Re: Installer program for FreeBSD-9.0?
On Dec 8, 2010, at 9:07 PM, Polytropon free...@edvax.de wrote: On Wed, 08 Dec 2010 23:48:11 +1000, Da Rock freebsd-questi...@herveybayaustralia.com.au wrote: On 12/08/10 11:26, Polytropon wrote: On Wed, 08 Dec 2010 00:09:24 +0100, Julian H. Staceyj...@berklix.com wrote: My comments/ wish list - One text mode (non bitmap graphical) browser:/usr/ports/www/lynx The lynx browser, due to its special key handling, does not appeal to novice users. NO text mode browser gives a first sight effect that will convince a user he's installing a modern OS. Sounds stupid, I know. As I said, the way the user interacts with the browser does determine how fast he gets through the installation. Learning the browser (instead of just pressing the keys shown on the screen) could make things look worse. On the other hand, with the ability of X to run without configuration on recent hardware, what's wrong with running X with a graphical web browser - if the user DECIDED that way? Of course, this decision is the FIRST step in the install process: Install method -- T - traditional text mode installer (sysinstall) (this one does not have all the options) W - web-based installer in text mode (typical for professional users) G - web-based installer in graphics mode (typical for novice users) R - remote installation (just starts the server) S - shell (dialog shell access to live system) Enter choice: _ Just a simple idea. I like that approach- works for me anyway... Let me add that it would be good to default do an action after a certain time (e. g. 60 seconds). This default should be the preparation for remote installation as this is the obvious choice when no interaction is done - because it maybe is not possible (like for headless servers). So you put in the installation media (CD or USB stick), wait a minute, and then remotely access the installer. Accessibility should be foremost at this level and above. I would also like to see it that way; sadly, market share oriented development doesn't share this thought. You can make money on all the healthy users, there's plenty of them. Users with disabilites are uninteresting, from a marketing point of view. Users in niche markets are uninteresting, too. The legalities themselves are becoming hairy these days, and considering the point that we are trying to push accessibility in terms of applications (such as issues with flash, to name one) using physical accessibility as a parallel argument we should be setting an example as well. Accessibility on the web is just one point. Operating systems, the backbones of all the dancing bunnies, should be a good example of how to make information accessible to the widest amount of people. This includes the idea of NOT cutting out those who do not have the ability to access a graphical installer: Not because they don't want to use it, but because they don't have the means to access it. That said, there is no reason why can't make it look as pretty as we can without compromising this principle :) GUI installer, remote access and not rising barriers does not contradict. If done properly, it can benefit both the professional users AND those who judge at first sight. -- Polytropon I'm going to weigh in now. :) If you want to install FreeBSD using X with a pretty GUI, you can do that today. Use a PC-BSD install DVD. There is a radio button in the installer to make it install plain FreeBSD. pc-sysinstall is in HEAD now, and it is completely functional. It's been doing PC-BSD and FreeBSD installs for a long time now. The way it works is it does an install based on a config file, so really the work on the front end is building a tool that will build a config file. The real issue is that you really want a volume and disk layout wizard of sorts. The ability to take some disks, maybe make a gmirror, or a ZFS RAIDZ, or even use glabel on a single disk, then layout some filesystems on that, then do the install. It turns out that this is really simple to do in a web app, and not quite so simple to do in curses. You want things like constraining choices based on previous input. For instance you can't make a RAID-Z from two devices. As far as floppy based installs and all of that, the last successful install via floppy that I can find documented was in the 3.x era, in the 90's. That was over 10 years ago. Booting from floppy is pretty rare these days, and I submit that a system that has no choice but to boot from floppy isn't going to be able to run FreeBSD 9 anyways. My Pentium Pro can't boot anything newer than 4.11, and *that* has USB ports. Anything with a chance of running FreeBSD 9 can boot from USB or PXE. If it's a small modern embedded system you're using dd to put an image on it's flash card. Other situations fall
Re: Support for hard drives 2 TB?
On Friday, December 03, 2010 06:00:29 am Thomas Mueller wrote: Can FreeBSD be successfully installed, and run, on all or part of a hard drive 2 TB? Sector size would be 4 KB, though I think the hard-drive firmware can make sector size look like 512 bytes. I know fdisk can handle up to 2 TB; this limit is not just for BSD but Linux too. Western Digital has come out with a SATA hard drive of 3 TB. Tom Sure. FreeBSD supports installing to and booting from GPT labeled disks that don't suffer from the 2TB size limitation that fdisk imposes. The caveat is that very few systems have a BIOS that can boot from a GPT labeled drive. So regardless of your OS, you may still have issues. It's worth noting that RAID arrays have been larger than 2 TB for years, and the way RAID cards have gotten around the issue is to carve off a chunk of the array and present it to the OS as a small boot LUN. -- Thanks, Josh Paetzel signature.asc Description: This is a digitally signed message part.
Re: Installation - no disks detected
On Friday 30 July 2010 05:58:02 Prateek Sharma wrote: Hello, I am trying to install FreeBSD-8.1 on a server with the LSI SAS 9200 disk controller card. Before the partitioning step the installer says disks not found.. However, just after freebsd boots , i get the diagnostic message saying something like: Drive C: is disk ad0 Drive D: is disk ad1 .. So are my disks getting detected or not? Does anyone know if the card is supported by FreeBSD? Is there any way i can get this to work? Thanks ! There's work in progress to get the new 6gbps LSI HBAs and RAID controllers working in FreeBSD, but so far the driver is pretty experimental. Currently there's nothing in the tree, but hopefully soon there will be something ready for testing. As far as what you are seeing on boot, the system BIOS is seeing the controller and disks, but FreeBSD doesn't have a driver so once the OS is charge you get the no disks found message. -- Thanks, Josh Paetzel FreeBSD -- The power to serve signature.asc Description: This is a digitally signed message part.
Re: Hardware RAID controller questions - 3Ware vs RocketRaid
On Thursday 18 March 2010 03:37:32 Andy Wodfer wrote: Hi, We're setting up two backup servers where each server will have about 4TB of harddrives (for now) connected (4x1TB and 8x500GB drives). Last night we ran into trouble with the 3ware controllers we have (9650SE-8LPML) because we couldn't create a larger RAID5 than 1.99TB. We are going to use FreeBSD 8.0 and Bacula, but first we obviously need to create a working RAID. My questions are: - Are HighPoint RocketRaid controllers a good alternative to 3ware controllers? Are RocketRaid controllers true hardware RAID? - What should we look for in a RAID controller spec to see that it has support for larger than 2TB RAIDs? I've been looking at these: http://www.highpoint-tech.com/USA_new/series_rr2300.htm http://www.highpoint-tech.com/USA_new/series_rr3500.htm Any FreeBSD recommendations? Or perhaps for another 3ware controller? We're using SATAII drives. Thanks for your help! Best regards, Andreas You are hitting an issue with DOS MBR limitations, not the RAID controller itself. Either use GPT or put a filesystem on the raw device with no fdisk at all. The latter strategy is the better one if you intend to ever grow the filesystem. 3ware controllers are the best game in town for FreeBSD. We use them extensively both internally and for our customers at iXsystems. You can flash the controller firmware from in the OS on FreeBSD using tw_cli. You might also consider running ZFS on the hardware RAID instead of UFS. You get the advantages of running a hardware RAID controller, plus the advantages of ZFS (namely no fsck) r...@servant /usr/src -tw_cli /c0 show Unit UnitType Status %RCmpl %V/I/M Stripe Size(GB) Cache AVrfy -- u0RAID-6OK - - 256K5587.88 RiWON r...@servant /usr/src -grep 'da0' /var/run/dmesg.boot da0 at twa0 bus 0 target 0 lun 0 da0: AMCC 9690SA-4I4 DISK 4.08 Fixed Direct Access SCSI-5 device da0: 100.000MB/s transfers da0: 122879MB (251658239 512 byte sectors: 255H 63S/T 15665C) ** small boot LUN r...@servant /usr/src -grep 'da1' /var/run/dmesg.boot da1 at twa0 bus 0 target 0 lun 1 da1: AMCC 9690SA-4I4 DISK 4.08 Fixed Direct Access SCSI-5 device da1: 100.000MB/s transfers da1: 5599104MB (11466964993 512 byte sectors: 255H 63S/T 713785C) ** The rest of it r...@servant /usr/src -zpool status -v pool: a state: ONLINE scrub: none requested config: NAMESTATE READ WRITE CKSUM a ONLINE 0 0 0 da1 ONLINE 0 0 0 errors: No known data errors r...@servant /usr/src -df -h a FilesystemSizeUsed Avail Capacity Mounted on a 5.2T2.2T3.0T42%/a -- Thanks, Josh Paetzel FreeBSD -- The power to serve signature.asc Description: This is a digitally signed message part.
Re: KDE firefox integration
On Sunday 07 March 2010 08:13:53 Elias Chrysoheris wrote: On Sunday 07 of March 2010 15:56:15 Anselm Strauss wrote: Hi, I noticed that in PC-BSD 8 firefox is nicely integrated into KDE. Anybody knows how to achieve this on FreeBSD 8? Anselm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I believe you mean that you need KDE to open Firefox whenever you click on a link. That's easy. From your KDE menu, open System Settings (in the first tab, favorites) Then select Default Applications. Then, in the left list of the applications, choose Web browser, and at the right part of the screen choose the radio button in the following browser and in the edit box enter the /usr/local/bin/firefox3. Then apply the new settings. Elias Another trick that PC-BSD useswhich might be more of what you are asking about is the installation of a port called x11-themes/gtk-qt4-engine This port allows gtk applications to be displayed using qt, which helps integrate the look of things like FF, Thunderbird, OOo with KDE. -- Thanks, Josh Paetzel FreeBSD -- The power to serve signature.asc Description: This is a digitally signed message part.
Re: KDE firefox integration
On Sunday 07 March 2010 10:53:29 Anselm Strauss wrote: On Sunday 07 March 2010 15:52:30 Josh Paetzel wrote: On Sunday 07 March 2010 08:13:53 Elias Chrysoheris wrote: On Sunday 07 of March 2010 15:56:15 Anselm Strauss wrote: Hi, I noticed that in PC-BSD 8 firefox is nicely integrated into KDE. Anybody knows how to achieve this on FreeBSD 8? Anselm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I believe you mean that you need KDE to open Firefox whenever you click on a link. That's easy. From your KDE menu, open System Settings (in the first tab, favorites) Then select Default Applications. Then, in the left list of the applications, choose Web browser, and at the right part of the screen choose the radio button in the following browser and in the edit box enter the /usr/local/bin/firefox3. Then apply the new settings. Elias Another trick that PC-BSD useswhich might be more of what you are asking about is the installation of a port called x11-themes/gtk-qt4-engine This port allows gtk applications to be displayed using qt, which helps integrate the look of things like FF, Thunderbird, OOo with KDE. I already installed the gtk-qt4-engine, but it has some serious bugs. Scroll bars are not painted, tab borders are painted at the wrong position, etc. Could this be because I modified some of KDEs appearance options? Are there any other integration tweaks, like icons, keyboard shortcuts, file chooser dialog, ... ? Thanks, Anselm I've cc'd in Kris Moore. Perhaps he can answer some of this. -- Thanks, Josh Paetzel FreeBSD -- The power to serve signature.asc Description: This is a digitally signed message part.
base system openssl in 7.1
I've been trying to figure out a way to run openssl's make test against the openssl included in FreeBSD RELENG_7_1 What I haven't been able to make go is make test in /usr/src/crypto/ openssl using various permutations of ./config Can someone clue me in? Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to create a livecd without compiling everything.
