From owner-freebsd-net Sun Mar 12 23:57:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from nexus.plymovent.se (nexus.plymovent.se [212.247.77.253]) by hub.freebsd.org (Postfix) with ESMTP id 0974037B606; Sun, 12 Mar 2000 23:57:00 -0800 (PST) (envelope-from thomas.uhrfelt@plymovent.se) Received: from tu ([192.168.1.21]) by nexus.plymovent.se (8.9.3/8.9.3) with SMTP id JAA33195; Mon, 13 Mar 2000 09:36:03 +0100 (CET) (envelope-from thomas.uhrfelt@plymovent.se) Received: by localhost with Microsoft MAPI; Mon, 13 Mar 2000 08:57:53 +0100 Message-ID: <01BF8CCA.37E80C20.thomas.uhrfelt@plymovent.se> From: Thomas Uhrfelt Reply-To: "thomas.uhrfelt@plymovent.se" To: "'freebsd-net@freebsd.org'" Cc: "'freebsd-questions@freebsd.org'" Subject: DMZ/Routing setup - really could use your expertize on this one. Date: Mon, 13 Mar 2000 08:57:53 +0100 Organization: PlymoVent AB X-Mailer: Microsoft Internet-e-post/MAPI - 8.0.0.4211 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a little problem with routing it seems, it doesn't matter what I do - I just don't seem to get it right. That's why I finally decided to turned to the FreeBSD community for aid, as you have given me accurate advice and guidance in the past. In my effort to strengthen the security on our network I have decided to implement some sort of DMZ approach to our public services - hence abandoning the old setup with everything on the front computer and the rest behind NAT. We have been assigned these IP:s X.Y.X.66 - X.Y.Z.126 and the IP net is defined as X.Y.Z.64/26. Now the configuration I want to setup is something along the lines of: CISCO ROUTER (X.Y.Z.65) ! ! (OUTER NIC X.Y.Z.66) FREEBSD1 (INNER NIC X.Y.Z.67) ! ! ( ALL THE PUBLIC IP:s but one) (on an aliased machine - but could be more in the future) ! ! (OUTER NIC X.Y.Z.79) FREEBSD2 (INNER NIC 192.168.1.?/24 via NAT) ! ! (THE INNER NAT:ED NETWORK) for now I have only struggled with the first part of the network (CISCO,FREEBSD1 and PUBLIC IP MACHINE) and have neglected the "back" part of the network. But I still can't seem to get it to work. Is there any helpful soul out there that might give me some hands-on hints, example confs/routing files - or better yet .. tell me how to accomplish this? Thomas Uhrfelt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 1:35:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from tomts3-srv.bellnexxia.net (tomts3.bellnexxia.net [209.226.175.141]) by hub.freebsd.org (Postfix) with ESMTP id EB8C137B59C for ; Mon, 13 Mar 2000 01:35:33 -0800 (PST) (envelope-from mwozniak@netcom.ca) Received: from mwozniak.uniservers.com ([216.209.33.124]) by tomts3-srv.bellnexxia.net (InterMail vM.4.01.02.17 201-229-119) with SMTP id <20000313093532.RAOH3031.tomts3-srv.bellnexxia.net@mwozniak.uniservers.com> for ; Mon, 13 Mar 2000 04:35:32 -0500 Reply-To: From: "Michael Wozniak" To: Subject: pppoe Date: Mon, 13 Mar 2000 04:28:52 -0500 Message-ID: <000301bf8cce$8e6fb3a0$0a80a8c0@mwozniak.uniservers.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Some help with PPPoE please? For some reason I don't yet understand, I can't get userland ppp to negotiate a pppoe session with my ISP (more specifically, I don't think ppp is even talking to my (Nortel 1Meg) modem.) Thus far, I have cvsup'd RELENG_3, built and installed RELENG_3, built and installed a TEST kernel (GENERIC with unneeded drivers removed) with options NETGRAPH, options NETGRAPH_SOCKET and options NETGRAPH_PPPOE, and tried to get "/usr/sbin/ppp -ddial" to connect (with Sympatico in Toronto, Canada.) My /var/log/ppp.log is no more exciting than... Mar 13 03:49:57 devt ppp[361]: Phase: Using interface: tun0 Mar 13 03:49:57 devt ppp[361]: Phase: deflink: Created in closed state Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: set dial Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: set login TIMEOUT 1.5 name:-\r-login:\U word:\P ocol:PPP HELLO Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: set ifaddr 10.0.0.1/0 10.0.0.2/0 Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: add default HISADDR Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: set cd 15 Mar 13 03:49:57 devt ppp[361]: tun0: Command: default: set crtscts off Mar 13 03:49:57 devt ppp[362]: tun0: Phase: PPP Started (ddial mode). Mar 13 03:49:57 devt ppp[362]: tun0: Phase: bundle: Establish Mar 13 03:49:57 devt ppp[362]: tun0: Phase: deflink: closed -> opening Mar 13 03:49:57 devt ppp[362]: tun0: Phase: deflink: Connected! Mar 13 03:49:57 devt ppp[362]: tun0: Phase: deflink: opening -> dial Mar 13 03:49:57 devt ppp[362]: tun0: Phase: deflink: dial -> carrier Mar 13 03:50:12 devt ppp[362]: tun0: Phase: deflink: Disconnected! <<<>>> Mar 13 03:50:12 devt ppp[362]: tun0: Phase: deflink: carrier -> hangup Mar 13 03:50:12 devt ppp[362]: tun0: Phase: deflink: Connect time: 15 secs: 0 octets in, 0 octets out Mar 13 03:50:12 devt ppp[362]: tun0: Phase: total 0 bytes/sec, peak 0 bytes/sec on Mon Mar 13 03:50:12 2000 Mar 13 03:50:12 devt ppp[362]: tun0: Phase: deflink: hangup -> opening Mar 13 03:50:12 devt ppp[362]: tun0: Phase: deflink: Enter pause (30) for redialing. during this I can see that /usr/sbin/ppp has made the netgraph connections... (/usr/sbin/ngctl list) There are 4 total nodes: Name: ngctl363 Type: socket ID: 00000015 Num hooks: 0 Name: Type: pppoe ID: 00000014 Num hooks: 2 Name: Type: socket ID: 00000013 Num hooks: 1 Name: ed2 Type: ether ID: 00000001 Num hooks: 1 My kernel... FreeBSD devt.uniservers.com 3.4-STABLE FreeBSD 3.4-STABLE #1: Mon Mar 13 02:23:13 EST 2000 root@devt.uniservers.com:/mnt/gateway/wd2/cvsup/stable/src/sys/compile/TEST i386 and my ppp.conf file are nothing special... default: set device PPPoE:ed2 set MRU 1490 set MTU 1490 set authname XXXXXXXXXXXXXXXXXXXXX set authkey XXXXXXXX set log Error Alert Warning Phase Chat IPCP CCP tun command set dial set login "TIMEOUT 1.5 name:-\\r-login:\\U word:\\P ocol:PPP HELLO" set ifaddr 10.0.0.1/0 10.0.0.2/0 add default HISADDR set cd 5 set crtscts off - I have messed about with many different permutations of parameters in ppp.conf. - I think I am missing something somewhere else as there is nothing interesting in the log and I never see any action on the blinky lights on the modem. - I was unsuccessful with "make world" with -CURRENT so I am stuck with 3.4-STABLE for now. - http://www.freeBSD.org/handbook/pppoe.html is rather uninformative. It asks me to use an updated pppd. Huh??? - Note too that ppp never creates a default route or assigns any paremeters to tun0 while it is running. - This same box has run ppp with device cuaa0 and later pppd with never any problems. I would really like to get rid of the extra Linux box that I currently use to run pppoe... TIA, Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 