Re: /etc/rc.d/netif em interfaces
To make this problem even stranger, I can make a connection from the server to a workstation without issue. It appears to only be incoming We've seen something very similar to this; we assumed it was EEPROM corruption. Is this a Dell PowerEdge by chance? Do you have TSO enabled? (-tso or tso flag in $ifconfig_emX) Does appending up to the end of if $ifconfig_emX solve the problem? ~BAS connections. Thanks again, --Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Mother board compatibility and CF card usage as main storage device for small DNS server
On 9/30/2010 4:11 AM, Kaya Saman wrote: I mean for a DNS server (all be it a small one) is it wise to use compact flash as storage?? For our GSLB DNS Slaves, we boot embedded/low power (or even VMs these days) systems with CF images off of flash, keep a shadow copy of /etc around, and program all file systems with R/W activity (/var/chroot/named/cache, where all zone files are fetched from Master NS) on MFS partitions, eliminating almost all write operations to the CF card. No swap, and RD / (/var, etc.) and MFS /usr extracted from a tarball via modified rc(8). /shadow is mounted noatime. Minimal writes to flash. The systems boot in about 30 seconds. We actually run NetBSD, but we've done similar models on FreeBSD. No CF card failures reported in five (5) years. We use Transcend Industrial series. Where it gets risky is if you just plain install a live functional FreeBSD on CF. A million inodes for /usr/src and CF is about as fast as an ESDI hard drive in an IBM XT. ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Anyone client-bridge'ing with ath(4) ?
All: It's a bit hard to track where we stand with this issue. Is anyone having success running client-bridge (wifi0 in client mode, briding to wired interfaces)? From assorted posts, I understand ath(4) can't transmit from arbitrary source MACs or there's some limitation to the the 802.11 layer? It seems to work as long as the wifi(4) interface is in HostAP mode, but I havn't tested it (not looking to do this; well, maybe host-bridge-repeater) I do this all the time in DD-WRT on crappy Asus SOHO gear running Atheros 2xxx and 7xxx chips, so you would think it easy. ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
8.0-R failing to parse DHCP root-path or loader.conf/rc vars (Diskless NFS/PXE)
All: DHCP: option root-path 192.168.224.67:/export/tftpboot/root-db; loader.rc: set vfs.root.mountfrom=nfs set vfs.root.mountfrom.options=rw set boot.nfsroot.path=/export/tftpboot/root-web set boot.nfsroot.server=192.168.224.67 loader.conf: mfsroot_load=NO nfsclient_load=YES init_path=/stand/sysinstall autoboot_delay=2 The kernel fails to mount / as RW with: mount option export is unknown Then some mysterious file system that isnt' MFS and isn't NFS show up. I don't think any of the docs out there are up to date, and from mailing list discussion, the syntax appears to have changed in 8.0 Anyone out there running a diskless config? ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Bacula 5.0 compiler error (crypto.c)
On 4/26/2010 9:05 AM, Efren Bravo wrote: I've OpenSSL 1.0.0 installed and ports up2date. My server is on production, so, What do you think I should do in my case? Okay yea you'll need 5.0.1 and a copy of KR or Stevens` APUE to help hold you down. [1] ~BAS 1. Down under water, until the thrashing stops. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
PXE + sysinstall(8) install.cfg: DHCP Attribute to map install config/policy to system MAC?
