From owner-freebsd-isp Sun Aug 15 4:29: 5 1999 Delivered-To: freebsd-isp@freebsd.org Received: from gw.caamora.com.au (jonath5.lnk.telstra.net [139.130.41.237]) by hub.freebsd.org (Postfix) with ESMTP id 2997714FD0 for ; Sun, 15 Aug 1999 04:28:57 -0700 (PDT) (envelope-from jon@gw.caamora.com.au) Received: (from jon@localhost) by gw.caamora.com.au (8.8.8/8.8.8) id VAA11680; Sun, 15 Aug 1999 21:26:13 +1000 (EST) (envelope-from jon) Message-ID: <19990815212612.B11478@caamora.com.au> Date: Sun, 15 Aug 1999 21:26:12 +1000 From: jonathan michaels To: Stuart Henderson , Kenneth Karlsson Cc: freebsd-isp@FreeBSD.ORG, rmartine@infosel.com.mx Subject: Re: Sv: small isp Mail-Followup-To: Stuart Henderson , Kenneth Karlsson , freebsd-isp@FreeBSD.ORG, rmartine@infosel.com.mx References: <7ovhs0$59cb@eGroups.com> <002a01bee560$2ef3bfe0$0a69a8c0@combo.dk> <37B42BC7.668B9A1D@eclipse.net.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <37B42BC7.668B9A1D@eclipse.net.uk>; from Stuart Henderson on Fri, Aug 13, 1999 at 03:29:27PM +0100 X-Operating-System: FreeBSD gw.caamora.com.au 2.2.7-RELEASE i386 X-Mood: i'm alive, if it counts Organisation: Caamora, PO Box 144, Rosebery NSW 1445 Australia Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Aug 13, 1999 at 03:29:27PM +0100, Stuart Henderson wrote: > This document: http://www.interlinkweb.com/~main/isp-faq-list.htm > is a good place to start reading. Also, I would recommend getting > Greg Lehey's "Complete FreeBSD" book if you don't already have a > copy and are new to the OS. 'the complete freebsd' might be ok to a not so wet behind teh ears beginner, but it doesnt cover a whole swag of areas that need looking at. please note, i'm not disparaging greg or the book, both are quite good fro what they are .. it is just that the book is (as are most in this field are) poorly written and very hard going unless you really understand the topic at hand. its going to be a while before we get some of teh good professional technical writers starting to see the value in putting thier names to texts soley dealing with linux and freebsd, anybsd or even for that matter a wider less technical approach to main stream unix in general. till then these two from teh o'rielly stable will be more helpfull than a truckload of people offer good albeit misguide homespun homily style advice. good as anscdotal advice is, but needs to be taken with much care and concideration. anyway here they are are ... managing internet information services -liu, peek, jones, buus & nye -isbn 1-56592-062-7 getting connected: the internet at 65k and up -dowd -isbn 1-56592-203-4 and to get a good apraisal of what kind of services your customer are likely to expect take a look at (its an o'rielly as well) ... the whole internet, users guide and catalog - second edition -kroll -isbn 1-56592-063-5 between these three you will find out how much you do or don't know or understand, using this as a springboard it is possible to reference most of the other books in teh o'rielly catalog and to understand thier value and when in the overal stream of things they will be important to you. planing is the most important thing, you need to plan (carefully) otherwise your internet adventure will become a blackhole sucking more and more money. take it easy and be guided by people who offer sensible advice. only purchase industry standard hardware ... cheap (junky, home style ergo mass market) hardware will break you. i've seen to many startups fold because of their save money hardware 'planing'. running an internet services provisioner is a hard job requiring long hours, its not as glamorous as it is portrated on teh tv. take care. please excuse my typing/spelling, my hands are not working as well as they shoudl be and the pain is increasing exponentially so i'd better call it quits ... if you need further clarification, well the headers speak volumes. warm regards jonathan -- =============================================================================== Jonathan Michaels PO Box 144, Rosebery, NSW 1445 Australia =========================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 15 18:49:56 1999 Delivered-To: freebsd-isp@freebsd.org Received: from admin.cgocable.net (admin.cgocable.net [24.226.1.21]) by hub.freebsd.org (Postfix) with ESMTP id 8A6E3153FA for ; Sun, 15 Aug 1999 18:49:06 -0700 (PDT) (envelope-from paul@premier-networks.com) Received: from premier-networks.com (cgowave-41-128.cgocable.net [24.226.41.128]) by admin.cgocable.net (8.9.3/8.9.3) with ESMTP id VAA24816 for ; Sun, 15 Aug 1999 21:48:14 -0400 (EDT) Message-ID: <37B76DE5.54710D72@premier-networks.com> Date: Sun, 15 Aug 1999 21:48:21 -0400 From: Paul Stewart Organization: Premier Networks X-Mailer: Mozilla 4.6 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: ILS Server For FreeBSD? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm in desperate need of an ILS server for running under FreeBSD.. does such a beast exist? I have a client who wants me to co-locate a server just so they can have a place to meet on MS Netmeeting... Thanks, -- Paul Stewart Premier Networks (705)740-0442 voice (705)740-0443 fax http://www.premier-networks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 15 21:21:51 1999 Delivered-To: freebsd-isp@freebsd.org Received: from dt011n65.san.rr.com (dt011n65.san.rr.com [204.210.13.101]) by hub.freebsd.org (Postfix) with ESMTP id 2F7EC14BD0 for ; Sun, 15 Aug 1999 21:21:46 -0700 (PDT) (envelope-from Doug@gorean.org) Received: from gorean.org (master [10.0.0.2]) by dt011n65.san.rr.com (8.9.3/8.8.8) with ESMTP id VAA14585; Sun, 15 Aug 1999 21:20:07 -0700 (PDT) (envelope-from Doug@gorean.org) Message-ID: <37B79179.1F596398@gorean.org> Date: Sun, 15 Aug 1999 21:20:09 -0700 From: Doug Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.61 [en] (X11; U; FreeBSD 4.0-CURRENT-0811 i386) X-Accept-Language: en MIME-Version: 1.0 To: "Jean M. Vandette" Cc: FreeBSD-ISP@freebsd.org Subject: Re: NFS server References: <4.1.19990813211946.01409cc0@ms.securenet.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Jean M. Vandette" wrote: > > Greetings all.... > > I just finished making up a new system disk to upgrade one of our > servers to 3.2-STABLE because we use nfsd I have attempted to > set this up on the new disk. > > On start-up I get the following in the message logs. > > Aug 13 21:11:50 squid mountd[126]: can't register mount > Aug 13 21:11:50 squid nfsd:[129]: can't register tcp with portmap > > If I start "mountd -r " and "nfsd -u -t -n 4" manually after the system is > up no problem it just won't do it automatically at boot... rpc.statd doesn't > even try to start. > > The setup is exactly the same as the 2.2.8-STABLE machine which > is working fine. > I'm a bit puzzled any ideas where to look or what to try? What have you set in /etc/rc.conf[.local] to start nfs? There are several knobs that should be copied from /etc/defaults/rc.conf and modified, make sure to examine that file thoroughly. Good luck, Doug PS, Next time please send questions like this to freebsd-questions. They will get answered faster. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 0:16:34 1999 Delivered-To: freebsd-isp@freebsd.org Received: from tdis.gctc.rssi.ru (tdis.gctc.rssi.ru [193.232.26.70]) by hub.freebsd.org (Postfix) with ESMTP id A37B215499 for ; Mon, 16 Aug 1999 00:10:56 -0700 (PDT) (envelope-from Andrew.Karjagin@tdis.gctc.rssi.ru) Received: from tdis.gctc.rssi.ru ([192.168.0.30]) by tdis.gctc.rssi.ru (8.9.3/8.9.3) with ESMTP id KAA16847 for ; Thu, 12 Aug 1999 10:58:56 +0400 (MSD) Message-ID: <37B26FB6.DBDEF60C@tdis.gctc.rssi.ru> Date: Thu, 12 Aug 1999 10:54:46 +0400 From: "Andrew A.Karjagin" Organization: Gagarin Cosmonaut Training Center X-Mailer: Mozilla 4.5 [en] (X11; I; SunOS 5.5.1 sun4m) X-Accept-Language: ru, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: tty buffer overflow Content-Type: multipart/mixed; boundary="------------66CF1BEED4FAA15846086F5E" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------66CF1BEED4FAA15846086F5E Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Hello! I have a 486 PC with FreeBSD 2.2.6, 32 Mb RAM and 8 modems with multiplexor. Everything is O'key, but sometimes I recieve the following message: starcity kernel log messages: > sio7: 197 more tty-level buffer overflows (total 197) > sio7: 776 more tty-level buffer overflows (total 973) > sio7: 829 more tty-level buffer overflows (total 1802) > sio7: 1039 more tty-level buffer overflows (total 2841) > sio7: 646 more tty-level buffer overflows (total 3487) > sio7: 844 more tty-level buffer overflows (total 4331) > sio7: 1042 more tty-level buffer overflows (total 5373) > sio7: 664 more tty-level buffer overflows (total 6037) > sio7: 700 more tty-level buffer overflows (total 6737) > sio7: 1189 more tty-level buffer overflows (total 7926) > sio7: 667 more tty-level buffer overflows (total 8593) > sio7: 775 more tty-level buffer overflows (total 9368) What does it mean? Thank you! --------------66CF1BEED4FAA15846086F5E Content-Type: text/x-vcard; charset=koi8-r; name="Andrew.Karjagin.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Andrew A.Karjagin Content-Disposition: attachment; filename="Andrew.Karjagin.vcf" begin:vcard n:Karjagin;Andrew x-mozilla-html:FALSE url:http://tdis.gctc.rssi.ru/~richi org:Gagarin Cosmonaut Training Center adr:;;;Star Town;;;Russia version:2.1 email;internet:Andrew.Karjagin@tdis.gctc.rssi.ru x-mozilla-cpt:;-15056 fn:Andrew Karjagin end:vcard --------------66CF1BEED4FAA15846086F5E-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 0:17:17 1999 Delivered-To: freebsd-isp@freebsd.org Received: from tdis.gctc.rssi.ru (tdis.gctc.rssi.ru [193.232.26.70]) by hub.freebsd.org (Postfix) with ESMTP id 7BD48153C4 for ; Mon, 16 Aug 1999 00:10:56 -0700 (PDT) (envelope-from Andrew.Karjagin@tdis.gctc.rssi.ru) Received: from tdis.gctc.rssi.ru ([192.168.0.30]) by tdis.gctc.rssi.ru (8.9.3/8.9.3) with ESMTP id MAA02643 for ; Wed, 11 Aug 1999 12:51:26 +0400 (MSD) Message-ID: <37B13984.C994E281@tdis.gctc.rssi.ru> Date: Wed, 11 Aug 1999 12:51:20 +0400 From: "Andrew A.Karjagin" Organization: Gagarin Cosmonaut Training Center X-Mailer: Mozilla 4.5 [en] (X11; I; SunOS 5.5.1 sun4m) X-Accept-Language: ru, en MIME-Version: 1.0 To: ISP FreeBSD Subject: Squid question Content-Type: multipart/mixed; boundary="------------73EF38F90F0A459C03383889" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------73EF38F90F0A459C03383889 Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Hello! I want to use Squid 2.1 for two nets of class C (192.168.0.0 and 192.168.1.0). I have FreeBSD 2.2.6 with two LAN interfaces (ed0 have Internet IP and ed1 have Intranet IP with aliasing (192.168.0.1 and alias 192.168.1.1)). How can I configure Squid to get requests from both networks? May I using "tcp_incoming_address" option twice? Thank you for your help! --------------73EF38F90F0A459C03383889 Content-Type: text/x-vcard; charset=koi8-r; name="Andrew.Karjagin.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Andrew A.Karjagin Content-Disposition: attachment; filename="Andrew.Karjagin.vcf" begin:vcard n:Karjagin;Andrew x-mozilla-html:FALSE url:http://tdis.gctc.rssi.ru/~richi org:Gagarin Cosmonaut Training Center adr:;;;Star Town;;;Russia version:2.1 email;internet:Andrew.Karjagin@tdis.gctc.rssi.ru x-mozilla-cpt:;-15056 fn:Andrew Karjagin end:vcard --------------73EF38F90F0A459C03383889-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 10:57: 2 1999 Delivered-To: freebsd-isp@freebsd.org Received: from b-ainc.com (cs9360-102.austin.rr.com [24.93.60.102]) by hub.freebsd.org (Postfix) with SMTP id 2CEBB14C38 for ; Mon, 16 Aug 1999 10:56:54 -0700 (PDT) (envelope-from jbender@b-ainc.com) Received: (qmail 1513 invoked from network); 16 Aug 1999 17:56:37 -0000 Received: from unknown (HELO jbender) (10.1.1.1) by 10.1.1.9 with SMTP; 16 Aug 1999 17:56:37 -0000 Message-Id: <3.0.5.32.19990816125705.009af740@b-ainc.com> X-Sender: jbender@b-ainc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Mon, 16 Aug 1999 12:57:05 -0500 To: freebsd-isp@freebsd.org From: Jeremy Bender Subject: FBSD + pentium II Xeon? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ladies and Gentlemen, My company just acquired one of the 450mhz pentium II Xeon processors for one of our 3.2-stable based router/mail server boxes. Does anyone have any experience with using this processor under fbsd.. which motherboard works well, any problems with using this prc under fbsd (this is the variant with the 2MB l2 cache). Right now we don't need scsi onboard, using an Adaptec 2940u2w for that, dual processor support would be nice, but far from necessary right now. i would appreciate any advice you anyone can give me. Thanks in advance, Jeremy Bender jbender@b-ainc.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 14:10:16 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id B0815154F4 for ; Mon, 16 Aug 1999 14:10:12 -0700 (PDT) (envelope-from up@pil.net) Received: (qmail 24110 invoked by uid 1825); 16 Aug 1999 21:10:25 -0000 Date: Mon, 16 Aug 1999 17:10:25 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: freebsd-isp@freebsd.org Subject: console redirection and other kernel options Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is my first BSD installation coming from a Sparc/Solaris background, so please bear with me... I've built a rackmount server that I'd like to be able to get into the console remotely, via a direct connection from a PM2. I've got the bios to come come up over the serial connection (it's an Intel L440GX+ with console redirection support) and I built a new kernel with: device sio0 at isa? port "IO_COM1" flags 0x20 tty irq 4 which, according to the comments in LINT and everywhere else I check, is supposed to force the OS console to COM1. However, once I get past the bios and the initial kernel load, it stops reporting to the serial console, and it takes no keyboard input from the vt320 I have hooked up there. If a vga monitor and PC keyboard are hooked up, they work fine and it otherwise boots normally. Any hints on how to get this working, would be greatly appreciated. On a somewhat related note, I noticed that the original GENERIC kernel was about 2.3MB, and this new one that I built is 8.3MB, even though I mostly just commented stuff out in the config file. Is this normal, ie the original kernel is compressed or something? TIA, James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 14:36:50 1999 Delivered-To: freebsd-isp@freebsd.org Received: from binnen.mail.nl.demon.net (binnen.mail.nl.demon.net [194.159.72.192]) by hub.freebsd.org (Postfix) with ESMTP id 82C32155BB for ; Mon, 16 Aug 1999 14:36:31 -0700 (PDT) (envelope-from arjan@nl.demon.net) Received: from inventionz.noc.nl.demon.net ([194.159.72.199]) by binnen.mail.nl.demon.net with esmtp (Exim 3.02 #1) id 11GUOt-0004dS-00; Mon, 16 Aug 1999 23:34:39 +0200 Received: from arjan (helo=localhost) by inventionz.noc.nl.demon.net with local-esmtp (Exim 2.12 #1) id 11GUUg-000JcS-00; Mon, 16 Aug 1999 23:40:38 +0200 Date: Mon, 16 Aug 1999 23:40:38 +0200 (CEST) From: Arjan van der Oest X-Sender: arjan@inventionz.noc.nl.demon.net To: up@3.am Cc: freebsd-isp@freebsd.org Subject: Re: console redirection and other kernel options In-Reply-To: Message-ID: X-no-archive: yes MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 16 Aug 1999 up@3.am wrote: > I've built a rackmount server that I'd like to be able to get into the > console remotely, via a direct connection from a PM2. I've got the bios > to come come up over the serial connection (it's an Intel L440GX+ with > console redirection support) and I built a new kernel with: > > device sio0 at isa? port "IO_COM1" flags 0x20 tty irq 4 Just put a boot.config file in your root containing "-P". This will boot on the serial console when there is no keyboard detected. Change /etc/ttys with these lines (note the 'secure' and 'vt100' part). ttyd0 "/usr/libexec/getty std.9600" vt100 on secure ttyd1 "/usr/libexec/getty std.9600" vt100 on ssecure > supposed to force the OS console to COM1. However, once I get past the > bios and the initial kernel load, it stops reporting to the serial > console, and it takes no keyboard input from the vt320 I have hooked up > there. If a vga monitor and PC keyboard are hooked up, they work fine and > it otherwise boots normally. Switch that BIOS option back off, this should do the trick. > Any hints on how to get this working, would be greatly appreciated. On a > somewhat related note, I noticed that the original GENERIC kernel was > about 2.3MB, and this new one that I built is 8.3MB, WHAAAA ! -r-xr-xr-x 1 root wheel 1645699 May 20 21:04 kernel* -rwxr-xr-x 1 root wheel 2236663 Feb 15 1999 kernel.GENERIC* > even though I > mostly just commented stuff out in the config file. Is this normal, ie > the original kernel is compressed or something? I've never seen a kernel THAT big :) Hope your console problem will be solved now... ao -- Jes: xntp is your friend. The evil empire of Redmond is not. Evil Empire is a registered trademark of Ronald Reagan's sole functioning brain cell. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 14:47:13 1999 Delivered-To: freebsd-isp@freebsd.org Received: from unix.megared.net.mx (megared.net.mx [207.249.162.252]) by hub.freebsd.org (Postfix) with ESMTP id CBEF514C46 for ; Mon, 16 Aug 1999 14:47:03 -0700 (PDT) (envelope-from ales@megared.net.mx) Received: from ales (ales.megared.net.mx [207.249.163.252]) by unix.megared.net.mx (8.9.3/8.9.3) with SMTP id QAA75690; Mon, 16 Aug 1999 16:46:06 -0500 (CDT) (envelope-from ales@megared.net.mx) Message-ID: <00c601bee830$c01309e0$fca3f9cf@megared.net.mx> From: "Alejandro Ramirez" To: , References: Subject: RE: console redirection and other kernel options Date: Mon, 16 Aug 1999 16:46:08 -0500 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2014.211 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2014.211 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, You can try comconsole-0.1, this pakage it does what you want its in the ports collection /usr/ports/sysutils/comconsole. For your kernel, I think that you grabed the LINT file and customized as you wanted, but I believe that you should copy the GENERIC file, add the lines you need, and remove the others you dont. I hope this helps... Ales ----- Original Message ----- From: To: Sent: Monday, August 16, 1999 4:10 PM Subject: console redirection and other kernel options > > This is my first BSD installation coming from a Sparc/Solaris background, > so please bear with me... > > I've built a rackmount server that I'd like to be able to get into the > console remotely, via a direct connection from a PM2. I've got the bios > to come come up over the serial connection (it's an Intel L440GX+ with > console redirection support) and I built a new kernel with: > > device sio0 at isa? port "IO_COM1" flags 0x20 tty irq 4 > > which, according to the comments in LINT and everywhere else I check, is > supposed to force the OS console to COM1. However, once I get past the > bios and the initial kernel load, it stops reporting to the serial > console, and it takes no keyboard input from the vt320 I have hooked up > there. If a vga monitor and PC keyboard are hooked up, they work fine and > it otherwise boots normally. > > Any hints on how to get this working, would be greatly appreciated. On a > somewhat related note, I noticed that the original GENERIC kernel was > about 2.3MB, and this new one that I built is 8.3MB, even though I > mostly just commented stuff out in the config file. Is this normal, ie > the original kernel is compressed or something? > > TIA, > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans > 3 days of clues, news, and views from the industry's best and brightest. > Visit for information and registration. > ========================================================================= > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 14:56:16 1999 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id D315514C46 for ; Mon, 16 Aug 1999 14:56:07 -0700 (PDT) (envelope-from jwyatt@bsdie.rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (2115 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Mon, 16 Aug 1999 16:44:56 -0500 (CDT) (Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7) Date: Mon, 16 Aug 1999 16:44:45 -0500 (CDT) From: James Wyatt To: up@3.am Cc: freebsd-isp@freebsd.org Subject: Re: console redirection and other kernel options In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 16 Aug 1999 up@3.am wrote: > This is my first BSD installation coming from a Sparc/Solaris background, > so please bear with me... Welcome aboard! > I've built a rackmount server that I'd like to be able to get into the > console remotely, via a direct connection from a PM2. I've got the bios > to come come up over the serial connection (it's an Intel L440GX+ with > console redirection support) and I built a new kernel with: > > device sio0 at isa? port "IO_COM1" flags 0x20 tty irq 4 This just configures the serial port device into the kernel. You need that to use a serial console or dialup modem. It's an important first step! 8{) You might also look-into adding this line to your kernel: options CONSPEED=38400 #default speed for serial console (default 9600) To get a getty on the serial line, allowing you a login prompt, try adding this line to /etc/ttys and signalling init: ttyd0 "/usr/libexec/getty std.38400" vt320 on secure > Any hints on how to get this working, would be greatly appreciated. On a > somewhat related note, I noticed that the original GENERIC kernel was > about 2.3MB, and this new one that I built is 8.3MB, even though I > mostly just commented stuff out in the config file. Is this normal, ie > the original kernel is compressed or something? Yikes! Most of my Kernels are 1-2MB. Is this file size, memory footprint, or what? Removing lots of unused drivers helps quite a bit. I think the kernel is compressed, there is gzip code in it. HTH - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 15:25:20 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id D6476155CF for ; Mon, 16 Aug 1999 15:25:17 -0700 (PDT) (envelope-from up@pil.net) Received: (qmail 13213 invoked by uid 1825); 16 Aug 1999 22:25:18 -0000 Date: Mon, 16 Aug 1999 18:25:18 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: Alejandro Ramirez Cc: freebsd-isp@FreeBSD.ORG Subject: RE: console redirection and other kernel options In-Reply-To: <00c601bee830$c01309e0$fca3f9cf@megared.net.mx> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 16 Aug 1999, Alejandro Ramirez wrote: > Hi, > > You can try comconsole-0.1, this pakage it does what you want its in the > ports collection /usr/ports/sysutils/comconsole. > > For your kernel, I think that you grabed the LINT file and customized as you > wanted, but I believe that you should copy the GENERIC file, add the lines > you need, and remove the others you dont. Thanks...no, I was building a modified GENERIC. The problem seems to be with "make depend". the config program tells you to run it, but if you do, you get the bloated kernel. I skipped it, and now the kernel's down to a relatively svelt 1.7MB. So much for following directions! :-/ > ----- Original Message ----- > From: > To: > Sent: Monday, August 16, 1999 4:10 PM > Subject: console redirection and other kernel options > > > > > > This is my first BSD installation coming from a Sparc/Solaris background, > > so please bear with me... > > > > I've built a rackmount server that I'd like to be able to get into the > > console remotely, via a direct connection from a PM2. I've got the bios > > to come come up over the serial connection (it's an Intel L440GX+ with > > console redirection support) and I built a new kernel with: > > > > device sio0 at isa? port "IO_COM1" flags 0x20 tty irq 4 > > > > which, according to the comments in LINT and everywhere else I check, is > > supposed to force the OS console to COM1. However, once I get past the > > bios and the initial kernel load, it stops reporting to the serial > > console, and it takes no keyboard input from the vt320 I have hooked up > > there. If a vga monitor and PC keyboard are hooked up, they work fine and > > it otherwise boots normally. > > > > Any hints on how to get this working, would be greatly appreciated. On a > > somewhat related note, I noticed that the original GENERIC kernel was > > about 2.3MB, and this new one that I built is 8.3MB, even though I > > mostly just commented stuff out in the config file. Is this normal, ie > > the original kernel is compressed or something? > > > > TIA, > > > > James Smallacombe PlantageNet, Inc. CEO and Janitor > > up@3.am http://3.am > > ========================================================================= > > ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans > > 3 days of clues, news, and views from the industry's best and brightest. > > Visit for information and registration. > > ========================================================================= > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 15:43:47 1999 Delivered-To: freebsd-isp@freebsd.org Received: from shell.futuresouth.com (shell.futuresouth.com [198.78.58.28]) by hub.freebsd.org (Postfix) with ESMTP id 617ED154DE for ; Mon, 16 Aug 1999 15:43:38 -0700 (PDT) (envelope-from fullermd@futuresouth.com) Received: (from fullermd@localhost) by shell.futuresouth.com (8.9.3/8.9.3) id RAA05060; Mon, 16 Aug 1999 17:43:45 -0500 (CDT) Date: Mon, 16 Aug 1999 17:43:44 -0500 From: "Matthew D. Fuller" To: up@3.am Cc: Alejandro Ramirez , freebsd-isp@FreeBSD.ORG Subject: Re: console redirection and other kernel options Message-ID: <19990816174344.T2750@futuresouth.com> References: <00c601bee830$c01309e0$fca3f9cf@megared.net.mx> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: ; from up@3.am on Mon, Aug 16, 1999 at 06:25:18PM -0400 X-OS: FreeBSD Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Aug 16, 1999 at 06:25:18PM -0400, a little birdie told me that up@3.am remarked > > Thanks...no, I was building a modified GENERIC. The problem seems to be > with "make depend". the config program tells you to run it, but if you > do, you get the bloated kernel. I skipped it, and now the kernel's down > to a relatively svelt 1.7MB. > > So much for following directions! :-/ Make depend doesn't (shouldn't) affect the size of the kernel. It sounds like you installed a unstripped debugging kernel. This is on my -CURRENT system: -r-xr-xr-x 1 root wheel 2072194 Aug 9 19:23 /kernel* -r-xr-xr-x 1 root wheel 7780317 Aug 9 19:23 /kernel.debug* -- Matthew Fuller (MF4839) | fullermd@over-yonder.net Unix Systems Administrator | fullermd@futuresouth.com Specializing in FreeBSD | http://www.over-yonder.net/ FutureSouth Communications | ISPHelp ISP Consulting "The only reason I'm burning my candle at both ends, is because I haven't figured out how to light the middle yet" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 16 22: 6:25 1999 Delivered-To: freebsd-isp@freebsd.org Received: from cagsawa.cats.edu.ph (cagsawa.cats.edu.ph [203.172.25.132]) by hub.freebsd.org (Postfix) with ESMTP id A0D0514BE6 for ; Mon, 16 Aug 1999 22:06:08 -0700 (PDT) (envelope-from dune@bicolweb.com.ph) Received: from mayon.cats.edu.ph (mayon.cats.edu.ph [203.172.25.131]) by cagsawa.cats.edu.ph (Postfix) with SMTP id 201F6B895; Tue, 17 Aug 1999 13:05:50 +0800 (PHT) Date: Tue, 17 Aug 1999 13:20:51 +0800 (PHT) From: "Francis Percival C. Favoreal" X-Sender: dune@mayon.cats.edu.ph Reply-To: "Francis Percival C. Favoreal" To: "Andrew A.Karjagin" Cc: ISP FreeBSD , squid-users@ircache.net Subject: Re: Squid question In-Reply-To: <37B13984.C994E281@tdis.gctc.rssi.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 11 Aug 1999, Andrew A.Karjagin wrote: > Hello! > I want to use Squid 2.1 for two nets of class C (192.168.0.0 and > 192.168.1.0). I have FreeBSD 2.2.6 with two LAN interfaces (ed0 have > Internet IP and ed1 have Intranet IP with aliasing (192.168.0.1 and > alias 192.168.1.1)). > How can I configure Squid to get requests from both networks? > May I using "tcp_incoming_address" option twice? By default, the machine will be accepting requests from any of its network interfaces may it be the loopback interface (127.0.0.1) or any number of ethernet cards attached. So, to answer your question, leave the tcp_incoming_address option untouched. -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 6:44:41 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns.tcworks.net (ns.tcworks.net [216.61.218.2]) by hub.freebsd.org (Postfix) with ESMTP id 97D0414E24 for ; Tue, 17 Aug 1999 06:44:38 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (xcess@creed.tcworks.net [216.61.218.6]) by ns.tcworks.net (8.9.2/8.9.2) with ESMTP id IAA51126 for ; Tue, 17 Aug 1999 08:44:35 -0500 (CDT) (envelope-from ccook@tcworks.net) Message-ID: <37BAB7C1.A20D378@tcworks.net> Date: Wed, 18 Aug 1999 08:40:17 -0500 From: Chris Cook X-Mailer: Mozilla 4.51 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: FP2k and vhosts Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've got a server running FBSD 3.2 and Apache 1.3.6 w/ Frontpage 2000 server extensions. The machine has about 15 virtual hosts assigned to it. I am pretty ignorant when it comes to Frontpage, but when the customer tries to publish their web, it does not publish to the vhost, it tries to publish to the main web. So say you have http://www.microsoft.com and a vhost on it is http://www.bgates.com, the frontpage is trying to publish to http://www.microsoft.com. Is this a server problem or a client problem? Thanks for your help. -- Chris Cook The Computer Works http://www.tcworks.net http://www.tcworks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 6:49:15 1999 Delivered-To: freebsd-isp@freebsd.org Received: from marge.mintel.co.uk (marge.mintel.co.uk [194.217.87.22]) by hub.freebsd.org (Postfix) with ESMTP id 24D2615690 for ; Tue, 17 Aug 1999 06:48:43 -0700 (PDT) (envelope-from jason.thomson@mintel.co.uk) Received: from mintel.co.uk ([10.0.0.233]) by marge.mintel.co.uk (8.9.1/8.9.1) with ESMTP id OAA09993 for ; Tue, 17 Aug 1999 14:40:20 +0100 (BST) (envelope-from jason.thomson@mintel.co.uk) Message-ID: <37B9688A.9B6CC6F5@mintel.co.uk> Date: Tue, 17 Aug 1999 14:50:02 +0100 From: Jason Thomson X-Mailer: Mozilla 4.51 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: Off Topic: Anyone else experiencing intermittent DNS problems? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Apologies for the off-topic post, but we have been experiencing intermittent DNS problems, and I was wondering if other people are also experiencing problems? We have been seeing intermittent problems since late last week. Some queries would fail, and then a short time later succeed. It may well be our service provider here, but I'm just wondering whether other people have seen transient network errors. (I know this shouldn't affect _only_ DNS, but that appears to be the only symptoms we're seeing - maybe because of traffic type / patterns and caching behaviour). It all seems to be working OK now though (so maybe I was just dreaming). To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 11:15:50 1999 Delivered-To: freebsd-isp@freebsd.org Received: from bubba.whistle.com (bubba.whistle.com [207.76.205.7]) by hub.freebsd.org (Postfix) with ESMTP id DFA02158FE for ; Tue, 17 Aug 1999 11:15:47 -0700 (PDT) (envelope-from archie@whistle.com) Received: (from archie@localhost) by bubba.whistle.com (8.9.2/8.9.2) id LAA04390; Tue, 17 Aug 1999 11:15:21 -0700 (PDT) From: Archie Cobbs Message-Id: <199908171815.LAA04390@bubba.whistle.com> Subject: Re: Off Topic: Anyone else experiencing intermittent DNS problems? In-Reply-To: <37B9688A.9B6CC6F5@mintel.co.uk> from Jason Thomson at "Aug 17, 1999 02:50:02 pm" To: jason.thomson@mintel.co.uk (Jason Thomson) Date: Tue, 17 Aug 1999 11:15:21 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL54 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Jason Thomson writes: > Apologies for the off-topic post, but we have been > experiencing intermittent DNS problems, and I was wondering > if other people are also experiencing problems? > > We have been seeing intermittent problems since late last > week. Some queries would fail, and then a short time later > succeed. It may well be our service provider here, but I'm > just wondering whether other people have seen transient > network errors. (I know this shouldn't affect _only_ DNS, > but that appears to be the only symptoms we're seeing - > maybe because of traffic type / patterns and caching > behaviour). > > It all seems to be working OK now though (so maybe I was > just dreaming). I just noticed the same thing trying to go to www.americanexpress.com. It failed, and then a little while later it worked. Weird. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 16:41: 3 1999 Delivered-To: freebsd-isp@freebsd.org Received: from tgn2.tgn.net (tgn2.tgn.net [205.241.85.2]) by hub.freebsd.org (Postfix) with ESMTP id BD23A14DBB; Tue, 17 Aug 1999 16:40:49 -0700 (PDT) (envelope-from butlermd@tgn.net) Received: from dial122.tgn.net (dial122.tgn.net [205.241.85.52]) by tgn2.tgn.net (8.9.3/8.8.8) with SMTP id SAA07371; Tue, 17 Aug 1999 18:44:24 -0500 (CDT) From: butlermd@tgn.net (Michael Butler) To: , list@inet-access.net, freebsd-isp@freebsd.org, freebsd-security@freebsd.org Subject: Re: tzo dynamic DNS Date: Tue, 17 Aug 1999 18:36:22 -0500 Organization: Texas GulfNet Reply-To: butlermd@tgn.net Message-ID: <37c9d331.222705972@mail.tgn.net> References: In-Reply-To: X-Mailer: Forte Agent 1.5/32.451 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hokay, boys and girls, turn your channel if you don't like the long mushy ones ;-> It's time to summarize because I'm satisfied. There are different opinions for different reasons and that is to be expected. It was human nature for me to react to the unknown, percieved as threat. My original post was simple if somewhat knee-jerk. >On Wed, 11 Aug 1999 12:58:51 -0500, I wrote: >This may be old stuff but is anyone getting dns mods fromtzo.com >hijacking ip addresses to their domains? > >What do we do about it? > >see www.tzo.com > >They're about to be cut off at the FW >TIA Turns out the danger was there, not because TZO presented one though. I had simply sat on an ancient BIND wayyyy too long. Thanks to "Mitch Vincent" who hit the nail on the head.=20 --Date: Thu, 12 Aug 1999 08:40:28 -0400 --Older versions of BIND allow for cache modification remotely, that --might be what you're running into, you better upgrade, there are --other serious security holes in those versions too. ---Mitch Mitch looked at it like me as a potential problem but Mitch, in a mature manner eschewed emotional or selfish conversation. Some folks acted like I am an idiot (at least a debatable concept, heh) by being concerned about a legitimate entity that provides a legitimate service within the Internet framework, read "TZO was resourceful" as well as harmless. I then focused back on the symptoms with a later post. >Anybody had problems with Sendmail anti spam, fwd/reverse DNS >mismatches? I *think* that was what we saw.=20 Mitch however, had this covered in the BIND problem. We've brought BIND, sendmail, Apache, and some other stuff into the present as a result of this thread, thanks to all. OTOH, there were folks like myself who regarded this as manipulation of my DNS and IP space. I still feel funny that someone could *modify* my configuration at least in the eyes of other DNS servers on the 'Net. Not having total control is also human nature, I'll get over it. --------------- Since 1994 I've enjoyed Michael Dillon's posts right here at inet-access among other places. This belongs (if not already stated) in Boardwatch for ISP exposure. Please note that if you ban servers then you are banning anything that works like a telephone set. A telephone hogs the line 24 hours a day but uses no bandwidth unless a call is in progress. But because it *IS* hogging that line, the telephone is able to ring and announce an incoming call. With convergence of the Internet and telephony services, any ISP who has not structured their business to deal with always-on services will be at a disadvantage. So don't ban servers because that is a sleazy way of sidestepping the issue and users will hate you for it. Let them run all the servers they want as long as they understand that they will pay excess charges for being online too long or using too much bandwidth. Rig your systems so that users can opt for being cut off by the system rather than incurring excess charges. Basically, keep your customers happy, give them what they want, and charge a fee that covers your costs and makes you a profit. Views like this, backing up into the shotgun formation so you can see the field and responding quickly, is what keeps independent ISPs in business whilst the big boys hammer away with their inherent strength *and* weaknesses. -- =46inally, what sealed it for me was a message from Eric McIntyre: =46rom: "Ericm" Date: Tue, 17 Aug 1999 14:44:38 -0400 >If you are unhappy that your users are using our service, you should = place >something about dynamic dns in your terms of service agreement. =20 Agreed, I had to learn more about you. >The >newsgroups are not the place to complain about us, you should complain = to >your users that are abusing your service. If you offer either static IP >addresses at low prices, or offered dynamic dns options to them, they >wouldn't need our services. OK, this ain't a newsgroup is it? We're all mature ISPs, right? I had a problem to solve. I had to do like the dogs and "bow-up" until we sniffed each other's butts. As I said defense from the unknown is the human response. Several responses thought I was lame in my thoughts that you were a threat. Others saw it like I did... another hurdle to overcome. I have thought in the past about the third level, like customer.tgn.net I'm still looking at your stuff. From what I understand this now it looks like your methods may work for me too. I'll continue to read your information to see how you operate. I may be a customer or affiliate of yours too. >We have no control over the content or the terms of service agreements = that >the users sign. They choose our services because they typically have a = need >that their ISP will not help them with. I didn't ecalate or feed the AUP fight. I had old BIND seems to be the core of my problem. I am pretty liberal with my hours. I posted a mushy response to Michael Dillon that talks a little about this. >thanks Thanks to you, I may be in touch after I get a chance to resurface for air. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Philosophical summary: ...back up from the shotgun formation, into the stands where you see it's just a game, you paid to get in, and we're just here for a good time I hope our team ISPs and other independents win. When it's all over (Y2k, heh) we all go home and get on with life. Overall, I was pleased to see this thread turn into the epitome of what the old Internet was about. I was concerned, asked a question to the vast unpaid research department, and got many answers.=20 Distilling that info I came about my decision. Mine was different from other readers for different reasons. Different folks cvome and go reading the same words and go away with different ideas. I pray that never changes. I got on "da 'Net" rather late in 1994 but appreciate and admire the way the 'Net was and *how* it was built and by whom. These days, though we seem to be paranoid from all angles. Black hat hackers are more numerous, we now have to watch for commercial threats ( big boys and less than moral or ethical opportunists), legal potholes (and black holes) all around the "Information Superhighway", and finally the government is redefining history... again. (lest anarchy get a good name I guess) =46or the latter though, I realize in this case changing history <"doublespeak" -- Orwell> was just campaign loose-lip. I found this cute: Al Gore's claim to creating the Internet is still creating some zingers from Republicans. The latest is from Dan Quayle making light of his potato misspelling - "If Al Gore created the Internet, then I invented the spell-check."=20 -- http://www.swickey.com/archive/3-16-99.html peace ____________________________________________________________ Michael Butler, Texas GulfNet, | www.tgn.net =20 908 South Brooks, PO Box 2089 |=20 Brazoria, TX 77422-2089 | Voice 409-798-NETT Part of the Pointecom International| FAX 409-798-6398 =20 Network and the Global Internet | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 21:14:27 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns.tcworks.net (ns.tcworks.net [216.61.218.2]) by hub.freebsd.org (Postfix) with ESMTP id 79ADA14C9D for ; Tue, 17 Aug 1999 21:14:24 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (xcess@creed.tcworks.net [216.61.218.6]) by ns.tcworks.net (8.9.2/8.9.2) with ESMTP id XAA41307; Tue, 17 Aug 1999 23:15:01 -0500 (CDT) (envelope-from ccook@tcworks.net) Message-ID: <37BB83C4.DBA0215A@tcworks.net> Date: Wed, 18 Aug 1999 23:10:44 -0500 From: Chris Cook X-Mailer: Mozilla 4.51 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: "Mark J. Taylor" , freebsd-isp@freebsd.org Subject: Re: FP2k and vhosts References: <37BAB7C1.A20D378@tcworks.net> <37BA2F97.D52462CC@cybernet.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org So, FP2000 does NOT support multiple virtual hosts on the same IP/port? This is upsetting. Ack! Thanks to Microsoft for another great product . "Mark J. Taylor" wrote: > > Since I know a little bit about this topic, as we just added FP 2000 > to our NetMAX for Linux product which came out, I'll take a stab at > it, and Steve (the actual integrator) will correct me if I'm wrong: > > 1) FP2000 does not allow virtual hosting on any port other than 80, > because the client cannot handle any other port number. > > 2) FP2000 does not allow multiple virtual hosts on the same IP/port > pair. The server is not parsing the configuration file correctly. > > So, it looks like you're being bitten by (2), a FP2000 server problem. > > -Mark Taylor > NetMAX Developer > mtaylor@cybernet.com > http://www.netmax.com/ > I wrote: >>I've got a server running FBSD 3.2 and Apache 1.3.6 w/ Frontpage 2000 >>server extensions. The machine has about 15 virtual hosts assigned to >>it. -- Chris Cook The Computer Works http://www.tcworks.net http://www.tcworks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 17 22: 8:45 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns.tcworks.net (ns.tcworks.net [216.61.218.2]) by hub.freebsd.org (Postfix) with ESMTP id 7BC2F14D5A for ; Tue, 17 Aug 1999 22:08:40 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (xcess@creed.tcworks.net [216.61.218.6]) by ns.tcworks.net (8.9.2/8.9.2) with ESMTP id AAA53615; Wed, 18 Aug 1999 00:10:18 -0500 (CDT) (envelope-from ccook@tcworks.net) Message-ID: <37BB90BA.38CC62CB@tcworks.net> Date: Thu, 19 Aug 1999 00:06:02 -0500 From: Chris Cook X-Mailer: Mozilla 4.51 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Andy Angrick , freebsd-isp@freebsd.org Subject: Re: FP2k and vhosts References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is my problem I am having now: http://www.rtr.com/fpsupport/faq2000i.htm#7FollowSymlinks I am trying to install the extensions on a virtual host who's root directory is symlinked to a user's home directory (so they can ftp and upload files easily). That link above has an "answer" but I don't understand what they are trying to say. Also, the main web page works fine w/ extensions and you can publish, but for some reason, when I click on "tools - security" in frontpage to setup a password for publishing, it is grayed out (can't click). ACK! Andy Angrick wrote: > > Are you sure that's the case with #2??? I haven't installed FP2000 yet, but > for FP98, you have to trick it...you have to make your virtual host tags > look something like: > > ... > > > Otherwise, the fpadmin program can't find the vitual host...that's the case > at least with fp98. I have a hard time believing that even microsoft would > have screwed up that bad by not allowing virtual hosts :) > > Also, I have seen virtual hosts on the same IP/port working with FP2000 on a > BSDI system... > -- Chris Cook The Computer Works http://www.tcworks.net http://www.tcworks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 5:50:43 1999 Delivered-To: freebsd-isp@freebsd.org Received: from proteus.eclipse.net.uk (proteus.eclipse.net.uk [195.188.32.118]) by hub.freebsd.org (Postfix) with ESMTP id 6DEF71572F for ; Wed, 18 Aug 1999 05:50:38 -0700 (PDT) (envelope-from stuart@eclipse.net.uk) Received: from eclipse.net.uk (elara.eclipse.net.uk [195.188.32.31]) by proteus.eclipse.net.uk (Postfix) with ESMTP id 63AE29B2E; Wed, 18 Aug 1999 13:51:10 +0100 (BST) Message-ID: <37BAACC6.D40E669@eclipse.net.uk> Date: Wed, 18 Aug 1999 13:53:26 +0100 From: Stuart Henderson Organization: Eclipse Networking Ltd. X-Mailer: Mozilla 4.61 [en] (WinNT; I) X-Accept-Language: en-GB MIME-Version: 1.0 To: Chris Cook Cc: "Mark J. Taylor" , freebsd-isp@FreeBSD.ORG Subject: Re: FP2k and vhosts References: <37BAB7C1.A20D378@tcworks.net> <37BA2F97.D52462CC@cybernet.com> <37BB83C4.DBA0215A@tcworks.