Re: make buildworld powers down system
On Fri, 2 Dec 2011, Polytropon wrote: On Fri, 2 Dec 2011 03:28:09 -0500, Mehmet Erol Sanliturk wrote: On Fri, Dec 2, 2011 at 3:05 AM, Polytropon free...@edvax.de wrote: On Fri, 2 Dec 2011 02:06:26 -0500 (EST), d...@safeport.com wrote: The screen does go into standby and I am not sure what is controling that, nothing in KDE or Xorg that I set, perhaps a sysctl setting but I did not see one in the acpi section. This might be a dafault option. You can override it in your /etc/X11/xorg.conf by setting Option DPMS false in the section Monitor where you define the values for your monitor. I had a similar experience with an 21 CRT Eizo F980 going to sleep unintendedly. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... Another way may be inserting the following lines into ~/.xinitrc : xset s off xset -dpms Correct, I also have those in my ~/.xinitrc together with the xorg.conf setting above. With both settings, screens shouldn't blank anymore. Alas my problem is/was not with screen blanking. I do have have slightly upgraded 8.2. If I do not have a failing disk, I am left with something that carried across 2 boots. The only change I made was in the BIOS to make the function keys not require the fn key to be a function key. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
On 2011/12/03 at 10:51, Rob li...@midsummerdream.org wrote: I was getting ready to install the latest FreeBSD 9-RCs image, and I found that 9 now defaults to using the ahci driver for sata disks. This would be great if it weren't for the fact that the ahci driver seems to do dynamic device name assignment as opposed to the static ones used with the older drivers. I've looked around on google and while this is mentioned (in old threads), the solution is to use labels or elaborate mapping via hints which really aren't solutions imo. If I have 15 disks in an array, I want to be able to label them and know which bay is which device name. If I have to replace a drive, I have no idea what dynamic device name it will have when it comes time to partition (and label, if I were using that). I could probably figure it out by looking at what disks are used on the system, but that's more work that it really should be. It seems AHCI driver uses static naming policies if you have 'options ATA_STATIC_ID' in your kernel configuration. Anyway, I just have one SATA disk, which the system recognizes as 'ada4'. I don't know whether this will apply in your case. Is there a way to use the ahci driver and get static device names? Rob -- The first page the author turns to upon receiving an advance copy will be the page containing the worst error. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS Filesystems wont auto-mount on boot
On 12/03/2011 12:28 AM, APseudoUtopia wrote: Hello, I followed a couple tutorials I found through google to setup RAID-Z1 on root on FreeBSD 9.0-RC2. Everything works well, except it always drops me into a recovery shell on boot. I'm forced to run `zfs mount -a` to get all my data visible. Here's the boot log: Trying to mount root from zfs:root []... Dec 3 01:23:07 init: login_getclass: unknown class `daemon` cannot open /etc/rc: No such file or directory You did not provide a list of your filesystems, so this is just a guess, but I'd say that, judging by this error, you have /etc on a separate filesystem. At least /bin, /sbin, /lib, /libexec, and /etc must be on your root filesystem for the boot process to function, since the system bootstrap (/etc/rc et alia) resides in /etc and uses components in the other listed directories; it is the system bootstrap which automounts your ZFS filesystems on boot (zfs_enable). Enter full pathname of shell or RETURN for /bin/sh: I then hit return, then run `zfs mount -a` to mount all my zfs filesystems. How can I have zfs automount these filesystems on boot so that the system can continue booting without being interrupted? -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net cyber...@cyberleo.net Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Installing an older version of a port
On 12/02/11 17:51, Polytropon wrote: On Fri, 02 Dec 2011 15:25:48 +1000, Da Rock wrote: On 12/02/11 14:01, Adam Vande More wrote: On Thu, Dec 1, 2011 at 9:55 PM, Da Rock freebsd-questi...@herveybayaustralia.com.au mailto:freebsd-questi...