From owner-freebsd-isp Sun Nov 17 12:33:50 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F3F6937B401 for ; Sun, 17 Nov 2002 12:33:49 -0800 (PST) Received: from swisseasy.net (dns1.swisseasy.net [195.134.144.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8401443E97 for ; Sun, 17 Nov 2002 12:33:48 -0800 (PST) (envelope-from arie@gerszt.ch) Received: (qmail 8740 invoked from network); 17 Nov 2002 19:48:35 -0000 Received: from unknown (HELO mobile1) (212.41.67.112) by mail.swisseasy.net with SMTP; 17 Nov 2002 19:48:35 -0000 From: "Arie J. Gerszt" To: Subject: ipfilter & webserver Date: Sun, 17 Nov 2002 21:32:42 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hi everybody i am looking for a sample configuration for ipfilter running on a web, ssh, ftp server. the server should be fairly open. i'd like to limit the connection in- bound into ssh and filter some icmp types (which one are suggested?) the machine itself is a webserver, therefor http and ftp should be completely open, aswell as smtp, pop3 and imap4. further on i'd like to open some specific ports, such as 8080 for other web services. thank you for any help or resources pointed, regards arie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 0:42:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 516CE37B494 for ; Mon, 18 Nov 2002 00:42:54 -0800 (PST) Received: from cexchange.plus.com (proxy.net24.pl [62.233.166.27]) by mx1.FreeBSD.org (Postfix) with SMTP id C72DD43E4A for ; Mon, 18 Nov 2002 00:42:29 -0800 (PST) (envelope-from dhhu37554382@pager.icq.com) Received: from unknown (149.89.93.47) by rly-xr02.mx.aol.com with NNFMP; Nov, 18 2002 3:37:24 AM -0300 Received: from 55.92.178.196 ([55.92.178.196]) by smtp-server1.cfl.rr.com with QMQP; Nov, 18 2002 2:33:32 AM +1100 Received: from a231242.upc-a.chello.nl ([96.216.72.224]) by m10.grp.snv.yahoo.com with NNFMP; Nov, 18 2002 1:37:30 AM +0700 Received: from [195.98.27.144] by web13708.mail.yahoo.com with smtp; Nov, 18 2002 12:18:30 AM -0700 From: tqujMyra Hutchins Brown To: Barbara@FreeBSD.ORG, Rae@FreeBSD.ORG Cc: Subject: Do you have a good clean list of email addresses? Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Date: Mon, 18 Nov 2002 03:42:57 -0500 X-Mailer: QUALCOMM Windows Eudora Version 5.1 Message-Id: <20021118084229.C72DD43E4A@mx1.FreeBSD.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org 400 MILLION Email Addresses in a 3 volume, 5-disk set ** Complete package only $139!! ** Reach categories Like: Business Opportunity seekers, MLM, Gambling, Adult, Auctions, Golf, Auto, Fitness Health, Investments, Sports, Phsychics, Opt-in Etc.. * ALSO FEATURING OVER 25 MILLION VERIFIED AOL, COMPUSERVE & MCI ADDRESSES * MILLIONS OF RANDOM DOMAINS ORGANIZED BY DOMAIN NAME. * NEW * 7 Million Chinese speaking persons' email addresses. ** NEW ** EMAIL GOLD CD - 100 Million FRESHLY EXTRACTED EMAIL ADDRESSES The whole cd package is in TEXT file format and fully exportable to any software. You'll enjoy more responses than with any other advertising media! HOW THIS DIRECTORY WAS COMPILED: * Virtually every other email directory on the Internet was taken and put it through an extensive email verification process thus eliminating all the dead addressess. * Special software spiders through the web searching websites, newsgroups and many other online databases with given keywords like area codes, industries, city names etc.. to find millions of fresh new addresses every week. TURN YOUR PC INTO A CASH MACHINE! E-Mail turns your computer into a Money Machine by giving you FREE, immediate access to over 400 Million People. Don't you think some of these people would be interested in your products or Services? MUCH FASTER: With bulk E-mail you get responses back in 1 to 4 days instead of waiting weeks or months! You can begin filling orders the same day you send E-mail. FREE ADVERTISING WORTH MILLIONS: It costs millions of dollars to mail. DO NOT REPLY TO THIS EMAIL ADDRESS. TO ORDER, READ BELOW: ORDER BY FAX Simply complete the order form below and fax it back to 1-630-604-1030 Make sure that we have your email address so that we can send you a receipt for your transaction. ORDER BY MAIL: Print the form below and send it together with a money order payable to FT International for the balance to: 408-5863 Leslie St. Toronto, ON M2H-1J8 CANADA Please DO NOT send POSTAL Money Orders. FAX THIS ORDER FORM BACK TO 1-630-604-1030 or 1-443-659-0730 Please PRINT or TYPE clearly Full Name:________________________________________________ Company Name:_____________________________________________ Telephone:________________________________________________ Fax:______________________________________________________ Email Address:__________________________________________* REQUIRED FIELD Shipping Address:______________________________________________ City:____________________ State/Province:________________ Country:_________________________ZIP/Postal:_____________ Shipping Options: [] $7 Regular Mail (2 - 4 weeks) [] $15 Priority Mail (1 - 2 weeks) [] $30 Fedex (overnight) For US & Canada Only - Other countries extra, please enquire by phone or email Product: (All prices are in US funds) [] Email Marketing CDROM with 100 million Addresses $69.00 [] 200 MILLION EMAIL ADDRESSES on 2 CD's $79.00 [] 1.5 Million USA Business Fax Numbers $49.00 [] COMBO PACKAGE "A" - ALL DIRECTORIES ABOVE (3 CDs) $99.00 [] Email Gold CD FRESHLY EXTRACTED 100 Million Addresses $99.00 [] 7 Million Chinese Email Addresses $99.00 [] COMBO PACKAGE "B" - ALL DIRECTORIES ABOVE (5 CDs) $139.00 TOTAL: $_________ US Funds ================================================================================ [] Paypal Order Please enter your email address for us to request payment from:______________________________________________ (after faxing in your order you will receive an email requesting you to pay) ================================================================================ [] Credit Card Order Card #:___________________________________________________ Expiry Date: ______________ Type of Card [] VISA [] MASTERCARD [] AMERICAN EXPRESS Name on Card:_____________________________________________ Billing Address:_________________________________ZIP/Postal: ____________ City:_____________________State/Province:_______________ Country:_____________ Last 3 digits on reverse of card next to signature: [ ___ - ___ - ___ ] Cardholder Signature:______________________________________ Please note that FT International will appear on your statement. ================================================================================ Please feel free to call us at 1-416-410-2136 for any questions or to order by phone. Note that the new Email Gold Cd cannot be ordered by phone yet. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 1:45:37 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C84B237B401 for ; Mon, 18 Nov 2002 01:45:36 -0800 (PST) Received: from rivendell.unixhosts.net (rivendell.unixhosts.net [150.101.60.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id CC59943E42 for ; Mon, 18 Nov 2002 01:45:35 -0800 (PST) (envelope-from greg@hurrell.cc) Received: from hurrell.cc (dsl-202-45-118-235.SA.netspace.net.au [202.45.118.235]) (AUTH: LOGIN greg@hurrell.cc) by rivendell.unixhosts.net with esmtp; Mon, 18 Nov 2002 20:15:28 +1030 Date: Mon, 18 Nov 2002 20:15:28 +1030 Subject: OT: SPAM being sent to this list Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v548) From: Greg Hurrell To: freebsd-isp@FreeBSD.ORG Content-Transfer-Encoding: 7bit In-Reply-To: <20021118084229.C72DD43E4A@mx1.FreeBSD.org> Message-Id: <784C5660-FADA-11D6-A5C0-000393BC25EC@hurrell.cc> X-Mailer: Apple Mail (2.548) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is probably OT, but I notice some SPAM is getting through to this list and it's quite annoying... at least, I believe it's coming from this list because I am getting junk mail with a Return-Path header of "owner-freebsd-isp@FreeBSD.ORG". Is there any *good* reason why this list isn't set up to accept postings only from subscribers? Regards Greg To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 2:33:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 35CB237B401 for ; Mon, 18 Nov 2002 02:33:52 -0800 (PST) Received: from mgw1-out.MEIway.com (mgw1.meiway.com [212.73.210.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id DC7CC43E8A for ; Mon, 18 Nov 2002 02:33:50 -0800 (PST) (envelope-from LConrad@Go2France.com) Received: from VirusGate.MEIway.com (virus-gate.meiway.com [212.73.210.91]) by mgw1-out.MEIway.com (Postfix Relay Hub) with ESMTP id 846F3EF901 for ; Mon, 18 Nov 2002 11:10:03 +0100 (CET) Received: from localhost (localhost.meiway.com [127.0.0.1]) by VirusGate.MEIway.com (Postfix) with SMTP id 37F9D5D008 for ; Mon, 18 Nov 2002 11:41:05 +0100 (CET) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by VirusGate.MEIway.com (Postfix) with ESMTP id D6B3F5D00B for ; Mon, 18 Nov 2002 11:41:04 +0100 (CET) Received: from tx0-go2france-c.Go2France.com [32.106.53.157] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A46637F001C0; Mon, 18 Nov 2002 11:43:50 +0100 Message-Id: <5.1.1.6.2.20021118103118.04a27d08@mail.go2france.com> X-Sender: LConrad@Go2France.com@mail.go2france.com X-Mailer: QUALCOMM Windows Eudora Version 5.1.1 Date: Mon, 18 Nov 2002 10:33:25 +0000 To: Freebsd-isp@freebsd.org From: Len Conrad Subject: Re: OT: SPAM being sent to this list In-Reply-To: <784C5660-FADA-11D6-A5C0-000393BC25EC@hurrell.cc> References: <20021118084229.C72DD43E4A@mx1.FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Is there any *good* reason why this list isn't set up to accept postings >only from subscribers? As you know, I can send spam to this list as MAIL FROM: ... and it will get posted. and then you will be banned from the list! :)) subscriber-only posting provides some but not complete anti-spam defense. Len To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 4:50:20 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C46737B401 for ; Mon, 18 Nov 2002 04:50:19 -0800 (PST) Received: from ene.asda.gr (host98.syzefxis.gov.gr [212.205.107.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id 45ECF43E4A for ; Mon, 18 Nov 2002 04:50:17 -0800 (PST) (envelope-from lefty@ene.asda.gr) Received: from ene.asda.gr (lefty.ene.asda.gr [193.92.118.162]) by ene.asda.gr (Postfix) with ESMTP id B1ABD3FEB; Mon, 18 Nov 2002 14:50:12 +0200 (EET) Message-ID: <3DD8E20B.BD923F7A@ene.asda.gr> Date: Mon, 18 Nov 2002 14:50:19 +0200 From: Lefteris Tsintjelis Organization: ASDA X-Mailer: Mozilla 4.8 [en] (Windows NT 5.0; U) X-Accept-Language: en,el MIME-Version: 1.0 To: Len Conrad Cc: freebsd-isp@FreeBSD.ORG Subject: Spam and IMgate References: <20021107210252.GA46812@users.munk.nu> <5.1.1.6.2.20021107215857.0261fc98@mail.go2france.com> Content-Type: text/plain; charset=iso-8859-7 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, Just wanted to say a BIG THANK YOU Len. You have no idea (actually you probably do :) of what you have saved our network from!!! I have been looking for a reliable spam free solution for some time now. PS: Which book you prefer? ;) Best Regards, Lefteris Tsintjelis To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 12:24:27 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 139FC37B401 for ; Mon, 18 Nov 2002 12:24:26 -0800 (PST) Received: from blue.gerhardt-it.com (gw.gerhardt-it.com [204.83.38.103]) by mx1.FreeBSD.org (Postfix) with ESMTP id 73D1743E42 for ; Mon, 18 Nov 2002 12:24:25 -0800 (PST) (envelope-from scott@g-it.ca) Received: from [192.168.100.110] (gw.gerhardt-it.com [204.83.38.103]) by blue.gerhardt-it.com (Postfix) with ESMTP id B3A7C15215 for ; Mon, 18 Nov 2002 14:24:18 -0600 (CST) User-Agent: Microsoft-Entourage/10.1.0.2006 Date: Mon, 18 Nov 2002 14:24:11 -0600 Subject: Traffic Analysis From: Scott Gerhardt To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I would like to monitor gateway traffic mostly for bandwidth accounting. Are there any good utilities to parse tcpdump output? I just want to parse hosts, protocol and byte counts. How would this be accomplished with tcpdump? I'm finding the tcpdump man page a little difficult to understand in this regard. What other options/utilities are available? Thanks, -- Scott Gerhardt, P.Geo. Gerhardt Information Technologies [G-IT] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 13:48:10 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 86A2637B401 for ; Mon, 18 Nov 2002 13:48:09 -0800 (PST) Received: from blue.centerone.com (blue.centerone.com [204.133.183.111]) by mx1.FreeBSD.org (Postfix) with ESMTP id EF11943E91 for ; Mon, 18 Nov 2002 13:48:08 -0800 (PST) (envelope-from rf-list@centerone.com) Received: from localhost (rf-list@localhost) by blue.centerone.com (8.9.3/8.9.3) with ESMTP id PAA06872 for ; Mon, 18 Nov 2002 15:07:17 -0700 Date: Mon, 18 Nov 2002 15:07:17 -0700 (MST) From: Ralph Forsythe To: freebsd-isp@FreeBSD.ORG Subject: Central source/compile? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This isn't so much freebsd-isp related except that these systems are all in an ISP environment, but anyway... The scenario is, I have a number of FreeBSD machines - they are all kept up on the same levels of code, however patching them all one at a time is a pain in the arse, especially since some are recycled slower machines that do their BSD tasks quite well - except for compiling the world. I know I could just have my source tree update daily via daily.local on a box, and probably share that somehow. What I'd like to do however, is have it compile on that box - and compile only once. Then be able to "make installworld" from any other machine somehow, or be able to transfer those binaries over in such a way that I can drop to single user mode (gotta love out of band console access!) and install them that way. Any ideas? This would greatly simplify my life in keeping everything patched. All of my boxes run the same kernels and base OS, with various ports and packages installed on top for whatever the box does (hooray standardization!), so having a central up-to-date code store I could install from would be a godsend in terms of patching ability. Help, please! Thanks, -rf To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 14:30:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2A4D937B401 for ; Mon, 18 Nov 2002 14:30:52 -0800 (PST) Received: from hardtime.linuxman.net (hardtime.linuxman.net [66.147.26.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12A2A43E88 for ; Mon, 18 Nov 2002 14:30:51 -0800 (PST) (envelope-from fullermd@over-yonder.net) Received: from mortis.over-yonder.net (localhost [127.0.0.1]) by hardtime.linuxman.net (8.11.6/8.11.6) with ESMTP id gAJ0gik28491; Mon, 18 Nov 2002 18:42:45 -0600 Received: by mortis.over-yonder.net (Postfix, from userid 100) id 317381F28; Mon, 18 Nov 2002 16:30:40 -0600 (CST) Date: Mon, 18 Nov 2002 16:30:39 -0600 From: "Matthew D. Fuller" To: Ralph Forsythe Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Central source/compile? Message-ID: <20021118223039.GE72268@over-yonder.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4i-fullermd.1 X-Editor: vi X-OS: FreeBSD Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, Nov 18, 2002 at 03:07:17PM -0700 I heard the voice of Ralph Forsythe, and lo! it spake thus: > > The scenario is, I have a number of FreeBSD machines - they are all kept > up on the same levels of code, however patching them all one at a time is > a pain in the arse, especially since some are recycled slower machines > that do their BSD tasks quite well - except for compiling the world. I shared world-building for years (often doing it on my workstation, since it often out-CPU'd the servers ;). I did it on 2.2.x, 3.x, and 4.x, without ever really hitting any problems; just do the build in one place, then NFS-export /usr/src and /usr/obj. -- Matthew Fuller (MF4839) | fullermd@over-yonder.net Systems/Network Administrator | http://www.over-yonder.net/~fullermd/ "The only reason I'm burning my candle at both ends, is because I haven't figured out how to light the middle yet" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 14:44: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D5F9E37B401 for ; Mon, 18 Nov 2002 14:44:04 -0800 (PST) Received: from skyweb.ca (smtp-1.vancouver.ipapp.com [216.152.192.207]) by mx1.FreeBSD.org (Postfix) with ESMTP id 535C343E77 for ; Mon, 18 Nov 2002 14:44:04 -0800 (PST) (envelope-from mjohnston@skyweb.ca) Received: from mjohnston ([209.5.243.50]) by smtp-1.vancouver.ipapp.com ; Mon, 18 Nov 2002 12:42:20 -0800 From: "Mark Johnston" To: "'Scott Gerhardt'" Cc: Subject: RE: Traffic Analysis Date: Mon, 18 Nov 2002 14:45:49 -0600 Message-ID: <00f401c28f43$7a51d7c0$490fa8c0@MJOHNSTON> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > Scott Gerhardt wrote: > > I would like to monitor gateway traffic mostly for bandwidth > accounting. > > Are there any good utilities to parse tcpdump output? > > I just want to parse hosts, protocol and byte counts. How > would this be > accomplished with tcpdump? I'm finding the tcpdump man page a little > difficult to understand in this regard. > > What other options/utilities are available? > [snipped] I expect parsing tcpdump output long-term would be a study in unpleasantness - I've done it and it has been. The easiest way to find the data is probably to add the appropriate ipfw rules and pull the numbers from ipfw show. For instance: count ip from 192.168.1.1 to any count ip from any to 192.168.1.1 count ip from 192.168.1.2 to any count ip from any to 192.168.1.2 count tcp from 192.168.1.0/24 to any port 80 I'm sure you get the idea. For reference, ipfw show's output looks like: 00400 85621 7962473 allow ip from x.x.x.x to me 00500 2232 164352 allow tcp from x.x.x.x to me 22 00600 245 18900 allow tcp from x.x.x.x to me 22,80,443 The first column is the rule number, second is a packet count and third is a byte count. The difference between a 'count' and an 'allow' rule is that 'count' will continue processing, so a packet can be counted multiple times (for instance, as a packet to 192.168.1.2 and a packet on port 80) and 'allow' will pass the packet through the firewall and stop processing. IPA (http://www.simon.org.ua/ipa/ or ports/sysutils/ipa) is a package that does IP accounting with this process, AFAIK, so it might save you some scripting. I haven't used IPA myself, but I've heard good things about it. Good luck, Mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 15:10:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D955B37B404 for ; Mon, 18 Nov 2002 15:10:39 -0800 (PST) Received: from mail.yazzy.org (mail.yazzy.org [80.232.16.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3CA1B43E6E for ; Mon, 18 Nov 2002 15:10:39 -0800 (PST) (envelope-from yazzy@yazzy.org) Received: by mail.yazzy.org (Postfix, from userid 1001) id 92C1ED54E; Tue, 19 Nov 2002 00:10:31 +0100 (CET) Date: Tue, 19 Nov 2002 00:10:31 +0100 From: "Marcin M. Jessa" To: freebsd-isp@freebsd.org Subject: Dynamic DNS Server Message-ID: <20021118231031.GA74664@yazzy.org> Reply-To: Marcin Jessa Mail-Followup-To: freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: ezUnix.org X-Operating-System: FreeBSD 4.7-RELEASE i386 12:05AM up 1 day, 7:41, 3 users, load averages: 0.38, 0.50, 0.48 X-Editor: Vim http://www.vim.org/ X-Mailer: Mutt http://www.mutt.org/ X-Info: http://www.ezunix.org/ User-Agent: Mutt/1.5.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi guys. I would like to set up a dynamic dns server. Do you know of any? The perfect sollution would be to make it to authenticate users from a LDAP server but this it not nessesary. I'd also need windows and bsd/linux dyndns client apps that could talk to my server as well. Thanks in advance. YazzY To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 15:17:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 442E937B401 for ; Mon, 18 Nov 2002 15:17:57 -0800 (PST) Received: from mgw1-out.MEIway.com (mgw1.meiway.com [212.73.210.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0A47043E8A for ; Mon, 18 Nov 2002 15:17:56 -0800 (PST) (envelope-from LConrad@Go2France.com) Received: from VirusGate.MEIway.com (virus-gate.meiway.com [212.73.210.91]) by mgw1-out.MEIway.com (Postfix Relay Hub) with ESMTP id C2A41EF909 for ; Mon, 18 Nov 2002 23:54:03 +0100 (CET) Received: from localhost (localhost.meiway.com [127.0.0.1]) by VirusGate.MEIway.com (Postfix) with SMTP id DFC6B5D008 for ; Tue, 19 Nov 2002 00:25:11 +0100 (CET) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by VirusGate.MEIway.com (Postfix) with ESMTP id D2B285D009 for ; Tue, 19 Nov 2002 00:25:09 +0100 (CET) Received: from tx0-go2france-c.Go2France.com [32.106.53.250] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A76F1DA10268; Tue, 19 Nov 2002 00:27:43 +0100 Message-Id: <5.1.1.6.2.20021118231541.05a025b0@mail.go2france.com> X-Sender: LConrad@Go2France.com@mail.go2france.com X-Mailer: QUALCOMM Windows Eudora Version 5.1.1 Date: Mon, 18 Nov 2002 23:17:43 +0000 To: Freebsd-isp@freebsd.org From: Len Conrad Subject: Re: Dynamic DNS Server In-Reply-To: <20021118231031.GA74664@yazzy.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >I would like to set up a dynamic dns server. >Do you know of any? bind8 and 9 support dynamic updates >The perfect sollution would be to make it to authenticate users from a >LDAP server but this it not nessesary. users authenticated before they can update the DNS? Len To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 16: 2:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 33C5C37B401 for ; Mon, 18 Nov 2002 16:02:18 -0800 (PST) Received: from 212.saignon.net (212.saignon.net [63.210.176.212]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8CC8B43E8A for ; Mon, 18 Nov 2002 16:02:16 -0800 (PST) (envelope-from tony@saign.com) Received: (qmail 66086 invoked by uid 89); 19 Nov 2002 00:02:22 -0000 Received: from unknown (HELO frankenmobl) (tony@saign.com@127.0.0.1) by localhost.ucsd.edu with SMTP; 19 Nov 2002 00:02:22 -0000 From: "Tony Saign" To: Subject: RE: Dynamic DNS Server Date: Mon, 18 Nov 2002 16:01:45 -0800 Message-ID: <000001c28f5e$d98a9130$93dbf10a@frankenmobl> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 In-Reply-To: <5.1.1.6.2.20021118231541.05a025b0@mail.go2france.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Read the Bind9 documentation it may provide you with the answer you're looking for? http://www.nominum.com/content/documents/bind9arm.pdf _Tony -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Len Conrad Sent: Monday, November 18, 2002 3:18 PM To: Freebsd-isp@freebsd.org Subject: Re: Dynamic DNS Server >I would like to set up a dynamic dns server. >Do you know of any? bind8 and 9 support dynamic updates >The perfect sollution would be to make it to authenticate users from a >LDAP server but this it not nessesary. users authenticated before they can update the DNS? Len To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 17:37:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8A79237B401 for ; Mon, 18 Nov 2002 17:37:22 -0800 (PST) Received: from rivendell.unixhosts.net (rivendell.unixhosts.net [150.101.60.