2:33:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from darjeeling.carrel.org (darjeeling.carrel.org [216.173.212.202]) by hub.freebsd.org (Postfix) with SMTP id A8DE137B5B5 for ; Mon, 13 Mar 2000 02:33:46 -0800 (PST) (envelope-from cysgod@mail.carrel.org) Received: (qmail 50229 invoked by uid 1000); 13 Mar 2000 10:33:34 -0000 Date: Mon, 13 Mar 2000 02:33:34 -0800 (PST) From: "William A. Carrel" To: Thomas Uhrfelt Cc: "'freebsd-net@freebsd.org'" , "'freebsd-questions@freebsd.org'" Subject: Re: DMZ/Routing setup - really could use your expertize on this one. In-Reply-To: <01BF8CCA.37E80C20.thomas.uhrfelt@plymovent.se> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is very similar to a problem I had with my network. I made a kernel patch that resolved it, it is PR: kern/16318, there is a diff provided. The problem is that the kernel routing tables generates new routes based on the interfaces idea of where IPs are rather than on the information in the routing table itself. This patch causes the routing table to trump the info from the interfaces in certain specific, limited cases. Hopefully this can help you out. -- William Carrel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 5:57:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from knight.cons.org (knight.cons.org [194.233.237.86]) by hub.freebsd.org (Postfix) with ESMTP id 5692B37BD3D for ; Mon, 13 Mar 2000 05:57:01 -0800 (PST) (envelope-from cracauer@knight.cons.org) Received: (from cracauer@localhost) by knight.cons.org (8.9.3/8.9.3) id OAA06144 for freebsd-net@freebsd.org; Mon, 13 Mar 2000 14:56:49 +0100 (CET) Date: Mon, 13 Mar 2000 14:56:48 +0100 From: Martin Cracauer To: freebsd-net@freebsd.org Subject: NFS Version 4 and Linux implementation Message-ID: <20000313145648.A6130@cons.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Don't know if you noticed this already, NFS V 4 is in the works and Sun will provide a Linux implementation: http://www.sunworld.com/sunworldonline/swol-03-2000/swol-03-nfs.html In short, looks like a move to Coda... Martin -- %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% Martin Cracauer http://www.cons.org/cracauer/ Tel.: (private) +4940 5221829 Fax.: (private) +4940 5228536 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 7: 8:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from obie.softweyr.com (obie.softweyr.com [204.68.178.33]) by hub.freebsd.org (Postfix) with ESMTP id 6CD8637BAB6 for ; Mon, 13 Mar 2000 07:08:07 -0800 (PST) (envelope-from wes@softweyr.com) Received: from softweyr.com (wes@homer.softweyr.com [204.68.178.39]) by obie.softweyr.com (8.8.8/8.8.8) with ESMTP id IAA08005; Mon, 13 Mar 2000 08:07:12 -0700 (MST) (envelope-from wes@softweyr.com) Message-ID: <38CD0445.9350A464@softweyr.com> Date: Mon, 13 Mar 2000 08:07:49 -0700 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 3.3-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Martin Cracauer Cc: freebsd-net@FreeBSD.ORG Subject: Re: NFS Version 4 and Linux implementation References: <20000313145648.A6130@cons.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Martin Cracauer wrote: > > Don't know if you noticed this already, NFS V 4 is in the works and > Sun will provide a Linux implementation: > > http://www.sunworld.com/sunworldonline/swol-03-2000/swol-03-nfs.html > > In short, looks like a move to Coda... What chance is there this code will be released under GPL? I can't see where they would want to start with the known flawed NFS code in Linux. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 7:16:28 2000 Delivered-To: freebsd-net@freebsd.org Received: from apollo.ocsny.com (apollo.ocsny.com [204.107.76.2]) by hub.freebsd.org (Postfix) with ESMTP id 44AE337BB78 for ; Mon, 13 Mar 2000 07:16:24 -0800 (PST) (envelope-from mikel@ocsny.com) Received: from ocsny.com (thoth.upan.org [204.107.76.16]) by apollo.ocsny.com (8.9.2/8.9.3) with ESMTP id KAA34809; Mon, 13 Mar 2000 10:13:50 -0500 (EST) Message-ID: <38CD07F4.3CCBFDBB@ocsny.com> Date: Mon, 13 Mar 2000 10:23:32 -0500 From: Mikel Organization: Optimized Computer Solutions, Inc. X-Mailer: Mozilla 4.72 [en] (Win98; U) X-Accept-Language: en,it MIME-Version: 1.0 To: Wes Peters Cc: Martin Cracauer , freebsd-net@FreeBSD.ORG Subject: Re: NFS Version 4 and Linux implementation References: <20000313145648.A6130@cons.org> <38CD0445.9350A464@softweyr.com> Content-Type: multipart/mixed; boundary="------------F8FFEA4C140A4CF70B8EACA0" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------F8FFEA4C140A4CF70B8EACA0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit NFS, past and future The Linux NFS version 4 Open Source Reference Implementation development effort will be led by William Andros "Andy" Adamson, assistant director for product development at the Center for Information Technology Integration (CITI) at the University of Michigan. Adamson emphasizes that CITI's Linux modifications will be open source, and that all CITI code derived from work done under the GNU General Public License (GPL) will be released under the GPL. Otherwise, he says, code produced at the University of Michigan is usually released under a Berkeley Software Distribution (BSD)-like license, which, unlike the GPL, doesn't require that modified and redistributed code be issued under the same license agreement as the original. Wes Peters wrote: > Martin Cracauer wrote: > > > > Don't know if you noticed this already, NFS V 4 is in the works and > > Sun will provide a Linux implementation: > > > > http://www.sunworld.com/sunworldonline/swol-03-2000/swol-03-nfs.html > > > > In short, looks like a move to Coda... > > What chance is there this code will be released under GPL? I can't > see where they would want to start with the known flawed NFS code > in Linux. > > -- > "Where am I, and what am I doing in this handbasket?" > > Wes Peters Softweyr LLC > wes@softweyr.com http://softweyr.com/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- Cheers, Mikel +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | Optimized Computer Solutions, Inc http://www.ocsny.com | 39 W14th Street, Suite 203 212 727 2238 x132 | New York, NY 10011 +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | Labor rates: Tech $125 hourly | Net Engineer $150 hourly | Phone Support $ 33 quarter hourly | Lost Password $ 45 per incedent +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | http://www.ocsny.com/~mikel +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ --------------F8FFEA4C140A4CF70B8EACA0 Content-Type: text/x-vcard; charset=us-ascii; name="mikel.