From owner-freebsd-isp@FreeBSD.ORG Sun Sep 28 02:40:46 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 949E416A4B3 for ; Sun, 28 Sep 2003 02:40:46 -0700 (PDT) Received: from mail.npubs.com (mail.zoneseven.net [209.66.100.224]) by mx1.FreeBSD.org (Postfix) with ESMTP id CF31243FBD for ; Sun, 28 Sep 2003 02:40:45 -0700 (PDT) (envelope-from nate@abmc.net) Resent-Message-Id: Message-ID: <3F76AC94.90301@abmc.net> From: Nate User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.5b) Gecko/20030901 Thunderbird/0.2 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Nick Kraal , freebsd-isp@freebsd.org References: <1063258944.19647.5.camel@dreamboy.private.aros.net> <20030922120911.GG36591@dds.nl> <008d01c381b2$0e8d2a00$53e173cb@arc.net.my> <20030923121506.R70439@mail.trueafrican.com> <00d301c381b6$74941a80$53e173cb@arc.net.my> <20030923125324.B75618@mail.trueafrican.com> <015a01c38264$c225bf20$53e173cb@arc.net.my> In-Reply-To: <015a01c38264$c225bf20$53e173cb@arc.net.my> X-Enigmail-Version: 0.81.6.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Resent-Date: Sun, 28 Sep 2003 09:40:50 +0000 (GMT) Resent-From: nate@abmc.net (Postfix Filters) Subject: Re: SSHD Patch X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Date: Sun, 28 Sep 2003 09:40:46 -0000 X-List-Received-Date: Sun, 28 Sep 2003 09:40:46 -0000 You're missing the user land sources, you only have the kernel sources installed. You could use /stand/sysinstall or cvsup to get the userland files. Cheers, Nate Nick Kraal wrote: > Nope. The only file/directory in /usr/src is sys. The crypto directory is > under /usr/src/sys > > aoto% pwd > /usr/src/sys/crypto > aoto% lf > blowfish/ des/ md5.h rijndael/ sha1.h > cast128/ md5.c rc4/ sha1.c sha2/ > > -nick/ > From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 00:06:58 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EFFBA16A4B3 for ; Tue, 30 Sep 2003 00:06:58 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9B44644020 for ; Tue, 30 Sep 2003 00:06:56 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4Eax-000Js3-9d for ; Tue, 30 Sep 2003 10:06:51 +0300 Date: Tue, 30 Sep 2003 10:06:51 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20030930070650.GC97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 10:03AM up 4 days, 2:33, 4 users, load averages: 1.73, 4.37, 3.76 User-Agent: Mutt/1.5.4i Subject: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 07:06:59 -0000 Hello People, I have been trying for a whole 2 months to be able to get some good time servers to synchronize against. I am in the GMT +0300 TZ somewhere in Africa, but in all this time I don't seem to be able to identify a time server. I would like to run ntpd, using some atomic time server for sync. I have read all those literature out there, the only problem is identifying two or three suitable servers to sync against! Thanks for any clues. -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 00:10:02 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD4C116A4B3 for ; Tue, 30 Sep 2003 00:10:02 -0700 (PDT) Received: from aragorn.summit.net.au (aragorn.summit.net.au [203.221.180.33]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6C2FC44027 for ; Tue, 30 Sep 2003 00:10:01 -0700 (PDT) (envelope-from lachlan@fatpanda.net) Received: from 127.0.0.1 (localhost [127.0.0.1]) by mail.summit.net.au (Postfix) with SMTP id 2DB5214CD1; Tue, 30 Sep 2003 17:09:50 +1000 (EST) Received: from felix (project.summit.net.au [218.185.87.4]) by aragorn.summit.net.au (Postfix) with SMTP id 7E36814CCB; Tue, 30 Sep 2003 17:09:48 +1000 (EST) From: "Lachlan" To: "Odhiambo Washington" , Date: Tue, 30 Sep 2003 17:09:59 +1000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-reply-to: <20030930070650.GC97601@ns2.wananchi.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Importance: Normal Subject: RE: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 07:10:02 -0000 Hello, http://www.time.za.net/ The above link might be of use to you. Regards, Lachlan -----Original Message----- From: owner-freebsd-isp@freebsd.org [mailto:owner-freebsd-isp@freebsd.org]On Behalf Of Odhiambo Washington Sent: Tuesday, September 30, 2003 5:07 PM To: freebsd-isp@freebsd.org Subject: Public Time Synchronization Servers Hello People, I have been trying for a whole 2 months to be able to get some good time servers to synchronize against. I am in the GMT +0300 TZ somewhere in Africa, but in all this time I don't seem to be able to identify a time server. I would like to run ntpd, using some atomic time server for sync. I have read all those literature out there, the only problem is identifying two or three suitable servers to sync against! Thanks for any clues. -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 00:24:42 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B084F16A4B3 for ; Tue, 30 Sep 2003 00:24:42 -0700 (PDT) Received: from hermes.pressenter.com (hermes.pressenter.com [69.58.128.