@herveybayaustralia.com.au wrote: I've never actually done this before, so I'm a little shaky on the details. ffmpeg-0.7.7,1 doesn't work for my purposes: ffserver/ffmpeg aren't communicating all that well- I'm still working out the details, but essentially either or both are borked. I've been working with the ffmpeg list to sort it out. FFmpeg-devel doesn't work either (for whatever reason- again communicating upstream for support, although the maintainer might put opencv as broken in that port), so I'm left with 0.7.6,1 which does appear to work at this point. My question is this: how do I do this exactly? The dependencies will require updating and could fail as well right? I tried a pkg_create of the port and installing it where required, but it requires pciids-20111002 and pciids-2009 is installed (and probably required by other ports). How can I install the older version without breaking things (at least too much- I can fix things but there is usually always a limit)? My system is 8.1-RELEASE-p1 FreeBSD 8.1-RELEASE-p1 #1: Sun Mar 13 08:45:42 EST 2011 /usr/obj/usr/src/sys/MEDIA amd64. I have portupgrade and updated to the latest ports (apparently that is the problem- although I've only been fiddling with ffmpeg and it is not in production with my project task per se). http://www.oldports.org/data/ I already have a copy of the port required as a pkg, but how do I handle the dependencies? You can also use the portdowngrade tool to checkout an older version of a port. I had success getting something to work again that has been modernized (and disimproved for that matter). :-) For the dependencies: In most cases, it works like this: Determine the port's dependencies and install the current versions (e. g. of other programs it depends on, or libraries). Typically, they are downward compatible, for example if the port requires libfoobar-1.4, but 1.5 is the current version in ports, install it, and it will still work. In worst case you have to manually add a symlink for the shared library libfoobar-1.4@ - libfoobar-1.5 so the program can pick it by version number. Of course, this might sound strange if one takes the initial ideas of shared libraries and their versioning into mind. :-) Wow! That is really cool. It never occurred to me that there'd be a portdowngrade tool- it's worked like a charm so far. The dependencies sorted themselves out nicely at the end of it too. I'll put that one in my notes... :) Cheers ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS Filesystems wont auto-mount on boot
Em Sáb, 2011-12-03 às 01:28 -0500, APseudoUtopia escreveu: Hello, I followed a couple tutorials I found through google to setup RAID-Z1 on root on FreeBSD 9.0-RC2. Everything works well, except it always drops me into a recovery shell on boot. I'm forced to run `zfs mount -a` to get all my data visible. Here's the boot log: Trying to mount root from zfs:root []... Dec 3 01:23:07 init: login_getclass: unknown class `daemon` cannot open /etc/rc: No such file or directory Enter full pathname of shell or RETURN for /bin/sh: I then hit return, then run `zfs mount -a` to mount all my zfs filesystems. How can I have zfs automount these filesystems on boot so that the system can continue booting without being interrupted? Thank you! do you have: zfs_enable=YES in /etc/rc.conf??? also after the system boots (either way...) see if zfs on root fs (/) is to be mounted on / zfs set mountpoint=/ or if in /boot/loader.conf there is a vfs.root.mountfrom=zfs:zfstank/rootfs === example... Just a thought [] Sergio ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Weird stuff SOLVED
Hi Bernt, Glad to hear you figured it out! Cheers, Greg On Dec 1, 2011, at 8:10 PM, Bernt Hansson b...@bananmonarki.se wrote: 2011-12-02 01:53, Bernt Hansson skrev: At some points one is an idiot! /var/db/ports was pointing at the wrong directory and not the ports directory. Well, well you live to learn. 2011-12-01 17:13, Chris Brennan skrev: On Thu, Dec 1, 2011 at 10:54 AM, Bernt Hanssonb...@bananmonarki.se wrote: 2011-12-01 15:11, Greg Larkin skrev: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 12/1/11 8:37 AM, Bernt Hansson wrote: Hello list! Trying to upgrade 3:d party stuff. Only get errors. What gives? --- Upgrading 'jasper-1.900.1_9' to 'jasper-1.900.1_10' (graphics/jasper) --- Building '/usr/ports/graphics/jasper' === Cleaning for jasper-1.900.1_10 cd /usr/home/bernt/disk8/ports/**graphics/jasper make config; === Cannot create , check permissions *** Error code 1 Stop in /usr/home/bernt/disk8/ports/**graphics/jasper. *** Error code 1 Stop in /usr/home/bernt/disk8/ports/**graphics/jasper. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade2030-**48187-8vcb9-0 env UPGRADE_TOOL=portupgrade UPGRADE_PORT=jasper-1.900.1_9 UPGRADE_PORT_VER=1.900.1_9 make DEPENDS_TARGET=package ** Fix the problem and try again. Permission is 777 Hi Bernt, Reading through /usr/ports/Mk/bsd.port.mk, the check permissions message is emitted when certain directories cannot be created. Are you running the upgrade as the root user? I would be interested in seeing the output of the following command sequence: cd /usr/ports/graphics/jasper make -V SU_CMD make -V UID make -V OPTIONSFILE %su - Password: testbox# cd /usr/ports/graphics/jasper testbox# make -V SU_CMD /usr/bin/su root -c testbox# make -V UID 0 testbox# make -V OPTIONSFILE /var/db/ports/jasper/options Also, what happens if you simply do this: cd /usr/ports/graphics/jasper make config testbox# cd /usr/ports/graphics/jasper make config === Cannot create , check permissions *** Error code 1 Stop in /usr/home/bernt/disk8/ports/**graphics/jasper. I did this also, as root cd /usr/ports (it's a link) mkdir 1 cd /usr/home/bernt/disk8/ports/graphics/jasper mkdir 1 mkdir: 1: File exists Creating files/dirs don't seem to be a problem. /dev/ad0s2g 8.7G 8.3G -322M 104% /usr /dev/ad14.eli 902G 126G 775G 14% /usr/home/bernt/disk8 I'm gonna take a stab in the dark here, paste the result of the following cmd: mount | grep ad14 Just to make sure. testbox# fsck -y -t ufs /dev/ad14.eli ** /dev/ad14.eli ** Last Mounted on /usr/home/bernt/disk8 ** Phase 1 - Check Blocks and Sizes ** Phase 2 - Check Pathnames ** Phase 3 - Check Connectivity ** Phase 4 - Check Reference Counts ** Phase 5 - Check Cyl groups 440342 files, 66312180 used, 406697750 free (144630 frags, 50819140 blocks, 0.0% fragmentation) * FILE SYSTEM IS CLEAN * testbox# mount /dev/ad14.eli /usr/home/bernt/disk8 testbox# mount | grep ad14 /dev/ad14.eli on /usr/home/bernt/disk8 (ufs, local, soft-updates) testbox Possibly, you have a weird mount option being passed to the mountpoint, that is preventing you from building ports at this location. On a side note, why exactly do you need ports on an encrypted gli conainer? It's not a need per se only so I could rule out any space issue. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS Filesystems wont auto-mount on boot
On Sat, Dec 3, 2011 at 6:56 AM, CyberLeo Kitsana cyber...@cyberleo.net wrote: On 12/03/2011 12:28 AM, APseudoUtopia wrote: Hello, I followed a couple tutorials I found through google to setup RAID-Z1 on root on FreeBSD 9.0-RC2. Everything works well, except it always drops me into a recovery shell on boot. I'm forced to run `zfs mount -a` to get all my data visible. Here's the boot log: Trying to mount root from zfs:root []... Dec 3 01:23:07 init: login_getclass: unknown class `daemon` cannot open /etc/rc: No such file or directory You did not provide a list of your filesystems, so this is just a guess, but I'd say that, judging by this error, you have /etc on a separate filesystem. At least /bin, /sbin, /lib, /libexec, and /etc must be on your root filesystem for the boot process to function, since the system bootstrap (/etc/rc et alia) resides in /etc and uses components in the other listed directories; it is the system bootstrap which automounts your ZFS filesystems on boot (zfs_enable). Ah! That was my problem. Thank you! I read every fine manual I could find, but none of them said anything about those directories required to be on the root filesystem. I appreciate the help! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
glabel looks to place a label on the whole disk, but the manpage is unclear (to me) how the partitions are handled. If I use glabel to label a disk test and this disk has 4 partitions on it, then how is each partition accessed? testp1...testp4 for gpt? The other option seems to be to use tunefs or a partitioning tool to label each partition, which is even more ugly imo. Rob On 12/2/11 9:27 PM, Derrick Ryalls wrote: Look for disk labels, I think glabel is the command. Then you use /dev/label/mylabel etc for the disks. Let me know if this isn't enough to find the right man page or spot in the handbook. I use it in my raid array but am running short on time right now. On Fri, Dec 2, 2011 at 6:51 PM, Rob li...@midsummerdream.org mailto:li...@midsummerdream.org wrote: I was getting ready to install the latest FreeBSD 9-RCs image, and I found that 9 now defaults to using the ahci driver for sata disks. This would be great if it weren't for the fact that the ahci driver seems to do dynamic device name assignment as opposed to the static ones used with the older drivers. I've looked around on google and while this is mentioned (in old threads), the solution is to use labels or elaborate mapping via hints which really aren't solutions imo. If I have 15 disks in an array, I want to be able to label them and know which bay is which device name. If I have to replace a drive, I have no idea what dynamic device name it will have when it comes time to partition (and label, if I were using that). I could probably figure it out by looking at what disks are used on the system, but that's more work that it really should be. Is there a way to use the ahci driver and get static device names? Rob _ freebsd-questions@freebsd.org mailto:freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/__mailman/listinfo/freebsd-__questions http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-__unsubscr...@freebsd.org mailto:freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upcoming 9.0 release
On 02/12/2011 15.12, Mike Clarke wrote: On Friday 02 December 2011, Dick Hoogendijk wrote: I always use portmaster. What steps do I take to get from installed ports on 8.2-release to 9.0? Is there a nice and working procedure to follow? Thanks for the advice. You need to re-install all your ports after upgrading between major revisions. The final example on the portmaster man page provides a good checklist of what you need to do. They seem to work anyway.I was unable to upgrade many ports due to failure to patch properly but all the application I have still work. I do agree they should be re-installed sincerely Filippo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