All: The install.cfg mechanism is pretty wicked. Unfortunately, there doesn't seem to be a really efficient way to provide new clients (or class of clients) an install.cfg without rebuilding an MFSROOT image. At least with pxeboot(8), in TFTP-only-mode, using dhcpd.conf(5) client{} entries, there isn't a way to differentiate policies. It's just going to go looking for /boot/loader.rc and /boot/loader.conf from wherever DHCP told PXE to fetch pxeboot(8) from. From there, you need to custom compile a 5 meg mfsroot image for each [class of] client. With an NFS stage-2 boot, I suppose you could set: option root-path /export/${client}Root etc., but then your 5 meg mfsroot is just extracted 1-per-client. Still seems a bit ugly. It seems like we could teach sysinstall(8) to fetch install.cfg by some standard mechanism. Possibly a TFTP or NFS URL passed from the DHCP server - boot loader - kernel sysctl - sysinstall(8). For example, the Sun SPARC4s would TFTP fetch their stage 1 boot loader via TFTP with a filename req of their MAC address in HEX format, so one could just put symlinks in place. Thoughts or other ideas? ~BAS PS: our in-tree tftpd(8) is an unending source of sorrow and misery and clinical despair. ports/net/freebsd-tftp is a lifesaver (it actually has debugging) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Debugging RLIMITs signals: SIGXFSZ and SIGXCPU
All: I've got a process that is mysteriously receiving a SIGTERM (or other signal. It's a RADIUS daemon; runs a non-Root (not privsep, unfortunately). Identical hardware, identical code, identical config on 6.3-PL is fine. On 8, the daemon is logging receipt of a non-HUP signal and exiting out. Our best theory at the moment are changes in default RLIMITs between RELENG_6and RELENG_8. For example: 6.3: open files (-n) 11095 8: open files (-n) 3520 Either that, or a memory/file handler/other leak that only manifests in RELENG_8. Either way, I'd like to debug the kernel handling of RLIMITs. The best I can find are references to: /usr/src/sys/kern/kern_resource.c::lim_cb() to SIGXCPU for RLIMIT_CPU /usr/src/sys/ufs/ffs/ffs_vnops.c::ffs_write() to SIGXFSZ or ... RLIMIT_FSIZE Not sure about RLIMIT_RSS, RLIMIT_AS, RLIMIT_NOFILE or others. Unfortunately, in the two places I see, the call 'psignal()' is used in leui of 'killproc()' to pass those custom RLIMIT's related signals and psignal() doesn't have any logging like killproc(). It would be really nice if there could be some standardized logging for RLIMIT* related resource exhaustion. For example: /usr/src/sys/vm/vm_pageout.c: killproc(bigproc, out of swap space); So my question are: 1) Anyone else interested in having this feature (RLIMIT debugging, possibly a sysctl(3))? 2) Does anyone have any idea how other RLIMIT_ exhaustion is handled? A lot of other checks in the code in kernel_resource.c seems to 'return (error);' on resource exhaustion. Thanks, ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipv6 static route.
On 1/25/2010 12:15 PM, Peter Ankerstål wrote: How do I set a static ipv6 route in rc.conf? This command works: route add -inet6 -net 2003:16c8:dc1e:2:: -prefixlen 64 2003:16c8:dc1e::2 and I use this in rc.conf: ipv6_static_routes=2003:16c8:dc1e:2:: -prefixlen 64 2003:16c8:dc1e::2 Do it like IPv4 static routes with an itemized/serialized list: ipv6_static_routes=pitbpa0_0 pitbpa0_1 faith_0 faith_1 ipv6_route_pitbpa0_0=2607:f000:0010:0100::/56 2607:f000:10::4000 ipv6_route_pitbpa0_1=2607:f000:0010:0200::/56 2607:f000:10::4000 ipv6_route_faith_0=2607:f000:10:0::: -prefixlen 96 ::1 ipv6_route_faith_1=2607:f000:10:0::: -prefixlen 96 -ifp faith0 Keep the faith, yea? ~BAS but it does not set the correct routes. -- Peter Ankerstål pe...@pean.org http://www.pean.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Yahoo! moving to Linux???
http://m.de.yahoo.com was running YTS on Linux when last queried at 19-Dec-2009 19:12:25 GMT - refresh now Site Report Hard to stand, I'd expect FreeBSD get replaced by Windows because of MS/Yahoo! agreement, but Linux?? Its possible the frontend loadbalancer/L4 switch is an A10 at Yahoo!, and the A10 signature should resemble embedded GNU/Linux. Or does it go by server version string? ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Specific interface to default route
Anthony M. Rasat wrote: Dear all, I have two (ethernet) network interface with IP address within the same subnet, call it msk0 and nfe0. Interface msk0 have IP address 192.168.0.2 and nfe0 192.168.0.3 and default router IP address is 192.168.0.1. route(8) takes a 'dev' argument, but the community wouldn't endorse what you're doing. Unless you're looking to ensure job security :} ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Apache 2.2 mod_ldap refusing to work over SSL/TLS
As far as I can tell, it doesn't even get to the certificate verification phase even though the STARTTLS command is successful. Is there any level of debugging that can be increased on the Apache side ? Possibly a build/compile-time option for the module? Debugging apache code can always be tricky because of the threaded/child process nature. We use mod_authz_ldap and it works okay, but OpenLDAP an can be a real beyotch when it comes to SSL/TLS. E.g., we feel your pain. The only way out, is through. ~BAS Anyone have a clue on what could be causing this? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: jail - beginner questions
I really think that it should be corrected to: cd /usr/src make distribution DESTDIR=$D That's almost certainly correct, but it notes: Notes [1] This step is not required on FreeBSD 6.0 and later. But then I get this error in syslog: bind: Can't assign requested address That's a general ntworking error. We'd need to see your ifconfig(8)/netstat(8) -rn and rc.conf(5) network settings to figure that out. ~BAS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org