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4201543E88 for ; Mon, 18 Nov 2002 17:37:21 -0800 (PST) (envelope-from greg@hurrell.cc) Received: from hurrell.cc (dsl-202-45-118-235.SA.netspace.net.au [202.45.118.235]) (AUTH: LOGIN greg@hurrell.cc) by rivendell.unixhosts.net with esmtp; Tue, 19 Nov 2002 12:07:18 +1030 Date: Tue, 19 Nov 2002 12:07:20 +1030 Subject: Re: OT: SPAM being sent to this list Content-Type: text/plain; charset=ISO-8859-1; format=flowed Mime-Version: 1.0 (Apple Message framework v548) Cc: Freebsd-isp@freebsd.org To: Len Conrad From: Greg Hurrell In-Reply-To: <5.1.1.6.2.20021118103118.04a27d08@mail.go2france.com> Message-Id: <72268CAD-FB5F-11D6-A5C0-000393BC25EC@hurrell.cc> Content-Transfer-Encoding: quoted-printable X-Mailer: Apple Mail (2.548) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org El Monday, 18 November, 2002, a las 09:03 PM, Len Conrad escribi=F3: > >> Is there any *good* reason why this list isn't set up to accept=20 >> postings only from subscribers? > > As you know, I can send spam to this list as > > MAIL FROM: > > ... and it will get posted. and then you will be banned from the=20 > list! :)) > > subscriber-only posting provides some but not complete anti-spam=20 > defense. > > Len Isn't "some" better than "none"? If a spammer wants to send email using my mail address they first of=20 all have to guess or know that "greg@hurrell.cc" is subscribed to this=20= list, and I don't think most spammers bother doing that kind of=20 research. If such spam did get through, and if the list-owner decided to ban my=20 from address (both of which I consider to be long shots) then couldn't=20= this be sorted out with a quick email to the list-owner? cheers :-) Greg= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 22:13:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0568837B401; Mon, 18 Nov 2002 22:13:57 -0800 (PST) Received: from creature.tScope.ru (www.telecom.ural.ru [195.38.57.164]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2114443E4A; Mon, 18 Nov 2002 22:13:55 -0800 (PST) (envelope-from vlad@telecom.ural.ru) Received: from box (andrewk.telecom.ural.ru [195.38.57.167]) by creature.tScope.ru (8.12.6/8.12.6) with ESMTP id gAJ6E0sc003892; Tue, 19 Nov 2002 11:14:00 +0500 (YEKT) (envelope-from vlad@telecom.ural.ru) Date: Tue, 19 Nov 2002 11:13:43 +0500 From: "Vladimir G. Drobyshevsky" X-Mailer: The Bat! (v1.61) Reply-To: "Vladimir G. Drobyshevsky" Organization: Computer saloons "TelescOp" X-Priority: 3 (Normal) Message-ID: <04890762.20021119111343@telecom.ural.ru> To: owner-freebsd-isp@FreeBSD.ORG, Ralph Forsythe Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Central source/compile? In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, Ralph, Tuesday, November 19, 2002, 3:07:17 AM, you wrote: RF> The scenario is, I have a number of FreeBSD machines - they are all kept RF> up on the same levels of code, however patching them all one at a time is RF> a pain in the arse, especially since some are recycled slower machines RF> that do their BSD tasks quite well - except for compiling the world. [...] RF> Help, please! I think you can read that chapter http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/small-lan.html of FreeBSD Handbook. It have small solution for your problem. By 2 words: you must sync /etc/make.conf on every pc you build for, make one of pc for build\test purposes, make buildworld\buildkernel, export /usr/obj and /usr/src via NFS on that, mount it to the same mount points on target machines and type cd /usr/src; make installworld\installkernel on every target pcs. -- With best regards, ICQ UIN# 1921011 Vladimir Drobyshevsky mailto:vlad@telecom.ural.ru Telescope, Ltd ++7 3432 222179, 229698 http://www.tScope.ru ++7 3432 121481, 221407, 104086 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 22:30:12 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DD3DB37B401 for ; Mon, 18 Nov 2002 22:30:11 -0800 (PST) Received: from blue.centerone.com (blue.centerone.com [204.133.183.111]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7616C43E75 for ; Mon, 18 Nov 2002 22:30:11 -0800 (PST) (envelope-from rf-list@centerone.com) Received: from DELIVERANCE-XP.centerone.com (hs5-ifw.wiaas.org [65.102.239.61]) by blue.centerone.com (8.9.3/8.9.3) with ESMTP id XAA29467 for ; Mon, 18 Nov 2002 23:49:17 -0700 Message-Id: <5.1.0.14.2.20021118232009.030fbc18@mail.centerone.com> X-Sender: rf-list@mail.centerone.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 18 Nov 2002 23:22:39 -0700 To: freebsd-isp@FreeBSD.ORG From: Ralph Forsythe Subject: Re: Central source/compile? In-Reply-To: <04890762.20021119111343@telecom.ural.ru> References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks to all for the replies! That's what I wanted to hear. :) I guess I could have just RTFM too, which might have helped. Oh well, it's list archive fodder now. Tonight I dream of patching all of my servers in 20 minutes flat... Soon to maybe be a reality (now I just need some fancy perl code to trigger them all at once from a single command ... bwahaha ahahaha) and even a trained monkey will be able to keep everything up to date. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 22:54:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4A25237B404 for ; Mon, 18 Nov 2002 22:54:24 -0800 (PST) Received: from babylon-gw.babylon-l.com (babylon.babylon-l.com [212.36.13.243]) by mx1.FreeBSD.org (Postfix) with ESMTP id 68A4243E88 for ; Mon, 18 Nov 2002 22:54:22 -0800 (PST) (envelope-from ablajev@babylon-l.com) Received: (from root@localhost) by babylon-gw.babylon-l.com (8.11.6/8.11.6) id gAJ6PGQ11091 for freebsd-isp@freebsd.org; Tue, 19 Nov 2002 08:25:16 +0200 Received: from anton ([192.168.58.48]) by babylon-gw.babylon-l.com (8.11.6/8.11.6) with SMTP id gAJ6PGn11067 for ; Tue, 19 Nov 2002 08:25:16 +0200 Message-ID: <004e01c28fec$4a244520$303aa8c0@anton> From: "Anton Blajev" To: Subject: IPX Relay over eth adapters? Date: Tue, 19 Nov 2002 08:54:13 -0800 MIME-Version: 1.0 X-scanner: scanned by Inflex 1.0.12.2 - (http://pldaniels.com/inflex/) Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi guys, I have a problem , I think I've wrote before but I think I didn't wrote to he isp list, anyway, so this is the problem I have two network adaptrs(LAN - 3Com) xl0,xl1 xl0 is assigned as 192.168.100.50 xl1 is as 192.168.0.100 I have rule "allow all form any to any via xl1" and "allow all from any to any via xl0" the problem is that when users in one lan (example 192.168.100.50) make an game with IPX network protocol the users from the other lan can't get in in this game.... I need to to an ipx relay between the two interfaces. can you help? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 22:55:38 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 59F8037B401 for ; Mon, 18 Nov 2002 22:55:37 -0800 (PST) Received: from smtp02.iafrica.com (smtp02.iafrica.com [196.7.0.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 57AC443EAF for ; Mon, 18 Nov 2002 22:55:34 -0800 (PST) (envelope-from alan@arb.za.net) Received: from mojo.abn.cpt1.za.uu.net ([196.30.73.32]) by smtp02.iafrica.com with esmtp (Exim 3.36 #1) id 18E2IB-000Myn-00; Tue, 19 Nov 2002 08:55:27 +0200 Date: Tue, 19 Nov 2002 08:55:26 +0200 (SAST) From: Alan Kemp X-X-Sender: alan@mojo.abn.cpt1.za.uu.net Reply-To: Alan Kemp To: Scott Gerhardt Cc: freebsd-isp@freebsd.org Subject: Re: Traffic Analysis In-Reply-To: Message-ID: <20021119085356.P13427-100000@mojo.abn.cpt1.za.uu.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 18 Nov 2002, Scott Gerhardt wrote: > > I would like to monitor gateway traffic mostly for bandwidth accounting. > > Are there any good utilities to parse tcpdump output? Hi There There are a number of tools, A nice web page gui is ntop. http://www.ntop.org You can point that at a tcpdump file and it will build sone nice webpages. regards -- Alan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Nov 18 23:47:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D42AD37B401; Mon, 18 Nov 2002 23:47:17 -0800 (PST) Received: from creature.tScope.ru (www.telecom.ural.ru [195.38.57.164]) by mx1.FreeBSD.org (Postfix) with ESMTP id 92C1443E3B; Mon, 18 Nov 2002 23:47:15 -0800 (PST) (envelope-from vlad@telecom.ural.ru) Received: from box (andrewk.telecom.ural.ru [195.38.57.167]) by creature.tScope.ru (8.12.6/8.12.6) with ESMTP id gAJ7lUsc003992; Tue, 19 Nov 2002 12:47:30 +0500 (YEKT) (envelope-from vlad@telecom.ural.ru) Date: Tue, 19 Nov 2002 12:47:27 +0500 From: "Vladimir G. Drobyshevsky" X-Mailer: The Bat! (v1.61) Reply-To: "Vladimir G. Drobyshevsky" Organization: Computer saloons "TelescOp" X-Priority: 3 (Normal) Message-ID: <18010501360.20021119124727@telecom.ural.ru> To: owner-freebsd-isp@FreeBSD.ORG, Ralph Forsythe Cc: freebsd-isp@FreeBSD.ORG Subject: Re[2]: Central source/compile? In-Reply-To: <5.1.0.14.2.20021118232009.030fbc18@mail.centerone.com> References: <5.1.0.14.2.20021118232009.030fbc18@mail.centerone.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, Ralph, Tuesday, November 19, 2002, 11:22:39 AM, you wrote: RF> Thanks to all for the replies! That's what I wanted to hear. :) I guess I RF> could have just RTFM too, which might have helped. Oh well, it's list RF> archive fodder now. You welcome ;-). RF> Tonight I dream of patching all of my servers in 20 minutes flat... Soon The main disallow of that is you must do manually update config files by mergemaster. That process cannot be fully automated on current technical level (we have no AI :). And I don't think it really needed to everyday system update, especially on production servers. I'm using daily sources update but touch my server's binaries on security issues only. I have a funny story for that: The programmer's son comes to the father and speaks: "Daddy, why the sun ascends in the east, and comes in the west? ". That it asks: " And you are the own eyes saw? " - "Yes". - " It ascended in the east and came in the west? " - "Yes". - " And you saw it not once? " - "Certainly". - " For God's sake, do not touch anything there!!!!!! " Sorry for a bad English. -- With best regards, ICQ UIN# 1921011 Vladimir Drobyshevsky mailto:vlad@telecom.ural.ru Telescope, Ltd ++7 3432 222179, 229698 http://www.tScope.ru ++7 3432 121481, 221407, 104086 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 19 15:37:26 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0118137B401; Tue, 19 Nov 2002 15:37:25 -0800 (PST) Received: from hotmail.com (f116.law3.hotmail.com [209.185.241.116]) by mx1.FreeBSD.org (Postfix) with ESMTP id AEAB043E8A; Tue, 19 Nov 2002 15:37:24 -0800 (PST) (envelope-from spoug@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 19 Nov 2002 15:37:24 -0800 Received: from 66.38.210.190 by lw3fd.law3.hotmail.msn.com with HTTP; Tue, 19 Nov 2002 23:37:24 GMT X-Originating-IP: [66.38.210.190] From: "Vincent Goupil" To: freebsd-isp@freebsd.org, freebsd-net@freebsd.org Subject: Slow network response with FreeBSD 4.6.2 and ipfilter Date: Tue, 19 Nov 2002 23:37:24 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 19 Nov 2002 23:37:24.0579 (UTC) FILETIME=[9CECEB30:01C29024] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter v3.4.27. This system act as a firewall for an enterprise. They need high availability. I have 5 network card, all 3C905 (3*3c905B-TX and 2*905C-TX). I made this setup in july and it run fine until 3 weeks ago. The first and second card are for the internet link (primary and backup). The third is for DMZ and the fourth is for local network. The fifth is unused (marked as down). Each card as is own IRQ (except the fifth that is shared with the first). The high availability is provided by the two internet link, if one goes down, the second take the load (change default route, ipf rules, ipnat rules and DNS records). This is done by a script running by cron. We can