From owner-freebsd-isp Sun Jan 13 6:41:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from umail.ru (umail.mtu.ru [195.34.32.101]) by hub.freebsd.org (Postfix) with ESMTP id 37ADE37B404 for ; Sun, 13 Jan 2002 06:41:38 -0800 (PST) Received: from [62.5.184.178] (HELO mx2.mail.yahoo.com) by umail.ru (CommuniGate Pro SMTP 3.5.1) with ESMTP id 18749757; Sun, 13 Jan 2002 17:38:48 +0300 Message-ID: <00004e9f0db4$000061b3$00000ec2@mx2.mail.yahoo.com> To: From: americanherogirls20022003@yahoo.com Subject: fw: - G Date: Sun, 13 Jan 2002 09:41:36 -1700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit Reply-To: americanherogirls20022003@yahoo.com Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org American Hero Girls Calendar 2002 A Salute to the Honor, Bravery, Sacrifice, Dedication and Pride of our American Heroes: Firefighters, Police, Navy, Teachers, Air Force, Marines, Army, etc... For every calendar sold, a donation is made to a leading national charity. Just visit us online at: http://www.freehosting2001.com/FLORIDA2/MIAMI334/ ========================================================== You are receiving this email as a subscriber to the Double-Opt-In Standard Affiliate Mailing List. To remove yourself from all related maillists, just click here: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 7:32: 2 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 5033737B417 for ; Sun, 13 Jan 2002 07:31:52 -0800 (PST) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 5DA3116B13 for ; Sun, 13 Jan 2002 16:31:50 +0100 (CET) Received: from LenConrad.Go2France.com [66.64.14.18] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id AC5F6C401E8; Sun, 13 Jan 2002 16:48:47 +0100 Message-Id: <5.1.0.14.2.20020113090238.01f03ff8@mail.Go2France.com> X-Sender: LConrad@Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 13 Jan 2002 09:31:47 -0600 To: Freebsd-isp@freebsd.org From: Len Conrad Subject: tuning syslog.conf Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org We've got a gateway machine to which we're adding Bennett Todd's pop-before-smtp dynamic really access control. The mailboxes and pop logins are on an Imail machine whose pop daemon is logging to the syslog server on FreeBSD4.4R running postfix (IMGate). To use the smallest possible file for tailing, we've set up a !POP3D section in syslog.conf and log Imail POP3D to a file (successfully), but the POP3D messages are also logged to /var/log/messages. I can't see by what facility that's happening and so can't turn it off. Here's the -d output: # syslogd -d -4 listening on inet and/or inet6 socket sending on inet and/or inet6 socket off & running.... init cfline("*.err;kern.debug;auth.notice;mail.crit /dev/console", f, "*", "*") cfline("*.notice;kern.debug;lpr.info;mail.crit;news.err; /var/log/messages", f, "*", "*") cfline("security.* /var/log/security", f, "*", "*") cfline("mail.info /var/log/maillog", f, "*", "*") cfline("lpr.info /var/log/lpd-errs", f, "*", "*") cfline("cron.* /var/log/cron", f, "*", "*") cfline("*.err root", f, "*", "*") cfline("*.notice;news.err root", f, "*", "*") cfline("*.alert root", f, "*", "*") cfline("*.emerg *", f, "*", "*") cfline("*.* /var/log/slip.log", f, "startslip", "*") cfline("*.* /var/log/ppp.log", f, "ppp", "*") cfline("*.* /var/log/poplog", f, "POP3D", "*") cfline("*.none /var/log/messages", f, "POP3D", "*") 7 3 2 3 5 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X CONSOLE: /dev/console 7 5 2 5 5 5 6 3 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 X FILE: /var/log/messages X X X X X X X X X X X X X 8 X X X X X X X X X X X FILE: /var/log/security X X 6 X X X X X X X X X X X X X X X X X X X X X X FILE: /var/log/maillog X X X X X X 6 X X X X X X X X X X X X X X X X X X FILE: /var/log/lpd-errs X X X X X X X X X 8 X X X X X X X X X X X X X X X FILE: /var/log/cron 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X USERS: root, 5 5 5 5 5 5 5 3 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 X USERS: root, 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 X USERS: root, 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 X WALL: 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/slip.log (startslip) 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/ppp.log (ppp) 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/poplog (POP3D) X X X X X X X X X X X X X X X X X X X X X X X X X FILE: /var/log/messages (POP3D) logmsg: pri 56, flags 4, from lc2, msg syslogd: restart syslogd: restarted logmsg: pri 166, flags 17, from lc2, msg Jan 13 09:11:55 lc2 syslogd: exiting on signal 2 cvthname(212.73.210.73) logmsg: pri 15, flags 0, from ms1.meiway.com, msg POP3D (000001D7) logon success for LConrad mail.Go2France.com from 66.64.14.18 Logging to FILE /var/log/messages Logging to USERS Logging to FILE /var/log/poplog How do we stop POP3D from going to messages? 2. For a little ACL, when I add an "allowed peer" option ( ipaddr/masklen[:service] ) to the above syslog command "-a 212.73.210.73/24", the -d output becomes: # syslogd -d -4 -a 212.73.210.73 allowaddr: rule 0: numeric, addr = 212.73.210.0, mask = 255.255.255.0; port = 514 listening on inet and/or inet6 socket sending on inet and/or inet6 socket off & running.... and all syslog messages from 212.73.210.73 get this treatment: cvthname(212.73.210.73) validate: dgram from IP 212.73.210.73, port 3506, name ms1.meiway.com; rejected in rule 0 due to port mismatch. ok, so we use "-a 212.73.210.73/24:*" and get: # syslogd -d -4 -a 212.73.210.73:* syslogd: No match. I've been all over man 3 and man 8 for syslogd, syslog, syslcon.conf and can't figure out what we're doing wrong in 2., or how to do 1. Thanks Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 7:46: 5 2002 Delivered-To: freebsd-isp@freebsd.org Received: from thor.ghim.org (thor.ghim.org [209.249.182.115]) by hub.freebsd.org (Postfix) with ESMTP id CBD4037B416 for ; Sun, 13 Jan 2002 07:46:02 -0800 (PST) Received: from aegle (aegle.nexus [192.168.1.128]) by thor.ghim.org (8.11.3/8.11.3) with SMTP id g0DFiLc24185; Sun, 13 Jan 2002 15:44:21 GMT Received: by aegle (sSMTP sendmail emulation); Sun, 13 Jan 2002 15:44:15 +0000 Date: Sun, 13 Jan 2002 15:44:15 +0000 From: George Lewis To: Len Conrad Cc: Freebsd-isp@FreeBSD.ORG Subject: Re: tuning syslog.conf Message-ID: <20020113154415.GN12373@schvin.net> References: <5.1.0.14.2.20020113090238.01f03ff8@mail.Go2France.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <5.1.0.14.2.20020113090238.01f03ff8@mail.Go2France.com> User-Agent: Mutt/1.3.24i X-PGP-Fingerprint: 3D79 875A 9E33 E7BE E868 7EFA A703 5DDA A7C0 9E2C Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > 2. For a little ACL, when I add an "allowed peer" option ( > ipaddr/masklen[:service] ) to the above syslog command "-a > 212.73.210.73/24", the -d output becomes: > > # syslogd -d -4 -a 212.73.210.73 > allowaddr: rule 0: numeric, addr = 212.73.210.0, mask = 255.255.255.0; port > = 514 > listening on inet and/or inet6 socket > sending on inet and/or inet6 socket > off & running.... > > and all syslog messages from 212.73.210.73 get this treatment: > > cvthname(212.73.210.73) > validate: dgram from IP 212.73.210.73, port 3506, name ms1.meiway.com; > rejected in rule 0 due to port mismatch. > > ok, so we use "-a 212.73.210.73/24:*" and get: > > # syslogd -d -4 -a 212.73.210.73:* > syslogd: No match. > > I've been all over man 3 and man 8 for syslogd, syslog, syslcon.conf and > can't figure out what we're doing wrong in 2., or how to do 1. Perhaps your shell is expanding the * for you? Have you by chance tried: syslogd -d -4 -a 212.73.210.73:\* HTH, George > > Thanks > Len > > > http://MenAndMice.com/DNS-training > http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K > http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- http://schvin.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 9:17:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 289EC37B416 for ; Sun, 13 Jan 2002 09:17:42 -0800 (PST) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 28E9F16B13 for ; Sun, 13 Jan 2002 18:17:40 +0100 (CET) Received: from LenConrad.Go2France.com [66.64.14.18] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A52D5EA401F0; Sun, 13 Jan 2002 18:34:37 +0100 Message-Id: <5.1.0.14.2.20020113105640.01f03ff8@mail.Go2France.com> X-Sender: LConrad@Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 13 Jan 2002 11:17:37 -0600 To: freebsd-isp@freebsd.org From: Len Conrad Subject: Re: tuning syslog.conf In-Reply-To: <20020113154415.GN12373@schvin.net> References: <5.1.0.14.2.20020113090238.01f03ff8@mail.Go2France.com> <5.1.0.14.2.20020113090238.01f03ff8@mail.Go2France.