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1EEF144005 for ; Tue, 30 Sep 2003 00:24:42 -0700 (PDT) (envelope-from nospam@hiltonbsd.com) Received: from [69.58.129.151] (helo=daggar.sbgnet.local) by hermes.pressenter.com with smtp (Exim 3.35 #1) id 1A4EsB-0007EG-00; Tue, 30 Sep 2003 02:24:40 -0500 Date: Tue, 30 Sep 2003 02:24:38 -0500 From: Stephen Hilton To: Odhiambo Washington Message-Id: <20030930022438.068c4851.nospam@hiltonbsd.com> In-Reply-To: <20030930070650.GC97601@ns2.wananchi.com> References: <20030930070650.GC97601@ns2.wananchi.com> X-Mailer: Sylpheed version 0.9.4 (GTK+ 1.2.10; i386-portbld-freebsd4.9) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 07:24:42 -0000 On Tue, 30 Sep 2003 10:06:51 +0300 Odhiambo Washington wrote: > Hello People, > > I have been trying for a whole 2 months to be able to get some good > time servers to synchronize against. I am in the GMT +0300 TZ somewhere > in Africa, but in all this time I don't seem to be able to identify > a time server. I would like to run ntpd, using some atomic time server > for sync. I have read all those literature out there, the only problem > is identifying two or three suitable servers to sync against! > > Thanks for any clues. > Odhiambo, Try the larger universities also. HTH Stephen Hilton nospam@hiltonbsd.com From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 00:45:21 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4B12916A4B3 for ; Tue, 30 Sep 2003 00:45:21 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0279B43FB1 for ; Tue, 30 Sep 2003 00:45:19 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4FC7-0000vI-1G for ; Tue, 30 Sep 2003 10:45:15 +0300 Date: Tue, 30 Sep 2003 10:45:15 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20030930074515.GD97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20030930070650.GC97601@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 10:41AM up 4 days, 3:11, 4 users, load averages: 2.69, 2.39, 2.33 User-Agent: Mutt/1.5.4i Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 07:45:21 -0000 * Lachlan [20030930 10:11]: wrote: > Hello, > > > http://www.time.za.net/ > > The above link might be of use to you. It sure did, but still seems I am stuck. I have extracted the Stratum-2 servers from this site and run a test against them, no luck still. The error msg I get is the same: root@ /home/wash] 2# cat FILE2 ntp1.icomtek.csir.co.za tock.nml.csir.co.za ntp.is.co.za igubu.saix.net ntp1.webonline.co.za ntp-ndf.mweb.co.za ntp-nld.mweb.co.za 1# for server in `cat FILE2`; do ntpdate $server; done 30 Sep 10:42:58 ntpdate[55266]: no server suitable for synchronization found 30 Sep 10:43:02 ntpdate[55267]: no server suitable for synchronization found 30 Sep 10:43:06 ntpdate[55268]: no server suitable for synchronization found 30 Sep 10:43:10 ntpdate[55269]: no server suitable for synchronization found 30 Sep 10:43:17 ntpdate[55272]: no server suitable for synchronization found 30 Sep 10:43:24 ntpdate[55273]: no server suitable for synchronization found 30 Sep 10:43:30 ntpdate[55274]: no server suitable for synchronization found Is there something that I could be ignoring (since this is my 1st go at setting up a Time Server) that is blatantly obvious? For one I know (connectionwsie) that SA may not be the closest to me, but surely their Time Servers should serve me well ;) I am still at a loss as to why I get the message. -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Adolescence, n.: The stage between puberty and adultery. From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 00:53:06 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3B6D516A4B3 for ; Tue, 30 Sep 2003 00:53:06 -0700 (PDT) Received: from zibbi.icomtek.csir.co.za (zibbi.icomtek.csir.co.za [146.64.24.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id EC94044013 for ; Tue, 30 Sep 2003 00:53:00 -0700 (PDT) (envelope-from jhay@zibbi.icomtek.csir.co.za) Received: from zibbi.icomtek.csir.co.za (localhost [IPv6:::1]) h8U7qpqs013264; Tue, 30 Sep 2003 09:52:51 +0200 (SAST) (envelope-from jhay@zibbi.icomtek.csir.co.za) Received: (from jhay@localhost) by zibbi.icomtek.csir.co.za (8.12.9/8.12.9/Submit) id h8U7qoHM013263; Tue, 30 Sep 2003 09:52:50 +0200 (SAST) (envelope-from jhay) Date: Tue, 30 Sep 2003 09:52:50 +0200 From: John Hay To: Odhiambo Washington , freebsd-isp@freebsd.org Message-ID: <20030930075249.GA13116@zibbi.icomtek.csir.co.za> References: <20030930070650.GC97601@ns2.wananchi.com> <20030930074515.GD97601@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030930074515.GD97601@ns2.wananchi.com> User-Agent: Mutt/1.4i Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 07:53:06 -0000 On Tue, Sep 30, 2003 at 10:45:15AM +0300, Odhiambo Washington wrote: > * Lachlan [20030930 10:11]: wrote: > > Hello, > > > > > > http://www.time.za.net/ > > > > The above link might be of use to you. > > > It sure did, but still seems I am stuck. I have extracted the Stratum-2 > servers from this site and run a test against them, no luck still. The > error msg I get is the same: > > > root@ /home/wash] > 2# cat FILE2 > ntp1.icomtek.csir.co.za > tock.nml.csir.co.za > ntp.is.co.za > igubu.saix.net > ntp1.webonline.co.za > ntp-ndf.mweb.co.za > ntp-nld.mweb.co.za > > 1# for server in `cat FILE2`; do ntpdate $server; done > 30 Sep 10:42:58 ntpdate[55266]: no server suitable for synchronization found > 30 Sep 10:43:02 ntpdate[55267]: no server suitable for synchronization found > 30 Sep 10:43:06 ntpdate[55268]: no server suitable for synchronization found > 30 Sep 10:43:10 ntpdate[55269]: no server suitable for synchronization found > 30 Sep 10:43:17 ntpdate[55272]: no server suitable for synchronization found > 30 Sep 10:43:24 ntpdate[55273]: no server suitable for synchronization found > 30 Sep 10:43:30 ntpdate[55274]: no server suitable for synchronization found > > > Is there something that I could be ignoring (since this is my 1st go at > setting up a Time Server) that is blatantly obvious? For one I know (connectionwsie) > that SA may not be the closest to me, but surely their Time Servers should > serve me well ;) They should. I run the icomtek ones and they don't block anyone... yet. :-) South Africa might not be optimum for you though because I guess that most African countries don't peer with each other, so everything have to go through USA. :-( > I am still at a loss as to why I get the message. Maybe there is some kind of firewalling on your side? NTP use udp port 123. John -- John Hay -- John.Hay@icomtek.csir.co.za / jhay@FreeBSD.org From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:07:56 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A813316A4B3 