Re: Dell Latitude E6520 Xorg Problems
Nope, but perhaps I found some information, that has me in going in the right direction, this has an integrated intel video card with the core i7, in process of rebuilding world and kernel with Kim's and xorg_new set in make.conf. Sent from my iPad On Jul 18, 2013, at 8:12 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: Does it work with the lid open and no additional monitor attached? On Thu, Jul 18, 2013 at 1:43 AM, dweimer dwei...@dweimer.net wrote: Is anyone out there running FreeBSD on a Dell Latitude E6520? I am struggling to Xorg to start, doing the Xorg -configure I get number of created screens does not match number of detected devices I have tried with an external monitor attached and laptop closed, with external monitor attached and laptop open, and with no external monitor. All same results, I did remember to disable the Optimus feature in the bios, even tried enabling it, no change. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Gary Dunn Open Slate Project http://openslate.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Dell Latitude E6520 Xorg Problems
Oops stupid iPAD spell correct Kim's = KMS. Sent from my iPad On Jul 18, 2013, at 8:38 AM, Dean E. Weimer dwei...@dweimer.net wrote: Nope, but perhaps I found some information, that has me in going in the right direction, this has an integrated intel video card with the core i7, in process of rebuilding world and kernel with Kim's and xorg_new set in make.conf. Sent from my iPad On Jul 18, 2013, at 8:12 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: Does it work with the lid open and no additional monitor attached? On Thu, Jul 18, 2013 at 1:43 AM, dweimer dwei...@dweimer.net wrote: Is anyone out there running FreeBSD on a Dell Latitude E6520? I am struggling to Xorg to start, doing the Xorg -configure I get number of created screens does not match number of detected devices I have tried with an external monitor attached and laptop closed, with external monitor attached and laptop open, and with no external monitor. All same results, I did remember to disable the Optimus feature in the bios, even tried enabling it, no change. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Gary Dunn Open Slate Project http://openslate.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Dell Latitude E6520 Xorg Problems
I have only gone as far as scanning wifi and it did find all the ssids I expected. System is now recompiling the xorg ports with new kernel and world in place. Sent from my iPad On Jul 18, 2013, at 8:50 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: I am interested in your solution as I plan to more from my old desktop to a notebook, most likely the same Dell you have. Have you gotten as far as WiFi? Dell has a bad reputation for network drivers, especially WiFi. On Jul 18, 2013 3:41 AM, Dean E. Weimer dwei...@dweimer.net wrote: Oops stupid iPAD spell correct Kim's = KMS. Sent from my iPad On Jul 18, 2013, at 8:38 AM, Dean E. Weimer dwei...@dweimer.net wrote: Nope, but perhaps I found some information, that has me in going in the right direction, this has an integrated intel video card with the core i7, in process of rebuilding world and kernel with Kim's and xorg_new set in make.conf. Sent from my iPad On Jul 18, 2013, at 8:12 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: Does it work with the lid open and no additional monitor attached? On Thu, Jul 18, 2013 at 1:43 AM, dweimer dwei...@dweimer.net wrote: Is anyone out there running FreeBSD on a Dell Latitude E6520? I am struggling to Xorg to start, doing the Xorg -configure I get number of created screens does not match number of detected devices I have tried with an external monitor attached and laptop closed, with external monitor attached and laptop open, and with no external monitor. All same results, I did remember to disable the Optimus feature in the bios, even tried enabling it, no change. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Gary Dunn Open Slate Project http://openslate.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Dell Latitude E6520 Xorg Problems
Success X is running after some more playing to verify what works and doesn't I will post back with full config, FYI I did have to re-enable Optimus after rebuilding with KMS. Sent from my iPad On Jul 18, 2013, at 9:04 AM, Dean E. Weimer dwei...@dweimer.net wrote: I have only gone as far as scanning wifi and it did find all the ssids I expected. System is now recompiling the xorg ports with new kernel and world in place. Sent from my iPad On Jul 18, 2013, at 8:50 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: I am interested in your solution as I plan to more from my old desktop to a notebook, most likely the same Dell you have. Have you gotten as far as WiFi? Dell has a bad reputation for network drivers, especially WiFi. On Jul 18, 2013 3:41 AM, Dean E. Weimer dwei...@dweimer.net wrote: Oops stupid iPAD spell correct Kim's = KMS. Sent from my iPad On Jul 18, 2013, at 8:38 AM, Dean E. Weimer dwei...@dweimer.net wrote: Nope, but perhaps I found some information, that has me in going in the right direction, this has an integrated intel video card with the core i7, in process of rebuilding world and kernel with Kim's and xorg_new set in make.conf. Sent from my iPad On Jul 18, 2013, at 8:12 AM, OpenSlate ChalkDust openslatep...@gmail.com wrote: Does it work with the lid open and no additional monitor attached? On Thu, Jul 18, 2013 at 1:43 AM, dweimer dwei...@dweimer.net wrote: Is anyone out there running FreeBSD on a Dell Latitude E6520? I am struggling to Xorg to start, doing the Xorg -configure I get number of created screens does not match number of detected devices I have tried with an external monitor attached and laptop closed, with external monitor attached and laptop open, and with no external monitor. All same results, I did remember to disable the Optimus feature in the bios, even tried enabling it, no change. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Gary Dunn Open Slate Project http://openslate.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: portmaster embarrassingly simple question (y- option)
-d tells it to always delete old files without prompting. Thanks, Dean Weimer On Jul 3, 2012, at 5:29 AM, Jakub Lach jakub_l...@mailplus.pl wrote: === Starting check for runtime dependencies === Gathering dependency list for archivers/unzip from ports === No dependencies for archivers/unzip === Installing package === Installation of archivers/unzip (unzip-6.0_1) succeeded === Delete unzip60.tar.gz? y/n [n] What option do I need to specify with -y to automatically answer those? I've tried --clean-distfiles, --clean-packages but it's not it. It usually happens when doing portmaster --packages-build --delete-build-only build. -- View this message in context: http://freebsd.1045724.n5.nabble.com/portmaster-embarrassingly-simple-question-y-option-tp5723878.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: List total traffic amount across external nic
On 06/07/2012 11:14, Fbsd8 wrote: Running ipfilter and trying to list the total amount of the traffic passing through the external NIC. Maybe there is some other command to show this info. Any help is appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org try: systat -ifstat -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD Server