Is there a loader.conf entry to enable the static ids, or will the ahci driver always use static ids if options ATA_STATIC_ID is in the kernel config? I desire to use stock kernels and the 9-rc2 boot iso seems to not have ATA_STATID_ID set (unless there's a loader.conf value to enable the functionality) Rob On 12/3/11 3:44 AM, Denise H. G. wrote: On 2011/12/03 at 10:51, Robli...@midsummerdream.org wrote: I was getting ready to install the latest FreeBSD 9-RCs image, and I found that 9 now defaults to using the ahci driver for sata disks. This would be great if it weren't for the fact that the ahci driver seems to do dynamic device name assignment as opposed to the static ones used with the older drivers. I've looked around on google and while this is mentioned (in old threads), the solution is to use labels or elaborate mapping via hints which really aren't solutions imo. If I have 15 disks in an array, I want to be able to label them and know which bay is which device name. If I have to replace a drive, I have no idea what dynamic device name it will have when it comes time to partition (and label, if I were using that). I could probably figure it out by looking at what disks are used on the system, but that's more work that it really should be. It seems AHCI driver uses static naming policies if you have 'options ATA_STATIC_ID' in your kernel configuration. Anyway, I just have one SATA disk, which the system recognizes as 'ada4'. I don't know whether this will apply in your case. Is there a way to use the ahci driver and get static device names? Rob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upcoming 9.0 release
On Sat, 03 Dec 2011 16:53:24 +0100, Filippo Moretti wrote: They seem to work anyway.I was unable to upgrade many ports due to failure to patch properly but all the application I have still work. I do agree they should be re-installed You can always use the fallback method of using the compatibility layers of FreeBSD n for n-1. This refers to the compat-* ports and the COMPAT_* kernel configuration items. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
On 12/03/2011 10:04 AM, Rob wrote: glabel looks to place a label on the whole disk, but the manpage is unclear (to me) how the partitions are handled. If I use glabel to label a disk test and this disk has 4 partitions on it, then how is each partition accessed? testp1...testp4 for gpt? Ideally, you would label the partitions according to their usage. glabel will automatically create labels for GPT partitions based on the GPT 'label' field; likewise for UFS, MSDOS, and ISO9660 filesystems. For example, one of my (few remaining non-ZFS) machines looks like this: 8 /dev/iso9660/root on / (cd9660, local, read-only) /dev/ufs/boot on /boot (ufs, local, read-only) /dev/ufs/conf on /conf (ufs, local, read-only, soft-updates) 8 The root filesystem on this machine is actually mounted off a uzip-compressed iso image on a BSD partition burned to some flash; but the unimportant details are hidden behind the label, which just presents a plain filesystem. It doesn't really matter where these filesystems are: they can be moved to completely different disks with wildly different partition schemes, or even to iscsi- or ggate-imported disks, and the system will find them perfectly by their labels. This works for ZFS as well: since there's no guarantee where these disks will show up, and the ZFS code will not be able to find them across reboots if their names change, labels are useful for assigning static names to the partitions or slices that make up a pool: 8 pool: amani state: ONLINE scrub: none requested config: NAME STATE READ WRITE CKSUM amani ONLINE 0 0 0 mirror ONLINE 0 0 0 gpt/amani/r0 ONLINE 0 0 0 gpt/amani/r1 ONLINE 0 0 0 8 To answer your question, though: You cannot combine GPT with glabel (or any other geom class that writes data to the first or last 34 sectors of a disk, like gmirror) due to layout conflicts. MBR and BSD schemes can be used, since they occupy only the first sectors of the device, and their monikers will be appended to the label. Thus, labeling a single-slice MBR disk (/dev/ada0) with 'test' would produce /dev/ada0, /dev/ada0s1, /dev/label/test, and /dev/label/tests1; nesting a BSD table within s1 would add /dev/ada0s1a and /dev/label/tests1a as well. The other option seems to be to use tunefs or a partitioning tool to label each partition, which is even more ugly imo. Ugly how? Labels appear a lot more semantically elegant than the opaque 'ada4s1a' moniker. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net cyber...@cyberleo.net Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Jails within different networks ... ?
