into the archive, it doesn't walk the tree for you. Thus you could do: share file1.txt file2.txt file3.txt archive.shar to selectively grab only the specified files. When grabbing an entire directory tree, you can use the syntax: share `find \start\of\directory\tree -print` archive.shar which is hinted at in the man page. The backticks cause the find command to be executed, and the output of find is given to shar. OK, now I understand. The manual was a bit unclear on that. Thanks, Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Alaska Paradise Travel \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - Please visit Alaska Paradise - http://www.alaskaparadise.com --- pgp76jFZChM12.pgp Description: PGP signature
Re: can I unload a module from within sysinstall ?
On 12/13/06, Ensel Sharon [EMAIL PROTECTED] wrote: I need to load a new kernel module during sysinstall so that I can see my raid controller. Easy - I go into configure, load, and load it off the floppy. Easy. BUT, freebsd already has a xyz.ko, and it is already loaded, so it fails. So my question is, how do I unload the existing xyz.ko before I load the new one ? Can I do it in sysinstall ? Can I do it in the loader prompt prior to sysinstall ? __ Did you try from the emergency console on F4? Haven't had to try this myself but, it would be worth a try. Chad ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can I unload a module from within sysinstall ?
On 12/13/06, Chad Gross [EMAIL PROTECTED] wrote: On 12/13/06, Ensel Sharon [EMAIL PROTECTED] wrote: I need to load a new kernel module during sysinstall so that I can see my raid controller. Easy - I go into configure, load, and load it off the floppy. Easy. BUT, freebsd already has a xyz.ko, and it is already loaded, so it fails. So my question is, how do I unload the existing xyz.ko before I load the new one ? Can I do it in sysinstall ? Can I do it in the loader prompt prior to sysinstall ? __ Did you try from the emergency console on F4? Haven't had to try this myself but, it would be worth a try. Chad Sorry, the command would be 'kldunload xyz.ko' ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Please help*
I am a novice with Unix and user of MySQL on windows….. I have a problem, i.e. I want to install MySQL5.0 at my FreeBSD 6.1 box with following configurations: --prefix=/usr/local/mysql --with-mysqld-user=mysql --with-unix-socket-path=/tmp/mysql.sock --with-mysqld-ldflags=-all-static How and at What place, can I configure the Makefile under /usr/ports/databases/mysql50-server/ to have MySQL server working with above mentioned configurations? -- Thanks! BR / vj ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SendmailDNSBL
Hi, I have sendmail configured for the following hypothetical domains: mydomaina.com mydomainb.com I would like sendmail to do DNSBL checking on mydomaina.com but not mydomainb.com, is this possible? -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: javaws
brian merrell wrote: I've been googleing all morning on this one... I'm need to get javaws to work. I am using FreeBSD6.1-RELEASE amd64. I've tried installing the diablo packages (both jdk and jre), and apparently it does not include javaws, is this correct? I've tried installing the linux-sun-jdk15 package. It installed okay, but javaws is broken: [EMAIL PROTECTED] /usr/ports/java/linux-sun-jdk15]# javaws Java Web Start splash screen process exiting ... Bad installation: JAVAWS_HOME not set: No such file or directory And I've tried compiling /usr/ports/java/jdk15 and it fails: # # SIGSEGV (0xb) at pc=0xefd4, pid=28699, tid=49156 # # Java VM: Java HotSpot(TM) Client VM (1.4.2_12-b03 mixed mode) # Problematic frame: # C 0xefd4 # # An error report file with more information is saved as hs_err_pid28699.log # # If you would like to submit a bug report, please visit: # http://java.sun.com/webapps/bugreport/crash.jsp Any pointers or ideas? javaws is a necessity for me. Thanks, Brian. I have attached hs_err_pid28699.log Works for me using diablo-jdk 1.5.x: happy-idiot-talk:~:% pkg_which /usr/local/bin/javaws javavmwrapper-2.3 If you install a JDK or JRE from ports you should get a link via the javavmwrapper that makes javaws work -- and you don't need to set anything special in your environment either. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: Please help*
On Dec 13, 2006, at 12:56 PM, VeeJay wrote: I want to install MySQL5.0 at my FreeBSD 6.1 box with following configurations: --prefix=/usr/local/mysql --with-mysqld-user=mysql --with-unix-socket-path=/tmp/mysql.sock --with-mysqld-ldflags=-all-static How and at What place, can I configure the Makefile under /usr/ports/databases/mysql50-server/ to have MySQL server working with above mentioned configurations? See CONFIGURE_ARGS in /usr/ports/databases/mysql50-server/Makefile. Note that the $PREFIX is already configured pretty much right already, and that mysql will run as a mysql user, and that putting the MySQL socket under /tmp is already done for you. I'm not sure why you want to statically link MySQL, but if you really want to do so, that would be the only argument likely worth changing in the port's Makefile -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipf stateful rules
Thanks for the reply - my IPNAT config is this: map hme0 10.0.0.0/16 - 0/32 rdr hme0 0/0 port 22 - 10.0.0.2 port 22 rdr hme0 0/0 port 25 - 10.0.0.2 port 25 rdr hme0 0/0 port 236 - 10.0.0.2 port 236 rdr hme0 0/0 port 237 - 10.0.0.2 port 237 rdr hme0 0/0 port 113 - 10.0.0.4 port 113 rdr hme0 0/0 port 5800-5900 - 10.0.0.4 port 5800 rdr hme0 0/0 port 6881-6889 - 10.0.0.2 port 6881 rdr hme0 0/0 port 7071 - 10.0.0.2 port 7071 - Original Message - From: julien Chaffraix [EMAIL PROTECTED] To: Nathan Watson [EMAIL PROTECTED] Cc: freebsd-questions freebsd-questions@freebsd.org Sent: Wednesday, December 13, 2006 12:56:24 PM GMT-0500 US/Eastern Subject: Re: ipf stateful rules Nathan Watson wrote: Hello, I'm running FreeBSD 6.1 with IPF/IPNAT, and I'm having a problem getting my rules to work. The problem is mainly that I want no restrictions on outbound traffic, and I'm not sure how to apply stateful filtering to that. I have the following rule (hme0 is my external interface): pass out quick on hme0 all If I change that to pass out quick on hme0 all keep state, will that only open the port that the outbound packet was on? Are there any problems that can arise from allowing all outbound traffic? At the moment, my ruleset doesn't pass packets at all... I'm just having lots of troubles here. My ruleset is below, and everything seems to be caught by the last block all rule. Any suggestions? You can use pass out quick on hme0 all keep state just to allow outgoing traffic without restriction. You didn't mention the IPNAT ruleset which could explain your problem. For your use I would have something like : map hm0 0.0.0.0/0 - 0.0.0.0/32 Cheers, Julien Thanks, nwatson # no restrictions on internal LAN pass out quick on hme1 all pass in quick on hme1 all # no restrictions on loopback pass out quick on lo0 all pass in quick on lo0 all # no outbound restrictions pass out quick on hme0 all keep state # block all from non-routable or reserved address space block in quick on hme0 from 172.16.0.0/12 to any# private block in quick on hme0 from 10.0.0.0/8 to any # private block in quick on hme0 from 127.0.0.0/8 to any # loopback block in quick on hme0 from 0.0.0.0/8 to any# loopback block in quick on hme0 from 169.254.0.0/16 to any # dhcp auto-config block in quick on hme0 from 192.0.2.0/24 to any # reserved for docs block in quick on hme0 from 204.152.64.0/23 to any # sun cluster interconnect block in quick on hme0 from 224.0.0.0/3 to any # class d e multicast # inbound blocks block in quick on hme0 all with frags # frags block in quick on hme0 proto tcp all with short # short tcp packets block in quick on hme0 all with opt lsrr# source routed packets block in quick on hme0 all with opt ssrr# source routed packets block in log first quick on hme0 proto tcp from any to any flags FUP# nmap os fingerprint attempts, log block in quick on hme0 all with ipopts # anything with special options block in quick on hme0 proto icmp all icmp-type 8 # public pings block in log first quick on hme0 proto tcp/udp from any to any port = 137 # netbios name block in log first quick on hme0 proto tcp/udp from any to any port = 138 # netbios datagram block in log first quick on hme0 proto tcp/udp from any to any port = 139 # netbios session block in log first quick on hme0 proto tcp/udp from any to any port = 81 # hosts2 name server requests # allow these pass in quick on hme0 proto tcp from any to any port = 22 flags S keep state # ssh pass in quick on hme0 proto tcp from any to any port = 25 flags S keep state # smtp pass in quick on hme0 proto tcp from any to any port = 236 flags S keep state # http pass in quick on hme0 proto tcp from any to any port = 237 flags S keep state # zimbra https pass in quick on hme0 proto tcp from any to any port = 113 flags S keep state # ident pass in quick on hme0 proto tcp from any to any port 5800 5900 flags S keep state # vnc pass in quick on hme0 proto tcp/udp from any to any port 6881 6889 keep state # bittorrent pass in quick on hme0 proto tcp from any to any port = 7071 flags S keep state # zimbra admin https # block, log all remaining traffic block in log first quick on hme0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Jail
Hi all Some question about jail : Can I use postfix/courier-imap in a jail ? (without any patch of-course, with and without chroot) Can I use bind in a jail (with and without chroot) ? If I make many jail how can I update all without lot of recompilation ? Using nullfs ? Where can I find a good documentation (especialy over 6.x), with google I don't find a good doc, all I find is for 4.x, or something very little doc. Regards. -- Albert SHIH Universite de Paris 7 (Denis DIDEROT) U.F.R. de Mathematiques. 7 ième étage, plateau D, bureau 10 Heure local/Local time: Wed Dec 13 23:02:05 CET 2006 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jail
Can I use postfix/courier-imap in a jail ? (without any patch of-course, with and without chroot) Yes for postfix... I do it now. I would assume courier-imap would work as well. The only apps that won't work are ones that rely on ICMP (like nagios trying to ping servers). Can I use bind in a jail (with and without chroot) ? Sure. If I make many jail how can I update all without lot of recompilation ? Using nullfs ? ezjail - http://erdgeist.org/arts/software/ezjail/ It does exactly what you're wantingto do. -philip ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: javaws
Thanks for your response Matthew. This has been my experience: [EMAIL PROTECTED] /usr/ports/java/javavmwrapper]# make install clean (installs OK) [EMAIL PROTECTED] /usr/ports/java/diablo-jdk15]# make install clean (installs OK) [EMAIL PROTECTED] /home/bean]# find / -name javaws [EMAIL PROTECTED] /home/bean]# find / -name *javaws* /usr/local/diablo-jdk1.5.0/man/man1/javaws.1 Am I missing something? Brian - Original Message - From: Matthew Seaman [EMAIL PROTECTED] To: brian merrell [EMAIL PROTECTED] Subject: Re: javaws Date: Wed, 13 Dec 2006 21:23:51 + brian merrell wrote: I've been googleing all morning on this one... I'm need to get javaws to work. I am using FreeBSD6.1-RELEASE amd64. I've tried installing the diablo packages (both jdk and jre), and apparently it does not include javaws, is this correct? I've tried installing the linux-sun-jdk15 package. It installed okay, but javaws is broken: [EMAIL PROTECTED] /usr/ports/java/linux-sun-jdk15]# javaws Java Web Start splash screen process exiting ... Bad installation: JAVAWS_HOME not set: No such file or directory And I've tried compiling /usr/ports/java/jdk15 and it fails: # # SIGSEGV (0xb) at pc=0xefd4, pid=28699, tid=49156 # # Java VM: Java HotSpot(TM) Client VM (1.4.2_12-b03 mixed mode) # Problematic frame: # C 0xefd4 # # An error report file with more information is saved as hs_err_pid28699.log # # If you would like to submit a bug report, please visit: # http://java.sun.com/webapps/bugreport/crash.jsp Any pointers or ideas? javaws is a necessity for me. Thanks, Brian. I have attached hs_err_pid28699.log Works for me using diablo-jdk 1.5.x: happy-idiot-talk:~:% pkg_which /usr/local/bin/javaws javavmwrapper-2.3 If you install a JDK or JRE from ports you should get a link via the javavmwrapper that makes javaws work -- and you don't need to set anything special in your environment either. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc -- ___ Get your free email from http://www.linuxmail.org Powered by Outblaze ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
disk I/O tuning parameters
I've been experimenting with vfs.hirunningspace and it has some interesting effects. Is there a different, more detailed, description of its effects (and/or similar tuning parameters) than found in http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/configtuning-disk.html Is there a way to limit the runningspace, bufspace, or similar parameters on a per disk, per process, or per file basis rather than system wide? I haven't been able to find anything. I need a way to protect the disk I/O bandwidth of one process from other processes. Having its own disk, and running at rtprio is not sufficient. (See processes not getting fair share of available disk I/O thread in -questions for more details.) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shar question
In the last episode (Dec 13), Beech Rintoul said: I'm trying to learn how to use shar. I've read the manual. If I pass a directory to shar: shar foo foo.shar Results in a shar file. Problem is that when I unpack it I just end up with an empty directory. I probably need to pass it a flag or something, but I'm not sure which one to use. How do I make a shar file out of a directory and ALL it's contents. If you want to get sneaky, you can use bsdtar, since that's one of its supported output formats: tar --format=shar -cvf foo.shar foo -- Dan Nelson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Post /etc/rc.conf from one of the servers that does what you want and that should lead us to what mta is handling email. cat /etc/rc.conf ### Network daemon (miscellaneous) NFS options: ### sendmail_enable=NONE # Run the sendmail daemon (or NO). cron_enable=YES # Run the periodic job daemon. portmap_enable=NO # Run the portmapper service (or NO). usbd_enable=NO sshd_enable=YES tcp_drop_synfin=YES tcp_restrict_rst=YES syslogd_enable=YES# Run syslog daemon (or NO). syslogd_flags=-s -s # Flags to syslogd (if enabled). Also, please post a copy of ls -al /usr/local/etc/rc.d from that same working server, just in case there is a custom script starting the mta. lane ls -al /usr/local/etc/rc.d total 10 drwxr-xr-x 2 root wheel 512 Jan 23 2003 . drwxr-xr-x 4 root wheel 512 Oct 30 18:06 .. -rwxr--r-- 1 root wheel 624 Jan 14 2003 squid.sh And that's all. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On Wednesday 13 December 2006 16:36, Tuareg wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Post /etc/rc.conf from one of the servers that does what you want and that should lead us to what mta is handling email. cat /etc/rc.conf ### Network daemon (miscellaneous) NFS options: ### sendmail_enable=NONE # Run the sendmail daemon (or NO). cron_enable=YES # Run the periodic job daemon. portmap_enable=NO # Run the portmapper service (or NO). usbd_enable=NO sshd_enable=YES tcp_drop_synfin=YES tcp_restrict_rst=YES syslogd_enable=YES# Run syslog daemon (or NO). syslogd_flags=-s -s # Flags to syslogd (if enabled). Also, please post a copy of ls -al /usr/local/etc/rc.d from that same working server, just in case there is a custom script starting the mta. lane ls -al /usr/local/etc/rc.d total 10 drwxr-xr-x 2 root wheel 512 Jan 23 2003 . drwxr-xr-x 4 root wheel 512 Oct 30 18:06 .. -rwxr--r-- 1 root wheel 624 Jan 14 2003 squid.sh And that's all. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Yours is a mystery. Let's see the output of tail -200 /var/log/maillog from the working machine. Clearly there is no mta being started on boot. But I'm not familiar enough with squid to say for sure that it is not the daemon in question. It may be that squid is configurable so that it could be delivering the log messages. I'll make it and see what I can see. In the mean time, if anyone else has some ready experience to say for certain that this is probably what's happening, then jump right in. lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /pub/FreeBSD/ports/i386/packages-5-stable/All/
On Thu, Dec 14, 2006 at 07:26:42AM +1100, Ian Smith wrote: On Wed, 13 Dec 2006, Kris Kennaway wrote: On Thu, Dec 14, 2006 at 03:44:13AM +1100, Ian Smith wrote: [..] I was glad I'd specified -PP .. every fetch from $subject directory failed. Checking manually, then and again tonight, I see that indeed only the versions of files that were (correctly) current at 4th December are still there now. The latest file date there says 17th November. Is this likely a temporary glitch, or do -stable packages only get updated to match the current ports tree after some expectable delay? There's always a lag, of course (computers aren't yet infinitely fast ;-). It's usually only a lag of a couple of days for 6.x, longer for 5.x since it's a legacy branch and not our main focus of activity. As we're often enough reminded :) Thought I'd get it all up to date, then cvsup to 6.2 once released. However the main FTP distribution server has been offline with hardware failure for the past week or two, so I can't push out any of the subsequent updates. Hopefully this will be resolved soon (it's also holding up the 6.2 release cycle). Thanks Kris, may it Get Well Soon. BTW, just to try, I'd installed 6.1-R on another box over the net from the boot-only CD, and enjoyed being able to install heaps of packages from sysinstall that way, but was a bit dismayed to find it hadn't kept the fetched packages .. is there a way to ask sysinstall to do that? I dont think so, sysinstall isn't really intended as a post-install package management tool. Kris pgpX5si95BLLb.pgp Description: PGP signature
