From owner-freebsd-isp Sun Nov 8 11:07:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA08724 for freebsd-isp-outgoing; Sun, 8 Nov 1998 11:07:24 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA08714; Sun, 8 Nov 1998 11:07:22 -0800 (PST) (envelope-from dennis@etinc.com) Received: from dbws.vastnet.net (port17.netsvr1.cst.vastnet.net [207.252.73.17]) by etinc.com (8.8.8/8.6.9) with SMTP id OAA08632; Sun, 8 Nov 1998 14:07:03 GMT Message-Id: <3.0.32.19981108140828.006961f0@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Sun, 08 Nov 1998 14:08:30 -0500 To: hackers@FreeBSD.ORG From: Dennis Subject: Admin GUI Cc: isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Has anyone written a remotely excutable GUI for doing basic admin tasks like adding users? Something HTML based maybe? thanks, dennis To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 11:16:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA09684 for freebsd-isp-outgoing; Sun, 8 Nov 1998 11:16:44 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from wolf.com (ns1.wolf.com [207.137.58.20]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id LAA09675 for ; Sun, 8 Nov 1998 11:16:41 -0800 (PST) (envelope-from dan@wolf.com) Received: (qmail 12579 invoked by uid 100); 8 Nov 1998 19:25:10 -0000 Message-ID: <19981108112509.A12566@wolf.com> Date: Sun, 8 Nov 1998 11:25:09 -0800 From: Dan Mahoney To: Dennis , hackers@FreeBSD.ORG Cc: isp@FreeBSD.ORG Subject: Re: Admin GUI References: <3.0.32.19981108140828.006961f0@etinc.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93i In-Reply-To: <3.0.32.19981108140828.006961f0@etinc.com>; from Dennis on Sun, Nov 08, 1998 at 02:08:30PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Has anyone written a remotely excutable GUI for doing basic admin > tasks like adding users? Something HTML based maybe? You might want to take a look at http://www.webmin.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 11:18:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA09873 for freebsd-isp-outgoing; Sun, 8 Nov 1998 11:18:40 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dingo.cdrom.com (castles209.castles.com [208.214.165.209]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA09853; Sun, 8 Nov 1998 11:18:38 -0800 (PST) (envelope-from mike@dingo.cdrom.com) Received: from dingo.cdrom.com (localhost [127.0.0.1]) by dingo.cdrom.com (8.9.1/8.8.8) with ESMTP id LAA03029; Sun, 8 Nov 1998 11:17:01 -0800 (PST) (envelope-from mike@dingo.cdrom.com) Message-Id: <199811081917.LAA03029@dingo.cdrom.com> X-Mailer: exmh version 2.0.2 2/24/98 To: Dennis cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: Admin GUI In-reply-to: Your message of "Sun, 08 Nov 1998 14:08:30 EST." <3.0.32.19981108140828.006961f0@etinc.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 08 Nov 1998 11:17:01 -0800 From: Mike Smith Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Has anyone written a remotely excutable GUI for doing basic admin > tasks like adding users? Something HTML based maybe? Try a search on freshmeat.net for 'webmin'. -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 11:34:50 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA11682 for freebsd-isp-outgoing; Sun, 8 Nov 1998 11:34:50 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from time.cdrom.com (time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA11677 for ; Sun, 8 Nov 1998 11:34:48 -0800 (PST) (envelope-from jkh@time.cdrom.com) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.8/8.8.8) with ESMTP id LAA17450; Sun, 8 Nov 1998 11:35:14 -0800 (PST) (envelope-from jkh@time.cdrom.com) To: Dennis cc: isp@FreeBSD.ORG Subject: Re: Admin GUI In-reply-to: Your message of "Sun, 08 Nov 1998 14:08:30 EST." <3.0.32.19981108140828.006961f0@etinc.com> Date: Sun, 08 Nov 1998 11:35:14 -0800 Message-ID: <17446.910553714@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [Cross-posting elminated - please don't do that] > Has anyone written a remotely excutable GUI for doing basic admin > tasks like adding users? Something HTML based maybe? www.webmin.com - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 11:56:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA13933 for freebsd-isp-outgoing; Sun, 8 Nov 1998 11:56:15 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.webspan.net (mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA13926; Sun, 8 Nov 1998 11:56:13 -0800 (PST) (envelope-from opsys@mail.webspan.net) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with SMTP id OAA22274; Sun, 8 Nov 1998 14:56:00 -0500 (EST) Date: Sun, 8 Nov 1998 14:55:54 -0500 (EST) From: Open Systems Networking X-Sender: opsys@orion.webspan.net To: Dennis cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: Admin GUI In-Reply-To: <3.0.32.19981108140828.006961f0@etinc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org netmax isa GREAT product if your looking at a compelte solution rather thatn JUST the GUI. http://www.netmax.com Chris -- "You both seem to be ignoring the fact that the networking market is driven by so-called 'IT professionals' these days, most of whom can't tell the difference between an ARP and a carp." --Wes Peters ===================================| Open Systems FreeBSD Consulting. FreeBSD 3.0 is available now! | Phone: (402)573-9124 / ICQ # 20016186 -----------------------------------| 3335 N. 103 Plaza, Omaha, NE 68134 FreeBSD: The power to serve! | E-Mail: opsys@open-systems.net http://www.freebsd.org | Consulting, Network Engineering, Security ===================================| http://open-systems.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 14:50:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA02179 for freebsd-isp-outgoing; Sun, 8 Nov 1998 14:50:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns1.walls-media.com (ns1.walls-media.com [12.6.126.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA02171 for ; Sun, 8 Nov 1998 14:50:41 -0800 (PST) (envelope-from bryanb@walls-media.com) Received: from bryanbun ([209.215.46.101]) by ns1.walls-media.com (Post.Office MTA Undefined release Undefined ID# 0-0U10L2S100V35) with SMTP id com for ; Sun, 8 Nov 1998 16:47:00 -0600 Message-ID: <001101be0b69$e8873800$652ed7d1@bryanbun.bhm.bellsouth.net> From: "Bryan Bunch" To: Subject: Webmin Date: Sun, 8 Nov 1998 16:48:30 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3155.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Recently installed webmin according to docs and everything seemed to work fine, but when I access the site, I get my username and password box, then after entering that I get a page that says: Error - Missing Header uname: not found Cannot get host name of local machine at /usr/local/webmin-0.62/index.cgi line 5 Any ideas on this? Line 5 in the index.cgi is: &header("Webmin on ".hostname(), "images/webmin.gif", undef, undef, 1, 1); Running 2.2.7-STABLE and perl 5.005_02 Thanks for any help. Bryan bryanb@walls-media.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 17:59:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA22454 for freebsd-isp-outgoing; Sun, 8 Nov 1998 17:59:52 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cain.gsoft.com.au (genesi.lnk.telstra.net [139.130.136.161]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA22433; Sun, 8 Nov 1998 17:59:42 -0800 (PST) (envelope-from doconnor@gsoft.com.au) Received: from cain.gsoft.com.au (cain [203.38.152.97]) by cain.gsoft.com.au (8.8.8/8.8.8) with ESMTP id MAA15381; Mon, 9 Nov 1998 12:29:09 +1030 (CST) (envelope-from doconnor@gsoft.com.au) Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <3.0.32.19981108140828.006961f0@etinc.com> Date: Mon, 09 Nov 1998 12:29:08 +1030 (CST) From: "Daniel O'Connor" To: Dennis Subject: RE: Admin GUI Cc: isp@FreeBSD.ORG, hackers@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 08-Nov-98 Dennis wrote: > Has anyone written a remotely excutable GUI for doing basic admin > tasks like adding users? Something HTML based maybe? Try webmin.. I did a port of it for FreeBSD, but it hasn't been commited yet, so if you look through the pr's you'll find it.. --- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 23:31:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA21928 for freebsd-isp-outgoing; Sun, 8 Nov 1998 23:31:52 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.wgn.net (mail.wgn.net [207.213.0.9]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA21912; Sun, 8 Nov 1998 23:31:48 -0800 (PST) (envelope-from almazs@wgn.net) Received: from laptop (du528-pcap-nca01.wgn.net [207.213.7.20]) by mail.wgn.net (8.9.1/8.9.0) with SMTP id XAA32223; Sun, 8 Nov 1998 23:31:31 -0800 Message-ID: <36469938.397A@wgn.net> Date: Sun, 08 Nov 1998 23:26:48 -0800 From: Co-app Network consulting Reply-To: almazs@wgn.net Organization: Network Consulting X-Mailer: Mozilla 3.0C-NSCP (Win95; U) MIME-Version: 1.0 To: isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: RE: APC SmartUPS Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi; Does anybody know how to setup an APC smartUPS monitoring on FreeBSD? Is there something in the port collection to interface the UPS with a FreeBSD server? Thanks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Nov 8 23:56:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA24230 for freebsd-isp-outgoing; Sun, 8 Nov 1998 23:56:04 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cain.gsoft.com.au (genesi.lnk.telstra.net [139.130.136.161]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA24224; Sun, 8 Nov 1998 23:56:01 -0800 (PST) (envelope-from doconnor@gsoft.com.au) Received: from cain.gsoft.com.au (cain [203.38.152.97]) by cain.gsoft.com.au (8.8.8/8.8.8) with ESMTP id SAA24247; Mon, 9 Nov 1998 18:25:30 +1030 (CST) (envelope-from doconnor@gsoft.com.au) Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <36469938.397A@wgn.net> Date: Mon, 09 Nov 1998 18:25:29 +1030 (CST) From: "Daniel O'Connor" To: Co-app Network consulting Subject: RE: APC SmartUPS Cc: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 09-Nov-98 Co-app Network consulting wrote: > Does anybody know how to setup an APC smartUPS monitoring on FreeBSD? > Is there something in the port collection to interface the UPS with > a FreeBSD server? No there isn't, but there is a piece of software which does it :) apcmon talks to APC UPS's and works fairly well, thought its a small pain to set up.. But given that its a collection of shell scripts, it works well :) Unfortunatley I don't know where it was found, but I put a copy on ftp://cain.gsoft.com.au/apcmon-1.28a.shar.Z --- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 04:48:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA28061 for freebsd-isp-outgoing; Mon, 9 Nov 1998 04:48:16 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from emu.sourcee.com (emu.sourcee.com [199.201.159.173]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA28052; Mon, 9 Nov 1998 04:48:13 -0800 (PST) (envelope-from nrice@emu.sourcee.com) Received: (from nrice@localhost) by emu.sourcee.com (8.9.1/8.9.1) id HAA07546; Mon, 9 Nov 1998 07:47:56 -0500 (EST) Message-ID: <19981109074755.A7515@emu.sourcee.com> Date: Mon, 9 Nov 1998 07:47:55 -0500 From: "Norman C. Rice" To: almazs@wgn.net, isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: APC SmartUPS References: <36469938.397A@wgn.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <36469938.397A@wgn.net>; from Co-app Network consulting on Sun, Nov 08, 1998 at 11:26:48PM -0800 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, Nov 08, 1998 at 11:26:48PM -0800, Co-app Network consulting wrote: > Hi; > > Does anybody know how to setup an APC smartUPS monitoring on FreeBSD? > Is there something in the port collection to interface the UPS with > a FreeBSD server? Check out the `upsd-2.0' port. -- Regards, Norman C. Rice, Jr. > > Thanks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 08:11:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA19705 for freebsd-isp-outgoing; Mon, 9 Nov 1998 08:11:12 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gvinpin.grad.kiev.ua (KievglavArhit-UTC-28k8.ukrtel.net [195.5.25.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA19694; Mon, 9 Nov 1998 08:10:50 -0800 (PST) (envelope-from Ruslan@Shevchenko.Kiev.UA) Received: from Shevchenko.Kiev.UA (cam [10.0.0.50]) by gvinpin.grad.kiev.ua (8.8.7/8.8.7) with ESMTP id SAA30710; Mon, 9 Nov 1998 18:08:34 +0200 Message-ID: <36471364.4BE0472A@Shevchenko.Kiev.UA> Date: Mon, 09 Nov 1998 18:08:04 +0200 From: Ruslan Shevchenko Reply-To: rssh@grad.kiev.ua X-Mailer: Mozilla 4.05 [en] (X11; I; FreeBSD 2.2.5-STABLE i386) MIME-Version: 1.0 To: Dennis CC: hackers@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: Admin GUI References: <3.0.32.19981108140828.006961f0@etinc.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dennis wrote: > > > Has anyone written a remotely excutable GUI for doing basic admin > tasks like adding users? Something HTML based maybe? > > thanks, > > dennis > http://cam.grad.kiev.ua/~rssh/admin/admin.html > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message -- @= //RSSH mailto:Ruslan@Shevchenko.Kiev.UA CORBA in Ukraine & ex-USSR: http://www.corbadev.kiev.ua To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 11:21:01 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA09927 for freebsd-isp-outgoing; Mon, 9 Nov 1998 11:21:01 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA09922 for ; Mon, 9 Nov 1998 11:21:00 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA297259134; Mon, 9 Nov 1998 14:18:54 -0500 Date: Mon, 9 Nov 1998 14:18:53 -0500 (EST) From: Bill Fumerola To: Co-app Network consulting Cc: isp@FreeBSD.ORG Subject: RE: APC SmartUPS In-Reply-To: <36469938.397A@wgn.net> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [ removed the notoriously over-cross-posted -hackers ] On Sun, 8 Nov 1998, Co-app Network consulting wrote: > Does anybody know how to setup an APC smartUPS monitoring on FreeBSD? > Is there something in the port collection to interface the UPS with > a FreeBSD server? Yes. both /usr/ports/sysutils/bkpupsd and /usr/ports/sysutils/upsd are in the ports collection, and I personally use upsd. - bill fumerola [root/billf]@chc-chimes.com - computer horizons corp - - ph:(800)252.2421 x128 / bfumerol@computerhorizons.com - BF1560 - "Logic, like whiskey, loses its beneficial effect when taken in too large quantities" -Lord Dunsany To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 18:23:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA26729 for freebsd-isp-outgoing; Mon, 9 Nov 1998 18:23:32 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from tuan.cse.rmit.EDU.AU (tuan.cse.rmit.edu.au [131.170.118.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA26719 for ; Mon, 9 Nov 1998 18:23:27 -0800 (PST) (envelope-from s9507886@tuan.cse.rmit.EDU.AU) Received: from dropbear.cse.rmit.EDU.AU (s9507886@dropbear.cse.rmit.edu.au [131.170.118.20]) by tuan.cse.rmit.EDU.AU (8.8.5/8.8.5) with ESMTP id NAA11742; Tue, 10 Nov 1998 13:23:02 +1100 (EST) From: Tony Alexander Frank Received: (s9507886@localhost) by dropbear.cse.rmit.EDU.AU (8.8.5/8.6.12) id NAA25520; Tue, 10 Nov 1998 13:22:58 +1100 (EST) Message-Id: <199811100222.NAA25520@dropbear.cse.rmit.EDU.AU> Subject: Re: hosts.{deny|allow} To: willow@tds.edu (Willow) Date: Tue, 10 Nov 1998 13:22:58 +1100 (EST) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: from "Willow" at Nov 6, 98 01:23:34 pm X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hey Willow, > I'm trying to block access to our freebsd (2.2.7) boxes from several > domains and not having any luck. I have read the man pages on > hosts_optiosn and hosts_access and tried to follow along without success. > > I would prefer to block based on IP (I have 10 class C's or so that need > to be blocked) if possible. I think you'd be best suited by using some deny rules in ipfw or a similar firewall (whatever you're running with presently) eg, if you've added ipfirewall to your kernel config, you can then edit one of the prebuilt firewall configs found in /etc/rc.firewall and simple add an extra deny rule or ten. is add something like Suppose you want to block any & all TCP/IP access from the 'bad' network of 192.168.1.0 then you can add a line like the following to your rc.firewall: $ifwcmd add deny log all from 192.168.1.0/16 to any There's several prebuilt samples in /etc/rc.firewall... Remember that if you use this, to also update /etc/rc.conf with the appropriate firewall options. -- | Tony Frank | Mobile: +61-412-481-029 | | 4th Year Computer Systems Engineering | Fax: +61-3-9720-4672 | | RMIT, Melbourne, Victoria, Australia | Email: s9507886@cse.rmit.edu.au | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 19:50:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA04280 for freebsd-isp-outgoing; Mon, 9 Nov 1998 19:50:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from zappa.dag.net (pm3-2-24.phl.magpage.com [208.222.91.81]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA04275 for ; Mon, 9 Nov 1998 19:50:50 -0800 (PST) (envelope-from dag@dag.net) Received: from localhost (dag@localhost [127.0.0.1]) by zappa.dag.net (8.8.8/8.8.8) with ESMTP id WAA24436; Mon, 9 Nov 1998 22:50:27 -0500 (EST) Date: Mon, 9 Nov 1998 22:50:26 -0500 (EST) From: Ed Kern To: Willow cc: freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 6 Nov 1998, Willow wrote: > Anyone on the list willing to trade telnet accounts for testing and > diagnostic purposes? If so email me off-list and I will set things up on > this end. > > I would like accounts on as many backbones as possible for testing. I > agree in advance and in writing if needed to abide by your AUP/TOS. Hi. Why not use various traceroute and looking glass websites around the 'net? http://nitrous.digex.net/ is always a nice place to start, and there's a good list of traceroute websites at http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Software/Networking/Utilities/Traceroute/ > -- > willow@tds.edu > -- :> Ed. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 19:51:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA04330 for freebsd-isp-outgoing; Mon, 9 Nov 1998 19:51:13 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from zappa.dag.net (pm3-2-24.phl.magpage.com [208.222.91.81]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA04319 for ; Mon, 9 Nov 1998 19:51:10 -0800 (PST) (envelope-from dag@dag.net) Received: from localhost (dag@localhost [127.0.0.1]) by zappa.dag.net (8.8.8/8.8.8) with ESMTP id WAA24571 for ; Mon, 9 Nov 1998 22:50:53 -0500 (EST) Date: Mon, 9 Nov 1998 22:50:52 -0500 (EST) From: Ed Kern To: freebsd-isp@FreeBSD.ORG Subject: Re: telnet account Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 6 Nov 1998, Willow wrote: > Anyone on the list willing to trade telnet accounts for testing and > diagnostic purposes? If so email me off-list and I will set things up on > this end. > > I would like accounts on as many backbones as possible for testing. I > agree in advance and in writing if needed to abide by your AUP/TOS. Hi. Why not use various traceroute and looking glass websites around the 'net? http://nitrous.digex.net/ is always a nice place to start, and there's a good list of traceroute websites at http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Software/Networking/Utilities/Traceroute/ > -- > willow@tds.edu > -- :> Ed. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 9 20:24:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA07061 for freebsd-isp-outgoing; Mon, 9 Nov 1998 20:24:07 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from velvet.sensation.net.au (serial0-velvet.Brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA07045 for ; Mon, 9 Nov 1998 20:23:59 -0800 (PST) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.8.8/8.8.8) with SMTP id PAA23047 for ; Tue, 10 Nov 1998 15:17:20 +1100 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Tue, 10 Nov 1998 15:17:18 +1100 (EST) From: Rowan Crowe To: freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 9 Nov 1998, Ed Kern wrote: > > Anyone on the list willing to trade telnet accounts for testing and > > diagnostic purposes? If so email me off-list and I will set things up on > > this end. > > > > I would like accounts on as many backbones as possible for testing. I > > agree in advance and in writing if needed to abide by your AUP/TOS. > > Hi. > > Why not use various traceroute and looking glass websites around the 'net? > http://nitrous.digex.net/ is always a nice place to start, and there's a > good list of traceroute websites at > http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Software/Networking/Utilities/Traceroute/ telnet://route-server.cef.net is also a good resource, if you want to do a bit more than just trace and like the feel of typing in a cisco command line rather than entering data into a form. Cheers. -- Rowan Crowe Sensation Internet Services, Melbourne Aust fidonet: 3:635/728 +61-3-9388-9260 http://www.rowan.sensation.net.au/ http://www.sensation.net.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 02:06:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA04514 for freebsd-isp-outgoing; Tue, 10 Nov 1998 02:06:08 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from velvet.sensation.net.au (serial0-velvet.Brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA04447 for ; Tue, 10 Nov 1998 02:05:54 -0800 (PST) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.8.8/8.8.8) with SMTP id UAA23594 for ; Tue, 10 Nov 1998 20:59:13 +1100 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Tue, 10 Nov 1998 20:59:11 +1100 (EST) From: Rowan Crowe To: freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 10 Nov 1998, Leif Neland wrote: > > telnet://route-server.cef.net is also a good resource, if you want to do a > > bit more than just trace and like the feel of typing in a cisco command > > line rather than entering data into a form. > > > > route-server.cef.net: Unknown host Apologies for the typo: route-server.cerf.net (verified this time) Cheers. -- Rowan Crowe Sensation Internet Services, Melbourne Aust fidonet: 3:635/728 +61-3-9388-9260 http://www.rowan.sensation.net.au/ http://www.sensation.net.