On Apr 20, 2009, at 1:23 AM, Peter Wang wrote: Hi, all. I want to create a customized freebsd livecd, and i have read quite a lot guides about how to do that. but the problem is: most of these need make buildworld, make buildkernel ... I think it's hard for my notebook do that. so is there a simpler/quicker way in which i can create a livecd, what i want to be included in the livecd are the base freebsd system plus some customized packages/config files. In order to create a livecd you need to run mkisofs somewhere that has a complete copy of FreeBSD. There are two options for this, one being running it against the live install of your system (ala /) and the other option is populating a stage directory. Most guides assume that the easiest way to do this is via the DESTDIR=/mystagedir option of make installworld installkernel distribution, and it probably is the easiest way, assuming you have done make buildworld buildkernel In your case where this is an undesirable option you can do one of a few things. 1) Use the live system to build the stage directory... # mkdir /usr/mystage ; ( cd / ; tar --exclude /usr/mystage -cf - .) | ( cd /usrr/mystage -xf - ) 2) copy over /usr/src and /usr/obj from a faster machine that's run make buildworld buildkernel and then use make installworld intallkernel distribution to build the stage dir 3) Use your live system directly to run mkisofs Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to Update my Freebsd packages kernel and Core
On Apr 2, 2009, at 5:59 PM, Glen Barber glen.j.bar...@gmail.com wrote: 2009/4/2 Panos panos...@gmail.com: Hello I'm new to Freebsd and I would like to know if there is anything like apt-get for upgrating everything in my Freebsd. If not Could you tell me how I can do it. There is no 'apt' in FreeBSD. Documentation on how to manage your installed software is located here: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports.html Some of my packages are from ports and some using the sysinstall and I install them from the cd. I use Freebsd 7.1 -- Glen Barber One of the distinctions that freebsd makes that linux does not is between the base system and 3rd party software. Hence you will find no unified tool that upgrades everything like apt does for debian. The link above explains how to deal with 3rd party software. For the kernel and base system check out freebsd-update. Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: SAS drives seem slow
On Feb 26, 2009, at 12:28 AM, Wojciech Puchar wrote: FreeBSD services.tcbug.org 8.0-CURRENT FreeBSD 8.0-CURRENT #0: Mon Feb 16 21:07:14 UTC 2009 root@:/usr/obj/usr/src/sys/SERVICES amd64 But 6.x and 7.x give similar results. The disks themselves are capable of sequential read/write in the 180 Meg/sec range, so I'm trying to understand why I'm being told they are 100 Meg/sec, and why that seems to be their real world performance cap. probably you use RAID5 Hrmm, I should have included drive configuration. r...@services /home/jpaetzel -tw_cli /c0 show Unit UnitType Status %RCmpl %V/I/M Stripe Size(GB) Cache AVrfy -- u0RAID-1OK - - - 135.031 ON ON u1RAID-1OK - - - 298.013 ON ON VPort Status Unit Size Type Phy Encl-SlotModel -- p0OK u0 136.98 GB SAS 0 -FUJITSU MBA3147RC p1OK u0 136.98 GB SAS 1 -FUJITSU MBA3147RC p2OK u1 298.09 GB SATA 2 -WDC WD3200AAKS-00SB p3OK u1 298.09 GB SATA 3 -WDC WD3200AAKS-00SB But I get similar results when I connect just a single SAS drive and export it as a raw device. It's also worth noting that the SATA drive array is reported as 100MB/sec transfers, even though the drives aren't capable of anything close to that, unless they are reading from cache, in which case SATA2 is capable of more like 300MB/sec...but then so is SAS... Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
SAS drives seem slow
I have a 3ware 9690SA SAS RAID controller in a PCI-e 8x slot with Fujitsu MBA series 15k SAS drives attached, and the array is coming up as: da0 at twa0 bus 0 target 0 lun 0 da0: AMCC 9690SA-4I DISK 4.06 Fixed Direct Access SCSI-5 device da0: 100.000MB/s transfers da0: 138272MB (283181056 512 byte sectors: 255H 63S/T 17627C) The controller is probed as: twa0: 3ware 9000 series Storage Controller port 0x2000-0x20ff mem 0xe000-0xe1ff,0xe410-0xe4100fff irq 16 at device 0.0 on pci2 twa0: [ITHREAD] twa0: INFO: (0x15: 0x1300): Controller details:: Model 9690SA-4I, 128 ports, Firmware FH9X 4.06.00.004, BIOS BE9X 4.05.00.015 FreeBSD services.tcbug.org 8.0-CURRENT FreeBSD 8.0-CURRENT #0: Mon Feb 16 21:07:14 UTC 2009 root@:/usr/obj/usr/src/sys/SERVICES amd64 But 6.x and 7.x give similar results. The disks themselves are capable of sequential read/write in the 180 Meg/sec range, so I'm trying to understand why I'm being told they are 100 Meg/sec, and why that seems to be their real world performance cap. # dd if=/dev/zero of=stuff bs=8m count=100 100+0 records in 100+0 records out 838860800 bytes transferred in 8.711125 secs (96297644 bytes/sec) Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: atacontrol software or hardware raid
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Omer Faruk Sen wrote: How can I detect if system has Software or hardware raid? Since in manual page: The atacontrol command can also be used to create purely software RAID arrays in systems that do NOT have a real hardware RAID card such as a Highpoint or Promise card. A common scenario is a 1U server such as the HP DL320 G4 or G5. These servers contain a SATA controller that has 2 channels that can contain 2 disks per channel, but the servers are wired to only place a single SATA drive on each channel. Or how can I find out if the hardware is real hardware RAID card? For example my system has following dmesg output: ad4: 152627MB Seagate ST3160815AS 4.AAB at ata2-master SATA300 ad6: 152627MB Seagate ST3160815AS 4.AAB at ata3-master SATA300 ar0: 152625MB Intel MatrixRAID RAID1 status: READY ar0: disk0 READY (master) using ad6 at ata3-master ar0: disk1 READY (mirror) using ad4 at ata2-master This system is an intel server with S3210SH server board in it. While installing system I see ad4,ad6 and ar0 as harddrives in sysinstall. I choose to install ar0. Additionally as far as I see ar0 is very susceptible to errors since a single CRC error can break the RAID consistency is that normal? I really appreciate those who uses such a kind of RAID1 Regards. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ar RAID devices are almost always software/BIOS RAID. In this case intel matrix raid is software RAID provided by the system BIOS. The disadvantages of using it is your RAID array isn't portable to machines that don't have the same BIOS raid implimentation. One of the advantages of BIOS RAID is that you can boot from stripes, which you aren't doing anyways. You'll probably find that disabling the motherboard RAID and creating a gmirror device is a better option for software RAID 1. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkl81jYACgkQJvkB8Sevrsu1swCcCCq6/cG0WYajBvutibgvhIaA kn8An27y/SPbEKzRyaWntfZV95z/UJia =k2Gx -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: atacontrol software or hardware raid
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Omer Faruk Sen wrote: How can I detect if system has Software or hardware raid? Since in manual page: The atacontrol command can also be used to create purely software RAID arrays in systems that do NOT have a real hardware RAID card such as a Highpoint or Promise card. A common scenario is a 1U server such as the HP DL320 G4 or G5. These servers contain a SATA controller that has 2 channels that can contain 2 disks per channel, but the servers are wired to only place a single SATA drive on each channel. Or how can I find out if the hardware is real hardware RAID card? For example my system has following dmesg output: ad4: 152627MB Seagate ST3160815AS 4.AAB at ata2-master SATA300 ad6: 152627MB Seagate ST3160815AS 4.AAB at ata3-master SATA300 ar0: 152625MB Intel MatrixRAID RAID1 status: READY ar0: disk0 READY (master) using ad6 at ata3-master ar0: disk1 READY (mirror) using ad4 at ata2-master This system is an intel server with S3210SH server board in it. While installing system I see ad4,ad6 and ar0 as harddrives in sysinstall. I choose to install ar0. Additionally as far as I see ar0 is very susceptible to errors since a single CRC error can break the RAID consistency is that normal? I really appreciate those who uses such a kind of RAID1 Regards. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ar RAID devices are almost always software/BIOS RAID. In this case intel matrix raid is software RAID provided by the system BIOS. The disadvantages of using it is your RAID array isn't portable to machines that don't have the same BIOS raid implimentation. One of the advantages of BIOS RAID is that you can boot from stripes, which you aren't doing anyways. You'll probably find that disabling the motherboard RAID and creating a gmirror device is a better option for software RAID 1. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkl81jYACgkQJvkB8Sevrsu1swCcCCq6/cG0WYajBvutibgvhIaA kn8An27y/SPbEKzRyaWntfZV95z/UJia =k2Gx -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: OT: Shell Script using Awk
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 David Allen wrote: On 11/1/08, Sahil Tandon [EMAIL PROTECTED] wrote: David Allen [EMAIL PROTECTED] wrote: My apologies for asking on this list, but I'm stuck without Perl and need to use awk to generate a report. I'm working with a large data set spread across multiple files, but to keep things simple, say I have A Very Long String that containing records, each delimited by a single space. I need to print those records in columnar format, but with only 7 columns per line: record1 record2 record3 record4 record5 record6 record7 record08 record09 record10 record11 record12 record13 record14 ... A small sh script: #!/bin/sh awk ' { for (i=1; i=NF; i++) { printf(%s , $i) if (i % 7 == 0) { printf(\n) } } if (NF % 7 != 0) { printf(\n) } } ' input An elegant solution if ever I read one. The mod operator should have been the first thing that came to mind. I'm not sure whether I need a class in remedial math, or remedial awk, but either way, my thanks for the solution. Just in case you've never discovered column, piping the output of this to column -t will get you nice formatting for free. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkkNlBEACgkQJvkB8Sevrsv6lwCdHk5llGh4ZG+0CnQLARJDqGD9 0AEAniRtmjDNfKXHdsGAudA3uiwYFB9f =IImT -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Filesystem, RAID Question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Matthew Seaman wrote: Rich Fairbanks wrote: Now, this is how I set up the array. I installed the card, popped in the drives. The card bios found the drives and allowed me to setup in RAID 5. Then, FreeBSD booted and found the disk as da0. I want the entire array to be one big chunk of space. In other words, I don't need a bunch of slices or partitions (or DO I? I'm still very new to the whole slice vs. partition concept) newfs /dev/da0 gives you a filesystem with softupdates turned off. You'll want to enable them. Either reinitialize the filesystem with newfs -U or use tunefs to turn softupdates on. 3ware recently released new firmware for the 9650 and 9690 cards that has given me some impressive jumps in application level performance. You can flash the card from in the OS using tw_cli - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkkIxXUACgkQJvkB8SevrsvQugCbBOFjfcTsxt+yzoiATJ7pgVk7 55sAmQF7v302XoF0OBv7hoC6rZA6tPhM =oSsJ -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD-7.1, BETA2 or PRERELEASE
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jeremy Chadwick wrote: On Fri, Oct 24, 2008 at 03:07:32PM +0530, Masoom Shaikh wrote: Hi folks, y'day I csuped the src and built installed the kernel from RELENG_7 I was expecting FreeBSD-BETA2 in output of `uname -a` it is still -PRERELEASE, is it by decision or I have to change something ? I greped /usr/src for PRERELEASE but cud not locate it. I guess release engineering team does that. comments ? This question keeps coming up. http://lists.freebsd.org/pipermail/freebsd-questions/2008-October/184992.html RELENG_7 == PRERELEASE. There is no BETA2 tag to follow. No one is sure at this point where the BETA2 string has come from (meaning why it was idealised or why it's being used). I'm of the belief that it's something Ken is hand-hacking in newvers.sh before building + making ISO releases and putting them up on the mirrors. And I am also of the opinion that this should stop, and we should simply name the releases PRERELEASE-MMDD to signify the build date. When you run make release you have to set BUILDNAME to something. That value then sets the value of RELEASE in sys/conf/newvers.sh, which then affects uname output. I suppose everyone has an opinion as to what to name things, a classic bikeshed item. My opinion is that if BETA2 is an arbitrary name and there's no way to know the timestamp it was built from in CVS, then replacing BETA2 with the timestamp used for the CVS checkout makes sense. Of course CVS is good down to the second, so it would have to be MMDDHHMMSS...and at that point 7.1-PRERELEASE-20081020071001 starts making BETA2 look good. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) iD8DBQFJAb2iJvkB8SevrssRAvDqAJ4glXZL7dtiMLlaU2r8glSSa3XEsgCfY2ag S7+FOqNjJ10miUOLuq/AEEQ= =VzUi -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: new hdd numeration after mainboard change
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jeremy Chadwick wrote: On Mon, Oct 13, 2008 at 07:12:20PM +0200, [EMAIL PROTECTED] wrote: i run FreeBSD 7.1-PRERELEASE i had a change of the mainboard of my lenovo notebook t60. after reboot the harddisk which was before recognized as ad0 is now ad4. i cannot find any other devices, no ad0/ad1/ad2 in /dev. even in the dmesg only ad4 The T60 is a laptop. It only has one hard disk -- so I'm not sure why you were seeing ad0, ad1, ad2 in the past. You shouldn't have been, unless you had 3 hard disks hooked up somehow. The bottom line here is this: absolutely *nothing* requires the device numbering to start at zero. And this is definitely the case. does fbsd create a uniqe identifier for harddisks in combination with the motherboard or something like that? where can i dig further into that issue? It's not really an issue. Very likely your computer has toggled some BIOS settings. The T60 series has the ability to run the SATA ports in two modes: AHCI, or Enhanced/Compatible. Chances are before the motherboard swap, yours was running in the opposite mode that it is now. I would highly recommend using the AHCI mode. It works quite well with FreeBSD under Intel controllers. Turn AHCI on (if it's not already), and do not mess with it. I can verify as a T60 owner, if you toggle the BIOS between AHCI and Compatability the hard drive will show up as either ad4 or ad0. It works fine in either mode with FreeBSD. Unless you are running another OS that doesn't have SATA support there's really no reason to use compatibility mode - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) iD8DBQFI86WTJvkB8SevrssRAssTAJ97EJz5QdzKCm9vdsbI7zLJrMvBXgCfd4NB TSrrfE8CN+2BcQB21dcRDjY= =k2q2 -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Optimal File System config for 2.5TB RAID5
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Wojciech Puchar wrote: | | the simple answer is that software RAID on todays computers vastly | outperforms ANY hardware raid solution, maybe except the ones for 1$ | or more. You're basically correct, but I think you're overestimating the price of a good RAID controller. no. please give me example of any RAID hardware below 1$ that WILL be faster than properly configure software RAID solution under FreeBSD with same amount of same disks. i mean faster under normal unix-like load, which is lots of parallel accesses to same or different things, not simple tests. there are NONE. I have a number of systems running postgresql + a python web application that see fairly heavy concurrent access. The 3ware 9690SA outperforms gmirror and can be had in 4 port with the battery for $600 or so. 8 port with a battery is closer to $1000 Hardware RAID gets you boot support from stripes, email alerts for RAID events in many cases, and with a battery the option to turn write caching on on the controller. Unfortunately there are a number of bad and/or poorly supported RAID controllers out there, especially on FreeBSD. I'd never suggest to anyone that my highpoint 2300 or LSI 3041R-E are high performance, but on the other hand, at real world tasks like a database that backs up a webserver doing millions of hits a day, the LSI 320-2E does RAID 10 faster than gvinum, and my 3ware 9690SA's are faster than gmirror at RAID 1, plus offer the option for a warm spare. Software RAID has advantages, namely hardware independance. And it can be faster than low end hardware RAID. But you don't have to spend much to get a hardware solution that will smoke software RAID at real world applications. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) iD8DBQFI5EbNJvkB8SevrssRAvdLAJ96CLUVK3M2YLKNmAxmIPlxoqp+fgCgnLp6 H1OgEHevOKqDJ/FRg5+fHpU= =MQFo -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Optimal File System config for 2.5TB RAID5
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Danny Do wrote: Hello, I am building a 6x500GB SATA HARDWARE RAID5 storage server to - Store large files, 10BM~1GB/file - Handling 500+ concurrent connections - Transfer rate around 100~200Mbit/s I am thinking of using the patch from Wojciech Puchar to reduce hard drive data seek in order to handle large number of concurrent connections whilst outputting 100~200Mbit/s. patch /usr/src/sys/sys/param.h #ifndef DFLTPHYS #define DFLTPHYS(1024 * 1024) /* default max raw I/O transfer size */ #endif #ifndef MAXPHYS #define MAXPHYS (1024 * 1024) /* max raw I/O transfer size */ #endif #ifndef MAXDUMPPGS To store files greater than 10MB, I come up with the following proposal for my File System: - UFS2 - Soft Update Enable - block-size 1,048,576 I am not completely sure what advantage I got from this configuration but I am pretty sure that FSCK is much quicker with 1M file system block-size. Is there any other thing I need to consider in term of performance and reliability? I hope that this system will perform much better than my current 6x300GB SCSI 10K RPM system. Appreciate any advice, Danny Why do you think slower drives using an interface that has known problems handling concurrent connections will be faster than faster drives using an interface designed for concurrency? Based on my experiences with SATA vs. U160/U320 SCSI or SAS your likely outcome is to see a marked decrease in performance. I'd be interested to hear your results. - -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5ABC 11B4 26F9 01F1 27AF AECB -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) iD8DBQFI4hxmJvkB8SevrssRAqErAJ0Tt9WPT25RhkUfGVLxEzSykEMvtwCeKXRV jdgJ/whLeeAQ3E97i7FkB4w= =UyD6 -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Migrate harddisk with FreeBSD into new machine
