Summary: NATD translates source addresses even though it should not because
unregistered_only is set and the IPs do not belong to RFC 1918 (like
192.168)
Hi List,
I have a very strange problem in my
FreeBSD bigb3 6.1-STABLE FreeBSD 6.1-STABLE #0: Tue Jun 6
I am using the
On Fri, 7 Jul 2006, Chuck Swiger wrote:
BigBrother-{BigB3} wrote:
[ ... ]
I have trouble making a passive ftp connection to work, because every time
natd changed source port even though it should not. Sometimes it changes
within the IP_PORTRANGE_DEFAULT but sometimes it changes
I just copied my entire home directory from my Windows XP harddrive
(ad6)
running NTFS over to my FreeBSD harddrive (ad4) running UFS2:
..
In the past I had faced a similar program. I found out that the errors were
caused by the DMA controller.
So I have disabled DMA hard disc and no write
I have a distributed network of systems running FreeBSD 4.10-Release,
and periodically, I see the following errors on the console:
vm_fault: pager read error, pid 1 (init)
I have also a network with many diskless boxes of 4.11 FreeBSD and every now
and then I see messages like this.
The
hi,
For the past weeks I have been receiving in my syslog the following
message
ikaros /kernel: unknown dynamic rule type 244
ikaros last message repeated XXX times
ipfw -d show | grep 244
does not show anything
I have rebooted the machine,
I have flushed reloaded the ruleset...the message
Hi,
I managed to fix the error of all slices being destroyed. My system is up
and running. i did not reinstall any programs, just edited the partition
table and the labels. It took me 3 days to figure out the exact values, so
I post here my findings, in case somebody faces the same problem.
Dear,
Please help me with this strange situation, that is due to using boot0cfg
with wrong switches. I googled it but I did not find any similar case.
On a working 4.11 freebsd system I wanted to create a floppy bootable
disk.
This system had one slice and four labels.
I run this command:
Hi,
I would like to combine the bandwidth of two network cards on FreeBSD (which
are connected to 2 different ADSL modems of the same ISP) in order to double
the bandwidth of the Internet connection of the LAN that is behind this box.
I have searched Google and FreeBSD question and people
Dear all,
I have noticed a very strange NFS problem between two FreeBSD machines
running both 4.10-Release-p2.
-Short description:
NFS copy transfers from A to B (A controls the transfer, e.g. he gets data
) produce (always!!) CRC errors and MD5 mismatch between (some) original
files
I=21963 OWNER=bigbrother MODE=100644
SIZE=0 MTIME=Jun 10 17:16 2004
RECONNECT? no
CLEAR? no
I=21965 OWNER=bigbrother MODE=100644
SIZE=5376392 MTIME=Jun 9 01:33 2004
RECONNECT? no
CLEAR? no
I=21973 OWNER=bigbrother MODE=100644
SIZE=4016799 MTIME=Jun 9 01:37 2004
RECONNECT? no
CLEAR
Dear,
I have Freebsd 4.7-Release-p7 and I tried to install the port
Sysutils/diskcheckd(ports are daily cvsuped)
The message that I received is:
** 'sysutils/diskcheckd' is marked as IGNORE:
Not tested on anything less than 5.0, use at discretion
But the fact is that in an old
Hi friends,
Recently I put into my crontab the following line
4 0 */10 * * /usr/bin/tar -cyf /backup/lab.`date +%d%m%Y`.tar.bz /lab
But although I can execute the command into my shell, crond refuses to
execute and send me an email saying:
Syntax error: EOF in backquote substitution
What am
I forgot to say:
uname -a
FreeBSD matrix.vlsi.gr 4.7-RELEASE-p7 FreeBSD 4.7-RELEASE-p7 #1: Tue Mar
4 12:09:06 EET 2003
[EMAIL PROTECTED]:/usr/obj/usr/src/sys/matrix i386
-
ifconfig
wb0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
inet 192.168.3.200 netmask
I started to use samba with freebsd and I cant say that I am
satisfied with the performance of it. Specifically on my local 100Mbits
network the samba read speed on the server (athlon 1700) is 1Mbit/sec,
while the write speed is much much worse.
If I ftp to that machine I have read speed of
in the $OLD variable because
otherwise the mv was complaining. So this was a nice and fast way to do
it. Thank you all people for your quick reply!!
BigBrother
- ---
We are being monitored..but there is a solution...
