From owner-freebsd-isp Mon May 21 1:54:41 2001 Delivered-To: freebsd-isp@freebsd.org Received: from gw2.dnepr.net (CoreGW2-TBone.dnepr.net [195.24.156.97]) by hub.freebsd.org (Postfix) with ESMTP id 584DA37B422 for ; Mon, 21 May 2001 01:54:37 -0700 (PDT) (envelope-from land@dnepr.net) Received: from dnepr.net (neon.dnepr.net [217.198.131.98] (may be forged)) by gw2.dnepr.net (8.11.3/8.6.18/01) with ESMTP id f4L8sGC05529 for ; Mon, 21 May 2001 11:54:16 +0300 (EEST) Received: (from land@localhost) by dnepr.net (8.8.8/8.8.8) id LAA26842 for isp@freebsd.org; Mon, 21 May 2001 11:54:14 +0300 (EEST) X-POP3-RCPT: isp@freebsd.org Date: Mon, 21 May 2001 11:54:14 +0300 From: land@dnepr.net To: isp@freebsd.org Subject: IPSTEALTH Message-ID: <20010521115414.A25490@dnepr.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi ! Are there any implications using stealth forwarding ? -- LAND-RIPE To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 21 22:28:19 2001 Delivered-To: freebsd-isp@freebsd.org Received: from dioda.ibe.si (dioda.ibe.si [194.249.225.2]) by hub.freebsd.org (Postfix) with ESMTP id CEC5A37B424 for ; Mon, 21 May 2001 22:28:15 -0700 (PDT) (envelope-from damir.horvat@ibe.si) Received: from ibe.si ([172.16.11.170]) by dioda.ibe.si (8.8.7/8.8.6) with ESMTP id HAA01820 for ; Tue, 22 May 2001 07:28:59 +0200 Message-Id: <200105220528.HAA01820@dioda.ibe.si> Received: from IBE/SpoolDir by ibe.si (Mercury 1.44); 22 May 01 07:28:57 +1 Received: from SpoolDir by IBE (Mercury 1.44); 22 May 01 07:28:33 +1 From: "Damir Horvat" Organization: IBE To: freebsd-isp@FreeBSD.ORG Date: Tue, 22 May 2001 07:28:23 +0200 Subject: mutli box install X-mailer: Pegasus Mail for Win32 (v3.12a) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello! In a few days, I'll be installing freebsd on about 15 boxes (PIII 128MB ram 20GB HDD). The hardware will be pretty much the same. Is there a way to do it all at once? Suggestions? Any traps to be extra carefull about? Regards, Damir Computer analyst to programmer: "You start coding. I'll go find out what they want." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 21 23:58: 3 2001 Delivered-To: freebsd-isp@freebsd.org Received: from gekko.i-clue.de (server.ms-agentur.de [62.153.134.194]) by hub.freebsd.org (Postfix) with ESMTP id 9B3A137B42C for ; Mon, 21 May 2001 23:58:00 -0700 (PDT) (envelope-from so@server.i-clue.de) Received: from i-clue.de (automatix.i-clue.de [192.168.0.112]) by gekko.i-clue.de (8.9.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id JAA29018; Tue, 22 May 2001 09:05:34 +0200 Message-ID: <3B0A0E62.D06A81EA@i-clue.de> Date: Tue, 22 May 2001 08:59:46 +0200 From: Christoph Sold Reply-To: so@server.i-clue.de X-Mailer: Mozilla 4.75 [de] (WinNT; U) X-Accept-Language: de MIME-Version: 1.0 To: Damir Horvat Cc: freebsd-isp@FreeBSD.ORG Subject: Re: mutli box install References: <200105220528.HAA01820@dioda.ibe.si> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Damir Horvat schrieb: > > Hello! > > In a few days, I'll be installing freebsd on about 15 boxes (PIII > 128MB ram 20GB HDD). The hardware will be pretty much the > same. > > Is there a way to do it all at once? Suggestions? > Any traps to be extra carefull about? If the boxes are pretty similiar, just install one of them, and use dd to clone the disk. HTH -Christoph Sold To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 8: 3:18 2001 Delivered-To: freebsd-isp@freebsd.org Received: from PasionLatina.net (adsl-63-200-120-86.dsl.mtry01.pacbell.net [63.200.120.86]) by hub.freebsd.org (Postfix) with ESMTP id 5D6B537B42C for ; Tue, 22 May 2001 08:03:15 -0700 (PDT) (envelope-from eculp@EnContacto.Net) Received: (from root@localhost) by PasionLatina.net (8.11.3/8.11.3) id f4MF3kV16988; Tue, 22 May 2001 08:03:46 -0700 (PDT) (envelope-from eculp@EnContacto.Net) Received: from adsl-63-205-16-205.dsl.mtry01.pacbell.net ( [adsl-63-205-16-205.dsl.mtry01.pacbell.net]) as user eculp@EnContacto.Net by Mail.MexComUSA.net with HTTP; Tue, 22 May 2001 08:03:46 -0700 Message-ID: <990543826.3b0a7fd23931c@Mail.MexComUSA.net> Date: Tue, 22 May 2001 08:03:46 -0700 From: Edwin Culp To: Damir Horvat Cc: freebsd-isp@FreeBSD.ORG Subject: Re: mutli box install References: <200105220528.HAA01820@dioda.ibe.si> In-Reply-To: <200105220528.HAA01820@dioda.ibe.si> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 2.3.7-cvs X-Originating-IP: 63.205.16.205 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I'm not sure this is the best solution and it is not "all at once" and your disks have to be identical. I install on one disk, configure and add all the bells and whistles (adding ports takes more time than the installation) and then just connect the other disks to this machine and us dd to make an image of the original. Hopefully, someone will give us a less painful way:-) If the disks aren't the same you might use dump for the bells and whistles after a simple install. ed Quoting Damir Horvat : > Hello! > > In a few days, I'll be installing freebsd on about 15 boxes (PIII > 128MB ram 20GB HDD). The hardware will be pretty much the > same. > > Is there a way to do it all at once? Suggestions? > Any traps to be extra carefull about? > > Regards, > Damir > > > > > Computer analyst to programmer: "You start coding. I'll go find out what they > want." > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- EnContacto.Net - InternetSalon.Org - CafeMania.Net ------------------------------------------------- EnContacto.Net - CafeMania.Net - InternetSalon.Org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 10:54:17 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tethys.valhalla.net (tethys.valhalla.net [195.26.32.112]) by hub.freebsd.org (Postfix) with ESMTP id 7864937B424 for ; Tue, 22 May 2001 10:54:13 -0700 (PDT) (envelope-from mark@tethys.valhalla.net) Received: by tethys.valhalla.net (Postfix, from userid 500) id 0645E33009; Tue, 22 May 2001 18:54:07 +0100 (BST) Date: Tue, 22 May 2001 18:54:07 +0100 From: Mark Drayton To: freebsd-isp@freebsd.org Subject: Resolving DNS setup Message-ID: <20010522185407.A30604@tethys.valhalla.net> Mail-Followup-To: freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Recently I set up a caching only nameserver at work which all our office machines, servers and dialup customers use for resolution instead of our two authoritative nameservers. A few days ago our internet connection went down, meaning that the caching nameserver couldn't get to the root nameservers and therefore couldn't resolve anything it didn't have cached. As it couldn't get to the root servers it also couldn't answer any queries for zones that we are authoritative for (even though the authoritative namesevers are on the same network). The end result of this was that customers who dialled into us couldn't see our site or pick up their mail as the caching nameserver wouldn't resolve the hostnames of the web/mail servers. Obviously this is a Bad Thing and I'd like to sort it out, especially as I'm going to add another caching nameserver in the near future. What would be the best way of fixing this? My thoughts so far are: a) make the caching nameserver a slave for all the domains held on our authoritative nameservers b) define all our domains as stub zones on the caching nameserver Another problem with the caching nameserver is it's very slow to pick up *new* RRs on our authoritative servers (I know I need to wait for the TTL to expire on changed records). Will the caching nameserver wait for the TTL of the zone to expire before it asks the authoritative servers, *even when it has no cached answer to the query*? named.conf: options { directory "/etc/namedb"; allow-query { 127.0.0.0/8; 195.26.32.0/19; 212.158.59.0/24; }; statistics-interval 5; dump-file "s/named_dump.db"; }; logging { channel stats { file "/var/log/named.stats"; }; channel debugfile { file "/var/log/named.debug"; print-category yes; }; category statistics { stats; }; }; zone "." { type hint; file "named.root"; }; zone "0.0.127.IN-ADDR.ARPA" { type master; file "localhost.rev"; }; Cheers, -- Mark Drayton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 11:20:50 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id 961F837B422 for ; Tue, 22 May 2001 11:20:45 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f4MJZqC92013; Tue, 22 May 2001 14:35:52 -0500 (CDT) (envelope-from nick@rogness.net) Date: Tue, 22 May 2001 14:35:52 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Mark Drayton Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Resolving DNS setup In-Reply-To: <20010522185407.A30604@tethys.valhalla.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, 22 May 2001, Mark Drayton wrote: > Recently I set up a caching only nameserver at work which all our > office machines, servers and dialup customers use for resolution > instead of our two authoritative nameservers. A few days ago our > internet connection went down, meaning that the caching nameserver > couldn't get to the root nameservers and therefore couldn't resolve > anything it didn't have cached. As it couldn't get to the root servers > it also couldn't answer any queries for zones that we are > authoritative for (even though the authoritative namesevers are on the > same network). > > The end result of this was that customers who dialled into us couldn't > see our site or pick up their mail as the caching nameserver wouldn't > resolve the hostnames of the web/mail servers. > > Obviously this is a Bad Thing and I'd like to sort it out, especially > as I'm going to add another caching nameserver in the near future. > What would be the best way of fixing this? My thoughts so far are: One solution maybe to add your authoritative name servers as forwarders in your caching only server config. > > a) make the caching nameserver a slave for all the domains held on our > authoritative nameservers That would work too. > > b) define all our domains as stub zones on the caching nameserver > > Another problem with the caching nameserver is it's very slow to pick > up *new* RRs on our authoritative servers (I know I need to wait for > the TTL to expire on changed records). Will the caching nameserver > wait for the TTL of the zone to expire before it asks the > authoritative servers, *even when it has no cached answer to the > query*? > No, caching nameserver should get the info directly if it is not cached locally, plain and simple. The TTL for that record on the caching nameserver will take affect after it has been cached locally on the caching nameserver. Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 11:22:26 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cx175057-a.ocnsd1.sdca.home.com (cx175057-a.ocnsd1.sdca.home.com [24.13.23.40]) by hub.freebsd.org (Postfix) with ESMTP id 4CCBA37B422 for ; Tue, 22 May 2001 11:22:22 -0700 (PDT) (envelope-from bri@sonicboom.org) Received: from brian (cx175057-b.ocnsd1.sdca.home.com [24.13.23.147]) by cx175057-a.ocnsd1.sdca.home.com (8.11.1/8.11.1) with SMTP id f4MIMFc35753; Tue, 22 May 2001 11:22:16 -0700 (PDT) (envelope-from bri@sonicboom.org) Message-ID: <020b01c0e2eb$b7294120$3324200a@sonicboom.org> From: "Brian" To: "Nick Rogness" , "Mark Drayton" Cc: References: Subject: Re: Resolving DNS setup Date: Tue, 22 May 2001 11:19:12 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is one reason why people separate authorative servers from resolvers. Bri ----- Original Message ----- From: "Nick Rogness" To: "Mark Drayton" Cc: Sent: Tuesday, May 22, 2001 12:35 PM Subject: Re: Resolving DNS setup > On Tue, 22 May 2001, Mark Drayton wrote: > > > Recently I set up a caching only nameserver at work which all our > > office machines, servers and dialup customers use for resolution > > instead of our two authoritative nameservers. A few days ago our > > internet connection went down, meaning that the caching nameserver > > couldn't get to the root nameservers and therefore couldn't resolve > > anything it didn't have cached. As it couldn't get to the root servers > > it also couldn't answer any queries for zones that we are > > authoritative for (even though the authoritative namesevers are on the > > same network). > > > > The end result of this was that customers who dialled into us couldn't > > see our site or pick up their mail as the caching nameserver wouldn't > > resolve the hostnames of the web/mail servers. > > > > Obviously this is a Bad Thing and I'd like to sort it out, especially > > as I'm going to add another caching nameserver in the near future. > > What would be the best way of fixing this? My thoughts so far are: > > > One solution maybe to add your authoritative name servers as > forwarders in your caching only server config. > > > > > > > a) make the caching nameserver a slave for all the domains held on our > > authoritative nameservers > > That would work too. > > > > > > b) define all our domains as stub zones on the caching nameserver > > > > Another problem with the caching nameserver is it's very slow to pick > > up *new* RRs on our authoritative servers (I know I need to wait for > > the TTL to expire on changed records). Will the caching nameserver > > wait for the TTL of the zone to expire before it asks the > > authoritative servers, *even when it has no cached answer to the > > query*? > > > > No, caching nameserver should get the info directly if it is not > cached locally, plain and simple. The TTL for that record on > the caching nameserver will take affect after it has been cached > locally on the caching nameserver. > > > Nick Rogness > - Keep on Routing in a Free World... > "FreeBSD: The Power to Serve!" > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 14:51:44 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 2183F37B424 for ; Tue, 22 May 2001 14:51:38 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from d7k ([66.28.19.99]) by aspenworks.com (8.9.3/8.9.3) with SMTP id PAA02247 for ; Tue, 22 May 2001 15:51:35 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <002301c0e309$59335100$63131c42@d7k> From: "Alex Huppenthal" To: Subject: CGI for users Date: Tue, 22 May 2001 15:51:23 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Not the perfect forum. I'd like to give ~users a cgi-bin dir they can upload to. Changing directives in http.conf to allow .htaccess to override the dir doesn't help. Any simple suggestion is much appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 15:10:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.cb21.co.jp (b3.lan.neweb.ne.jp [210.157.128.252]) by hub.freebsd.org (Postfix) with SMTP id 3DEE137B42C for ; Tue, 22 May 2001 15:10:37 -0700 (PDT) (envelope-from admin@cb21.co.jp) Received: (qmail 45570 invoked from network); 23 May 2001 07:10:35 +0900 Received: from localhost.cb21.co.jp (HELO localhost) (127.0.0.1) by localhost.cb21.co.jp with SMTP; 23 May 2001 07:10:35 +0900 To: freebsd-isp@freebsd.org Subject: FreeBSD as Backup Router for a CISCO router From: Sys Admin X-Mailer: Mew version 1.94.2 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: <20010523071034V.admin@cb21.co.jp> Date: Wed, 23 May 2001 07:10:34 +0900 X-Dispatcher: imput version 20000228(IM140) Lines: 33 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, We recently had some problems with the CISCO router serving 2 class C networks. I am planning to setup a dedicated FreeBSD router as a backup to cisco one and have some questions on how to do that. Any help, pointers to information will be greatly appreciated. I have gone through archives and searched the web. But couldn't find what I needed. 1. Is it possible to have FreeBSD router work in parallel with cisco router ? What I would like to have the FreeBSD router up and running in case cisco router fails without manual intervention as I am staying far away from the network. (using routed) 2. What is the better solution for a backup router ? Natd or routed ? 3. Can a dedicated FreeBSD router replace a cisco router for medium traffic site ? (as a low priced alternative) Thanks in advance for any help, pointers. Tad. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 20:45: 4 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tomts14-srv.bellnexxia.net (tomts14.bellnexxia.net [209.226.175.35]) by hub.freebsd.org (Postfix) with ESMTP id 92E1237B424 for ; Tue, 22 May 2001 20:44:59 -0700 (PDT) (envelope-from paul@colba.net) Received: from colba.net ([64.229.229.243]) by tomts14-srv.bellnexxia.net (InterMail vM.4.01.03.16 201-229-121-116-20010115) with ESMTP id <20010523034458.WGLW28559.tomts14-srv.bellnexxia.net@colba.net> for ; Tue, 22 May 2001 23:44:58 -0400 Message-ID: <3B0B32C9.24F31AA0@colba.net> Date: Tue, 22 May 2001 23:47:21 -0400 From: Paul Khavkine X-Mailer: Mozilla 4.76 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: 4.3-STABLE and PPPoE Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi folks, i have a weird problem with PPPoE client under 4.2 and 4.3-STABLE Everything seems file except with HTTP. Every time i try to use HTTP i only get about 1 page of data ( a few K's) then the connection hangs and i dont seem to get any data transfer. This only happends with HTTP, anything else works fine. I'm connecting to Bell Canada Symatico, here's my setup: default: set log Phase Chat LCP IPCP CCP tun command nat enable no set redial 15 28800 set reconnect 15 28800 pppoe: set device PPPoE:vr0: set mru 1491 set mtu 1492 set speed sync enable lqr set lqrperiod 5 set cd 5 set dial set login set timeout 0 set authname xxxxxxx@sympatico.ca set authkey yyyyyyy set ifaddr 192.168.1.15/0 10.0.0.2/0 255.255.255.0 0.0.0.0 add default HISADDR enable dns To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 22:14:18 2001 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id E761737B422 for ; Tue, 22 May 2001 22:14:13 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 152Qoh-0001lD-00; Tue, 22 May 2001 22:04:15 -0700 Date: Tue, 22 May 2001 22:04:13 -0700 (PDT) From: Tom Samplonius To: Sys Admin Cc: freebsd-isp@freebsd.org Subject: Re: FreeBSD as Backup Router for a CISCO router In-Reply-To: <20010523071034V.admin@cb21.co.jp> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 23 May 2001, Sys Admin wrote: > We recently had some problems with the CISCO router serving 2 class C > networks. > > I am planning to setup a dedicated FreeBSD router as a backup to > cisco one and have some questions on how to do that. Any help, > pointers to information will be greatly appreciated. I have gone > through archives and searched the web. But couldn't find what I > needed. It is probably more important to know what interfaces the router has, and what kind of router it is. > 1. Is it possible to have FreeBSD router work in parallel with cisco > router ? What I would like to have the FreeBSD router up and running > in case cisco router fails without manual intervention as I am staying > far away from the network. (using routed) Not likely. Automatic takeover of a gateway IP and MAC by a standby router is possible. But Cisco uses propietary HSRP for that, while FreeBSD has support for VRRP. > 2. What is the better solution for a backup router ? Natd or routed ? Apples and oragees. routed doesn't do routing, it routing protocol daemon for RIPv1 and RIPv2. natd does network address translation. You don't need routed if you don't need RIP. You don't natd if you don't need NAT. > 3. Can a dedicated FreeBSD router replace a cisco router for medium traffic > site ? (as a low priced alternative) Depends on the router it is replacing. Depends on the traffic levels. What kind of router is it? And what is the maximum Mbps and pps that is must be able to handle? Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 22:28:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from dougal.workpc.tds.net (dougal.workpc.tds.net [204.246.4.101]) by hub.freebsd.org (Postfix) with ESMTP id 9EBDA37B424 for ; Tue, 22 May 2001 22:28:08 -0700 (PDT) (envelope-from usrkkw@dougal.workpc.tds.net) Received: (from usrkkw@localhost) by dougal.workpc.tds.net (8.11.3/8.11.1) id f4N5P3863797; Wed, 23 May 2001 00:25:03 -0500 (CDT) (envelope-from usrkkw) Date: Wed, 23 May 2001 00:25:03 -0500 From: Ken Wills To: Alex Huppenthal Cc: freebsd-isp@FreeBSD.ORG Subject: Re: CGI for users Message-ID: <20010523002503.B63568@dougal.workpc.tds.net> References: <002301c0e309$59335100$63131c42@d7k> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <002301c0e309$59335100$63131c42@d7k>; from alex@aspenworks.com on Tue, May 22, 2001 at 03:51:23PM -0600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Alex Huppenthal [010522 16:51]: > Not the perfect forum. I'd like to give ~users a cgi-bin dir they can upload > to. Changing directives in http.conf to allow .htaccess to override the dir > doesn't help. > > Any simple suggestion is much appreciated. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message Give them a public-cgi directory, and configure it like the standard public-html, but add ExecCGI..... Ken -- Ken Wills Webmaster TDSNET 608-664-6221 kenwills@tds.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 22 23:35:21 2001 Delivered-To: freebsd-isp@freebsd.org Received: from grif0.newmail.ru (grif0.newmail.ru [212.48.140.145]) by hub.freebsd.org (Postfix) with SMTP id E4F3537B424 for ; Tue, 22 May 2001 23:35:17 -0700 (PDT) (envelope-from Andrew.Karjagin@newmail.ru) Received: (qmail 24837 invoked by alias); 23 May 2001 06:35:16 -0000 Message-ID: <20010523063516.24836.qmail@grif0.newmail.ru> From: "Andrew Karjagin" To: freebsd-isp@freebsd.org Reply-To: Subject: leased line with pppd Date: Wed, 23 May 2001 10:35:16 +0400 MIME-Version: 1.0 X-UID: 8-21688 X-Originating-IP: [212.42.53.200] Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello! I want to connect two Unix servers (FreeBSD 4.2 and Linux) by leased telephone line with leased modems M-160 without HARD control (www.zelax.ru). Modems connected to serial ports of servers and they work well and tested. Computers connect to modems well too. But when I start pppd - it doesn"t make a connection. I am using following options for pppd: FreeBSD server: debug noauth persist nodetach lock nocrtscts nobsdcomp nodeflate local passive In file options.cuaa1: x.x.x.x:y.y.y.y netmask 255.255.255.252 Linux client: noauth persist nodetach lock nocrtscts nobsdcomp nodeflate local In pppd.log file I see that servers send and receive LCP packets with magic number, but then they show a message "LCP config-requiest timeout" and stop there trying. May be anybody do it? What I do wrong? Where can I get an info about it? Thank you for your help! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 0:29:53 2001 Delivered-To: freebsd-isp@freebsd.org Received: from icon.bg (icon.bg [62.176.80.58]) by hub.freebsd.org (Postfix) with SMTP id F2C7337B42C for ; Wed, 23 May 2001 00:29:42 -0700 (PDT) (envelope-from v0rbiz@icon.bg) Received: (qmail 29444 invoked by uid 1144); 23 May 2001 07:35:26 -0000 Date: Wed, 23 May 2001 10:35:26 +0300 From: Victor Ivanov To: Andrew Karjagin Cc: freebsd-isp@freebsd.org Subject: Re: leased line with pppd Message-ID: <20010523103526.A29336@icon.icon.bg> References: <20010523063516.24836.qmail@grif0.newmail.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="XsQoSWH+UP9D9v3l" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010523063516.24836.qmail@grif0.newmail.ru>; from Andrew.Karjagin@newmail.ru on Wed, May 23, 2001 at 10:35:16AM +0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --XsQoSWH+UP9D9v3l Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 23, 2001 at 10:35:16AM +0400, Andrew Karjagin wrote: > Hello! > I want to connect two Unix servers (FreeBSD 4.2 and Linux)=20 > by leased telephone line with leased modems M-160 without=20 > HARD control (www.zelax.ru). Modems connected to serial=20 > ports of servers and they work well and tested. Computers=20 > connect to modems well too. But when I start pppd - it=20 > doesn"t make a connection. I am using following options for=20 > pppd: >=20 > FreeBSD server: debug noauth persist nodetach lock=20 > nocrtscts nobsdcomp nodeflate local passive > In file options.cuaa1: > x.x.x.x:y.y.y.y > netmask 255.255.255.252 "local"? Isn't that supposed to be for null-modem cables? I think you should use "modem" here. According to pppd(8), local ignores CD and does not change DTR which is very bad unless you set your modem to always enable DTR (which is bad choice also). Ignoring CD is not good. You need then to synchronize the pppd's with the chat script or something. You'd better enable CD and wait for 'CONNECT'. Also specifying the speed would be nice. The default could be 9600, and probably you don't want it. If you can configure the modems to keep the same terminal speed if you want. Then set it to 57600 or something (the maximum value) and everything would be fine. > Linux client: noauth persist nodetach lock nocrtscts=20 > nobsdcomp nodeflate local >=20 > In pppd.log file I see that servers send and receive LCP=20 > packets with magic number, but then they show a=20 > message "LCP config-requiest timeout" and stop there trying. If the modems connect, probably they don't connect to the same speed if it is locked in the modem setup. Mose modems remember it when you save settings to nvram... > May be anybody do it? What I do wrong? Where can I get an=20 > info about it? Umm, probably in the handbook? --=20 Players win and winners play Have a lucky day --XsQoSWH+UP9D9v3l Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.1i iQCVAwUBOwtoOfD9M5lef5W3AQEeNAP7BSGs//bSosAsV+b3gOuSFNnulc6uDH46 nV3/0AKGp9uKg/0ZE5aG7OvZk1udUpyx5pKUYtEFo5fU+hKqju6viG+W3bbjY/EW qsi64Ar9/EjKjEfNds78RZekmY1mtEoiLDiCHC5Gw/SGmT81z/w5gXNO/vMOyXEo CssOvxfeO1g= =UiDt -----END PGP SIGNATURE----- --XsQoSWH+UP9D9v3l-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 1: 5:56 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tethys.valhalla.net (tethys.valhalla.net [195.26.32.112]) by hub.freebsd.org (Postfix) with ESMTP id 0D87D37B42C for ; Wed, 23 May 2001 01:05:54 -0700 (PDT) (envelope-from mark@tethys.valhalla.net) Received: by tethys.valhalla.net (Postfix, from userid 500) id 0E2F333009; Wed, 23 May 2001 09:05:53 +0100 (BST) Date: Wed, 23 May 2001 09:05:52 +0100 From: Mark Drayton To: Nick Rogness Cc: freebsd-isp@freebsd.org Subject: Re: Resolving DNS setup Message-ID: <20010523090552.A6992@tethys.valhalla.net> Mail-Followup-To: Nick Rogness , freebsd-isp@freebsd.org References: <20010522185407.A30604@tethys.valhalla.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from nick@rogness.net on Tue, May 22, 2001 at 02:35:52PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nick Rogness (nick@rogness.net) wrote: > On Tue, 22 May 2001, Mark Drayton wrote: > > > Recently I set up a caching only nameserver at work which all our > > office machines, servers and dialup customers use for resolution > > instead of our two authoritative nameservers. A few days ago our > > internet connection went down, meaning that the caching nameserver > > couldn't get to the root nameservers and therefore couldn't resolve > > anything it didn't have cached. As it couldn't get to the root > > servers it also couldn't answer any queries for zones that we are > > authoritative for (even though the authoritative namesevers are on > > the same network). > > > > The end result of this was that customers who dialled into us > > couldn't see our site or pick up their mail as the caching > > nameserver wouldn't resolve the hostnames of the web/mail servers. > > One solution maybe to add your authoritative name servers as > forwarders in your caching only server config. If I do that won't the caching servers pass *all* requests to the authoritative servers (unless it has a valid answer cached)? One og the reasons I'm setting up the caching servers is to take the load off of the authoritative servers. Ultimately I don't want the authoritative servers to answer recursive queries. I was looking through the BIND docs and it appears I can define 'forward zones' with their own list of forwarders that override the global forwarders {} statement. I might try configuring the caching namesever with forward zones for all our zones to pass the requests to our authoritative servers. Any problems with this setup? > No, caching nameserver should get the info directly if it is not > cached locally, plain and simple. The TTL for that record on the > caching nameserver will take affect after it has been cached locally > on the caching nameserver. Hm, it seems to be working now... Cheers, -- Mark Drayton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 1:32:29 2001 Delivered-To: freebsd-isp@freebsd.org Received: from grif0.newmail.ru (grif0.newmail.ru [212.48.140.145]) by hub.freebsd.org (Postfix) with SMTP id 0E74137B42C for ; Wed, 23 May 2001 01:32:25 -0700 (PDT) (envelope-from Andrew.Karjagin@newmail.ru) Received: (qmail 14421 invoked by alias); 23 May 2001 08:32:20 -0000 Message-ID: <20010523083220.14420.qmail@grif0.newmail.ru> From: "Andrew Karjagin" To: v0rbiz@icon.bg Cc: freebsd-isp@freebsd.org Reply-To: Subject: Re: Re: leased line with pppd Date: Wed, 23 May 2001 12:32:20 +0400 MIME-Version: 1.0 X-UID: 8-21688 X-Originating-IP: [212.42.53.200] Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Yes, M-160 is a null modem and so I am using "local" parameter. M-160 doesn"t understand any AT commands and has no hardware control (nocrtscts). Speed I set to 115200. What does it mean from pppd.log about LCP ("LCP config- requiest timeout")? > On Wed, May 23, 2001 at 10:35:16AM +0400, Andrew Karjagin wrote: > > Hello! > > I want to connect two Unix servers (FreeBSD 4.2 and Linux) > > by leased telephone line with leased modems M-160 without > > HARD control (www.zelax.ru). Modems connected to serial > > ports of servers and they work well and tested. Computers > > connect to modems well too. But when I start pppd - it > > doesn"t make a connection. I am using following options for > > pppd: > > > > FreeBSD server: debug noauth persist nodetach lock > > nocrtscts nobsdcomp nodeflate local passive > > In file options.cuaa1: > > x.x.x.x:y.y.y.y > > netmask 255.255.255.252 > "local"? Isn"t that supposed to be for null-modem cables? > I think you should use "modem" here. According to pppd (8), > local ignores CD and does not change DTR which is very bad > unless you set your modem to always enable DTR (which is > bad choice also). Ignoring CD is not good. You need then > to synchronize the pppd"s with the chat script or something. > You"d better enable CD and wait for "CONNECT". > > Also specifying the speed would be nice. The default could > be 9600, and probably you don"t want it. If you can > configure the modems to keep the same terminal speed if you > want. Then set it to 57600 or something (the maximum value) > and everything would be fine. > > > Linux client: noauth persist nodetach lock nocrtscts > > nobsdcomp nodeflate local > > > > In pppd.log file I see that servers send and receive LCP > > packets with magic number, but then they show a > > message "LCP config-requiest timeout" and stop there trying. > If the modems connect, probably they don"t connect to the > same speed if it is locked in the modem setup. Mose modems > remember it when you save settings to nvram... > > > May be anybody do it? What I do wrong? Where can I get an > > info about it? > Umm, probably in the handbook? > > -- > Players win and winners play > Have a lucky day > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 1:53:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from icon.bg (icon.bg [62.176.80.58]) by hub.freebsd.org (Postfix) with SMTP id 41CBC37B424 for ; Wed, 23 May 2001 01:53:02 -0700 (PDT) (envelope-from v0rbiz@icon.bg) Received: (qmail 30117 invoked by uid 1144); 23 May 2001 08:58:53 -0000 Date: Wed, 23 May 2001 11:58:53 +0300 From: Victor Ivanov To: Andrew Karjagin Cc: freebsd-isp@freebsd.org Subject: Re: Re: leased line with pppd Message-ID: <20010523115853.A29989@icon.icon.bg> References: <20010523083220.14420.qmail@grif0.newmail.