also do that manually. We have two /29 network for the first link and one /28 network for the second (we use alias on internet interfaces). There is only 3 services that run on the firewall: SSH (but only accessible from 3 subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one subnet) We begin to have problem 3 weeks ago. The firewall begin to have a slow response. I begin to have this arp message error (many times): arplookup 255.255.255.0 failed: host is not on local network arpresolve: can't allocate llinfo for 255.255.255.0rt We reboot the server and the network fast as earlier. I finally find something: when we use alias, we need to have at least one regular netmask (instead of 255.255.255.255) for each network/subnetwork. My error was on the first link, my second sub-network was not configured properly. I changed it and it stop to have these errors about arp but the problem wasn't resolved. The network continue to be slow until we reboot the server. This happen during the day. Now, it happen everytime. What I've done: - I changed the netmask (as said earlier) - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. - I look for IRQ conflict - I configure all interface with media and mediaopt. They not using autodetect anymore. - I chkrootkit and nothing found What I suspect: - I read in a forum that the driver (xl) of 3C905 is not the best for FreeBSD. I don't know if this apply to 4.6.2. - Ethernet cables (I need to change it) - We run SSL (with a lot of users) in one of our web servers in the dmz. As I know, SSL run on top of TCP, it should not be a problem. - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not promisc" and "xl1 is not promisc". I have 5 interfaces, what about the others ? Can someone have an idea ? _________________________________________________________________ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 19 15:55:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C9BA937B401; Tue, 19 Nov 2002 15:55:32 -0800 (PST) Received: from hotmail.com (f147.law3.hotmail.com [209.185.241.147]) by mx1.FreeBSD.org (Postfix) with ESMTP id 831A843E77; Tue, 19 Nov 2002 15:55:32 -0800 (PST) (envelope-from spoug@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 19 Nov 2002 15:55:32 -0800 Received: from 66.38.210.190 by lw3fd.law3.hotmail.msn.com with HTTP; Tue, 19 Nov 2002 23:55:32 GMT X-Originating-IP: [66.38.210.190] From: "Vincent Goupil" To: freebsd-isp@freebsd.org, freebsd-net@freebsd.org Subject: Slow network response with FreeBSD 4.6.2 and ipfilter Date: Tue, 19 Nov 2002 23:55:32 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 19 Nov 2002 23:55:32.0468 (UTC) FILETIME=[255B9B40:01C29027] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter v3.4.27. This system act as a firewall for an enterprise. They need high availability. I have 5 network card, all 3C905 (3*3c905B-TX and 2*905C-TX). I made this setup in july and it run fine until 3 weeks ago. The first and second card are for the internet link (primary and backup). The third is for DMZ and the fourth is for local network. The fifth is unused (marked as down). Each card as is own IRQ (except the fifth that is shared with the first). The high availability is provided by the two internet link, if one goes down, the second take the load (change default route, ipf rules, ipnat rules and DNS records). This is done by a script running by cron. We can also do that manually. We have two /29 network for the first link and one /28 network for the second (we use alias on internet interfaces). There is only 3 services that run on the firewall: SSH (but only accessible from 3 subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one subnet) We begin to have problem 3 weeks ago. The firewall begin to have a slow response. I begin to have this arp message error (many times): arplookup 255.255.255.0 failed: host is not on local network arpresolve: can't allocate llinfo for 255.255.255.0rt We reboot the server and the network fast as earlier. I finally find something: when we use alias, we need to have at least one regular netmask (instead of 255.255.255.255) for each network/subnetwork. My error was on the first link, my second sub-network was not configured properly. I changed it and it stop to have these errors about arp but the problem wasn't resolved. The network continue to be slow until we reboot the server. This happen during the day. Now, it happen everytime. What I've done: - I changed the netmask (as said earlier) - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. - I look for IRQ conflict - I configure all interface with media and mediaopt. They not using autodetect anymore. - I chkrootkit and nothing found What I suspect: - I read in a forum that the driver (xl) of 3C905 is not the best for FreeBSD. I don't know if this apply to 4.6.2. - Ethernet cables (I need to change it) - We run SSL (with a lot of users) in one of our web servers in the dmz. As I know, SSL run on top of TCP, it should not be a problem. - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not promisc" and "xl1 is not promisc". I have 5 interfaces, what about the others ? Can someone have an idea ? _________________________________________________________________ MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 19 18: 4:11 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 214EF37B401 for ; Tue, 19 Nov 2002 18:04:11 -0800 (PST) Received: from backup.dagupan.com (mailserver.dagupan.com [202.91.161.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id 16AF743E6E for ; Tue, 19 Nov 2002 18:04:09 -0800 (PST) (envelope-from francisv@dagupan.com) Received: by mailserver.dagupan.com with Internet Mail Service (5.5.2653.19) id ; Wed, 20 Nov 2002 10:10:39 +0800 Message-ID: <10F29E27A956D511B0940050DA8D86A9084727@mailserver.dagupan.com> From: francisv@dagupan.com To: freebsd-isp@FreeBSD.ORG Subject: Thoughts about Virtuozzo Date: Wed, 20 Nov 2002 10:10:34 +0800 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, Anyone using Virtuozzo on FreeBSD? I'm planning to get one to replace jail for our VPS package. Any feedback would be appreciated :) Thanks! --- francis a. vidal [bitstop network services] | http://www.bitstop.ph streaming media + web hosting | http://www.keystone.ph v(02)330-2871,(02)330-2872; f(02)330-2873 | http://www.kuro.ph To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Nov 19 19: 8:37 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62FED37B401; Tue, 19 Nov 2002 19:08:35 -0800 (PST) Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by mx1.FreeBSD.org (Postfix) with ESMTP id 583DF43E77; Tue, 19 Nov 2002 19:08:34 -0800 (PST) (envelope-from babolo@aaz.links.ru) Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by aaz.links.ru (8.12.6/8.12.6) with ESMTP id gAK3AfDh006526; Wed, 20 Nov 2002 06:10:41 +0300 (MSK) (envelope-from babolo@aaz.links.ru) Received: (from babolo@localhost) by aaz.links.ru (8.12.6/8.12.6/Submit) id gAK3AeSv006525; Wed, 20 Nov 2002 06:10:40 +0300 (MSK) Message-Id: <200211200310.gAK3AeSv006525@aaz.links.ru> Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1 In-Reply-To: To: Vincent Goupil Date: Wed, 20 Nov 2002 06:10:40 +0300 (MSK) From: "."@babolo.ru Cc: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL99b (25)] MIME-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter v3.4.27. > This system act as a firewall for an enterprise. They need high > availability. I have 5 network card, all 3C905 (3*3c905B-TX and 2*905C-TX). > I made this setup in july and it run fine until 3 weeks ago. The first > and second card are for the internet link (primary and backup). The third > is for DMZ and the fourth is for local network. The fifth is unused (marked > as down). Each card as is own IRQ (except the fifth that is shared with the > first). The high availability is provided by the two internet link, if one > goes down, the second take the load (change default route, ipf rules, ipnat > rules and DNS records). This is done by a script running by cron. We can > also do that manually. We have two /29 network for the first link and one > /28 network for the second (we use alias on internet interfaces). There is > only 3 services that run on the firewall: SSH (but only accessible from 3 > subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one subnet) > > We begin to have problem 3 weeks ago. The firewall begin to have a slow > response. I begin to have this arp message error (many times): > arplookup 255.255.255.0 failed: host is not on local network > arpresolve: can't allocate llinfo for 255.255.255.0rt > We reboot the server and the network fast as earlier. I finally find > something: when we use alias, we need to have at least one regular netmask > (instead of 255.255.255.255) for each network/subnetwork. My error was on > the first link, my second sub-network was not configured properly. I > changed it and it stop to have these errors about arp but the problem wasn't > resolved. The network continue to be slow until we reboot the server. This > happen during the day. Now, it happen everytime. > > What I've done: > - I changed the netmask (as said earlier) > - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. > - I look for IRQ conflict > - I configure all interface with media and mediaopt. They not using > autodetect anymore. > - I chkrootkit and nothing found > > What I suspect: > - I read in a forum that the driver (xl) of 3C905 is not the best for > FreeBSD. I don't know if this apply to 4.6.2. > - Ethernet cables (I need to change it) > - We run SSL (with a lot of users) in one of our web servers in the dmz. As > I know, SSL run on top of TCP, it should not be a problem. > - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not promisc" > and "xl1 is not promisc". I have 5 interfaces, what about the others ? > > Can someone have an idea ? What you mean when say "Slow network response"? If that mean that packets trawel long from some host to host under question as reported by tcpdump, does ifconfig xlN down and then ifconfig xlN up repare situation for some time? What tcpdump -npi xlN ether broadcast and not ip say when slowdown hapens? -- @BABOLO http://links.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 2:41:37 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9611C37B401; Wed, 20 Nov 2002 02:41:36 -0800 (PST) Received: from mail.yazzy.org (mail.yazzy.org [80.232.16.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id E053143E97; Wed, 20 Nov 2002 02:41:35 -0800 (PST) (envelope-from yazzy@ezunix.org) Received: by mail.yazzy.org (Postfix, from userid 1001) id 05337B5FA; Wed, 20 Nov 2002 11:02:22 +0100 (CET) Date: Wed, 20 Nov 2002 11:02:22 +0100 From: "Marcin M. Jessa" To: freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: VPN and roaming Windows 2K clients Message-ID: <20021120100222.GA68431@yazzy.org> Reply-To: Marcin Jessa Mail-Followup-To: freebsd-isp@freebsd.org, freebsd-security@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: ezUnix.org X-Operating-System: FreeBSD 4.7-RELEASE i386 10:30AM up 2 days, 18:07, 2 users, load averages: 0.00, 0.05, 0.23 X-Editor: Vim http://www.vim.org/ X-Mailer: Mutt http://www.mutt.org/ X-Info: http://www.ezunix.org/ User-Agent: Mutt/1.5.