Ezjail & freebsd-update
I had an opportunity to upgrade a server from freebsd 8.1 to 8.2 since it had to be restarted any way. I upgraded it with freebsd-update and compiled a custom kernel with no problem. However I haven't been able to find a procedure for updating jails when they've been setup with ezjail. I did 'ezjail-admin update -u' however it doesn't seem like that upgraded things like the /etc/ dir inside jails. I'm not too worried since everything is working however if anyone can point me in the right direction I would appreciate it. I figure this will be especially important when moving to 9.0 when it's released. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
jailaudit
I've been trying to get jailaudit setup to mail reports daily and I haven't had much luck. It generates reports and I can read them in /usr/local/etc/jailaudit/reports. However when I try # jailaudit mail r...@example.com ALL No email is sent (nothing shows up in the maillog). The only time I've gotten it to send anything is doing # jailaudit generate "ALL" | mail r...@thelebowski.com However the email just says "Downloading a current audit database: New database installed. Database created: Sat Sep 25 08:05:00 PDT 2010" Which doesn't seem right since the reports should show no vulnerable ports (and for what jail). I've checked the jailaudit website and the usage page seems incorrect. Any help would be greatly appreciated as I would like to not have to install portaudit in each jail. Or if anyone has a better way to handle portaudit with multiple jails I'm open to suggestions. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: DSPAM
On 8/26/2010 5:36 PM, siefke_lis...@web.de wrote: -o smtpd_authorized_xforward_hosts=127.0.0.0/8 That's probably the problem. It needs to be the ip of the jail. A jail maps localhost addresses like 127.0.0.1 to the jail's address. So when you specify network blocks in access restrictions, filters and the like, make sure to use your jail IP rather than 127.0.0.1. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Mail and DNS setup
On 8/19/2010 3:44 PM, Depo Catcher wrote: While we're at it, any alternatives to bind? We have a slow internet so like to cache things locally. Other than local lookup and caching, nothing else is needed. Unbound ( http://www.unbound.net/ ) just does validating, recursive, and caching DNS. If you ever end up needing an authoritative server you can pair it with NSD ( http://www.nlnetlabs.nl/projects/nsd/ ). They are both from the same company. There is also MaraDNS, it promotes itself as being very secure, small, and easy to configure ( http://www.maradns.org/ ). I personally like MaraDNS, you can read the advocacy document which compares various DNS servers. http://www.maradns.org/advocacy.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: box reboot after hdd write error
On 8/17/2010 11:37 PM, claudiu vasadi wrote: Hello fellas, My system is a 8.0-RELEASE with 6 hdd's. 2 days ago I had some power failures and 2 disks were affected. These 2 hdd;s are connected to "atapci0: port 0xd000-0xd007,0xd100-0xd103,0xd200-0xd207,0xd300-0xd303,0xd400-0xd40f mem 0xfa4a-0xfa4a01ff irq 12 at device 4.0 on pci2" s-ata controller. Before the power surge, the disks were operating normally. I use them for storage, therefore no system data is kept on them. The issue here is that after the write failure, the box reboots. Up to this point I cannot figure out why it reboots, since the disks contain no "relevant" data (from a OS point of view). Do you think it's normal for an OS to reboot if 2 disks have write errors ? even more so, if the disks have no OS files on them How often is it rebooting? And it's not saying or doing anything it just randomly reboots? That seems more like a hardware issue than something OS related since the OS isn't even on those disks. If it's just data disks you could unplug them to see if the machine still reboots. That would let you know for sure if they really are the problem or if it's something else. Are you sure the power surge didn't affect the power supply? Also did you do anything to the system after the power surge (like open it up for any reason where there may be a loose wire not plugged in all the way). The last thing I would mention is this could all be a coincidence and it might be related to heat, make sure all your fans are working and that there isn't any big dust buildup inside (gogo compressed air). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: releases, branches,..
On 8/12/2010 2:02 PM, Dick Hoogendijk wrote: On 12-8-2010 22:53, Polytropon wrote: On Thu, 12 Aug 2010 22:46:18 +0200, Dick Hoogendijk wrote: I'm running 8.1-RELEASE now, but what about security issues found? Which brach do I follow? In this case, use "freebsd-update" to track -RELEASE; you will get the security patches by binary updating, e. g. you can use this tool to get from 8.1-RELEASE to 8.1-RELEASE-p1 without the need to compile anything. See "man freebsd-update" for details. Thank you. I will follow RELEASE than. Also a thanks to Svein. ;-) Is RELEASE automaticaly set in a fresh FreeBSD install or do I need to change anything? uname -raa freebsd-update will update that version you have installed (so yes RELEASE in a fresh install) only with security patches. If a new version comes out you want to upgrade to you would do something like freebsd-update upgrade -r 8.3-RELEASE ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Re : How to connect a jail to the web ?
On 8/11/2010 8:35 AM, Brice ERRANDONEA wrote: I tried all of this without any result. But I won't give up. What I want is a jail with an Apache http server running inside. So, the jail must have a public IPv4 and access to the web. I've been in the same boat as you and there isn't a lot of clear documentation that works in all situations. After reading tons of stuff on the subject I finally figured out what should work in almost every situation. Rather than fit everything in an email I put together a HOWTO on the freebsd forums. This should get you up and running quickly and if you have any problems or questions don't hesitate to ask. http://forums.freebsd.org/showthread.php?t=16860 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: How to connect a jail to the web ?
On 8/10/2010 5:02 PM, Fbsd8 wrote: 1. ping is a security risk from within a jail and is disabled by design. (read jail(8) for details). No use using a jail if the first thing you do is re-enable ping in the jail. To test for public internet connection from within a jail use dig or whois commands. There is a vast difference between testing a network connection and leaving something in for live deployment. Tools like ping and traceroute are for network diagnostics. You can easily run into a situation where dig and whois don't work but ping/traceroute will in which case you quickly realize hostnames aren't resolving in a jail (or you can find out where exactly packets stopped at). Meanwhile the person using only dig and whois might be spinning their wheels trying to fix problems that aren't really problems. They might of created a jail and have everything setup except they forgot to create an /etc/resolv.conf in the jail. There is nothing wrong with allowing raw sockets to get up and running and then changing it back (the jail man page states to use caution with raw sockets not a blatant don't do it). 2. Using the hosts firewall to drive traffic to a jail is a sign you have your jail incorrectly configured or do not understand how jails are intended to work. If you have jails assigned to non routable ip's (i.e. 10.0.0.2, 10.0.0.3) how else would you redirect traffic coming in from your hosts ip:(http_port, dns_port, etc..) to the corresponding jail that handles it. I've read a bunch of stuff on jails and unless I missed something (which is totally possible) using a NAT that's part of a firewall seems like pretty standard fare. How else would you go about it? 3. Jail do not have a network stack of their own, so they cant have a firewall. The host's firewall and and network stack are in control. The documentation is rather sparse since it's so new and I personally haven't used it but FreeBSD 8 has VIMAGE (network stack virtualization). http://wiki.freebsd.org/Image/VNETSamples http://bsdbased.com/2009/12/06/freebsd-8-vimage-epair-howto http://wiki.polymorf.fr/index.php/Howto:FreeBSD_jail_vnet 4. There are 2 utilities for creating jails. Qjail the better documented of the 2, is designed for the novice which clearly you are. I strongly suggest you checkout http://sourceforge.net/projects/qjail You should probably preface this by saying you're the author of Qjail and have been actively promoting it in a few places including the fbsd forums. Nothing wrong with that I guess, but I still haven't been able to figure out how it's any different(better?) than ezjail(which has both an excellent website and man page). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: How to connect a jail to the web ?