for ; Tue, 30 Sep 2003 01:07:56 -0700 (PDT) Received: from mail.solone.net (outbound.solone.net [203.81.46.169]) by mx1.FreeBSD.org (Postfix) with SMTP id 5977D44011 for ; Tue, 30 Sep 2003 01:07:54 -0700 (PDT) (envelope-from email@edylie.net) Received: (qmail 46228 invoked from network); 30 Sep 2003 08:07:51 -0000 Received: from unknown (HELO ?192.168.0.3?) (202.166.15.65) by 10.10.10.10 with SMTP; 30 Sep 2003 08:07:51 -0000 From: Edy Lie To: Odhiambo Washington In-Reply-To: <20030930074515.GD97601@ns2.wananchi.com> References: <20030930070650.GC97601@ns2.wananchi.com> <20030930074515.GD97601@ns2.wananchi.com> Content-Type: text/plain Message-Id: <1064909260.546.26.camel@ps2.consoledojo.com> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.4 Date: Tue, 30 Sep 2003 16:07:40 +0800 Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: email@edylie.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:07:56 -0000 Please make sure you have open firewall port 123 udp both ways. You might want to run tcpdump to investigate the traffic when you issued the ntpdate command. For example interface name fxp0 (ifconfig -a shows it) tcpdump -ni fxp0 port 123 Cheers, Ed On Tue, 2003-09-30 at 15:45, Odhiambo Washington wrote: > * Lachlan [20030930 10:11]: wrote: > > Hello, > > > > > > http://www.time.za.net/ > > > > The above link might be of use to you. > > > It sure did, but still seems I am stuck. I have extracted the Stratum-2 > servers from this site and run a test against them, no luck still. The > error msg I get is the same: > > > root@ /home/wash] > 2# cat FILE2 > ntp1.icomtek.csir.co.za > tock.nml.csir.co.za > ntp.is.co.za > igubu.saix.net > ntp1.webonline.co.za > ntp-ndf.mweb.co.za > ntp-nld.mweb.co.za > > 1# for server in `cat FILE2`; do ntpdate $server; done > 30 Sep 10:42:58 ntpdate[55266]: no server suitable for synchronization found > 30 Sep 10:43:02 ntpdate[55267]: no server suitable for synchronization found > 30 Sep 10:43:06 ntpdate[55268]: no server suitable for synchronization found > 30 Sep 10:43:10 ntpdate[55269]: no server suitable for synchronization found > 30 Sep 10:43:17 ntpdate[55272]: no server suitable for synchronization found > 30 Sep 10:43:24 ntpdate[55273]: no server suitable for synchronization found > 30 Sep 10:43:30 ntpdate[55274]: no server suitable for synchronization found > > > Is there something that I could be ignoring (since this is my 1st go at > setting up a Time Server) that is blatantly obvious? For one I know (connectionwsie) > that SA may not be the closest to me, but surely their Time Servers should > serve me well ;) > > I am still at a loss as to why I get the message. > > > > -Wash -- From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:10:25 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4322916A4BF for ; Tue, 30 Sep 2003 01:10:25 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1D60643FE9 for ; Tue, 30 Sep 2003 01:10:22 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4FaN-0005kP-8l for ; Tue, 30 Sep 2003 11:10:19 +0300 Date: Tue, 30 Sep 2003 11:10:19 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20030930081019.GF97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20030930070650.GC97601@ns2.wananchi.com> <20030930074515.GD97601@ns2.wananchi.com> <20030930075249.GA13116@zibbi.icomtek.csir.co.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030930075249.GA13116@zibbi.icomtek.csir.co.za> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 11:08AM up 4 days, 3:38, 5 users, load averages: 1.33, 2.20, 2.67 User-Agent: Mutt/1.5.4i Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:10:25 -0000 * John Hay [20030930 10:53]: wrote: [snip] > > It sure did, but still seems I am stuck. I have extracted the Stratum-2 > > servers from this site and run a test against them, no luck still. The > > error msg I get is the same: > > > > > > root@ /home/wash] > > 2# cat FILE2 > > ntp1.icomtek.csir.co.za > > tock.nml.csir.co.za > > ntp.is.co.za > > igubu.saix.net > > ntp1.webonline.co.za > > ntp-ndf.mweb.co.za > > ntp-nld.mweb.co.za > > > > 1# for server in `cat FILE2`; do ntpdate $server; done > > 30 Sep 10:42:58 ntpdate[55266]: no server suitable for synchronization found > > 30 Sep 10:43:02 ntpdate[55267]: no server suitable for synchronization found > > 30 Sep 10:43:06 ntpdate[55268]: no server suitable for synchronization found > > 30 Sep 10:43:10 ntpdate[55269]: no server suitable for synchronization found > > 30 Sep 10:43:17 ntpdate[55272]: no server suitable for synchronization found > > 30 Sep 10:43:24 ntpdate[55273]: no server suitable for synchronization found > > 30 Sep 10:43:30 ntpdate[55274]: no server suitable for synchronization found > > > > > > Is there something that I could be ignoring (since this is my 1st go at > > setting up a Time Server) that is blatantly obvious? For one I know (connectionwsie) > > that SA may not be the closest to me, but surely their Time Servers should > > serve me well ;) > > They should. I run the icomtek ones and they don't block anyone... yet. :-) > South Africa might not be optimum for you though because I guess that most > African countries don't peer with each other, so everything have to go > through USA. :-( > > > I am still at a loss as to why I get the message. > > Maybe there is some kind of firewalling on your side? NTP use udp port 123. No firewalls here ;) -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Paul's Law: In America, it's not how much an item costs, it's how much you save. From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:11:25 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 522D616A4C0 for ; Tue, 30 Sep 2003 01:11:25 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0C3AA43FF5 for ; Tue, 30 Sep 2003 01:11:23 