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > 2) FP2000 does not allow multiple virtual hosts on the same IP/port > > pair. The server is not parsing the configuration file correctly. I think the key there is the last sentence. You might get some reason if you ktrace FP but I don't think the output will be much fun to parse. But you don't need to find out why anyway because you don't have to let FP near the _real_ Apache config file. Really, all it needs is a way of finding out the docroot location, hostname and port. It's not going to need anything else and it certainly doesn't hurt to give FP as little information as possible (seems quite suitable really, seeing as they give us as little information as possible too :-) -- /usr/local/frontpage/foo.domain.com:80.cnf -- serverconfig:/usr/local/frontpage/dummy/svs_foo.domain.com/srm.conf -- /usr/local/frontpage/dummy/svs_foo.domain.com/srm.conf -- DocumentRoot /www/foo.domain.com/public_html/ Port 80 ServerRoot /usr/local/frontpage/dummy/svs_foo.domain.com you might also need these in your dummy directory, lrwxr-xr-x 1 root bin 1 Jul 8 21:49 conf -> . drwxr-xr-x 2 root bin 512 Jul 8 21:49 etc -rw-r--r-- 1 root bin 179 Jul 8 21:49 srm.conf -rw-r--r-- 1 root bin 0 Jul 8 21:49 etc/access.conf Caveat emptor: I have _not_ tested this using Apache httpd. This is using Zeus (whose idea it was anyway, they had a very simple FP2k install script pretty much as soon as the extensions were released). It's working fine here (I'm not amused FP exts are still using their own DES crypt rather than the system crypt libraries after all this time. Yeuchh! Still, Linux has md5 now so maybe they'll think again). -sh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 7:18: 0 1999 Delivered-To: freebsd-isp@freebsd.org Received: from cronus.medianetwork.se (cronus.medianetwork.se [193.14.204.1]) by hub.freebsd.org (Postfix) with ESMTP id AD62614D9B for ; Wed, 18 Aug 1999 07:17:53 -0700 (PDT) (envelope-from support@junglenote.com) Received: from junglenote.com (digital17.medianetwork.se [193.14.204.235]) by cronus.medianetwork.se (8.9.3/8.7) with ESMTP id QAA08255 for ; Wed, 18 Aug 1999 16:17:55 +0200 Received: from enigmatic [127.0.0.1] by junglenote.com [localhost] with SMTP (MDaemon.v2.84.R) for ; Wed, 18 Aug 1999 16:21:55 +0200 Received: by localhost with Microsoft MAPI; Wed, 18 Aug 1999 16:21:54 +0200 Message-ID: <01BEE995.C935D5A0.support@junglenote.com> From: Dan Larsson To: "[FreeBSD-ISP-List] (E-post)" Subject: block by datatype Date: Wed, 18 Aug 1999 16:21:53 +0200 Organization: Portabla Datorer AB X-Mailer: Microsoft Internet-e-post/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MDaemon-Deliver-To: freebsd-isp@freebsd.org X-Return-Path: support@junglenote.com Reply-To: support@junglenote.com Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I am in need of a software based data-type filtering mechanism. I might be screwing up the actual denomination so I'll give an example to clarify the problem: On my network there's a bridge connected between the internet and the provided clients. I want to control what types of data can be accessed from the internet on the clients. This has to be independent of on which client port the actual data is requested on. I want the bridge to deny connection for theses data types from the internet to the clients but for a set of addresses. For the latter addresses I would still like to be able to control which types of data to allow. Everything else should be allowed. The actual bridge is a fbsd3.2 box. I hope this makes some sense. If not please let me know and I'll try to clarify myself further. Regards ---- Dan Larsson ( mailto:dan@junglenote.com ) CNOC / CTECH Tyfon Internet / Portabla Datorer AB dir +46-8-550 120 21 fax +46-8-550 120 02 [ FreeBSD - The Power To Serve ] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 9:30:42 1999 Delivered-To: freebsd-isp@freebsd.org Received: from almazs.pacex.net (almazs.pacex.net [204.1.219.156]) by hub.freebsd.org (Postfix) with ESMTP id 3288714CFA for ; Wed, 18 Aug 1999 09:30:39 -0700 (PDT) (envelope-from danielb@almazs.pacex.net) Received: from localhost (danielb@localhost) by almazs.pacex.net (8.9.2/8.9.3) with SMTP id JAA03500; Wed, 18 Aug 1999 09:29:44 -0700 (PDT) Date: Wed, 18 Aug 1999 09:29:44 -0700 (PDT) From: daniel B To: Chris Cook Cc: Andy Angrick , freebsd-isp@FreeBSD.ORG Subject: Re: FP2k and vhosts In-Reply-To: <37BB90BA.38CC62CB@tcworks.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have several Vhosts running from same IP/port configuration with FP2000 installed on them no problem. BUT I have heard some people complaining that the FP2000 client sometimes fails to publish to new locations on servers and always trys to publishe to old directory locations in the server. Now what this means is that if you changed the location you're trying to publish to and your FP2000 client is trying to publish to server root and not to root web of the Vhost then problem is with your client and not the server. Dan On Thu, 19 Aug 1999, Chris Cook wrote: > This is my problem I am having now: > http://www.rtr.com/fpsupport/faq2000i.htm#7FollowSymlinks > > I am trying to install the extensions on a virtual host who's root > directory is symlinked to a user's home directory (so they can ftp and > upload files easily). That link above has an "answer" but I don't > understand what they are trying to say. Also, the main web page works > fine w/ extensions and you can publish, but for some reason, when I > click on "tools - security" in frontpage to setup a password for > publishing, it is grayed out (can't click). ACK! > > Andy Angrick wrote: > > > > Are you sure that's the case with #2??? I haven't installed FP2000 yet, but > > for FP98, you have to trick it...you have to make your virtual host tags > > look something like: > > > > ... > > > > > > Otherwise, the fpadmin program can't find the vitual host...that's the case > > at least with fp98. I have a hard time believing that even microsoft would > > have screwed up that bad by not allowing virtual hosts :) > > > > Also, I have seen virtual hosts on the same IP/port working with FP2000 on a > > BSDI system... > > > > -- > Chris Cook > The Computer Works > http://www.tcworks.net > http://www.tcworks.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 9:54:36 1999 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (tunnel0-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id C5170158CB for ; Wed, 18 Aug 1999 09:54:23 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.8.8/8.8.8) with SMTP id CAA15721 for ; Thu, 19 Aug 1999 02:54:29 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Thu, 19 Aug 1999 02:54:25 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: Minor prob with user level ppp - multilink Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, Still having a slight problem with multilink under userland PPP... if one of the modems goes down momentarily, no packets get through (even though the other modem is still up). Is this normal? I would have thought that a link dropping should be no sweat, just revert to the remaining links... Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://www.sensation.net.au/ Melbourne, Australia Phone: +61-3-9388-9260 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 11: 8:23 1999 Delivered-To: freebsd-isp@freebsd.org Received: from storm.FreeBSD.org.uk (storm.freebsd.org.uk [194.242.128.198]) by hub.freebsd.org (Postfix) with ESMTP id 8BD0D151E5 for ; Wed, 18 Aug 1999 11:08:15 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (root@localhost [127.0.0.1]) by storm.FreeBSD.org.uk (8.9.3/8.9.3) with ESMTP id TAA89578; Wed, 18 Aug 1999 19:07:49 +0100 (BST) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1]) by keep.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id TAA05472; Wed, 18 Aug 1999 19:10:29 +0100 (BST) (envelope-from brian@keep.lan.Awfulhak.org) Message-Id: <199908181810.TAA05472@keep.lan.Awfulhak.org> X-Mailer: exmh version 2.0.2 2/24/98 To: Rowan Crowe Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Minor prob with user level ppp - multilink In-reply-to: Your message of "Thu, 19 Aug 1999 02:54:25 +1000." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 18 Aug 1999 19:10:29 +0100 From: Brian Somers Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Hi all, > > Still having a slight problem with multilink under userland PPP... if one > of the modems goes down momentarily, no packets get through (even though > the other modem is still up). Is this normal? I would have thought that a > link dropping should be no sweat, just revert to the remaining links... If the link is closed cleanly, there should be no interrupt in the data stream. If a link is lost, the data queued for that link (at most one packet in user-ppp) will be dropped as soon as ppp realises that the link is dead. With correct carrier, this is immediate, but the gap in the data stream will cause difficulties if 1. The peer doesn't realise that the link is down (carrier detection problems). It ends up waiting for the missing data. 2. You're using compression. Here, both sides have to resync their dictionaries. This can take some time. Apart from that, the missing data is just ``missing data'' and the above layers will deal with it as they see fit. If you're using user-ppp on both ends, create a diagnostic socket and use ``show mp'' to see when ppp is waiting for unreceived information. > Cheers. > > > -- > Rowan Crowe http://www.rowan.sensation.net.au/ > Sensation Internet Services http://www.sensation.net.au/ > Melbourne, Australia Phone: +61-3-9388-9260 -- Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 11:42:28 1999 Delivered-To: freebsd-isp@freebsd.org Received: from archer.fsr.net (archer.fsr.net [207.141.26.3]) by hub.freebsd.org (Postfix) with ESMTP id 6AC4E158AA for ; Wed, 18 Aug 1999 11:42:18 -0700 (PDT) (envelope-from mharsh@fsr.net) Received: from localhost (mharsh@localhost) by archer.fsr.net (8.9.1/8.9.1) with SMTP id LAA26277 for ; Wed, 18 Aug 1999 11:43:53 -0700 (PDT) (envelope-from mharsh@fsr.net) Date: Wed, 18 Aug 1999 11:43:53 -0700 (PDT) From: Mike Harshbarger To: freebsd-isp@freebsd.org Subject: Re: pwd_mkdb and system processes In-Reply-To: <199908131746.MAA21122@troi.csw.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Wow! What a change... 12K accounts and the pwd_mkdb run time dropped from 140 seconds down to 16 seconds. 6 Meg cache seemed optimal for me. Also, I've always been disappointed at the speed of the 'pw' command... especially with all the 'pw usermod's I get to do daily. It seems like it took 5 minutes. 'pw' seems to have sped up similarly with this change. On a related note, is there any chance in the future of the 'pw' command supporting a command line option like pwd_mkdb's '-u' so it doesn't have to reconstruct entire password databases? ___ ___ ___ | __/ __|_ _| Mike Harshbarger, First Step Internet | _|\__ \| | System & Network Administrator |_| |___/___| (208) 882-8869 / 1-888-676-6377 On Fri, 13 Aug 1999 lambert@cswnet.com wrote: > That did it. It went from 4:40 seconds to 20 seconds. I just gave it a > cache size of 10 MB on the command line args. I could probably tune it > down from there but I'm not into swap on this box anyway so it isn't > hurting me and as my userbase grows it will handle the load. > > Thanks, > > In , on > 08/13/99 > at 12:47 PM, Steve Hovey said: > > >Or just increase the cache size it uses to it gets done quicker > > >On Fri, 13 Aug 1999, Joe Nall wrote: > > >> lambert@cswnet.com wrote: > >> > > >> > I've been trying to track down a problem on my e-mail server where it > >> > stops processing smtp and pop processes for 5 minutes at a time. > >> > > >> > # wc -l /etc/passwd > >> > 14945 /etc/passwd > >> > > >> > We rebuild this file once per hour to add or remove customers. > >> > > >> > I finally caught it with a top session running at the time. > >> > > >> > Inetd was accepting new connections and starting popper but people can't > >> > authenticate. > >> > Sendmail accepts new connections but they stall until pwd_mkdb goes away. > >> > When I try to run a command from the command line, it doesn't execute > >> > until pwd_mkdb gets done. > >> > The CPU is 97% idle during this time. > >> > > >> > Does all file access in the system stop while pwd_mkdb runs? > >> No but all password lookups do. Both of theses commands rely on the > >> file you are rebuilding and the files involved are locked during the > >> process. You might try pwd_mkdp -d /tmp <> followed by a mv of the > >> relevant files into /etc or try pwd_mkdb -u at the time the > >> passwd file gets modified and avoid the overhead of the total rebuild. > >> YMMV, I haven't used the -d option. > >> Joe > >> > >> > >> To Unsubscribe: send mail to majordomo@FreeBSD.org > >> with "unsubscribe freebsd-isp" in the body of the message > >> > > > > -- > Scott Lambert > lambert@cswnet.com > Systems and Security Administrator > CSW Net, Inc. > ================================================================ > Written: Friday, August 13, 1999 - 12:40 PM > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 18 23:47:48 1999 Delivered-To: freebsd-isp@freebsd.org Received: from cronus.medianetwork.se (cronus.medianetwork.se [193.14.204.1]) by hub.freebsd.org (Postfix) with ESMTP id 1A70E14F06 for ; Wed, 18 Aug 1999 23:47:42 -0700 (PDT) (envelope-from support@junglenote.com) Received: from junglenote.com (digital18.medianetwork.se [193.14.204.236]) by cronus.medianetwork.se (8.9.3/8.7) with ESMTP id IAA23909 for ; Thu, 19 Aug 1999 08:47:42 +0200 Received: from enigmatic [127.0.0.1] by junglenote.com [localhost] with SMTP (MDaemon.v2.84.R) for ; Thu, 19 Aug 1999 08:51:33 +0200 Received: by localhost with Microsoft MAPI; Thu, 19 Aug 1999 08:51:32 +0200 Message-ID: <01BEEA20.095103F0.support@junglenote.com> From: Dan Larsson To: "[FreeBSD-ISP-List] (E-post)" Subject: mpeg streaming Date: Thu, 19 Aug 1999 08:51:32 +0200 Organization: Portabla Datorer AB X-Mailer: Microsoft Internet-e-post/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MDaemon-Deliver-To: freebsd-isp@freebsd.org X-Return-Path: support@junglenote.com Reply-To: support@junglenote.com Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does someone know the whereabouts of any documents regarding how to set up a streaming mpeg ( audio / video ) server. The aim is to broadcast dvd over fibre. Regards ---- Dan Larsson ( mailto:dan@junglenote.com ) CNOC / CTECH Tyfon Internet / Portabla Datorer AB dir +46-8-550 120 21 fax +46-8-550 120 02 [ FreeBSD - The Power To Serve ] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 2: 5:20 1999 Delivered-To: freebsd-isp@freebsd.org Received: from office.omc.net (office.omc.net [195.185.142.22]) by hub.freebsd.org (Postfix) with ESMTP id 7F12E14D16 for ; Thu, 19 Aug 1999 02:05:14 -0700 (PDT) (envelope-from LutzRab@omc.net) Received: from lutz (lutz.omc.net [195.185.142.3]) by office.omc.net (8.9.3/8.9.3) with SMTP id LAA17805 for ; Thu, 19 Aug 1999 11:05:13 +0200 (CEST) Message-Id: <199908190905.LAA17805@office.omc.net> From: "Lutz Rabing" Organization: OMCnet IS GmbH To: FreeBSD-ISP@FreeBSD.ORG Date: Thu, 19 Aug 1999 11:05:12 +0200 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: MySQL exited on signal 11 Reply-To: LutzRab@omc.net X-mailer: Pegasus Mail for Win32 (v3.11) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, this might be a bit off topic, however it's also isp related: We run quite a few 2.2.8-R webservers with mysql 3.22.xx without any problems. Now I'm having trouble with a new 3.2-Stable system running mysql 3.22.24 from the ports collection compiled with "NATIVE_THREADS=yes": Aug 18 20:19:19 kappa /kernel: pid 93044 (mysqld), uid 88: exited on signal 11 Aug 18 20:21:02 kappa /kernel: pid 93470 (mysqld), uid 88: exited on signal 11 Aug 18 20:57:49 kappa /kernel: pid 93548 (mysqld), uid 88: exited on signal 11 Aug 18 21:13:41 kappa /kernel: pid 95618 (mysqld), uid 88: exited on signal 11 If the load is low then the interval are longer. I turned on logging and checked the logfiles, but nothing useful turned up. Anyone experienced similar problems? Thanks, Lutz Rabing -OMCnet IS GmbH- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 7: 2: 7 