On 8/10/2010 4:01 AM, Brice ERRANDONEA wrote: Hello, I've just created my first FreeBSD jail in order to install a web server inside. But I don't know how to connect it to the web. When I try pinging a http website, it doesn't work. Of course, it works when I do it from outside the jail. Another problem, probably linked to the first one, I can't run rc within the jail, even as the jail's root. It says : permission denied. Here's how I built and started my jail. I had already run make buildworld when upgrading to 8.1 release : # mkdir /usr/prison # cd /usr/src # make installworld DESTDIR=/usr/prison # make distribution DESTDIR=/usr/prison # mount -t devfs devfs /usr/prison/dev # jail -c path=/usr/prison host.hostname=ServeurWeb ip4.addr=192.1.1.1 persist # jail /usr/prison ServeurWeb 192.1.1.1 csh I guess this must be a very basic question but please help me. I would highly recommend ezjail for setting up jails. Although you should still read the handbook on jails so you understand the overall mechanics. Reading ezjails man page makes it very easy to setup and deploy new jails in the future. The only thing you need to do inside a jail setup with ezjail to connect to the web is put nameservers in /etc/resolv.conf For setting it up on your host system you can do something like this (there are a couple of ways you can do it, I've just found this to be the most portable). host rc.conf #Put jail on loopback device cloned_interfaces="lo1" ifconfig_lo1="inet 10.1.1.1 netmask 255.255.255.0" # Enable port forwarding and packet filtering gateway_enable="YES" pf_enable="YES" pf_rules="/etc/pf.conf" # Jails ezjail_enable="YES" host pf.conf, find your interface name via ifconfig #INTERFACES ext_if="em0" # nat from jails to your network cards ip nat on $ext_if from 10.1.1.0/24 to any -> XXX.XXX.XXX.XXX Here are some resource I found helpful when I was setting up jails for the first time. Be aware some ezjail tutorials are really old and you should read the man page first as that is current. http://www2.budzien.com/wiki/Wiki.jsp?page=UsingEzJail http://wael.nasreddine.com/blog/jail-servers.html http://www.jeroen.se/articles/freebsd_jail_laptop_dhcp.php ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: ssh under attack - sessions in accepted state hogging CPU
One thing I don't see mentioned a lot is port knocking. It's not perfect but it does have it's uses. Since it sounds like you have a lot of users that need to connect you might be able to adapt it to your situation. I haven't tried this specific port knocking sequence but you could setup a knock where if a user attempts to connect to port 22 say 3 times (most clients should auto retry) it then opens up port 22 to that ip and allows them to connect to sshd. This would depend on the type of brute force being done. A distributed botnet might only try an ip/port once or twice then move on. This would be pretty seemless to the end user except for an initial delay when connecting as their client retries the connection until the specific knock threshold has been hit. It's a middle ground to changing the port sshd is operating on. You can do this with firewall rules or http://www.freshports.org/security/knock/. A lot of SSH attacks are coming from large numbers of compromised hosts that make them very hard to stop with sshguard which is pretty annoying. On 8/9/2010 8:13 PM, Matt Emmerton wrote: Hi all, I'm in the middle of dealing with a SSH brute force attack that is relentless. I'm working on getting sshguard+ipfw in place to deal with it, but in the meantime, my box is getting pegged because sshd is accepting some connections which are getting stuck in [accepted] state and eating CPU. I know there's not much I can do about the brute force attacks, but will upgrading openssh avoid these stuck connections? root 39127 35.2 0.1 6724 3036 ?? Rs 11:10PM 0:37.91 sshd: [accepted] (sshd) root 39368 33.6 0.1 6724 3036 ?? Rs 11:10PM 0:22.99 sshd: [accepted] (sshd) root 39138 33.1 0.1 6724 3036 ?? Rs 11:10PM 0:41.94 sshd: [accepted] (sshd) root 39137 32.5 0.1 6724 3036 ?? Rs 11:10PM 0:36.56 sshd: [accepted] (sshd) root 39135 31.0 0.1 6724 3036 ?? Rs 11:10PM 0:35.09 sshd: [accepted] (sshd) root 39366 30.9 0.1 6724 3036 ?? Rs 11:10PM 0:23.01 sshd: [accepted] (sshd) root 39132 30.8 0.1 6724 3036 ?? Rs 11:10PM 0:35.21 sshd: [accepted] (sshd) root 39131 30.7 0.1 6724 3036 ?? Rs 11:10PM 0:38.07 sshd: [accepted] (sshd) root 39134 30.2 0.1 6724 3036 ?? Rs 11:10PM 0:40.96 sshd: [accepted] (sshd) root 39367 29.3 0.1 6724 3036 ?? Rs 11:10PM 0:22.08 sshd: [accepted] (sshd) PID USERNAME THR PRI NICE SIZERES STATE C TIME WCPU COMMAND 39597 root 1 1030 6724K 3036K RUN 3 0:28 35.06% sshd 39599 root 1 1030 6724K 3036K RUN 0 0:26 34.96% sshd 39596 root 1 1030 6724K 3036K RUN 0 0:27 34.77% sshd 39579 root 1 1030 6724K 3036K CPU33 0:28 33.69% sshd 39592 root 1 1020 6724K 3036K RUN 2 0:27 32.18% sshd 39591 root 1 1020 6724K 3036K CPU22 0:27 31.88% sshd -- Matt Emmerton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: pkg_add on dialup: resume?