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 07:47:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA07769 for freebsd-isp-outgoing; Tue, 10 Nov 1998 07:47:40 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.intercom.com ([207.51.55.117]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA07762 for ; Tue, 10 Nov 1998 07:47:35 -0800 (PST) (envelope-from jason@intercom.com) Received: from mail.intercom.com (mail.intercom.com [206.98.165.10]) by mail.intercom.com (8.9.0/8.9.0) with SMTP id KAA20910; Tue, 10 Nov 1998 10:47:19 -0500 (EST) Date: Tue, 10 Nov 1998 10:47:19 -0500 (EST) From: "Jason J. Horton" To: Ed Kern cc: freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Sometimes ya need ping, or lynx or bing or a test mail account. the web traceroutes and looking glasses are great, but not always what ya need. -J On Mon, 9 Nov 1998, Ed Kern wrote: > Hi. > > Why not use various traceroute and looking glass websites around the 'net? > http://nitrous.digex.net/ is always a nice place to start, and there's a > good list of traceroute websites at > http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Software/Networking/Utilities/Traceroute/ > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 08:06:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA09355 for freebsd-isp-outgoing; Tue, 10 Nov 1998 08:06:16 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA09301 for ; Tue, 10 Nov 1998 08:06:13 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA130813866; Tue, 10 Nov 1998 11:04:26 -0500 Date: Tue, 10 Nov 1998 11:04:26 -0500 (EST) From: Bill Fumerola To: "Jason J. Horton" Cc: Ed Kern , freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 10 Nov 1998, Jason J. Horton wrote: > Sometimes ya need ping, or lynx or bing or a test mail account. Lynx is _really_ not a diagnostic tool. telnet or socket is(if you're trying to check if a web server is running). - bill fumerola [root/billf]@chc-chimes.com - computer horizons corp - - ph:(800)252.2421 x128 / bfumerol@computerhorizons.com - BF1560 - "Logic, like whiskey, loses its beneficial effect when taken in too large quantities" -Lord Dunsany To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 08:07:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA09442 for freebsd-isp-outgoing; Tue, 10 Nov 1998 08:07:24 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from jupiter.connecticom.com (jupiter.connecticom.com [209.3.110.24]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA09437 for ; Tue, 10 Nov 1998 08:07:23 -0800 (PST) (envelope-from kitt@connecticom.com) Received: from [209.3.110.25] (orion.connecticom.com [209.3.110.25]) by jupiter.connecticom.com (8.9.0/8.9.0) with ESMTP id LAA27720; Tue, 10 Nov 1998 11:06:19 -0500 (EST) X-Sender: sysadmin@mail.connecticom.com Message-Id: In-Reply-To: References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 10 Nov 1998 11:06:56 -0500 To: "Jason J. Horton" From: Kitt Diebold Subject: Re: telnet account Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a free service that I ran across a while ago: Telnet to: sage.aspire.net username/password: ispguest -Kitt >Sometimes ya need ping, or lynx or bing or a test mail account. > >the web traceroutes and looking glasses are great, but not always what ya >need. > > -J > >On Mon, 9 Nov 1998, Ed Kern wrote: >> Hi. >> >> Why not use various traceroute and looking glass websites around the 'net? >> http://nitrous.digex.net/ is always a nice place to start, and there's a >> good list of traceroute websites at >> >>http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Softwa >>re/Networking/Utilities/Traceroute/ >> > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message Connecticom, Inc. (716) 546-3510 http://www.connecticom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 09:23:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA20798 for freebsd-isp-outgoing; Tue, 10 Nov 1998 09:23:32 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.palnet.com (mx2.palnet.com [192.116.16.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA20791 for ; Tue, 10 Nov 1998 09:23:22 -0800 (PST) (envelope-from rjebara@mail.palnet.com) Received: from localhost (rjebara@localhost) by mail.palnet.com (8.8.5/8.8.5) with SMTP id TAA00274 for ; Tue, 10 Nov 1998 19:22:55 +0200 Date: Tue, 10 Nov 1998 19:22:55 +0200 (IST) From: Rami Abu Jebara To: freebsd-isp@FreeBSD.ORG Subject: Grouping users with Radius Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi I have been trying to configure Merit Radius to do configure incoming filters depending on the unix user group .. but it's not working .. The idea is this, I don't want my e-mail only customers to have access to the web ... and I want a way to tell my Cisco .. to block everything except DNS,pop3,SMTP There is an attribute in merit for the User-Group but it does nothing .. am I missing something ... do I need to pay merit 2000$ (I think) for their enhanced version. do I need to change my radius software .. Radius : Merit 3.6B OS :FreeBSD 2.2.7 NAS : Cisco AS5200 cheers Rami **************************** Rami Abu Jebara Network/System Administrator Palnet Communications Ltd e-mail : rjebara@palnet.com Tel/Fax : ++ 972 2 583 5666 w w w . p a l n e t . c o m To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 11:21:34 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA02993 for freebsd-isp-outgoing; Tue, 10 Nov 1998 11:21:34 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.palnet.com (mx2.palnet.com [192.116.16.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA02980 for ; Tue, 10 Nov 1998 11:21:08 -0800 (PST) (envelope-from rjebara@mail.palnet.com) Received: from localhost (rjebara@localhost) by mail.palnet.com (8.8.5/8.8.5) with SMTP id VAA05151; Tue, 10 Nov 1998 21:20:33 +0200 Date: Tue, 10 Nov 1998 21:20:33 +0200 (IST) From: Rami Abu Jebara To: William Bulley cc: freebsd-isp@FreeBSD.ORG Subject: Re: Grouping users with Radius In-Reply-To: <199811101811.NAA07554@ohm.merit.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hmmm I thought it was just a matter or radius telling the difference between different unix user groups ... eg. user x belongs to e-mailonly (gid 200) on the system now on the server we have multiple DEFAULT entries, but with a different group each time ... they all authenticate against the same password file... the reply items though will differ.. user x logs in .. he get a filter .. user y .. for instance is an ISDN user (gid 300 ISDN) .. so I might want to limit this guy to dial in a to a certain hunt group .. etc ... this is what I am after .. Cistron has similar things, I had a brief look at it but .. it's a beta, and I realy cann't afford surprises. anyway web, thanks a lot for the tip .. I might hassel the cisco guys .. and I'll keep on digging .. cheers Rami **************************** Rami Abu Jebara Network/System Administrator Palnet Communications Ltd e-mail : rjebara@palnet.com Tel/Fax : ++ 972 2 583 5666 w w w . p a l n e t . c o m On Tue, 10 Nov 1998, William Bulley wrote: > According to Rami Abu Jebara: > > > > I have been trying to configure Merit Radius to > > do configure incoming filters depending on the > > unix user group .. but it's not working .. > > > > The idea is this, I don't want my e-mail only customers > > to have access to the web ... and I want a way to tell > > my Cisco .. to block everything except DNS,pop3,SMTP > > > > There is an attribute in merit for the User-Group > > but it does nothing .. > > > > am I missing something ... do I need to pay merit 2000$ (I think) for > > their enhanced version. do I need to change my radius software .. > > > > Radius : Merit 3.6B > > OS :FreeBSD 2.2.7 > > NAS : Cisco AS5200 > > This is a question for aaa-support@merit.edu not FreeBSD! :-) > > It is possible to set up filters on the NAS and have RADIUS > tell the NAS which filter to use (by name). > > I don't know how to do this with a Cisco, but perhaps > there is a Cisco VSA (or more than one) which will help > you to do this. I would talk to your Cisco support folks > if I were you. > > Regards, > > web... > > -- > William Bulley Senior Systems Research Programmer > Merit Network, Inc. Email: web@merit.edu > 4251 Plymouth Road, Suite C Phone: (734) 764-9993 > Ann Arbor, Michigan 48105-2785 Fax: (734) 647-3185 > > If entropy is increasing, where is it coming from? > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 12:09:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA08020 for freebsd-isp-outgoing; Tue, 10 Nov 1998 12:09:55 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from zeus.tds.edu (zeus.tds.edu [38.149.131.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA07996 for ; Tue, 10 Nov 1998 12:09:48 -0800 (PST) (envelope-from willow@tds.edu) Received: from zeus.tds.edu (willow@zeus.tds.edu [38.149.131.15]) by zeus.tds.edu (8.9.1a/8.9.1a) with ESMTP id PAA21538; Tue, 10 Nov 1998 15:09:06 -0500 (EST) Date: Tue, 10 Nov 1998 15:09:05 -0500 (EST) From: Willow To: Kitt Diebold cc: "Jason J. Horton" , freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The only problem with it is their scripts limit what you can do. If anyone needs a FREE account on one of our servers please feel free to ask. We have gotten several responses and it seems there is a need for it. Send email to willow@tds.edu with a username, password, and full name in the message and the account will be created. Standard TOS/AUP apply. -- willow@tds.edu -- On Tue, 10 Nov 1998, Kitt Diebold wrote: > This is a free service that I ran across a while ago: > > Telnet to: sage.aspire.net > > username/password: ispguest > > -Kitt > > > >Sometimes ya need ping, or lynx or bing or a test mail account. > > > >the web traceroutes and looking glasses are great, but not always what ya > >need. > > > > -J > > > >On Mon, 9 Nov 1998, Ed Kern wrote: > >> Hi. > >> > >> Why not use various traceroute and looking glass websites around the 'net? > >> http://nitrous.digex.net/ is always a nice place to start, and there's a > >> good list of traceroute websites at > >> > >>http://dir.yahoo.com/Computers_and_Internet/Communications_and_Networking/Softwa > >>re/Networking/Utilities/Traceroute/ > >> > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > > > Connecticom, Inc. > (716) 546-3510 > http://www.connecticom.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 13:17:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA16266 for freebsd-isp-outgoing; Tue, 10 Nov 1998 13:17:41 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from aniwa.sky (p9-max8.wlg.ihug.co.nz [209.79.142.201]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA16251 for ; Tue, 10 Nov 1998 13:17:36 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.8/8.8.7) with SMTP id KAA11467; Wed, 11 Nov 1998 10:15:58 +1300 (NZDT) (envelope-from andrew@squiz.co.nz) Date: Wed, 11 Nov 1998 10:15:55 +1300 (NZDT) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: Bill Fumerola cc: "Jason J. Horton" , Ed Kern , freebsd-isp@FreeBSD.ORG Subject: Re: telnet account In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 10 Nov 1998, Bill Fumerola wrote: > On Tue, 10 Nov 1998, Jason J. Horton wrote: > > > Sometimes ya need ping, or lynx or bing or a test mail account. > > Lynx is _really_ not a diagnostic tool. telnet or socket is(if you're > trying to check if a web server is running). In which case all you need for testing is access to the odd socks service, not full shell accounts. Whatever. Check out www.nyx.net for a free shell account. Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 10 16:10:47 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA10815 for freebsd-isp-outgoing; Tue, 10 Nov 1998 16:10:47 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from amber.eaznet.com (amber.eaznet.com [216.19.20.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA10804 for ; Tue, 10 Nov 1998 16:10:36 -0800 (PST) (envelope-from eddie@eaznet.com) Received: from eaznet.com (admin.eaznet.com [216.19.20.16]) by amber.eaznet.com (8.8.7/8.8.5) with ESMTP id RAA01636 for ; Tue, 10 Nov 1998 17:08:58 -0700 (MST) Message-ID: <3648D3CD.72E1027C@eaznet.com> Date: Tue, 10 Nov 1998 17:01:17 -0700 From: Eddie Fry X-Mailer: Mozilla 4.06 [en] (Win95; U) MIME-Version: 1.0 To: isp@FreeBSD.ORG Subject: DPT Controller Kernel options Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know what these options do? I looked at simon-shapiro.org, but got a 404. options DPT_VERIFY_HINTR options DPT_TRACK_CCB_STATES options DPT_HANDLE TIMEOUTS options DPT_TIMEOUT_FACTOR=4 Thanks Eddie Fry EAZNet Internet Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 00:13:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA19203 for freebsd-isp-outgoing; Wed, 11 Nov 1998 00:13:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from siafu.iconnect.co.ke (upagraha.iconnect.co.ke [209.198.248.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA19195 for ; Wed, 11 Nov 1998 00:13:49 -0800 (PST) (envelope-from me@anand.org) Received: from arb by siafu.iconnect.co.ke with local (Exim 2.05 #3) id 0zdVP7-0005EK-00 for freebsd-isp@freebsd.org; Wed, 11 Nov 1998 11:13:29 +0300 Message-ID: <19981111111329.A6808@iconnect.co.ke> Date: Wed, 11 Nov 1998 11:13:29 +0300 From: Anand Buddhdev To: freebsd-isp@FreeBSD.ORG Subject: WAN cards in FreeBSD Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We're a small ISP in Kenya. Currently we only offer dial-in services with Livingston PM's. Now, we want to start offering digital leased lines to customers, as there's a need for them. We have been considering 2 possibilities: 1. Use dedicated hardware that will allow us to connect multiple 64K digital lines into one box. Perhaps some cisco product. 2. Use a PC with WAN cards in it, like those from Sangoma or ETINC. This would be a cheaper option, since we can use 486's and the cards are not too expensive (with Sangoma we would save on DTU costs as well). Is there anyone on the list who is using these cards, and if so, what is their experience. do they perform well? and ease of use? On the other hand, if there is anyone using dedicated hardware (eg. cisco), what is your experience?. Pointers to any relevant websites/documentation would be appreciated. PS. All the customers would be using 64K for now, since we don't yet have T1/E1 lines in Kenya. Perhaps in the coming months, we may get those too, if the phone compnay starts to offer higher speeds. Thanks, -- Anand To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 09:44:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA12428 for freebsd-isp-outgoing; Wed, 11 Nov 1998 09:44:32 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from amber.eaznet.com (amber.eaznet.com [216.19.20.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA12414 for ; Wed, 11 Nov 1998 09:44:29 -0800 (PST) (envelope-from eddie@eaznet.com) Received: from eaznet.com (admin.eaznet.com [216.19.20.16]) by amber.eaznet.com (8.8.7/8.8.5) with ESMTP id KAA11266 for ; Wed, 11 Nov 1998 10:42:59 -0700 (MST) Message-ID: <3649CAE0.6C95AF09@eaznet.com> Date: Wed, 11 Nov 1998 10:35:28 -0700 From: Eddie Fry X-Mailer: Mozilla 4.06 [en] (Win95; U) MIME-Version: 1.0 To: isp@FreeBSD.ORG Subject: Uncompress Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi again, I'm running 2.2.7 and 2.2.2 and am wondering why I get a core dump every time I try to uncompress Livingston Radius (ftp.livingston.com/pub/le/software/bsdi/radius21b6.tar.Z) I get a core dump. Any ideas? Anybody got a file that works? Thanks again, Eddie Fry EAZNet Internet Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 14:56:49 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA14441 for freebsd-isp-outgoing; Wed, 11 Nov 1998 14:56:49 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA14430 for ; Wed, 11 Nov 1998 14:56:47 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id OAA18935; Wed, 11 Nov 1998 14:56:28 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma018907; Wed Nov 11 14:56:16 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id OAA15354; Wed, 11 Nov 1998 14:56:15 -0800 (PST) From: Archie Cobbs Message-Id: <199811112256.OAA15354@bubba.whistle.com> Subject: Re: Uncompress In-Reply-To: <3649CAE0.6C95AF09@eaznet.com> from Eddie Fry at "Nov 11, 98 10:35:28 am" To: eddie@eaznet.com (Eddie Fry) Date: Wed, 11 Nov 1998 14:56:15 -0800 (PST) Cc: isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Eddie Fry writes: > I'm running 2.2.7 and 2.2.2 and am wondering why I get a core dump every > time I try to uncompress Livingston Radius > (ftp.livingston.com/pub/le/software/bsdi/radius21b6.tar.Z) I get a core > dump. Any ideas? Anybody got a file that works? I just tried it and it worked fine.. on FreeBSD 2.2.7-STABLE. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 19:08:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA12993 for freebsd-isp-outgoing; Wed, 11 Nov 1998 19:08:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cbn.net.id (portland.cbn.net.id [202.158.3.4]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id TAA12988 for ; Wed, 11 Nov 1998 19:08:40 -0800 (PST) (envelope-from lukman.salim@usa.net) Received: (qmail 13794 invoked from network); 12 Nov 1998 03:17:38 -0000 Received: from ip28-97.cbn.net.id (HELO int-server.indonusa.co.id) (202.158.28.97) by portland.cbn.net.id with SMTP; 12 Nov 1998 03:17:37 -0000 Received: from usa.net (lukman.indonusa.co.id [192.168.1.9]) by int-server.indonusa.co.id (8.8.7/8.7.3) with ESMTP id KAA21621 for ; Thu, 12 Nov 1998 10:13:42 +0700 Message-ID: <364A4EC5.EBDD266B@usa.net> Date: Thu, 12 Nov 1998 09:58:13 +0700 From: Lukman Salim X-Mailer: Mozilla 4.06 [en] (Win98; I) MIME-Version: 1.0 To: FreeBSD-isp Subject: Using NAT for ISP customer Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I will be starting a cable-modem based ISP in the near future. Because of the potential concurrent online user among the cable modem user would be a lot greater than traditional ISP, I'm thinking of using local IP with NAT for those who don't need real IP. Has anyone had any experience with such a scheme using FreeBSD's natd? I know that some apps would not run, but does the majority of Internet user use such software? Thanks in advance! Lukman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 19:18:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA14237 for freebsd-isp-outgoing; Wed, 11 Nov 1998 19:18:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from phoenix (phoenix.aye.net [206.185.8.134]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id TAA14232 for ; Wed, 11 Nov 1998 19:18:42 -0800 (PST) (envelope-from ratbert@phoenix.aye.net) Received: (qmail 26428 invoked by uid 2800); 12 Nov 1998 03:16:45 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 12 Nov 1998 03:16:45 -0000 Date: Wed, 11 Nov 1998 22:16:44 -0500 (EST) From: To: Eddie Fry cc: isp@FreeBSD.ORG Subject: Re: Uncompress In-Reply-To: <3649CAE0.6C95AF09@eaznet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Try a md5 on it and see if you get this: MD5 (radius21b6.tar.Z) = 711940e233277a6c95f0960f3b421923 - Barrett On Wed, 11 Nov 1998, Eddie Fry wrote: > Hi again, > > I'm running 2.2.7 and 2.2.2 and am wondering why I get a core dump every > time I try to uncompress Livingston Radius > (ftp.livingston.com/pub/le/software/bsdi/radius21b6.tar.Z) I get a core > dump. Any ideas? Anybody got a file that works? > > Thanks again, > > Eddie Fry > EAZNet Internet Services > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 19:43:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA16932 for freebsd-isp-outgoing; Wed, 11 Nov 1998 19:43:54 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dream.future.net (future.net [204.130.134.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA16924 for ; Wed, 11 Nov 1998 19:43:52 -0800 (PST) (envelope-from tomthai@future.net) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.6/8.8.6) with SMTP id VAA17882; Wed, 11 Nov 1998 21:34:40 -0600 (CST) Date: Wed, 11 Nov 1998 21:34:39 -0600 (CST) From: "Tom T. Thai" To: Lukman Salim cc: FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364A4EC5.EBDD266B@usa.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org just curious, how are you getting the cable lines? .............. .................................... Thomas T. Thai Infomedia Interactive Communications tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 On Thu, 12 Nov 1998, Lukman Salim wrote: > Hi, > > I will be starting a cable-modem based ISP in the near future. Because > of the potential concurrent online user among the cable modem user would > be a lot greater than traditional ISP, I'm thinking of using local IP > with NAT for those who don't need real IP. Has anyone had any experience > with such a scheme using FreeBSD's natd? I know that some apps would not > run, but does the majority of Internet user use such software? > > Thanks in advance! > > Lukman > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 20:04:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA19034 for freebsd-isp-outgoing; Wed, 11 Nov 1998 20:04:36 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gamefish.pcola.gulf.net (gamefish.pcola.gulf.net [198.69.72.22]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA19027 for ; Wed, 11 Nov 1998 20:04:34 -0800 (PST) (envelope-from psalzman@gamefish.pcola.gulf.net) Received: from localhost (psalzman@localhost) by gamefish.pcola.gulf.net (8.9.1/8.9.1) with ESMTP id EAA01674; Thu, 12 Nov 1998 04:04:12 GMT (envelope-from psalzman@gamefish.pcola.gulf.net) Date: Thu, 12 Nov 1998 04:04:12 +0000 (GMT) From: Phillip Salzman To: Lukman Salim cc: FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364A4EC5.EBDD266B@usa.