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns.tcworks.net (ns.tcworks.net [216.61.218.2]) by hub.freebsd.org (Postfix) with ESMTP id 7C611150F3 for ; Thu, 19 Aug 1999 07:02:04 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (xcess@creed.tcworks.net [216.61.218.6]) by ns.tcworks.net (8.9.2/8.9.2) with ESMTP id JAA88633; Thu, 19 Aug 1999 09:03:29 -0500 (CDT) (envelope-from ccook@tcworks.net) Message-ID: <37BD5F37.EDBA28AF@tcworks.net> Date: Fri, 20 Aug 1999 08:59:19 -0500 From: Chris Cook X-Mailer: Mozilla 4.51 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: dsm , freebsd-isp@freebsd.org Subject: Re: (PM) Routing Problems References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > >> that is not correct. > >> > >> see : > >> > >> http://www.livingston.com/tech/technotes/200/230005.html > > > > > >Is that "that is not correct" in response to Chris Cook, or in response to > >Nathan Middleton? Nathan's trying to get a PM3 to do this, but it seems > >that the document to which you refer doesn't mention the PM3. > > i was refering to the fact that he, the quoting person, was implying > that pm3 could not do frame, and it can, the aforementioned url syntax > works for pm3. lucinascendton should do some updating on their pages. > i have/had/will have many pm3's in service doing frame. i have heard > of issues surrounding timing, i think, when using line0, but i can't > corraborate that. have always used line1. > > - dsm I did not say the pm3 could not do frame, I just said I was under the impression that you needed to add the sync-t1 card (line2) to get it to work. -- Chris Cook The Computer Works http://www.tcworks.net http://www.tcworks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 8:15:20 1999 Delivered-To: freebsd-isp@freebsd.org Received: from mail2.teleport.com (mail2.teleport.com [192.108.254.43]) by hub.freebsd.org (Postfix) with SMTP id 4D0A8151D6 for ; Thu, 19 Aug 1999 08:15:18 -0700 (PDT) (envelope-from dugm@r5d4.tatooine.net) Received: (qmail 12081 invoked from network); 19 Aug 1999 15:14:49 -0000 Received: from r5d4.tatooine.net (root@216.26.41.26) by mail2.teleport.com with SMTP; 19 Aug 1999 15:14:49 -0000 Received: from r5d4.tatooine.net (really [127.0.0.1]) by r5d4.tatooine.net via smail with esmtp (ident dugm using rfc1413) id (Debian Smail3.2.0.102) for ; Thu, 19 Aug 1999 08:14:33 -0700 (PDT) Message-Id: From: dsm To: Chris Cook Cc: freebsd-isp@freebsd.org Subject: Re: (PM) Routing Problems In-reply-to: Your message of "Fri, 20 Aug 1999 08:59:19 CDT." Date: Thu, 19 Aug 1999 08:14:33 -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message <37BD5F37.EDBA28AF@tcworks.net>, Chris Cook writes: > >I did not say the pm3 could not do frame, I just said I was under the >impression that you needed to add the sync-t1 card (line2) to get it to >work. and i am saying that is not correct. you do not need the t1 card to do frame on a pm3. - dsm To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 8:42:49 1999 Delivered-To: freebsd-isp@freebsd.org Received: from proteus.eclipse.net.uk (proteus.eclipse.net.uk [195.188.32.118]) by hub.freebsd.org (Postfix) with ESMTP id A4EEC151F2 for ; Thu, 19 Aug 1999 08:42:43 -0700 (PDT) (envelope-from stuart@eclipse.net.uk) Received: from eclipse.net.uk (elara.eclipse.net.uk [195.188.32.31]) by proteus.eclipse.net.uk (Postfix) with ESMTP id 5DF9D9B04; Thu, 19 Aug 1999 16:42:22 +0100 (BST) Message-ID: <37BC2666.5D1FC6B7@eclipse.net.uk> Date: Thu, 19 Aug 1999 16:44:38 +0100 From: Stuart Henderson Organization: Eclipse Networking Ltd. X-Mailer: Mozilla 4.61 [en] (WinNT; I) X-Accept-Language: en-GB MIME-Version: 1.0 To: support@junglenote.com Cc: "[FreeBSD-ISP-List] (E-post)" Subject: Re: mpeg streaming References: <01BEEA20.095103F0.support@junglenote.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Does someone know the whereabouts of any documents regarding > how to set up a streaming mpeg ( audio / video ) server. icecast does streaming mp3, I don't think it does video though. Search freshmeat.net for "icecast" and you'll find the server and various tools. HTH Stuart To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 11: 2:44 1999 Delivered-To: freebsd-isp@freebsd.org Received: from unix.megared.net.mx (megared.net.mx [207.249.162.252]) by hub.freebsd.org (Postfix) with ESMTP id 3769015268 for ; Thu, 19 Aug 1999 11:02:36 -0700 (PDT) (envelope-from ales@megared.net.mx) Received: from ales (pix.megared.net.mx [207.249.162.253]) by unix.megared.net.mx (8.9.3/8.9.3) with SMTP id NAA14548; Thu, 19 Aug 1999 13:01:11 -0500 (CDT) (envelope-from ales@megared.net.mx) Message-ID: <006f01beea6c$ca62e940$d4630a0a@megared.net.mx> From: "Alejandro Ramirez" To: "Mike Harshbarger" , References: Subject: RE: pwd_mkdb and system processes Date: Thu, 19 Aug 1999 13:00:57 -0500 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2014.211 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2014.211 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, In FreeBSD 3.2, you can do this, from the man page: -u username Only update the record for the specified user. Utilities that op- erate on a single user can use this option to avoid the overhead of rebuilding the entire database. Ales ----- Original Message ----- From: Mike Harshbarger To: Sent: Wednesday, August 18, 1999 1:43 PM Subject: Re: pwd_mkdb and system processes > > Wow! What a change... 12K accounts and the pwd_mkdb run time dropped from > 140 seconds down to 16 seconds. 6 Meg cache seemed optimal for me. > > Also, I've always been disappointed at the speed of the 'pw' command... > especially with all the 'pw usermod's I get to do daily. It seems like it > took 5 minutes. 'pw' seems to have sped up similarly with this change. > > On a related note, is there any chance in the future of the 'pw' command > supporting a command line option like pwd_mkdb's '-u' so it doesn't have > to reconstruct entire password databases? > > ___ ___ ___ > | __/ __|_ _| Mike Harshbarger, First Step Internet > | _|\__ \| | System & Network Administrator > |_| |___/___| (208) 882-8869 / 1-888-676-6377 > > > On Fri, 13 Aug 1999 lambert@cswnet.com wrote: > > > That did it. It went from 4:40 seconds to 20 seconds. I just gave it a > > cache size of 10 MB on the command line args. I could probably tune it > > down from there but I'm not into swap on this box anyway so it isn't > > hurting me and as my userbase grows it will handle the load. > > > > Thanks, > > > > In , on > > 08/13/99 > > at 12:47 PM, Steve Hovey said: > > > > >Or just increase the cache size it uses to it gets done quicker > > > > >On Fri, 13 Aug 1999, Joe Nall wrote: > > > > >> lambert@cswnet.com wrote: > > >> > > > >> > I've been trying to track down a problem on my e-mail server where it > > >> > stops processing smtp and pop processes for 5 minutes at a time. > > >> > > > >> > # wc -l /etc/passwd > > >> > 14945 /etc/passwd > > >> > > > >> > We rebuild this file once per hour to add or remove customers. > > >> > > > >> > I finally caught it with a top session running at the time. > > >> > > > >> > Inetd was accepting new connections and starting popper but people can't > > >> > authenticate. > > >> > Sendmail accepts new connections but they stall until pwd_mkdb goes away. > > >> > When I try to run a command from the command line, it doesn't execute > > >> > until pwd_mkdb gets done. > > >> > The CPU is 97% idle during this time. > > >> > > > >> > Does all file access in the system stop while pwd_mkdb runs? > > >> No but all password lookups do. Both of theses commands rely on the > > >> file you are rebuilding and the files involved are locked during the > > >> process. You might try pwd_mkdp -d /tmp <> followed by a mv of the > > >> relevant files into /etc or try pwd_mkdb -u at the time the > > >> passwd file gets modified and avoid the overhead of the total rebuild. > > >> YMMV, I haven't used the -d option. > > >> Joe > > >> > > >> > > >> To Unsubscribe: send mail to majordomo@FreeBSD.org > > >> with "unsubscribe freebsd-isp" in the body of the message > > >> > > > > > > > > -- > > Scott Lambert > > lambert@cswnet.com > > Systems and Security Administrator > > CSW Net, Inc. > > ================================================================ > > Written: Friday, August 13, 1999 - 12:40 PM > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 14:45:47 1999 Delivered-To: freebsd-isp@freebsd.org Received: from awfulhak.org (dynamic-110.max1-du-ws.dialnetwork.pavilion.co.uk [212.74.8.110]) by hub.freebsd.org (Postfix) with ESMTP id 101DC150A5 for ; Thu, 19 Aug 1999 14:45:38 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (root@keep.lan.Awfulhak.org [172.16.0.8]) by awfulhak.org (8.9.3/8.9.3) with ESMTP id WAA06394; Thu, 19 Aug 1999 22:10:35 +0100 (BST) (envelope-from brian@lan.awfulhak.org) Received: from keep.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1]) by keep.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id VAA00538; Thu, 19 Aug 1999 21:06:34 +0100 (BST) (envelope-from brian@keep.lan.Awfulhak.org) Message-Id: <199908192006.VAA00538@keep.lan.Awfulhak.org> X-Mailer: exmh version 2.0.2 2/24/98 To: "Andy V. Oleynik" Cc: Brian Somers , freebsd-isp@FreeBSD.ORG Subject: Re: Problem with aliasing unregistered IPs on dialup server. In-reply-to: Your message of "Fri, 13 Aug 1999 23:39:51 +0300." <37B48296.B85E7E15@prime.net.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Date: Thu, 19 Aug 1999 21:06:34 +0100 From: Brian Somers Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org andyo@prime.net.ua said: > Thank U, Brian, once more. Aliasing of external interface helped. Now > masquearading works just fine. May be there is reason to clarify in > the ppp related docs where the aliasing should be performed to work > properly? = I've added a note to the man page :-) -- = Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 19 20:28:40 1999 Delivered-To: freebsd-isp@freebsd.org Received: from r2d2.pepperell.net (r2d2.pepperell.net [209.58.142.2]) by hub.freebsd.org (Postfix) with ESMTP id 0F79814CDF for ; Thu, 19 Aug 1999 20:28:28 -0700 (PDT) (envelope-from thomas@pepperell.net) Received: from [209.58.142.5] (qui-gon.pepperell.net [209.58.142.5]) by r2d2.pepperell.net (8.9.3/8.9.3) with ESMTP id XAA67546 for ; Thu, 19 Aug 1999 23:27:20 -0400 (EDT) Message-Id: <199908200327.XAA67546@r2d2.pepperell.net> X-Mailer: Microsoft Outlook Express Macintosh Edition - 4.5 (0410) Date: Thu, 19 Aug 1999 23:27:20 -0400 Subject: OT: TRADEMARKS: WestPoint Stevens & WestPoint-Pepperell From: "Thomas Mullaney" To: freebsd-isp@freebsd.org Mime-version: 1.0 X-Priority: 3 X-Organization: Pepperell.Net X-Organization: 61B Spaulding Street X-Organization: Townsend, MA 01469 X-Organization: 978/597-0158 (Voice) X-Organization: 978/597-3104 (Fax) Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If you have a shell account on SHELL.PEPPERELL.NET, and many of you on the FREEBSD-ISP list do, due to a trademark on my home town's name of Pepperell my domain name will be changing to MULLANEY.ORG. I can't believe that a company that makes towls, blankets, and bedsheets can trademark my town name and then get the internic to threaten to place on hold every domain name that has the word pepperell in it, including pepperell.com (registered about 3 years ago), pepperell.org and mine -- pepperell.net, but the internic sent the letter and I just dont have the $1000 dollars to risk on a boneheaded judge or a scum-sucking pig lawyer. (No offense to the laywers on this list though, if you use FreeBSD you can be a scum-sucker, linux on the other hand....well nevermind) Email me in private unless you think it can help the other ISP's on the list. -- Thomas Mullaney email: thomas@mullaney.org 978/597-0158 (Voice) icq: 46055129 978/597-3104 (Fax) aim: tpm01469 -- System Administration, programming, consulting, LAN/WAN desgin & support To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 0:15:14 1999 Delivered-To: freebsd-isp@freebsd.org Received: from rucus.ru.ac.za (rucus.ru.ac.za [146.231.29.2]) by hub.freebsd.org (Postfix) with SMTP id 7EA2C151A4 for ; Fri, 20 Aug 1999 00:15:06 -0700 (PDT) (envelope-from nbm@rucus.ru.ac.za) Received: (qmail 74372 invoked by uid 1003); 20 Aug 1999 07:15:02 -0000 Date: Fri, 20 Aug 1999 09:15:02 +0200 From: Neil Blakey-Milner To: Alejandro Ramirez Cc: Mike Harshbarger , freebsd-isp@FreeBSD.ORG Subject: Re: pwd_mkdb and system processes Message-ID: <19990820091502.A71267@rucus.ru.ac.za> References: <006f01beea6c$ca62e940$d4630a0a@megared.net.mx> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.6i In-Reply-To: <006f01beea6c$ca62e940$d4630a0a@megared.net.mx>; from Alejandro Ramirez on Thu, Aug 19, 1999 at 01:00:57PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu 1999-08-19 (13:00), Alejandro Ramirez wrote: > In FreeBSD 3.2, you can do this, from the man page: > > -u username > Only update the record for the specified user. Utilities > that operate on a single user can use this option to avoid the > overhead of rebuilding the entire database. I think he meant "When will _pw_ use pwd_mkdb's -u option" instead of plain pwd_mkdb without -u. > > On a related note, is there any chance in the future of the 'pw' command > > supporting a command line option like pwd_mkdb's '-u' so it doesn't have > > to reconstruct entire password databases? Mike, try this? cvs diff: Diffing . Index: pwupd.c =================================================================== RCS file: /home/ncvs/src/usr.sbin/pw/pwupd.c,v retrieving revision 1.8 diff -u -r1.8 pwupd.c --- pwupd.c 1999/02/23 07:15:11 1.8 +++ pwupd.c 1999/08/20 07:08:02 @@ -168,8 +168,12 @@ */ if (pwd != NULL) fmtpwentry(pwbuf, pwd, PWF_MASTER); - if ((rc = fileupdate(getpwpath(_MASTERPASSWD), 0644, pwbuf, pfx, l, mode)) != 0) - rc = pwdb(NULL) == 0; + if ((rc = fileupdate(getpwpath(_MASTERPASSWD), 0644, pwbuf, pfx, l, mode)) != 0) { + if (mode == UPD_DELETE) + rc = pwdb(NULL) == 0; + else + rc = pwdb("-u", user, NULL) == 0; + } } } return rc; Good luck, Neil -- Neil Blakey-Milner nbm@rucus.ru.ac.za To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 2:24:37 1999 Delivered-To: freebsd-isp@freebsd.org Received: from volodya.prime.net.ua (volodya.prime.net.ua [195.64.229.17]) by hub.freebsd.org (Postfix) with ESMTP id 8A93C152DF for ; Fri, 20 Aug 1999 02:24:18 -0700 (PDT) (envelope-from andyo@prime.net.ua) Received: from prime.net.ua (localhost [127.0.0.1]) by volodya.prime.net.ua (8.9.3/8.8.8) with ESMTP id MAA01831; Fri, 20 Aug 1999 12:24:54 +0300 (EEST) (envelope-from andyo@prime.net.ua) Message-ID: <37BD1EE4.8538AEC6@prime.net.ua> Date: Fri, 20 Aug 1999 12:24:53 +0300 From: "Andy V. Oleynik" Organization: M-Info X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-STABLE i386) X-Accept-Language: en, ru, uk MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Cc: Brian Somers Subject: Re: Problem with ICMP when aliasing enabled? References: <199908192006.VAA00538@keep.lan.Awfulhak.org> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Here is another strangeness but I'm not sure that this is relevant to aliasing. Well, clients are serviced by user ppp on dialin side of server providing dynamic IP distribution per ttyd basis. IPs are real. And everithing is Ok but ICMP (particularly ECHOREQ/ECHOREP). There is normal traffik from clients to Inet and wise a versa on the ppp links. But I can ping and take repley from clients only from