Re: Samba gives invalid PT_PHDR after upgrading from 7.2-RELEASE to 7.3-RELEASE
On Sat, July 3, 2010 2:49 pm, David Brodbeck wrote: Today I upgraded my system from FreeBSD 7.2-RELEASE to FreeBSD 7.3- RELEASE using freebsd-update. Samba no longer runs. I get the following error messages: Starting nmbd. /libexec/ld-elf.so.1: /usr/local/sbin/nmbd: invalid PT_PHDR Starting smbd. /libexec/ld-elf.so.1: /usr/local/sbin/smbd: invalid PT_PHDR My upgrade sequence was to run 'freebsd-update upgrade -r 7.3-RELEASE' and 'freebsd-update install', followed by a reboot, then 'freebsd- update install' again, followed by a second reboot. I tried rebuilding the Samba port, thinking maybe it was an ABI change, but it still doesn't work. Can someone point me in the right direction? Today I tried using portupgrade -R -f samba34 to rebuild samba and all of its dependencies, but I'm still getting the same error. I'm a little surprised that a minor version upgrade broke this so thoroughly. I went back over the release notes to see if I missed any obvious caveats about upgrading, but if I did, I'm not seeing it. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /usr/local empty after upgrade
On Tue, Jul 6, 2010 at 11:58 PM, Greg Larkin glar...@freebsd.org wrote: Hi Mike, What did you have in your /usr/local directory prior to the upgrade? Had you installed any ports? What is the output of the following command: pkg_info it was only perl installed. That I can always rectified quickly... -- Mike Of course, you might discount this possibility, but remember that one in a million chances happen 99% of the time. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Your message to GeoClue awaits moderator approval
Your mail to 'GeoClue' with the subject Returned mail: see transcript for details Is being held until the list moderator can review it for approval. The reason it is being held: Post by non-member to a members-only list Either the message will get posted to the list, or you will receive notification of the moderator's decision. If you would like to cancel this posting, please visit the following URL: http://lists.freedesktop.org/mailman/confirm/geoclue/ad972a6b345841f10b9ac24ff9cd606ea632eb4e ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Get server's internal temperature from ACPI ?
Hello Is there an utility to get the internal temperature from a HP Proliant server with ACPI ??? Thank you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Global backup solution for FBSD Ubuntu
I used to use tapes, I have changed for disks, it is much much faster and easier. And cheaper! In a 3U enclosure you can have 16 disks, for 32TB of storage. A sun x4500 can get 48 drives in 4u. Its intel based so should run freebsd ok if you want to. Not sure what the max drive size is but you should be looking at about ~30-70 TB depending on drive size and array configuration ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Samba gives invalid PT_PHDR after upgrading from 7.2-RELEASE to 7.3-RELEASE
Today I tried using portupgrade -R -f samba34 to rebuild samba and all of its dependencies, but I'm still getting the same error. I'm a little surprised that a minor version upgrade broke this so thoroughly. I went back over the release notes to see if I missed any obvious caveats about upgrading, but if I did, I'm not seeing it. David - have a look here... http://lists.freebsd.org/pipermail/freebsd-current/2010-April/016405.html Cheers! Marci ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
On Tue, 6 Jul 2010 17:02:54 -0700 (PDT) Bill Tillman btillma...@yahoo.com wrote: Doesn't that seem odd that the default partition size for root (512M) isn't quite big enough? It's not that odd: nobody has bothered to update the default partition sizes in sysinstall for a good few years, I suspect because most people use a custom layout and haven't noticed that the defaults are bad. I'm going to checkin a fix in a couple of days. Should I make the partition size slightly larger (on future installs) to eliminate this problem? Yes, you should do. I don't usually use the default partitioning because for years I've been creating a 1GB /, 4GB /var and 1GB /tmp and the defaults sysinstall chooses are no good. As I understand it this is not actually the solution the in the know folks recommend. I was advised to just delete kernel.old. I'd consider that bad advice: the defaults sysinstall chooses are currently just wrong, and you should indeed be setting / to at least 1GB so you don't run out of space. The 'solution' of deleting kernel.old or not installing symbols is just a workaround and is certainly less than ideal. -- Bruce Cran ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
what to do when FreeBSD cannot do something?