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="X1bOJ3K7DJ5YkBrT" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010523083220.14420.qmail@grif0.newmail.ru>; from Andrew.Karjagin@newmail.ru on Wed, May 23, 2001 at 12:32:20PM +0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --X1bOJ3K7DJ5YkBrT Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 23, 2001 at 12:32:20PM +0400, Andrew Karjagin wrote: > Yes, M-160 is a null modem and so I am using "local"=20 > parameter. M-160 doesn"t understand any AT commands and has=20 > no hardware control (nocrtscts). Speed I set to 115200. >=20 > What does it mean from pppd.log about LCP ("LCP config- > requiest timeout")? I think LCP is in the beginning of ppp handshake. This means that pppd has not received any LCP packets. There could be something, but pppd doesn't understand it (like the garbage when when the terminal baud rates differ). Can you start pppd on the one side and see what comes on the other with cu or something like that? --=20 Players win and winners play Have a lucky day --X1bOJ3K7DJ5YkBrT Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.1i iQCVAwUBOwt7v/D9M5lef5W3AQFUTQP/TipCvVW/0ChzPw3mQHeiVQVK/vxZKMRa j7ncLw3PqGMQURg1Blb7tuOOzAo4lLlL77VpbtPiXxS3MRDJ+9dSuE7heswFy8fo iaHHna2EElyeZWqgPKiXhUnvtSypOEOpnUXWiq/lSiX9XkMeebq1RM4SY2JpJr50 8A4wFojPDtY= =f5Rp -----END PGP SIGNATURE----- --X1bOJ3K7DJ5YkBrT-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:10:45 2001 Delivered-To: freebsd-isp@freebsd.org Received: from db.nexgen.com (db.nexgen.com [64.81.208.78]) by hub.freebsd.org (Postfix) with SMTP id 5456237B422 for ; Wed, 23 May 2001 08:10:43 -0700 (PDT) (envelope-from ml@db.nexgen.com) Received: (qmail 43316 invoked from network); 23 May 2001 15:13:38 -0000 Received: from localhost (HELO book) (root@127.0.0.1) by localhost with SMTP; 23 May 2001 15:13:38 -0000 Message-ID: <001a01c0e39a$8dfd4b70$01000001@book> From: "alexus" To: Subject: restriction of user Date: Wed, 23 May 2001 11:10:50 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org how can i disallow certain users shell access but do not restrict ftp/mail acccess? _/_/ _/ _/_/_/ _/ _/ _/ _/ _/_/_/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/_/_/ _/_/ _/ _/ _/_/_/ _/_/_/_/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/ _/_/_/_/ _/_/_/ _/ _/ _/_/_/ _/_/_/ (W)orld(W)ide(W)eb: http://box.nexgen.com/ (I)nternet(R)elay(C)hat: EFnet #aLeXuS To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:13:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from marius.org (cdm-219-120-bcs.cox-internet.com [208.180.219.120]) by hub.freebsd.org (Postfix) with ESMTP id C39FC37B42C for ; Wed, 23 May 2001 08:13:11 -0700 (PDT) (envelope-from marius@marius.org) Received: (from marius@localhost) by marius.org (8.11.0/8.11.0) id f4NFD6t19062 for freebsd-isp@FreeBSD.ORG; Wed, 23 May 2001 10:13:06 -0500 (CDT) Date: Wed, 23 May 2001 10:13:06 -0500 From: Marius Strom To: freebsd-isp@FreeBSD.ORG Subject: Re: restriction of user Message-ID: <20010523101305.G15890@marius.org> Mail-Followup-To: freebsd-isp@FreeBSD.ORG References: <001a01c0e39a$8dfd4b70$01000001@book> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <001a01c0e39a$8dfd4b70$01000001@book>; from ml@db.nexgen.com on Wed, May 23, 2001 at 11:10:50AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Use shells like /bin/true. Incidentally, does your signature /really/ need to be that tall? On Wed, May 23, 2001 at 11:10:50AM -0400, alexus wrote: > how can i disallow certain users shell access but do not restrict ftp/mail > acccess? > > [gratuitous signature snipping] > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- Marius Strom Professional Geek/Unix System Administrator http://www.marius.org/marius.pgp 0xF5D89089 *updated 2001-02-26* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:13:56 2001 Delivered-To: freebsd-isp@freebsd.org Received: from kermit.netivity.nl (wc-68.r-195-85-144.essentkabel.com [195.85.144.68]) by hub.freebsd.org (Postfix) with ESMTP id 6439237B422 for ; Wed, 23 May 2001 08:13:52 -0700 (PDT) (envelope-from enriko@netivity.nl) Received: by KERMIT with Internet Mail Service (5.5.2650.21) id ; Wed, 23 May 2001 17:13:40 +0200 Message-ID: <510EAC2065C0D311929200A024725262262532@NETIVITY-FS> From: Enriko Groen To: 'alexus' , freebsd-isp@freebsd.org Subject: RE: restriction of user Date: Wed, 23 May 2001 17:15:15 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: alexus [mailto:ml@db.nexgen.com] > Sent: Wednesday, May 23, 2001 17:11 > To: freebsd-isp@freebsd.org > Subject: restriction of user > > > how can i disallow certain users shell access but do not > restrict ftp/mail > acccess? Set their logon shell to /nonexistent (or /sbin/nologin) instead of /bin/sh in your /etc/passwd file. -- -------------------------------------------------------- netivity bv www.netivity.nl enriko.groen@netivity.nl 038 - 850 1000 van nagellstraat 4 8011 eb zwolle -------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:14: 3 2001 Delivered-To: freebsd-isp@freebsd.org Received: from rallos.eatonform.com (rallos.eatonform.com [206.190.178.235]) by hub.freebsd.org (Postfix) with ESMTP id 7CBEE37B43C for ; Wed, 23 May 2001 08:13:54 -0700 (PDT) (envelope-from rch@acidpit.org) Received: (from rch@localhost) by rallos.eatonform.com (8.11.2/8.11.2) id f4NB4Px57092 for freebsd-isp@FreeBSD.ORG; Wed, 23 May 2001 11:04:25 GMT Date: Wed, 23 May 2001 11:04:25 +0000 From: Robert Hough To: freebsd-isp@FreeBSD.ORG Subject: Re: restriction of user Message-ID: <20010523110425.A57064@acidpit.org> Mail-Followup-To: freebsd-isp@FreeBSD.ORG References: <001a01c0e39a$8dfd4b70$01000001@book> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <001a01c0e39a$8dfd4b70$01000001@book>; from ml@db.nexgen.com on Wed, May 23, 2001 at 11:10:50 -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, May 23, 2001, alexus wrote: > how can i disallow certain users shell access but do not restrict ftp/mail > acccess? Change their shell to /sbin/nologin, and you should be set. Is there a need for the 10 line sig? I mean, it looks all snazzy and what not, but it's a bit excessive, don't ya think? -rch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:16:29 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hex.databits.net (hex.databits.net [207.29.192.16]) by hub.freebsd.org (Postfix) with SMTP id 28A8C37B424 for ; Wed, 23 May 2001 08:16:26 -0700 (PDT) (envelope-from petef@hex.databits.net) Received: (qmail 91676 invoked by uid 1001); 23 May 2001 15:16:24 -0000 Date: Wed, 23 May 2001 11:16:24 -0400 From: Pete Fritchman To: alexus Cc: freebsd-isp@freebsd.org Subject: Re: restriction of user Message-ID: <20010523111624.A69978@databits.net> References: <001a01c0e39a$8dfd4b70$01000001@book> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <001a01c0e39a$8dfd4b70$01000001@book>; from ml@db.nexgen.com on Wed, May 23, 2001 at 11:10:50AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org ++ 23/05/01 11:10 -0400 - alexus: | how can i disallow certain users shell access but do not restrict ftp/mail | acccess? Give them a shell listed in /etc/shells but is not a login shell. For example: ln -s /sbin/nologin /sbin/ftponly echo "/sbin/ftponly" >> /etc/shells Now, if you have a user that should be able to authenticate with other services (mail, ftp, etc) but should not be able to login via a shell, set their shell to /sbin/ftponly. (/sbin/nologin works too, but if you want an ftp-only account the shell must be in /etc/shells, and having /sbin/nologin in /etc/shells can be a problem.. say if you set suspended users to /sbin/nologin they could still ftp in). Good luck, -pete -- Pete Fritchman Databits Network Services, Inc. finger petef@databits.net for PGP key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:16:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from post.mail.areti.net (meteora.noc.areti.net [193.118.189.10]) by hub.freebsd.org (Postfix) with ESMTP id E14FA37B424 for ; Wed, 23 May 2001 08:16:36 -0700 (PDT) (envelope-from ndear@areti.net) Received: from acropolis (acropolis.noc.areti.net [193.118.189.102]) by post.mail.areti.net (8.10.2/8.10.2/Areti-3.0.0) with ESMTP id f4NFGaF11632 for ; Wed, 23 May 2001 16:16:36 +0100 From: "Nicholas J. Dear" Organization: Areti Internet Ltd. To: freebsd-isp@FreeBSD.ORG Date: Wed, 23 May 2001 16:15:29 +0100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: restriction of user Reply-To: ndear@areti.net Message-ID: <3B0BE221.16937.4F7877F@localhost> In-reply-to: <510EAC2065C0D311929200A024725262262532@NETIVITY-FS> X-mailer: Pegasus Mail for Win32 (v3.12c) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I think a lot of FTPd's will not let you login unless you have a valid shell however. N. On 23 May 2001, at 17:15, Enriko Groen wrote: > > -----Original Message----- > > From: alexus [mailto:ml@db.nexgen.com] > > Sent: Wednesday, May 23, 2001 17:11 > > To: freebsd-isp@freebsd.org > > Subject: restriction of user > > > > > > how can i disallow certain users shell access but do not > > restrict ftp/mail > > acccess? > > Set their logon shell to /nonexistent (or /sbin/nologin) instead of /bin/sh > in your /etc/passwd file. > > -- > -------------------------------------------------------- > netivity bv www.netivity.nl enriko.groen@netivity.nl > 038 - 850 1000 van nagellstraat 4 8011 eb zwolle > -------------------------------------------------------- > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- Nicholas J. Dear Mail: ndear@areti.net Tel: +44 (0)20-8402-4041 Areti Internet Ltd., http://www.areti.co.uk/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:18:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from marius.org (cdm-219-120-bcs.cox-internet.com [208.180.219.120]) by hub.freebsd.org (Postfix) with ESMTP id A58B937B422 for ; Wed, 23 May 2001 08:18:11 -0700 (PDT) (envelope-from marius@marius.org) Received: (from marius@localhost) by marius.org (8.11.0/8.11.0) id f4NFIA419109 for freebsd-isp@FreeBSD.ORG; Wed, 23 May 2001 10:18:10 -0500 (CDT) Date: Wed, 23 May 2001 10:18:10 -0500 From: Marius Strom To: freebsd-isp@FreeBSD.ORG Subject: Re: restriction of user Message-ID: <20010523101810.H15890@marius.org> Mail-Followup-To: freebsd-isp@FreeBSD.ORG References: <510EAC2065C0D311929200A024725262262532@NETIVITY-FS> <3B0BE221.16937.4F7877F@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3B0BE221.16937.4F7877F@localhost>; from ndear@areti.net on Wed, May 23, 2001 at 04:15:29PM +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org So: echo /bin/true >> /etc/shells On Wed, May 23, 2001 at 04:15:29PM +0100, Nicholas J. Dear wrote: > I think a lot of FTPd's will not let you login unless you have a valid shell > however. > > N. > > On 23 May 2001, at 17:15, Enriko Groen wrote: > > > > -----Original Message----- > > > From: alexus [mailto:ml@db.nexgen.com] > > > Sent: Wednesday, May 23, 2001 17:11 > > > To: freebsd-isp@freebsd.org > > > Subject: restriction of user > > > > > > > > > how can i disallow certain users shell access but do not > > > restrict ftp/mail > > > acccess? > > > > Set their logon shell to /nonexistent (or /sbin/nologin) instead of /bin/sh > > in your /etc/passwd file. > > > > -- > > -------------------------------------------------------- > > netivity bv www.netivity.nl enriko.groen@netivity.nl > > 038 - 850 1000 van nagellstraat 4 8011 eb zwolle > > -------------------------------------------------------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > -- > Nicholas J. Dear > Mail: ndear@areti.net Tel: +44 (0)20-8402-4041 > Areti Internet Ltd., http://www.areti.co.uk/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- Marius Strom Professional Geek/Unix System Administrator URL: http://www.marius.org/ http://www.marius.org/marius.pgp 0xF5D89089 *updated 2001-02-26* It is a natural law. Physics tells us that for every action, there must be an equal and opposite reaction. They hate us, we hate them, they hate us back and so, here we are, victims of mathematics. -- Londo, "A Voice in the Wilderness I" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:18:23 2001 Delivered-To: freebsd-isp@freebsd.org Received: from rallos.eatonform.com (rallos.eatonform.com [206.190.178.235]) by hub.freebsd.org (Postfix) with ESMTP id D847937B43C for ; Wed, 23 May 2001 08:18:19 -0700 (PDT) (envelope-from rch@acidpit.org) Received: (from rch@localhost) by rallos.eatonform.com (8.11.2/8.11.2) id f4NB8uN57182 for freebsd-isp@FreeBSD.ORG; Wed, 23 May 2001 11:08:56 GMT Date: Wed, 23 May 2001 11:08:56 +0000 From: Robert Hough To: freebsd-isp@FreeBSD.ORG Subject: Re: restriction of user Message-ID: <20010523110855.A57167@acidpit.org> Mail-Followup-To: freebsd-isp@FreeBSD.ORG References: <510EAC2065C0D311929200A024725262262532@NETIVITY-FS> <3B0BE221.16937.4F7877F@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3B0BE221.16937.4F7877F@localhost>; from ndear@areti.net on Wed, May 23, 2001 at 16:15:29 +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, May 23, 2001, Nicholas J. Dear wrote: > I think a lot of FTPd's will not let you login unless you have a valid shell > however. Just add it to /etc/shells and that problem should be resolved. -rch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:18:28 2001 Delivered-To: freebsd-isp@freebsd.org Received: from relay.tecc.co.uk (luggage.tecc.co.uk [193.128.6.129]) by hub.freebsd.org (Postfix) with SMTP id BD2E937B440 for ; Wed, 23 May 2001 08:18:17 -0700 (PDT) (envelope-from andy@tecc.co.uk) Received: from fw-smtp.tecc.co.uk [195.217.37.39] by relay.tecc.co.uk with esmtp (Exim 1.70 #1) id 152aOu-0007ji-00; Wed, 23 May 2001 16:18:16 +0100 Received: from [195.217.37.155] (helo=southampton) by fw-smtp.tecc.co.uk with smtp (Exim 2.12 #3) id 152aOt-0003kK-00; Wed, 23 May 2001 16:18:15 +0100 From: "Andy [Tecc Nops]" To: , Subject: RE: restriction of user Date: Wed, 23 May 2001 16:18:16 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal In-Reply-To: <3B0BE221.16937.4F7877F@localhost> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Just add /bin/noftp or whatever to /etc/shells and ftp will let you in. Ak > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Nicholas J. Dear > Sent: 23 May 2001 16:15 > To: freebsd-isp@FreeBSD.ORG > Subject: RE: restriction of user > > > I think a lot of FTPd's will not let you login unless you have a > valid shell > however. > > N. > > On 23 May 2001, at 17:15, Enriko Groen wrote: > > > > -----Original Message----- > > > From: alexus [mailto:ml@db.nexgen.com] > > > Sent: Wednesday, May 23, 2001 17:11 > > > To: freebsd-isp@freebsd.org > > > Subject: restriction of user > > > > > > > > > how can i disallow certain users shell access but do not > > > restrict ftp/mail > > > acccess? > > > > Set their logon shell to /nonexistent (or /sbin/nologin) > instead of /bin/sh > > in your /etc/passwd file. > > > > -- > > -------------------------------------------------------- > > netivity bv www.netivity.nl enriko.groen@netivity.nl > > 038 - 850 1000 van nagellstraat 4 8011 eb zwolle > > -------------------------------------------------------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > -- > Nicholas J. Dear > Mail: ndear@areti.net Tel: +44 (0)20-8402-4041 > Areti Internet Ltd., http://www.areti.co.uk/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:41:58 2001 Delivered-To: freebsd-isp@freebsd.org Received: from db.nexgen.com (db.nexgen.com [64.81.208.78]) by hub.freebsd.org (Postfix) with SMTP id B412937B422 for ; Wed, 23 May 2001 08:41:51 -0700 (PDT) (envelope-from ml@db.nexgen.com) Received: (qmail 43766 invoked from network); 23 May 2001 15:44:48 -0000 Received: from localhost (HELO book) (root@127.0.0.1) by localhost with SMTP; 23 May 2001 15:44:48 -0000 Message-ID: <00f901c0e39e$e839bd90$01000001@book> From: "alexus" To: Subject: restrict user (re post) Date: Wed, 23 May 2001 11:42:00 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi First of all let me thank everyone whoever responded to me (i got a lot of replays) I belive i didn't specify enough of information so i'll repost my question again: I need to allowe certain user to use ftp/mail and other stuff but disallow shell access I'm using FreeBSD 4.3 w/ NcFTPd 2.6.x su-2.04# finger test | grep Shell Directory: /home/test Shell: /sbin/nologin su-2.04# su-2.04# grep nologin /etc/shells /sbin/nologin su-2.04# and here what i get in log file Someone from x.x.x.x tried to login as "test" user, whose shell is illegal (/sbin/nologin). P.S. sorry 'bout long signature To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:44:50 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hex.databits.net (hex.databits.net [207.29.192.16]) by hub.freebsd.org (Postfix) with SMTP id B65A637B50E for ; Wed, 23 May 2001 08:44:41 -0700 (PDT) (envelope-from petef@hex.databits.net) Received: (qmail 92531 invoked by uid 1001); 23 May 2001 15:44:41 -0000 Date: Wed, 23 May 2001 11:44:41 -0400 From: Pete Fritchman To: alexus Cc: freebsd-isp@freebsd.org Subject: Re: restrict user (re post) Message-ID: <20010523114441.D69978@databits.net> References: <00f901c0e39e$e839bd90$01000001@book> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <00f901c0e39e$e839bd90$01000001@book>; from ml@db.nexgen.com on Wed, May 23, 2001 at 11:42:00AM -0400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org ++ 23/05/01 11:42 -0400 - alexus: | I'm using FreeBSD 4.3 w/ NcFTPd 2.6.x | | Someone from x.x.x.x tried to login as "test" user, whose shell is illegal | (/sbin/nologin). | So, obviously, NcFTPd must be using another method to verify a user's shell. A quick search on google reveals: http://www.ncftpd.com/ncftpd/doc/faq/trouble.html [excerpt] User has an illegal shell; Fix: Add the user's shell to /etc/shells, or change the user's shell. Then restart NcFTPd. Did you restart NcFTPd, or follow other troubleshooting procedures listed on their webpage? This is drifting OT from freebsd-isp because it seems to be an issue with your FTP server. -pete -- Pete Fritchman Databits Network Services, Inc. finger petef@databits.net for PGP key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:49:33 2001 Delivered-To: freebsd-isp@freebsd.org Received: from db.nexgen.com (db.nexgen.com [64.81.208.78]) by hub.freebsd.org (Postfix) with SMTP id C344F37B424 for ; Wed, 23 May 2001 08:49:30 -0700 (PDT) (envelope-from ml@db.nexgen.com) Received: (qmail 43877 invoked from network); 23 May 2001 15:52:27 -0000 Received: from localhost (HELO book) (root@127.0.0.1) by localhost with SMTP; 23 May 2001 15:52:27 -0000 Message-ID: <012b01c0e39f$fa083140$01000001@book> From: "alexus" To: "Pete Fritchman" Cc: References: <00f901c0e39e$e839bd90$01000001@book> <20010523114441.D69978@databits.net> Subject: Re: restrict user (re post) Date: Wed, 23 May 2001 11:49:39 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org i'll check into it thanks in advance ----- Original Message ----- From: "Pete Fritchman" To: "alexus" Cc: Sent: Wednesday, May 23, 2001 11:44 AM Subject: Re: restrict user (re post) > ++ 23/05/01 11:42 -0400 - alexus: > | I'm using FreeBSD 4.3 w/ NcFTPd 2.6.x > | > | Someone from x.x.x.x tried to login as "test" user, whose shell is illegal > | (/sbin/nologin). > | > > So, obviously, NcFTPd must be using another method to verify a user's > shell. A quick search on google reveals: > > http://www.ncftpd.com/ncftpd/doc/faq/trouble.html > > [excerpt] > User has an illegal shell; > Fix: Add the user's shell to /etc/shells, or change the user's > shell. Then restart NcFTPd. > > Did you restart