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Perhaps your shell is expanding the * for you? Have you by chance >tried: > > syslogd -d -4 -a 212.73.210.73:\* > >HTH, great, it did: syslogd -4 -d -a 212.73.210.73/32:\* allowaddr: rule 0: numeric, addr = 212.73.210.73, mask = 255.255.255.255; port = 0 and now the ACL works: validate: dgram from IP 212.73.210.73, port 4049, name ms1.meiway.com; accepted in rule 0. logmsg: pri 15, flags 0, from ms1.meiway.com, msg POP3D (00000072) logon success for LConrad mail.Go2France.com from 66.64.14.18 Logging to FILE /var/log/messages Logging to USERS Logging to FILE /var/log/poplog Thanks, George. Now please do your HTH thing on problem 1. :)) Len To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 11:35:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from xela.oopz.com (xela.oopz.com [209.20.244.131]) by hub.freebsd.org (Postfix) with ESMTP id C515D37B404 for ; Sun, 13 Jan 2002 11:35:09 -0800 (PST) Subject: RE: tuning syslog.conf MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Date: Sun, 13 Jan 2002 11:35:04 -0800 content-class: urn:content-classes:message X-MimeOLE: Produced By Microsoft Exchange V6.0.4712.0 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: tuning syslog.conf Thread-Index: AcGcR33QaHmcBxPgTqKVunaQLIUW9AAIQRtQ From: "Noah Davidson" To: "Len Conrad" , Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org If you are referring to Ipswich's imail I would strongly recommend something else. We have just moved off of imail due to security reasons. For example all user names and passwords are kept in the registry with the passwords kept in the HEX representation of the password. So as you can imagine all the passwords were very easy to retrieve to move onto a UNIX system. We are now using sendmail. It also turned out that many people (mainly spamers) have a full list of all of our users email addresses from our old imail server. If you are interested in this let me know I have many perl scripts that I wrote on windows to get all of the users and mail off of the imail server onto a FreeBSD sendmail box. Good luck. Thanks Noah -----Original Message----- From: Len Conrad [mailto:LConrad@Go2France.com] Sent: Sunday, January 13, 2002 7:32 AM To: Freebsd-isp@freebsd.org Subject: tuning syslog.conf We've got a gateway machine to which we're adding Bennett Todd's=20 pop-before-smtp dynamic really access control. The mailboxes and pop logins are on an Imail machine whose pop daemon is logging to the syslog server on FreeBSD4.4R running postfix (IMGate). To=20 use the smallest possible file for tailing, we've set up a !POP3D section=20 in syslog.conf and log Imail POP3D to a file (successfully), but the POP3D=20 messages are also logged to /var/log/messages. I can't see by what=20 facility that's happening and so can't turn it off. Here's the -d output: # syslogd -d -4 listening on inet and/or inet6 socket sending on inet and/or inet6 socket off & running.... init cfline("*.err;kern.debug;auth.notice;mail.crit /dev/console", f,=20 "*", "*") cfline("*.notice;kern.debug;lpr.info;mail.crit;news.err;=20 /var/log/messages", f, "*", "*") cfline("security.* /var/log/security",=20 f, "*", "*") cfline("mail.info /var/log/maillog",=20 f, "*", "*") cfline("lpr.info /var/log/lpd-errs",=20 f, "*", "*") cfline("cron.* /var/log/cron", f,=20 "*", "*") cfline("*.err root", f, "*", "*") cfline("*.notice;news.err root", f, "*", "*") cfline("*.alert root", f, "*", "*") cfline("*.emerg *", f, "*", "*") cfline("*.* /var/log/slip.log",=20 f, "startslip", "*") cfline("*.* /var/log/ppp.log",=20 f, "ppp", "*") cfline("*.* /var/log/poplog",=20 f, "POP3D", "*") cfline("*.none /var/log/messages",=20 f, "POP3D", "*") 7 3 2 3 5 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X CONSOLE: /dev/console 7 5 2 5 5 5 6 3 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 X FILE: /var/log/messages X X X X X X X X X X X X X 8 X X X X X X X X X X X FILE: /var/log/security X X 6 X X X X X X X X X X X X X X X X X X X X X X FILE: /var/log/maillog X X X X X X 6 X X X X X X X X X X X X X X X X X X FILE: /var/log/lpd-errs X X X X X X X X X 8 X X X X X X X X X X X X X X X FILE: /var/log/cron 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X USERS: root, 5 5 5 5 5 5 5 3 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 X USERS: root, 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 X USERS: root, 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 X WALL: 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/slip.log=20 (startslip) 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/ppp.log (ppp) 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8 X FILE: /var/log/poplog (POP3D) X X X X X X X X X X X X X X X X X X X X X X X X X FILE: /var/log/messages=20 (POP3D) logmsg: pri 56, flags 4, from lc2, msg syslogd: restart syslogd: restarted logmsg: pri 166, flags 17, from lc2, msg Jan 13 09:11:55 lc2 syslogd:=20 exiting on signal 2 cvthname(212.73.210.73) logmsg: pri 15, flags 0, from ms1.meiway.com, msg POP3D (000001D7) logon success for LConrad mail.Go2France.com from 66.64.14.18 Logging to FILE /var/log/messages Logging to USERS Logging to FILE /var/log/poplog How do we stop POP3D from going to messages? 2. For a little ACL, when I add an "allowed peer" option (=20 ipaddr/masklen[:service] ) to the above syslog command "-a=20 212.73.210.73/24", the -d output becomes: # syslogd -d -4 -a 212.73.210.73 allowaddr: rule 0: numeric, addr =3D 212.73.210.0, mask =3D = 255.255.255.0; port=20 =3D 514 listening on inet and/or inet6 socket sending on inet and/or inet6 socket off & running.... and all syslog messages from 212.73.210.73 get this treatment: cvthname(212.73.210.73) validate: dgram from IP 212.73.210.73, port 3506, name ms1.meiway.com; rejected in rule 0 due to port mismatch. ok, so we use "-a 212.73.210.73/24:*" and get: # syslogd -d -4 -a 212.73.210.73:* syslogd: No match. I've been all over man 3 and man 8 for syslogd, syslog, syslcon.conf and can't figure out what we're doing wrong in 2., or how to do 1. Thanks Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 12:18: 1 2002 Delivered-To: freebsd-isp@freebsd.org Received: from pitr.tuxinternet.com (pitr.tuxinternet.com [208.32.175.113]) by hub.freebsd.org (Postfix) with ESMTP id 06F8E37B400 for ; Sun, 13 Jan 2002 12:17:58 -0800 (PST) Received: (from hugme@localhost) by pitr.tuxinternet.com (8.11.0/8.11.0) id g0DKP8i19558; Sun, 13 Jan 2002 15:25:08 -0500 (EST) (envelope-from hugme) Date: Sun, 13 Jan 2002 15:25:08 -0500 From: Hug Me To: root@se2600.org Cc: freebsd-isp@freebsd.org Subject: e-mail client Message-ID: <20020113152508.F19327@pitr.tuxinternet.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I am looking for a GUI e-mail client, I have tried several but every one I try eats TONS of memory. I am going to have around 150 copies of this running at the same time so it using a small amount of memory is important.. these are the ones I have tried so far: PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND 11832 hugme 2 0 9840K 8296K poll 0:02 0.00% 0.00% arrow 11830 hugme 2 0 8084K 7120K select 0:01 0.00% 0.00% postilion.exec 11794 hugme 2 0 7276K 5896K poll 0:01 0.00% 0.00% sylpheed running in top. as you can see the smallest so far is sylpheed it's it's 7.2 meg running in momory.. thats 11.8 gig of memory, just to run MAIL, that is INSTANE. the only thing taking up more than that is windowmaker but that is expected. anyone have any Ideas? -- ************************************************* hugme hugme@hugme.org http://www.hugme.org http://www.atlantacon.org PGP Public key: http://www.hugme.org/mykey.pgp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 12:29:26 2002 Delivered-To: freebsd-isp@freebsd.org Received: from albatross.prod.itd.earthlink.net (albatross.mail.pas.earthlink.net [207.217.120.120]) by hub.freebsd.org (Postfix) with ESMTP id B85D137B417 for ; Sun, 13 Jan 2002 12:29:23 -0800 (PST) Received: from dhcp151-67-151-24.nt01-c3.cpe.charter-ne.com ([24.151.67.151] helo=there) by albatross.prod.itd.earthlink.net with smtp (Exim 3.33 #1) id 16PrFg-0005s5-00; Sun, 13 Jan 2002 12:29:12 -0800 Content-Type: text/plain; charset="iso-8859-1" From: Dylan Carlson Reply-To: absinthe@pobox.com Organization: r e t r o v e r t i g o To: Hug Me , root@se2600.org Subject: Re: e-mail client Date: Sun, 13 Jan 2002 15:29:11 -0500 X-Mailer: KMail [version 1.3] Cc: freebsd-isp@freebsd.org References: <20020113152508.F19327@pitr.tuxinternet.com> In-Reply-To: <20020113152508.F19327@pitr.tuxinternet.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sunday 13 January 2002 15:25, Hug Me wrote: > > anyone have any Ideas? http://www.crucial.com/ -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 13:39:22 2002 Delivered-To: freebsd-isp@freebsd.org Received: from Thanatos.Shenton.Org (a3.ebbed1.client.atlantech.net [209.190.235.163]) by hub.freebsd.org (Postfix) with SMTP id 4A08637B432 for ; Sun, 13 Jan 2002 13:39:10 -0800 (PST) Received: (qmail 95043 invoked by uid 1000); 13 Jan 2002 21:39:09 -0000 To: freebsd-isp@freebsd.org Subject: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) From: Chris Shenton Date: 13 Jan 2002 16:39:09 -0500 In-Reply-To: <1241681557.20010725114735@buz.ch> Message-ID: <87g05a2ao2.fsf_-_@thanatos.shenton.org> Lines: 18 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.1 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org An ISP I support has FreeBSD servers and a bunch of LAN- and ISDN-connected clients. Its remote so I can't get to it physically. In the past couple days, the 256Kbps link has been totally saturated, MRTG tells me it's outbound traffic. How can I determine which system is causing the traffic? I'm not a Cisco expert, but hoped "show ip accounting" would help, but it only appears to show me *inbound* traffic from all outside addresses to my internal addresses. I need the opposite. Is there some IOS command I'm just not clued into? I'm working with the remote admin to see if I can get a hub put between the router and other ISP gear, then put a FreeBSD box on that so I can use tcpdump or others to sniff the traffic. Until then, I'm blind unless there's some cisco voodoo I can use. Any ideas? Thanks. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 15: 3:15 2002 Delivered-To: freebsd-isp@freebsd.org Received: from home.cg.nu (home.cg.nu [213.196.2.115]) by hub.freebsd.org (Postfix) with ESMTP id 7639A37B419; Sun, 13 Jan 2002 15:03:12 -0800 (PST) Received: from wevers.org (netfreak.xs4all.nl [213.84.69.96]) by home.cg.nu (Postfix) with ESMTP id C4F56158E8C; Mon, 14 Jan 2002 00:03:05 +0100 (CET) Message-ID: <3C421228.9060904@wevers.org> Date: Mon, 14 Jan 2002 00:03:04 +0100 From: Henk Wevers Reply-To: henk@wevers.