On 05/17/2012 15:29, Daniel Feenberg wrote: On Thu, 17 May 2012, lpeth wrote: FreeBSD Dear Sirs; I have a 8core, 32 GB ram server I built myself. AMD cpu, with Supermicro motherboard. I want to use FreeNAS as a database system, and I'm wondering what it will cost to use FreeBSD with FreeNAS. I see the Version I would like is $40 for a four CD set, but that does not mean I get to use the server version of it. What is the server version going to cost? Sincerely, Mark T. Evans FreeNAS is effectively a FreeBSD distribution emphasizing storage. It is open source and free of cost: http://www.freenas.org/ The CDs are nice, but you can download an ISO also. iXSystems have TrueNAS, which is costly. My understanding is that FreeNAS is a subset of TrueNAS. See: http://www.ixsystems.com/storage/ix/truenas/ for more information. Daniel Feenberg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org They also sell a FreeNAS for home / Small office installs that is vary reasonably priced, I have been hoping to have enough spare cash on hand this winter to buy one as an upgrade my existing FreeNAS box that was built form spare PC parts with a few new hard drives thrown in ever since I have noticed the new product on their website. http://www.ixsystems.com/storage/ix/home-office-storage/freenas-mini.html -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: portmaster won't update libc.so.7
On 02.05.2012 14:59, Warren Block wrote: On Wed, 2 May 2012, Conrad J. Sabatier wrote: On Wed, 2 May 2012 10:03:44 -0400 Robert Huff roberth...@rcn.com wrote: Jorge Luis =?iso-8859-1?Q?Gonz=E1lez?= writes: When I run: portmaster -a --no-confirm I get the error Installing updates: chflags...///lib/libc.so.7: Operation not permitted Changing chflags (presumably schg, but I tried the others) doesn't appear to make any difference. I'm not running any servers in jails. Any ideas? No, but a question: what is any port doing playing games with part of the base system? (And which port is it?) My first question as well. This is highly irregular. Some of the misc/compat ports install an old libc.so, but not in place of the real one. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org libc.so.7 is still current in 9.0, so none of the misc/compat ports should contain it, A quick search shows just that. #cd /usr/ports/misc #grep -H libc.so compat*/* compat4x/pkg-plist.freebsd5:%%LIBDIR%%/compat/libc.so.4 compat5x/Makefile:# NOTE: libc.so.5 is built with _PATH_LOCALE defined to compat5x/pkg-plist:@unexec chflags noschg %D/lib/compat/libc.so.5 compat5x/pkg-plist:lib/compat/libc.so.5 compat5x/pkg-plist:%%AMD64%%lib32/compat/libc.so.5 compat6x/pkg-plist.alpha:lib/compat/libc.so.6 compat6x/pkg-plist.amd64:lib/compat/libc.so.6 compat6x/pkg-plist.amd64:lib32/compat/libc.so.6 compat6x/pkg-plist.i386:lib/compat/libc.so.6 compat6x/pkg-plist.sparc64:lib/compat/libc.so.6 -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpd problems after port updates
On 23.04.2012 14:52, Dean E. Weimer wrote: On 23.04.2012 14:10, Chuck Swiger wrote: On Apr 23, 2012, at 12:08 PM, Dean E. Weimer wrote: Tried rebuilding without the with SSL option set, oddly it started once after that, but a restart caused same behavior. gdb doesn't give me anything that I know how to interpret, gdb -c /ntpd.core. (I haven't really used gdb before, so if I am not doing something correctly with it, please feel free to let me know) Ah, you need to build ntpd with -g in CFLAGS LDFLAGS for debugging symbols to be present at the risk of sounding like an complete n00b, how do I do that? After reading through the make man page, I decided on trying to build the port with make CFLAGS+=-g LDFLAGS+=-g install clean however I still get the no debugging symbols found message. Does the information in in the Makefile for the port overwrite this option from the command line? Or am I just using the incorrect syntax here? (gdb) file /usr/local/bin/ntpd Reading symbols from /usr/local/bin/ntpd...(no debugging symbols found)...done. Even more odd, I decided to go ahead and try a couple more systems, as this was working fine on my test system and one production system before I got to the one that broke. I now have it running on 4 production systems and 1 test system. The problem is on 2 production systems one with the openssl option one without, both these systems are running on identical hardware (Dell PowerEdge R310 purchased on same order). The other two production systems are both totally different hardware wise, one is virtual on an ESX4 server, the other is on a custom built machine. The first of which had the problem I did a fresh make buildworld and install last night as well as a rebuild of all ports. Problem still persists. I am not sure what it is about these servers that's causing the problem, all other applications are running fine the configurations on these systems are all very similar, almost all the same ports installed. One of the systems has a few more ports installed as its has more web based applications, but the virtual production server has the same ports installed, built with the same /etc/make.conf and /etc/src.conf options against the same /var/db/ports/ directory so they ports were installed with the same settings, only difference is the run time configuration, however the ntpd configuration is the same on all systems. I have also discovered since the last email that the -d option isn't necessary to keep it running, the -n option which keeps it from detaching from the session will work as well. I worked around the issue for now by manually running it with daemon and adding the -n so its detached and running. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Ports Libraries - Shared object libz.so.5 not found
On 24.04.2012 10:07, Carolyn Longfoot wrote: I'm on 9.0 Release AMD64 and did not have Compat8x installed from ports which fixed the issue, but I am wondering what (apart from upgrading *all* ports) would be the correct approach to find out which port needs to be updated so that whatever references the libz.so.5 version instead of libz.so.6 gets updated? This is very confusing to me because I got the error with php, and I am on the very latest php5-5.3.10_1 version which I would expect to reference current libraries. Now I also have a problem with libssl.so.7, which popped up with Samba36. Again I'm wondering what version provides the .7 incarnation. I found a comment (http://forums.freebsd.org/showthread.php?t=21886) that this library is part of security/openssl but a reinstall just now of openssl only gave me libssl.so.8, so that's no longer valid. Creating a link to libssl.so.7 fixes the problem but is probably not the correct approach. I guess the summary of the above is the question how one should go about keeping/getting the right library versions. Or is that really a port problem because they do not keep step with dependencies? An explanation in layman's terms would be appreciated :-) Thanks, Caro ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org pkg_libchk from the sysutils/bsdadminscripts port should show you anything that is pointing to a missing shared library. Yes you should rebuild the samba36 port so that it links against the new libssl.so.8 library. I ran into a few of these when upgrading from openssl-1.0.0_10 to openssl-1.0.1, I also believe I hit the libcrypto.so.7 missing as well. I temporary linked them as you did, then rebuilt all ports just to be safe. if you use portmaster to update ports, doing a -r on the openssl port would have recompiled all the ports dependent on it. However in my case it blew up because of these missing libraries, adding a -w (causes shared libraries to be kept) as well resolved this on the additional machines I updated. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
ntpd problems after port updates
I am running NTPD built from ports on system that has had world rebuilt without ntp. After doing some port updates this morning to the latest OpenSSL which caused ntp to rebuild as its built against the OpenSSL port. ntpd now core dumps at start, in order to attempt and resolve the issue I tried starting ntpd with the -d switch added, at which point it loads fine without any problems. NTP options set in rc.conf # Enable NTP Daemon ntpd_enable=YES ntpd_flags=-p /var/run/ntpd.pid ntpd_program=/usr/local/bin/ntpd Only option checked when doing make config on the port is the with OpenSSL option. if I execute: /usr/local/bin/ntpd -p /var/run/ntpd.pid The result is a signal 11 core dump. if I execute: /usr/local/bin/ntpd -d -p /var/run/ntpd.pid The result is a successful launch, but of course it doesn't detach from the terminal and it start showing debugging logs on the terminal. Anyone have any clue how I can determine what's causing it to crash when started without the -d? -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpd problems after port updates
