Re: Proper way to share ZFS via NFS
If you cant cope with multiple operating systems and their differences you are probably in the wrong job. On 10 September 2013 19:39, Steve O'Hara-Smith st...@sohara.org wrote: On Tue, 10 Sep 2013 12:10:13 +0100 krad kra...@gmail.com wrote: which is why you shouldnt use /etc/exports for zfs datasets. Just because Not so clear, if you are using a mixture of filesystems you may very sensibly opt to keep all your export controls in one place, similarly if you have servers running multiple OSs then not having to remember that the FreeBSD/ZFS box manages it's exports differently to the Linux/ext2fs may well be a benefit. You may have management tools and not wish to extend them to handle ZFS explicitly. There can be good reasons both ways. -- Steve O'Hara-Smith | Directable Mirror Arrays C:WIN | A better way to focus the sun The computer obeys and wins.|licences available see You lose and Bill collects. |http://www.sohara.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Proper way to share ZFS via NFS
point taken brain not properly booted up this morning it seems On 11 September 2013 07:59, Matthias Gamsjager mgamsja...@gmail.com wrote: Offtopic but since when is it ok the behave like this in the freebsd mailing list. Really no need to get personal... On Wed, Sep 11, 2013 at 8:50 AM, krad kra...@gmail.com wrote: If you cant cope with multiple operating systems and their differences you are probably in the wrong job. On 10 September 2013 19:39, Steve O'Hara-Smith st...@sohara.org wrote: On Tue, 10 Sep 2013 12:10:13 +0100 krad kra...@gmail.com wrote: which is why you shouldnt use /etc/exports for zfs datasets. Just because Not so clear, if you are using a mixture of filesystems you may very sensibly opt to keep all your export controls in one place, similarly if you have servers running multiple OSs then not having to remember that the FreeBSD/ZFS box manages it's exports differently to the Linux/ext2fs may well be a benefit. You may have management tools and not wish to extend them to handle ZFS explicitly. There can be good reasons both ways. -- Steve O'Hara-Smith | Directable Mirror Arrays C:WIN | A better way to focus the sun The computer obeys and wins.|licences available see You lose and Bill collects. |http://www.sohara.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Proper way to share ZFS via NFS
which is why you shouldnt use /etc/exports for zfs datasets. Just because you can do something doesn't mean you should eg dancing down the motorway at night in dark clothing is never a good idea, no matter how confident you are in your skills. On 9 September 2013 15:22, Steve O'Hara-Smith st...@sohara.org wrote: On Fri, 6 Sep 2013 11:43:03 -0700 aurfalien aurfal...@gmail.com wrote: Hi, Wondering whats the correct way to share ZFS, /etc/exports or via zfs commands which alter /etc/zfs/exports? As far as I can see both work just fine. The first has the benefit that it puts your ZFS exports in the standard place for exports and won't need fiddling with if you decide that you want to move one of them to some other filesystem. The second has the benefit that it integrates better with the ZFS tools. The one thing you don't want to do is put the same export in both. -- Steve O'Hara-Smith st...@sohara.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Proper way to share ZFS via NFS
always the zfs commands for zfs filesystems, otherwise why else would they be there? Do it manually and you could get conflicts later down the line On 6 September 2013 19:43, aurfalien aurfal...@gmail.com wrote: Hi, Wondering whats the correct way to share ZFS, /etc/exports or via zfs commands which alter /etc/zfs/exports? I see a lot of both on line. Thanks in advance, - aurf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pkgng problem
must be code unrot On 19 August 2013 16:13, Michael W. Lucas mwlu...@michaelwlucas.com wrote: For the archives: I left the problem alone for a few days, with no changes on my side. Came back Monday. Tried again. Everything worked on the affected machines. ==ml -- Michael W. Lucas - mwlu...@michaelwlucas.com, Twitter @mwlauthor http://www.MichaelWLucas.com/, http://blather.MichaelWLucas.com/ Absolute OpenBSD 2/e - http://www.nostarch.com/openbsd2e coupon code ILUVMICHAEL gets you 30% off helps me. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: copying milllions of small files and millions of dirs
When i migrated a large mailspool in maildir format from the old nfs server to the new one in a previous job, I 1st generated a list of the top level maildirs. I then generated the rsync commands + plus a few other bits and pieces for each maildir to make a single transaction like function. I then pumped all this auto generated scripts into xjobs and ran them in parallel. This vastly speeded up the process as sequentially running the tree was far to slow. THis was for about 15 million maildirs in a hashed structure btw so a fair amount of files. eg find /maildir -type d -maxdepth 4 | while read d do r=$(($RANDOM*$RANDOM)) echo rsync -a $d/ /newpath/$d/ /tmp/scripts/$r echo some other stuff /tmp/scripts/$r done ls /tmp/scripts/| while read f echo /tmp/scripts/$f done | xjobs -j 20 On 19 August 2013 18:52, aurfalien aurfal...@gmail.com wrote: On Aug 19, 2013, at 10:41 AM, Mark Felder wrote: On Fri, Aug 16, 2013, at 1:46, Nicolas KOWALSKI wrote: On Thu, Aug 15, 2013 at 11:13:25AM -0700, aurfalien wrote: Is there a faster way to copy files over NFS? I would use find+cpio. This handles hard links, permissions, and in case of later runs, will not copy files if they already exist on the destination. # cd /source/dir # find . | cpio -pvdm /destination/dir I always found sysutils/cpdup to be faster than rsync. Ah, bookmarking this one. Many thanks. - aurf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: copying milllions of small files and millions of dirs
whops that should have been ls /tmp/scripts/| while read f echo sh /tmp/scripts/$f done | xjobs -j 20 On 20 August 2013 08:32, krad kra...@gmail.com wrote: When i migrated a large mailspool in maildir format from the old nfs server to the new one in a previous job, I 1st generated a list of the top level maildirs. I then generated the rsync commands + plus a few other bits and pieces for each maildir to make a single transaction like function. I then pumped all this auto generated scripts into xjobs and ran them in parallel. This vastly speeded up the process as sequentially running the tree was far to slow. THis was for about 15 million maildirs in a hashed structure btw so a fair amount of files. eg find /maildir -type d -maxdepth 4 | while read d do r=$(($RANDOM*$RANDOM)) echo rsync -a $d/ /newpath/$d/ /tmp/scripts/$r echo some other stuff /tmp/scripts/$r done ls /tmp/scripts/| while read f echo /tmp/scripts/$f done | xjobs -j 20 On 19 August 2013 18:52, aurfalien aurfal...@gmail.com wrote: On Aug 19, 2013, at 10:41 AM, Mark Felder wrote: On Fri, Aug 16, 2013, at 1:46, Nicolas KOWALSKI wrote: On Thu, Aug 15, 2013 at 11:13:25AM -0700, aurfalien wrote: Is there a faster way to copy files over NFS? I would use find+cpio. This handles hard links, permissions, and in case of later runs, will not copy files if they already exist on the destination. # cd /source/dir # find . | cpio -pvdm /destination/dir I always found sysutils/cpdup to be faster than rsync. Ah, bookmarking this one. Many thanks. - aurf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Vbox shared folders and freebsd guests
Hi,
Do shared folders from vbox hosts to freebsd guests work as i cant seem to
mount them? I have the guest additions installed fine.
s11 host
vbox@radical:~$ VBoxManage list runningvms
router {daa9e421-7730-4f77-b97c-d931c107e50d}
vbox@radical:~$ VBoxManage list runningvms -l| ggrep -iA 2 share
Shared folders:
Name: 'new', Host path: '/videos/new' (machine mapping), writable
vbox@radical:~$ uname -a
SunOS radical.intranet 5.11 11.1 i86pc i386 i86pc
bsd guest
[root@carrera /home/krad]# kldstat -v | grep -i vb
201 0x81c12000 22c77vboxguest.ko
(/boot/modules/vboxguest.ko)
500 pci/vboxguest
[root@carrera /home/krad]# ls -l /| grep mnt
drwxrwxrwx 13 root wheel 512 Aug 12 2012 mnt
[root@carrera /home/krad]# mount -t vboxsf new /mnt
mount: new: Operation not supported by device
[root@carrera /home/krad]# ps auxwww| grep VB
root 1204 0.0 0.1 32200 2832 ?? Ss9:19AM 0:00.16
/usr/local/sbin/VBoxService
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: to gmirror or to ZFS
But then zfs doesn't access every block on the disk does it, only the allocated ones On 20 July 2013 21:07, Daniel Feenberg feenb...@nber.org wrote: On Sat, 20 Jul 2013, Steve O'Hara-Smith wrote: On Sat, 20 Jul 2013 18:14:20 +0100 Frank Leonhardt fra...@fjl.co.uk wrote: It's worth noting, as a warning for anyone who hasn't been there, that the number of times a second drive in a RAID system fails during a rebuild is higher than would be expected. During a rebuild the remaining drives get thrashed, hot, and if they're on the edge, that's when they're going to go. And at the most inconvenient time. Okay - obvious when you think about it, but this tends to be too late. Having the cabinet stuffed full of nominally identical drives bought at the same time from the same supplier tends to add to the probability that more than one drive is on the edge when one goes. It's a pity there are now only two manufacturers of spinning rust. Often this is presummed to be the reason for double failures close in time, also common mode failures such as environment, a defective power supply or excess voltage can be blamed. I have to think that the most common cause for a second failure soon after the first is that a failed drive often isn't detected until a particular sector is read or written. Since the resilvering reads and writes every sector on multiple disks, including unused sectors, it can detect latent problems that may have existed since the drive was new but which haven't been used for data yet, or have gone bad since the last write, but haven't been read since. The ZFS scrub processes only sectors with data, so it provides only partial protection against double failures. Daniel Feenberg NBER -- Steve O'Hara-Smith st...@sohara.org __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Same MAC address in 2 different VLANs
I think you maybe ok. Ive just looked at my esx config and the esx management interfaces use their own generated macs, not the physical interfaces ones. All the vms obviously use generated macs as well. However I only looked over it at a superficial level. Have you considered using a tap or spare phyical interface on your flex box and not linking it to the network? On 19 July 2013 10:29, Olivier Nicole olivier.nic...@cs.ait.ac.th wrote: Hello, Could any one comment about the use of the same MAC address in 2 separate VLANs? All my machines are connected to 2 VLANs (one public and one private) with no routing in between the VLANs. I used to run a FLEX license manager to a physical machine. When I virtualized that service, I had to use the MAC address of that physical machine for the virtual machine (FLEX is linked to the MAc address and I coul dnot issue new license as licensed the pproduct is not supported anymore). The virtual NIC that has the old MAC address is connected to the public VLAN. Now I want to reuse the physical machine as a VMware server. Dell nor VMware offer a solution to change the MAC address (like ifconfig em0 link xx:xx:xx:xx:xx:xx would do). So I plan to connect the NIC with the incriminated MAC to the private VLAN. Most (if not all) my servers are FreeBSD. Most will access the virtual machine running FLEX and may access the VMware server also. The servers are not VLAN aware. Will this be an issue? Best regars, Olivier -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Adding another mirror to existing ZFS-root mirror?
It should boot, although i havent run that configuration myself so cant say for certain have a look at gpart backup and restore for the labels, as you might as well make them the same and expand any swap space across all four drives. DOnt forget to install the bootloader as well Alternatively you could just give the raw disks to zfs On 15 July 2013 17:23, Scott Ballantyne s...@ssr.com wrote: Hi, I have the current situation: sdb@gigawattmomma$ zpool status zroot NAME STATE READ WRITE CKSUM zroot ONLINE 0 0 0 mirror-0 ONLINE 0 0 0 gpt/disk0 ONLINE 0 0 0 gpt/disk1 ONLINE 0 0 0 I boot directly from this. This article from Oracle: http://docs.oracle.com/cd/E19253-01/819-5461/gazgw/index.html implies I can add two more disks to the zroot pool with a zpool add zroot mirror disk2 disk3 to get zroot mirror-0 gpt/disk0 gpt/disk1 mirror-1 gpt/disk2 gpt/disk3 My questions: 1) Will booting still work? What do I need to do to make sure I can still boot up the system? Perhaps related: 2) How do I use gpart to prep these disks? The current mirror has the usual three partitions (freebsd-boot, freebsd-swap and freebsd-zfs), with boot code installed, obviously. Do I need to do that with the second mirror, or can I just use the whole thing for a freebsd-zfs filesystem? Sorry this was a bit long. Thanks in advance for any help. Best, Scott -- s...@ssr.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: to gmirror or to ZFS
You would in theory as from what i remember every zfs filesystem takes up 64 kb of ram, so the savings could be massive 8) On 16 July 2013 10:41, Shane Ambler free...@shaneware.biz wrote: On 16/07/2013 14:41, aurfalien wrote: On Jul 15, 2013, at 9:23 PM, Warren Block wrote: On Mon, 15 Jul 2013, aurfalien wrote: ... thats the question :) At any rate, I'm building a rather large 100+TB NAS using ZFS. However for my OS, should I also ZFS or simply gmirror as I've a dedicated pair of 256GB SSD drives for it. I didn't ask for SSD sys drives, this system just came with em. This is more of a best practices q. ZFS has data integrity checking, gmirror has low RAM overhead. gmirror is, at present, restricted to MBR partitioning due to metadata conflicts with GPT, so 2TB is the maximum size. Best practices... depends on your use. gmirror for the system leaves more RAM for ZFS. Perfect, thanks Warren. Just what I was looking for. I doubt that you would save any ram having the os on a non-zfs drive as you will already be using zfs chances are that non-zfs drives would only increase ram usage by adding a second cache. zfs uses it's own cache system and isn't going to share it's cache with other system managed drives. I'm not actually certain if the system cache still sits above zfs cache or not, I think I read it bypasses the traditional drive cache. For zfs cache you can set the max usage by adjusting vfs.zfs.arc_max that is a system wide setting and isn't going to increase if you have two zpools. Tip: set the arc_max value - by default zfs will use all physical ram for cache, set it to be sure you have enough ram left for any services you want running. Have you considered using one or both SSD drives with zfs? They can be added as cache or log devices to help performance. See man zpool under Intent Log and Cache Devices. __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: to gmirror or to ZFS
not recommended anymore you should run SU+J if your version supports it On 17 July 2013 00:08, Nikos Vassiliadis nv...@gmx.com wrote: On 07/16/13 21:27, Johan Hendriks wrote: Op dinsdag 16 juli 2013 schreef Charles Swiger (cswi...@mac.com) het volgende: Hi-- On Jul 16, 2013, at 10:33 AM, Johan Hendriks joh.hendr...@gmail.com** javascript:; wrote: [ ... ] I would us a zfs for the os. I have a couple of servers that did not survive a power failure with gmirror. The problems i had was when the power failed one disk was in a rebuilding state and then when the background fsck started or was busy for some time it would crash the whole server. Well, don't do that. :-) When the server reboots because of a powerfailure at night, then it boots. Then it starts to rebuild the mirror on its own, and later the fsck kicks in. Not much i can do about it. You could add geom_journal which will minimize the time of fsck to a second or something like that. Then you don't have to use background fsck anymore. Actually geom_journal's manual page mentions an interesting side-effect of geom_journal over a geom_mirror: you can turn off component synchronization. Geom_journal will re-play last writes so whatever was changed just before the crash will be re-written to both disks. I haven't used this but it makes sense in theory. Maybe i should have done it without the automatic attachment for a new device. I always turn off automatic synchronization or stale components as well. It seems to me that people don't really use geom_journal or maybe they just don't talk about it like it's some sort of secret:) just my two cents, Nikos __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: prevent ip conflict in dhcp client
alter the pool rand on the network to use say, x.x.x.1-199 on a /24, and
then allocate your statics 200 but = 254 or add something similar to your
isc-dhcp config
host host.intranet {
hardware ethernet c8:60:33:1d:f3:57;
fixed-address 192.168.210.81;
option host-name host.intranet;
}
Alternatively use ipv6 as the automatic ip address configuration tests
exactly like you commented on
On 11 July 2013 12:18, s m sam.gh1...@gmail.com wrote:
thanks Eugene,
you're right but i forgot to say that my client acts like a router. i mean
none of interfaces should have ip address in same range (this is conflict
for me). i can manage each interface to get ip address from DHCP or
manually. so one interface may get ip address from dhcp server whereas all
others have ip addresses which are set manually.
for this situation, do you have any ideas to avoid ip conflict?
thanks again for your attention
SAM
On Thu, Jul 11, 2013 at 3:06 PM, Eugene ge...@geniechka.ru wrote:
Hi Sam,
Actually I think this is wrong approach. Correctly configured networks
should be consistent and should not need such 'fixes'. Also you should
observe the IP provided by upstream DHCP server otherwise it is an
invitation for trouble (both technical and possibly legal).
Are the 'other' interfaces in your internal networks? Then you should
change them to use different address block from that used in your
provider's network (there are many address blocks for private networks).
And/or you should talk to your admin and discuss the address policy,
maybe
they can give you a fixed address.
Best wishes
Eugene
-Original Message- From: s m
Sent: Thursday, July 11, 2013 2:19 PM
To: freebsd-questions
Subject: prevent ip conflict in dhcp client
hello all
i have a question about dhcp client. i want to know if there is any way
to
understand the ip address which is offered by server before it assigned
to
the interface.
i have a freebsd system which one of its interfaces should get ip address
from dhcp server whereas other interfaces have ip addresses and their ip
address change many times. so i want to prevent ip conflict. is there
any
way to prevent ip conflict in this situation?
i think the best way is to know the ip address which is offered by dhcp
server before assigning it to interface and check if it has conflict
with
others or not. is it possible? if yes, how i can do this?
any comments or hints are appreciated.
thanks in advance
SAM
__**_
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questions
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-**
unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
freebsd-questions-unsubscr...@freebsd.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: prevent ip conflict in dhcp client
ops %s/rand/range/
On 11 July 2013 12:42, krad kra...@gmail.com wrote:
alter the pool rand on the network to use say, x.x.x.1-199 on a /24, and
then allocate your statics 200 but = 254 or add something similar to your
isc-dhcp config
host host.intranet {
hardware ethernet c8:60:33:1d:f3:57;
fixed-address 192.168.210.81;
option host-name host.intranet;
}
Alternatively use ipv6 as the automatic ip address configuration tests
exactly like you commented on
On 11 July 2013 12:18, s m sam.gh1...@gmail.com wrote:
thanks Eugene,
you're right but i forgot to say that my client acts like a router. i mean
none of interfaces should have ip address in same range (this is conflict
for me). i can manage each interface to get ip address from DHCP or
manually. so one interface may get ip address from dhcp server whereas all
others have ip addresses which are set manually.
for this situation, do you have any ideas to avoid ip conflict?
thanks again for your attention
SAM
On Thu, Jul 11, 2013 at 3:06 PM, Eugene ge...@geniechka.ru wrote:
Hi Sam,
Actually I think this is wrong approach. Correctly configured networks
should be consistent and should not need such 'fixes'. Also you should
observe the IP provided by upstream DHCP server otherwise it is an
invitation for trouble (both technical and possibly legal).