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: en-us MIME-Version: 1.0 To: freebsd-isp@freebsd.org, freebsd-stable@freebsd.org Subject: jail() management scripts Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I have added some perl scripts to make management to a multiple jail enviorement somewhat more easy. http://jailnotes.cg.nu/scripts/ If you have some scripts please mail me, then i will add then to the site. Henk Wevers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 16:26: 2 2002 Delivered-To: freebsd-isp@freebsd.org Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93]) by hub.freebsd.org (Postfix) with SMTP id AB69437B405; Sun, 13 Jan 2002 16:25:52 -0800 (PST) Received: from louise.parc.xerox.com ([13.2.118.28]) by alpha.xerox.com with SMTP id <128648(1)>; Sun, 13 Jan 2002 16:25:37 PST Received: from dilbert.homenat.farrar.org ([13.1.100.39]) by louise.parc.xerox.com with SMTP id <357674>; Sun, 13 Jan 2002 16:25:24 PST Date: Sun, 13 Jan 2002 16:25:35 PST From: Keith Farrar To: Henk Wevers Cc: freebsd-isp@freebsd.org, Subject: Re: jail() management scripts In-Reply-To: <3C421228.9060904@wevers.org> Message-ID: X-X-Sender: farrar@[127.0.0.1] MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, 13 Jan 2002, Henk Wevers wrote: > > I have added some perl scripts to make management to a multiple jail > enviorement somewhat more easy. > http://jailnotes.cg.nu/scripts/ > > If you have some scripts please mail me, then i will add then to the site. > > Henk Wevers #!/bin/sh ## @(#) Startup a jail chroot environment -Keith Farrar ## @(#) jailbait.parc.xerox.com:/usr/local/etc/rc.d/jail-script.sh ## Conventions: ## My jails have neither console nor network logins, so I feed the ## shell argument of this script to manage jailed accounts and services. ## In normal usage, I create one instance of this script per jailed ## service, named /usr/local/etc/rc.d/jail-${JAILIPPADDR}.sh ## Each jail file system is rooted at /local/jail/${JAILIPPADR}/ ## -keith JAILHOSTNAME="jailbait.parc.xerox.com" JAILIPPADDR="10.10.10.11" JAILTOPDIR="/local/jail" case "$1" in start) echo Starting jail-${JAILIPPADDR} /usr/sbin/jail ${JAILTOPDIR}/${JAILIPPADDR} \ ${JAILHOSTNAME} ${JAILIPPADDR} \ /bin/sh /etc/rc ;; shell) echo Starting jail-${JAILIPPADDR} /usr/sbin/jail ${JAILTOPDIR}/${JAILIPPADDR} \ ${JAILHOSTNAME} ${JAILIPPADDR} \ /bin/tcsh ;; ## Jailed procs are in the output of the command: ## "egrep $JAILHOSTNAME /proc/*/status | awk -F/ '{print $3}'" list) pids=`/usr/bin/egrep $JAILHOSTNAME /proc/*/status | /usr/bin/awk -F/ '{print $3}'` echo Jailed process PIDs: $pids ;; stop) echo Stopping jail-${JAILIPPADDR} pids=`/usr/bin/egrep $JAILHOSTNAME /proc/*/status | /usr/bin/awk -F/ '{print $3}'` /bin/kill -TERM $pids ;; restart) /bin/sh $0 stop sleep 1 /bin/sh $0 start ;; *) echo "Usage: `basename $0` {start|stop|restart|shell|list}" >&2 ;; esac exit 0 | Keith Farrar | Xerox Palo Alto Research Center (PARC) | Palo Alto, CA | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 18:46:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cutter.wantabe.com (cutter.wantabe.com [204.2.6.8]) by hub.freebsd.org (Postfix) with ESMTP id 7D5E137B417 for ; Sun, 13 Jan 2002 18:46:50 -0800 (PST) Received: from cutter.wantabe.com (cutter.wantabe.com [204.2.6.8]) by cutter.wantabe.com (8.10.1/8.10.1) with ESMTP id g0E2kUY60941; Sun, 13 Jan 2002 20:46:31 -0600 (CST) Date: Sun, 13 Jan 2002 20:46:29 -0600 (CST) From: "Jeffrey J. Libman" To: Hug Me Cc: root@se2600.org, Subject: Re: e-mail client In-Reply-To: <20020113152508.F19327@pitr.tuxinternet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org try a web based solution? i run twig (http://twig.screwdriver.net/) which uses php and imap services to deliver mail. run it under ssl and it is secure enough. ymmv. jeff -- | |\ +------------------------------+ Jeffrey J. Libman, ops. mgr. | \ | Wantabe Internet Services | Wantabe, Inc. |__\ +------------------------------+ jeffrl@wantabe.com <-----|------> (281) 493-0718 __,.-=\'`^`'~=-../__,.-= On Sun, 13 Jan 2002, Hug Me wrote: > > I am looking for a GUI e-mail client, I have tried several but every > one I try eats TONS of memory. I am going to have around 150 copies > of this running at the same time so it using a small amount of memory > is important.. these are the ones I have tried so far: > > PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND > 11832 hugme 2 0 9840K 8296K poll 0:02 0.00% 0.00% arrow > 11830 hugme 2 0 8084K 7120K select 0:01 0.00% 0.00% postilion.exec > 11794 hugme 2 0 7276K 5896K poll 0:01 0.00% 0.00% sylpheed > > > running in top. as you can see the smallest so far is sylpheed it's it's > 7.2 meg running in momory.. thats 11.8 gig of memory, just to run MAIL, > that is INSTANE. the only thing taking up more than that is windowmaker > but that is expected. > > anyone have any Ideas? > > > > -- > > > ************************************************* > > hugme hugme@hugme.org > http://www.hugme.org http://www.atlantacon.org > > PGP Public key: > http://www.hugme.org/mykey.pgp > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 23:20:47 2002 Delivered-To: freebsd-isp@freebsd.org Received: from net2.dinoex.sub.org (net2.dinoex.de [212.184.201.182]) by hub.freebsd.org (Postfix) with ESMTP id 9BC9B37B41D; Sun, 13 Jan 2002 23:20:39 -0800 (PST) Received: from gate.dinoex.sub.org (dinoex@localhost) by net2.dinoex.sub.org (8.11.6/8.11.6) with BSMTP id g0E7K3i20244; Mon, 14 Jan 2002 08:20:03 +0100 (CET) (envelope-from dirk.meyer@dinoex.sub.org) To: henk@wevers.org, freebsd-isp@freebsd.org, freebsd-stable@freebsd.org Message-ID: From: dirk.meyer@dinoex.sub.org (Dirk Meyer) Organization: privat Subject: Re: jail() management scripts Date: Mon, 14 Jan 2002 08:18:15 +0100 X-Mailer: Dinoex 1.77 References: <3C421228.9060904@wevers.org> X-Gateway: ZCONNECT gate.dinoex.sub.org [UNIX/Connect 0.93] X-PGP-Fingerprint: 44 16 EC 0A D3 3A 4F 28 8A 8A 47 93 F1 CF 2F 12 X-ZC-TELEFON: V+49-5606-6512Q F+49-5606-55023 X-Copyright: (C) Copyright 2001 by Dirk Meyer -- All rights reserved. X-ZC-POST: Im Grund 4;34317 Habichtswald;Germany X-PGP-Key-Avail: mailto:pgp-public-keys@keys.de.pgp.net Subject:GET 0x331CDA5D X-ZC-VIA: 20020114000000W+1@dinoex.sub.org Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Henk Wevers, > If you have some scripts please mail me, then i will add then to the site. you asked :) I use some more jails, and create them in a configuration file. kind regards Dirk - Dirk Meyer, Im Grund 4, 34317 Habichtswald, Germany # # /usr/local/etc/jail.conf # # Format: # dir hostname IP-Addr # jail1 name1.do.main 10.6.200.201 #jail2 inaktiv.do.main 10.6.200.202 # # eof /usr/local/etc/rc.d/jail.sh: #!/bin/sh # (c) 2002 Dirk Meyer, under FreeBSD License # # Thanks to: # - Gregory Neil Shapiro for the "killjail" function. # - Keith Farrar for the "list" and "restart" target. # case $1 in start) grep -v "^#" /usr/local/etc/jail.conf | while read dir name ip do echo "starting ... ${ip} ${name}" jail "${dir}" "${name}" "${ip}" /bin/sh /etc/rc done exit 0 ;; stop) grep -v "^#" /usr/local/etc/jail.conf | while read dir name ip do echo "stopping ... ${ip} ${name}" pids=`grep -l " ${name}\$" /proc/*/status | awk -F/ '{print $3}'` kill -TERM $pids done exit 0 ;; list) grep -v "^#" /usr/local/etc/jail.conf | while read dir name ip do pids=`grep -l " ${name}\$" /proc/*/status | awk -F/ '{print $3}'` echo "processes for ${ip} ${name}:" $pids done exit 0 ;; restart) sh $0 stop seep 1 sh $0 start ;; *) echo "usage: `basename $0` {start|stop|list|restart}" >&2 exit 64 ;; esac # # eof To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 23:56:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id C23B337B402 for ; Sun, 13 Jan 2002 23:56:46 -0800 (PST) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id AAA22687; Mon, 14 Jan 2002 00:52:27 -0700 (MST) Date: Mon, 14 Jan 2002 00:52:27 -0700 (MST) From: "Forrest W. Christian" To: Hug Me Cc: root@se2600.org, freebsd-isp@FreeBSD.ORG Subject: Re: e-mail client In-Reply-To: <20020113152508.F19327@pitr.tuxinternet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, 13 Jan 2002, Hug Me wrote: > I am going to have around 150 copies of this running at the same time so > it using a small amount of memory is important.. ... > 7.2 meg running in momory.. thats 11.8 gig of memory, just to run MAIL, Your memory math is broken. But not because you can't do regular math - but instead that memory math is different. PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND 11832 hugme 2 0 9840K 8296K poll 0:02 0.00% 0.00% arrow 11830 hugme 2 0 8084K 7120K select 0:01 0.00% 0.00% postilion.exec 11794 hugme 2 0 7276K 5896K poll 0:01 0.00% 0.00% sylpheed Although each of these do require the size indicated for the first instance, the second instance in a lot of cases takes a lot less. The reason for this is that the FreeBSD system can share common code between the processes. The only real way to tell how much these take on a per-instance case is to load up say 10 and look at the total memory usage. Also, if you have a single app like this which you are going to be running a LOT of copies of, it is in a lot of cases better if the binary is statically linked. This helps with the code sharing as it helps the VM subsystem not dirty code pages. In addition, setting the H option for malloc might be a good idea (YMMV). To do this: ln -s 'H' /etc/malloc.conf This tells the memory allocator to provide hints to the vm subsystem about free pages so that the vm subsystem can better handle freeing up dirty pages which don't contain anything at all. BYW, are you trying to say that you are going to have 150 clients running X apps on this box? This seems kinda scary. I would seriously look at a web-based mail app. I personally recommend IMP (http://www.horde.org/imp) or if you need scheduling, look at twig. The real advantage of a web based app is that one web server instance can actually handle many clients. If you compile apache with php support built in and run IMP, there is virtually no per-process startup penalty and 10 processes or so should be able to handle the 100-150 users you are talking about. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Jan 13 23:59:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id C220D37B43A for ; Sun, 13 Jan 2002 23:59:13 -0800 (PST) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id AAA22698; Mon, 14 Jan 2002 00:54:59 -0700 (MST) Date: Mon, 14 Jan 2002 00:54:58 -0700 (MST) From: "Forrest W. Christian" To: Dylan Carlson Cc: Hug Me , root@se2600.org, freebsd-isp@FreeBSD.ORG Subject: Re: e-mail client In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, 13 Jan 2002, Dylan Carlson wrote: > On Sunday 13 January 2002 15:25, Hug Me wrote: > > > > anyone have any Ideas? > > http://www.crucial.com/ I'm sorry I normally don't reply to these, but this was one of the best replies I've seen in a long time. You made *this* system administrator have a good laugh (even if I DO know that that is probably going to be part of the solution). - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 0: 8: 9 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 9CCDA37B400 for ; Mon, 14 Jan 2002 00:08:05 -0800 (PST) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id BAA22729; Mon, 14 Jan 2002 01:03:51 -0700 (MST) Date: Mon, 14 Jan 2002 01:03:51 -0700 (MST) From: "Forrest W. Christian" To: Chris Shenton Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) In-Reply-To: <87g05a2ao2.fsf_-_@thanatos.shenton.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 13 Jan 2002, Chris Shenton wrote: > I'm not a Cisco expert, but hoped "show ip accounting" would help, but > it only appears to show me *inbound* traffic from all outside > addresses to my internal addresses. I need the opposite. Is there > some IOS command I'm just not clued into? Perhaps you could look at the *outbound* traffic on the customer-facing interfaces? - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 6:30: 0 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id B5AE537B42F for ; Mon, 14 Jan 2002 06:29:38 -0800 (PST) Subject: Re: tuning syslog.conf To: freebsd-isp@freebsd.org X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Mon, 14 Jan 2002 08:26:08 -0600 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 01/14/2002 08:26:15 AM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Had the same problems. The trick was putting ' ' around the -a flag argument. ie: syslog -a '4.13.14.15/27:*' -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 George Lewis To: Len Conrad Sent by: cc: Freebsd-isp@FreeBSD.ORG owner-freebsd-isp@F Subject: Re: tuning syslog.conf reeBSD.ORG 01/13/2002 09:44 AM > 2. For a little ACL, when I add an "allowed peer" option ( > ipaddr/masklen[:service] ) to the above syslog command "-a > 212.73.210.73/24", the -d output becomes: > > # syslogd -d -4 -a 212.73.210.73 > allowaddr: rule 0: numeric, addr = 212.73.210.0, mask = 255.255.255.0; port > = 514 > listening on inet and/or inet6 socket > sending on inet and/or inet6 socket > off & running.... > > and all syslog messages from 212.73.210.73 get this treatment: > > cvthname(212.73.210.73) > validate: dgram from IP 212.73.210.73, port 3506, name ms1.meiway.com; > rejected in rule 0 due to port mismatch. > > ok, so we use "-a 212.73.210.73/24:*" and get: > > # syslogd -d -4 -a 212.73.210.73:* > syslogd: No match. > > I've been all over man 3 and man 8 for syslogd, syslog, syslcon.conf and > can't figure out what we're doing wrong in 2., or how to do 1. Perhaps your shell is expanding the * for you? Have you by chance tried: syslogd -d -4 -a 212.73.210.73:\* HTH, George > > Thanks > Len > > > http://MenAndMice.com/DNS-training > http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K > http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- http://schvin.net/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 6:35:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id B444A37B425 for ; Mon, 14 Jan 2002 06:35:52 -0800 (PST) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 136CC16B25 for ; Mon, 14 Jan 2002 15:35:51 +0100 (CET) Received: from LenConrad.Go2France.com [66.64.14.18] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A0BF13030232; Mon, 14 Jan 2002 15:52:47 +0100 Message-Id: <5.1.0.14.2.20020114083445.02488008@mail.Go2France.com> X-Sender: LConrad@Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 14 Jan 2002 08:35:47 -0600 To: freebsd-isp@freebsd.org From: Len Conrad Subject: External app logging to syslog Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org We have Imail's POP service logging to a FreeBSD4.4 machine. The app is seen in the syslog lines as "POP3D". It is being written to messages file with this as-installed syslog.conf line: *.notice;kern.debug;lpr.info;mail.crit;news.err; /var/log/messages How do we stop it from being logged there? under which facility.level is it being caught? We have it also logging as a app like this: !POP3D *.* /var/log/poplog *.none /var/log/messages and so want to remove it from messages. (2nd line doesn't "none" it out of messages) Running "syslog -d" gave lotsa of info but we still can't see specifically how POP3D is winding up in messages. thanks Len To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 12:13:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ra.upan.org (ra.upan.org [204.107.76.19]) by hub.freebsd.org (Postfix) with ESMTP id 7890037B404; Mon, 14 Jan 2002 12:13:37 -0800 (PST) Received: from ocsinternet.com ([10.0.0.102]) by ra.upan.org (8.11.6/8.11.6) with ESMTP id g0EKE7D87946; Mon, 14 Jan 2002 15:14:07 -0500 (EST) (envelope-from mikel@ocsinternet.com) Message-ID: <3C433BCE.8080402@ocsinternet.com> Date: Mon, 14 Jan 2002 15:13:02 -0500 From: Mikel King User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: en-us MIME-Version: 1.0 To: freebsd-questions@FreeBSD.ORG Cc: freebsd-isp@FreeBSD.ORG Subject: sendmail w/ maildirectory Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Per chance does anyone know if there is a way to over ride sendmail's default mail box behavior and have it use the mail directory structure instead? Cheers, Mikel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 12:43:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ra.upan.org (ra.upan.org [204.107.76.19]) by hub.freebsd.org (Postfix) with ESMTP id AB68737B419; Mon, 14 Jan 2002 12:43:50 -0800 (PST) Received: from ocsinternet.com ([10.0.0.102]) by ra.upan.org (8.11.6/8.11.6) with ESMTP id g0EKiKD88029; Mon, 14 Jan 2002 15:44:20 -0500 (EST) (envelope-from mikel@ocsinternet.com) Message-ID: <3C4342E3.9010007@ocsinternet.com> Date: Mon, 14 Jan 2002 15:43:15 -0500 From: Mikel King User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: en-us MIME-Version: 1.0 To: freebsd-questions Cc: freebsd-isp Subject: redundant POP Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does anyone have a good recommendation on how to create redundant pop3 servers? Cheers, Mikel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 14 12:55:56 2002 Delivered-To: freebsd-isp@freebsd.org Received: from relay04.roc.frontiernet.net (alteon01e.roc.frontiernet.net [66.133.130.235]) by hub.freebsd.org (Postfix) with SMTP id 5171A37B41D for ; Mon, 14 Jan 2002 12:55:46 -0800 (PST) Received: (qmail 7041 invoked from network); 14 Jan 2002 20:55:45 -0000 Received: from unknown (HELO nothingness.loophole.org) ([66.133.130.247]) (envelope-sender ) by relay04.roc.frontiernet.net (qmail-ldap-1.03) with SMTP for ; 14 Jan 2002 20:55:45 -0000 Date: Mon, 14 Jan 2002 16:09:39 -0500 (EST) From: "Kevin S. Brackett" To: Mikel King Cc: , Subject: Re: sendmail w/ maildirectory In-Reply-To: <3C433BCE.8080402@ocsinternet.com> Message-ID: <20020114160419.M91005-100000@nothingness.loophole.