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4FbJ-0005tM-KG; Tue, 30 Sep 2003 11:11:17 +0300 Date: Tue, 30 Sep 2003 11:11:17 +0300 From: Odhiambo Washington To: Christopher Raven Message-ID: <20030930081117.GG97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , Christopher Raven , freebsd-isp@freebsd.org References: <20030930074515.GD97601@ns2.wananchi.com> <001b01c38727$fd87de00$01ffa8c0@cianoh469jbbk7> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <001b01c38727$fd87de00$01ffa8c0@cianoh469jbbk7> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 11:10AM up 4 days, 3:39, 5 users, load averages: 5.30, 3.54, 3.15 User-Agent: Mutt/1.5.4i cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:11:25 -0000 * Christopher Raven [20030930 10:54]: wrote: > Presumably you did try one at a time and not just the scripting to > ensure they are reachable? I see no problems one at a time from our end > on those servers... If that's the case for you too then perhaps try a > different batch call method The batch method is really fine. Okay here is a non-batched test, for exemple: [root@ns1 /root]# ntpdate ntp1.icomtek.csir.co.za 30 Sep 11:07:35 ntpdate[16353]: no server suitable for synchronization found [root@ns1 /root]# ntpdate -d ntp1.icomtek.csir.co.za 30 Sep 11:07:49 ntpdate[16354]: ntpdate 3-5.93e Fri Apr 6 13:16:26 EDT 2001 (1) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) server 146.64.24.58, port 123 stratum 0, precision 0, leap 00, trust 000 refid [0.0.0.0], delay 0.00000, dispersion 64.00000 transmitted 4, in filter 4 reference time: 00000000.00000000 Thu, Feb 7 2036 3:28:16.000 originate timestamp: 00000000.00000000 Thu, Feb 7 2036 3:28:16.000 transmit timestamp: c3240cb8.fd805000 Tue, Sep 30 2003 11:07:52.990 filter delay: 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 filter offset: 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 delay 0.00000, dispersion 64.00000 offset 0.000000 30 Sep 11:07:53 ntpdate[16354]: no server suitable for synchronization found [root@ns1 /root]# -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) This fortune is false. From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:13:24 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DCE5016A4BF for ; Tue, 30 Sep 2003 01:13:24 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 22D8444025 for ; Tue, 30 Sep 2003 01:13:23 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4FdH-0006I3-7A for ; Tue, 30 Sep 2003 11:13:19 +0300 Date: Tue, 30 Sep 2003 11:13:19 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20030930081319.GH97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20030930070650.GC97601@ns2.wananchi.com> <20030930074515.GD97601@ns2.wananchi.com> <20030930075249.GA13116@zibbi.icomtek.csir.co.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030930075249.GA13116@zibbi.icomtek.csir.co.za> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 11:11AM up 4 days, 3:41, 5 users, load averages: 4.30, 3.51, 3.16 User-Agent: Mutt/1.5.4i Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:13:25 -0000 * John Hay [20030930 10:53]: wrote: [snip] I am happy to be in touch with you!! > They should. I run the icomtek ones and they don't block anyone... yet. :-) > South Africa might not be optimum for you though because I guess that most > African countries don't peer with each other, so everything have to go > through USA. :-( > > > I am still at a loss as to why I get the message. > > Maybe there is some kind of firewalling on your side? NTP use udp port 123. No firewall. A test against one of your servers, from a FreeBSD 5.1-RELEASE and from a Redhat linux box both give same result, viz: [root@ns1 /root]# ntpdate ntp1.icomtek.csir.co.za 30 Sep 11:07:35 ntpdate[16353]: no server suitable for synchronization found [root@ns1 /root]# ntpdate -d ntp1.icomtek.csir.co.za 30 Sep 11:07:49 ntpdate[16354]: ntpdate 3-5.93e Fri Apr 6 13:16:26 EDT 2001 (1) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) transmit(146.64.24.58) server 146.64.24.58, port 123 stratum 0, precision 0, leap 00, trust 000 refid [0.0.0.0], delay 0.00000, dispersion 64.00000 transmitted 4, in filter 4 reference time: 00000000.00000000 Thu, Feb 7 2036 3:28:16.000 originate timestamp: 00000000.00000000 Thu, Feb 7 2036 3:28:16.000 transmit timestamp: c3240cb8.fd805000 Tue, Sep 30 2003 11:07:52.990 filter delay: 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 0.00000 filter offset: 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 0.000000 delay 0.00000, dispersion 64.00000 offset 0.000000 30 Sep 11:07:53 ntpdate[16354]: no server suitable for synchronization found [root@ns1 /root]# -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Over the years, I've developed my sense of deja vu so acutely that now I can remember things that *have* happened before ... From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:32:33 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F210C16A4B3 for ; Tue, 30 Sep 2003 01:32:32 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 50ADF4402F for ; Tue, 30 Sep 2003 01:32:31 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4Fvo-000ARO-GF; Tue, 30 Sep 2003 11:32:28 +0300 Date: Tue, 30 Sep 2003 11:32:28 +0300 From: Odhiambo Washington To: Christopher Raven Message-ID: <20030930083228.GJ97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , Christopher Raven , freebsd-isp@freebsd.org References: <20030930081319.GH97601@ns2.wananchi.com> <001d01c3872b$ef2eefc0$01ffa8c0@cianoh469jbbk7> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <001d01c3872b$ef2eefc0$01ffa8c0@cianoh469jbbk7> X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 11:28AM up 4 days, 3:58, 5 users, load averages: 2.27, 2.41, 2.68 User-Agent: Mutt/1.5.4i cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:32:33 -0000 * Christopher Raven [20030930 11:22]: wrote: > Ah just saw that you had tried from two, OK scratch my lest comment. Do > you have access to a machine off of your own network to try.. i.e. if > you are in a University Campus there try from a machine off the network. I am going to try from my friend's box in Hungary.. > Perhaps an upstream Router / firewall is blocking time requests that you > are unaware of? Very possible. The test that we run here seem to suggest that. > If you do a traceroute to that server you can perhaps ask the ISP's at > each step to try that timeserver so you can see where it breaks. If you > ask they can only say no :) > Yes, I am already calling out upstream provider to get them to explain this to me. They are notorious for filtering ports!! -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Cahn's Axiom: When all else fails, read the instructions. From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:44:13 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 64D7A16A4B3 for ; Tue, 30 Sep 2003 01:44:13 -0700 (PDT) Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27]) by mx1.FreeBSD.org (Postfix) with ESMTP id 37DA844005 for ; Tue, 30 Sep 2003 01:44:12 -0700 (PDT) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from localhost (localhost [127.0.0.1]) by transport.cksoft.de (Postfix) with ESMTP id 122FE1FF8FF; Tue, 30 Sep 2003 10:44:10 +0200 (CEST) Received: by transport.cksoft.de (Postfix, from userid 66) id BEA141FF8FE; Tue, 30 Sep 2003 10:44:08 +0200 (CEST) Received: by mail.int.zabbadoz.net (Postfix, from userid 1060) id F299715383; Tue, 30 Sep 2003 08:43:57 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.int.zabbadoz.net (Postfix) with ESMTP id E871615380; Tue, 30 Sep 2003 08:43:57 +0000 (UTC) Date: Tue, 30 Sep 2003 08:43:57 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@e0-0.zab2.int.zabbadoz.net To: Odhiambo Washington In-Reply-To: <20030930070650.GC97601@ns2.wananchi.com> Message-ID: References: <20030930070650.GC97601@ns2.wananchi.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS snapshot-20020300 cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:44:13 -0000 On Tue, 30 Sep 2003, Odhiambo Washington wrote: Hi, > I have been trying for a whole 2 months to be able to get some good > time servers to synchronize against. I am in the GMT +0300 TZ somewhere > in Africa, but in all this time I don't seem to be able to identify > a time server. I would like to run ntpd, using some atomic time server > for sync. I have read all those literature out there, the only problem > is identifying two or three suitable servers to sync against! Have you had a look at the two lists (especially the second) given at the end of this page ? http://www.eecis.udel.edu/~mills/ntp/servers.html PS: I hope you aren't behind a sat link ? -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT 56 69 73 69 74 http://www.zabbadoz.net/ From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 01:45:36 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6FA8616A4B3 for ; Tue, 30 Sep 2003 01:45:36 -0700 (PDT) Received: from ns2.buildingapplications.com (ns2.buildingapplications.com [207.111.170.48]) by mx1.FreeBSD.org (Postfix) with ESMTP id 372A744017 for ; Tue, 30 Sep 2003 01:45:35 -0700 (PDT) (envelope-from schoensee@rcinco.com) Received: (qmail 74461 invoked by uid 85); 30 Sep 2003 08:45:37 -0000 Received: from schoensee@rcinco.com by ns2.buildingapplications.com by uid 89 with qmail-scanner-1.16 (clamscan: 0.60. spamassassin: 2.55. Clear:. Processed in 0.518198 secs); 30 Sep 2003 08:45:37 -0000 Received: from unknown (HELO rcinco.com) (200.67.228.136) by ns2.buildingapplications.com with SMTP; 30 Sep 2003 08:45:36 -0000 Message-ID: <3F7942AD.2030207@rcinco.com> Date: Tue, 30 Sep 2003 03:45:33 -0500 From: Michael Schoensee User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.5b) Gecko/20030925 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Odhiambo Washington References: <20030930070650.GC97601@ns2.wananchi.com> <20030930074515.GD97601@ns2.wananchi.com> <20030930075249.GA13116@zibbi.icomtek.csir.co.za> <20030930081319.GH97601@ns2.wananchi.com> In-Reply-To: <20030930081319.GH97601@ns2.wananchi.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 08:45:36 -0000 Odhiambo Washington wrote: >No firewall. > > > I would run the tcpdumps that Edy Lie sugested. >A test against one of your servers, from a FreeBSD 5.1-RELEASE and from a Redhat >linux box both give same result, viz: > > Not sure about Africa, but two years ago, here in Mexico, I had to put "ntpdate -t 10 " to make shure, not geting a "no server suitable for synchronization found". That time I were not able to find any timeserver here in Mexico. So I had to get my Time sync from the USA. Saludos From owner-freebsd-isp@FreeBSD.ORG Tue Sep 30 04:23:57 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6D7AD16A4B3 for ; Tue, 30 Sep 2003 04:23:57 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id C911244037 for ; Tue, 30 Sep 2003 04:23:55 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com with local (Exim 4.22 #3 (FreeBSD)) id 1A4Ibg-000G4E-CF for ; Tue, 30 Sep 2003 14:23:52 +0300 Date: Tue, 30 Sep 2003 14:23:52 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Message-ID: <20030930112352.GL97601@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org References: <20030930070650.GC97601@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Under a government which imprisons any unjustly, the true place for a just man is also in prison. -- Henry David Thoreau X-Operating-System: FreeBSD 4.9-PRERELEASE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.5.4i (2003-03-19) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 2:22PM up 4 days, 6:51, 5 users, load averages: 