gamin/fam issues with KDE
Hi, For a while now the file monitor program fam has been replaced by gamin. When using KDE it seems to have the following issues: - when opening a directory with konqueror/kuickshow/some other KDE program, where removable media(USB stick, CDROM) is mounted, KDE/gamin seems to keep the directory occupied, causing problems when trying to unmount the removable media. When using fam instead of gamin, there's no problem unmounting the device. - sometimes I still can't unmount the media even if all KDE windows (and other programs) are closed. I think some instance of gamin or KDE keeps running although all windows have been closed. This also indicates sometimes not all processes are terminated well. Now I'm using fam instead of gamin again. I think it should be nice if this would become standard or the gamin issue wil be resolved, because it's quite annoying not being able to unmount removable media all the time. Did someone else experience the same behaviour? Strange thing is that when I try to find processes keeping the mounted device occupied, nothing can be found, with fstat nor with lsof. This could be because gamin's only polling a short time in a period. /Bastiaan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Yours is a mystery. Exactly... I can't find how the server is sending the emails without having sendmail active. Let's see the output of tail -200 /var/log/maillog from the working machine. Ok, here we go Dec 13 00:00:00 myhost newsyslog[41433]: logfile turned over Dec 13 00:00:02 myhost sendmail[41485]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 00:00:02 myhost sendmail[41485]: kBD602j41485: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 00:00:03 myhost sendmail[41488]: kBD602j41485: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYP95973 Message accepted for delivery) Dec 13 01:00:02 myhost sendmail[41626]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 01:00:03 myhost sendmail[41626]: kBD702J41626: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 01:00:04 myhost sendmail[41629]: kBD702J41626: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYM94014 Message accepted for delivery) Dec 13 02:00:01 myhost sendmail[41741]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 02:00:01 myhost sendmail[41741]: kBD801C41741: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 02:00:02 myhost sendmail[41744]: kBD801C41741: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYQ08859 Message accepted for delivery) Dec 13 03:00:01 myhost sendmail[41850]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 03:00:02 myhost sendmail[41850]: kBD901x41850: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 03:00:03 myhost sendmail[41853]: kBD901x41850: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYX97507 Message accepted for delivery) Dec 13 04:00:01 myhost sendmail[41954]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 04:00:01 myhost sendmail[41954]: kBDA01S41954: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 04:00:02 myhost sendmail[41957]: kBDA01S41954: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYN10182 Message accepted for delivery) Dec 13 05:00:01 myhost sendmail[42057]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 05:00:02 myhost sendmail[42057]: kBDB01842057: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 05:00:03 myhost sendmail[42060]: kBDB01842057: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYY07081 Message accepted for delivery) Dec 13 06:00:01 myhost sendmail[42160]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 06:00:01 myhost sendmail[42160]: kBDC01p42160: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 06:00:02 myhost sendmail[42163]: kBDC01p42160: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYQ28469 Message accepted for delivery) Dec 13 07:00:02 myhost sendmail[42257]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 07:00:02 myhost sendmail[42257]: kBDD02342257: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 07:00:03 myhost sendmail[42260]: kBDD02342257: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYY16076 Message accepted for delivery) Dec 13 08:00:03 myhost sendmail[42364]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 08:00:03 myhost sendmail[42364]: kBDE03W42364: from=root, size=136, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 08:00:05 myhost sendmail[42367]: kBDE03W42364: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:02, xdelay=00:00:02, mailer=esmtp, pri=30136, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYQ38182 Message accepted for delivery) Dec 13 09:00:01 myhost sendmail[42461]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 09:00:01 myhost sendmail[42461]: kBDF01U42461: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 09:00:02 myhost sendmail[42464]: kBDF01U42461: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01,
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Lane [EMAIL PROTECTED] wrote: On Wednesday 13 December 2006 16:36, Tuareg wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Post /etc/rc.conf from one of the servers that does what you want and that should lead us to what mta is handling email. cat /etc/rc.conf ### Network daemon (miscellaneous) NFS options: ### sendmail_enable=NONE # Run the sendmail daemon (or NO). cron_enable=YES # Run the periodic job daemon. portmap_enable=NO # Run the portmapper service (or NO). usbd_enable=NO sshd_enable=YES tcp_drop_synfin=YES tcp_restrict_rst=YES syslogd_enable=YES# Run syslog daemon (or NO). syslogd_flags=-s -s # Flags to syslogd (if enabled). Also, please post a copy of ls -al /usr/local/etc/rc.d from that same working server, just in case there is a custom script starting the mta. lane ls -al /usr/local/etc/rc.d total 10 drwxr-xr-x 2 root wheel 512 Jan 23 2003 . drwxr-xr-x 4 root wheel 512 Oct 30 18:06 .. -rwxr--r-- 1 root wheel 624 Jan 14 2003 squid.sh And that's all. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Yours is a mystery. Let's see the output of tail -200 /var/log/maillog from the working machine. Clearly there is no mta being started on boot. But I'm not familiar enough with squid to say for sure that it is not the daemon in question. It may be that squid is configurable so that it could be delivering the log messages. I'll make it and see what I can see. In the mean time, if anyone else has some ready experience to say for certain that this is probably what's happening, then jump right in. lane ___ You need something to be able to send emails to mail servers. Either a MUA which is capable of doing so (of which mail(8) is not) or an MTA locally. Are you sure you didn't follow these instructions on the other servers: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/outgoing-only.html How about trying them? Chad ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: processes not getting fair share of available disk I/O (was: Re: TCP parameters and interpreting tcpdump output )
On Mon, Dec 11, 2006 at 10:32:53AM +, Dieter wrote: Did this problem start before you made port2file run with rtprio? Yes. I only added rtprio because it wasn't working. Can you please include a copy of your kernel configuration file and dmesg? I think you asked that before: :-) OK, sorry - I lost track. Is Giant the only mutex/lock that could be a bottleneck across disks? The only one I can think of that is generic. One would have to do more extensive profiling and diagnosis to try and figure out what is wrong with your system. The only explanation that seems to fit is that it's something to do with your particular hardware (i.e. driver issue), since it's certainly not a problem on general configurations. I know that many people have bad things to say about nforce chipsets, although I dont know if your particular problem has been reported before. Kris pgpUCPWs2njwn.pgp Description: PGP signature
Re: how do I see security logs without turning on sendmail?