NcFTPd, or follow other troubleshooting procedures > listed on their webpage? This is drifting OT from freebsd-isp because > it seems to be an issue with your FTP server. > > -pete > > -- > Pete Fritchman > Databits Network Services, Inc. > finger petef@databits.net for PGP key > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:54:11 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.cb21.co.jp (b3.lan.neweb.ne.jp [210.157.128.252]) by hub.freebsd.org (Postfix) with SMTP id EEE3037B43C for ; Wed, 23 May 2001 08:54:01 -0700 (PDT) (envelope-from admin@cb21.co.jp) Received: (qmail 74910 invoked from network); 24 May 2001 00:54:01 +0900 Received: from localhost.cb21.co.jp (HELO localhost) (127.0.0.1) by localhost.cb21.co.jp with SMTP; 24 May 2001 00:54:01 +0900 To: tom@sdf.com Cc: freebsd-isp@freebsd.org Subject: Re: FreeBSD as Backup Router for a CISCO router From: Sys Admin In-Reply-To: References: <20010523071034V.admin@cb21.co.jp> X-Mailer: Mew version 1.94.2 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: <20010524005401F.admin@cb21.co.jp> Date: Thu, 24 May 2001 00:54:01 +0900 X-Dispatcher: imput version 20000228(IM140) Lines: 48 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > It is probably more important to know what interfaces the router has, > and what kind of router it is. Sorry! I should have given more details. Router is a Cisco 2514 with 2 ethernet interfaces. What do you mean by what kind of router ? ( Pardon my ignorance as I am new to dealing with routers). > > 1. Is it possible to have FreeBSD router work in parallel with cisco > > router ? What I would like to have the FreeBSD router up and running > > in case cisco router fails without manual intervention as I am staying > > far away from the network. (using routed) > > Not likely. Automatic takeover of a gateway IP and MAC by a standby > router is possible. But Cisco uses propietary HSRP for that, while > FreeBSD has support for VRRP. OK. This more or less means that I have to be there in person to activate the backup router. Right ? > > 2. What is the better solution for a backup router ? Natd or routed ? > > Apples and oragees. routed doesn't do routing, it routing protocol > daemon for RIPv1 and RIPv2. natd does network address translation. You > don't need routed if you don't need RIP. You don't natd if you don't need > NAT. Bit confused here. The reason I put natd is because when the router gave problems, as a quick fix, I configured a gateway with natd and bridging. It worked quite well. Is it a recommended alternative to a router ? I received a personal mail recommending to use gated. Planning to study that soon. > Depends on the router it is replacing. Depends on the traffic levels. > What kind of router is it? And what is the maximum Mbps and pps that is > must be able to handle? I really haven't done any traffic analysis. But the traffic most probably falls between low to medium. Thanks. Tad. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 8:55:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by hub.freebsd.org (Postfix) with SMTP id 2266137B423 for ; Wed, 23 May 2001 08:55:37 -0700 (PDT) (envelope-from fbsdq@yahoo.com) Received: from h2.impactidealsolutions.com (HELO support10) (216.98.200.91) by smtp.mail.vip.sc5.yahoo.com with SMTP; 23 May 2001 15:55:36 -0000 X-Apparently-From: Message-Id: Date: Wed, 23 May 2001 09:59:23 -0600 X-Priority: 3 From: Peter X-Mailer: Mail Warrior To: petef@databits.net, "freebsd-isp@freebsd.org" MIME-Version: 1.0 Subject: Re: restrict user (re post) Content-Type: Text/Plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8Bit X-Mailer-Version: v3.57 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org . . . .|| Someone from x.x.x.x tried to login as "test" user, whose shell is illegal . . . .|| (/sbin/nologin). By what you said, it's illegal only in the sense that they can't telnet/ssh into that box. ftpd works by only allowing a user in who has a shell [/sbin/nologin] in /etc/shells. so does the nologin shell exist in /etc/shells? if yes, ftp is workign properly remove /sbin/nologin from /etc/shells and user won't be able to use ftp. On 05/23/2001 9:44:41 AM, Pete Fritchman is quoted as saying: . . . .|++ 23/05/01 11:42 -0400 - alexus: . . . .|| I'm using FreeBSD 4.3 w/ NcFTPd 2.6.x . . . .|| . . . .|| Someone from x.x.x.x tried to login as "test" user, whose shell is illegal . . . .|| (/sbin/nologin). . . . .|| . . . .| . . . .|So, obviously, NcFTPd must be using another method to verify a user's . . . .|shell. A quick search on google reveals: . . . .| . . . .|http://www.ncftpd.com/ncftpd/doc/faq/trouble.html . . . .| . . . .|[excerpt] . . . .|User has an illegal shell; . . . .| Fix: Add the user's shell to /etc/shells, or change the user's . . . .| shell. Then restart NcFTPd. . . . .| . . . .|Did you restart NcFTPd, or follow other troubleshooting procedures . . . .|listed on their webpage? This is drifting OT from freebsd-isp because . . . .|it seems to be an issue with your FTP server. . . . .| . . . .|-pete . . . .| . . . .|-- . . . .|Pete Fritchman . . . .|Databits Network Services, Inc. . . . .|finger petef@databits.net for PGP key . . . .| . . . .| . . . .|To Unsubscribe: send mail to majordomo@FreeBSD.org . . . .|with "unsubscribe freebsd-isp" in the body of the message www.nul.cjb.net www.FreeBSD.org _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 9: 0:24 2001 Delivered-To: freebsd-isp@freebsd.org Received: from db.nexgen.com (db.nexgen.com [64.81.208.78]) by hub.freebsd.org (Postfix) with SMTP id 9A40D37B423 for ; Wed, 23 May 2001 09:00:19 -0700 (PDT) (envelope-from ml@db.nexgen.com) Received: (qmail 43983 invoked from network); 23 May 2001 16:03:15 -0000 Received: from localhost (HELO book) (root@127.0.0.1) by localhost with SMTP; 23 May 2001 16:03:15 -0000 Message-ID: <002801c0e3a1$7c57c2e0$01000001@book> From: "alexus" To: References: Subject: Re: restrict user (re post) Date: Wed, 23 May 2001 12:00:27 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org i figure it out thanks everyone To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 9: 3:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id 159CF37B424 for ; Wed, 23 May 2001 09:03:01 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 152awf-0002lX-00; Wed, 23 May 2001 08:53:09 -0700 Date: Wed, 23 May 2001 08:53:08 -0700 (PDT) From: Tom Samplonius To: Sys Admin Cc: freebsd-isp@freebsd.org Subject: Re: FreeBSD as Backup Router for a CISCO router In-Reply-To: <20010524005401F.admin@cb21.co.jp> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 24 May 2001, Sys Admin wrote: > > It is probably more important to know what interfaces the router has, > > and what kind of router it is. > > Sorry! I should have given more details. Router is a Cisco 2514 with 2 > ethernet interfaces. > > What do you mean by what kind of router ? ( Pardon my ignorance as I am new to > dealing with routers). As in model number. A Cisco 2514 is the lowest end Cisco with dual 10Mbps ethernet interfaces you can get. A FreeBSD box with dual NICs can easily exceed the performance of a 2514, especially since can you use fast ethernet. > > > 1. Is it possible to have FreeBSD router work in parallel with cisco > > > router ? What I would like to have the FreeBSD router up and running > > > in case cisco router fails without manual intervention as I am staying > > > far away from the network. (using routed) > > > > Not likely. Automatic takeover of a gateway IP and MAC by a standby > > router is possible. But Cisco uses propietary HSRP for that, while > > FreeBSD has support for VRRP. > > OK. This more or less means that I have to be there in person to activate the > backup router. Right ? Pretty much. You could run a routing protocol on the routers to announce themselves as gateways to your hosts. If the router stops, it will stop annoucing itself as a gateway. > > > 2. What is the better solution for a backup router ? Natd or routed ? > > > > Apples and oranges. routed doesn't do routing, it routing protocol > > daemon for RIPv1 and RIPv2. natd does network address translation. You > > don't need routed if you don't need RIP. You don't natd if you don't need > > NAT. > > Bit confused here. The reason I put natd is because when the router gave > problems, as a quick fix, I configured a gateway with natd and bridging. It > worked quite well. Is it a recommended alternative to a router ? > > I received a personal mail recommending to use gated. Planning to study that > soon. It depends on your network. Obviously a bridge and a router working in completely different ways. gated is a routing protocol daemon like routed. It doesn't actually do routing either. The FreeBSD kernel does the routing. > > Depends on the router it is replacing. Depends on the traffic levels. > > What kind of router is it? And what is the maximum Mbps and pps that is > > must be able to handle? > > I really haven't done any traffic analysis. But the traffic most probably > falls between low to medium. Since it is a Cisco 2514, I would say it is probably under 5Mbps sustained. > Thanks. > > Tad. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 9:22:49 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.cb21.co.jp (b3.lan.neweb.ne.jp [210.157.128.252]) by hub.freebsd.org (Postfix) with SMTP id 35E8637B422 for ; Wed, 23 May 2001 09:22:44 -0700 (PDT) (envelope-from admin@cb21.co.jp) Received: (qmail 77474 invoked from network); 24 May 2001 01:22:42 +0900 Received: from localhost.cb21.co.jp (HELO localhost) (127.0.0.1) by localhost.cb21.co.jp with SMTP; 24 May 2001 01:22:42 +0900 To: tom@sdf.com Cc: freebsd-isp@freebsd.org Subject: Re: FreeBSD as Backup Router for a CISCO router From: Sys Admin In-Reply-To: References: <20010524005401F.admin@cb21.co.jp> X-Mailer: Mew version 1.94.2 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-Id: <20010524012242Q.admin@cb21.co.jp> Date: Thu, 24 May 2001 01:22:42 +0900 X-Dispatcher: imput version 20000228(IM140) Lines: 52 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello Tom, > As in model number. A Cisco 2514 is the lowest end Cisco with dual > 10Mbps ethernet interfaces you can get. A FreeBSD box with dual NICs can > easily exceed the performance of a 2514, especially since can you use fast > ethernet. That was my experience as well. 2514 suddenly became non-responsive when we copied some large files (totalling about 9GB) from one box (4.1.1R) to another (4.3R) . (Boxes were in two different nets) From the source box I could not even ping the router. It said "No route to host" all of a sudden. Manually adding routes didn't work either. Basically it did not respond to machines from 1 class C net. Other net was working OK. Pretty wierd! > Pretty much. You could run a routing protocol on the routers to > announce themselves as gateways to your hosts. If the router stops, it > will stop annoucing itself as a gateway. > > > > 2. What is the better solution for a backup router ? Natd or routed ? > > > > > > Apples and oranges. routed doesn't do routing, it routing protocol > > > daemon for RIPv1 and RIPv2. natd does network address translation. You > > > don't need routed if you don't need RIP. You don't natd if you don't need > > > NAT. > > > > Bit confused here. The reason I put natd is because when the router gave > > problems, as a quick fix, I configured a gateway with natd and bridging. It > > worked quite well. Is it a recommended alternative to a router ? > > > > I received a personal mail recommending to use gated. Planning to study that > > soon. > > It depends on your network. Obviously a bridge and a router working in > completely different ways. What worried me was whether that was the correct thing to do. Natd/bridge works OK. But is it a recommended way ? > gated is a routing protocol daemon like routed. It doesn't actually do > routing either. The FreeBSD kernel does the routing. I see. Things are beginning to get cleared for me. Thanks! > Since it is a Cisco 2514, I would say it is probably under 5Mbps > sustained. I couldn't find that spec. on Cisco site. Anyway good to know that. Tad. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 11:27:33 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id 229C837B423 for ; Wed, 23 May 2001 11:27:30 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f4NJgkd00259; Wed, 23 May 2001 14:42:47 -0500 (CDT) (envelope-from nick@rogness.net) Date: Wed, 23 May 2001 14:42:46 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Mark Drayton Cc: freebsd-isp@freebsd.org Subject: Re: Resolving DNS setup In-Reply-To: <20010523090552.A6992@tethys.valhalla.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 23 May 2001, Mark Drayton wrote: > Nick Rogness (nick@rogness.net) wrote: > > On Tue, 22 May 2001, Mark Drayton wrote: >> One solution maybe to add your authoritative name servers as >> forwarders in your caching only server config. > > If I do that won't the caching servers pass *all* requests to the > authoritative servers (unless it has a valid answer cached)? One og the > reasons I'm setting up the caching servers is to take the load off of > the authoritative servers. Ultimately I don't want the authoritative > servers to answer recursive queries. Then turn recursive queries off on the auth name servers. You won't need that option on if they are not resolving anyting besides authoritative info. > > I was looking through the BIND docs and it appears I can define > 'forward zones' with their own list of forwarders that override the > global forwarders {} statement. I might try configuring the caching > namesever with forward zones for all our zones to pass the requests to > our authoritative servers. Any problems with this setup? > What version of bind are you running? Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 11:58:30 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tethys.valhalla.net (tethys.valhalla.net [195.26.32.112]) by hub.freebsd.org (Postfix) with ESMTP id 1496337B423 for ; Wed, 23 May 2001 11:58:29 -0700 (PDT) (envelope-from mark@tethys.valhalla.net) Received: by tethys.valhalla.net (Postfix, from userid 500) id 03AD233009; Wed, 23 May 2001 19:58:28 +0100 (BST) Date: Wed, 23 May 2001 19:58:27 +0100 From: Mark Drayton To: freebsd-isp@freebsd.org Subject: Re: Resolving DNS setup Message-ID: <20010523195827.A14899@tethys.valhalla.net> Mail-Followup-To: freebsd-isp@freebsd.org References: <20010523090552.A6992@tethys.valhalla.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from nick@rogness.net on Wed, May 23, 2001 at 02:42:46PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nick Rogness (nick@rogness.net) wrote: > On Wed, 23 May 2001, Mark Drayton wrote: > > > I was looking through the BIND docs and it appears I can define > > 'forward zones' with their own list of forwarders that override the > > global forwarders {} statement. I might try configuring the caching > > namesever with forward zones for all our zones to pass the requests > > to our authoritative servers. Any problems with this setup? > > What version of bind are you running? 8.2.3-REL on both auth and caching servers. Cheers, -- Mark Drayton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 18:16:14 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mbs.microbiz.net (mbs.microbiz.net [204.244.63.1]) by hub.freebsd.org (Postfix) with ESMTP id 26BD937B42C for ; Wed, 23 May 2001 18:16:07 -0700 (PDT) (envelope-from kulraj@microbiz.net) Received: from kulraj (ws101.mbs-lan [10.0.0.101]) by mbs.microbiz.net (Postfix) with SMTP id 3D7F1592DC for ; Wed, 23 May 2001 18:16:06 -0700 (PDT) Message-ID: <002201c0e3f0$7412cfe0$6500000a@kulraj> From: "Kulraj Gurm" To: Subject: bandwidth tracking Date: Wed, 23 May 2001 18:25:44 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_001F_01C0E3B5.C7A94980" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_001F_01C0E3B5.C7A94980 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable What is the best way to track bandwidth? Any and all ideas welcome. Can bridging help? What we have is : 1. Cisco router on wall supplied by telco 2. Main FreeBSD 4.3-Stable box hosting client sites, three NIC's in = this machine i. First to switch connected to cisco ii. Second to switch serving our internal 10.0.0.0/24 network iii. Third doing nothing yet ............. - been thinking about = bridging for a while. 3. co-lo client boxes, for which we need to monitor traffic - these = can be attached to first switch or whatever seems to be the best way Any help gratefully appreciated. (even if you just point me in the right = direction) Regards, Kulraj Gurm ------=_NextPart_000_001F_01C0E3B5.C7A94980 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
What is the best way to track = bandwidth? Any and=20 all ideas welcome.
Can bridging help?
 
What we have is :
 
1.    Cisco router on = wall supplied=20 by telco
2.    Main FreeBSD = 4.3-Stable box=20 hosting client sites, three NIC's in this machine
        = i. First to=20 switch connected to cisco
        = ii. Second to=20 switch serving our internal 10.0.0.0/24 network
        = iii. Third=20 doing nothing yet ............. - been thinking about bridging for a=20 while.