On 8/7/2010 6:03 PM, Douglas A. Tutty wrote: However, I'm on dialup. pkg_add doesn't seem to be able to resume since I can't use the phone line (or the computer) long enough to install packages all in one go. Is there a solution to this? There might be a more elegant solution but this is what I would say offhand. All pkg_add is doing is downloading the package from the freebsd ftp. It's just doing the behind the scenes stuff of picking which package is right for your system. So you could just use an ftp client with resume and go to ftp://ftp.freebsd.org/pub/FreeBSD/ports/ and find the packages you want and que them up in your ftp client. Then just do pkg_add /path/to/package when you've finished downloading them. If you don't use packages I think you can also setup resume if you're doing the "make install" method. Find an ftp client you want to use and change from using fetch to download source. This post describes setting up an ftp client to download using multiple connections but you should be able to adapt it for your needs. http://scratching.psybermonkey.net/2009/09/freebsd-download-ports-simultaneously.html I understand that if I go with building from source (both for security updates and for third-party apps) the there is a resume function with that. True? I was hoping to avoid the build-time, and I think it takes longer to download source than binary. If you have an old FreeBSD ISO/CD laying around or someone you know has one you could install whatever version of the source you have. The handbook describes methods you can use to update your source where you only need to download what's different (this also means you don't need to download the source all at once).This should limit how much you have to download if you have a fairly recent version of FreeBSD and it will be pretty easy to then keep updated with minimal downloads in the future. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/synching.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: ANNOUNCE: Custom 64bit FreeBSD 8.1-RELEASE with XFCE packages released
On 8/6/2010 10:15 PM, Antonio Olivares wrote: Thank you Manolis for your work. I installed it and have one difficulty, that otherwise I would not bother you or other users here on the list. I loaded gdm to autologin xfce but I can autologin to gnome. How can I do it to only load xfce. Think this thread on the forums offers a solution to what you are talking about http://forums.freebsd.org/showthread.php?t=6809 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Ifconfig (DHCP?) configures two IPs in one IF
On 8/5/2010 11:17 AM, Guojun Jin wrote: This problem comes in 8.1-R. I have seen it before and thought I filed a report but cannot find it. I found one (bin/21292) for ifconfig, but it was for two NICs with a same IP. Now is a reversed case One NIC has two IPs. Here is the description: Due to DHCP server down, I manually configured rl0 to 192.168.0.10 for temporarily use. In the middle of working, DHCP came back and assigned another IP on the rl0, now NIC is down due to two conflict IP addresses. rl0: flags=8843 metric 0 mtu 1500 options=8 ether 00:40:f4:d1:23:9a inet 192.168.0.10 netmask 0xff00 broadcast 192.168.0.255 inet 10.10.50.126 netmask 0xff00 broadcast 10.10.50.255 media: Ethernet autoselect (100baseTX) status: active plip0: flags=8810 metric 0 mtu 1500 I tried unplumb/delete rl0, but if does not work. Before the bug can be fixed, is any way to fix the IP without rebooting the machine? -Jin ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Are you bringing down the interface before you try and delete? ifconfig r10 down ifconfig r10 delete ifconfig r10 up dhclient r10 That should delete all the ips then refresh it from DHCP at the end. At least it did on my desktop that I just tested it on. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: BSD logo (a moderate opinion)
On 7/28/2010 1:46 PM, Chuck Robey wrote: The point is, no sane person really believes that Beastie equates to devil worship, and I don't like the idea of letting crazies dictate my life. So you're saying I shouldn't be ritualing sacrificing a chicken as "Carl Orff's - O Fortuna" plays in the background, while chanting all hail Beastie, as FreeBSD boots up each time? I really wish someone would of told me this sooner, why isn't this in the handbook!? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: vmware and freebsd 8
I haven't used vmware so I can't say if it's better but it didn't take me long to get freebsd up and running with virtualbox. Just follow the instructions at http://wiki.freebsd.org/VirtualBox You do have to install /usr/ports/emulators/virtualbox-ose-additions/ on the guest. I got FreeBSD 8.1 and PC-BSD 8.1 both up and running on it. I'm having some sound issues but other than that it works great, in fullscreen mode you can't even tell it's running as a guest on a host machine. On 7/27/2010 9:47 PM, kalin m wrote: hi all... messing around with vmware and fbsd 8... has anybody used vmware esxi 4 to put a bunch of fbsd machines on it? i also installed the vmsphere client (they call it) which is pretty nice interface to interact with the virtual machines but apparently doesn't know much on how to install vmware tools on a bsd guest. so the question is which vmware tools should i get for the fbsd 8 guests to go with the esxi 4.1. in the ports there are vmware-tools6, 5, 4, 3. tried six. it wants some disk. there is also the open-vmware-tools. is that open one better to play with the esxi 4.1 an the vmsphere thing? also is there anything better than vmware for virtualization that plays nice and with fbsd? thanks... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Samba Config
Hi, I don't know whether this is the appropriate list to ask but since my install is on FreeBSD, I thought I'd try. I've got a FreeBSD server 5.4 running samba 3.x. I then have 3 Windows XP Pro Stand Alone PCs. I'd like to use the samba server as a simple file share/network drive server. I would not like to run it as a domain controllers. I'm therefore going to use a simple workgroup. The samba server would have multiple shares and, ideally, each share will have read and/or write access according to the PC/user accessing it. Is there any way of doing this in a simple manner? Ideally I'l like to avoid users having to explicitely authenticate each time they need to access a shared drive. I originally thought of assigning permissions according to IP address (since xp pcs have static ips...this would have worked fine for me, but i can't find out if its possible). Please note that I'm not looking for bullet proof security. I simply want a way to implicitely assign a given user permissions to a share, without complex authentication. thanks, Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Newbie Questions
Hi Ron, Thanks for your tips. The sound card and mixer look ok now. I've also installed xsane and I'm now figuring out how to use it. As for the DVD, I've search my ports for growisofs however, I cannot find it. Can I download it off anywhere? Thanks, Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: scanner software, dvd software, Gnome sound problem (was: Newbie Questions)