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 14 Jan 2002, Mikel King wrote: > Per chance does anyone know if there is a way to over ride sendmail's > default mail box behavior and have it use the mail directory structure > instead? > > Cheers, > Mikel > Yes, with the use of procmail... it's in the ports. You'll need to remake your sendmail cf to use procmail as the delivery agent (by adding "FEATURE(local_procmail)" to your .mc), then it's as easy as adding a few lines to your /usr/local/etc/procmailrc : PATH=/bin:/usr/bin:/usr/local/bin MAILDIR=$HOME DEFAULT=$MAILDIR/Maildir/ and ... tada :) - kevin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 15 3:39:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from arena.delfi.lv (mail.parks.lv [195.2.96.15]) by hub.freebsd.org (Postfix) with ESMTP id 6A6EB37B41A for ; Tue, 15 Jan 2002 03:39:15 -0800 (PST) Received: from matiss ([195.2.113.18]) by arena.delfi.lv (8.9.3/8.9.1/OL.cf-3.1) with SMTP id NAA22274 for ; Tue, 15 Jan 2002 13:39:12 +0200 From: "Matiss Elsbergs" To: Subject: Jail quota Date: Tue, 15 Jan 2002 13:40:04 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello there, fellow owners of all system processes, I believe, that this question has been discussed, and not once. But - here it goes again.. How to limit disk usage, when running jail environment? Do I need to setup an user x, set a quota for him, and run a jail as this user? Are there any other ways? rgds, Matis To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 15 3:45:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from axis.tdd.lt (axis.tdd.lt [213.197.128.94]) by hub.freebsd.org (Postfix) with ESMTP id 7AB4337B417 for ; Tue, 15 Jan 2002 03:45:43 -0800 (PST) Received: from localhost (midom@localhost) by axis.tdd.lt (8.11.6/8.11.6) with ESMTP id g0FBkQr60226; Tue, 15 Jan 2002 13:46:26 +0200 (EET) (envelope-from midom@delfi.lt) X-Authentication-Warning: axis.tdd.lt: midom owned process doing -bs Date: Tue, 15 Jan 2002 13:46:26 +0200 (EET) From: Domas Mituzas X-X-Sender: To: Matiss Elsbergs Cc: Subject: Re: Jail quota In-Reply-To: Message-ID: <20020115134344.G58690-100000@axis.tdd.lt> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi there, > Hello there, fellow owners of all system processes, > I believe, that this question has been discussed, and not once. > But - here it goes again.. > How to limit disk usage, when running jail environment? > Do I need to setup an user x, set a quota for him, and run a jail as this > user? > Are there any other ways? > rgds, Matis actually in normal file system quotas are mapped to user ID's. In order to have separate quotas for jails, you should: a) Either to have separate vnode based file system for each jail. b) Try to find jailfs extension to nullfs (some guy on IRC told he developed it :) Then you'd be able to have separate quotas for distinct parts of one filesystem. c) Have different uid spaces for each jail (10000-10999,11000-11999,...) and set quotas from master system. Regards, Domas Mituzas DELFI Internet, UAB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 15 3:47: 0 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ns.ulstu.ru (ns.ulstu.ru [62.76.34.36]) by hub.freebsd.org (Postfix) with ESMTP id 70C8B37B400 for ; Tue, 15 Jan 2002 03:46:56 -0800 (PST) Received: by ns.ulstu.ru (Postfix-ULSTU, from userid 3909) id EC00E107886; Tue, 15 Jan 2002 14:46:49 +0300 (MSK) Date: Tue, 15 Jan 2002 14:46:49 +0300 From: zhuravlev alexander To: freebsd-isp@freebsd.org Subject: Re: Jail quota Message-ID: <20020115144649.A14664@ulstu.ru> Reply-To: zhuravlev alexander Mail-Followup-To: freebsd-isp@freebsd.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre2i In-Reply-To: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Jan 15, 2002 at 01:40:04PM +0200, Matiss Elsbergs wrote: > Hello there, fellow owners of all system processes, > > I believe, that this question has been discussed, and not once. > > But - here it goes again.. > > How to limit disk usage, when running jail environment? > > Do I need to setup an user x, set a quota for him, and run a jail as this > user? > Are there any other ways? > > rgds, Matis > Simpler install jail in dedicated partition with desired amount of free space > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- zhuravlev alexander u l s t u c t c e-mail:zaa@ulstu.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 15 10: 0:41 2002 Delivered-To: freebsd-isp@freebsd.org Received: from nlaredo.globalpc.net (nld2.globalpc.net [207.193.206.189]) by hub.freebsd.org (Postfix) with ESMTP id 03D2637B402 for ; Tue, 15 Jan 2002 10:00:35 -0800 (PST) Received: from ds9 (ds9.globalpc.net [207.193.204.57]) by nlaredo.globalpc.net (8.9.3/8.9.3) with SMTP id MAA32031; Tue, 15 Jan 2002 12:08:32 -0600 (CST) (envelope-from adrianbsd@globalpc.net) Message-Id: <3.0.6.32.20020115120220.00fc9ae8@globalpc.net> X-Sender: adrianbsd@globalpc.net (Unverified) X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.6 (32) Date: Tue, 15 Jan 2002 12:02:20 -0600 To: Chris Shenton , freebsd-isp@FreeBSD.ORG From: Adrian Gonzalez Subject: Re: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) In-Reply-To: <87g05a2ao2.fsf_-_@thanatos.shenton.org> References: <1241681557.20010725114735@buz.ch> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Try this on your cisco: Set up an access list entry that matches the traffic you want to monitor. Enter config mode, then something like: access-list 10 permit 192.168.0.0 0.0.0.255 This example would match outgoing traffic from any host on the 192.168.0.x network. Make sure you pick an access list number you're not using for something else, of course. Note that the last set of numbers is not a netmask, it's wildcard bits. So, 0.0.255.255 matches a whole class B net, 0.0.0.15 matches a /28, etc. Then you can exit config mode and debug: debug ip packet 10 Since it's a 256k link, be prepared to be flooded with output. There's probably a way to limit this but I haven't bothered to look it up. You should get a good idea what's causing the traffic by looking at the output. You should get something like: 20w1d: IP: s=192.168.0.2 (Ethernet0/0), d=10.0.0.1 (BRI1/3), g=10.0.0.1, len 136, forward 20w1d: IP: s=192.168.0.2 (Ethernet0/0), d=10.0.0.1 (BRI1/3), g=10.0.0.1, len 122, forward Not quite tcpdump, but should be enough. If you don't get any output, type term monitor So that debugging messages get sent to your terminal. Once you find what you're looking for, you can stop debugging: no debug ip packet term no mon remove the access-list too or save it for later :) I'm almost willing to bet you have a guy or two sharing their entire mp3 and avi collection with a Kazaa/Morpheus/etc client :) Hope this helps -Adrian At 04:39 PM 1/13/2002 -0500, Chris Shenton wrote: >An ISP I support has FreeBSD servers and a bunch of LAN- and >ISDN-connected clients. Its remote so I can't get to it physically. > >In the past couple days, the 256Kbps link has been totally saturated, >MRTG tells me it's outbound traffic. How can I determine which >system is causing the traffic? > >I'm not a Cisco expert, but hoped "show ip accounting" would help, but >it only appears to show me *inbound* traffic from all outside >addresses to my internal addresses. I need the opposite. Is there >some IOS command I'm just not clued into? > >I'm working with the remote admin to see if I can get a hub put >between the router and other ISP gear, then put a FreeBSD box on that >so I can use tcpdump or others to sniff the traffic. Until then, I'm >blind unless there's some cisco voodoo I can use. > >Any ideas? Thanks. > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 15 12:32:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.infowest.com (ns1.infowest.com [204.17.177.10]) by hub.freebsd.org (Postfix) with ESMTP id D076637B41D for ; Tue, 15 Jan 2002 12:32:11 -0800 (PST) Received: from there (208.186.107.222.dsl.infowest.net [208.186.107.222]) by ns1.infowest.com (Postfix) with SMTP id F38D2218A9; Tue, 15 Jan 2002 13:29:30 -0700 (MST) Content-Type: text/plain; charset="iso-8859-1" From: Samuel J.Greear Organization: GetMegabits, Inc. To: Domas Mituzas , Matiss Elsbergs Subject: Re: Jail quota Date: Wed, 16 Jan 2002 13:24:37 -0700 X-Mailer: KMail [version 1.3] Cc: References: <20020115134344.G58690-100000@axis.tdd.lt> In-Reply-To: <20020115134344.G58690-100000@axis.tdd.lt> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <20020115202931.F38D2218A9@ns1.infowest.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tuesday 15 January 2002 04:46 am, Domas Mituzas wrote: > Hi there, > > > Hello there, fellow owners of all system processes, > > I believe, that this question has been discussed, and not once. > > But - here it goes again.. > > How to limit disk usage, when running jail environment? > > Do I need to setup an user x, set a quota for him, and run a jail as this > > user? > > Are there any other ways? > > rgds, Matis > > actually in normal file system quotas are mapped to user ID's. In order to > have separate quotas for jails, you should: > > a) Either to have separate vnode based file system for each jail. > b) Try to find jailfs extension to nullfs (some guy on IRC told he > developed it :) Then you'd be able to have separate quotas for distinct > parts of one filesystem. Yeah, probably me.... I finished a.. shall we say.. proof-of-concept jailfs. It was functional, but extremely evil in the most evil of evil ways. .. And didn't do any locking, either. :) -- At the moment I'm in the design phase of getting this directly into the FFS quota code. Not as difficult as it might sound at first, as you're basically just instrumenting the quota code to check whether you're in a jail or not, and responding appropriately. Don't hold your breath, though. The best way's to do jailquot's that I've so far seen are to either partition the physical disk to accomodate. Yeah, lame. Or use the uber-cool vn/md devices. Which has its drawbacks, but works pretty well on systems that aren't running a ton of jails. You can also grow these with growfs should you want to raise the quota limit, but shrinking is a bit of a problem. ISPServer.com does jail hosting and uses union mounts with some success it seems. You may want to check out their free 30 minute trial to get some idea of what they're doing. Then again, union mounts have some issues which their head jail developer just seems to shrug off. (yes, i've spoken with him). So, what I'm saying is. There is no good solution at the moment, but you may find something that works for you. :) > c) Have different uid spaces for each jail (10000-10999,11000-11999,...) > and set quotas