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi guys. Do you know how to make a FreeBSD firewall a VPN server for roaming Win2K boxes (Win2k users without static IP's)? I've been playing with racoon for a few days but it seems that the only way it can authenticate roaming Windows VLAN users is with preshared certificates. This again excludes usage of manual keying (pre_shared_keys) which is nessesary for accepting connections from dynamic IP's. The preshared keys method can be configured to accept connections from specified hostnames and that could work with windows boxes that run a dyndns client. Again Windows and racoon can only communicate using certificates and not manual keying.... an evil circle. Windows can speak with racoon if one makes racoon to automatically exchange keys but this works only if Windows clients have static IP's... Have any of you guys an idea about what to do to combine these methods? Or maybe there is a workaround? Please squeeze your brains and let me know about whatever you think may be of interest in this metter. Thanks in advance. YazzY To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 5: 0:35 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CB05937B4A2; Wed, 20 Nov 2002 05:00:27 -0800 (PST) Received: from hotmail.com (f98.law3.hotmail.com [209.185.241.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E9D843E88; Wed, 20 Nov 2002 05:00:27 -0800 (PST) (envelope-from spoug@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Wed, 20 Nov 2002 05:00:27 -0800 Received: from 207.183.39.135 by lw3fd.law3.hotmail.msn.com with HTTP; Wed, 20 Nov 2002 13:00:27 GMT X-Originating-IP: [207.183.39.135] From: "Vincent Goupil" To: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter Date: Wed, 20 Nov 2002 13:00:27 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 20 Nov 2002 13:00:27.0252 (UTC) FILETIME=[CC095B40:01C29094] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org My network is composed with Windows 2000 servers and pro. 192.168.20.2 <- w2k srv 192.168.20.3 <- w2k srv 192.168.20.7 <- w2k srv 192.168.20.8 <- w2k srv 192.168.20.9 <- w2k srv 192.168.20.10 <- another freebsd box 192.168.20.210 <- the firewall 23:58:43.356569 arp who-has 192.168.20.99 tell 192.168.20.8 23:58:46.471284 arp who-has 192.168.20.127 tell 192.168.20.3 23:58:46.472257 arp who-has 192.168.20.127 tell 192.168.20.8 23:59:04.543497 arp who-has 192.168.20.2 tell 192.168.20.3 23:59:10.352106 arp who-has 192.168.20.7 tell 192.168.20.200 23:59:15.827551 arp who-has 192.168.20.251 tell 192.168.20.7 23:59:17.082626 arp who-has 192.168.20.201 tell 192.168.20.8 23:59:20.245406 arp who-has 192.168.20.201 tell 192.168.20.112 23:59:22.723713 arp who-has 192.168.20.104 tell 192.168.20.3 23:59:26.517132 arp who-has 192.168.20.6 tell 192.168.20.8 23:59:28.824120 arp who-has 192.168.20.7 tell 192.168.20.99 23:59:29.801078 arp who-has 192.168.20.6 tell 192.168.20.7 23:59:48.762973 arp who-has 192.168.20.165 tell 192.168.20.8 23:59:55.203905 arp who-has 192.168.20.75 tell 192.168.20.3 23:59:55.688710 arp who-has 192.168.20.114 tell 192.168.20.8 23:59:55.861042 arp who-has 192.168.20.77 tell 192.168.20.8 00:00:00.192659 arp who-has 192.168.20.106 tell 192.168.20.201 00:00:04.337994 arp who-has 192.168.20.10 tell 192.168.20.8 00:00:04.538035 arp who-has 192.168.20.10 tell 192.168.20.2 00:00:04.775959 arp who-has 192.168.20.10 tell 192.168.20.3 00:00:05.022385 arp who-has 192.168.20.10 tell 192.168.20.9 00:00:05.066194 arp who-has 192.168.20.10 tell 192.168.20.7 00:00:05.209935 arp who-has 192.168.20.10 tell 192.168.20.6 00:00:20.085908 arp who-has 192.168.20.9 tell 192.168.20.3 00:00:20.116177 arp who-has 192.168.20.9 tell 192.168.20.8 00:00:22.235535 arp who-has 192.168.20.101 tell 192.168.20.8 00:00:22.236614 arp who-has 192.168.20.101 tell 192.168.20.3 00:00:23.118443 arp who-has 192.168.20.54 tell 192.168.20.3 00:00:25.075679 arp who-has 192.168.20.7 tell 192.168.20.201 00:00:29.815522 arp who-has 192.168.20.166 tell 192.168.20.7 00:00:30.587208 arp who-has 192.168.20.157 (2f:69:70:63:68:65) tell 192.168.20.201 00:00:31.810270 arp who-has 192.168.20.166 tell 192.168.20.7 00:00:45.473558 arp who-has 192.168.20.177 tell 192.168.20.201 >From: "."@babolo.ru >To: Vincent Goupil >CC: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG >Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter >Date: Wed, 20 Nov 2002 06:10:40 +0300 (MSK) >MIME-Version: 1.0 >Received: from aaz.links.ru ([193.125.152.37]) by mc6-f36.law1.hotmail.com >with Microsoft SMTPSVC(5.0.2195.5600); Tue, 19 Nov 2002 19:08:36 -0800 >Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])by aaz.links.ru >(8.12.6/8.12.6) with ESMTP id gAK3AfDh006526;Wed, 20 Nov 2002 06:10:41 >+0300 (MSK)(envelope-from babolo@aaz.links.ru) >Received: (from babolo@localhost)by aaz.links.ru (8.12.6/8.12.6/Submit) id >gAK3AeSv006525;Wed, 20 Nov 2002 06:10:40 +0300 (MSK) >Message-Id: <200211200310.gAK3AeSv006525@aaz.links.ru> >X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1 >In-Reply-To: >X-Mailer: ELM [version 2.4ME+ PL99b (25)] >Return-Path: babolo@aaz.links.ru >X-OriginalArrivalTime: 20 Nov 2002 03:08:36.0969 (UTC) >FILETIME=[1E422D90:01C29042] > > > I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter >v3.4.27. > > This system act as a firewall for an enterprise. They need high > > availability. I have 5 network card, all 3C905 (3*3c905B-TX and >2*905C-TX). > > I made this setup in july and it run fine until 3 weeks ago. The >first > > and second card are for the internet link (primary and backup). The >third > > is for DMZ and the fourth is for local network. The fifth is unused >(marked > > as down). Each card as is own IRQ (except the fifth that is shared with >the > > first). The high availability is provided by the two internet link, if >one > > goes down, the second take the load (change default route, ipf rules, >ipnat > > rules and DNS records). This is done by a script running by cron. We >can > > also do that manually. We have two /29 network for the first link and >one > > /28 network for the second (we use alias on internet interfaces). There >is > > only 3 services that run on the firewall: SSH (but only accessible from >3 > > subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one >subnet) > > > > We begin to have problem 3 weeks ago. The firewall begin to have a slow > > response. I begin to have this arp message error (many times): > > arplookup 255.255.255.0 failed: host is not on local network > > arpresolve: can't allocate llinfo for 255.255.255.0rt > > We reboot the server and the network fast as earlier. I finally find > > something: when we use alias, we need to have at least one regular >netmask > > (instead of 255.255.255.255) for each network/subnetwork. My error was >on > > the first link, my second sub-network was not configured properly. I > > changed it and it stop to have these errors about arp but the problem >wasn't > > resolved. The network continue to be slow until we reboot the server. >This > > happen during the day. Now, it happen everytime. > > > > What I've done: > > - I changed the netmask (as said earlier) > > - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. > > - I look for IRQ conflict > > - I configure all interface with media and mediaopt. They not using > > autodetect anymore. > > - I chkrootkit and nothing found > > > > What I suspect: > > - I read in a forum that the driver (xl) of 3C905 is not the best for > > FreeBSD. I don't know if this apply to 4.6.2. > > - Ethernet cables (I need to change it) > > - We run SSL (with a lot of users) in one of our web servers in the dmz. >As > > I know, SSL run on top of TCP, it should not be a problem. > > - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not >promisc" > > and "xl1 is not promisc". I have 5 interfaces, what about the others ? > > > > Can someone have an idea ? >What you mean when say "Slow network response"? >If that mean that packets trawel long >from some host to host under question >as reported by tcpdump, does ifconfig xlN down >and then ifconfig xlN up repare situation >for some time? >What tcpdump -npi xlN ether broadcast and not ip >say when slowdown hapens? > >-- >@BABOLO http://links.ru/ _________________________________________________________________ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 8:29:24 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AC6137B401; Wed, 20 Nov 2002 08:29:23 -0800 (PST) Received: from hobby.digiware.nl (d9218.upc-d.chello.nl [213.46.9.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id 225C043E88; Wed, 20 Nov 2002 08:29:21 -0800 (PST) (envelope-from wjw@withagen.nl) Received: from dual (dual [212.61.27.71]) by hobby.digiware.nl (8.12.6/8.12.5) with SMTP id gAKGTGLN006779; Wed, 20 Nov 2002 17:29:17 +0100 (CET) (envelope-from wjw@withagen.nl) Message-ID: <005d01c290b1$f8592c80$471b3dd4@dual> From: "Willem Jan Withagen" To: "Marcin Jessa" , , References: <20021120100222.GA68431@yazzy.org> Subject: Re: VPN and roaming Windows 2K clients Date: Wed, 20 Nov 2002 17:29:16 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: base64 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org RG8geW91IGtub3cgaG93IHRvIG1ha2UgYSBGcmVlQlNEIGZpcmV3YWxsIGEgVlBOIHNlcnZlciBm b3Igcm9hbWluZyBXaW4ySyBib3hlcyAoV2luMmsgdXNlcnMgd2l0aG91dCBzdGF0aWMgSVAncyk/ ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIA0KPiBJJ3ZlIGJlZW4gcGxheWlu ZyB3aXRoIHJhY29vbiBmb3IgYSBmZXcgZGF5cyBidXQgaXQgc2VlbXMgdGhhdCB0aGUgb25seSB3 YXkgaXQgY2FuIGF1dGhlbnRpY2F0ZSByb2FtaW5nIFdpbmRvd3MgVkxBTiB1c2Vycw0KPiBpcyB3 aXRoIHByZXNoYXJlZCBjZXJ0aWZpY2F0ZXMuIA0KPiBUaGlzIGFnYWluIGV4Y2x1ZGVzIHVzYWdl IG9mIG1hbnVhbCBrZXlpbmcgKHByZV9zaGFyZWRfa2V5cykgd2hpY2ggaXMgbmVzc2VzYXJ5IGZv ciBhY2NlcHRpbmcgY29ubmVjdGlvbnMgZnJvbSBkeW5hbWljIElQJ3MuICAgICAgICAgICAgICAg ICAgICAgICAgICAgDQo+IFRoZSBwcmVzaGFyZWQga2V5cyBtZXRob2QgY2FuIGJlIGNvbmZpZ3Vy ZWQgdG8gYWNjZXB0IGNvbm5lY3Rpb25zIGZyb20gc3BlY2lmaWVkIGhvc3RuYW1lcyBhbmQgdGhh dCBjb3VsZCB3b3JrIHdpdGggd2luZG93cyANCj4gYm94ZXMgdGhhdCBydW4gYSBkeW5kbnMgY2xp ZW50LiAgQWdhaW4gV2luZG93cyBhbmQgcmFjb29uIGNhbiBvbmx5IGNvbW11bmljYXRlIHVzaW5n IGNlcnRpZmljYXRlcyBhbmQgbm90IG1hbnVhbCBrZXlpbmcuLi4uIGFuIGV2aWwgY2lyY2xlLiAg ICAgICAgICAgICBXaW5kb3dzIGNhbiBzcGVhayB3aXRoIHJhY29vbiBpZiBvbmUgbWFrZXMgcmFj b29uIHRvIGF1dG9tYXRpY2FsbHkgZXhjaGFuZ2Uga2V5cyBidXQgdGhpcyB3b3JrcyBvbmx5IGlm IFdpbmRvd3MgY2xpZW50cyBoYXZlIHN0YXRpYyBJUCdzLi4uICAgICAgICAgICAgDQo+IEhhdmUg YW55IG9mIHlvdSBndXlzIGFuIGlkZWEgYWJvdXQgd2hhdCB0byBkbyB0byBjb21iaW5lIHRoZXNl IG1ldGhvZHM/ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAN Cj4gT3IgbWF5YmUgdGhlcmUgaXMgYSB3b3JrYXJvdW5kPyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIA0KDQpJRiBJUHNlYyBpcyBu b3QgYSByZXF1aXJlbWVudCwgeW91IGNvdWxkIGxvb2sgYXQgd2hhdCBJIGRpZDoNCiAgICB1c2Ug cHB0cA0KICAgICAgICBtcGQgb24gdGhlIGZpcmV3YWxsDQogICAgICAgIHN0ZCB2cG4gc3R1ZmYg d2hpY2ggY29tZXMgd2l0aCBXMksNCg0KUmVhbGx5IHBpZWNlIG9mIGNha2UuDQoNCi0tV2pXDQo= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 10:33:14 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 49EEF37B401; Wed, 20 Nov 2002 10:33:13 -0800 (PST) Received: from squid.tznet.com (squid.tznet.com [66.170.64.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id 626B843E97; Wed, 20 Nov 2002 10:33:12 -0800 (PST) (envelope-from tech@tznet.com) Received: from mail.tznet.com (mail.tznet.com [66.170.64.2]) by squid.tznet.com (8.12.3/8.12.5) with ESMTP id gAKIX4ek030334; Wed, 20 Nov 2002 12:33:04 -0600 (CST) Date: Wed, 20 Nov 2002 12:33:04 -0600 (CST) From: Scott Pilz To: freebsd-questions@freebsd.org Cc: freebsd-isp@freebsd.org Subject: VPN Message-ID: <20021120122640.L9262-100000@mail.tznet.