Hi there, I've a doubt! I have 3 jails within the host xxx.xxx.26.224 configured in this way (below) and everything works well. What if I want to enable another jail but I don't want to assign to that my next available public ip address xxx.xxx.26.228/24 but I want this jail to have a private ip address like 172.16.1.2/27? Is that possible or it's a delirium? I don't want to waste my public ip address for a jail which I want to have a network configured but not to be publicly visible. Many thanks in advance. lagg0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 options=8009bRXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,LINKSTATE ether 00:14:5e:ee:2b:c0 inet xxx.xxx.26.224 netmask 0xff00 broadcast xxx.xxx.26.255 inet xxx.xxx.26.225 netmask 0x broadcast xxx.xxx.26.225 inet xxx.xxx.26.226 netmask 0x broadcast xxx.xxx.26.226 inet xxx.xxx.26.227 netmask 0x broadcast xxx.xxx.26.227 media: Ethernet autoselect status: active laggproto failover laggport: bge1 flags=0 laggport: bge0 flags=5MASTER,ACTIVE -- Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f Sponsor: Conto Arancio al 4,20%. Zero spese e massima liberta', aprilo in due minuti! Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=11922d=3-12 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Usage of FreeBSD
To whom it may concern, I am a amateur developer looking to build a system with FreeBSD. I will be using it as a virtual machine on KVM. I will be making modifications on how the networking is set up within FreeBSD to allow for better networking between vm's. I will also be modifying how FreeBSD interacts with the KVM kernal for the vm. After the system is built I am looking to sell it as a packaged software solution for enterprise and consumer use. What will I need to do and how will I need to go about it to make this possible? Thank you for your time. Charlie Pitkin -- Charlie Pitkin, CTFL 4010 Ave R Apt C15 Kearney, NE 68847 (308)870-1009 charlie.pit...@gmail.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Usage of FreeBSD
On 03/12/2011 18:31, Charles Pitkin wrote: I am a amateur developer looking to build a system with FreeBSD. I will be using it as a virtual machine on KVM. I will be making modifications on how the networking is set up within FreeBSD to allow for better networking between vm's. I will also be modifying how FreeBSD interacts with the KVM kernal for the vm. After the system is built I am looking to sell it as a packaged software solution for enterprise and consumer use. What will I need to do and how will I need to go about it to make this possible? Read this: http://www.freebsd.org/copyright/freebsd-license.html Let me extract the pertinent phrasing: Redistribution and use in source and binary forms, with or without modification, are permitted... That's pretty much it. No need to ask permission from anyone. Just do whatever you want with it. Unless what you want to do is saw off the copyrights and claim you wrote it yourself. Don't do that. By now, you're probably thinking there's going to be a 'but' coming up real soon now... But ... some bits of the system are supplied under other licenses. Most of them have terms pretty similar to the FreeBSD license, except for a few bits and pieces that use the GPLv2. You can use those freely, but if you modify the GPL'd bits, you will have to make your modified source code available. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: AHCI driver and static device names
I was getting ready to install the latest FreeBSD 9-RCs image, and I found that 9 now defaults to using the ahci driver for sata disks. This would be great if it weren't for the fact that the ahci driver seems to do dynamic device name assignment as opposed to the static ones used with the older drivers. I've looked around on google and while this is mentioned (in old threads), the solution is to use labels or elaborate mapping via hints which really aren't solutions imo. If I have 15 disks in an array, I want to be able to label them and know which bay is which device name. If I have to replace a drive, I have no idea what dynamic device name it will have when it comes time to partition (and label, if I were using that). I could probably figure it out by looking at what disks are used on the system, but that's more work that it really should be. Is there a way to use the ahci driver and get static device names? cam(4) gives examples of how you can do this by using device hints in loader.conf(5) or device.hints(5). Another example: http://lists.freebsd.org/pipermail/freebsd-fs/2011-March/011036.html You may need the workaround from: http://svn.freebsd.org/changeset/base/227635 for some problematic BIOS. I'm not sure if this is what you meant by hints which aren't really solutions, but they seem to be a practical method for fixing device names with ahci(4). b. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Jails within different networks ... ?