from master system. > > Regards, > Domas Mituzas > DELFI Internet, UAB > > Lates, Sam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 2:25:47 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 20E4037B402 for ; Wed, 16 Jan 2002 02:25:45 -0800 (PST) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 6265D16B16 for ; Wed, 16 Jan 2002 11:25:43 +0100 (CET) Received: from LenConrad.Go2France.com [66.64.14.18] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A9196C2501F0; Wed, 16 Jan 2002 11:42:33 +0100 Message-Id: <5.1.0.14.2.20020116034908.02899890@mail.Go2France.com> X-Sender: LConrad@Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 16 Jan 2002 04:25:38 -0600 To: freebsd-isp@freebsd.org From: Len Conrad Subject: mobo with 64-bit / 66 MHz PCI for FreeBSD Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org We're looking at megaraid elite 1600 or 3ware 7800 controllers. Suggestions for mobo's happy under fbsd? mono-processor is fine. thanks, Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 2:47:22 2002 Delivered-To: freebsd-isp@freebsd.org Received: from trinity.jamiesdomain.org.uk (trinity.jamiesdomain.org.uk [62.49.217.114]) by hub.freebsd.org (Postfix) with ESMTP id 0959D37B402 for ; Wed, 16 Jan 2002 02:47:19 -0800 (PST) Received: from [194.207.93.61] (jamie@mail.trident-uk.co.uk [195.166.16.10]) by trinity.jamiesdomain.org.uk (8.11.4/8.11.4) with ESMTP id g0GAgja73165 for ; Wed, 16 Jan 2002 10:42:45 GMT (envelope-from jamie@jamiesdomain.org.uk) From: Jamie Heckford To: Date: Wed, 16 Jan 2002 10:47:19 +0000 Message-Id: <20020116104720.21507@mail.jamiesdomain.org.uk> X-Mailer: CTM PowerMail 3.1 carbon MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org subscribe freebsd-isp -- Jamie Heckford http://jamiesdomain.org.uk/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 7:54:49 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id 1697B37B400 for ; Wed, 16 Jan 2002 07:54:44 -0800 (PST) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id g0GFtHg12888; Wed, 16 Jan 2002 09:55:17 -0600 (CST) (envelope-from nick@rogness.net) Date: Wed, 16 Jan 2002 09:55:16 -0600 (CST) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Chris Shenton Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) In-Reply-To: <87g05a2ao2.fsf_-_@thanatos.shenton.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 13 Jan 2002, Chris Shenton wrote: Search cisco's site on enabling NetFlow statistics. > An ISP I support has FreeBSD servers and a bunch of LAN- and > ISDN-connected clients. Its remote so I can't get to it physically. > > In the past couple days, the 256Kbps link has been totally saturated, > MRTG tells me it's outbound traffic. How can I determine which > system is causing the traffic? > > I'm not a Cisco expert, but hoped "show ip accounting" would help, but > it only appears to show me *inbound* traffic from all outside > addresses to my internal addresses. I need the opposite. Is there > some IOS command I'm just not clued into? > > I'm working with the remote admin to see if I can get a hub put > between the router and other ISP gear, then put a FreeBSD box on that > so I can use tcpdump or others to sniff the traffic. Until then, I'm > blind unless there's some cisco voodoo I can use. > > Any ideas? Thanks. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > Nick Rogness - Don't mind me...I'm just sniffing your packets To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 8:59:14 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail4.cableaz.com (mail4.cableaz.com [63.241.150.20]) by hub.freebsd.org (Postfix) with ESMTP id 1C35737B416 for ; Wed, 16 Jan 2002 08:59:04 -0800 (PST) Received: from caz ([63.241.154.14]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g0GGom061241; Wed, 16 Jan 2002 09:50:49 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <001b01c19eae$c6acdc40$0e9af13f@caz> From: "Jeremy Buckner" To: "Chris Shenton" Cc: References: <87g05a2ao2.fsf_-_@thanatos.shenton.org> Subject: Re: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) Date: Wed, 16 Jan 2002 09:56:43 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Well in my experience with that I will tell you that a virus will definitely cause that kind of traffic. Code Red or Nimda type viruses have killed our bandwidth before. Also some P2P file sharing software will do that too if it not setup correctly. If you know it's not a virus and you have P2P stuff flowing through your system, try putting an access list on your router blocking ports 1214, 6346, 6347, and 6348. See if your outbound dies down. Obviously the sky's the limit with the number of reasons why you have that problem, but that's what has happened to us in the past. Jeremy ----- Original Message ----- From: "Chris Shenton" To: Sent: Sunday, January 13, 2002 2:39 PM Subject: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) > An ISP I support has FreeBSD servers and a bunch of LAN- and > ISDN-connected clients. Its remote so I can't get to it physically. > > In the past couple days, the 256Kbps link has been totally saturated, > MRTG tells me it's outbound traffic. How can I determine which > system is causing the traffic? > > I'm not a Cisco expert, but hoped "show ip accounting" would help, but > it only appears to show me *inbound* traffic from all outside > addresses to my internal addresses. I need the opposite. Is there > some IOS command I'm just not clued into? > > I'm working with the remote admin to see if I can get a hub put > between the router and other ISP gear, then put a FreeBSD box on that > so I can use tcpdump or others to sniff the traffic. Until then, I'm > blind unless there's some cisco voodoo I can use. > > Any ideas? Thanks. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 9: 6:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.cksoft.de (ns1.cksoft.de [62.111.66.1]) by hub.freebsd.org (Postfix) with ESMTP id 0D95B37B416 for ; Wed, 16 Jan 2002 09:06:17 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by ns1.cksoft.de (Postfix) with ESMTP id 88D6B14FAA; Wed, 16 Jan 2002 18:06:15 +0100 (CET) Received: by ns1.cksoft.de (Postfix, from userid 66) id 53F7B14FA5; Wed, 16 Jan 2002 18:06:14 +0100 (CET) Received: by hirvi.cksoft.de (Postfix, from userid 1000) id D72261B65E; Wed, 16 Jan 2002 18:02:36 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by hirvi.cksoft.de (Postfix) with ESMTP id D404E18E88; Wed, 16 Jan 2002 18:02:36 +0100 (CET) Date: Wed, 16 Jan 2002 18:02:36 +0100 (CET) From: Christian Kratzer To: Chris Shenton Cc: Subject: Re: Who's saturating outbound link (Cisco 2620, IOS 12.1(1)) In-Reply-To: <87g05a2ao2.fsf_-_@thanatos.shenton.org> Message-ID: X-Spammer-Kill-Ratio: 75% MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, On 13 Jan 2002, Chris Shenton wrote: > An ISP I support has FreeBSD servers and a bunch of LAN- and > ISDN-connected clients. Its remote so I can't get to it physically. > > In the past couple days, the 256Kbps link has been totally saturated, > MRTG tells me it's outbound traffic. How can I determine which > system is causing the traffic? > > I'm not a Cisco expert, but hoped "show ip accounting" would help, but > it only appears to show me *inbound* traffic from all outside > addresses to my internal addresses. I need the opposite. Is there > some IOS command I'm just not clued into? check that there is "ip accounting output-packets" on every interface of the router. Especially the one towards your network and the one towards the isp. Then let the accounting accumulate for a while and dump it to a file. If a single ip is causing you the traffic you will propably find it just by sorting for the last column sort -n +4 < accountingdata | tail or something of the sort should do the job. Greetings Christian -- CK Software GmbH Christian Kratzer, Schwarzwaldstr. 31, 71131 Jettingen Email: ck@cksoft.de Phone: +49 7452 889-135 Open Software Solutions, Network Security Fax: +49 7452 889-136 FreeBSD spoken here! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 9:31:39 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hotmail.com (oe28.pav1.hotmail.com [64.4.30.85]) by hub.freebsd.org (Postfix) with ESMTP id E598037B404; Wed, 16 Jan 2002 09:31:29 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Wed, 16 Jan 2002 09:31:29 -0800 X-Originating-IP: [216.95.234.92] From: "jack xiao" To: , Subject: pppd with radius Date: Wed, 16 Jan 2002 12:21:19 -0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_008F_01C19E88.4D9F2220" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 16 Jan 2002 17:31:29.0779 (UTC) FILETIME=[A2070C30:01C19EB3] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_008F_01C19E88.4D9F2220 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi, I am using pppd for some application and also need radius function to = communicate with the remote radius server. In the FreeBSD man page of = pppd, I could not get anything about radius. As far as I know, in Linux = there are some radius patch for pppd, but in FreeBSD, I found nothing. = Does anybody has such experience or any idea.=20 Thanks in advance. Jack ------=_NextPart_000_008F_01C19E88.4D9F2220 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

Hi,

I am using pppd for some application = and also need=20 radius function to communicate with the remote radius server. In the = FreeBSD man=20 page of pppd, I could not get anything about radius. As far as I = know, in=20 Linux there are some radius patch for pppd, but in FreeBSD, I found = nothing.=20 Does anybody has such experience or any idea.

Thanks in advance.