On Wednesday 13 December 2006 17:22, Tuareg wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Yours is a mystery. Exactly... I can't find how the server is sending the emails without having sendmail active. Let's see the output of tail -200 /var/log/maillog from the working machine. Ok, here we go Dec 13 00:00:00 myhost newsyslog[41433]: logfile turned over Dec 13 00:00:02 myhost sendmail[41485]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 00:00:02 myhost sendmail[41485]: kBD602j41485: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 00:00:03 myhost sendmail[41488]: kBD602j41485: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:01, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYP95973 Message accepted for delivery) Dec 13 01:00:02 myhost sendmail[41626]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 01:00:03 myhost sendmail[41626]: kBD702J41626: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 01:00:04 myhost sendmail[41629]: kBD702J41626: to= [EMAIL PROTECTED], ctladdr=root (0/0), delay=00:00:02, xdelay=00:00:01, mailer=esmtp, pri=30137, relay=main.server.com. [xxx.xxx.xxx.xxx], dsn=2.0.0, stat=Sent (AYM94014 Message accepted for delivery) Tuareg, clearly sendmail is running. That is indicated by sendmail[41626] in your /var/log/sendmail log. The question, of course, is how does it get started. The answer is still mysterious ... unless, of course, it is being managed by squid. In that case it might not be running as a daemon process, but could be invoked by squid when it needs to send mail. But I'm just guessing at this point. I really don't know enough about squid to give you an authoritative answer. I've got to step out for a few hours, but I'll see what I can find out on squid and get back to you in the morning. lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Chad Gross [EMAIL PROTECTED] wrote: You need something to be able to send emails to mail servers. Either a MUA which is capable of doing so (of which mail(8) is not) or an MTA locally. Are you sure you didn't follow these instructions on the other servers: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/outgoing-only.html No, I've already checked this option, but not, ssmtp port it's not being used. How about trying them? Could be, but its just that my boss believes that we can replicate the configuration of the old servers without installing anything else. Chad Thank you Chad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Install via ports...
Hi list, I've read the handbook for ports, basically (if I understand) ports are files that brings information (location, dependencies) to the system to compile a series of files (sources) to have the final piece of software. Very nice with the advantages that comes with this type of installation, but, what about a big applications like Gnome, OpenOffice and so on. I can't try ports because I can't have a fast/long connection for downloads (due to some restrictions on my country) so I always install via packages, and it takes a while, well a little bit. So what I am asking if is anyone has test a Gnome, OpenOffice.org, or any other big installations via ports (say in a Pentium 4 2.8GHz HT with 512Mb RAM) can tell me the elapsed time ??? Just curious...thanks in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, clearly sendmail is running. That is indicated by sendmail[41626] in your /var/log/sendmail log. The question, of course, is how does it get started. The answer is still mysterious ... unless, of course, it is being managed by squid. In that case it might not be running as a daemon process, but could be invoked by squid when it needs to send mail. That's exactly what is getting us crazy, know how. But I'm just guessing at this point. I really don't know enough about squid to give you an authoritative answer. I've got to step out for a few hours, but I'll see what I can find out on squid and get back to you in the morning. lane Thank you for your help and don't worry, we really appreciate all your help. It's time to get some fresh air, and tomorrow bring our brains to get this thing done. Cheers. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [kde-freebsd] gamin/fam issues with KDE
Just a quick me too. I have been seeing the exact same behavior ever since gamin was shoved down our throats as a better replacement for fam. But since nobody else complained, I figured it was just my system. Whatever gamin is doing, it is not showing up in lsof, but the file system is still busy. I did try tweaking my ~/.gaminrc to switch to polling for the mount points in question, but this didn't help. Oddly enough, sometimes, maybe one time out of ten, gamin will not exhibit this strange behavior. It will just let me unmount without any problems. - Bartosz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [kde-freebsd] gamin/fam issues with KDE
On Thu, Dec 14, 2006 at 12:06:43AM +, Bartosz Fabianowski wrote: Just a quick me too. I have been seeing the exact same behavior ever since gamin was shoved down our throats as a better replacement for fam. But since nobody else complained, I figured it was just my system. When building from ports it's quite easy to change back to fam, just put WITH_FAM_SYSTEM=fam into /etc/make.conf For existing systems/binary installed systems, you can just pkg_delete -f gamin* and install fam instead, so gamin libraries wil be replaced by the fam ones, it works well to me. One nasty thing is that when afterwards installing a package requiring gamin, it will fail with errors. To prevent this you could just fake the pkg db that gamin is installed however actually fam libraries are installed. Whatever gamin is doing, it is not showing up in lsof, but the file system is still busy. I did try tweaking my ~/.gaminrc to switch to polling for the mount points in question, but this didn't help. Oddly enough, sometimes, maybe one time out of ten, gamin will not exhibit this strange behavior. It will just let me unmount without any problems. Maybe because you just unmount on exactly the right moment, when gamin is not occupying the file system? Or just all windows and processes are closed cleanly. /Bastiaan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Install via ports...
On Wed, Dec 13, 2006 at 07:00:20PM -0500, Ne'Bahn wrote: Hi list, I've read the handbook for ports, basically (if I understand) ports are files that brings information (location, dependencies) to the system to compile a series of files (sources) to have the final piece of software. Very nice with the advantages that comes with this type of installation, but, what about a big applications like Gnome, OpenOffice and so on. I can't try ports because I can't have a fast/long connection for downloads (due to some restrictions on my country) so I always install via packages, and it takes a while, well a little bit. You can do make fetch to fetch the required package distfiles first, or make fetch-recursive to fetch all the required distfiles of all packages required by this package. see man ports for other targets. /Bastiaan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Install via ports...
On Wed, Dec 13, 2006 at 07:00:20PM -0500, Ne'Bahn wrote: Hi list, I've read the handbook for ports, basically (if I understand) ports are files that brings information (location, dependencies) to the system to compile a series of files (sources) to have the final piece of software. Very nice with the advantages that comes with this type of installation, but, what about a big applications like Gnome, OpenOffice and so on. I can't try ports because I can't have a fast/long connection for downloads (due to some restrictions on my country) so I always install via packages, and it takes a while, well a little bit. So what I am asking if is anyone has test a Gnome, OpenOffice.org, or any other big installations via ports (say in a Pentium 4 2.8GHz HT with 512Mb RAM) can tell me the elapsed time ??? Just curious...thanks in advance. I don't know about Gnome, but the last time I built OpenOffice from a port, it took several hours and I had to respond to some prompts and also get the JDK license piece from SUN (instructions are provided). The install from ports did not have to stay connected constantly all that time. It jumps on the net and grabs what it needs and then goes about building. My connection is 100 Mb here in the lab, but I don't know for sure what it is to the outside world - pretty fast though. jerry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mkxvcd not working due to floating point expression of movie length identification from mplayer
hi ... i need to use mkxvcd script to create movies, but it gave me error messages. After some debugging I found out it's because (I guess) that mplayer use floating point expression instead of integer when identifying the length of the movie, like 208.15 or something. Anyway, when mkxvcd trying to decide how many hours this movie has by code: HOURS=$[quant/3600], which quant means the length, the script can't handle it and exit. The script is written in Bash, and I am not so much of a expert, can someone suggest me the next step?? much appreciated!! TFC ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: processes not getting fair share of available disk I/O
Is Giant the only mutex/lock that could be a bottleneck across disks? The only one I can think of that is generic. One would have to do more extensive profiling and diagnosis to try and figure out what is wrong with your system. Suggestions of what to look at would be welcome. The only explanation that seems to fit is that it's something to do with your particular hardware (i.e. driver issue), since it's certainly not a problem on general configurations. I know that many people have bad things to say about nforce chipsets, although I dont know if your particular problem has been reported before. Could APIC have anything to do with this? It is currently turned off in firmware. Today I experimented with vfs.hirunningspace. If I crank it up, I get better total write speed with multiple drives doing dd from /dev/zero to files on disks. But it doesn't help my real applications, and in fact appears to hurt them. I have also discovered that my program that reads from Ethernet and does non-blocking writes to stdout which get redirected to a disk file isn't benefiting as much as it should from the large circular buffer. The buffer should be enough to hold 4.5-5 minutes worth of data, and is mlock(2)'d into memory. I can read from four disks at once without hurting the Ethernet transfer. But a dd from /dev/zero writing to a different disk that takes less than 3 seconds interferes with the Ethernet transfer. The fcntl(1, O_NONBLOCK); isn't failing, and the write() isn't returning -1/EAGAIN. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mkxvcd not working due to floating point expression of movie length identification from mplayer
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Tsu-Fan Cheng wrote: hi ... i need to use mkxvcd script to create movies, but it gave me error messages. After some debugging I found out it's because (I guess) that mplayer use floating point expression instead of integer when identifying the length of the movie, like 208.15 or something. Anyway, when mkxvcd trying to decide how many hours this movie has by code: HOURS=$[quant/3600], which quant means the length, the script can't handle it and exit. The script is written in Bash, and I am not so much of a expert, can someone suggest me the next step?? much appreciated!! TFC Answer about whether or not floating point arithmetic is possible in bash (from http://tldp.org/LDP/abs/html/ops.html): Caution Bash does not understand floating point arithmetic. It treats numbers containing a decimal point as strings. Why not... A. Brute force the math a bit with Bash? 1. Divide the integer portion. 2. Subtract the quotient. 3. Take the decimal remainder and multiply it by 100 (or 1000 or whatever the max precision is for the number), and use that as your decimal value B. Program your solution using a different method / language? It's quite simple to accomplish this using either Perl or C. - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFgKGrEnKyINQw/HARAqyGAKCipeiM62ACpCEIjrYrZJqT0tdK1gCeJVRk FrMS1VUcScc000QIc1xPsaU= =ZCQS -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How does one bond two interfaces together to share bandwidth?