2011/12/3 Snoop sn...@email.it: Hi there, I've a doubt! I have 3 jails within the host xxx.xxx.26.224 configured in this way (below) and everything works well. What if I want to enable another jail but I don't want to assign to that my next available public ip address xxx.xxx.26.228/24 but I want this jail to have a private ip address like 172.16.1.2/27? Is that possible or it's a delirium? I don't want to waste my public ip address for a jail which I want to have a network configured but not to be publicly visible. Many thanks in advance. lagg0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 options=8009bRXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,LINKSTATE ether 00:14:5e:ee:2b:c0 inet xxx.xxx.26.224 netmask 0xff00 broadcast xxx.xxx.26.255 inet xxx.xxx.26.225 netmask 0x broadcast xxx.xxx.26.225 inet xxx.xxx.26.226 netmask 0x broadcast xxx.xxx.26.226 inet xxx.xxx.26.227 netmask 0x broadcast xxx.xxx.26.227 media: Ethernet autoselect status: active laggproto failover laggport: bge1 flags=0 laggport: bge0 flags=5MASTER,ACTIVE Create an Alias Example: ifconfig_em0_alias0=inet 192.0.2.9 netmask 255.255.255.255 http://blather.michaelwlucas.com/archives/1021 Regards. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Usage of FreeBSD
___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Jails within different networks ... ?
On 03/12/2011 17:54, Snoop wrote: I have 3 jails within the host xxx.xxx.26.224 configured in this way (below) and everything works well. What if I want to enable another jail but I don't want to assign to that my next available public ip address xxx.xxx.26.228/24 but I want this jail to have a private ip address like 172.16.1.2/27? Is that possible or it's a delirium? Sure you can do that. Remember the rule though, that the first IP from each different network configured on an interface must use the natural netmask for that network. Second and subsequent addresses from each different network can either use the all-ones (/32) netmask, or the natural netmask. This only changed a few years ago, so there's still a lot of advice going around saying you should use the older all-ones style, but in actuality you can do it which ever of those ways you want and it won't make any functional difference. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: Usage of FreeBSD
From owner-freebsd-questi...@freebsd.org Sat Dec 3 12:57:05 2011 Date: Sat, 3 Dec 2011 12:31:22 -0600 From: Charles Pitkin charlie.pit...@gmail.com To: freebsd-questions@freebsd.org Cc: Subject: Usage of FreeBSD To whom it may concern, I am a amateur developer looking to build a system with FreeBSD. I will be using it as a virtual machine on KVM. I will be making modifications on how the networking is set up within FreeBSD to allow for better networking between vm's. I will also be modifying how FreeBSD interacts with the KVM kernal for the vm. After the system is built I am looking to sell it as a packaged software solution for enterprise and consumer use. What will I need to do and how will I need to go about it to make this possible? Since this is for a commercial for-profit product, are you prepared/willing to pay for professional consulting on what you need to know? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
IPSec in Jail
Hello, I was following a thread in FBSD Spanish talking about the use of IPSec in Jails and there was no conclusion to the matter. I have a client that wants to run a VPN which requires IPSec and he is running on some jails we provide them. We can provide them with a public IP for the jail but I'm not sure if this will work. I understand from the thread that recompiling the kernel with VIMAGE enabled should allow the use of IPSec in the jails but apparently until 8.0 this was experimental. This particular server uses 8.2 so I would like to know if anyone here has done this and how stable it is? Would enabling VIMAGE for the base kernel compromise the system and other clients running on other jails in the same server? Thanks beforehand for any valuable comments! -- Alejandro Imass ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
sudo log messages
hi I add line to syslog.conf and killall -HUP syslogd Tell me please how to stop sudo to food /var/log/messages? -- С уважением, Коньков mailto:kes-...@yandex.ru ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
CyberLeo Kitsana cyber...@cyberleo.net wrote: You cannot combine GPT with glabel (or any other geom class that writes data to the first or last 34 sectors of a disk, like gmirror) due to layout conflicts. This is overstated. Since a GPT ordinarily is intended to be booted from, and so must be recognized by the BIOS, it must be written directly on the actual drive -- the rank 1 provider in GEOM terms -- because that is the only way for the GPT metadata to be located where the BIOS expects to find it (at both the beginning and the end of the drive). It is, however, possible to combine GPT with gmirror, gjournal, etc. by using GPT partitions, rather than drives, as providers for the other geoms. For example, create a mirror from ad0p1 and ad2p1 rather than from ad0 and ad2. Similarly, it should be possible to glabel a GPT partition -- although this seems unlikely to be useful in practice since GPT provides its own labelling scheme. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: AHCI driver and static device names
On 12/04/2011 04:28 AM, per...@pluto.rain.com wrote: CyberLeo Kitsana cyber...@cyberleo.net wrote: You cannot combine GPT with glabel (or any other geom class that writes data to the first or last 34 sectors of a disk, like gmirror) due to layout conflicts. This is overstated. Thanks for the clarification. It occurs to me now that I was less than precise. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net cyber...@cyberleo.net Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Major version changes using portupgrade?
