From owner-freebsd-isp Sun May 21 22:13:37 2000 Delivered-To: freebsd-isp@freebsd.org Received: from llama.va.com.au (llama.va.com.au [203.15.106.2]) by hub.freebsd.org (Postfix) with ESMTP id CCF0B37B57A for ; Sun, 21 May 2000 22:13:32 -0700 (PDT) (envelope-from jesse@va.com.au) Received: from localhost (jesse@localhost) by llama.va.com.au (8.9.3/8.9.3) with ESMTP id OAA38600; Mon, 22 May 2000 14:42:57 +0930 (CST) (envelope-from jesse@va.com.au) X-Authentication-Warning: llama.va.com.au: jesse owned process doing -bs Date: Mon, 22 May 2000 14:42:57 +0930 (CST) From: jesse reynolds To: chip@chocobo.cx Cc: "D. W. Piper" , freebsd-isp@FreeBSD.ORG Subject: Re: Interface alias accounting? In-Reply-To: <20000519121531.A73613@setzer.chocobo.cx> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org `netstat -i` is probably what you're talking about, yes? cheers jesse On Fri, 19 May 2000, Chip Marshall wrote: > On May 19, 2000, D. W. Piper sent me the following: > > Thank you to everyone who replied. :) > > > > I'm afraid I'm still a bit confused though. I thought I'd recently seen > > mention here of a relatively simple method that would allow netstat to > > show the specific packet counts for each IP address assigned to the > > interface, as opposed to showing the interface total for them all. > > > > Maybe it was wishful thinking though. :) > > I'm not sure if someone else already mentioned this, but you could > setup ipfw rules for each of the IP addresses you wanted to watch, > something along the lines of: > 00100 count ip from any to 205.181.254.163 via de0 > 00200 count ip from 205.181.254.163 to any via de0 > > so that when you do an ipfw show, it will show the following: > 00100 4 350 count ip from any to 205.181.254.163 via de0 > 00200 5 414 count ip from 205.181.254.163 to any via de0 > > Where the second column is the number of packets, and the third is the > number of bytes. The first rule shows incoming, and the second should > outgoing. > > -- > Chip Marshall http://www.chocobo.cx/chip/ Finger for PGP > GCM/CS d+(-) s+:++ a18>? C++ UB++++$ P+++$ L- E--- W++ N+@ o K- w O M+ V-- > PS PE Y? PGP++ t+@ 5 X R>+ tv+() b++>+++ DI++++ D(-) G++ e>++ h!>++ r-- y- > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- Jesse Reynolds, Virtual Artists Pty Ltd jesse@va.com.au http://www.va.com.au To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun May 21 23:19:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from lilzcvp.liwest.at (lilzcvp.liwest.at [212.33.32.230]) by hub.freebsd.org (Postfix) with SMTP id D410337BB44 for ; Sun, 21 May 2000 23:19:13 -0700 (PDT) (envelope-from r.haider@liwest.at) Received: from [212.33.32.221] by lilzcvp.relay.liwest.at (NTMail 4.30.0012/AB8573.63.b914fe78) with ESMTP id yinlbaaa for ; Mon, 22 May 2000 08:19:08 +0100 Received: by OFFICE1_LIWEST with Internet Mail Service (5.5.2232.9) id ; Mon, 22 May 2000 08:11:19 +0200 Message-ID: <1F879C64A1A7D211B0F10004AC4C07FC119D30@OFFICE1_LIWEST> From: Haider Roland To: "'freebsd-isp@freebsd.org'" Cc: "'David H. Brierley'" Subject: AW: Routing: diverting only some nets to natd Date: Mon, 22 May 2000 08:11:11 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2232.9) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ok, thank's for your replies. I try to give a bit more detail, hope it's enough to make things clearer to me. That's the setup: 1.2.1.0/24 (fxp1) (fxp0) 1.2.2.0/24 Dumb 1.2.5.4/30 ---- 1.2.5.3/30 BSD proxy 1.2.6.7/25 = ---- 1.2.6.1 1.2.3.0/24 Router Router 1.2.4.0/24 BSD proxy routing: default 1.2.6.1 static 1.2.1.0/24 1.2.5.4 static 1.2.2.0/24 1.2.5.4 static 1.2.3.0/24 1.2.5.4 static 1.2.4.0/24 1.2.5.4 natd interface fxp0 What i want is that 1.2.1.0 & 1.2.2.0 get routed straight through to 1.2.6.1 (works) and 1.2.3.0 & 1.2.4.0 get translated to 1.2.6.7 and then sent to 1.2.6.1. My problem is, that as long as i use ipfw add divert ip from any to any via fxp0 all 4 nets get translated, and if i use ipfw add divert ip from 1.2.3.0/24 to any via fxp0 ipfw add divert ip from 1.2.4.0/24 to any via fxp0 only the routing works and nothing gets translated. on both interfaces ip from any to any is permitted in the first stage (want to reduce it to 1.2.1.0- 1.2.4.0 for production ) Is there a way to get this working, and, even more important, can somebody point me the right way? regards, roland =20 > -----Urspr=FCngliche Nachricht----- > Von: David H. Brierley [SMTP:dave@galaxia.com] > Gesendet am: Sonntag, 21. Mai 2000 19:54 > An: Haider Roland > Betreff: Re: Routing: diverting only some nets to natd >=20 > On Fri, 19 May 2000, Haider Roland wrote: >=20 > > I'm a bit confused by ipfw-natd. >=20 > I don't claim to be a natd or ipfw expert, but I have used > both tools a fair amount. However, it is almost impossible > to give any kind of advice in your situation without seeing > the exact rules that you are trying to implement. >=20 > --=20 > David H. Brierley > dave@galaxia.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 8:29:14 2000 Delivered-To: freebsd-isp@freebsd.org Received: from salmon.hei.net (catfish.hei.net [209.222.163.132]) by hub.freebsd.org (Postfix) with ESMTP id E5F0F37B9AC for ; Mon, 22 May 2000 08:29:08 -0700 (PDT) (envelope-from john@hei.net) Received: from localhost (john@localhost) by salmon.hei.net (8.8.8/8.8.5) with SMTP id LAA08801; Sat, 20 May 2000 11:08:57 -0700 (PDT) Date: Sat, 20 May 2000 11:08:57 -0700 (PDT) From: "John A. Hengstler" To: Brent Rector Cc: freebsd-isp@freebsd.org Subject: Re: Anyone have any idea what happened to www.freshmeat.com In-Reply-To: <39263733.71B78A06@sohost.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I was able to access it just now.... John Hengstler On Fri, 19 May 2000, Brent Rector wrote: > Good Day Everyone! > > I have become dependant on freshmeat.com for various scripts and other > utilites. > > Does anyone know what has happened to their site? > > Is it just down temporarily? > > Thanks > > Brent > -- > Brent L. Rector brent@talou.net > SysAdmin > Talou Internet Services Corp. http://www.talou.net > ---------------------------------------------------------------------------- > -- As a computing professional, I believe it would be unethical for me > to > advise, recommend, or support the use (save possibly for personal > amusement) of any product that is or depends on any Microsoft > product. > > -- OWNED? MS: Who's Been In Your Computer Today? > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 8:54:38 2000 Delivered-To: freebsd-isp@freebsd.org Received: from boston.eaznet.com (boston.eaznet.com [216.19.20.6]) by hub.freebsd.org (Postfix) with ESMTP id 2870C37B537 for ; Mon, 22 May 2000 08:54:29 -0700 (PDT) (envelope-from eddie@eaznet.com) Received: from eaznet.com (admin.eaznet.com [216.19.20.16]) by boston.eaznet.com (8.9.1a/8.9.1) with ESMTP id IAA29962; Mon, 22 May 2000 08:57:11 -0700 (MST) Message-ID: <392958F2.2F13EF3B@eaznet.com> Date: Mon, 22 May 2000 08:57:38 -0700 From: Eddie - EAZNet Internet Services X-Mailer: Mozilla 4.73 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: FreeBSD ISP Mailing List Subject: [Fwd: FW: Unix version of I Love You virus] Content-Type: multipart/mixed; boundary="------------8DB413B520AA10047BC4A4E0" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------8DB413B520AA10047BC4A4E0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sorry guys/gals, I thought you mighty get a kick of this... -- Eddie Fry eddie@eaznet.com EAZNet Internet Services 220 West 7th Street Safford, AZ 85546 (520) 348-0292 --------------8DB413B520AA10047BC4A4E0 Content-Type: message/rfc822 Content-Transfer-Encoding: 7bit Content-Disposition: inline Return-Path: rstewart@glatmos.com Received: from mrmagoo.glatmos.com (mrmagoo.glatmos.com [192.101.77.44]) by boston.eaznet.com (8.9.1a/8.9.1) with ESMTP id PAA10125 for ; Fri, 19 May 2000 15:48:45 -0700 (MST) Received: from xena.glatmos.com (xena.glatmos.com [192.101.77.165]) by mrmagoo.glatmos.com (8.9.1/8.9.1) with ESMTP id WAA22297; Fri, 19 May 2000 22:46:09 GMT Received: from homebrew.glatmos.com (homebrew [192.101.77.130]) by xena.glatmos.com (8.9.1/8.9.1) with ESMTP id WAA23224; Fri, 19 May 2000 22:46:09 GMT Received: from homebrew (homebrew [192.101.77.130]) by homebrew.glatmos.com (8.9.3+Sun/8.9.1) with SMTP id WAA03448; Fri, 19 May 2000 22:43:44 GMT Message-Id: <200005192243.WAA03448@homebrew.glatmos.com> Date: Fri, 19 May 2000 22:43:44 +0000 (GMT) From: Roy Stewart Reply-To: Roy Stewart Subject: FW: Unix version of I Love You virus To: eddie@eaznet.com, spikeman@speedchoice.com, azwolf@azstarnet.com, rick.zuege@intel.com, rroper@pyramid.central.sun.com@homebrew.glatmos.com, unixkid@uswest.net, Mark_Gibbs@nortelnetworks.com MIME-Version: 1.0 Content-Type: TEXT/plain; charset=us-ascii Content-MD5: gRKPD/cqRR+KvdgpxbkJow== X-Mailer: dtmail 1.3.0 @(#)CDE Version 1.3.4p_5 SunOS 5.7 sun4u sparc X-Mozilla-Status2: 00000000 ------------- Begin Forwarded Message ------------- This is the Unix version of "I Love You" which works on the honor system. If you receive this mail, you should delete a bunch of GIFs, MP3s and binaries from your home directory, then send a copy of this email to everyone you know and then click on the following link: in order to increment the count of systems that this virus had spread to. Thank you. ------------- End Forwarded Message ------------- -------------------------------------------------------- Roy Stewart rstewart@glatmos.com My computing environment is 100% Micro$oft FREE! -------------------------------------------------------- --------------8DB413B520AA10047BC4A4E0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 10:35:21 2000 Delivered-To: freebsd-isp@freebsd.org Received: from hindenburg.eboai.org (hindenburg.eboai.org [205.181.254.190]) by hub.freebsd.org (Postfix) with ESMTP id C9DA537B5B9 for ; Mon, 22 May 2000 10:35:15 -0700 (PDT) (envelope-from chip@chocobo.cx) Received: by hindenburg.eboai.org (Postfix, from userid 1000) id DC7C03D5D; Mon, 22 May 2000 13:35:13 -0400 (EDT) Date: Mon, 22 May 2000 13:35:13 -0400 From: Chip Marshall To: jesse reynolds Cc: "D. W. Piper" , freebsd-isp@FreeBSD.ORG Subject: Re: Interface alias accounting? Message-ID: <20000522133513.B12901@setzer.chocobo.cx> Reply-To: chip@chocobo.cx References: <20000519121531.A73613@setzer.chocobo.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.1.4i In-Reply-To: ; from jesse@va.com.au on Mon, May 22, 2000 at 02:42:57PM +0930 X-URL: http://www.chocobo.cx/chip/ X-OS: FreeBSD 3.4-RELEASE i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On May 22, 2000, jesse reynolds sent me the following: > On Fri, 19 May 2000, Chip Marshall wrote: > > On May 19, 2000, D. W. Piper sent me the following: > > > I'm afraid I'm still a bit confused though. I thought I'd recently seen > > > mention here of a relatively simple method that would allow netstat to > > > show the specific packet counts for each IP address assigned to the > > > interface, as opposed to showing the interface total for them all. > > > > I'm not sure if someone else already mentioned this, but you could > > setup ipfw rules for each of the IP addresses you wanted to watch, > > something along the lines of: > > `netstat -i` > > is probably what you're talking about, yes? No, that is precisely what I am not talking about. netstat -i will only show you the input/output packets/bytes/errors for the interface. I believe what the original poster was trying to do is see traffic per IP alias, which netstat -i does not do. (It does show you a line for each alias, but note how all the numbers are the same...) -- Chip Marshall http://www.chocobo.cx/chip/ Finger for PGP GCM/CS d+(-) s+:++ a18>? C++ UB++++$ P+++$ L- E--- W++ N+@ o K- w O M+ V-- PS PE Y? PGP++ t+@ 5 X R>+ tv+() b++>+++ DI++++ D(-) G++ e>++ h!>++ r-- y- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 13:35:54 2000 Delivered-To: freebsd-isp@freebsd.org Received: from noc.wnonline.net (noc.wnonline.net [216.4.88.2]) by hub.freebsd.org (Postfix) with ESMTP id 005A837BC65 for ; Mon, 22 May 2000 13:35:50 -0700 (PDT) (envelope-from joe.kamm@wnonline.net) Received: from localhost (localhost.la.auth [127.0.0.1] (may be forged)) by noc.wnonline.net (8.9.3/8.9.3) with ESMTP id PAA20480 for ; Mon, 22 May 2000 15:36:26 -0500 (CDT) (envelope-from joe.kamm@wnonline.net) Date: Mon, 22 May 2000 15:36:25 -0500 (CDT) From: joe X-Sender: jk@noc.wnonline.net Reply-To: joe.kamm@wnonline.net To: freebsd-isp@freebsd.org Subject: paging (semi-OT) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org since bb and nocol have lovely documentation for pager gateways, etc... does anyone know of software available that will do NUMERIC paging, as in i could get a program to dial a persons pager number, enter the number and hang. i know there is something out there, because a place i use to work at would page ppl when vmail's were left after hours, etc... i wasn't sure where to post this at freebsd, but since this is for an ISP application, i'd give this place a shot first since i am sure many of you have gone through this before. thanks for anything! :> -jk --- joe kamm network administrator worldnet communications inc. network operations 318/213.9827 what's your .net worth?...ours will mean the world to you! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 13:46:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from thehousleys.net (frenchknot.ne.mediaone.net [24.147.224.201]) by hub.freebsd.org (Postfix) with ESMTP id 8A76137BC31 for ; Mon, 22 May 2000 13:46:15 -0700 (PDT) (envelope-from jim@thehousleys.net) Received: from thehousleys.net (baby.int.thehousleys.net. [192.168.0.24]) by thehousleys.net (8.9.3/8.9.3) with ESMTP id QAA78272; Mon, 22 May 2000 16:45:53 -0400 (EDT) (envelope-from jim@thehousleys.net) Message-ID: <39299C63.565AB0B4@thehousleys.net> Date: Mon, 22 May 2000 16:45:23 -0400 From: James Housley Organization: The Housleys dot Net X-Mailer: Mozilla 4.72 [en] (X11; U; FreeBSD 4.0-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: joe.kamm@wnonline.net Cc: freebsd-isp@FreeBSD.ORG Subject: Re: paging (semi-OT) References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org joe wrote: > > since bb and nocol have lovely documentation for pager gateways, > etc... does anyone know of software available that will do NUMERIC > paging, as in i could get a program to dial a persons pager number, enter > the number and hang. i know there is something out there, because a place > i use to work at would page ppl when vmail's were left after hours, > etc... i wasn't sure where to post this at freebsd, but since this is for > an ISP application, i'd give this place a shot first since i am sure many > of you have gone through this before. > > thanks for anything! :> > > -jk > It isn't FreeBSD yet. http://www.notepager.net/ can do both alpha and numeric. Jim -- If it happens once, it's a bug. If it happens twice, it's a feature. If it happens more than twice, it's windows. -- Luiz de Barros To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 14:33:12 2000 Delivered-To: freebsd-isp@freebsd.org Received: from nlaredo.globalpc.net (nld2.globalpc.net [207.193.206.189]) by hub.freebsd.org (Postfix) with ESMTP id 1AFC037B5AE for ; Mon, 22 May 2000 14:33:03 -0700 (PDT) (envelope-from adrianbsd@globalpc.net) Received: from ds9 (ds9.globalpc.net [207.193.204.57]) by nlaredo.globalpc.net (8.9.3/8.9.2) with SMTP id QAA65474; Mon, 22 May 2000 16:32:41 -0500 (CDT) (envelope-from adrianbsd@globalpc.net) Message-Id: <3.0.6.32.20000522163230.0096d6f0@globalpc.net> X-Sender: adrianbsd@globalpc.net (Unverified) X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.6 (32) Date: Mon, 22 May 2000 16:32:30 -0500 To: Haider Roland , "'freebsd-isp@freebsd.org'" From: Adrian Gonzalez Subject: Re: AW: Routing: diverting only some nets to natd Cc: "'David H. Brierley'" In-Reply-To: <1F879C64A1A7D211B0F10004AC4C07FC119D30@OFFICE1_LIWEST> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi there I think I see what your problem is... At 08:11 AM 5/22/00 +0200, Haider Roland wrote: > >What i want is that 1.2.1.0 & 1.2.2.0 get routed straight through to >1.2.6.1 (works) and 1.2.3.0 & 1.2.4.0 get translated to 1.2.6.7 and >then sent to 1.2.6.1. > >My problem is, that as long as i use > >ipfw add divert ip from any to any via fxp0 > >all 4 nets get translated, and if i use > >ipfw add divert ip from 1.2.3.0/24 to any via fxp0 >ipfw add divert ip from 1.2.4.0/24 to any via fxp0 > >only the routing works and nothing gets translated. those two divert rules translate anything coming from 1.2.3.0 and 1.2.3.0 to 1.2.6.7, which is just what you want, but you're forgetting to translate the packets that come back. Say a ping packet originates at 1.2.3.1 and it's destination is 10.1.1.1. It will get translated to a packet from 1.2.6.7 to 10.1.1.1. When 10.1.1.1 replies, it'll be to 1.2.6.7. So something like: ipfw add divert all from any to 1.2.6.7 should do the trick. Add in the 'via' correct interface if you need that too. Hope this helps. Also, when in doubt, use natd -v so you can see which packets are getting aliased and which aren't Another viable solution would be to add rules to permit everything from the nets that are routed straight through before, and keep the divert from any to any for later/last. -Adrian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 17:11:11 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gateway.chlgroup.com (gateway.chlgroup.com [204.216.54.50]) by hub.freebsd.org (Postfix) with ESMTP id C3D6937BB22 for ; Mon, 22 May 2000 17:10:58 -0700 (PDT) (envelope-from greg@chlgroup.com) Received: from gregspc (gregspc.chlgroup.com [204.216.54.51]) by gateway.chlgroup.com (8.9.3/8.9.2) with SMTP id RAA04219 for ; Mon, 22 May 2000 17:10:56 -0700 (PDT) (envelope-from greg@chlgroup.com) Message-Id: <3.0.5.32.20000522171056.00994ec0@gateway.chlgroup.com> X-Sender: greg@gateway.chlgroup.com X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Mon, 22 May 2000 17:10:56 -0700 To: freebsd-isp@FreeBSD.ORG From: Greg Himes Subject: Re: paging (semi-OT) In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org You might try using Kermit. Look here: http://www.columbia.edu/kermit/faq-c-npg.html Greg At 03:36 PM 5/22/00 -0500, you wrote: > >since bb and nocol have lovely documentation for pager gateways, >etc... does anyone know of software available that will do NUMERIC >paging, as in i could get a program to dial a persons pager number, enter >the number and hang. i know there is something out there, because a place >i use to work at would page ppl when vmail's were left after hours, >etc... i wasn't sure where to post this at freebsd, but since this is for >an ISP application, i'd give this place a shot first since i am sure many >of you have gone through this before. > >thanks for anything! :> > >-jk > >--- >joe kamm >network administrator >worldnet communications inc. >network operations 318/213.9827 >what's your .net worth?...ours will mean the world to you! > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 17:24:26 2000 Delivered-To: freebsd-isp@freebsd.org Received: from va.com.au (va.com.au [203.15.106.1]) by hub.freebsd.org (Postfix) with ESMTP id ACFCA37B523 for ; Mon, 22 May 2000 17:24:23 -0700 (PDT) (envelope-from jesse@va.com.au) Received: from [1.1.1.6] (203.108.18.140) by va.com.au with ESMTP (Eudora Internet Mail Server 2.2); Tue, 23 May 2000 09:54:14 +0930 Mime-Version: 1.0 X-Sender: jesse@mail.va.com.au Message-Id: In-Reply-To: <20000522133513.B12901@setzer.chocobo.cx> References: <20000519121531.A73613@setzer.chocobo.cx> <20000522133513.B12901@setzer.chocobo.cx> Date: Tue, 23 May 2000 10:07:01 +1000 To: chip@chocobo.cx From: jesse reynolds Subject: Re: Interface alias accounting? Cc: "D. W. Piper" , freebsd-isp@FreeBSD.ORG Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 1:35 PM -0400 22/5/00, Chip Marshall wrote: >On May 22, 2000, jesse reynolds sent me the following: >> On Fri, 19 May 2000, Chip Marshall wrote: >> > On May 19, 2000, D. W. Piper sent me the following: >> > > I'm afraid I'm still a bit confused though. I thought I'd recently seen >> > > mention here of a relatively simple method that would allow netstat to >> > > show the specific packet counts for each IP address assigned to the >> > > interface, as opposed to showing the interface total for them all. >> > >> > I'm not sure if someone else already mentioned this, but you could >> > setup ipfw rules for each of the IP addresses you wanted to watch, >> > something along the lines of: >> >> `netstat -i` >> >> is probably what you're talking about, yes? > >No, that is precisely what I am not talking about. netstat -i will >only show you the input/output packets/bytes/errors for the interface. >I believe what the original poster was trying to do is see traffic per >IP alias, which netstat -i does not do. (It does show you a line for >each alias, but note how all the numbers are the same...) Right you are. Whoopsie. I'll shut up then. -- -- Jesse Reynolds - Virtual Artists Pty Ltd - http://www.va.com.au Email: jesse (at) va.com.au > Web Hosting Phone: +61 8 8223 2288 > Streaming Media Services ?: http://jesse.va.com.au > Telehousing / Colocation ICQ: 4766684 > Internet Systems Consulting > Internet Application Design To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 20:57:41 2000 Delivered-To: freebsd-isp@freebsd.org Received: from imsp015.netvigator.com (imsp015.netvigator.com [205.252.144.206]) by hub.freebsd.org (Postfix) with ESMTP id 9A72B37B5BB for ; Mon, 22 May 2000 20:57:37 -0700 (PDT) (envelope-from jbeukema@netvigator.com) Received: from winjef (shttnt01102.netvigator.com [208.151.75.102]) by imsp015.netvigator.com (8.9.3/8.9.1) with SMTP id LAA11351 for ; Tue, 23 May 2000 11:57:32 +0800 (HKT) Message-ID: <392ADE6B.3244@netvigator.com> Date: Tue, 23 May 2000 11:39:23 -0800 From: John Beukema Reply-To: jbeukema@netvigator.com Organization: Littlewoods, Solicitors X-Mailer: Mozilla 3.04 (Win95; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Web hosting Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Our law form is looking for a well connected, FBSD server in the US to host a small site. Please quote rates and reply to me at jbeukema@netvigator.com Regards John Beukema To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 22 23:19:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from frontier.netnology.com.au (frontier.netnology.com.au [203.33.30.19]) by hub.freebsd.org (Postfix) with ESMTP id B661337B7A7 for ; Mon, 22 May 2000 23:19:34 -0700 (PDT) (envelope-from craig@hotmix.com.au) Received: from mandela.hotmix.com.au ([203.33.30.251]) by frontier.netnology.com.au (8.8.7/8.8.7) with ESMTP id PAA13177 for ; Tue, 23 May 2000 15:19:51 +0800 Received: by MANDELA with Internet Mail Service (5.5.2448.0) id ; Tue, 23 May 2000 14:11:21 +0800 Message-ID: From: Craig Beasland To: "'freebsd-isp@freebsd.org'" Subject: Changing C Classes Date: Tue, 23 May 2000 14:11:20 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2448.0) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi there, We are about to move from one c class to another. Everything will need to be moved from DNS to web to dialup servers. Does anyone have any advice on the best way to do this with the minimum of downtime? Cheers craig To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 1:10:42 2000 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id F3B2937BC88 for ; Tue, 23 May 2000 01:10:37 -0700 (PDT) (envelope-from forrestc@IMACH.COM) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id BAA20017; Tue, 23 May 2000 01:06:23 -0600 (MDT) Date: Tue, 23 May 2000 01:06:22 -0600 (MDT) From: "Forrest W. Christian" To: Craig Beasland Cc: "'freebsd-isp@freebsd.org'" Subject: Re: Changing C Classes In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 23 May 2000, Craig Beasland wrote: > We are about to move from one c class to another. Everything will need to > be moved from DNS to web to dialup servers. Does anyone have any advice on > the best way to do this with the minimum of downtime? The real issue here is moving the DNS - all of the others are relatively simple. Before I go into that - I'd recommend turning down your TTL timers in DNS to next to nothing at this point - that way, when you are ready to switch, the changes will take effect almost immediately - with a caveat. Look at the numbers in the SOA and if you can't figure out which ones to turn down, ask further. That said, the real problem is getting the DNS changed with your Registrar (usually Network Solutions). Hopefully, you aren't running both primary and secondary dns on the same network. (Obligatory plug: If you are look at http://www.backupdns.com). Or better put, if your secondary DNS Server isn't changing addresses, then this gets less tramatic. Your goal is to make sure that your DNS as visible to the internet is always available during the transition (MOST IMPORTANT) and that the A records in the DNS match whatever IP addresses you have assigned at that point (not quite as critical). We'll take these both separately: 1) Making sure your DNS is visible. As I said before, if your secondary (or primary) DNS server isn't changing IP addresses, you're home free. Basically, as long as one of the DNS servers work, things will get to you - although slightly slower at times (50% of the requests will have to give up after trying the "missing" server and then try the working one). If both of your DNS Servers are on the same network you should consider moving one off site (see plug above). If this isn't feasable, then I'd probably recommend submitting a address change request to the internic for one of them, then a couple of days after it takes effect, switch your IP's. In this way, one of the two is always available to the internet. After the change, then submit the change for the second one. Another option would be to run the old and new IP addresses in parallel (which I will ALWAYS do if possible) for some period. This requires creative routing at times. However, this has the benefit of giving you some time for everything to stabilize before dropping the old addresses. If this is remotely possible, please email me with specifics and we can talk about it.... The key here is that you MUST have at least one DNS server visible to the internet at any given time. 2) Keeping consistent data in the DNS. When you change the IP addresses, you should almost immediately change the DNS to reflect this. Remember, though, that these changes MUST take effect in whichever DNS Server is internet visible. If you have off-site secondary DNS you should coordinate the change of your primary's address in the secondary's configuration so that it occurs at the same time as the IP Address changes. This way, the secondary can get the changes from the primary which you can change. I'll re-mention the timers - by turning them down you can decrease the amount of time between when the secondary checks for updates. However, be careful not to turn down (I think) expires, because that is the amount of time before the secondary figures that the zone is stale and quits serving it - if anything this should be INCREASED. I realize this isn't too coherent - I need some sleep. Please ask questions to clarify if needed. Thanks. - Forrest W. Christian (forrestc@imach.com) KD7EHZ ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 1:10:48 2000 Delivered-To: freebsd-isp@freebsd.org Received: from proxy.outblaze.com (proxy.outblaze.com [202.77.223.120]) by hub.freebsd.org (Postfix) with SMTP id A085737BC88 for ; Tue, 23 May 2000 01:10:42 -0700 (PDT) (envelope-from yusufg@outblaze.com) Received: (qmail 73592 invoked from network); 23 May 2000 08:10:56 -0000 Received: from unknown (HELO yusufg.portal2.com) (202.77.181.217) by proxy.outblaze.com with SMTP; 23 May 2000 08:10:56 -0000 Received: (qmail 16658 invoked by uid 500); 23 May 2000 08:10:36 -0000 Date: 23 May 2000 08:10:35 -0000 Message-ID: <20000523081035.16657.qmail@yusufg.portal2.com> From: Yusuf Goolamabbas To: freebsd-isp@freebsd.org Subject: Suggestion for testing FreeBSD as packet-filtering-router performance Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have setup a small test harness consisting of 4 machines in the following config ------ | A | ------ | 172.16.0.1 | | | 172.16.0.3 --------------------------------------- | | | | | B | |10.0.1.1 192.168.0.1 | |------------------------------------- | | | | |10.0.1.2 192.168.0.2 | ________ _________ | | | | | C | | D | |_______| |_______| A, C, D are identical FreeBSD 4.0-RELEASE machines with 128MB and Celeron/400 with Intel EEpro 100Mbps card. They have 6GB IDE disks B is a P3/550 with 4.0-stable and 3 EEpro 100Mbps cards. Has a 9GB SCSI disk Right now, B has no rules on it so it is acting just as a router. I plan to add rules to it later on Subsequently I am going to replace B with a Watchguard and a Netscreen to see relative performance I am looking for some advice as to tools/techniques I can use to generate network traffic between the boxes. Regards, Yusuf -- Yusuf Goolamabbas yusufg@outblaze.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 8: 8: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from veronet.net (ns.veronet.net [199.227.3.2]) by hub.freebsd.org (Postfix) with ESMTP id 9FA4A37BB2E for ; Tue, 23 May 2000 08:07:55 -0700 (PDT) (envelope-from mmoran@veronet.net) Received: from columbia (pm3-107.veronet.net [199.227.3.107]) by veronet.net (8.9.3/8.8.5) with SMTP id LAA29166 for ; Tue, 23 May 2000 11:13:10 -0400 (EDT) Message-Id: <3.0.2.32.20000523110907.009b4c10@veronet.net> X-Sender: mmoran@veronet.net X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.2 (32) Date: Tue, 23 May 2000 11:09:07 -0400 To: freebsd-isp@freebsd.org From: Michael Moran Subject: low-cost router for ATM circuit? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can anyone tell me where I can find low-cost router (run by FreeBSD) that are ATM capable, just similar to Redback Networks' SMS-500 box for hook-up to ATM circuit box (link to telco's DSLAM at their C.O.) to offer local ADSL service? Or, anyone have "poor man's ADSL service" way? Thanks in advance, - Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 8:30:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id E629137B5E0 for ; Tue, 23 May 2000 08:30:11 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 12uGLn-0005mY-00; Tue, 23 May 2000 08:12:07 -0700 Date: Tue, 23 May 2000 08:12:06 -0700 (PDT) From: Tom To: Michael Moran Cc: freebsd-isp@freebsd.org Subject: Re: low-cost router for ATM circuit? In-Reply-To: <3.0.2.32.20000523110907.009b4c10@veronet.