On Thursday 14 August 2008 19:04:14 C.M. Burns wrote: Derek Ragona schrieb: At 01:26 PM 8/14/2008, C.M. Burns wrote: Hi list, I have a problem. A faulty machine was running freeBSD with a two harddisk software raid. now these two disks should be put into a new machine, but of course it won't boot because it is new hardware. Kernel just reports: cannot mount root device from /dev/mirror/gm0s1a (or sth like this). question is now, how can i add the correct driver into the initial ramdisk (if there is such a thing on bsd) so the machine finds the two drives? second question: how can i afterwards remove the software mirror and only use one harddisk from that moment on? any help is very welcom, as i have no idea about bsd. i am a linux guy ;) thanks! What I would do, is install FreeBSD onto a new separate hard disk. Disks are cheap. Once you get the boot disk installed you can create a custom kernel if necessary to support the RAID. maybe there is a way to use the loader prompt to manually load the module? it is a buslogic bt948 controller. i would rather not compile a new kernel :) It sounds like the kernel on the disks doesn't have the driver for the buslogic bt948 SCSI controller in it. Unfortunately, this driver is not available to be loaded as a module either. the GENERIC kernel comes with the needed driver (called bt). You don't have to compile a new kernel, but you are going to have to replace the kernel on the disks with one containing the needed driver (like GENERIC). Either way, the recovery procedure involves booting off a CD and replacing the on disk kernel. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: /boot is on the loose
On Sunday 18 May 2008 06:00:44 am B H wrote: Hello list! After a reboot my /boot directory is missing. Is it possible to somehow regenerate /boot and the files that live there? I do not want to reinstall. Thanks for any help. You will need install media. The things the install media will not have is your /boot/loader.conf and any custom kernels you compiled. In fact the /boot/loader.conf on the cd has goo in it that will need to be removed for normal booting. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
PF appears to ignore packets or at leaaast sees them differently than tcpdump
I'm trying to make use of ssh using tun devices. So I have box A with a tun0 10.3.10.1/30 creating a tunnel to box B which has a tun10 10.3.10.230 sshd listens on port 2020 on box A. From box B, ssh 10.3.10.1 -p 2020 works as expected. Here's my problem. I'd like to ssh in to box A from box C, in this case sitting on 76.17.219.196. So I set up the following PF rules on box B... rdr on em0 proto tcp from any to $me port 2020 - 10.3.10.1 port 2020 pass in route-to tun10 proto tcp from any to 10.3.10.1 port 2020 Now, from box C, ssh $me -p 2020 times out, and the reason why is box A sees the traffic coming from 76.17.219.196 and replies out it's default route. No big deal, I should be able to fix that with route-to rules. So box A gets... pass out on em0 route-to tun0 proto tcp from any to any port 2020 Ideally this rule would be more specific, but I've been getting looser and looser with it trying to see why it won't match. # tcpdump -i em0 port 2020 listening on em0, link-type EN10MB (Ethernet), capture size 96 bytes 21:44:19.408264 IP 10.3.10.1.xinupageserver c-76-17-219-196.hsd1.mn.comcast.net.49242: S 349765613:349765613(0) ack 97403528 win 65535 mss 1460,nop,wscale 1,nop,nop,timestamp 7877043 175504784,sackOK,eol 21:44:22.408191 IP 10.3.10.1.xinupageserver c-76-17-219-196.hsd1.mn.comcast.net.49242: S 349765613:349765613(0) ack 97403528 win 65535 mss 1460,nop,wscale 1,nop,nop,timestamp 7880043 175504784,sackOK,eol I thought maybe the state table was involved... # pfctl -s state no output Why are packets going out em0 and ignoring my route-to rule? Ideas, hints, feats of magic? -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Large file system creation
On Tuesday 08 April 2008 11:20:58 am Wojciech Puchar wrote: That looks like what I need. I've got a seperate 32GB array to boot off of, so that's perfect. Now to just read some man pages. Thanks! How many memory do you have in this machine ?? To fsck 9 TB you will there is swap too . but my 1.4TB partition can be fsck'ed on 1GB RAM without swap. need a LOT of memory depends of block sized and inode counts. it will be most likely large 32K blocks, so quick fsck and little RAM In my experience with UFS2 and fsck you will want to have a gig of ram per TB of filesystem. You can get by with less sometimes, eventually you'll get bit. Most mere mortals don't take UFS2 past 6-8TB in production. There are of course exceptions -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: packet filter does not keep state
On Wednesday 02 April 2008 09:03:06 am Erik Norgaard wrote: Hi, I have a problem connecting from one local subnet to another crossing an FBSD box with pf. Should be trivial, I have the following ruleset: snip # Local services accessible from wlan block in log on $wlan_if inet from $wlan_net to local_net pass in log quick on $wlan_if inet proto tcp from $wlan_net to \ local_net port $local_tcp flags S/SA keep state pass in log quick on $wlan_if inet proto udp from $wlan_net to \ local_net port $local_udp keep state pass in log quick on $wlan_if inet proto icmp from $wlan_net to \ local_net icmp-type $local_icmp keep state block in log quick on $wlan_if inet from $wlan_net to local_net block out log on $srv_if pass out quick on $srv_if inet from $srv_ip to $srv_net keep state pass out quick on $srv_if inet from $srv_ip to !local_net \ keep state block out log quick on $srv_if /snip local_net is a table of the directly attached local networks, I try to connect from my wireless to a wired lan. But, tcpdump on pflog0 shows this: 00 rule 54/0(match): pass in on ath0: 172.17.1.254.49347 192.168.0.254.80: [|tcp] 81 rule 94/0(match): block out on vr0: 172.17.1.254.49347 192.168.0.254.80: tcp 44 [bad hdr length 0 - too short, 20] Evidently, the packet is matched by the correct pass in rule, yet no state is created and it is subsequently blocked by the block out rule. I can add a pass out rule to get through, but that shouldn't be the correct solution, why does pf not keep state? Thanks, Erik Is there an entry for the connection in the state table? And does PF complain about the header length when what it really means to say is there's no state? It seems to me that a packet with no header might have trouble with the state table even if there's an entry for it. I've had trouble wih PF acting in non-intuitive ways before, especially concerning nat, binat, and rdr rules, which it's hard to tell if you're dealing with due to the snip. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: problem with RAID Hard (hptrr driver)
On Friday 28 March 2008 02:07:50 pm Nicolas Letellier wrote: Nicolas Letellier a écrit : Hello. I have a machine, with a RAID Controller. In the dmesg, I see: hptrr: HPT RocketRAID controller driver v1.1 (Mar 28 2008 16:05:16) And after, I see: hptrr: no controller detected. Is it normal? Does my RAID 1 work correctly? I read the hptrr manpage, and no informations are given. I read too the handbook (section RAID HARD) and the command atacontrol list returns nothing. In /dev, I see my hdd and the labels: /dev/twed0/dev/twed0s1a /dev/twed0s1c /dev/twed0s1e /dev/twed0s1g /dev/twed0s1 /dev/twed0s1b /dev/twed0s1d /dev/twed0s1f /dev/twed0s1h Anybody could help me? How verify if the RAID HARD is working well? Thanks. - Nicolas. hptrr is the driver for a highpoint rocketraid, your controller is evidentally a 3ware, and is being picked up by twe. You can monitor the array by installing sysutils/3dm from ports. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: problem with RAID Hard (hptrr driver)
On Friday 28 March 2008 04:08:04 pm Nicolas Letellier wrote: Josh Paetzel a écrit : hptrr is the driver for a highpoint rocketraid, your controller is evidentally a 3ware, and is being picked up by twe. You can monitor the array by installing sysutils/3dm from ports. I monitor my array with tw_cli. I have this: /c0 show Unit UnitType Status %RCmpl %V/I/M Stripe Size(GB) Cache AVrfy --- --- u0RAID-1OK - - - 232.885 ON - Port Status Unit SizeBlocksSerial --- p0 OK u0 232.88 GB 488397168 VDS41LT8D97USH p1 OK u0 232.88 GB 488397168 VDS41LT8D7B8PH How know if my RAID is software or hardware? How know if data replication works? And, why this message hptrr: no controller detected in my dmesg? Thanks! - Nicolas. That is a hardware RAID array The OK tells you the mirror working The hptrr driver is unneccessarily verbose about not finding devices to attach to. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: confusion configuring NAT
On Wednesday 19 March 2008 03:02:59 pm Robert Huff wrote: I'm trying to get NAT going, and apparently failing to understand large parts of the concept, 1) Per the handbook I have added options IPFIREWALL options IPDIVERT to the kernel. 2) The firewall is active, and configured so it works for the machine itself. (Settings appended.) 3) I need to do translation for all machines on 10.0.0.0/8. 4) Working from the ipfw man page: ipfw add nat 10 all from any to any then ipfw nat 10 config log ip 10.0.0.0/8 Uh-oh: ipfw: bad ip address ``10.0.0.0/8'' OK, choose one machine. ipfw nat 10 config log ip 10.0.0.3 Accepted. 5) Now, start natd. (natd.conf appended) /sbin/natd -l -f /etc/natd.conf Nope: natd: instance default: aliasing address not given Huh? This has gotten a lot more coplicated since the last time. :-P Robert Huff I don't see much in the man page for ipfw concerning nat, certainly not the rules you are specifying. Try man natd -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Why not a DVD iso version too?
On Monday 17 March 2008 08:15:25 am RW wrote: On Sun, 16 Mar 2008 16:29:29 -0500 Joshua Isom [EMAIL PROTECTED] wrote: Well, since the OP just wants a DVD version, and not specifically a version that's too big to fit on a CD, why not just create a DVD iso that contains just enough to install? That's something I've been thinking about. These days I don't use CDs for anything other than than creating live disks, and installation disks, and once my stock runs out I don't really want to buy any more. Is it possible to burn a bootable CD ISO image to a DVD-R? Yes. It souldn't matter what media you use, there's nothing special about an OS iso for a dvd, other than it's bigger than what will fit on a cd. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: no ad1s3a,b,d... on ad1s3 after bsdlabel
On Wednesday 12 March 2008 07:30:34 am Snow Mountains wrote: 2008/3/12, Lowell Gilbert [EMAIL PROTECTED]: Snow Mountains [EMAIL PROTECTED] writes: I try to understand bsdlabel. I have former fat slice (ad1s3) on my disk and I want to make several BSD partitions on it. I did this: # dd if=/dev/zero of=/dev/ad1s3 bs=1k count=1024 1024+0 records in 1024+0 records out 1048576 bytes transferred in 0.318986 secs (3287217 bytes/sec) # bsdlabel -w ad1s3 # bsdlabel -e ad1s3 (edit) # bsdlabel ad1s3 # /dev/ad1s3: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 1000 164.2BSD0 0 0 b: 1000 10164.2BSD0 0 0 c: 476166600unused0 0 # raw part, don't edit d: 27616644 20164.2BSD0 0 0 # newfs -U /dev/ad1s3a newfs: /dev/ad1s3a: could not find special device # ls /dev/ad1s3* /dev/ad1s3 # What I miss because I don't have ad1s3a,b,d? If repeat same procedure on disk (big file) mounted as /dev/md0, a see /dev/md0,a,b,d,e... after this group of commands. On what version of FreeBSD? This happens on: # uname -r 6.2-RELEASE-p11 SergiM Did you delete and recreate the slice or is it still marked as FAT when you do fdisk /dev/ad1 If it's still a FAT/DOS slice you might try deleting and recreating it as a native FreeBSD slice, I'm not entirely sure putting a bsdlabel on a FAT slice is going to do the right thing (although I could be wrong here) -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: ext3
On Sunday 09 March 2008 07:23:14 am Manolis Kiagias wrote: Viktor Penkov wrote: Hi everybody!!!I've installed the new release of fbsd, but I can't mount my ext3 partitions.can somebody help me with this? best regards Have a look at man 5 ext2fs for instructions. You will have to mount ext3 as ext2. This is possible as long as the ext3 filesystem is not dirty (i.e. the journal is clean, meaning the volume was properly dismounted last time you used it). Mind you, IIRC, if you write something to the disk while it is mounted as ext2, it will probably go through a long fsck next time you reboot into Linux (assuming you are sharing this partition between Linux and FreeBSD). This may be mentioned in the manpage, but in case it's not, sysutils/e2fsprogs is an invaluable tool for those wishing to deal with ext[2|3]fs on FreeBSD. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Help with pf ruleset
On Sunday 09 March 2008 08:22:07 am erik Wilson wrote: I'm pulling my hair out here. I've been working on this for days without any success. I've whittled the ruleset down to the barest possible rules and even that doesn't work. I'm at my wits end. I would really appreciate it if someone could show me where i'm being a complete and total moron. Here's the situation. I have a somewhat unique environment. It consists of 2 WAN's, an internal LAN, and numerous VLANS (isolated clients, which need to be accessible from the internet, but not to each other). This runs in a VMWare esx server, but that's not really important. FreeBSD 7.0-RELEASE em0 = lan (10.0.0.x) em2 = WAN1 (y.y.y.y) (dhcp) em3 = WAN2 (x.x.x.x) (static /28 subnet) the default gateway is on nic2. nic3 will need to forward ip:port's to various vlans. nic2 is used for all outbound lan traffic (internet). nic2 will need to failover to nic3 eventually, and nic3 will have to failover to nic2 (for outbound, obviously no choice for inbound). So here's the problem. I can't even get nic2 or nic3 to respond to a ping request from outside my network when pf is enabled. I know the interfaces are set up correct, as I can ping the default gateways of both interfaces. Also, outbound NAT works perfectly on wan1. Here's my ruleset. lan_if=em0 wan1_if=em2 wan2_if=em3 set block-policy return set skip on lo0 nat on $wan1_if from $lan_if:network to any - ($wan1_if) block in log pass out log keep state pass in log inet proto icmp all icmp-type echoreq keep state pass in log quick on $lan_if Looks simple enough, right? Why won't it work? All i want is to get a ping from both of the firewalls WAN's from outside the network. Any ideas? Routing tables Internet: DestinationGatewayFlagsRefs Use Netif Expire defaulty.y.y.129 UGS 0 4433em2 10.0.0.0/24link#1 UC 00em0 10.0.0.1 00:0c:29:a9:e5:75 UHLW1 338em0 1177 10.0.0.2 00:0c:29:c0:74:57 UHLW1 3291em0 1041 10.0.0.10 00:19:db:b1:07:78 UHLW1 4827em0 1185 10.0.1.0/24link#7 UC 00 vlan0 10.0.2.0/24link#8 UC 00 vlan1 10.0.2.2 00:0c:29:e9:8c:d2 UHLW1 251 vlan1 1190 10.0.3.0/24link#9 UC 00 vlan2 10.0.3.2 00:50:56:9c:53:89 UHLW1 420 vlan2 1152 10.0.4.0/24link#10UC 00 vlan3 10.0.5.0/24link#11UC 00 vlan4 127.0.0.1 127.0.0.1 UH 00lo0 y.y.y.128/25link#3 UC 00em2 x.x.x.144/28 link#4 UC 00em3 x.x.x.14600:0c:29:b5:0e:bb UHLW16lo0 The obfusication is making it harder for my brain to deal with than it should be. At any rate, em3 isn't going to work properly without a route-to rule to get it to answer back to pings out the proper gateway. I'm not entirely sure why you can't ping the ip on em2, could you provide the output of tcpdump -i em2 while you ping it? Also, what did you do with em1? :) -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: make.conf CPUTYPE Xeon Conroe?
On Wednesday 05 March 2008 11:55:48 am Nerius Landys wrote: I'm running FreeBSD 7.0 on a server with an Intel Xeon Dual-Core 3060 Conroe (2.4GHz) CPU. I'm wondering what I should set CPUTYPE to in my /etc/make.conf. The file /usr/share/examples/etc/make.conf has this information: # (Intel CPUs)core2 core nocona pentium4m pentium4 prescott # pentium3m pentium3 pentium-m pentium2 # pentiumpro pentium-mmx pentium i486 i386 I guess those are the possibilities. Which one should I choose for my processor? Also, by accident, I had CPUTYPE=p4 in my make.conf when I compiled world, kernel, and ports. p4 is a flag from older FreeBSD distributions I think. Will this (this meaning both that p4 may be unrecognized and/or it's not my processor type) cause any problems, or should I recompile everything with the correct CPUTYPE flag? Installing world is a hassle because it's not easy for me to do it from single user mode. Thanks. - Nerius As a general rule, setting a CPUTYPE is something you should try to avoid...there's all sorts of breakage it can cause for very little gain. If you're heart is set on it though, your CPU is a core2. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
usb4bsd vs. stock ucom/umodem drivers and pantech px-500
So in 6.3-RELEASE-p1 both amd64 and i386 I am getting 25K/sec off my sprint EVDO pcmcia card. This is an order of magnitude drop vs. 6.2-R and 7.0-RC1 7.0 had a habit of panicing after a few minutes of heavy transfer, so I ended up downgrading to 6.3-R. In a search for a solution I gave usb4bsd a try and am back to normal speeds (250K/sec) I'm not sure there is a question here, more just something for other people to google. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: SATA raid controller on Asustek's P5M2-M
On Monday 04 February 2008 09:43:56 am Leonid Satanovsky wrote: Hello, people! Does anybody know whether the SATA raid controller on Asustek's P5M2-M motherboard is supported by FreeBSD 6.3 ... or 7.0? -- We are choosing a motherboard for a low-end mail server (this is a small company with lots of mail,... and the host will also serve as Internet gateway... that's the strange configuration -) ) ) -- Thanks in advance! Best regards, --les My experience with the onboard BIOS RAID of various motherboards has been horrific. I'd suggest one of two paths, depending on the RAID configuration you're going for. If you strictly doing mirroring check out gmirror. If you are planning on some sort of striping and want boot support think about populating one of the 8x PCI-e slots in the board with a RAID controller. I've had good luck with the highpoint 23xx and 3ware 9650s, I'm sure there are other well supported options as well. If you really need boot support and striping but costs are so touchy that you can't afford a RAID controllre I'd boot the thing off USB and use gstripe+gmirror before I used the motherboard RAID. It's that bad. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: redundancy in domain or hostname ?