Hello everyone, I have been using FreeBSD since 4.x for web related applications (php, Apache, PostgreSQL, Postfix, Cyrus IMAP, etc.), and while I am not an expert, I feel quite comfortable. Lately I find myself in situations where I have I have to take care of legacy Oracle (10g on Windows) and Interbase (6 on Linux) databases and sometimes legacy OS which need to be run for some time in a virtual machine, and I have difficulties to accomplish this with FreeBSD - no Oracle port, no Interbase port and only VirtualBox support, which is a bit unclear to me. What is the recommended parallel way for a person, who feels comfortable with FreeBSD, when FreeBSD cannot do the job? - i. e. is it a good idea to go towards Solaris, instead of Linux? Or rather go towards some sort of Linux? Thank you, Iv___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: what to do when FreeBSD cannot do something?
Hi, What is the recommended parallel way for a person, who feels comfortable with FreeBSD, when FreeBSD cannot do the job? - i. e. is it a good idea to go towards Solaris, instead of Linux? Or rather go towards some sort of Linux? I see 2 questions in one. What virtulization system to use? Personnally I use ESXi from vmware What OS to use instead of FreeBSD? It depends on what is recommended for your application, what resources you have available around you, etc. For a similar problem I choosed Ubuntu because Ubuntu was well supported by the application and some colleagues had a decent knwoledge of ubuntu. Best regards, olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
On Wed, 7 Jul 2010 11:13:21 +0100 Bruce Cran br...@cran.org.uk articulated: I'd consider that bad advice: the defaults sysinstall chooses are currently just wrong, and you should indeed be setting / to at least 1GB so you don't run out of space. The 'solution' of deleting kernel.old or not installing symbols is just a workaround and is certainly less than ideal. I also ran out of space. I decided that a minimum of 2GB was the safest choice. It would be nice if the authors changed the default settings in the soon to be released 8.1 version so as to nullify this phenomena. -- Jerry ✌ freebsd.u...@seibercom.net Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the Reply-To header. __ The less a statesman amounts to, the more he loves the flag. Kin Hubbard ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Selecionamos os 5 Melhores Celulares
Seleção de Celulares da WeShipIt! [1]E2 - Celular c/ 2 Chips [2]E3 - Celular c/ TV [3]L88 - Celular c/ Wifi [4]W99+ Celular c/ Windows [5]X10 - Celular c/ GPS Apenas R$70,00 Apenas R$87,00 Apenas R$122,00 Apenas R$239,00 Apenas R$271,00 Equipe WeShipIt, E-mail: [6]ven...@weshipit.com.br MSN: ven...@weshipit.com.br [7]www.weshipit.com.br --- References 1. http://www.weshipit.com.br/celulares-da-china/e2-dual-sim-quadband-black-red-br.html 2. http://www.weshipit.com.br/celulares-da-china/e3-tv-dual-sim-quadband.html 3. http://www.weshipit.com.br/celulares-da-china/celular-l88-iphone-c-wifi-2-chips-quadriband.html 4. http://www.weshipit.com.br/celulares-da-china/w99-win-mobile-wifi-quadband-br.html 5. http://www.weshipit.com.br/celulares-da-china/celular-gps-x10-c-tv-wifi-gps-flash-2-chips-quadriband.html 6. mailto:ven...@weshipit.com.br 7. http://www.weshipit.com.br/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
On Wed, 7 Jul 2010 07:18:18 -0400 Jerry freebsd.u...@seibercom.net wrote: I also ran out of space. I decided that a minimum of 2GB was the safest choice. It would be nice if the authors changed the default settings in the soon to be released 8.1 version so as to nullify this phenomena. I've just committed the fix to head/-current, but considering 8.1-RC2 has been released I'm not even going to ask for permission to get it in for 8.1-RELEASE - it's just too late. -- Bruce Cran ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
On Wed, Jul 7, 2010 at 7:47 AM, Bruce Cran br...@cran.org.uk wrote: On Wed, 7 Jul 2010 07:18:18 -0400 Jerry freebsd.u...@seibercom.net wrote: I also ran out of space. I decided that a minimum of 2GB was the safest choice. It would be nice if the authors changed the default settings in the soon to be released 8.1 version so as to nullify this phenomena. I've just committed the fix to head/-current, but considering 8.1-RC2 has been released I'm not even going to ask for permission to get it in for 8.1-RELEASE - it's just too late. -- Bruce Cran Thanks Bruce. This is a welcome update despite not making it in to the 8.1-RELEASE. -Brandon ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