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org natd was designed for cable modems... this should work.. as for software, you'll have to play with it to allow: realaudio, quake, quake2, etc. On Thu, 12 Nov 1998, Lukman Salim wrote: > Hi, > > I will be starting a cable-modem based ISP in the near future. Because > of the potential concurrent online user among the cable modem user would > be a lot greater than traditional ISP, I'm thinking of using local IP > with NAT for those who don't need real IP. Has anyone had any experience > with such a scheme using FreeBSD's natd? I know that some apps would not > run, but does the majority of Internet user use such software? > > Thanks in advance! > > Lukman > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 20:13:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA20135 for freebsd-isp-outgoing; Wed, 11 Nov 1998 20:13:35 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cbn.net.id (portland.cbn.net.id [202.158.3.4]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id UAA20128 for ; Wed, 11 Nov 1998 20:13:31 -0800 (PST) (envelope-from lukman.salim@usa.net) Received: (qmail 14940 invoked from network); 12 Nov 1998 04:22:30 -0000 Received: from ip28-97.cbn.net.id (HELO int-server.indonusa.co.id) (202.158.28.97) by portland.cbn.net.id with SMTP; 12 Nov 1998 04:22:30 -0000 Received: from usa.net (lukman.indonusa.co.id [192.168.1.9]) by int-server.indonusa.co.id (8.8.7/8.7.3) with ESMTP id LAA21804; Thu, 12 Nov 1998 11:18:46 +0700 Message-ID: <364A5E05.E94B00A2@usa.net> Date: Thu, 12 Nov 1998 11:03:17 +0700 From: Lukman Salim X-Mailer: Mozilla 4.06 [en] (Win98; I) MIME-Version: 1.0 To: "Tom T. Thai" CC: FreeBSD-isp Subject: Re: Using NAT for ISP customer References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hmm, I don't get your question. It's a standard Hybrid Fiber Coax implementation. Currently we will deploy mainly in residential area. We'll be using an MCNS (an industry standard) or similar system. Didn't mention it before, we're in Jakarta, Indonesia. The fibers are from the state telco. Sorry for the diversion. BTW, because of the NIC that I use (3c905b: the xl driver) I had to use a SNAP release kernel. Is it safe to use on a production server? Any suggestions? Tom T. Thai wrote: > > just curious, how are you getting the cable lines? > > .............. .................................... > Thomas T. Thai Infomedia Interactive Communications > tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 > > On Thu, 12 Nov 1998, Lukman Salim wrote: > > > Hi, > > > > I will be starting a cable-modem based ISP in the near future. Because > > of the potential concurrent online user among the cable modem user would > > be a lot greater than traditional ISP, I'm thinking of using local IP > > with NAT for those who don't need real IP. Has anyone had any experience > > with such a scheme using FreeBSD's natd? I know that some apps would not > > run, but does the majority of Internet user use such software? > > > > Thanks in advance! > > > > Lukman > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 20:20:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA20965 for freebsd-isp-outgoing; Wed, 11 Nov 1998 20:20:39 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dream.future.net (future.net [204.130.134.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA20960 for ; Wed, 11 Nov 1998 20:20:36 -0800 (PST) (envelope-from tomthai@future.net) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.6/8.8.6) with SMTP id WAA18478; Wed, 11 Nov 1998 22:11:24 -0600 (CST) Date: Wed, 11 Nov 1998 22:11:24 -0600 (CST) From: "Tom T. Thai" To: Lukman Salim cc: FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364A5E05.E94B00A2@usa.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org you mean you are laying in your own coax to the residential areas? Impressive ;-) I wonder if we can do that in the US yet ;-) Personaly I wouldn't use a snap for production.. but that's just me. On Thu, 12 Nov 1998, Lukman Salim wrote: > Hmm, I don't get your question. It's a standard Hybrid Fiber Coax > implementation. Currently we will deploy mainly in residential area. > We'll be using an MCNS (an industry standard) or similar system. > > Didn't mention it before, we're in Jakarta, Indonesia. The fibers are > from the state telco. Sorry for the diversion. > > BTW, because of the NIC that I use (3c905b: the xl driver) I had to use > a SNAP release kernel. Is it safe to use on a production server? Any > suggestions? > > > Tom T. Thai wrote: > > > > just curious, how are you getting the cable lines? > > > > .............. .................................... > > Thomas T. Thai Infomedia Interactive Communications > > tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 > > > > On Thu, 12 Nov 1998, Lukman Salim wrote: > > > > > Hi, > > > > > > I will be starting a cable-modem based ISP in the near future. Because > > > of the potential concurrent online user among the cable modem user would > > > be a lot greater than traditional ISP, I'm thinking of using local IP > > > with NAT for those who don't need real IP. Has anyone had any experience > > > with such a scheme using FreeBSD's natd? I know that some apps would not > > > run, but does the majority of Internet user use such software? > > > > > > Thanks in advance! > > > > > > Lukman > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-isp" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 11 21:30:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA27576 for freebsd-isp-outgoing; Wed, 11 Nov 1998 21:30:04 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.nostrum.com (nostrum-gw.cy-net.net [206.28.0.58]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA27559 for ; Wed, 11 Nov 1998 21:30:02 -0800 (PST) (envelope-from pckizer@nostrum.com) Received: from mail.nostrum.com (pckizer@localhost [127.0.0.1]) by mail.nostrum.com (8.9.0/8.9.0) with ESMTP id XAA02700; Wed, 11 Nov 1998 23:29:28 -0600 From: Philip Kizer To: Anand Buddhdev cc: freebsd-isp@FreeBSD.ORG Subject: Re: WAN cards in FreeBSD In-reply-to: Your message of "Wed, 11 Nov 1998 11:13:29 +0300." <19981111111329.A6808@iconnect.co.ke> Date: Wed, 11 Nov 1998 23:29:28 -0600 Message-ID: <2696.910848568@mail.nostrum.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Anand Buddhdev wrote: >2. Use a PC with WAN cards in it, like those from Sangoma or ETINC. This >would be a cheaper option, since we can use 486's and the cards are not too >expensive (with Sangoma we would save on DTU costs as well). I use a Sangoma S508 with great success. Unfortunately it's still running Linux as Sangoma did not have FreeBSD drivers ~3 years ago (heh, yeah, right) when I started using it. I was hoping to see something by December after their announcement of the PPP driver for their boards over the summer; but, at the moment I cannot recommend them based only on the fact that their domainname is "On Hold" with the NIC, and I cannot get any info until business hours tomorrow. -philip To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 00:39:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA12402 for freebsd-isp-outgoing; Thu, 12 Nov 1998 00:39:44 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from iaehv.IAEhv.nl (iaehv.IAEhv.nl [194.151.64.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA12396; Thu, 12 Nov 1998 00:39:40 -0800 (PST) (envelope-from wjw@surf.IAE.nl) Received: from surf.IAE.nl (root@surf.IAEhv.nl [194.151.66.2]) by iaehv.IAEhv.nl (8.8.7/8.8.7) with ESMTP id JAA06961; Thu, 12 Nov 1998 09:39:21 +0100 (CET) Received: (from wjw@localhost) by surf.IAE.nl (8.8.7/8.8.7) id JAA01253; Thu, 12 Nov 1998 09:39:20 +0100 (MET) From: Willem Jan Withagen Message-Id: <199811120839.JAA01253@surf.IAE.nl> Subject: VPN, an off topic question To: isp@FreeBSD.ORG Date: Thu, 12 Nov 1998 09:39:20 +0100 (MET) Cc: questions@FreeBSD.ORG Reply-To: wjw@IAEhv.nl X-NCC-RegID: nl.iae X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I'm looking for software which will let me create a VPN over open infrastructure, eg. cable, post, isdn, ... What I'd like is an extra layer on the TCP/IP stack for win'95 systems, which would give the client a second IP-number for access to the inarts of the company LAN. This would be through an encrypted tunnel over the already build public IP connection. Termination would be on a VPN-server on the company LAN, or at the firewall. I could be a NT-system, but prefably a FreeBSD (Linux) box. I'd prefer it on a seperate server, since I believe in keeping functions apart, and I'd rather not combina a VPN-encryption server and a firewall. - Does anybody use commecial software which can do this? Thanx, --Willem Jan -- Internet Access Eindhoven BV., voice: +31-40-2 393 393, data: +31-40-2 606 606 P.O. 928, 5600 AX Eindhoven, The Netherlands Full Internet connectivity for only fl 12.95 a month. Call now, and login as 'new'. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 05:01:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA05364 for freebsd-isp-outgoing; Thu, 12 Nov 1998 05:01:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from www.stv.ee (www.stv.ee [195.50.193.34]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA04981 for ; Thu, 12 Nov 1998 04:56:55 -0800 (PST) (envelope-from dima@stv.ee) Received: from stv.ee (dima [192.168.196.132]) by www.stv.ee (8.8.8/8.8.8) with ESMTP id PAA19447; Thu, 12 Nov 1998 15:54:02 GMT (envelope-from dima@stv.ee) Message-ID: <364ADB44.7C02FC70@stv.ee> Date: Thu, 12 Nov 1998 14:57:40 +0200 From: Werewolf X-Mailer: Mozilla 4.5 [en] (Win95; I) X-Accept-Language: en MIME-Version: 1.0 To: Lukman Salim CC: FreeBSD-isp Subject: Re: Using NAT for ISP customer References: <364A4EC5.EBDD266B@usa.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yes . We are using such approach with full success and no problems. LANcity cable modems, FreeBSD or IProute. BTW Quake doesn't work but Quake II ok. WBR. Lukman Salim wrote: > Hi, > > I will be starting a cable-modem based ISP in the near future. Because > of the potential concurrent online user among the cable modem user would > be a lot greater than traditional ISP, I'm thinking of using local IP > with NAT for those who don't need real IP. Has anyone had any experience > with such a scheme using FreeBSD's natd? I know that some apps would not > run, but does the majority of Internet user use such software? > > Thanks in advance! > > Lukman > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- ------------------------------------------------------------- Dmitry Baranov Phone: +(372) 6 352 002 STV Internet Fax: +(372) 6 380 355 Koorti 18 Mobile: +(372) 5 012 825 Tallinn, Estonia ----------snake looks like rope till you get her tied-------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 05:53:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA08836 for freebsd-isp-outgoing; Thu, 12 Nov 1998 05:53:25 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from amber.eaznet.com (amber.eaznet.com [216.19.20.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA08816 for ; Thu, 12 Nov 1998 05:53:20 -0800 (PST) (envelope-from eddie@eaznet.com) Received: from eaznet.com (as1-08.eaznet.com [216.19.20.212]) by amber.eaznet.com (8.8.8/8.8.8) with ESMTP id GAA00274; Thu, 12 Nov 1998 06:53:39 -0700 (MST) (envelope-from eddie@eaznet.com) Message-ID: <364AE626.770C2575@eaznet.com> Date: Thu, 12 Nov 1998 06:44:06 -0700 From: Eddie Fry X-Mailer: Mozilla 4.06 [en] (Win95; U) MIME-Version: 1.0 To: Archie Cobbs CC: isp@FreeBSD.ORG Subject: Re: Uncompress References: <199811112256.OAA15354@bubba.whistle.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks to all. I'm an idiot...didn't transfer in binary. Eddie Archie Cobbs wrote: > Eddie Fry writes: > > I'm running 2.2.7 and 2.2.2 and am wondering why I get a core dump every > > time I try to uncompress Livingston Radius > > (ftp.livingston.com/pub/le/software/bsdi/radius21b6.tar.Z) I get a core > > dump. Any ideas? Anybody got a file that works? > > I just tried it and it worked fine.. on FreeBSD 2.2.7-STABLE. > > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com -- Eddie Fry EAZNet Internet Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 06:46:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA13099 for freebsd-isp-outgoing; Thu, 12 Nov 1998 06:46:10 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA13061 for ; Thu, 12 Nov 1998 06:46:06 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA207171875; Thu, 12 Nov 1998 09:44:35 -0500 Date: Thu, 12 Nov 1998 09:44:35 -0500 (EST) From: Bill Fumerola To: Lukman Salim Cc: FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364A4EC5.EBDD266B@usa.net> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Lukman Salim wrote: > I will be starting a cable-modem based ISP in the near future. Because > of the potential concurrent online user among the cable modem user would > be a lot greater than traditional ISP, I'm thinking of using local IP > with NAT for those who don't need real IP. Has anyone had any experience > with such a scheme using FreeBSD's natd? I know that some apps would not > run, but does the majority of Internet user use such software? If you have the IPs, you really should run public IP, though some may claim that using nat provides 'protection' or such, the same things can be achieved with a firewall. On the other hand, I run an office of 50+ clients through nat without a problem or large load on a p75. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 07:45:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA19600 for freebsd-isp-outgoing; Thu, 12 Nov 1998 07:45:26 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dream.future.net (future.net [204.130.134.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA19595 for ; Thu, 12 Nov 1998 07:45:24 -0800 (PST) (envelope-from tomthai@future.net) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.6/8.8.6) with SMTP id JAA06126; Thu, 12 Nov 1998 09:36:02 -0600 (CST) Date: Thu, 12 Nov 1998 09:36:01 -0600 (CST) From: "Tom T. Thai" To: Werewolf cc: Lukman Salim , FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364ADB44.7C02FC70@stv.ee> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org how about icq and such .............. .................................... Thomas T. Thai Infomedia Interactive Communications tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 On Thu, 12 Nov 1998, Werewolf wrote: > Yes . We are using such approach with full success and no problems. > LANcity cable modems, FreeBSD or IProute. > > BTW Quake doesn't work but Quake II ok. > > WBR. > > Lukman Salim wrote: > > > Hi, > > > > I will be starting a cable-modem based ISP in the near future. Because > > of the potential concurrent online user among the cable modem user would > > be a lot greater than traditional ISP, I'm thinking of using local IP > > with NAT for those who don't need real IP. Has anyone had any experience > > with such a scheme using FreeBSD's natd? I know that some apps would not > > run, but does the majority of Internet user use such software? > > > > Thanks in advance! > > > > Lukman > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > -- > ------------------------------------------------------------- > Dmitry Baranov Phone: +(372) 6 352 002 > STV Internet Fax: +(372) 6 380 355 > Koorti 18 Mobile: +(372) 5 012 825 > Tallinn, Estonia > ----------snake looks like rope till you get her tied-------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 08:16:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA23950 for freebsd-isp-outgoing; Thu, 12 Nov 1998 08:16:12 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gamefish.pcola.gulf.net (gamefish.pcola.gulf.net [198.69.72.22]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA23876 for ; Thu, 12 Nov 1998 08:15:50 -0800 (PST) (envelope-from psalzman@gamefish.pcola.gulf.net) Received: from localhost (psalzman@localhost) by gamefish.pcola.gulf.net (8.9.1/8.9.1) with ESMTP id QAA04037; Thu, 12 Nov 1998 16:15:24 GMT (envelope-from psalzman@gamefish.pcola.gulf.net) Date: Thu, 12 Nov 1998 16:15:23 +0000 (GMT) From: Phillip Salzman To: Lukman Salim cc: "Tom T. Thai" , FreeBSD-isp Subject: Re: Using NAT for ISP customer In-Reply-To: <364A5E05.E94B00A2@usa.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Don't use -SNAP, use -RELEASE --- its a little better than the -SNAPS -- Phillip Salzman On Thu, 12 Nov 1998, Lukman Salim wrote: > Hmm, I don't get your question. It's a standard Hybrid Fiber Coax > implementation. Currently we will deploy mainly in residential area. > We'll be using an MCNS (an industry standard) or similar system. > > Didn't mention it before, we're in Jakarta, Indonesia. The fibers are > from the state telco. Sorry for the diversion. > > BTW, because of the NIC that I use (3c905b: the xl driver) I had to use > a SNAP release kernel. Is it safe to use on a production server? Any > suggestions? > > > Tom T. Thai wrote: > > > > just curious, how are you getting the cable lines? > > > > .............. .................................... > > Thomas T. Thai Infomedia Interactive Communications > > tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 > > > > On Thu, 12 Nov 1998, Lukman Salim wrote: > > > > > Hi, > > > > > > I will be starting a cable-modem based ISP in the near future. Because > > > of the potential concurrent online user among the cable modem user would > > > be a lot greater than traditional ISP, I'm thinking of using local IP > > > with NAT for those who don't need real IP. Has anyone had any experience > > > with such a scheme using FreeBSD's natd? I know that some apps would not > > > run, but does the majority of Internet user use such software? > > > > > > Thanks in advance! > > > > > > Lukman > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 09:44:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA01629 for freebsd-isp-outgoing; Thu, 12 Nov 1998 09:44:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA01624; Thu, 12 Nov 1998 09:44:52 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id JAA28563; Thu, 12 Nov 1998 09:44:32 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma028559; Thu Nov 12 09:44:04 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id JAA19212; Thu, 12 Nov 1998 09:44:04 -0800 (PST) From: Archie Cobbs Message-Id: <199811121744.JAA19212@bubba.whistle.com> Subject: Re: VPN, an off topic question In-Reply-To: <199811120839.JAA01253@surf.IAE.nl> from Willem Jan Withagen at "Nov 12, 98 09:39:20 am" To: wjw@IAEhv.nl Date: Thu, 12 Nov 1998 09:44:04 -0800 (PST) Cc: isp@FreeBSD.ORG, questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Willem Jan Withagen writes: > I'm looking for software which will let me create a VPN over open > infrastructure, eg. cable, post, isdn, ... > > What I'd like is an extra layer on the TCP/IP stack for win'95 systems, > which would give the client a second IP-number for access to the inarts of > the company LAN. This would be through an encrypted tunnel over the already > build public IP connection. > > Termination would be on a VPN-server on the company LAN, or at the firewall. > I could be a NT-system, but prefably a FreeBSD (Linux) box. This is what PPTP does.. it's like PPP where you replace the word "modem" with the word "Internet". M$oft sells client and server software (the clients are free -- download "microsoft dial-up networking 1.3"). I don't know of any freely available FreeBSD software for doing PPTP. Using an NT server is proabaly the quickest way to get it working. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 09:49:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA02456 for freebsd-isp-outgoing; Thu, 12 Nov 1998 09:49:59 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hindenburg.eboai.org (hindenburg.eboai.org [205.181.254.190]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA02438; Thu, 12 Nov 1998 09:49:54 -0800 (PST) (envelope-from jtn@hindenburg.eboai.org) Received: (from jtn@localhost) by hindenburg.eboai.org (8.9.1/8.9.0) id MAA09715; Thu, 12 Nov 1998 12:49:35 -0500 (EST) Message-ID: <19981112124934.A9667@hindenburg.eboai.org> Date: Thu, 12 Nov 1998 12:49:34 -0500 From: "Jason T. Nelson" To: isp@FreeBSD.ORG Cc: questions@FreeBSD.ORG Subject: Re: VPN, an off topic question References: <199811120839.JAA01253@surf.IAE.nl> <199811121744.JAA19212@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i In-Reply-To: <199811121744.JAA19212@bubba.whistle.com>; from Archie Cobbs on Thu, Nov 12, 1998 at 09:44:04AM -0800 X-Url: http://www.eboai.org/~jtn/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Archie Cobbs (archie@whistle.com) scribbled endlessly: > This is what PPTP does.. it's like PPP where you replace the word > "modem" with the word "Internet". M$oft sells client and server software > (the clients are free -- download "microsoft dial-up networking 1.3"). > > I don't know of any freely available FreeBSD software for doing PPTP. > Using an NT server is proabaly the quickest way to get it working. Ugh. PPTP is riddled with holes; search for "PPTP security" on any search engine to find out why. Right now, I'm using the KAME IPsec stack to connect two FreeBSD boxes using IPsec over IPv4. You get an additional benefit of getting IPv4 over IPv4 (IPIP) tunneling as well if you don't want the overhead of IPsec. -- Jason T. Nelson BOFH Extraordiaire http://www.eboai.org/~jtn/ disclaimer: My opinions are my own. Don't bother my employer about them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 11:09:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA09497 for freebsd-isp-outgoing; Thu, 12 Nov 1998 11:09:22 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from emu.sourcee.com (emu.sourcee.com [199.201.159.173]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA09492; Thu, 12 Nov 1998 11:09:17 -0800 (PST) (envelope-from nrice@emu.sourcee.com) Received: (from nrice@localhost) by emu.sourcee.com (8.9.1/8.9.1) id OAA23964; Thu, 12 Nov 1998 14:07:50 -0500 (EST) Message-ID: <19981112140749.A23925@emu.sourcee.com> Date: Thu, 12 Nov 1998 14:07:49 -0500 From: "Norman C. Rice" To: Archie Cobbs , wjw@IAEhv.nl Cc: isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question References: <199811120839.JAA01253@surf.IAE.nl> <199811121744.JAA19212@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <199811121744.JAA19212@bubba.whistle.com>; from Archie Cobbs on Thu, Nov 12, 1998 at 09:44:04AM -0800 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Nov 12, 1998 at 09:44:04AM -0800, Archie Cobbs wrote: > Willem Jan Withagen writes: > > I'm looking for software which will let me create a VPN over open > > infrastructure, eg. cable, post, isdn, ... > > > > What I'd like is an extra layer on the TCP/IP stack for win'95 systems, > > which would give the client a second IP-number for access to the inarts of > > the company LAN. This would be through an encrypted tunnel over the already > > build public IP connection. > > > > Termination would be on a VPN-server on the company LAN, or at the firewall. > > I could be a NT-system, but prefably a FreeBSD (Linux) box. > > This is what PPTP does.. it's like PPP where you replace the word > "modem" with the word "Internet". M$oft sells client and server software > (the clients are free -- download "microsoft dial-up networking 1.3"). > > I don't know of any freely available FreeBSD software for doing PPTP. > Using an NT server is proabaly the quickest way to get it working. You may want to take a look at the following URL before using NT's PPTP implementation. http://www.counterpane.com/pptp.html -- Regards, Norman C. Rice, Jr. > > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 11:13:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA09903 for freebsd-isp-outgoing; Thu, 12 Nov 1998 11:13:04 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from biggusdiskus.flyingfox.com (biggusdiskus.flyingfox.com [205.162.1.28]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA09883 for ; Thu, 12 Nov 1998 11:13:02 -0800 (PST) (envelope-from jas@flyingfox.com) Received: (from jas@localhost) by biggusdiskus.flyingfox.com (8.8.8/8.8.5) id MAA02683; Thu, 12 Nov 1998 12:06:08 -0800 (PST) Date: Thu, 12 Nov 1998 12:06:08 -0800 (PST) From: Jim Shankland Message-Id: <199811122006.MAA02683@biggusdiskus.flyingfox.com> To: archie@whistle.com, wjw@IAEhv.nl Subject: Re: VPN, an off topic question Cc: isp@FreeBSD.ORG In-Reply-To: <199811121744.JAA19212@bubba.whistle.