Are the 'other' interfaces in your internal networks? Then you should
change them to use different address block from that used in your
provider's network (there are many address blocks for private networks).
And/or you should talk to your admin and discuss the address policy,
maybe
they can give you a fixed address.
Best wishes
Eugene
-Original Message- From: s m
Sent: Thursday, July 11, 2013 2:19 PM
To: freebsd-questions
Subject: prevent ip conflict in dhcp client
hello all
i have a question about dhcp client. i want to know if there is any way
to
understand the ip address which is offered by server before it assigned
to
the interface.
i have a freebsd system which one of its interfaces should get ip
address
from dhcp server whereas other interfaces have ip addresses and their ip
address change many times. so i want to prevent ip conflict. is there
any
way to prevent ip conflict in this situation?
i think the best way is to know the ip address which is offered by dhcp
server before assigning it to interface and check if it has conflict
with
others or not. is it possible? if yes, how i can do this?
any comments or hints are appreciated.
thanks in advance
SAM
__**_
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questions
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-**
unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
freebsd-questions-unsubscr...@freebsd.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: prevent ip conflict in dhcp client
what is normal though these days? A lot of the fibre vhdsl lines do use
dhcp on the wan link in the uk as they are just presented as ethernet,
whilst other providers pppoe.
On 11 July 2013 13:47, Frank Leonhardt freebsd-...@fjl.co.uk wrote:
This all sounds like a very strange thing to be doing! But I hate it when
people answer my questions with Why would you want to do that, so I won't.
Binding an IPv4 address using a MAC address, which is the answer to a lot
of DHCP problems. But your explanation my client acts like a router set
alarm bells ringing. What exactly are you trying to do, and are you aware
that routers aren't (normally) configured using DHCP? If you've got any
kind of normal Internet line it will receive it's IP address using LCP (the
NCP part, and the IPCP to be precise). Or at least, that's how I think it
normally works.
Regards, Frank.
On 11/07/2013 12:43, krad wrote:
ops %s/rand/range/
On 11 July 2013 12:42, kradkra...@gmail.com wrote:
alter the pool rand on the network to use say, x.x.x.1-199 on a /24, and
then allocate your statics 200 but = 254 or add something similar to
your
isc-dhcp config
host host.intranet {
hardware ethernet c8:60:33:1d:f3:57;
fixed-address 192.168.210.81;
option host-name host.intranet;
}
Alternatively use ipv6 as the automatic ip address configuration tests
exactly like you commented on
On 11 July 2013 12:18, s msam.gh1...@gmail.com wrote:
thanks Eugene,
you're right but i forgot to say that my client acts like a router. i
mean
none of interfaces should have ip address in same range (this is
conflict
for me). i can manage each interface to get ip address from DHCP or
manually. so one interface may get ip address from dhcp server whereas
all
others have ip addresses which are set manually.
for this situation, do you have any ideas to avoid ip conflict?
thanks again for your attention
SAM
On Thu, Jul 11, 2013 at 3:06 PM, Eugenege...@geniechka.ru wrote:
Hi Sam,
Actually I think this is wrong approach. Correctly configured networks
should be consistent and should not need such 'fixes'. Also you should
observe the IP provided by upstream DHCP server otherwise it is an
invitation for trouble (both technical and possibly legal).
Are the 'other' interfaces in your internal networks? Then you should
change them to use different address block from that used in your
provider's network (there are many address blocks for private
networks).
And/or you should talk to your admin and discuss the address policy,
maybe
they can give you a fixed address.
Best wishes
Eugene
-Original Message- From: s m
Sent: Thursday, July 11, 2013 2:19 PM
To: freebsd-questions
Subject: prevent ip conflict in dhcp client
hello all
i have a question about dhcp client. i want to know if there is any way
to
understand the ip address which is offered by server before it assigned
to
the interface.
i have a freebsd system which one of its interfaces should get ip
address
from dhcp server whereas other interfaces have ip addresses and their
ip
address change many times. so i want to prevent ip conflict. is there
any
way to prevent ip conflict in this situation?
i think the best way is to know the ip address which is offered by dhcp
server before assigning it to interface and check if it has conflict
with
others or not. is it possible? if yes, how i can do this?
any comments or hints are appreciated.
thanks in advance
SAM
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questionshttp://lists.freebsd.org/**mailman/listinfo/freebsd-**questions
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-**
unsubscr...@freebsd.org
freebsd-questions-**unsubscr...@freebsd.orgfreebsd-questions-unsubscr...@freebsd.org
__**_
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
freebsd-questions-unsubscribe@**freebsd.orgfreebsd-questions-unsubscr...@freebsd.org
__**_
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail tofreebsd-questions-**
unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org
__**_
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail
Re: filesystem advice
There isnt really a thing as better, just different. WHich is best for you depends on your requirements and resources. A zfs based solution would work on that system as its just serving a few clients, and on the assumption that they arent to demanding it should run fine. Bunging in more memory if you can will just make things better though, just dont expect anything to amazing out of the machine. If the data is important then all the data integrity features of zfs will be handy. However if you need more speed ufs will be faster on that system, at the expense of the advanced features of zfs. Its really down to you to decide whats more important. On 21 May 2013 22:37, Roland Smith rsm...@xs4all.nl wrote: On Tue, May 21, 2013 at 06:43:25PM +0200, Pol Hallen wrote: Hi all and sorry for this (newbie) question. I study FreeBSD (I come from linux) and I'm not sure which filesystem use. My situation: install a fileserver (samba) for 3 clients and put it as gateway/server on internet (ssh, and samba to internal lan). I installed FreeBSD with raid 1 following this howto: http://www.ateamsystems.com/blog/Installing-FreeBSD-9-gmirror-GPT-partitions-raid-1 everything ok! I see that use ufs filesystem, now: I'd like have less maintenance possible direclty to machine because this server is far to me 50Km. So I can use ssh for default (and extra) maintenance. Which filesystem is better? After total crash of system (i.e.) or black-out, ufs can repair it by itself? Or better use ufs+journal? or zfs? By default, FreeBSD 9.x uses journaled soft-updates now. This will cut down the filesystem check time significantly. A filesystem check will require manual intervention when some kinds of errors are found. ZFS likes to have a lot of memory, and preferably a 64-bit machine. See the tuning guide: https://wiki.freebsd.org/ZFSTuningGuide Motherboard is atom dual core with 2Gb of ram and 2 disks with 2Gb each. Roland -- R.F.Smith http://rsmith.home.xs4all.nl/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Diskless question
type id from your user account and paste the results back here On 24 April 2013 14:55, Bernt Hansson b...@bananmonarki.se wrote: 2013-04-24 15:40, Lowell Gilbert skrev: Arthur Chance free...@qeng-ho.org writes: On 04/24/13 14:07, Lowell Gilbert wrote: No, that's from /etc/passwd which never shows any real password information. The true password field is in /etc/master.passwd and I'm not going to ask anyone to show that here. However, the OP should check it's got a valid looking field value rather than just a '*' Oops. Right. Ok this is master.password for root root:a lot of tokens.:0:0::0:0:Charlie :/root:/bin/csh __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
IPTV multicast setup
Hi, I currently have an iptv multicast setup at home. I want to replace the isp supplied router with a freebsd box. I'm fine on the normal routing setup however I'm having difficulty finding uptodate info on howto setup a freebsd multicast router. Can anyone give me any pointers? I think they use igmpv3 if that helps. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
synproxy definition in pfctl -si
Hi, I am looking to track the number of syn packets coming into a system, as the box in question has pf running and using the synproxy attribute on tcp services, I hope to be able to use the synproxy field in pfctl -si. However I cant find a definitive definition of the variable, Ive looking in the source but haven't have much look in finding where it is derived. Can anyone shed any light on if my assumption is valid as without a proper definition of this variable I can't really trust its output is what i think it is. Alternatively if anyone could suggest an another way of tracking inbound syn packets I would be grateful, it must use base os tools though, ie no ports or other apps required. Thanks K ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Intel turbo mode support
On 13 April 2012 14:17, Warren Block wbl...@wonkity.com wrote: On Fri, 13 Apr 2012, Christer Solskogen wrote: On Fri, Apr 13, 2012 at 2:09 PM, Florian Unglaub ue...@roladder.net wrote: I tried it with your powerd flags and the performance_cpu_freq setting on HIGH, but still the maximum freq_levels entry is 2800. How far should it go, then? The highest speed will be one higher than the nominal rating: dev.cpu.0.freq_levels: 5801/30 5800/30 ... The second one is the nominal speed, the first is turbo. dev.cpu.0.freq shows the current speed: dev.cpu.0.freq: 5801 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org is the uefi/bios setup correctly? Multiplier could be wrong or turbo could be disabled ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrade to 9.0 - Mount to root failed..
On 8 April 2012 09:53, Airosoβicz fb. airosov...@gmail.com wrote:
Greetings all,
It's my 1st time on any of the FreeBSD lists I'm fairly new to FreeBSD to
please bear with me..
So I've upgraded from 8.1 to 9.0 now the system can't mount in single
user mode to go through the final step of installing the world..
# cvsup.. Done..
# make buildworld.. Done..
# make buildkernel.. Done..
# make installkernel.. Done..
# reboot in single user mode to install world.. Failed to mount to
/dev/ad2s1a.. {Yes, that *is* my HD}
I rebooted from the loader prompt with my old (GENERIC) kernel came up
with the following..
peggy# ls -l /dev/ad*
crw-r- 1 root operator 0, 79 Apr 8 08:47 /dev/ad2
crw-r- 1 root operator 0, 82 Apr 8 08:47 /dev/ad2s1
crw-r- 1 root operator 0, 84 Apr 8 08:47 /dev/ad2s1a
peggy# cat /etc/fstab
# Device Mountpoint FStype Options Dump Pass#
/dev/ad2s1a / ufs rw 1 1
/dev/acd0 /cdrom cd9660 ro,noauto 0 0
peggy# disklabel /dev/ad2s1a
# /dev/ad2s1a:
8 partitions:
# size offset fstype [fsize bsize bps/cpg]
a: 20044017 0 4.2BSD 2048 16384 28552
c: 20044017 0 unused 0 0 # raw part,
don't edit
peggy# fsck
** /dev/ad2s1a (NO WRITE)
** Last Mounted on /
** Root file system
** Phase 1 - Check Blocks and Sizes
** Phase 2 - Check Pathnames
** Phase 3 - Check Connectivity
** Phase 4 - Check Reference Counts
** Phase 5 - Check Cyl groups
415735 files, 3148200 used, 1702923 free (40563 frags, 207795 blocks, 0.8%
fragmentation)
peggy# kldstat
Id Refs Address Size Name
1 7 0xc040 bb5504 kernel
2 1 0xc2e1a000 26000 linux.ko
I know there's many 'mount' problem discussions out there but I can't seem
to find out how to overcome this problem..
Many thanx in advance for any assistance..
Regards,
E.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
try specifying 'ufs:/dev/adas1a' at the kernel prompt or editing that
into you fstab if you can. My devices changed and the 8-9 jump.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Dualboot with Windows 7
On 19 March 2012 17:46, David Demelier demelier.da...@gmail.com wrote: On 19/03/2012 17:53, Leslie Jensen wrote: 2012-03-19 08:53, Da Rock skrev: On 03/19/12 17:49, Polytropon wrote: On Mon, 19 Mar 2012 08:29:22 +0100, David Demelier wrote: On 19/03/2012 07:28, Polytropon wrote: On Sun, 18 Mar 2012 23:05:58 +0100, David Demelier wrote: Hello, I try to create a dualboot with Windows 7, I set up partitions like that : ada0s1 - NTFS (windows recovery) ada0s2 - NTFS (windows main partition) ada0s3 - BSD ada0s3a - freebsd-swap (3G) ada0s3b - freebsd-ufs / (remaining space from drive) Erm... according to traditional partitioning, isn't the 'a' partition reserved for booting, 'b' for swap? I see you have installed everything into one / partition which technically is no problem and should work, but it's not on the boot partition. You're right, but I made a mistake while writing, my a partition is / and b is swap. Okay. And then I let the installer complete the step, because FreeBSD didn't let you (since 9.0) choose between the boot manager nothing was installed and the boot directly goes to Windows 7. You need to install all the required stages for booting. If I understand the process correctly, the slice 's3' needs code to branch to the boot partition (which is supposed to be the 'a' partition), and the boot selector needs to be accessed from the beginning of the disk - you said you're using EasyBCD for this which is okay. I followed the part 13.3.2 from http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/boot-blocks.html I think this should be enough, isn't it? it says bsdlabel -B will replace the boot1 and boot2 stage so all of them are installed. Looks correct. Now the question is how to branch the a partition as the boot partition ? No need. As soon as the branching from ada0-start - ada0s3 has been processed, the 'a' partition ada0s3a will be accessed as it is the boot partition. It will then continue stage 1 and 2 and finally access the loader, which will load the kernel. In 13.3.2 it is explained as follows: They [Stage One, /boot/boot1, and Stage Two, /boot/boot2] are located outside file systems, in the first track of the boot slice, starting with the first sector. This is where boot0, or any other boot manager, expects to find a program to run which will continue the boot process. The number of sectors used is easily determined from the size of /boot/boot. In your case, the boot slice (for FreeBSD) is ada0s3 where the boot manager EasyBCD will branch to. Getting just a cursor (as you described) makes it hard to identify where the process hangs. If EasyBCD is the last thing you see, I assume the FreeBSD boot process isn't even initiated. Every part of it (MBR boot manager, boot0, boot1, boot2 and loader) would issue some kind of text when accessed. I couldn't say exactly how to do this now (been a long time), but you should be able to boot using the Windows loader (this may have changed in recent editions. Don't think so though). This will give you a choice between Windows or FreeBSD and defaults, timers, etc during boot. Used to be able to do it under system properties I believe; run a google search should provide some examples. Using EasyBCD you must ensure that your Windows partition has the boot flag set. /Leslie ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I reinstalled using the auto scheme, by adding a partition now it works. Thanks for your answers! Cheers, -- David Demelier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org have you tried fdisk -B ada0 to install the bsd bootloader? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Is it worthy upgrading to 9.0 ?
On 6 March 2012 09:49, Damien Fleuriot m...@my.gd wrote: On 3/6/12 7:01 AM, Allen wrote: On 2/28/2012 3:03 AM, Damien Fleuriot wrote: This is an entirely subjective question and one that only you can answer. For example, given the number of problem reports I'm seeing on the lists, I'm going to stick with the 8-STABLE branch for still a long time, likely until 9.1 or 9.2-RELEASE. I don't think it's a good idea to let what you see on a mailing list be your end all be all of what you use... This isn't an insult or anything, but I've seen some pretty damn stupid people who try to install stuff into Swap And that isn't even close to the stupidest thing I've ever seen on a list. Trust me, the best way to figure out of you personally would benefit from upgrading, is doing it yourself. I get your point, however, reports of NICs malfunctionning or stuff like that are pretty distressing when running frontend firewall boxes. Seeing 9.0 doesn't bring much to the table, imo, in terms of firewalling and CARP novelty, I'm probably going to stick with 8.3 for some time :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org apart from a major bump in the version of pf. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Current way of downloading sources
csup -h cvsup.your_country.freebsd.org/usr/share/examples/cvsup/stable-supfile works for ports as well 2012/2/21 Fernando Apesteguía fernando.apesteg...@gmail.com On Tue, Feb 21, 2012 at -h10:33 PM, Polytropon free...@edvax.de wrote: On Tue, 21 Feb 2012 21:18:41 +0100, Fernando Apesteguía wrote: Hi all, Before 9.0 I used to use sysinstall to download sources for several distributions including kernel and libraries. However, this doesn't seem to work anymore. Whatever source distribution I try to download I get the error that it doesn't exist in the server. The handbook[1] still says sysinstall can be used to do the job. Is it right? If so, what could be my mistake. The easiest way to get the RELEASE sources is to download them using FTP: ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/9.0-RELEASE/src.txz (and for amd64 architecture respectively) Leaving the discussion old vs. new installer aside, this method should always work. Thanks for the URL. Should I file a PR about the handbook issue? -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Processor question
On 14 February 2012 20:28, Frank Shute fr...@shute.org.uk wrote: On Tue, Feb 14, 2012 at 02:47:08PM -0500, Mike Dockery wrote: Greetings, Aloha, I have been a user of Linux since 1994, but most of the linux distros seem to be getting away from freedom... which is why I chose it in the first place. They seem intent on forcing things that do not work well (like pulseaudio and nouveau) on everyone. Freedom of choice is always best. Yeah, I used to use Linux but they became a bunch of Freedom Nazis controlled by big companies. Happily using FreeBSD for 10 years. My question is: Should I try the amd64 version of FreeBSD with my Intel Core i7-2600 processor or should I use the i386? Generally, for an x86 machine with 4GB or greater memory use amd64. Memory less than that use i386. I would actually say 3GB or more, as if you have a machine at 4gb and run a 32bit os you waste the best part of a gig or more due to pci addressing etc ie. you almost certainly want to use amd64, I should think. I hope to give FreeBSD a try later this month. Excellent. Best of luck and any problems not covered in the handbook or google, post here. Welcome to FreeBSD! Thanks, Mike Dockery Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Can clang compile RELENG_9?
On 11 February 2012 21:45, Michael Powell nightre...@hotmail.com wrote:
Dennis Glatting wrote:
I get errors when trying to compile RELENG_9 with clang. Is clag suppose
to work when it comes to compiling the OS or am I missing something:
[snip]
I can't speak to RELENG_9, but I have successfully rebuilt the RELEASE with
CLANG (make/install world kernel). My /etc/make.conf as per instructions I
found on the wiki:
.if !defined(CC) || ${CC} == cc
CC=clang
.endif
.if !defined(CXX) || ${CXX} == c++
CXX=clang++
.endif
.if !defined(CPP) || ${CPP} == cpp
CPP=clang-cpp
.endif
# Don't die on warnings
NO_WERROR=
WERROR=
# Don't forget this when using Jails!
NO_FSCHG=
This was with amd64, have not tried any 32 bit. With custom kernel as well.
-Mike
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
freebsd-questions-unsubscr...@freebsd.org
I've been building 9-current and 9-stable for a year or so with few
problems. It is a supported configuration after all. It should also create
faster binaries as well as gcc 4.3 is quite old now and clang generally
stacks up very well with the later gcc versions in terms of binary
performance.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Processor question
AMD As this just means 64 bit On Feb 14, 2012 8:02 PM, Mike Dockery mdock...@hargray.com wrote: Greetings, I have been a user of Linux since 1994, but most of the linux distros seem to be getting away from freedom... which is why I chose it in the first place. They seem intent on forcing things that do not work well (like pulseaudio and nouveau) on everyone. Freedom of choice is always best. My question is: Should I try the amd64 version of FreeBSD with my Intel Core i7-2600 processor or should I use the i386? I hope to give FreeBSD a try later this month. Thanks, Mike Dockery __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: corrupted tar.gz archive - I lost my backups :)/:(
Just another silly thought try the tar j flag rather than the z flag, as you might have got your compression algorithms confused. Try the xz one as well just in case On Feb 14, 2012 3:37 PM, Mike Kelly mdke...@ualr.edu wrote: I don't have the script anymore. It is among the files lost, but it was pretty much straight forward, making use of: tar -czf backupfile.tar.gz folders/ of/ my/ choice/. After creating the backups I just cp(1)ed them to an msdosfs formated usb stick and got them onto 8.2 this way, so the famous ascii/binary trap shouldn't be an issue here. Just a thought... how large were the tar.gz files? Are you maybe hitting on a file size limit and the .tar.gz files are getting truncated? Not sure what the limit is for msdosfs. -- Mike Kelly ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Mergemaster
On 5 February 2012 23:59, Net Warrior netwarrior...@gmail.com wrote: Hi there. I found very tedious when , after a makeworld the mergemaster process to say (i) to install/upgrade/replace/ with the new file, specially when there are a lot of files I was reading the documentation but it's not clear to me which option to use to automate the process, which is the right one, or combination? -U -F -iF? Thanks for your time and support Regards __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org here is my rc file it takes care of most of the stuff. Once installed just run mergemaster with no flags $ cat /etc/mergemaster.rc AUTO_INSTALL=YES AUTO_UPGRADE=YES PRESERVE_FILES=yes #IGNORE_FILES=/etc/rc.d/* DIFF_OPTIONS='-I$FreeBSD:.*[$]' PRESERVE_FILES_DIR=/var/mergemaster/preserved-files-`date +%y%m%d-%H%M%S` IGNORE_FILES=/etc/crontab /etc/fstab /etc/group /etc/hosts /etc/inetd.conf /etc/make.conf /etc/master.passwd /etc/motd /etc/newsyslog.conf /etc/ntp.conf /etc/ntp.drift /etc/profile /etc/rc.conf /etc/resolv.conf /etc/services /etc/shells /etc/syslog.conf /etc/ssh/sshd_config /etc/ssh/ssh_host_key /etc/ssh/ssh_host_key.pub /etc/ssh/ssh_host_rsa_key /etc/ssh/ssh_host_rsa_key.pub /etc/passwd /etc/rc.conf.local /etc/zfs/exports /etc//namedb/named.conf /etc/periodic.conf /etc/hosts.allow /etc/hosts /etc/pf.conf /etc/sysctl.conf /etc/make.conf /etc/src.conf /etc/mail/aliases /etc/mail/mailer.conf /etc/remote /etc/ppp/ppp.conf /etc/nsswitch.conf /etc/locate.rc ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 7.4 - 8.2
CCache is your friend when updating ports On Dec 22, 2011 12:48 PM, Albert Shih albert.s...@obspm.fr wrote: Le 24/11/2011 à 16:09:01+0100, Albert Shih a écrit Hi all Almost classic question about updating from 7.4 to 8.2. Anyone known if I can temporally run a 7.4 userland+service with 8.2 kernel ? I've ask this because I've ~ 15 jail on one server. I can update the «host» pretty fast but with the 15 jail I need some time. And I would like to known if durring this time the jail going to work «normally». So I answer to myself. Some body tell me it's like My gut reaction was Are you familiar with the game of Russian Roulette?. Wellit's work...almost. Here what I do : Upgrade kernel and userland from 7.4 to 8.2 on the host. Upgrade all userland of my all jail to 8.2 Until now everything work fine. Delete old libs/files/man and...apache stop working. After do a portupgrade -fR apache everything work again. Be careful the portupgrade -f apache is not enough. I don't known which ports have some problem but I got a SSL error. So first I just update apache. It's not good. Then apr, etc...finally I upgrade with «-fR» and everything work again. For subversion you need to force upgrade neon too. and for who want to ask me : NO I don't play Russian roulette. Regards. -- Albert SHIH DIO batiment 15 Observatoire de Paris 5 Place Jules Janssen 92195 Meudon Cedex Téléphone : 01 45 07 76 26/06 86 69 95 71 Heure local/Local time: jeu 22 déc 2011 13:41:25 CET ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Setting up ZFS - Filesystem Properties and Installing on Root
It seems to me that you would only need disk 1 to have boot, swap, and zfs, and the other 3 disks only have one partition (using the entire drive) for zfs's pool. As other have mentioned redundancy, but also you will nver see the befit as the zfs vdev (like any other raid system) size will defined by the smallest unit in the group. ie if you have 4 x 1tb drives and you have 3x 1tb slices and 950GB available on your boot drive then all the storage you will get is 4 x 950 - the parity data. Therefore make all you drives layouts identical and mirror any boot partitions across them all, or just 2 and use the other 2 for swap or a combination of the 2. Another way to do it is boot off usb stick although you should be able to boot off a native raidz these days without to much hassle. If you do run into issues with booting of zfs though try these recompiled boot blocks as I never have issues with them. http://people.freebsd.org/~pjd/zfsboot/ If you are using 4k disks which there is a fairly good chance you are make sure you create the pool with ashift=12 using the gnop trick. Otherwise you may experiance bad disk performance. http://www.leidinger.net/blog/2011/05/03/another-root-on-zfs-howto-optimized-for-4k-sector-drives/ WIth regards to dedup, unless you have bucket loads of ram (32+Gigs) and/or an ssd dedicated to l2arc stay away from it as you will almost certainly find that very quickly the DDT wont fit into ram, and when that happens the performance of the pool takes a serious performance dive do to every write incuring many many reads to retrieve the ddt information. Also it may not be worth it with your dataset. To test what you might achieve do a zdb -S pool to see your expected dedup ratio. in terms of disk layout this is fairly arbitary and you have a lot of choice. This is what i use, and a loosly based it on opensolaris system-4k/be 26.6G 207G 252K /system-4k/be system-4k/be/root20110930 1.73G 207G 1.31G legacy system-4k/be/root20111011 2.03G 207G 1.69G legacy system-4k/be/root20111023 1.98G 207G 1.68G /system-4k/be/root20111023 system-4k/be/root20111028 2.00G 207G 1.68G /system-4k/be/root20111028 system-4k/be/root2012 2.08G 207G 1.76G /system-4k/be/root2012 system-4k/be/tmp 360K 209G 360K /tmp system-4k/be/usr-local3.30G 207G 3.30G /usr/local/ system-4k/be/usr-obj 728M 207G 728M /usr/obj system-4k/be/usr-ports2.05G 207G 1.51G /usr/ports system-4k/be/usr-ports/distfiles 547M 207G 547M /usr/ports/distfiles system-4k/be/usr-src 705M 207G 705M /usr/src system-4k/be/var 2.04G 213G 816M /var system-4k/be/var/log 1.21G 213G 1.21G /var/log system-4k/be/var/mysql34.0M 213G 34.0M /var/db/mysql everytime I do a make installword and installkernel I create a new root fs. This way I can easily flip flop back and two between different os builds if i want to. I use this simple script to set it up for me. Its not perfect but it works well enough $ cat /usr/local/scripts/install_world #!/usr/local/bin/bash if [ $UID != 0 ] ; then echo your not root !! ; exit 1 fi date=`date '+%Y%m%d'` oroot=`grep vfs.root.mountfrom=\zfs:system-4k/ /boot/loader.conf | sed -e s#^.*\zfs:system-4k/be/## -e s#\##` nroot=root$date snap=autoup-$RANDOM zpool=system-4k export DESTDIR=/$zpool/be/$nroot if [ $oroot = $nroot ] ; then echo i cant update twice in one day; exit 1 fi echo building in $zpool/be/$nroot zfs snapshot $zpool/be/$oroot@$snap zfs send $zpool/be/$oroot@$snap | mbuffer -m 500M | zfs receive -vv $zpool/be/$nroot cd /usr/src make installkernel mount_nullfs /var $DESTDIR/var mergemaster -p -D $DESTDIR make installworld mergemaster -D $DESTDIR sed -i -e s#$zpool/be/$oroot#$zpool/be/$nroot# $DESTDIR/boot/loader.conf \ echo Installing boot records.. zpool status system-4k | grep -A 2 mirror | grep ad | sed -e s/p[0-9]// | while read a b; do gpart bootcode -b /zfsboot/pmbr -p /zfsboot/gptzfsboot -i 1 $a; done cp -v /zfsboot/zfsloader $DESTDIR/boot/. echo -en \n\nNow run these two commands to make the changes live, and reboot zfs set mountpoint=legacy $zpool/be/$nroot zpool set bootfs=$zpool/be/$nroot $zpool\n\n ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Freebsd 6 and nfsstats counters
Hi, I have a bunch of old freebsd servers I want to collect nfs stats from. The problem is a lots of the counters have wrapped around. On other Freebsd 7+ machines I take care of this be a weekly cron of nfsstat -c -z. The z option isnt available in freebsd 6, and I cant see a direct sysctl OID i can reset. Has anyone encountered this issue in the past and found a fix. I'd rather avoid having to alter the scripts to cater for negative numbers. k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sed vs gnu sed
On 10 November 2011 10:33, Vincent Hoffman vi...@unsane.co.uk wrote: On 10/11/2011 07:00, per...@pluto.rain.com wrote: Vincent Hoffmanvi...@unsane.co.uk wrote: bsd sed (correctly according to SUS at least, I believe[1]) appends a newline when writing to standard out, gnu sed doesnt. The wonderful thing about standards is that there are so many to choose from -- Tanenbaum is there any easy way to make our sed do the same as gnu sed here? As long as it is OK to remove _all_ newlines -- which seems to be the case here -- you could pipe the output through tr -d '\012' Thanks to all for suggestions, I'll move to using tr at some point i think but the overhead of any of the approaches is pretty negligable (except for firing up python/perl ;) Vince __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org you could sidestep the issue entirely /usr/ports/textproc/gsed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpdate on boot problem
On 6 November 2011 02:51, Robert Simmons rsimmo...@gmail.com wrote: On Sat, Nov 5, 2011 at 7:43 PM, Warren Block wbl...@wonkity.com wrote: netwait_enable=YES netwait_ip=192.168.1.1 # IP address to ping to verify network is up netwait_if=em0 # interface to use Also there's netwait_timeout, which defaults to 60 in /etc/defaults/rc.conf. I've finally got a combination of suggested configurations that get me to where I want to be (using ntpd, ntpdate, and netwait). However, I've found that I still need ntpdate_enable=YES rather than ntpd_sync_on_start=YES. The reason for this is that I'm running at securelevel 3, and ntpd takes too long to get up, running, and sync the clock. By the time it tries to adjust the clock, secure level has already been raised preventing the adjustment. Is there a way to make securelevel wait until ntpd has made its adjustments? When I use ntpdate at this point, it seems like the init scripts are sequential, and it waits until ntpdate is done before continuing and later raising securelevel. It seems that even though ntpdate is deprecated that it is still required if you want to run securelevel 3. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Another thing you may want to look at is your switchport config (assuming its managed), if you are running STP it can take upto a minute for the port to go into forwarding state after the line is up. You can do two things to get around this. 1. use rstp instead - this is the better safer way forward. However you may not have control of the network and could be a big thing to do depending on your organization. 2. enable portfast on the relevant switches. This is potentially dangerous as it disables stp and therefore potentially exposes you to switching loops. However if the port is only ever plugged into on machine and EU dont play with the cables shold be fine ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD on EC2
On 31 October 2011 13:08, Jesse Sheidlower jes...@panix.com wrote: I've been experimenting with FreeBSD on EC2, in the hopes that I can move some systems there. I'm pleased with the possibilities, but have a two initial questions: First, the t1.micro instance, which I'm starting with, is supposed to have 10 GB of EBS storage--1GB for the kernel on the boot partition, and 9GB for the rest. But my instance only has 4.8GB on root: $ df -h FilesystemSizeUsed Avail Capacity Mounted on /dev/da1s14.8G4.1G332M93%/ devfs 1.0K1.0K 0B 100%/dev /dev/da0 1.0G 21M944M 2%/boot/grub Where's the rest? I asked about this in the EC2 forums, and someone said that it's probably unformatted space on a different partition; if so, I could use some advice about adding this to the existing root partition, and I'm also curious why this would be set up like this. 4.8GB isn't enough for me to compile everything I need, even if I put my data on another EBS volume Second, the FreeBSD on EC2 page at http://www.daemonology.net/freebsd-on-ec2/ says that the first instance of 8.2b-RELEASE is for t1.micro instances only, but when I start this instance, I'm given the option of starting it as t1.micro, m1.small, or c1.medium (the high-CPU medium option). In production I'd like to run this as the m1.small or the m1.large instance; I guess there's no large instance possible but is there any problem with using the small? Is there any time frame for the availability of a large instance? I think I'm going to need to use EC2 instead of buying a new physical server, and I'd really rather stick with FreeBSD instead of moving to Debian Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org dont compile on the system build packages or tar up your /usr/local, and /var/db/pkg trees and deploy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: two networks in one server?
On 9 October 2011 12:38, Matthew Seaman m.sea...@infracaninophile.co.ukwrote: On 09/10/2011 10:36, pepe wrote: I'm just asking before trying if it possible to use two network uplinks in one server so other would be just backup way in? I have currently connection from two ISPs and server is up with one connection. Is it possible to add another nic and wire that to connection from another isp? So isp 1 would be in normal use in/out, but isp 2 could be used connecting in? This is a very commonly asked question around the Internet. The answer is -- it's a lot harder to do properly than you might think. Requires understanding Internet routing protocols like BGP and you will need the cooperation of both ISPs to make it all work. However there is a light version which might work for you. Keywords here are policy based routing. In this case you can use firewall software to forward packets by an alternate gateway. This only affects the outward path from your system: no good at all if all the incoming traffic is using an uplink that fails, but you can use it to load balance across multiple links. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW There is a simpler version now in freebsd. You could spawn an additional version of sshd with the setfib command, and have a different default route in the relevant fib table. If you have a bunch of services you need to run like that maybe you could wrap them up in a jail and use the fib on the jail. Have a look at setfib. NOTE: it appears you need to set a compile time option for your kernel options ROUTETABLES=X where X is the number of routing tables you require ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Parallel fscks on large filesystems ... wondering about maxdsiz setting...
On 5 October 2011 19:25, Jason Usher jushe...@yahoo.com wrote: Old 6.4-RELEASE system. Two filesystems exist, each of which is on its own raid controller. (Background fsck is not workable for various reasons that are tl;dr.) So, theoretically, doing both fscks at the same time is workable, since each of them are on their own controller, and no disk/controller resources are shared. HOWEVER, due to the large size and dense inode usage, we are forced to set: kern.maxdsiz=409600 And my question is: If I run two fscks at the same time, do I need to up this to 819200, or is this a per-process limit and I can run several processes that big, while leaving the value at 409600 ? (16 GB of ram, so either way we're well below) Thanks! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org If this becomes a major issue for you why not upgrade to 9 when its out then you can have softupdates with journaling and remove most cases where you need to run fsck, or make the jump to zfs. zfs will obviously require a bit more thought. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: updating 8.1 release
On 3 October 2011 10:28, Michael Powell nightre...@hotmail.com wrote: wayne mitchell wrote: hey just tried to update a system using 'csup' current system is: 8.1 RELEASE on a amd machine (amd64 GENERIC kernel) tried downloading the CURRENT branch ( tag=. ) when running make buildworld get an exit with error at /usr/lib/libmagic system gives various warnings about unknown file types and incorrect variable bounds then exits with error 1 - 'cannot find any magic files' tried this again with ( tag=RELENG_8 ) - exact same problem tried this again with ( tag=RELENG_8.2 ) - exact same problem also tried make buildworld in multi-user -and- single-user where should i expect to find any magic files on the system tree ? thanks I wouldn't worry about this. Be better to find out what is wrong. It is unclear exactly what you are trying to achieve, so I'll try some crystal- ball gazing. Going from 8.1 to HEAD might actually be broken at any one given point in time. Not always, but the possibility exists. If you are dead set on this, read the -CURRENT list for hints on breakage. If you are trying to set up a server for use in some form of stable environment I would suggest not using -CURRENT, but rather consider the security branch of either 8.1-RELEASE or 8.2-RELEASE. The csup tags are RELENG_8_1 and RELENG_8_2 respectively. Example supfile: *default host=cvsup.nl.freebsd.org *default base=/usr *default prefix=/usr *default release=cvs tag=RELENG_8_2 *default delete use-rel-suffix compress src-all Then cd to /usr/obj and do rm -rf *. This will remove leftovers of previous failed build attempts. Once this is cleaned up and you have the correct source (such as 8.2-RELEASE security branch), then just cd /usr/src and kick off the dance with a make buildworld. I just updated 9 machines from 8.2 to the 8.2 security branch and experienced zero trouble. I can't speak to whether -CURRENT will build, as my boxen are for production use and not for development work. If you continue to have a problem trying to update to RELENG_8_2 you are doing something wrong. -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org you might consider releng_9 as well as the next major release is on the verge of going out. Releng_9 will currently give you beta3 of 9.0-release. I have been using 9 for a while now as have many others and it has proven to be a very stable platform. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to find out which version of PF a given box is using...
On 21 September 2011 09:05, Matthew Seaman m.sea...@infracaninophile.co.ukwrote: On 21/09/2011 08:34, Matthew Seaman wrote: On 21/09/2011 07:34, Modulok wrote: Is there an easy way to find out what version of PF a given FreeBSD version is using? Currently I'm doing this: grep -iE '\bpf\b' /usr/src/UPDATING Just wondering if I'm missing something. I didn't see any '--version' flag in pfctl. Uh -- bpf is a different thing to PF. bpf is Berkeley Packet Filter which isn't anything to do with firewalling, but used eg. by tcpdump to select certain packets from the wire. As far as I know, bpf doesn't have a separate version number; it just uses the OS version number. It's been part of BSD Unices since dinosaurs roamed the earth. One of these days I'll learn not to send e-mail before coffee. Please ignore the above -- red herring. PF is the firewalling code imported from OpenBSD. Again, it's part of the base system in OpenBSD so it just uses the OpenBSD version number. Every so often there will be a new import from OpenBSD -- I believe most released versions of FreeBSD are using PF from OpenBSD 4.2, but there is an update to OpenBSD 4.mumble in the works for the upcoming FreeBSD 9.0 release. You'ld have to check the commit history in CVS or SVN to be sure. In fact, the last import listed as such in the CVS history was from OpenBSD 4.1 but that was around 2007 when FreeBSD was on version 6.x -- long time ago. There's been plenty of updates since (which, IIRC, made the FreeBSD code pretty much equivalent to what is in OpenBSD 4.2), but no wholesale reimport until about 2 months ago, when OpenBSD 4.5 code was imported into head. http://svnweb.freebsd.org/base?view=revisionrevision=223637 AFAIK, that is not a candidate for MFC to stable/8 or earlier, as it modifies KBIs. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW If its been syncd to openbsd 4.5 version of pf, its still quite a way behind openbsd's version in the latest release as they are not on 4.9 with 5.0 imminent. Looking at the docs there were quite a lot of changes when openbsd was bumped to 4.7 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Help Finding ZFS snapshots
On 5 September 2011 16:58, Gene f...@brightstar.bomgardner.net wrote: On Mon, 05 Sep 2011 11:35:34 -0400, Daniel Staal wrote --As of September 5, 2011 10:23:32 AM -0500, Gene is alleged to have said: On Mon, 05 Sep 2011 10:48:22 -0400, Daniel Staal wrote --As of September 5, 2011 8:13:52 AM -0500, Gene is alleged to have said: Using FreeBSD 8.1, amd64 - I wanted to recover files from a snapshot of usr/home. Everything I've found via googling refers to a link such as path/zfs/.snapshot --As for the rest, it is mine. Try path/.zfs. ;) (Which, on my system, then has a 'snapshot' directory, which holds all the snapshots.) Daniel T. Staal No such luck. The following: cd / ls -R | grep -i zfs finds only 'zfs' directories in the source tree and ports. Other ideas? I know the snapshots exist, I can see 'em with zfs list -t snapshot. --As for the rest, it is mine. Don't check if the directory is there first. It isn't. Just 'cd' to it, and it will exist. Daniel T. Staal Well I'll be hornswaggled ... Thanks! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org as others have posted its hidden. This is for good reason though. Just imagine you backup program trawling your 10 TB array that has 100 historical snapshots. Suddenly you are backing up 1 PB 8( ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: vpn using pptpclient in FreeBSD
On 30 August 2011 22:51, Marco Beishuizen mb...@xs4all.nl wrote: Hi, I'm trying to set up a vpn connection to the university library by using pptpclient. In other OS's this takes around 10 seconds, but in FreeBSD this seems very difficult to do, and I've no idea why. It looks like there is a connection made, but after a minute or two it just disconnects and still unable to access the vpn. My ppp.conf is: EUR: set authname x...@.xx set authkey xxx set timeout 0 set ifaddr 0 0 add vpn-eur-pptp.eur.nl HISADDR disable ipv6cp The messages log says: Jun 2 22:12:16 yokozuna pptp[40950]: anon log[main:pptp.c:314]: The synchronous pptp option is NOT activated Jun 2 22:12:16 yokozuna pptp[40955]: anon log[ctrlp_rep:pptp_ctrl.c:251]* *: Sent control packet type is 1 'Start-Control-Connection-**Request' Jun 2 22:12:16 yokozuna pptp[40955]: anon log[ctrlp_disp:pptp_ctrl.c:**739]: Received Start Control Connection Reply Jun 2 22:12:16 yokozuna pptp[40955]: anon log[ctrlp_disp:pptp_ctrl.c:**773]: Client connection established. Jun 2 22:12:17 yokozuna pptp[40955]: anon log[ctrlp_rep:pptp_ctrl.c:251]* *: Sent control packet type is 7 'Outgoing-Call-Request' Jun 2 22:12:17 yokozuna pptp[40955]: anon log[ctrlp_disp:pptp_ctrl.c:**858]: Received Outgoing Call Reply. Jun 2 22:12:17 yokozuna pptp[40955]: anon log[ctrlp_disp:pptp_ctrl.c:**897]: Outgoing call established (call ID 0, peer's call ID 58282). Jun 2 22:12:17 yokozuna kernel: tun0: link state changed to UP Jun 2 22:13:17 yokozuna pptp[40955]: anon log[logecho:pptp_ctrl.c:677]: Echo Request received. Jun 2 22:13:17 yokozuna pptp[40955]: anon log[ctrlp_rep:pptp_ctrl.c:251]* *: Sent control packet type is 6 'Echo-Reply' Jun 2 22:15:17 yokozuna pptp[40955]: anon log[pptp_handle_timer:pptp_**ctrl.c:1050]: closing control connection due to missing echo reply Jun 2 22:15:17 yokozuna pptp[40955]: anon log[ctrlp_rep:pptp_ctrl.c:251]* *: Sent control packet type is 12 'Call-Clear-Request' Jun 2 22:15:17 yokozuna pptp[40955]: anon log[pptp_conn_close:pptp_ctrl.* *c:430]: Closing PPTP connection Jun 2 22:15:17 yokozuna pptp[40955]: anon log[ctrlp_rep:pptp_ctrl.c:251]* *: Sent control packet type is 3 'Stop-Control-Connection-**Request' Jun 2 22:15:17 yokozuna pptp[40955]: anon log[call_callback:pptp_**callmgr.c:79]: Closing connection (call state) Jun 2 22:15:47 yokozuna pptp[40956]: anon warn[decaps_hdlc:pptp_gre.c:**204]: short read (0): No buffer space available Jun 2 22:15:47 yokozuna kernel: tun0: link state changed to DOWN After a lot of searching and googling I never found the answer. Has anyone here succeeded in setting up a working pptp vpn connection? Thanks in advance, Marco -- Kiss me twice. I'm schizophrenic. __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org have you tried mpd? I always found pptpclient a bit prone to issues http://www.freebsd.org/doc/handbook/pppoa.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: zfs clone, nfs and pxeboot
On 28 July 2011 11:41, ad...@prnet.org wrote: Hi, I wanted to experiment a bit with pxeboot. Therefore I created a zfs clone of a jail filesystem. The clone was shared as via nfs. Pxeboot complained that it can't load the kernel. The pxeboot ls command gave some correct and some really messed up filenames. I then deleted the clone and copied the filesystem (in the same zpool) using zfs send ... | zfs receive ... If I share this new filesystem via nfs, pxeboot doesn't have the messed up filename problem and everything works as expected. Is there some known problems with zfs clones and nfs ? Just for information, this was tested on FreeBSD 8.2 amd64 (not the machine were I have problems in the other thread) Thanks in advance, Bye, David Arendt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org you can get the kernel modules to be fetched via tftp, does it work with that? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: best way to replicate system
make sure you use the --numeric-ids option as well On 24 July 2011 01:58, ill...@gmail.com ill...@gmail.com wrote: On 23 July 2011 04:54, krad kra...@gmail.com wrote: On 21 July 2011 09:13, Aryeh Friedman aryeh.fried...@gmail.com wrote: I have set up a machine that is 100% configred and now needs to be duplicated to an arbitrary number of other machines (23 currently)... none of the machines have optical drives (or floppies) so it has to be a USB install... what is the best way to do this all I can think of is make release or make a diskimage and dd it A quick and dirty way is to get a working freebsd on a usb stick or cdrom, run a script that slices up the disks, newfs, and mounts them then rsyncs all the files across from the original server. Ive used this method many times for doing backup restores. Yes, rsync with --rsh=ssh -C (unless you're just transferring already compressed data (*.jpg, *.avi, *.tar.gz, etc)). -- -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: best way to replicate system
On 21 July 2011 09:13, Aryeh Friedman aryeh.fried...@gmail.com wrote: I have set up a machine that is 100% configred and now needs to be duplicated to an arbitrary number of other machines (23 currently)... none of the machines have optical drives (or floppies) so it has to be a USB install... what is the best way to do this all I can think of is make release or make a diskimage and dd it ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org A quick and dirty way is to get a working freebsd on a usb stick or cdrom, run a script that slices up the disks, newfs, and mounts them then rsyncs all the files across from the original server. Ive used this method many times for doing backup restores. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Why not add ZFS support on bsdinstaller? (FreeBSD 9.0-CURRENT/RELEASE)
use pcbsd installer or mfsbsd On 20 July 2011 18:55, Alvaro Castillo gobl...@gmail.com wrote: The question... or maybe I'm wrong and will be included. Greets! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Tools to find unlegal files ( videos , music etc )
You cannot generate a hash without at a certain automated level opening the file. If you can do that, couldn't you generate a hash of the first four bytes to match with hashes of known magic numbers? If you can look at the whole file, surely you can look at just the first four bytes. not true these days. If you run zfs (or probably btrfs, yuk) you can just pull the file hashes used by the fs (zdb). Therefore your not actually reading the file. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrading very old installation
On 15 July 2011 22:12, Balázs Mátéffy repcs...@gmail.com wrote: On 15 July 2011 22:46, Roland Smith rsm...@xs4all.nl wrote: On Fri, Jul 15, 2011 at 08:20:52AM -0400, Jaime Kikpole wrote: I'm running a FreeBSD 6.x server that hasn't been updated in about 1.5 years. atlas:~uname -mprs FreeBSD 6.4-RELEASE-p8 i386 i386 I've been using the cvsup/make method of upgrades for years and only used freebsd-upgrade once. I'm not sure if either method can handle a 6.x to 8.x upgrade. They are tested for upgrading to the next major version. Who knows if it will work across two major versions? Personally I wouldn't want to be the one ot try it out. :-) I also have a bunch of ports in this server (e.g. apache, postfix, etc.) Once the OS is updated, should I just portupgrade them all? Doesn't work reliably across major version updates. When updating to a newer major version, the best way is to delete all ports (save their config files of course), scrub the /usr/local tree clean and then re-install them. Matthews advice of re-installing 8.2 on a second harddrive is probably the easiest and safest way to go. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) Hi, I would try to update the split mirror of the 6.4 to 8.2, I did manage to update couple of years back from Releng6 to Current 8 :). Did the usual make kernel / world stuff mergemaster prebuild in the middle and mergemaster after the update then I rebuilt all the ports. I recently did a 6.4-STABLE 8.2-RELEASE-p2 migration to another server, but without using only some initial old config files from the old system because I had to build a better environment with other software for the same role (almost the same thing that Matt recommended you). For me this is a longer procedure then updating all the software and checking for maybe now deprecated options and other problems. So I think its down to your level of knowledge and personal preference ( whether you want to check what is to problem in case something goes wrong- I like this because I get to know the system and the inner workings in more detail). I personally don't like freebsd-update, and if your are new to the build from source way, you should really go with building up from scratch, then migrate. In case you want to update have a WORKING backup, and do a test run for the update (restore your 6.4 on a test machine and try to update it) before you bring down the productive system. Good luck! Regards, Balazs. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Also one thing to watch with ports is thing like lang/php tend to jump a point release or a major release. Its kind of anoying in my opinion that lang/php can be php v4, 5.2 or 5.3 depending on what version of the os you run, when there is stall a php52 port in say 8-stable. Makes keeping consistent php versions more difficult. In my experience portmaster is better than portupgrade as it doesnt have to mess around with binary dbs of the ports ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrading very old installation
On 15 July 2011 16:25, Steven Friedrich free...@insightbb.com wrote: On 7/15/2011 9:38 AM, Matthew Seaman wrote: On 15/07/2011 13:20, Jaime Kikpole wrote: I'm running a FreeBSD 6.x server that hasn't been updated in about 1.5 years. atlas:~uname -mprs FreeBSD 6.4-RELEASE-p8 i386 i386 What is the recommended way to upgrade it to something current? Should I upgrade it to the most recent 6.x and then to 7.x and then to 8.x? Or should I use a more direct route, upgrading it straight to the 8-RELEASE branch? You'll almost certainly find it quicker and less painful to just reinstall using an up to date version of FreeBSD. Personally, I'd go and buy a new hard drive for the machine, install the latest OS and applications on that and then copy over data etc. It helps if you can have both drives mounted in the same machine at once. There are variations on this theme -- for instance if your server has mirrored HDDs then you can split the mirror, re-install on one half, reconcile configurations, data, user accounts between the two halves and ultimately resynch the old drive to the new one. The big advantage of this sort of approach is that you get your new install up and running and tested before you need to commit to the potentially irreversible step of overwriting your last copy of the old one. Cheers, Matthew Excellent advice, Matt. You rock. __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org You need to do your risk analysis to decide what route to take.The safe way is to do the 2nd drive method mentioned previously. If you decide to upgrade I would advise you to do the make world method. Its older and therefore more tested, and as you have said you are more familiar with it. I have done about 40+ upgrades from 6.x to 8.x. I did a step to 7 in the middle, and all worked fine. The only oddity I found was that when I went from 7.x to 8.x dangerously dedicated disks devices were presented differently. In 7.x you had ad0a, ad0b etc under /dev, but you also had ad0s1a, ad0s1b etc as well In 8.x you only had ones of the format ad0a. the oddity was the ad0s1a format ones being present prior to 8 being present, as I wouldn't have expected these. This was only and issue as whoever had built to box i inherited had used the ad0s1a format ones so on rebooting to 8.x we had issues. A quick edit of fstab fixed the issue though. Also make sure you have mergemaster configured proply as it will take a load of work out of the upgrades. Here is my rc for it. You may need to tune it a little cat /etc/mergemaster.rc AUTO_INSTALL=YES AUTO_UPGRADE=YES PRESERVE_FILES=yes PRESERVE_FILES_DIR=/var/mergemaster/preserved-files-`date +%y%m%d-%H%M%S` IGNORE_FILES=/etc/crontab /etc/fstab /etc/group /etc/hosts /etc/inetd.conf /etc/make.conf /etc/master.passwd /etc/motd /etc/newsyslog.conf /etc/ntp.conf /etc/ntp.drift /etc/profile /etc/rc.conf /etc/resolv.conf /etc/services /etc/shells /etc/syslog.conf /etc/ssh/sshd_config /etc/ssh/ssh_host_key /etc/ssh/ssh_host_key.pub /etc/ssh/ssh_host_rsa_key /etc/ssh/ssh_host_rsa_key.pub /etc/passwd /etc/rc.conf.local /etc/zfs/exports /etc//namedb/named.conf /etc/periodic.conf /etc/hosts.allow /etc/hosts /etc/pf.conf /etc/sysctl.conf /etc/make.conf /etc/src.conf /etc/mail/aliases /etc/mail/mailer.conf /etc/remote ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: buildworld from FreeBSD 8.1 to FreeBSD 8.2
On 11 July 2011 14:07, Sergio de Almeida Lenzi lenzi.ser...@gmail.comwrote: Em Seg, 2011-07-11 às 11:48 +0400, hasanhasanli Hasan escreveu: I had problem with upgrating FreeBSD 8.1 to FreeBSD 8.2 after that I typed make buildworld It gives error. /usr/lib/libthr.a(thr_syscalls.o)(.text+0x87a): In function `___pselect': : undefined reference to `__pselect' *** Error code 1 I use the following procedure: 1) build freebsd in a CLEAN machine (supose new bsd is 8.2)...: make buildworld buildkernel Please save the environment variables KERNCONF 2) copy /usr/src /usr/obj to the old (8.1, or even 7.x) bsd... in the same directory(/usr/srcj /usr/obj) rsync works fine... 3) in the new (the one you generate freebsd) machine rsync -avz --delete /usr/src/ root@oldmachine:/usr/src rsync -avz --delete /usr/obj/ root@oldmachine:/usr/obj 4) in the oldmachine. cd /usr/src set KERNCONF make installworld installkernel 5) reboot.. FOR ME, it works... Sergio ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org world should be done after the kernel and there should be a reboot inbetween the two as well. Also what about mergemaster? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 64 Bit Applications
On 30 June 2011 09:06, John Dakos gda...@enovation.gr wrote: Hello all. I have a question about FreeBSD 64Bit Applications I want to install FreeBSD 64 Bit to have most memory10 GB ram or up , and to make more stable. My questions is .is FreeBSD 64 Bit stable and Rock such as 32 bit ? These standard applications are working well on 64 bit or not ? Apache , Bind, Webmin , Mysql ,Postfix ,Dovecot, Spamassasin, PHP, Squid, PF Any idea ? Thanks. stable ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org all stable from what i have seen. I have been running all of them in an high load isp environment for years with no issues relating to 64 bit ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Boot Environments
On 30 June 2011 08:43, Dick Hoogendijk d...@nagual.nl wrote: On solaris you can have different BE's (boot environments) using ZFS. Is this possible with FreeBSD ZFS? I can't recall ever have seen a tool like BEadm (solaris). But maybe using ZFS manually I can get more BE's? __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org im not aware of any specific tools to do it but i have mimicked opensolaris be's on my bsd machines. After all most of it is just monkeying around with zfs fs cloning and setting the DESTDIR variable when you install updates ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD ZFS system
On 23 June 2011 02:38, Damien Fleuriot m...@my.gd wrote: On 22 Jun 2011, at 22:22, krad kra...@gmail.com wrote: On 21 June 2011 21:23, Matthew Seaman m.sea...@infracaninophile.co.uk wrote: On 21/06/2011 20:01, Dick Hoogendijk wrote: I'd like to install FreeBSD (pcbsd) on a (zfs) mirror In OpenSolaris you can install directly to the zfs mirror, but how's this in this situation After all, an UFS partitin is also created. How can I get the equivalent of an OpenSolaris mirrored install for a FreeBSD system? http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/Mirror Cheers Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW its dead easy to do retrospective as well no need to rebuild or ditch the pcbsd install method. X = current boot drive Y = blank drive z = zfs partition/slice eg s1d, p3 etc gpart backup /dev/X | gpart restore /dev/Y Hey that's pretty cool, does this work to copy from a small disk to a bigger one like dump does, or do the partitions have to be the same size ? gpart bootcode -b /zfsboot/pmbr -p /zfsboot/(gpt)*zfsboot -i 1 /dev/Y zpool attach pool /dev/Xz /dev/Yz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org it should work, however I have never done it in practice. a quick test on my openindiana box shows it does # zfs create -V 1G rpool/test2 # zfs create -V 2G rpool/test3 # zpool create test rpool/test2 # zpool create test /dev/zvol/dsk/rpool/test2 # zpool attach test /dev/zvol/dsk/rpool/test2 /dev/zvol/dsk/rpool/test3 # zpool status test pool: test state: ONLINE scan: resilvered 82K in 0h0m with 0 errors on Thu Jun 23 10:05:43 2011 config: NAME STATE READ WRITE CKSUM test ONLINE 0 0 0 mirror-0 ONLINE 0 0 0 /dev/zvol/dsk/rpool/test2 ONLINE 0 0 0 /dev/zvol/dsk/rpool/test3 ONLINE 0 0 0 errors: No known data errors # ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD ZFS system
On 21 June 2011 21:23, Matthew Seaman m.sea...@infracaninophile.co.ukwrote: On 21/06/2011 20:01, Dick Hoogendijk wrote: I'd like to install FreeBSD (pcbsd) on a (zfs) mirror In OpenSolaris you can install directly to the zfs mirror, but how's this in this situation After all, an UFS partitin is also created. How can I get the equivalent of an OpenSolaris mirrored install for a FreeBSD system? http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/Mirror Cheers Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW its dead easy to do retrospective as well no need to rebuild or ditch the pcbsd install method. X = current boot drive Y = blank drive z = zfs partition/slice eg s1d, p3 etc gpart backup /dev/X | gpart restore /dev/Y gpart bootcode -b /zfsboot/pmbr -p /zfsboot/(gpt)*zfsboot -i 1 /dev/Y zpool attach pool /dev/Xz /dev/Yz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD ZFS system
ps you dont need the ufs file system just go zfs root. For recovery have a full install of bsd on a pen drive. On 22 June 2011 21:22, krad kra...@gmail.com wrote: On 21 June 2011 21:23, Matthew Seaman m.sea...@infracaninophile.co.ukwrote: On 21/06/2011 20:01, Dick Hoogendijk wrote: I'd like to install FreeBSD (pcbsd) on a (zfs) mirror In OpenSolaris you can install directly to the zfs mirror, but how's this in this situation After all, an UFS partitin is also created. How can I get the equivalent of an OpenSolaris mirrored install for a FreeBSD system? http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/Mirror Cheers Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW its dead easy to do retrospective as well no need to rebuild or ditch the pcbsd install method. X = current boot drive Y = blank drive z = zfs partition/slice eg s1d, p3 etc gpart backup /dev/X | gpart restore /dev/Y gpart bootcode -b /zfsboot/pmbr -p /zfsboot/(gpt)*zfsboot -i 1 /dev/Y zpool attach pool /dev/Xz /dev/Yz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS on Root
On 22 June 2011 01:47, Chris Brennan xa...@xaerolimit.net wrote: * Peter Toth free...@snap.net.nz [2011-06-22 12:16:11 +1200]: Did you set the bootfs property on your root pool? Example: zpool set bootfs=tank/root tank OK, I booted back to the livefs memostick, imported my zpool (tank) and zpool promptly tells me the following Fixit# zpool set bootfs=tank/root tank cannot set property for 'tank': no such pool or dataset. Fixit But ... there is! It was a great tip and a worthy try. But it didn't work, got any more idea's? -- Chris Brennan -- A: Yes. Q: Are you sure? A: Because it reverses the logical flow of conversation. Q: Why is top posting frowned upon? http://xkcd.com/84/ | http://xkcd.com/149/ | http://xkcd.com/549/ GPG: D5B20C0C (6741 8EE4 6C7D 11FB 8DA8 9E4A EECD 9A84 D5B2 0C0C) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I never have the os installed in the rootfs of the pool ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS on Root
On 22 June 2011 21:31, krad kra...@gmail.com wrote: On 22 June 2011 01:47, Chris Brennan xa...@xaerolimit.net wrote: * Peter Toth free...@snap.net.nz [2011-06-22 12:16:11 +1200]: Did you set the bootfs property on your root pool? Example: zpool set bootfs=tank/root tank OK, I booted back to the livefs memostick, imported my zpool (tank) and zpool promptly tells me the following Fixit# zpool set bootfs=tank/root tank cannot set property for 'tank': no such pool or dataset. Fixit But ... there is! It was a great tip and a worthy try. But it didn't work, got any more idea's? -- Chris Brennan -- A: Yes. Q: Are you sure? A: Because it reverses the logical flow of conversation. Q: Why is top posting frowned upon? http://xkcd.com/84/ | http://xkcd.com/149/ | http://xkcd.com/549/ GPG: D5B20C0C (6741 8EE4 6C7D 11FB 8DA8 9E4A EECD 9A84 D5B2 0C0C) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I never have the os installed in the rootfs of the pool sorry finger fart, ill continue I have a separate tree for the os, as per below (modelled on opensolaris). Make sure the fs you boot off is also set to legacy mountpoint. Also make sure your bootloader is a zfs aware one [root@carrera /home/krad]# df / Filesystem SizeUsed Avail Capacity Mounted on system-4k/be/root20110604597G5.5G591G 1%/ [root@carrera /home/krad]# zfs list | grep be system-4k/be 55.0G 592G 180K /system-4k/be system-4k/be/current 1.51G 592G 1017M legacy system-4k/be/root20110226 2.80G 592G 882M legacy system-4k/be/root20110302 3.24G 592G 882M legacy system-4k/be/root20110306 1.32G 592G 882M legacy system-4k/be/root20110312 1.36G 592G 923M legacy system-4k/be/root20110416 1.47G 592G 1.14G /system-4k/be/root20110416 system-4k/be/root20110430 1.47G 592G 1.15G legacy system-4k/be/root20110505 2.11G 592G 1.78G legacy system-4k/be/root20110506 4.01G 592G 3.37G legacy system-4k/be/root20110604 6.23G 592G 5.50G /system-4k/be/root20110604 system-4k/be/tmp 900K 594G 384K /tmp system-4k/be/usr-local4.00G 592G 1.78G /usr/local/ system-4k/be/usr-obj 4.45G 592G 1.45G /usr/obj system-4k/be/usr-ports9.47G 592G 3.84G /usr/ports system-4k/be/usr-ports/distfiles 2.96G 592G 1.77G /usr/ports/distfiles system-4k/be/usr-src 1.56G 592G 1006M /usr/src system-4k/be/var 8.04G 592G 1.03G /var system-4k/be/var/log 6.68G 592G 4.76G /var/log system-4k/be/var/mysql82.5M 592G 33.9M /var/db/mysql [root@carrera /home/krad]# zpool get bootfs system-4k NAME PROPERTY VALUE SOURCE system-4k bootfssystem-4k/be/root20110604 local ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: failure to create zfs storage pool
On 3 June 2011 21:41, levi...@iglou.com wrote: Hello, After getting a couple of Hitachi 1T 7200 rpm drives, it seemed like time for ZFS on FreeBSD82, having not had Z file system subsequent to retiring whatever OpenSolaris was around. Basically, I followed this article: /doc/en_US.ISO8859-1/articles/remote-install/installation.html Previous to this, I had been using sysinstall. dd if=/dev/zero of=/dev/ad4 count=2 dd if=/dev/zero of=/dev/ad6 count=2 fdisk -BI ad4 fdisk -BI ad6 bsdlabel -wB /dev/ad4s1 bsdlabel -wB /dev/ad6s1 - bsdlabel -e /dev/ad4s1 a: 1G16 4.2BSD 102481920 b: 5G* swap c: blah,blah d: 20G * 4.2BSD 204816384 0 e: 20G * 4.2BSD 204816384 0 f: * * unused 0 0 - bsdlabel /dev/ad4s1 /tmp/bsdlabel.txt bsdlabel -R \ /dev/ad6s1 /tmp/bsdlabel.txt Now it was way past midnight, I cannot recall but might have run this: gmirror label -nb round-robin gm0 ad4s1 ad6s1 I ran these: gmirror label root ad4s1a ad6s1a gmirror label var ad4s1d ad6s1d gmirror label usr ad4s1e ad6s1e gmirror label -F swap ad4s1b ad6s1b gmirror load newfs -b 8192 -f 1024 /dev/mirror/root newfs /dev/mirror/var newfs /dev/mirror/usr mount /dev/mirror/root /mnt mkdir /mnt/var /mnt/usr mount /dev/mirror/var /mnt/var mount /dev/mirror/usr /mnt/usr So I got the files with 'ftp passive' and followed the article all to the 'reboot' command. Seemed okay. Now at the next page of the article: /doc/en_US.ISO8859-1/articles/remote-install/zfs.html Having read several articles and the zpool manual page, I still have failed to create any kind of ZFS storage pool. Darrel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org are you trying to do zfs root or just have a freebsd system with a zpool? You could take the real easy way of getting zfsroot, and install freebsd via pc-bsd install cd and that would do all the hard work ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: failure to create zfs storage pool
On 4 June 2011 11:44, Darrel levi...@iglou.com wrote: After getting a couple of Hitachi 1T 7200 rpm drives, it seemed like time for ZFS on FreeBSD82, having not had Z file system subsequent to retiring whatever OpenSolaris was around. Basically, I followed this article: /doc/en_US.ISO8859-1/articles/remote-install/installation.html Previous to this, I had been using sysinstall. dd if=/dev/zero of=/dev/ad4 count=2 dd if=/dev/zero of=/dev/ad6 count=2 fdisk -BI ad4 fdisk -BI ad6 bsdlabel -wB /dev/ad4s1 bsdlabel -wB /dev/ad6s1 - bsdlabel -e /dev/ad4s1 a: 1G16 4.2BSD 102481920 b: 5G* swap c: blah,blah d: 20G * 4.2BSD 204816384 0 e: 20G * 4.2BSD 204816384 0 f: * * unused 0 0 - bsdlabel /dev/ad4s1 /tmp/bsdlabel.txt bsdlabel -R \ /dev/ad6s1 /tmp/bsdlabel.txt Now it was way past midnight, I cannot recall but might have run this: gmirror label -nb round-robin gm0 ad4s1 ad6s1 I ran these: gmirror label root ad4s1a ad6s1a gmirror label var ad4s1d ad6s1d gmirror label usr ad4s1e ad6s1e gmirror label -F swap ad4s1b ad6s1b gmirror load newfs -b 8192 -f 1024 /dev/mirror/root newfs /dev/mirror/var newfs /dev/mirror/usr mount /dev/mirror/root /mnt mkdir /mnt/var /mnt/usr mount /dev/mirror/var /mnt/var mount /dev/mirror/usr /mnt/usr So I got the files with 'ftp passive' and followed the article all to the 'reboot' command. Seemed okay. Now at the next page of the article: /doc/en_US.ISO8859-1/articles/remote-install/zfs.html Having read several articles and the zpool manual page, I still have failed to create any kind of ZFS storage pool. are you trying to do zfs root or just have a freebsd system with a zpool? You could take the real easy way of getting zfsroot, and install freebsd via pc-bsd install cd and that would do all the hard work Having mirrored SATA disks with a simple zpool on FreeBSD was the original goal. Thank you for the idea. I can not think of any reason not to have zfs root. What is a drag is that I have already built a new kernel and just this morning already ran portsnap fetch and extract. Perhaps this might also be an opportunity to learn gpart and geom as well, limiting usage of fdisk, bsdlabel, and sysinstall moving forward. Darrel well you have 2x disks dont you. Break the mirrors and then you have a free drive. Setup the pool how you want on this then rsync all your os build over onto it. Make any zfs root tweaks you want then boot onto the drive. If all is good then copy across the partition table from the zfs drive to the new one (gpart backup/restore) and attach the relevent slice/partition to pool. Finally put the boot blocks onto the drive, job done no work lost ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD upgrade from 7.4 Stable to 8.2
On 22 May 2011 10:30, Jos Chrispijn ker...@webrz.net wrote: Just read that a save upgrade from my current 7.4 version would be easy by performing: # freebsd-update upgrade -r 8.2-RELEASE # freebsd-update install # shutdown -r now # freebsd-update install Are there any pitfalls to this? regards, Jos Chrispijn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org should work, although I have always done it the src way. One thing to watch out for is device names changing. I have it on a few boxes I did that jump on. Only really an issue if you are doing it remotely without some kind of ilom. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Buildworld Benchmarks
On 18 May 2011 01:50, Devin Teske dte...@vicor.com wrote: Hi List, What's the fastest anyone has every completed buildworld on a single machine? The reason I ask is because we just got some new hardware in and decided to benchmark it using buildworld. Just as a quick test, we decided to perform make -j 48 buildworld. We finished in approximately 9 minutes. I think that we can improve upon that, but am having a bit of difficulty. Can anyone offer any pointers in how to achieve the fastest buildworld possible? No particular reason... we're just trying to push the boundaries of what's possible. For reference the machine we're compiling on is a dual-socket Nehalem Xeon (six-core per proc; HTT enabled; 24 total CPUs presented by APIC) with 48GB of RAM, an LSI MegaSAS RAID controller, and an LSI 2Gbps Fibre Channel HBA going to an 8TB NEC D-4 array. ASIDE: Doing the same buildworld on a 4-disk ZFS raidz yielded approximately 11-minutes. Performing the buildworld on the NEC D-4 over the 2Gbps FC HBA yielded approximately 12 minutes. And for some unknown reason, performing buildworld on tmpfs yielded 13 minutes. We thought going tmpfs would make things faster, but that resulted in over 13 minutes (huh? you'd think a RAM disk would be smoking compared to even the SSDs that we used to achieve ~9 min; do note that we did make sure to nullfs mount a tmpfs-based directory onto /usr/obj -- though the performance of that nullfs mount might have hurt the test, not sure). -- Devin _ The information contained in this message is proprietary and/or confidential. If you are not the intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, please be aware that any message addressed to our domain is subject to archiving and review by persons other than the intended recipient. Thank you. _ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org to make it fair you would have to have a generic src.conf and specify whether you used clang or gcc. As well as the release as well ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: adding new disk 2TB, gpt?
On 17 May 2011 14:40, Maciej Milewski m...@dat.pl wrote: On Tuesday 17 of May 2011 15:19:40, n dhert wrote: Thanks for your answer! I am trying out gpart. On an old PC with 38 GB disk, I have triple boot Windows, OpenSuSE and FreeBSD-8.2. I created an unalloated space of 973 MB at the end. To see the actuel disk geometry, I used FreeBSDs sysinstall # sysinstall Disk name: ad0FDISK Partition Editor DISK Geometry: 79780 cyls/16 heads/63 sectors = 80418240 sectors (39266MB) Offset Size(ST)End Name PType Desc Subtype Flags 0 63 62- 12 unused0 63 22233897 22233959ad0s1 4 NTFS/HPFS/QNX7 22233960 29639736 51873695ad0s3 8freebsd 165 51873696189 51873884- 12 unused0 51873885 26539380 78413264ad0s2 4 extended DOS, LBA 15 784132651992060 80405324ad0s4 4 ext2fs 131 80405325 12915 80418239- 12 unused0 ad0s1 is my Windows, ad0s2 is the extended partition where SuSE resides (swap and / partition) ad0s3 is my FreeBSD-8.2 (with sections a, e, f, d for /, /tmp, /usr, /var) and ad0s4 is the new freed space of 1992060 sectors = 973 MB I tried # gpart create -s gpt ad0s4 gpart: provider: Device not configured ( gpart create -s gtp /dev/ad0s4 : same error) # gpart show = 63 80418177 ad0 MBR (38G) 63 222338971 ntfs (11G) 22233960 296397363 freebsd [active] (14G) 51873696 189 - free - (95K) 51873885 265393802 !15 (13G) 78413265 19920604 !131 (973M) 80405325 12915 - free - (6.3M) = 0 26539380 ad0s2 EBR (13G) 0 2072385 1 !130 (1.0G) 2072385 18249840 32896 !131 (8.7G) 2035 6152895 322576 !131 (2.9G) 26475120 64260 - free - (31M) = 0 29639736 ad0s3 BSD (14G) 0 1048576 1 freebsd-ufs (512M) 1048576 1994384 2 freebsd-swap (974M) 3042960 3092480 4 freebsd-ufs (1.5G) 6135440 1048576 5 freebsd-ufs (512M) 7184016 22455720 6 freebsd-ufs (11G) # gpart create -s gpt ad4 gpart: provider 'ad4': Invalid argument how do I address the 974 MB partition ??? You can't create gpt table on top of existing MBR table. If you want to use gpt you need to have clean hard drive for that(removed all partitions and destroy current table) If you just want to add ad0s4 you should do gpart add ... Maciej ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org sounds like you maybe using some kind of LUN to generate a 9 TB disk. If I have misunderstood this though and you are using the advanced format drives (generally satas above 1.5tb) then make sure you 4k align any partitions you create ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Established method to enable suid scripts?
On 15 May 2011 15:30, Randal L. Schwartz mer...@stonehenge.com wrote: Chris == Chris Telting christopher...@telting.org writes: Chris I honestly tried when I posted the question to avoid the question Chris of right or wrong. I simply have one opinion for my own need and Chris preference and don't want to go into rigid detail and did not Chris mean to reopen the issue. I simply wanted to know if anyone had a Chris patch already or a flag enabled it. It's similar to the phrase Chris that if you have to ask you can't afford it except in this case Chris it means you can. I have a feeling someone somewhere did it. If Chris no one comes forward I will post a proper patch for review and Chris maintain documentation of the pitfalls to the extent I can and Chris that others forward to me. I have no desire to change Freebsd's Chris standard practice. I leave that to the steering committee of each Chris and every distribution of unix like systems. I am simply grateful Chris to be able to make my development systems work the way I want it Chris to because I want it to. It's a question of complete phylosophy Chris to me as to the base unix permissions system. I simply know what Chris appeals most to me the way that I use systems. We all love Chris Freebsd because it means choice. I apologize to anyone that Chris thinks I reopened a can of worms and wasted time, it was not my Chris goal. When a child reaches for a hot stove, the only moral thing to do is pull their hand back, without hesitating. That's what we're trying to do for you. Why are you not getting it? You *will* get burned. Why do you not trust the community to notice that for you? -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 mer...@stonehenge.com URL:http://www.stonehenge.com/merlyn/ Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc. See http://methodsandmessages.posterous.com/ for Smalltalk discussion ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I also think you would get a similar reaction from the majority of any unix communality for any distro/release. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Maximum partition size
On 11 May 2011 08:37, Andrea Venturoli m...@netfence.it wrote: Hello. Sorry for the stupid questions, but Google only turns out very old answers which might be outdated (at least I hope so). What is the maximum partition size I can use on 7.3? I've used a 3TB gstripe on amd64, but now I'd like to gstripe two 2TB HDs on a i386. Will that work? bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org It depends on partition schema you use. Stick with GPT and you will be fine for the foreseeable future. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Established method to enable suid scripts?