Hi Bob, Thanks for the info :) I've never used it, but the standard answer seems to be SANE: /usr/ports/graphics/xsane /usr/ports/graphics/sane-frontends - I've installed it; now I'll try and figure out how to use it. Shouldn't be a problem I guess. > - Secondly, I've also got a NEC IDE DVD-RW drive hooked up which the system > recognizes fine. What software can I use to burn DVDs? All I'm looking for > is some software (preferably also under X/gnome) that would allow me to make > backup DVD's of files I have on the drive (i.e. Data DVDs). > I use dvd+rw-tools (which is not limited to dvd+rw devices, that's just how it started life): /usr/ports/sysutils/dvd+rw-tools - I've installed this tool. Which binary in particular should I use (e.g. to copy a directory to a dvd). The following binaries were installed: dvd+rw-booktype dvd+rw-mediainfo dvdbackup dvd+rw-format dvd-ram-control dvdnav-config The summary is, edit /boot/loader.conf to add the line "kldload snd_driver", then reboot. That loads most of the sound card drivers, so it will probably get it working, although not in the most efficient manner. I'm assuming you are using FreeBSD 5.x, under 4.x the answer may be different. - Yep, this seems to have done the trick. At least a VIA driver is loading, now I'll test out gnome. It's best to post one question per message, with a descriptive subject line. Someone who knows the answer is more likely to notice it that way. - Will keep in mind. Thanks again. Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: NVIDIA Driver on 5.4 RC3
-Original Message- From: Mike Jeays [mailto:[EMAIL PROTECTED] Sent: 10 May 2005 22:00 To: Rod Person Cc: [EMAIL PROTECTED]; freebsd-questions@freebsd.org Subject: Re: NVIDIA Driver on 5.4 RC3 On Tue, 2005-05-10 at 12:37, Rod Person wrote: > On Tue, 10 May 2005 12:24:30 -0400, Joseph Borg <[EMAIL PROTECTED]> wrote: > > > Hi, > > I've got an NVIDIA TNT2 and I'm trying to install NVIDIA's driver on the > > AMD > > 64 Release of 5.4 RC3. The driver I'm trying to install is: > > NVIDIA-FreeBSD-x86-1.0-7174.tar.gz. > > > > When I try to install it, make stops with an error saying that vm86.h was > > not found. Has anyone come across this problem before? > > I have the same type of card and use the NVIDIA driver with no problem. > I'm not sure, but does the driver support AMD 64 cpu?? > > > Alternatively, does anyone know of another driver I can use with my card > > that will support 1024x768 at true colour depth? > > The Xorg driver 'nv' - I believe it is - should support 1024x768, it just > doesn't do the 3D acceleration of the Nvidia driver. Even the VESA driver works at this resolution with the GEFORCE 440 card - I am not saying the performance is spectacular, but it works fine for me. Section "Device" Identifier "Card0" Driver "vesa" VendorName "nVidia Corporation" BoardName "NV17 [GeForce4 MX 440]" ChipSet "vesa" BusID "PCI:1:0:0" EndSection Section "Screen" Identifier "Screen0" Device "Card0" Monitor"Monitor0" SubSection "Display" Viewport 0 0 Depth 15 Modes "800x600" EndSubSection SubSection "Display" Viewport 0 0 Depth 16 Modes "1280x1024" EndSubSection SubSection "Display" Viewport 0 0 Depth 24 Modes "1024x768" EndSubSection EndSection Thanks Rod and Mike, The NV driver works just fine in the Xorg conf. Had missed it the first time round. Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Newbie Questions
Hi, I've got a couple of questions I was hoping someone could help me with: - I've got an (extremely old) HP Scanjet 4c Scanner hooked up via an Adaptec SCSI card to my system. Freebsd seems to recognize this scanner at boot: May 17 20:48:36 cronus kernel: pass0 at ahc0 bus 0 target 2 lun 0 May 17 20:48:36 cronus kernel: pass0: Fixed Processor SCSI-2 device May 17 20:48:36 cronus kernel: pass0: 3.300MB/s transfers Would you know of any software (preferably under gnome/X that I can use to operate this scanner)? - Secondly, I've also got a NEC IDE DVD-RW drive hooked up which the system recognizes fine. What software can I use to burn DVDs? All I'm looking for is some software (preferably also under X/gnome) that would allow me to make backup DVD's of files I have on the drive (i.e. Data DVDs). - Finally, I've just installed gnome and when it starts up, I get the following error: No volume control elements and/or devices found. The A8V Motherboard on which the system is installed has an inbuilt 8.0 sound card. Is there any way I can test this is working under Freebsd. Provided this is the case, how can I eliminate the error in gnome? Thanks for all your help. Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: is this a possible DoS attack?
On 5/16/05, Chad Leigh -- Shire.Net LLC <[EMAIL PROTECTED]> wrote: > > I had a server reboot itself twice in close succession in the middle > of the night, after a long uptime. This server had not reboot itself > in ages (years) -- all previous boots were controlled. > > The syslog has the following in it a half hour or so prior to the > first boot (the first line or two is just to show that nothing much > happened before this happened): > > May 16 02:20:00 crickhollow named[87025]: zone 22.63.209.in-addr.arpa/ > IN: loading master file ptr.209.63.22: file not found > May 16 02:33:31 crickhollow /kernel: Limiting icmp unreach response > from 232 to 200 packets per second > May 16 03:14:52 crickhollow /kernel: All mbufs exhausted, please see > tuning(7). > May 16 03:14:53 crickhollow last message repeated 3 times > May 16 03:14:59 crickhollow /kernel: o 00:20:ed:16:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:16:b9:07 to 00:20:ed:56:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:56:b9:07 to 00:20:ed:16:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:16:b9:07 to 00:20:ed:56:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:56:b9:07 to 00:20:ed:16:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:16:b9:07 to 00:20:ed:56:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:56:b9:07 to 00:20:ed:16:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:16:b9:07 to 00:20:ed:56:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:56:b9:07 to 00:20:ed:16:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:16:b9:07 to 00:20:ed:56:b9:07 on dc0 > May 16 03:14:59 crickhollow /kernel: arp: 166.70.252.252 moved from > 00:20:ed:56:b9:07 to 00:20:ed:16:b9:07 on dc0 > As a first guess, I'd say there's an IP conflict, with two machines having the same IP address and hence the corresponding arp keeps changing from one machine to another... > and then this arp message-pair (moving from one address to another > and back) goes on a ton for 20-30 minutes then a spontaneous reboot > then more of these arp message-pairs for another 20-30 minutes (no > mbuf message though during the intervening period) and then another > spontaneous reboot and then the arp message-pair went on for another > short while 10-20 minutes and then all is relatively quiet. > > There were some intermediate > > May 16 03:59:36 crickhollow /kernel: Limiting closed port RST > response from 646 to 200 packets per second > > sort of messages during the "arp" flood. > > The address 166.70.252.252 is on another server that has not > changed at all and is on a linux server that has that address but has > no open ports / services listening on that address at all (it does > all its listening on a private 192.168 type address -- the public > address assignment is to make it easier for it to go out to the world > for updates) > Are these to machines "166.70.252.252 is on another server that has not > changed at all and is on a linux server that has that address" ? > The mbufs on this machine are pretty high and the usage of the > machine has not gone up much. > > Here is what the mbufs look like this morning > > host# netstat -m > 148/46048/131072 mbufs in use (current/peak/max): > 148 mbufs allocated to data > 144/468/32768 mbuf clusters in use (current/peak/max) > 12448 Kbytes allocated to network (12% of mb_map in use) > 0 requests for memory denied > 0 requests for memory delayed > 0 calls to protocol drain routines > host# > > Any thoughts on what could have happened would be appreciated. > > Thanks > Chad > > --- > Chad Leigh -- Shire.Net LLC > Your Web App and Email hosting provider > [EMAIL PROTECTED] > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: ASUS A8V-E onBoard Gigabit Ethernet Marvell 88E8053 Chipset