On 23.04.2012 13:19, Chuck Swiger wrote: On Apr 23, 2012, at 11:13 AM, Dean E. Weimer wrote: I am running NTPD built from ports on system that has had world rebuilt without ntp. After doing some port updates this morning to the latest OpenSSL which caused ntp to rebuild as its built against the OpenSSL port. ntpd now core dumps at start, in order to attempt and resolve the issue I tried starting ntpd with the -d switch added, at which point it loads fine without any problems. If you run 'ldd /usr/local/bin/ntpd', that might be informative. Only option checked when doing make config on the port is the with OpenSSL option. Consider not doing this-- OpenSSL has a much worse security history than ntpd itself does. In particular, the ASN.1 parser is infamous for trouble, such as CVE-2012-2110. if I execute: /usr/local/bin/ntpd -p /var/run/ntpd.pid The result is a signal 11 core dump. Run gdb against ntpd and the coredump you've gotten to see the crash backtrace. Or run ntpd under gdb. Tried rebuilding without the with SSL option set, oddly it started once after that, but a restart caused same behavior. gdb doesn't give me anything that I know how to interpret, gdb -c /ntpd.core. (I haven't really used gdb before, so if I am not doing something correctly with it, please feel free to let me know) GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as amd64-marcel-freebsd. Core was generated by `ntpd'. Program terminated with signal 11, Segmentation fault. #0 0x0008006878c0 in ?? () (gdb) bt #0 0x0008006878c0 in ?? () #1 0x0c78 in ?? () #2 0x0008006bf800 in ?? () #3 0x7fff0001 in ?? () #4 0x000800687836 in ?? () #5 0x7fffcb60 in ?? () #6 0x7fffcb48 in ?? () #7 0x0066 in ?? () #8 0x00080142b570 in ?? () #9 0x7fffcf80 in ?? () #10 0x0003 in ?? () #11 0x7fffcfc0 in ?? () #12 0x00080166037f in ?? () #13 0x7fffcd70 in ?? () #14 0x0008006bf800 in ?? () [..snip..] #532 0x0008 in ?? () #533 0x in ?? () #534 0x0009 in ?? () #535 0x004040d0 in ?? () #536 0x0007 in ?? () #537 0x00080067f000 in ?? () #538 0x000f in ?? () #539 signal handler called #540 0x in ?? () Previous frame inner to this frame (corrupt stack?) Running from within gdb didn't give me much either. proxy1# gdb GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as amd64-marcel-freebsd. (gdb) set args -c /etc/ntp.conf (gdb) file /usr/local/bin/ntpd Reading symbols from /usr/local/bin/ntpd...(no debugging symbols found)...done. (gdb) run Starting program: /usr/local/bin/ntpd -c /etc/ntp.conf (no debugging symbols found)...(no debugging symbols found)...(no debugging symbols found)...(no debugging symbols found)...(no debugging symbols found)...(no debugging symbols found)...(no debugging symbols found)...[New LWP 100873] (no debugging symbols found)...[New Thread 801c07400 (LWP 100873/ntpd)] Program exited normally. (gdb) quit proxy1# tail -f /var/log/messages [..snip..] Apr 23 13:55:43 proxy1 ntpd[95834]: ntpd 4.2.6p5@1.2349 Mon Apr 23 18:23:07 UTC 2012 (1) Apr 23 13:55:43 proxy1 ntpd[95836]: proto: precision = 0.699 usec Apr 23 13:55:43 proxy1 kernel: pid 95836 (ntpd), uid 0: exited on signal 5 (core dumped) However it seems to have made it farther before crashing. gdb -c /ntpd.core [..snip..] #832 0x0005 in ?? () #833 0x0008 in ?? () #834 0x0006 in ?? () #835 0x1000 in ?? () #836 0x0008 in ?? () #837 0x in ?? () #838 0x0009 in ?? () #839 0x004040d0 in ?? () #840 0x0007 in ?? () #841 0x00080067f000 in ?? () #842 0x000f in ?? () #843 signal handler called #844 0x in ?? () Previous frame inner to this frame (corrupt stack?) Of course it still runs fine with the -d option set. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpd problems after port updates
On 23.04.2012 14:10, Chuck Swiger wrote: On Apr 23, 2012, at 12:08 PM, Dean E. Weimer wrote: Tried rebuilding without the with SSL option set, oddly it started once after that, but a restart caused same behavior. gdb doesn't give me anything that I know how to interpret, gdb -c /ntpd.core. (I haven't really used gdb before, so if I am not doing something correctly with it, please feel free to let me know) Ah, you need to build ntpd with -g in CFLAGS LDFLAGS for debugging symbols to be present at the risk of sounding like an complete n00b, how do I do that? After reading through the make man page, I decided on trying to build the port with make CFLAGS+=-g LDFLAGS+=-g install clean however I still get the no debugging symbols found message. Does the information in in the Makefile for the port overwrite this option from the command line? Or am I just using the incorrect syntax here? (gdb) file /usr/local/bin/ntpd Reading symbols from /usr/local/bin/ntpd...(no debugging symbols found)...done. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: blu ray recorders
On 19.04.2012 09:55, Shane Ambler wrote: On 16/04/2012 18:04, Wojciech Puchar wrote: today BD recordable disks have prices that make sense as well as recorders. but as i never had one i want to ask - how it is used under FreeBSD. Does growisofs work just like with DVD-R or other tools are needed? I have an LG BH12LS38 blu-ray burner in a machine I bought in december. Running 9.0-RELEASE I haven't burnt a BD-R yet but I have used k3b (which is just a gui front end to growisofs,mkisofs,cdrecord,cdrdao,etc) to burn plenty of single layer dvd's. From the info I can see that cdrecord and growisofs list blu-ray in features. The prefs show the drive info with BD-R BD-RE listed in write capabilities. Available space jumps in sizes up to 50GB and it asks you to insert a blu-ray medium if file sizes total over 8GB It looks to have all the support needed. As for authoring a blu-ray to play in your home theatre it could be another story - I haven't looked into that. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I am not sure about the ISO formatting needed for this, the blu-Ray specifications I believe call for the file system to be UDF version 2.5/2.6. I don't believe FreeBSD supports greater than UDF 1.5. I ran into this issue a while back after building an ISO image server to present an NFS volume to VMware ESX servers to allow O/S and Software installation media for mounting as guest Machines CDROMS. I also chose to write scripts and mount the ISO images as file systems to allow access to them via Samba when mounting the CD Wasn't necessary. A few software DVDs we had at the time used UDF 2.0, and I was unable to read them. This server was built on FreeBSD 7.2, but I haven't noticed anything in release notes since stating an update to the UDF version support. Of course that doesn't mean it hasn't been updated, and either not included, or I missed them. Just something that I think you should check into before getting to far into any project with Blu-Ray burning on FreeBSD. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
FreeBSD 9.0 Snapshots
Has anyone been using Snapshots on UFS with journaled soft-updates enabled? I have a couple of new systems built after 9.0 came out, my backup scripts take snapshots, and then mount them to backup the files, the couple older servers that I upgraded from 8.2 to 9.0 from source are not having any problems, a quick check shows their file systems aren't running the new journaled Soft-Updates options. The new systems which are, frequently hang up and become unresponsive when taking the snapshots. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: LAGG bug or misconfiguration???