2.66, 2.23, 2.10 User-Agent: Mutt/1.5.4i Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Sep 2003 11:23:57 -0000 * Bjoern A. Zeeb [20030930 11:44]: wrote: > On Tue, 30 Sep 2003, Odhiambo Washington wrote: > > Hi, > > > I have been trying for a whole 2 months to be able to get some good > > time servers to synchronize against. I am in the GMT +0300 TZ somewhere > > in Africa, but in all this time I don't seem to be able to identify > > a time server. I would like to run ntpd, using some atomic time server > > for sync. I have read all those literature out there, the only problem > > is identifying two or three suitable servers to sync against! > > Have you had a look at the two lists (especially the second) given at > the end of this page ? > > http://www.eecis.udel.edu/~mills/ntp/servers.html Yes, I did. Got same errors. > > PS: I hope you aren't behind a sat link ? Downlink, via Teleglobe ;) -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) It's lucky you're going so slowly, because you're going in the wrong direction. From owner-freebsd-isp@FreeBSD.ORG Wed Oct 1 12:28:51 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AA66B16A4B3 for ; Wed, 1 Oct 2003 12:28:51 -0700 (PDT) Received: from mta4.srv.hcvlny.cv.net (mta4.srv.hcvlny.cv.net [167.206.5.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 89FB343F75 for ; Wed, 1 Oct 2003 12:28:50 -0700 (PDT) (envelope-from returns@galis.org) Received: from dyn.galis.org (ool-44c1e325.dyn.optonline.net [68.193.227.37]) by mta4.srv.hcvlny.cv.net (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with SMTP id <0HM300FKBFATNN@mta4.srv.hcvlny.cv.net> for freebsd-isp@freebsd.org; Wed, 01 Oct 2003 15:25:42 -0400 (EDT) Received: (qmail 3018 invoked by uid 1010); Wed, 01 Oct 2003 19:25:40 +0000 X-URL: http://galis.org/george Date: Wed, 01 Oct 2003 15:25:40 -0400 From: George Georgalis In-reply-to: <20030930112352.GL97601@ns2.wananchi.com> To: freebsd-isp@freebsd.org Message-id: <20031001192540.GA2942@trot.local> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: Mutt/1.3.28i References: <20030930070650.GC97601@ns2.wananchi.com> <20030930112352.GL97601@ns2.wananchi.com> Subject: Re: Public Time Synchronization Servers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Oct 2003 19:28:51 -0000 On Tue, Sep 30, 2003 at 02:23:52PM +0300, Odhiambo Washington wrote: >* Bjoern A. Zeeb [20030930 11:44]: wrote: >> On Tue, 30 Sep 2003, Odhiambo Washington wrote: >> >> Hi, >> >> > I have been trying for a whole 2 months to be able to get some good >> > time servers to synchronize against. I am in the GMT +0300 TZ somewhere >> > in Africa, but in all this time I don't seem to be able to identify >> > a time server. I would like to run ntpd, using some atomic time server >> > for sync. I have read all those literature out there, the only problem >> > is identifying two or three suitable servers to sync against! >> >> Have you had a look at the two lists (especially the second) given at >> the end of this page ? >> >> http://www.eecis.udel.edu/~mills/ntp/servers.html > >Yes, I did. Got same errors. > > >> >> PS: I hope you aren't behind a sat link ? > >Downlink, via Teleglobe ;) try mtr (traceroute, or whatever) and check the ntp port on your ISP's routers, it's not uncommon that it would be available to you and would certainly have the least latency. // George -- GEORGE GEORGALIS, System Admin/Architect cell: 646-331-2027 < Security Services, Web, Mail, mailto:george@galis.org Multimedia, DB, DNS and Metrics. http://www.galis.org/george From owner-freebsd-isp@FreeBSD.ORG Wed Oct 1 13:46:53 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 828FE16A4B3 for ; Wed, 1 Oct 2003 13:46:53 -0700 (PDT) Received: from smtp.distributel.net (cns2.distributel.NET [66.38.181.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 38F4943FA3 for ; Wed, 1 Oct 2003 13:46:52 -0700 (PDT) (envelope-from paul@colba.net) Received: from nat.mtl.distributel.net (nat.MTL.distributel.NET [66.38.181.24]) by smtp.distributel.net (8.12.6/8.12.6) with ESMTP id h91KkoLv030385 for ; Wed, 1 Oct 2003 16:46:50 -0400 (EDT) Received: from colba.net (paul@[10.14.61.42])h91Jm00p060506 for ; Wed, 1 Oct 2003 15:48:00 -0400 (EDT) (envelope-from paul@colba.net) Sender: paul@nat.mtl.distributel.net Message-ID: <3F7B3F85.1BC35D95@colba.net> Date: Wed, 01 Oct 2003 16:56:37 -0400 From: Paul Khavkine Organization: DISTRIBUTEL X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.36 Subject: Sendmail and unix groups X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Oct 2003 20:46:53 -0000 Hi folks. Is there any way to reject emails for users in a specific unix group ? Thanx Paul From owner-freebsd-isp@FreeBSD.ORG Wed Oct 1 13:50:01 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7B69016A4B3 for ; Wed, 1 Oct 2003 13:50:01 -0700 (PDT) Received: from ext-nj2gw-5.online-age.net (ext-nj2gw-5.online-age.net [64.14.56.41]) by mx1.FreeBSD.org (Postfix) with ESMTP id 62CF343FDF for ; Wed, 1 Oct 2003 13:50:00 -0700 (PDT) (envelope-from lapinski@crd.ge.com) Received: from int-nj2gw-2.online-age.net (int-nj2gw-2 [3.159.236.66]) id h91KmMNq029272; Wed, 1 Oct 2003 16:48:23 -0400 (EDT) Received: from crdns.crd.ge.com (localhost [127.0.0.1]) id h91KnuFb014302; Wed, 1 Oct 2003 16:49:56 -0400 (EDT) Received: from xbh01crdge.crd.ge.com (xbh01crdge.crd.ge.com [3.159.72.22]) by crdns.crd.ge.com (8.11.6p2/8.11.6) with ESMTP id h91KntZ01802; Wed, 1 Oct 2003 16:49:55 -0400 (EDT) Received: by xbh01crdge.crd.ge.com with Internet Mail Service (5.5.2653.19) id ; Wed, 1 Oct 2003 16:49:54 -0400 Message-ID: From: "Lapinski, Michael (Research)" To: "'Paul Khavkine'" , freebsd-isp@freebsd.org Date: Wed, 1 Oct 2003 16:49:54 -0400 X-Mailer: Internet Mail Service (5.5.2653.19) Subject: RE: Sendmail and unix groups