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Mikel Content-Disposition: attachment; filename="mikel.vcf" begin:vcard n:King;Mikel x-mozilla-html:TRUE org:Optimized Computer Solutions version:2.1 email;internet:mikel@ocsny.com title:Procurement Manager tel;fax:2124638402 tel;home:http://www.upan.org/vizkr tel;work:2127272100 adr;quoted-printable:;;39 W14th St.=0D=0ASte 203;New York;NY;10011;US x-mozilla-cpt:;0 fn:Mikel King end:vcard --------------F8FFEA4C140A4CF70B8EACA0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 11:42:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp13.bellglobal.com (smtp13.bellglobal.com [204.101.251.52]) by hub.freebsd.org (Postfix) with ESMTP id A5EFF37BEA1 for ; Mon, 13 Mar 2000 11:42:28 -0800 (PST) (envelope-from mwozniak@netcom.ca) Received: from mwozniak.uniservers.com (HSE-Toronto-ppp91399.sympatico.ca [216.209.42.110]) by smtp13.bellglobal.com (8.8.5/8.8.5) with SMTP id OAA16543; Mon, 13 Mar 2000 14:45:30 -0500 (EST) Reply-To: From: "Michael Wozniak" To: "'Bruno Gallant'" Cc: Subject: RE: pppoe Date: Mon, 13 Mar 2000 14:35:36 -0500 Message-ID: <000c01bf8d23$5513dc80$0a80a8c0@mwozniak.uniservers.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: <38CD372C.4DEADD83@darkshell.com> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > did you look at this? > > http://www.sympaticousers.org/faq/freebsd_howto.htm I found the site this morning and was successful in "making it work." Thanks! > Michael Wozniak wrote: > > > > Some help with PPPoE please? > > > > For some reason I don't yet understand, I can't get userland ppp > > to negotiate a pppoe session with my ISP (more specifically, I > > don't think ppp is even talking to my (Nortel 1Meg) modem.) Thus > > far, I have cvsup'd RELENG_3, built and installed RELENG_3, built > > and installed a TEST kernel (GENERIC with unneeded drivers > removed) with > > options NETGRAPH, options NETGRAPH_SOCKET and options > NETGRAPH_PPPOE, > > and tried to get "/usr/sbin/ppp -ddial" to connect (with Sympatico > > in Toronto, Canada.) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Mar 13 13:49:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from imo14.mx.aol.com (imo14.mx.aol.com [152.163.225.4]) by hub.freebsd.org (Postfix) with ESMTP id 3DF6837B675 for ; Mon, 13 Mar 2000 13:49:32 -0800 (PST) (envelope-from Nerpdaniel@aol.com) Received: from Nerpdaniel@aol.com by imo14.mx.aol.com (mail_out_v25.3.) id n.4c.2c2d05c (4197) for ; Mon, 13 Mar 2000 16:49:25 -0500 (EST) From: Nerpdaniel@aol.com Message-ID: <4c.2c2d05c.25febc65@aol.com> Date: Mon, 13 Mar 2000 16:49:25 EST Subject: memotec system To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: AOL 4.0 for Windows sub 55 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We currently have Memotec CX1000 and CX900 with cables and additional PCB's, any interest in purchasing or can you refer me to a company that buys used systems. NERP represents leasing company portfolios (primarily copier/fax) and we have recently taken over a communications portfolio. We realize that this NOT being our niche-we are looking to build a relationship in these new markets (new for us). Reply if you can help us-and if not thank you for your time. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 0:26:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from bebox.corpcomm.net (bebox.corpcomm.net [205.198.8.60]) by hub.freebsd.org (Postfix) with SMTP id 2643337B6C1 for ; Tue, 14 Mar 2000 00:26:12 -0800 (PST) (envelope-from pete@bebox.corpcomm.net) Received: (qmail 576 invoked by uid 1008); 14 Mar 2000 08:24:47 -0000 Date: Tue, 14 Mar 2000 02:24:47 -0600 From: Peter Schultz To: freebsd-net@freebsd.org Subject: IPSTEALTH Message-ID: <20000314022446.B347@bebox.corpcomm.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, In my kernel configuration file I have: options IPFILTER options IPFILTER_LOG options IPSTEALTH Does the IPSTEALTH option provide my LAN with increased protection by doing NAT in such a way so as to make it undetectible? Basically what I'm looking for is a blurb on what makes IPSTEALTH special, and in what situations it is best used. Sincerely, Pete... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 1:29:32 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (UCB-Async4-CRISCO.CRIS.NET [212.110.129.130]) by hub.freebsd.org (Postfix) with ESMTP id B758B37B5DF for ; Tue, 14 Mar 2000 01:28:56 -0800 (PST) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id LAA65257; Tue, 14 Mar 2000 11:21:53 +0200 (EET) (envelope-from ru) Date: Tue, 14 Mar 2000 11:21:52 +0200 From: Ruslan Ermilov To: Peter Schultz Cc: freebsd-net@FreeBSD.ORG Subject: Re: IPSTEALTH Message-ID: <20000314112152.A47602@relay.ucb.crimea.ua> Mail-Followup-To: Peter Schultz , freebsd-net@FreeBSD.ORG References: <20000314022446.B347@bebox.corpcomm.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <20000314022446.B347@bebox.corpcomm.net>; from Peter Schultz on Tue, Mar 14, 2000 at 02:24:47AM -0600 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Mar 14, 2000 at 02:24:47AM -0600, Peter Schultz wrote: > Hi, > > In my kernel configuration file I have: > options IPFILTER > options IPFILTER_LOG > options IPSTEALTH > > Does the IPSTEALTH option provide my LAN with increased > protection by doing NAT in such a way so as to make it > undetectible? Basically what I'm looking for is a blurb > on what makes IPSTEALTH special, and in what situations > it is best used. > src/sys/i386/conf/LINT is very clear about this option: # IPSTEALTH enables code to support stealth forwarding (i.e., forwarding # packets without touching the ttl). This can be useful to hide firewalls # from traceroute and similar tools. The associated code could be found in src/sys/netinet/ip_input.c, under the IPSTEALTH conditional. Cheers, -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 2:49:37 2000 Delivered-To: freebsd-net@freebsd.org Received: from bart.esiee.fr (bart.esiee.fr [147.215.1.20]) by hub.freebsd.org (Postfix) with ESMTP id 112B737B72E for ; Tue, 14 Mar 2000 02:49:33 -0800 (PST) (envelope-from bonnetf@bart.esiee.fr) Received: (from bonnetf@localhost) by bart.esiee.fr (8.9.3/8.9.3) id LAA17809 for freebsd-net@freebsd.org; Tue, 14 Mar 2000 11:49:02 +0100 (MET) From: Frank Bonnet Message-Id: <200003141049.LAA17809@bart.esiee.fr> Subject: NET stable 3.4 version ? To: freebsd-net@freebsd.org Date: Tue, 14 Mar 2000 11:49:02 MET X-Mailer: Elm [revision: 212.5] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi I heard few daus ago about a 3.4 version that does not run correctly because fo loosing packets. I'm planning to upgrade our proxy-cache (squid) that actually runs 2.2.7 to 3.4. Does the problem has been corrected at the latest 3.4 snapshot on releng3.freebsd.org ? Thanks a lot -- Frank Bonnet Groupe ESIEE Paris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 6:51:19 2000 Delivered-To: freebsd-net@freebsd.org