Hi,
I'm getting a second machine next week and was wondering if the
following settup would be ok:
1st machine pf + NAT and also primary DNS
2nd machine as a secondary DNS
Now I know that its not the smartest thing to do, have primary DNS on
the firewall, but I'm thinking since the DNS is going
Hello,
I'd like to stop pf logging to the console.
So I've read syslog.conf(5) syslogd(8) and then I tried my best with
/etc/syslog.conf. By deleting one service after another:
*.err;kern.warning;auth.notice;mail.crit /dev/console
where I've just completely commented out any
Hello Erik,
and thanks for the fast reply !
On Thu, Oct 20, 2005 at 12:53:53PM +0200, Erik Norgaard wrote:
On Thu, 20 Oct 2005, kilim wrote:
I'd like to stop pf logging to the console.
sniped
have you tried to set this in rc.conf?
pflog_enable=YES
I've set this in /etc/rc.conf
On Thu, Oct 20, 2005 at 03:57:14PM +0400, Andrew P. wrote:
Could you try stopping syslogd for a while - just to see if the
messages are coming through it. /etc/rc.d/syslogd stop
Thank you very much Andrew P. !
Once I stopped it, the messages kept on pouring to the console. So I
had a look in
On Thu, Oct 20, 2005 at 05:08:22AM -0700, Glenn Dawson wrote:
snip
You could set kern.consmute=1 using sysctl and see if that does the
trick. Keep in mind that will also silence quite a few other
things.
Although my original problem was solved (see my reply to Andrew P. in
the thread),
Hello,
I'm about to set up named under FreeBSD 5.4.
I have read all the documentation, O'Reily book and various sites
telling me how to go about things. But I fear that just reading about
it and doing it are completely different things.
What I would like to do is write a list of things that
On Wed, Aug 31, 2005 at 08:44:35AM -0500, Kevin Kinsey wrote:
kilim wrote:
I'm about to set up named under FreeBSD 5.4.
snip
BIND in FreeBSD 5.X is version 9, and is already set up
in a sandbox (e.g., chrooted to /var/named).
Hi,
so I guess I just need to follow the section 24.7[1
Hello
when reading pf's log the messages usually have the following format:
189977 rule 0/0(match): block out on ste0: IP (tos 0x0, ttl 63, id
38539, offse t 0, flags [DF], length: 40)
Instead of xx number rule how can I get date and time
displayed/logged ?
Thank you
Hello,
I set ssh-agent just fine for a session from a xterm under X.
But what I'd like to have is once I log in to have session start from
my .profile so that when I do startx every subsequent xterm
'inherits' the ssh-agent so that I don't have to type in the password.
Is such a thing do-able
On Tue, Feb 15, 2005 at 04:56:43PM +0100, Lars Kristiansen wrote:
Hello,
I set ssh-agent just fine for a session from a xterm under X.
But what I'd like to have is once I log in to have session start from
my .profile so that when I do startx every subsequent xterm
'inherits' the
On Tue, Feb 15, 2005 at 11:51:41AM -0500, Clayton Scott Kern wrote:
on 02-15-2005, kilim wrote:
On Tue, Feb 15, 2005 at 04:56:43PM +0100, Lars Kristiansen wrote:
I set ssh-agent just fine for a session from a xterm under X.
But what I'd like to have is once I log in to have
On Tue, Feb 15, 2005 at 11:51:41AM -0500, Clayton Scott Kern wrote:
Why not use keychain and put it in the appropriate rc file (.bashrc,
cshrc, etc.), then you'll be connected to the agent automatically.
My bad.
Please disregard my previous email.
I apologise !
Your suggestion is
Hello,
I'm trying to set up my DNS server and before I go ahead I wanna ask
you to tell me if my config is right.
Thank you.
This is my setup:
FreeBSD 5.3 with Bind 9.3
My Static IP: 123.456.789.999 (example only, obviously)
My domain name: really-cool-domain.com (example too)
my named.conf:
On Thu, Feb 10, 2005 at 04:41:52PM -0600, Kevin Kinsey wrote:
kilim wrote:
snip
Now that I've registered a certain domain through godaddy.com I
wish to set up my own DNS server. In the Godaddy's web interface
there is a way to set two new DNS server. Can I just put one of the
server
On Fri, Feb 11, 2005 at 02:00:11PM +, Vince Hoffman wrote:
On Fri, 11 Feb 2005, kilim wrote:
On Thu, Feb 10, 2005 at 04:41:52PM -0600, Kevin Kinsey wrote:
kilim wrote:
snip
Now that I've registered a certain domain through godaddy.com I
wish to set up my own DNS server
Hello,
regarding Bind 9, here:
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-bind9.html
its stated that the configuration file resides in
/var/named/etc/namedb/ and that bind will be chrooted automatically.
Yet here:
Hello,
being a DNS virgin I deceided to post this after reading through Dns
Bind book and various on/off-line documentation.
I have loads of questions even though I've read through this
stuff. And I'm hoping that you can help me clarify them. Thanks in
advance !
Now that I've registered a
Hello,
while reading some mail archives about SSH somebody argued
that sshd shouldn't be started on a port bigger than 1024,
since ports below that are priveleged ports.
How does that make sshd less secure if its on a port above
1024 ?
Thanks
Hello,
after doing kldload -v bridge, I can see that I have it:
kldstat
Id Refs AddressSize Name
16 0xc040 2cf3dc kernel
2 14 0xc06d 54974acpi.ko
31 0xc125b000 3000 daemon_saver.ko
41 0xc152a000 7000 bridge.ko
then if I do: sysctl -a | grep
Hello,
I'm trying to setup a PF with NAT for my home network.
PF is compiled into the kernel(FreeBSD 5.3, fresh cvsup) and working,
I can do pfctl -e|-d|-s just fine. And pflog0 is seen in the
ifconfig's output.
My IP range is: class C /29
I have a ADSL router which works in bridged mode. So I
On Wed, Jan 19, 2005 at 06:25:32PM +0100, Karol Kwiatkowski wrote:
Kosta Kilim wrote:
Hello,
I'm trying to setup a PF with NAT for my home network.
snip
pf rules looks OK.
Wild guess: have you enabled packet forwarding? You can check it with
sysctl(8):
# sysctl
21 matches
Mail list logo