X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Oct 2003 20:50:01 -0000 the sendmail list would probably help you much better... http://www.sendmail.org/email-addresses.html -mtl -------------------------------------------------- Michael Lapinski Computer Scientist GE Research -----Original Message----- From: Paul Khavkine [mailto:paul@colba.net] Sent: Wednesday, October 01, 2003 4:57 PM To: freebsd-isp@freebsd.org Subject: Sendmail and unix groups Hi folks. Is there any way to reject emails for users in a specific unix group ? Thanx Paul _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Thu Oct 2 02:23:28 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CFA1516A4B3 for ; Thu, 2 Oct 2003 02:23:28 -0700 (PDT) Received: from ns1.unixmexico.net (ns1.unixmexico.net [69.10.138.161]) by mx1.FreeBSD.org (Postfix) with ESMTP id 074CF43FD7 for ; Thu, 2 Oct 2003 02:23:26 -0700 (PDT) (envelope-from nbari@unixmexico.com) Received: (qmail 95737 invoked by uid 85); 2 Oct 2003 09:24:20 -0000 Received: from nbari@unixmexico.com by ns1.unixmexico.net by uid 82 with qmail-scanner-1.16 (hbedv: 6.20.0.1/6.20.0.36. Clear:. Processed in 0.321589 secs); 02 Oct 2003 09:24:20 -0000 Received: from ns1.unixmexico.net (HELO mail.unixmexico.com) ([69.10.138.161]) (envelope-sender ) by ns1.unixmexico.net (qmail-ldap-1.03) with SMTP for ; 2 Oct 2003 09:24:19 -0000 Received: from 148.243.211.1 (SquirrelMail authenticated user nbari@unixmexico.com) by mail.unixmexico.com with HTTP; Thu, 2 Oct 2003 04:24:19 -0500 (CDT) Message-ID: <62587.148.243.211.1.1065086659.squirrel@mail.unixmexico.com> Date: Thu, 2 Oct 2003 04:24:19 -0500 (CDT) From: nbari@unixmexico.com To: freebsd-isp@freebsd.org User-Agent: SquirrelMail/1.4.1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 Importance: Normal Subject: Xserve RAID on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2003 09:23:28 -0000 Hi all, I want to know if the Xserve RAID from apple (http://www.apple.com/xserve/raid/) can work on FreeBSD. So far i know that is a Fiber chanel scsi adaptar but I want need more info. regards. From owner-freebsd-isp@FreeBSD.ORG Thu Oct 2 02:49:44 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E9E5716A4B3 for ; Thu, 2 Oct 2003 02:49:44 -0700 (PDT) Received: from customer.ecore.net (enterprise.ecore.net [212.223.99.1]) by mx1.FreeBSD.org (Postfix) with SMTP id 9528543FE0 for ; Thu, 2 Oct 2003 02:49:43 -0700 (PDT) (envelope-from cs@cheasy.de) Received: (qmail 28483 invoked from network); 2 Oct 2003 09:49:41 -0000 Received: from p5084071b.dip0.t-ipconnect.de (HELO cheasy.de) (80.132.7.27) by cheasy.de with SMTP; 2 Oct 2003 09:49:41 -0000 Message-ID: <3F7BF4B6.6030007@cheasy.de> Date: Thu, 02 Oct 2003 11:49:42 +0200 From: Christoph Sold User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.5) Gecko/20030925 X-Accept-Language: de, de-de, en-us, en MIME-Version: 1.0 To: nbari@unixmexico.com References: <62587.148.243.211.1.1065086659.squirrel@mail.unixmexico.com> In-Reply-To: <62587.148.243.211.1.1065086659.squirrel@mail.unixmexico.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: Xserve RAID on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2003 09:49:45 -0000 nbari@unixmexico.com wrote: > Hi all, I want to know if the Xserve RAID from apple > (http://www.apple.com/xserve/raid/) can work on FreeBSD. > > So far i know that is a Fiber chanel scsi adaptar but I want need more info. http://www.apple.com/xserve/raid/ and http://www.apple.com/server/pdfs/L26325A_XserveRAID_TO.pdf seem to answer all your questions. Basically, this unit is a Mac OS X Server providing storage over the fibre using the usual suspects (NFS, SMB/CIFS(Samba), AFS). Don't know if anybody tried this using fiber channel transport. HTH -Christoph Sold From owner-freebsd-isp@FreeBSD.ORG Thu Oct 2 10:18:42 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD86A16A4BF for ; Thu, 2 Oct 2003 10:18:42 -0700 (PDT) Received: from MailGate.wcasd.k12.pa.us (mailgate.wcasd.k12.pa.us [207.8.234.211]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8772443F85 for ; Thu, 2 Oct 2003 10:18:41 -0700 (PDT) (envelope-from cross@wcasd.k12.pa.us) Received: from localhost.wcasd.k12.pa.us (localhost.wcasd.k12.pa.us [127.0.0.1]) by MailGate.wcasd.k12.pa.us (Postfix) with ESMTP id F03358C9A2 for ; Thu, 2 Oct 2003 13:18:40 -0400 (EDT) Received: from MailGate.wcasd.k12.pa.us (localhost.wcasd.k12.pa.us [127.0.0.1])74697-68973CE9; Thu, 02 Oct 2003 13:18:40 -0400 Received: from mail.wcasd.k12.pa.us (sabmsx05.wcasd.k12.pa.us [10.1.20.44]) by MailGate.wcasd.k12.pa.us (Postfix) with ESMTP id BA4118C94B for ; Thu, 2 Oct 2003 13:18:40 -0400 (EDT) Received: from sabmsx04.wcasd.k12.pa.us ([10.1.20.43]) by mail.wcasd.k12.pa.us with Microsoft SMTPSVC(5.0.2195.6713); Thu, 2 Oct 2003 13:18:30 -0400 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0 Date: Thu, 2 Oct 2003 13:18:30 -0400 Message-ID: <42918C1908E8A44495BB9695F969ACB89E567D@sabmsx04.wcasd.k12.pa.us> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: RE: Xserve RAID on FreeBSD Thread-Index: AcOIypalGlVJJVnIS86+OfIHMR1qJgAPhLVgAAAfYiA= From: "Ross, Chris" To: X-OriginalArrivalTime: 02 Oct 2003 17:18:30.0819 (UTC) FILETIME=[337F2F30:01C38909] X-AntiVirus: checked by Vexira MailArmor (version: 2.0.1.14; VAE: 6.21.0.1; VDF: 6.21.0.58; host: MailGate.wcasd.k12.pa.us) Subject: RE: Xserve RAID on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2003 17:18:42 -0000 According to our Apple reps. this is a fibre channel attached RAID box using ATA drives. -----Original Message----- From: Christoph Sold [mailto:cs@cheasy.de]=20 Sent: Thursday, October 02, 2003 5:50 AM To: nbari@unixmexico.com Cc: freebsd-isp@freebsd.org Subject: Re: Xserve RAID on FreeBSD nbari@unixmexico.com wrote: > Hi all, I want to know if the Xserve RAID from apple > (http://www.apple.com/xserve/raid/) can work on FreeBSD. >=20 > So far i know that is a Fiber chanel scsi adaptar but I want need more info. http://www.apple.com/xserve/raid/ and http://www.apple.com/server/pdfs/L26325A_XserveRAID_TO.pdf seem to answer all your questions. Basically, this unit is a Mac OS X Server providing storage over the=20 fibre using the usual suspects (NFS, SMB/CIFS(Samba), AFS). Don't know=20 if anybody tried this using fiber channel transport. HTH -Christoph Sold _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Thu Oct 2 10:41:54 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E89AC16A4B3 for ; Thu, 2 Oct 2003 10:41:54 -0700 (PDT) Received: from Shenton.org (23.ebbed1.client.atlantech.net [209.190.235.35]) by mx1.FreeBSD.org (Postfix) with SMTP id 2D37043F3F for ; Thu, 2 Oct 2003 10:41:53 -0700 (PDT) (envelope-from chris@Shenton.Org) Received: (qmail 80438 invoked by uid 1001); 2 Oct 2003 17:44:42 -0000 To: Christoph Sold References: <62587.148.243.211.1.1065086659.squirrel@mail.unixmexico.com> <3F7BF4B6.6030007@cheasy.de> From: Chris Shenton Date: Thu, 02 Oct 2003 13:44:42 -0400 In-Reply-To: <3F7BF4B6.6030007@cheasy.de> (Christoph Sold's message of "Thu, 02 Oct 2003 11:49:42 +0200") Message-ID: <86wubn1qlx.fsf@PECTOPAH.shenton.org> User-Agent: Gnus/5.1002 (Gnus v5.10.2) Emacs/21.3 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: nbari@unixmexico.com cc: freebsd-isp@freebsd.org Subject: Re: Xserve RAID on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2003 17:41:55 -0000 Christoph Sold writes: > Basically, this unit is a Mac OS X Server providing storage over the > fibre using the usual suspects (NFS, SMB/CIFS(Samba), AFS). Don't know > if anybody tried this using fiber channel transport. I do not believe this is correct. I believe the Xserve RAID is a 3U box of HW-RAIDed IDE disks with redundant power supply and RAID controllers, with FibreChannel connections to a server. Price is outstanding, 2.5TB for about $11K. The Xserve is a sweet 1U OSX/UNIX box for which you can buy reasonably-priced FC adapters to connect it to the RAID. The RAID box has 2 FC interfaces so you could connect 2 Xserve boxes, or dual-connect a single Xserve, or connect it to a FC switch. The Xserver(s) can then export the FC-connected disk via NFS, CIFS, etc. I'd love to see a front end server acting like a NetApp. FreeBSD-5.x's snapshot feature gives you one of the nicest features of the NetApp. I'd love to hear if anyone's doing this. From owner-freebsd-isp@FreeBSD.ORG Thu Oct 2 20:45:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 92F4A16A4B3 for ; Thu, 2 Oct 2003 20:45:52 -0700 (PDT) Received: from mx01.bos.ma.towardex.com (a65-124-16-8.svc.towardex.com [65.124.16.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id EE25843FDD for ; Thu, 2 Oct 2003 20:45:51 -0700 (PDT) (envelope-from haesu@mx01.bos.ma.towardex.com) Received: by mx01.bos.ma.towardex.com (TowardEX ESMTP 3.0p11_DAKN, from userid 1001) id A111F2F911; Thu, 2 Oct 2003 23:46:11 -0400 (EDT) Date: Thu, 2 Oct 2003 23:46:11 -0400 From: Haesu To: freebsd-isp@freebsd.org Message-ID: <20031003034611.GA59149@scylla.towardex.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i Subject: uRPF on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Oct 2003 03:45:52 -0000 Is there any reverse-path verification feature in FreeBSD kernel? reverse-path verification as in uRPF (unicast reverse path filtering) widely used for anti-ip-spoofing. If it is supported, then does FreeBSD's uPRF implementation also allow loose and strict check like on Cisco? Also... one last question that goes with this.. If uRPF feature is in FreeBSD, and if I route a prefix to ds0 (discard/null interface "pseudo-device disc"), and a packet originates with source of a route that is forwarded to ds0, would that invoke a verification drop? On Cisco, if an origin packet has a source ip that's routed to Null0 or does not exist in routing table (this is under loose check), then it would cause a verification drop.. Thanks! -hc -- Haesu C. TowardEX Technologies, Inc. Consulting, colocation, web hosting, network design and implementation http://www.towardex.com | haesu@towardex.com Cell: (978)394-2867 | Office: (978)263-3399 Ext. 170 Fax: (978)263-0033 | POC: HAESU-ARIN From owner-freebsd-isp@FreeBSD.ORG Fri Oct 3 00:00:14 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 34E4616A4B3 for ; Fri, 3 Oct 2003 00:00:14 -0700 (PDT) Received: from light.sdf.com (light.sdf.com [207.200.153.231]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0699C43F3F for ; Fri, 3 Oct 2003 00:00:13 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by light.sdf.com with local-esmtp (Exim 4.22) id 1A5JvX-0009IH-DK; Fri, 03 Oct 2003 00:00:35 -0700 Date: Fri, 3 Oct 2003 00:00:35 -0700 (PDT) From: Tom To: Haesu In-Reply-To: <20031003034611.GA59149@scylla.towardex.com> Message-ID: <20031002235823.M82361@light.sdf.com> References: <20031003034611.GA59149@scylla.towardex.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: uRPF on FreeBSD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Oct 2003 07:00:14 -0000 On Thu, 2 Oct 2003, Haesu wrote: > Is there any reverse-path verification feature in FreeBSD kernel? > > reverse-path verification as in uRPF (unicast reverse path filtering) widely > used for anti-ip-spoofing. > > If it is supported, then does FreeBSD's uPRF implementation also allow loose > and strict check like on Cisco? ... Usually RPF is just done with ACLs (ipfw) on FreeBSD. It can be a simple as have a simple input list on each interface that only permits sources that are known to be on that interface. Since most systems aren't running a routing protocol, so there aren't many routes and/or they don't change often, it is probably the simplest way of doing this. Tom