Received: from ionet.net (mail.ionet.net [206.41.128.16]) by hub.freebsd.org (Postfix) with ESMTP id F19E537B7D8 for ; Tue, 14 Mar 2000 06:51:16 -0800 (PST) (envelope-from ssamalin@ionet.net) Received: from ionet.net (ip146.bedford5.ma.pub-ip.psi.net [38.32.74.146]) by ionet.net (8.9.1a/8.9.1) with ESMTP id IAA28810 for ; Tue, 14 Mar 2000 08:51:10 -0600 (CST) Message-ID: <38CE51D7.5E076218@ionet.net> Date: Tue, 14 Mar 2000 09:51:03 -0500 From: Sam Samalin X-Mailer: Mozilla 4.7 [en] (WinNT; I) X-Accept-Language: en,pdf MIME-Version: 1.0 Cc: freebsd-net@FreeBSD.ORG Subject: (no subject) References: <200003141049.LAA17809@bart.esiee.fr> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org unsubscribe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 6:57: 2 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp-out1.bellatlantic.net (smtp-out1.bellatlantic.net [199.45.39.156]) by hub.freebsd.org (Postfix) with ESMTP id 29E3B37B814 for ; Tue, 14 Mar 2000 06:57:00 -0800 (PST) (envelope-from glbj@bellatlantic.net) Received: from morningstar (adsl-151-204-71-69.bellatlantic.net [151.204.71.69]) by smtp-out1.bellatlantic.net (8.9.1/8.9.1) with SMTP id JAA28651 for ; Tue, 14 Mar 2000 09:56:53 -0500 (EST) Message-Id: <200003141456.JAA28651@smtp-out1.bellatlantic.net> From: "Gene Bomgardner" To: freeBSD-net@FreeBSD.org Date: Tue, 14 Mar 2000 09:53:17 -0500 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Name resolution - Finding DNS X-mailer: Pegasus Mail for Win32 (v3.11) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks to all who responded to my dilema with PPPoE. the problem was indeed in ppp.conf. Another problem has cropped up: The setup is ------------------------ HUB ------------------------------ | | | FBSD Box 1 MODEM FBSD Box 2 Note that all PCs and the modem are on a hub. FBSD box #1 runs 3.4, is set up as a gateway running Natd, and accesses the Net just fine. No problems. FBSD Box #2 can access the Net just fine via Box 1 as long as IP adresses are used. However, Box #2 cannot resolve domain names. I think it doesn't know where to look for a DNS server (I've got named running on Box #1). How do I tell Box #2 to look to Box #1 for name resolution? Thanks again. Gene To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 7:49:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from pau-amma.whistle.com (pau-amma.whistle.com [207.76.205.64]) by hub.freebsd.org (Postfix) with ESMTP id 9890337B644 for ; Tue, 14 Mar 2000 07:49:21 -0800 (PST) (envelope-from dhw@whistle.com) Received: (from dhw@localhost) by pau-amma.whistle.com (8.9.2/8.9.3) id HAA65405; Tue, 14 Mar 2000 07:49:17 -0800 (PST) (envelope-from dhw) Date: Tue, 14 Mar 2000 07:49:17 -0800 (PST) From: David Wolfskill Message-Id: <200003141549.HAA65405@pau-amma.whistle.com> To: freeBSD-net@FreeBSD.ORG, glbj@bellatlantic.net Subject: Re: Name resolution - Finding DNS In-Reply-To: <200003141456.JAA28651@smtp-out1.bellatlantic.net> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >From: "Gene Bomgardner" >Date: Tue, 14 Mar 2000 09:53:17 -0500 >------------------------ HUB ------------------------------ > | | | >FBSD Box 1 MODEM FBSD Box 2 >Note that all PCs and the modem are on a hub. FBSD box #1 runs >3.4, is set up as a gateway running Natd, and accesses the Net >just fine. No problems. FBSD Box #2 can access the Net just fine >via Box 1 as long as IP adresses are used. However, Box #2 >cannot resolve domain names. I think it doesn't know where to look >for a DNS server (I've got named running on Box #1). >How do I tell Box #2 to look to Box #1 for name resolution? In #2's /etc/resolv.conf, make the first "nameserver" line use the (internal) IP address of #1. Alternatively, run named on box #2, and tell it to forward requests to #1 (and in #2's /etc/resolv.conf, point the nameserver to itself). The latter is what I do at home (DSL connection), since I also have #1's /etc/resolv.conf pointing to the #2 as the nameserver. That way, I can have #1 provide the "outside world's" perspective on the domain(s) I host, while doing things that may have only coincidental resemblance to that on the inside. Cheers, david -- David Wolfskill dhw@whistle.com UNIX System Administrator voice: (650) 577-7158 pager: (888) 347-0197 FAX: (650) 372-5915 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Mar 14 13:53:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 0C31C37B61E; Tue, 14 Mar 2000 13:53:26 -0800 (PST) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id NAA15951; Tue, 14 Mar 2000 13:53:25 -0800 (PST) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Tue, 14 Mar 2000 13:53:25 -0800 (PST) From: Kris Kennaway To: Frank Bonnet Cc: freebsd-net@freebsd.org Subject: Re: NET stable 3.4 version ? In-Reply-To: <200003141049.LAA17809@bart.esiee.fr> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 14 Mar 2000, Frank Bonnet wrote: > I heard few daus ago about a 3.4 version that > does not run correctly because fo loosing packets. I haven't heard anything like this. Was your source reliable? :) You should be fine with a recent 3.4 snapshot. Kris ---- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Mar 16 0: 6:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail-03-real.cdsnet.net (mail-03-real.cdsnet.net [204.118.244.93]) by hub.freebsd.org (Postfix) with SMTP id A545E37BC4A for ; Thu, 16 Mar 2000 00:06:53 -0800 (PST) (envelope-from mrcpu@internetcds.com) Received: (qmail 72241 invoked from network); 16 Mar 2000 08:06:52 -0000 Received: from schizo.cdsnet.net (204.118.244.32) by mail-03-real.cdsnet.net with SMTP; 16 Mar 2000 08:06:52 -0000 Date: Thu, 16 Mar 2000 00:03:30 -0800 (PST) From: Jaye Mathisen X-Sender: mrcpu@schizo.cdsnet.net To: freebsd-net@freebsd.org Subject: Gated questions on freebsd. Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm running a whole bunch of FreeBSD boxes using a variety of versions of gated. Everything work peach, except one. These 2 boxes will not form an adjacency... tcpdump shows the hello packets going out and coming in on both ethernets, but the two routers never start exchanging routes. I know I must be missing something obvious. gateway is set on both. No firewall is running. On machine A: (which is exchanging routes just fine with the boxes at the other end of the serial link:) de0: flags=8943 mtu 1500 inet 208.32.78.129 netmask 0xffffff80 broadcast 208.32.78.255 ether 00:c0:95:e0:a2:00 media: 100baseTX status: active tcpdump: listening on de0 23:59:18.387555 net-208.32.78.250.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 1.1.1.2 backbone [|ospf] [ttl 1] 23:59:21.528202 net-208.32.78.129.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 204.118.245.234 backbone [|ospf] [ttl 1] 23:59:28.388355 net-208.32.78.250.