On Tue, Jul 06, 2010 at 05:02:54PM -0700, Bill Tillman wrote: Thanks guys. :-) Doesn't that seem odd that the default partition size for root (512M) isn't quite big enough? Things change slowly. I think only a short while ago the default was 256 MB or even 128 MB. Should I make the partition size slightly larger (on future installs) to eliminate this problem? Of course, make it whatever size you need and can afford. jerry Ed -- I had the same problem and since my drives are large I just started making all my new builds with / set for 1G. As I understand it this is not actually the solution the in the know folks recommend. I was advised to just delete kernel.old. Of course this will work but what about when you might need kernel.old to get you out of a jamb or just want to keep it for nostalgia. I think I'm finally at the point where I will stop doing make buildworlds unless absolutely needed. I've been keen on doing this regularly but I really should adopt the policy of if it ain't broken don't fix it. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /boot is full after running make installkernel on
Jerry McAllister writes: Things change slowly. I think only a short while ago the default was 256 MB or even 128 MB. I haven't checked the logs, but I think it would have been more than a short while. Consider: huff@ du -s /boot/kernel 225008 /boot/kernel huff@ du -s /lib 24704 /lib (This is on -CURRENT amd64, though I don't think i386 would be that much smaller.) Never mind the contents of /etc, /temp, possibly /root, and anything else that gets defaulted under /; 256 mbytes just don't get it. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: what to do when FreeBSD cannot do something?
What virtulization system to use? Personnally I use ESXi from vmware This was a great tip, thank you. I wasn't aware that ESXi is a bare metal and free. What OS to use instead of FreeBSD? It depends on what is recommended for your application, what resources you have available around you, etc. For a similar problem I choosed Ubuntu because Ubuntu was well supported by the application and some colleagues had a decent knwoledge of ubuntu. I am not fanatic about FreeBSD, but I feel very comfortable with it and I resist change. However your ESXi tip would allow me to run ESXi on bare metal and virtualize simple installations of the unpleasant legacy OSes without making my fingers too dirty. Thank you very much, Iv___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Job offer. Position ID 1278514547
Our company Diamond Sky, which is dynamically developing with every passing year, is proud to offer you the convenience of great\perfect perspectives on the prospective position of a service-manager. We are acting as concierge services in 7 highly-developed countries of the world. Our managers provide assistance in different spheres of business and leisure such as: - booking of air tickets - hotel bookings - car renting - search, hire and design of conference halls - search, purchase and delivery of presents As a result of our managers` assistance our clients are exempt from spending their personal and business time. Due to the fact that the services we supply are in great demand all over the world, we expand the stuff and we invite you to become a participant in the contest for the position of the Service MANAGER and to become an employee of our company. MAJOR DUTIES AND RESPONSIBILITIES of the service-manager include: -work with clients -processing of orders of our clients -processing and updating of our database of services Position Requirements: - efficiency in processing of orders - responsibility in carrying out your duties - good communication skills We are constantly looking for bright individuals, at all levels, to join our winning team, across all our concierge services divisions. At Diamond Sky, we distinguish ourselves as a high performance organization with hard-working people who provide quality service to our customers. We believe that one of the most important functions of management is to provide employees with the advantage to develop their talents to the full. The benefits are job satisfaction for our employees enabling them to make a positive contribution to the success of the company. If this position seems to be interesting to you, you fit the requirements and would like to become a part of our company send your resume and your contact phone number to vivan-lo...@diamond-sky.net and we will contact you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Get server's internal temperature from ACPI ?