I am trying to figure out how to bond or combine 2 interfaces together. Such that they each share traffic. I have tried one way, however when I use it I seem to have an odd broadcast occuring on my switch. Such that I am seeing incoming traffic hit some other ports on the switch. Can someone confirm if I am doing it correctly? Perhaps I have a switch issue? Do I also need to bond the ports together on the switch? Sadly the switch they are connected to does not support port bonding. Does that matter? I have not seen any mention of that being required. I have: /usr/sbin/ngctl -f- -SEQ mkpeer fec dummy fec msg fec0: add_iface em0 msg fec0: add_iface em1 msg fec0: set_mode_inet SEQ Thanks for any help! Nicole The Large Print Giveth And The Small Print Taketh Away -- Anon Do you Yahoo!? Everyone is raving about the all-new Yahoo! Mail beta. http://new.mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On Wed, Dec 13, 2006 at 05:22:41PM -0600, Tuareg wrote: Dec 13 00:00:00 myhost newsyslog[41433]: logfile turned over Dec 13 00:00:02 myhost sendmail[41485]: gethostbyaddr(xxx.xxx.xxx.xxx) failed: 1 Dec 13 00:00:02 myhost sendmail[41485]: kBD602j41485: from=root, size=137, class=0, nrcpts=1, msgid= [EMAIL PROTECTED], [EMAIL PROTECTED] Dec 13 00:00:03 myhost sendmail[41488]: kBD602j41485: to= [...] clearly sendmail is running, but not as a daemon. It gets called for every single mail by some other process running as root. You suspect squid to do so? (unlikely, why should a webcache send emails...) Well, then run squid as another user and watch the logs, should be from=squiduser then... The problem with too much root- processes is, you can't tell which one is going mad. enjoy, Armin -- PUBBOX Postmaster + spam-killer. Free email addresses at http://pubbox.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How does one bond two interfaces together to share bandwidth?
On Dec 13, 2006, at 5:01 PM, N. Harrington wrote: I have tried one way, however when I use it I seem to have an odd broadcast occuring on my switch. Such that I am seeing incoming traffic hit some other ports on the switch. Can someone confirm if I am doing it correctly? Perhaps I have a switch issue? Do I also need to bond the ports together on the switch? Yes, the switch would need to support Cisco's FEC protocol if you want to use ng_fec with it. Sadly the switch they are connected to does not support port bonding. Does that matter? Yep. In many cases, a single 100Mbs link does just fine, but if you need more bandwidth, you can pick up a gigabit NIC nowadays for not much. Picking up a GB-capable switch is more expensive, but perhaps your existing switch might have one or a couple of GB ports... -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How does one bond two interfaces together to share bandwidth?
In the last episode (Dec 13), N. Harrington said: I am trying to figure out how to bond or combine 2 interfaces together. Such that they each share traffic. I have tried one way, however when I use it I seem to have an odd broadcast occuring on my switch. Such that I am seeing incoming traffic hit some other ports on the switch. Can someone confirm if I am doing it correctly? Perhaps I have a switch issue? Do I also need to bond the ports together on the switch? Sadly the switch they are connected to does not support port bonding. Does that matter? I have not seen any mention of that being required. If the remote switch doesn't support it, only outgoing traffic will be split across both ports. Incoming traffic will probably come in on the first port that came up, or the switch may decide that there's a routing loop (or other misconfiguration) because the same MAC address is seen on both ports, and disable one of the ports (or even both). Most managed switches should support it; they may call it trunking. -- Dan Nelson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: processes not getting fair share of available disk I/O
On Wed, Dec 13, 2006 at 04:37:42PM +, Dieter wrote: Is Giant the only mutex/lock that could be a bottleneck across disks? The only one I can think of that is generic. One would have to do more extensive profiling and diagnosis to try and figure out what is wrong with your system. Suggestions of what to look at would be welcome. Mutex profiling would show if there is a mutex somehow getting in the way of your I/O (e.g. if Giant is somehow being forced). I dont think it would show anything though. You can try to study interrupt issues (e.g. look for an interrupt storm during I/O) with vmstat -i. Other than that you'd probably have to get your hands dirtier in the code. The only explanation that seems to fit is that it's something to do with your particular hardware (i.e. driver issue), since it's certainly not a problem on general configurations. I know that many people have bad things to say about nforce chipsets, although I dont know if your particular problem has been reported before. Could APIC have anything to do with this? It is currently turned off in firmware. Problems with interrupt delivery could certainly be relevant. Today I experimented with vfs.hirunningspace. If I crank it up, I get better total write speed with multiple drives doing dd from /dev/zero to files on disks. But it doesn't help my real applications, and in fact appears to hurt them. Yes, I don't expect there are any viable high-level workarounds for this issue at a lower layer. Kris pgpQTqXsyQfA0.pgp Description: PGP signature
Re: How does one bond two interfaces together to share bandwidth?