On Saturday 26 January 2008 06:36:11 pm Walter Jansen wrote: The router connected to my server reports DNS inquiries like myserver.example.com.example.com which obviously leads nowhere The server is in a SOHO situation connected to a router which is connected to DSL; the server runs 6.3 Release and will serve as mailserver for the few in-house employees and as a webserver. The domain example.com is registered with Dyndns.org who also run the Custom DNS service. The DNS entries were checked with Dyndns.org staff and found in accordance with the purpose. During installation of the server, the hostname myserver.example.com and the domain name example.com were entered in the appropiate Sysinstall dialog . /etc/hosts shows: ::1 localhost.example.com localhost 127.0.0.1 localhost.example.com localhost 192.168.1.13myserver.example.com myserver 192.168.1.13myserver.example.com. 192.168.1.13 is allocated to the server by the DHCP of the router; this IP address is fixed though!! Table /etc/resolv.com reads: domain example.com nameserver 192.168.1.1 (my router's IP address I postponed installation of Postfix and Apache as I feel that host- and domainname should be configured correctly to prevent accumulating trouble. Remarks a most appreciated. -- Walter -- If memory serves the hostname in sysinstall is just the host part of the name, in your case myserver, and the domain part is example.com What does hostname think the hostname is? The other common case where you'll get this is forgetting a . in a BIND zone file, which causes it to append the domain name again -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Perl-5.10.0 in FBSD-7.0
On Thursday 24 January 2008 06:02:25 am Gerard wrote: On Wed, 23 Jan 2008 20:19:29 +0100 Kris Kennaway [EMAIL PROTECTED] wrote: Gerard wrote: I have not been able to find any information in regards to the latest version of Perl, version 5.10.0, released in December. 1) When will this version be available in the ports system? After 7.0 is released. 2) Will FreeBSD-7.0 use this as the default Perl version? Not as it will be shipped, but users can upgrade to it later. I was going to say easily upgrade, but that might turn out to be a lie :) Historically, new versions of perl are a recipe for large amounts of pain because of all the old perl code that stops working. It would be completely irresponsible to attempt that update prior to the release (and moreover, the packages are already finalized for 7.0 anyway, modulo security updates). IMHO, updating to a new OS is like buying a new car. I certainly would not purchase a new vehicle if it contained an old motor. Yes, I could swap out the old motor for a new one once I purchase it; however, wouldn't it have been wiser for the dealer to have done so and spared me the problem. Perhaps this is not the ideal analogy; however, I think you get the idea. I just hope this decision does not cause the fiasco that the updating of Xorg caused and still, from reading the postings on this forum, still continue to cause for some users. Thanks for your response. But you're using BSD because of it's history of stability and habit of Just Working right? What a new version of perl has to fight is a history of years (can I say decades yet?) of perl upgrades that broke tons of stuff due to a lack of backwards compatibility. No one listens to the perl people when they say that new shiny version X isn't different in a way that will affect anything anymore becasuse they've been saying that for years and it's just not been true. Changing the default version of perl to 5.10.0 is going to break tons of ports, and everyone knows it. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: dell 1950 hangs on reboot
On Friday 25 January 2008 08:18:10 am Link wrote: I`ve already upgraded to newest 2.01 bios. It does not fix problem. Just reboot it via the IPMI, which dell calls the BMC. They never hang when rebooted that way. For some historyAbout 1/2 of the 1950's out there exhibit this problem, the other half don't, and no one (AFAIR) has identified what is different between a box that has the problem and one that doesn't. Dell has a long history of making small changes mid-run and not documenting them. If you are unlucky enoung to have a 1950 that hangs during reboot, it will do it between 25 and 30% of the time. If only this were the biggest problem facing someone with FreeBSD on their 1950 -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: GELI key from a USB disk
On Sunday 20 January 2008 09:02:14 pm Rakhesh Sasidharan wrote: I tried the obvious like mounting the USB disk in /etc/fstab and giving it a lower pass no. than the encrypted partitions. But turns out that doesn't work. The pass number in /etc/fstab only affects the fsck order. Thanks. I guess I'll have to write a script or something then ... Regards, - Rakhesh http://rakhesh.net/ If you are using /etc/rc.d/geli or geli2 what about fiddling with it's REQUIRE so that it runs later.like after all your filesystems are mounted? This would seem to be an ok solution provided you aren't using geli on your OS partitions. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: compiling kernel with PAE
On Saturday 19 January 2008 06:15:15 pm Robert Fitzpatrick wrote: Getting an error when trying to compile a kernel on 5.4 and 6.2 with the PAE option. I've tried NO_MODULES in make.conf as well... se2 -ffreestanding -Werror /usr/src/sys/dev/advansys/advansys.c /usr/src/sys/dev/advansys/advansys.c: In function `adv_action': /usr/src/sys/dev/advansys/advansys.c:260: warning: cast from pointer to integer of different size *** Error code 1 Stop in /usr/obj/usr/src/sys/WEBTENT. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. This is a custom kernel build with the QUOTA option, I take out the PAE option and all makes fine. I did a src-all update with RELENG_VER tag prior to building. I assume this is a driver issue compatible with PAE? Also, can I run amd64 release on this Intel Xeon dual proc with 6GB RAM? Thinking about loading 6.3 amd64 if possible. Excuse my ignorance, I am not a hardware guy, I am a programmer. CPU: Intel(R) Xeon(TM) CPU 3.00GHz (3000.12-MHz 686-class CPU) Origin = GenuineIntel Id = 0xf41 Stepping = 1 Features=0xbfebfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MC A,C MOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Features2=0x641dSSE3,RSVD2,MON,DS_CPL,CNTX-ID,CX16,b14 AMD Features=0x2010NX,LM Logical CPUs per core: 2 PAE is a horrible hack, and even if you figured out why it won't compile (probably an incompatable driver in your kernel) it's slow. That particular CPU will run FreeBSD/amd64 just fine. (I happen to have one) The drawbacks to FreeBSD/amd64 are mainly in the desktop arena. If this is a server I'd go for it. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: fsck of big disk
On Tuesday 11 December 2007 09:19:46 am Valerio Daelli wrote: Hi, thanks a lot for your answer. we have a freshly installed FreeBSD 6.2 machine with a gstriped external disk, of 5.3Tb. The disk is composed of two slices of 2.6 Tb. We are trying to have a (background) fsck of it but few hours later since the start of the check the host get unresponsive: it responds to ping but it doesn't let login anyone, nor by ssh nor by console. What do you get if you press Control-T on the console when it is unresponsive? We are not able to login via console nor via ssh. Pheraps you suggest me to press Control-T on the console even if I am not logged on. I did not try, sorry. When you do a background fsck there is a point at which a snapshot of the filesystem is taken, although I'd say that happens at the beginning of the check. The problem is that with 5.3 Tb, it may take quite a while to take the snapshot, and during that time the system blocks any process that tries to write to the filesystem. Maybe that's what you are experiencing. What you explained us sounds very interesting. But anyway we simply solved by disabling background fsck on such a big partition. We had panics and reboot and we did not want to risk on a production host. Bye Valerio Daelli What you are probably running in to is memory starvation. In my experience fsck on a moderately filled disk uses something on the order of 1 gig of RAM per TB of filesystem. If you have this in an array with less than 4 gigs of RAM it's possible that it was just buried in swap and spending all it's time moving pages in and out as opposed to doing anything useful. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Any experience using cellphone as a modem on FreeBSD?
On Monday 03 December 2007 02:08:52 pm Yuri wrote: I have Motorola cellphone with data package on it and FreeBSD laptop. It would be very nice to have internet everywhere. Anybody uses/used cellphone this way? I know internet connectivity can go through the special cable and maybe through Bluetooth. I guess from FreeBSD side it should look like USB modem. Thanks, Yuri I've done it, and it's painfultook me the better part of two days to get working. The main sticking points are you need to dial some arbitrary number that your provider won't be able to tell you without spending 5 hours on the phone, and you need to know your username (relatively easy to find) and your password (harder than hell to find). Once you have all that figured out, AND you've made sure your data plan includes Phone as Modem capability, you can link to it with bluetooth and then dial out over it with PPP. , that reminds me, the ppp chat script was fairly hard to figure out too. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Network Configuration with Jails.
On Wednesday 28 November 2007 08:12:41 am Philip M. Gollucci wrote: Félix Langelier wrote: Hello, I run a FreeBSD Jailer and I want to have multiple jails in 2 seperate networks. The server has 2 network interfaces and each of them are connected in a different network. Say vlan1 and vlan2. My problem is that all the network traffic is going through the first interface (vlan1). What I need is that a jail in vlan1 can't communicate with a jail in vlan2 (and vice-versa). Is it possible to split the network traffic in the right interfaces and use a diffrent default gateway for each of them ? Here is my /etc/rc.d configuration. defaultrouter=192.168.1.1 static_routes=vlan1 vlan2 route_vlan1=-net 192.168.1.0/24 192.168.1.1 route_vlan2=-net 192.168.2.0/24 192.168.2.1 # vlan1 interface config. ifconfig_bge0=inet 192.168.1.10 netmask 255.255.255.0 ifconfig_bge0_alias0=192.168.1.11 netmask 255.255.255.255 # vlan2 interface config. ifconfig_bge1=inet 192.168.2.10 netmask 255.255.255.0 ifconfig_bge1_alias0=inet 192.168.2.11 netmask 255.255.255.255 I tried to remove the default gateway but then the server was unreachable. I am thinking of using pf to resolve my issue. Removing the default gateway will work, but you have to add back _similiar_ routes, you can't just remove it. PF is probably the way to go. In particular using route-to to send traffic originating from 192.168.2.0/24 to 192.168.2.1 I'm not totally sure what your static routes even accomplish. The kernel will establish routes for directly connected networks automatically. So probably some rules of interest # keep jails from talking to each other block in on bge0 from 192.168.2.0/24 to 192.168.1.0/24 block in on bge1 from 192.168.1.0/24 to 192.168.2.0/24 # ignore the default route pass out route-to (bge1 192.168.2.1) from 192.168.2.0/24 to ! 192.168.2.0/24 \ keep state # redundant because of the default route # which actually does what we want pass out route-to (bge0 192.168.1.1) from 192.168.1.0/24 to ! 192.168.1.0/24 \ keep state -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Problems Installing FreeBSD 6.2 - No floppy devices found!
On Tuesday 20 November 2007 07:32:36 pm Cameron Stuart wrote: Hardware: Maxtron AMD opteron with 3ware 4 port PCI express SATA II raid 5 Problem Description: The 3ware driver must be loaded into the kernel using KLD, but the floppy device cannot be found However, the drive exists, and is configured correctly in the BIOS (IE, the system can boot from the floppy) Attempted Solutions: 1) Tried booting using APCI disabled 2) Tried set hint.fdc.0.flags=1 and the boot shell before continuing into the sysinstall 3) Tried enabling disabling the floppy device in the BIOS Any suggestions or solutions you may have would be greatly appreciated Cheers, Cam Which 3ware card do you have? I made 6.2 iso with working 96xx drivers on them so you can do a regular old install off the cd. I can give you a download link if you'd like, just need to know if you want amd64 or i386. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: I went to 8.0 current accidently :(
On Friday 16 November 2007 02:13:40 pm Garrett Cooper wrote: cuongvt wrote: After got below news from OSnews.com yesterday (I was late), I inserted RELENG_7 to my /usr/share/examples/cvsup/stable-supfile as below: *default host=CHANGE_THIS.FreeBSD.org *default base=/var/db *default prefix=/usr *default release=cvs tag=RELENG_7 *default delete use-rel-suffix *default compress src-all Then I exec: cvsup -g -L 2 -h cvsup.jp.freebsd.org /usr/share/examples/cvsup/stable-supfile Then I -j10 buildworld, build kernel, install kernel, then as single mode I installworld. After that, when I uname -a, it output is: FreeBSD hanhnhu.local 8.0-CURRENT FreeBSD 8.0-CURRENT #0: Fri Nov 16 19:48:47 ICT 2007 Where I was wrong? Tnx in advanced. The 7.0-BETA2 builds have completed and are on many of the FreeBSD mirror sites. If you want to update an existing machine using cvsup use RELENG_7 as the branch tag. Instructions on using FreeBSD Update to perform a binary upgrade from FreeBSD 6.x to 7.0-BETA2 will be provided via the freebsd-stable list when available. Wasn't tag releng_7, not RELENG_7?? CVS is CaSe SeNsItIvE, ya know? -Garrett No, it's definitely RELENG_7...and even if you used the wrong case all you'd do is delete everything in /usr/src Really the only way to end up with 8.0-CURRENT is to build from HEAD, which means somehow /usr/src got populated, whether with a supfile with . in it or what is impossible to say. Regardless, there's no real supported downgrade procedure. It's probably possible, but you are in wizard territory. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Autoattach geli device but not at startup
On Wednesday 07 November 2007 07:13:45 am Matthias Fechner wrote: Hi, I have here a setup where some backup directories are mounted encrypted (using geli). rc.conf: geli_devices=ad3 geli_ad3_flags=-k /root/backup1.key ... But if the system must be rebooted it asks for the password before a network connection is available. The computer has no keyboard via default so it is really a pain to get the system up again. Is their a possibility to do something like that after the reboot: mount /mnt/backup1 and mount starts geli and geli will ask for the passphrase? Thanks, Matthias This is one of those cases where I would alter the base system a bit. I'd fiddle with the #REQUIRE in /etc/rc.d/geli to get it to start after sshd, perhaps change it from initrandom to sshd. You can check to make sure the changes are sane by running rcorder manually. If you go this route the console will still prompt for the passphrase, but you'll be able to ssh in and run /etc/rc.d/geli start manually, which after it ran, would automagically run everything after it in rcorder -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: FreeBSD 5.4 and PERC 5i controller
On Tuesday 06 November 2007 11:17:24 am Jerry McAllister wrote: On Tue, Nov 06, 2007 at 11:46:30AM -0500, Jay Aikat wrote: I am trying to install an Endace DAG card for traffic capture on a new machine with 8 drives installed using a PERC 5i controller. Due to support limitations for the DAG software, I have to install FreeBSD 5.4 on this machine. However, the install CD does not see any drives at all - my guess is FreeBSD 5.4 has no drivers for the PERC 5i controller. Does anyone know a workaround for this? Is there a PERC 5i driver available for FreeBSD 5.4? TIA for your responses. I am guessing you are right. 5.4 is pretty old. Is there any good reason you don't go to a more modern version of FreeBSD? jerry Yeah...and he mentions it in his email. Did you read it? The driver you need (mfi) was never backported to 5.x It was introduced in FBSD 6.1-R You might ask the author (Scott Long) how much work it would be or why it was never backported. It's possible it's trivial and it's possible that it would require massive amounts of work. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Xorg and WSXGA
On Thursday 01 November 2007 12:53:11 am Crist J. Clark wrote: On Tue, Oct 30, 2007 at 07:50:10PM -0400, Brian A. Seklecki wrote: On Mon, 2007-10-29 at 23:36 -0700, Crist J. Clark wrote: I finally dumped the CRT and bought a ridiculusly cheap 20 LCD monitor. Works great except I'm having problems getting it to go widescreen and use the full display area. I followed the instruction xinit -- -verbose 9 -logverbose 9 It should print out a list of modes that it _will_ validate. It doesn't really give me any useful additional information that I notice. I still don't understand why it refuses to go for 1680x1050. The log is attached. Could you attach your xorg.conf? It looks like there is a combination of problems keeping it from doing 1680x1050. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: OpenSSL upgrade.
On Saturday 27 October 2007 07:22:35 am Grant Peel wrote: Hiall, Due to a security issue, I need to upgrade my OpenSSL version. What is the correct method? ports? package? a CVSUP of the whole server source? Here is the version I have now (on freebsd 6.2) const# openssl version OpenSSL 0.9.7e-p1 25 Oct 2004 const# TIA, -Grant There is a link to the security advisory for OpenSSL on the homepage of www.freebsd.org that contains step by step instructions on how to upgrade it. -- Thanks, Josh Paetzel PGP: 8A48 EF36 5E9F 4EDA 5A8C 11B4 26F9 01F1 27AF AECB signature.asc Description: This is a digitally signed message part.
Re: Dual Routers
lysergius2001 wrote: Thanks. Sort of. I would still like to use the ethernet connection to connect to both the adsl modem and my internal network which uses fixed ip addresses, and have option to use the wireless connection via cable modem to the internet. Does that make sense? Since they are both using dhcp, your ability to use dhcp to configure the interfaces is limited solely by the configurability of the dhcp servers. In general most out of the box consumer routers hand out a default route and there's not a lot you can do about that, which means that whichever interface runs dhclient last will get the default route...although you can do some magic with dhclient hooks to get around that. But assuming you bring up em0 on 192.168.1.2/24 and ath0 on 192.168.2.2/24 and set the default route to 192.168.1.1 you can switch over to using the wireless/cable as your path to the internet by doing a route delete default, route add default 192.168.2.1 To use both connections simultaniously you are going to want to look in to using pf's route-to and reply-to statements. I have extensive experience using FreeBSD with multiple WAN links and what is and is not possible with them...if you send along a detailed explanation of what you are trying to accomplish I can help you get there. -- Thanks, Josh Paetzel pgp86ChymHo44.pgp Description: PGP signature
Re: Why FreeBSD procfs is so different from the Linux one?