3.    co-lo client = boxes, for which=20 we need to monitor traffic - these can be attached to first switch or = whatever=20 seems to be the best way
 
Any help gratefully appreciated. (even = if you just=20 point me in the right direction)
 
Regards,
 
Kulraj Gurm
------=_NextPart_000_001F_01C0E3B5.C7A94980-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 23 21:20: 7 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id 20BD437B422 for ; Wed, 23 May 2001 21:20:03 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f4O5ZMV03897; Thu, 24 May 2001 00:35:22 -0500 (CDT) (envelope-from nick@rogness.net) Date: Thu, 24 May 2001 00:35:22 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Kulraj Gurm Cc: freebsd-isp@FreeBSD.ORG Subject: Re: bandwidth tracking In-Reply-To: <002201c0e3f0$7412cfe0$6500000a@kulraj> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 23 May 2001, Kulraj Gurm wrote: > What is the best way to track bandwidth? Any and all ideas welcome. > Can bridging help? > > What we have is : > > 1. Cisco router on wall supplied by telco > 2. Main FreeBSD 4.3-Stable box hosting client sites, three NIC's in > this machine > i. First to switch connected to cisco > ii. Second to switch serving our internal 10.0.0.0/24 network > iii. Third doing nothing yet ............. - been thinking > about bridging for a while. > 3. co-lo client boxes, for which we need to monitor traffic - these > can be attached to first switch or whatever seems to be the best way MRTG. A great little graphic bandwidth reporting package. It's in the ports. There is also a neat little shell script, bandwidth tool that someone (I think DES) posted to the list a while ago. It involved netstat in combination with another graphic building app (can't recall the name). Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 2:41:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from phoenix.shells.co.uk (phoenix.shells.co.uk [217.33.11.128]) by hub.freebsd.org (Postfix) with ESMTP id 7BE2437B422 for ; Thu, 24 May 2001 02:41:03 -0700 (PDT) (envelope-from jk@dac.org) Received: from localhost (localhost [127.0.0.1]) by phoenix.shells.co.uk (Postfix) with ESMTP id 581493837 for ; Thu, 24 May 2001 10:39:58 +0100 (BST) Date: Thu, 24 May 2001 10:39:58 +0100 (BST) From: Darkcyde X-Sender: jk@phoenix.shells.co.uk To: freebsd-isp@FreeBSD.ORG Subject: Re: bandwidth tracking In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 24 May 2001, Nick Rogness wrote: [snip] > MRTG. A great little graphic bandwidth reporting package. It's > in the ports. Is anyone aware of a way of fudging MRTG to work properly with the current virtual interface implementation on 4-STABLE? When I played with it recently it seemed to be aggregating stats for the whole interface blanket stylee. I guess I can use ipfw count rules or similar to generate stats and then feed that into MRTG, just wondered if there was a better way of doing it. Regards, J. -- Darkcyde (jk@dac.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 6:40:52 2001 Delivered-To: freebsd-isp@freebsd.org Received: from support.euronet.nl (support.euronet.nl [194.134.32.134]) by hub.freebsd.org (Postfix) with ESMTP id 5738337B422 for ; Thu, 24 May 2001 06:40:49 -0700 (PDT) (envelope-from frans@quanza.net) Received: from localhost (franst@localhost) by support.euronet.nl (8.11.3/8.11.0) with ESMTP id f4ODemi01158 for ; Thu, 24 May 2001 15:40:48 +0200 (CEST) X-Authentication-Warning: support.euronet.nl: franst owned process doing -bs Date: Thu, 24 May 2001 15:40:48 +0200 (CEST) From: Frans ter Borg X-Sender: franst@support.euronet.nl To: freebsd-isp@freebsd.org Subject: VLAN's on quad-ethernetcard Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hi, I'm in a situation where I'd like to deploy a FreeBSD box with a quad-ethernetcard and use VLAN-tagging on one or more of the ethernetports. I haven't bought the hardware yet. Did anybody get this to work yet ? If so, what hardware were you using ? I'm kindof fond of the ZNYX346Q card, but haven't been able to find anything about it running VLANs well in the archives. Thanks, Frans -- Quanza Engineering Frans ter Borg Haarlemmerstraat 49-3, 1013 EK Amsterdam T:+31 6 20 444 979,F:+31 84 8704241, E:frans@quanza.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 10:30: 9 2001 Delivered-To: freebsd-isp@freebsd.org Received: from newcolo.invictanet.co.uk (newcolo.invictanet.co.uk [62.232.63.118]) by hub.freebsd.org (Postfix) with ESMTP id 76A8137B422 for ; Thu, 24 May 2001 10:29:59 -0700 (PDT) (envelope-from support@invictanet.co.uk) Received: from harryhome (invictanet.claranet.co.uk [213.253.17.74]) (authenticated) by newcolo.invictanet.co.uk (8.11.1/8.11.1) with ESMTP id f4OA8eL60520 for ; Thu, 24 May 2001 11:08:40 +0100 (BST) From: "InvictaNet Customer Support" To: "Freebsd-ISP" Subject: RE: bandwidth tracking Date: Thu, 24 May 2001 11:08:40 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dennis, where are you. Somebody mentioned bandwidth tracking/monitoring. A quote from an earlier message reads...... We've beaten out packeteer many times with our ~2400. solution which runs either freebsd or LINUX. Our soon to be released next verison includes per-rule burst settings, integrated policy routing and an embedded snmp client for gathering and charting data with a nice gui interface. Our boxes run as bridges, so you get the functionality of a switch as well with some multiport cards. We also have it running on a cobalt raq so if you like a completely web managable box (albeit running linux) we have that also...for a few extra bucks but still a lot cheaper than the packetshaper. You can also roll your own for $595. for just the software. www.etinc.com Dennis End quote. An associated company of ours uses the software product and is totally happy with it. Martyn Routley ----------------------------------------------------- InvictaNet - The Internet in Plain English, Guaranteed http://www.invictanet.co.uk info@invictanet.co.uk phone: 08707 440180 fax: 08707 440181 ------------------------------------------------------ -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Nick Rogness Sent: Thursday, May 24, 2001 6:35 AM To: Kulraj Gurm Cc: freebsd-isp@FreeBSD.ORG Subject: Re: bandwidth tracking On Wed, 23 May 2001, Kulraj Gurm wrote: > What is the best way to track bandwidth? Any and all ideas welcome. > Can bridging help? > > What we have is : > > 1. Cisco router on wall supplied by telco > 2. Main FreeBSD 4.3-Stable box hosting client sites, three NIC's in > this machine > i. First to switch connected to cisco > ii. Second to switch serving our internal 10.0.0.0/24 network > iii. Third doing nothing yet ............. - been thinking > about bridging for a while. > 3. co-lo client boxes, for which we need to monitor traffic - these > can be attached to first switch or whatever seems to be the best way MRTG. A great little graphic bandwidth reporting package. It's in the ports. There is also a neat little shell script, bandwidth tool that someone (I think DES) posted to the list a while ago. It involved netstat in combination with another graphic building app (can't recall the name). Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 13:28:38 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aries.ai.net (aries.ai.net [205.134.163.4]) by hub.freebsd.org (Postfix) with ESMTP id 6B07437B422; Thu, 24 May 2001 13:28:30 -0700 (PDT) (envelope-from deepak@ai.net) Received: from blood (adsl-138-88-48-218.bellatlantic.net [138.88.48.218]) by aries.ai.net (8.9.3/8.9.3) with SMTP id QAA05172; Thu, 24 May 2001 16:28:24 -0400 (EDT) (envelope-from deepak@ai.net) Reply-To: From: "Deepak Jain" To: "freebsd-isp@FreeBSD. ORG" , Subject: OC48 interface Date: Thu, 24 May 2001 16:32:25 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I know the first thing everyone will say is "What about BUS speed, and what about packet copying overhead, etc." Let's say we've been there and done that. Lucent has server-based OC48/STM-16 cards. Any idea what they'd take to work in a BSD box? Thanks in advance, Deepak Jain AiNET To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 13:38:44 2001 Delivered-To: freebsd-isp@freebsd.org Received: from terra.ombra.org (c1080065-a.chmpgn1.il.home.com [24.17.3.230]) by hub.freebsd.org (Postfix) with ESMTP id AA85737B422 for ; Thu, 24 May 2001 13:38:42 -0700 (PDT) (envelope-from jgiacomoni@ombra.org) Received: by terra.ombra.org (Postfix, from userid 1000) id A739D5D36; Thu, 24 May 2001 15:39:28 -0500 (CDT) Date: Thu, 24 May 2001 15:39:28 -0500 From: John Giacomoni To: freebsd-isp@freebsd.org Subject: Bridging question Message-ID: <20010524153928.A90541@terra.ombra.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is is possible to have a host with 3 NICs such that say fxp0 and fxp1 are without an IP and act as a bridge while fxp2 has an IP so I can do remote logins to the box? any pointers? -- Code is obstinate like a two year old... with logic To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 17:22:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from rgmail.regenstrief.org (rgmail.regenstrief.org [134.68.31.197]) by hub.freebsd.org (Postfix) with ESMTP id 4A86937B422 for ; Thu, 24 May 2001 17:22:37 -0700 (PDT) (envelope-from gunther@aurora.regenstrief.org) Received: from aurora.regenstrief.org (rgnout.regenstrief.org [134.68.31.38]) by rgmail.regenstrief.org (8.11.0/8.8.7) with ESMTP id f4P0PHX08140; Thu, 24 May 2001 19:25:17 -0500 Message-ID: <3B0DA5C4.357D6C63@aurora.regenstrief.org> Date: Fri, 25 May 2001 00:22:28 +0000 From: Gunther Schadow Organization: Regenstrief Institute for Health Care X-Mailer: Mozilla 4.75 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: Nick Rogness Cc: Kulraj Gurm , freebsd-isp@FreeBSD.ORG Subject: Re: bandwidth tracking References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org There is ALTQ as well with altqstat. And some graphing tools around this. ALTQ is nice if you don't want to just sit there and watch you bandwidth problems but do something about them. For instance, set WFQ or class based queueing. Works beautifully. If, however, you don't want to monitor use but test available bandwidth, use tcpblast, netperf, netpipe, or, if you are interested in automated UDP-streaming test probes, use my new tool "udpblast". I need to put it up on my web site soon. regards -Gunther Nick Rogness wrote: > > On Wed, 23 May 2001, Kulraj Gurm wrote: > > > What is the best way to track bandwidth? Any and all ideas welcome. > > Can bridging help? > > > > What we have is : > > > > 1. Cisco router on wall supplied by telco > > 2. Main FreeBSD 4.3-Stable box hosting client sites, three NIC's in > > this machine > > i. First to switch connected to cisco > > ii. Second to switch serving our internal 10.0.0.0/24 network > > iii. Third doing nothing yet ............. - been thinking > > about bridging for a while. > > > 3. co-lo client boxes, for which we need to monitor traffic - these > > can be attached to first switch or whatever seems to be the best way > > MRTG. A great little graphic bandwidth reporting package. It's > in the ports. > > There is also a neat little shell script, bandwidth tool that > someone (I think DES) posted to the list a while ago. It involved > netstat in combination with another graphic building app (can't > recall the name). > > Nick Rogness > - Keep on Routing in a Free World... > "FreeBSD: The Power to Serve!" > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Gunther Schadow, M.D., Ph.D. gschadow@regenstrief.org Medical Information Scientist Regenstrief Institute for Health Care Adjunct Assistent Professor Indiana University School of Medicine tel:1(317)630-7960 http://aurora.regenstrief.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 17:34:20 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cx175057-a.ocnsd1.sdca.home.com (cx175057-a.ocnsd1.sdca.home.com [24.13.23.40]) by hub.freebsd.org (Postfix) with ESMTP id 69FB737B423; Thu, 24 May 2001 17:34:10 -0700 (PDT) (envelope-from bri@sonicboom.org) Received: from brian (cx175057-b.ocnsd1.sdca.home.com [24.13.23.147]) by cx175057-a.ocnsd1.sdca.home.com (8.11.1/8.11.1) with SMTP id f4P0Xtc42403; Thu, 24 May 2001 17:33:55 -0700 (PDT) (envelope-from bri@sonicboom.org) Message-ID: <006801c0e4b2$0ff68660$3324200a@sonicboom.org> From: "Brian" To: , "freebsd-isp@FreeBSD. ORG" , References: Subject: Re: OC48 interface Date: Thu, 24 May 2001 17:31:33 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org according to http://www.lucent.com/products/solution/0,,CTID+2011-STID+10236-SOID+729-LOC L+1,00.html it looks like it works in linux already, as well as the win oses, so I suspect it wouldn't be too hard. For what one of these would cost, you should be able to get some time with a sales engineer as opposed to a salesperson there. Bri ----- Original Message ----- From: "Deepak Jain" To: "freebsd-isp@FreeBSD. ORG" ; Sent: Thursday, May 24, 2001 1:32 PM Subject: OC48 interface > > I know the first thing everyone will say is "What about BUS speed, and what > about packet copying overhead, etc." Let's say we've been there and done > that. > > Lucent has server-based OC48/STM-16 cards. Any idea what they'd take to work > in a BSD box? > > Thanks in advance, > > Deepak Jain > AiNET > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 18:35:44 2001 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id 38EA537B422 for ; Thu, 24 May 2001 18:35:39 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id LAA18152 for ; Fri, 25 May 2001 11:35:28 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Fri, 25 May 2001 11:35:26 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: Cisco <-> FreeBSD IP tunnels Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, I'm having a problem with Cisco NOS style tunnels, running the iptunnel.c program at the FreeBSD end. It seems you can't configure the MTU on the Cisco, so the effective MTU ends up being 1480 bytes (1500 minus 20 bytes encapsulation overhead). This is causing BIG problems with MTU path discovery, and web sites that support PMTU but have a firewall somewhere blocking more ICMP than it should. Enabling PTMU but blocking ICMP actually causes the problem - the web site is sending packets with the Don't Fragment bit set, the router sends back an ICMP saying "I cannot comply with your Don't Fragment requirement, the MTU to use is xxx, I am dropping this packet", the firewall blocks that packet so the web server never sees it and continues to send full size packets. Repeat process endlessly. (aside - if you block ICMP, do you block more than type 0 and 8? if so, why?) Is there anyone tunnelling between a FreeBSD box and a Cisco using a true MTU/MRU of 1500? I realise the encapsulated packets themselves may be fragmented (1500 in + 20 overhead = 2 fragments over an ethernet), but that's no problem so long as the *contents* of the tunnel are not fragmented, and it can pass a full 1500 byte packet intact. Thanks for any suggestions... Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9329-5498 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 19:23:16 2001 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id DD9F837B422 for ; Thu, 24 May 2001 19:23:11 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id MAA18353 for ; Fri, 25 May 2001 12:23:05 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Fri, 25 May 2001 12:23:03 +1000 (EST) From: Rowan Crowe To: freebsd-isp@FreeBSD.ORG Subject: Re: Cisco <-> FreeBSD IP tunnels In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 25 May 2001, Rowan Crowe wrote: > Hello, > > I'm having a problem with Cisco NOS style tunnels, running the iptunnel.c > program at the FreeBSD end. It seems you can't configure the MTU on the > Cisco, so the effective MTU ends up being 1480 bytes (1500 minus 20 bytes > encapsulation overhead). This is causing BIG problems with MTU path > discovery, and web sites that support PMTU but have a firewall somewhere > blocking more ICMP than it should. This sentence pretty much sums it up: "However, increasing the tunnel MTU isn't feasible if the links over which the tunnel packets are sent are smaller than 1500 bytes, because the DF bit of the original packet is copied to the tunnel packet header. In this scenario, the router can encapsulate the original packet, but can't fragment the tunnel packet, since the DF bit is set." As long as the Cisco copies the DF bit in the header of the original packet, to the DF bit of the encapsulated header packet, its tunnel will always be limited to an MTU of 20 lower than the interface it is going out (and in practical terms, all other links to the destination). FreeBSD's tunnel program seems to be quite happy to turn a 1500 byte packet into an encapsulated packet of 1520, which is then fragmented by the kernel into 2 packets as it passes over ethernet, and comes out of the tunnel as an *intact* 1500 byte packet. The fragmentation is 'outside' the tunnel, and is effectively seamless to each end. With a Cisco, the 1500 byte packet is fragmented *before* it enters the tunnel (due to 1480 MTU), and will leave the tunnel as 2 fragments also. If the DF bit is set, then the packet does not enter the tunnel at all (it's dropped) and an ICMP "need to frag - MTU 1480" message is sent. This annoying behaviour would be non existent if the DF bit was not copied over to the encapsulated header... The only solution I can think of at the moment is to find something which will encapsulate a 1500 byte packet properly, possibly FreeBSD to FreeBSD... it's messy though, since it's not my network at the other end. Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9329-5498 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 24 19:54:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from dt051n37.san.rr.com (dt051n37.san.rr.com [204.210.32.55]) by hub.freebsd.org (Postfix) with ESMTP id BE48337B43C for ; Thu, 24 May 2001 19:54:28 -0700 (PDT) (envelope-from DougB@DougBarton.net) Received: from DougBarton.net (master [10.0.0.2]) by dt051n37.san.rr.com (8.9.3/8.9.3) with ESMTP id TAA19430; Thu, 24 May 2001 19:54:24 -0700 (PDT) (envelope-from DougB@DougBarton.net) Message-ID: <3B0DC960.414F0120@DougBarton.net> Date: Thu, 24 May 2001 19:54:24 -0700 From: Doug Barton Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Mark Drayton Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Resolving DNS setup References: <20010522185407.A30604@tethys.valhalla.