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII T-NetSMTP: Virus Check - Found to be clean Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org There are an increasing number of ISP's that are now offering VPN services to their customers. I've looked into this very little - to the point where I did setup a VPN server on FreeBSD however according to what I have read on the internet, the latest/newest/best release of PPP is not compatible with BSD (yet). This latest version of PPP offers support for Windows machines to use their method of encryption, and is not supported in earlier releases of PPP. While I was able to connect to the VPN server without encryption, I was not able to do so with encryption. I'm wondering what you others have run into, and what packages work best for your customers. I realize that many ISP's are now buying these awfully expensive pieces of equipment designed to run VPN and only VPN ... to save the company some money, any alternatives to these appliances? Thanks. Scott To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 19:30:21 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CFDD437B401; Wed, 20 Nov 2002 19:30:14 -0800 (PST) Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by mx1.FreeBSD.org (Postfix) with ESMTP id CC5C043E42; Wed, 20 Nov 2002 19:30:13 -0800 (PST) (envelope-from babolo@aaz.links.ru) Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by aaz.links.ru (8.12.6/8.12.6) with ESMTP id gAL3WODh043684; Thu, 21 Nov 2002 06:32:24 +0300 (MSK) (envelope-from babolo@aaz.links.ru) Received: (from babolo@localhost) by aaz.links.ru (8.12.6/8.12.6/Submit) id gAL3WO9N043683; Thu, 21 Nov 2002 06:32:24 +0300 (MSK) Message-Id: <200211210332.gAL3WO9N043683@aaz.links.ru> Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1 In-Reply-To: To: Vincent Goupil Date: Thu, 21 Nov 2002 06:32:24 +0300 (MSK) From: "."@babolo.ru Cc: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL99b (25)] MIME-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org other questions was: - what is "Slow network response"? - does ifconfig down/up helps? tcpdump buffers output so usful bits are some time after trouble. In my case slowdown triggered by arp scans > My network is composed with Windows 2000 servers and pro. > 192.168.20.2 <- w2k srv > 192.168.20.3 <- w2k srv > 192.168.20.7 <- w2k srv > 192.168.20.8 <- w2k srv > 192.168.20.9 <- w2k srv > 192.168.20.10 <- another freebsd box > 192.168.20.210 <- the firewall > > 23:58:43.356569 arp who-has 192.168.20.99 tell 192.168.20.8 > 23:58:46.471284 arp who-has 192.168.20.127 tell 192.168.20.3 > 23:58:46.472257 arp who-has 192.168.20.127 tell 192.168.20.8 > 23:59:04.543497 arp who-has 192.168.20.2 tell 192.168.20.3 > 23:59:10.352106 arp who-has 192.168.20.7 tell 192.168.20.200 > 23:59:15.827551 arp who-has 192.168.20.251 tell 192.168.20.7 > 23:59:17.082626 arp who-has 192.168.20.201 tell 192.168.20.8 > 23:59:20.245406 arp who-has 192.168.20.201 tell 192.168.20.112 > 23:59:22.723713 arp who-has 192.168.20.104 tell 192.168.20.3 > 23:59:26.517132 arp who-has 192.168.20.6 tell 192.168.20.8 > 23:59:28.824120 arp who-has 192.168.20.7 tell 192.168.20.99 > 23:59:29.801078 arp who-has 192.168.20.6 tell 192.168.20.7 > 23:59:48.762973 arp who-has 192.168.20.165 tell 192.168.20.8 > 23:59:55.203905 arp who-has 192.168.20.75 tell 192.168.20.3 > 23:59:55.688710 arp who-has 192.168.20.114 tell 192.168.20.8 > 23:59:55.861042 arp who-has 192.168.20.77 tell 192.168.20.8 > 00:00:00.192659 arp who-has 192.168.20.106 tell 192.168.20.201 > 00:00:04.337994 arp who-has 192.168.20.10 tell 192.168.20.8 > 00:00:04.538035 arp who-has 192.168.20.10 tell 192.168.20.2 > 00:00:04.775959 arp who-has 192.168.20.10 tell 192.168.20.3 > 00:00:05.022385 arp who-has 192.168.20.10 tell 192.168.20.9 > 00:00:05.066194 arp who-has 192.168.20.10 tell 192.168.20.7 > 00:00:05.209935 arp who-has 192.168.20.10 tell 192.168.20.6 > 00:00:20.085908 arp who-has 192.168.20.9 tell 192.168.20.3 > 00:00:20.116177 arp who-has 192.168.20.9 tell 192.168.20.8 > 00:00:22.235535 arp who-has 192.168.20.101 tell 192.168.20.8 > 00:00:22.236614 arp who-has 192.168.20.101 tell 192.168.20.3 > 00:00:23.118443 arp who-has 192.168.20.54 tell 192.168.20.3 > 00:00:25.075679 arp who-has 192.168.20.7 tell 192.168.20.201 > 00:00:29.815522 arp who-has 192.168.20.166 tell 192.168.20.7 > 00:00:30.587208 arp who-has 192.168.20.157 (2f:69:70:63:68:65) tell > 192.168.20.201 > 00:00:31.810270 arp who-has 192.168.20.166 tell 192.168.20.7 > 00:00:45.473558 arp who-has 192.168.20.177 tell 192.168.20.201 > > > >From: "."@babolo.ru > >To: Vincent Goupil > >CC: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG > >Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter > >Date: Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > >MIME-Version: 1.0 > >Received: from aaz.links.ru ([193.125.152.37]) by mc6-f36.law1.hotmail.com > >with Microsoft SMTPSVC(5.0.2195.5600); Tue, 19 Nov 2002 19:08:36 -0800 > >Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])by aaz.links.ru > >(8.12.6/8.12.6) with ESMTP id gAK3AfDh006526;Wed, 20 Nov 2002 06:10:41 > >+0300 (MSK)(envelope-from babolo@aaz.links.ru) > >Received: (from babolo@localhost)by aaz.links.ru (8.12.6/8.12.6/Submit) id > >gAK3AeSv006525;Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > >Message-Id: <200211200310.gAK3AeSv006525@aaz.links.ru> > >X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1 > >In-Reply-To: > >X-Mailer: ELM [version 2.4ME+ PL99b (25)] > >Return-Path: babolo@aaz.links.ru > >X-OriginalArrivalTime: 20 Nov 2002 03:08:36.0969 (UTC) > >FILETIME=[1E422D90:01C29042] > > > > > I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter > >v3.4.27. > > > This system act as a firewall for an enterprise. They need high > > > availability. I have 5 network card, all 3C905 (3*3c905B-TX and > >2*905C-TX). > > > I made this setup in july and it run fine until 3 weeks ago. The > >first > > > and second card are for the internet link (primary and backup). The > >third > > > is for DMZ and the fourth is for local network. The fifth is unused > >(marked > > > as down). Each card as is own IRQ (except the fifth that is shared with > >the > > > first). The high availability is provided by the two internet link, if > >one > > > goes down, the second take the load (change default route, ipf rules, > >ipnat > > > rules and DNS records). This is done by a script running by cron. We > >can > > > also do that manually. We have two /29 network for the first link and > >one > > > /28 network for the second (we use alias on internet interfaces). There > >is > > > only 3 services that run on the firewall: SSH (but only accessible from > >3 > > > subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one > >subnet) > > > > > > We begin to have problem 3 weeks ago. The firewall begin to have a slow > > > response. I begin to have this arp message error (many times): > > > arplookup 255.255.255.0 failed: host is not on local network > > > arpresolve: can't allocate llinfo for 255.255.255.0rt > > > We reboot the server and the network fast as earlier. I finally find > > > something: when we use alias, we need to have at least one regular > >netmask > > > (instead of 255.255.255.255) for each network/subnetwork. My error was > >on > > > the first link, my second sub-network was not configured properly. I > > > changed it and it stop to have these errors about arp but the problem > >wasn't > > > resolved. The network continue to be slow until we reboot the server. > >This > > > happen during the day. Now, it happen everytime. > > > > > > What I've done: > > > - I changed the netmask (as said earlier) > > > - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. > > > - I look for IRQ conflict > > > - I configure all interface with media and mediaopt. They not using > > > autodetect anymore. > > > - I chkrootkit and nothing found > > > > > > What I suspect: > > > - I read in a forum that the driver (xl) of 3C905 is not the best for > > > FreeBSD. I don't know if this apply to 4.6.2. > > > - Ethernet cables (I need to change it) > > > - We run SSL (with a lot of users) in one of our web servers in the dmz. > >As > > > I know, SSL run on top of TCP, it should not be a problem. > > > - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not > >promisc" > > > and "xl1 is not promisc". I have 5 interfaces, what about the others ? > > > > > > Can someone have an idea ? > >What you mean when say "Slow network response"? > >If that mean that packets trawel long > >from some host to host under question > >as reported by tcpdump, does ifconfig xlN down > >and then ifconfig xlN up repare situation > >for some time? > >What tcpdump -npi xlN ether broadcast and not ip > >say when slowdown hapens? > > > >-- > >@BABOLO http://links.ru/ > > > _________________________________________________________________ > Protect your PC - get McAfee.com VirusScan Online > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > -- @BABOLO http://links.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Nov 20 20:53: 3 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E2A1737B401 for ; Wed, 20 Nov 2002 20:53:02 -0800 (PST) Received: from ns3.unixmexico.net (ns3.unixmexico.net [64.141.69.184]) by mx1.FreeBSD.org (Postfix) with SMTP id 5440143E88 for ; Wed, 20 Nov 2002 20:53:02 -0800 (PST) (envelope-from nbari@unixmexico.com) Received: (qmail 30557 invoked by uid 85); 21 Nov 2002 04:53:32 -0000 Received: from nbari@unixmexico.com by ns1.unixmexico.net by uid 82 with qmail-scanner-1.14 ( Clear:. Processed in 0.107878 secs); 21 Nov 2002 04:53:32 -0000 Received: from unknown (HELO unixmexico.com) (127.0.0.1) by localhost.unixmexico.net with SMTP; 21 Nov 2002 04:53:31 -0000 Received: from 148.243.211.36 (SquirrelMail authenticated user nbari@unixmexico.com) by mail.unixmexico.com with HTTP; Wed, 20 Nov 2002 22:53:32 -0600 (CST) Message-ID: <34574.148.243.211.36.1037854412.squirrel@mail.unixmexico.com> Date: Wed, 20 Nov 2002 22:53:32 -0600 (CST) Subject: um-metered bandwidth dedicated server From: To: X-Priority: 3 Importance: Normal X-Mailer: SquirrelMail (version 1.2.9) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all i am looking for a um-metered bandwidth dedicated server any idea of where can i get one ? http://www.rackforce.com/ i am looking for some plans like this comany does $99 per month. regards.. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 21 3:10:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9A73137B401; Thu, 21 Nov 2002 03:10:56 -0800 (PST) Received: from mail.yazzy.org (mail.yazzy.org [80.232.16.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9F83343E88; Thu, 21 Nov 2002 03:10:55 -0800 (PST) (envelope-from yazzy@ezunix.org) Received: by mail.yazzy.org (Postfix, from userid 1001) id 27FFEA94E; Thu, 21 Nov 2002 11:38:02 +0100 (CET) Date: Thu, 21 Nov 2002 11:38:02 +0100 From: "Marcin M. Jessa" To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: mpd Message-ID: <20021121103802.GA4752@yazzy.org> Reply-To: Marcin Jessa Mail-Followup-To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: ezUnix.org X-Operating-System: FreeBSD 4.7-RELEASE i386 11:27AM up 3 days, 19:04, 2 users, load averages: 0.08, 0.03, 0.01 X-Editor: Vim http://www.vim.org/ X-Mailer: Mutt http://www.mutt.org/ X-Info: http://www.ezunix.org/ User-Agent: Mutt/1.5.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Howdy I have tried to install a server with VPN over pptp using mpd from ports. It starts fine but I cannot connect to it and nothing goes to /var/log/ppp.log The VPN box is my firewall. I am trying to connect to it from Windows2K with static inet IP creating connection directly to the outside inet IP of my VPN FreeBSD firewall. I have also this rule in my firewall script: ipfw add allow tcp from any to $oip1 1723 keep-state I have this entry in my syslog.conf !ppp *.