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 1.1.1.2 backbone [|ospf] [ttl 1] 23:59:31.526763 net-208.32.78.129.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 204.118.245.234 backbone [|ospf] [ttl 1] on 208.32.78.250: ifconfig -a fxp0: flags=8943 mtu 1500 inet 208.32.78.250 netmask 0xffffff80 broadcast 208.32.78.255 ether 00:90:27:b3:65:73 media: autoselect (10baseT/UTP) status: active tcpdump proto 89 tcpdump: listening on fxp0 23:59:33.572629 net-208.32.78.250.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 1.1.1.2 backbone [|ospf] [ttl 1] 23:59:36.707964 net-208.32.78.129.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 204.118.245.234 backbone [|ospf] [ttl 1] 23:59:43.572771 net-208.32.78.250.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 1.1.1.2 backbone [|ospf] [ttl 1] 23:59:46.705853 net-208.32.78.129.cdsnet.net > OSPF-ALL.MCAST.NET: OSPFv2-hello 48: rtrid 204.118.245.234 backbone [|ospf] [ttl 1] So the hello packets are being seen on each interface. Machine B is running a newer snapshot of gated.conf. Machine B does have a static route configured that it needs to distribute into ospf, and static routes are configured to be exported. Rip is turned off. gated.conf's are about as simple as you can get. routerid rip no backbone with the proper interfaces couple statis routes exports. Can include them, but didn't seem needed. No filters. The route being exported is a 10.x.x.x address, but can't imagine that being an issue. The gated on machine B does insert the route into the routing table on machine B from the static entry in gated.conf. What am I missing here? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Mar 16 17:22:23 2000 Delivered-To: freebsd-net@freebsd.org Received: from gto.networkphysics.com (DNS1.networkphysics.com [63.194.71.40]) by hub.freebsd.org (Postfix) with ESMTP id 4673037C210 for ; Thu, 16 Mar 2000 17:22:15 -0800 (PST) (envelope-from pavel@hemi.networkphysics.com) Received: from hemi.networkphysics.com (hemi.networkphysics.com [10.1.0.30]) by gto.networkphysics.com (8.9.3/8.9.3) with ESMTP id RAA16225 for ; Thu, 16 Mar 2000 17:22:14 -0800 (PST) (envelope-from pavel@hemi.networkphysics.com) Message-Id: <200003170122.RAA16225@gto.networkphysics.com> To: freebsd-net@FreeBSD.ORG Subject: Netgraph weirdness Reply-To: pavel@alum.mit.edu X-Face: 3Y45fK2P',OZ{p{%jFQfsYLQA)-,d1K+cx@v"K(1.9^"Cx-J*93m!X9nsl*8C\'.tt} ;X+GO]HCw8n=+Dn Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've been experimenting with netgraph in 3.4 (and 3.4-STABLE) and have run into some weird aspects related to KLD modules. I've managed to learn the workaround, but I think there is still an important problem lurking here. My test case is to do the simple example: nghook -a de3: divert Since I want netgraph nodes for my ethernet interfaces, this requires that I compile my kernel with the NETGRAPH option. Figuring that any other netgraph modules could be loaded dynamically, I did not include any of the other NETGRAPH_xxx options in my kernel. I discovered that when I do a: ngctl list the 2 KLD modules ng_socket.ko and netgraph.ko get loaded automagically. Here is where my troubles start. It turns out that the netgraph.ko is a 2nd copy of the code from /sys/netgraph/ng_base.c. When the KLD module gets loaded, it calls register_netisr() with the ngintr() routine from the KLD module (which overwrites the previous ngintr() from the base kernel). However, when the ethernet interfaces call ether_input() and ngether_send(), the packets get queued onto the ngqbase queue from the base kernel. Needless to say, this does not work right... So, it turns out that the fix is to compile in the NETGRAPH_SOCKET option into the kernel. But then, why have NETGRAPH_SOCKET as a separable option if the system won't work without it compiled together with the base netgraph code? And when I go to write my own netgraph node and kldload it in, will I return to the same situation with the module unwittingly loading in netgraph.ko? Perhaps there is just a simple mistake preventing ng_socket.ko from knowing that the equivalent code of netgraph.ko is statically linked into the kernel. I confess that I don't understand the KLD infrastructure too well. I see that ng_base.c has a DECLARE_MODULE(netgraph, netgraph_mod, SI_SUB_DRIVERS, SI_ORDER_MIDDLE); declaration, which seems like it ought to be the right thing. I have seen that this declaration is sufficient to get the ngb_mod_event() routine in the statically-linked ng_base.c code called at boot time (this is how the ngintr() routine gets registered int netisrs for the statically linked code). Any wisdom out there? I've traced through this code quite a bit over the last couple days. I'd like to turn up the actual bug and get it fixed, but I don't know where to dig that last bit... Tom Pavel Network Physics pavel@networkphysics.com / pavel@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Mar 16 23: 3:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from muzak.iinet.net.au (muzak.iinet.net.au [203.59.24.237]) by hub.freebsd.org (Postfix) with ESMTP id 4181837B88E for ; Thu, 16 Mar 2000 23:03:07 -0800 (PST) (envelope-from julian@elischer.org) Received: from jules.elischer.org (reggae-02-116.nv.iinet.net.au [203.59.91.116]) by muzak.iinet.net.au (8.8.5/8.8.5) with SMTP id PAA23549 for ; Fri, 17 Mar 2000 15:03:02 +0800 Message-ID: <38D1D871.41C67EA6@elischer.org> Date: Thu, 16 Mar 2000 23:02:09 -0800 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: FreeBSD-net@freebsd.org Subject: SAMBA/FreeBSD:[Fwd: Transportation tuning tips.]] Content-Type: multipart/mixed; boundary="------------446B9B3D2781E494167EB0E7" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------446B9B3D2781E494167EB0E7 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Here are a set of tips via the SAMBA guys relevant to FreeBSD it may be worth looking into these things a bit. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v --------------446B9B3D2781E494167EB0E7 Content-Type: message/rfc822 Content-Transfer-Encoding: 7bit Content-Disposition: inline Return-Path: Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id OAA56446 for ; Thu, 16 Mar 2000 14:32:57 -0800 (PST) Received: (from daemon@localhost) by whistle.com (8.7.5/8.6.12) id OAA00882; Thu, 16 Mar 2000 14:32:26 -0800 (PST) Date: Thu, 16 Mar 2000 14:32:26 -0800 (PST) From: Owner of many system processes Message-Id: <200003162232.OAA00882@whistle.com> To: julian@elischer.org Subject: [Fwd: Transportation tuning tips.] mail to julian@whistle.com forwarded from whistle.com ---------------------------------------------------------------------- Please notify the sender of your new email address. This forwarding will be stopped 3 months from the date it was started. ---------------------------------------------------------------------- >From jeremy@valinux.com Thu Mar 16 14:32:25 2000 Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id OAA00875 for ; Thu, 16 Mar 2000 14:32:25 -0800 (PST) Received: from gatekeeper.whistle.com( 207.76.204.2) by whistle.com via smap (V2.0) id xma000873; Thu, 16 Mar 2000 14:31:56 -0800 Received: from wodc7-1.relay.mail.uu.net (wodc7-1.relay.mail.uu.net [199.171.54.114]) by gatekeeper.whistle.com (8.9.3/8.9.3) with ESMTP id OAA28348 for ; Thu, 16 Mar 2000 14:31:55 -0800 (PST) (envelope-from jeremy@valinux.com) Received: from mail.valinux.com by wodc7mr0.ffx.ops.us.uu.net with ESMTP (peer crosschecked as: nat-su-33.valinux.com [198.186.202.33]) id QQigva21070 for ; Thu, 16 Mar 2000 22:31:54 GMT Received: from legion.su.varesearch.com ([10.1.1.223] helo=valinux.com) by mail.valinux.com with esmtp (Exim 2.12 #6) id 12ViOd-0004ug-00 for julian@whistle.com; Thu, 16 Mar 2000 14:05:35 -0800 Sender: jeremy@valinux.com Message-ID: <38D1686C.C967C10E@valinux.com> Date: Thu, 16 Mar 2000 15:04:12 -0800 From: Jeremy Allison Organization: VA Linux Systems X-Mailer: Mozilla 4.61 [en] (X11; I; Linux 2.2.13-0.7 i686) X-Accept-Language: en MIME-Version: 1.0 To: Julian Elischer Subject: [Fwd: Transportation tuning tips.] Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Julian, FYI: You might want to make this available on the FreeBSD lists. Looks like very good work. Jeremy. Kenichi Okuyama wrote: > > Dear all, > > I'm new here. So, if this is not the right place to talk, please > do tell me so. > > I think there are several key tips missing on "smb.conf.5". > ( or I might be mis-reading the manual, but at least, I couldn't > find the very key words when I read it.) > > 1) Service Parameter "include": > Even if you fail in reading "include file", smbd will not fail. > It simply skip to next line. > > 2) Only "very last declared" 'socket options' line will take effect. > > # Or, am I wrong? ... but at least, it works on 2.0.6 .... > > Here is what I have just experenced that I beleave they are so important: > > ---------------------------- > > I'm using Samba 2.0.6 on FreeBSD(from now, I'll call this machine > 'Samba'), connecting Windows98SP1 on ThinkPad535E with Laneed > 10/100CD(from now, I'll call this machine 'Win98'), and WindowsNT4 > SP6a(from now, I'll call this machine 'WinNT'). > > When I tried to send 12Mbytes of files from Samba->Win98, it took me > 660 sec. I thought that this was the normal case, but when I (by > mitake) tried Win98->Samba direction, it only took 30sec for > transfer. > > So, I decided to measure the time, and what's going on using tcpdump > on Samba. Here are the results: > > Samba->Win98: 660sec > Samba->WinNT: 600sec > Win98->Samba: 36sec > WinNT->Samba: 40sec > Win98->WinNT: 31sec > WinNT->Win98: 33sec > > What was happening on Samba->Win* was, that Windows drops many IP > packets, right after they sent Ack, but FreeBSD tries to send as > much as possible. Then, since there are so many "resend" request ack > pattern, FreeBSD sleeps for 1sec to settle, then start sending > again. > > This "1sec sleep" occurs from 500 to 550 times on Samba->Win*. And > this was the reason why it's taking so long time. > I did set SO_SNDBUF to 8192bytes, but this still occur. > > So, I looked at Win98->WinNT sending pattern and found that, > if Winsock2 communicates with Winsock2, sender takes following steps: > > Send IP packet. > Send IP packet. > Wait for Ack. > > Also, for some reasons I could not figure out, Win98 will claim for > mss=536 against Samba, and 1460 against WinNT. > > WinNT's mss was always 1460bytes. > > # It was NetBIOS/TCP transfer. I did check it with tcpdump. > > Finally, I've found the way to make Samba take exactly the same > steps as Winsock are doing. That is: > > 1) find out the mss size of specific target. > 2) Set SO_SNDBUF to '*2'. > (even *2+4 will mess the balance :p) > > By this, though I could not fix the mss, I got good performance of > > Samba->Win98: 30sec > Samba->WinNT: 35sec. > > Now, the problem was, that I wanted to change SO_SNDBUF for each > machine smbd was connecting to. But there were no guide about it. > Nor, smb.conf.5 had any comment about "include will not make smbd > fail even if file was not found." > > .. I did found those things out, by try-and-error + many helps from > Japanese Samba user group peoples. So, my final smb.conf's [global] > field looks like: > > [global] > ..... > # all the general settings being defined above. > > include /usr/local/etc/smb.conf.global.%a > include /usr/local/etc/smb.conf.global.%M > include /usr/local/etc/smb.conf.global.%a.%M > > and having: > > smb.conf.global.Win98.Win98.my.network: > socket options = TCP_NODELAY SO_SNDBUF=1072 > > smb.conf.global.WinNT.WinNT.my.network: > socket options = TCP_NODELAY SO_SNDBUF=2920 > > With them, now I have (at least) as same performance as > WinNT<->Win98 communication. > > So, I beleave that: > > * include will not fail smbd even if file is not found. > * only very last line of 'socket options' will take effect. > > is very important keywords. > > #Plus, above tips is important for Speed.txt. > > ---- > > By the way, Is it possible to print out mss size to smb.log? > I don't think it is nice idea to use tcpdump everytime you need to > tune for stupid Network Interface cards. > > # Or, if there are way to have mss size like %MSS on smb.conf, > #it's also nice, I beleave. > > best regards, > ---- > Kenichi Okuyama@ Tokyo Research Lab. IBM. Co. Japan -- -------------------------------------------------------- Buying an operating system without source is like buying a self-assembly Space Shuttle with no instructions. -------------------------------------------------------- --------------446B9B3D2781E494167EB0E7-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Mar 17 8:37:31 2000 Delivered-To: freebsd-net@freebsd.org Received: from seu.edu.cn (seic3.seu.edu.cn [202.119.24.13]) by hub.freebsd.org (Postfix) with ESMTP id 5969937BE18 for ; Fri, 17 Mar 2000 08:36:37 -0800 (PST) (envelope-from freebsdmaillist@263.net) Received: from dryice ([202.119.9.77]) by seu.edu.cn (8.9.3/8.9.3) with SMTP id AAA28159 for ; Sat, 18 Mar 2000 00:35:31 +0800 (CST) Message-Id: <200003171635.AAA28159@seu.edu.cn> Date: Sat, 18 Mar 2000 0:35:27 +0800 From: dryice liu To: "freebsd-net@freebsd.org" Subject: X-mailer: FoxMail 3.0 beta 2 [cn] Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org subscribe freebsd-net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Mar 17 11:19:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from Gloria.CAM.ORG (Gloria.CAM.ORG [205.151.116.34]) by hub.freebsd.org (Postfix) with ESMTP id 3774437B7DC