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 23 May 2000, Michael Moran wrote: > Can anyone tell me where I can find low-cost router (run by FreeBSD) that > are ATM capable, just similar to Redback Networks' SMS-500 box for hook-up > to ATM circuit box (link to telco's DSLAM at their C.O.) to offer local > ADSL service? > > Or, anyone have "poor man's ADSL service" way? > > Thanks in advance, > > - Mike Uhh... the SMS-500 isn't just an ATM router, it is a subscriber management system. If you need subscriber management, a basic ATM router will not be what you need. Any Cisco router with the required ATM interface can do ATM routing, but a Cisco router can't do all the subscriber management magic that a Redback can. Probably a FreeBSD box with an ATM interface, and PPPoE (if that is what your ADSL provider is using) should come pretty close. However, I seem the Redback supporting a lot of different protocols, and your ADSL provider might require something different. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 11:15:42 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.polytechnic.edu.na (mail.polytechnic.edu.na [196.31.225.2]) by hub.freebsd.org (Postfix) with ESMTP id 92A7737B65F for ; Tue, 23 May 2000 11:15:23 -0700 (PDT) (envelope-from tim@polytechnic.edu.na) Received: from [196.31.225.199] (helo=polytechnic.edu.na) by mail.polytechnic.edu.na with esmtp (Exim 3.02 #2) id 12uL6M-0002iE-00; Tue, 23 May 2000 18:16:30 -0200 Message-ID: <392ACAAA.8D0CAB93@polytechnic.edu.na> Date: Tue, 23 May 2000 19:15:07 +0100 From: Tim Priebe X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.4-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Yusuf Goolamabbas Cc: freebsd-isp@freebsd.org Subject: Re: Suggestion for testing FreeBSD as packet-filtering-router performance References: <20000523081035.16657.qmail@yusufg.portal2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yusuf Goolamabbas wrote: > Hi, I have setup a small test harness consisting of 4 machines in the > following config [...] > Right now, B has no rules on it so it is acting just as a router. I > plan to add rules to it later on > > Subsequently I am going to replace B with a Watchguard and a Netscreen > to see relative performance > > I am looking for some advice as to tools/techniques I can use to > generate network traffic between the boxes. > > Regards, Yusuf > > -- > Yusuf Goolamabbas > yusufg@outblaze.com I believe you can set packet size, and total number of packets to send with tcpblast. I increased the maximum packet count when I was testing the throughput on my switches. If you add a rule at the end to allow the discard packets, you should be able to acess the maximum throughput you can get in a worst case situation. I would suggest you do your initial test without routing, to get some idea of how that compares to the routed and filtered tests. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 23 16: 0:45 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.alpha.net.au (mail2.alpha.net.au [203.41.44.8]) by hub.freebsd.org (Postfix) with ESMTP id 2218D37B982 for ; Tue, 23 May 2000 16:00:41 -0700 (PDT) (envelope-from dannyh@idx.com.au) Received: from freebsd.freebsd.org (surry-pool-254.alpha.net.au [203.41.44.254] (may be forged)) by mail.alpha.net.au (8.9.3/8.9.3) with SMTP id KAA12290; Wed, 24 May 2000 10:08:40 +1000 From: Danny To: Craig Beasland , "'freebsd-isp@freebsd.org'" Subject: Re: Changing C Classes Date: Thu, 25 May 2000 09:06:30 +1000 X-Mailer: KMail [version 1.0.21] Content-Type: text/plain References: MIME-Version: 1.0 Message-Id: <00052509075700.00342@freebsd.freebsd.org> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -Try it on a segment of the network. Or something like a "playpen" in your office. Test it Document it Create a checklist Implement it - At least thats what I would do in real life. On Tue, 23 May 2000, Craig Beasland wrote: > Hi there, > > We are about to move from one c class to another. Everything will need to > be moved from DNS to web to dialup servers. Does anyone have any advice on > the best way to do this with the minimum of downtime? > > Cheers > craig > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 6:14:56 2000 Delivered-To: freebsd-isp@freebsd.org Received: from spassmobil.saargate.de (spassmobil.saargate.de [212.88.130.200]) by hub.freebsd.org (Postfix) with ESMTP id E753237B80D for ; Wed, 24 May 2000 06:14:52 -0700 (PDT) (envelope-from domi@saargate.de) Received: from localhost (localhost [127.0.0.1]) by spassmobil.saargate.de (8.9.3/8.9.3) with ESMTP id PAA27274 for ; Wed, 24 May 2000 15:14:45 +0200 (CEST) (envelope-from domi@saargate.de) Date: Wed, 24 May 2000 15:14:44 +0200 (CEST) From: Dominik Brettnacher X-Sender: domi@localhost To: freebsd-isp@freebsd.org Subject: IP Check Program? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, do you know a program that is able to check captured IP/ICMP packets (e.g. from tcpdump) and check if there is a mistake in them? I have a router here that shows a strange behaviour: for every ping (ICMP echo request) I get an ICMP echo reply but nevertheless ping shows nothing else than "packet loss". Now I want to find out the reason for that weird behaviour. -- Dominik - http://www.brettnacher.org/users/dominik/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 11:23:27 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.mailstart.com (mail.mailstart.com [207.231.76.67]) by hub.freebsd.org (Postfix) with ESMTP id 5CBE437BDF6 for ; Wed, 24 May 2000 11:23:23 -0700 (PDT) (envelope-from lures@mozcom.com) Received: from pink [207.231.76.26] by mail.mailstart.com (SMTPD32-5.05) id AE1A87110094; Wed, 24 May 2000 11:23:22 -0700 To: freebsd-isp@freebsd.org Cc: From: lures@mozcom.com Subject: Need advice on software for ISP startup using FreeBDS 4.0 Message-Id: <240500145.41002@207.206.68.172> Content-Type: TEXT/PLAIN; charset=US-ASCII Content-Length: 2770 Date: Wed, 24 May 2000 11:23:24 -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Seeking advice from existing ISP's that provide the general public with 56k dial in service. I a Building a FreeBSD 4.0 server to be the work horse of an ISP I am starting up. The basic FBSD 4.0 install just lays down FBSD and SENDMAIL. To this I know I have to add other pieces of software. I would like your help in selecting this software. The Ports collection has different flavors of some of the software products. I am at a lose to chose which one to select or if I should be looking to the commercial market for software. First of all here is the description of what I am trying to set up. 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. 2. Single PPP node and Multi-link PPP only. 2. No slip or shell or user access to native FBSD, no NFS server. 3. No PAP or CHAP Authentication. 4. Would like to use Kernel PPP mode instead of User PPP mode. 5. Provide subscribers Web pages, email services, FTP, and censored newsgroups. 6. Firewall for security and to drop all banners and auto Web Page spawning. 7. Dial in users use Dynamic addressing. 8. Using a bundled CISCO AS5301-CH terminal server with 48 modems and 2 T1-24 channel lines for dial in. 9. One Full T1 line to UUNET for internet access. 10. Pentium 3, 733 MHz / 133MHz Bus, Mother board with 100MHz bus with 256MB/100MHz bus dimm. 11. 3C980B-TX Fast etherlink server NIC, 100baseT. 12. 29160N Adaptec SCSI card with Seagate Barracuda 18GB Ultra 160 and 2 IDE 10GB Ultra66. 13. Everything will be on the 18GB drive except the newsgroup data which will be on 1 IDE drive and the other IDE drive will be a backup of the running system, no email. Questions 1. Will the Vinum Volume Manager provide any benefit to me in my current config? 2. Do I have to use quota to limit disk space for web page subscribers or can it limit space by login script? 3. Do I need Radius- Remote authentication server because I'm using an CISCO AS5301-CH terminal server? Is /usr/ports/net/radius the one I should use? Can I install this software before I have the terminal server in place? 4. For Dial in users to use Dynamic addressing, I believe I need DHCP. The ports collection has 2 versions, wide-DHCP and ISC-DHCP2. Which one should I use or is their a better one some were else? 5. For a web server Apache looks like the one, but the port collection has 7 versions of Apache13, which one do you use?. 6. Still looking for SMTP and POP3 software. If it's in the ports collection I didn't see it. Where can I find it? 7. Am I missing anything? Thanks for your input. Joe Barbish ----- Sent using MailStart.com ( http://MailStart.Com/welcome.html ) The FREE way to access your mailbox via any web browser, anywhere! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 11:35:34 2000 Delivered-To: freebsd-isp@freebsd.org Received: from smtp-out2.bellatlantic.net (smtp-out2.bellatlantic.net [199.45.39.157]) by hub.freebsd.org (Postfix) with ESMTP id 8EFFB37BB69 for ; Wed, 24 May 2000 11:35:30 -0700 (PDT) (envelope-from viper@2ghz.net) Received: from 2ghz.net (adsl-151-203-74-186.bellatlantic.net [151.203.74.186]) by smtp-out2.bellatlantic.net (8.9.1/8.9.1) with ESMTP id OAA24387; Wed, 24 May 2000 14:34:54 -0400 (EDT) Message-ID: <392C2191.DD06DB4@2ghz.net> Date: Wed, 24 May 2000 14:38:09 -0400 From: Adam Rheaume X-Mailer: Mozilla 4.73 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: lures@mozcom.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 References: <240500145.41002@207.206.68.172> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hrmm :) Yes you will need to use radius.. A good radius package is cistron-radius.. Also you may need to use qmail for you pop server etc.. Do you have an accounting system for all this? DHCP would be done by the cisco... Also you should use quotas on you web structure ... If your going to have alot of hosting that may get unruly and slow though ... -=>Adam<=- lures@mozcom.com wrote: > Seeking advice from existing ISP's that provide the general > public with 56k dial in service. > > I a Building a FreeBSD 4.0 server to be the work horse of an > ISP I am starting up. The basic FBSD 4.0 install just lays down > FBSD and SENDMAIL. To this I know I have to add other pieces > of software. I would like your help in selecting this software. > The Ports collection has different flavors of some of the software > products. I am at a lose to chose which one to select or if I > should be looking to the commercial market for software. > > First of all here is the description of what I am trying to set > up. > > 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. > 2. Single PPP node and Multi-link PPP only. > 2. No slip or shell or user access to native FBSD, no NFS server. > 3. No PAP or CHAP Authentication. > 4. Would like to use Kernel PPP mode instead of User PPP mode. > 5. Provide subscribers Web pages, email services, FTP, and censored > newsgroups. > 6. Firewall for security and to drop all banners and auto Web > Page spawning. > 7. Dial in users use Dynamic addressing. > 8. Using a bundled CISCO AS5301-CH terminal server with 48 modems > and 2 T1-24 channel lines for dial in. > 9. One Full T1 line to UUNET for internet access. > 10. Pentium 3, 733 MHz / 133MHz Bus, Mother board with 100MHz > bus with 256MB/100MHz bus dimm. > 11. 3C980B-TX Fast etherlink server NIC, 100baseT. > 12. 29160N Adaptec SCSI card with Seagate Barracuda 18GB Ultra > 160 and 2 IDE 10GB Ultra66. > 13. Everything will be on the 18GB drive except the newsgroup > data which will be on 1 IDE drive and the other IDE drive will > be a backup of the running system, no email. > > Questions > > 1. Will the Vinum Volume Manager provide any benefit to me in > my current config? > 2. Do I have to use quota to limit disk space for web page subscribers > or can it limit space by login script? > 3. Do I need Radius- Remote authentication server because I'm > using an CISCO AS5301-CH terminal server? Is /usr/ports/net/radius > the one I should use? Can I install this software before I have > the terminal server in place? > 4. For Dial in users to use Dynamic addressing, I believe I need > DHCP. The ports collection has 2 versions, wide-DHCP and ISC-DHCP2. > Which one should I use or is their a better one some were else? > 5. For a web server Apache looks like the one, but the port collection > has 7 versions of Apache13, which one do you use?. > 6. Still looking for SMTP and POP3 software. If it's in the ports > collection I didn't see it. Where can I find it? > 7. Am I missing anything? > > Thanks for your input. > > Joe Barbish > > ----- > Sent using MailStart.com ( http://MailStart.Com/welcome.html ) > The FREE way to access your mailbox via any web browser, anywhere! > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 11:51:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 11A2937BD5A for ; Wed, 24 May 2000 11:51:31 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 2.12 #1) id 12ugFN-0001LV-00; Wed, 24 May 2000 14:51:13 -0400 Date: Wed, 24 May 2000 14:51:13 -0400 (EDT) From: Greg Skouby To: lures@mozcom.com Cc: freebsd-isp@freebsd.org Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 In-Reply-To: <240500145.41002@207.206.68.172> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, These are just comments from personal experience so others can openly mock me or set forth their opinions. > > 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. Looks like you are planning on using the Cisco 5300 for this. If you didn't already purchase the equipment then I would look into getting a Cisco 3640. These are fresh off the Cisco product line and can do a lot of things. Including handling your dialin and access to your UUnet connection. Why aren't you going to sell ISDN? If you have the PRIs coming in you might as well offer ISDN too. You don't have to have any additional equipment. > 3. No PAP or CHAP Authentication. What kind of authentication are you going to use then? Are you just going to use the user list on the access server? I would strongly suggest using either PAP or CHAP coupled with RADIUS auth. Both of them have their advantages and disadvantages. > 4. Would like to use Kernel PPP mode instead of User PPP mode. What are you doing PPP for on the FreeBSD box? > 1. Will the Vinum Volume Manager provide any benefit to me in > my current config? Not really. You need drives that have the same physical geometry to use Vinum, or partitions set to the same size.You can concatenate your IDE drives or mirror them but it sounds like you want to use one for backup and use the other one for the news feed. > 2. Do I have to use quota to limit disk space for web page subscribers > or can it limit space by login script? I would use quote. > 3. Do I need Radius- Remote authentication server because I'm > using an CISCO AS5301-CH terminal server? Is /usr/ports/net/radius YOu can use the user table on the cisco if you want but that is a terrible way to do auth IMHO. I would use RADIUS. http://www.freeradius.org > 4. For Dial in users to use Dynamic addressing, I believe I need > DHCP. The ports collection has 2 versions, wide-DHCP and ISC-DHCP2. I would use the access server to dole out IPs. That is not too hard to setup. > 5. For a web server Apache looks like the one, but the port collection > has 7 versions of Apache13, which one do you use?. 1.3.12., although 2.0 is in its 3rd alpha stage > 6. Still looking for SMTP and POP3 software. If it's in the ports > collection I didn't see it. Where can I find it? For pop3 and IMAP you can go with cyrus or uwash IMAP. You can use qmail, exim, sendmail and some others for smtp. They each have their advantages. I would strongly reconsider serving news. news is an ugly, hairy beast that chews up a lot of disk space and resources. If you definately want to give your customers news then outsource it. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 13:19:40 2000 Delivered-To: freebsd-isp@freebsd.org Received: from durango.picus.com (durango.picus.com [209.100.20.19]) by hub.freebsd.org (Postfix) with ESMTP id C96EE37B5EA for ; Wed, 24 May 2000 13:19:33 -0700 (PDT) (envelope-from troy@picus.com) Received: from arcadia [209.100.20.198] by durango.picus.com (SMTPD32-5.05) id A9028E60150; Wed, 24 May 2000 16:18:10 -0400 From: "Troy Settle" To: , Subject: RE: Need advice on software for ISP startup using FreeBDS 4.0 Date: Wed, 24 May 2000 16:21:30 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 In-Reply-To: <240500145.41002@207.206.68.172> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ** 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. If you are supporting 56k dialup, you can support ISDN without additional equipment or configuration. ** 2. Single PPP node and Multi-link PPP only. Standard ** 2. No slip or shell or user access to native FBSD, no NFS server. Good decision ** 3. No PAP or CHAP Authentication. Reccomend use PAP w/Cistron Radius ** 4. Would like to use Kernel PPP mode instead of User PPP mode. You have a cisco for dialup. no PPP needed on the FreeBSD box ** 5. Provide subscribers Web pages, email services, FTP, and censored ** newsgroups. Reccomend you outsource news. ** 6. Firewall for security and to drop all banners and auto Web ** Page spawning. Have fun with this one. You'll probably end up paying lots of money and/or spending lots of time getting something to work for this. ** 7. Dial in users use Dynamic addressing. Standard stuff. Any modern NAS will handle this beautifully ** 8. Using a bundled CISCO AS5301-CH terminal server with 48 modems ** and 2 T1-24 channel lines for dial in. I would reccomend that you reconsider your choice of NAS. My experience with Cisco has been that they make good routers but awful dialup equipment. ** 9. One Full T1 line to UUNET for internet access. You sure you want UUNut? For a startup, I would reccomend you go with a regional ISP that has several transit providers. This gives you the advantages of multi-homing without the cost, and a smaller organization to deal with on support issues, etc.. ** 10. Pentium 3, 733 MHz / 133MHz Bus, Mother board with 100MHz ** bus with 256MB/100MHz bus dimm. ** 11. 3C980B-TX Fast etherlink server NIC, 100baseT. ** 12. 29160N Adaptec SCSI card with Seagate Barracuda 18GB Ultra ** 160 and 2 IDE 10GB Ultra66. Over kill. I would reccomend spending the same money on a pair of Celery boxes w/IDE drives. You can split your services over those 2 boxes and get much better performance. The important thing to note, is that very little stuff the ISP does is CPU intensive. It's disk and memory intensive first, and modern systems with modern drives (even IDE) won't present a barrier to performance. ** 13. Everything will be on the 18GB drive except the newsgroup ** data which will be on 1 IDE drive and the other IDE drive will ** be a backup of the running system, no email. Again, reccomend that you outsource news. A single T1 won't handle a feed, and you'll need a rather large machine to handle the load (tons of memory and disk). You say no email? back in item 5, you say you are offering email services. Which is it? =) ** ** Questions ** ** 1. Will the Vinum Volume Manager provide any benefit to me in ** my current config? You'll know when you need vinum. If you want to start right, make /home a vinum filesystem using 3 drives (Raid 0+1), and deliver mail to $HOME/.mail(dir/). Which brings us to the next question: ** 2. Do I have to use quota to limit disk space for web page subscribers Yes, you'll want quotas if you care about how much space people are using. I would reccomend a /home filesystem completely seperate from other filesystems. I again reccomend delivering mail to the users' home directories. ** or can it limit space by login script? I don't think this is an option. Though it doesn't matter, because you're not offering shell access. ** 3. Do I need Radius- Remote authentication server because I'm ** using an CISCO AS5301-CH terminal server? Is /usr/ports/net/radius ** the one I should use? Can I install this software before I have ** the terminal server in place? Reccomend Cistron Radius. It's rock solid and is being actively developed (well, freeradius is anyways). ** 4. For Dial in users to use Dynamic addressing, I believe I need ** DHCP. The ports collection has 2 versions, wide-DHCP and ISC-DHCP2. ** Which one should I use or is their a better one some were else? Your NAS will handle the assignment of IPs from a defined pool. DHCP and dialup networking don't usually mix well (except in NT's RRAS) ** 5. For a web server Apache looks like the one, but the port collection ** has 7 versions of Apache13, which one do you use?. If you just need the basics, stick with the basic apache13. If you want to have some fun, give apache13-php3 a shot. ** 6. Still looking for SMTP and POP3 software. If it's in the ports ** collection I didn't see it. Where can I find it? If you are planning on doing POP3 only, then I would reccomend postfix for SMTP, procmail for local delivery, and cucipop for the POP3. If you also want to offer IMAP access, I would reccomend postfix for SMTP, and cyrus for POP3/IMAP. If you go this route, ignore the suggestions in questions 1 and 2 about delivering mail to home directories. ** 7. Am I missing anything? An experienced network and systems admin? My resume is availiable at http://home.i-plus.net/st/resume.html. I'm not cheap from the perspective of a startup, but my salary requirements are reasonable. Good luck, -Troy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 13:45:19 2000 Delivered-To: freebsd-isp@freebsd.org Received: from epsilon.lucida.qc.ca (epsilon.lucida.qc.ca [216.95.146.6]) by hub.freebsd.org (Postfix) with SMTP id 37A9D37B5A4 for ; Wed, 24 May 2000 13:45:15 -0700 (PDT) (envelope-from matt@ARPA.MAIL.NET) Received: (qmail 13535 invoked by uid 1000); 24 May 2000 20:45:13 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 24 May 2000 20:45:13 -0000 Date: Wed, 24 May 2000 16:45:09 -0400 (EDT) From: Matt Heckaman X-Sender: matt@epsilon.lucida.qc.ca To: Troy Settle Cc: lures@mozcom.com, FreeBSD-ISP Subject: RE: Need advice on software for ISP startup using FreeBDS 4.0 In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Spam-Rating: localhost 1.6.2 0/1000/N Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 24 May 2000, Troy Settle wrote: [...] : You sure you want UUNut? For a startup, I would reccomend you go with a : regional ISP that has several transit providers. This gives you the : advantages of multi-homing without the cost, and a smaller organization to : deal with on support issues, etc.. I'm not sure on how it is in the US, but here in Canada UUnet, at least from my expierence, is quite a nice operation. We've got a single T1 to UUnet Canada in Montreal. Their service is complete and fairly quick, I never get put on hold for too long, and they even filter DoS attacks within a nice 10-15 minute amount of time. Maybe it's different in the US, who knows, but over here UUnet is a recommend choice from me :) [...] : -Troy Matt Heckaman matt@arpa.mail.net http://www.lucida.qc.ca -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (FreeBSD) Comment: http://www.lucida.qc.ca/pgp iD8DBQE5LD9YdMMtMcA1U5ARAqkaAKCeIUVGzL0+ENOT8YqhLHIqhl3VtgCePeg0 zmo73z5ywdZMcG9RgjeO7gI= =f4wZ -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 15: 0:54 2000 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 9739837BDB4 for ; Wed, 24 May 2000 15:00:51 -0700 (PDT) (envelope-from forrestc@IMACH.COM) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id OAA06173; Wed, 24 May 2000 14:56:27 -0600 (MDT) Date: Wed, 24 May 2000 14:56:26 -0600 (MDT) From: "Forrest W. Christian" To: Matt Heckaman Cc: Troy Settle , lures@mozcom.com, FreeBSD-ISP Subject: RE: Need advice on software for ISP startup using FreeBDS 4.0 In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 24 May 2000, Matt Heckaman wrote: > I'm not sure on how it is in the US, but here in Canada UUnet, at least > from my expierence, is quite a nice operation. We've got a single T1 to > UUnet Canada in Montreal. Their service is complete and fairly quick, I > never get put on hold for too long, and they even filter DoS attacks > within a nice 10-15 minute amount of time. Maybe it's different in the US, > who knows, but over here UUnet is a recommend choice from me :) In the US, you usually end up put on the Alternet backbone which seems to be having problems with growth outstripping available capacity. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 15: 3:17 2000 Delivered-To: freebsd-isp@freebsd.org Received: from loki.intrepid.net (intrepid.net [204.71.127.3]) by hub.freebsd.org (Postfix) with ESMTP id CB4A837BD86 for ; Wed, 24 May 2000 15:03:00 -0700 (PDT) (envelope-from mark@loki.intrepid.net) Received: (from mark@localhost) by loki.intrepid.net (8.8.5/8.8.5) id SAA31949; Wed, 24 May 2000 18:02:48 -0400 Date: Wed, 24 May 2000 18:02:48 -0400 From: Mark Conway Wirt To: Troy Settle Cc: lures@mozcom.com, freebsd-isp@FreeBSD.ORG Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Message-ID: <20000524180248.Y26866@intrepid.net> References: <240500145.41002@207.206.68.172> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from troy@picus.com on Wed, May 24, 2000 at 04:21:30PM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, May 24, 2000 at 04:21:30PM -0400, Troy Settle wrote: > > ** 3. No PAP or CHAP Authentication. > > Reccomend use PAP w/Cistron Radius I prefer Radius, but if he's only using Cisco boxes, TACACs+ would be a viable alternative. There are ports in /usr/ports/net, but I haven't used them. > > ** 6. Firewall for security and to drop all banners and auto Web > ** Page spawning. > > Have fun with this one. You'll probably end up paying lots of money and/or > spending lots of time getting something to work for this. Saw a write-up in Linux J. a few months ago on how to use Apache's rewrite engine to do this, when used as a proxy. The main problem with this approach is getting a good list of pattern matches for the ad URLs. You can do it with regular expressions, and some of the big Ad providers (like doubleclick) would be relatively easy to match, but to do it exhaustively would probably be impossible. > > ** 8. Using a bundled CISCO AS5301-CH terminal server with 48 modems > ** and 2 T1-24 channel lines for dial in. > > I would reccomend that you reconsider your choice of NAS. My experience > with Cisco has been that they make good routers but awful dialup equipment. We demo-ed the Cisco stuff, and it's gotten better. We saw performance similar to Lucent PM-3s. --Mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 17:14:27 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.westbend.net (ns1.westbend.net [209.224.254.131]) by hub.freebsd.org (Postfix) with ESMTP id 2D7A237B52E for ; Wed, 24 May 2000 17:14:22 -0700 (PDT) (envelope-from hetzels@westbend.net) Received: from admin (admin.westbend.net [209.224.254.141]) by mail.westbend.net (8.9.3/8.9.3) with SMTP id TAA69756; Wed, 24 May 2000 19:14:10 -0500 (CDT) (envelope-from hetzels@westbend.net) Message-ID: <010e01bfc5de$26c01f80$8dfee0d1@westbend.net> From: "Scot W. Hetzel" To: Cc: References: <240500145.41002@207.206.68.172> Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Date: Wed, 24 May 2000 19:14:10 -0500 Organization: West Bend Internet MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4029.2901 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4029.2901 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org From: > 8. Using a bundled CISCO AS5301-CH terminal server with 48 modems > and 2 T1-24 channel lines for dial in. You only need 1 T1 to start, as you can support arround 120-240 customers on a single T1 line. If you notice that your lines are getting full, then order the second line. This will save you the monthly fee for unused the T1 line. > 5. For a web server Apache looks like the one, but the port collection > has 7 versions of Apache13, which one do you use?. This will be changing to only 3 base Apache servers (apache13, apache13+ipv6, and apache13-ssl). Additional functionality would then be added by installing an apache module port (mod_ssl, mod_fp, mod_php[34], etc.). Scot To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 24 23: 9:27 2000 Delivered-To: freebsd-isp@freebsd.org Received: from troi.csw.net (troi.csw.net [209.136.192.23]) by hub.freebsd.org (Postfix) with ESMTP id 3B4CC37B637 for ; Wed, 24 May 2000 23:09:25 -0700 (PDT) (envelope-from lambert@cswnet.com) Received: from ssaos2 (ssaos2.csw.net [209.136.201.13]) by troi.csw.net (8.9.3/8.9.3) with SMTP id BAA55036; Thu, 25 May 2000 01:09:19 -0500 (CDT) (envelope-from lambert@cswnet.com) Message-Id: <200005250609.BAA55036@troi.csw.net> From: lambert@cswnet.com Date: Thu, 25 May 2000 01:01:08 -0500 To: Greg Skouby , lures@mozcom.com, freebsd-isp@FreeBSD.ORG In-Reply-To: Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 X-Mailer: MR/2 Internet Cruiser Edition for OS/2 v2.10a c10 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In , on 05/24/2000 at 02:51 PM, Greg Skouby said: >Hello, >These are just comments from personal experience so others can openly >mock me or set forth their opinions. > >> >> 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. >Looks like you are planning on using the Cisco 5300 for this. If you >didn't already purchase the equipment then I would look into getting a >Cisco 3640. These are fresh off the Cisco product line and can do a lot >of things. Including handling your dialin and access to your UUnet >connection. Why aren't you going to sell ISDN? If you have the PRIs >coming in you might as well offer ISDN too. You don't have to have any >additional equipment. The 7 3640s we had for a few months cost us several customers. We managed to get Cisco to trade us for and equivalent number of ports in the 5300 line. I don't think they have the bugs worked out of the 3640s yet. The 5348 will also give him more room to expand in the future. With the Octal T1 card he can also get by without a CSU/DSU on his bandwidth T1 until he needs that last T1 slot for dial termination. >I would strongly reconsider serving news. news is an ugly, hairy beast >that chews up a lot of disk space and resources. If you definately want >to give your customers news then outsource it. I concurr. I have about 13,000 subs and recently outsourced it. It has saved us 3Mb of bandwidth and we have 35 simultaneous reader slots. So far our peak simultaneous reader count has been 16. We are paying in the neighborhood of $500. And I don't have to fight with INN anymore!! I also got back a lot of nice fast U2W drives and a big machine. -- Scott Lambert lambert@cswnet.com Systems and Security Administrator CSW Net, Inc. ================================================================ Written: Thursday, May 25, 2000 - 01:01 AM To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 0:29:39 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.sai.co.za (ns1.amandla.co.za [196.33.40.1]) by hub.freebsd.org (Postfix) with ESMTP id 5180B37BA74 for ; Thu, 25 May 2000 00:29:24 -0700 (PDT) (envelope-from davew@pmburg.co.za) Received: from fdisk (fdisk.pmburg.co.za [196.33.40.17]) by mail.sai.co.za (8.9.3/8.9.3) with SMTP id JAA27508 for ; Thu, 25 May 2000 09:28:44 +0200 (SAST) (envelope-from davew@pmburg.co.za) Message-ID: <00db01bfc61b$9bb80bd0$112821c4@sai.co.za> From: "Dave Wilson" To: Subject: user accounting/priviledges/expiry software for easy account creation Date: Thu, 25 May 2000 09:34:04 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi guy's howzit going ? Does anyone know of some good software for FreeBSD that will control creation/expiry of user accounts through a web interface for remote admin? Control email access & have set /home/%username directories when creating accounts and also having a set /etc/ppp/pppscript for dial in users.? Basically I'm looking for something like WebMin which works brialiantly, but we need something simpler for some of our office ladies to create user accounts with, and assign various priviledges. We currently have about 1000 user accounts created with webmin. Any ideas? Thanx 8-) Regards Dave Wilson The SA Internet 033 3456777 http://www.sai.co.