Jack

------=_NextPart_000_008F_01C19E88.4D9F2220-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 14:36:50 2002 Delivered-To: freebsd-isp@freebsd.org Received: from dpbox.dhs.org (dsl-216-227-100-85.telocity.com [216.227.100.85]) by hub.freebsd.org (Postfix) with ESMTP id 147E837B417 for ; Wed, 16 Jan 2002 14:36:47 -0800 (PST) Received: from vector.usa.net ([192.168.0.50]) by dpbox.dhs.org (8.11.2/8.11.2) with ESMTP id g0GLqIe13800 for ; Wed, 16 Jan 2002 15:52:18 -0600 Message-Id: <5.1.0.14.0.20020116164458.03538e80@pop.netaddress.com> X-Sender: dpuryear@pop.netaddress.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 16 Jan 2002 16:46:14 -0600 To: freebsd-isp@freebsd.org From: Dustin Puryear Subject: Webalizer and Apache on a cluster Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Apparently Webalizer cannot be used to provide statistics for more than one web server. We are running a cluster of web servers hosting the same sites for redundancy and performance, and would like to provide data on web site hits via a tool such as Webalizer. However, I'm a bit stumped. Has anyone been able to tweak Webalizer or a similar tool to provide stats when there are several servers involved? We are running FreeBSD with Apache and Webalizer from the ports tree. Any help, leads, or patches would be appreciated! Regards, Dustin PS This post might appear twice. I subscribed to the list as a newsgroup (sol.lists.freebsd.isp), but the group doesn't appear to allow me to post. Is there a way for me to do that? Perhaps another newsgroup is open to posting and not read-only? --- Dustin Puryear Information Systems Consultant http://members.telocity.com/~dpuryear In the beginning the Universe was created. This has been widely regarded as a bad move. - Douglas Adams To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 14:37:15 2002 Delivered-To: freebsd-isp@freebsd.org Received: from dpbox.dhs.org (dsl-216-227-100-85.telocity.com [216.227.100.85]) by hub.freebsd.org (Postfix) with ESMTP id B98EA37B416 for ; Wed, 16 Jan 2002 14:37:10 -0800 (PST) Received: from vector.usa.net ([192.168.0.50]) by dpbox.dhs.org (8.11.2/8.11.2) with ESMTP id g0GLqge13804 for ; Wed, 16 Jan 2002 15:52:42 -0600 Message-Id: <5.1.0.14.0.20020116164616.03528248@pop.netaddress.com> X-Sender: dpuryear@pop.netaddress.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 16 Jan 2002 16:46:38 -0600 To: freebsd-isp@freebsd.org From: Dustin Puryear Subject: Firewall logs non-existent? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I am running a FreeBSD based firewall using ipfw. For some reason denies are not being reported to /var/log/security. I am still a bit new to ipfw so it is entirely possible I have goofed somewhere, but I am still looking for a bit of help. Naturally, it is very hard to diagnose firewall issues when I can't tell if my firewall is dropping the packets. Currently, we have: # Reject&Log all setup of incoming connections from the outside ipfw add deny log tcp from any to any in via rl0 setup At the end of our rules. Is tihs correct? rl0 is our external interface. Also, what about logging udp denies? Regards, Dustin --- Dustin Puryear Information Systems Consultant http://members.telocity.com/~dpuryear In the beginning the Universe was created. This has been widely regarded as a bad move. - Douglas Adams To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 15:56:57 2002 Delivered-To: freebsd-isp@freebsd.org Received: from femail4.sdc1.sfba.home.com (femail4.sdc1.sfba.home.com [24.0.95.84]) by hub.freebsd.org (Postfix) with ESMTP id 69EF637B442 for ; Wed, 16 Jan 2002 15:56:38 -0800 (PST) Received: from veager.jwweeks.com ([65.14.122.116]) by femail4.sdc1.sfba.home.com (InterMail vM.4.01.03.20 201-229-121-120-20010223) with ESMTP id <20020116235633.VFHG25672.femail4.sdc1.sfba.home.com@veager.jwweeks.com>; Wed, 16 Jan 2002 15:56:33 -0800 Date: Wed, 16 Jan 2002 18:56:26 -0500 (EST) From: Jim Weeks X-Sender: jim@veager.jwweeks.com To: Dustin Puryear Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Webalizer and Apache on a cluster In-Reply-To: <5.1.0.14.0.20020116164458.03538e80@pop.netaddress.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dustin, I have done this with two servers logging to the same file through NFS mount. I don't see why you couldn't do it with several. You could also write a script to fetch and merge log files from the other machines to one central machine running webalizer. Hope this helps, -- Jim Weeks On Wed, 16 Jan 2002, Dustin Puryear wrote: > Apparently Webalizer cannot be used to provide statistics for more than one > web server. We are running a cluster of web servers hosting the same sites > for redundancy and performance, and would like to provide data on web site > hits via a tool such as Webalizer. However, I'm a bit stumped. Has anyone > been able to tweak Webalizer or a similar tool to provide stats when there > are several servers involved? > > We are running FreeBSD with Apache and Webalizer from the ports tree. Any > help, leads, or patches would be appreciated! > > Regards, Dustin > > PS This post might appear twice. I subscribed to the list as a newsgroup > (sol.lists.freebsd.isp), but the group doesn't appear to allow me to post. > Is there a way for me to do that? Perhaps another newsgroup is open to > posting and not read-only? > --- > Dustin Puryear > Information Systems Consultant > http://members.telocity.com/~dpuryear > In the beginning the Universe was created. > This has been widely regarded as a bad move. - Douglas Adams > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 17:45:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.sheltonbbs.com (216-41-130-114.semo.net [216.41.130.114]) by hub.freebsd.org (Postfix) with SMTP id 4AA8637B404 for ; Wed, 16 Jan 2002 17:45:45 -0800 (PST) Received: (qmail 17311 invoked from network); 17 Jan 2002 01:52:39 -0000 Received: from unknown (HELO 216-41-137-20.semo.net) (216.41.137.20) by 216-41-130-114.semo.net with SMTP; 17 Jan 2002 01:52:39 -0000 Date: Wed, 16 Jan 2002 19:45:50 -0600 (CST) From: Butch Evans X-X-Sender: To: Len Conrad Cc: Subject: Re: External app logging to syslog In-Reply-To: <5.1.0.14.2.20020114083445.02488008@mail.Go2France.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 14 Jan 2002, Len Conrad wrote: >How do we stop it from being logged there? under which facility.level is it >being caught? > add "-v -v" to syslogd's invocation. That will log the facility.level along with the message. (that will probably work with "-vv", but my "DOS" days are haunting sometimes.) -- Butch Evans http://www.ChristInVerse.com/ http://www.HeIsComingSoon.com/ (in the works) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 18:50:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from priv-edtnes11-hme0.telusplanet.net (fepout3.telus.net [199.185.220.238]) by hub.freebsd.org (Postfix) with ESMTP id C3E8737B419 for ; Wed, 16 Jan 2002 18:50:17 -0800 (PST) Received: from FRED ([142.173.43.70]) by priv-edtnes11-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with ESMTP id <20020117025017.YYCP3650.priv-edtnes11-hme0.telusplanet.net@FRED>; Wed, 16 Jan 2002 19:50:17 -0700 Date: Wed, 16 Jan 2002 18:59:47 -0800 From: Sean Ellis X-Mailer: The Bat! (v1.51) Reply-To: Sean Ellis Organization: yes X-Priority: 3 (Normal) Message-ID: <141945878404.20020116185947@telus.net> To: Dustin Puryear Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Webalizer and Apache on a cluster In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, Wednesday, January 16, 2002, 3:56:26 PM, you wrote: > Dustin, > You could also > write a script to fetch and merge log files from the other machines to one > central machine running webalizer. this might get you part of the way there, http://64.69.77.155/caveat_emptor/weblog-merge or not. If you can use it, let me know, send improvements etc, > Hope this helps, > -- > Jim Weeks >>. However, I'm a bit stumped. Has anyone >> been able to tweak Webalizer or a similar tool to provide stats when there >> are several servers involved? >> Dustin Puryear -- Regards, Sean mailto:sellis@telus.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 16 21:23: 2 2002 Delivered-To: freebsd-isp@freebsd.org Received: from dpbox.dhs.org (dsl-216-227-100-85.telocity.com [216.227.100.85]) by hub.freebsd.org (Postfix) with ESMTP id A7A8B37B404 for ; Wed, 16 Jan 2002 21:22:59 -0800 (PST) Received: from vector.usa.net ([192.168.0.50]) by dpbox.dhs.org (8.11.2/8.11.2) with ESMTP id g0H4cXe14185 for ; Wed, 16 Jan 2002 22:38:33 -0600 Message-Id: <5.1.0.14.0.20020116233108.03704d50@pop.netaddress.com> X-Sender: dpuryear@pop.netaddress.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 16 Jan 2002 23:32:26 -0600 To: freebsd-isp@freebsd.org From: Dustin Puryear Subject: Re: Webalizer and Apache on a cluster In-Reply-To: <20020117130337.M13438@webjump.national.com.au> References: <5.1.0.14.0.20020116200338.0363a008@pop.netaddress.com> <20020117124833.L13438@webjump.national.com.au> <5.1.0.14.0.20020116200338.0363a008@pop.netaddress.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks to everyone that helped with the Webalizer consolidated log issue. By using Sean Ellis' weblog-merge script I was able to setup Webalizer for use within our cluster. Anyway, I appreciate all of the information. Regards, Dustin At 01:03 PM 1/17/2002 +1100, you wrote: >On Wed, Jan 16, 2002 at 08:03:48PM -0600, Dustin Puryear wrote: >|At 12:48 PM 1/17/2002 +1100, you wrote: >|>This bounced when I replied to the list, so I thought I'd at least get it >|>to you... >| >|I had read somewhere that merging the log files wouldn't work. So you are >|saying there is no real problem in doing that? Cool. > >The only real problem webalizer has is that it can't 'go back' and update >stats its already emitted when it sees the next log record timestamp is >before something its already seen. (The only fix for webalizer would be >to hold everything in memory or a database till it exhausts all its logs.) >So, so long as everything gets sorted nicely, there are no problems. > >We've been running this way for 3 years now and our logs now run to around >4Gb/day. > > >Cheers, > >Enno. --- Dustin Puryear Information Systems Consultant http://members.telocity.com/~dpuryear In the beginning the Universe was created. This has been widely regarded as a bad move. - Douglas Adams To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 1:23:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web20106.mail.yahoo.com (web20106.mail.yahoo.com [216.136.226.43]) by hub.freebsd.org (Postfix) with SMTP id ADE2537B405 for ; Thu, 17 Jan 2002 01:23:30 -0800 (PST) Message-ID: <20020117092330.80644.qmail@web20106.mail.yahoo.com> Received: from [193.227.212.160] by web20106.mail.yahoo.com via HTTP; Thu, 17 Jan 2002 10:23:30 CET Date: Thu, 17 Jan 2002 10:23:30 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: HP Netserver E-200 & FreeBSD To: freebsd-isp@freebsd.org Cc: freebsd-newbies@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, anyone installed succesfully FreeBSD 4.x on HP Netserver E-200? I've to buy it to make two firewalls. The installation with the booting cd-rom? ______________________________________________________________________ Iscriviti al gruppo ufficiale di Tomb Raider: http://it.groups.yahoo.com/group/gruppoufficiale_tombraider/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:35:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mta7.pltn13.pbi.net (mta7.pltn13.pbi.net [64.164.98.8]) by hub.freebsd.org (Postfix) with ESMTP id 0E96037B402 for ; Thu, 17 Jan 2002 09:35:31 -0800 (PST) Received: from desire ([66.125.90.177]) by mta7.pltn13.pbi.