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > This is what PPTP does.. it's like PPP where you replace the word > "modem" with the word "Internet". M$oft sells client and server > software (the clients are free -- download "microsoft dial-up > networking 1.3"). But read http://www.counterpane.com/pptp.html first. Jim Shankland NLynx Systems, Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 11:39:18 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA12504 for freebsd-isp-outgoing; Thu, 12 Nov 1998 11:39:18 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from zeus.tds.edu (zeus.tds.edu [38.149.131.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA12499 for ; Thu, 12 Nov 1998 11:39:13 -0800 (PST) (envelope-from willow@tds.edu) Received: from zeus.tds.edu (willow@zeus.tds.edu [38.149.131.15]) by zeus.tds.edu (8.9.1a/8.9.1a) with ESMTP id OAA15837 for ; Thu, 12 Nov 1998 14:38:44 -0500 (EST) Date: Thu, 12 Nov 1998 14:38:43 -0500 (EST) From: Willow To: freebsd-isp@FreeBSD.ORG Subject: tcpd Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ** Note: I originally posted this to freebsd-questions and didnt get any repliess. -- After reconfiguring my /etc/inetd.conf file to make use of tcp_wrappers (tcpd) I get the following every once and awhile in /var/log/messages and to /dev/console: identd[pid]: warning: can't get client address: socket is not connected My ident server is running and remote sites can tap it, and it seems to be working locally but I'm stumped. Here's a copy of the /etc/inetd.conf file after messing with it. Thanks for the help! ------ # # Internet server configuration database # # @(#)inetd.conf 5.4 (Berkeley) 6/30/90 # ftp stream tcp nowait root /usr/local/libexec/tcpd ftpd -d -l -l -S telnet stream tcp nowait root /usr/local/libexec/tcpd telnetd -U shell stream tcp nowait root /usr/local/libexec/tcpd rshd -a -l -L login stream tcp nowait root /usr/local/libexec/tcpd rlogind -a -l finger stream tcp nowait nobody /usr/local/libexec/tcpd fingerd -l -s exec stream tcp nowait root /usr/local/libexec/tcpd rexecd uucpd stream tcp nowait root /usr/local/libexec/tcpd uucpd #nntp stream tcp nowait usenet /usr/local/libexec/tcpd nntpd comsat dgram udp wait root /usr/local/libexec/tcpd comsat ntalk dgram udp wait root /usr/local/libexec/tcpd ntalkd tftp dgram udp wait nobody /usr/local/libexec/tcpd tftpd -l -n -s /tftboot # bootps dgram udp wait root /usr/local/libexec/tcpd bootpd # # "Small servers" -- used to be standard on, but we're more conservative # about things due to Internet security concerns. Only turn on what you # need. # #daytime stream tcp nowait root internal #daytime dgram udp wait root internal #time stream tcp nowait root internal #time dgram udp wait root internal #echo stream tcp nowait root internal #echo dgram udp wait root internal #discard stream tcp nowait root internal #discard dgram udp wait root internal #chargen stream tcp nowait root internal #chargen dgram udp wait root internal # # Kerberos authenticated services # #klogin stream tcp nowait root /usr/local/libexec/tcpd rlogind -k #eklogin stream tcp nowait root /usr/local/libexec/tcpd rlogind -k -x #kshell stream tcp nowait root /usr/local/libexec/tcpd rshd -k #rkinit stream tcp nowait root /usr/local/libexec/tcpd rkinitd # # Services run ONLY on the Kerberos server # #krbupdate stream tcp nowait root /usr/local/libexec/tcpd registerd #kpasswd stream tcp nowait root /usr/local/libexec/tcpd kpasswdd # # RPC based services (you MUST have portmapper running to use these) # rstatd/1-3 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.rstatd rusersd/1-2 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.rusersd #walld/1 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.rwalld #pcnfsd/1-2 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.pcnfsd #rquotad/1 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.rquotad #sprayd/1 dgram rpc/udp wait root /usr/local/libexec/tcpd rpc.sprayd # # example entry for the optional pop3 server # pop3 stream tcp nowait root /usr/local/libexec/tcpd /usr/local/libexec/popper -d -s -b /var/spool/bulletin # # example entry for the optional imap4 server # imap4 stream tcp nowait root /usr/local/libexec/tcpd /usr/local/libexec/imapd # # example entry for the optional ident server # ident stream tcp wait root /usr/local/libexec/tcpd /usr/local/sbin/identd -l -w -t120 # # example entry for the optional qmail MTA # #smtp stream tcp nowait qmaild /usr/local/libexec/tcpd /var/qmail/bin/tcp-env /var/qmail/bin/qmail-smtpd # # Enable the following two entries to enable samba startup from inetd # (from the Samba documentation). # #netbios-ssn stream tcp nowait root /usr/local/libexec/tcpd /usr/local/bin/smbd #netbios-ns dgram udp wait root /usr/local/libexec/tcpd /usr/local/sbin/nmbd #saft stream tcp nowait root /usr/local/libexec/tcpd /usr/local/sbin/sendfiled ----- -- willow@tds.edu -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 12:20:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA17128 for freebsd-isp-outgoing; Thu, 12 Nov 1998 12:20:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail1.dcomm.net (mail1.dcomm.net [209.63.174.16]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA17121 for ; Thu, 12 Nov 1998 12:20:51 -0800 (PST) (envelope-from terry@dcomm.net) Received: from terry ([209.63.174.33]) by mail1.dcomm.net (Post.Office MTA v3.1 release PO205e ID# DIGITALCOMMUNICATIONS-1997LS) with SMTP id AAA154 for ; Thu, 12 Nov 1998 11:49:58 -0800 Message-Id: <4.1.19981112121648.00a813c0@mail1.dcomm.net> X-Sender: mail@mail.windjammer.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Thu, 12 Nov 1998 12:21:44 -0800 To: freebsd-isp@FreeBSD.ORG From: terry@dcomm.net (Terry Ewing) Subject: IP masqurading Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org People here are thinking of putting our co-located computers behind a FreeBSD IPFW firewall. At the same time they were thinking of giving the co-located servers 192.168.x.x IP's so they can be removed if we go through renumbering. We'd just masquerade the real IP to the 192.168 IP in the firewall. Can anyone arm me with a good reason why we shouldn't do this? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:05:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA21353 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:05:26 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shemp.palomine.net (shemp.palomine.net [205.198.88.200]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id NAA21344 for ; Thu, 12 Nov 1998 13:05:23 -0800 (PST) (envelope-from cjohnson@palomine.net) Received: (qmail 17106 invoked by uid 1000); 12 Nov 1998 21:05:00 -0000 Message-ID: <19981112160500.A17032@palomine.net> Date: Thu, 12 Nov 1998 16:05:00 -0500 From: Chris Johnson To: Willow , freebsd-isp@FreeBSD.ORG Subject: Re: tcpd References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i In-Reply-To: ; from Willow on Thu, Nov 12, 1998 at 02:38:43PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, Nov 12, 1998 at 02:38:43PM -0500, Willow wrote: > ** Note: I originally posted this to freebsd-questions and didnt get any > repliess. > > -- > After reconfiguring my /etc/inetd.conf file to make use of tcp_wrappers > (tcpd) I get the following every once and awhile in /var/log/messages and > to /dev/console: > > identd[pid]: warning: can't get client address: socket is not connected > > My ident server is running and remote sites can tap it, and it seems to be > working locally but I'm stumped. Here's a copy of the /etc/inetd.conf > file after messing with it. I don't think it has anything to do with inetd, and I don't think it's anything to worry about. It just means that someone connected to your identd service, and when identd called getpeername() on the socket it was no longer connected, so getpeername() returned an error of ENOTCONN. You'll see this if someone is port scanning you, making connections to ports and then immediately dropping them. Try doing a port scan on yourself and see if that message pops up. Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:09:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA21834 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:09:39 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from localhost.ipo.att.com (gate.geoplex.com [135.197.57.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA21822 for ; Thu, 12 Nov 1998 13:09:35 -0800 (PST) (envelope-from davet@localhost.ipo.att.com) Received: from localhost (localhost [127.0.0.1]) by localhost.ipo.att.com (8.9.1/8.8.4) with ESMTP id NAA01216; Thu, 12 Nov 1998 13:09:03 -0800 (PST) X-Mailer: exmh version 2.0.2 2/24/98 From: "Dave Truesdell" To: Willow Cc: freebsd-isp@FreeBSD.ORG Reply-To: dtruesdell@att.com Subject: Re: tcpd In-reply-to: Your message of "Thu, 12 Nov 1998 14:38:43 EST." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 12 Nov 1998 13:09:03 -0800 Message-ID: <1213.910904943@localhost> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Willow wrote: >After reconfiguring my /etc/inetd.conf file to make use of tcp_wrappers >(tcpd) I get the following every once and awhile in /var/log/messages and >to /dev/console: > >identd[pid]: warning: can't get client address: socket is not connected It looks like you've overdone things. Tcp Wrappers only work for TCP services, they don't work for UDP or RPC based services. Also, wrapping identd is probably a bad idea as tcpd may need to query it, is the rules require the information. -- T.T.F.N., Dave Truesdell / dtruesdell@att.com/davet@ttfn.com / UNIX system administrator To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:16:23 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA22639 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:16:23 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA22615; Thu, 12 Nov 1998 13:16:15 -0800 (PST) (envelope-from spork@super-g.com) Received: from localhost (localhost [127.0.0.1]) by super-g.inch.com (8.8.8/8.8.5) with SMTP id QAA11548; Thu, 12 Nov 1998 16:10:51 -0500 (EST) Date: Thu, 12 Nov 1998 16:10:51 -0500 (EST) From: spork X-Sender: spork@super-g.inch.com To: "Jason T. Nelson" cc: isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question In-Reply-To: <19981112124934.A9667@hindenburg.eboai.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Has anyone seen a good "VPN FAQ" for FBSD? Any step-by-step info for the KAME IPSec implementation? Charles --- Charles Sprickman spork@super-g.com --- "...there's no idea that's so good you can't ruin it with a few well-placed idiots." On Thu, 12 Nov 1998, Jason T. Nelson wrote: > Archie Cobbs (archie@whistle.com) scribbled endlessly: > > This is what PPTP does.. it's like PPP where you replace the word > > "modem" with the word "Internet". M$oft sells client and server software > > (the clients are free -- download "microsoft dial-up networking 1.3"). > > > > I don't know of any freely available FreeBSD software for doing PPTP. > > Using an NT server is proabaly the quickest way to get it working. > > Ugh. PPTP is riddled with holes; search for "PPTP security" on any > search engine to find out why. Right now, I'm using the KAME IPsec > stack to connect two FreeBSD boxes using IPsec over IPv4. You get > an additional benefit of getting IPv4 over IPv4 (IPIP) tunneling > as well if you don't want the overhead of IPsec. > > -- > Jason T. Nelson > BOFH Extraordiaire > http://www.eboai.org/~jtn/ > disclaimer: My opinions are my own. Don't bother my employer about them. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:33:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA24317 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:33:13 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA24304 for ; Thu, 12 Nov 1998 13:33:10 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA050256285; Thu, 12 Nov 1998 16:31:25 -0500 Date: Thu, 12 Nov 1998 16:31:25 -0500 (EST) From: Bill Fumerola To: Terry Ewing Cc: freebsd-isp@FreeBSD.ORG Subject: Re: IP masqurading In-Reply-To: <4.1.19981112121648.00a813c0@mail1.dcomm.net> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Terry Ewing wrote: > People here are thinking of putting our co-located computers behind a > FreeBSD IPFW firewall. At the same time they were thinking of giving the > co-located servers 192.168.x.x IP's so they can be removed if we go through > renumbering. We'd just masquerade the real IP to the 192.168 IP in the > firewall. > > Can anyone arm me with a good reason why we shouldn't do this? Because giving (paying) colocated server internal IPs is degrading the QoS. Some UDP and other programs don't work with it. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:55:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA26642 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:55:16 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bmccane.maxbaud.net (baud225.maxbaud.net [12.13.66.225]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA26582 for ; Thu, 12 Nov 1998 13:54:25 -0800 (PST) (envelope-from root@bmccane.maxbaud.net) Received: from localhost (root@localhost) by bmccane.maxbaud.net (8.8.8/8.8.8) with SMTP id PAA13204 for ; Thu, 12 Nov 1998 15:53:38 -0600 (CST) (envelope-from root@bmccane.maxbaud.net) Date: Thu, 12 Nov 1998 15:53:37 -0600 (CST) From: Wm Brian McCane To: freebsd-isp@FreeBSD.ORG Subject: Routing Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, I have a machine that I am trying to make do the following: dialin twice to routers at my ISP ppp0 is xx.yy.zz.225 dialed in to xx.yy.zz.199 ppp1 is xx.yy.zz.254 dialed in to xx.yy.zz.200 I want requests sent to ppp1 (.254) to be responded to via ppp1 (.200). At present, requests to .254 get responded to via .199. I am running pppd. There is an apache server that serves pages via both .225 and .254 but the pages served are different. I am running ipfw if there is an easy in here to force it. I remember someone (Julian?) mentioning a special version of routed or gated to handle special routing problems. any help? brian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 13:59:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA27281 for freebsd-isp-outgoing; Thu, 12 Nov 1998 13:59:16 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Rigel.orionsys.com (rigel.orionsys.com [205.148.224.9]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA27276 for ; Thu, 12 Nov 1998 13:59:14 -0800 (PST) (envelope-from dbabler@Rigel.orionsys.com) Received: from localhost (dbabler@localhost) by Rigel.orionsys.com (8.8.8/8.8.8) with ESMTP id NAA11379 for ; Thu, 12 Nov 1998 13:58:55 -0800 (PST) (envelope-from dbabler@Rigel.orionsys.com) Date: Thu, 12 Nov 1998 13:58:54 -0800 (PST) From: David Babler To: freebsd-isp@FreeBSD.ORG Subject: Bouncing mail on quotas Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've seen a number of threads regarding disk quotas and how they do or don't work. I have a practical question about bouncing mail based on quotas. On my system, user mailboxes are on a partition that has user quotas. I'm running Sendmail 8.8.8 and am somewhat familiar with modifying the cf file and have the "bat book". The problem is this: I have a user who has subscribed to several fairly active mailing lists and he has been offline for over a month. Needless to say, his disk quota is now full and the mail queue is filling up with mail to that local account. Mail.local delivery comes back with a "disk quota exceeded" error, as it should, but it isn't fatal so the messages are deferred and just stay in the spool. The question is, how can I best bounce them with a "disk quota exceeded" or "mailbox full" error? Sendmail is just politely queueing them up, and by the time the 5-day queue limit is exceeded, there will be a LOT of bounce message going back to a couple of lists. How do you all handle this situation? Thanks! -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 14:11:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA29465 for freebsd-isp-outgoing; Thu, 12 Nov 1998 14:11:32 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA29442; Thu, 12 Nov 1998 14:11:26 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA064458568; Thu, 12 Nov 1998 17:09:28 -0500 Date: Thu, 12 Nov 1998 17:09:28 -0500 (EST) From: Bill Fumerola To: spork Cc: "Jason T. Nelson" , isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, spork wrote: > Has anyone seen a good "VPN FAQ" for FBSD? Any step-by-step info for the > KAME IPSec implementation? No, but once you get yours set up, it would be really nice to see you write one. :> Honestly, if anyone has set up either KAME or another IPsec implementation and would like to write about it, I'm sure no-one will stop you. :> - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 14:33:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA02191 for freebsd-isp-outgoing; Thu, 12 Nov 1998 14:33:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from carp.gbr.epa.gov (carp.gbr.epa.gov [204.46.159.110]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA02037 for ; Thu, 12 Nov 1998 14:32:06 -0800 (PST) (envelope-from mjenkins@carp.gbr.epa.gov) Received: (from mjenkins@localhost) by carp.gbr.epa.gov (8.8.8/8.8.8) id QAA08023; Thu, 12 Nov 1998 16:31:33 -0600 (CST) (envelope-from mjenkins) Date: Thu, 12 Nov 1998 16:31:33 -0600 (CST) From: Mike Jenkins Message-Id: <199811122231.QAA08023@carp.gbr.epa.gov> To: billf@chc-chimes.com, terry@dcomm.net Subject: Re: IP masqurading Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998 Bill Fumerola wrote: > > On Thu, 12 Nov 1998, Terry Ewing wrote: > > > People here are thinking of putting our co-located computers behind a > > FreeBSD IPFW firewall. At the same time they were thinking of giving the > > co-located servers 192.168.x.x IP's so they can be removed if we go through > > renumbering. We'd just masquerade the real IP to the 192.168 IP in the > > firewall. > > > > Can anyone arm me with a good reason why we shouldn't do this? > > Because giving (paying) colocated server internal IPs is degrading the > QoS. Some UDP and other programs don't work with it. If he used static NAT (many-to-many) (as he suggested in the last sentence of paragraph 1) instead of IP Masquerade (many-to-one) (as his subject line suggested) he should be ok. Of course, he will have to use a split-DNS to keep the inside servers happy. If the external addresses change (new provider?), he can change the NAT table and the external DNS, but won't have to reconfigure the internal hosts. Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 14:43:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA03601 for freebsd-isp-outgoing; Thu, 12 Nov 1998 14:43:40 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA03593; Thu, 12 Nov 1998 14:43:39 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id OAA02657; Thu, 12 Nov 1998 14:43:18 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma002648; Thu Nov 12 14:43:00 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id OAA20718; Thu, 12 Nov 1998 14:43:00 -0800 (PST) From: Archie Cobbs Message-Id: <199811122243.OAA20718@bubba.whistle.com> Subject: Re: VPN, an off topic question In-Reply-To: <19981112124934.A9667@hindenburg.eboai.org> from "Jason T. Nelson" at "Nov 12, 98 12:49:34 pm" To: jtn@eboai.org (Jason T. Nelson) Date: Thu, 12 Nov 1998 14:43:00 -0800 (PST) Cc: isp@FreeBSD.ORG, questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Jason T. Nelson writes: > > This is what PPTP does.. it's like PPP where you replace the word > > "modem" with the word "Internet". M$oft sells client and server software > > (the clients are free -- download "microsoft dial-up networking 1.3"). > > > > I don't know of any freely available FreeBSD software for doing PPTP. > > Using an NT server is proabaly the quickest way to get it working. > > Ugh. PPTP is riddled with holes; search for "PPTP security" on any > search engine to find out why. Right now, I'm using the KAME IPsec > stack to connect two FreeBSD boxes using IPsec over IPv4. You get > an additional benefit of getting IPv4 over IPv4 (IPIP) tunneling > as well if you don't want the overhead of IPsec. Yes, PPTP is about what you'd expect from Microsoft security-wise. However, it's the only instance of what the original poster asked for that runs on *Win95* that I know of.. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 15:03:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA06358 for freebsd-isp-outgoing; Thu, 12 Nov 1998 15:03:12 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from fan.net.au (fan.net.au [203.20.92.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA06342 for ; Thu, 12 Nov 1998 15:03:07 -0800 (PST) (envelope-from q@fan.net.au) Received: from gromit.fan.net.au (gromit.fan.net.au [203.23.133.34]) by fan.net.au (8.9.1/8.9.1) with SMTP id JAA08381; Fri, 13 Nov 1998 09:02:28 +1000 (EST) Date: Fri, 13 Nov 1998 09:02:28 +1000 (EST) From: Q To: Dave Truesdell cc: Willow , freebsd-isp@FreeBSD.ORG Subject: Re: tcpd In-Reply-To: <1213.910904943@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Dave Truesdell wrote: > It looks like you've overdone things. Tcp Wrappers only work for TCP > services, they don't work for UDP or RPC based services. Also, Tcpd works for UDP services just fine. Read the doco. And there is rpcbind/portmap available for RPC services (Also by Wietse Venema). > wrapping identd is probably a bad idea as tcpd may need to query it, > is the rules require the information. Wrapping identd is fine provided you don't put a "user@host" rule in the identd access control list. You would probably want to disable -DPARANOID though if your wrapping identd, just to be friendly to people with broken DNS entries. Seeya...Q -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- _____ / Quinton Dolan - q@fan.net.au __ __/ / / __/ / / Systems Administrator / __ / _/ / / Fast Access Network __/ __/ __/ ____/ / - / Gold Coast, QLD, Australia _______ / Ph: +61 7 5574 1050 \_\ SAGE-AU Member To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 15:14:58 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA08145 for freebsd-isp-outgoing; Thu, 12 Nov 1998 15:14:58 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from rossel.saarnet.de (rossel.saarnet.de [145.253.240.29]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA07966; Thu, 12 Nov 1998 15:13:58 -0800 (PST) (envelope-from doehrm@aubi.de) Received: from igate.aubi.de (root@igate.aubi.de [145.253.242.249]) by rossel.saarnet.de (8.8.8/8.8.8) with ESMTP id XAA13096; Thu, 12 Nov 1998 23:17:26 +0100 (MET) Received: from exchange.aubi.de ([170.56.121.91]) by igate.aubi.de (8.8.7/8.8.7) with ESMTP id AAA19836; Fri, 13 Nov 1998 00:26:54 +0100 Received: by EXCHANGE.aubi.de with Internet Mail Service (5.5.2232.9) id ; Thu, 12 Nov 1998 23:11:29 +0100 Message-ID: From: =?iso-8859-1?Q?Markus_D=F6hr?