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 2:29: 0 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.polytechnic.edu.na (mail.polytechnic.edu.na [196.31.225.2]) by hub.freebsd.org (Postfix) with ESMTP id 929BF37B5F1 for ; Thu, 25 May 2000 02:28:49 -0700 (PDT) (envelope-from tim@polytechnic.edu.na) Received: from [196.31.225.199] (helo=polytechnic.edu.na) by mail.polytechnic.edu.na with esmtp (Exim 3.02 #2) id 12uvq5-0007T0-00; Thu, 25 May 2000 09:30:09 -0200 Message-ID: <392CF252.2AF4E9F1@polytechnic.edu.na> Date: Thu, 25 May 2000 10:28:50 +0100 From: Tim Priebe X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.4-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Greg Skouby Cc: lures@mozcom.com, freebsd-isp@freebsd.org Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greg Skouby wrote: > Hello, > > These are just comments from personal experience so others can openly mock > me or set forth their opinions. > > > > > > 1. Dial in service up to 56K, no ISDN or DSL/ADSL or domain hosting. > > Looks like you are planning on using the Cisco 5300 for this. If you > didn't already purchase the equipment then I would look into getting a > Cisco 3640. These are fresh off the Cisco product line and can do a lot of > things. Including handling your dialin and access to your UUnet > connection. Why aren't you going to sell ISDN? If you have the PRIs coming > in you might as well offer ISDN too. You don't have to have any additional > equipment. The 5300 has a number of advantages over the 3640, and it can do what you are recommending the 3640 for. > > 3. No PAP or CHAP Authentication. > > What kind of authentication are you going to use then? Are you just going > to use the user list on the access server? I would strongly suggest using > either PAP or CHAP coupled with RADIUS auth. Both of them have their > advantages and disadvantages. The Cisco can be configured to let the dialup connection choose, and I rembember from when Windows95 came out that it insisted that it authenticate with pap. You want to make it as easy a possible for your clients, or they will go elsewhere. > > 1. Will the Vinum Volume Manager provide any benefit to me in > > my current config? > > Not really. You need drives that have the same physical geometry to use > Vinum, or partitions set to the same size.You can concatenate your IDE > drives or mirror them but it sounds like you want to use one for backup > and use the other one for the news feed. I would agree with the comments elsewhere, save some money on the CPU, and spend it on extra drives, then you can mirror. > > 6. Still looking for SMTP and POP3 software. If it's in the ports > > collection I didn't see it. Where can I find it? > > For pop3 and IMAP you can go with cyrus or uwash IMAP. From all of the security comments on uwash IMAP of late, it is probably a bad idea. IMAP is not generally a good idea for an ISP in my opinion, it adds unnessasary resource requirements. I use cucipop, it like the others mentioned here are in the ports under mail. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 3:18:50 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.alpha.net.au (mail2.alpha.net.au [203.41.44.8]) by hub.freebsd.org (Postfix) with ESMTP id 63F1137B506 for ; Thu, 25 May 2000 03:18:47 -0700 (PDT) (envelope-from dannyh@idx.com.au) Received: from freebsd.freebsd.org (surry-pool-238.alpha.net.au [203.41.44.238] (may be forged)) by mail.alpha.net.au (8.9.3/8.9.3) with SMTP id VAA08924; Thu, 25 May 2000 21:23:27 +1000 From: Danny To: "Dave Wilson" , Subject: Re: user accounting/priviledges/expiry software for easy account c Date: Fri, 26 May 2000 20:21:27 +1000 X-Mailer: KMail [version 1.0.21] Content-Type: text/plain References: <00db01bfc61b$9bb80bd0$112821c4@sai.co.za> MIME-Version: 1.0 Message-Id: <00052620225300.00392@freebsd.freebsd.org> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -Hello - If you are talking about somekind of fileserver try netmax fileserver - It is so easy to use/ On Thu, 25 May 2000, Dave Wilson wrote: > Hi guy's howzit going ? > > Does anyone know of some good software for FreeBSD that will control > creation/expiry of user accounts through a web interface for remote admin? > Control email access & have set /home/%username directories when creating > accounts and also having a set /etc/ppp/pppscript for dial in users.? > Basically I'm looking for something like WebMin which works brialiantly, but > we need something simpler for some of our office ladies to create user > accounts with, and assign various priviledges. > We currently have about 1000 user accounts created with webmin. > > Any ideas? > Thanx 8-) > > Regards > Dave Wilson > The SA Internet > 033 3456777 > http://www.sai.co.za > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 5:28:57 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ns0.sitesnow.com (ns0.sitesnow.com [63.166.182.130]) by hub.freebsd.org (Postfix) with ESMTP id 3C5C037BF94 for ; Thu, 25 May 2000 05:28:53 -0700 (PDT) (envelope-from gskouby@ns0.sitesnow.com) Received: from gskouby (helo=localhost) by ns0.sitesnow.com with local-esmtp (Exim 2.12 #1) id 12uwkm-000E7j-00; Thu, 25 May 2000 08:28:44 -0400 Date: Thu, 25 May 2000 08:28:44 -0400 (EDT) From: Greg Skouby To: Tim Priebe Cc: lures@mozcom.com, freebsd-isp@freebsd.org Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 In-Reply-To: <392CF252.2AF4E9F1@polytechnic.edu.na> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > > 3. No PAP or CHAP Authentication. > > > > What kind of authentication are you going to use then? Are you just going > > to use the user list on the access server? I would strongly suggest using > > either PAP or CHAP coupled with RADIUS auth. Both of them have their > > advantages and disadvantages. > > The Cisco can be configured to let the dialup connection choose, and I > rembember from when Windows95 came out that it insisted that it authenticate > with pap. You want to make it as easy a possible for your clients, or they > will go elsewhere. > I was just saying that their are advantages and disadvantages to using either CHAP or PAP with the radius. With current radius if you use PAP then you can go off the password file but if you use CHAP then you need a line in your users file for every person that wants to dialin. Again, I am not claiming to be an expert so if I am wrong let me know. Thanks..bye To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 5:40:43 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mx01.iafrica.com.na (mx01.iafrica.com.na [196.31.224.9]) by hub.freebsd.org (Postfix) with ESMTP id 7908737C03B for ; Thu, 25 May 2000 05:40:39 -0700 (PDT) (envelope-from tim@iafrica.com.na) Received: from webmail.uunet.com.na ([196.31.224.12] helo=iafrica.com.na) by mx01.iafrica.com.na with smtp (Exim 2.11 #1) id 12uwvB-0002cJ-00; Thu, 25 May 2000 13:39:29 +0100 Date: Thu, 25 May 2000 13:39:25 +0100 (WAT) To: gskouby@ns0.sitesnow.com Cc: lures@mozcom.com, freebsd-isp@freebsd.org Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 X-Mailer: AtDot 2.0.1 X-URL: http://www.uunet.com.na/ Message-Id: From: tim@iafrica.com.na Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org You wrote: > From: Greg Skouby > To: Tim Priebe > cc: lures@mozcom.com, freebsd-isp@freebsd.org > Date: Thu, 25 May 2000 08:28:44 -0400 (EDT) > Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 > > > > > > > > > 3. No PAP or CHAP Authentication. > > > > > > What kind of authentication are you going to use then? Are you just going > > > to use the user list on the access server? I would strongly suggest using > > > either PAP or CHAP coupled with RADIUS auth. Both of them have their > > > advantages and disadvantages. > > > > The Cisco can be configured to let the dialup connection choose, and I > > rembember from when Windows95 came out that it insisted that it authenticate > > with pap. You want to make it as easy a possible for your clients, or they > > will go elsewhere. > > > > > > I was just saying that their are advantages and disadvantages to using > either CHAP or PAP with the radius. With current radius if you use PAP > then you can go off the password file but if you use CHAP then you need a > line in your users file for every person that wants to dialin. Again, I am > not claiming to be an expert so if I am wrong let me know. Thanks..bye > I was not disagreeing with what you said, only adding that it was possible that users would object if you did not. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 8:16: 4 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ritchie.loop.com (ritchie.loop.com [207.211.60.70]) by hub.freebsd.org (Postfix) with ESMTP id 7AD1A37C526 for ; Thu, 25 May 2000 08:15:57 -0700 (PDT) (envelope-from dwplists@loop.com) Received: from Elektra.loop.com (elektra.loop.com [207.211.60.33]) by ritchie.loop.com (8.9.3/8.9.3) with SMTP id IAA10290 for ; Thu, 25 May 2000 08:15:56 -0700 (PDT) Message-ID: <015c01bfc65c$568c7640$213cd3cf@loop.com> From: "D. W. Piper" To: References: <00bb01bfc1ab$b141a160$213cd3cf@loop.com> <20000519121531.A73613@setzer.chocobo.cx> Subject: Re: Interface alias accounting? Date: Thu, 25 May 2000 08:17:21 -0700 Organization: The Loop Internet MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I just wanted to say thanks to everyone who replied. The consensus was to use ipfw count rules for each IP address, which I've found does the job quite well. Thanks again, folks. :) - David To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 8:43: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gizmo.internode.com.au (gizmo.internode.com.au [192.83.231.115]) by hub.freebsd.org (Postfix) with ESMTP id D7F3C37C689 for ; Thu, 25 May 2000 08:42:57 -0700 (PDT) (envelope-from newton@gizmo.internode.com.au) Received: (from newton@localhost) by gizmo.internode.com.au (8.9.3/8.9.3) id BAA36823; Fri, 26 May 2000 01:12:26 +0930 (CST) (envelope-from newton) Date: Fri, 26 May 2000 01:12:26 +0930 From: Mark Newton To: Troy Settle Cc: lures@mozcom.com, freebsd-isp@FreeBSD.ORG Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Message-ID: <20000526011226.C36701@internode.com.au> References: <240500145.41002@207.206.68.172> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre3i In-Reply-To: X-PGP-Key: http://www.on.net/~newton/pgpkey.txt Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, May 24, 2000 at 04:21:30PM -0400, Troy Settle wrote: > Reccomend use PAP w/Cistron Radius Check out Radiator from http://www.open.com.au -- it's the dead-set best radius server I've ever seen. It supports authentication from flat files, UNIX passwd files, MERIT-style .users files, a variety of SQL databases, ODBC, and almost anything else you can think of; It writes logs and accounting information to files, databases, syslog, ODBC, whatever. Its configuration syntax is well suited to either realm-based or DNIS-based authentication domains, so it works well with Cisco VPDNs and other outsourced dialup solutions. ... And it's written in extremely maintainable perl, so you can extend it in the unlikely event that it doesn't already do what you want it to do. It has an active user community based around some mailing lists too. It was developed on FreeBSD, so there are no operability problems with the platforms we talk about on these lists :-) Documentation is good too. It's a commercial product: $1000 (Australian currency) buys a license for up to 5 servers. Source code is, naturally, included (since it's written in perl, after all). In case you haven't noticed, I can't recommend it highly enough. It craps all over every other Radius server I've seen. - mark -- Mark Newton Email: newton@internode.com.au (W) Network Engineer Email: newton@atdot.dotat.org (H) Internode Systems Pty Ltd Desk: +61-8-82232999 "Network Man" - Anagram of "Mark Newton" Mobile: +61-416-202-223 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 9: 2:13 2000 Delivered-To: freebsd-isp@freebsd.org Received: from gekko.i-clue.de (server.ms-agentur.de [62.153.134.194]) by hub.freebsd.org (Postfix) with ESMTP id 22C3837C727 for ; Thu, 25 May 2000 09:02:06 -0700 (PDT) (envelope-from so@server.i-clue.de) Received: from i-clue.de (automatix.i-clue.de [192.168.0.112]) by gekko.i-clue.de (8.9.