Use PGP for signing and encrypting emails
Download my public key at http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I was transferring a huge file (700 MB) to an nfs mounted disc and I
umount -f the nfs mounted directory. After this I lost control of that pc
(I was remotely administering it). The machine responds to pings and
forwards packets as well, but if I try
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm having a problem with slow transfers to my FreeBSD 4.7-RELEASE box
using a D-Link 528CT
(Realtek 8029 chipset). When I try to upload files to this machine from a
windowsXP box, I only
get about 30KB/s on the 10BaseT cat 5 network. This identical
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ipfw add 108 allow tcp from any to xx.250.227.0/22 20,21,25,80,110 via
bge0
snip
#Outbound from inside
ipfw add 109 check-state
ipfw add 110 allow tcp from xx.250.224.0/22 via bge0 keep-state
ipfw add 111 allow udp from xx.250.224.0/22 via bge0
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
(I sent this email to freebsd-security but it never appeared on the
list, nor it returned back-very strange for freebsd-security;does freebsd
security has any problem?)
I have a small question. When I was administering one freebsd box the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nelis wrote
...
inside machines cannot telnet...
#allow all outbound and only inbound TCP connections I've created
add 0301 divert natd all from any to any via rl0
add 00302 check-state
add 00303 allow tcp from any to any established
add 00304
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SORT: Stetefull IPFW rules combined in a router that is
a ypclient may make the box loose connectivity and a
irreleavent error too many dynamic rules appear in the log
eventhough only 20 dynamic rules may exist.
LONG:
I am reporting a strange
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have a question about FFS filesystem.
According to a paper about the design of UFS filesystem[1], if you create
the FFS filesystem on a slow cpu and then move it to a fast cpu with a
fast controller, theh the FFS wont perform efficient.
This is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What is the best way to resolve these?
ad0s1e: UDMA ICRC error reading fsbn 897759 of 144-159 (ad0s1 bn 897759;
cn 55 tn 225 sn 9) retrying
ad0s1a: UDMA ICRC error reading fsbn 45439 of 22688-22719 (ad0s1 bn
45439;
cn 2 tn 211 sn 16) retrying
I recently did some research into NFS performance tuning and came across
the suggestion in an article on onlamp.com by Michael Lucas, that 32768
is a good value for the read and write buffers. His suggestion is these
flags:
tcp,intr,nfsv3,-r=32768,-w=32768
I used these options (I found tcp was
According to my experience UDP is much preffered for NFS transport
protocols. Also try to have the NFSIOD daemon being executed on every
machine by putting in the /etc/rc.conf
nfs_client_enable=YES
nfs_client_flags=-n 10
[u may put more than 10 instances if u suspect that more than 10
ELF binary type 3 not known.
Abort trap.
I've tried running netscape communciator as well with the same msg.
so it's definitely linux ports.. and i have linux-base-7.1.1 installed.
If the output of kldstat shows that 'linux.ko' is loaded and
you still have this problem then try to use
I know how the FFS (filesystem) works, and that it really does an excelent
job in allocating clusters as local as possible. But it is also true that after
some period of extensive use of it, the filesystem get fragmented, and
results in severe degration of speed.
One way is to dump/restore
Dear,
I have a couple of issues regarding the IPNAT or NATD of freebsd. In case
that you dont have enough time, skip the next paragraph [description] and
go to questions section.
-=Description of problem=-
I was using NATD for more than 3 years with no problem. By debbuging
a problem in my
I had noticed this problem a lot time ago. Screen was consuming too much
cpu power. In fact every 'screen' that I opened it put my load +1.0 so
with 3 screens I had a 3.0 constant load...
the problem was solved after CVSUP the latest port collection and make
a 'portinstall screen' . This will
I have freebsd 4.6 release and I am interesting to
update it to 4.7 via CVSUP
The box is located 3000 Kms away and I can only connect
via ssh.
a) How much space is required in order to make a buildworld
(downloading CVSUP, compiling, installing)
b) What is the best failsafe method, so in
It sounds to me that you are looking for a Network Intrusion system.
1)
try:
/usr/ports/security/snort
It has plenty of rules that can help you log whatever u like.
2)
Also another possibility is to use
tcpdump host YOUR_IP -w LOGFILE
which will log all the packets heading for your
A nice solution which I make use is:
a) install a SNMPD client on every box
/usr/ports/net/net-snmp
b) change the community string to something else than `public`
c) create sample config file for snmpd
d) install MRTG
/usr/ports/net/mrtg
e) Configure MRTG to be daemon and query every 5
32 matches
Mail list logo