to DOWN bge1: link state changed to UP ... The following is the related configuration in rc.conf: ... ifconfig_bge0=up ifconfig_bge1=up cloned_interfaces=lagg0 ifconfig_lagg0=laggproto failover laggport bge0 laggport bge1 xxx.xx.xx.224/24 ifconfig_lagg0_alias_0=inet xxx.xx.xx.225/32 ifconfig_lagg0_alias_1=inet xxx.xx.xx.226/32 ifconfig_lagg0_alias_2=inet xxx.xx.xx.227/32 ifconfig_lagg0_alias_3=inet 172.16.3.2/27 ifconfig_lagg0_alias_4=inet 172.16.3.3/27 ifconfig_lagg0_alias_5=inet 172.16.3.4/27 ifconfig_lagg0_alias_6=inet 172.16.3.5/27 ifconfig_lagg0_alias_7=inet 172.16.3.6/27 ... The system is an IBM xSeries 336 type 8837 kern.version: FreeBSD 8.2-RELEASE-p3 #0: Tue Sep 27 18:45:57 UTC 2011 Just for the record, I've done the test from the host (xxx.xx.xx.224/24) not from any of the jail in place. Any idea or similar issue around? Am I missing something? Thanks. -- Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f Sponsor: Offerta speciale: a partire da soli Euro 18.90 puoi stampare le tue Foto su vera Tela Pittorica e creare Quadri fino a 80x50 cm! Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=11453d=15-3 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Is this system connected to a switch with management capability? If so how is the switch configured for the ports? -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
flowcleaner running away with CPU
I have a FreeBSD 8.2-REALEASE-p5 system that is running as a Squid proxy server, after some complaints for internet performance I logged into the system to take a look, and discovered the flowcleaner process is consuming 100% on one CPU. I did some searching, and have discovered that there have been some bugs in the past with this, and found the flowing command listed as a work around. sysctl net.inet.flowtable.enable=0 I tried this, but there was no change, is this something that has to be done in the sysctl.conf configuration file that doesn't take effect until a reboot? Or is there a process I can restart that will at least temporarily resolve this issue without completely interrupting internet traffic for a few hundred users? last pid: 51636; load averages: 1.03, 1.10, 1.09 up 50+02:41:37 10:35:09 89 processes: 4 running, 71 sleeping, 14 waiting CPU: 0.4% user, 0.0% nice, 49.7% system, 0.6% interrupt, 49.3% idle Mem: 722M Active, 765M Inact, 415M Wired, 24M Cache, 213M Buf, 47M Free Swap: 4061M Total, 212K Used, 4061M Free PID USERNAME THR PRI NICE SIZERES STATE C TIME WCPU COMMAND 11 root2 171 ki31 0K32K RUN 0 2019.8 100.00% idle 19 root1 76- 0K16K CPU00 349.3H 100.00% flowcleaner 58759 squid 1 450 626M 594M select 0 683:15 2.98% squid 0 root7 80 0K96K - 1 1510.7 0.00% kernel 12 root 14 -60- 0K 224K WAIT1 362:54 0.00% intr 17 root1 44- 0K16K syncer 1 61:43 0.00% syncer 1095 root1 440 96672K 75432K select 1 36:11 0.00% vmtoolsd 13 root1 -16- 0K16K - 1 16:10 0.00% yarrow -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Capturing Information About PANIC
I am having problems with my system panicking and crashing during Bacula backups. Is there any way short of enabling full memory dumps to log the output of the crash? After a reboot there is no information in the messages log, and dmesg generally only shows the information since the reboot started. The system is running FreeBSD9.0-RELEASE compiled from source, I had it running bacula backups for close to 2 weeks without a problem, but now it consistently crashes every night. The system is running the client directory and storage daemon, oddly enough it never crashes when backing up itself, but instead crashes when backing up one of the two remote systems. I was beginning to think that perhaps my recompile using clang was the problem, so I rebuilt the world and all ports without clang but the problem persists. I have tested my external eSATA drive on another system, and temporarily connected the drive to the internal SATA ports to rule out the eSATA controller and the backup drive as the source of the problems. This is the only drive in the system that is setup with GEOM_ELI encryption, so I can't rule out that the encryption process is causing a load that the motherboard/CPU/RAM is failing to cope with for hardware reasons. Though this system shouldn't have a problem keeping up. FreeBSD 9.0-RELEASE #1: Tue Mar 6 18:42:48 CST 2012 dweimer@webmail.dweimer.local:/usr/obj/usr/src/sys/VESAKERN amd64 CPU: AMD Athlon(tm) 7750 Dual-Core Processor (2700.06-MHz K8-class CPU) Origin = AuthenticAMD Id = 0x100f23 Family = 10 Model = 2 Stepping = 3 Features=0x178bfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,MMX,FXSR,SSE,SSE2,HTT Features2=0x802009SSE3,MON,CX16,POPCNT AMD Features=0xee500800SYSCALL,NX,MMX+,FFXSR,Page1GB,RDTSCP,LM,3DNow!+,3DNow! AMD Features2=0x7ffLAHF,CMP,SVM,ExtAPIC,CR8,ABM,SSE4A,MAS,Prefetch,OSVW,IBS TSC: P-state invariant real memory = 4294967296 (4096 MB) avail memory = 3843878912 (3665 MB) Event timer LAPIC quality 400 ACPI APIC Table: 072309 APIC1220 FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs FreeBSD/SMP: 1 package(s) x 2 core(s) cpu0 (BSP): APIC ID: 0 cpu1 (AP): APIC ID: 1 ioapic0 Version 1.1 irqs 0-23 on motherboard kbd1 at kbdmux0 cryptosoft0: software crypto on motherboard -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: USB 3 / eSATA support
I think for now I am going to build FreeBSD VM on my windows box and dedicate it to running Bacula Director and Storage Daemon, I was able to get a 20MB sustained through put through the VMware USB emulation copying a file from an SFTP as I had no large files on the local system from my test FreeBSD 9 VM. Though now I don't know why I didn't think to just us dd from /dev/random to a file on the disk, will likely give that a try once my new VM is built. This will get me by performance to a workable speed until I can come up with a more permanent solution, and keep me from spending more money this month so I have a little bit left to add to my savings account. Just an update to this thread in case anyone runs into it, and thinks building a FreeBSD VM within VMware to run Bacula backups to a USB hard drive is a good idea. It turns out that it isn't, not sure if its a VMware FreeBSD guest issue, or a general VMware USB issue, but the heavy load on the USB drive has caused several crashes of the host system. Which of course in turn means a hard crash of the FreeBSD virtual machine, complete with corrupted file systems. It did give me some practice recovering lost Bacula database as I lost my whole PostgreSQL database due to corrupted files once. This might work for many small files, backups ran OK for my web server, but backups against the FreeNAS server with around 200G about 100G is an iTunes library, and around another 20G is photos. When hitting these bigger files with less overhead that allowed for more throughput to the USB device the crashes began to occur. Of course, I should note this setup was done with a FreeBSD9.0-Release virtual machine built from source, using clang, and all ports where possible also built with clang. And running open-vm-tools (these do fail to build with clang) as the VMware tools won't install on FreeBSD 9.0 I am sure VMware has not done any testing with this setup yet, nor do I know if they ever will. So the problem may not exist with other guest operating systems. Also of note, I was originally running under a windows 7 host PC, after the crashes, I switched to CentOS 6 on the host, with a windows Virtual machine to run the applications needing windows. The crashes still occur under CentOS, though a little less frequent than they did under windows. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 9 buildworld with clang failure
On 02.02.2012 15:12, ill...@gmail.com wrote: Might try: Commenting out CFLAGS= Setting NO_WERROR= in /etc/make.conf Removing the CFLAGS= line made no difference, after some searching for info about the NO_WERROR=, I went ahead and added the CFLAGS line back in added NO_WERROR= WERROR= lines both in the /etc/make.conf, and it completed. Now to find out how many ports will compile, and then actually test everything, fortunately the production system I am modeling this test after only has 123 ports installed. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
USB 3 / eSATA support
I am working on setting up a Bacula backup to an external hard drive. The server I am running this on has an on-board USB 2 controller, however the external USB 3 SATA drive doc I am using is only being recognized as USB 1. It does correctly load as USB 2 or USB 3 if I move it to my windows machine which has both USB 2 and USB 3 ports. Before I spend money adding a USB 3 card to the server in order to get the external drive doc to load as USB 3, I was wondering if anyone had any good or bad things to say about FreeBSD's USB 3 support. Would I be a lot safer spending money on an eSATA card and a eSATA doc, knowing that this would give be better performance, but would prefer to not spend any more money than I have to. Or maybe someone would have an idea as to something I could tweek to get more than 1MB/s transfer speed from my existing setup, if I could get the full speed of USB2.0 this would run adequate for my needs. dmesg output for current devices information: ohci0: OHCI (generic) USB controller mem 0xfbf7f000-0xfbf7 irq 22 at device 2.0 on pci0 usbus0: OHCI (generic) USB controller on ohci0 ehci0: EHCI (generic) USB 2.0 controller mem 0xfbf7ec00-0xfbf7ecff irq 23 at device 2.1 on pci0 usbus1: EHCI (generic) USB 2.0 controller on ehci0 ohci1: OHCI (generic) USB controller mem 0xfbf7d000-0xfbf7dfff irq 20 at device 4.0 on pci0 usbus2: OHCI (generic) USB controller on ohci1 ehci1: EHCI (generic) USB 2.0 controller mem 0xfbf7e800-0xfbf7e8ff irq 21 at device 4.1 on pci0 usbus3: EHCI (generic) USB 2.0 controller on ehci1 ugen0.3: vendor 0x174c at usbus0 umass0: vendor 0x174c product 0x5106, class 0/0, rev 2.10/0.01, addr 3 on usbus0 umass0: SCSI over Bulk-Only; quirks = 0x umass0:0:0:-1: Attached to scbus0 da0 at umass-sim0 bus 0 scbus0 target 0 lun 0 da0: WDC WD10 EARS-00Y5B1 80.0 Fixed Direct Access SCSI-0 device da0: 1.000MB/s transfers da0: 953869MB (1953525168 512 byte sectors: 255H 63S/T 121601C) Current machine is running a Biostar TPower N750 Motherboard, and the external drive doc is an INEO I-NA317U-Plus. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: USB 3 / eSATA support
On 03.02.2012 09:45, Mike Tancsa wrote: On 2/3/2012 9:31 AM, Dean E. Weimer wrote: Would I be a lot safer spending money on an eSATA card and a eSATA doc, knowing that this would give be better performance, but would prefer to not spend any more money than I have to. I dont have much experience with usb3 devices, but the eSata cages I have used work very well on RELENG8 and 9. ---Mike It's Looking like eSATA is going to be my pick, to be on the safe side, I could spend the $50 on a USB 3 card, and have it not work, or spend $50 on an eSATA card and another $40 for the drive doc, and cable. If the USB card doesn't work for me then I either have to deal with additional shipping and restocking fees, or just keep the card and eat the expense. Unfortunately I live in a small town where this hardware isn't available locally, so online is my only choice. Does anyone have any experience using the SYBA Cards on FreeBSD? SYBA SD-SATA2-2E2I PCI SATA II: http://www.newegg.com/Product/Product.aspx?Item=N82E16816124003 I know this isn't anything enterprise class, but this is my home system after all, and there's a point where its cheaper to just buy all my iTunes music and Movies over again than throw hardware at a backup solution. I think I have already passed that, but there are several gigs of photos that can't be replaced, and I am trying to get something a little more portable to be taken to work unlike my current method of rsync with two machines at the house. I am using bacula instead of rsync for this, simply because my employer recently purchased a controlling interest in a small electrical engineering design firm to make sure it had priority access to get some components designed as we migrate our dieing mechanical lines into electronic. I am tasked with implementing a next to zero cost backup solution for them, and as they are Linux based on all there servers, I decided to implement a local bacula server at my house to to learn the product before setting it up for them. I am hoping to maybe sneak in some FreeBSD replacements to their Ubuntu file servers if I can (maybe FreeNAS, depending on how my tests go with installing and backing up through bacula client on it). I have already replaced their consumer firewalls with pfSense boxes running on Alix boards, which has turned out to be a huge stability and performance gain for them. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: USB 3 / eSATA support
On 03.02.2012 21:36, RW wrote: On Fri, 03 Feb 2012 13:56:05 -0500 Dean E. Weimer wrote: It's Looking like eSATA is going to be my pick, to be on the safe side, I could spend the $50 on a USB 3 card, and have it not work, or spend $50 on an eSATA card and another $40 for the drive doc, and cable. Just in case you aren't aware, you don't necessarily need an eSATA card. You can get eSATA back-plates that plug into spare SATA connections on your motherboard. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org That the board has plenty of, how does that work with removing the drives? Does it require a reboot? I think for now I am going to build FreeBSD VM on my windows box and dedicate it to running Bacula Director and Storage Daemon, I was able to get a 20MB sustained through put through the VMware USB emulation copying a file from an SFTP as I had no large files on the local system from my test FreeBSD 9 VM. Though now I don't know why I didn't think to just us dd from /dev/random to a file on the disk, will likely give that a try once my new VM is built. This will get me by performance to a workable speed until I can come up with a more permanent solution, and keep me from spending more money this month so I have a little bit left to add to my savings account. I am also looking around, and I have enough spare components to build another machine and just run it with the case open and do a shutdown and swap hard drives, but I might go broke paying my electric bill if I keep adding new PCs for everything. -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
FreeBSD 9 buildworld with clang failure
I am trying to rebuild everything in a development machine with clang
to test for production, and ran into a problem on the buildworld
process. This machine was already rebuilt from source using gcc, here
are the options I have set in make.conf and src.conf. The lines I added
to enable clang, and the steps I took to compile.
Options in /etc/src.conf
WITHOUT_BIND_DNSSEC=YES
WITHOUT_BIND_LIBS_LWRES=YES
WITHOUT_BIND_NAMED=YES
WITHOUT_BIND_UTILS=YES
WITHOUT_NTP=YES
WITHOUT_PROFILE=YES
Options already in /etc/make.conf
WITH_OPENSSL_PORT=yes
WITHOUT_X11=yes
CFLAGS= -O -pipe
PERL_VERSION=5.12.4
Added to /etc/make.conf
.if !defined(USE_GCC)
.if !defined(CC) || ${CC} == cc
CC=clang
.endif
.if !defined(CXX) || ${CXX} == c++
CXX=clang++
.endif
.if !defined(CPP) || ${CPP} == cpp
CPP=clang-cpp
.endif
.endif
Did the cleanup process from previous build and currently installed
setup.
chflags -R noschg /usr/obj/usr
rm -rf /usr/obj/usr
cd /usr/src
make cleandir
make cleandir
Then ran make buildworld, it died on libc with the following output:
=== lib/libc (obj,depend,all,install)
clang -O -pipe -I/usr/src/lib/libc/include
-I/usr/src/lib/libc/../../include -I/usr/src/lib/libc/amd64 -DNLS
-D__DBINTERFACE_PRIVATE -I/usr/src/lib/libc/../../contrib/gdtoa -DINET6
-I/usr/obj/usr/src/lib/libc -I/usr/src/lib/libc/resolv -D_ACL_PRIVATE
-DPOSIX_MISTAKE -I/usr/src/lib/libc/../../contrib/tzcode/stdtime
-I/usr/src/lib/libc/stdtime -I/usr/src/lib/libc/locale -DBROKEN_DES
-DPORTMAP -DDES_BUILTIN -I/usr/src/lib/libc/rpc -DYP -DNS_CACHING
-DSYMBOL_VERSIONING -std=gnu99 -fstack-protector -Wsystem-headers
-Werror -Wall -Wno-format-y2k -Wno-uninitialized -Wno-pointer-sign -c
/usr/src/lib/libc/gen/setjmperr.c
In file included from /usr/src/lib/libc/gen/setjmperr.c:44:
/usr/src/lib/libc/../../include/setjmp.h:58:5: error: incompatible
redeclaration of library function
'sigsetjmp' [-Werror]
int sigsetjmp(sigjmp_buf, int);
^
/usr/src/lib/libc/../../include/setjmp.h:58:5: note: 'sigsetjmp' is a
builtin with type
'int (struct _jmp_buf *, int)'
1 error generated.