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with SMTP id <0GQ300DG0FJ54T@mta7.pltn13.pbi.net> for freebsd-isp@freebsd.org; Thu, 17 Jan 2002 09:35:30 -0800 (PST) Date: Thu, 17 Jan 2002 09:35:29 -0800 From: Andrew Houghton Subject: How to secure telnet? To: freebsd-isp@freebsd.org Message-id: MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT Importance: Normal X-Priority: 3 (Normal) X-MSMail-priority: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have a server for shell accounts, and up to now the only way people have been able to access it is via SSH. One of the users is leaving for a year-long, round-the-world jaunt. SSH is pretty much out of the question for him -- if he can find an internet cafe in some of the places he's going, he won't be able to install new software, it would probably take years just to download a client over a 56K link, etc. etc. I'd like to support him by making telnet available to him. Any thoughts on the best/most secure way to do this? - a. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:38:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.dev.itouchnet.net (devco.net [196.15.188.2]) by hub.freebsd.org (Postfix) with ESMTP id DF1F537B416 for ; Thu, 17 Jan 2002 09:38:30 -0800 (PST) Received: from nobody by mx1.dev.itouchnet.net with scanned_ok (Exim 3.33 #2) id 16RGWQ-000NWY-00 for freebsd-isp@freebsd.org; Thu, 17 Jan 2002 19:40:18 +0200 Received: from shell.devco.net ([196.15.188.7]) by mx1.dev.itouchnet.net with esmtp (Exim 3.33 #2) id 16RGWP-000NWK-00; Thu, 17 Jan 2002 19:40:17 +0200 Received: from bvi by shell.devco.net with local (Exim 3.33 #4) id 16RGZw-000Cwx-00; Thu, 17 Jan 2002 19:43:56 +0200 Date: Thu, 17 Jan 2002 19:43:56 +0200 From: Barry Irwin To: Andrew Houghton Cc: freebsd-isp@freebsd.org Subject: Re: How to secure telnet? Message-ID: <20020117194356.V32746@itouchlabs.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from aah@acm.org on Thu, Jan 17, 2002 at 09:35:29AM -0800 X-Checked: This message has been scanned for any virusses and unauthorized attachments. X-iScan-ID: 90426-1011289217-53830@mx1.dev.itouchnet.net version $Name: REL_2_0_2 $ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Have you had a look at a Java SSH client such as mindterm This runs as an applet in most modern browers and is tiny (sub 100K iirc). As a bonus it has really great terminal emulation. http://www.mindbrigt.se/mindterm Barry On Thu 2002-01-17 (09:35), Andrew Houghton wrote: > I have a server for shell accounts, and up to now the only way people have > been able to access it is via SSH. One of the users is leaving for a > year-long, round-the-world jaunt. > > SSH is pretty much out of the question for him -- if he can find an internet > cafe in some of the places he's going, he won't be able to install new > software, it would probably take years just to download a client over a 56K > link, etc. etc. > > I'd like to support him by making telnet available to him. Any thoughts on > the best/most secure way to do this? > > - a. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:38:56 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ext-ch1gw-2.online-age.net (ext-ch1gw-2.online-age.net [216.34.191.36]) by hub.freebsd.org (Postfix) with ESMTP id 6AF5437B416 for ; Thu, 17 Jan 2002 09:38:50 -0800 (PST) Received: from int-ch1gw-4.online-age.net (int-ch1gw-4 [3.159.232.68]) by ext-ch1gw-2.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id MAA09047; Thu, 17 Jan 2002 12:37:33 -0500 (EST) Received: from crdns.crd.ge.com (localhost [127.0.0.1]) by int-ch1gw-4.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id MAA01365; Thu, 17 Jan 2002 12:37:32 -0500 (EST) Received: from exc01crdge.crd.ge.com (exc01crdge.crd.ge.com [3.1.116.47]) by crdns.crd.ge.com (8.11.6/8.11.6) with ESMTP id g0HHbSm05863; Thu, 17 Jan 2002 12:37:28 -0500 (EST) Received: by exc01crdge.crd.ge.com with Internet Mail Service (5.5.2653.19) id ; Thu, 17 Jan 2002 12:37:27 -0500 Message-ID: From: "Lapinski, Michael (CRD)" To: "'Andrew Houghton'" , freebsd-isp@FreeBSD.ORG Subject: RE: How to secure telnet? Date: Thu, 17 Jan 2002 12:37:26 -0500 X-Mailer: Internet Mail Service (5.5.2653.19) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org putty.exe is free, small and easy to find. -mtl -------------------------------------------------- Michael Lapinski Computer Scientist GE Corporate Research & Development "I think there is a world market for maybe five computers." - IBM Chairman Thomas Watson, 1943 -----Original Message----- From: Andrew Houghton [mailto:aah@acm.org] Sent: Thursday, January 17, 2002 12:35 PM To: freebsd-isp@FreeBSD.ORG Subject: How to secure telnet? I have a server for shell accounts, and up to now the only way people have been able to access it is via SSH. One of the users is leaving for a year-long, round-the-world jaunt. SSH is pretty much out of the question for him -- if he can find an internet cafe in some of the places he's going, he won't be able to install new software, it would probably take years just to download a client over a 56K link, etc. etc. I'd like to support him by making telnet available to him. Any thoughts on the best/most secure way to do this? - a. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:51:20 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp05.retemail.es (smtp05.iddeo.es [62.81.186.15]) by hub.freebsd.org (Postfix) with ESMTP id DE94037B416 for ; Thu, 17 Jan 2002 09:51:16 -0800 (PST) Received: from mailscan ([62.81.202.67]) by smtp05.retemail.es (InterMail vM.5.01.03.02 201-253-122-118-102-20010403) with SMTP id <20020117175109.IRUJ1011.smtp05.retemail.es@mailscan> for ; Thu, 17 Jan 2002 18:51:09 +0100 Received: FROM svrcitrix.sadiel.es BY mailscan ; Thu Jan 17 18:49:20 2002 +0100 Received: from CORREO.sadiel.es ([62.81.202.90]) by svrcitrix.sadiel.es with Microsoft SMTPSVC(5.0.2195.2966); Thu, 17 Jan 2002 18:51:14 +0100 Received: from svrldap.sadiel.es ([172.18.1.41]) by CORREO.sadiel.es with Microsoft SMTPSVC(5.0.2195.2966); Thu, 17 Jan 2002 18:45:55 +0100 Date: Thu, 17 Jan 2002 18:41:28 +0100 From: Jorge Bianquetti de las Heras To: Andrew Houghton Cc: freebsd-isp@freebsd.org Subject: Re: How to secure telnet? Message-Id: <20020117184128.49689153.jbianquetti@sadiel.es> In-Reply-To: References: X-Mailer: Sylpheed version 0.6.6 (GTK+ 1.2.10; i386--freebsd4.4) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 17 Jan 2002 17:45:55.0522 (UTC) FILETIME=[D076B220:01C19F7E] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 17 Jan 2002 09:35:29 -0800 Andrew Houghton wrote: Telnet is NOT secure. But you can use S/KEY > I have a server for shell accounts, and up to now the only way people have > been able to access it is via SSH. One of the users is leaving for a > year-long, round-the-world jaunt. > > SSH is pretty much out of the question for him -- if he can find an internet > cafe in some of the places he's going, he won't be able to install new > software, it would probably take years just to download a client over a 56K > link, etc. etc. > > I'd like to support him by making telnet available to him. Any thoughts on > the best/most secure way to do this? > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:52:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hindenburg.eboai.org (hindenburg.eboai.org [206.183.134.245]) by hub.freebsd.org (Postfix) with ESMTP id 443F337B41A for ; Thu, 17 Jan 2002 09:52:39 -0800 (PST) Received: by hindenburg.eboai.org (Postfix, from userid 1000) id 66EF45E2DF; Thu, 17 Jan 2002 12:52:38 -0500 (EST) Date: Thu, 17 Jan 2002 12:52:38 -0500 From: Chip Marshall To: Barry Irwin Cc: Andrew Houghton , freebsd-isp@freebsd.org Subject: Re: How to secure telnet? Message-ID: <20020117125238.B30218@setzer.chocobo.cx> Reply-To: chip@chocobo.cx Mail-Followup-To: Barry Irwin , Andrew Houghton , freebsd-isp@freebsd.org References: <20020117194356.V32746@itouchlabs.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020117194356.V32746@itouchlabs.com> User-Agent: Mutt/1.3.20i X-URL: http://www.chocobo.cx/chip/ X-OS: FreeBSD 4.2-RELEASE i386 up 102 days, 11:16 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I was just about to suggest that. I've used MindTerm from all sorts of places to check my mail, including silly little pay-by-the-minute kiosks in airports, and demo stuff at CompUSA and in the mall. Works nicely. On January 17, 2002, Barry Irwin sent me the following: > Have you had a look at a Java SSH client such as mindterm This runs as > an applet in most modern browers and is tiny (sub 100K iirc). As a > bonus it has really great terminal emulation. > > http://www.mindbrigt.se/mindterm > > On Thu 2002-01-17 (09:35), Andrew Houghton wrote: > > I have a server for shell accounts, and up to now the only way > > people have been able to access it is via SSH. One of the users is > > leaving for a year-long, round-the-world jaunt. > > > > SSH is pretty much out of the question for him -- if he can find an > > internet cafe in some of the places he's going, he won't be able to > > install new software, it would probably take years just to download > > a client over a 56K link, etc. etc. > > > > I'd like to support him by making telnet available to him. Any > > thoughts on the best/most secure way to do this? -- Chip Marshall http://www.chocobo.cx/chip/ GCM/CS d+(-) s+:++ a20>? C++ UB++++$ P+++$ L- E--- W++ N@ o K- w O M+ V-- PS+ PE Y+ PGP+ t+@ 5 X R@ tv+() b++>+++ DI++++ D(-) G++ e>++ h->++ r++ y- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Jan 17 9:54: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from indigo.quadrant.net (indigo.quadrant.net [207.195.92.9]) by hub.freebsd.org (Postfix) with ESMTP id 6FCA437B41A for ; Thu, 17 Jan 2002 09:54:00 -0800 (PST) Received: from git2000 (56K79.quadrant.net [207.195.92.79]) by indigo.quadrant.net (8.9.1/8.9.1) with SMTP id LAA16121; Thu, 17 Jan 2002 11:44:55 -0600 (CST) From: "Scott Gerhardt" To: "Lapinski, Michael (CRD)" , "'Andrew Houghton'" ,