Jonathan Chen wrote: On Wed, Oct 17, 2007 at 02:24:49AM -0700, Yuri wrote: Hi, When I look at /proc/PID/ in FreeBSD I see the files: cmdline ctl dbregs etype filefpregs map mem note notepg regsrlimit status and in Linux: cmdline cpu cwd environ exe fd maps mem mounts root stat statm status Why there's such a difference in procfs interface to the process information? In addition Linux has /proc/self/ link which is named curproc in FreeBSD. Isn't it better to have the same interface across the systems? Maybe. Why don't you get the Linux guys to change theirs? FreeBSD has been around longer. Well, technically no. BSD predates linux, but linux predates FreeBSD by a few years. In general though, linux is a reimplimentation and they've had a habit of changing things in the process, but for any given interface it's not generally accurate to say linux is the reimplimentationsometimes they are, sometimes they aren't. -- Thanks, Josh Paetzel pgp7xiBUMhOgu.pgp Description: PGP signature
Re: postgresql and initdb
Chad Perrin wrote: On Wed, Oct 17, 2007 at 12:11:24PM -0700, Chuck Swiger wrote: On Oct 17, 2007, at 12:02 PM, Chad Perrin wrote: I've installed PostgreSQL here on FreeBSD 6.2-RELEASE, and I'm a little confused by the presence of the initdb(1) manpage and absence of an initdb command. # locate initdb /usr/local/man/man1/initdb.1.gz /usr/ports/databases/postgresql73-server/files/patch-src-bin- initdb-Makefile /usr/ports/databases/postgresql74-server/files/patch-src-bin- initdb-Makefile /usr/ports/www/rt2/files/patch-tools-initdb Any hints? This: % head /usr/ports/databases/postgresql74-server/pkg-plist-server bin/initdb bin/initlocation bin/ipcclean bin/pg_controldata bin/pg_ctl bin/pg_id bin/pg_resetxlog bin/postgres bin/postmaster etc/periodic/daily/502.pgsql ...suggests it will be put in /usr/local/bin/initdb (modulo $ {LOCALBASE}, if changed)-- try doing a rehash if needed. :-) It's not there, unfortunately. The above locate indicated as much, and `cd /usr/local/bin;ls|grep initdb` returns nothing (as does simply ls and searching through it by eye). Similarly, that location doesn't contain initlocation, pg_controldata, pg_ctl, pg_id, pg_resetxlog, postgres, or postmaster. Thus . . . rehashing (which I did before I ran the locate anyway) probably won't work. What port did you install exactly? Installing one of the postgresql[XX]-client ports will end you up with all of the manpages, but none of the commands that you would only need if there was a server installed, such as initdb, postgres, postmaster and so on and so forth. My guess is you need to install the corrosponding postgresql[XX]-server to match the client you already have installed. -- Thanks, Josh Paetzel pgp1pb4UnI14f.pgp Description: PGP signature
Re: Can't burn cds
Paul Schmehl wrote: Hopefully someone can point me in the right direction. uname -v FreeBSD 6.0-SECURITY #0: Wed Feb 14 12:22:36 UTC 2007 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC grep cd /var/run/dmesg.boot acd0: DVDROM HL-DT-STDVD-ROM GDR8163B/0D20 at ata0-master UDMA33 acd1: CDRW TSSTcorpCD-RW TS-H292B/DE03 at ata0-slave UDMA33 camcontrol devlist Maxtor 3200 0344 at scbus0 target 0 lun 0 (da0,pass0) camcontrol inquiry 0:0:0 pass0: Maxtor 3200 0344 Fixed Direct Access SCSI-4 device pass0: Serial Number 2CAH3H6P pass0: 40.000MB/s transfers camcontrol inquiry 0:1:0 camcontrol: cam_open_btl: no passthrough device found at 0:1:0 camcontrol inquiry da0 pass0: Maxtor 3200 0344 Fixed Direct Access SCSI-4 device pass0: Serial Number 2CAH3H6P pass0: 40.000MB/s transfers camcontrol inquiry da1 camcontrol: cam_lookup_pass: CAMGETPASSTHRU ioctl failed cam_lookup_pass: No such file or directory cam_lookup_pass: either the pass driver isn't in your kernel cam_lookup_pass: or da1 doesn't exist ls /dev/acd* /dev/acd0 /dev/acd1 cdcontrol -f /dev/acd1 Compact Disc Control utility, version 2.0 Type `?' for command list cdcontrol eject cdcontrol close cdcontrol info cdcontrol: getting toc header: Input/output error cdcontrol: Input/output error burncd -ef /dev/acd1 data /home/pauls/Downloads/RedHat/RHEL4-U5-x86_64-ES-disc1.iso fixate burncd: ioctl(CDRIOCWRITESPEED): Input/output error What the heck is going on? The device is there. Dmesg shows that the kernel knows what it is. Yet I can't read or write cds, and, as you can see, camcontrol thinks it's non-existant. Yet cdcontrol will open and close the drive but can't provide any info??? What am I missing? -- Paul Schmehl ([EMAIL PROTECTED]) camcontrol isn't going to know anything about IDE devices, it only knows about SCSI. It's hard to see without the propmpts, but are you trying to use burncd as root? A normal user isn't going to have the neccessary privs. to write a cd by default. cdcontrol is simply telling you it can't read the TOC of the cd in the drive, presumably because there's no cd in it. I haven't used cdcontrol in ages, but it's possible it needs root (in the case that you were using it as a normal user with a disk in the drive) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ssh X11 forwarding not working on FreeBSD 6.2
On Tuesday 24 July 2007, Pollywog wrote: On Tuesday 24 July 2007 15:59:22 Terry Todd wrote: I have installed Xming successfully on a Windows XP system. It works OK to a FC6 system and an older UNIXware system. However when trying to connect to a FreeBSD 6.2 system with PuTTY ssh it doesn't work. PuTTY has Enable X11 forwarding checked. When I saw this post, I thought it was mine, because I am having the same problem, but only in FreeBSD and not Linux and my configurations on both are very much the same (for sshd). I am also unable to use port forwarding in vnc (fbsd 6.2) but I am not certain whether this is related to the X11 Forwarding issue or if it is something unrelated. SSH complains that it cannot use the designated port (I have tried different ports. BTW I can do SSH port forwarding from my fbsd computer (client) to Linux (server) but cannot do this from Linux to fbsd. I changed X11DisplayOffset 10 to X11DisplayOffset 1 as mentioned in another post in this thread but that did not help. Is tcp listening still off by default on FreeBSD? Last time I tried to do anything with remote X (which was ages ago) I had to find the goo that was disabling it, I think it was tcp nolisten or something in the startx script. Mind you we are talking FBSD 4.x here, but the errors seem very familiar. -- Thanks, Josh Paetzel pgpisQvtvRXq2.pgp Description: PGP signature
Re: Postfix not forwarding mail to primary domain
On Thursday 19 July 2007, Darrell Betts wrote: I recently put a second email server online and made that the main email server. I made the other one a backup server. Both are running FreeBSD 6.2 and Postfix. My main server went down and the backup server collected all the mail. When the main came online the backup has not forwarded the mail from the backup server to the main server. I have even tried the flush command. What could be wrong. I will include my postconf file. canonical_maps = hash:/usr/local/etc/postfix/canonical_maps command_directory = /usr/local/sbin config_directory = /usr/local/etc/postfix content_filter = smtp-amavis:[127.0.0.1]:10024 daemon_directory = /usr/local/libexec/postfix debug_peer_level = 2 header_checks = regexp:/usr/local/etc/postfix/header_checks html_directory = no mail_owner = postfix mailq_path = /usr/local/bin/mailq manpage_directory = /usr/local/man mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain, mydomain = XXX.com myhostname = XXX.XXX.com mynetworks = 127.0.0.0/8,76.215.134.134 mynetworks_style = host newaliases_path = /usr/local/bin/newaliases queue_directory = /var/spool/postfix readme_directory = no relay_domains = hash:/usr/local/etc/postfix/relay_domains relay_recipient_maps = hash:/usr/local/etc/postfix/relay_recipients sample_directory = /usr/local/etc/postfix sendmail_path = /usr/local/sbin/sendmail setgid_group = maildrop smtpd_client_restrictions = check_client_access cidr:/usr/local/etc/postfix/sinokorea.cidr permit smtpd_recipient_restrictions = reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unknown_recipient_domain, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_rbl_client list.dsbl.org, reject_rbl_client sbl-xbl.spamhaus.org check_policy_service inet:127.0.0.1:10023 unknown_local_recipient_reject_code = 550 virtual_alias_domains = .com,.com virtual_alias_maps = hash:/usr/local/etc/postfix/virtual_alias The relay domain reads xxx.com ok xxx.com ok 192.168.2.145 ok Thanks for the help Darrell From main.cf.concerning the mydestination parameter # Do not specify the names of domains that this machine is backup MX # host for. Specify those names via the relay_domains settings for # the SMTP server, or use permit_mx_backup if you are lazy (see # STANDARD_CONFIGURATION_README). This really isn't a FreeBSD question, it's a postfix question. Please seek out further help from the appropriate postfix mailing lists. -- Thanks, Josh Paetzel pgpSyd8rhaGNu.pgp Description: PGP signature
Re: Dual head video cards
On Tuesday 17 July 2007, dgmm wrote: Are there any gotchas I should look out for when purchasing a dual head video card? I'm currently looking for a cheap NVidia card with both analogue and digital output to use my old 21 CRT and the new 19 LCD but, as usual, there's very little info other than for Windows in the write ups/reviews. I've never used dual head before so I'm concerned that some cards might share resources to the extent that they are windows only . Maybe I'm seeing potential problems that aren't there? Budget is tight so I don't want to screw up the purchase. Cheap is word I'm looking for :-) You'll need to use the binary nvidia drivers, the open source nv driver doesn't support dual-head at all. So you run in to a couple of gotchas there. The first being that the nvidia drivers are i386 only, they aren't available for AMD64, and the second is that twinview has a sort of odd behavior when you use different resolutions on each monitor. It's hard to describe but the driver basically pretends that the resolutions are the same and then only draws what can be displayed of the smaller one, so there's desktop outside of the monitor that you can drag windows in to but obviously can't see. With regards to cards I've used the recent nvidia drivers and dual-head with everything from an fx5500 PCI card to 6200LE to 6600GT to 7200 cards. I've used the legacy drivers with various 4x00ti cards. Here are links to cards I've personally used with dual head in the sub $50 range USD. pci-e http://www.newegg.com/Product/Product.aspx?Item=N82E16814121080 agp http://www.newegg.com/Product/Product.aspx?Item=N82E16814127290 -- Thanks, Josh Paetzel pgpSHWjIMJuN1.pgp Description: PGP signature
Re: Finally Converting From Bind 8 - Bind 9
On Friday 13 July 2007, Tim Daneliuk wrote: Josh Paetzel wrote: On Monday 02 July 2007 16:48, Tim Daneliuk wrote: I am (ever so) slowly moving my domain from FBSD 4.x to 6.2. I am now at the point where I need to convert my Bind 8 configuration to Bind 9. In so doing, I like to finally separate my internal (non-routable) hosts so that their names never resolve outside the private network, and expose only the public facing hosts to the world via DNS. I'd also like to (finally) associate names with dhcpd-provided addresses so both forwards reverses work inside the private network. Could some kind soul please point me to a good HOWTO on this migration and reconfiguration? I am DAGSing as I write this, but so far have not found what I want. TIA, The first part of what you want is easy. In named.conf you'll have something like... acl private-hosts { 192.168.1.0/24; 192.168.2.0/24; }; view internal { match-clients { private-hosts; }; zone example.org { type master; file master/db.internal.example.org; }; }; view external { match-clients { any; }; zone example.org { type master; file master/db.example.org; }; }; Now you have two separate zonefiles, one which is consulted when someone from 192.168.1.0/24 or 192.168.2.0/24 makes a query and one that is consulted when anyone else makes a query. HTH OK - that works great ... but there is one efficiency I'd like to achieve that I'm not quite sure how implement. At the moment, both db.internal and db.external contain common public host information because I want those hosts visible to both communities. This means I have to make changes in two places when an public host entry is modified. I tried removing the public information from the db.internal file with the hope that an internal client requesting public host info would have the request satisfied automatically from db.external - this didn't work, the public hosts just disappeared from the internal view altogether. This raises two questions: 1) Is there a way to configure BIND9 so that internal client requests are first serviced out of db.internal, but if the lookup fails the server will then go look at db.external? 2) Better still is there some sort of include mechanism where I could keep a flat file of public host information for use by db.external, but include it into db.internal. Either of these would satisfy my desire to only have to edit a single file of public host information. TIA, Sure, you can $INCLUDE a file in to a zonefile. :) -- Thanks, Josh Paetzel pgpLBopDKFtGx.pgp Description: PGP signature
Re: cron job every 5 hours
On Friday 13 July 2007, Duane Hill wrote: On Fri, 13 Jul 2007 at 12:50 -0400, [EMAIL PROTECTED] confabulated: Hello, I want to run an updater script, every 5 hours and x minutes. I thought to use: minute 5 * * * root path/to/scriptname crontab(5): ... Steps are also permitted after an asterisk, so if you want to say ``every two hours'', just use ``*/2''. ... So, my guess would be: minute */5 * * * root path/to/scriptname Sort of, that would run the cronjob at midnight, 5am, 10am, 3pm, and 8pm so there would be one interval where it runs at 4 hours. The real method if it's imparitive to run it every 5 hours would be to set up a cronjob for each day of the week, rotating by one hour. minute 0,5,10,15,20 * * 0 minute 1,6,11,16,21 * * 1 minute 2,7,12,17,22 * * 2 and so on and so forth -- Thanks, Josh Paetzel pgpKypBoJsPIw.pgp Description: PGP signature
Re: Ports Clean
On Friday 13 July 2007, Grant Peel wrote: Hi all, My ports collection on some of the servers is wasting alot of space. What would be the best method to 'cleanout' the ports dir without adversly affecting the operation of the rest of the server? All of the servers are live production servers. -Grant There are a few possibilities. 1) cd to each installed ports dir and do a make clean 2) do the same but a make distclean 3) rm -rf /usr/ports/*/*/work 4) rm -rf /usr/ports and recvsup the tree -- Thanks, Josh Paetzel pgp82OPCTptKf.pgp Description: PGP signature
Re: Installing in a logical partition
On Friday 13 July 2007, h p wrote: Hi. I try to install FreBSD 6.2 as third OS on my laptop (after Windows XP and Gentoo Linux). I only have a logical partition left for it. sysinstall only shows four slices on my hard drive, ad4s1 - ad4s4. ad4s4 is correctly recognized as a DOS extended partition, but the logical partitions inside it are not displayed - so I can't select the slice I have set aside for FreeBSD. Is this possible? I don't find that limitation in the handbook, and it seems utterly anachronistic to me. What can I do to get around this? Thanks, Helge Logical partitions are a horrible hack that should die a horrible death. FreeBSD doesn't support installing/booting from them. -- Thanks, Josh Paetzel pgpZ9G4vjqUrH.pgp Description: PGP signature
Re: 10Mbps versus 100Mbps Cable Modems