*** Error code 1
Stop in /usr/src/lib/libc.
*** Error code 1
Anyone have any idea where I went wrong?
--
Thanks,
Dean E. Weimer
http://www.dweimer.net/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 9.0 buildworld problems
On 14.01.2012 17:39, Joshua Isom wrote: Run `make -DNO_CLEAN buildworld`. Because you used -j6, there's no way to know what went wrong without a full log, and even with a full log it'll be a pain. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org It appears to be the following lines in make.conf: SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDADD=-lsasl2 /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:142:20: error: sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:143:24: error: saslutil.h: No such file or directory mkdep: compile failed *** Error code 1 Stop in /usr/src/lib/libmilter. *** Error code 1 Stop in /usr/src/lib. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. The system I was testing the upgrade process on of course already had cyrus-sasl and cyrus-sasl-salsauthd already installed. I am still waiting to see if the buildworld completes without those to lines. If it does, I will install the cyrus-sasl ports add the lines back in and rerun the buildworld. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 9.0 buildworld problems
On 15.01.2012 12:51, Dean E. Weimer wrote: It appears to be the following lines in make.conf: SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDADD=-lsasl2 /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:142:20: error: sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:143:24: error: saslutil.h: No such file or directory mkdep: compile failed *** Error code 1 Stop in /usr/src/lib/libmilter. *** Error code 1 Stop in /usr/src/lib. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. The system I was testing the upgrade process on of course already had cyrus-sasl and cyrus-sasl-salsauthd already installed. I am still waiting to see if the buildworld completes without those to lines. If it does, I will install the cyrus-sasl ports add the lines back in and rerun the buildworld. The buildworld, buildkernel, and install process all completed successfully after installing the cyrus-sasl ports. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
9.0 buildworld problems
I am trying to build a test system to verify everything works on FreeBSD 9.0-RELEASE, I started with a standard install on a VMware virtual machine. I used portsnap fetch extract to install the ports tree, copied the /etc/make.conf and /etc/src.conf from my existing 8.2 system onto the new test system. Contents of /etc/make.conf: # Use OpenSSL from ports instead of base WITH_OPENSSL_PORT=yes # Avoid Building Ports Against X WITHOUT_X11=yes # Some Default Options From /usr/share/examples/etc/make.conf CFLAGS= -O -pipe NO_PROFILE=true # Enable SMTP Authentication SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 # Enable Proxy For Ports Fetch FETCH_ENV=http_proxy=http://192.168.5.1:3128 FETCH_ENV=ftp_proxy=http://192.168.5.1:3128 # added by use.perl 2012-01-14 12:46:15 PERL_VERSION=5.12.4 Contents of /etc/src.conf: WITHOUT_BIND_DNSSEC=YES WITHOUT_BIND_LIBS_LWRES=YES WITHOUT_BIND_NAMED=YES WITHOUT_BIND_UTILS=YES WITHOUT_NTP=YES I then installed openssl, vim-lite, and cvsup-without-gui from ports, copied the example standard-supfile to a new location, changed the host= line, left the rest as default options. Ran cvsup to download source tree, ran make -j16 buildworld from the /usr/src directory. The buildworld stoped here: === gnu/lib/libsupc++ (install) sh /usr/src/tools/install.sh -C -o root -g wheel -m 444 libsupc++.a /usr/obj/usr/src/tmp/usr/lib sh /usr/src/tools/install.sh -C -o root -g wheel -m 444 /usr/src/gnu/lib/libsupc++/../../../contrib/libstdc++/libsupc++/exception /usr/src/gnu/lib/libsupc++/../../../contrib/libstdc++/libsupc++/new /usr/src/gnu/lib/libsupc++/../../../contrib/libstdc++/libsupc++/typeinfo /usr/src/gnu/lib/libsupc++/../../../contrib/libstdc++/libsupc++/cxxabi.h /usr/src/gnu/lib/libsupc++/../../../contrib/libstdc++/libsupc++/exception_defines.h /usr/obj/usr/src/tmp/usr/include/c++/4.2 1 error *** Error code 2 1 error *** Error code 2 1 error *** Error code 2 1 error I cleaned everything up and retried, it died at the same spot on the next run as well. I have the full output of the buildwolrd process on my webserver, http://www.dweimer.net/buildworld.out.bz2 Interestingly enough at the same time I was building this system I was also testing an upgrade from source option on different virtual machine that was made from a restore of live system, after downloading the FreeBSD9.0 source tree and running buildworld from usr/src against copies of the same make.conf and src.conf file above, it built fine and the install process ran successfully. The ports have all been rebuilt, and I am going to try a new buildworld to see if it succeeds or fails on that system now that its running 9.0 instead of 8.2 when the last buidlworld was ran on it. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
somewhat Off topic, Sendmail Issue
I know this is a Sendmail issue, but I haven't been able to track down any information online, or found any Sendmail user email lists yet. And since I am running it on a FreeBSD server, I thought I would try here and see if anyone knows the answer to my problem. I have enabled SSL on SMTP to enable the delivery and reception of TLS encrypted emails, the server is going to be used as a relay between a MS Exchange server and an external Spam filtering service that has an encrypted email sending application that strips attachments and creates a password protected HTTPS link based on keywords in the subject. Everything works as expected, but when I test the server against required PCI scans, it accepts weak encryption ciphers, I need to limit these ciphers. After a lot of extensive searching I have found references to the fact that it is possible to configure Sendmail to do this, but I can't find any documentation on how to do it. The server is running FreeBSD 8.2 which is patched up to p4, and Sendmail was configured with the following options, this test setup is also being used to test secure IMAP with authentication, so there are settings in here as well for Cyrus IMAP. /etc/make.conf: # Use OpenSSL from ports instead of base WITH_OPENSSL_PORT=yes # Enable SMTP Authentication SENDMAIL_CFLAGS=-I/usr/local/include/sasl -DSASL SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 # Adding to enable alternate port (smtps) for sendmail... SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL Steps done after editing /etc/make.conf: cd /usr/src/lib/libsmutil make cleandir make obj make cd /usr/src/lib/libsm make cleandir make obj make cd /usr/src/usr.sbin/sendmail make cleandir make obj make make install /etc/rc.conf: # Enable Sendmail saslauthd_enable=YES saslauthd_flags=-a sasldb cyrus_imapd_enable=YES sendmail_enable=YES /etc/mail/hostname.mc: define(`confLOCAL_MAILER',`cyrusv2') define(`CYRUS_MAILER_PATH',`/usr/local/cyrus/bin/deliver') MAILER(`cyrusv2') dnl set SASL options TRUST_AUTH_MECH(`GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN') define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN') dnl Cert Options define(`confCACERT_PATH', `/usr/local/etc/ssl/smtp')dnl define(`confCACERT', `/usr/local/etc/ssl/smtp/gd_bundle.crt')dnl define(`confSERVER_CERT', `/usr/local/etc/ssl/smtp/server.crt')dnl define(`confSERVER_KEY', `/usr/local/etc/ssl/smtp/server.key')dnl dnl DAEMON_OPTIONS dnl DAEMON_OPTIONS(`Port=smtp, Name=MTA') DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s') I know that setting this option in Apache does the trick for HTTPS, I just need to figure out how to tell Sendmail to do the same. SSLCipherSuite ALL:!aNULL:!eNULL:!LOW:!EXP:!ADH:RC4+RSA:+HIGH:+MEDIUM:!SSLv2 If anyone has any idea how to do this, or any idea on what keywords to search on that might find me the directions it would be a great help. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: somewhat Off topic, Sendmail Issue
On 12.10.2011 11:30, Daniel Feenberg wrote: There is an active Usenet group at comp.mail.sendmail. Does the ENCR parameter documented at http://www.sendmail.org/m4/starttls.html do you any good? It doesn't restrict the method, only the number of bits in the key. Daniel Feenberg Well after searching the comp.mail.sendmail list through Google groups, I have come up wiht the following changes. I changed the orignal /etc/make.conf: from this: SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL to: SENDMAIL_CFLAGS+= -D_FFR_SMTP_SSL -D_FFR_TLS_1 redid the compile steps: Added this to the end of /etc/mail/hostname.mc: LOCAL_CONFIG O CipherList=ALL:!aNULL:!eNULL:!LOW:!EXP:!ADH:RC4+RSA:+HIGH:+MEDIUM:!SSLv2 under /etc/mail executed the make, make install steps After restarting, an attempt to do: /usr/local/bin/openssl s_client -starttls smtp -cipher EXP-RC4-MD5 -connect localhost:25 Failed, this successfully connected before these changes. Scans are running now, I will let you all know if it was successful. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: somewhat Off topic, Sendmail Issue