On Wednesday 13 December 2006 19:08, Chuck Swiger wrote: On Dec 13, 2006, at 5:01 PM, N. Harrington wrote: I have tried one way, however when I use it I seem to have an odd broadcast occuring on my switch. Such that I am seeing incoming traffic hit some other ports on the switch. Can someone confirm if I am doing it correctly? Perhaps I have a switch issue? Do I also need to bond the ports together on the switch? Yes, the switch would need to support Cisco's FEC protocol if you want to use ng_fec with it. Sadly the switch they are connected to does not support port bonding. Does that matter? Yep. In many cases, a single 100Mbs link does just fine, but if you need more bandwidth, you can pick up a gigabit NIC nowadays for not much. Picking up a GB-capable switch is more expensive, but perhaps your existing switch might have one or a couple of GB ports... Maybe ng_one2many would be of some use depending on the exact situation. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
On Wednesday December 13, 2006 at 06:26:58 (PM) Chad Gross wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: On Wednesday 13 December 2006 16:36, Tuareg wrote: On 12/13/06, Lane [EMAIL PROTECTED] wrote: Tuareg, Post /etc/rc.conf from one of the servers that does what you want and that should lead us to what mta is handling email. cat /etc/rc.conf ### Network daemon (miscellaneous) NFS options: ### sendmail_enable=NONE # Run the sendmail daemon (or NO). cron_enable=YES # Run the periodic job daemon. portmap_enable=NO # Run the portmapper service (or NO). usbd_enable=NO sshd_enable=YES tcp_drop_synfin=YES tcp_restrict_rst=YES syslogd_enable=YES# Run syslog daemon (or NO). syslogd_flags=-s -s # Flags to syslogd (if enabled). Also, please post a copy of ls -al /usr/local/etc/rc.d from that same working server, just in case there is a custom script starting the mta. lane ls -al /usr/local/etc/rc.d total 10 drwxr-xr-x 2 root wheel 512 Jan 23 2003 . drwxr-xr-x 4 root wheel 512 Oct 30 18:06 .. -rwxr--r-- 1 root wheel 624 Jan 14 2003 squid.sh And that's all. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Tuareg, Yours is a mystery. Let's see the output of tail -200 /var/log/maillog from the working machine. Clearly there is no mta being started on boot. But I'm not familiar enough with squid to say for sure that it is not the daemon in question. It may be that squid is configurable so that it could be delivering the log messages. I'll make it and see what I can see. In the mean time, if anyone else has some ready experience to say for certain that this is probably what's happening, then jump right in. lane ___ You need something to be able to send emails to mail servers. Either a MUA which is capable of doing so (of which mail(8) is not) or an MTA locally. Are you sure you didn't follow these instructions on the other servers: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/outgoing-only.html You need to check out this URL: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mail-changingmta.html Also, Sendmail is invoked from the /etc/defaults/rc.conf file. You over ride it in the /etc/rc.conf file. In FreeBSD 5.0, SENDMAIL_ENABLE=NONE is not the proper way to disable Sendmail. Check out the above URL for further information. -- Gerard ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Qlogic QLA2200G Freebsd 6.1
See the Release Information http://www.freebsd.org/releases/index.html; you can search in the supported hardware list for your card or similar... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Install via ports...
On 12/13/06, Ne'Bahn [EMAIL PROTECTED] wrote: Hi list, I've read the handbook for ports, basically (if I understand) ports are files that brings information (location, dependencies) to the system to compile a series of files (sources) to have the final piece of software. Very nice with the advantages that comes with this type of installation, but, what about a big applications like Gnome, OpenOffice and so on. I can't try ports because I can't have a fast/long connection for downloads (due to some restrictions on my country) so I always install via packages, and it takes a while, well a little bit. So what I am asking if is anyone has test a Gnome, OpenOffice.org, or any other big installations via ports (say in a Pentium 4 2.8GHz HT with 512Mb RAM) can tell me the elapsed time ??? Just curious...thanks in advance. I have a P4 2.8 w/ 1G RAM and it takes hours to compile OpenOffice and around 9GB of hdd space. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Gateway MX3215 laptop running fbsd 6.1 current, no sound.
Greetings everyone, I have been hacking at this freebsd install for over 3 weeks now. Got everything working perfectly but sound. Been playing with it for awhile and have tried all of the config options i could imagine. Now gateway doesnt shed to much light on the soundcard/chipset thats in this system. it does tell me these two bits of info. Chipset: Via VN800 Audio: AC '97 2.3 Compliant Audio Built-in Speakers So i tried native drivers, but no go. So i then downloaded and got OSS installed ( latest version from the website) it does see my sound card as VIA VT8233/8235/8237. But when I go to play sound eaither ussing osstest or an application like xmms the system thinks it's playing to the sound out, but i get no sound from the speakers. Adjusted volume using ossxmix, but to no avail. Anyone ever ran into anyhting like this or is using this same system? Any help would be much appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How does one route traffic to always go in and out via the same port/ip?
Fron a previous post I found I cannot solve my problem via port bonding since I am stuck with a switch that does not support Port bonding or trunking, I would like to then try to setup various interfaces with various IP's to help balance the traffic. Basicly as normal, assign say: ifconfig em0 192.168.1.10 netmask 255.255.255.0 (switch port1) ifconfig em1 192.168.1.11 netmask 255.255.255.0(switch port2) ifconfig em2 192.168.1.12 netmask 255.255.255.0 (switch port3) However if I do this, I get arp complaints because of being on the same network. Now I can stop the arp complaints via setting the below in sysctl.conf net.link.ether.inet.log_arp_movements=0 net.link.ether.inet.log_arp_wrong_iface=0 But, the problem I really have if that all the outbound traffic, goes back out the first port to the default gateway. I have tried everything I could think of, but I cannot figure out how to make sure that traffic that comes in via a particular port, will go back out that port. I am running a load balancing program on this machine. Each IP address would then correspond to an aggrigate of servers that would send traffic back to the machine in response to a request passed to it. However all the responses to the clients, regardless of which IP they came in on, are being sent back via the first port instead of the port/ip they came in on. Any assitance on how to bind an ip and gateway to a port much appreciatted! Sorry if my explanantion sucks. Feel free to ask for more info. Thanks!! They really push this program for running on linux. They offer it for FreeBSD but don't support it as much. I would really like to solve this. Otherwise all of our BSD servers will show up as linux servers if they have to be behind a linux based server. Nicole The Large Print Giveth And The Small Print Taketh Away -- Anon Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Install via ports...
Chad Gross writes: So what I am asking if is anyone has test a Gnome, OpenOffice.org, or any other big installations via ports (say in a Pentium 4 2.8GHz HT with 512Mb RAM) can tell me the elapsed time ??? Just curious...thanks in advance. I have a P4 2.8 w/ 1G RAM and it takes hours to compile OpenOffice and around 9GB of hdd space. P4/2.26G; 512 mb. I allocate 24 hours, rarely takes more than 20, to build OpenOffice. Uses 6-7G of disk. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd-questions Digest, Vol 158, Issue 10
I am glad to recommend Roman. I have worked with Roman for more than 4 years as a student in class, on independent projects, and now as his Masters thesis advisor. I'll begin with a little background. Each Spring I teach a course called System Administration. I lecture on operating systems, file systems, networks, and hardware. But most significantly we spend 3 or more hours per week in a laboratory with networked computers on which the students (1 or 2 per machine) perform various system and network administrative tasks. Most students find the experience refreshing because of the unfettered access they are given to the machines and the network in the labs. Typically, a few students each year approach me at the end of the term seeking additional projects or independent study in the lab. In the Spring of 2002, Roman took the course doing well and getting an A. As the term ended, Roman and another student, asked about possible projects. We decided on changing one of the major projects in the system administration course. This involved development of a tool for specifying installation parameteters for FreeBSD and then performing the installation. They worked hard on this project and ended with a working tool. At the end of the Spring 2003 term, Roman and another student, Aleks, asked about possible projects. They were particularly interested in the inner workings of the operating system. After some discussion we decided on that they would investigate the Unix Network File System (NFS) to see if it was appropriate for a project I've been thinking of for some time. They had no previous experience with programs at this level. They set to work, consulting with me as needed and by the the end of the summer were working deep within the NFS code. In the end, they demonstrated convincingly that NFS would not work as I had hoped. That that particular avenue was cut off, was disappointing to me, but does not, of course, reflect negatively on their work or effort. Their work was outstanding. Roman and Aleks worked worked very hard and productively together. This is why I must speak of both. I have found that in group projects, usually one student dominates the group both intellectually and in effort. This can sometimes make it difficult when it comes time to evaluate the individual contribution and effort. With Roman and Aleks, there is no such problem. Each of them worked extremely hard and contributed significantly to the project and they both deserve full marks for the outstanding work. I can say, though, that Roman has emerged as the leader in the group. In addition, Roman, is usually the first to understand new concepts and their significance. In the Fall of 2003, I received new computers and new networking equipment for the lab. Roman and Aleks, along with a third student, took on the task of setting up the new equipment. This is of great value to me and demonstrates their commitment and effort. Furthermore, they have solved a longstanding problem within the lab. Namely that I have always encouraged other faculty to make use of the lab for their classes, the nature of the system administration course presented a problem. Several times each term some students will inadvertently wipe out the disk on their system or get their system in such a state that starting from a clean disk is the best alternative. This, of course, does not make for a stable situation for other users of the lab. Further complicating matters is that we want to support three different operating systems on the machines. In addition to setting up the lab this last Fall, Roman and Aleks, developed a scheme to manage this. Basically, any of the operating systems can be restored on any of the computers within five to ten minutes. Thus, regardless of what one of my students might do to the software on a system, the computer can be made ready for a different class in short order. The motivation for this effort was mostly theirs and they spent many hours experimenting and struggling to develop it. It is an other outstanding effort. Over the last 3 months, Roman has been working on his Masters thesis with me. This project involves modifying the kernel of the FreeBSD operating system (FreeBSD is a version of Unix). Roman is making steady progress on this project. I have worked with Roman quite a bit over the these years. He has had remarkable development in his skills, knowledge, and confidence. He is personally pleasant. He has been very responsible in all regards. I find it hard to speak too highly of him. I have taught well over a thousand students both undergraduate and graduate. I have worked with several dozen on independent projects and theses. Of these, only a handful have really stood out. Roman is one of these, well within the top 5% of the students I've known. I have no doubt that he will do well in your company. Sincerely, Dayton Clark Dayton Clark CIS Department [EMAIL
where is the full compile option for sendmail?