* /var/log/ppp.log mpd is started with mpd -b option. sockstat -l4 doesnt show mpd either, i donno if it should tho... Any idea why it fails? The config files are following: /usr/local/etc/mpd/mpd.conf : vpn: load pptp pptp: new -i ng0 pptp pptp set iface disable on-demand set iface idle 1800 set bundle enable multilink set link yes acfcomp protocomp set link no pap chap set link enable chap set link keep-alive 10 60 set link mtu 1460 set ipcp yes vjcomp # set ipcp ranges 0.0.0.0/0 set ipcp ranges 192.168.64.10/32 192.168.1.250/32 set ipcp dns 192.168.64.5 set ipcp nbns 192.168.64.3 # # The five lines below enable Microsoft Point-to-Point encryption # (MPPE) using the ng_mppc(8) netgraph node type. # set bundle enable compression set ccp yes mppc set ccp yes mpp-e40 # set ccp no mpp-e40 set ccp yes mpp-e128 set ccp yes mpp-stateless /usr/local/etc/mpd/mpd.links: vpn: set link type pptp set pptp self 192.168.64.2 set pptp peer 11.223.34.56 set pptp enable originate incoming outcall and /usr/local/etc/mpd/mpd.secret : yazzy "xxxyyyzzz" -- Marcin M. Jessa Software developer/System Administrator Wireless Reading Systems ASA Skreddervn 9 N-1537 Moss Phone: +47 69 27 96 88 Cellular: +47 988 505 44 Just because it works does not make it right. Uptime: 11:27AM up 3 days, 19:04, 2 users, load averages: 0.06, 0.03, 0.00 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 21 3:58:27 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 03D9C37B401 for ; Thu, 21 Nov 2002 03:58:27 -0800 (PST) Received: from dl36061.travelcheap.com (dl36061.travelcheap.com [198.172.138.183]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5F7AB43E6E for ; Thu, 21 Nov 2002 03:58:26 -0800 (PST) (envelope-from Knives@Zapo.Net) Received: from mail.Zapo.Net ([67.234.73.155]) by dl36061.travelcheap.com (Post.Office MTA v3.5.3 release 223 ID# 35-65457U3000L300S0V35) with ESMTP id com; Thu, 21 Nov 2002 07:00:09 -0500 Message-ID: <00003f172b15$0000351d$00004776@mail.Zapo.Net> To: From: "Damascus" Subject: Award Winning TiNives 5th Year Anniversary 20% Savings Date: Thu, 21 Nov 2002 05:58:12 -1800 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit Reply-To: Knives@Zapo.Net X-Priority: 3 X-MSMail-Priority: Normal MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Sensitivity: Confidential X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org
TiNives Custom Shop provides specialty handle coatings, inlay of preciuos metals, and titanium contoured handles with a variety of texturing. Blade material consist of an assortment of Devin Thomas damascus, Damasteel damascus, 154 CM (option for black diamond coating).
Visit Us at: www.tinives.com
Offer Expires December 30, 2002. Offer not available with other discounts.

To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 21 8:48:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CE48737B401; Thu, 21 Nov 2002 08:48:47 -0800 (PST) Received: from hotmail.com (f7.law3.hotmail.com [209.185.241.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id 65F9D43E88; Thu, 21 Nov 2002 08:48:47 -0800 (PST) (envelope-from spoug@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 21 Nov 2002 08:48:47 -0800 Received: from 199.84.165.3 by lw3fd.law3.hotmail.msn.com with HTTP; Thu, 21 Nov 2002 16:48:46 GMT X-Originating-IP: [199.84.165.3] From: "Vincent Goupil" To: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter Date: Thu, 21 Nov 2002 16:48:46 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 21 Nov 2002 16:48:47.0297 (UTC) FILETIME=[DC501310:01C2917D] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The slow network response is that clients inside my firewall begin to have timeout when accessing web and mail and I begin to have problem reaching the box with ssh. I'll try the ifconfig down/up this afternoon. >other questions was: > - what is "Slow network response"? > - does ifconfig down/up helps? >tcpdump buffers output so >usful bits are some time after trouble. >In my case slowdown triggered by >arp scans > > > My network is composed with Windows 2000 servers and pro. > > 192.168.20.2 <- w2k srv > > 192.168.20.3 <- w2k srv > > 192.168.20.7 <- w2k srv > > 192.168.20.8 <- w2k srv > > 192.168.20.9 <- w2k srv > > 192.168.20.10 <- another freebsd box > > 192.168.20.210 <- the firewall > > > > 23:58:43.356569 arp who-has 192.168.20.99 tell 192.168.20.8 > > 23:58:46.471284 arp who-has 192.168.20.127 tell 192.168.20.3 > > 23:58:46.472257 arp who-has 192.168.20.127 tell 192.168.20.8 > > 23:59:04.543497 arp who-has 192.168.20.2 tell 192.168.20.3 > > 23:59:10.352106 arp who-has 192.168.20.7 tell 192.168.20.200 > > 23:59:15.827551 arp who-has 192.168.20.251 tell 192.168.20.7 > > 23:59:17.082626 arp who-has 192.168.20.201 tell 192.168.20.8 > > 23:59:20.245406 arp who-has 192.168.20.201 tell 192.168.20.112 > > 23:59:22.723713 arp who-has 192.168.20.104 tell 192.168.20.3 > > 23:59:26.517132 arp who-has 192.168.20.6 tell 192.168.20.8 > > 23:59:28.824120 arp who-has 192.168.20.7 tell 192.168.20.99 > > 23:59:29.801078 arp who-has 192.168.20.6 tell 192.168.20.7 > > 23:59:48.762973 arp who-has 192.168.20.165 tell 192.168.20.8 > > 23:59:55.203905 arp who-has 192.168.20.75 tell 192.168.20.3 > > 23:59:55.688710 arp who-has 192.168.20.114 tell 192.168.20.8 > > 23:59:55.861042 arp who-has 192.168.20.77 tell 192.168.20.8 > > 00:00:00.192659 arp who-has 192.168.20.106 tell 192.168.20.201 > > 00:00:04.337994 arp who-has 192.168.20.10 tell 192.168.20.8 > > 00:00:04.538035 arp who-has 192.168.20.10 tell 192.168.20.2 > > 00:00:04.775959 arp who-has 192.168.20.10 tell 192.168.20.3 > > 00:00:05.022385 arp who-has 192.168.20.10 tell 192.168.20.9 > > 00:00:05.066194 arp who-has 192.168.20.10 tell 192.168.20.7 > > 00:00:05.209935 arp who-has 192.168.20.10 tell 192.168.20.6 > > 00:00:20.085908 arp who-has 192.168.20.9 tell 192.168.20.3 > > 00:00:20.116177 arp who-has 192.168.20.9 tell 192.168.20.8 > > 00:00:22.235535 arp who-has 192.168.20.101 tell 192.168.20.8 > > 00:00:22.236614 arp who-has 192.168.20.101 tell 192.168.20.3 > > 00:00:23.118443 arp who-has 192.168.20.54 tell 192.168.20.3 > > 00:00:25.075679 arp who-has 192.168.20.7 tell 192.168.20.201 > > 00:00:29.815522 arp who-has 192.168.20.166 tell 192.168.20.7 > > 00:00:30.587208 arp who-has 192.168.20.157 (2f:69:70:63:68:65) tell > > 192.168.20.201 > > 00:00:31.810270 arp who-has 192.168.20.166 tell 192.168.20.7 > > 00:00:45.473558 arp who-has 192.168.20.177 tell 192.168.20.201 > > > > > > >From: "."@babolo.ru > > >To: Vincent Goupil > > >CC: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG > > >Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter > > >Date: Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > > >MIME-Version: 1.0 > > >Received: from aaz.links.ru ([193.125.152.37]) by >mc6-f36.law1.hotmail.com > > >with Microsoft SMTPSVC(5.0.2195.5600); Tue, 19 Nov 2002 19:08:36 -0800 > > >Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])by >aaz.links.ru > > >(8.12.6/8.12.6) with ESMTP id gAK3AfDh006526;Wed, 20 Nov 2002 06:10:41 > > >+0300 (MSK)(envelope-from babolo@aaz.links.ru) > > >Received: (from babolo@localhost)by aaz.links.ru (8.12.6/8.12.6/Submit) >id > > >gAK3AeSv006525;Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > > >Message-Id: <200211200310.gAK3AeSv006525@aaz.links.ru> > > >X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; >no-hdr-encoding=1 > > >In-Reply-To: > > >X-Mailer: ELM [version 2.4ME+ PL99b (25)] > > >Return-Path: babolo@aaz.links.ru > > >X-OriginalArrivalTime: 20 Nov 2002 03:08:36.0969 (UTC) > > >FILETIME=[1E422D90:01C29042] > > > > > > > I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter > > >v3.4.27. > > > > This system act as a firewall for an enterprise. They need high > > > > availability. I have 5 network card, all 3C905 (3*3c905B-TX and > > >2*905C-TX). > > > > I made this setup in july and it run fine until 3 weeks ago. The > > >first > > > > and second card are for the internet link (primary and backup). The > > >third > > > > is for DMZ and the fourth is for local network. The fifth is unused > > >(marked > > > > as down). Each card as is own IRQ (except the fifth that is shared >with > > >the > > > > first). The high availability is provided by the two internet link, >if > > >one > > > > goes down, the second take the load (change default route, ipf >rules, > > >ipnat > > > > rules and DNS records). This is done by a script running by cron. >We > > >can > > > > also do that manually. We have two /29 network for the first link >and > > >one > > > > /28 network for the second (we use alias on internet interfaces). >There > > >is > > > > only 3 services that run on the firewall: SSH (but only accessible >from > > >3 > > > > subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one > > >subnet) > > > > > > > > We begin to have problem 3 weeks ago. The firewall begin to have a >slow > > > > response. I begin to have this arp message error (many times): > > > > arplookup 255.255.255.0 failed: host is not on local network > > > > arpresolve: can't allocate llinfo for 255.255.255.0rt > > > > We reboot the server and the network fast as earlier. I finally >find > > > > something: when we use alias, we need to have at least one regular > > >netmask > > > > (instead of 255.255.255.255) for each network/subnetwork. My error >was > > >on > > > > the first link, my second sub-network was not configured properly. >I > > > > changed it and it stop to have these errors about arp but the >problem > > >wasn't > > > > resolved. The network continue to be slow until we reboot the >server. > > >This > > > > happen during the day. Now, it happen everytime. > > > > > > > > What I've done: > > > > - I changed the netmask (as said earlier) > > > > - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. > > > > - I look for IRQ conflict > > > > - I configure all interface with media and mediaopt. They not using > > > > autodetect anymore. > > > > - I chkrootkit and nothing found > > > > > > > > What I suspect: > > > > - I read in a forum that the driver (xl) of 3C905 is not the best >for > > > > FreeBSD. I don't know if this apply to 4.6.2. > > > > - Ethernet cables (I need to change it) > > > > - We run SSL (with a lot of users) in one of our web servers in the >dmz. > > >As > > > > I know, SSL run on top of TCP, it should not be a problem. > > > > - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not > > >promisc" > > > > and "xl1 is not promisc". I have 5 interfaces, what about the >others ? > > > > > > > > Can someone have an idea ? > > >What you mean when say "Slow network response"? > > >If that mean that packets trawel long > > >from some host to host under question > > >as reported by tcpdump, does ifconfig xlN down > > >and then ifconfig xlN up repare situation > > >for some time? > > >What tcpdump -npi xlN ether broadcast and not ip > > >say when slowdown hapens? > > > > > >-- > > >@BABOLO http://links.ru/ > > > > > > _________________________________________________________________ > > Protect your PC - get McAfee.com VirusScan Online > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-net" in the body of the message > > > >-- >@BABOLO http://links.ru/ > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message _________________________________________________________________ Add photos to your messages with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 21 10:57:30 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9FB1637B401; Thu, 21 Nov 2002 10:57:29 -0800 (PST) Received: from mail.yazzy.org (mail.yazzy.org [80.232.16.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id EBDA743EA9; Thu, 21 Nov 2002 10:57:28 -0800 (PST) (envelope-from yazzy@ezunix.org) Received: by mail.yazzy.org (Postfix, from userid 1001) id ACBDCB60C; Thu, 21 Nov 2002 19:57:27 +0100 (CET) Date: Thu, 21 Nov 2002 19:57:27 +0100 From: "Marcin M. Jessa" To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: Pptpd , HDCP and LDAP or SQL authentication Message-ID: <20021121185727.GC7671@yazzy.org> Reply-To: Marcin Jessa Mail-Followup-To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: ezUnix.org X-Operating-System: FreeBSD 4.7-RELEASE i386 7:40PM up 4 days, 3:17, 2 users, load averages: 0.00, 0.00, 0.00 X-Editor: Vim http://www.vim.org/ X-Mailer: Mutt http://www.mutt.org/ X-Info: http://www.ezunix.org/ User-Agent: Mutt/1.5.