On 12.10.2011 15:16, Matthew Seaman wrote: _FFR_TLS_1 is actually already defined in the default sendmail on FreeBSD. See /usr/src/usr.sbin/sendmail/Makefile around line 63. It's also enabled in the ports version of sendmail, so long as you select the WITH_TLS option. I just added this setting to my sendmail config and it seems to work using the ports sendmail without having to recompile anything. It could certainly do with being mentioned in the documentation more prominently. There's not a hint of the CipherList option in /usr/share/sendmail/cf/README _FFR_SMTP_SSL on the other hand, doesn't appear anywhere under /usr/src -- think that must be a fossil remnant from some older version of sendmail. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW Interesting info, I will take a look at that Makefile and see what I find, I found those options to set originally on a web page, can't quite remember where, I pieced info from a few different locations to get everything working as I wanted. I do know a lot of it was originally done for an older version of FreeBSD, so perhaps it was an FFR option at that time it was written. One thing I have figured out in this process is that Sendmail FFR compiled options are basically undocumented outside of the source file comments. Perhaps it was my inclusion of an old setting, that caused the ciphers to open up more to start with. It did pass the tests as is, I will look more into this though. And see if I can't slim down the overall steps to get the server up and running before it goes live on a production server. -- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: IPFilter and IPMon logging to syslog
On Wed, 02 Mar 2011 12:23:27 +0100, Bernt Hansson wrote: Put this in your rc.conf ipmon_flags=-D -f /var/log/ipf.log I don't doubt that would work, but I would rather stick with using syslogd to handle the logging. As I am hoping to implement remote logging to another server for log consolidation of several servers, which is why I started the process of cleaning up the local logs. --- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: IPFilter and IPMon logging to syslog
On Wed, 2 Mar 2011 09:34:39 +0100, n j wrote: On Tue, Mar 1, 2011 at 8:38 PM, Dean E. Weimer wrote: I have been doing some work with cleaning up my log files to make them easier to read, and for the life of me can't figure out how to get my IPFilter logs to stop going into the /var/log/messages log. I have a syslog entry for local0.* /var/log/ipfilter.log which works great, and captures all the logs I want. I have tried adding local0.none on the /var/log/messages line, but it seems to have no effect. Can anyone tell me what I am doing wrong here, the below lines are from my syslog.conf configuration file. *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err;local0.none /var/log/messages local0.* /var/log/ipfilter.log I usually do it this way: !-local0 # disable logging of local0 [log whatever] /var/log/messages !local0 # enable logging of local0 local0.* /var/log/ipfilter.log Regards, -- Nino ___ freebsd-questions@freebsd.org [2] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions [3] To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org [4] Interesting method, I will keep this in mind for the future. One thing to note, my config above seems to have started working after the messages log rotated. I had restarted the syslog process by running /etc/rc.d/syslogd restart, but for some reason these messages continued until the newsyslog process rotated the messages file. Now to get the rest of my servers local logs cleaned up and implement a new server for log consolidation. --- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
IPFilter and IPMon logging to syslog
I have been doing some work with cleaning up my log files to make them easier to read, and for the life of me can't figure out how to get my IPFilter logs to stop going into the /var/log/messages log. I have a syslog entry for local0.* /var/log/ipfilter.log which works great, and captures all the logs I want. I have tried adding local0.none on the /var/log/messages line, but it seems to have no effect. Can anyone tell me what I am doing wrong here, the below lines are from my syslog.conf configuration file. *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err;local0.none /var/log/messages local0.* /var/log/ipfilter.log -- Thanks, Dean E. Weimer http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Help: Looking to contact someone running FreeBSD on ESX
On Fri, 25 Feb 2011 16:09:31 -0500, Greg Larkin wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 2/25/11 3:00 PM, Mark Felder wrote: On Fri, 25 Feb 2011 13:15:29 -0600, Greg Larkin wrote: I haven't used watchdogd(8) (http://bit.ly/eKHUEN [1]) before, but I wonder if it would help you by firing some data logging command (-e option) so you have some information to go on. That actually looks like a great solution, but I currently cannot recompile the kernel to enable SW_WATCHDOG and take those servers down. We have identical hardware in a test environment that I can do that on and hopefully see if we can get a clone of the problematic VMs to fail there with the watchdogd enabled. Thanks, Mark Hi Mark, That sounds good, and please post any further information so someone else can help you troubleshoot further. Here are some other questions for you to ponder: - - What appears in the Apache access error logs just before a freeze occurs? - - Are you using any unusual Apache config file settings or modules? How about for PHP? - - Are all of your installed ports up to date? - - Have you done any Apache or PHP performance tuning using http://httpd.apache.org/docs/2.2/misc/perf-tuning.html [3] or http://phplens.com/lens/php-book/optimizing-debugging-php.php [4] as starting points? - - Have you enabled a PHP log file to record errors, warnings, etc. generated by your application code? Hope that helps, Greg - -- Greg Larkin http://www.FreeBSD.org/ [5] - The Power To Serve http://www.sourcehosting.net/ [6] - Ready. Set. Code. http://twitter.com/sourcehosting/ [7] - Follow me, follow you -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ [8] iEYEARECAAYFAk1oGosACgkQ0sRouByUApAQOgCfW47AXRKSCuj2ftZJSQubVEPw w54Ani/7k+SNvR4JllG5wJXQSmBE90Be =1PvS -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org [9] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions [10] To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org [11] I manage 8 FreeBSD virtual servers at work running 7.0, 7.1, and 7.2 in VMware ESX 4.0, they are running Apache2 with PHP, Bind, and Squid, any of the services they are running is all installed from source and kept up to date, as we are required to pass quarterly PCI scans. So it doesn't speak much of programs installed from ports, but these systems stay very stable, the only issue I have is that after about 8 to 9 months of system uptime (services are restarted more frequently for updates) sometimes the network will stop responding until the virtual machine is shutdown and powered back on. (I can't say that any of the windows servers on the cluster ever reach that length of uptime to compare with this) We have 6 physical servers running with full automated vmotion there is about 80 windows servers runnign on the same systems. Backed with an ISCSI SAN and 10G Ethernet adapters. However our internet applications that utilize the FreeBSD servers are relatively low usage, squid is mainly used as outbound proxy for around 600 Computer users which is the highest used resource on these servers, primarily between 5am and 7pm, so usage levels may not be near where you are running at. I am running vmware tools installed from a VMware workstation 6.5 tools image, I have switched a couple of the systems over to the vmxnet drivers instead of running then as e1000 adapters, but haven't been running them long enough to see if that resolves are problem. When it does occur the system is completely responsive when connecting to the console though, and can be cleanly shutdown. I haven't noticed any issues with VMwawre performance monitoring reporting the systems CPU as hammered when the CPU on FreeBSD shows low, but these systems are much more heavily memory used followed by disk I/O CPU sits idle at most times. I should also mention that they are setup with 2 vCPUs, perhaps if you are running a signal vCPU something is hanging one vCPU and mine setup is recovering OK because the applications complete using the other until the issue resolves itself. I haven't spent much time looking at historical usage graphs on these since I don't get any complaints about performance. --- Thanks, Dean E. Weimer dwei...@dweimer.net http://www.dweimer.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
FreeBSD 8.1 iSCSI CHAP with header and data digest
I am trying to connect my FreeBSD 8.1 system to a FreeNAS server
hosting an iSCSI drive. I can successfully connect if I disable header
and data digests, but can't seem to get a connection using header and
data digests to succeed. I know the FreeNAS side is correct because I
was able to connect and successfully format the drive and write data to
it using my Windows 7 PC with CHAP and digests enabled. Here is my
FreeBSD iscsi.conf file, do any of you have any idea what I am doing
wrong?