hi all: The original sendmail's compile option is configured by m4,the one distribute with FreeBSD has tripped out some files and can not configure as the usual way,I have man make.conf,however, just find several items for sendmail and a few instructions. I want to know how to fully control the compile option while just do not install sendmail from a original source package? thx very much -- meilin mailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how do I see security logs without turning on sendmail?
Tuareg, I can't find the name of the quy who straightened me out on the fuction of squid, but kudo's to him. Clearly squid is not the culprit. But I've done some eyeballing on /usr/sbin/periodic, and I think maybe it is the culprit. First lets have a look at your /etc/crontab file. Specifically we are interested in the lines which contain the term periodic If these lines include parameters, which are passed to /usr/sbin/periodic, then they may be the reason for your periodic emails being sent WITHOUT sendmail being enabled by the normal boot process. Take a look at /usr/sbin/periodic. Note that it uses values in /etc/defaults/periodic.conf as well as any override variables in /etc/rc.conf. It could also be overridden in other ways such as by defining the value source_periodic_confs_defined and periodic_conf_files but this should have already showed up in /etc/rc.conf. While you are examining /usr/sbin/periodic, look for the term output In my copy of that script there is a comment that looks like: #Where's our output going? Then there is a case block: case $output in /*) pipe=cat $output;; ) pipe=cat;; *) pipe=mail -s '$host ${arg##*/} run output' $output;; esac If your predecessor had modified this script or, perhaps overridden it using /etc/defaults/periodic.conf, then he may have either changed the *) default case, or supplied parameters from /etc/crontab (or /etc/defaults/periodic.conf) which could invoke sendmail directly. If he used override variables, then he would probably also have added a case for ) pipe=sendmail -arg1 arg2 argn This would account for sendmail being completely disabled in /etc/rc.conf AND for the messages being sent out via sendmail. However, as I read it, the behaviour you have reported would only occur if /usr/sbin/periodic was actually modified, as the use of the $output variables does NOT seem to allow for invocation of sendmail directly. And I don't believe that mail can force invocation of sendmail (although I may be wrong, as the man page does imply that mail will use any means available to get the message out). If this is the case (i.e. if mail is invoking sendmail directly) you could check it by trying to send mail from the command line on one of the servers that actually does what you want it to do. If it works, and if there are NO modifications to /usr/sbin/periodic or override defaults in /etc/defaults/periodic.conf, then it will be safe to assume that this feature has been properly quashed in 6.x. You would then need to follow the procedures for setting up sendmail for outgoing-only, as many have already recommended. In any case, the behaviour you desire would only work properly by making the appropriate changes to /etc/mail/hostname|freebsd.mc, (i.e. SMART_HOST and/or HUB settings), and then running make install in /etc/mail. (And this is always going to be the case where sendmail is concerned) I hope this information leads you to a resolution, as it has been a great learning experience for me ... but my brain hurts :) lane ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD: driver for ssl hardware accelerator board based on broadcom bcm5825, bcm5862 chips
Hello, I am working on FreeBSD driver for bcm5825 (5862) based board. Would you please help me. First of all I tried to work with bcm5820 based board. I installed FreeBSD 6.1 and load ubsec module: kldload ubsec In dmesg I saw that module recognized board (ubsec0: Broadcom 5820), crypto module was also loaded. After that I run openssl test (openssl version 0.9.7e-p1 25 Oct 2004) openssl speed rsa1024 -engine ubsec can't use that engine 830:error:2507006C:DSO support routines:DSO_load:functionality not supported:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/dso/d so_lib.c:239: 830:error:84069067:ubsec engine:UBSEC_INIT:dso failure:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/engine/ hw_ubsec.c:390: 830:error:260B806D:engine routines:ENGINE_TABLE_REGISTER:init failed:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/engine/e ng_table.c:182: What am I missing? There is no libubsec.so in the system. Any help will be appreciated. Alex Aronson Silicom Ltd. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: javaws
brian merrell wrote: Thanks for your response Matthew. This has been my experience: [EMAIL PROTECTED] /usr/ports/java/javavmwrapper]# make install clean (installs OK) [EMAIL PROTECTED] /usr/ports/java/diablo-jdk15]# make install clean (installs OK) [EMAIL PROTECTED] /home/bean]# find / -name javaws [EMAIL PROTECTED] /home/bean]# find / -name *javaws* /usr/local/diablo-jdk1.5.0/man/man1/javaws.1 Am I missing something? Apparently something is up the creek on your installation. However you should be able to fix it. The javavmwrapper port should create symbolic links in /usr/local/bin for all of the generally available java executables. It does that by running 'checkvms' at install time. You could try just running that by hand and see if it generates the correct output. This is the sort of thing you should see after doing that: happy-idiot-talk:/usr/local/bin:% ls -l | grep javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 ControlPanel@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 HtmlConverter@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 appletviewer@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 apt@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Aug 1 14:08 checkvms@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 extcheck@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 idlj@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jar@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jarsigner@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 java@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 java-rmi.cgi@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 java_vm@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 javac@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 javadoc@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 javah@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 javap@ - /usr/local/bin/javavm -r-xr-xr-x 1 root wheel21602 Aug 1 14:08 javavm* lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 javaws@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jconsole@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jdb@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jinfo@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jmap@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jps@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jsadebugd@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jstack@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jstat@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 jstatd@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 keytool@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 kinit@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 klist@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 ktab@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Aug 1 14:08 manvm@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 native2ascii@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 orbd@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 pack200@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 policytool@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Aug 1 14:08 registervm@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 rmic@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 rmid@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 rmiregistry@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 serialver@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 servertool@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 tnameserv@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Nov 7 19:13 unpack200@ - /usr/local/bin/javavm lrwxr-xr-x 1 root wheel 21 Aug 1 14:08 unregistervm@ - /usr/local/bin/javavm Cheers, Matthew PS. remember to 'rehash' so your shell will pick up on changes to the executables on your $PATH. -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP
Re: processes not getting fair share of available disk I/O
Mutex profiling would show if there is a mutex somehow getting in the way of your I/O (e.g. if Giant is somehow being forced). I dont think it would show anything though. You can try to study interrupt issues (e.g. look for an interrupt storm during I/O) with vmstat -i. Other than that you'd probably have to get your hands dirtier in the code. maxtotal count avg cnt_hold cnt_lock name 1158725 11853301596 74200 /usr/src/sys/amd64/amd64/pmap.c:1563 (pmap) 1158721 11665931596 7301 17 /usr/src/sys/amd64/amd64/pmap.c:1562 (vm page queue mutex) 90598 578551 199304 234 /usr/src/sys/kern/kern_sx.c:157 (lockbuilder mtxpool) 83234 967612 124000 700 /usr/src/sys/vm/vm_fault.c:906 (vm object) 83102 2515439 450378 500 /usr/src/sys/kern/subr_sleepqueue.c:369 (process lock) 82878 20495403215 637 1962 /usr/src/sys/kern/kern_synch.c:236 (Giant) 82632 947545 124000 704 /usr/src/sys/vm/vm_fault.c:295 (vm object) 82550 285981 124000 240 /usr/src/sys/vm/vm_fault.c:929 (process lock) 4674546789 11 425300 /usr/src/sys/kern/vfs_subr.c:1041 (vm object) 4674152927 6468110 /usr/src/sys/vm/vm_object.c:1775 (vm page queue mutex) 30068 10504612308520 /usr/src/sys/vm/vm_map.c:1380 (vm object) 24083 300793 136380 211 /usr/src/sys/vm/vm_object.c:454 (vm object) 24076329601020 /usr/src/sys/vm/vm_object.c:625 (vm page queue mutex) 19419701137295 900 /usr/src/sys/vm/vm_fault.c:787 (vm object) 160246538854941112 /usr/src/sys/vm/vnode_pager.c:1181 (vnode interlock) 16018516088791 579 /usr/src/sys/vm/vnode_pager.c:1169 (vm object) 14398 1084811 2519843 1083 /usr/src/sys/kern/kern_sysctl.c:1280 (Giant) 11940 274443 37582 701 /usr/src/sys/kern/vfs_bio.c:3082 (vm object) 11567 625811 312742 202 /usr/src/sys/kern/kern_lock.c:168 (lockbuilder mtxpool) 11096456665241 814 /usr/src/sys/vm/vm_map.c:2404 (vm object) If I'm reading the man page right, pmap holds a lock for over 1 second? Here's a capture with the stats reset after the Ethernet-disk process was already started up and running. maxtotal count avg cnt_hold cnt_lock name 9649 277992 203571300 /usr/src/sys/kern/vfs_bio.c:3364 (vm object) 5939 106822115892 1350 /usr/src/sys/kern/kern_sysctl.c:1280 (Giant) 562017658 29 60820 /usr/src/sys/amd64/amd64/pmap.c:2481 (vm page queue mutex) 561617502 29 60300 /usr/src/sys/amd64/amd64/pmap.c:2482 (pmap) 5021 446103 79641 510 /usr/src/sys/kern/subr_sleepqueue.c:369 (process lock) 3270165976032 200 /usr/src/sys/amd64/amd64/pmap.c:2602 (pmap) 2861155957158 200 /usr/src/sys/kern/kern_sx.c:245 (lockbuilder mtxpool) 2811 5180 767 600 /usr/src/sys/vm/vm_map.c:2193 (vm object) 254222712 24393 290 /usr/src/sys/kern/kern_synch.c:236 (Giant) 215214813 6582220 /usr/src/sys/vm/vm_fault.c:683 (vm object) 2054 4334 991 411 /usr/src/sys/kern/vfs_subr.c:1983 (vnode interlock) 1999115922575 400 /usr/src/sys/vm/vm_object.c:454 (vm object) 1497 4845 4311100 /usr/src/sys/kern/vfs_subr.c:2185 (vnode interlock) 1157108871288 800 /usr/src/sys/kern/vfs_subr.c:2073 (vnode interlock) 1106 3920 33 11800 /usr/src/sys/ufs/ffs/ffs_vfsops.c:1086 (struct mount mtx) 1082 5893 40 14700 /usr/src/sys/kern/vfs_subr.c:2805 (struct mount mtx) 905 1812 12 15100 /usr/src/sys/ufs/ffs/ffs_vfsops.c:1117 (struct mount mtx) 8801596915251000 /usr/src/sys/vm/vm_fault.c:295 (vm object) 873
Re: How does one bond two interfaces together to share bandwidth?
Hello: On Dec 13, 2006, at 5:13 PM, Dan Nelson wrote: In the last episode (Dec 13), N. Harrington said: I am trying to figure out how to bond or combine 2 interfaces together. Such that they each share traffic. I have tried one way, however when I use it I seem to have an odd broadcast occuring on my switch. Such that I am seeing incoming traffic hit some other ports on the switch. Can someone confirm if I am doing it correctly? Perhaps I have a switch issue? Do I also need to bond the ports together on the switch? Sadly the switch they are connected to does not support port bonding. Does that matter? I have not seen any mention of that being required. If the remote switch doesn't support it, only outgoing traffic will be split across both ports. Incoming traffic will probably come in on the first port that came up, or the switch may decide that there's a routing loop (or other misconfiguration) because the same MAC address is seen on both ports, and disable one of the ports (or even both). Most managed switches should support it; they may call it trunking. Both sides need to support EtherChannel which is 802.3ad (although Cisco does have a proprietary variant (go figure)). If only one side is set to channel and the other side is not, the non-channeled side will detect a loop and set one of the ports into blocking state; that is, if it's Spanning Tree aware. If it's a consumer-grade switch or hub, the network will do the functional equivalent of a Bill the Cat face and fall over most dramatically. Regards, Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: processes not getting fair share of available disk I/O
On Wed, Dec 13, 2006 at 10:42:03PM +, Dieter wrote: Mutex profiling would show if there is a mutex somehow getting in the way of your I/O (e.g. if Giant is somehow being forced). I dont think it would show anything though. You can try to study interrupt issues (e.g. look for an interrupt storm during I/O) with vmstat -i. Other than that you'd probably have to get your hands dirtier in the code. maxtotal count avg cnt_hold cnt_lock name 1158725 11853301596 74200 /usr/src/sys/amd64/amd64/pmap.c:1563 (pmap) 1158721 11665931596 7301 17 /usr/src/sys/amd64/amd64/pmap.c:1562 (vm page queue mutex) 90598 578551 199304 234 /usr/src/sys/kern/kern_sx.c:157 (lockbuilder mtxpool) 83234 967612 124000 700 /usr/src/sys/vm/vm_fault.c:906 (vm object) 83102 2515439 450378 500 /usr/src/sys/kern/subr_sleepqueue.c:369 (process lock) 82878 20495403215 637 1962 /usr/src/sys/kern/kern_synch.c:236 (Giant) 82632 947545 124000 704 /usr/src/sys/vm/vm_fault.c:295 (vm object) 82550 285981 124000 240 /usr/src/sys/vm/vm_fault.c:929 (process lock) 4674546789 11 425300 /usr/src/sys/kern/vfs_subr.c:1041 (vm object) 4674152927 6468110 /usr/src/sys/vm/vm_object.c:1775 (vm page queue mutex) 30068 10504612308520 /usr/src/sys/vm/vm_map.c:1380 (vm object) 24083 300793 136380 211 /usr/src/sys/vm/vm_object.c:454 (vm object) 24076329601020 /usr/src/sys/vm/vm_object.c:625 (vm page queue mutex) 19419701137295 900 /usr/src/sys/vm/vm_fault.c:787 (vm object) 160246538854941112 /usr/src/sys/vm/vnode_pager.c:1181 (vnode interlock) 16018516088791 579 /usr/src/sys/vm/vnode_pager.c:1169 (vm object) 14398 1084811 2519843 1083 /usr/src/sys/kern/kern_sysctl.c:1280 (Giant) 11940 274443 37582 701 /usr/src/sys/kern/vfs_bio.c:3082 (vm object) 11567 625811 312742 202 /usr/src/sys/kern/kern_lock.c:168 (lockbuilder mtxpool) 11096456665241 814 /usr/src/sys/vm/vm_map.c:2404 (vm object) If I'm reading the man page right, pmap holds a lock for over 1 second? In total, over 1600 operations. It's not an issue. The rest looks fine at a quick glance too. Kris pgpTmYq3vfOjT.pgp Description: PGP signature