= To: "'Bill Fumerola'" , spork Cc: "Jason T. Nelson" , isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: RE: VPN, an off topic question Date: Thu, 12 Nov 1998 23:10:22 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2232.9) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id PAA08082 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > implementation and would like to write about it, I'm sure > no-one will stop > you. :> I would help, 'cause I'm searching too for an implementation :-) -- Markus Döhr IT Admin AUBI Baubeschläge GmbH Tel.: +49 6503 917 152 Fax : +49 6503 917 119 e-Mail: doehrm@aubi.de MD1139-RIPE ************************* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 16:30:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA20579 for freebsd-isp-outgoing; Thu, 12 Nov 1998 16:30:31 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gina.swimsuit.internet.dk (mail.swimsuit.internet.dk [194.255.12.232]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA20560 for ; Thu, 12 Nov 1998 16:30:20 -0800 (PST) (envelope-from root@swimsuit.internet.dk) Received: from localhost (localhost.swimsuit.internet.dk [127.0.0.1]) by gina.swimsuit.internet.dk (8.9.1/8.9.1) with ESMTP id BAA02157 for ; Fri, 13 Nov 1998 01:29:52 +0100 (CET) (envelope-from root@swimsuit.internet.dk) Date: Fri, 13 Nov 1998 01:29:52 +0100 (CET) From: Leif Neland To: freebsd-isp@FreeBSD.ORG Subject: two routers back to back: Do they need real ip-adresses? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We had to put in a cisco 1605 router (with 2 ethernet ports) between our net and our isp supplying our backbone connection. The "ethernet", which is only a crossed 10BT cable between the two routers, does it need real ip adresses? +-----------+ +-----------+ +----+ ----- --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ 3C's | 1605 | | 100x | | +---- +-----------+ ^ +-----------+ +----+ | Can I use 192.168.1.0-adresses here? Or even unnumbered ip? Our uplink isp wants us to subnet one of our C's in a /30, is this really nessecary? Leif Neland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 17:18:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA26557 for freebsd-isp-outgoing; Thu, 12 Nov 1998 17:18:13 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from sumter.awod.com (sumter.awod.com [208.140.99.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA26483; Thu, 12 Nov 1998 17:18:01 -0800 (PST) (envelope-from klam@awod.com) Received: from tsunami..awod.com (chs0112.awod.com [208.140.96.112]) by sumter.awod.com (8.8.7/8.8.8) with SMTP id UAA28841; Thu, 12 Nov 1998 20:17:33 -0500 (EST) (envelope-from klam@awod.com) Message-Id: <4.1.19981112201502.00925ed0@awod.com> X-Sender: klam@awod.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Thu, 12 Nov 1998 20:17:39 -0500 To: wjw@IAEhv.nl, isp@FreeBSD.ORG From: Ken Lam Subject: Re: VPN, an off topic question Cc: questions@FreeBSD.ORG In-Reply-To: <199811120839.JAA01253@surf.IAE.nl> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 09:39 AM 11/12/98 +0100, Willem Jan Withagen wrote: [stuff deleted] >What I'd like is an extra layer on the TCP/IP stack for win'95 systems, >which would give the client a second IP-number for access to the inarts of >the company LAN. This would be through an encrypted tunnel over the already >build public IP connection. Give SKIP a try. It will do the VPN function, although it won't assign another ip address to your system. >Termination would be on a VPN-server on the company LAN, or at the firewall. >I could be a NT-system, but prefably a FreeBSD (Linux) box. SKIP source/binaries are available on www.skip.org > - Does anybody use commecial software which can do this? SKIP has a commercial set as well (as part of Sun's security suite). They have NT/95 clients. -k --- Ken Lam lam@awod.com Integrated Technical Systems Systems, Networks, and Internet Solutions -- Defining Technology Today "'Plug and Play' was only applicable to the original ATARI(tm)" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 18:04:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA02459 for freebsd-isp-outgoing; Thu, 12 Nov 1998 18:04:59 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail1.netsol.net (mail.netsol.net [38.216.109.105]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA02445; Thu, 12 Nov 1998 18:04:58 -0800 (PST) (envelope-from tech@scsr.com) Received: from ff.scsr.com ([38.185.32.41]) by mail1.netsol.net (Post.Office MTA v3.1.2 release (PO205-101c) ID# 0-42781U2500L250S0) with ESMTP id AAA45; Thu, 12 Nov 1998 18:11:42 -0800 From: "Tech1" To: , Cc: , Subject: Detailed info on Fail-safe cluster for Freebsd/unixes Date: Fri, 13 Nov 1998 06:11:13 -0800 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1155 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Message-ID: <19981113021140028.AAA45@ff.scsr.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Fial-Safe Cluster: 1) It's a pair of daemon, one run on mission critical primary server, the other on auxiliary server 2) If the primary server is detected down, the auxiliary will take over all off TCP/IP communications/services for the primary while doing its own regular activity assigned. Example:When prime server down, when ftp to the downed server will end you up in the aux server. 3) The program run on freebsd 2x or 3x. 4) Highly portable to all other mordern unixes like sun,hp,dec,ibm, unixware, sco etc. 5) the down time is reduced virtually to 0, instead of hours/days. 6) Once server down is detected, a log alert message is loged and a mail sent to admin 7) a historical count of the number of down or backing up is maintained in the program and expressed in the mail message. 8) Virtual load-balancing in the crititical system event. 9) Optional Beeper notification/fax notification 10) You may setup the primary server in LA, aux server in NewYork. but i didn't test this yet. The cost of this software is $350 but open for bargin. For more than 10M $ company it's another price. If anyone working as consultant for companies. You may resell this software to them. i may stick fax code in for fax notification & beeper code optionally. If you wish to get more information or place an order, please contact tech@scsr.com Matt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 18:17:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA03721 for freebsd-isp-outgoing; Thu, 12 Nov 1998 18:17:12 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from sundance.stacken.kth.se (sundance.stacken.kth.se [130.237.234.41]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA03708; Thu, 12 Nov 1998 18:17:04 -0800 (PST) (envelope-from art@stacken.kth.se) Received: from pizza.stacken.kth.se (pizza.stacken.kth.se [130.237.234.73]) by sundance.stacken.kth.se (8.8.8/8.8.8) with ESMTP id DAA16267; Fri, 13 Nov 1998 03:16:28 +0100 (MET) Received: (from art@localhost) by pizza.stacken.kth.se (8.8.7/8.8.7) id DAA00329; Fri, 13 Nov 1998 03:17:21 +0100 (MET) To: "Tech1" Cc: , , , Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes References: <19981113021140028.AAA45@ff.scsr.com> From: Artur Grabowski Date: 13 Nov 1998 03:17:21 +0100 In-Reply-To: "Tech1"'s message of "Fri, 13 Nov 1998 06:11:13 -0800" Message-ID: Lines: 11 X-Mailer: Gnus v5.6.44/Emacs 19.34 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Tech1" writes: > The cost of this software is $350 but open for bargin. For more than 10M $ > company it's another price. If anyone working as consultant for companies. > You may resell this software to them. Or you can get almost the same thing for free from http://www.eddieware.org/ With source code. (Yes, I know it still doesn't run on *BSD, but that's a matter of weeks until that code is released). //art To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 18:43:57 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA06914 for freebsd-isp-outgoing; Thu, 12 Nov 1998 18:43:57 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from picnic.mat.net (picnic.mat.net [206.246.122.117]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA06906; Thu, 12 Nov 1998 18:43:53 -0800 (PST) (envelope-from chuckr@mat.net) Received: from localhost (chuckr@localhost) by picnic.mat.net (8.9.1/8.8.5) with ESMTP id VAA05464; Thu, 12 Nov 1998 21:41:37 -0500 (EST) Date: Thu, 12 Nov 1998 21:41:36 -0500 (EST) From: Chuck Robey To: Artur Grabowski cc: Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 13 Nov 1998, Artur Grabowski wrote: > "Tech1" writes: > > > The cost of this software is $350 but open for bargin. For more than 10M $ > > company it's another price. If anyone working as consultant for companies. > > You may resell this software to them. > > Or you can get almost the same thing for free from http://www.eddieware.org/ > With source code. (Yes, I know it still doesn't run on *BSD, but that's a > matter of weeks until that code is released). The guy's trying to make a living, and you're not. You don't know the quality of either piece of software yet, but attitudes like that are a big reason that free software isn't more highly catered to by commercial companies. If you want native versions of things like WordPerfect, then reconsider making posts like this. > > //art > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message > > ----------------------------+----------------------------------------------- Chuck Robey | Interests include any kind of voice or data chuckr@glue.umd.edu | communications topic, C programming, and Unix. 213 Lakeside Drive Apt T-1 | Greenbelt, MD 20770 | I run Journey2 and picnic (FreeBSD-current) (301) 220-2114 | and jaunt (NetBSD). ----------------------------+----------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 19:12:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA10711 for freebsd-isp-outgoing; Thu, 12 Nov 1998 19:12:32 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from phobos.illtel.denver.co.us (phobos.illtel.denver.co.us [207.33.75.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA10703; Thu, 12 Nov 1998 19:12:30 -0800 (PST) (envelope-from abelits@phobos.illtel.denver.co.us) Received: from localhost (abelits@localhost) by phobos.illtel.denver.co.us (8.9.1a/8.6.9) with SMTP id TAA19001; Thu, 12 Nov 1998 19:12:19 -0800 Date: Thu, 12 Nov 1998 19:12:19 -0800 (PST) From: Alex Belits To: Chuck Robey cc: Artur Grabowski , Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Chuck Robey wrote: > > "Tech1" writes: > > > > > The cost of this software is $350 but open for bargin. For more than 10M $ > > > company it's another price. If anyone working as consultant for companies. > > > You may resell this software to them. > > > > Or you can get almost the same thing for free from http://www.eddieware.org/ > > With source code. (Yes, I know it still doesn't run on *BSD, but that's a > > matter of weeks until that code is released). > > The guy's trying to make a living, and you're not. What difference does it make? > You don't know the > quality of either piece of software yet, but attitudes like that are a > big reason that free software isn't more highly catered to by commercial > companies. > > If you want native versions of things like WordPerfect, then reconsider > making posts like this. If someone wants native version of things like WordPerfect, he should encourage companies like Corel to do port that software to FreeBSD. BTW, I have a strong suspicion that Corel will rather accept ARM port of FreeBSD than any kind of ass-kissing. -- Alex To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 20:00:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA15677 for freebsd-isp-outgoing; Thu, 12 Nov 1998 20:00:22 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from magicnet.magicnet.net (magicnet.magicnet.net [204.96.116.9]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA15667 for ; Thu, 12 Nov 1998 20:00:20 -0800 (PST) (envelope-from bill@bilver.magicnet.net) Received: (from root@localhost) by magicnet.magicnet.net (8.8.6/8.8.8) with UUCP id WAA05613 for freebsd-isp@freebsd.org; Thu, 12 Nov 1998 22:55:01 -0500 (EST) Received: (from bill@localhost) by bilver.magicnet.net (8.9.1/8.9.1) id XAA21999 for freebsd-isp@freebsd.org; Thu, 12 Nov 1998 23:03:44 -0500 (EST) From: Bill Vermillion Message-Id: <199811130403.XAA21999@bilver.magicnet.net> Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: from Leif Neland at "Nov 13, 98 01:29:52 am" To: freebsd-isp@FreeBSD.ORG Date: Thu, 12 Nov 1998 23:03:44 -0500 (EST) X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Leif Neland recently said: > We had to put in a cisco 1605 router (with 2 ethernet ports) between our > net and our isp supplying our backbone connection. > The "ethernet", which is only a crossed 10BT cable between the two > routers, does it need real ip adresses? > > > +-----------+ +-----------+ +----+ ----- > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > 3C's | 1605 | | 100x | | +---- > +-----------+ ^ +-----------+ +----+ > | > Can I use 192.168.1.0-adresses here? > Or even unnumbered ip? As long as both routers know about the other and it is an ethernet connection - just hook them together. I did that in the process of moving 4 C's from one provider to another. It made it convenient and then I could upgrade the IOS on the first. > Our uplink isp wants us to subnet one of our C's in a /30, is this > really nessecary? That's typically the address of the serial port. A /30 gives a four address range. The network number, 2 IPS, and a broadcast number. The ones I've seen have the ISP as the lower of the two addresses and the client as the upper of the two. These normally are not part of your address space. The only time I did that in our address space was when I remoted another router over a T1 - and had to pull the addresses to use from our name-space. There might be other ways to do this - as I'm still a newbie at networking. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 20:00:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA15692 for freebsd-isp-outgoing; Thu, 12 Nov 1998 20:00:24 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from thelab.hub.org (nat0574.mpoweredpc.net [142.177.190.66]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA15672; Thu, 12 Nov 1998 20:00:21 -0800 (PST) (envelope-from scrappy@hub.org) Received: from localhost (scrappy@localhost) by thelab.hub.org (8.9.1/8.9.1) with ESMTP id XAA06250; Thu, 12 Nov 1998 23:58:39 -0400 (AST) (envelope-from scrappy@hub.org) X-Authentication-Warning: thelab.hub.org: scrappy owned process doing -bs Date: Thu, 12 Nov 1998 23:58:38 -0400 (AST) From: The Hermit Hacker To: Alex Belits cc: Chuck Robey , Artur Grabowski , Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Alex Belits wrote: > > You don't know the > > quality of either piece of software yet, but attitudes like that are a > > big reason that free software isn't more highly catered to by commercial > > companies. > > > > If you want native versions of things like WordPerfect, then reconsider > > making posts like this. > > If someone wants native version of things like WordPerfect, he should > encourage companies like Corel to do port that software to FreeBSD. BTW, > I have a strong suspicion that Corel will rather accept ARM port of > FreeBSD than any kind of ass-kissing. Actually, I have to quickly agree with Chuck on this...I don't personally want WordPerfect, mind you. But, I would be willing to pay for a copy of StarOffice 5.0 if it were native to FreeBSD, since it would effectively allow me to totally ditch any reliance I have on Winbloze... I wish there were a way of "convincing" commercial enterprises to port to us :( Here's a question for "those in the power and the know"...has anyone considered "contracting" a port of a commercial software package to FreeBSD? For instance, I'd love having a copy of Staroffice native to FreeBSD, and would be willing to pay for such...how many others are of the same position? How many would be willing to go so far as to pay FreeBSD, Inc to approach StarDivision as *one* entity and say "here is a cheque for X dollars to cover porting costs"? Marc G. Fournier Systems Administrator @ hub.org primary: scrappy@hub.org secondary: scrappy@{freebsd|postgresql}.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 20:32:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA19219 for freebsd-isp-outgoing; Thu, 12 Nov 1998 20:32:21 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from kjsl.com (Limpia.KJSL.COM [198.137.202.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA19214 for ; Thu, 12 Nov 1998 20:32:20 -0800 (PST) (envelope-from javier@kjsl.com) Received: (from javier@localhost) by kjsl.com (8.8.5/8.8.5) id UAA22947; Thu, 12 Nov 1998 20:30:40 -0800 (PST) Date: Thu, 12 Nov 1998 20:30:40 -0800 (PST) Message-Id: <199811130430.UAA22947@kjsl.com> From: Javier Henderson MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: Bill Vermillion Cc: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <199811130403.XAA21999@bilver.magicnet.net> References: <199811130403.XAA21999@bilver.magicnet.net> X-Mailer: VM 6.33 under Emacs 19.34.1 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bill Vermillion writes: > Leif Neland recently said: > > We had to put in a cisco 1605 router (with 2 ethernet ports) between our > > net and our isp supplying our backbone connection. > > > The "ethernet", which is only a crossed 10BT cable between the two > > routers, does it need real ip adresses? > > > > > > +-----------+ +-----------+ +----+ ----- > > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > > 3C's | 1605 | | 100x | | +---- > > +-----------+ ^ +-----------+ +----+ > > | > > Can I use 192.168.1.0-adresses here? > > Or even unnumbered ip? > > As long as both routers know about the other and it is an ethernet > connection - just hook them together. I did that in the process of > moving 4 C's from one provider to another. It made it convenient > and then I could upgrade the IOS on the first. I'm trying to understand why you want the 1605 in place. Can't you just connect "our net of 3C's" to Ethernet 0 on the first router (the one with Serial0 connectd to your ISP)? > > Our uplink isp wants us to subnet one of our C's in a /30, is this > > really nessecary? > > That's typically the address of the serial port. A /30 gives a > four address range. The network number, 2 IPS, and a broadcast > number. The ones I've seen have the ISP as the lower of the two > addresses and the client as the upper of the two. These normally > are not part of your address space. The above is correct, though your ISP probably wants you to use numbered links so packets generated by either router have an IP source address of the interface from which they are leaving the router. This can help troubleshoot certain network problems. -jav To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 12 21:42:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA25166 for freebsd-isp-outgoing; Thu, 12 Nov 1998 21:42:44 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gina.swimsuit.internet.dk (mail.swimsuit.internet.dk [194.255.12.232]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA25161 for ; Thu, 12 Nov 1998 21:42:41 -0800 (PST) (envelope-from root@swimsuit.internet.dk) Received: from localhost (localhost.swimsuit.internet.dk [127.0.0.1]) by gina.swimsuit.internet.dk (8.9.1/8.9.1) with ESMTP id GAA05905; Fri, 13 Nov 1998 06:41:21 +0100 (CET) (envelope-from root@swimsuit.internet.dk) Date: Fri, 13 Nov 1998 06:41:21 +0100 (CET) From: Leif Neland To: Javier Henderson cc: Bill Vermillion , freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <199811130430.UAA22947@kjsl.