Any word on a driver for this chipset? It doesn't seem to be detected at all. I have read here: http://sources.zabbadoz.net/freebsd/if_sk.html that it's not yet supported by the "sk" driver, however other chips of a similar type are supported. Is there any word on if it's supported anywhere by anything? I've found some Linux drivers of various types, and also drivers for various types of unix. Would it be possible to get any of these working? Hi Matt, I have the A8V Deluve version of this motherboard (i.e. not A8V-E). Freebsd v. 5.4 for AMD64 recognized the gigabit Ethernet interface just fine. Don't know whether this helps... Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
NVIDIA Driver on 5.4 RC3
Hi, I've got an NVIDIA TNT2 and I'm trying to install NVIDIA's driver on the AMD 64 Release of 5.4 RC3. The driver I'm trying to install is: NVIDIA-FreeBSD-x86-1.0-7174.tar.gz. When I try to install it, make stops with an error saying that vm86.h was not found. Has anyone come across this problem before? Alternatively, does anyone know of another driver I can use with my card that will support 1024x768 at true colour depth? Thanks in advance. Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: FreeBSD on AMD 64 Boot Lock Up - ACPI Related
First of all, please to not top-post. It disturbs the normal flow of reading. But to answer your question, if your PC's devices are all correctly working with FreeBSD drivers and if you don't use power management I see no great need for ACPI. Laptops might need the power management component of ACPI. Some motherboards use ACPI to let you read out things like temperatures and fan speeds. But those can mostly also be discovered by other programs. Sorry for top-posting. Will remember not to do it again. Thanks for all your help. So far the system seems fine with ACPI disabled. Thanks, Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: FreeBSD on AMD 64 Boot Lock Up - ACPI Related
Hi, Yes that seems to have solved the problem. Incidentally, would you know what the disadvantage of having acpi disabled like that is? Thanks, Joe -Original Message- From: Roland Smith [mailto:[EMAIL PROTECTED] Sent: 08 May 2005 21:20 To: freebsd-questions@freebsd.org Cc: [EMAIL PROTECTED] Subject: Re: FreeBSD on AMD 64 Boot Lock Up - ACPI Related On Sun, May 08, 2005 at 08:32:43PM +0200, Joseph Borg wrote: > Should I disable ACPI completely? If so, how should I go about doing this > and how will it affect my system? Disabling ACPI seems to solve problems for a lot of people who use FreeBSD/amd64. Add hint.acpi.0.disabled="1" to boot/device.hints to see if it works in your case. Roland -- R.F.Smith (http://www.xs4all.nl/~rsmith/) Please send e-mail as plain text. public key: http://www.xs4all.nl/~rsmith/pubkey.txt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
FreeBSD on AMD 64 Boot Lock Up - ACPI Related
Hi, I'm a newbie to freebsd. I've just installed the AMD64 version (5.4 RC 3) on my system (Asus A8V Deluxe Motherboard). The install off the CD's went fine, and I was really happy that Freebsd supports the Promise SATA RAID controller (currently have to Sata Disks in RAID 1 Mirror configuration). However, I'm not facing a problem when the system boots. Occasionally, the system locks up just after the following message: May 8 19:34:49 cronus kernel: Timecounter "TSC" frequency 1802318528 Hz quality 800 May 8 19:34:49 cronus kernel: Timecounters tick every 1.000 msec This doesn't always happen; it typically happens once every 3 reboots. Initially I thought it was CD-ROM related since usually the following line loads after the 'Timecounter' ones: May 8 19:34:49 cronus kernel: acd0: DVDR at ata0-master PIO4 When this happens, the system freezes completely; only a hard reset will 'solve' the problem. In trying to search the archives, I've come across some other people with the same problem and the issue seems to be ACPI related. In fact, when I boot Freebsd without ACPI support, this never seems to happen (although it could be coincidence). I've also added the following line to /boot/loader.conf: debug.acpi.disabled="CPU" This seems to have reduced the problem but not eliminated it completely. I've also tried using FreeBSD 5.3 (i.e. stable), but this seems to have the same problem. Any ideas on what the problem could be? If so how should I go about solving it? Should I disable ACPI completely? If so, how should I go about doing this and how will it affect my system? Thanks, Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Hard Drive Buffer tool.
Greetings, Someone gave me an IDE HD and he doesn't know how many MB buffer it is. I checked the manufacturer data sheet. And I found that this exact model comes with 2MB and 8MB buffer. Anyone knows if there is a tool or a built-in utility under FreeBSD that allows me to get such information, without the having me email the manufacturer ? Thank you in advance. = regards, "UNIX, it's a way of life." __ Do you Yahoo!? The all-new My Yahoo! - What will yours do? http://my.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
ad0: TIMEOUT the saga continues.
Greetings all, Today is the second time I get this message on my console: ad0: Timeout - write_DMA retrying (2 retries left) LBA=18576259 later same exact msg and LBA=3157791 The machine freezes I had to hard boot it each time I see this msg. It's random no time interval or pattern and it's machine wasn't connected to the outside world yet no network activity going on it was idle. I noticed an earlier thread on Dec. 31 2004 posted by Tom Jensen. Seems I'm not the only one. It is really frustrating. This very same machine and hardware as is nothing changed used to work with no problem under 5.2.1 and earlier 5.x releases. I planned to upgrade to 5_3 and I got this crap at a very critical time. Someone would say supply more info about the hardware, dmesg etc.. I will after I know what is happening first. I installed 5.2.1 and kept the machine running for 3 days without any problem. It only happens on 5_3 raw install no apps no services running. = regards, "UNIX, it's a way of life." __ Do you Yahoo!? Meet the all-new My Yahoo! - Try it today! http://my.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Bind9 run two instances vs. multiple views.
Greetings, I'm planning to install 5.3 Release today and setup Bind 9 on a server. my question is: Can anyone confirm my thoughts that running Bind 9 in multiple views to handle External and Internal queries is more efficient (in terms of system resources) than of running two instances of Bind 9 one for External and one for Internal each listening on a different IP on the same NIC ? thanks in advance for your input = regards, "UNIX, it's a way of life." __ Do you Yahoo!? Check out the new Yahoo! Front Page. www.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
World Clock "timezones"
Greetings, I'm looking for a world clock that helps me keep track of time in different cities by showing me clocks for multiple time zones. Preferably under X if not I don't mind using a non-GUI based application. I searched the /usr/ports for the string "clock" & "timezone" but nothing from the description seems relevant to what I want. Any help is appreciated. = regards, "UNIX, it's a way of life." __ Do you Yahoo!? Check out the new Yahoo! Front Page. www.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
PCI modems supported.