I'm trying to do a major version upgrade of postgres from 8.4 to 9.1. I've dumped the db and uninstalled the postgres-server port, and I'd like to use portupgrade to handle the client upgrade, since it has a number of dependencies that probably should be recompiled against the new client libs (and I'd like to keep the package's +REQUIRED_BY file properly updated anyway). I was expecting the following to work: sudo portupgrade -rf -o databases/postgresql91-client databases/postgresql84-client However, I'm running into a problem where the ports makefiles, and by extension portupgrade, are detecting that the two packages conflict, and so the 9.1 client won't even build[1]. This seems to be the sort of situation described by the -o example in the portupgrade man page, but I haven't been able to figure out how to make it work. Does anyone have any suggestions? Thanks! -- [1] [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 140 packages found (-1 +0) (...) done] --- Upgrading 'postgresql-client-8.4.8' to 'postgresql-client-9.1.1_1' (databases/postgresql91-client) --- Building '/usr/ports/databases/postgresql91-client' === Cleaning for postgresql-client-9.1.1_1 cd /usr/ports/databases/postgresql91-client make config; === postgresql-client-9.1.1_1 conflicts with installed package(s): postgresql-client-8.4.8 They install files into the same place. You may want to stop build with Ctrl + C. === Vulnerability check disabled, database not found === License check disabled, port has not defined LICENSE === Found saved configuration for postgresql-client-9.1.1_1 = postgresql-9.1.1.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/postgresql. = Attempting to fetch ftp://ftp.se.postgresql.org/pub/databases/relational/postgresql/source/v9.1.1/postgresql-9.1.1.tar.bz2 postgresql-9.1.1.tar.bz2 100% of 14 MB 1349 kBps 00m00s === postgresql-client-9.1.1_1 conflicts with installed package(s): postgresql-client-8.4.8 They will not build together. Please remove them first with pkg_delete(1). *** Error code 1 Stop in /usr/ports/databases/postgresql91-client. *** Error code 1 Stop in /usr/ports/databases/postgresql91-client. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade20111202-57604-1bstor4-0 env UPGRADE_TOOL=portupgrade UPGRADE_PORT=postgresql-client-8.4.8 UPGRADE_PORT_VER=8.4.8 make ** Fix the problem and try again. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw And ping
In freebsd-questions Digest, Vol 391, Issue 9, Message: 9
On Fri, 02 Dec 2011 10:35:45 -0600 Tim Daneliuk tun...@tundraware.com wrote:
On 12/01/2011 05:45 PM, Jon Radel wrote:
On 12/1/11 6:25 PM, Tim Daneliuk wrote:
${FWCMD} add allow icmp from any to any
It does work but, two questions:
1) Is there a better way?
Consider allowing only the ICMP that does things you want to do.
Google something like icmp types to allow for some hints and
opinions. Just as an example, you can independently control being
able to ping others and others being able to ping you.
2) Will this cause harm or otherwise expose the server to some
vulnerability?
Well, if you allow all ICMP types, it's possible to make your
little packets go places you didn't really want them to go, and
similar network breakage. You can also find those who feel strongly
that allowing others to ping your machines gives them way too much
information about what you have at which IP address. On the other
hand, working ping and traceroute can be very handy to figure out
what's wrong when the network breaks. But do you open up access on
your server?---well not so much, though having said that I'm ready
for somebody to remind me of some obscure attack that uses ICMP for
more than information gathering. :-)
--Jon Radel
I have been so advised by a number of people to do just this and I am
investigating.