Quoth Frank Bonnet on Wednesday, 07 July 2010: Hello Is there an utility to get the internal temperature from a HP Proliant server with ACPI ??? Thank you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org sysctl -n hw.acpi.thermal.tz0.temperature I'm not sure if the Proliant has an Intel Core, but if it does then you can get per-cpu temperature info: kld coretemp for i in 0 1 2 3; sysctl -n dev.cpu.$i.temperature -- Sterling (Chip) Camden| sterl...@camdensoftware.com | 2048D/3A978E4F http://camdensoftware.com | http://chipstips.com| http://chipsquips.com pgpsIIJEqpJbw.pgp Description: PGP signature
RE: Samba gives invalid PT_PHDR after upgrading from 7.2-RELEASE to 7.3-RELEASE
On Wed, July 7, 2010 2:20 am, mcoyles wrote: Today I tried using portupgrade -R -f samba34 to rebuild samba and all of its dependencies, but I'm still getting the same error. I'm a little surprised that a minor version upgrade broke this so thoroughly. I went back over the release notes to see if I missed any obvious caveats about upgrading, but if I did, I'm not seeing it. David - have a look here... http://lists.freebsd.org/pipermail/freebsd-current/2010-April/016405.html OK, I see. It looks like rtld is part of world, not a port, so then the question becomes, why didn't freebsd-update update it for me? Is there a way I can force a binary upgrade, or do I need to download the source and rebuild things that way? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
debugfsFreeBSD
Hello,All! There is debugfs program dealing with ext2/ext3/ext4 filesystems. Is there some tool in FreeBSD with functionality analogous to debugfs which can operate on UFS2? Could anyone give me a hint? The thing is that recently I found out (thru smartctl) several bad blocks on UFS2 partition. The problem is how to discover which file(s) they belong to. TIA -- С уважением, Дмитрий Best regards, Dmitry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: debugfsFreeBSD
Dmitry Lunts eingorn...@gmail.com writes: Hello,All! There is debugfs program dealing with ext2/ext3/ext4 filesystems. Is there some tool in FreeBSD with functionality analogous to debugfs which can operate on UFS2? Not sure but fsdb(8) may help. Could anyone give me a hint? The thing is that recently I found out (thru smartctl) several bad blocks on UFS2 partition. The problem is how to discover which file(s) they belong to. TIA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: fetchmail certificate verification messages
On Tue, 6 Jul 2010, Dan Nelson wrote: CA Roots are also self-signed, btw :) Addtrust is a valid CA Root, and is the root for some certificates signed by Network Solutions and Comodo (and probably others). Marco, the fetchmail manpage mentions a --sslcertfile option; try adding --sslcertfile /etc/ssl/cert.pem to force fetchmail to use the ca_root_nss file you installed previously. IMHO openssl should automatically consult that file, but apparently it doesn't. Where do I add the --sslcertfile option? I do have a /etc/ssl/cert.pem file and fetchmail is started at boot-time (in rc.conf). The starting script of fetchmail in /usr/local/etc/rc.d/ isn't something to be changed I think. Or do I add the option in the .fetchmailrc file? Marco -- A lady is one who never shows her underwear unintentionally. -- Lillian Day ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: fetchmail certificate verification messages
In the last episode (Jul 07), Marco Beishuizen said: On Tue, 6 Jul 2010, Dan Nelson wrote: CA Roots are also self-signed, btw :) Addtrust is a valid CA Root, and is the root for some certificates signed by Network Solutions and Comodo (and probably others). Marco, the fetchmail manpage mentions a --sslcertfile option; try adding --sslcertfile /etc/ssl/cert.pem to force fetchmail to use the ca_root_nss file you installed previously. IMHO openssl should automatically consult that file, but apparently it doesn't. Where do I add the --sslcertfile option? I do have a /etc/ssl/cert.pem file and fetchmail is started at boot-time (in rc.conf). The starting script of fetchmail in /usr/local/etc/rc.d/ isn't something to be changed I think. Or do I add the option in the .fetchmailrc file? It's a commandline option, and from reading the manpage, apparently can be added to a fetchmailrc: Almost all options have a corresponding keyword which can be used to declare them in a .fetchmailrc file. [...] --sslcertfile file (Keyword: sslcertfile, since v6.3.17) Sets the file fetchmail uses to look up local certificates. If you wanted to add it to the commandline, you could put this in your /etc/rc.conf: fetchmail_flags=--sslcertfile -- Dan Nelson dnel...@allantgroup.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: what to do when FreeBSD cannot do something?