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id UAA23374; Thu, 25 May 2000 20:03:45 +0200 Message-ID: <392D4E6B.FAEC9870@i-clue.de> Date: Thu, 25 May 2000 18:01:47 +0200 From: Christoph Sold Organization: i-clue interactive GmbH X-Mailer: Mozilla 4.72 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: Matt Heckaman Cc: Troy Settle , lures@mozcom.com, FreeBSD-ISP Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Matt Heckaman wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Wed, 24 May 2000, Troy Settle wrote: > [...] > : You sure you want UUNut? For a startup, I would reccomend you go with a > : regional ISP that has several transit providers. This gives you the > : advantages of multi-homing without the cost, and a smaller organization to > : deal with on support issues, etc.. > > I'm not sure on how it is in the US, but here in Canada UUnet, at least > from my expierence, is quite a nice operation. We've got a single T1 to > UUnet Canada in Montreal. Their service is complete and fairly quick, I > never get put on hold for too long, and they even filter DoS attacks > within a nice 10-15 minute amount of time. Maybe it's different in the US, > who knows, but over here UUnet is a recommend choice from me :) I second this opinion: If you got servers and leased lines across country borders, UUNet is a top quality provider. Having one shop to blame when something does not work instead of two local line providers along with two different hosting providers is worth UUnuts price tag. -Christoph Sold To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 25 21: 0:21 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.mailstart.com (mail.mailstart.com [207.231.76.67]) by hub.freebsd.org (Postfix) with ESMTP id 42BFF37B6F2 for ; Thu, 25 May 2000 21:00:16 -0700 (PDT) (envelope-from lures@mozcom.com) Received: from pink [207.231.76.26] by mail.mailstart.com (SMTPD32-5.05) id A6AE1CD60088; Thu, 25 May 2000 20:59:42 -0700 To: freebsd-isp@FreeBSD.ORG Cc: [so@server.i-clue.de]@FreeBSD.ORG;, tim@iafrica.com.na;, [gskouby@ns0.sitesnow.com]@FreeBSD.ORG;, [forrestc@iMach.com]@FreeBSD.ORG;, [tim@polytechnic.edu.na]@FreeBSD.ORG;, lambert@cswnet.com;, [hetzels@westbend.net]@FreeBSD.ORG;, [mark@intrepid.net]@FreeBSD.ORG;, [troy@picus.com]@FreeBSD.ORG;, [viper@2ghz.net]@FreeBSD.ORG; From: lures@mozcom.com Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Message-Id: <250500146.75583@207.206.68.135> Content-Type: TEXT/PLAIN; charset=US-ASCII Content-Length: 6081 Date: Thu, 25 May 2000 21:00:16 -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org To all that responded: I would like to say thanks for your input. From your responses I have make some decisions on some of the items based on what you said. On other items I see from your responses I was unclear in my writing so I will try to clarify them. 1. On the subject of connecting to UUnet. My sentence was unclear. I did not mean I was connecting to UUnet direct or that they were the people I was calling for problem resolution. What I meant was that the UUnet backbone was my final connect point to the internet. The true of the matter is, I an looking real hard at SPRINT as the main provider and they will connect me to the internet through their access to the UUnet backbone. An full 1.5 T1 connect costs $1250. per month with burst mode pricing for start up. If you know of better a price that I can get, please let me know. 2.On the statement No PAP or CHAP Authentication. There was a lot of discussion on this so let me clarify. The FreeBSD handbook states there is 3 login Authentication methods (PAP, CHAP, and Login) The login method I take is the manual entering in the LOGIN USER ID followed by the manual entering of the PASSWORD during each login attempt. Since this is what is normally see by the Windows95/98/2000 internet user and since this is the target group I want to service, this just seemed like the correct chose. Please jump right in and correct me or add insight now that you know where my head is at. Now this subject has other considerations when the CISCO AS5300-CH48 and radius comes into the picture. First I see the PPP function (both single and Multi-link) no longer is performed by FBSD but by the CISCO AS5300 and it can be configured to let the dialup connection choose the Authentication mode. Also someone stated that with current radius if you use PAP then you can go off the FBSD password file but if you use CHAP then you need a line in your users file for every person that I want to grant dial in access. This discussion subject has spawned new questions in my mind. What is the sequence of events in the login process from an windows dial in user? Is windows looking for a PAP login behind the scenes? Who is the master login id/password holder, FBSD or radius or what? I would like a webpage where a new subscriber can sign up for service. Where he enters his credit card, it gets billed and then he selects a id/pw, and it's checked against the master file after which he is entered into the system automatically. I have read web pages from Merchant account software vendors like authorizit.com who offer this function. I must leave a door way for this when deciding on how to configure CISCO AS5300 / radius world. Please help me out here with how you address this. 3. On the question about the T1/24 channel line for dial in connection to the CISCO AS5300. First of all I am staying with the CISCO AS5300-CH48 for two main reasons, it's growth path and it's initial cost of $10K for 48 digital 56K modems. This NAS can use ether T1 or PRI lines. The PRI line occupies 23 modems per PRI line so after loading the first 48 modem card I will always have two modems which are not generating revenue. But the big problem with PRI is it's over kill, the majority of the subscriber will be logging in with a maximum modem speed of 56K and the T1 will handle that just fine at a much better price. PRI costs $890 per month versus $600 per month. Besides ISDN is dead with DSL on the horizon. Let some other ISP handle the ISDN and DSL speed for the power hungry user. I want the ALO user who is fed up with slow response and wants better service. It's easier to attract subscribers from other ISP's than to attract first time users. 4. I have changed my desire to host news groups now that I know I can out source it. Someone posted that with 13,000 subscribers that pay $500 per month for 35 simultaneous reader slots for news group service of which the peak simultaneous reader count so far has been 16. I would like to get in touch with some news groups outsourcers to develop prices. Please pass on any info you may have access to. 5. Apache13 form the FBSD ports collection. From the responses it looks like no body is using the ports collection as they are out of date. Apache 1.3.12 seems to be the version to use as it's stable. A post did say that, This will be changing to only 3 base Apache servers (apache13,apache13+ipv6, and apache13-ssl). Additional functionality would then be added by installing an apache module port (mod_ssl, mod_fp, mod_php[34],etc) although 2.0 is in its 3rd alpha stage. Well I am lost again. What functionally does ipv6, ssl, fp, php provide? Are these functions something your ISP supports? 6. On the question, Do I have to use quota to limit disk space for web page subscribers. Since the only access to the FBSD disk space in my case will come from the personal/home web page builders and people who want a private FTP site. It seems Quote is the simplest solution. I don't want to host business web pages of any sort. If I do I have to collect and report taxes on this activity. That is just too much red tape for the money. 7. Your responses were real informing on the subject of email software. As I now understand it POP3 sends the email to the client and deletes the email from the server, whereby IMAP does the sending and them keeps the email on the server for some set period. The FBSD sendmail comes with SMTP and POP3 which is provided by the popper daemon. I want access to the mail system to have login Authentication. How does sendmail handle this with radius controlling the dial in world? I see in the MS Windows OS all the email application need the POP and SMTP DNS name or IP address. How do I make this happen in FBSD sendmail? Thanks once again Joe Barbish ----- Sent using MailStart.com ( http://MailStart.Com/welcome.html ) The FREE way to access your mailbox via any web browser, anywhere! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 7:54:29 2000 Delivered-To: freebsd-isp@freebsd.org Received: from stargate.clickcom.com (stargate.clickcom.com [209.198.22.4]) by hub.freebsd.org (Postfix) with ESMTP id 3C83037B5CC; Fri, 26 May 2000 07:54:23 -0700 (PDT) (envelope-from jks@clickcom.com) Received: from fishbowl (dhcp-2.clt.clickcom.com [209.198.22.66]) by stargate.clickcom.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2650.21) id LV0X0NG9; Fri, 26 May 2000 10:51:13 -0400 From: "John Straiton" To: , Subject: RAID Controller + 4.0 Date: Fri, 26 May 2000 10:53:20 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org My assistant recently ordered a machine for our use here but failed to check the HCL for 4.0, and therefore ordered a 2400 series Dell Poweredge that uses the PERC 2/Si 64MB RAID controller. Now I've checked the mailing list archives and haven't been too happy with what I'm seeing. The only one with a smidgin of hope was: http://www.freebsd.org/cgi/getmsg.cgi?fetch=156897+159028+/usr/local/www/db/ text/2000/freebsd-questions/20000123.freebsd-questions However it seems to lend to 4.0-current (which I would imagine JAN's version of is now RELEASE) as having support for it but I can assure you that unless it's something you have to enable specifically during install, it's not. I would just try the 3.0 solution provided there however the Dell comes without IDE or UWSCSI ports on it, either of which I would have a HD for, instead only having a 50pin scsi port on it for which I do not have a drive to test with. I would ask if anyone has had any success with any workaround, if not, if you had any suggestions on things I could *try* as a workaround. And of course, lastly, if anyone has a simple recommendation as to which card they would buy right now in lieu of the PERC we existingly have I would be in your debt. John Straiton ClickCom, Inc. jks@clickcom.com (704)365-9970x101 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 7:58:50 2000 Delivered-To: freebsd-isp@freebsd.org Received: from winconx.com (ns1.winconx.net [208.60.80.2]) by hub.freebsd.org (Postfix) with SMTP id 47C2437B6AE for ; Fri, 26 May 2000 07:58:42 -0700 (PDT) (envelope-from travis@winconx.com) Received: (qmail 88649 invoked from network); 26 May 2000 15:03:14 -0000 Received: from dhcp01.winconx.net (HELO travis) (208.60.80.32) by ns1.winconx.net with SMTP; 26 May 2000 15:03:14 -0000 Message-ID: <04b601bfc722$dc577d80$20503cd0@travis> From: "Travis Leuthauser" To: , References: <250500146.75583@207.206.68.135> Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 Date: Fri, 26 May 2000 09:58:32 -0500 Organization: DDS Group of Companies MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ----- Original Message ----- From: To: Cc: <"[so@server?????????????? Sent: Thursday, May 25, 2000 11:00 PM Subject: Re: Need advice on software for ISP startup using FreeBDS 4.0 > 2.On the statement No PAP or CHAP Authentication. There was > This discussion subject has spawned new questions in my mind. > What is the sequence of events in the login process from an > windows dial in user? User connects to NAS, NAS passes off authentication information to radius server, server returns valid/invalid login. If valid login, returns IP address and so forth to NAS for user, or instructs NAS to assign IP. > > Is windows looking for a PAP login behind the scenes? > Windows does use PAP to authenticate. > Who is the master login id/password holder, FBSD or radius or > what? My recommendation would be to set up cistron radius on your freebsd mail server something like this. DEFAULT Auth-Type=System, Simultaneous-Use=1 (System means /etc/master.passwd, Sim-Use means only one concurrent connection per username) Service-Type=Framed-User, (Set up as framed-user ie. PPP MPP) Framed-Protocol=PPP, Framed-IP-Netmask=255.255.255.255, Framed-Routing=None, Framed-MTU=1500, Framed-Compression=Van-Jacobson-TCP-IP, Idle-Timeout=1200, Session-Timeout=28800 I went through several different radius servers before I found Cistron. I works excellently. Especially the simultaneous-use feature. It carries across most NAS servers. Whereas several other radius servers you have to use vendor specific commands. > costs $890 per month versus $600 per month. Besides ISDN is > dead with DSL on the horizon. Let some other ISP handle the Just personal opinion, but I tend to disagree that ISDN is dead, at least down here in Louisiana. A large number of businesses are sticking with ISDN because it's tested and stable. I think that's the case pretty much anywhere that has lenient pricing on ISDN circuits like we do. The circuits here aren't metered. It's a flat rate regardless of usage. > 5. Apache13 form the FBSD ports collection. From the > responses it looks like no body is using the ports > collection as they are out of date. Apache 1.3.12 seems to > be the version to use as it's stable. A post did say that, > This will be changing to only 3 base Apache servers > (apache13,apache13+ipv6, and apache13-ssl). Additional > functionality would then be added by installing an apache > module port (mod_ssl, mod_fp, mod_php[34],etc) although 2.0 > is in its 3rd alpha stage. > > Well I am lost again. What functionally does ipv6, ssl, fp, > php provide? Are these functions something your ISP > supports? Essentially, the three base apache servers will be just good old web serving apache. Apache with support for the new ipv6 implementations, and apache with ssl (high encryption support). I'm not sure of the specs of ipv6, I'm sure someone else here will enlighten us all. You will need ssl if you are planning on having customers sign up on line. I certainly wouldn't submit my cc # anywhere that doesn't have a secure site. The fp (frontpage extensions) make it easy for your users to develop web pages with frontpage, using the cute little hover buttons and counter, and then publish it to your server. php, if I am correct is a database querying tool. Not too certain on that, but again, I'm sure someone will enlighten. > > > 6. On the question, Do I have to use quota to limit disk > space for web page subscribers. Since the only access to > the FBSD disk space in my case will come from the > personal/home web page builders and people who want a > private FTP site. It seems Quote is the simplest solution. > I don't want to host business web pages of any sort. If I > do I have to collect and report taxes on this activity. > That is just too much red tape for the money. I would recommend using quotas on your users, that limits the amount of junk they can store on your server. If you don't, I promise you will have at least one user with a ton of stuff in their directory. You can also use quotas to limit the size of their email stored on the server. > > 7. Your responses were real informing on the subject of > email software. As I now understand it POP3 sends the email > to the client and deletes the email from the server, > whereby IMAP does the sending and them keeps the email on > the server for some set period. The FBSD sendmail comes > with SMTP and POP3 which is provided by the popper daemon. > I want access to the mail system to have login > Authentication. > > How does sendmail handle this with radius controlling the dial > in world? > > I see in the MS Windows OS all the email application need > the POP and SMTP DNS name or IP address. How do I make this > happen in FBSD sendmail? As far as email goes, this is just my personal opinion, but I'd stay as far away from sendmail as possible. I haven't had many good experiences with it. We run qmail on all of our mail servers. There are a few reasons for that. Security wise, I don't think qmail can be beat. qmail allows you to store your user's mail in their home directory which has a few advantages. One set of quotas controls web storage, ftp storage, and