On Thursday 12 July 2007, David Kelly wrote: On Thu, Jul 12, 2007 at 11:21:50AM -0400, fbsd2 wrote: Am I missing some thing here? I though 10Mbps/100Mbps ends up controlling the max packet size traveling over the internet. Yes, you are missing something. So if your using 10Mbps, you end up generating 10 separate packets versus 1 packet at 100Mbps to move the same amount of data. No, MTU stays the same. Jumbo packet support is popular for gigabit ethernet but MTU is generally limited to 1500 for external internet connections. The ethernet port being 10mbps is only a problem if your being sold more than 10mbps of bandwidth, in which case it would be a bottleneck. Since the cable provider is installing these modems it would seem they aren't trying to sell higher link speeds than that. -- Thanks, Josh Paetzel pgp5zutfXSGUj.pgp Description: PGP signature
Re: Help! FreeBSD: 88.78 KBps, Linux: 624.95 KBps
On Tuesday 10 July 2007, Thomas Sparrevohn wrote: On Tuesday 10 July 2007 17:02:46 Abdullah Ibn Hamad Al-Marri wrote: On 7/10/07, Kyrre Nygård [EMAIL PROTECTED] wrote: Hello. My friend is switching to Linux because FreeBSD is failing on him. When downloading a file from a FreeBSD box and a Linux box on the same network, the FreeBSD box got 88.78 KBps whereas the Linux got 624.95 Kbps. I have no idea what's wrong, but my man isn't really into good information design (e.g. taking something complex and making it easy), so his system is a mess. Maybe some of you can help me locate where the problem's at? Thanks guys, Kyrre Could you please show the uname -a info? It could be at his router does not understand the RFC1323 extensions - try setting tcp_extensions=NO In rc.conf I think the first thing I would do is go back to a default configuration. Turn off pf, take out all of the sysctls and see what happens. Then start adding things in one at a time until you find what breaks it. It doesn't take much to do 625K/sec, the default configuration is easily capable of 30 times that. My guess is that either one of the sysctl 'tunings' has broken something, or an interaction between two or more of them has caused an unexpected behavior, but that's an easy enough theory to test. -- Thanks, Josh Paetzel pgphXFpsEuxsN.pgp Description: PGP signature
Re: php 4.3.10, manual installation
On Monday 09 July 2007, [EMAIL PROTECTED] wrote: Hello, I currently have php 4.4.7 on my FBSD machine but due to some requirements I need to downgrade to php 4.3.10. It will be for an offline machine so I am not worried about possible security holes but I would like to ask how you would advise me to downgrade? 1. Delete php using pkg_delete? 2. Unpack 4.3.10 sources and... yes... what should I do here? Just copy them where php gets installed by default? I am not able to use port for this (I usually install all software via portinstall) as this version is no longer maintained. But I'd appreciate your help. I do not want to make mess on this machine as I have it quite nicely customized so I thought I'd ask for your advice. Thank you! Zbigniew Szalbot I would take a look at cvsweb.freebsd.org and find out when PHP 4.3.10 was in ports, then roll back your ports tree to that date with cvsup and install it from ports. So in this case the commit that updated the port to 4.3.11 was on Mon April 4 2005, so if you roll back the ports tree to April 1 you'll be fine. You'll need cvsup for this. In your ports-supfile add the following line: *default date=2005.04.01.00.00.00 If you have the current versions of gettext, libtool, m4, perl, and expat installed you can simply roll back the lang directory with cvsup, saving you from rolling back the entire tree by commenting out ports-all, and uncommenting ports-base and ports-lang Otherwise, if you want to install the versions of the dependancies that were current at the time of php 4.3.10 you'll want to roll back the entire tree. After you run cvsup you can just portinstall it or cd /usr/ports/lang/php4 make install clean HTH -- Thanks, Josh Paetzel pgpIcvWLKOPvE.pgp Description: PGP signature
Re: php 4.3.10, manual installation
On Monday 09 July 2007, [EMAIL PROTECTED] wrote: Hello, I would take a look at cvsweb.freebsd.org and find out when PHP 4.3.10 was in ports, then roll back your ports tree to that date with cvsup and install it from ports. So in this case the commit that updated the port to 4.3.11 was on Mon April 4 2005, so if you roll back the ports tree to April 1 you'll be fine. You'll need cvsup for this. In your ports-supfile add the following line: *default date=2005.04.01.00.00.00 If you have the current versions of gettext, libtool, m4, perl, and expat installed you can simply roll back the lang directory with cvsup, saving you from rolling back the entire tree by commenting out ports-all, and uncommenting ports-base and ports-lang Otherwise, if you want to install the versions of the dependancies that were current at the time of php 4.3.10 you'll want to roll back the entire tree. After you run cvsup you can just portinstall it or cd /usr/ports/lang/php4 make install clean All clear but when I go to install this particular version of PHP I am (rightly) warned about its multiple known vulnerabilities. I read man portinstall but don't think I have seen information how to temporarily switch this security check off when installing a port. Many thanks in advance! Zbigniew Szalbot make -DDISABLE_VULNERABILITIES install -- Thanks, Josh Paetzel pgpeG5D3QQpb7.pgp Description: PGP signature
Re: php 4.3.10, manual installation
On Monday 09 July 2007, Zbigniew Szalbot wrote: Hi there, On Mon, 9 Jul 2007 16:54:16 -0500, Josh Paetzel [EMAIL PROTECTED] wrote: On Monday 09 July 2007, [EMAIL PROTECTED] wrote: Hello, I would take a look at cvsweb.freebsd.org and find out when PHP 4.3.10 was in ports, then roll back your ports tree to that date with cvsup and install it from ports. So in this case the commit that updated the port to 4.3.11 was on Mon April 4 2005, so if you roll back the ports tree to April 1 you'll be fine. You'll need cvsup for this. In your ports-supfile add the following line: *default date=2005.04.01.00.00.00 If you have the current versions of gettext, libtool, m4, perl, and expat installed you can simply roll back the lang directory with cvsup, saving you from rolling back the entire tree by commenting out ports-all, and uncommenting ports-base and ports-lang Otherwise, if you want to install the versions of the dependancies that were current at the time of php 4.3.10 you'll want to roll back the entire tree. After you run cvsup you can just portinstall it or cd /usr/ports/lang/php4 make install clean All clear but when I go to install this particular version of PHP I am (rightly) warned about its multiple known vulnerabilities. I read man portinstall but don't think I have seen information how to temporarily switch this security check off when installing a port. Many thanks in advance! Zbigniew Szalbot make -DDISABLE_VULNERABILITIES install Thanks for your patience! However, when I try I get: make -DDISABLE_VULNERABILITIES install clean Dependency warning: used OpenSSL version contains known vulnerabilities Please update or define either WITH_OPENSSL_BASE or WITH_OPENSSL_PORT *** Error code 1 Stop in /usr/ports/lang/php4. Now I did include WITH_OPENSSL_PORT=1 in pkgtools.conf for php4 but it does not seem to take any effect. I also tried inserting WITH_DISABLE_VULNERABILITIES=1 in this file but it did not help. Thank you! Zbigniew Szalbot Right, because pkgtools.conf isn't used by the ports treeso add in -DWITH_OPENSSL_PORT to the mix -- Thanks, Josh Paetzel pgpa3sadv5P1H.pgp Description: PGP signature
Re: php 4.3.10, manual installation
On Monday 09 July 2007, Zbigniew Szalbot wrote: Hello again, On Mon, 9 Jul 2007 17:57:32 -0500, Josh Paetzel [EMAIL PROTECTED] wrote: make -DDISABLE_VULNERABILITIES install clean Dependency warning: used OpenSSL version contains known vulnerabilities Please update or define either WITH_OPENSSL_BASE or WITH_OPENSSL_PORT *** Error code 1 Stop in /usr/ports/lang/php4. Now I did include WITH_OPENSSL_PORT=1 in pkgtools.conf for php4 but it does not seem to take any effect. I also tried inserting WITH_DISABLE_VULNERABILITIES=1 in this file but it did not help. Thank you! Zbigniew Szalbot Right, because pkgtools.conf isn't used by the ports treeso add in -DWITH_OPENSSL_PORT to the mix Not much luck. The installation started but then came to a halt: making links in engines... making links in apps... making links in test... making links in tools... generating dummy tests (if needed)... Since you've disabled or enabled at least one algorithm, you need to do the following before building: make depend Configured for BSD-x86-elf. -e: not found *** Error code 127 Stop in /usr/ports/security/openssl. *** Error code 1 Stop in /usr/ports/lang/php4. OK. I ran make depend and then repeated make -DDISABLE_VULNERABILITIES -DWITH_OPENSSL_PORT install clean However, it stopped at the same location with the same error message. Time to give up? Thanks! Zbigniew Szalbot Never give up, never surrender! Try using the base openssl, it's the better choice in most cases anyways. make -DDISABLE_VULNERABILITIES -DWITH_OPENSSL_BASE clean install clean -- Thanks, Josh Paetzel pgpj7zmCz5ni4.pgp Description: PGP signature
Re: Finally Converting From Bind 8 - Bind 9
On Monday 02 July 2007 16:48, Tim Daneliuk wrote: I am (ever so) slowly moving my domain from FBSD 4.x to 6.2. I am now at the point where I need to convert my Bind 8 configuration to Bind 9. In so doing, I like to finally separate my internal (non-routable) hosts so that their names never resolve outside the private network, and expose only the public facing hosts to the world via DNS. I'd also like to (finally) associate names with dhcpd-provided addresses so both forwards reverses work inside the private network. Could some kind soul please point me to a good HOWTO on this migration and reconfiguration? I am DAGSing as I write this, but so far have not found what I want. TIA, The first part of what you want is easy. In named.conf you'll have something like... acl private-hosts { 192.168.1.0/24; 192.168.2.0/24; }; view internal { match-clients { private-hosts; }; zone example.org { type master; file master/db.internal.example.org; }; }; view external { match-clients { any; }; zone example.org { type master; file master/db.example.org; }; }; Now you have two separate zonefiles, one which is consulted when someone from 192.168.1.0/24 or 192.168.2.0/24 makes a query and one that is consulted when anyone else makes a query. HTH -- Thanks, Josh Paetzel pgph7bvZtOHKl.pgp Description: PGP signature
Miserable 2d performance on what should be fast hardware
I have a reasonable fast machine, dual core 2.2ghz opteron, 2 gigs of DDR, sata disks, and a pair of nvidia cards, one a 7xxx pci-e 16x and the other a 55xx PCI card. I have 3 monitors, so one of the cards needs to run dual-head, which requires the nvidia driversthe xorg nv driver can't do dual-head. My problem is that 2d acceleration is either not working or really really brokenif I'm ssh'd into a remote box and doing a compile just rendering the text in an xterm uses 100% of a cpu. Doing two compiles at once maxes both cpus, and any more than that makes keyboard input laggy. I've tried various terms, xfce's Terminal, xterms, eterms, aterm...I've tried various window managers including xfce4, fluxbox, and KDE, all to no avail. I've also tried xorg 7.2, which didn't make any difference either. As a side note, the problem seems to be related to the second video card, as I didn't have any trouble before I added it. There aren't IRQ conflicts, nor does there appear to be a massive number of interrupts going on, the cpu usage is 'system' and systat -vm doesn't show a lot of interrupts on any of the irq lines. It's also worth noting that 3d accel seems to be broken with the addition of the second card, and also mixing the nv and nvidia driver doesn't work out so well (kernel panics), I only need dual-head on one card. Not that I actually care, unless 3d accel could help solve my issue, I don't need it for anything. I do have an ati pci-e 16x card I can swap for the nvidia, my problem there was an inability to get a working dual-head config for it...I'm open to example xorg.confs there. The other factor that makes this less than desirable is it effectively pins media to the card it was started on.dragging a running video from a monitor on one card to a monitor on the other causes the video to go black. Suggestions or feats of magic welcome, including reports of 'I have triple-head working on such and such a card' I'll gladly buy hardware to fix the problem. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Kernel Options fo a File Server
Ivan Carey wrote: Hello, What would be the best Kernel options to run a file server? I will be using an Intel server mother board with one Xeon quad core CPU installed (this mother board has 2 CPU sockets) 2GB RAM and dual 500Gb SATA HDD's I am thinking of options that would make the kernel efficient as a pure file server. Thanks, Ivan Even with a GENERIC kernel you're going to be disk-bound, unless you have them in RAID 0, in which case you'll be network bound. If you are running i386 you can take out 486 and 586 support, that's probably the biggest single improvement you can make, and it's incremental at best. --- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Support Quad-Core Intel Xeon 5310 CPU
Ivan Carey wrote: Hi, Does FreeBSD 6.2 support Quad-Core Intel Xeon 5310 CPU and an Intel Xeon 5320 quad core CPU Regards, Ivan Yes. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mounting an external Hard Drive
cadu aranha wrote: Hello people, i have a USB external HD with FAT32 fs. Today i connected it to my FBSD and got the following mesg entry: da0 at umass-sim0 bus 0 target 0 lun 0 da0: SAMSUNG SP2514N Fixed Direct Access SCSI-0 device da0: 1.000MB/s transfers da0: 238475MB (488397168 512 byte sectors: 255H 63S/T 30401C) # ls /dev/da0* /dev/da0/dev/da0s1 /dev/da0s2 /dev/da0s5 mount_ntfs /dev/da0s1 /mnt #% ok, it worked. Now # mount_ntfs /dev/da0s2 /mnt2 mount_ntfs: /dev/da0s2: Invalid argument #%of course, it is a FAT32 filesystem. Then ... # mount_msdosfs /dev/da0s2 /mnt2 mount_msdosfs: /dev/da0s2: Invalid argument # mount_msdosfs /dev/da0s5 /mnt2 mount_msdosfs: /dev/da0s5: Invalid argument # dmesg mountmsdosfs(): disk too big, sorry # fsck_msdosfs /dev/da0s2 ** /dev/da0s2 Invalid signature in fsinfo blockfix? [yn] y Floating exception (core dumped) I do not know what else could i do. It was a 250G HG with NTFS. The whole could be mounted by mount_ntfs. Then i split it in one NTFS and one FAT32 using Partition magic. Now i can mount the former and the latter not. On windows there is no problem in mounting. Any tip? Thanks in advance ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] You didn't say how large your fat 32 filesystem ended up, but if it's larger than a certain size (128 gigs I think?) you need to recompile your kernel with: options MSDOSFS_LARGE to access it. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mkisofs and file size
[EMAIL PROTECTED] wrote: I am in the process of creating a bootable CD for the offices I maintain to hopefully make upgrades easier in the future. At this point in time /dev/ad0s1a (where the root partition is located) has 13% of 512 MB. When I create the ISO image, it is twice the size it was under FBSD 6.1. Comparing the file sizes between the files on FBSD 6.1 and 6.2, they appear to be the same. I looked at sizes at the root directory, but did not go any further. Has anyone else encountered this type of issue? Thanks, Jay Perhaps the hardlinks in /rescue aren't getting preserved? That will chew up a few hundred megs. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: make Buildworld fails...why?
