FTP server link aggregation

2010-12-15 Thread Matthew Law
I have a single FreeBSD box acting as an FTP server for multiple FreeBSD and Linux clients on the same /24 subnet (all gigabit ethernet). It is currently connected by just one of it's two gig ethernet ports. I also have two cisco switches with an etherchannel between them (using 2 x gig ports on

Re: Jail question

2010-10-18 Thread Matthew Law
On Fri, October 15, 2010 2:54 pm, Ivan Voras wrote: Since jails can do many things there are many helper utilities that can do much to simplify the process. If you can hack python, you can, for example, modify my script at http://ivoras.sharanet.org/stuff/mkjails.py which I've used to create

Jail question

2010-10-14 Thread Matthew Law
I have a single box on which I would like to run openvpn, smtp (postfix, dspam, greylist, clamav), imap (dovecot) apache22 and bind. This box also acts as a network gateway so it would give an attacker carte blanche to the internal nets if it was compromised, which makes me nervous. The plan is

Re: chroot scp only network storage?

2010-05-26 Thread Matthew Law
On Tue, May 25, 2010 11:05 pm, Matthew Seaman wrote: Checkout the security/openssh-portable port which has options to enable chroot'ing. You should be able to configure the account to only be able to use scp(1) or sftp(1) by editing sshd_config or by using forced commands in the user

Re: chroot scp only network storage?

2010-05-26 Thread Matthew Law
On Tue, May 25, 2010 11:23 pm, Balázs Mátéffy wrote: Hello, Try /usr/ports/shells/scponly . Look up the features, this way you can assign the restrictive scponly shell to the users: http://sublimation.org/scponly/wiki/index.php/Main_Page Thanks, I have used this before on linux. In

chroot scp only network storage?

2010-05-25 Thread Matthew Law
I want to provide some users with secure network attached storage over SCP. The intent is to provide people with a similar thing to, e.g. rsync.net but inside of our network only. Security is obviously a priority so I would like each user to be chrooted into their allocated directory and allow

Re: Hardware RAID controller questions - 3Ware vs RocketRaid

2010-03-18 Thread Matthew Law
On Thu, March 18, 2010 8:37 am, Andy Wodfer wrote: Hi, We're setting up two backup servers where each server will have about 4TB of harddrives (for now) connected (4x1TB and 8x500GB drives). Last night we ran into trouble with the 3ware controllers we have (9650SE-8LPML) because we

Re: Re : Replacing Home Router With PC

2010-03-11 Thread Matthew Law
+1 for psSense and if you need a quick to setup home NAS box, you could do worse than FreeNAS, which is also derived from FreeBSD -although I don't think it supports ZFS currently. When it does it will be even better. Best, Matt On Thu, March 11, 2010 7:59 am, Alexandre L. wrote: You can use

Re: Advice request: DSL modem

2010-03-11 Thread Matthew Law
Mike, I use a Draytek Vigor 120 (I'm in the UK, but it most certainly will work for you aswell). This is a self-contained ADSL modem that presents a PPPoE interface to your PC or server via a conventional RJ45 connector. It is painless and past firmware hiccups accepted, performs very well

Root on ZFS

2010-03-04 Thread Matthew Law
I am following this wiki page to move to zfs root: http://wiki.freebsd.org/ZFSOnRoot I got to this section: Create bootdir directory where the boot file system will be mounted: # mkdir /tank/bootdir # ln -s bootdir/boot /tank/boot I am confused about the symlink line - what is 'bootdir' ?

Re: Root on ZFS

2010-03-04 Thread Matthew Law
On Thu, March 4, 2010 3:44 pm, Randal L. Schwartz wrote: Matthew == Matthew Law m...@webcontracts.co.uk writes: Matthew I am following this wiki page to move to zfs root: Matthew http://wiki.freebsd.org/ZFSOnRoot If you're running RELEASE-8 or later, I've gotten this to work just fine

Stress testing a new FreeBSD server?

2010-03-03 Thread Matthew Law
I would be grateful if anyone could recommend any tests, scripts, ports or packages which would stress test a new FreeBSD box? - both CPU and disk I/O. I would particularly like to get the processors nice and warm! :-) We already use bonnie++, unixbench, etc. but I was wondering if there is a

Options for redundant storage cluster?

2010-02-18 Thread Matthew Law
Hi, hopefully I'm not too far out posting this question here. It takes in a lot of areas so I was unsure where to post it. If it belongs on another ML please advise and I will re-post it there. I am researching options for a two node failover storage cluster. This is primarily to provide

courier imap rc.conf entry?

2004-12-09 Thread Matthew Law
I've just installed courier-imapd from ports. I can't find any reference to the required entry in rc.conf to start it at boot time. Can someone please tell me what I need in there or tell me where to look for the info? I'd like SSL too if that makes a difference... TIA, Matt.

Re: courier imap rc.conf entry?

2004-12-09 Thread Matthew Law
* Dev Tugnait [EMAIL PROTECTED] [2004-12-09 12:00]: Also check /usr/share/examples/etc/defaults/rc.conf This helped a great deal. It's working now - thanks! Matt. ___ [EMAIL PROTECTED] mailing list

Perl undefined symbol errors

2004-12-02 Thread Matthew Law
Hello, I am having issues with Perl and wondered if someone might be able to help. For example, I installed from ports, anomy-sanitizer. Occasionally I see the following error when run from procmail: /usr/local/bin/sanitizer.pl,/usr/local/etc/sanitizer.cfg /libexec/ld-elf.so.1: