Re: Custom kernel for Soekris net4801-50
Richard P. Koett wrote: I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? Are you using PPPOE in your setup ? It may be the culprit of your bad performance. I've setup 4 Soekris 4501 boxes as routers for small offices with an ADSL link to the Internet. For one of this installations, the ADSL link speed was above 1 Mb/s (8Mb/s), and when using the userland PPPOE the CPU load was around 75% and the available bandwith was poor. After modifying the configuration to use the kernel PPPOE instead, the CPU load and the available bandwith became normal. With ADSL links at 512kb/s I've not seen any difference in CPU load or throughputs between userland and kernel PPPOE. I've always used unmodified OpenBSD kernel with Soekris boxes. See: Kernel PPPOE: http://www.openbsd.org/cgi-bin/man.cgi?query=pppoesektion=4 Userland PPPOE: http://www.openbsd.org/cgi-bin/man.cgi?query=pppoesektion=8
Re: Custom kernel for Soekris net4801-50
Laurent Salle wrote: Richard P. Koett wrote: I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? Are you using PPPOE in your setup ? It may be the culprit of your bad performance. I've setup 4 Soekris 4501 boxes as routers for small offices with an ADSL link to the Internet. For one of this installations, the ADSL link speed was above 1 Mb/s (8Mb/s), and when using the userland PPPOE the CPU load was around 75% and the available bandwith was poor. After modifying the configuration to use the kernel PPPOE instead, the CPU load and the available bandwith became normal. With ADSL links at 512kb/s I've not seen any difference in CPU load or throughputs between userland and kernel PPPOE. I've always used unmodified OpenBSD kernel with Soekris boxes. See: Kernel PPPOE: http://www.openbsd.org/cgi-bin/man.cgi?query=pppoesektion=4 Userland PPPOE: http://www.openbsd.org/cgi-bin/man.cgi?query=pppoesektion=8 Laurent: I'm not using PPPoE but I appreciate the information. I've decided to stick with a generic kernel also. Thanks, RPK.
Custom kernel for Soekris net4801-50
I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? If I go this route I expect I should comment out the MFS option in the Flashdist config since I'm not using compact flash, and uncomment FFS_SOFTUPDATES. Would anyone care to suggest other changes I should make this config file for my scenario? Any other advice would be appreciated. I have no previous experience with Soekris products and very little experience with custom kernels. I realize that this list is not for supporting people using custom kernels but I hope it's okay to ask a few general questions like this. Thanks, RPK. # OpenBSD config for networking on the Soekris Engineering # net4801 embedded systems- # [EMAIL PROTECTED] machine i386# architecture, used by config; REQUIRED #option NTP # hooks supporting the Network Time Protocol option DDB # in-kernel debugger #option DDB_SAFE_CONSOLE # allow break into ddb during boot #makeoptionsDEBUG=-g # compile full symbol table #makeoptionsPROF=-pg # build profiled kernel #option GPROF # kernel profiling, kgmon(8) option DIAGNOSTIC # internal consistency checks option KTRACE # system call tracing, a la ktrace(1) #option KMEMSTATS # collect malloc(9) statistics option CRYPTO # Cryptographic framework option FFS # UFS option MFS # Memory FS #option FFS_SOFTUPDATES # Soft updates option TCP_SACK# Selective Acknowledgements for TCP #option TCP_FACK# Forward Acknowledgements for TCP option TCP_SIGNATURE # TCP MD5 Signatures, for BGP routing sessions option FDESC # /dev/fd option FIFO# FIFOs; RECOMMENDED option KERNFS # /kern #option NULLFS # loopback file system option PROCFS # /proc #option UMAPFS # NULLFS + uid and gid remapping option INET# IP + ICMP + TCP + UDP option ALTQ# ALTQ base #option ALTQ_NOPCC # We don't have Pentium features on 486 # NOPCC may be necessary if the Geode's TSC is really as buggy as it sounds #option INET6 # IPv6 (needs INET) #option PULLDOWN_TEST # use m_pulldown for IPv6 packet parsing option IPSEC # IPsec #option PPP_BSDCOMP # PPP BSD compression #option PPP_DEFLATE option BOOT_CONFIG # add support for boot -c #option I486_CPU option I586_CPU #option I686_CPU option USER_PCICONF# user-space PCI configuration #option KGDB# Remote debugger support; exclusive of DDB #option KGDB_DEVNAME=\pccom\,KGDBADDR=0x2f8,KGDBRATE=9600 #option DUMMY_NOPS # speed hack; recommended # Work around -current breakage option PTRACE maxusers32 # estimated number of users config bsd root on wd0a mainbus0 at root cpu0at mainbus0 bios0 at mainbus0 apm0at bios0 flags 0x # flags 0x0101 to force protocol version 1.1 pcibios0 at bios0 flags 0x # use 0x30 for a total verbose isa0at mainbus0 isa0at pcib? pci*at mainbus0 ohci* at pci? # Open Host Controller usb*at ohci? # # The MediaGX (Geode) uses a PIT clock at standard frequency so there is # no special setting here like there is for the Elan SC520 # option PCCOMCONSOLE option CONSPEED=19200 option PCIVERBOSE uhub* at usb? # USB Hubs uhub* at uhub?# USB Hubs umodem* at uhub?# USB Modems/Serial ucom* at umodem? #ubsa* at uhub?# Belkin serial adapter #ucom* at ubsa? #uftdi* at uhub?# FTDI FT8U100AX serial adapter #ucom* at uftdi? #uplcom* at uhub? # I/O DATA USB-RSAQ2 serial adapter #ucom* at uplcom? #umct* at uhub?# MCT USB-RS232 serial adapter #ucom* at umct? #uaudio* at uhub? # USB Audio #umidi* at uhub? #ulpt* at uhub?# USB Printers #umass* at uhub?# USB Mass Storage devices #scsibus* at umass? #aue* at uhub?# ADMtek AN986 Pegasus Ethernet #cue* at uhub?# CATC USB-EL1201A based Ethernet #kue* at uhub?# Kawasaki KL5KUSB101B based Ethernet #upl* at uhub?# Prolific
Re: Custom kernel for Soekris net4801-50
The Soekris kernel configs from flashdist are the best way to go. You do not need to remove the MFS option but I would add the FFS_SOFTUPDATES option. The MFS option is used for building a file system in virtual memory. It has nothing to do with compact flash cards. Those are still supported using FFS. I would leave MFS support in the kernel. You can find out more from mfs(8). Bryan
Re: Custom kernel for Soekris net4801-50
On 2006/10/04 10:42, Richard P. Koett wrote: I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? I don't think a custom kernel will help internet access speeds. There are some reasons you might want (or need) to use a custom kernel, this isn't one of them... Slow in comparison to what? If you can give some more idea about 'seemed slow' that might help. Quantitative data especially. Collecting that data might give you your own clues too. Any particular sites or everywhere? Any particular protocols? Has the way DNS is being done changed? Are you using PF? Are the network interfaces configured properly (esp. duplex setting)? etc. etc.
Re: Custom kernel for Soekris net4801-50
Chris Kuethe wrote: Theo builds my custom kernel... it's called GENERIC. I've been running GENERIC on a CF-based soekris (both 4501 and 4801) for about 5 years to no ill effect. CK Chris: I'm a pretty big fan of Theo's kernels as well. I just wasn't sure if this particular device needed special treatment. Are you using the 128M version or the 256M version of the 4801? Thanks, RPK.
Re: Custom kernel for Soekris net4801-50
Bryan Vyhmeister wrote: The Soekris kernel configs from flashdist are the best way to go. You do not need to remove the MFS option but I would add the FFS_SOFTUPDATES option. The MFS option is used for building a file system in virtual memory. It has nothing to do with compact flash cards. Those are still supported using FFS. I would leave MFS support in the kernel. You can find out more from mfs(8). Bryan I thought that since I'm not using compact flash (and don't care about writing to disk) I'd have no need to build a filesystem in virtual memory? That being said I'm sure it won't hurt to leave it in. Based on other people's responses it sounds like no kernel customization is even required on this device. Thanks, RPK.
Re: Custom kernel for Soekris net4801-50
Stuart Henderson wrote: On 2006/10/04 10:42, Richard P. Koett wrote: I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? I don't think a custom kernel will help internet access speeds. There are some reasons you might want (or need) to use a custom kernel, this isn't one of them... Slow in comparison to what? If you can give some more idea about 'seemed slow' that might help. Quantitative data especially. Collecting that data might give you your own clues too. Any particular sites or everywhere? Any particular protocols? Has the way DNS is being done changed? Are you using PF? Are the network interfaces configured properly (esp. duplex setting)? etc. etc. The device was reported to be slow in comparison to their previous router - a SonicWALL SOHO3. I know that the SonicWALL is a highly optimized device. This led me to think I might need some optimization to compete. I didn't do any quantitative speed measurements at the time. I'm just going on qualitative comments from the users. As for your other questions, there was particular mention of e-mail seeming slow. My first thought was that I was filtering IDENT connections without sending a reset packet (yes, I'm using pf) but that wasn't the case. DNS hasn't changed. I'll check the duplex settings etc. when I reinstall the device. If I continue to have speed problems on my second attempt I'll post some quantitative information. Thanks very much for assisting. RPK.
Re: Custom kernel for Soekris net4801-50
On Wed, Oct 04, 2006 at 11:44:30AM -0700, Richard P. Koett wrote: I thought that since I'm not using compact flash (and don't care about writing to disk) I'd have no need to build a filesystem in virtual memory? That being said I'm sure it won't hurt to leave it in. Based on other people's responses it sounds like no kernel customization is even required on this device. I would leave it in in case you decide you want to mount / read-only and mount /var and /tmp as MFS. I am doing that on a Soekris net4511 I am using as a wireless access point to EDGE internet connection for on the road. Like another response said, you probably do not need a custom kernel. I looked back at the NET4801 kernel config and the reason I was using it is because it included PCCOMCONSOLE and CONSPEED=19200 (which I changed to a different speed). The config also does not have all the SCSI drivers compiled in. The latter really does not make any difference in the long run. I think you can just add /etc/boot.conf with something like: set tty com0 stty com0 19200 set timeout 5 This may cause there to be no need for PCCOMCONSOLE and CONSPEED=19200. I am not positive but others may be able to confirm that. Anyway, none of this will improve the speed of the internet access. The more likely possibility may be that PF is not configured in the most efficient manner. I discovered this on my firewall this week when I was having lots of connection slowdowns and the like. If you were using a Soekris net45xx, then you would need a custom kernel config because the PIT clock for the AMD Elan SC520 runs at a different frequency, 1.189161 MHz, instead of the standard 1.19318 MHz. Bryan
Re: Custom kernel for Soekris net4801-50
Richard P. Koett [EMAIL PROTECTED] wrote:I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? If I go this route I expect I should comment out the MFS option in the Flashdist config since I'm not using compact flash, and uncomment FFS_SOFTUPDATES. Would anyone care to suggest other changes I should make this config file for my scenario? Any other advice would be appreciated. I have no previous experience with Soekris products and very little experience with custom kernels. I realize that this list is not for supporting people using custom kernels but I hope it's okay to ask a few general questions like this. Thanks, RPK. snip How much bandwidth is in question here? I've got the exact same setup (4801-50) running GENERIC 3.9, and can saturate my PPPoE 6M/768k DSL line and still be at 65% idle, just by using priority queues in PF. In general, you want to look for configuration and user problems before blaming the kernel.
Re: Custom kernel for Soekris net4801-50
On Wed, Oct 04, 2006 at 11:44:30AM -0700, Richard P. Koett wrote: Based on other people's responses it sounds like no kernel customization is even required on this device. I started out using flashdist on mine, but switched to a standard installation on a 1G flash card (/ mounted rw,noatime,softdep). I really couldn't tell the difference using standard DSL speed tests so I saw no point in using a special kernel. OpenBSD 3.9-stable (EP) #627: Sat Aug 19 21:22:41 CDT 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/EP cpu0: Geode(TM) Integrated Processor by National Semi (Geode by NSC 586-class) 267 MHz cpu0: FPU,TSC,MSR,CX8,CMOV,MMX cpu0: TSC disabled real mem = 133799936 (130664K) avail mem = 115363840 (112660K) using 1658 buffers containing 6791168 bytes (6632K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840 pcibios0 at bios0: rev 2.0 @ 0xf/0x1 pcibios0: pcibios_get_intr_routing - function not supported pcibios0: PCI IRQ Routing information unavailable. pcibios0: PCI bus #0 is the last bus bios0: ROM list: 0xc8000/0x9000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00 sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00, DP83816A: irq 10, address 00:00:24:c2:9e:30 nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1 sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00, DP83816A: irq 10, address 00:00:24:c2:9e:31 nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1 sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00, DP83816A: irq 10, address 00:00:24:c2:9e:32 nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1 gscpcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00 gpio0 at gscpcib0: 64 pins NS SC1100 SMI rev 0x00 at pci0 dev 18 function 1 not configured pciide0 at pci0 dev 18 function 2 NS SCx200 IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: SanDisk SDCFH-1024 wd0: 1-sector PIO, LBA, 977MB, 2001888 sectors wd0(pciide0:0:0): using PIO mode 4, DMA mode 2 geodesc0 at pci0 dev 18 function 5 NS SC1100 X-Bus rev 0x00: iid 6 revision 3 wdstatus 0 ohci0 at pci0 dev 19 function 0 Compaq USB OpenHost rev 0x08: irq 11, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: Compaq OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 3 ports with 3 removable, self powered isa0 at gscpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 nsclpcsio0 at isa0 port 0x2e/2: NSC PC87366 rev 9: GPIO VLM TMS gpio1 at nsclpcsio0: 29 pins gscsio0 at isa0 port 0x15c/2: SC1100 SIO rev 1: npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom0: console pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo biomask fbe5 netmask ffe5 ttymask ffe7 pctr: no performance counters in CPU dkcsum: wd0 matches BIOS drive 0x80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302
Re: Custom kernel for Soekris net4801-50
On 2006/10/04 11:40, Richard P. Koett wrote: As for your other questions, there was particular mention of e-mail seeming slow. My first thought was that I was filtering IDENT connections without sending a reset packet (yes, I'm using pf) but that wasn't the case. DNS hasn't changed. I'll check the duplex settings etc. when I reinstall the device. Another thought, if the internet connection has an MTU lower than ethernet's (1500) as would be the case with a pppoe connection, you might find something like 'scrub out ... max-mss 1440' is needed.
Re: Custom kernel for Soekris net4801-50
Richard P. Koett wrote: I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For storage it has a 40Gb IDE drive rather than compact flash. For my first attempt I used a generic install of OpenBSD 3.9. The user complained that Internet access seemed slow, however. I'm planning to try again using a custom kernel based on the config file included with Chris Cappuccio's Flashdist installer. (A copy is provided below for reference). Is this a good idea? If I go this route I expect I should comment out the MFS option in the Flashdist config since I'm not using compact flash, and uncomment FFS_SOFTUPDATES. Would anyone care to suggest other changes I should make this config file for my scenario? Any other advice would be appreciated. I have no previous experience with Soekris products and very little experience with custom kernels. I realize that this list is not for supporting people using custom kernels but I hope it's okay to ask a few general questions like this. Thanks, RPK. [snip] My comments fall into the Any other advice would be appreciated One thing that I would really recommend is looking into using the compact flash with the memory file system. For a first install or if you have phyiscal access to the box, a laptop HD is just fine, but when it is sent to a far away place, where power- or heat can effect it, always use a CF or solid state type device. My wife has swaped about 6 Net4801's with laptop HDs for compact flash because the drives fail so quickly. Soekris did create a new case design for the Net4801 with bigger vent holes that may allow for better heat disapation, but without a fan, the box becomes an oven. Something else to keep in mind is that if the power fails, the sytem will have to fsck partitions that were mounted read/write, whereas readonly partitions will not need to be fscked. We had several stupid user tricks where the power failed, and the user would keep cycling the soekris box before it finished fscking, very annoying! Then just create a cron job to sync the logs to disk (CF or HD) every night. The other reason for not mounting the CF in a read/write mode is that CF has a limited number of write cycles (~10,000 gate transisitions). Aside from these restrictions, the soekris boxes just work, and I really like them.
Re: Custom kernel for Soekris net4801-50
On Wed, 04 Oct 2006 15:45:28 -0500, David Bryan wrote: The other reason for not mounting the CF in a read/write mode is that CF has a limited number of write cycles (~10,000 gate transisitions). I have a 4801 with CF installed with 3.9 in exactly the manner I would install on a HDD. Partitions are mounted noatime, softdep in addition to the default options. I also have spamd running with verbose logging. That should, for the sake of the CF, be on the mailserver but I am life-testing the Apacer PhotoSteno CFs and for nearly six months this one has been hammered without problems. When 4.0 releases (having ordered on day 1 on the website, I'll get my CDs early) I'll load up a new CF and remove the old one for offline testing. At $AUD50 for a 512M and falling it is no great expense. I am inclined to think that farting around doing fancy stuff with custom kernels and mfs is a waste of time which would cost more than a new CF and a standard install. Even so I will not continue with spamd on the firewall, but it has shown me that CF is tougher now than when I first used it. Your kilometrage may vary. From the land down under: Australia. Do we look umop apisdn from up over? Do NOT CC me - I am subscribed to the list. Replies to the sender address will fail except from the list-server. Your IP address will also be greytrapped for 24 hours after any attempt. I am continually amazed by the people who run OpenBSD who don't take this advice. I always expected a smarter class. I guess not.
Re: Custom kernel for Soekris net4801-50
Rod.. Whitworth wrote: I have a 4801 with CF installed with 3.9 in exactly the manner I would install on a HDD. Rod, tried to email you off-list, but it seems my ISP is relaying through a Chinese server that's on your blacklist. Anyways, what special sauce are you using to install to CF? Any time I've tried it using my IDE-CF adapter, the install seems to go cleanly (including fdisk/disklabel), but when the time comes to boot off the CF card (Lexar 512M), I'm stuck with 'ERR R', suggesting something is happening to the translation. I'm discounting (perhaps incorrectly) the possibility of a read error since it's happened with three different cards.
Re: Custom kernel for Soekris net4801-50
One thing that I would really recommend is looking into using the compact flash with the memory file system. For a first install or if you have phyiscal access to the box, a laptop HD is just fine, but when it is sent to a far away place, where power- or heat can effect it, always use a CF or solid state type device. My wife has swaped about 6 Net4801's with laptop HDs for compact flash because the drives fail so quickly. Soekris did create a new case design for the Net4801 with bigger vent holes that may allow for better heat disapation, but without a fan, the box becomes an oven. I burn one drive in a soekris. Now, I use Endurastar HD that support extended temp and I have not lost the HD. It's 3 times the price of regular HD Pailloncy Jean-Gerard
Re: Custom kernel for Soekris net4801-50
On Wed, Oct 04, 2006 at 08:00:01PM -0400, Chris Zakelj wrote: Rod.. Whitworth wrote: I have a 4801 with CF installed with 3.9 in exactly the manner I would install on a HDD. Rod, tried to email you off-list, but it seems my ISP is relaying through a Chinese server that's on your blacklist. Anyways, what special sauce are you using to install to CF? Any time I've tried it using my IDE-CF adapter, the install seems to go cleanly (including fdisk/disklabel), but when the time comes to boot off the CF card (Lexar 512M), I'm stuck with 'ERR R', suggesting something is happening to the translation. I'm discounting (perhaps incorrectly) the possibility of a read error since it's happened with three different cards. I use a USB for CF cards which shows up as sd0. You probably should look at installboot(8). My procedure is as follows: fdisk -u sd0 fdisk -e sd0 disklabel -E sd0 newfs /dev/rsd0a mount /dev/sd0a /mnt tar zxvpf (each set individually) vi /mnt/etc/myname vi /mnt/etc/hostname.$if (create /etc/boot.conf) cd /mnt/dev ./MAKEDEV all chroot /mnt passwd root cd /etc ln -sf /usr/share/zoneinfo/US/Pacific localtime cp /usr/mdec/boot / /usr/mdec/installboot -v /boot /usr/mdec/biosboot sd0 (create or copy /etc/fstab) vi /etc/ttys (for serial console) exit umount /mnt This works without any issues in my experience. My guess is you are not doing fdisk -u or the installboot(8) process. Bryan
Re: Custom kernel for Soekris net4801-50
On Thu, Oct 05, 2006 at 08:40:20AM +1000, Rod.. Whitworth wrote: On Wed, 04 Oct 2006 15:45:28 -0500, David Bryan wrote: The other reason for not mounting the CF in a read/write mode is that CF has a limited number of write cycles (~10,000 gate transisitions). I have a 4801 with CF installed with 3.9 in exactly the manner I would install on a HDD. Partitions are mounted noatime, softdep in addition to the default options. I have run HDs in net4801's and had two fail. Both were Toshiba drives. I do not think it was anything that was wrong with the drive, just lack of cooling. I have also been running a net4501 for just shy of two years as a DNS server with a 512MB Sandisk CF card. It has been running flawlessly. I would not bother with mounting / read-only in a normal situation. The only reason I do is so I can power off the box at will and not worry about filesystem issues. (This one is a mobile AP.) I am inclined to think that farting around doing fancy stuff with custom kernels and mfs is a waste of time which would cost more than a new CF and a standard install. Even so I will not continue with spamd on the firewall, but it has shown me that CF is tougher now than when I first used it. I agree completely! CF cards are cheap and work great. I was amazed to get two Sandisk 1GB CF cards recently for US $35 each. Bryan
Re: Custom kernel for Soekris net4801-50
On Wed, 04 Oct 2006 20:00:01 -0400, Chris Zakelj wrote: Rod.. Whitworth wrote: I have a 4801 with CF installed with 3.9 in exactly the manner I would install on a HDD. Rod, tried to email you off-list, but it seems my ISP is relaying through a Chinese server that's on your blacklist. 8-) na, nobody gets through except a filtered list of listservers. I have two choices: Either do loads of permanent catch-up spam filtering or never post to help somebody. I took the third choice, only pass from a limited list. ;-) Maybe this is useful for others so it's not bad to have it on the list. Anyways, what special sauce are you using to install to CF? Any time I've tried it using my IDE-CF adapter, the install seems to go cleanly (including fdisk/disklabel), but when the time comes to boot off the CF card (Lexar 512M), I'm stuck with 'ERR R', suggesting something is happening to the translation. I'm discounting (perhaps incorrectly) the possibility of a read error since it's happened with three different cards. I do nothing special at all. I have used Sandisk and Apacer CF. Both show up properly as an IDE drive. 63 sec. 16 heads 993 cyl. on a 512MB CF of either brand. I have an old box set up as a pxeboot server/ftp install server. I put a little tree in for each version, For example for 4.0 beta /40beta has etc/boot.conf pxeboot and bsd.rd from the latest download Of course it then has pub/OpenBSD/4.0/i386/ to hold the install sets and kernels and it has packages/ to hold a selection of pkgs. That structure has /tftpboot symlinked to it and so I can point /tftpboot to any version I want. The reason for the long path to install files is because that is the path default for an ftp install. Don't forget to setup ftpd for anon logins and enable tftpd as well. So to install on a 4801 I just hook a crossover cable to sis0 and to the server. make sure conspeed is 9600 on the 4801 and that boot.conf has the same. Netboot it, enter bsd.rd at the boot prompt and away goes the bunny. Without sauce. Did you use the offset 63 on the a partition? I think you know that it is needed but no harm asking. I installed a 4.0 beta yesterday just like that. HTH if not, ask. From the land down under: Australia. Do we look umop apisdn from up over? Do NOT CC me - I am subscribed to the list. Replies to the sender address will fail except from the list-server. Your IP address will also be greytrapped for 24 hours after any attempt. I am continually amazed by the people who run OpenBSD who don't take this advice. I always expected a smarter class. I guess not.
Re: Custom kernel for Soekris net4801-50
On Wed, 4 Oct 2006, Richard P. Koett wrote: The user complained that Internet access seemed slow [snip] Any other advice would be appreciated. Leave the Soekris in place tomorrow but tell the user the original device is now back doing duty. See if he reports the network speed as improved. -- Monty Brandenberg