Greetings, I was looking at the hardware-i386 under releases for a PCI modem V.92 data/fax/voice that is supported under FreeBSD. Found only a reference to 3com 3CP5609 not much on google, but one OpenBSD link compained about it. I would like to get a feedback if anyone had a successful experience with one of the following: Hayes ; Zoom ; Airlink+ ; Broadxent. As a last resort I don't mind to use an external modem with serial connection. It's just bulky that's why I'm avoiding it. regards, = "UNIX, it's a way of life." __ Do you Yahoo!? Check out the new Yahoo! Front Page. www.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
5.3-RELEASE time line
Greatings, I've noticed that 5.3-RC1 is in the ftp now. Maybe there will be a 5.3-RC2 later on. Anyone knows when roughly the 5.3-RELEASE will be available. I want to wait for that. Just need an estimate date if anyone knows. regards, = "UNIX, it's a way of life." __ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: mini-itx posting.
Greetings, I was told freebsd-hardware@ is the appropriate place to such posting. It's in the archive now. In order not to waste more bandwidth here is the link: http://lists.freebsd.org/pipermail/freebsd-hardware/2004-September/001919.html Good luck, = "UNIX, it's a way of life." ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
mini-itx posting.
Greetings, I want to post some info on a mini-itx mobo I bought, so other users can benefit from that. can I post that to freebsd-questions@ ? If not what's the right list ? ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: postfix chrooting.
--- Volker Kindermann <[EMAIL PROTECTED]> wrote: > > My question is, how to proceed after that ? What > do I > > have to do to create the chroot environment. And > what > > option I should enclude in the main.cf to make > postfix > > start chrooted. > > look at master.cf. There you can determine, which > postfix service runs chrooted (not all of them will > run chrooted). > > You don't have to change main.cf for chrooted > operation. > > -volker master.cf says to look at examples/chroot-setup and there is a freebsd specific file. That's exactly what I posted ealier. umask 022 mkdir /var/spool/postfix/etc chmod 755 /var/spool/postfix/etc cd /etc ; cp host.conf localtime services \ resolv.conf /var/spool/postfix/etc It only prepair the directory for you with the needed files. But you didn't answer how can the chrooting be done after that, and how can I check if Postfix is chrooted when doing so. please provide more details/steps. regards, = "UNIX, it's a way of life." ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Bind9 replace base Bind8 "corrected"
--- borg <[EMAIL PROTECTED]> wrote: > That's a very common confusion. Usually after > installing Bind9 from the ports "named -v" gives you > the 8.x version. A fast and dirty method to override > the old Bind8 with Bind9 tools and file: > cd /usr/ports/net/bind9 Correction for what I posted earlier: Bind now resides in /usr/ports/dns It's still hardcoded in my memory the location on my old 4.x server which was /usr/ports/net :) regards, = "UNIX, it's a way of life." __ Do you Yahoo!? New and Improved Yahoo! Mail - Send 10MB messages! http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: BIND9 REPLACE BASE BIND8
--- Joshua Lewis <[EMAIL PROTECTED]> wrote: > I have been having been having some issues with BIND > that have been > driving me up the wall. I believe I may have located > the problem. I > believe I had both BIND8 and BIND9 installed on the > same system. So I am > reinstalling from the ports collection and > overwriting BIND8 completely. > I wish to avoid this issue in the future. I found > this in a how to > online and was wondering if it is accurate. That's a very common confusion. Usually after installing Bind9 from the ports "named -v" gives you the 8.x version. A fast and dirty method to override the old Bind8 with Bind9 tools and file: cd /usr/ports/net/bind9 make install clean ln -fs /usr/local/bin/dig /usr/bin/dig ln -fs /usr/local/bin/host /usr/bin/host ln -fs /usr/local/bin/nslookup /usr/sbin/nslookup ln -fs /usr/local/bin/nsupdate /usr/sbin/nsupdate ln -fs /usr/local/sbin/named /usr/sbin/named ln -fs /etc/namedb/named.conf /usr/local/etc/named.conf > if you plan on upgrading your base system, add > "NO_BIND= true" to / > etc/make.conf to keep 'buildworld' from blowing away > your current BIND > install. > > For one thing there was no make.conf in /etc. Then > the other thing is > the syntax looks odd to me. I would have thought it > would be > NO_BIND="TRUE" as this is the syntax I have seen in > rc.conf. Could > someone set me strait? If you are using FreeBSD 5.x I believe you should have that pre-created in /etc. The difference that I noticed is that 4.x contains /etc/default/make.conf while 5.x doesn't have. But if it's not there you can create the file anyway. # touch /etc/make.conf You can force it to not mess up your bind config on "buildworld". Add this: NO_BIND= true If you are planning on controlling bind through rndc don't forget to run: "rndc-confgen -a" after you install bind9. to make bind9 load on boot add to /etc/rc.conf named_enable="YES" named_program="/usr/local/sbin/named" named_flags="depends on your environment check -u -t -c options in named(8)." regards, "UNIX, it's a way of life." __ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
postfix chrooting.
Greetings, I have a FreeBSD 5.3-BETA3 #0 setup. Installed Bind9 and chrooted it. It's running perfectly. Now I'm trying to chroot postfix-2.1.4,1 MTA. I googled the mailing list and other sites, the only reference I found mentioning the source code containing a directory examples/chroot-setup/FREEBSD3 that file reads: umask 022 mkdir /var/spool/postfix/etc chmod 755 /var/spool/postfix/etc cd /etc ; cp host.conf localtime services resolv.conf /var/spool/postfix/etc The above looks like it's putting the needed files by postfix in the "to-be-chrooted" location. My question is, how to proceed after that ? What do I have to do to create the chroot environment. And what option I should enclude in the main.cf to make postfix start chrooted. Thanks in advance. regards, __ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Any way to net boot the FreeBSD installer?