for ; Fri, 17 Mar 2000 11:19:21 -0800 (PST) (envelope-from intmktg@CAM.ORG) Received: from localhost (intmktg@localhost) by Gloria.CAM.ORG (8.9.3/8.9.3) with ESMTP id OAA28915 for ; Fri, 17 Mar 2000 14:12:49 -0500 Date: Fri, 17 Mar 2000 14:12:49 -0500 (EST) From: Marc Tardif To: freebsd-net@freebsd.org Subject: dns problems Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org It seems my DNS is hosed, these are my symptoms: * when I try to telnet to my freebsd box, it stalls for a few minutes before returning the login prompt * mountd also stalls for a long time during startup * from the freebsd box, I can't ping hostnames like "localhost" for example which I can only reach using the IP "127.0.0.1" * from the freebsd box, I can ping domain names like "freebsd.org" though, the problem seems to be just locally. My network is composed of a server (also running freebsd) acting as a default gateway for my problem box, basically, a very simple two box network. On my problem freebsd box, here are a few of my config files: resolv.conf: domain b0x.com nameserver 198.168.100.3 search b0x.com hosts: 127.0.0.1 localhost 192.168.0.1 gate.b0x.com gate 192.168.0.2 fbsd.b0x.com fbsd mygate: 192.168.0.1 myname: fbsd.b0x.com Everything looks fine to me, but I really can't figure out what's the problem and I'd appreciate if someone could point me in the right direction. Thanks in advance, Marc To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Mar 18 6:40:28 2000 Delivered-To: freebsd-net@freebsd.org Received: from hanoi.cronyx.ru (hanoi.cronyx.ru [144.206.181.53]) by hub.freebsd.org (Postfix) with ESMTP id 9FB7137B571 for ; Sat, 18 Mar 2000 06:39:43 -0800 (PST) (envelope-from rik@cronyx.ru) Received: from cronyx.ru by hanoi.cronyx.ru with ESMTP id RAA52499; (8.9.3/vak/2.1) Sat, 18 Mar 2000 17:43:12 +0300 (MSK) Message-ID: <38D39537.867C357C@cronyx.ru> Date: Sat, 18 Mar 2000 17:39:51 +0300 From: Kurakin Roman Organization: Cronyx X-Mailer: Mozilla 4.6 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@FreeBSD.ORG Subject: BPF question (FreeBSD 40) Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have question about using bpf in my KLD module driver. At attach I call bpfattach function. What should I call at detach? Could some one describe to me how bpf is work (function calls, not bpf as pf :)). Kurakin Roman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Mar 18 18:21:59 2000 Delivered-To: freebsd-net@freebsd.org Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by hub.freebsd.org (Postfix) with ESMTP id 2917B37B5D5; Sat, 18 Mar 2000 18:21:49 -0800 (PST) (envelope-from robert@cyrus.watson.org) Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.9.3/8.9.3) with SMTP id VAA04001; Sat, 18 Mar 2000 21:21:36 -0500 (EST) (envelope-from robert@cyrus.watson.org) Date: Sat, 18 Mar 2000 21:21:36 -0500 (EST) From: Robert Watson X-Sender: robert@fledge.watson.org Reply-To: Robert Watson To: Kurakin Roman Cc: freebsd-net@FreeBSD.ORG Subject: Patch to introduce bpfdetach(), Re: BPF question (FreeBSD 40) In-Reply-To: <38D39537.867C357C@cronyx.ru> Message-ID: MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-2072806518-953432496=:3649" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --0-2072806518-953432496=:3649 Content-Type: TEXT/PLAIN; charset=US-ASCII On Sat, 18 Mar 2000, Kurakin Roman wrote: > I have question about using bpf in my KLD module driver. At attach I > call > bpfattach function. What should I call at detach? > Could some one describe to me how bpf is work (function calls, not bpf > as pf :)). I noticed the same behavior a few weeks ago when using tcpdump in wi0 and ejecting the card. This occurs if there are open bpf descriptors for the device, and ifdetach is called (freeing the ifnet structure), at the bp_bif pointer is not set to NULL. I've been running a bpf patch for the last few hours that attempts to clean this behavior up. It introduces a bpfdetach(ifp), which should be called just prior to ifdetach(ifp). If there are any open descriptors on the interface, it sets the bif pointer to NULL, and wakes up listeners. In the bpfread loop, if there are no remaining buffers on the bpf descriptor, and it sees a bp_bif of NULL, it now returns ENXIO to the caller. The remaining fd calls already appeared to have NULL checks for bp_bif, just not bpfread in its wait loop. After this, it frees the bpf_desc structure. It appears to clean up the wi0 tcpdump crash, but I haven't tested it much more than that. Needless to say, any location where ifdetach() is called (that had a matching bpfattach) should now also call bpfdetach(). I have only updated if_wi.c in my patch, as that's all I have on hand right now. Pccard drivers such as ep0 don't require the patch, as they never ifdetach(), leaving the ifnet epX around but unbound. One file attached patches src/sys/net to add the bpfdetach code (bpfdetach.diff). The other patch patches if_wi.c to call bpfdetach (if_wi.diff) Once it's adequately tested (volunteers welcome), I'll commit it to 5.0-CURRENT. > Hi, > > Kurakin Roman > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services --0-2072806518-953432496=:3649 Content-Type: TEXT/PLAIN; charset=US-ASCII; name="bpfdetach.diff" Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: src.sys.net.diff T25seSBpbiAvZGF0YS9mYnNkLWNvbW1pdC9zcmMvc3lzL25ldDogQ1ZTDQpk aWZmIC11IC9kYXRhL2Zic2QtY29tbWl0L3NyYy9zeXMvbmV0L2JwZi5jIC4v YnBmLmMNCi0tLSAvZGF0YS9mYnNkLWNvbW1pdC9zcmMvc3lzL25ldC9icGYu YwlTYXQgTWFyIDE4IDAxOjMwOjQxIDIwMDANCisrKyAuL2JwZi5jCVNhdCBN YXIgMTggMjE6MTc6MjAgMjAwMA0KQEAgLTQ3Nyw2ICs0NzcsMTggQEANCiAJ CQlST1RBVEVfQlVGRkVSUyhkKTsNCiAJCQlicmVhazsNCiAJCX0NCisNCisJ CS8qDQorCQkgKiBObyBkYXRhIGlzIGF2YWlsYWJsZSwgY2hlY2sgdG8gc2Vl IGlmIHRoZSBicGYgZGV2aWNlDQorCQkgKiBpcyBzdGlsbCBwb2ludGVkIGF0 IGEgcmVhbCBpbnRlcmZhY2UuICBJZiBub3QsIHJldHVybg0KKwkJICogRU5Y SU8gc28gdGhhdCB0aGUgdXNlcmxhbmQgcHJvY2VzcyBrbm93cyB0byByZWJp bmQNCisJCSAqIGl0IGJlZm9yZSB1c2luZyBpdCBhZ2Fpbi4NCisJCSAqLw0K KwkJaWYgKGQtPmJkX2JpZiA9PSBOVUxMKSB7DQorCQkJc3BseChzKTsNCisJ CQlyZXR1cm4gKEVOWElPKTsNCisJCX0NCisNCiAJCWlmIChpb2ZsYWcgJiBJ T19OREVMQVkpDQogCQkJZXJyb3IgPSBFV09VTERCTE9DSzsNCiAJCWVsc2UN CkBAIC0xMjg1LDYgKzEyOTcsNjAgQEANCiANCiAJaWYgKGJvb3R2ZXJib3Nl KQ0KIAkJcHJpbnRmKCJicGY6ICVzJWQgYXR0YWNoZWRcbiIsIGlmcC0+aWZf bmFtZSwgaWZwLT5pZl91bml0KTsNCit9DQorDQorLyoNCisgKiBEZXRhY2gg YnBmIGZyb20gYW4gaW50ZXJmYWNlLiAgVGhpcyBpbnZvbHZlcyBkZXRhY2hp bmcgZWFjaCBkZXNjcmlwdG9yDQorICogYXNzb2NpYXRlZCB3aXRoIHRoZSBp bnRlcmZhY2UsIGFuZCBsZWF2aW5nIGJkX2JpZiBOVUxMLiAgTm90aWZ5IGVh Y2gNCisgKiBkZXNjcmlwdG9yIGFzIGl0J3MgZGV0YWNoZWQgc28gdGhhdCBh bnkgc2xlZXBlcnMgd2FrZSB1cCBhbmQgZ2V0DQorICogRU5YSU8uDQorICov DQordm9pZA0KK2JwZmRldGFjaChpZnApDQorCXN0cnVjdCBpZm5ldCAqaWZw Ow0KK3sNCisJc3RydWN0IGJwZl9pZgkqYnAsICpicF9wcmV2Ow0KKwlzdHJ1 