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Javier Henderson wrote: > Bill Vermillion writes: > > Leif Neland recently said: > > > We had to put in a cisco 1605 router (with 2 ethernet ports) between our > > > net and our isp supplying our backbone connection. > > > > > The "ethernet", which is only a crossed 10BT cable between the two > > > routers, does it need real ip adresses? > > > > > > > > > +-----------+ +-----------+ +----+ ----- > > > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > > > 3C's | 1605 | | 100x | | +---- > > > +-----------+ ^ +-----------+ +----+ > > > | > > > Can I use 192.168.1.0-adresses here? > > > Or even unnumbered ip? > > > > As long as both routers know about the other and it is an ethernet > > connection - just hook them together. I did that in the process of > > moving 4 C's from one provider to another. It made it convenient > > and then I could upgrade the IOS on the first. > > I'm trying to understand why you want the 1605 in place. Can't > you just connect "our net of 3C's" to Ethernet 0 on the first > router (the one with Serial0 connectd to your ISP)? > Because the 100x belongs to our ISP, and can't always handle the job of routing between our 3 C's. Sometimes it routes stuff from one C to another trough S0 up to their central router where it comes back. We have customers with fixed ip's calling in on different portmasters, and the 100x can't handle ospf-routing when it also has to handle the in/outgoing traffic. We also later will need S0 to go elsewhere. > > > Our uplink isp wants us to subnet one of our C's in a /30, is this > > > really nessecary? > > > > That's typically the address of the serial port. A /30 gives a > > four address range. The network number, 2 IPS, and a broadcast > > number. The ones I've seen have the ISP as the lower of the two > > addresses and the client as the upper of the two. These normally > > are not part of your address space. > > The above is correct, though your ISP probably wants you to > use numbered links so packets generated by either router have an IP > source address of the interface from which they are leaving the > router. This can help troubleshoot certain network problems. Can I use 192.168-adresses? Leif Neland To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 00:05:49 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA06595 for freebsd-isp-outgoing; Fri, 13 Nov 1998 00:05:49 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freesbee.t.dk (freesbee.t.dk [193.163.159.72]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id AAA06590 for ; Fri, 13 Nov 1998 00:05:47 -0800 (PST) (envelope-from jesper@freesbee.t.dk) Received: (qmail 11112 invoked by uid 1001); 13 Nov 1998 08:05:26 -0000 Date: Fri, 13 Nov 1998 09:05:26 +0100 From: Jesper Skriver To: Leif Neland Cc: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? Message-ID: <19981113090526.A10967@skriver.dk> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.94.15i In-Reply-To: ; from Leif Neland on Fri, Nov 13, 1998 at 01:29:52AM +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Nov 13, 1998 at 01:29:52AM +0100, Leif Neland wrote: > We had to put in a cisco 1605 router (with 2 ethernet ports) between our > net and our isp supplying our backbone connection. > > The "ethernet", which is only a crossed 10BT cable between the two > routers, does it need real ip adresses? > > > +-----------+ +-----------+ +----+ ----- > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > 3C's | 1605 | | 100x | | +---- > +-----------+ ^ +-----------+ +----+ > | > Can I use 192.168.1.0-adresses here? > Or even unnumbered ip? > > Our uplink isp wants us to subnet one of our C's in a /30, is this really > nessecary? You can't use unnumbered on broadcast media aka ethernet, so you need to assign addresses to the interfaces, but these can be RFC1918 addresses, that is if your ISP is willing to accept this. /Jesper -- Jesper Skriver (JS4261-RIPE), Network manager Tele Danmark DataNet, IP section (AS3292) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 01:12:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA11943 for freebsd-isp-outgoing; Fri, 13 Nov 1998 01:12:36 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Tandem.com (suntan.tandem.com [192.216.221.8]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA11925; Fri, 13 Nov 1998 01:12:34 -0800 (PST) (envelope-from grefen@hrriss.hprc.tandem.com) Received: from hrriss.hprc.tandem.com (hrriss.hprc.tandem.com [168.87.28.181]) by Tandem.com (8.8.8/2.0.1) with ESMTP id BAA07903; Fri, 13 Nov 1998 01:11:55 -0800 (PST) Received: from hrriss.hprc.tandem.com (localhost [127.0.0.1]) by hrriss.hprc.tandem.com (8.8.8/8.7.3) with ESMTP id KAA02982; Fri, 13 Nov 1998 10:16:01 +0100 (CET) To: Chuck Robey Cc: Artur Grabowski , Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes Reply-To: grefen@hprc.tandem.com In-reply-to: Chuck Robey's message of Thu, 12 Nov 98 21:41:36 EST. References: Date: Fri, 13 Nov 1998 10:16:00 +0100 Message-ID: <2980.910948560@hrriss.hprc.tandem.com> From: Stefan Grefen Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message Chuck Robey wrote: > On 13 Nov 1998, Artur Grabowski wrote: > > > "Tech1" writes: > > > > > The cost of this software is $350 but open for bargin. For more than 10M $ > > > company it's another price. If anyone working as consultant for companies. > > > You may resell this software to them. > > > > Or you can get almost the same thing for free from http://www.eddieware.org/ > > With source code. (Yes, I know it still doesn't run on *BSD, but that's a > > matter of weeks until that code is released). > > The guy's trying to make a living, and you're not. You don't know the > quality of either piece of software yet, but attitudes like that are a > big reason that free software isn't more highly catered to by commercial > companies. I think for making a living its to low a price, this stuff doesn't ship like hamburgers (or gif viewers ...). In this installations the money is made from the consulting they need, and the cost of the software is marginal, even if he charges 10 times as much. So the race against eddie is open. On the other hand for personal use and playing around $350 is to much, so eddie will run on more machines. > > If you want native versions of things like WordPerfect, then reconsider > making posts like this. WordPerfect is an example where the money is made by selling the product. Ever wondered why Cygnus doesn't make spreadsheets or wordprocessors ?? Stefan > > > > > //art > > -- Stefan Grefen Tandem Computers Europe Inc. grefen@hprc.tandem.com High Performance Research Center --- Hacking's just another word for nothing left to kludge. --- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 01:19:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA12690 for freebsd-isp-outgoing; Fri, 13 Nov 1998 01:19:26 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.206.244]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA12684 for ; Fri, 13 Nov 1998 01:19:23 -0800 (PST) (envelope-from andyf@speednet.com.au) Received: from localhost (andyf@localhost) by backup.af.speednet.com.au (8.9.1/8.9.1) with ESMTP id UAA07697 for ; Fri, 13 Nov 1998 20:18:40 +1100 (EST) X-Authentication-Warning: backup.zippynet.iol.net.au: andyf owned process doing -bs Date: Fri, 13 Nov 1998 20:18:40 +1100 (EST) From: Andy Farkas X-Sender: andyf@backup.zippynet.iol.net.au To: freebsd-isp@FreeBSD.ORG Subject: no more telnet Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Could somebody please explain why I can't get into one of my systems? I am getting a 'telnetd: All network ports in use.' message when I try to telnet to port 23, but other services are ok. Tcp_wrappers is installed. The machine went down unexpectantly due to power failure, and came back up in its current state. I have never seen that message before. Is a trip to the console the only way?? Oh yeah, its a 2.2.7-RELEASE system thats been running fine for months. TIA. -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speed Internet Services http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 02:19:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA18297 for freebsd-isp-outgoing; Fri, 13 Nov 1998 02:19:33 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from zeus.theinternet.com.au (zeus.theinternet.com.au [203.34.176.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA18286 for ; Fri, 13 Nov 1998 02:19:28 -0800 (PST) (envelope-from akm@zeus.theinternet.com.au) Received: (from akm@localhost) by zeus.theinternet.com.au (8.8.7/8.8.7) id UAA21804; Fri, 13 Nov 1998 20:11:11 +1000 (EST) (envelope-from akm) From: Andrew Kenneth Milton Message-Id: <199811131011.UAA21804@zeus.theinternet.com.au> Subject: Re: no more telnet In-Reply-To: from Andy Farkas at "Nov 13, 98 08:18:40 pm" To: andyf@speednet.com.au (Andy Farkas) Date: Fri, 13 Nov 1998 20:11:10 +1000 (EST) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org +----[ Andy Farkas ]--------------------------------------------- | | Could somebody please explain why I can't get into one of my systems? I | am getting a 'telnetd: All network ports in use.' message when I try to | telnet to port 23, but other services are ok. Tcp_wrappers is installed. You usually need to install more ptys in your kernel config when you see this message. I'm not sure what effect TCP_wrappers will have on this, none I would imagine. If you already build a kernel with a lot of ptys, did you MAKEDEV them in /dev ? You will only be able to get in once either a) Someone logs off (or closes an xterm) b) You go to the console -- Totally Holistic Enterprises Internet| P:+61 7 3870 0066 | Andrew The Internet (Aust) Pty Ltd | F:+61 7 3870 4477 | Milton ACN: 082 081 472 | M:+61 416 022 411 |72 Col .Sig PO Box 837 Indooroopilly QLD 4068 |akm@theinternet.com.au|Specialist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 03:07:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA21519 for freebsd-isp-outgoing; Fri, 13 Nov 1998 03:07:31 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from liquid.tpb.net (drum-n-bass.party-animals.com [194.134.94.34]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA21514 for ; Fri, 13 Nov 1998 03:07:29 -0800 (PST) (envelope-from niels@bakker.net) Received: from localhost (niels@localhost) by liquid.tpb.net (8.9.1a/8.8.8/Debian/GNU) with SMTP id MAA30355 for ; Fri, 13 Nov 1998 12:07:04 +0100 Date: Fri, 13 Nov 1998 12:07:03 +0100 (CET) From: N To: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <19981113090526.A10967@skriver.dk> Message-ID: <981113120350.30188B-100000@liquid.tpb.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >> We had to put in a cisco 1605 router (with 2 ethernet ports) between our >> net and our isp supplying our backbone connection. >> The "ethernet", which is only a crossed 10BT cable between the two >> routers, does it need real ip adresses? > You can't use unnumbered on broadcast media aka ethernet, so you need to > assign addresses to the interfaces, but these can be RFC1918 addresses, > that is if your ISP is willing to accept this. You shouldn't use private addresses either, this will break Path MTU Discovery if any filters exist between a client and your network. Ripping four addresses from your /24 shouldn't pose much of a problem. Turn off proxy-arp on the Ethernet interface where that /24 is attached to and you have the added benefit of people not being able to access those IP addresses directly. -- Niels. -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 04:05:58 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA27671 for freebsd-isp-outgoing; Fri, 13 Nov 1998 04:05:58 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from aniwa.sky (p53-max5.wlg.ihug.co.nz [202.49.241.53]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA27666 for ; Fri, 13 Nov 1998 04:05:55 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.8/8.8.7) with SMTP id BAA21894; Sat, 14 Nov 1998 01:04:35 +1300 (NZDT) (envelope-from andrew@squiz.co.nz) Date: Sat, 14 Nov 1998 01:04:35 +1300 (NZDT) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: Andy Farkas cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 13 Nov 1998, Andy Farkas wrote: > Could somebody please explain why I can't get into one of my systems? I > am getting a 'telnetd: All network ports in use.' message when I try to > telnet to port 23, but other services are ok. Tcp_wrappers is installed. > > The machine went down unexpectantly due to power failure, and came back up > in its current state. I have never seen that message before. Is a trip > to the console the only way?? When i saw the subject line I thought someone was gloating over getting rid of telnet having installed something like ssh as a replacement. Installing ssh won't save you a trip to the console if it's currently required, since you need access before you can install ssh. Once you're back up though you might consider installing ssh and running it as a daemon, (not through inetd) so that it acts as a backup access method in case your problem returns. Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 04:16:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA28675 for freebsd-isp-outgoing; Fri, 13 Nov 1998 04:16:21 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from unix.kawartha.com (unix.kawartha.com [204.101.15.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA28670 for ; Fri, 13 Nov 1998 04:16:20 -0800 (PST) (envelope-from pstewart@kawartha.com) Received: from shell.kawartha.com (shell.kawartha.com [204.101.15.43]) by unix.kawartha.com (8.8.8/8.8.7) with SMTP id HAA20443 for ; Fri, 13 Nov 1998 07:21:31 -0500 (EST) Date: Fri, 13 Nov 1998 07:40:29 -0500 (EST) From: Paul Stewart To: freebsd-isp@FreeBSD.ORG Subject: Mirroring FreeBSD Web Pages Question Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org HI there... this is probably covered somewhere... We've setup our cvsup to mirror the web pages for FreeBSD to freebsd.kawartha.com which works fine. Is there someone on this list or can someone give me an email address to add us to the mirror listing pulldown menu on the site? Thanks very much, Paul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 04:34:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA00471 for freebsd-isp-outgoing; Fri, 13 Nov 1998 04:34:29 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns.dnsdata.com (cx64640-a.wwck1.ri.home.com [24.0.243.18]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA00466 for ; Fri, 13 Nov 1998 04:34:28 -0800 (PST) (envelope-from bobfe@ids.net) Received: from brussel (brussel.ids.nettv.net [155.212.5.2]) by ns.dnsdata.com (8.9.1a/8.9.1.1) with SMTP id HAA17406 for ; Fri, 13 Nov 1998 07:34:08 -0500 (EST) Message-Id: <4.1.19981113073400.02745870@mb.ids.net> X-Sender: bobfe@mb.ids.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Fri, 13 Nov 1998 07:34:06 -0500 To: freebsd-isp@FreeBSD.ORG From: Bob Fayne Subject: Re: Bouncing mail on quotas Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 01:58 PM 11/12/98, you wrote: > >I've seen a number of threads regarding disk quotas and how they do or >don't work. I have a practical question about bouncing mail based on >quotas. I use LOCAL_PROCMAIL. --- Bob Fayne bobfe@ids.net Systems Administrator (401) 885-4243 x 228 http://www.ids.net/bobfe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 05:12:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA03646 for freebsd-isp-outgoing; Fri, 13 Nov 1998 05:12:14 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ts.shopnet.com (ts.shopnet.com [208.131.136.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA03641 for ; Fri, 13 Nov 1998 05:12:11 -0800 (PST) (envelope-from deichert@ts.shopnet.com) Received: (from deichert@localhost) by ts.shopnet.com (8.8.4/8.6.12) id GAA05132; Fri, 13 Nov 1998 06:14:00 -0700 (MST) Date: Fri, 13 Nov 1998 06:14:00 -0700 (MST) From: Diana Eichert X-Sender: deichert@ts.shopnet.com To: Andy Farkas cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'd recommend running sshd as your main remote login process and only use telnet within tcpwrappers as last resort. Of course if you don't have it running now, it will promote a trip to the console. If you telnet into your system from Win there is an ssh addon to teraterm for a no cost alternative. diana On Sat, 14 Nov 1998, Andrew McNaughton wrote: > On Fri, 13 Nov 1998, Andy Farkas wrote: > > > Could somebody please explain why I can't get into one of my systems? I > > am getting a 'telnetd: All network ports in use.' message when I try to > > telnet to port 23, but other services are ok. Tcp_wrappers is installed. > > > > The machine went down unexpectantly due to power failure, and came back up > > in its current state. I have never seen that message before. Is a trip > > to the console the only way?? > > When i saw the subject line I thought someone was gloating over getting > rid of telnet having installed something like ssh as a replacement. > > Installing ssh won't save you a trip to the console if it's currently > required, since you need access before you can install ssh. Once you're > back up though you might consider installing ssh and running it as a > daemon, (not through inetd) so that it acts as a backup access method in > case your problem returns. > > Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 05:20:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA04521 for freebsd-isp-outgoing; Fri, 13 Nov 1998 05:20:04 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bse.bse.bg (bse.bse.bg [195.138.140.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA04445 for ; Fri, 13 Nov 1998 05:19:57 -0800 (PST) (envelope-from hristo@bourgas.net) Received: from bourgas.net (hristo@localhost [127.0.0.1]) by bse.bse.bg (8.9.1a/8.9.0) with ESMTP id PAA26428 for ; Fri, 13 Nov 1998 15:19:24 +0200 Message-ID: <364C31DC.1252F77@bourgas.net> Date: Fri, 13 Nov 1998 15:19:24 +0200 From: Hristo Grigorov Organization: BSE AD, Bourgas, BG X-Mailer: Mozilla 4.5 [en] (X11; I; Linux 2.1.126 i586) X-Accept-Language: bg,en MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: repquota Content-Type: text/plain; charset=x-user-defined Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, I got FreeBSD-2.2.7 with quotas enable on one of my file systems. I frequently use 'repquota -a' to see quota statistics for this fs. But now when I run 'repquota -a' the program loops forever until I break it with Ctrl-C. Is this a known problem or I am doing somehing wrong ? Bye! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:00:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA08212 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:00:22 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from magicnet.magicnet.net (magicnet.magicnet.net [204.96.116.9]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA08152 for ; Fri, 13 Nov 1998 06:00:20 -0800 (PST) (envelope-from bill@bilver.magicnet.net) Received: (from root@localhost) by magicnet.magicnet.net (8.8.6/8.8.8) with UUCP id IAA05405 for freebsd-isp@freebsd.org; Fri, 13 Nov 1998 08:55:02 -0500 (EST) Received: (from bill@localhost) by bilver.magicnet.net (8.9.1/8.9.1) id IAA28224 for freebsd-isp@freebsd.org; Fri, 13 Nov 1998 08:54:33 -0500 (EST) From: Bill Vermillion Message-Id: <199811131354.IAA28224@bilver.magicnet.net> Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <199811130430.UAA22947@kjsl.com> from Javier Henderson at "Nov 12, 98 08:30:40 pm" To: freebsd-isp@FreeBSD.ORG Date: Fri, 13 Nov 1998 08:54:33 -0500 (EST) X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Javier Henderson recently said: > Bill Vermillion writes: > > As long as both routers know about the other and it is an > > ethernet connection - just hook them together. I did that in > > the process of moving 4 C's from one provider to another. It > > made it convenient and then I could upgrade the IOS on the > > first. ... > > > Our uplink isp wants us to subnet one of our C's in a /30, is > > > this really nessecary? > > That's typically the address of the serial port. A /30 gives a > > four address range. The network number, 2 IPS, and a broadcast > > number. The ones I've seen have the ISP as the lower of the two > > addresses and the client as the upper of the two. These normally > > are not part of your address space. > The above is correct, though your ISP probably wants you to > use numbered links so packets generated by either router have an IP > source address of the interface from which they are leaving the > router. This can help troubleshoot certain network problems. The two different providers I used - had to move because our first couldn't supply needed bandwidth for a contract we got - all use the /30 method. It always seemed logical to me - as that was the first way I had ever seen it or used it. I've taken the top end of one of our C's, and broken it up into groups of 4 so I can route addresses out through the serial ports for remote services. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:04:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA08868 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:04:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.206.244]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA08863 for ; Fri, 13 Nov 1998 06:04:39 -0800 (PST) (envelope-from andyf@speednet.com.au) Received: from localhost (andyf@localhost) by backup.af.speednet.com.au (8.9.1/8.9.1) with ESMTP id BAA08053; Sat, 14 Nov 1998 01:04:00 +1100 (EST) X-Authentication-Warning: backup.zippynet.iol.net.au: andyf owned process doing -bs Date: Sat, 14 Nov 1998 01:04:00 +1100 (EST) From: Andy Farkas X-Sender: andyf@backup.zippynet.iol.net.au To: Jonas Eriksson cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: <364BFF7D.1F29202@interact.se> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > The machine went down unexpectantly due to power failure, and came back up > > in its current state. I have never seen that message before. Is a trip > > to the console the only way?? > > You are out of pty's. > Sorry, folks, ... situation is under control. What happened was that somebody repeatedly tried to connect to the host while it was booting and chewed up all the ptys. They eventually timed-out, and I can now telnet normally into the system. The main reason why I posted was because we dont have shell access - users have '/bin/false' in the passwd file, and I didn't think that someone trying to telnet in would be able to DOS me in such a manner ... -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speed Internet Services http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:10:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA10036 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:10:55 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.206.244]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA10006 for ; Fri, 13 Nov 1998 06:10:48 -0800 (PST) (envelope-from andyf@speednet.com.au) Received: from localhost (andyf@localhost) by backup.af.speednet.com.au (8.9.1/8.9.1) with ESMTP id BAA08063; Sat, 14 Nov 1998 01:10:10 +1100 (EST) X-Authentication-Warning: backup.zippynet.iol.net.au: andyf owned process doing -bs Date: Sat, 14 Nov 1998 01:10:10 +1100 (EST) From: Andy Farkas X-Sender: andyf@backup.zippynet.iol.net.au To: Andrew McNaughton cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Installing ssh won't save you a trip to the console if it's currently > required, since you need access before you can install ssh. Once you're > back up though you might consider installing ssh and running it as a > daemon, (not through inetd) so that it acts as a backup access method in > case your problem returns. > > Andrew McNaughton > Are you suggesting that I replace telnetd with ssh?? Seeing as how I am the only one that has shell access ... sounds .. secure... -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speed Internet Services http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:17:46 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA11063 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:17:46 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from backup.af.speednet.com.au (af.speednet.com.au [202.135.206.244]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA11027 for ; Fri, 13 Nov 1998 06:17:42 -0800 (PST) (envelope-from andyf@speednet.com.au) Received: from localhost (andyf@localhost) by backup.af.speednet.com.au (8.9.1/8.9.1) with ESMTP id BAA08071; Sat, 14 Nov 1998 01:16:34 +1100 (EST) X-Authentication-Warning: backup.zippynet.iol.net.au: andyf owned process doing -bs Date: Sat, 14 Nov 1998 01:16:34 +1100 (EST) From: Andy Farkas X-Sender: andyf@backup.zippynet.iol.net.au To: Diana Eichert cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I'd recommend running sshd as your main remote login process and only use > telnet within tcpwrappers as last resort. Ok, seeing as how I am the only person that has shell access, I will investigate sshd ... > If you telnet into your system from Win there is an ssh addon to teraterm > for a no cost alternative. Win?? Never heard of it ... :-) But just in case, where would one look for this addon?? -- :{ andyf@speednet.com.au Andy Farkas System Administrator Speed Internet Services http://www.speednet.com.au/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:33:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA12789 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:33:10 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ts.shopnet.com (ts.shopnet.com [208.131.136.