On Wed, 07 Jul 2010, Iv Ray wrote: What virtulization system to use? Personnally I use ESXi from vmware This was a great tip, thank you. I wasn't aware that ESXi is a bare metal and free. What OS to use instead of FreeBSD? It depends on what is recommended for your application, what resources you have available around you, etc. For a similar problem I choosed Ubuntu because Ubuntu was well supported by the application and some colleagues had a decent knwoledge of ubuntu. I am not fanatic about FreeBSD, but I feel very comfortable with it and I resist change. However your ESXi tip would allow me to run ESXi on bare metal and virtualize simple installations of the unpleasant legacy OSes without making my fingers too dirty. Thank you very much, One caveat is that ESX / ESXi are very picky about their hardware and pretty much won't run on anything but server class devices (mobo, NICs and CPU are the big ones). VMware still has their VMware Server (software) solution, but it's slowly being phased out. Also, it's against the EULA to use ESXi for commercial / reseller purposes and ESX isn't cheap. henrik -- Henrik Hudson li...@rhavenn.net - God, root, what is difference? Pitr; UF ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
VPN IPsec Help
Hello guys;
I'm using a FreeBSD 7.0 in my firewall/gateway, and I have to connect
via VPN to a Cisco box.
The scene here is:
* Peer A (Cisco): 200.xxx.xxx.xxx
IPs that Peer B need to access:
- 192.168.10.24
- 192.168.201.196
- 10.115.90.236
* Peer B (FreeBSD 7.0): 187.yyy.yyy.yyy (me)
How can I configure this scene without using gif0 interface?
I have no idea how to route the network traffic from my IP
(187.yyy.yyy.yyy) to the 3 -Peer A- non-routing IPs.
I started /usr/local/etc/rc.d/racoon and /etc/rc,d/ipsec.
When I try do access SSH in 192.168.10.24, racoon writes a lot of
things in the log file (as far as I can see there is no error), but
the SSH give me a timeout error. After that, I look in the setkey
-D command, and I get that:
setkey -D
187.yyy.yyy.yyy 200.xxx.xxx.xxx
esp mode=tunnel spi=3246074620(0xc17b2afc) reqid=16385(0x4001)
E: 3des-cbc 466cb043 de788f18 88545f35 d89be53e 4a0e85e9 3d026286
A: hmac-sha1 832a11aa ea68bc5a ec6f919b 23e28d91 7ecd7c6b
seq=0x0007 replay=4 flags=0x state=mature
created: Jul 7 19:17:35 2010 current: Jul 7 19:25:45 2010
diff: 490(s)hard: 28800(s) soft: 28800(s)
last: Jul 7 19:18:09 2010 hard: 0(s) soft: 0(s)
current: 728(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 7hard: 0 soft: 0
sadb_seq=1 pid=21919 refcnt=2
200.xxx.xxx.xxx 187.yyy.yyy.yyy
esp mode=tunnel spi=220854578(0x0d29f932) reqid=16386(0x4002)
E: 3des-cbc b1cd13a6 d0696e70 778fe5b3 4bfde61c 6cb81d8f 2a8e9f62
A: hmac-sha1 4ad86b36 ff7d5c14 6cb744e5 85d97017 2b0f196c
seq=0x replay=4 flags=0x state=mature
created: Jul 7 19:17:35 2010 current: Jul 7 19:25:45 2010
diff: 490(s)hard: 28800(s) soft: 28800(s)
last: hard: 0(s) soft: 0(s)
current: 0(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 0hard: 0 soft: 0
sadb_seq=0 pid=21919 refcnt=1
means that my ipsec tunnel is up, right?