Mark Stout wrote: Hello, I've been trying to upgrade a 5.4-RELEASE to 6.2-RELEASE and having a bit of a problem. Downloaded and untar's the source files for base, catpages, dict, doc, games, info, manpages, proflibs, and src directories per INSTALL.TXT in the releases/.../src directory after backing up my local /etc and /usr/local/etc directories. I've tweaked the GENERIC kernel config file and renamed is RADIUS2 While in /usr/src I did a 'make buildworld'. I do okay until I get to stage 2.3: build tools. There I get to the following error when compiling make_hash. Can anyone help me determine why this is failing? Were my upgrade procedures Thank you, Mark Stout VPM Global Internet Services, Inc. 530-626-4218 x205 Office 530-626-7182 Fax 530-554-9295 VoIP 916-240-2850 Cell www.vpm.com Generally speaking the best supported upgrade path across major version numbers is from the last release of the older version to the first of the newer, which in your case would mean upgrading from 5.4 - 5.5 - 6.0 - 6.2 Is there any particular reason you aren't using cvsup/csup to update your source tree? -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sysinstall does not install GENERIC kernel
Kris Kennaway wrote: On Mon, Apr 09, 2007 at 09:23:38AM +0400, Belov, Sergey wrote: hit the same bug too with FreeBSD-6.1. To workaround this, i've just added the distribution set GENERIC to dists (this value wasn't mentionned on the sysinstall manpage by the way :-( ) So try with this: dists=base GENERIC catpages info manpages proflibs kernel distSetCustom Thank you. I've also found interesting thread here: http://lists.freebsd.org/pipermail/freebsd-questions/2006-June/123640.ht ml It seems that automatic installation mechanism is far from perfect and there's nobody who interested in fixing the problems. Are you sure it was not fixed in 6.2? Kris distSetCustom has been broken ever since the goo was added to make sysinstall smart enough to install either GENERIC or SMP depending on how many processors are in the machine. After that change was made the kernels target to distSetCustom stopped working. My workaround has been to hack the distSetMinimal target in sysinstall to put in what I want. I guess I should've submitted a PR at some point... -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Boot failure after installation
L Goodwin wrote: Hello. I tried posting this issue a few hours ago, but it did not appear in my inbox, so I'm trying once more. I've included details of the install in case it matters (sorry about length). I'm having trouble getting FreeBSD 6.2 to boot after installation. After a successful install, (re-)boot always fails with DISK BOOT FAILURE, INSERT SYSTEM DISK AND PRESS ENTER. In order to boot the install CD on this machine, I have to disable ACPI by selecting 2. Boot FreeBSD with ACPI disabled from the boot loader menu (the AWARD BIOS does not allow for disabling ACPI from the BIOS setup program). At the end of a successful install, the installer asks ACPI was disabled during boot. Would you like to disable it permanently?, to which I choose Yes. I am choosing to perform a Standard install. Here are my FDISK selections: Select Drive(s): da0 (first SCSI drive of 6 9GB drives) These are my selections in FDISK Partition Editor (before entering Q): -- Disk name:da0FDISK Partition Editor DISK Geometry:1115 cyls/255 heads/63 sectors = 17912475 sectors (8746MB) OffsetSize(ST)EndNamePTypeDescSubtype Flags 06362-12unused0 631791241217912474da0s18freebsd165A 17912475376517916239-12unused0 -- Install Boot Manager for drive da0?: Selected BootMgr (Install the FreeBSD Boot Manager) Select Drive(s): da0 selected for Boot Manager (tab to OK, press ENTER). FreeBSD Disklabel Editor (create BSD Paritions): Select A (Auto Defaults)... -- Disk: da0Partition name da0s1Free: 17912412 blocks (8746MB) PartMountSizeNewfsPartMountSizeNewfs ---- da0s1a/512MBUFS2Y da0s1bswap486MBSWAP da0s1d/var1267MBUFS2+sY da0s1e/tmp512MBUFS2+sY da0s1f/usr5968MBUFS2+sY -- ...then enter Q (Finish). Choose Distributions: Select A Minimal. Choose Installation Media: 1 CD/DVD (burned my own from FreeBSD-6.2-disk1 ISO image) All filesystem information written correctly... Distribution extracted successfully... Congratulations! You now have FreeBSD installed on your system (but can't boot!). Final Configuration: No to most questions (configure later). Yes to these: Ethernet or SLIP/PPP network devices: fxp0 (Intel EtherExpress Pro/100B PCI Fast Ethernet card IPv6 configuration of the interfaces?: No DHCP: No Bring up fxp0 interface right now?: Yes Failed (only entered hostname --will complete later) Network gateway?: No inetd?: No SSH login?: Yes anonymous FTP?: No NFS server?: No NFS client?: No customize system console settings?: No machine's time zone?: Yes CMOS clock set to UTC?: No Region: 2 America -- North and South Country or Region: 45 United States Time zone: 19 Pacific Time (PDT) Linux binary compatibility?: No PS/2 mouse?: Yes (test OK) ACPI was disabled during boot. Would you like to diswable it parmanently?: Yes Browse FreeBSD package collection?: No Add initial user accounts?: No set system manager's password: (done) Visit general configuration menu one more time?: No FreeBSD/i386 6.2-RELEASE - sysinstall Main Menu: Exit Install Last thing to print to screen: - Boot from ATAPI CD-ROM : Failure ... DISK BOOT FAILURE, INSERT SYSTEM DISK AND PRESS ENTER - The first message is expected, as there is no disk in the CD-ROM drive. If I set Boot Sequence to C only in BIOS setup, only the second message appears. Am I doing something wrong here? Just from the size of the drives I'm guessing this is older hardware. Is the machine capable of booting from SCSI? Is the scsi controller itself bootable? -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade and the new postfix 2.4
Thomas wrote: Hello Today i tried to upgrade postfix 2.3.x to new port postfix 2.4 with portupgrade. I got this error: ** Port marked as IGNORE: mail/postfix: is marked as broken: Does not apply. Waiting to a new version Even portupgrade -o mail/postfix postfix23 did not work: portupgrade -o mail/postfix postfix23 ** No such installed package: postfix23 Any idea? Cheers, Thomas Looks like the port is fixed now...you should be able to portupgrade postfix and get 2.4.0 if you csup/cvsup your ports tree. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: fsck fails on 6T system
Dan D Niles wrote: I am trying to fsck a 6T filesystem on a server that crashed. I'm running FreeBSD 6.2-p3. # fsck -t ufs -y /dev/da0 fsck_ufs: cannot alloc 1993797728 bytes for inoinfo I also tried: # fsck -t ufs -f -p /dev/da0 /dev/da0: UNKNOWN FILE TYPE I=11895232 /dev/da0: UNEXPECTED INCONSISTENCY; RUN fsck MANUALLY. I built a custom kernel with MAXDSIZ and DFLDSIZ just under 3G, and got the same results. It was at about 430M in use when it crashed, so the total would be 2332 M which is less that the size allowed (reported by limits). I found an old bug report from 2004 that is still open, but nothing has been done. I also found an old article about someone (thinking about) rewriting fsck to use disk instead of memory, but no follow-up. Has anyone found a solution to this? Any suggestions? HELP! Thanks, Dan RAM...lots and lots of RAM. Start with about 8 gigs and give it a try. Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: optimization for Athlon 64 X2
Garrett Cooper wrote: Daniel Dvo??ák wrote: Hi all, out of curiosity, which CPUTYPE setting is appropriate for dual Manchester core Athlon 64 X2 3800+ processor with FreeBSD 6.2 (GCC 3.4.4) ? Googling throws up nothing useful. Dan Try the -march value listed here (athlon64): http://gentoo-wiki.com/Safe_Cflags#Athlon_64_X2_.28AMD.29. -Garrett That looks suspiciously like linux documentation...and he was asking about the CPUTYPE setting in make.conf which is (?) FreeBSD specific? Anyways, there's a sample make.conf in /usr/share/examples/etc/ that documents the various CPUTYPEs available. Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 2.2.9 / Installation problem
On Friday 16 March 2007, Ian Lord wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nino Ivanov Sent: 16 mars 2007 07:07 To: 'Josh Paetzel'; freebsd-questions@freebsd.org Cc: 'Kris Kennaway' Subject: AW: FreeBSD 2.2.9 / Installation problem I tried to send to freebsd-questions the following twice, and twice failed!: Dear Sir or Madam, I tried reaching ftp://ftp-archive.freebsd.org/pub/FreeBSD-Archive/old-releases/ from my Windows XP machine, using Firefox 2.0.0.2, and it requires me to input a username and a password. The same happens with IE7. I would like to download old ISO images. Is this a bug, or is it some new regular behaviour, and in any case, is there a way to download these images? NetBSD archives work well, so it is not a problem in my machine I think. Regards, Nino Ivanov Lol :) In Ie7, just click the log on anonymously checkbox and press login anonymous logins seem to be broken. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 2.2.9 / Installation problem
On Thursday 15 March 2007, Kris Kennaway wrote: On Thu, Mar 15, 2007 at 08:43:32PM +0100, Nino Ivanov wrote: Dear Chistian, Dear Kris, I also think the RAM will not be the issue, as it is a text-only install, and indeed, I am not planning to get fancy. I completely don't need X. Midnight Commander is perfectly fine as a working environment. 4.11 seemed OK. But I am having a different problem right now, which I am still researching: It does not recognize the device from where to mount root correctly. I mean the following: When I put FreeBSD into the Compaq for installation, the harddrive is ad4 or ad8. But in the system where I want to run it, the HP Omnibook, it is ad0. Now, when I start it back in the HP Omnibook, it says that swap is not configured correctly on ad8s-something. Which is true, it should look for it on ad0... I have only once been able till now to mount root. (And this is my basis for assuming that even 4.11 CAN potentially run.) I said as command ufs:/dev/ad0 when it asked me where to mount root from. This worked, however, e.g. ufs:/dev/ad0s1 did not work. I am thinking that I might have made a mistake, and should have said ad0s1a. Yet, the principal new problem persists: FreeBSD does not realize that it should now look at ad0 instead of ad4 or ad8. (However, in the booting process, it correctly sees ad0 as having 325 MB etc.) Is there a way to solve this? Probably the /etc/fstab is wrong and refers to the ad4 or ad8 devices. The root should indeed typically be ufs:/dev/ad0s1a. Kris I'm a tad confused, as I thought we were talking about FBSD 2.x, which would've called your drive wd0, not ad0. But Kris is correct in that your fstab is wrong...your /boot/loader.conf probably has the wrong root device as well. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: getting mail to work
On Sunday 11 March 2007 10:45, Ed Zwart wrote: I use freebsd on an older computer in my home network to run a webserver, a few web apps (bugzilla, tikiwiki), and samba. I just installed postfix via the ports collection so I can use the mail functionality of bugzilla. Bugzilla does its part correctly; I can see the message in the mailq, but all messages time out. From the postfix site, I learned about the MTU black hole issue (http://www.postfix.org/faq.html#timeouts). After spending some time messing both with my bsd machine's hostname and my home network gateway's settings (domain name and mtu size), I got nowhere. But then I read somewhere (sorry, I don't have the reference) that the handshake that goes on between my MTA and the destination machine includes a check that I'm not spoofing a domain that I don't control. Makes sense! So, I figured that I don't have an MTU problem at all, but a hostname/domain name problem. What I'm a little weak on is understanding is this... I own my_domain.com. I've paid a hoster for the last couple years, but that's ending in a week or so. Meanwhile, I've used dyndns to point foo.homedns.org to my IP. Originally, I had left the gateway's domain as the default (something based on my isp's domain), and set the bsd machine's hostname to foo.my_domain.com. But that's why mail was failing (I think) because dns was reporting that my_domain.com was not the same as my IP. Is this correct? Also, what are valid entries then for hostname then? Anything I want, as long as it's not some domain already known in the dns? Does it matter if I change my domain name on my LAN router? Finally, what I'd really like to do is just manage all this myself. I'm not providing any services to anyone but myself. (I don't have users, and don't need to receive mail.) My plan had been to pay dyndns to handle pointing to my_domain.com for me, but now I'm wondering if I can't just do that too. So, last question: does setting up dns on my bsd box mean I can propogate my IP for my_domain.com myself? Thanks in advance for help! e. Your ISP is probably just blocking outgoing connections to port 25...set postfix to use their smtp servers as a relayhost. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: compiling ports with more than one job
On Wednesday 28 February 2007 04:32, Christian Baer wrote: Good morning[1], folks! I am currently setting up a Sun U60 with FreeBSD. A few amount of apps will be installed on it, when I'm through with it. And that is where it gets a little frustrating. The packages for SPARC64 aren't really up to date. That is why using them isn't really an option. Besides, some programs actually get a real boost if they are compiled with an -mcpu flag, which probably isn't set when the packages are compiled. So, I'm down to installing them over the ports collection. That isn't bad in itself. But even a U60 isn't really a fast machine and if you compile bigger collections (like x.org, kde, firefox etc.) you can watch yourself aging while the machine is at it. It would be a great help if I could really use both CPUs in this machine. But somehow that doesn't work. I have observed two things so far (in general): Some ports (like mc) have a menu for choosing the compile options. If I try to make one of those with more than one job (make -j 2) I can't hit any of the boxes on the list of options or even hit the ok button. It would seem that make went on to the next job without actually waiting for the input. The same background but with a slightly different effect is also true for ports without a menu. I couldn't make xorg with more than one job because make just ran on without waiting for the required things to be there and stopped with a no such file or directory. That is quite a drag as on UltraSPARC II CPUs compiling isn't much fun even if you use all the CPU-power there is. Normally you'd think that a meta-port like xorg just hast to be compiled step by step. However, a far more complex system (make -j 4 buildworld) works just fine. Am I too thick to get the point here or is it really true that the ports in general will only compile correctly one job at a time? Regards Chris The issues with the config screen sounds like a bug, but one that is unlikely to get fixed any time soon. You can avoid it by doing a make config-recursive before building the port, but you're still going to run in to the problem that ports are not guarranteed to by -jX safe, some will work, some won't, and there's no way of knowing without trying it. In general you can save yourself a lot of headaches by not trying in the first place. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel: vr0: discard oversize frame
On Tuesday 13 February 2007 23:47, sai wrote: (apologies if this is an inappropriate list for this, I am relatively new to FreeBSD ) I get this error quite frequently on my pf firewall running 6.2 and it leads to loss of internet access. kernel: vr0: discard oversize frame (ether type 710a flags 3 len 1532 max 1514) vr0 is connected to my ISPs cable modem, ip address is provided by DHCP. Whenever I get this oversized (or maybe malformed) packet I need to reboot my machine to get back online, though sometimes just resetting (down, then up) the ethernet port works also. The machine also has rl ethernet cards and they also suffer from the same problem. It is not possible to change the ethernet cards as the machine is an appliance. Any pointers/suggestions/help? sai I don't have any vr or rl cards, but see if you can increase the MTU on them. See the ifconfig manpage for details on how to do so. Obviously you'd want to set it to at least 1532. :) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel: vr0: discard oversize frame
On Wednesday 14 February 2007 06:23, sai wrote: On 2/14/07, Josh Paetzel [EMAIL PROTECTED] wrote: I don't have any vr or rl cards, but see if you can increase the MTU on them. See the ifconfig manpage for details on how to do so. Obviously you'd want to set it to at least 1532. :) -- Thanks, Josh Paetzel mtu is currently 1500. ifconfig vr0 mtu 1532 leaves the mtu unchanged, but if I try to reduce it then it does work, ifconfig vr0 mtu 1498 sets mtu to 1498. Looks like that 1500 is the max that the vr driver/card will accept. sai Probably your best bet at this point is to either get a card that will support a larger MTU (ala intel ethernet express), or contact your ISP and see if the MTU can be lowered on the modem (unlikely) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipf/ipf??
On Friday 09 February 2007 13:47, Gary Kline wrote: Here is where my buildworld of 6.2-R fails: === sbin/ip6fw (obj) /usr/obj/usr/src/sbin/ip6fw created for /usr/src/sbin/ip6fw === sbin/ipf (obj) === sbin/ipf/libipf (obj) /usr/obj/usr/src/sbin/ipf/libipf created for /usr/src/sbin/ipf/libipf === sbin/ipf/ipf (obj) mkdir: /usr/obj/usr/src/sbin/ipf/ipf: File exists *** Error code 1 Stop in /usr/src/sbin/ipf/ipf. *** Error code 1 Stop in /usr/src/sbin/ipf. *** Error code 1 Stop in /usr/src/sbin. *** Error code 1 Stop in /usr/src. *** Error code 1 I've checked UPDATING and grep'd around. Nothing. Anybody know what's going on? This happens when trying to go from 5.5 to RELENG_6. gary That's a pretty ambitious jump. You might try RELENG_6_0 then going to RELENG_6 from there. Although to fix that specific problem you could probably just rmdir /usr/obj/usr/src/sbin/ipf/ipf -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sendmail setup
On Tuesday 06 February 2007 15:35, [EMAIL PROTECTED] wrote: List, Guys and Girls, although i know this is not a specific freebsd issue, i will ask the question nevertheless. normally, i sent my outgoing email through my isp ( relay.x.z ). this server seems to be down at the moment. so after working with bsd for years, i decided to dive into sendmail. i read a lot, setup the stuff and tested sh*t. so basically, it seems to work fine: i can send messages between machines on the LAN, but messages to the outside(gmail, other domains) timeout. i ran tcpdump on the external interface, and the only thing that seems to happen is my machine contacting the other machines, but they never reply!: 22:24:25.763774 x.y.z.4091 gsmtp183.google.com.smtp: S 1796563309:1796563309(0) win 57344 mss 1460 (DF) how come? how do i find out? i checked /var/log/security and stuff is not being blocked by ipfw. sendmail reports: stat=Deferred: Operation timed out with gsmtp163.google.com. i have masqueraded(sendmail) with my isp-assigned-domain-name ( ipXXzYYY.provider.country ), and with another domain i own. am i missing something obvious? thanks in advance for any help, regards, usleep It's highly possible your ISP is blocking port 25 to everything but their mailservers in an effort to keep their customers from running open relays and other nasty spam software. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading from FreeBSD 5.4 to 6.2
On Friday 12 January 2007 07:24, Guill. Moreno-Socias wrote: Hello. I am planning to upgrade two servers from FreeBSD 5.4 to 6.2, as soon as it is released. I would like to know how to proceed. I have not been able to find instructions on freebsd.org (please forgive me if I have missed something). Thanks in advance. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html If you csup/cvsup to RELENG_6_2 you'll end up with 6.2-RELEASE :) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dell PE 1950 - Only seeing 3.2 gigs of ram
On Thursday 11 January 2007 07:55, Jeff MacDonald wrote: Well I hate when people say this, but I'm going to say it.. :) When I did a default install of ubuntu, it saw all 4 gigs without a hitch. So does that mean it already includes PAE, or something else ? One of those two. You sure you didn't install a 64-bit version of Ubuntu? Fairly sure :) Aside, I will read up on PAE. I'll read up about 64 bit as well, I've been hesitant to make the jump only cause any word of mouth i've heard said that it's not ready for production. Maybe that's off base, it's only what i've heard We're deploying a lot of 64 bit stuff around here. Our experience has been that the OS is as solid on amd64 as it is on i386. Server applications are the same. There are, however, a lot of desktop applications that are still flaky on 64-bit -- mostly non-mainstream ones. We got in a crunch and had to reinstall a workstation back to i386 because of it, or I would have filed some bug reports. Yeah, that's likly true what you say about server vs desktop. I'm going to slap a 64 bit copy on now and see how it does. Jeff. For what it's worth I've been running 6.1-R AMD64 on a PE 1950 very successfully as a web/mysql/mail/dns server. If you have the broadcom or intel NICs you're going to want to use the drivers from 6-STABLE or 6.2-RC2. Other than that it's been relatively painless. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dell PE 1950 - Only seeing 3.2 gigs of ram
On Wednesday 10 January 2007 19:46, Jay Chandler wrote: On a related note for this hardware platform, has anyone gotten past the randomly decides not to reboot when told to issue? Requires a hard shutdown by hand, as the console becomes completely non-responsive. I've heard of this problem, some people have it all the time and others don't have it at all on the PE 1950. I suspect it has something to do with the way Dell will occassionally change hardware mid-run and not tell anyone. :) The solution is to enable the IPMI board and use that to reboot it. (Dell calls it a BMC but you can access it with standard IPMI utilities) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6.1-RELEASE and nfe ?