ppp host exactly. When I ping them from other hosts I take no repleys. But tcpdump shows that echo-reqs goes from dialup ppp link to the clients PCs. All other proto's works good. There are no FW's rules denying incoming ICMP traffik from clients. Any ideas? -- WBW Andy V. Oleynik (When U work in virtual office prime.net.ua's U have good chance to obtain system administrator virtual money ö%-) +380442448363 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 3:10: 9 1999 Delivered-To: freebsd-isp@freebsd.org Received: from volodya.prime.net.ua (volodya.prime.net.ua [195.64.229.17]) by hub.freebsd.org (Postfix) with ESMTP id 977B714D92 for ; Fri, 20 Aug 1999 03:10:01 -0700 (PDT) (envelope-from andyo@prime.net.ua) Received: from prime.net.ua (localhost [127.0.0.1]) by volodya.prime.net.ua (8.9.3/8.8.8) with ESMTP id NAA01897 for ; Fri, 20 Aug 1999 13:10:59 +0300 (EEST) (envelope-from andyo@prime.net.ua) Message-ID: <37BD29B1.7F57A032@prime.net.ua> Date: Fri, 20 Aug 1999 13:10:57 +0300 From: "Andy V. Oleynik" Organization: M-Info X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-STABLE i386) X-Accept-Language: en, ru, uk MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: [Fwd: Problem with ICMP when aliasing enabled?] Content-Type: multipart/mixed; boundary="------------CACA498FD637186DFF0749F0" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------CACA498FD637186DFF0749F0 Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit -- WBW Andy V. Oleynik (When U work in virtual office prime.net.ua's U have good chance to obtain system administrator virtual money ö%-) +380442448363 --------------CACA498FD637186DFF0749F0 Content-Type: message/rfc822 Content-Transfer-Encoding: 8bit Content-Disposition: inline Received: by mail.prime.net.ua (mbox andyo) (with Cubic Circle's cucipop (v1.31 1998/05/13) Fri Aug 20 12:45:54 1999) X-From_: andyo@prime.net.ua Fri Aug 20 12:44:15 1999 Received: from volodya.prime.net.ua (volodya.prime.net.ua [195.64.229.17]) by mail.prime.net.ua (8.9.3/8.9.3) with ESMTP id MAA10033 for ; Fri, 20 Aug 1999 12:44:15 +0300 (EEST) Received: from prime.net.ua (localhost [127.0.0.1]) by volodya.prime.net.ua (8.9.3/8.8.8) with ESMTP id MAA01853 for ; Fri, 20 Aug 1999 12:45:00 +0300 (EEST) (envelope-from andyo@prime.net.ua) Sender: root@volodya.prime.net.ua Message-ID: <37BD239B.5EF43273@prime.net.ua> Date: Fri, 20 Aug 1999 12:45:00 +0300 From: "Andy V. Oleynik" Organization: M-Info X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-STABLE i386) X-Accept-Language: en, ru, uk MIME-Version: 1.0 To: "Andy V. Oleynik" Subject: Re: Problem with ICMP when aliasing enabled? References: <199908192006.VAA00538@keep.lan.Awfulhak.org> <37BD1EE4.8538AEC6@prime.net.ua> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit X-Mozilla-Status2: 00000000 I've forgotten to add few detail: there is multilink ppp instance that serves leased lines to our parent backbone on the same ppp-dialin server. "Andy V. Oleynik" wrote: > Here is another strangeness but I'm not sure that this > WBW Andy V. Oleynik (When U work in virtual office > prime.net.ua's U have good chance to obtain > system administrator virtual money ö%-) > +380442448363 > --------------CACA498FD637186DFF0749F0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 7:46:10 1999 Delivered-To: freebsd-isp@freebsd.org Received: from storm.FreeBSD.org.uk (storm.freebsd.org.uk [194.242.128.198]) by hub.freebsd.org (Postfix) with ESMTP id 42D5A14BE5 for ; Fri, 20 Aug 1999 07:46:07 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (root@localhost [127.0.0.1]) by storm.FreeBSD.org.uk (8.9.3/8.9.3) with ESMTP id PAA99894; Fri, 20 Aug 1999 15:45:35 +0100 (BST) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1]) by keep.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id PAA02932; Fri, 20 Aug 1999 15:48:24 +0100 (BST) (envelope-from brian@keep.lan.Awfulhak.org) Message-Id: <199908201448.PAA02932@keep.lan.Awfulhak.org> X-Mailer: exmh version 2.0.2 2/24/98 To: "Andy V. Oleynik" Cc: freebsd-isp@FreeBSD.ORG, Brian Somers Subject: Re: Problem with ICMP when aliasing enabled? In-reply-to: Your message of "Fri, 20 Aug 1999 12:24:53 +0300." <37BD1EE4.8538AEC6@prime.net.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Date: Fri, 20 Aug 1999 15:48:24 +0100 From: Brian Somers Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Here is another strangeness but I'm not sure that this > = > is relevant to aliasing. Well, clients are serviced by > = > user ppp on dialin side of server providing dynamic > = > IP distribution per ttyd basis. IPs are real. And everithing > = > is Ok but ICMP (particularly ECHOREQ/ECHOREP). There is > = > normal traffik from clients to Inet and wise a versa > = > on the ppp links. But I can ping and take repley from > = > clients only from ppp host exactly. When I ping them from > = > other hosts I take no repleys. But tcpdump shows that > = > echo-reqs goes from dialup ppp link to the clients PCs. > = > All other proto's works good. There are no FW's rules > = > denying incoming ICMP traffik from clients. Any ideas? Maybe I don't understand you... this works ok for me - when I dial = the 'net from home I run ppp -alias. A ping from an external machine = to the dialed-up machine works ok... > -- > WBW Andy V. Oleynik (When U work in virtual office > prime.net.ua's U have good chance to obtain > system administrator virtual money =F6%-) > +380442448363 -- = Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 8: 9:53 1999 Delivered-To: freebsd-isp@freebsd.org Received: from kiwi.datasys.net (kiwi.datasys.net [209.119.145.2]) by hub.freebsd.org (Postfix) with ESMTP id B6CFD14DCD for ; Fri, 20 Aug 1999 08:09:47 -0700 (PDT) (envelope-from ayan@kiwi.datasys.net) Received: (from ayan@localhost) by kiwi.datasys.net (8.9.3/8.9.3) id LAA80536 for freebsd-isp@freebsd.org; Fri, 20 Aug 1999 11:07:28 -0400 (EDT) (envelope-from ayan) Date: Fri, 20 Aug 1999 11:07:28 -0400 (EDT) From: Ayan George Message-Id: <199908201507.LAA80536@kiwi.datasys.net> X-Mailer: Mail User's Shell (7.2.6 beta(5) 10/07/98) To: freebsd-isp@freebsd.org Subject: radiusd Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, I'm trying to decide which RADIUS server I should use. I'm looking for the following features: * Simultaneous connection detection. * The ability to set the users password in the user file like: ... Password = "nxSDeiowu.8", ... I'll be using the RADIUS server with a few USRobotics/3Com Netserver NAS and many Cisco AS5300 series NAS. Thanks, Ayan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 8:16:26 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns1.morelr.com (ns1.morelr.com [206.240.28.120]) by hub.freebsd.org (Postfix) with ESMTP id D401515316 for ; Fri, 20 Aug 1999 08:16:19 -0700 (PDT) (envelope-from rmorel@morelr.com) Received: from mr3 (mr3.morelr.com [206.240.29.3]) by ns1.morelr.com (8.8.8/8.8.8) with SMTP id KAA13515 for ; Fri, 20 Aug 1999 10:15:04 -0500 (CDT) (envelope-from rmorel@morelr.com) Message-Id: <2.2.32.19990820151509.006e9388@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Fri, 20 Aug 1999 10:15:09 -0500 To: freebsd-isp@FreeBSD.ORG From: Rick Morel Subject: Re: radiusd Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We're using Cistron Radius, from the ports. Did use the other one, Merit?, but couldn't get the simultaneous connection add-in working. Rick At 11:07 AM 8/20/99 -0400, Ayan George wrote: >Hello > >I'm trying to decide which RADIUS server I should use. I'm >looking for the following features: > > * Simultaneous connection detection. > > * The ability to set the users password in the user file > like: > > ... > Password = "nxSDeiowu.8", > ... > >I'll be using the RADIUS server with a few USRobotics/3Com Netserver >NAS and many Cisco AS5300 series NAS. > >Thanks, > >Ayan > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 8:25:12 1999 Delivered-To: freebsd-isp@freebsd.org Received: from filer2.isc.rit.edu (filer2.isc.rit.edu [129.21.3.107]) by hub.freebsd.org (Postfix) with ESMTP id 77B9615344 for ; Fri, 20 Aug 1999 08:25:09 -0700 (PDT) (envelope-from jcptch@osfmail.isc.rit.edu) Received: from grace ("port 2633"@[129.21.3.102]) by osfmail.isc.rit.edu (PMDF V5.2-32 #34621) with SMTP id <0FGR008M0S0TNT@osfmail.isc.rit.edu> for freebsd-isp@freebsd.org; Fri, 20 Aug 1999 11:22:05 -0400 (EDT) Received: by grace (5.65v4.0/1.1.19.2/21Sep98-0910AM) id AA31982; Fri, 20 Aug 1999 11:22:04 -0400 Date: Fri, 20 Aug 1999 11:22:04 -0400 From: Jon Parise Subject: Re: radiusd In-reply-to: <199908201507.LAA80536@kiwi.datasys.net>; from ayan@kiwi.datasys.net on Fri, Aug 20, 1999 at 11:07:28AM -0400 To: freebsd-isp@freebsd.org Mail-followup-to: freebsd-isp@freebsd.org Message-id: <19990820112204.C7924@osfmail.isc.rit.edu> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii User-Agent: Mutt/0.96.3i X-Operating-System: OSF1 V4.0 (alpha) References: <199908201507.LAA80536@kiwi.datasys.net> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Aug 20, 1999 at 11:07:28AM -0400, Ayan George wrote: > I'm trying to decide which RADIUS server I should use. I'm > looking for the following features: > > * Simultaneous connection detection. > > * The ability to set the users password in the user file > like: > > Password = "nxSDeiowu.8", http://www.miquels.cistron.nl/radius/ -- Jon Parise (parise@pobox.com) . Rochester Inst. of Technology http://www.pobox.com/~parise/ : Computer Science House Member To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 8:36: 2 1999 Delivered-To: freebsd-isp@freebsd.org Received: from home.merit.edu (home.merit.edu [198.108.60.42]) by hub.freebsd.org (Postfix) with ESMTP id 5E67415344 for ; Fri, 20 Aug 1999 08:35:55 -0700 (PDT) (envelope-from web@merit.edu) Received: (from web@localhost) by home.merit.edu (8.8.8/merit-2.0) id LAA10782; Fri, 20 Aug 1999 11:34:23 -0400 (EDT) From: William Bulley Message-Id: <199908201534.LAA10782@home.merit.edu> Subject: Re: radiusd To: ayan@kiwi.datasys.net (Ayan George) Date: Fri, 20 Aug 1999 11:34:23 -0400 (EDT) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <199908201507.LAA80536@kiwi.datasys.net> from "Ayan George" at Aug 20, 99 11:07:28 am X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org According to Ayan George: > > I'm trying to decide which RADIUS server I should use. I'm > looking for the following features: > > * Simultaneous connection detection. > > * The ability to set the users password in the user file > like: > > ... > Password = "nxSDeiowu.8", > ... > > I'll be using the RADIUS server with a few USRobotics/3Com Netserver > NAS and many Cisco AS5300 series NAS. The Merit AAA Server does all this (and more). See this URL for more info: http://www.merit.edu/aaa/ We have a freely available version which does the latter above but not the former. To get the former (simultaneous use) you will need to license our enhanced Merit AAA Server. Regards, web... -- William Bulley Senior Systems Research Programmer Merit Network, Inc. Email: web@merit.edu 4251 Plymouth Road, Suite C Phone: (734) 764-9993 Ann Arbor, Michigan 48105-2785 Fax: (734) 647-3185 Your friends may come and go, but your enemies tend to accumulate... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 11:16: 4 1999 Delivered-To: freebsd-isp@freebsd.org Received: from guard.polynet.lviv.ua (Guard.PolyNet.Lviv.UA [194.44.138.1]) by hub.freebsd.org (Postfix) with SMTP id 48796153B5 for ; Fri, 20 Aug 1999 11:15:52 -0700 (PDT) (envelope-from pam@polynet.lviv.ua) Received: (qmail 75507 invoked from network); 20 Aug 1999 18:15:46 -0000 Received: from unknown (HELO mpav.polynet.lviv.ua) (unknown) by unknown with SMTP; 20 Aug 1999 18:15:46 -0000 From: pam@polynet.lviv.ua To: isp@freebsd.org Date: Fri, 20 Aug 1999 21:15:32 +0300 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: [Offtopic Q] Smallest network feasible to announce as separate AS route in Internet X-mailer: Pegasus Mail for Win32 (v3.12a) Message-Id: <19990820181556.48796153B5@hub.freebsd.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello! I have one very practical question. I've heard that backbone routers in the Internet have installed route filters blocking BGP announcements of very small networks. What is the smallest network prefix, which could be safely announced as multi-homed (via separate AS number) in the Internet? Thanks for help and appologies for being offtopic. Best regards, Adrian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 12: 9:48 1999 Delivered-To: freebsd-isp@freebsd.org Received: from finland.ispro.net.tr (finland.ispro.net.tr [195.174.18.1]) by hub.freebsd.org (Postfix) with ESMTP id 825D914CA1 for ; Fri, 20 Aug 1999 12:09:43 -0700 (PDT) (envelope-from yurtesen@ispro.net.tr) Received: from ispro.net.tr (dyn-0-095.tku.netti.fi [195.16.223.96]) by finland.ispro.net.tr (8.9.3/8.9.3) with ESMTP id WAA83707 for ; Fri, 20 Aug 1999 22:09:39 +0300 (EEST) (envelope-from yurtesen@ispro.net.tr) Message-ID: <37BDA7A6.D999F103@ispro.net.tr> Date: Fri, 20 Aug 1999 22:08:22 +0300 From: Evren Yurtesen X-Mailer: Mozilla 4.51 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: multiple machines in the same network Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, We are an ISP and we want to let our customers to put their own hardware into our network. But the thing we are concerned about is security of course. How can we protect our system from customers' machines? I have heard about somehthing called "virtual network" but I am not sure of what it means and even if it is the thing I am searching for ? thanks! Evren Yurtesen yurtesen@ispro.net.tr To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 12:21:37 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id A45A51575A for ; Fri, 20 Aug 1999 12:21:32 -0700 (PDT) (envelope-from up@pil.net) Received: (qmail 10774 invoked by uid 1825); 20 Aug 1999 19:20:03 -0000 Date: Fri, 20 Aug 1999 15:20:03 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: Evren Yurtesen Cc: freebsd-isp@freebsd.org Subject: Re: multiple machines in the same network In-Reply-To: <37BDA7A6.D999F103@ispro.net.tr> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 20 Aug 1999, Evren Yurtesen wrote: > We are an ISP and we want to let our customers to put their own hardware > into our network. But the thing we are concerned about is security of > course. How can we protect our system from customers' machines? The best way is to just put a router between your colo customers and your own LAN. Second best is to employ an Ether switch. The only way I know of for the former method to sniff the LAN is to spoof the MAC address of a box who's packets you want to intercept. James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 13:49:10 1999 Delivered-To: freebsd-isp@freebsd.org Received: from freesbee.t.dk (freesbee.t.dk [193.162.159.97]) by hub.freebsd.org (Postfix) with SMTP id 855161590F for ; Fri, 20 Aug 1999 13:48:59 -0700 (PDT) (envelope-from jesper@freesbee.t.dk) Received: (qmail 17695 invoked by uid 1001); 20 Aug 1999 20:48:14 -0000 Date: Fri, 20 Aug 1999 22:48:13 +0200 From: Jesper Skriver To: pam@polynet.lviv.ua Cc: isp@freebsd.org Subject: Re: [Offtopic Q] Smallest network feasible to announce as separate AS route in Internet Message-ID: <19990820224813.A17684@skriver.dk> References: <19990820181556.48796153B5@hub.