On 13 May 2011 08:32, Jonathan McKeown j.mcke...@ru.ac.za wrote: On Thursday 12 May 2011 17:26:49 Chris Telting wrote: On 05/12/2011 07:57, Jonathan McKeown wrote: I'll say that again. It is inherently insecure to run an interpreted program set-uid, because the filename is opened twice and there's no guarantee that someone hasn't changed the contents of the file addressed by that name between the first and second open. It's one thing to tell people they need to be careful with suid because it has security implications. Deliberately introducing a well-known security hole into the system would in my view be dangerous and wrong. That race condition bug was fixed in ancient times. Before Freebsd or Linux ever existed I believe. It's a meme that just won't die. People accepted mediocrity in old commercial versions of Unix. I personally am unsatisfied by kludges. That seems somewhat unlikely given, as someone else pointed out upthread, that Perl still comes with a compile-time option SETUID_SCRIPTS_ARE_SECURE_NOW, suggesting that they often aren't. Yes, there are ways to avoid this race condition - the usual one is to pass a handle on the open file to the interpreter, rather than closing it and reopening it. This fix is not present in every Unix or Unix-like OS. In particular (although I'm happy to be corrected if I'm wrong) it's not present in FreeBSD, to the best of my knowledge. Whether there's a reason for that other than lack of developer time I don't know. Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org what i cant understand is the complete aversion to sudo. Could you shed any light on why you are trying to avoid a tried and tested method. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Established method to enable suid scripts?
On 13 May 2011 11:07, Chris Telting christopher...@telting.org wrote: On 05/13/2011 01:32, krad wrote: what i cant understand is the complete aversion to sudo. Could you shed any light on why you are trying to avoid a tried and tested method. That I freely admit is for no rational reason. It's just annoying. But let me ask you.. is sudo ping acceptable? Please explain the logical reason why not. It would be the preferred method if suid didn't exist and sudo was part of the base system. Happy Friday. Without knowing your security policy its difficult to say. However from an adhoc point of view I dont see why not assuming what you are doing with it needs root privilege. Its also far less risky than giving a user access to a box. Again without knowing your security policy, i dont see why sudo coming from ports vs base system is really relevant. As long as said port is audited to the same level or higher than the base system i dont see any problem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Established method to enable suid scripts?
C On Friday, 13 May 2011, Pan Tsu iny...@gmail.com wrote: Chris Telting christopher...@telting.org writes: On 05/13/2011 01:32, krad wrote: what i cant understand is the complete aversion to sudo. Could you shed any light on why you are trying to avoid a tried and tested method. That I freely admit is for no rational reason. It's just annoying. But ...a shebang can be written with sudo in mind, e.g. #! /usr/bin/env -S sudo sh id $ ./foo.sh uid=0(root) gid=0(wheel) groups=0(wheel),5(operator) $ ls -l -rwxr-xr-x 1 luser luser 31 May 13 21:36 foo.sh let me ask you.. is sudo ping acceptable? Please explain the logical reason why not. It would be the preferred method if suid didn't exist and sudo was part of the base system. I'm still bemused to why unless it just an academic exercise ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Laptop Multi-HD partitioning advice (ZFS)
On 5 May 2011 00:17, Daniel Staal dst...@usa.net wrote: I just got notified my new Thinkpad X220 is on it's way, and I'm thinking about the best way to use it. ;) Obviously, FreeBSD with ZFS is on top of the list. (De-dup and compression on my space-limited laptop? Yes, please.) Some relevant vitals (after a couple of upgrades that are also on their way): 6GB of RAM 250GB 2.5in HDD 40GB mSATA SSD I'm planning on installing the patched version of 8.2, with the patches for ZFS v28. My idea at this point is to use the main HDD as the primary drive, with the SSD partitioned into a small[1] ZIL-device and a larger cache drive. Since it's a SSD, I don't think disk contention should be an issue for that use, and it should speed up both reads and writes. It might even reduce the amount of main-disk use that happens. (Or at least, make it happen in short bursts, and let the drive idle in between.) I might still upgrade that HDD to something larger than stock. I could go to an SSD there too (and it's on a SATA III connection, so it could be a *faster* SSD), but I think I'm more likely to go with more space if I decide to upgrade. Obviously, I'm not afraid of a weird config in this case. ;) I'm also not trying to optimize hard for space, or for any specific use-case: I tend to use a laptop for light-duty when I'm not traveling, then more heavy-duty (as well as watching movies, etc) during occasional traveling. The idea here is to let ZFS do the disk optimization. It'll probably slow down my boot times from what could be possible, but I'm hoping ZFS will do things like move a movie I'm *currently* watching to the cache drive, and let the machine shut down the hard drive. Two things I'm *not* sure what the best choices for are the swap partition, and the boot sector. Swap could be on the HDD (slow, reduces my apparent disk-space), on the SSD (fast, reduces my most valuable disk space), or in ZFS (doesn't use dedicated space, but has stability issues under heavy load). Of course I may not ever *need* much swap, as I have a fair amount of RAM. (And I don't care about crash dumps on this box.) The boot sector doesn't really matter as much; if I go with a dedicated swap partition that will probably also hold the boot sector. Otherwise, I'm leaning towards the SSD, as I'm already planning on partitioning that, and I'm less likely to pull it out. Or, of course, there may be other considerations that I've overlooked in the rest. So, I'm looking for wisdom, or other thoughts people have. ;) Daniel T. Staal [1] As per: http://www.solarisinternals.com/wiki/index.php/ZFS_Best_Practices_Guide#Separate_Log_Devices ZIL devices will never use more than 1/2 of RAM, at absolute max, and in most cases will use significantly less. Fully upgraded, this machine supports 8GB of RAM, so a 4GB ZIL device would be plenty in all cases, and would probably be overkill. --- This email copyright the author. Unless otherwise noted, you are expressly allowed to retransmit, quote, or otherwise use the contents for non-commercial purposes. This copyright will expire 5 years after the author's death, or in 30 years, whichever is longer, unless such a period is in excess of local copyright law. --- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I think you may be agonizing to much. You would have to to seriously bad to make it slow and even then its a relative thing. Giving it 4GB ZIL, 8 GB swap, and 28 gb l2arc will make it rapid and cover you for most things. Putting the swap on the 250 gig drive wont make much difference though as like you said you wont be paging to disk much Put the bootblocks etc on the hd. They are only 64kb anyhow so will make no noticable difference to the boot time. Also if your ssd dies you wont have an unusable system (apart from a zil issue maybe) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Can I bridge the same subnet across a VPN?
On 3 May 2011 20:44, Kevin Wilcox kevin.wil...@gmail.com wrote: On Tue, May 3, 2011 at 15:19, Geoff Roberts ge...@apro.com.au wrote: Is it possible to join two sites with the same subnet across a VPN? Yes. I have two sites that have the same subnet/mask. I need these two separated networks to behave as one across a VPN. That's understandable. You may want to consider breaking the /24 into two /25s, one at each site, and routing the connection instead but that's not necessary and you can indeed use a bridge with few issues. Happy to use either IPSec or OpenVPN to actually encrypt the traffic. We've done it as a demo of what you can do with OpenVPN, it's trivial once you get some configuration issues straight in your head (or that's how it worked for me). To bridge in OpenVPN, take a look at: http://openvpn.net/index.php/open-source/documentation/miscellaneous/76-ethernet-bridging.html kmw ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org you can do this with a combination of openvpn (using tap, not tun) and if_bridge both ends. However I have found it to be flakey and not really worth the effort. Better to go with a routed solution. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Limitting SSH access
On 4 May 2011 12:47, Balázs Mátéffy repcs...@gmail.com wrote: On 4 May 2011 13:35, Matthew Seaman m.sea...@infracaninophile.co.uk wrote: On 04/05/2011 10:08, Jack Raats wrote: I have a question concerning SSH op a FreeBSD 7.4-STABLE server. Is it possible to limit the SSH access? I want t o restrict a user to his own home directory. So that if he connects to the server with SSH he only can go to his own home dir. Also the same for sftp... I believe you will need to install a version of OpenSSH from ports to get that functionality. It's the CHROOT config option in security/openssh-portable Cheers Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matt...@infracaninophile.co.uk Kent, CT11 9PW Hello, It should work with the base openssh on 7.4. Check your version with sshd -v. Here, search for chroot(or use google :)): http://www.openbsd.org/cgi-bin/man.cgi?query=sshd_configsektion=5 Regarding ssh login, I usually use rbash from the ports, that restricts the user from leaving his or her home directory! Regards, Balazs Mateffy. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org if you want them to be able to get a shell ether then sftp prompt then you will have to go for the rbash option. If you chroot the shell to their home dir they wont have access to any system binaries so wont be able to 'ls' for example. Having said that you could build a tree of all the binaries they need along with all the dependent libraries. This would get a bit cumbersome and wasteful of disk space for lots of users though. You might be better off with jails. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: easy Firewall setup
On 26 April 2011 08:52, Polytropon free...@edvax.de wrote:
On Mon, 25 Apr 2011 21:34:41 -0500, Antonio Olivares
olivares14...@gmail.com wrote:
Thanks for sharing this. I have a base FreeBSD 8.2 system on one
machine and I would like to setup a firewall that allows me to visit
websites and not allow incoming traffic. Something easy to set up and
start like
/etc/local/rc.d/rc.pf start
or similar. A nice example which I can change somethings like name of
network device, i.e, nv0, or similar device.
I will try further reading and try to set something up as I am afraid
to screw things up.
You can easily do this with IPFW (from the base system)
Step 1: Create a file /etc/ipfw.conf which will contain
your firewall rules. Depending on what you need, try out
something like this:
-f flush
add allow ip from any to any
add allow tcp from any to any ftp in recv xl0
add allow tcp from any to any ssh in recv xl0
add deny ip from any to any
Of course you'll have to replace xl0 with the correct
device name; ifconfig -a will surely tell you.
Please see that this is just an excerpt of an example.
In this case, FTP and SSH should be allowed for incoming,
everything else will be denied. If you do not want to use
FTP - nobody seriously wants that :-) - do not enable it.
The reference for SSH also goes to the default port, maybe
you want to choose a different one.
Step 2: Edit /etc/rc.conf to contain the following lines:
firewall_enable=YES
firewall_type=/etc/ipfw.conf
Step 3: Start (or restart) the firewall:
# /etc/rc.d/ipfw start
See the information contained in man ipfw; it's strong
tobacco, but it provides very good knowledge about how to
properly configure the firewall, containing examples that
you can use for form your own rules, like allow anything
from inside to outside, but deny any requests coming from
outside.
--
Polytropon
Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
freebsd-questions-unsubscr...@freebsd.org
If you are new to firewalls and dont want to use something like pfsense, i
would stay away from ipfw (wait for flames 8) ) . This is not for any
technical reason as it is a perfectly good and well featured firewall. It is
however in my experience from a few years ago a little trickier to get the
rule orderings correct when you are natting things. Therefore I would advise
you use pf. Here is a simple starter ruleset to get you going.
Is provides no external access but you can easily uncomment the bits to
allow things through. Just drop it into /etc/pf.conf and run
echo -en pf_enable=yes\npflog_enable=yes /etc/rc.conf.local
/etc/rc.d/pf start
/etc/rc.d/pflog start
ruleset
--
ext_if=xl0
int_if=xl1
#table sshhosts const { 1.1.1.1, 2.2.2.2 }
table internal_nets const { 192.168.0.0/16, 10.0.0.0/8, 172.16.0.0/12 }
# Options: tune the behavior of pf, default values are given.
set timeout { interval 10, frag 30 }
set timeout { tcp.first 120, tcp.opening 30, tcp.established 86400 }
set timeout { tcp.closing 900, tcp.finwait 45, tcp.closed 90 }
set timeout { udp.first 60, udp.single 30, udp.multiple 60 }
set timeout { icmp.first 20, icmp.error 10 }
set timeout { other.first 60, other.single 30, other.multiple 60 }
set timeout { adaptive.start 80, adaptive.end 120 }
set limit { states 100, frags 5, src-nodes 30 }
#set loginterface none
set optimization normal
set block-policy drop
set state-policy if-bound
set skip on lo0
#set skip on $vpn_ints
set require-order yes
set fingerprints /etc/pf.os
set skip on lo0
set skip on $int_if
# Normalization: reassemble fragments and resolve or reduce traffic
ambiguities.
scrub all random-id fragment reassemble
nat on $ext_if from internal_nets to any - ($ext_if)
# dump everything by default
block log on $ext_if all
# uncomment this to allow ssh through
# let ssh work and let those ppl ping me
#block in on $ext_if proto tcp from any to any port ssh
#pass in quick on $ext_if proto tcp from sshhosts to any port ssh keep
state
#pass in quick on $ext_if inet proto icmp from sshhosts to any icmp-type
echoreq keep state
#pass out quick on $ext_if proto tcp from any to any port ssh keep state
pass out on $ext_if from any to any keep state
---
ps i have ripped this out of my existing rule set so its possible typos
have crept in
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: zfs partition for /etc?
On 23 April 2011 23:48, Adam Vande More amvandem...@gmail.com wrote: On Sat, Apr 23, 2011 at 3:36 PM, krad kra...@gmail.com wrote: not sure about that as the auto mounts are done when /etc/rc.d/zfs runs so there might be a dependency Hum yeah you are right. I don't think it would be possible then as all the old etc/root fs restrictions still apply. On the other hand, if you must have this what's the drawback to simply snapshotting your root fs? Of course this is much more ideal if you use a ZFS structure like MFSBSD's default rather the ZFS file system layout presented in the wiki. -- Adam Vande More you could experiment with the init_* varibles in loader.conf. You might be able to trigger the automount before init runs then, to get around the issue. A bit messy though ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS performance strangeness
On 24 April 2011 17:21, Sergio de Almeida Lenzi lenzi.ser...@gmail.comwrote: Em Ter, 2011-04-12 às 13:33 +0200, Lars Wilke escreveu: Hi, There are quite a few threads about ZFS and performance difficulties, but i did not find anything that really helped :) Therefor any advice would be highly appreciated. I started to use ZFS with 8.1R, only tuning i did was setting vm.kmem_size_scale=1 vfs.zfs.arc_max=4M For me I solved the ZFS performace in FreeBSD and postgres databases (about 100GB size) by tunning vm.kmem_size to atout 3/4 of the ram size... in your case, vm.kmem_size=(48 *3/4)=36G, it puts almost all the database in memory and it is now lightning fast... I use to disable prefetch in zfs.. too Hope this can help, Sergio ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org wouldnt it be better to allow the db to use the memory rather than zfs, as this would involve far less context switches? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: zfs partition for /etc?