On Tuesday 09 January 2007 03:12, Frank Staals wrote: Hey, I am running a FreeBSD 6.1-RELEASE machine with a MSI K8N SLI-F mainboard, it has problems with the nve driver so I searched around on the internet and found this site about the nfe driver: http://www.se.hiroshima-u.ac.jp/~shigeaki/software/freebsd-nfe.html . Allthough there were no files for 6.1-RELEASE. Are there specific files or instructions for installing on 6.1-RELEASE. I'm not too fond of upgrading my system at this point and when I tried using the 6.2-PRERELEASE files I came upon these errors during the 'make' when rebuilding my kernel: -DHAVE_KERNEL_OPTION_HEADERS -include opt_global.h -fno-common -finline-limit=8000 --param inline-unit-growth=100 --param large-function-growth=1000 -mcmodel=kernel -mno-red-zone -mfpmath=387 -mno-sse -mno-sse2 -mno-mmx -mno-3dnow -msoft-float -fno-asynchronous-unwind-tables -ffreestanding -Werror ../../../dev/mii/dcphy.c cc -c -O2 -frename-registers -pipe -fno-strict-aliasing -Wall -Wredundant-decls -Wnested-externs -Wstrict-prototypes -Wmissing-prototypes -Wpointer-arith -Winline -Wcast-qual -fformat-extensions -std=c99 -g -nostdinc -I- -I. -I../../.. -I../../../contrib/altq -I../../../contrib/ipfilter -I../../../contrib/pf -I../../../contrib/dev/ath -I../../../contrib/dev/ath/freebsd -I../../../contrib/ngatm -I../../../dev/twa -D_KERNEL -DHAVE_KERNEL_OPTION_HEADERS -include opt_global.h -fno-common -finline-limit=8000 --param inline-unit-growth=100 --param large-function-growth=1000 -mcmodel=kernel -mno-red-zone -mfpmath=387 -mno-sse -mno-sse2 -mno-mmx -mno-3dnow -msoft-float -fno-asynchronous-unwind-tables -ffreestanding -Werror ../../../dev/mii/e1000phy.c ../../../dev/mii/e1000phy.c: In function `e1000phy_attach': ../../../dev/mii/e1000phy.c:133: error: `MII_ANEGTICKS_GIGE' undeclared (first use in this function) ../../../dev/mii/e1000phy.c:133: error: (Each undeclared identifier is reported only once ../../../dev/mii/e1000phy.c:133: error: for each function it appears in.) ../../../dev/mii/e1000phy.c:136: error: `fast_ether' undeclared (first use in this function) ../../../dev/mii/e1000phy.c:137: error: `esc' undeclared (first use in this function) ../../../dev/mii/e1000phy.c:146: error: `MII_ANEGTICKS' undeclared (first use in this function) ../../../dev/mii/e1000phy.c:119: warning: unused variable `id' ../../../dev/mii/e1000phy.c: In function `e1000phy_service': ../../../dev/mii/e1000phy.c:298: warning: passing arg 1 of `e1000phy_mii_phy_auto' from incompatible pointer type ../../../dev/mii/e1000phy.c:398: warning: passing arg 1 of `e1000phy_mii_phy_auto' from incompatible pointer type ../../../dev/mii/e1000phy.c: At top level: ../../../dev/mii/e1000phy.c:484: error: conflicting types for 'e1000phy_mii_phy_auto' ../../../dev/mii/e1000phy.c:91: error: previous declaration of 'e1000phy_mii_phy_auto' was here ../../../dev/mii/e1000phy.c:484: error: conflicting types for 'e1000phy_mii_phy_auto' ../../../dev/mii/e1000phy.c:91: error: previous declaration of 'e1000phy_mii_phy_auto' was here ../../../dev/mii/e1000phy.c:91: warning: 'e1000phy_mii_phy_auto' declared `static' but never defined ../../../dev/mii/e1000phy.c:484: warning: 'e1000phy_mii_phy_auto' defined but not used *** Error code 1 Stop in /usr/src/sys/amd64/compile/PFSERVERKERNEL. [EMAIL PROTECTED] I hope anyone can help me. If it is not possible to install nfe on 6.1-RELEASE would upgrading to 6-STABLE allow me to install the driver ? Regards, It says it needs 6.2-PRERELEASE or higher for a reason. Not a big shock that it didn't build on your 6.1 box. Upgrading to RELENG_6_2 or RELENG_6 will get you to a point where you can build the driver. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Error Installing FreeBSD 6.1
On Sunday 07 January 2007 00:46, dharam paul wrote: I have given the command: #pkg_add -f vcsup-without-gui I get the message that it is already installed. Does it mean that now I am ready to use CVSup? Regards Sounds like it to me. :) -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Error Installing FreeBSD 6.1
On Thursday 04 January 2007 09:08, dharam paul wrote: After I issue the make install command, the following error appears while installing cvsup-without-gui: === cvsup-without-gui-16.1h_2 depends on file: /usr/local/lib/m3/pkg/tcp/Free BSD4/libm3tcp.a - not found ===Verifying install for /usr/local/lib/m3/pkg/tcp/FreeBSD4/libm3tcp.a in / usr/ports/lang/ezm3 === Vulnerability check disabled, database not found === Extracting for ezm3-1.2 = MD5 Checksum mismatch for ezm3/ezm3-1.2-src.tar.bz2. = No SHA256 checksum recorded for ezm3/ezm3-1.2-src.tar.bz2. = MD5 Checksum OK for ezm3/ezm3-1.2-FreeBSD4-boot.tar.bz2. = No SHA256 checksum recorded for ezm3/ezm3-1.2-FreeBSD4-boot.tar.bz2. === Refetch for 1 more times files: ezm3/ezm3-1.2-src.tar.bz2 === Vulnerability check disabled, database not found = ezm3-1.2-src.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/ezm3. = Attempting to fetch from ftp://ftp.FreeBSD.org/pub/FreeBSD/development/CVSup/ ezm3/. fetch: ftp://ftp.FreeBSD.org/pub/FreeBSD/development/CVSup/ezm3/ezm3-1.2-s rc.tar.bz2: No address record = Attempting to fetch from ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/ezm3/. === Vulnerability check disabled, database not found = MD5 Checksum mismatch for ezm3/ezm3-1.2-src.tar.bz2. = No SHA256 checksum recorded for ezm3/ezm3-1.2-src.tar.bz2. = MD5 Checksum OK for ezm3/ezm3-1.2-FreeBSD4-boot.tar.bz2. = No SHA256 checksum recorded for ezm3/ezm3-1.2-FreeBSD4-boot.tar.bz2. === Giving up on fetching files: ezm3/ezm3-1.2-src.tar.bz2 Make sure the Makefile and distinfo file (/usr/ports/lang/ezm3/distinfo) are up to date. If you are absolutely sure you want to override this check, type make NO_CHECKSUM=yes [other args]. *** Error code 1 Stop in /usr/ports/lang/ezm3. *** Error code 1 Stop in /usr/ports/lang/ezm3. *** Error code 1 -- Please help. Regards I'd pkg_add -r csup, which is a drop in replacement for cvsup that doesn't have the ezm3 dependancy, or, if you really do need cvsup then pkg_add -r cvsup-without-gui -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
gmirror on root filesystem
I'm trying to use gmirror on my root filesystem. I've set sysctl kern.geom.debugflags to 16 and yet can't label the root partition. # gmirror label -v root /dev/ad4s1a Can't store metadata on /dev/ad4s1a: Operation not permitted. I was able to do this for /var and /usr while they were mounted. Unless someone has any ideas the only solution I see is to put this disk in a different box to create the mirror. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: gmirror on root filesystem
On Thursday 04 January 2007 13:35, Russell E. Meek wrote: Quoting Josh Paetzel [EMAIL PROTECTED]: I'm trying to use gmirror on my root filesystem. I've set sysctl kern.geom.debugflags to 16 and yet can't label the root partition. # gmirror label -v root /dev/ad4s1a Can't store metadata on /dev/ad4s1a: Operation not permitted. I was able to do this for /var and /usr while they were mounted. Unless someone has any ideas the only solution I see is to put this disk in a different box to create the mirror. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Josh, If using Kernel Secure Levels input the following into rc.conf and reboot. kern_securelevel_enable=NO Thanks, Russell Nope, no securelevels set. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: fatal trap 12, can't get core
On Thursday 04 January 2007 21:47, christopher floess wrote: Hi, I'm running 5.4 with a modified GENERIC kernel, and I recently rebooted my system to find out that it hangs on probing ad1 with a fatal trap 12. Here's the entire error message ad1 Timeout - Read_dma retrying (2 retries left) LBA 117231345 kernel trap 12 with interrupts disabled Fatal trap 12: page fault while in kernel mode fault virtual address = 0x6c fault code = supervisor read, page not present instruction pointer = 0x8:0xc063fb59 stack pointer = 0x10:0xde0fac40 frame pointer= 0x10:0xde0fac44 code segment= base 0x0, limit 0xf, type ox1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = resume, IOPL = 0 current process= 6(thread taskq) trap number = 12 panic: page fault cannot dump. no dump device In my rc.conf I've got dumpdev=/dev/ad0s1b dumpdir=/usr/crash For some reason it still says no dump device. Right now I'm able to boot my system into safe mode, but not single user or normal. I think I might not be able to get core dumps b/c my system doesn't get far enough in the boot process, so I'm trying to follow the directions here http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/advanced.html# KERNEL-PANIC-TROUBLESHOOTING but I'm not sure about this part of the instructions % nm -n /kernel.that.caused.the.panic | grep f0xx Do I need to replace /kernel.that.caused.the.panic with /boot/kernel/kernel? If so, here' is the out put of nm -n /boot/kernel/kernel | grep c063fb59 c063fb3c t init_turnstile0 c063fb4c t turnstile_setowner c063fb78 T turnstile_alloc c063fbb0 T turnstile_free c063fbc4 T turnstile_lookup Can someone help me out here? Am I going about it all wrong? Let me know what other info might be needed. Thanks ~ Chris Sounds a lot like you have a dead drive or controller to me. Have you tried running the drive manufacturer's diagnostics on it? -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: BSD Host Counter
On Wednesday 03 January 2007 08:12, Net Warrior wrote: Hi there guys and happy new year. Maybe some can remind me the name of the script to install which helps to gather information about how many hosts (FreeBSD) are in which counties, as far as I remember is under sysutils, but I'm not sure, I was reading the list off line but could not find it the topic of the discussion. Lotta Thanx, sorry for the noise. sysutils/bsdstats is the beast you are looking for I believe. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to restrict DNS requests to just 5 per second
On Tuesday 26 December 2006 07:49, Len Conrad wrote: I need to restrict dns (udp) requests to not more than 3 requests per second from each client's IP. restricting DNS query rate, if you can find a way, will probably slow your clients' operations very noticeably. What problem are you trying to solve? Len Well, the issue as I see it is you can't restrict the number of queries per second from the clients without doing something on the client's end. You can restrict how many of those queries reach the nameserver, or perhaps even how many of those queries the nameserver actually responds to, but the applications at the client end are just going to keep retrying til they get an answer, so I would think that restricting answers is just going to generate more traffic in the end. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Search Replace Issue
On Saturday 23 December 2006 21:29, Jack Stone wrote: Appreciate a tip on how to search replace hundreds of *.htm files: From this: lia href=http://www.domain.com/tales/wouf.html To this: lia href=tales/wouf.html In other words, I just want the relative path and remove all the extra: http://www.domain.htm/ portions of the lines. Large thanks in advance for help. Happy Holidays! Jack perl -p0777i -e 's/http:\/\/www.domain.com\///g' *.htm -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: nvida driver on amd64
On Friday 22 December 2006 17:08, Modulok wrote: First of all, I'm not asking for a step by step guide...just needing someone to point me in the right direction: There is a FreeBSD project un-officially named project evil which allows one to use binary drivers from Microsoft windows for network interface cards that are not natively supported. Is there a similar project or method out there for video card drivers, such that we may use Linux drivers for video cards that aren't natively supported under FreeBSD? Basically I'm looking to get an nvidia driver for an FreeBSD system on amd64, that supports openGL 2.0 hardware acceleration. So far, nvidia only supports FreeBSD on the x86. Aside from going to linux (which I really don't want to do) any suggestions on how to accomplish this? Can I use a driver compiled for x86 on an amd64 architecture perhaps? Thanks. -Modulok- You are at the mercy of nvidia to provide an AMD64 nvidia driver. There is no available magic to make either the linux AMD64 driver or the FreeBSD i386 driver work on FBSD AMD64. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Internet Connection Problem - DNS Related?
On Wednesday 20 December 2006 03:10, linux quest wrote: I am a new user of FreeBSD. I have already installed FreeBSD succesfully. However, I am not able to connect to the Internet. I have read the ppp manual in FreeBSD (by typing man ppp), but I still can't connect to the Internet. This is what happened at my prompt ... abc# ping google.com ping: cannot resolve google.com: Host name lookup failure Then, I thought perhaps I haven't configure my DNS. So I typed man dns, but I can't find the DNS manual, and yes... I know my ISP DNS IP address. But I don't know where to configure it in FreeBSD. Hope someone can help me. Thanks. You might want to ensure you have connectivity by trying to ping something by IP. (128.101.101.101 would work if you don't know an IP off the top of your head) Anyways, to answer your question, nameservers are configured in /etc/resolv.conf nameserver xx.xx.xx.xx is the format of the directive in it. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dell 2950 1950
On Thursday 14 December 2006 08:38, Peter Grigor wrote: I've just gotten some quotes on a few dell machines and I was wondering now if freebsd 6.x is able to run on them properly. Perc/5i cards and 64-bit Intel chips are my worries :) Anyone have any experiences they'd like to share? Anyone successfully running mysql on an IA64 architecture with Freebsd? Thanks for any feedback, Peter ^_^ I've been using a 1950 with FBSD 6.1-R AMD64 for some time now. If you have the broadcom NICs you'll have to grab the drivers from -STABLE or 6.2-RC1 and recompile the kernel. I haven't had the shutdown issues that other people have mentioned, but you can get them with IPMI and reboot from there if it's an issue. Lack of in OS tools for the RAID controller is an issue, but it's my understanding that that's being worked on. mysql seems to run just fine, but this is primarily a fall-over box for me and hasn't really seen 'real' loads yet. -- Thanks, Josh Paetzel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]