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii User-Agent: Mutt/0.96.2i In-Reply-To: <19990820181556.48796153B5@hub.freebsd.org>; from pam@polynet.lviv.ua on Fri, Aug 20, 1999 at 09:15:32PM +0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Depends on what range, if you can get hold of space in "the swamp" a /24 should do, if not ARIN is allocating /20's RIPE /19's so here you should be safe. /Jesper On Fri, Aug 20, 1999 at 09:15:32PM +0300, pam@polynet.lviv.ua wrote: > Hello! > > I have one very practical question. I've heard that backbone routers > in the Internet have installed route filters blocking BGP > announcements of very small networks. > > What is the smallest network prefix, which could be safely > announced as multi-homed (via separate AS number) in the > Internet? > > Thanks for help and appologies for being offtopic. > > Best regards, > > Adrian > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message /Jesper -- Jesper Skriver (JS4261-RIPE), Network manager Tele Danmark DataNet, IP section (AS3292) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 14:34: 7 1999 Delivered-To: freebsd-isp@freebsd.org Received: from binnen.mail.nl.demon.net (binnen.mail.nl.demon.net [194.159.72.192]) by hub.freebsd.org (Postfix) with ESMTP id B637115053 for ; Fri, 20 Aug 1999 14:34:04 -0700 (PDT) (envelope-from arjan@nl.demon.net) Received: from inventionz.noc.nl.demon.net ([194.159.72.199]) by binnen.mail.nl.demon.net with esmtp (Exim 3.02 #1) id 11HwFy-000CTd-00; Fri, 20 Aug 1999 23:31:26 +0200 Received: from arjan (helo=localhost) by inventionz.noc.nl.demon.net with local-esmtp (Exim 2.12 #1) id 11HwLv-000KB3-00; Fri, 20 Aug 1999 23:37:35 +0200 Date: Fri, 20 Aug 1999 23:37:35 +0200 (CEST) From: Arjan van der Oest X-Sender: arjan@inventionz.noc.nl.demon.net To: up@3.am Cc: Evren Yurtesen , freebsd-isp@freebsd.org Subject: Re: multiple machines in the same network In-Reply-To: Message-ID: X-no-archive: yes MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 20 Aug 1999 up@3.am wrote: > The best way is to just put a router between your colo customers and your > own LAN. Second best is to employ an Ether switch. The only way I know > of for the former method to sniff the LAN is to spoof the MAC address of a > box who's packets you want to intercept. Just a router ? What about a firewalling router ? ao -- Jes: xntp is your friend. The evil empire of Redmond is not. Evil Empire is a registered trademark of Ronald Reagan's sole functioning brain cell. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 14:50:49 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id BE50D15B2E for ; Fri, 20 Aug 1999 14:50:42 -0700 (PDT) (envelope-from up@pil.net) Received: (qmail 22417 invoked by uid 1825); 20 Aug 1999 21:50:00 -0000 Date: Fri, 20 Aug 1999 17:49:59 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: Arjan van der Oest Cc: freebsd-isp@freebsd.org Subject: Re: multiple machines in the same network In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 20 Aug 1999, Arjan van der Oest wrote: > On Fri, 20 Aug 1999 up@3.am wrote: > > > The best way is to just put a router between your colo customers and your > > own LAN. Second best is to employ an Ether switch. The only way I know > > of for the former method to sniff the LAN is to spoof the MAC address of a > > box who's packets you want to intercept. > > Just a router ? What about a firewalling router ? Assuming you firewall to the outside world, sure. Otherwise, it's fairly pointless. The main issue (IMHO) is to keep them from sniffing broadcast packets. James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 14:55:40 1999 Delivered-To: freebsd-isp@freebsd.org Received: from binnen.mail.nl.demon.net (binnen.mail.nl.demon.net [194.159.72.192]) by hub.freebsd.org (Postfix) with ESMTP id CCC77157A7 for ; Fri, 20 Aug 1999 14:55:36 -0700 (PDT) (envelope-from arjan@nl.demon.net) Received: from inventionz.noc.nl.demon.net ([194.159.72.199]) by binnen.mail.nl.demon.net with esmtp (Exim 3.02 #1) id 11Hwb9-000CcP-00; Fri, 20 Aug 1999 23:53:19 +0200 Received: from arjan (helo=localhost) by inventionz.noc.nl.demon.net with local-esmtp (Exim 2.12 #1) id 11Hwh5-000KHq-00; Fri, 20 Aug 1999 23:59:27 +0200 Date: Fri, 20 Aug 1999 23:59:27 +0200 (CEST) From: Arjan van der Oest X-Sender: arjan@inventionz.noc.nl.demon.net To: up@3.am Cc: freebsd-isp@freebsd.org Subject: Re: multiple machines in the same network In-Reply-To: Message-ID: X-no-archive: yes MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 20 Aug 1999 up@3.am wrote: > Assuming you firewall to the outside world, sure. Otherwise, it's fairly > pointless. The main issue (IMHO) is to keep them from sniffing broadcast > packets. Hmmm, *I* would even seperate my internal (office) network from the customer network with a firewall. In fact, that's the case here. ao -- Jes: xntp is your friend. The evil empire of Redmond is not. Evil Empire is a registered trademark of Ronald Reagan's sole functioning brain cell. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 16:37:44 1999 Delivered-To: freebsd-isp@freebsd.org Received: from filer2.isc.rit.edu (filer2.isc.rit.edu [129.21.3.107]) by hub.freebsd.org (Postfix) with ESMTP id 3729B14E81 for ; Fri, 20 Aug 1999 16:37:42 -0700 (PDT) (envelope-from jcptch@osfmail.isc.rit.edu) Received: from grace ("port 1500"@[129.21.3.102]) by osfmail.isc.rit.edu (PMDF V5.2-32 #34621) with SMTP id <0FGS00KKXEVJIY@osfmail.isc.rit.edu> for freebsd-isp@freebsd.org; Fri, 20 Aug 1999 19:35:43 -0400 (EDT) Received: by grace (5.65v4.0/1.1.19.2/21Sep98-0910AM) id AA26487; Fri, 20 Aug 1999 19:35:42 -0400 Date: Fri, 20 Aug 1999 19:35:42 -0400 From: Jon Parise Subject: Re: multiple machines in the same network In-reply-to: <37BDA7A6.D999F103@ispro.net.tr>; from yurtesen@ispro.net.tr on Fri, Aug 20, 1999 at 10:08:22PM +0300 To: freebsd-isp@freebsd.org Mail-followup-to: freebsd-isp@freebsd.org Message-id: <19990820193542.A27435@osfmail.isc.rit.edu> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii User-Agent: Mutt/0.96.3i X-Operating-System: OSF1 V4.0 (alpha) References: <37BDA7A6.D999F103@ispro.net.tr> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Aug 20, 1999 at 10:08:22PM +0300, Evren Yurtesen wrote: > We are an ISP and we want to let our customers to put their own hardware > into our network. But the thing we are concerned about is security of > course. How can we protect our system from customers' machines? In addition to the other response, you might also want to consider a network device that can handle bandwidth limiting and/or accounting. At the very minimum, employ a decent switch. That way, you'll at least be able to disable the port should one of the colocation boxes get attacked or something. -- Jon Parise (parise@pobox.com) . Rochester Inst. of Technology http://www.pobox.com/~parise/ : Computer Science House Member To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 16:48:33 1999 Delivered-To: freebsd-isp@freebsd.org Received: from inet.chip-web.com (c1003518-a.plstn1.sfba.home.com [24.1.82.47]) by hub.freebsd.org (Postfix) with SMTP id 1664514E81 for ; Fri, 20 Aug 1999 16:48:31 -0700 (PDT) (envelope-from ludwigp@bigfoot.com) Received: (qmail 27365 invoked from network); 20 Aug 1999 23:47:41 -0000 Received: from furball.chip-web.com (172.16.1.29) by inet.chip-web.com with SMTP; 20 Aug 1999 23:47:41 -0000 Date: Fri, 20 Aug 1999 16:47:23 -0700 (PDT) From: Ludwig Pummer X-Sender: ludwigp@furball.chip-web.com To: Thomas Mullaney Cc: freebsd-isp@freebsd.org Subject: Re: OT: TRADEMARKS: WestPoint Stevens & WestPoint-Pepperell In-Reply-To: <199908200327.XAA67546@r2d2.pepperell.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 19 Aug 1999, Thomas Mullaney wrote: > I can't believe that a company that makes towls, blankets, and bedsheets can > trademark my town name and then get the internic to threaten to place on hold > every domain name that has the word pepperell in it, including pepperell.com > (registered about 3 years ago), pepperell.org and mine -- pepperell.net, but > the internic sent the letter and I just dont have the $1000 dollars to risk on > a boneheaded judge or a scum-sucking pig lawyer. (No offense to the laywers on > this list though, if you use FreeBSD you can be a scum-sucker, linux on the > other hand....well nevermind) > > > Email me in private unless you think it can help the other ISP's on the list. You may want to contact Benjamin Kite at ajax@pobox.com and probably also ajax@ajax.com Colgate-Palmolive tried to take his domain name away too, but he was able to fight 'em off. The whole story is available at http://www.ajax.org/ajax/colpal --Ludwig Pummer To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 18:40: 5 1999 Delivered-To: freebsd-isp@freebsd.org Received: from javalina.csf.edu (javalina.csf.edu [207.66.108.10]) by hub.freebsd.org (Postfix) with ESMTP id 4A87915360 for ; Fri, 20 Aug 1999 18:40:02 -0700 (PDT) (envelope-from logos@csf.edu) Received: from odietamo (odietamo.lib.csf.edu [207.66.108.82]) by javalina.csf.edu (8.9.3/8.9.1) with ESMTP id TAA05232 for ; Fri, 20 Aug 1999 19:31:49 -0600 Message-Id: <4.2.0.58.19990820192457.00a9f280@javalina.csf.edu> X-Sender: logos@javalina.csf.edu X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.0.58 Date: Fri, 20 Aug 1999 19:40:05 -0600 To: freebsd-isp@FreeBSD.ORG From: Mark Cohen Subject: Activate Expired Account Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org First, please excuse any unintentional improprieties as this is my first posting to a FreeBSD mailing list. Second, I searched the archives of the various FreeBSD mailing lists and the closest answer came from this list, so I figured even though I am not part of an ISP this would be the best place (I have already tried the misc newsgroup). So without further ado here is my question: What would be a secure, yet practical way to allow a non-superuser account have the priviledge to unexpire/activate user accounts. Basically, I would like to be able to pre-setup accounts and have them created as either expired or de-active by default; and then have them be activated by someone else, yet not give any additional privs than necessary. Also, the idea is to make this as automated as possible. So how to create such a script that only one other user could run would be ideal. Thanks for any info on this matter. As I am not a subscriber as yet (still seeing if FreeBSD is the way to go for my situation), please send to me personally as well as to this list (if you believe this would be valuable for anyone else). Thanks much, Mark logos@csf.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 20 20:39: 5 1999 Delivered-To: freebsd-isp@freebsd.org Received: from richard2.pil.net (richard2.pil.net [207.8.164.9]) by hub.freebsd.org (Postfix) with SMTP id F36BE14BE1 for ; Fri, 20 Aug 1999 20:38:58 -0700 (PDT) (envelope-from up@pil.net) Received: (qmail 13164 invoked by uid 1825); 21 Aug 1999 03:38:48 -0000 Date: Fri, 20 Aug 1999 23:38:48 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: Mark Cohen Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Activate Expired Account In-Reply-To: <4.2.0.58.19990820192457.00a9f280@javalina.csf.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 20 Aug 1999, Mark Cohen wrote: > What would be a secure, yet practical way to allow a non-superuser account > have the priviledge to unexpire/activate user accounts. sudo It comes with the distribution. > Basically, I would like to be able to pre-setup accounts and have them > created as either expired or de-active by default; and then have them be > activated by someone else, yet not give any additional privs than > necessary. Also, the idea is to make this as automated as possible. So how > to create such a script that only one other user could run would be ideal. > > Thanks for any info on this matter. As I am not a subscriber as yet (still > seeing if FreeBSD is the way to go for my situation), please send to me > personally as well as to this list (if you believe this would be valuable > for anyone else). > > Thanks much, > Mark > logos@csf.edu > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= ISPF 3 - The Forum for ISPs by ISPs(tm) || Nov 15-17, 1999, New Orleans 3 days of clues, news, and views from the industry's best and brightest. Visit for information and registration. ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 0:35:19 1999 Delivered-To: freebsd-isp@freebsd.org Received: from volodya.prime.net.ua (volodya.prime.net.ua [195.64.229.17]) by hub.freebsd.org (Postfix) with ESMTP id 22469153D6 for ; Sat, 21 Aug 1999 00:34:29 -0700 (PDT) (envelope-from andyo@prime.net.ua) Received: from prime.net.ua (localhost [127.0.0.1]) by volodya.prime.net.ua (8.9.3/8.8.8) with ESMTP id KAA15566; Sat, 21 Aug 1999 10:34:41 +0300 (EEST) (envelope-from andyo@prime.net.ua) Message-ID: <37BE568F.4EA45BEE@prime.net.ua> Date: Sat, 21 Aug 1999 10:34:40 +0300 From: "Andy V. Oleynik" Organization: M-Info X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-STABLE i386) X-Accept-Language: en, ru, uk MIME-Version: 1.0 To: Brian Somers Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Problem with ICMP when aliasing enabled? References: <199908201448.PAA02932@keep.lan.Awfulhak.org> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'll try to clarify situation. Client use M$WinXXX to dialup into FBSD ppp server which provides ppp with aliasing on server side. I didnt especially disable aliasing on dialup modem pool coz I dicided that it didnt matter in the dialup case. Generally aliasing is ajusted in default section and serves the leased mppp link to the base backbone (defaultroute). Thus aliasing propagated on the dialup ppp links too. And dialup clients(real dynamic IPs) say that they have usual tcp traffic but they cant to ping remote hosts but the dialup ppp server. And I can ping clients only from dialup ppp server only but not from another hosts. Though ECHO requests goes through the dialup links w/o any replies. Was I clear? |backbone---------echo requests w/o replies ---------------> | |-------------|Client1 |-------------------------------| ppp dialup server|---echo requests with replies----------> | mppp leased link with |-------------|ClientN | aliasing dialup ppp with propagated aliasing Brian Somers wrote: > > Here is another strangeness but I'm not sure that this > > > > is relevant to aliasing. Well, clients are serviced by > > > > user ppp on dialin side of server providing dynamic > > > > IP distribution per ttyd basis. IPs are real. And everithing > > > > is Ok but ICMP (particularly ECHOREQ/ECHOREP). There is > > > > normal traffik from clients to Inet and wise a versa > > > > on the ppp links. But I can ping and take repley from > > > > clients only from ppp host exactly. When I ping them from > > > > other hosts I take no repleys. But tcpdump shows that > > > > echo-reqs goes from dialup ppp link to the clients PCs. > > > > All other proto's works good. There are no FW's rules > > > > denying incoming ICMP traffik from clients. Any ideas? > > Maybe I don't understand you... this works ok for me - when I dial > the 'net from home I run ppp -alias. A ping from an external machine > to the dialed-up machine works ok... > > > -- > > WBW Andy V. Oleynik (When U work in virtual office > > prime.net.ua's U have good chance to obtain > > system administrator virtual money ö%-) > > +380442448363 > > -- > Brian > > Don't _EVER_ lose your sense of humour ! > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- WBW Andy V. Oleynik (When U work in virtual office prime.net.ua's U have good chance to obtain system administrator virtual money ö%-) +380442448363 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 1:16:45 1999 Delivered-To: freebsd-isp@freebsd.org Received: from volodya.prime.net.ua (volodya.prime.net.ua [195.64.229.17]) by hub.freebsd.org (Postfix) with ESMTP id 40F4E14BF7 for ; Sat, 21 Aug 1999 01:16:36 -0700 (PDT) (envelope-from andyo@prime.net.ua) Received: from prime.net.ua (localhost [127.0.0.1]) by volodya.prime.net.ua (8.9.3/8.8.8) with ESMTP id LAA15612 for ; Sat, 21 Aug 1999 11:17:10 +0300 (EEST) (envelope-from andyo@prime.net.ua) Message-ID: <37BE6082.73F1C8FC@prime.net.ua> Date: Sat, 21 Aug 1999 11:17:07 +0300 From: "Andy V. Oleynik" Organization: M-Info X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-STABLE i386) X-Accept-Language: en, ru, uk MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Re: Problem with ICMP when aliasing enabled? References: <199908201448.PAA02932@keep.lan.Awfulhak.org> <37BE568F.4EA45BEE@prime.net.ua> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Andy V. Oleynik" wrote: > > |backbone---------echo requests w/o replies ---------------> > | > |-------------|Client1 > |-------------------------------| ppp dialup server|---echo requests with > replies----------> > | mppp leased link with > |-------------|ClientN > | aliasing > dialup ppp with propagated aliasing > Pls ignore this picture - I'm a bad painter :)-- > WBW Andy V. Oleynik (When U work in virtual office > prime.net.ua's U have good chance to obtain > system administrator virtual money ö%-) > +380442448363 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- WBW Andy V. Oleynik (When U work in virtual office prime.net.ua's U have good chance to obtain system administrator virtual money ö%-) +380442448363 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 2:13:11 1999 Delivered-To: freebsd-isp@freebsd.org Received: from inet.chip-web.com (c1003518-a.plstn1.sfba.home.com [24.1.82.47]) by hub.freebsd.org (Postfix) with SMTP id 7CBBD14E45 for ; Sat, 21 Aug 1999 02:13:07 -0700 (PDT) (envelope-from ludwigp@bigfoot.com) Received: (qmail 29209 invoked from network); 21 Aug 1999 09:11:31 -0000 Received: from furball.chip-web.com (172.16.1.29) by inet.chip-web.com with SMTP; 21 Aug 1999 09:11:31 -0000 Date: Sat, 21 Aug 1999 02:11:12 -0700 (PDT) From: Ludwig Pummer X-Sender: ludwigp@furball.chip-web.com To: Lutz Rabing Cc: FreeBSD-ISP@FreeBSD.ORG Subject: Re: MySQL exited on signal 11 In-Reply-To: <199908190905.LAA17805@office.omc.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 19 Aug 1999, Lutz Rabing wrote: > Now I'm having trouble with a new 3.2-Stable system running mysql 3.22.24 > from the ports collection compiled with "NATIVE_THREADS=yes": Older 3.2-STABLEs (before Fri Jul 23 13:00:24 1999 UTC) were known to have problems. You're more likely to get a response from the -questions or -stable mailing list. --Ludwig Pummer To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 8:49:19 1999 Delivered-To: freebsd-isp@freebsd.org Received: from smtp1.xs4all.nl (smtp1.xs4all.nl [194.109.127.48]) by hub.freebsd.org (Postfix) with ESMTP id 1E40E14E90 for ; Sat, 21 Aug 1999 08:49:16 -0700 (PDT) (envelope-from niels@bakker.net) Received: from liquid.tpb.net (arctic.xs4all.nl [194.109.37.82]) by smtp1.xs4all.nl (8.9.3/8.9.3) with ESMTP id RAA08753; Sat, 21 Aug 1999 17:07:42 +0200 (CEST) Received: from localhost (niels@localhost) by liquid.tpb.net (8.9.3/8.9.3/Debian/GNU) with ESMTP id RAA22721; Sat, 21 Aug 1999 17:07:41 +0200 Date: Sat, 21 Aug 1999 17:07:40 +0200 (CEST) From: N X-Sender: niels@liquid.tpb.net To: Evren Yurtesen Cc: freebsd-isp@FreeBSD.ORG Subject: Re: multiple machines in the same network In-Reply-To: <37BDA7A6.D999F103@ispro.net.tr> Message-ID: <9908211658400.22597-100000@liquid.tpb.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > We are an ISP and we want to let our customers to put their own hardware > into our network. But the thing we are concerned about is security of > course. How can we protect our system from customers' machines? Buy another Ethernet port for the router that connects to the leased line to your upstream, hang a subnet off it and only attach customers there. Don't let them or their machines come anywhere near yours. Be especially wary of routing protocols. Build access lists with a vengeance. Separate rooms are preferred. UUnet do it nicely: at MAE-East (the only place I have experience with this) you get a swipe card that gets you into the building, plus another card that gets you into the colo room. All 19" racks are locked (well, most of them :), you can't reach the next one from inside its neighbour as well. You get one key, another is kept locked away by UUnet personnel in case you want them to do `remote-hands' service on your hardware (i.e. powercycle it) or a telco has to connect new infrastructure etc. The disadvantage of it is that it eats space and costs increase due to the additional physical esecurity requirements. You will have to decide whether that'll be worth it over only allowing supervised access to co-located machines. FWIW, we do the latter, with 24h remote-hands service for customers who want that (and want to pay for it :). HTH, -- Niels. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 8:55:19 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns3.zoomnet.net (ns3.zoomnet.net [206.230.102.14]) by hub.freebsd.org (Postfix) with ESMTP id A2D5A14F10 for ; Sat, 21 Aug 1999 08:55:17 -0700 (PDT) (envelope-from cygone@zoomnet.net) Received: from windows (cygone.zoomnet.net [208.32.49.7]) by ns3.zoomnet.net (8.9.1/8.9.1) with SMTP id LAA03816 for ; Sat, 21 Aug 1999 11:55:15 -0400 (EDT) Message-ID: <002501beebed$2a4e3ea0$0200000a@windows.cygone.com> From: "Mitch Vincent" To: Subject: Re: multiple machines in the same network Date: Sat, 21 Aug 1999 11:52:25 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-Mimeole: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >> We are an ISP and we want to let our customers to put their own hardware >> into our network. But the thing we are concerned about is security of >> course. How can we protect our system from customers' machines? What do you mean protect yourself? From things like sniffing passwords, or things like DoS attacks? Preventing the sniffing of your passwords is fairly easy, just segment your network, get a switch and make sure their machine is on a different port than any of yours. Preventing DoS attacks isn't as simple, look into firewalling at the router.. - Mitch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 11:26:51 1999 Delivered-To: freebsd-isp@freebsd.org Received: from loki.intrepid.net (intrepid.net [204.71.127.3]) by hub.freebsd.org (Postfix) with ESMTP id 52D6814EE4 for ; Sat, 21 Aug 1999 11:26:45 -0700 (PDT) (envelope-from mark@loki.intrepid.net) Received: (from mark@localhost) by loki.intrepid.net (8.8.5/8.8.5) id OAA21116; Sat, 21 Aug 1999 14:25:51 -0400 Message-ID: <19990821142551.F22209@intrepid.net> Date: Sat, 21 Aug 1999 14:25:51 -0400 From: Mark Conway Wirt To: pam@polynet.lviv.ua, isp@FreeBSD.ORG Subject: Re: [Offtopic Q] Smallest network feasible to announce as separate AS route in Internet References: <19990820181556.48796153B5@hub.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2 In-Reply-To: <19990820181556.48796153B5@hub.freebsd.org>; from pam@polynet.lviv.ua on Fri, Aug 20, 1999 at 09:15:32PM +0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Aug 20, 1999 at 09:15:32PM +0300, pam@polynet.lviv.ua wrote: > Hello! > > I have one very practical question. I've heard that backbone routers > in the Internet have installed route filters blocking BGP > announcements of very small networks. > > What is the smallest network prefix, which could be safely > announced as multi-homed (via separate AS number) in the > Internet? > > Thanks for help and appologies for being offtopic. Used to be that a /19 was the safest that not filtered by various providers (unless you could get space in the older allocations -- I've seen /28's routed in there :-), but with ARIN changing it's allocation policies, more and more providers are relaxing the limits. A /19 should be a safe bet, though. If you can't get one, make sure that the address space you get is in the old, not-filtered region (can't remember the range, but someone on the list may know) --Mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 12:55: 0 1999 Delivered-To: freebsd-isp@freebsd.org Received: from awfulhak.org (dynamic-112.max1-du-ws.dialnetwork.pavilion.co.uk [212.74.8.112]) by hub.freebsd.org (Postfix) with ESMTP id D79B014C3E for ; Sat, 21 Aug 1999 12:54:55 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from keep.lan.Awfulhak.org (root@keep.lan.Awfulhak.org [172.16.0.8]) by awfulhak.org (8.9.3/8.9.3) with ESMTP id LAA08722; Sat, 21 Aug 1999 11:36:12 +0100 (BST) (envelope-from brian@lan.awfulhak.org) Received: from keep.lan.Awfulhak.org (brian@localhost.lan.Awfulhak.org [127.0.0.1]) by keep.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id LAA02385; Sat, 21 Aug 1999 11:39:06 +0100 (BST) (envelope-from brian@keep.lan.Awfulhak.org) Message-Id: <199908211039.LAA02385@keep.lan.Awfulhak.org> X-Mailer: exmh version 2.0.2 2/24/98 To: "Andy V. Oleynik" Cc: Brian Somers , freebsd-isp@FreeBSD.ORG Subject: Re: Problem with ICMP when aliasing enabled? In-reply-to: Your message of "Sat, 21 Aug 1999 10:34:40 +0300." <37BE568F.4EA45BEE@prime.net.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Date: Sat, 21 Aug 1999 11:39:06 +0100 From: Brian Somers Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Aliasing does some odd things if enabled on the ``public'' side of = the ppp link. I'd be surprised if the client can connect to anything = except the ppp server. I'd suggest you disable aliasing in the incoming profile (``alias = enable no''). Things should be sane again then :-) > I'll try to clarify situation. > Client use M$WinXXX to dialup into FBSD ppp server which > provides ppp with aliasing on server side. I didnt especially > disable aliasing on dialup modem pool coz I dicided that it > didnt matter in the dialup case. Generally aliasing is ajusted > in default section and serves the leased mppp link to the > base backbone (defaultroute). Thus aliasing propagated on > the dialup ppp links too. And dialup clients(real dynamic IPs) > say that they have usual tcp traffic but they cant to ping remote > hosts but the dialup ppp server. And I can ping clients only from > dialup ppp server only but not from another hosts. Though ECHO > requests goes through the dialup links w/o any replies. > Was I clear? > |backbone---------echo requests w/o replies ---------------> > | > |-------------|Client1 > |-------------------------------| ppp dialup server|---echo requests wi= th > replies----------> > | mppp leased link with > |-------------|ClientN > | aliasing > dialup ppp with propagated aliasing > = > Brian Somers wrote: > = > > > Here is another strangeness but I'm not sure that this > > > > > > is relevant to aliasing. Well, clients are serviced by > > > > > > user ppp on dialin side of server providing dynamic > > > > > > IP distribution per ttyd basis. IPs are real. And everithing > > > > > > is Ok but ICMP (particularly ECHOREQ/ECHOREP). There is > > > > > > normal traffik from clients to Inet and wise a versa > > > > > > on the ppp links. But I can ping and take repley from > > > > > > clients only from ppp host exactly. When I ping them from > > > > > > other hosts I take no repleys. But tcpdump shows that > > > > > > echo-reqs goes from dialup ppp link to the clients PCs. > > > > > > All other proto's works good. There are no FW's rules > > > > > > denying incoming ICMP traffik from clients. Any ideas? > > > > Maybe I don't understand you... this works ok for me - when I dial > > the 'net from home I run ppp -alias. A ping from an external machine= > > to the dialed-up machine works ok... > > > > > -- > > > WBW Andy V. Oleynik (When U work in virtual office > > > prime.net.ua's U have good chance to obtain > > > system administrator virtual money =F6%-) > > > +380442448363 > > > > -- > > Brian = > > = > > Don't _EVER_ lose your sense of humour ! > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > = > -- > WBW Andy V. Oleynik (When U work in virtual office > prime.net.ua's U have good chance to obtain > system administrator virtual money =F6%-) > +380442448363 -- = Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 21 23:51:21 1999 Delivered-To: freebsd-isp@freebsd.org Received: from phoenix.aye.net (phoenix.aye.net [206.185.8.134]) by hub.freebsd.org (Postfix) with SMTP id 9AE9314C4A for ; Sat, 21 Aug 1999 23:51:18 -0700 (PDT) (envelope-from barrett@phoenix.aye.net) Received: (qmail 28201 invoked by uid 1000); 22 Aug 1999 06:41:09 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 22 Aug 1999 06:41:09 -0000 Date: Sun, 22 Aug 1999 02:41:08 -0400 (EDT) From: Barrett Richardson To: "Andy V. Oleynik" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Problem with ICMP when aliasing enabled? In-Reply-To: <37BE568F.4EA45BEE@prime.net.ua> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 21 Aug 1999, Andy V. Oleynik wrote: > I'll try to clarify situation. > Client use M$WinXXX to dialup into FBSD ppp server which > provides ppp with aliasing on server side. I didnt especially > disable aliasing on dialup modem pool coz I dicided that it > didnt matter in the dialup case. Generally aliasing is ajusted > in default section and serves the leased mppp link to the > base backbone (defaultroute). Thus aliasing propagated on > the dialup ppp links too. And dialup clients(real dynamic IPs) > say that they have usual tcp traffic but they cant to ping remote > hosts but the dialup ppp server. And I can ping clients only from > dialup ppp server only but not from another hosts. Though ECHO > requests goes through the dialup links w/o any replies. > Was I clear? > |backbone---------echo requests w/o replies ---------------> > | > |-------------|Client1 > |-------------------------------| ppp dialup server|---echo requests with > replies----------> > | mppp leased link with > |-------------|ClientN > | aliasing > dialup ppp with propagated aliasing > > Try this: On a host that can't ping one of the dial-up ppp clients delete the arp entries. Run tcpdump on the dial-up server and watch for arp activity. Then ping a ppp client from one of your hosts that has had trouble reaching the ppp clients. Look for an arp request with tcpdump and also the arp reply. Look for network address mismatches between the arp request and the arp reply (if there is a a reply). If the hosts and ppp dialup have the same network address, the dial-up server should answer arp requests for the dial up clients. If they are on different networks, the host doing the ping should arp for a router (possibly the default gateway) -- which may be something else to investigate (their default gateway may not know how to reach the dial up hosts -- can only guess without knowing your topology). Also, there is a recent thread in one of the lists concerning proxy-arp oddities that may be worth searching for. I didn't read any of the messages, just remember seeing it in the subject line. - Barrett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message