Y3QgYnBmX2QJKmQ7DQorCWludAlzOw0KKw0KKwlwcmludGYoImJwZmRldGFj aDogJXMlZCBpcyBiZWluZyBkZXRhY2hlZFxuIiwgaWZwLT5pZl9uYW1lLA0K KwkgICAgaWZwLT5pZl91bml0KTsNCisNCisJLyogWFhYIGlzIHRoaXMgbmVl ZGVkPyAgSXMgaXQgcmlnaHQ/ICovDQorCXMgPSBzcGxpbXAoKTsNCisNCisJ LyogTG9jYXRlIEJQRiBpbnRlcmZhY2UgaW5mb3JtYXRpb24gKi8NCisJYnBf cHJldiA9IE5VTEw7DQorCWZvciAoYnAgPSBicGZfaWZsaXN0OyBicCAhPSBO VUxMOyBicCA9IGJwLT5iaWZfbmV4dCkgew0KKwkJaWYgKGlmcCA9PSBicC0+ YmlmX2lmcCkNCisJCQlicmVhazsNCisJCWJwX3ByZXYgPSBicDsNCisJfQ0K Kw0KKwkvKiBJbnRlcmZhY2Ugd2Fzbid0IGF0dGFjaGVkICovDQorCWlmIChi cC0+YmlmX2lmcCA9PSBOVUxMKSB7DQorCQlzcGx4KHMpOw0KKwkJcHJpbnRm KCJicGZkZXRhY2g6ICVzJWQgd2FzIG5vdCBhdHRhY2hlZFxuIiwgaWZwLT5p Zl9uYW1lLA0KKwkJICAgIGlmcC0+aWZfdW5pdCk7DQorCQlyZXR1cm47DQor CX0NCisNCisJd2hpbGUgKChkID0gYnAtPmJpZl9kbGlzdCkgIT0gTlVMTCkg ew0KKwkJYnBmX2RldGFjaGQoZCk7DQorCQlicGZfd2FrZXVwKGQpOw0KKwl9 DQorDQorCWlmIChicF9wcmV2KSB7DQorCQlicF9wcmV2LT5iaWZfbmV4dCA9 IGJwLT5iaWZfbmV4dDsNCisJfSBlbHNlIHsNCisJCWJwZl9pZmxpc3QgPSBi cC0+YmlmX25leHQ7DQorCX0NCisNCisJZnJlZShicCwgTV9CUEYpOw0KKw0K KwlzcGx4KHMpOw0KKw0KKwlwcmludGYoImJwZmRldGFjaDogJXMlZCBpcyBk ZXRhY2hlZFxuIiwgaWZwLT5pZl9uYW1lLCBpZnAtPmlmX3VuaXQpOw0KIH0N CiANCiBzdGF0aWMgdm9pZCBicGZfZHJ2aW5pdCBfX1AoKHZvaWQgKnVudXNl ZCkpOw0KZGlmZiAtdSAvZGF0YS9mYnNkLWNvbW1pdC9zcmMvc3lzL25ldC9i cGYuaCAuL2JwZi5oDQotLS0gL2RhdGEvZmJzZC1jb21taXQvc3JjL3N5cy9u ZXQvYnBmLmgJU2F0IE1hciAxOCAwMTozMDo0MiAyMDAwDQorKysgLi9icGYu aAlTYXQgTWFyIDE4IDIxOjE2OjMzIDIwMDANCkBAIC0yMzIsNiArMjMyLDgg QEANCiB2b2lkCSBicGZfdGFwIF9fUCgoc3RydWN0IGlmbmV0ICosIHVfY2hh ciAqLCB1X2ludCkpOw0KIHZvaWQJIGJwZl9tdGFwIF9fUCgoc3RydWN0IGlm bmV0ICosIHN0cnVjdCBtYnVmICopKTsNCiB2b2lkCSBicGZhdHRhY2ggX19Q KChzdHJ1Y3QgaWZuZXQgKiwgdV9pbnQsIHVfaW50KSk7DQordm9pZAkgYnBm ZGV0YWNoIF9fUCgoc3RydWN0IGlmbmV0ICopKTsNCisNCiB2b2lkCSBicGZp bHRlcmF0dGFjaCBfX1AoKGludCkpOw0KIHVfaW50CSBicGZfZmlsdGVyIF9f UCgoY29uc3Qgc3RydWN0IGJwZl9pbnNuICosIHVfY2hhciAqLCB1X2ludCwg dV9pbnQpKTsNCiAjZW5kaWYNCg== --0-2072806518-953432496=:3649 Content-Type: TEXT/PLAIN; charset=US-ASCII; name="if_wi.diff" Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: i386.isa.if_wi.c.diff LS0tIGlmX3dpLmMJV2VkIEZlYiAgMiAxMjo1OToxMiAyMDAwDQorKysgL3Rt cC9pZl93aS5jCVNhdCBNYXIgMTggMjE6MTk6MzkgMjAwMA0KQEAgLTIxNCw2 ICsyMTQsOCBAQA0KIAl9DQogDQogCXdpX3N0b3Aoc2MpOw0KKw0KKwlicGZk ZXRhY2goaWZwKTsNCiAJaWZfZGV0YWNoKGlmcCk7DQogCWJ1c190ZWFyZG93 bl9pbnRyKGRldiwgc2MtPmlycSwgc2MtPndpX2ludHJoYW5kKTsNCiAJd2lf ZnJlZShkZXYpOw0K --0-2072806518-953432496=:3649-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Mar 18 21:47:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id A8A3C37BB82 for ; Sat, 18 Mar 2000 21:47:29 -0800 (PST) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.9.3/8.9.3) with ESMTP id WAA12476; Sat, 18 Mar 2000 22:47:26 -0700 (MST) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id WAA05290; Sat, 18 Mar 2000 22:47:21 -0700 (MST) Message-Id: <200003190547.WAA05290@harmony.village.org> To: Robert Watson Subject: Re: Patch to introduce bpfdetach(), Re: BPF question (FreeBSD 40) Cc: Kurakin Roman , freebsd-net@FreeBSD.ORG In-reply-to: Your message of "Sat, 18 Mar 2000 21:21:36 EST." References: Date: Sat, 18 Mar 2000 22:47:21 -0700 From: Warner Losh Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message Robert Watson writes: : Pccard drivers such as ep0 don't require the patch, as they never : ifdetach(), leaving the ifnet epX around but unbound. But ep does call if_detach(): static int ep_pccard_detach(device_t dev) { ... if_detach(&sc->arpcom.ac_if); ... } all the network pccard drivers do this. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Mar 18 22: 8: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from fledge.watson.org (fledge.watson.org [204.156.12.50]) by hub.freebsd.org (Postfix) with ESMTP id 1DDFB37B634 for ; Sat, 18 Mar 2000 22:08:04 -0800 (PST) (envelope-from robert@cyrus.watson.org) Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3]) by fledge.watson.org (8.9.3/8.9.3) with SMTP id BAA04711; Sun, 19 Mar 2000 01:07:58 -0500 (EST) (envelope-from robert@cyrus.watson.org) Date: Sun, 19 Mar 2000 01:07:58 -0500 (EST) From: Robert Watson X-Sender: robert@fledge.watson.org Reply-To: Robert Watson To: Warner Losh Cc: Kurakin Roman , freebsd-net@FreeBSD.ORG Subject: Re: Patch to introduce bpfdetach(), Re: BPF question (FreeBSD 40) In-Reply-To: <200003190547.WAA05290@harmony.village.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 18 Mar 2000, Warner Losh wrote: > In message Robert Watson writes: > : Pccard drivers such as ep0 don't require the patch, as they never > : ifdetach(), leaving the ifnet epX around but unbound. > > But ep does call if_detach(): > > static int > ep_pccard_detach(device_t dev) > { > ... > if_detach(&sc->arpcom.ac_if); > ... > } > > all the network pccard drivers do this. My mistake -- found the location a few minutes ago, and must have overlooked it previously (possibly due to spelling it ifdetach() instead of if_detach() :-). Apparently bpf likes to use bpfwhatever, and if likes to use if_whatever. However, if_ep also appears to require the patch. I've sent you email relating to your response to the commit message for the patch, in which I provide further details. Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Mar 18 23:19:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from jason.argos.org (a1-3b058.neo.rr.com [24.93.181.58]) by hub.freebsd.org (Postfix) with ESMTP id 53E6637B5E6 for ; Sat, 18 Mar 2000 23:19:44 -0800 (PST) (envelope-from mike@argos.org) Received: from localhost (mike@localhost) by jason.argos.org (8.9.1/8.9.1) with ESMTP id CAA15347 for ; Sun, 19 Mar 2000 02:19:43 -0500 Date: Sun, 19 Mar 2000 02:19:43 -0500 (EST) From: Mike Nowlin To: freebsd-net@freebsd.org Subject: RIP troubles Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org OK... I've been playing with routed/gated and RIP off and on for a couple of months in the hope that it will help ease my suffering when it comes to maintaining eight zillion routing entries on various machines. I keep coming up with the same problem: (tcpdump grab) 20:44:37.760592 tarkin.smlab.com.router > 192.168.2.255.router: rip-resp 5: 192.168.2.0(1) core1-akron.raex.net(1) 208.132.36.0(1) 10.0.0.0(2) 0.0.0.0(1) [ttl 1] (id 8214) The problem is that 10.0.0.0/8 route that keeps getting sent around. I have several 10.x.0.0/16 and 10.x.y.0/24 routes being used, but the /8 is what's being advertised... This is why I usually give up and do all the routing manually. :( (There are no /8's defined, other than what RIP puts into the routing tables.) I admit that my gut feeling is that I'm missing something stupid, but is it possible that this is a "feature" of RIP? (BTW: I've tried both RIPv1 and RIPv2) --mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message