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Mark Drayton wrote: > > Hi > > Recently I set up a caching only nameserver at work which all our office > machines, servers and dialup customers use for resolution instead of our > two authoritative nameservers. A few days ago our internet connection > went down, meaning that the caching nameserver couldn't get to the root > nameservers and therefore couldn't resolve anything it didn't have > cached. As it couldn't get to the root servers it also couldn't answer > any queries for zones that we are authoritative for (even though the > authoritative namesevers are on the same network). > > The end result of this was that customers who dialled into us couldn't > see our site or pick up their mail as the caching nameserver wouldn't > resolve the hostnames of the web/mail servers. > > Obviously this is a Bad Thing and I'd like to sort it out, especially > as I'm going to add another caching nameserver in the near future. What > would be the best way of fixing this? My thoughts so far are: > > a) make the caching nameserver a slave for all the domains held on our > authoritative nameservers This is the best solution for your problem. > Another problem with the caching nameserver is it's very slow to pick up > *new* RRs on our authoritative servers (I know I need to wait for the > TTL to expire on changed records). Will the caching nameserver wait for > the TTL of the zone to expire before it asks the authoritative servers, > *even when it has no cached answer to the query*? I think you're confusing a couple of concepts here. But, if I understand what you're saying correctly, the problem will be solved by making your resolving nameservers slaves for your zones. BTW, you should really have sent this to -questions. HTH, Doug -- I need someone really bad. Are you really bad? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 4:12:16 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mx01.uunet.com.na (mx01.uunet.com.na [196.20.7.164]) by hub.freebsd.org (Postfix) with ESMTP id A302C37B422 for ; Fri, 25 May 2001 04:12:12 -0700 (PDT) (envelope-from tim@iafrica.com.na) Received: from [196.31.227.174] (helo=TIM.iafrica.com.na) by mx01.uunet.com.na with esmtp (Exim 3.14 #5) id 153FW6-0007JF-00; Fri, 25 May 2001 13:12:26 +0200 Message-Id: <5.1.0.14.0.20010525131630.00afa2a8@localhost> X-Sender: tim/pop.iafrica.com.na@localhost X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Fri, 25 May 2001 13:17:47 +0200 To: Frans ter Borg , freebsd-isp@freebsd.org From: Tim Priebe Subject: Re: VLAN's on quad-ethernetcard In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org At 03:40 PM 5/24/2001 +0200, Frans ter Borg wrote: >hi, > >I'm in a situation where I'd like to deploy a FreeBSD box with a >quad-ethernetcard and use VLAN-tagging on one or more of the >ethernetports. I haven't bought the hardware yet. > >Did anybody get this to work yet ? If so, what hardware were you >using ? I'm kindof fond of the ZNYX346Q card, but haven't been able to >find anything about it running VLANs well in the archives. I found for my application a Gigabit Ethernet card was a better solution. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 5: 7:58 2001 Delivered-To: freebsd-isp@freebsd.org Received: from freak.rural (speedfreak.hexanet.fr [194.98.140.14]) by hub.freebsd.org (Postfix) with ESMTP id 46BB337B422; Fri, 25 May 2001 05:07:51 -0700 (PDT) (envelope-from c.prevotaux@hexanet.fr) Received: from freak (locahost.rural [127.0.0.1]) by freak.rural (8.11.3/8.11.3) with SMTP id f4PC7d901890; Fri, 25 May 2001 14:07:40 +0200 (CEST) (envelope-from c.prevotaux@hexanet.fr) Date: Fri, 25 May 2001 14:07:39 +0200 From: Christophe Prevotaux To: Cc: questions@freebsd.org, isp@freebsd.org Subject: Re: OC48 interface Message-Id: <20010525140739.3fd000e8.c.prevotaux@hexanet.fr> In-Reply-To: References: X-Mailer: Sylpheed version 0.4.62 (GTK+ 1.2.8; i386--freebsd4.3) Organization: HEXANET Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org the Forerunner HE 622 ( STM16 ) 622Mbps requires a 64Bits slot and there are no drivers for FreeBSD as of today , however if you post in the atm@freebsd.org mailing list you might get people to port their drivers or maybe you can port the drivers In fact I need to use such a card too under FreeBSD There are alos several other cards I would like to be able to use under FreeBSD like the prosum card http://www.prosum.fr these people are ready to support anyone who want to write a FreeBSD driver for their hardware ( STM4 ) 155Mbps ATM adapter using IDT SAR On Thu, 24 May 2001 16:32:25 -0400 "Deepak Jain" wrote: > > I know the first thing everyone will say is "What about BUS speed, and what > about packet copying overhead, etc." Let's say we've been there and done > that. > > Lucent has server-based OC48/STM-16 cards. Any idea what they'd take to work > in a BSD box? > > Thanks in advance, > > Deepak Jain > AiNET > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- =================================================================== Christophe Prevotaux Email: chris@hexanet.fr HEXANET SARL URL: http://www.hexanet.fr/ Z.A Farman Sud Tel: +33 (0)3 26 79 30 05 9 rue Roland Coffignot Direct: +33 (0)3 26 79 08 02 BP415 Fax: +33 (0)3 26 79 30 06 51689 Reims Cedex 2 FRANCE =================================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 6:18:45 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 37CD237B422 for ; Fri, 25 May 2001 06:18:43 -0700 (PDT) (envelope-from jwyatt@rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (1426 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Fri, 25 May 2001 08:17:37 -0500 (CDT) (Smail-3.2.0.111 2000-Feb-17 #1 built 2000-Jun-25) Date: Fri, 25 May 2001 08:17:22 -0500 (CDT) From: James Wyatt To: Tim Priebe Cc: Frans ter Borg , freebsd-isp@freebsd.org Subject: Re: VLAN's on quad-ethernetcard In-Reply-To: <5.1.0.14.0.20010525131630.00afa2a8@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 25 May 2001, Tim Priebe wrote: > At 03:40 PM 5/24/2001 +0200, Frans ter Borg wrote: > >hi, > > > >I'm in a situation where I'd like to deploy a FreeBSD box with a > >quad-ethernetcard and use VLAN-tagging on one or more of the > >ethernetports. I haven't bought the hardware yet. > > > >Did anybody get this to work yet ? If so, what hardware were you > >using ? I'm kindof fond of the ZNYX346Q card, but haven't been able to > >find anything about it running VLANs well in the archives. > > I found for my application a Gigabit Ethernet card was a better solution. It might be helpful to include why (pros and cons) so others can be helped through your experience... Do you run all your VLANs through the GE card? Maybe Frans has several segments that must be physically separate... - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 6:29:24 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.hostorama.com (208-128-72-15.ipv4.intur.net [208.128.72.15]) by hub.freebsd.org (Postfix) with SMTP id 46CB337B423 for ; Fri, 25 May 2001 06:29:16 -0700 (PDT) (envelope-from ewalters@nms2001.com) Received: (qmail 81714 invoked from network); 25 May 2001 13:48:39 -0000 Received: from unknown (HELO netmon1) (12.45.139.50) by 0 with SMTP; 25 May 2001 13:48:39 -0000 From: "Eric Walters" To: , Subject: SNMP Advanced Application Level Gateway on FreeBSD Date: Fri, 25 May 2001 08:29:12 -0500 Message-ID: <000b01c0e51e$b0cfc580$978a13ac@netmon1> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I am wondering if anyone has come across a good ALG that runs on FreeBSD? If so I would love to have some feedback. We have approximately 5000 devices that need to be managed via SNMP on a private (RFC 1918) IP network. The problem is that the NOC already has a customer using the same RFC1918 addressing so we need to NAT the addresses. This presents a problem with SNMP packets, in particular changing the IP address in the payload. RFC2962 describes this problem and the solution is an "Advanced Application Level Gateway for Payload Address Translation". I have come accross several NT packages that might do this, but I want something that will be stable and managable remotely. Any recommendations or advice would be appreciated. Thanks, Eric Õ¿Õ¬ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 8:45:41 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mx01.uunet.com.na (mx01.uunet.com.na [196.20.7.164]) by hub.freebsd.org (Postfix) with ESMTP id E564637B422 for ; Fri, 25 May 2001 08:45:36 -0700 (PDT) (envelope-from tim@iafrica.com.na) Received: from [196.31.227.174] (helo=TIM.iafrica.com.na) by mx01.uunet.com.na with esmtp (Exim 3.14 #5) id 153JmZ-0004H9-00; Fri, 25 May 2001 17:45:43 +0200 Message-Id: <5.1.0.14.0.20010525163521.00afa3e8@localhost> X-Sender: tim/pop.iafrica.com.na@localhost X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Fri, 25 May 2001 17:51:01 +0200 To: James Wyatt From: Tim Priebe Subject: Re: VLAN's on quad-ethernetcard Cc: Frans ter Borg , freebsd-isp@freebsd.org In-Reply-To: References: <5.1.0.14.0.20010525131630.00afa2a8@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org At 08:17 AM 5/25/2001 -0500, James Wyatt wrote: >On Fri, 25 May 2001, Tim Priebe wrote: > > At 03:40 PM 5/24/2001 +0200, Frans ter Borg wrote: > > >hi, > > > > > >I'm in a situation where I'd like to deploy a FreeBSD box with a > > >quad-ethernetcard and use VLAN-tagging on one or more of the > > >ethernetports. I haven't bought the hardware yet. > > > > > >Did anybody get this to work yet ? If so, what hardware were you > > >using ? I'm kindof fond of the ZNYX346Q card, but haven't been able to > > >find anything about it running VLANs well in the archives. > > > > I found for my application a Gigabit Ethernet card was a better solution. > >It might be helpful to include why (pros and cons) so others can be helped >through your experience... Do you run all your VLANs through the GE card? >Maybe Frans has several segments that must be physically separate... - Jy@ This is all true, but I did not have enough time to send more than a short note. With one GE card you do not have to worry about how you distribute your vlans between the interfaces, in order to avoid congestion. You must have or make a GE port available, this will be impractical for some. I replaced 4 10/100 Ethernet interfaces all running multiple vlans with one GE interface. It sorted out my mtu problems, and I have not had an interface saturated since. If the requirement is for physically separate segments, then he would not consider it a solution for his application. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 8:53:59 2001 Delivered-To: freebsd-isp@freebsd.org Received: from satin.team.look.ca (satin.team.look.ca [207.136.94.3]) by hub.freebsd.org (Postfix) with ESMTP id 45DB137B423 for ; Fri, 25 May 2001 08:53:57 -0700 (PDT) (envelope-from JTERLECKI@team.look.ca) Received: by satin.team.look.ca with Internet Mail Service (5.5.2653.19) id ; Fri, 25 May 2001 11:54:03 -0400 Message-ID: <552BB9A0AF05D411B71C0050DAC27561012ADE1B@LOOKEX.look> From: Jason Terlecki To: freebsd-isp@freebsd.org Subject: Old old version of FreeBSD Date: Fri, 25 May 2001 11:51:32 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does anyone know where the equivalent of loader.conf and the other associated components are located on FreeBSD2.0 ? We are stuck with a box running this (please dont ask or flame, I know... it is SAD) and a collegue of mine needs that information. We would appreciate any help. Regards, Jason Terlecki System Engineer EIS Systems Look Communication Inc. - Montreal 514-599-2643 office 514-846-2446 pager jterlecki@team.look.ca jterlecki@e.pagenet.ca . To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 8:54:59 2001 Delivered-To: freebsd-isp@freebsd.org Received: from freesbee.wheel.dk (freesbee.wheel.dk [193.162.159.97]) by hub.freebsd.org (Postfix) with ESMTP id A7CCF37B424; Fri, 25 May 2001 08:54:54 -0700 (PDT) (envelope-from jesper@skriver.dk) Received: by freesbee.wheel.dk (Postfix, from userid 1001) id 34C215D81; Fri, 25 May 2001 17:56:32 +0200 (CEST) Date: Fri, 25 May 2001 17:56:32 +0200 From: Jesper Skriver To: Christophe Prevotaux Cc: deepak@ai.net, questions@freebsd.org, isp@freebsd.org Subject: Re: OC48 interface Message-ID: <20010525175632.E68956@skriver.dk> References: <20010525140739.3fd000e8.c.prevotaux@hexanet.fr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010525140739.3fd000e8.c.prevotaux@hexanet.fr>; from c.prevotaux@hexanet.fr on Fri, May 25, 2001 at 02:07:39PM +0200 X-PGP-Fingerprint: 6B88 9CE8 66E9 E631 C9C5 5EB4 22AB F0EC F956 1C31 X-PGP-Public-Key: http://freesbee.wheel.dk/~jesper/gpgkey.pub Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, May 25, 2001 at 02:07:39PM +0200, Christophe Prevotaux wrote: > the Forerunner HE 622 ( STM16 ) 622Mbps requires a 64Bits slot That is not STM16, but STM4 > and there are no drivers for FreeBSD as of today , however > if you post in the atm@freebsd.org mailing list > you might get people to port their drivers or maybe you can port > the drivers > > In fact I need to use such a card too under FreeBSD > > There are alos several other cards I would like to be able to use > under FreeBSD like the prosum card > > http://www.prosum.fr > > these people are ready to support anyone who want to write a FreeBSD driver > for their hardware ( STM4 ) 155Mbps ATM adapter using IDT SAR Ditto, not STM4 but STM1 /Jesper -- Jesper Skriver, jesper(at)skriver(dot)dk - CCIE #5456 Work: Network manager @ AS3292 (Tele Danmark DataNetworks) Private: FreeBSD committer @ AS2109 (A much smaller network ;-) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 11:59:18 2001 Delivered-To: freebsd-isp@freebsd.org Received: from imo-r05.mx.aol.com (imo-r05.mx.aol.com [152.163.225.101]) by hub.freebsd.org (Postfix) with ESMTP id 772A237B422 for ; Fri, 25 May 2001 11:59:16 -0700 (PDT) (envelope-from Bsdguru@aol.com) Received: from Bsdguru@aol.com by imo-r05.mx.aol.com (mail_out_v30.22.) id n.b8.1630694f (4240) for ; Fri, 25 May 2001 14:59:11 -0400 (EDT) From: Bsdguru@aol.com Message-ID: Date: Fri, 25 May 2001 14:59:11 EDT Subject: Re: Freeside To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: AOL 5.0 for Windows sub 139 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is anyone using this package with FreeBSD? Opinions? Can you bill based on bandwidth usage with it? Bryan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 13: 2:36 2001 Delivered-To: freebsd-isp@freebsd.org Received: from post.xecu.net (post.xecu.net [216.127.136.211]) by hub.freebsd.org (Postfix) with ESMTP id 7054937B423 for ; Fri, 25 May 2001 13:02:32 -0700 (PDT) (envelope-from andy@xecu.net) Received: from shell.xecu.net (www.mip.net [216.127.136.221]) by post.xecu.net (Postfix) with ESMTP id 608DB4887; Fri, 25 May 2001 16:02:18 -0400 (EDT) Received: from localhost (andy@localhost) by shell.xecu.net (8.8.8+Sun/8.8.8) with ESMTP id QAA05241; Fri, 25 May 2001 16:02:16 -0400 (EDT) X-Authentication-Warning: shell.xecu.net: andy owned process doing -bs Date: Fri, 25 May 2001 16:02:15 -0400 (EDT) From: Andy Dills To: Cc: Subject: Re: Freeside In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 25 May 2001 Bsdguru@aol.com wrote: > Is anyone using this package with FreeBSD? Opinions? Can you bill based on > bandwidth usage with it? I apologize for the lack of sensitivity or content in my post, but am I the only laughing at the email address "bsdguru@aol.com"? Kind of like opensource@microsoft.com....or superslut@whitehouse.gov. The email equivalent to an oxymoron; you gotta love it. Andy xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Andy Dills 301-682-9972 Xecunet, LLC www.xecu.net xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Dialup * Webhosting * E-Commerce * High-Speed Access To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 16:56:28 2001 Delivered-To: freebsd-isp@freebsd.org Received: from dt051n37.san.rr.com (dt051n37.san.rr.com [204.210.32.55]) by hub.freebsd.org (Postfix) with ESMTP id 496AA37B422 for ; Fri, 25 May 2001 16:56:25 -0700 (PDT) (envelope-from DougB@DougBarton.net) Received: from DougBarton.net (master [10.0.0.2]) by dt051n37.san.rr.com (8.9.3/8.9.3) with ESMTP id QAA31161; Fri, 25 May 2001 16:56:22 -0700 (PDT) (envelope-from DougB@DougBarton.net) Message-ID: <3B0EF121.9F267A11@DougBarton.net> Date: Fri, 25 May 2001 16:56:17 -0700 From: Doug Barton Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Jason Terlecki Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Old old version of FreeBSD References: <552BB9A0AF05D411B71C0050DAC27561012ADE1B@LOOKEX.look> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Jason Terlecki wrote: > > Does anyone know where the equivalent of loader.conf and the other > associated components are located on FreeBSD2.0 ? We are stuck with a box > running this (please dont ask or flame, I know... it is SAD) and a collegue > of mine needs that information. We would appreciate any help. Your best bet would be to back up your critical information and install a new 4.3-Release system on that machine, wiping the disk in the process. There really are no allegories to loader.conf on the system you're using. -- I need someone really bad. Are you really bad? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 17:19:55 2001 Delivered-To: freebsd-isp@freebsd.org Received: from dt051n37.san.rr.com (dt051n37.san.rr.com [204.210.32.55]) by hub.freebsd.org (Postfix) with ESMTP id 89D7437B422 for ; Fri, 25 May 2001 17:19:53 -0700 (PDT) (envelope-from DougB@DougBarton.net) Received: from DougBarton.net (master [10.0.0.2]) by dt051n37.san.rr.com (8.9.3/8.9.3) with ESMTP id RAA31290; Fri, 25 May 2001 17:19:51 -0700 (PDT) (envelope-from DougB@DougBarton.net) Message-ID: <3B0EF6A7.A070EFF0@DougBarton.net> Date: Fri, 25 May 2001 17:19:51 -0700 From: Doug Barton Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Andy Dills Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Freeside References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Andy Dills wrote: > superslut@whitehouse.gov. Like we haven't seen plenty of examples of this? :) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 17:46:47 2001 Delivered-To: freebsd-isp@freebsd.org Received: from imo-d08.mx.aol.com (imo-d08.mx.aol.com [205.188.157.40]) by hub.freebsd.org (Postfix) with ESMTP id 2A2FD37B422 for ; Fri, 25 May 2001 17:46:43 -0700 (PDT) (envelope-from Bsdguru@aol.com) Received: from Bsdguru@aol.com by imo-d08.mx.aol.com (mail_out_v30.22.) id e.d7.707fb4e (4416); Fri, 25 May 2001 20:46:37 -0400 (EDT) From: Bsdguru@aol.com Message-ID: Date: Fri, 25 May 2001 20:46:36 EDT Subject: Re: Freeside To: andy@xecu.net Cc: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: AOL 5.0 for Windows sub 138 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org In a message dated 5/25/01 4:02:34 PM Eastern Daylight Time, andy@xecu.net writes: > I apologize for the lack of sensitivity or content in my post, but am I > the only laughing at the email address "bsdguru@aol.com"? > > Kind of like opensource@microsoft.com....or superslut@whitehouse.gov. > > The email equivalent to an oxymoron; you gotta love it. > > Andy > What a snob! Actually, when you get 1000 messages a day, AOL mail is nice, particularly when dialing up, because 1) all the message subjects are available with no download and 2) they dont clutter my disk and 3) if i dont feel like getting messages from a list for awhile I can easily block the domain and I'll never see the messages. With Eudora it took 15 minutes just to get my mail, particularly on weekends. So laugh all you want, Im happy with the setup. Bryan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 19:14:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (dhcp-1-226.n01.orldfl01.us.ra.verio.net [157.238.210.226]) by hub.freebsd.org (Postfix) with ESMTP id 34DF937B424 for ; Fri, 25 May 2001 19:14:36 -0700 (PDT) (envelope-from bill@bilver.wjv.com) Received: (from bill@localhost) by bilver.wjv.com (8.11.1/8.11.1) id f4Q2ESg76244; Fri, 25 May 2001 22:14:28 -0400 (EDT) (envelope-from bill) Date: Fri, 25 May 2001 22:14:28 -0400 From: Bill Vermillion To: Bsdguru@aol.com Cc: andy@xecu.net, freebsd-isp@FreeBSD.ORG Subject: Re: Freeside Message-ID: <20010525221428.C75972@wjv.com> Reply-To: bv@wjv.com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from Bsdguru@aol.com on Fri, May 25, 2001 at 08:46:36PM -0400 Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, May 25, 2001 at 08:46:36PM -0400, Bsdguru@aol.com thus sprach: > In a message dated 5/25/01 4:02:34 PM Eastern Daylight Time, andy@xecu.net > writes: > > I apologize for the lack of sensitivity or content in my > > post, but am I the only laughing at the email address > > "bsdguru@aol.com"? > > > > Kind of like opensource@microsoft.com....or > > superslut@whitehouse.gov. > > The email equivalent to an oxymoron; you gotta love it. > What a snob! > Actually, when you get 1000 messages a day, AOL mail is nice, > particularly when dialing up, because 1) all the message subjects > are available with no download and 2) they dont clutter my disk > and 3) if i dont feel like getting messages from a list for awhile > I can easily block the domain and I'll never see the messages. I normally dont get more than 500 messages day. My BSD machine checks with the a couple of times/hour for mail, twice per hour to get the lastest Usnet news [ I get only the a subset of comp.unix] and I never have to dial anywhere. > With Eudora it took 15 minutes just to get my mail, particularly > on weekends. So laugh all you want, Im happy with the setup. I can be reading mail while my system is getting mail. If you are a BSDguru why aren't you using BSD so you don't have to do things like that. You ARE posting to the freebsd-isp list. -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 25 21:31:20 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [206.29.169.15]) by hub.freebsd.org (Postfix) with ESMTP id 1FDE737B422; Fri, 25 May 2001 21:31:15 -0700 (PDT) (envelope-from tedm@toybox.placo.com) Received: from tedm.placo.com (nat-rtr.freebsd-corp-net-guide.com [206.29.168.154]) by mail.freebsd-corp-net-guide.com (8.11.1/8.11.1) with SMTP id f4Q4VCk84063; Fri, 25 May 2001 21:31:12 -0700 (PDT) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Eric Walters" , , Subject: RE: SNMP Advanced Application Level Gateway on FreeBSD Date: Fri, 25 May 2001 21:31:12 -0700 Message-ID: <001601c0e59c$b1757e20$1401a8c0@tedm.placo.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 In-Reply-To: <000b01c0e51e$b0cfc580$978a13ac@netmon1> Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Another possibility is to place the management station on the customer network then remotely access it via X protocols. Ted Mittelstaedt tedm@toybox.placo.com Author of: The FreeBSD Corporate Networker's Guide Book website: http://www.freebsd-corp-net-guide.com >-----Original Message----- >From: owner-freebsd-questions@FreeBSD.ORG >[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Eric Walters >Sent: Friday, May 25, 2001 6:29 AM >To: freebsd-questions@FreeBSD.ORG; freebsd-isp@FreeBSD.ORG >Subject: SNMP Advanced Application Level Gateway on FreeBSD > > >I am wondering if anyone has come across a good ALG that runs on >FreeBSD? If >so I would love to have some feedback. > >We have approximately 5000 devices that need to be managed via SNMP on a >private (RFC 1918) IP network. The problem is that the NOC already has a >customer using the same RFC1918 addressing so we need to NAT the addresses. >This presents a problem with SNMP packets, in particular changing the IP >address in the payload. RFC2962 describes this problem and the solution is >an "Advanced Application Level Gateway for Payload Address Translation". I >have come accross several NT packages that might do this, but I want >something that will be stable and managable remotely. > >Any recommendations or advice would be appreciated. > >Thanks, > >Eric Õ¿Õ¬ > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 2:11:30 2001 Delivered-To: freebsd-isp@freebsd.org Received: from guru2.netspeed.com.au (mail.netspeed.com.au [203.37.54.4]) by hub.freebsd.org (Postfix) with ESMTP id 63CB037B422 for ; Sat, 26 May 2001 02:11:26 -0700 (PDT) (envelope-from jrwoodward@netspeed.com.au) Received: from [203.22.237.9] by guru2.netspeed.com.au (NTMail 5.06.0016/NU0474.00.03e479e3) with ESMTP id jthbraaa for FreeBSD-isp@FreeBSD.org; Sat, 26 May 2001 19:11:29 +1000 From: "Jamie Woodward" To: Subject: Advice & Assistance - Urgent Date: Sat, 26 May 2001 19:06:44 +1000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Disposition-Notification-To: "Jamie Woodward" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all. I am a small business owner and require assistance with FreeBSD. I have been very impressed with the stability of the product while acting as a router to the internet, which in turn had 9 Windows 98 SE hubbed to it. These PCs were used in my previous business, an internet cafe. This was my first intro to FreeBSD so I had nothing to do with its configuration. Unfortunately my Unix knowledge is limited but I am quickly trying to bring this up to speed. I have a few projects which require internet / network connection. I am seeking assistance with configuration issues and would ask if anyone would be kind enough to email me for help. Your help would be greatly appreciated. Regards, Jamie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 6:28:20 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (dhcp-1-35.n01.orldfl01.us.ra.verio.net [157.238.210.35]) by hub.freebsd.org (Postfix) with ESMTP id B217F37B422 for ; Sat, 26 May 2001 06:28:16 -0700 (PDT) (envelope-from bill@bilver.wjv.com) Received: (from bill@localhost) by bilver.wjv.com (8.11.1/8.11.1) id f4QDS7k82256; Sat, 26 May 2001 09:28:07 -0400 (EDT) (envelope-from bill) Date: Sat, 26 May 2001 09:28:07 -0400 From: Bill Vermillion To: Jamie Woodward Cc: FreeBSD-isp@FreeBSD.ORG Subject: Re: Advice & Assistance - Urgent Message-ID: <20010526092807.F81577@wjv.com> Reply-To: bv@wjv.com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from jrwoodward@netspeed.com.au on Sat, May 26, 2001 at 07:06:44PM +1000 Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, May 26, 2001 at 07:06:44PM +1000, Jamie Woodward thus sprach: > Hello all. I am a small business owner and require assistance > with FreeBSD. I have been very impressed with the stability of > the product while acting as a router to the internet, which in > turn had 9 Windows 98 SE hubbed to it. These PCs were used in my > previous business, an internet cafe. This was my first intro to > FreeBSD so I had nothing to do with its configuration. > Unfortunately my Unix knowledge is limited but I am quickly trying > to bring this up to speed. > I have a few projects which require internet / network connection. > I am seeking assistance with configuration issues and would ask if > anyone would be kind enough to email me for help. Jamie. It really would help if you said exactly what kind of help you need. Then those whose expertise lay in those areas could contact you. Don't take this as a flame or anything but 'email me to find out what my problems are' - which is essentially what is says. You are on the IPS list and I'm sure most would help - just let us know what you want help with. I've found the BSD group to be one of the most helpful in all my years of computer experience. A lot of great talent and very few egos that get in the way. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 8:49:42 2001 Delivered-To: freebsd-isp@freebsd.org Received: from imo-d01.mx.aol.com (imo-d01.mx.aol.com [205.188.157.33]) by hub.freebsd.org (Postfix) with ESMTP id 2D6B237B423 for ; Sat, 26 May 2001 08:49:39 -0700 (PDT) (envelope-from Bsdguru@aol.com) Received: from Bsdguru@aol.com by imo-d01.mx.aol.com (mail_out_v30.22.) id n.9a.14dd3669 (16785); Sat, 26 May 2001 11:47:44 -0400 (EDT) From: Bsdguru@aol.com Message-ID: <9a.14dd3669.28412a1f@aol.com> Date: Sat, 26 May 2001 11:47:43 EDT Subject: Re: Freeside To: bv@wjv.com Cc: isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: AOL 5.0 for Windows sub 139 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org In a message dated 05/25/2001 10:14:42 PM Eastern Daylight Time, bill@wjv.com writes: > I can be reading mail while my system is getting mail. If you > are a BSDguru why aren't you using BSD so you don't have to do > things like that. Because as a desktop solution BSD is inferior. You use the best tool available for the job. If you think that FreeBSD is always the best tool, you are not only not a good engineer but you are a fool. ; Sat, 26 May 2001 09:23:54 -0700 (PDT) (envelope-from ircd@wrath.com) Received: from danrc ([192.168.1.2]) by odin.wrath.net with Microsoft SMTPSVC(5.0.2172.1); Sat, 26 May 2001 12:27:28 -0400 Message-ID: <00fa01c0e600$3aa73900$0201a8c0@fear.wrath.net> From: "Brian" To: Cc: References: <9a.14dd3669.28412a1f@aol.com> Subject: Re: Freeside Date: Sat, 26 May 2001 12:23:42 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 X-OriginalArrivalTime: 26 May 2001 16:27:28.0835 (UTC) FILETIME=[C1924130:01C0E600] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I use FreeBSD for certain things, but not for a desktop. I won't even touch Linux for anything. Perhaps you're better off dumping FreeBSD. If you use Windows 2000 Server in your office, you might want to take a look at Internet Security and Acceleration Server (ISA Server) at http://www.microsoft.com/isaserver/. You can even download a 120 day trial version. It's not the cheaper solution, but I'm willing to bet it's the more simple one. I imagine it'll blow the doors off a unix/linux solution for years to come (you people can argue all you want about Microsoft inferiority). -Brian ----- Original Message ----- From: To: Cc: Sent: Saturday, May 26, 2001 11:47 AM Subject: Re: Freeside > In a message dated 05/25/2001 10:14:42 PM Eastern Daylight Time, bill@wjv.com > writes: > > > I can be reading mail while my system is getting mail. If you > > are a BSDguru why aren't you using BSD so you don't have to do > > things like that. > > Because as a desktop solution BSD is inferior. > > You use the best tool available for the job. If you think that FreeBSD is > always the best tool, you are not only not a good engineer but you are a fool. > > > Are you somehow implying that in order to post to this this I am obligated to > use FreeBSD as my mail client? > > I just asked a question about freeside. I think thats relevant. Dont blame me > because this Andy Dills guy couldnt contain his stupidity and had to make a > public comment about my email address. Im just trying to do my job. > > IF anyone has any relevant info regarding the subject, I'd be happy to hear > it. > > Thanks, > > Bryan > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 9:30:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from c003.snv.cp.net (c003-h000.c003.snv.cp.net [209.228.32.214]) by hub.freebsd.org (Postfix) with SMTP id 2710837B422 for ; Sat, 26 May 2001 09:30:08 -0700 (PDT) (envelope-from ignacioc@avantel.net) Received: (cpmta 5341 invoked from network); 26 May 2001 09:30:06 -0700 Received: from maq-148-245-81-11.interclan.net (HELO nachito) (148.245.81.11) by smtp.avantel.net (209.228.32.214) with SMTP; 26 May 2001 09:30:06 -0700 X-Sent: 26 May 2001 16:30:06 GMT From: "Ignacio Cristerna" To: "Brian" , Cc: Subject: RE: Freeside Date: Sat, 26 May 2001 11:29:09 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <00fa01c0e600$3aa73900$0201a8c0@fear.wrath.net> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Brian Sent: Sábado, 26 de Mayo de 2001 11:24 To: freebsd-isp@freebsd.org Cc: Bsdguru@aol.com Subject: Re: Freeside I use FreeBSD for certain things, but not for a desktop. I won't even touch Linux for anything. Perhaps you're better off dumping FreeBSD. If you use Windows 2000 Server in your office, you might want to take a look at Internet Security and Acceleration Server (ISA Server) at http://www.microsoft.com/isaserver/. You can even download a 120 day trial version. It's not the cheaper solution, but I'm willing to bet it's the more simple one. I imagine it'll blow the doors off a unix/linux solution for years to come (you people can argue all you want about Microsoft inferiority). -Brian ----- Original Message ----- From: To: Cc: Sent: Saturday, May 26, 2001 11:47 AM Subject: Re: Freeside > In a message dated 05/25/2001 10:14:42 PM Eastern Daylight Time, bill@wjv.com > writes: > > > I can be reading mail while my system is getting mail. If you > > are a BSDguru why aren't you using BSD so you don't have to do > > things like that. > > Because as a desktop solution BSD is inferior. > > You use the best tool available for the job. If you think that FreeBSD is > always the best tool, you are not only not a good engineer but you are a fool. > > > Are you somehow implying that in order to post to this this I am obligated to > use FreeBSD as my mail client? > > I just asked a question about freeside. I think thats relevant. Dont blame me > because this Andy Dills guy couldnt contain his stupidity and had to make a > public comment about my email address. Im just trying to do my job. > > IF anyone has any relevant info regarding the subject, I'd be happy to hear > it. > > Thanks, > > Bryan > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 9:44:13 2001 Delivered-To: freebsd-isp@freebsd.org Received: from odin.wrath.net (024man167.chartermi.net [24.213.24.167]) by hub.freebsd.org (Postfix) with ESMTP id A839637B423 for ; Sat, 26 May 2001 09:44:10 -0700 (PDT) (envelope-from ircd@wrath.com) Received: from danrc ([192.168.1.2]) by odin.wrath.net with Microsoft SMTPSVC(5.0.2172.1); Sat, 26 May 2001 12:47:54 -0400 Message-ID: <012e01c0e603$1503e100$0201a8c0@fear.wrath.net> From: "Brian" To: Cc: "Ignacio Cristerna" References: Subject: Re: Freeside Date: Sat, 26 May 2001 12:44:07 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 X-OriginalArrivalTime: 26 May 2001 16:47:54.0167 (UTC) FILETIME=[9BED1470:01C0E603] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org If that wasn't a waste of bandwidth, I don't know what is. Goofy stuff like that should be sent in private so as to not waste these fine people's time and bandwidth. If the amount of bandwidth your given is in direct proportion to your intelligence, then I have a 300baud modem with your name on it. If you're wondering why I sent to the list recommending a Microsoft product, it was so that it would end up in the archives stating that there is another solution besides a cobble job on bsd. (notice that I'm sending to the list to tell other future imbeciles to keep flaming off the list.) -Brian ----- Original Message ----- From: "Ignacio Cristerna" To: "Brian" ; Cc: Sent: Saturday, May 26, 2001 12:29 PM Subject: RE: Freeside > Danger, Will Robinson, it´s a troll!! Danger, Will Robinson, it´s a troll!! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 10: 6:33 2001 Delivered-To: freebsd-isp@freebsd.org Received: from post.xecu.net (post.xecu.net [216.127.136.211]) by hub.freebsd.org (Postfix) with ESMTP id 98CCA37B422 for ; Sat, 26 May 2001 10:06:30 -0700 (PDT) (envelope-from andy@xecu.net) Received: from shell.xecu.net (www.mip.net [216.127.136.221]) by post.xecu.net (Postfix) with ESMTP id E6ED94A49; Sat, 26 May 2001 13:06:19 -0400 (EDT) Received: from localhost (andy@localhost) by shell.xecu.net (8.8.8+Sun/8.8.8) with ESMTP id NAA26347; Sat, 26 May 2001 13:06:17 -0400 (EDT) X-Authentication-Warning: shell.xecu.net: andy owned process doing -bs Date: Sat, 26 May 2001 13:06:17 -0400 (EDT) From: Andy Dills To: Cc: , Subject: Re: Freeside In-Reply-To: <9a.14dd3669.28412a1f@aol.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, 26 May 2001 Bsdguru@aol.com wrote: > Are you somehow implying that in order to post to this this I am obligated to > use FreeBSD as my mail client? > > I just asked a question about freeside. I think thats relevant. Dont blame me > because this Andy Dills guy couldnt contain his stupidity and had to make a > public comment about my email address. Im just trying to do my job. *cough* My stupidity? Tell me again how the bsd guru prefers eudora or aol over pine/mutt and procmail? I mean, give me a break kid. I'm not saying you have to use freebsd as your desktop; I don't, but I have over a hundred servers to run, so I get my fill. But at the same time, can't you suck it up and get a shell account somewhere? Am I the only person who runs Win98, but spends 99% of the time with like eight SecureCRT windows going? You mention that you're just trying to do your job. I'd love to hear this. What IS your job? This whole thing totally cracks me up. I mean, I like Ivan, but Freeside is limited at best. Talk about using the best tool for the job...check out Platypus. Combined with the fact that the question you asked originally could easily have been answered on the web in 30 seconds, and you don't look anything like a guru of any sort. That's why it was funny. FYI, check out ipmeter. That's the only decent open-source bandwidth billing software I've seen, but you still need an accounting backend. Good luck, Senor GURU. Andy xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Andy Dills 301-682-9972 Xecunet, LLC www.xecu.net xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Dialup * Webhosting * E-Commerce * High-Speed Access To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 10:23:10 2001 Delivered-To: freebsd-isp@freebsd.org Received: from imo-m02.mx.aol.com (imo-m02.mx.aol.com [64.12.136.5]) by hub.freebsd.org (Postfix) with ESMTP id 7735537B422 for ; Sat, 26 May 2001 10:23:07 -0700 (PDT) (envelope-from Bsdguru@aol.com) Received: from Bsdguru@aol.com by imo-m02.mx.aol.com (mail_out_v30.22.) id e.10f.4dfb04 (16789); Sat, 26 May 2001 13:23:02 -0400 (EDT) From: Bsdguru@aol.com Message-ID: <10f.4dfb04.28414076@aol.com> Date: Sat, 26 May 2001 13:23:02 EDT Subject: Re: Freeside To: andy@xecu.net Cc: isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: AOL 5.0 for Windows sub 139 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org In a message dated 05/26/2001 1:06:35 PM Eastern Daylight Time, andy@xecu.net writes: > *cough* My stupidity? Tell me again how the bsd guru prefers eudora or aol > over pine/mutt and procmail? I mean, give me a break kid. I use AOL because windows is a more convenient desktop to use at home and I prefer AOL mail over eudora or other semi-functional programs for mailing list mail. Plus my Mom is on AOL and I can talk to her while I scuttle through trying to find one useful piece of info on this list (nothing so far). Got a problem with that Mr. Dill? Bryan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 10:57:28 2001 Delivered-To: freebsd-isp@freebsd.org Received: from anaconda.acceleratedweb.net (anaconda.acceleratedweb.net [209.51.164.130]) by hub.freebsd.org (Postfix) with SMTP id 314A337B422 for ; Sat, 26 May 2001 10:57:26 -0700 (PDT) (envelope-from simon@optinet.com) Received: (qmail 54828 invoked by uid 106); 26 May 2001 17:58:18 -0000 Received: from 66-65-36-21.nyc.rr.com (HELO sharky) (66.65.36.21) by anaconda.acceleratedweb.net with SMTP; 26 May 2001 17:58:18 -0000 From: "Simon" To: "isp@freebsd.org" Date: Sat, 26 May 2001 14:02:05 -0400 Reply-To: "Simon" X-Mailer: PMMail 2000 Professional (2.10.2010) For Windows 2000 (5.0.2195) In-Reply-To: <10f.4dfb04.28414076@aol.