On 23 April 2011 19:44, Adam Vande More amvandem...@gmail.com wrote: On Sat, Apr 23, 2011 at 12:00 PM, Chris Telting christopher...@telting.orgwrote: So so on to my question. I'm sure others have thought about this. I kind of want /etc to be it's own zfs partition so that I can snapshot it separate from everything else and preserve it without much effort. But I don't think I can do that because of booting. The system depends on /etc before it mounts it's first file system. As you are aware ZFS works differently, and I think you are incorrect in your assumption that separating /etc onto it's own ZFS file system will break the boot process. The vfs.root.mountfrom=zfs:zoot sysctl controls which pool to boot from, and once the pool is imported all automounted FS's are immediately available I'd guess. If so, your desired scenario is achievable without hackery. However this is an assumption on my part. Testing this out is like a 1/2 hr exercise if you have Virtualbox installed. Use the PCBSD cd or MFSBSD to quickly install a bootable ZFS VM. -- Adam Vande More ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org not sure about that as the auto mounts are done when /etc/rc.d/zfs runs so there might be a dependency ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pkg_add problem
On 19 April 2011 09:35, H.Erkin ATAK erkin.a...@gmail.com wrote: I am running freebsd 8.2 on virtualbox on an ubuntu machine. I am running gnome and have network access no problem. But I can not add any packages via pkg_add. It gives can not fetch ftp address. I tried different mirrors but it did not work. Please help me. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org use the -r and -v flags and post the output ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: PAE: Cannot fork
On 14 April 2011 08:05, Dennis Nikiforov dennis.nikifo...@gmail.com wrote: Hello, I have a problem with FreeBSD 7.x 32bit running the standard PAE kernel on a dell R210 server with 16GB of RAM. All servers spec'ed like this have the same identical problem and it is not a hardware issue because all memory tests have been negative. basically the issue comes after PAE kernel has been compiled and the system outputs all the time the following: cannot fork kstack allocation failed or vm_thread_new: kstack allocation failed Since, this is a dell server there is basically nothing that I can disable in BIOS, so perhaps someone knows what loader options do I need to tweak the kernel and stop this from happening. Thanks, Dennis___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org why not use 64 bit as the r210 should be capable ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: PAE: Cannot fork
On 14 April 2011 11:14, Dennis Nikiforov dennis.nikifo...@gmail.com wrote: There is a legacy piece of custom software that runs only on 32 bit systems, so going to 64 bit is not possible. On Apr 14, 2011, at 12:08 PM, krad wrote: On 14 April 2011 08:05, Dennis Nikiforov dennis.nikifo...@gmail.comwrote: Hello, I have a problem with FreeBSD 7.x 32bit running the standard PAE kernel on a dell R210 server with 16GB of RAM. All servers spec'ed like this have the same identical problem and it is not a hardware issue because all memory tests have been negative. basically the issue comes after PAE kernel has been compiled and the system outputs all the time the following: cannot fork kstack allocation failed or vm_thread_new: kstack allocation failed Since, this is a dell server there is basically nothing that I can disable in BIOS, so perhaps someone knows what loader options do I need to tweak the kernel and stop this from happening. Thanks, Dennis___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org why not use 64 bit as the r210 should be capable not even with lib32, also why not just not run pae. After all if its a 32bit app it cant address all the ram anyhow ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: DNS Administrator - Kenya
On 3 April 2011 18:10, Odhiambo Washington odhia...@gmail.com wrote: On Sun, Apr 3, 2011 at 18:57, Kenneth Parit kennethpa...@gmail.com wrote: Hello, I look forward to becoming the DNS Administrator for my country Kenya. It is impossible to download FreeBSD 8.2 from any of the mirror sites due to disconnections. Since I am contactable any day/time of the year and skilled in DNS setup, kindly email me the latest stable FreeBSD to be installed on Mac Pro (Model 1,1). The following specs: - Dual-Core Intel Xeon - Processor speed 2 GHz - 4 core (2 processors) - L2 Cache (per processor) - 4MB - Memory - 1GB - Bus Speed - 1.33 GHz - Boot ROM Version - MP11.005C.B04 - SMC Version - 1.7f6 - Serial Number - CK6350U0UPZ - Intel - ESB2 AHCI - Speed - 3.0 Gigabit - Capacity - 150 GB - DNS Server address 41.212.3.2, 212.165.130.9 Please keep in mind that FreeBSD is alittle overwhelming though my passion in learning is equally high. Include all installation and configuration information required. Many thanks. Kind regards Kenneth Parit +254 752 776675 Hello Parit, Please contact me on any of the two numbers appearing in my signature text. You will get FreeBSD 8.2 DVD from me. You can find me at Wilson Airport, If you find FreeBSD a little overwhelming, I am a phone call (or even an e-mail away) if you need help. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Damn!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org alternatively try one of the torrents, it should survive disconnections far better than ftp etc ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Can't rebuild kernel with ZFS v15
On 29 March 2011 10:05, Andre Goree an...@drenet.info wrote: Thank you for responding. For two reasons I know it's running zfs v14 after the rebuild: 1) During boot, a message shows: ZFS Filesystem version 4 ZFS Storage pool version 14 2) After getting to the failed root mount point of the boot (after it fails to mount my zfs root), I enter: ufs:/dev/ad4s1a to get to my boot partition (which must remain UFS obviously, hehe), and try to mount my pools with the 'zfsmount' command, however it errors with something similar to: storage pool version does not match I can only get my system working again by manually moving /boot/kernel to /boot/kernel.bad (or whatever) and replacing it with the previous kernel. :( On Tue, 29 Mar 2011 03:40:17 -0500, krad kra...@gmail.com wrote: On 28 March 2011 10:37, Andre Goree an...@drenet.info wrote: Hello, Ever since I upgraded to 8.2 a few weeks ago, I can't seem to rebuild my kernel without it being built with ZFS v14 rather than v15. This is a problem because I'm using root on ZFS and my box won't boot after the kernel rebuild and reboot. At first I thought it was because I rebuilt the kernel without rebuilding world, however the same thing happens even after getting up-to-date sources and rebuilding world. Anyone else having this problem? Thanks in advance. Andre Goree an...@drenet.info ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org what is making you think you are running zfs v14? Are you looking at zpool status? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Andre Goree an...@drenet.info ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org as i thought, it doesnt look like you have done a ZPOOL UPGRADE to upgrade the pool to version 15. You can also do a zfs upgrade to update the file systems as well ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Can't rebuild kernel with ZFS v15
On 28 March 2011 10:37, Andre Goree an...@drenet.info wrote: Hello, Ever since I upgraded to 8.2 a few weeks ago, I can't seem to rebuild my kernel without it being built with ZFS v14 rather than v15. This is a problem because I'm using root on ZFS and my box won't boot after the kernel rebuild and reboot. At first I thought it was because I rebuilt the kernel without rebuilding world, however the same thing happens even after getting up-to-date sources and rebuilding world. Anyone else having this problem? Thanks in advance. Andre Goree an...@drenet.info ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org what is making you think you are running zfs v14? Are you looking at zpool status? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: MySQL 3 needed but how?
On 26 March 2011 21:40, Laszlo Nagy gand...@shopzeus.com wrote: There is nothing in /var/log/messages. It was working with 4.1 server, but I just uninstalled that (because the upgrading faq told me to install 4.0 instead.) Do you have the following in your /etc/rc.conf file: mysql_enable=YES Yes. I'm in the process of installing FreeBSD 6.4 in a virtual machine. Hopefully I'll be able to compile mysql 3.23 and make a backup from there. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Why not get the binary packages off the freebsd archive servers from an earlier release and run those with the relevant compatibility layer ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Updating OpenSSH
On 17 March 2011 11:52, Robert Huff roberth...@rcn.com wrote: Carmel writes: It is part of the base system. I don't know if it has a true maintainer. In any case, I would need commit privileges which I don't and never expect to have and have no desire to acquire.. I do not believe that is correct; a fair number of people contribute productively to the base system with out being committers. Respectfully, Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org yep you just submit a patch, which if it passes muster will get commited ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Updating OpenSSH
On 16 March 2011 19:47, Carmel carmel...@hotmail.com wrote: On Wed, 16 Mar 2011 11:32:48 -0700 Chuck Swiger cswi...@mac.com articulated: On Mar 16, 2011, at 11:24 AM, Carmel wrote: OK, then does that mean that the latest version will be used in the still not released 9 version of FreeBSD? Currently, no-- TRUNK has: http://www.freebsd.org/cgi/cvsweb.cgi/~checkout~/src/crypto/openssh/version.h Revision 1.41: download - view: text, markup, annotated - select for diffs Thu Nov 11 11:46:19 2010 UTC (4 months ago) by des Branches: MAIN CVS tags: HEAD Diff to: previous 1.40: preferred, colored Changes since revision 1.40: +3 -3 lines SVN rev 215116 on 2010-11-11 11:46:19Z by des Upgrade to OpenSSH 5.6p1. Out of some sort of morbid curiosity, why would the FreeBSD developers not update to the latest version? It appears to be stable and I have not seen anything to state otherwise. There are apparently, (obviously) differences between the latest and the version presently used in FreeBSD and I assume the proposed one for the 9.x branch. Mathew alluded to that. In any case, since 9.x is not due out for a while, it would appear to me me anyways that now would be a good time to consider making the switch. Just my 2¢. -- Carmel carmel...@hotmail.com The latest toy has just hit the shops - a talking Muslim doll. Nobody knows what the hell it says because no one's got the balls to pull the cord. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org a combination of time and limited resources I guess. If it bugs you that much why dont you volunteer yourself to maintain it, i'm sure that if you dont feel competent enough at present, people will help and mentor you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrading FreeBSd when using a zfs-only installation?
On 14 March 2011 00:10, Andrew Moran amo...@forsythia.net wrote: I have successfully upgraded form FreeBSD 8.1 to FreeBSD 8.2. Here were my steps: cvsup /root/stable-supfile cd /usr/src make buildworld make buildkernel make installkernel shutdown -r now *select single user mode* mount -u / zfs mount -a mergemaster -p make installworld mergemaster gpart bootcode -b /boot/pmbr -p /boot/gptzfsboot -i 1 ad4 gpart bootcode -b /boot/pmbr -p /boot/gptzfsboot -i 1 ad5 zpool upgrade -a zfs upgrade -a shutdown -r now NOTE 1: the gpart commands are specific to my setup - I'm using a ZFS mirror on ad4 and ad5.Your system may be different. NOTE 2: my zfs upgrade -a ran out of swap space and died. I ran zfs upgrade to see what filesystems were left un-upgraded and did those manually. Thanks Scott Ballantyne and everyone else who responded. Cheers! --Andy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org sorry this is a bit late but here is the update script I use. I basically creates a structure like this. Makes if very easy to flip flop between os installs by modifying the pool bootfs variable system-4k/be 35.2G 1.20T 156K /system-4k/be system-4k/be/current 1.22G 1.20T 740M legacy system-4k/be/root20110226 2.80G 1.20T 882M legacy system-4k/be/root20110302 3.24G 1.20T 882M legacy system-4k/be/root20110306 1.32G 1.20T 882M legacy system-4k/be/root20110312 1.36G 1.20T 923M legacy system-4k/be/tmp 776K 1.21T 260K /tmp system-4k/be/usr-local2.84G 1.20T 2.47G /usr/local/ system-4k/be/usr-obj 5.08G 1.20T 2.09G /usr/obj system-4k/be/usr-ports5.82G 1.20T 4.33G /usr/ports system-4k/be/usr-ports/distfiles 1.20G 1.20T 1.19G /usr/ports/distfiles system-4k/be/usr-src 1.49G 1.20T 973M /usr/src system-4k/be/var 4.72G 1.21T 805M /var system-4k/be/var/log 3.66G 1.21T 2.34G /var/log system-4k/be/var/mysql82.5M 1.21T 33.9M /var/db/mysql #!/usr/local/bin/bash if [ $UID != 0 ] ; then echo your not root !! ; exit 1 fi date=`date '+%Y%m%d'` oroot=`grep vfs.root.mountfrom=\zfs:system-4k/ /boot/loader.conf | sed -e s#^.*\zfs:system-4k/be/## -e s#\##` nroot=root$date snap=autoup-$RANDOM zpool=system-4k export DESTDIR=/$zpool/be/$nroot if [ $oroot = $nroot ] ; then echo i cant update twice in one day; exit 1 fi echo building in $zpool/be/$nroot zfs snapshot $zpool/be/$oroot@$snap zfs send $zpool/be/$oroot@$snap | zfs receive -vv $zpool/be/$nroot cd /usr/src make installkernel make installworld sed -i -e s#$zpool/be/$oroot#$zpool/be/$nroot# /$zpool/be/$nroot/boot/loader.conf \ echo Installing boot records.. zpool status system-4k | grep -A 2 mirror | grep ad | sed -e s/p[0-9]// | while read a b; do gpart bootcode -b /zfsboot/pmbr -p /zfsboot/gptzfsboot -i 1 $a; done cp -v /zfsboot/zfsloader /$zpool/be/$nroot/boot/. echo -en \n\nNow run these two commands to make the changes live, and reboot zfs set mountpoint=legacy $zpool/be/$nroot zpool set bootfs=$zpool/be/$nroot $zpool\n\n ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Simplest way to deny access to a class C
On 4 March 2011 02:43, Jorge Biquez jbiq...@intranet.com.mx wrote: Thank you all for your time and comments. I guess that I will install a firewall, that way I can also block those Class C's from sending tons of emails to non existing accounts I will read the website to see the best options. Any suggestion is more than welcome. Jorge Biquez At 06:02 p.m. 03/03/2011, you wrote: Be careful of automated responses. What if someone spoofs IP's of legit users / customers / whatever and your automated response blocks them? Not good. I thought about blockingwell, never mind - might pi$$ someone off and attract unwanted attention... -Original Message- From: owner-freebsd-questi...@freebsd.org [mailto: owner-freebsd-questi...@freebsd.org] On Behalf Of Patrick Gibson Sent: Thursday, March 03, 2011 5:58 PM To: Jorge Biquez Cc: freebsd-questions@freebsd.org Subject: Re: Simplest way to deny access to a class C You might consider mod_security (/usr/ports/www/mod_security) which can be set up to ban hosts based on behaviour or characteristics. Or fail2ban (/usr/ports/security/py-fail2ban) is really great, too, in that it scans whatever logs you want, and can trigger a block in your firewall if enough violating log entries are found within a particular period of time. Everything is totally configurable, and there are plenty of examples that come with it. Patrick On Thu, Mar 3, 2011 at 8:59 AM, Jorge Biquez jbiq...@intranet.com.mx wrote: Hello all. I am sorry in advance if this question sounds too stupid. I have a small server for personal use of webpages running: 7.3-PRERELEASE FreeBSD 7.3-PRERELEASE #0 it is working fine , no problem very stable. I just need to block some IP class C address that are always trying to discover directories or applications under the web server. They do not do and can not do anything since this server has nothing installed but i am tired of seeing in the logs all the intents they do every 2-3 seconds. I have not installed any kind of firewall yet. What do you think is the best way to accomplish this task? If possible the easiest one. I do not want to do anything else but just bloc IP's, at this moment at least. Thanks in advance. Jorge Biquez ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org font size=1 div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in' /div This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system. /font ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org you might wamt to look at geoip as well. you can open up services to specif regions then, or block other regions. Can be controversial though. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pam ssh authentication via ldap
On 28 February 2011 01:06, Tim Dunphy bluethu...@gmail.com wrote:
Hello Krad and thank you for your reply!
Well it seems that I am still unable to login to this machine using an
LDAP account. I have tried applying the configurations you have
provided and the result doesn't seem to have changed just yet.
Here is my /usr/local/etc/ldap.conf file
uri ldap://LBSD2.summitnjhome.com
base dc=summitnjhome,dc=com
sudoers_base ou=staff,ou=Group,dc=summitnjhome,dc=com
binddn cn=pam_ldap,ou=Services,dc=summitnjhome,dc=com
bindpw secret
scope sub
ssl start tls
tls_cacert /usr/local/etc/openldap/certs/LBSD2.summitnjhome.com.crt
pam_login_attribute uid
bind_timelimit 1
timelimit 1
bind_policy soft
pam_password exop
nss_base_passwd dc=summitnjhome,dc=com
nss_base_shadow dc=summitnjhome,dc=com
nss_base_group dc=summitnjhome,dc=com
nss_base_sudo dc=summitnjhome,dc=com
nss_initgroups_ignoreusers root,slapd
#ls -l /usr/local/etc/nss_ldap.conf
lrwxr-xr-x 1 root wheel 24 Feb 28 00:10
/usr/local/etc/nss_ldap.conf - /usr/local/etc/ldap.conf
#cat /usr/local/etc/nsswitch.conf
#
# nsswitch.conf(5) - name service switch configuration file
# $FreeBSD: src/etc/nsswitch.conf,v 1.1.10.1.2.1 2009/10/25 01:10:29
kensmith Exp $
#
passwd: cache files ldap [notfound=return]
passwd_compat: files ldap
group: cache files ldap [notfound = return]
group_compat: nis
sudoers: ldap
hosts: files dns
networks: files
shells: files
services: compat
services_compat: nis
protocols: files
rpc: files
Here is my slapd.conf file:
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/openldap.schema
include /usr/local/etc/openldap/schema/sudo.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/misc.schema