mail. Meaning it's up to your user to decide if they wanna use the space you give them for mail, web, or file storage. No one gets cheated that way, if they don't want a web page, then they can keep even more mail on the server. If they fill up their storage space with web pages, they get no email. Regardless of which mail server you decide to run, it will default to using your master.passwd file. Hope that helps some. Travis Leuthauser Network Administrator DDS Group To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 9: 9: 9 2000 Delivered-To: freebsd-isp@freebsd.org Received: from durango.picus.com (durango.picus.com [209.100.20.19]) by hub.freebsd.org (Postfix) with ESMTP id 8ACE337B55E for ; Fri, 26 May 2000 09:09:01 -0700 (PDT) (envelope-from troy@picus.com) Received: from arcadia [209.100.20.198] by durango.picus.com (SMTPD32-5.05) id A144709014E; Fri, 26 May 2000 12:07:32 -0400 From: "Troy Settle" To: Subject: RE: Need advice on software for ISP startup using FreeBDS 4.0 Date: Fri, 26 May 2000 12:11:03 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 In-Reply-To: <250500146.75583@207.206.68.135> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ** To all that responded: ** ** I would like to say thanks for your input. From your ** responses I have make some decisions on some of the items ** based on what you said. On other items I see from your ** responses I was unclear in my writing so I will try to ** clarify them. ** ** 1. On the subject of connecting to UUnet. My sentence was ** unclear. I did not mean I was connecting to UUnet direct or ** that they were the people I was calling for problem ** resolution. What I meant was that the UUnet backbone was my ** final connect point to the internet. The true of the matter ** is, I an looking real hard at SPRINT as the main provider ** and they will connect me to the internet through their ** access to the UUnet backbone. An full 1.5 T1 connect costs ** $1250. per month with burst mode pricing for start up. If ** you know of better a price that I can get, please let me ** know. I've got 2 T1s to Sprint, it's definately quality bandwidth. Their support has been very good as well. ** 2.On the statement No PAP or CHAP Authentication. There was ** a lot of discussion on this so let me clarify. The FreeBSD ** handbook states there is 3 login Authentication methods ** (PAP, CHAP, and Login) The login method I take is the ** manual entering in the LOGIN USER ID followed by the manual ** entering of the PASSWORD during each login attempt. Since ** this is what is normally see by the Windows95/98/2000 ** internet user and since this is the target group I want to ** service, this just seemed like the correct chose. Please ** jump right in and correct me or add insight now that you ** know where my head is at. ** ** Now this subject has other considerations when the CISCO ** AS5300-CH48 and radius comes into the picture. First I see ** the PPP function (both single and Multi-link) no longer is ** performed by FBSD but by the CISCO AS5300 and it can be ** configured to let the dialup connection choose the ** Authentication mode. Also someone stated that with current ** radius if you use PAP then you can go off the FBSD password ** file but if you use CHAP then you need a line in your users ** file for every person that I want to grant dial in access. ** ** This discussion subject has spawned new questions in my mind. ** What is the sequence of events in the login process from an ** windows dial in user? ** ** Is windows looking for a PAP login behind the scenes? ** ** Who is the master login id/password holder, FBSD or radius or ** what? The user types their username/password into the DUN screen. They click connect, and the computer dials out. When the modem handshake is finished, the connection enters into PPP. The NAS asks for authentication (PAP), Windows responds by sending the username/password provided by the user. The NAS then puts the authentication information into a Radius Authentication Request Packet and sends it to the Radius server. The radius server then authenticates using /etc/raddb/users. If the user is not found here, then the DEFAULT profile is used. Typically, the password will be set to SYSTEM or UNIX, which tells Radius to authenticate off the system's passwd file. Radius sends an ACK back to the NAS, allowing it to assign an IP address and other attributes either passed from Radius or retrieved from the local configuration (time limits might be set by Radius, while a dynamic IP would be gotten from a defined pool on the NAS). The whole process works very well. You can do the same thing with CHAP or even a Login. The disadvantage to CHAP, is that you have to have the users' passwords stored in plaintext on your servers. Not a good idea. The disadvantage to a Login session, is that you'll have to provide your users with a dialup script. Not a fun thing to maintain. ** I would like a webpage where a new subscriber can sign up ** for service. Where he enters his credit card, it gets ** billed and then he selects a id/pw, and it's checked ** against the master file after which he is entered into the ** system automatically. I have read web pages from Merchant ** account software vendors like authorizit.com who offer ** this function. I must leave a door way for this when ** deciding on how to configure CISCO AS5300 / radius world. ** Please help me out here with how you address this. You can do this easily with apache+ssl+php+mysql. You can even get a variant of Cistron Radius that will work directly off a MySQL database, giving you a one-stop place for managing user accounts. In addition, you can easily build a mail system that would also work off a MySQL database. Postfix (MTA) has MySQL support built in. Most common Poppers (cucipop, qpopper, etc...) would be easy to hack to support a MySQL backend for authentication (or you could just use PAM). ** 3. On the question about the T1/24 channel line for dial in ** connection to the CISCO AS5300. First of all I am staying ** with the CISCO AS5300-CH48 for two main reasons, it's ** growth path and it's initial cost of $10K for 48 digital ** 56K modems. This NAS can use ether T1 or PRI lines. The PRI ** line occupies 23 modems per PRI line so after loading the ** first 48 modem card I will always have two modems which are ** not generating revenue. But the big problem with PRI is ** it's over kill, the majority of the subscriber will be ** logging in with a maximum modem speed of 56K and the T1 ** will handle that just fine at a much better price. PRI ** costs $890 per month versus $600 per month. Besides ISDN is ** dead with DSL on the horizon. Let some other ISP handle the ** ISDN and DSL speed for the power hungry user. I want the ** ALO user who is fed up with slow response and wants better ** service. It's easier to attract subscribers from other ** ISP's than to attract first time users. Guess you've done your homework on the 5300. I wish you the best of luck here. ISDN, however, is not even close to dead. Sure, DSL and Cable access are cheaper (for the user), and much faster, but neither has been proven to be more reliable. It's not that you'll have that many ISDN customers, but you may get a few people who are interested. As for your choice between CT1 and PRI, you should be aware that CT1 does NOT provide users with as high as possible. When we still had a CT1, I was typically seeing (true) connect speeds of 19.2 to 24.6, never anything faster. The day we switched to PRI, we got calls from many customers thanking us for letting them connect faster (28.8 and 33.6). Yeah, you loose a channel, but it's worth it to make your customers happier. (happy customers tell friends, which will soon be your customers as well). ** 4. I have changed my desire to host news groups now that I ** know I can out source it. Someone posted that with 13,000 ** subscribers that pay $500 per month for 35 simultaneous ** reader slots for news group service of which the peak ** simultaneous reader count so far has been 16. I would like ** to get in touch with some news groups outsourcers to ** develop prices. Please pass on any info you may have access ** to. Critical Path/Remarq/Supernews (www.supernews.com) provides fairly good news. They're hosted on the Above.net network, and performance is decent. IIRC, they cost $15/month/connection. Newsread is hosted by Net Access (www.newsread.com) is a no-frills news service that costs $7.50/month/connection (IIRC). They've got good bandwidth, and while we were on them, I don't remember having any performance problems (we switched to Remarq for political reasons). Giganews is another, but I have no experience with them. There are a few others, but none that I can name at the moment. ** 5. Apache13 form the FBSD ports collection. From the ** responses it looks like no body is using the ports ** collection as they are out of date. Apache 1.3.12 seems to ** be the version to use as it's stable. A post did say that, ** This will be changing to only 3 base Apache servers ** (apache13,apache13+ipv6, and apache13-ssl). Additional ** functionality would then be added by installing an apache ** module port (mod_ssl, mod_fp, mod_php[34],etc) although 2.0 ** is in its 3rd alpha stage. ** ** Well I am lost again. What functionally does ipv6, ssl, fp, ** php provide? Are these functions something your ISP ** supports? You probably don't need to worry about IPV6 for now. Frontpage is a neat toy, and if you're going to do web hosting as well as dialup, you'll probably want to have it availiable. PHP is an embedded scripting language for web pages. It's extreamly powerful, giving you access to many other applications and services: SQL (many flavors), LDAP, IMAP, GD (png graphics library), SNMP, and other sub systems. Even more modules are sure to be on their way. If you are going to build a web-signup tool, you'll want this. Read more at http://www.php.net. ** 6. On the question, Do I have to use quota to limit disk ** space for web page subscribers. Since the only access to ** the FBSD disk space in my case will come from the ** personal/home web page builders and people who want a ** private FTP site. It seems Quote is the simplest solution. ** I don't want to host business web pages of any sort. If I ** do I have to collect and report taxes on this activity. ** That is just too much red tape for the money. You have to report all your income. The more you make, the more they take. But, know that Web Hosting is almost 100% profit. He who does not host web pages is loosing money. Quotas can be implemented in a few different ways: Filesystem. The OS takes care of the quotas for you. This works, but not always in predictable ways. Application. There are FTP servers (ncftpd) out there with built in quota support that works independantly of the OS. This is a fiarly decent way to maintain order. Some mail systems also have built in quota support (cyrus for example). This is because Cyrus is a totally self-contained system that runs as one user, and makes filesystem quotas useless. Choose your software carefully. ** ** 7. Your responses were real informing on the subject of ** email software. As I now understand it POP3 sends the email ** to the client and deletes the email from the server, ** whereby IMAP does the sending and them keeps the email on ** the server for some set period. The FBSD sendmail comes ** with SMTP and POP3 which is provided by the popper daemon. ** I want access to the mail system to have login ** Authentication. ** ** How does sendmail handle this with radius controlling the dial ** in world? POP3 has a function for leaving messages on the server. I just wiped out a mailbox with 32k messages (200+MB in size). Neither POP3 or IMAP is perfect. If you want to offer any type of Web Messaging solution, you'll most likely want to support IMAP. Reccomendations here, would be for a 10-15MB quota on mailboxes. If users don't keep things clean (POP or IMAP), they'll stop recieving mail. Simple. For authentication, mail and radius are two, totally seperate processes. At their simplest levels of implementation, they both authenticate off the same passwd file, but they don't necessarily have to do this. I for one, am a huge fan of having a unified source for authentication. For the longest time, I had my system set up with all users in a single passwd file, and assigned to one of many different groups. Every account had email access, and I used the following groups to control access to other services: email: no dialup access dialup: single channel, single session dial2: single chanenl, 2 sessions dial3: single channel, 3 sessions mlppp: 2 channels, 1 session mlppp2: 2 channels for each of 2 sessions etc... Cistron Radius handled this method beautifully. With SUDO and a short script to wrap around pw(8), I (almost) never had to do any account maintenance myself (sales and helpdesk did all that). ** ** I see in the MS Windows OS all the email application need ** the POP and SMTP DNS name or IP address. How do I make this ** happen in FBSD sendmail? Not sure what you are asking. When you build your ISP, you'll register a domain name. You'll set up your own DNS server with appropriate enteries in it. For your mail server, it simply looks at each message, determine where it needs to go (foo@domain.com), queries DNS to find out where the heck mail for 'domain.com' is supposed to go, then attempts to connect to the target mail server. For your clients, your NAS (cisco 5300) will assign DNS addresses to your users when they dial up to you. You'll provide your users with the required information (mail, news, home page, etc..) for using the Internet. This can be done manually, or through the use of a setup CD. Good luck again, -Troy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 13:51:20 2000 Delivered-To: freebsd-isp@freebsd.org Received: from dominik.saargate.de (dominik.saargate.de [212.88.133.252]) by hub.freebsd.org (Postfix) with ESMTP id A6F2537B832 for ; Fri, 26 May 2000 13:51:17 -0700 (PDT) (envelope-from domi@saargate.de) Received: from localhost (localhost [127.0.0.1]) by dominik.saargate.de (8.9.3/8.9.3) with ESMTP id WAA20425; Fri, 26 May 2000 22:41:17 +0200 (CEST) (envelope-from domi@saargate.de) Date: Fri, 26 May 2000 22:41:16 +0200 (CEST) From: Dominik Brettnacher To: "rmariz@timnordeste.com.br" Cc: freebsd-isp@freebsd.org Subject: Re: IP Check Program? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 26 May 2000, rmariz@timnordeste.com.br wrote: > I know ethereal. You can get it in the ftp FreeBSD site: > ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/3.4-RELEASE/packages/All/ > Another program is trafshow. It is there too. > Note the release of your FreeBSD. Hi, I know ethereal but I think it does not tell me what went wrong with the packets, it only displays them. -- Dominik - http://www.brettnacher.org/users/dominik/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 16:10:54 2000 Delivered-To: freebsd-isp@freebsd.org Received: from ritchie.loop.com (ritchie.loop.com [207.211.60.70]) by hub.freebsd.org (Postfix) with ESMTP id 6F17B37B95D for ; Fri, 26 May 2000 16:10:43 -0700 (PDT) (envelope-from dwplists@loop.com) Received: from Elektra.loop.com (elektra.loop.com [207.211.60.33]) by ritchie.loop.com (8.9.3/8.9.3) with SMTP id QAA56549 for ; Fri, 26 May 2000 16:10:37 -0700 (PDT) Message-ID: <00c601bfc767$db71f220$213cd3cf@loop.com> From: "D. W. Piper" To: References: <00bb01bfc1ab$b141a160$213cd3cf@loop.com> <20000519121531.A73613@setzer.chocobo.cx> <015c01bfc65c$568c7640$213cd3cf@loop.com> Subject: Confused about group quotas Date: Fri, 26 May 2000 16:12:14 -0700 Organization: The Loop Internet MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi All :) In preparation for revamping a webhosting product, I've been trying to test user and group quotas, and have found a strange thing which I don't understand. I'm hoping someone can either explain it or point out where I went wrong: 1) I added the "option QUOTA" line and recompiled the kernel; 2) I added the userquota and groupquota options for the /usr partition in fstab; 3) I set the enable_quota="YES" option in rc.conf; 4) I rebooted the machine; 5) I created the group "testgrp", and user "testuser" in that group; 6) I created the directory /usr/home/testuser owned by that user and group; 6) I used edquota -g testgrp to set a hard limit of 5; 7) I logged in as testuser, and was able to copy a file into the directory that exceeded the limit by 141 blocks I got no complaints of any kind while copying the file about quota limits, it did not prevent me from exceeding the limit (as it did when I was testing user quotas) but did flag the exceeded limit when I did quota -g testgrp: Disk quotas for group testgrp (gid xxxx): Filesystem blocks quota limit grace files quota limit grace /usr 146* 0 5 none 3 0 0 Anyone know what I'm doing wrong? TIA, - David To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 17:39:58 2000 Delivered-To: freebsd-isp@freebsd.org Received: from spooky.eis.net.au (spooky.eis.net.au [203.12.171.2]) by hub.freebsd.org (Postfix) with ESMTP id 5B58A37B9A7; Fri, 26 May 2000 17:39:44 -0700 (PDT) (envelope-from ernie@spooky.eis.net.au) Received: (from ernie@localhost) by spooky.eis.net.au (8.9.3/8.9.3) id KAA20750; Sat, 27 May 2000 10:39:25 +1000 (EST) (envelope-from ernie) From: Ernie Elu Message-Id: <200005270039.KAA20750@spooky.eis.net.au> Subject: Single Mode cards To: freebsd-atm@freebsd.org Date: Sat, 27 May 2000 10:39:22 +1000 (EST) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org My telco requires that I use a single mode ATM interface to them, so I am trying find out my card oprions with FreeBSD 4.0-RELEASE. I know For systems make a single mode version of the PCA-200 that is supported but it is quite expensive. Are there any others? - Ernie. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 26 20:16:36 2000 Delivered-To: freebsd-isp@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id E595D37BA32; Fri, 26 May 2000 20:16:29 -0700 (PDT) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id XAA09006; Fri, 26 May 2000 23:16:07 -0400 (EDT) (envelope-from wollman) Date: Fri, 26 May 2000 23:16:07 -0400 (EDT) From: Garrett Wollman Message-Id: <200005270316.XAA09006@khavrinen.lcs.mit.edu> To: Ernie Elu Cc: freebsd-atm@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Single Mode cards In-Reply-To: <200005270039.KAA20750@spooky.eis.net.au> References: <200005270039.KAA20750@spooky.eis.net.au> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > make a single mode version of the PCA-200 that is supported but it is quite > expensive. Are there any others? Unfortunately, single-mode optics just are that way. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 3:53:31 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail-secure.toplink.net (mail-secure.toplink.net [195.2.171.5]) by hub.freebsd.org (Postfix) with ESMTP id EEC6937B620 for ; Sat, 27 May 2000 03:53:24 -0700 (PDT) (envelope-from ck@toplink.net) Received: from localhost.toplink.net (mail-scan.toplink.net [195.2.171.141]) by mail-secure.toplink.net (8.9.3/8.9.3) with ESMTP id MAA12690; Sat, 27 May 2000 12:53:23 +0200 (CEST) Received: from mail-secure.toplink.net (mail-scan [127.0.0.1]) by localhost.toplink.net (8.9.3/8.9.3) with ESMTP id KAA05423; Sat, 27 May 2000 10:53:34 +0200 Received: from babylon.toplink.net (babylon.toplink.net [195.2.171.90]) by mail-secure.toplink.net (8.9.3/8.9.3) with ESMTP id MAA12686; Sat, 27 May 2000 12:53:21 +0200 (CEST) Received: from localhost (ck@localhost) by babylon.toplink.net (8.9.3/8.9.3) with ESMTP id MAA80140; Sat, 27 May 2000 12:52:03 +0200 (CEST) Date: Sat, 27 May 2000 12:52:03 +0200 (CEST) From: Christian Kratzer To: "D. W. Piper" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Confused about group quotas In-Reply-To: <00c601bfc767$db71f220$213cd3cf@loop.com> Message-ID: X-NCC-RegID: de.toplink X-Spammer-Kill-Ratio: 75% X-Jihad: Will hunt down all cases of Spam and Net abuse. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, On Fri, 26 May 2000, D. W. Piper wrote: > Hi All :) > > In preparation for revamping a webhosting product, I've been trying to > test user and group quotas, and have found a strange thing which I don't > understand. I'm hoping someone can either explain it or point out where > I went wrong: [stuff snipped] > Anyone know what I'm doing wrong? you forgot to mount the partitions with quotas activated ck@toplink8: {4} cat /etc/fstab # Device Mountpoint FStype Options Dump Pass# /dev/da0s1b none swap sw 0 0 /dev/da0s1a / ufs rw 1 1 /dev/da0s1g /u1 ufs rw,userquota,groupquota 2 2 /dev/da1s1e /u2 ufs rw,userquota,groupquota 2 2 /dev/da0s1e /usr ufs rw 2 2 /dev/da0s1f /var ufs rw 2 2 proc /proc procfs rw 0 0 ck@toplink8: {5} to remount the /usr partition without booting try mount -o update,userquota,groupquota /usr you should see the active mount options with mount ck@toplink8: {5} mount /dev/da0s1a on / (local, writes: sync 2795 async 383434) /dev/da0s1g on /u1 (local, with quotas, writes: sync 20184 async 314613) /dev/da1s1e on /u2 (asynchronous, local, with quotas, writes: sync 9268752 async 4075436) /dev/da0s1e on /usr (local, writes: sync 575 async 275782) /dev/da0s1f on /var (local, writes: sync 66378 async 386662) procfs on /proc (local) ck@toplink8: {6} uups. seems like i forgot to remount /u2 sync after the last bulk copy ;-) Greetings Christian -- TopLink Internet Services GmbH ck@171.2.195.in-addr.arpa Christian Kratzer http://www.toplink.net/ Phone: +49 7032 2701-0 Fax: +49 7032 2701-19 FreeBSD spoken here! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 6:13: 1 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.polytechnic.edu.na (mail.polytechnic.edu.na [196.31.225.2]) by hub.freebsd.org (Postfix) with ESMTP id 6E0E037BA6A; Sat, 27 May 2000 06:12:53 -0700 (PDT) (envelope-from tim@polytechnic.edu.na) Received: from [196.31.225.199] (helo=polytechnic.edu.na) by mail.polytechnic.edu.na with esmtp (Exim 3.02 #2) id 12viHt-0005cd-00; Sat, 27 May 2000 13:14:05 -0200 Message-ID: <392FC9D3.1A259A68@polytechnic.edu.na> Date: Sat, 27 May 2000 14:12:51 +0100 From: Tim Priebe X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 3.4-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Ernie Elu Cc: freebsd-atm@freebsd.org, freebsd-isp@freebsd.org Subject: Re: Single Mode cards References: <200005270039.KAA20750@spooky.eis.net.au> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ernie Elu wrote: > My telco requires that I use a single mode ATM interface to them, so I am > trying find out my card oprions with FreeBSD 4.0-RELEASE. I know For systems > make a single mode version of the PCA-200 that is supported but it is quite > expensive. Are there any others? You can compare this to the cost of media converters. You can get fiber to fiber, or fiber to copper. I have not looked at the prices. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 6:24: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from sanctuary.magill.unisa.edu.au (sanctuary.magill.unisa.edu.au [130.220.226.189]) by hub.freebsd.org (Postfix) with ESMTP id 022E237B51F for ; Sat, 27 May 2000 06:23:55 -0700 (PDT) (envelope-from jarrod@sanctuary.magill.unisa.edu.au) Received: from localhost (sayjm001@localhost) by sanctuary.magill.unisa.edu.au (8.9.3/8.9.3) with ESMTP id WAA06148 for ; Sat, 27 May 2000 22:59:25 +0930 Date: Sat, 27 May 2000 22:59:24 +0930 (CST) From: Jarrod X-Sender: sayjm001@sanctuary.magill.unisa.edu.au To: freebsd-isp@freebsd.org Subject: Alternate PPP daemon Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Run multiple 3.4-S and 4.0-S servers at the moment. One of the 3.4-S servers has all the user accounts on it and the other machines have the pool of modems. Currently use radius-cistron on the accounting server and userland ppp and mgetty on the model pool machines for the dialup part. Userland ppp only handles authentication and not accounting, and we are now looking at accounting for the users. Is there an alterant PPP daemon or PPP/accounting server combination that would accomodate authentication and accounting across multiple dialup pools? TIA, Jarrod To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 8:34:29 2000 Delivered-To: freebsd-isp@freebsd.org Received: from MexComUSA.Net (adsl-63-200-120-86.dsl.mtry01.pacbell.net [63.200.120.86]) by hub.freebsd.org (Postfix) with ESMTP id 5DAD237B5DF for ; Sat, 27 May 2000 08:34:26 -0700 (PDT) (envelope-from eculp@EnContacto.Net) Received: from EnContacto.Net (adsl-63-205-16-202.dsl.mtry01.pacbell.net [63.205.16.202]) by MexComUSA.Net (8.9.3/8.9.3) with ESMTP id IAA90980 for ; Sat, 27 May 2000 08:34:08 -0700 (PDT) (envelope-from eculp@EnContacto.Net) Message-ID: <392FEB00.91085948@EnContacto.Net> Date: Sat, 27 May 2000 08:34:24 -0700 From: Edwin Culp Organization: MexComUSA.Net/EnContacto.Net X-Mailer: Mozilla 4.7 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: "freebsd-isp@FreeBSD.ORG" Subject: Alternate solution to Verisign Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone have a suggestion for an alternate/better value solution to Verisign/Signio certificate/ on-line credit card processing? Thanks, ed To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 8:41:18 2000 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 81F4337B97E for ; Sat, 27 May 2000 08:41:14 -0700 (PDT) (envelope-from forrestc@IMACH.COM) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id IAA02679; Sat, 27 May 2000 08:36:13 -0600 (MDT) Date: Sat, 27 May 2000 08:36:13 -0600 (MDT) From: "Forrest W. Christian" To: Edwin Culp Cc: "freebsd-isp@FreeBSD.ORG" Subject: Re: Alternate solution to Verisign In-Reply-To: <392FEB00.91085948@EnContacto.Net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 27 May 2000, Edwin Culp wrote: > Does anyone have a suggestion for an alternate/better value solution to > Verisign/Signio certificate/ on-line credit card processing? www.thawte.com for the certificate....$125ish. Alteratively, most processors (including signio) provide a payment page under their own certificate which does not require you to have your own certificate - all of the credit card stuff is on a secure page provided by them. Signio calls this "Payflow link" The three companies I'm aware of doing online authorizations are: www.signio.com (now verisign) www.cybercash.com www.authorize.net Cybercash is expensive. I personally use (and love) signio - added bonus is that you can use your userid and password through quickbooks to post manual transactions and then import them into quickbooks. I have another client which uses authorize.net, and it seems great also. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 10:50:53 2000 Delivered-To: freebsd-isp@freebsd.org Received: from elvis.intrepid.net (elvis.intrepid.net [209.190.164.163]) by hub.freebsd.org (Postfix) with ESMTP id 40C8537B8F9 for ; Sat, 27 May 2000 10:50:49 -0700 (PDT) (envelope-from mark@elvis.intrepid.net) Received: (from mark@localhost) by elvis.intrepid.net (8.9.2/8.9.2) id NAA27957; Sat, 27 May 2000 13:50:44 -0400 (EDT) (envelope-from mark) Date: Sat, 27 May 2000 13:50:43 -0400 From: Mark Conway Wirt To: "Forrest W. Christian" Cc: Edwin Culp , "freebsd-isp@FreeBSD.ORG" Subject: Re: Alternate solution to Verisign Message-ID: <20000527135043.A27621@intrepid.net> References: <392FEB00.91085948@EnContacto.Net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from forrestc@iMach.com on Sat, May 27, 2000 at 08:36:13AM -0600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, May 27, 2000 at 08:36:13AM -0600, Forrest W. Christian wrote: > On Sat, 27 May 2000, Edwin Culp wrote: > > > Does anyone have a suggestion for an alternate/better value solution to > > Verisign/Signio certificate/ on-line credit card processing? > > www.thawte.com for the certificate....$125ish. I've been happy with thawte, but keep in mind that they are owned by verisign now, so they don't *really* offer an alternative to Verisign. --Mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 17:23:59 2000 Delivered-To: freebsd-isp@freebsd.org Received: from mail.alpha.net.au (mail2.alpha.net.au [203.41.44.8]) by hub.freebsd.org (Postfix) with ESMTP id 9694B37B512 for ; Sat, 27 May 2000 17:23:55 -0700 (PDT) (envelope-from dannyh@idx.com.au) Received: from freebsd.freebsd.org (surry-pool-142.alpha.net.au [203.41.44.142] (may be forged)) by mail.alpha.net.au (8.9.3/8.9.3) with SMTP id KAA01864; Sun, 28 May 2000 10:25:49 +1000 From: Danny To: Edwin Culp , "freebsd-isp@FreeBSD.ORG" Subject: Re: Alternate solution to Verisign Date: Mon, 29 May 2000 10:30:29 +1000 X-Mailer: KMail [version 1.0.21] Content-Type: text/plain References: <392FEB00.91085948@EnContacto.Net> MIME-Version: 1.0 Message-Id: <00052910310901.00361@freebsd.freebsd.org> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org phpshop.org www.freecode.com They are all over the place once you understand some php3 and perl. On Sun, 28 May 2000, Edwin Culp wrote: > Does anyone have a suggestion for an alternate/better value solution to > Verisign/Signio certificate/ on-line credit card processing? > > Thanks, > > ed > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 27 20: 0: 3 2000 Delivered-To: freebsd-isp@freebsd.org Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.188.244]) by hub.freebsd.org (Postfix) with ESMTP id EECE237B789 for ; Sat, 27 May 2000 19:59:54 -0700 (PDT) (envelope-from andyf@speednet.com.au) Received: from backup.af.speednet.com.au (andyf@backup.af.speednet.com.au [172.22.2.4]) by backup.af.speednet.com.au (8.9.3/8.9.3) with ESMTP id MAA82957; Sun, 28 May 2000 12:59:26 +1000 (EST) (envelope-from andyf@speednet.com.au) Date: Sun, 28 May 2000 12:59:25 +1000 (EST) From: Andy Farkas X-Sender: andyf@backup.af.speednet.com.au To: "D. W. Piper" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Confused about group quotas In-Reply-To: <00c601bfc767$db71f220$213cd3cf@loop.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 26 May 2000, D. W. Piper wrote: > Disk quotas for group testgrp (gid xxxx): > Filesystem blocks quota limit grace files quota limit grace > /usr 146* 0 5 none 3 0 0 > > Anyone know what I'm doing wrong? Set the grace time to 1 second. 'man 8 edquota' will tell you about the -t option. > > TIA, > > - David > -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speednet Communications http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message