I'm trying to install FreeBSD on a VIA Epia M6000 box - this is one of those "Mini ITX" machines that has NO floppy drive controller, and the machine doesn't have a CD-ROM drive either. However, this machine DOES have a BIOS that can net-boot using PXE. Yes, I did try booting from a USB floppy drive. The first install disk booted, however when it asked for the MFSroot disk, it was unable to read it. Probably because the boot floppy was expecting to read data from a (nonexistent) floppy drive/controller, rather than the USB floppy drive (which it probably doesn't know anything about). Is there a way I can net-boot (using PXE) the FreeBSD installer? I do have another FreeBSD box here on my home network that I can set up as a network boot server. I just don't really know what to do, having never done this sort of thing before. Can anyone offer up some help, guidance, a "HOW TO" type guide, etc.? Thanks! -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! Website: http://www.borg-cube.com/| http://www.freebsd.org/ PO Box 91212, Santa Barbara CA 93190-1212 \- Tel: (805)563-0672 FAX: (760)875-9237 ICQ# 16997506 AIM: dburrofborg ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Need help with strange routing situation
I recently switched to a new DSL provider (DSLExtreme), and in doing so, decided to opt to buy multiple static IP's. The idea is that I would like one static IP for the server, and separate static IP's for our desktop machines, so that things such as IRC DCC, streaming media, etc. will "just work" and won't require special port forwarding or other such nonsense. Here's a (really lame) ASCII picture of our setup: [ Server and ] [ DSL Modem ][ Gateway box ]-[ 10/100 switch ] ISP proviedes it's using IP A || | THREE IP's: provides NAT|| | let's call them for machines|| | IP A, IP B, and that don't [ My desktop PC] | | IP Chave their it uses IP B | | own IP | | [ Roomie's PC ] | it uses IP C | | [ Wireless WAP ] . . . . . . . . [ My laptop ] . . [ Roomie's laptop ]. (via wireless) Note that each machine has its own unique, static private internal IP address (192.168.x.x). Also, the gateway/server machine has 2 interfaces: one connected directly to the DSL modem, and one connected to the internal network. The server is the only thing connected to the DSL modem. Ideally here's what we'd like to set up: Our gateway machine and server gets its own IP, IP A. It runs various services (IRC, WWW, FTP, etc.) but IF POSSIBLE I'd also like it to provide NAT for machines that don't have their own IP (i.e. people who visit and bring their laptops). My desktop machine is hooked up via ethernet. It should get IP B. EVERYTHING that goes to IP B gets forwarded to that machine. This way protocols like Game protocols, ICQ, IRC DCC, VNC, etc. work without having to do port forwarding and other crap. But I do want firewalling for this box, so that, for example, I don't get infected with the Windows Worm of the Day, etc. Same thing as above for my roomie's desktop, except it gets IP C. Now the two laptops (as well as any other machines that people bring over when they visit) are a problem. Ideally I'd like them to be NAT'ted behind IP A (the server, which also runs NAT); port forwarding is NOT necessary since we won't ever do anything on those that requires special port forwarding. But they should be firewalled as well. Ideally I'd like to do this setup on the existing hardware. Right now, the server box is running FreeBSD 4.8. If this is an unsuitable platform for the setup described above, and if another platofrm is more suitable (e.g. Linux), I suppose I could switch if necessary, tho that's not the optimal setup (I am very happy with the way FreeBSD works for me). So, any idea of how to do this? Or do I need to go buy some sort of expensive Cisco box or something? (which would REALLY SUCK...) Thanks! -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! Website: http://www.borg-cube.com/| http://www.freebsd.org/ PO Box 91212, Santa Barbara CA 93190-1212 \- Tel: (805)563-0672 ICQ# 16997506 Present Day... Present Time! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Trouble reading BSD formatted HD in USB hard drive... but it worksfine in Linux!
I recently decided to move one of the drives in my main system into an external USB 2.0 case. This was done so that I could take this drive between several systems (it is primarily used for backup and data archival). Yes, I know that 1394 (FireWire) would be faster, but not all of my machines are capable of it. And some of them literally do *not* have any free PCI slots which I could insert a 1394 card into. Like I said, the drive I installed in my USB case was already formatted as a FreeBSD drive. However, once I inserted it into a USB case, I am now unable to mount the drive again. Here are the appropriate dmesg printouts: umass0: Acer Labs USB 2.0 Storage Device, rev 2.00/1.03, addr 2 da0 at umass-sim0 bus 0 target 0 lun 0 da0: Fixed Direct Access SCSI-0 device da0: 650KB/s transfers da0: 76319MB (156301488 512 byte sectors: 64H 32S/T 10783C) da0: reading primary partition table: error reading fsbn 0 da0: reading primary partition table: error reading fsbn 0 (The "reading primary partition table" errors appear when I try the following mount command: mount -t ufs /dev/da0s1 /mnt/backup) Now, here's the kicker: I took the same drive over to a friend's Linux box (he is running Mandrake 9.1, with Linux kernel 2.4.21-0.13mdk). Linux has had the ability, for some time now, to mount UFS partitions. So I figured "what the heck" and decided that I'd try mounting it on his system. Here is the dmesg printouts from when I plugged in the USB hard drive to this Linux box: hub.c: new USB device 00:11.3-1, assigned address 2 usb.c: USB device 2 (vend/prod 0x402/0x5621) is not claimed by any active driver. Initializing USB Mass Storage driver... usb.c: registered new driver usb-storage scsi2 : SCSI emulation for USB Mass Storage devices Vendor: USB 2.0 Model: Storage DeviceRev: 0100 Type: Direct-Access ANSI SCSI revision: 02 Attached scsi disk sda at scsi2, channel 0, id 0, lun 0 SCSI device sda: 156301488 512-byte hdwr sectors (80026 MB) /dev/scsi/host2/bus0/target0/lun0: p1 p1: Aha! It seems that it is able to detect this disk just fine, and it does see a BSD filesystem on it. And sure enough, issuing the command "mount -t ufs -o ro,ufstype=44bsd /dev/sda1 /mnt/bsd" works fine!! I am able to read any and all files on this drive. I'd really like to get this sucker going under FreeBSD, but I am frankly out of ideas and at my wit's end. I am grateful to anyone who can offer any assistance or hints/clues at this point. The kernel configuration from my FreeBSD machine is available if anyone would like to see it. In short, I enabled all USB options in the kernel config file, as well as the SCSI base code. The USB case in question is a generic case labeled only "ME-320 Series 3.5"/5.25" External Enclosure." It is available in several configurations; mine is the single-port USB 1.1/2.0 configuration. It apparently uses an Acer Labs USB-to-IDE bridge chip, tho I can't tell what the chip's part number is. Thanks!! -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! Website: http://www.borg-cube.com/| http://www.freebsd.org/ PO Box 91212, Santa Barbara CA 93190-1212 \- Tel: (805)563-0672 ICQ# 16997506 Present Day... Present Time! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Setting up a multi-platform VPN?