webmail# vim /etc/iscsi.conf
## Global Config
InitiatorName=ign.2005-01.il.ac.huji.cs:webmail.dweimer.local;
## Targets
# FreeNAS Backup Drive
backup {
TargetName=iqn.2007-09.jp.ne.peach.istgt:backup
TargetAddress=192.168.1.2
AuthMethod=CHAP
chapIName=webmail
chapSecret=Password1234
}
Also when I connect using the iscontrol -c /etc/iscsi.conf -n backup
command, I can't find a way to disconnect the drive. I ended up
rebooting the server to disconnect it so I could go back to testing with
digests enabled. Does anyone know how to disconnect an iscsi connection
once connected without rebooting?
--
Thanks,
Dean E. Weimer
http://www.dweimer.net/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
USB KVM Keyboard Drop Work-Around (almost, need help!!)
Bear with on this one, it is a little long, but I wanted to describe problem with as much detail as possible. I recently purchased a USB KVM to switch between my Windows XP Box and FreeBSD (5.2.1-RELEASE) file/web development server. I was able to use the USB keyboard after a boot, but as soon as I switched to the XP Box and back to the FreeBSD machine it would no longer recognize the USB keyboard. Search the mailing lists, Google, and Yahoo, showed that I wasn't the only one with this problem, but I could not find a fix or work around. After some searching I discovered that by using the command usr/sbin/kbdcontrol -k /dev/kbd1 /dev/console that I could then see the USB keyboard again. Furthermore I discovered that when I switched back and fourth with the KVM these messages showed up in the /var/log/messages syslog. When Leaving: ukbd0: at uhub1 port 1 (addr 3) disconnected ukbd0: detached uhid0: at uhub1 port 1 (addr 3) disconnected uhid0: detached ums0: at uhub1 port 2 (addr 4) disconnected ums0: detached When Returning: ukbd0: CHESEN USB Keyboard, rev 1.10/1.10, addr 3, iclass 3/1 kbd1 at ukbd0 uhid0: CHESEN USB Keyboard, rev 1.10/1.10, addr 3, iclass 3/0 ums0: Cypress Sem PS2/USB Browser Combo Mouse, rev 1.00/0.00, addr 4, iclass 3/1 ums0: 5 buttons and Z dir. So logic told me that if I could figure out a way to execute the usr/sbin/kbdcontrol -k /dev/kbd1 /dev/console command based on the log I would have a functional work around. I used Swatch (/usr/ports/security/swatch) form the ports tree to attempt to solve this program. My configuration for swatch contains the following: watchfor /kbd1 at ukbd0/ bell 3 exec /usr/sbin/kbdcontrol -k /dev/kbd1 /dev/console I am starting swatch at startup as a Daemon from a script in the /usr/local/etc/rc.d/ directory simply passing it the --config-file, --tail, and --daemon options. At first all works great, can switch frequently between machines, the only catch is it takes a few seconds for the mouse and keyboard to be detected, but no longer than it takes XP. But every few days the swatch daemon seems to hang. I can ssh into the box from my freebsd machine, kill the swatch process and relaunch the daemon, and again it works for a few days and then hangs?? Anybody have any ideas?? Please Copy my email -- [EMAIL PROTECTED] with any replies... -- Thanks, Dean E. Weimer [EMAIL PROTECTED] http://www.myhostinghome.net/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mpd multihomed server
I have been running mpd as a server for pptp connections for my WinXP laptop via a WLAN connection for some time now, I would like to expand the pptp connections to answer on the Internet as well. Is it possible to make mpd answer on two different NICS, or will I have to use ipnat to redirect the port on my Internet NIC. My FreeBSD Firewall has three NICS: NIC1-LAN, NIC2-ISP, NIC3-WLAN. I have been able to get it to accept multiple clients, and answer on either NIC2 or NIC3, but I can't get it to answer on both NIC2 and NIC3 at once. Please Copy my email with any replies. -- Thanks, Dean E. Weimer http://www.dweimer.org/ [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ipmon syslogd problems
Toomas Aas [EMAIL PROTECTED] said: I have ipfilter set up and running fine, but I have been finding that my security logs show up in both my security and messages log files. ipmon is running with the command ipmon -oI -s -D and my syslog.conf file has the following relevant configuration. .. local0.*/var/log/security security.* /var/log/security *.notice;kern.debug;lpr.info;mail.crit;news.err /var/log/messages I believe *.notice includes all the higher levels, such as *.err and *.warning. If you don't want messages from local0 and security facilities to appear in /var/log/messages, add this to /var/log/messages: local0.none;security.none Looking at the man page for syslog I see the line that I missed before that talks about the special facility log level none. One thing to note, if you put it before the *.notice, you still get the messages, but putting it on the end of the line works. -- Toomas Aas | [EMAIL PROTECTED] | http://www.raad.tartu.ee/~toomas/ * I haven't lost my mind; I know exactly where I left it. -- Thanks, Dean E. Weimer http://www.dweimer.org/ This message was sent from dweimer.org using TWIG - The Web Information Gateway. - For more information visit http://www.dweimer.org/ - To Report Abuse Contact [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
ipmon syslogd problems
I have ipfilter set up and running fine, but I have been finding that my security logs show up in both my security and messages log files. ipmon is running with the command ipmon -oI -s -D and my syslog.conf file has the following relevant configuration. .. local0.*/var/log/security security.* /var/log/security *.notice;kern.debug;lpr.info;mail.crit;news.err /var/log/messages .. I am only logging blocked and short packets, which according to man ipmon should do the following. .. -s Packet information read in will be sent through syslogd rather than saved to a file. The default facility when compiled and installed is local0. The following levels are used: LOG_INFO - packets logged using the log keyword as the action rather than pass or block. LOG_NOTICE - packets logged which are also passed LOG_WARNING - packets logged which are also blocked LOG_ERR - packets which have been logged and which can be considered short. .. There is nothing in my syslog.conf that is pointing *.warning or *.err to messages. Does anyone have any ideas as to why this is happening?? Please Copy me with any replies. -- Thanks, Dean E. Weimer [EMAIL PROTECTED] http://www.dweimer.org/ This message was sent from dweimer.org using TWIG - The Web Information Gateway. - For more information visit http://www.dweimer.org/ - To Report Abuse Contact [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