I am not horribly concerned about this, though, because the machine
in question is a NATing front end for a private, non-routable LAN and
the associated nameserver uses split-horizon DNS to make all the
internal name-ip associations invisible outside the LAN. So ... I
don't really see much threat here. I am throttling ICMP rates via
sysctl because - AFAIK - the only overt ICMP attack is to flood a
target in hopes of getting Denial Of Services.
As with you, I remain open to someone presenting a scenario
wherein a particular ICMP protocol could actually cause harm...
For one, google 'icmp redirect attack'
#% stock rc.firewall doesn't permit _ANY_ ICMP, even TCP-required!
#% see http://www.iana.org/assignments/icmp-parameters
#% from 19/1/99 freebsd-security (compacted):
# This is the ICMP rule we generally use:
# ipfw add 10 allow icmp from any to any in icmptypes 0,3,4,11,12,14,16,18
# This allows safe ICMP's to get in, so that ping, traceroute, etc.
# work, while blocking potentially unsafe ICMP's.
# See /sys/netinet/ip_icmp.h for definitions of the ICMP types.
# -Archie
# Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com
Since then I've used, on multi-host and NAT'd setups, more or less this:
recv_types='icmptypes 0,3,4,11,12,14,16,18' # reject most pings :(
#% can use keep-state for outbound icmp but then ANY icmptype matches!
#% 26/3/7 still need to generally deny inbound pings except friendlies
# pingok={ was a list of IP addresses[/masks] allowed to ping }
#% XXX better using a pre-loaded table (for OOB on the fly additions)
pingok=table\(8\)
$fwadd pass icmp from any to any in recv ${ext_if} ${recv_types}
$fwadd pass icmp from ${pingok} to any in recv ${ext_if} icmptypes 8
$fwadd deny log icmp from any to any in recv ${ext_if}
$fwadd pass icmp from any to any# outbound, and inside
cheers, Ian
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Major version changes using portupgrade?
2011/12/2 Matthew Pounsett m...@conundrum.com: I'm trying to do a major version upgrade of postgres from 8.4 to 9.1. I've dumped the db and uninstalled the postgres-server port, and I'd like to use portupgrade to handle the client upgrade, since it has a number of dependencies that probably should be recompiled against the new client libs (and I'd like to keep the package's +REQUIRED_BY file properly updated anyway). I was expecting the following to work: sudo portupgrade -rf -o databases/postgresql91-client databases/postgresql84-client However, I'm running into a problem where the ports makefiles, and by extension portupgrade, are detecting that the two packages conflict, and so the 9.1 client won't even build[1]. This seems to be the sort of situation described by the -o example in the portupgrade man page, but I haven't been able to figure out how to make it work. Does anyone have any suggestions? Thanks! -- [1] [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 140 packages found (-1 +0) (...) done] --- Upgrading 'postgresql-client-8.4.8' to 'postgresql-client-9.1.1_1' (databases/postgresql91-client) --- Building '/usr/ports/databases/postgresql91-client' === Cleaning for postgresql-client-9.1.1_1 cd /usr/ports/databases/postgresql91-client make config; === postgresql-client-9.1.1_1 conflicts with installed package(s): postgresql-client-8.4.8 They install files into the same place. You may want to stop build with Ctrl + C. === Vulnerability check disabled, database not found === License check disabled, port has not defined LICENSE === Found saved configuration for postgresql-client-9.1.1_1 = postgresql-9.1.1.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/postgresql. = Attempting to fetch ftp://ftp.se.postgresql.org/pub/databases/relational/postgresql/source/v9.1.1/postgresql-9.1.1.tar.bz2 postgresql-9.1.1.tar.bz2 100% of 14 MB 1349 kBps 00m00s === postgresql-client-9.1.1_1 conflicts with installed package(s): postgresql-client-8.4.8 They will not build together. Please remove them first with pkg_delete(1). pay attention here *** Error code 1 postgresql-client-8.4.8 make deinstall Tip. always run portaudit -F first. Regards ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw And ping
On 12/04/2011 01:04 AM, Ian Smith wrote: SNIP For one, google 'icmp redirect attack' But isn't that handled by setting: net.inet.icmp.drop_redirect=1 # This is the ICMP rule we generally use: # ipfw add 10 allow icmp from any to any in icmptypes 0,3,4,11,12,14,16,18 Hmmm I just tried this and it seems to break ping... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