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Subject: Re: Freeside Message-Id: <20010526175726.314A337B422@hub.freebsd.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org BSD guru @ AOL, the funniest thing i ever heard. On Sat, 26 May 2001 13:23:02 EDT, Bsdguru@aol.com wrote: >In a message dated 05/26/2001 1:06:35 PM Eastern Daylight Time, andy@xecu.net >writes: > >> *cough* My stupidity? Tell me again how the bsd guru prefers eudora or aol >> over pine/mutt and procmail? I mean, give me a break kid. > >I use AOL because windows is a more convenient desktop to use at home and I >prefer AOL mail over eudora or other semi-functional programs for mailing >list mail. Plus my Mom is on AOL and I can talk to her while I scuttle >through trying to find one useful piece of info on this list (nothing so >far). > >Got a problem with that Mr. Dill? > >Bryan > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 15:44:17 2001 Delivered-To: freebsd-isp@freebsd.org Received: from post.xecu.net (post.xecu.net [216.127.136.211]) by hub.freebsd.org (Postfix) with ESMTP id 1D62637B422 for ; Sat, 26 May 2001 15:44:15 -0700 (PDT) (envelope-from andy@xecu.net) Received: from shell.xecu.net (www.mip.net [216.127.136.221]) by post.xecu.net (Postfix) with ESMTP id E7A1F47A9; Sat, 26 May 2001 18:44:03 -0400 (EDT) Received: from localhost (andy@localhost) by shell.xecu.net (8.8.8+Sun/8.8.8) with ESMTP id SAA02507; Sat, 26 May 2001 18:44:02 -0400 (EDT) X-Authentication-Warning: shell.xecu.net: andy owned process doing -bs Date: Sat, 26 May 2001 18:44:02 -0400 (EDT) From: Andy Dills To: Cc: Subject: Re: Freeside In-Reply-To: <10f.4dfb04.28414076@aol.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, 26 May 2001 Bsdguru@aol.com wrote: > In a message dated 05/26/2001 1:06:35 PM Eastern Daylight Time, andy@xecu.net > writes: > > > *cough* My stupidity? Tell me again how the bsd guru prefers eudora or aol > > over pine/mutt and procmail? I mean, give me a break kid. > > I use AOL because windows is a more convenient desktop to use at home and I > prefer AOL mail over eudora or other semi-functional programs for mailing > list mail. Plus my Mom is on AOL and I can talk to her while I scuttle > through trying to find one useful piece of info on this list (nothing so > far). This is tangential, but you do realize AIM works with AOL users, even if you don't subscribe to AOL? I'm on AIM all the time...and I talk to my parents, who use AOL (via TCP/IP, dialed up to Xecunet) all the time. Plus, you still aren't telling me how using windows for a desktop locks you into using AOL...it's fine that you prefer AOL mail, it's just that most unix gurus prefer the flexibility of procmail, and have been reading email for so many years that pine/elm/mutt are preffered, just because that's what they have been using for the last six or seven years (at least). > Got a problem with that Mr. Dill? I think you misunderstand; I think your email address is hilarious. I have no problem you, the person, Mr. BSDGuru. Just your hideously funny email address. Although, I do question your degree of guruness. Anybody can call themselves a guru; the thing is, the real gurus usually don't. Comprennez-vous? Andy xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Andy Dills 301-682-9972 Xecunet, LLC www.xecu.net xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Dialup * Webhosting * E-Commerce * High-Speed Access To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 17:10:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from inu.net (mail.inu.net [63.151.4.24]) by hub.freebsd.org (Postfix) with ESMTP id 7977037B423 for ; Sat, 26 May 2001 17:10:30 -0700 (PDT) (envelope-from bob@buckhorn.net) Received: from buckhorn.net [63.151.3.239] by inu.net with ESMTP (SMTPD32-5.05) id A5F379701B6; Sat, 26 May 2001 19:10:27 -0500 Message-ID: <3B104586.A643F9A9@buckhorn.net> Date: Sat, 26 May 2001 19:08:38 -0500 From: Bob Martin Reply-To: bob@inu.net X-Mailer: Mozilla 4.73 [en] (X11; U; FreeBSD 4.2-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: Bsdguru@aol.com Cc: freebsd-isp@freebsd.org Subject: Re: Freeside References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Bsdguru@aol.com wrote: > > Is anyone using this package with FreeBSD? Opinions? Can you bill based on > bandwidth usage with it? > > Bryan Bryan, Freeside is decent software, and will work fine under FreeBSD. It's all in what you want to do. I have set it up for a few small ISP's that I remote admin. If you want a really serious billing package, the best bang for your buck is Platypus ( http://www.boardtown.com ) They also have a new customer care package thats really good. If you're looking for software to bill for bandwidth usage, IPMeter is the hands down winner. ( http://www.IP23.com ) I will warn you that it can be tricky to set up. I know that you've gotten a bad time about your e-mail address from this list. Don't take it seriously. While I'll admit to getting a chuckle from it, but I mean nothing by that. It's a free country after all. I would point out to you that you asked a question about billing software, and one of your detractors suggested proxy software as a solution. How serious can he be? If you will give me a better idea of what you need to bill, and how many, I can give you better pointers on the software. -- Bob Martin, CTO InterNet Unlimited http://www.inu.net mailto:bob@inu.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 18:41: 1 2001 Delivered-To: freebsd-isp@freebsd.org Received: from horizon.island.net.au (gen24081-1.gw.connect.com.au [203.63.133.130]) by hub.freebsd.org (Postfix) with ESMTP id 761EC37B424 for ; Sat, 26 May 2001 18:40:50 -0700 (PDT) (envelope-from hugh@island.net.au) Received: from r2d2 (rc.island.net.au [203.28.142.167]) by horizon.island.net.au (8.9.3/8.9.3) with SMTP id LAA21076; Sun, 27 May 2001 11:40:41 +1000 (EST) Message-ID: <005201c0e64d$0c068cc0$0bdea8c0@island.net.au> From: "Hugh Blandford" To: Cc: References: <3B104586.A643F9A9@buckhorn.net> Subject: Re: Freeside Date: Sun, 27 May 2001 11:33:35 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.3018.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all, email addresses aside. Has anyone looked at Optigold ISP from Digital Point Solutions as an alternative over Platypus? I would be interested in comments. http://www.digitalpoint.com/products/isp/ Thanks, Hugh ----- Original Message ----- From: "Bob Martin" To: Cc: Sent: Sunday, May 27, 2001 10:08 AM Subject: Re: Freeside > Bsdguru@aol.com wrote: > > > > Is anyone using this package with FreeBSD? Opinions? Can you bill based on > > bandwidth usage with it? > > > > Bryan > Bryan, > Freeside is decent software, and will work fine under FreeBSD. It's all > in what you want to do. I have set it up for a few small ISP's that I > remote admin. If you want a really serious billing package, the best > bang for your buck is Platypus ( http://www.boardtown.com ) They also > have a new customer care package thats really good. > > If you're looking for software to bill for bandwidth usage, IPMeter is > the hands down winner. ( http://www.IP23.com ) I will warn you that it > can be tricky to set up. > > I know that you've gotten a bad time about your e-mail address from this > list. Don't take it seriously. While I'll admit to getting a chuckle > from it, but I mean nothing by that. It's a free country after all. I > would point out to you that you asked a question about billing software, > and one of your detractors suggested proxy software as a solution. How > serious can he be? > > If you will give me a better idea of what you need to bill, and how > many, I can give you better pointers on the software. > -- > Bob Martin, CTO > InterNet Unlimited > http://www.inu.net > mailto:bob@inu.net > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 19:23:38 2001 Delivered-To: freebsd-isp@freebsd.org Received: from inu.net (mail.inu.net [63.151.4.24]) by hub.freebsd.org (Postfix) with ESMTP id C16B237B422 for ; Sat, 26 May 2001 19:23:35 -0700 (PDT) (envelope-from bob@buckhorn.net) Received: from buckhorn.net [63.151.3.239] by inu.net with ESMTP (SMTPD32-5.05) id A52572B01BA; Sat, 26 May 2001 21:23:33 -0500 Message-ID: <3B1064B8.F702F5CD@buckhorn.net> Date: Sat, 26 May 2001 21:21:44 -0500 From: Bob Martin Reply-To: bob@inu.net X-Mailer: Mozilla 4.73 [en] (X11; U; FreeBSD 4.2-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Re: Freeside References: <3B104586.A643F9A9@buckhorn.net> <005201c0e64d$0c068cc0$0bdea8c0@island.net.au> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hugh Blandford wrote: > > Hi all, > > email addresses aside. Has anyone looked at Optigold ISP from Digital Point > Solutions as an alternative over Platypus? I would be interested in > comments. > > http://www.digitalpoint.com/products/isp/ > > Thanks, > > Hugh I cringe at the thought of it. It's awful. It won't scale, the database is very easily corrupted, it lacks flexibility, and the support is nearly useless. I'll spare the list my unsolicited testimonial and just say that Platypus justifies the NT boxen on my network. -- Bob Martin, CTO InterNet Unlimited http://www.inu.net mailto:bob@inu.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 20:15:18 2001 Delivered-To: freebsd-isp@freebsd.org Received: from salmon.hei.net (salmon.hei.net [209.222.163.130]) by hub.freebsd.org (Postfix) with SMTP id 5924A37B422 for ; Sat, 26 May 2001 20:15:09 -0700 (PDT) (envelope-from john@hei.net) Received: (qmail 24870 invoked from network); 27 May 2001 03:15:07 -0000 Received: from trout.hei.net (HELO trout) (209.222.163.131) by salmon.hei.net with SMTP; 27 May 2001 03:15:07 -0000 Message-ID: <000d01c0e65b$c78d1be0$83a3ded1@hei.net> From: "John Hengstler" To: "Hugh Blandford" Cc: References: <3B104586.A643F9A9@buckhorn.net> <005201c0e64d$0c068cc0$0bdea8c0@island.net.au> Subject: Re: Freeside Date: Sat, 26 May 2001 20:19:02 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Our company has been using Optigold for a year or so. Wanted to use Freeside a while back, but was too complicated at the time to set up. Optigold has worked flawlessly since we started using it. It has a free 100 user key. After that you have to pay... Good Luck. John Hengstler HEI Communications ----- Original Message ----- From: "Hugh Blandford" To: Cc: Sent: Saturday, May 26, 2001 6:33 PM Subject: Re: Freeside > Hi all, > > email addresses aside. Has anyone looked at Optigold ISP from Digital Point > Solutions as an alternative over Platypus? I would be interested in > comments. > > http://www.digitalpoint.com/products/isp/ > > Thanks, > > Hugh > > ----- Original Message ----- > From: "Bob Martin" > To: > Cc: > Sent: Sunday, May 27, 2001 10:08 AM > Subject: Re: Freeside > > > > Bsdguru@aol.com wrote: > > > > > > Is anyone using this package with FreeBSD? Opinions? Can you bill based > on > > > bandwidth usage with it? > > > > > > Bryan > > Bryan, > > Freeside is decent software, and will work fine under FreeBSD. It's all > > in what you want to do. I have set it up for a few small ISP's that I > > remote admin. If you want a really serious billing package, the best > > bang for your buck is Platypus ( http://www.boardtown.com ) They also > > have a new customer care package thats really good. > > > > If you're looking for software to bill for bandwidth usage, IPMeter is > > the hands down winner. ( http://www.IP23.com ) I will warn you that it > > can be tricky to set up. > > > > I know that you've gotten a bad time about your e-mail address from this > > list. Don't take it seriously. While I'll admit to getting a chuckle > > from it, but I mean nothing by that. It's a free country after all. I > > would point out to you that you asked a question about billing software, > > and one of your detractors suggested proxy software as a solution. How > > serious can he be? > > > > If you will give me a better idea of what you need to bill, and how > > many, I can give you better pointers on the software. > > -- > > Bob Martin, CTO > > InterNet Unlimited > > http://www.inu.net > > mailto:bob@inu.net > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 20:17:21 2001 Delivered-To: freebsd-isp@freebsd.org Received: from salmon.hei.net (salmon.hei.net [209.222.163.130]) by hub.freebsd.org (Postfix) with SMTP id 001B937B423 for ; Sat, 26 May 2001 20:17:17 -0700 (PDT) (envelope-from john@hei.net) Received: (qmail 24882 invoked from network); 27 May 2001 03:17:17 -0000 Received: from trout.hei.net (HELO trout) (209.222.163.131) by salmon.hei.net with SMTP; 27 May 2001 03:17:17 -0000 Message-ID: <001601c0e65c$14adfb60$83a3ded1@hei.net> From: "John Hengstler" To: Cc: References: <3B104586.A643F9A9@buckhorn.net> <005201c0e64d$0c068cc0$0bdea8c0@island.net.au> <3B1064B8.F702F5CD@buckhorn.net> Subject: Re: Freeside Date: Sat, 26 May 2001 20:21:12 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org It does have its downsides namely the items you mentioned. I will be relooking at Freeside again, as most of our network uses Mysql as our backend. Optigold is NOT scalable in that fashion! John Hengstler HEI Communications ----- Original Message ----- From: "Bob Martin" To: Sent: Saturday, May 26, 2001 7:21 PM Subject: Re: Freeside > Hugh Blandford wrote: > > > > Hi all, > > > > email addresses aside. Has anyone looked at Optigold ISP from Digital Point > > Solutions as an alternative over Platypus? I would be interested in > > comments. > > > > http://www.digitalpoint.com/products/isp/ > > > > Thanks, > > > > Hugh > I cringe at the thought of it. It's awful. It won't scale, the database > is very easily corrupted, it lacks flexibility, and the support is > nearly useless. > > I'll spare the list my unsolicited testimonial and just say that > Platypus justifies the NT boxen on my network. > -- > Bob Martin, CTO > InterNet Unlimited > http://www.inu.net > mailto:bob@inu.net > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 20:46:55 2001 Delivered-To: freebsd-isp@freebsd.org Received: from intratec.com.mx (intratec.com.mx [200.33.246.239]) by hub.freebsd.org (Postfix) with ESMTP id 4125837B423 for ; Sat, 26 May 2001 20:46:53 -0700 (PDT) (envelope-from jbiquez@icsmx.com) Received: from mipc.intranet.com.mx (200.33.246.96) by intratec.com.mx with ESMTP (Eudora Internet Mail Server 3.0.2) for ; Sat, 26 May 2001 22:47:37 -0600 Message-Id: <5.0.2.1.2.20010526221708.02912720@icsmx.com> X-Sender: jbiquez@icsmx.com X-Mailer: QUALCOMM Windows Eudora Version 5.0.2 Date: Sat, 26 May 2001 22:45:40 -0500 To: freebsd-isp@freebsd.org From: Jorge Biquez Subject: Advice on ISP services Please. In-Reply-To: <000d01c0e65b$c78d1be0$83a3ded1@hei.net> References: <3B104586.A643F9A9@buckhorn.net> <005201c0e64d$0c068cc0$0bdea8c0@island.net.au> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all. I used Freebsd 3.2 for more than a year for publishing personal web pages of friends and mine. I upgraded to 4.2 this week and my 2 servers are working very good. Since nobody else has access to my machine I haven't implemented "normal" things for ISP services I'm running only apache with some CGIs and thats all. I have a friend that sell web hosting on an NT machine that shares with about 200 clients. One site of one client was hacked last week and lot of clients are cancelling their services since they are afraid they have problems also. My friend asked me to change his NT machine for Freebsd since he know I have been doing it for a while. I was wondering if any of you would like to point me to the correct place to implement the following. I do not want that you solved me my problem but that give me some hints on what to study and maybe mistakes I should avoid. I'd like to learn myself. - How to restrict the access of FTP to only the specified directory of the user. And that they can not see other users directories. - How to implement quotas with FTP so users only can have a limit on space. - How to avoid users have access to telnet services. - How to avoid that a script of a user can consume lot of resources and could crash the machine. Mail servers are run on other machine as well as DNS. What other important points am I missing? Thanks in advance for all your help. JB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 26 22:43:57 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 30FAD37B422 for ; Sat, 26 May 2001 22:43:53 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id XAA12320; Sat, 26 May 2001 23:26:47 -0600 (MDT) Date: Sat, 26 May 2001 23:26:46 -0600 (MDT) From: "Forrest W. Christian" To: Jorge Biquez Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Advice on ISP services Please. In-Reply-To: <5.0.2.1.2.20010526221708.02912720@icsmx.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, 26 May 2001, Jorge Biquez wrote: > - How to restrict the access of FTP to only the specified directory of the > user. And that they can not see other users directories. List the user in /etc/ftpchroot (see man ftpd) > - How to implement quotas with FTP so users only can have a limit on space. Just use standard freebsd quotas. man quota, quotaon, edquota, etc. etc., plus configuration options in /etc/rc.conf (as described in /etc/defaults/rc.conf) > - How to avoid users have access to telnet services. Set shell as something listed in /etc/shells but not a valid shell. I believe /usr/bin/true is commonly used for this.... (You may have to edit /etc/shells) > - How to avoid that a script of a user can consume lot of resources and > could crash the machine. Avoid scripts altogether, OR, do something else. Scripts are a pain. You essentially bypass almost all of your security if you permit user-provided scripts. There isn't a really good way to handle them. If this is a must, then look at the apache stuff to set the uid running the script to the user. A script can still look at about everything on the machine. You may want to force user directories to be owned by the same group as the web server runs as, and set the permissions on directories to 770. Have the users in a different group. That way, only the web server and the user can read the directory. Did I mention scripts are a pain? - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message