I am in business with a couple of friends of mine, and to that end we are sharing an office with a single high-speed DSL connection. We are using FreeBSD (4.8-RELEASE, soon to be upgraded to -STABLE) as our gateway for the ineternal network, as well as serving e-mail, Web, etc. Some of us like to work at home sometmes, and in fact there are even days when NO ONE is in the office and we're all working from our various homes. To that end, we would like to be able to set up a VPN, so that those people who are working from home can access the office network directly. Now here's the problem: all of us are using different OS's. I use FreeBSD on my desktop, but sometimes I like to work on the couch, in which case I use my Titanium PowerBook running Mac OS X (which is of course based on FreeBSD). My boss uses OS X on his iBook, and my other friend uses a Linux box. Now, with my (admittedly virtually nonexistant) knowledge of VPN, I know that Linux boxen tend to use FreeSWAN. FreeBSD, on the other hand, seems to use something called RACOON. And lord knows what OS X uses (although, since it's FreeBSD based, maybe RACOON can be compiled/adapted to use on it too?) (although I just did a Google search, and according to this O'Reilly Network article, it seesm that OS X has its own built-in PPTP implementation: http://www.macdevcenter.com/pub/a/mac/2002/12/20/vpn.html) Can anyone more knowledgable than I help me figure out how to get this multi-platform VPN monster going? Help! I need some backup!! Thanks, Donald [EMAIL PROTECTED] -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! Website: http://www.borg-cube.com/| http://www.freebsd.org/ PO Box 91212, Santa Barbara CA 93190-1212 \- Tel: (805)563-0672 ICQ# 16997506 Present Day... Present Time! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Support for Seagate TRAVAN NS20 (using FreeCom USB-ATAPI chip)?
We'd like to hook an external USB tape backup drive (Seagate Travan NS20 device, it uses the Freecom USB-ATAPI bridge chip) to our FreeBSD server to do backups. (Yes, we know it'll be slow...) When we plug it in, the device is recognized and "grabbed" by the ugen driver. Is there any hope of getting this thing to work (anyone know of any drivers out there, etc.) or are we SOL? We're runninng 4.7-RELEASE. -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! WWW: http://www.borg-cube.com/ ICQ #16997506 | http://www.freebsd.org/ P.O. Box 91212, Santa Barbara, CA 93190-1212 \- Phone: (805)563-0672Present Day... Present Time! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Bandwidth allocation - is this possible?
I have a FreeBSD box (running 4.7-STABLE as of a few weeks ago) as a gateway machine between my home network and a DSL connection (768/128) to the Internet. Everything works great. I will soon be upgrading to a faster DSL connection... 1500 down, and 384 up. With the additional outgoing bandwidth, I figure that, now I have more outgoing bandwidth, I can do something that I've wanted to do for a long time: run some outgoing servers (FTP, HTTP, etc.) But here's the catch: I don't want these new servers of mine to hog all the outgoing bandwidth. Say, if someone with a T1 or a really fast cable connection connects to my FTP server and wants to download something, then that would pretty much saturate my entire 384 outgoing pipe. Which means that whatever me or my girlfriend are doing on the Internet (web browsing, sending email, etc.) slows to a standstill. Now, I thought about it a bit, and here's an ideal solution: If I could somehow segment my outgoing bandwidth... let's say, allocate only 256 of it for use by the FTP/HTTP/whatever servers, and leave the other 128 for use only by people going out from the internal network, then the FTP/HTTP/etc. users would still get an acceptable level of performance, while my SO and I can still surf the web, send email, etc. at reasonable speeds. Is this doable in FreeBSD? Are there any FAQ's or HOWTO-type documents on how I could get this type of setup going? Any and all help gratefully appreciated. Thanks! -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! WWW: http://www.borg-cube.com/ ICQ #16997506 | http://www.freebsd.org/ P.O. Box 91212, Santa Barbara, CA 93190-1212 \- Phone: (805)563-0672Present Day... Present Time! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Booting FreeBSD Install Floppy with USB Floppy drive?
Hi folks, I'm trying to install 4.7-RELEASE on a VIA Epia Mini-ITX system. This is a new low-cost embedded/thin client type architecture that is becoming increasingly popular (see www.mini-itx.com for more info). Unfortunately, this machine does NOT have a floppy drive controller. It DOES, however, contain BIOS-level support for booting from a USB floppy drive. It also contains network booting support, using PXE. I'd like to install 4.7-RELEASE on one of these beasties, but when I tried booting the install floppies from the USB floppy drive, it got to the point where the little whirly cursor thingie appeared, but then it stopped. The "BTX" (?) Forth boot loader never appeared, nor did the system progress any further into the boot. So, on to my questions: * is there any way to get booting from a USB floppy drive to work? * if not, can the FreeBSD installer be booted in any other way? Can I somehow boot the installer floppy image over the network using PXE? Or is there any other method? (if it helps, I have a FreeBSD box that is already up and running on my network, and can set it up for net booting, etc.) I know I can get it installed if I attach a CD-ROM drive to this unit, but hey, I always do things the unconventional way :-) (Besides, I don't have any CD-ROM drives.) Any and all help greatly appreciated. Thanks! -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! WWW: http://www.borg-cube.com/ ICQ #16997506 | http://www.freebsd.org/ P.O. Box 91212, Santa Barbara, CA 93190-1212 \- Phone: (805)563-0672Present Day... Present Time! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Re: Promise Ultra ATA 133 PCI card supported?
On Thu, 19 Sep 2002, Jud wrote: J>But before you run out and buy a new card - do you have room for J>another drive on your current cable(s), or ? If so, you might try hooking J>up the new drive on the cable to see if it works, and only springing for J>the new card if it doesn't. Or you might think about buying a cable with J>additional connectors. Either way would be cheaper than a controller J>card (though of course an Ultra ATA 133 controller card is a nice thing J>to have:). I already have the Promise ATA133 card. It came bundled with an 80 GB ID drive which I bought for one of my other systems; I didn't have a use for it at the time, so I stuck it in my miscellaneous hardware drawer. I generally prefer to only run ONE hard drive per IDE chain. I find that it takes a significant performance hit when you're simultaneously accessing one drive that is master, and another that is slave, on the same controller. -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! WWW: http://www.borg-cube.com/ ICQ #16997506 | http://www.freebsd.org/ P.O. Box 91212, Santa Barbara, CA 93190-1212 \- Phone: (805)563-0672Present Day... Present Time! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
Promise Ultra ATA 133 PCI card supported?
Hello world. I'm about to add a 3rd hard drive to my system. Since my motherboard's built in IDE ports are all in use, I will need to add a PCI IDE controller card to the mix in order to get this to fly. I have a Maxtor-labeled (but the card and chip is made by Promise) Ultra ATA 133 PCI controller. Is this card supported by FreeBSD? (Running 4.7-PRERELEASE, cvs'd at Sun Sep 8 02:42 PM PDT)? Thanks, Donald -- Donald Burr of Borg <[EMAIL PROTECTED]> | FreeBSD: The Power to Serve! WWW: http://www.borg-cube.com/ ICQ #16997506 | http://www.freebsd.org/ P.O. Box 91212, Santa Barbara, CA 93190-1212 \- Phone: (805)563-0672Present Day... Present Time! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