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA12782 for ; Fri, 13 Nov 1998 06:33:08 -0800 (PST) (envelope-from deichert@ts.shopnet.com) Received: (from deichert@localhost) by ts.shopnet.com (8.8.4/8.6.12) id HAA05720; Fri, 13 Nov 1998 07:35:26 -0700 (MST) Date: Fri, 13 Nov 1998 07:35:26 -0700 (MST) From: Diana Eichert X-Sender: deichert@ts.shopnet.com To: Andrew McNaughton cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Depends on who is sniffing your network ;-) / if you access this system from the outside world. diana On Sat, 14 Nov 1998, Andy Farkas wrote: > > > Installing ssh won't save you a trip to the console if it's currently > > required, since you need access before you can install ssh. Once you're > > back up though you might consider installing ssh and running it as a > > daemon, (not through inetd) so that it acts as a backup access method in > > case your problem returns. > > > > Andrew McNaughton > > > > Are you suggesting that I replace telnetd with ssh?? Seeing as how I am > the only one that has shell access ... sounds .. secure... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:49:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA14338 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:49:52 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ts.shopnet.com (ts.shopnet.com [208.131.136.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA14333 for ; Fri, 13 Nov 1998 06:49:50 -0800 (PST) (envelope-from deichert@ts.shopnet.com) Received: (from deichert@localhost) by ts.shopnet.com (8.8.4/8.6.12) id HAA05859; Fri, 13 Nov 1998 07:52:08 -0700 (MST) Date: Fri, 13 Nov 1998 07:52:08 -0700 (MST) From: Diana Eichert X-Sender: deichert@ts.shopnet.com To: Andy Farkas cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org teraterm: http://tucows.ideal.net.au/adnload/dlttermp.html ttssh: http://www.zip.com.au/~roca/ttssh.html On Sat, 14 Nov 1998, Andy Farkas wrote: > > > I'd recommend running sshd as your main remote login process and only use > > telnet within tcpwrappers as last resort. > > Ok, seeing as how I am the only person that has shell access, I will > investigate sshd ... > > > > If you telnet into your system from Win there is an ssh addon to teraterm > > for a no cost alternative. > > Win?? Never heard of it ... :-) But just in case, where would one look > for this addon?? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 06:56:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA15309 for freebsd-isp-outgoing; Fri, 13 Nov 1998 06:56:30 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA15290; Fri, 13 Nov 1998 06:56:21 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA113198792; Fri, 13 Nov 1998 09:53:12 -0500 Date: Fri, 13 Nov 1998 09:53:12 -0500 (EST) From: Bill Fumerola To: Archie Cobbs Cc: "Jason T. Nelson" , isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question In-Reply-To: <199811122243.OAA20718@bubba.whistle.com> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 12 Nov 1998, Archie Cobbs wrote: > Yes, PPTP is about what you'd expect from Microsoft security-wise. > However, it's the only instance of what the original poster asked > for that runs on *Win95* that I know of.. There is a SKIP Win95 client. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 07:10:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA17150 for freebsd-isp-outgoing; Fri, 13 Nov 1998 07:10:39 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA17143 for ; Fri, 13 Nov 1998 07:10:35 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA118459711; Fri, 13 Nov 1998 10:08:31 -0500 Date: Fri, 13 Nov 1998 10:08:31 -0500 (EST) From: Bill Fumerola To: Andrew McNaughton Cc: Andy Farkas , freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 14 Nov 1998, Andrew McNaughton wrote: > Installing ssh won't save you a trip to the console if it's currently > required, since you need access before you can install ssh. Once you're > back up though you might consider installing ssh and running it as a > daemon, (not through inetd) so that it acts as a backup access method in > case your problem returns. More accuratly: Installing ssh won't save you a trip to the console, because it too uses a pty. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 07:14:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA17677 for freebsd-isp-outgoing; Fri, 13 Nov 1998 07:14:15 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA17671 for ; Fri, 13 Nov 1998 07:14:11 -0800 (PST) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA120359959; Fri, 13 Nov 1998 10:12:39 -0500 Date: Fri, 13 Nov 1998 10:12:39 -0500 (EST) From: Bill Fumerola To: Andy Farkas Cc: Diana Eichert , freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 14 Nov 1998, Andy Farkas wrote: > > I'd recommend running sshd as your main remote login process and only use > > telnet within tcpwrappers as last resort. > > Ok, seeing as how I am the only person that has shell access, I will > investigate sshd ... It's quite nice, as both a telnet and rlogin/rsh replacement. Check out /usr/ports/security/ssh > > If you telnet into your system from Win there is an ssh addon to teraterm > > for a no cost alternative. > > Win?? Never heard of it ... :-) But just in case, where would one look > for this addon?? Secure CRT (www.vandyke.com) is a fine Windows telnet/ssh program, might I add. - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 07:24:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA19361 for freebsd-isp-outgoing; Fri, 13 Nov 1998 07:24:13 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from jekyll.piermont.com (jekyll.piermont.com [206.1.51.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA19353; Fri, 13 Nov 1998 07:24:05 -0800 (PST) (envelope-from perry@jekyll.piermont.com) Received: from jekyll (localhost [[UNIX: localhost]]) by jekyll.piermont.com (8.8.8/8.6.12) with ESMTP id KAA00189; Fri, 13 Nov 1998 10:22:51 -0500 (EST) Message-Id: <199811131522.KAA00189@jekyll.piermont.com> To: Chuck Robey cc: Artur Grabowski , Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes In-reply-to: Your message of "Thu, 12 Nov 1998 21:41:36 EST." Reply-To: perry@piermont.com X-Reposting-Policy: redistribute only with permission Mime-Version: 1.0 (generated by tm-edit 7.108) Content-Type: text/plain; charset=US-ASCII Date: Fri, 13 Nov 1998 10:22:51 -0500 From: "Perry E. Metzger" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Chuck Robey writes: > > Or you can get almost the same thing for free from http://www.eddieware.org [...] > The guy's trying to make a living, and you're not. So? Why does that give you a reason to be deferential? The world doesn't *owe* him a living... .pm To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 08:18:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA25688 for freebsd-isp-outgoing; Fri, 13 Nov 1998 08:18:31 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from samizdat.uucom.com (samizdat.uucom.com [198.202.217.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA25683; Fri, 13 Nov 1998 08:18:23 -0800 (PST) (envelope-from cshenton@uucom.com) Received: (from cshenton@localhost) by samizdat.uucom.com (8.9.1/8.9.0) id LAA07152; Fri, 13 Nov 1998 11:17:49 -0500 To: Archie Cobbs Cc: jtn@eboai.org (Jason T. Nelson), isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question References: <199811122243.OAA20718@bubba.whistle.com> From: Chris Shenton Date: 13 Nov 1998 11:17:49 -0500 In-Reply-To: Archie Cobbs's message of Thu, 12 Nov 1998 14:43:00 -0800 (PST) Message-ID: <864ss3r2he.fsf@samizdat.uucom.com> Lines: 9 X-Mailer: Gnus v5.5/Emacs 20.2 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Archie Cobbs writes: > Yes, PPTP is about what you'd expect from Microsoft security-wise. > However, it's the only instance of what the original poster asked > for that runs on *Win95* that I know of.. I believe Sun's SKIP runs on w95, as well as NT, Solaris. Not sure if that version interoperates with the free SKIP code which has been ported to FreeBSD et al. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 09:15:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA03189 for freebsd-isp-outgoing; Fri, 13 Nov 1998 09:15:28 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA03172; Fri, 13 Nov 1998 09:15:24 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id JAA11727; Fri, 13 Nov 1998 09:14:23 -0800 (PST) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma011721; Fri, 13 Nov 98 09:14:08 -0800 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id JAA23636; Fri, 13 Nov 1998 09:14:07 -0800 (PST) From: Archie Cobbs Message-Id: <199811131714.JAA23636@bubba.whistle.com> Subject: Re: VPN, an off topic question In-Reply-To: from Bill Fumerola at "Nov 13, 98 09:53:12 am" To: billf@chc-chimes.com (Bill Fumerola) Date: Fri, 13 Nov 1998 09:14:07 -0800 (PST) Cc: jtn@eboai.org, isp@FreeBSD.ORG, questions@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bill Fumerola writes: > On Thu, 12 Nov 1998, Archie Cobbs wrote: > > > Yes, PPTP is about what you'd expect from Microsoft security-wise. > > However, it's the only instance of what the original poster asked > > for that runs on *Win95* that I know of.. > > There is a SKIP Win95 client. Of course! (how could I forget :-) SKIP is much more secure than PPTP (more correctly, the MPPE encryption that the Microsoft code uses over PPTP; PPTP does not itself specify any security). -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 10:23:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA11725 for freebsd-isp-outgoing; Fri, 13 Nov 1998 10:23:41 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from natasha.wolfram.com (natasha.wolfram.com [140.177.4.77]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA11720; Fri, 13 Nov 1998 10:23:39 -0800 (PST) (envelope-from weingart@natasha.wolfram.com) Received: from natasha.wolfram.com (weingart@localhost [127.0.0.1]) by natasha.wolfram.com (8.8.8/8.8.8) with ESMTP id MAA00814; Fri, 13 Nov 1998 12:22:31 -0600 (CST) X-Mailer: exmh version 2.0.1 12/23/97 To: The Hermit Hacker cc: Alex Belits , Chuck Robey , Artur Grabowski , Tech1 , hackers@FreeBSD.ORG, isp@FreeBSD.ORG, tech@openbsd.org, tech-kern@netbsd.org Subject: Re: Detailed info on Fail-safe cluster for Freebsd/unixes In-Reply-To: Message from The Hermit Hacker of "Thu, 12 Nov 1998 23:58:38 -0400." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 13 Nov 1998 12:22:30 -0600 Message-ID: <2468.910981350@natasha.wolfram.com> From: Tobias Weingartner Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thursday, November 12, The Hermit Hacker wrote: > > Actually, I have to quickly agree with Chuck on this...I don't > personally want WordPerfect, mind you. But, I would be willing to pay for > a copy of StarOffice 5.0 if it were native to FreeBSD, since it would > effectively allow me to totally ditch any reliance I have on Winbloze... > > I wish there were a way of "convincing" commercial enterprises to > port to us :( Working in an commercial environment, where whole universities have asked for certain ports of the software, I can say the following. The companies are not just interested in getting something running, slapping it on a CD and shipping it to whoever pays some minimal amount for it. (I doubt you can afford the real cost of development. That might run several $100K for a decent sized product.) They also want to run it through their test suites, get managers to sign off on it, run it through SQA, fix critical bugs in it, etc. I doubt there are companies out there, who would release a flagship product of theirs, untested. It would have bugs in it, and would damage the reputation of the company... At least, that is they way most of them seem to think. --Toby. *----------------------------------------------------------------------------* | Tobias Weingartner | Email: weingart@Wolfram.com | Wolfram Research Inc. | | #8-1514 Grandview |-----------------------------| 100 Tradecenter Drive | | Champaign, IL | Unix Guru, Admin, Sys-Prgmr | Champaign, IL | |----------------------------------------------------------------------------| | %SYSTEM-F-ANARCHISM, The operating system has been overthrown | *----------------------------------------------------------------------------* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 12:38:06 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA25869 for freebsd-isp-outgoing; Fri, 13 Nov 1998 12:38:06 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from blondie.ottawa.cc (blondie.ottawa.cc [209.112.49.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA25857 for ; Fri, 13 Nov 1998 12:38:02 -0800 (PST) (envelope-from mat@blondie.ottawa.cc) Received: from localhost (mat@localhost) by blondie.ottawa.cc (8.9.1/8.9.1) with ESMTP id UAA17123; Fri, 13 Nov 1998 20:37:13 -0500 (EST) (envelope-from mat@blondie.ottawa.cc) Date: Fri, 13 Nov 1998 20:37:13 -0500 (EST) From: User MAT To: Jesper Skriver cc: Leif Neland , freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <19981113090526.A10967@skriver.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > The "ethernet", which is only a crossed 10BT cable between the two > > routers, does it need real ip adresses? > > > > > > +-----------+ +-----------+ +----+ ----- > > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > > 3C's | 1605 | | 100x | | +---- > > +-----------+ ^ +-----------+ +----+ > > | > > Can I use 192.168.1.0-adresses here? > > Or even unnumbered ip? > > > > Our uplink isp wants us to subnet one of our C's in a /30, is this really > > nessecary? > > You can't use unnumbered on broadcast media aka ethernet, so you need to > assign addresses to the interfaces, but these can be RFC1918 addresses, > that is if your ISP is willing to accept this. If you read the quote below, the third paragraph states that private IP's cannot have direct contact to the Internet. So IHO, the answer is no, you have to use a Globally un-Ambigous address. Mathew Quote from RFC 1918: (pg4..pg5, please excuse formating errors) An enterprise that decides to use IP addresses out of the address space defined in this document can do so without any coordination with IANA or an Internet registry. The address space can thus be used by many enterprises. Addresses within this private address space will only be unique within the enterprise, or the set of enterprises which choose to cooperate over this space so they may communicate with each other in their own private internet. As before, any enterprise that needs globally unique address space is required to obtain such addresses from an Internet registry. An enterprise that requests IP addresses for its external connectivity will never be assigned addresses from the blocks defined above. In order to use private address space, an enterprise needs to determine which hosts do not need to have network layer connectivity outside the enterprise in the foreseeable future and thus could be classified as private. Such hosts will use the private address space defined above. Private hosts can communicate with all other hosts inside the enterprise, both public and private. [HERE-> However, they cannot have IP connectivity to any host outside of the enterprise. [<- HERE] While not having external (outside of the enterprise) IP connectivity private hosts can still have access to external services via mediating gateways (e.g., application layer gateways). All other hosts will be public and will use globally unique address space assigned by an Internet Registry. Public hosts can communicate with other hosts inside the enterprise both public and private and can have IP connectivity to public hosts outside the enterprise. Public hosts do not have connectivity to private hosts of other enterprises. Because private addresses have no global meaning, routing information about private networks shall not be propagated on inter-enterprise links, and packets with private source or destination addresses should not be forwarded across such links. Routers in networks not using private address space, especially those of Internet service providers, are expected to be configured to reject (filter out) routing information about private networks. If such a router receives such information the rejection shall not be treated as a routing protocol error. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 14:52:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA14574 for freebsd-isp-outgoing; Fri, 13 Nov 1998 14:52:43 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freesbee.t.dk (freesbee.t.dk [193.163.159.72]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id OAA14567 for ; Fri, 13 Nov 1998 14:52:40 -0800 (PST) (envelope-from jesper@freesbee.t.dk) Received: (qmail 28192 invoked by uid 1001); 13 Nov 1998 22:52:16 -0000 Date: Fri, 13 Nov 1998 23:52:16 +0100 From: Jesper Skriver To: User MAT Cc: Leif Neland , freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? Message-ID: <19981113235216.A28029@skriver.dk> References: <19981113090526.A10967@skriver.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.94.15i In-Reply-To: ; from User MAT on Fri, Nov 13, 1998 at 08:37:13PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > You can't use unnumbered on broadcast media aka ethernet, so you need to > > assign addresses to the interfaces, but these can be RFC1918 addresses, > > that is if your ISP is willing to accept this. > > If you read the quote below, the third paragraph states that private IP's > cannot have direct contact to the Internet. So IHO, the answer is no, you > have to use a Globally un-Ambigous address. --quote-- Private hosts can communicate with all other hosts inside the enterprise, both public and private. [HERE-> However, they cannot have IP connectivity to any host outside of the enterprise. [<- HERE] --quote-- What is ment here is that the host which is assigned RFC1918 addresses cannot communicate with "the Internet", there is nothing wrong with having RFC1918 addresses on interfaces that only has "internal" connectivity. Here in Denmark the national school backbone is running RFC1918 addresses on it's routers, no problem, as long as all hosts that need Internet connectivity uses real addresses ... I also know that several larger US NSP's use RFC1918 in their backbones ... /Jesper -- Jesper Skriver (JS4261-RIPE), Network manager Tele Danmark DataNet, IP section (AS3292) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 15:19:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA18520 for freebsd-isp-outgoing; Fri, 13 Nov 1998 15:19:59 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from elvis.mu.org (elvis.mu.org [206.156.231.253]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA18512 for ; Fri, 13 Nov 1998 15:19:57 -0800 (PST) (envelope-from josh@frantastic.com) Received: from localhost (josh@localhost) by elvis.mu.org (8.9.1/8.9.1) with ESMTP id RAA07791 for ; Fri, 13 Nov 1998 17:19:51 -0600 (CST) (envelope-from josh@frantastic.com) Date: Fri, 13 Nov 1998 17:19:51 -0600 (CST) From: Josh Franta X-Sender: josh@elvis.mu.org To: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This RFC describes the "best" practices for using reserved addresses. A less strict way to interprut rfc1918 might be to say that any host (interface) that uses rfc1918 address space shouldn't *expect* connectivity to the public Internet (short of some sort of gateway). NANOG had a related discussion several weeks ago. Basically what it came down to was that using rfc1918 address space on p2p links *may* break PMTU discovery. It would only break PMTU discovery when one of the involved parties (including trasit ASs) filters the RFC1918 address space. This type of filtering happens to be recommened in rfc1918 :). So it's probably not recommened since it could potentially cause you problems. For more information, check out: http://users.worldgate.com/~marcs/mtu/ Or, search the NANOG archives (www.nanog.org) for this thread. I believe the title was something like: RFC1918: Does it break Path MTU discovery? josh franta mailto:josh@frantastic.com http://josh.frantastic.com On Fri, 13 Nov 1998, User MAT wrote: > > If you read the quote below, the third paragraph states that private IP's > cannot have direct contact to the Internet. So IHO, the answer is no, you > have to use a Globally un-Ambigous address. > > Mathew > > Quote from RFC 1918: (pg4..pg5, please excuse formating errors) > [snipped] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 15:30:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA20009 for freebsd-isp-outgoing; Fri, 13 Nov 1998 15:30:53 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from blondie.ottawa.cc (blondie.ottawa.cc [209.112.49.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA20004 for ; Fri, 13 Nov 1998 15:30:50 -0800 (PST) (envelope-from mat@blondie.ottawa.cc) Received: from localhost (mat@localhost) by blondie.ottawa.cc (8.9.1/8.9.1) with ESMTP id XAA17317; Fri, 13 Nov 1998 23:31:12 -0500 (EST) (envelope-from mat@blondie.ottawa.cc) Date: Fri, 13 Nov 1998 23:31:12 -0500 (EST) From: User MAT To: Jesper Skriver cc: Leif Neland , freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <19981113235216.A28029@skriver.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > --quote-- > Private hosts can communicate with all other hosts inside the enterprise, > both public and private. [HERE-> However, they cannot have > IP connectivity to any host outside of the enterprise. [<- HERE] > --quote-- > > What is ment here is that the host which is assigned RFC1918 addresses > cannot communicate with "the Internet", there is nothing wrong with > having RFC1918 addresses on interfaces that only has "internal" > connectivity. I agree that it's ok to have private IP's on private interfaces and say, natd the public interface, the RFC offers this as a option. But if it's just a router and you traceroute through it, the IP address that comes up is ambigous. > > Here in Denmark the national school backbone is running RFC1918 > addresses on it's routers, no problem, as long as all hosts that need > Internet connectivity uses real addresses ... > > I also know that several larger US NSP's use RFC1918 in their backbones I know and it drives me nuts. They don't block the private router info and packets, this causes confusion on some of my machines. Furthermore, there's no co-ordianation of use of private IPs so that two ISPs could use the same private IP their routers and have a traceroute report an same IP for a hop twice, doesn't that seem wrong? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 15:39:49 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA21003 for freebsd-isp-outgoing; Fri, 13 Nov 1998 15:39:49 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freesbee.t.dk (freesbee.t.dk [193.163.159.72]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA20996 for ; Fri, 13 Nov 1998 15:39:45 -0800 (PST) (envelope-from jesper@freesbee.t.dk) Received: (qmail 29164 invoked by uid 1001); 13 Nov 1998 23:39:23 -0000 Date: Sat, 14 Nov 1998 00:39:23 +0100 From: Jesper Skriver To: User MAT Cc: Leif Neland , freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? Message-ID: <19981114003922.D28029@skriver.dk> References: <19981113235216.A28029@skriver.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.94.15i In-Reply-To: ; from User MAT on Fri, Nov 13, 1998 at 11:31:12PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Here in Denmark the national school backbone is running RFC1918 > > addresses on it's routers, no problem, as long as all hosts that need > > Internet connectivity uses real addresses ... > > > > I also know that several larger US NSP's use RFC1918 in their backbones > > I know and it drives me nuts. They don't block the private router > info and packets, this causes confusion on some of my machines. > Furthermore, there's no co-ordianation of use of private IPs so that two > ISPs could use the same private IP their routers and have a traceroute > report an same IP for a hop twice, doesn't that seem wrong? It makes debug'ing more difficult, but it has it's advantages also, but I also prefer to use assigned addresses, and this is what Tele Danmark has chosen in it's backbone. But it could solve Leif's problem, if Telia had accepted it, and they didn't he told me offline. /Jesper -- Jesper Skriver (JS4261-RIPE), Network manager Tele Danmark DataNet, IP section (AS3292) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 15:51:37 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA22337 for freebsd-isp-outgoing; Fri, 13 Nov 1998 15:51:37 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from aniwa.sky (p17-nas1.wlg.ihug.co.nz [216.100.145.17]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA22332 for ; Fri, 13 Nov 1998 15:51:33 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.8/8.8.7) with SMTP id MAA00943; Sat, 14 Nov 1998 12:50:54 +1300 (NZDT) (envelope-from andrew@squiz.co.nz) Date: Sat, 14 Nov 1998 12:50:47 +1300 (NZDT) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: Andy Farkas cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 14 Nov 1998, Andy Farkas wrote: > > Installing ssh won't save you a trip to the console if it's currently > > required, since you need access before you can install ssh. Once you're > > back up though you might consider installing ssh and running it as a > > daemon, (not through inetd) so that it acts as a backup access method in > > case your problem returns. > > > > Andrew McNaughton > > > > Are you suggesting that I replace telnetd with ssh?? Seeing as how I am > the only one that has shell access ... sounds .. secure... What I was suggesting is that if you have a problem with telnet and that fixing it requires a trip to a remotely located machine, then you might want a backup access method other than telnet. Ssh has security advantages but the redundancy (ie leave telnet in) is what I was suggesting might be useful in your current situation. I routinely use ssh rather than telnet, but I still have telnet there as a fallback. Ssh installs cleanly and easily from the standard sources. It won't take you long to get going. Security is not the issue you've raised, but in so far as you're concerned about sniffers, it's worth keeping in mind that the number of users is a minor security issue compared to sending your root password in clear text. Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 16:01:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA23427 for freebsd-isp-outgoing; Fri, 13 Nov 1998 16:01:08 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from aniwa.sky (p17-nas1.wlg.ihug.co.nz [216.100.145.17]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA23416 for ; Fri, 13 Nov 1998 16:01:03 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.8/8.8.7) with SMTP id MAA01043; Sat, 14 Nov 1998 12:59:53 +1300 (NZDT) (envelope-from andrew@squiz.co.nz) Date: Sat, 14 Nov 1998 12:59:53 +1300 (NZDT) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: Bill Fumerola cc: Andy Farkas , freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 13 Nov 1998, Bill Fumerola wrote: > On Sat, 14 Nov 1998, Andrew McNaughton wrote: > > > Installing ssh won't save you a trip to the console if it's currently > > required, since you need access before you can install ssh. Once you're > > back up though you might consider installing ssh and running it as a > > daemon, (not through inetd) so that it acts as a backup access method in > > case your problem returns. > > More accuratly: Installing ssh won't save you a trip to the console, > because it too uses a pty. If there are no other shell users then the suggestion that there are to few tty's seems a bit dubious. Could be they've been locked up somehow. If one issues commands as 'ssh -l user host command', does the tty get used at all? If not, then it could be useful. I guess rsh could be used similarly and might be installed? Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 16:17:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA26951 for freebsd-isp-outgoing; Fri, 13 Nov 1998 16:17:41 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from aniwa.sky (p17-nas1.wlg.ihug.co.nz [216.100.145.17]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA26935 for ; Fri, 13 Nov 1998 16:17:35 -0800 (PST) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.8/8.8.7) with SMTP id NAA01181; Sat, 14 Nov 1998 13:16:06 +1300 (NZDT) (envelope-from andrew@squiz.co.nz) Date: Sat, 14 Nov 1998 13:16:05 +1300 (NZDT) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: Bill Fumerola cc: Andy Farkas , Diana Eichert , freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 13 Nov 1998, Bill Fumerola wrote: > On Sat, 14 Nov 1998, Andy Farkas wrote: > > > If you telnet into your system from Win there is an ssh addon to teraterm > > > for a no cost alternative. > > > > Win?? Never heard of it ... :-) But just in case, where would one look > > for this addon?? > > Secure CRT (www.vandyke.com) is a fine Windows telnet/ssh program, might I > add. Secure CRT is available only in the US and Canada, whereas Andy looks to be writing from Australia. Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 16:36:46 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA28579 for freebsd-isp-outgoing; Fri, 13 Nov 1998 16:36:46 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ts.shopnet.com (ts.shopnet.com [208.131.136.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA28574 for ; Fri, 13 Nov 1998 16:36:44 -0800 (PST) (envelope-from deichert@ts.shopnet.com) Received: (from deichert@localhost) by ts.shopnet.com (8.8.4/8.6.12) id RAA10087; Fri, 13 Nov 1998 17:39:00 -0700 (MST) Date: Fri, 13 Nov 1998 17:39:00 -0700 (MST) From: Diana Eichert X-Sender: deichert@ts.shopnet.com To: Andy Farkas cc: freebsd-isp@FreeBSD.ORG Subject: Re: no more telnet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hence the referral to Aus. URL's for teraterm and ttssh. :-) diana On Sat, 14 Nov 1998, Andrew McNaughton wrote: > > Secure CRT (www.vandyke.com) is a fine Windows telnet/ssh program, might I > > add. > > Secure CRT is available only in the US and Canada, whereas Andy looks to > be writing from Australia. > > Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 21:00:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA14845 for freebsd-isp-outgoing; Fri, 13 Nov 1998 21:00:13 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from mail.kersur.net (mail.kersur.net [199.79.199.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA14827; Fri, 13 Nov 1998 21:00:11 -0800 (PST) (envelope-from dswartz@druber.com) Received: from manticore (manticore.druber.com [207.180.95.108]) by mail.kersur.net (8.9.1/8.9.1) with SMTP id AAA15072; Sat, 14 Nov 1998 00:00:46 -0500 (EST) Message-Id: <3.0.5.32.19981113235929.00985eb0@mail.kersur.net> X-Sender: druber@mail.kersur.net X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.5 (32) Date: Fri, 13 Nov 1998 23:59:29 -0500 To: Ken Lam From: Dan Swartzendruber Subject: Re: VPN, an off topic question Cc: wjw@IAEhv.nl, isp@FreeBSD.ORG, questions@FreeBSD.ORG In-Reply-To: <4.1.19981112201502.00925ed0@awod.com> References: <199811120839.JAA01253@surf.IAE.nl> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I looked at www.skip.org, but the FreeBSD support is stone old. Dates back to 2.1 :( Anyone planning on taking the sources and trying to update them? I'd be willing to give it a try, but I have zero experience with FreeBSD modules (which is what is involved here). To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 13 21:33:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA17096 for freebsd-isp-outgoing; Fri, 13 Nov 1998 21:33:00 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from findmail.com (m6.findmail.com [209.185.96.140]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id VAA17091 for ; Fri, 13 Nov 1998 21:32:59 -0800 (PST) (envelope-from ASINGH00@HOTMAIL.COM) Received: (qmail 19101 invoked by uid 505); 14 Nov 1998 05:33:28 -0000 Date: 14 Nov 1998 05:33:28 -0000 Message-ID: <19981114053328.19100.qmail@findmail.com> Received: from 152.176.109.63 (via http) from to list "freebsd-isp" From: "AMARJOT SINGH" Subject: Re: t-1 from whom? In-Reply-To: <36155347.63A2@echidna.com> To: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Did you try T-1 from Qwest LCI ? I bet they have a better price than $1000/month. Graphic Rezidew wrote: > > > > Hi, I run a network over my dual channel ISDN connection to do some shell, > > mail, and web-serving. As one would imagine, I am saturating my bandwidth. > > I have decided to get a T-1 and am considering service from AT-WORK (a > > company affiliated with AT-HOME, the cable modem people). The price is > > quite fair $1000/mo for a line that is basicly only restricting me from > > providing dial-up, based on the terms of usage doc. > > The Thing that concerns me is that their network is so NEW...I am > > wondering if they have clean through put to the rest of the internet. > > > > If anyone uses them Please let me know what your experience has been. > > > > NOTE: I am not interested in hearing about how swell your cable modem is. > > I am not signing up for cable modem service. This will be a real > > T-1 on a network seperate from AT-HOME. > > > You don't say what region you are in. We seriously considered getting T-1 > into our NYC office before deciding to go with colocation instead. One of > the T-1 candidates was @home - their price was good, but we got nervous > about their quality. > > Please don't read this as a condemnation of them, as the evidence is too > slim, but you could consider it a red flag. We had a client with partial T-1 > from @home into their NYC office. I tried accessing their webserver from > various points external to @home's network. I was not satisfied with the > results, in particular it looked like there might be problems with their > peering into particular networks. The same networks worked fine with Exodus, > NJ (one of our colo candidates). But about this time the @home issue became > moot at we switched our focus to colo. > > Ask @home for a list of clients that are connected via whatever point you > will be. Access (http, ping, traceroute) those clients webservers, etc. from > a variety of ISP's, etc. You might also want to ask @home for specific > details of their network and headroom policies. > > > -- > Graeme Tait - Echidna > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > ----- See the original message at http://www.egroups.com/list/freebsd-isp/?start=7564 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Nov 14 07:13:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA20159 for freebsd-isp-outgoing; Sat, 14 Nov 1998 07:13:26 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from nak.myhouse.com (nak.myhouse.com [209.70.45.162]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA20145; Sat, 14 Nov 1998 07:13:21 -0800 (PST) (envelope-from zoonie@myhouse.com) Received: from localhost (zoonie@localhost) by nak.myhouse.com (8.8.8/8.8.7) with ESMTP id KAA07260; Sat, 14 Nov 1998 10:11:51 -0500 (EST) (envelope-from zoonie@myhouse.com) X-Authentication-Warning: nak.myhouse.com: zoonie owned process doing -bs Date: Sat, 14 Nov 1998 10:11:51 -0500 (EST) From: zoonie To: Chris Shenton cc: Archie Cobbs , "Jason T. Nelson" , isp@FreeBSD.ORG, questions@FreeBSD.ORG Subject: Re: VPN, an off topic question In-Reply-To: <864ss3r2he.fsf@samizdat.uucom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org the commerical version will interoperate with the free SKIP code (at least it did a while ago according to the info on www.skip.org, i don't know what's new with the product right now). i looked into it but never got the commercial version. the free version for win95 that was/is on the skip site had different encryption algorithms and won't work with the freebsd version. i gave that info to somebody on this list about a year ago (or when ever it was that i got skip going on a few machines) and i think that he did indeed get the commercial CD and has stuff interoperating. if i remember correctly his name was jim flowers. you can probably find something in the list archives.... On 13 Nov 1998, Chris Shenton wrote: > Archie Cobbs writes: > > > Yes, PPTP is about what you'd expect from Microsoft security-wise. > > However, it's the only instance of what the original poster asked > > for that runs on *Win95* that I know of.. > > I believe Sun's SKIP runs on w95, as well as NT, Solaris. Not sure if > that version interoperates with the free SKIP code which has been > ported to FreeBSD et al. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > --------------------------------------------- The devil finds work for idle circuits to do. --------------------------------------------- zoonie at myhouse dot com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Nov 14 07:55:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA22260 for freebsd-isp-outgoing; Sat, 14 Nov 1998 07:55:08 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gina.swimsuit.internet.dk (mail.swimsuit.internet.dk [194.255.12.232]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA22255 for ; Sat, 14 Nov 1998 07:55:06 -0800 (PST) (envelope-from root@swimsuit.internet.dk) Received: from localhost (localhost.swimsuit.internet.dk [127.0.0.1]) by gina.swimsuit.internet.dk (8.9.1/8.9.1) with ESMTP id QAA00645; Sat, 14 Nov 1998 16:54:31 +0100 (CET) (envelope-from root@swimsuit.internet.dk) Date: Sat, 14 Nov 1998 16:54:30 +0100 (CET) From: Leif Neland To: Jesper Skriver cc: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? In-Reply-To: <19981113090526.A10967@skriver.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 13 Nov 1998, Jesper Skriver wrote: > On Fri, Nov 13, 1998 at 01:29:52AM +0100, Leif Neland wrote: > > We had to put in a cisco 1605 router (with 2 ethernet ports) between our > > net and our isp supplying our backbone connection. > > > > The "ethernet", which is only a crossed 10BT cable between the two > > routers, does it need real ip adresses? > > > > > > +-----------+ +-----------+ +----+ ----- > > --our net---+ E0 E1 +------+ E0 S0 |-----+ | \ > > 3C's | 1605 | | 100x | | +---- > > +-----------+ ^ +-----------+ +----+ > > | > > Can I use 192.168.1.0-adresses here? > > Or even unnumbered ip? > > > > Our uplink isp wants us to subnet one of our C's in a /30, is this really > > nessecary? > > You can't use unnumbered on broadcast media aka ethernet, so you need to > assign addresses to the interfaces, Not even on a full duplex 10BT cable? Receiver A will only get data from Transmitter B and vice versa. Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Nov 14 11:20:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA08392 for freebsd-isp-outgoing; Sat, 14 Nov 1998 11:20:41 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freesbee.t.dk (freesbee.t.dk [193.163.159.72]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id LAA08380 for ; Sat, 14 Nov 1998 11:20:38 -0800 (PST) (envelope-from jesper@freesbee.t.dk) Received: (qmail 15592 invoked by uid 1001); 14 Nov 1998 19:20:15 -0000 Date: Sat, 14 Nov 1998 20:20:15 +0100 From: Jesper Skriver To: Leif Neland Cc: freebsd-isp@FreeBSD.ORG Subject: Re: two routers back to back: Do they need real ip-adresses? Message-ID: <19981114202015.A15584@skriver.dk> References: <19981113090526.A10967@skriver.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.94.15i In-Reply-To: ; from Leif Neland on Sat, Nov 14, 1998 at 04:54:30PM +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > You can't use unnumbered on broadcast media aka ethernet, so you need to > > assign addresses to the interfaces, > > Not even on a full duplex 10BT cable? Receiver A will only get data from > Transmitter B and vice versa. It's not the actual number of stations on the media, it the type of media and unnumbered in only supported on point-to-point interfaces, ethernet is a broadcast media ... /Jesper -- Jesper Skriver (JS4261-RIPE), Network manager Tele Danmark DataNet, IP section (AS3292) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Nov 14 14:39:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA21959 for freebsd-isp-outgoing; Sat, 14 Nov 1998 14:39:20 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from skunkworks.specialty.ab.ca (skunkworks.specialty.ab.ca [207.167.8.66]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA21954 for ; Sat, 14 Nov 1998 14:39:17 -0800 (PST) (envelope-from freebsd-isp@masterplan.org) Received: (from uucp@localhost) by skunkworks.specialty.ab.ca (8.8.8/8.8.8) with UUCP id PAA10193 for freebsd-isp@freebsd.org; Sat, 14 Nov 1998 15:38:56 -0700 (MST) (envelope-from freebsd-isp@masterplan.org) Received: from infomat.precident.com (infomat [192.168.4.2]) by gongshow.masterplan.org (8.8.8/8.8.8) with SMTP id PAA05573 for ; Sat, 14 Nov 1998 15:36:54 -0700 (MST) (envelope-from freebsd-isp@masterplan.org) Message-Id: <199811142236.PAA05573@gongshow.masterplan.org> From: freebsd-isp@masterplan.org (Jason George) To: freebsd-isp@FreeBSD.ORG Subject: Re: VPN, an off topic question Organization: The Master Plan Always Fails... Date: Sat, 14 Nov 1998 22:37:22 GMT Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I purchased the SKIP 3 Windows software for US$100 from Sun. It does indeed interoperate with the FreeBSD code. As far as I'm concerned, the free Windows software available from www.skip.org is a waste of time. It doesn't support tunnels, and contains only the global encryption. There are caveats for the SKIP 3 software, though. The first is that the "electronically downloadable" version from Sun is the "global" (512-bit key) version. To get the "export-controlled" (1024-bit key) or "US/Canada" (2048-bit key) versions, you must order the CD directly from SunExpress. This is not necessarily obvious until _after_ Sun has electronically debited the license fee to your credit card. (Getting a refund so that I can buy the 2048-bit version is proving to be a major pain. I've talked to too many Sun employees and have over the last 3 weeks and have yet to have a suitable remedy.) The second is that when I talked to my local Sun rep, he indicated that the 2048-bit version I desired was probably going to cost me ~CDN$250 (~US$165). So be forewarned that the strong encryption will cost a little more. The third is that the "global" version only supports DES-CBC and RC2-40 for key encryption, and RC2-40 and RC4-40 for traffic encryption. This made the integration of the global Windows software into my current SKIP VPN setup for testing a little more of a pain in the ass. The fourth and final caveat is that the documentation provided with the SKIP 3 software assumes the installing user will have some already significant background in broad SKIP/encryption/VPN technology. I had little problem installing and configuring the Windows software only because I've fought a bunch of battles integrating the FreeBSD implementation. Unless you're well-grounded in the underlying premises of encryption and secure networking, you're probably going to have a frustrating time getting things to work the first time. Hope this helps. --Jason j.b.georgeieee.org jbgprecident.com > >the commerical version will interoperate with the free SKIP code (at least >it did a while ago according to the info on www.skip.org, i don't know >what's new with the product right now). i looked into it but never got the >commercial version. the free version for win95 that was/is on the skip >site had different encryption algorithms and won't work with the freebsd >version. i gave that info to somebody on this list about a year ago (or >when ever it was that i got skip going on a few machines) and i think that >he did indeed get the commercial CD and has stuff interoperating. if i >remember correctly his name was jim flowers. you can probably find >something in the list archives.... > >On 13 Nov 1998, Chris Shenton wrote: > >> Archie Cobbs writes: >> >> > Yes, PPTP is about what you'd expect from Microsoft security-wise. >> > However, it's the only instance of what the original poster asked >> > for that runs on *Win95* that I know of.. >> >> I believe Sun's SKIP runs on w95, as well as NT, Solaris. Not sure if >> that version interoperates with the free SKIP code which has been >> ported to FreeBSD et al. >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-isp" in the body of the message >> > > >--------------------------------------------- >The devil finds work for idle circuits to do. >--------------------------------------------- >zoonie at myhouse dot com > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message