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi guys. Finally I managed to successfully setup mpd allowing me to access the other side of the VPN link. Thanks a lot for your suggestions. I have three remining questions before I will make a HowTo out of my experience. 1. How can I enable access to the whole LAN on the other side of my VPN link allowing users to browse it. 2. How to run DHCP over mpd's tunnel? 3. Do you know if there is a way to authenticate pptpd users with LDAP or SQL instead of the mpd.secret text file? Any suggestions and comments are welcome. Cheers. YazzY To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Nov 21 14:14:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8FEA537B401; Thu, 21 Nov 2002 14:14:18 -0800 (PST) Received: from hotmail.com (f119.law3.hotmail.com [209.185.241.119]) by mx1.FreeBSD.org (Postfix) with ESMTP id F144743EA3; Thu, 21 Nov 2002 14:14:17 -0800 (PST) (envelope-from spoug@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 21 Nov 2002 14:14:17 -0800 Received: from 199.84.165.3 by lw3fd.law3.hotmail.msn.com with HTTP; Thu, 21 Nov 2002 22:14:17 GMT X-Originating-IP: [199.84.165.3] From: "Vincent Goupil" To: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter Date: Thu, 21 Nov 2002 22:14:17 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 21 Nov 2002 22:14:17.0781 (UTC) FILETIME=[55636E50:01C291AB] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nothing better when I use ifconfig down/up. >other questions was: > - what is "Slow network response"? > - does ifconfig down/up helps? >tcpdump buffers output so >usful bits are some time after trouble. >In my case slowdown triggered by >arp scans > > > My network is composed with Windows 2000 servers and pro. > > 192.168.20.2 <- w2k srv > > 192.168.20.3 <- w2k srv > > 192.168.20.7 <- w2k srv > > 192.168.20.8 <- w2k srv > > 192.168.20.9 <- w2k srv > > 192.168.20.10 <- another freebsd box > > 192.168.20.210 <- the firewall > > > > 23:58:43.356569 arp who-has 192.168.20.99 tell 192.168.20.8 > > 23:58:46.471284 arp who-has 192.168.20.127 tell 192.168.20.3 > > 23:58:46.472257 arp who-has 192.168.20.127 tell 192.168.20.8 > > 23:59:04.543497 arp who-has 192.168.20.2 tell 192.168.20.3 > > 23:59:10.352106 arp who-has 192.168.20.7 tell 192.168.20.200 > > 23:59:15.827551 arp who-has 192.168.20.251 tell 192.168.20.7 > > 23:59:17.082626 arp who-has 192.168.20.201 tell 192.168.20.8 > > 23:59:20.245406 arp who-has 192.168.20.201 tell 192.168.20.112 > > 23:59:22.723713 arp who-has 192.168.20.104 tell 192.168.20.3 > > 23:59:26.517132 arp who-has 192.168.20.6 tell 192.168.20.8 > > 23:59:28.824120 arp who-has 192.168.20.7 tell 192.168.20.99 > > 23:59:29.801078 arp who-has 192.168.20.6 tell 192.168.20.7 > > 23:59:48.762973 arp who-has 192.168.20.165 tell 192.168.20.8 > > 23:59:55.203905 arp who-has 192.168.20.75 tell 192.168.20.3 > > 23:59:55.688710 arp who-has 192.168.20.114 tell 192.168.20.8 > > 23:59:55.861042 arp who-has 192.168.20.77 tell 192.168.20.8 > > 00:00:00.192659 arp who-has 192.168.20.106 tell 192.168.20.201 > > 00:00:04.337994 arp who-has 192.168.20.10 tell 192.168.20.8 > > 00:00:04.538035 arp who-has 192.168.20.10 tell 192.168.20.2 > > 00:00:04.775959 arp who-has 192.168.20.10 tell 192.168.20.3 > > 00:00:05.022385 arp who-has 192.168.20.10 tell 192.168.20.9 > > 00:00:05.066194 arp who-has 192.168.20.10 tell 192.168.20.7 > > 00:00:05.209935 arp who-has 192.168.20.10 tell 192.168.20.6 > > 00:00:20.085908 arp who-has 192.168.20.9 tell 192.168.20.3 > > 00:00:20.116177 arp who-has 192.168.20.9 tell 192.168.20.8 > > 00:00:22.235535 arp who-has 192.168.20.101 tell 192.168.20.8 > > 00:00:22.236614 arp who-has 192.168.20.101 tell 192.168.20.3 > > 00:00:23.118443 arp who-has 192.168.20.54 tell 192.168.20.3 > > 00:00:25.075679 arp who-has 192.168.20.7 tell 192.168.20.201 > > 00:00:29.815522 arp who-has 192.168.20.166 tell 192.168.20.7 > > 00:00:30.587208 arp who-has 192.168.20.157 (2f:69:70:63:68:65) tell > > 192.168.20.201 > > 00:00:31.810270 arp who-has 192.168.20.166 tell 192.168.20.7 > > 00:00:45.473558 arp who-has 192.168.20.177 tell 192.168.20.201 > > > > > > >From: "."@babolo.ru > > >To: Vincent Goupil > > >CC: freebsd-isp@FreeBSD.ORG, freebsd-net@FreeBSD.ORG > > >Subject: Re: Slow network response with FreeBSD 4.6.2 and ipfilter > > >Date: Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > > >MIME-Version: 1.0 > > >Received: from aaz.links.ru ([193.125.152.37]) by >mc6-f36.law1.hotmail.com > > >with Microsoft SMTPSVC(5.0.2195.5600); Tue, 19 Nov 2002 19:08:36 -0800 > > >Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])by >aaz.links.ru > > >(8.12.6/8.12.6) with ESMTP id gAK3AfDh006526;Wed, 20 Nov 2002 06:10:41 > > >+0300 (MSK)(envelope-from babolo@aaz.links.ru) > > >Received: (from babolo@localhost)by aaz.links.ru (8.12.6/8.12.6/Submit) >id > > >gAK3AeSv006525;Wed, 20 Nov 2002 06:10:40 +0300 (MSK) > > >Message-Id: <200211200310.gAK3AeSv006525@aaz.links.ru> > > >X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; >no-hdr-encoding=1 > > >In-Reply-To: > > >X-Mailer: ELM [version 2.4ME+ PL99b (25)] > > >Return-Path: babolo@aaz.links.ru > > >X-OriginalArrivalTime: 20 Nov 2002 03:08:36.0969 (UTC) > > >FILETIME=[1E422D90:01C29042] > > > > > > > I have a system running FreeBSD 4.6.2-RELEASE-p5 #0 with ipfilter > > >v3.4.27. > > > > This system act as a firewall for an enterprise. They need high > > > > availability. I have 5 network card, all 3C905 (3*3c905B-TX and > > >2*905C-TX). > > > > I made this setup in july and it run fine until 3 weeks ago. The > > >first > > > > and second card are for the internet link (primary and backup). The > > >third > > > > is for DMZ and the fourth is for local network. The fifth is unused > > >(marked > > > > as down). Each card as is own IRQ (except the fifth that is shared >with > > >the > > > > first). The high availability is provided by the two internet link, >if > > >one > > > > goes down, the second take the load (change default route, ipf >rules, > > >ipnat > > > > rules and DNS records). This is done by a script running by cron. >We > > >can > > > > also do that manually. We have two /29 network for the first link >and > > >one > > > > /28 network for the second (we use alias on internet interfaces). >There > > >is > > > > only 3 services that run on the firewall: SSH (but only accessible >from > > >3 > > > > subnets), ftpproxy (jftpgw 0.13.1) and snmp (only accessible by one > > >subnet) > > > > > > > > We begin to have problem 3 weeks ago. The firewall begin to have a >slow > > > > response. I begin to have this arp message error (many times): > > > > arplookup 255.255.255.0 failed: host is not on local network > > > > arpresolve: can't allocate llinfo for 255.255.255.0rt > > > > We reboot the server and the network fast as earlier. I finally >find > > > > something: when we use alias, we need to have at least one regular > > >netmask > > > > (instead of 255.255.255.255) for each network/subnetwork. My error >was > > >on > > > > the first link, my second sub-network was not configured properly. >I > > > > changed it and it stop to have these errors about arp but the >problem > > >wasn't > > > > resolved. The network continue to be slow until we reboot the >server. > > >This > > > > happen during the day. Now, it happen everytime. > > > > > > > > What I've done: > > > > - I changed the netmask (as said earlier) > > > > - I upgraded from 4.6-RELEASE #0 to 4.6.2-RELEASE-p5 #0. > > > > - I look for IRQ conflict > > > > - I configure all interface with media and mediaopt. They not using > > > > autodetect anymore. > > > > - I chkrootkit and nothing found > > > > > > > > What I suspect: > > > > - I read in a forum that the driver (xl) of 3C905 is not the best >for > > > > FreeBSD. I don't know if this apply to 4.6.2. > > > > - Ethernet cables (I need to change it) > > > > - We run SSL (with a lot of users) in one of our web servers in the >dmz. > > >As > > > > I know, SSL run on top of TCP, it should not be a problem. > > > > - When i run ifpromisc (in chkrootkit), it tell me that "xl0 is not > > >promisc" > > > > and "xl1 is not promisc". I have 5 interfaces, what about the >others ? > > > > > > > > Can someone have an idea ? > > >What you mean when say "Slow network response"? > > >If that mean that packets trawel long > > >from some host to host under question > > >as reported by tcpdump, does ifconfig xlN down > > >and then ifconfig xlN up repare situation > > >for some time? > > >What tcpdump -npi xlN ether broadcast and not ip > > >say when slowdown hapens? > > > > > >-- > > >@BABOLO http://links.ru/ > > > > > > _________________________________________________________________ > > Protect your PC - get McAfee.com VirusScan Online > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-net" in the body of the message > > > >-- >@BABOLO http://links.ru/ _________________________________________________________________ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Nov 22 19:46:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E9B7C37B401; Fri, 22 Nov 2002 19:46:30 -0800 (PST) Received: from nic-naa.net (216-220-241-233.midmaine.com [216.220.241.233]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3BBDA43EAF; Fri, 22 Nov 2002 19:46:30 -0800 (PST) (envelope-from brunner@nic-naa.net) Received: from nic-naa.net (localhost.nic-naa.net [127.0.0.1]) by nic-naa.net (8.12.6/8.12.6) with ESMTP id gAN3lBjU001226; Fri, 22 Nov 2002 22:47:11 -0500 (EST) (envelope-from brunner@nic-naa.net) Message-Id: <200211230347.gAN3lBjU001226@nic-naa.net> To: freebsd-net@FreeBSD.ORG Cc: freebsd-isp@FreeBSD.ORG Subject: dial-in recommendations please MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <1224.1038023231.1@nic-naa.net> Date: Fri, 22 Nov 2002 22:47:11 -0500 From: Eric Brunner-Williams in Portland Maine Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I'm looking at the isp-in-my-basement problem. The dial-in problem is one I haven't solved-for in over ten years. I'd like to pick the brains of anyone who's started a small isp recently. Thanks in advance, Eric To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Nov 23 6: 4:27 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 02EE237B401; Sat, 23 Nov 2002 06:04:26 -0800 (PST) Received: from kira.epconline.net (kira.epconline.net [207.206.185.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2E86F43E91; Sat, 23 Nov 2002 06:04:25 -0800 (PST) (envelope-from carock@epcusa.com) Received: from localhost (carock@localhost) by kira.epconline.net (8.11.4/8.11.4) with ESMTP id gANE4Cq49926; Sat, 23 Nov 2002 08:04:12 -0600 (CST) Date: Sat, 23 Nov 2002 08:04:12 -0600 (CST) From: Chuck Rock X-Sender: carock@kira.epconline.net To: Eric Brunner-Williams in Portland Maine Cc: freebsd-net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: dial-in recommendations please In-Reply-To: <200211230347.gAN3lBjU001226@nic-naa.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I just set up a rural dial-up pool in the basement of one of our employees. I will try to help you if I can. Chuck On Fri, 22 Nov 2002, Eric Brunner-Williams in Portland Maine wrote: > Hi, > > I'm looking at the isp-in-my-basement problem. > > The dial-in problem is one I haven't solved-for in over ten years. > > I'd like to pick the brains of anyone who's started a small isp > recently. > > Thanks in advance, > Eric > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message