include /usr/local/etc/openldap/schema/openssh-lpk_openldap.schema
# Define global ACLs to disable default read access.
# Do not enable referrals until AFTER you have a working directory
# service AND an understanding of referrals.
#referral ldap://root.openldap.org
loglevel 296
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
## TLS options for slapd
TLSCipherSuite HIGH:MEDIUM:+SSLv2
TLSCertificateFile /usr/local/etc/openldap/certs/LBSD2.summitnjhome.com.crt
TLSCertificateKeyFile /usr/local/etc/openldap/certs/LBSD2.summitnjhome.com.key
TLSCACertificateFile /usr/local/etc/openldap/certs/gd_bundle.crt
# Load dynamic backend modules:
modulepath /usr/local/libexec/openldap
moduleload back_bdb
# moduleload back_hdb
# moduleload back_ldap
# Sample security restrictions
# Require integrity protection (prevent hijacking)
# Require 112-bit (3DES or better) encryption for updates
# Require 63-bit encryption for simple bind
# security ssf=1 update_ssf=112 simple_bind=64
# Sample access control policy:
# Root DSE: allow anyone to read it
# Subschema (sub)entry DSE: allow anyone to read it
# Other DSEs:
# Allow self write access
# Allow authenticated users read access
# Allow anonymous users to authenticate
# Directives needed to implement policy:
# access to dn.base= by * read
access to *
by read
access to attrs=userPassword by self write
by anonymous auth
access to * by self write
by dn.children=ou=summitnjops,ou=staff,dc=summitnjhome,dc=com
write
by users read
by anonymous auth
access to * by self write
by users read
by anonymous auth
#
# if no access controls are present, the default policy
# allows anyone and everyone to read anything but restricts
# updates to rootdn. (e.g., access to * by * read)
#
# rootdn can always read and write EVERYTHING!
###
# BDB database definitions
###
database bdb
suffix dc=summitnjhome,dc=com
rootdn cn=Manager,dc=summitnjhome,dc=com
rootpw {SSHA}secret
# Cleartext passwords, especially for the rootdn, should
# be avoid. See slappasswd(8) and slapd.conf(5) for details.
# Use of strong authentication encouraged.
# The database directory MUST exist prior to running slapd AND
# should only be accessible by the slapd and slap tools.
# Mode 700 recommended.
directory /var/db/summitnjhome.com
# Indices to maintain
index objectClass,uid,uidNumber eq
index sudoUser eq
these are the packages I have installed
nss_ldap
Re: Problem upgrading from 8.1-8.2, ZFS as root filesystem
On 27 February 2011 21:29, Scott Ballantyne boyva...@gmail.com wrote: On Sun, Feb 27, 2011 at 4:04 PM, Adam Vande More amvandem...@gmail.comwrote: On Sun, Feb 27, 2011 at 2:36 PM, Scott Ballantyne boyva...@gmail.comwrote: ===sys/boot/i386/zfsloader (install) cp zfsloader.sym zfsloader.bin cp:No such file or directory *** Error code 1 Stop in /usr/src/sys/boot/i386/zfsloader *** Error code 1 Stop in /usr/src/sys/boot/i386 Any suggestions would be *very* appreciated! Thanks, Scott You can follow the intructions for building the loader which I believe are in the wiki or set LOADER_ZFS_SUPPORT=YES in /etc/src.conf prior to upgrade. Thanks Adam, but it still comes to a screaming stop with that set. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org mines in make.conf not src and it built fine ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pam ssh authentication via ldap
=NULL Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: activity on 1 descriptor Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: activity on: Feb 26 19:52:54 LBSD2 slapd[54891]: Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: read activity on 212 Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: select: listen=6 active_threads=0 tvp=NULL Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: select: listen=7 active_threads=0 tvp=NULL Feb 26 19:52:54 LBSD2 slapd[54891]: connection_read(212): input error=-2 id=34715, closing. Feb 26 19:52:54 LBSD2 slapd[54891]: connection_closing: readying conn=34715 sd=212 for close Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: activity on 1 descriptor Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: waked Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: select: listen=6 active_threads=0 tvp=NULL Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: select: listen=7 active_threads=0 tvp=NULL Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: removing 212 Feb 26 19:52:54 LBSD2 slapd[54891]: conn=34715 fd=212 closed (connection lost) But logins fail every time. Could someone offer an opinion as to what may be going on to prevent logging in via pam/sshd and LDAP? Thanks in advance! Tim -- GPG me!! gpg --keyserver pool.sks-keyservers.net --recv-keys F186197B -- GPG me!! gpg --keyserver pool.sks-keyservers.net --recv-keys F186197B ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org these are my files and are from a working setup # cat /usr/local/etc/ldap.conf # # LDAP Defaults # # See ldap.conf(5) for details # This file should be world readable but not world writable. BASEdc=XXX,dc=net URI ldap://XXX.net #SIZELIMIT 12 #TIMELIMIT 15 #DEREF never ssl start_tls tls_cacert /usr/local/etc/openldap/ssl/cert.crt pam_login_attribute uid sudoers_base ou=sudoers,ou=services,dc=XXX,dc=net bind_timelimit 1 timelimit 1 bind_policy soft nss_initgroups_ignoreusers root,slapd,krad # ls -l /usr/local/etc/nss_ldap.conf lrwxr-xr-x 1 root wheel 24 Jan 16 22:31 /usr/local/etc/nss_ldap.conf - /usr/local/etc/ldap.conf # nsswitch.conf group: cache files ldap [notfound=return] passwd: cache files ldap [notfound=return] these packages are installs nss_ldap-1.265_4RFC 2307 NSS module openldap-client-2.4.23 Open source LDAP client implementation openldap-server-2.4.23 Open source LDAP server implementation pam_ldap-1.8.6 A pam module for authenticating with LDAP ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pam ssh authentication via ldap
On 27 February 2011 11:05, krad kra...@gmail.com wrote: On 26 February 2011 20:01, Tim Dunphy bluethu...@gmail.com wrote: Hey list, I just wanted to follow up with my /usr/local/etc/ldap.conf file and nsswitch file because I thought they might be helpful in dispensing advice as to what is going on: uri ldap://LBSD2.summitnjhome.com base ou=staff,ou=Group,dc=summitnjhome,dc=com sudoers_base ou=staff,ou=Group,dc=summitnjhome,dc=com binddn cn=pam_ldap,ou=Services,dc=summitnjhome,dc=com bindpw secret scope sub pam_password exop nss_base_passwd dc=summitnjhome,dc=com nss_base_shadow dc=summitnjhome,dc=com nss_base_group dc=summitnjhome,dc=com nss_base_sudo dc=summitnjhome,dc=com # nsswitch.conf(5) - name service switch configuration file # $FreeBSD: src/etc/nsswitch.conf,v 1.1.10.1.2.1 2009/10/25 01:10:29 kensmith Exp $ # passwd: files ldap passwd_compat: files ldap group: files ldap group_compat: nis sudoers: ldap hosts: files dns networks: files shells: files services: compat services_compat: nis protocols: files rpc: files On Sat, Feb 26, 2011 at 2:55 PM, Tim Dunphy bluethu...@gmail.com wrote: Hello List!! I have an OpenLDAP 2.4 server functioning very nicely that authenticates a network of (mostly virtual) centos 5.5 machines. But at the moment I am attempting to setup pam authentication for ssh via LDAP and having some difficulty. My /etc/pam.d/sshd file seems to be setup logically and correctly: # PAM configuration for the sshd service # # auth auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth required pam_ldap.so #auth required pam_unix.so no_warn try_first_pass # account account required pam_nologin.so #account required pam_krb5.so account required pam_login_access.so account required pam_ldap.so #account required pam_unix.so # session #session optional pam_ssh.so session sufficient pam_ldap.so session required pam_permit.so # password #password sufficient pam_krb5.so no_warn try_first_pass password required pam_ldap.so #password required pam_unix.so no_warn try_first_pass And if I'm reading the logs correctly LDAP is searching for and finding the account information when I am making the login attempt: Feb 26 19:52:54 LBSD2 slapd[54891]: conn=21358 op=22122 SRCH base=dc=summitnjhome,dc=com scope=2 deref=0 filter=((objectClass=posixAccount)(uidNumber=1001 )) Feb 26 19:52:54 LBSD2 slapd[54891]: conn=21358 op=22122 SRCH attr=uid userPassword uidNumber gidNumber cn homeDirectory loginShell gecos description objectCla ss Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: AND Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates 0xa0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: OR Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates 0xa1 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: EQUALITY Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=0 first=0 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: AND Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates 0xa0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: EQUALITY Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=26 first=106 last=137 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates Feb 26 19:52:54 LBSD2 slapd[54891]: EQUALITY Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=0 first=0 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates: id=0 first=106 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=0 first=106 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates: id=0 first=0 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=0 first=0 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_list_candidates: id=0 first=1 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: = bdb_filter_candidates: id=0 first=1 last=0 Feb 26 19:52:54 LBSD2 slapd[54891]: conn=21358 op=22122 SEARCH RESULT tag=101 err=0 nentries=0 text= Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: activity on 1 descriptor Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: waked Feb 26 19:52:54 LBSD2 slapd[54891]: daemon: select: listen=6 active_threads=0 tvp=NULL Feb 26 19:52:54 LBSD2 slapd
Re: ZFS-only booting on FreeBSD
On 19 February 2011 15:35, Daniel Staal dst...@usa.net wrote: --As of February 19, 2011 2:44:38 PM +, Matthew Seaman is alleged to have said: Umm... a sufficiently forgetful sysadmin can break *anything*. This isn't really a fair test: forgetting to write the boot blocks onto a disk could similarly render a UFS based system unbootable. That's why scripting this sort of stuff is a really good idea. Any new sysadmin should of course be referred to the copious and accurate documentation detailing exactly the steps needed to replace a drive... ZFS is definitely advantageous in this respect, because the sysadmin has to do fewer steps to repair a failed drive, so there's less opportunity for anything to be missed out or got wrong. The best solution in this respect is one where you can simply unplug the dead drive and plug in the replacement. You can do that with many hardware RAID systems, but you're going to have to pay a premium price for them. Also, you loose out on the general day-to-day benefits of using ZFS. --As for the rest, it is mine. True, best case is hardware RAID for this specific problem. What I'm looking at here is basically reducing the surprise: A ZFS pool being used as the boot drive has the 'surprising' behavior that if you replace a drive using the instructions from the man pages or a naive Google search, you will have a drive that *appears* to work, until some point later where you attempt to reboot your system. (At which point you will need to start over.) To avoid this you need to read local documentation and/or remember that there is something beyond the man pages needs to be done. With a normal UFS/etc. filesystem the standard failure recovery systems will point out that this is a boot drive, and handle as necessary. It will either work or not, it will never *appear* to work, and then fail at some future point from a current error. It might be more steps to repair a specific drive, but all the steps are handled together. Basically, if a ZFS boot drive fails, you are likely to get the following scenario: 1) 'What do I need to do to replace a disk in the ZFS pool?' 2) 'Oh, that's easy.' Replaces disk. 3) System fails to boot at some later point. 4) 'Oh, right, you need to do this *as well* on the *boot* pool...' Where if a UFS boot drive fails on an otherwise ZFS system, you'll get: 1) 'What's this drive?' 2) 'Oh, so how do I set that up again?' 3) Set up replacement boot drive. The first situation hides that it's a special case, where the second one doesn't. To avoid the first scenario you need to make sure your sysadmins are following *local* (and probably out-of-band) docs, and aware of potential problems. And awake. ;) The scenario in the second situation presents it's problem as a unified package, and you can rely on normal levels of alertness to be able to handle it correctly. (The sysadmin will realize it needs to be set up as a boot device because it's the boot device. ;) It may be complicated, but it's *obviously* complicated.) I'm still not clear on whether a ZFS-only system will boot with a failed drive in the root ZFS pool. Once booted, of course a decent ZFS setup should be able to recover from the failed drive. But the question is if the FreeBSD boot process will handle the redundancy or not. At this point I'm actually guessing it will, which of course only exasperates the above surprise problem: 'The easy ZFS disk replacement procedure *did* work in the past, why did it cause a problem now?' (And conceivably it could cause *major* data problems at that point, as ZFS will *grow* a pool quite easily, but *shrinking* one is a problem.) Daniel T. Staal --- This email copyright the author. Unless otherwise noted, you are expressly allowed to retransmit, quote, or otherwise use the contents for non-commercial purposes. This copyright will expire 5 year s after the author's death, or in 30 years, whichever is longer, unless such a period is in excess of local copyright law. --- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org on slightly different note, make sure you align your partitions so the zfs partitions 1st sector is divisible by 8, eg 1st sector 2048. Also when you create the zpool, use the gnop -s 4096 trick to make sure the pool has ashift=12. You may not be using advanced format drives yet, but when you do in the future you will be glad you started out like this. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to
Re: FreeBSD and SSD drives
On 14 February 2011 23:55, Chad Perrin per...@apotheon.com wrote: On Mon, Feb 14, 2011 at 03:32:30PM -0800, Chuck Swiger wrote: From what I understand (a quick review of wikipedia helps :), modern flash cards are now typically rated for 100K writes, include ECC bits to actually correct or at least detect errors and try to remap bad blocks to unused blocks, and implement wear-leveling techniques of varying degrees of effectiveness. Regards, -- -Chuck PS: Reposted from a NetBSD thread, was d5af2a8e-fef0-467e-be4a-b01243e21...@mac.com Just make sure you double-check the rating for the specific SSD storage hardware you're actually using. The fact the state of the art is better now than it was does not mean you are using state of the art hardware. -- Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] We have the main DB server on our portal running directly on some of these http://www.oracle.com/us/043970.pdf. Its a high volume site so we really needed the speed. They are supposed to last 6 years but we shall see. We have the 1 TB version, all mirrored giving us 500 GB. We run solaris 10 on top with zfs, so we should see any data corruption very quickly if it starts to happen. The cluster has been running for about a year now ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: how to add a few hundred ip on one interface?
On 11 February 2011 13:25, Guillermo Fernando Cotone guillermo.cot...@gmail.com wrote: On 02/11/2011 09:55 AM, Vladislav V. Prodan wrote: And this construction work? ipv4_addrs_ed0=192.0.2.129/27 192.0.2.1-2/28 192.0.2.4-5/28 It would work only if all the IPs were on the same subnet. If you want to use different subnets you need to implement vlans on that interface first. Regards, Guillermo there is no reason why a single vlan cant have multiple ip subnets, so unless freebsd has a specific limitation (which i dont think it does) I cant see this as being true ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 4k drives and zfs
On 2 February 2011 15:20, krad kra...@gmail.com wrote: On 2 February 2011 12:18, Ivan Voras ivo...@freebsd.org wrote: On 02/02/2011 05:52, krad wrote: Hi All, A quick question. Im upgrading my filer at home to have 2x 2tb samsung F4EG drives. I believe these are 4k drives. I'm intending to use the gnop trick to get zfs ashift to 12. Will this make my pool unbootable. I have read a few threads aluding to this. There have been bugs which make such drives unbootable but they have been fixed at least in CURRENT (I haven't tried it). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org where they related to any type of pools in particular as im just mirroring well they are in. i tested with the gnop trick and without. It didnt seem to make much difference to the performance of the drives. Certainly not enough for me to worry about. Thinking about it though as I was addin it to the existing pool as a mirror and then dropping the old drives out one by one, i was probably forced into the 512k sectors anyway. Just finishing up now by filling the pool with urandom, and reading it back. Its taking a while though. Do these values seem similar to what others get? Bare in mind I have a dd of /dev/zero and /dev/urandom running in parallel with a bs=128k # zpool iostat system 5 capacity operationsbandwidth pool used avail read write read write -- - - - - - - system 1.12T 709G149212 8.48M 15.8M system 1.12T 708G 2336 2.44K 30.2M system 1.12T 708G 2541 3.12K 57.0M system 1.12T 708G 1349 6.05K 32.8M system 1.12T 708G 1581599 62.9M system 1.12T 707G 3320 5.46K 30.7M # iostat -d 5 ad4 ad5 ad6 ad7 KB/t tps MB/s KB/t tps MB/s KB/t tps MB/s KB/t tps MB/s 92.50 10 0.93 102.35 245 24.50 91.86 10 0.93 102.02 246 24.49 0.00 0 0.00 106.64 268 27.95 0.00 0 0.00 115.60 413 46.64 0.00 0 0.00 109.72 590 63.19 0.00 0 0.00 103.79 437 44.33 0.00 0 0.00 113.48 349 38.72 0.00 0 0.00 115.70 432 48.84 0.00 0 0.00 106.66 547 57.02 0.00 0 0.00 103.98 461 46.84 0.00 0 0.00 117.52 406 46.62 0.00 0 0.00 117.12 407 46.59 0.00 0 0.00 110.43 565 60.92 0.00 0 0.00 109.64 601 64.37 0.00 0 0.00 119.11 282 32.81 0.00 0 0.00 117.87 254 29.27 # zpool status pool: system state: ONLINE scrub: scrub completed after 2h2m with 0 errors on Sat Feb 5 11:47:21 2011 config: NAMESTATE READ WRITE CKSUM system ONLINE 0 0 0 mirrorONLINE 0 0 0 label/red ONLINE 0 0 0 label/blue ONLINE 0 0 0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 4k drives and zfs
On 2 February 2011 12:18, Ivan Voras ivo...@freebsd.org wrote: On 02/02/2011 05:52, krad wrote: Hi All, A quick question. Im upgrading my filer at home to have 2x 2tb samsung F4EG drives. I believe these are 4k drives. I'm intending to use the gnop trick to get zfs ashift to 12. Will this make my pool unbootable. I have read a few threads aluding to this. There have been bugs which make such drives unbootable but they have been fixed at least in CURRENT (I haven't tried it). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org where they related to any type of pools in particular as im just mirroring ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS and switching from ad to ada disks.
On 2 February 2011 16:29, Arthur Chance free...@qeng-ho.org wrote: I'm currently running 8.1-R without AHCI enabled, with a raidz zpool based on /dev/ad* disks, plus one system disk that's UFS2, mounted using partition labels. I need to enable AHCI in order to get hot pluggable eSata capability, and that's going to rename the disks to /dev/ada*. Will zfs handle that OK, or should I zpool export before the switch and zpool import after? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org should handle it ok, especially as you are not booting from the pool. After all you can import a solaris pool into the fbsd box and vice versa, and the device names there are wildly different ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
4k drives and zfs
Hi All, A quick question. Im upgrading my filer at home to have 2x 2tb samsung F4EG drives. I believe these are 4k drives. I'm intending to use the gnop trick to get zfs ashift to 12. Will this make my pool unbootable. I have read a few threads aluding to this. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 9/ZFS: Striped Pool (2 disks) migrating to mirror (onto additional disk)
On 26 January 2011 09:21, Christer Solskogen christer.solsko...@gmail.com wrote: On Wed, Jan 26, 2011 at 9:42 AM, O. Hartmann ohart...@mail.zedat.fu-berlin.de wrote: My question is: is it possible to migrate the two-disk pool without data loss into a mirrored pool by adding the one 2TB-disk? No, you cant create a two-way mirror of three disks with ZFS. The only way of doing what you want by creating a gmirror (or by hardware raid) of the two 1TB disks. -- chs, ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ive not tried it but wouldn't you want to gstripe the two disks together and then add the geom device to the pool? It sounds a bit horrible to me and with the price of 2TB disks being ~ £65-70 here in the uk I wouldn't bother. Remember you will get a speed boost for reads on a mirror. WIth regards to the backup, the most efficient way would probably to use zfs send and receive between the pools ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Managing ESXi from FreeBSD...
On 23 January 2011 22:41, Peter Harrison peter.piggy...@virgin.net wrote: Hello list, I've just started messing around with my new Proliant. I've installed ESXi 4.1 and have a VM up and running with 8.2-RC2 using the (Windows only) vSphere client. I don't want to be stuck using Windows to manage this machine though. What are my options for managing this machine and the VM's from my FreeBSD laptop? I've enable ssh access, but can I control all the VM's this way? Is there a command line or X-Windows option for remotely management? Any tips or suggestions gratefully receivied! TIA. Peter Harrison. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org There are command line tools for linux I believe, not sure if they will work on freebsd though. However what I have done on my esx is install a freebsd host, that has 2x virtual nics. One has a public ip and the other goes into the vmware management lan. I then enabled ssh on the esxi host. I can then get a shell and do all manner of wonderful things 8). The freebsd box provided the security for the esxi host by locking down access with pf and a limited number of accts ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: chrooted ssh user and /dev/tty permission denied
On 20 January 2011 09:06, Ibrahim Harrani ibrahim.harr...@gmail.com wrote: Hi, I have a problem with making remote ssh connection in chroot env. I configured chroot in sshd_config on FreeBSD 8.1 like following. Match user myuser ChrootDirectory /opt/root/myuser X11Forwarding no AllowTcpForwarding no RSAAuthentication yes PubkeyAuthentication yes and configured fstab like following. devfs /opt/root/myuser/dev devfs rw 0 0 and rc.conf devfs_set_rulesets=/opt/root/myuser/dev=devfsrules_jail I copied all binaries and libs (such as ssh,ls,pwd,ftp,scp) also. I can make ssh connection with this user to chroot enviorment successfully. When I tried to make a ssh/scp/sftp connection to remote box in chroot. I got cannot open /dev/tty: permission denied message. The permission of /dev/tty is following on chroot's /dev directory crw--w 1 root tty 0, 88 Jan 20 11:02 /dev/tty I tired to change permission as root from out of the chroot by chmod, the permission never change. What should I do to make a remo ssh conn inside of the chroot env? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Just of a matter of interest, why are you using ssh chroot rather than a full jail? You might have more success with a real jail. If there are ip limitations bind it to a loopback address then forward on the ssh connections from a non standard port on the public interface eg port ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Date of a FreeBSD installation
On 13 January 2011 20:34, Matthias Apitz g...@unixarea.de wrote: El día Thursday, January 13, 2011 a las 09:28:29PM +0100, David Demelier escribió: Hello folks, I'm just guessing if there is a way to know a FreeBSD installation date. We can't look after the uname -a ident since an update of the FreeBSD kernel is possible. I think searching a file absolutely not touched ever in the system can helps but which one? markand@Melon ~ $ ls -l /root/.cshrc -rw-r--r-- 2 root wheel 798 19 Jul 04:17 /root/.cshrc It seems that this file has the FreeBSD dist access time so can't refers to neither. Do you have any clue? I always use for this the oldest installed pkg: $ ls -lt /var/db/pkg HIH matthias -- Matthias Apitz t +49-89-61308 351 - f +49-89-61308 399 - m +49-170-4527211 e g...@unixarea.de - w http://www.unixarea.de/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org no good if packages have been updated ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