Any idea?
Configuration files:
Here is my /etc/ipsec.conf
flush;
spdflush;
spdadd 0.0.0.0/0 10.115.90.0/24 any -P out ipsec
esp/tunnel/187.yyy.yyy.yyy-200.xxx.xxx.xxx/require;
spdadd 10.115.90.0/24 0.0.0.0/0 any -P in ipsec
esp/tunnel/200.xxx.xxx.xxx-187.yyy.yyy.yyy/require;
spdadd 0.0.0.0/0 192.168.10.0/24 any -P out ipsec
esp/tunnel/187.yyy.yyy.yyy-200.xxx.xxx.xxx/require;
spdadd 192.168.10.0/24 0.0.0.0/24 any -P in ipsec
esp/tunnel/200.xxx.xxx.xxx-187.yyy.yyy.yyy/require;
spdadd 0.0.0.0/0 192.168.201.0/24 any -P out ipsec
esp/tunnel/187.yyy.yyy.yyy-200.xxx.xxx.xxx/require;
spdadd 192.168.201.0/24 0.0.0.0/0 any -P in ipsec
esp/tunnel/200.xxx.xxx.xxx-187.yyy.yyy.yyy/require;
==
Here is my /usr/local/etc/racoon/racoon.conf
path pre_shared_key /usr/local/etc/racoon/psk.txt;
log debug2;
remote anonymous
{
exchange_modemain;
my_identifieraddress 187.4.201.197;
peers_identifier address 200.186.89.186;
lifetime time 28800 sec;# sec,min,hour
generate_policy off;
# phase 1 proposal (for ISAKMP SA)
proposal {
encryption_algorithm 3des;
hash_algorithmsha1;
authentication_method pre_shared_key;
dh_group 2;
}
}
# phase 2 proposal (for IPsec SA).
# actual phase 2 proposal will obey the following items:
# - kernel IPsec policy configuration (like esp/transport//use)
# - permutation of the crypto/hash/compression algorithms presented below
sainfo address anonymous
{
lifetime time 28800 sec;
encryption_algorithm 3des;
authentication_algorithm hmac_sha1;
compression_algorithmdeflate;
}
=
--
Matheus Weber da Conceição
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: what to do when FreeBSD cannot do something?
What virtulization system to use? Personnally I use ESXi from vmware This was a great tip, thank you. I wasn't aware that ESXi is a bare metal and free. That's the idea: bare metal and free, proxmox has something based on... I don't remember. I opted for vmware becuase it seems to be more wide spread. What OS to use instead of FreeBSD? It depends on what is recommended for your application, what resources you have available around you, etc. For a similar problem I choosed Ubuntu because Ubuntu was well supported by the application and some colleagues had a decent knwoledge of ubuntu. I am not fanatic about FreeBSD, but I feel very comfortable with it and I resist change. However your ESXi tip would allow me to run ESXi on bare metal and virtualize simple installations of the unpleasant legacy OSes without making my fingers too dirty. You will have to make your fingers dirty, because once you are installing any OS on a virtual machine, it is as dirty as installing on a bare hardware: you need to learn how to install, tune and secure that new OS... Good luck, olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
livefs hard links
The FreeBSD livefs ISO filesystem hides hard links, so they can't be accurately copied. Is relinking nearly everything in /rescue enough, or are there other former hard links waiting to pop up? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Global backup solution for FBSD Ubuntu
bsd writes: I am trying to build a global backup solution for couple of strategic servers (7) based on two operating systems : Depending on how much data you are trying to backup and whether an internet backup solution would work, you may want to take a look at tarsnap: http://www.tarsnap.com/ Works on both FreeBSD and Linux. It has deduplication capabilities within a server. You can do several backups as full and the service will only store what has changed. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
