From owner-freebsd-net Sun Sep 10 2:40:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from Awfulhak.org (tun.AwfulHak.org [194.242.139.173]) by hub.freebsd.org (Postfix) with ESMTP id 07BE437B50B; Sun, 10 Sep 2000 02:40:31 -0700 (PDT) Received: from hak.lan.Awfulhak.org (root@hak.lan.awfulhak.org [172.16.0.12]) by Awfulhak.org (8.11.0/8.11.0) with ESMTP id e8A9dZe71040; Sun, 10 Sep 2000 10:39:35 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Received: from hak.lan.Awfulhak.org (brian@localhost [127.0.0.1]) by hak.lan.Awfulhak.org (8.11.0/8.11.0) with ESMTP id e8A9con69883; Sun, 10 Sep 2000 10:38:50 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Message-Id: <200009100938.e8A9con69883@hak.lan.Awfulhak.org> X-Mailer: exmh version 2.1.1 10/15/1999 To: Robert Watson Cc: Brian Somers , Wes Peters , Seigo Tanimura , current@FreeBSD.org, net@FreeBSD.org, brian@Awfulhak.org Subject: Re: the ifp to a removed pcmcia ethernet card is left in struct ip_moptions and struct ifmultiaddr In-Reply-To: Message from Robert Watson of "Sat, 09 Sep 2000 12:16:39 EDT." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 10 Sep 2000 10:38:49 +0100 From: Brian Somers Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Interfaces in promiscuous mode will always result in a reboot. I > > *usually* get away with ejecting an active card if it's not in > > promiscuous mode. > > A while back I committed patches to use bpf_detach(), which elminated the > struct ifnet pointer in the bpf described at detach time. This removed > most of the panics I experience on ejecting pccards. This should be in > 5.0-CURRENT and 4.1-STABLE. If you're still experiencing panics, we > should track it down some more as presumably there is another reference > (it could also be a race condition, or in-use mbuf during detach?) I guess with a promiscuous interface, it's a whole lot more likely that there's an in-use mbuf around somewhere. That's probably what panics things I would think. > Robert N M Watson > > robert@fledge.watson.org http://www.watson.org/~robert/ > PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 > TIS Labs at Network Associates, Safeport Network Services -- Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 2:53:39 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 91A5537B423; Sun, 10 Sep 2000 02:53:33 -0700 (PDT) Received: from muzak.iinet.net.au (muzak.iinet.net.au [203.59.24.237]) by urban.iinet.net.au (8.8.7/8.8.7) with ESMTP id RAA26042; Sun, 10 Sep 2000 17:53:29 +0800 Received: from jules.elischer.org (reggae-34-171.nv.iinet.net.au [203.59.167.171]) by muzak.iinet.net.au (8.8.5/8.8.5) with SMTP id RAA24780; Sun, 10 Sep 2000 17:53:26 +0800 Message-ID: <39BB5A14.167EB0E7@elischer.org> Date: Sun, 10 Sep 2000 02:53:24 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Bosko Milekic Cc: current@freebsd.org, net@freebsd.org Subject: Re: mbuf system with mutexes References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bosko Milekic wrote: > > For those interested, > > http://www.technokratis.com/code/mbuf/mbuf_mtx.patch Assuming we have a "my processor" index somewhere, how much work would it take to give each processor a separate cache of mbufs? Also, I've often wondered if the 'custer' special code might more simply be implemented by puting pointers to cluster methods in the mbuf external method pointers and removing all the special case tests to see if it's a cluster. In that case there would be just 2 cases: non-external and external, where 'cluster mbufs' are only a presupplied external type. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 8: 6:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from falla.videotron.net (falla.videotron.net [205.151.222.106]) by hub.freebsd.org (Postfix) with ESMTP id 647E737B422 for ; Sun, 10 Sep 2000 08:06:18 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.net ([24.201.203.136]) by falla.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0O00EC1FAB6Z@falla.videotron.net> for net@FreeBSD.ORG; Sun, 10 Sep 2000 11:06:11 -0400 (EDT) Date: Sun, 10 Sep 2000 11:09:36 -0400 (EDT) From: Bosko Milekic Subject: Re: mbuf system with mutexes In-reply-to: <39BB5A14.167EB0E7@elischer.org> X-Sender: bmilekic@jehovah.technokratis.com To: Julian Elischer Cc: net@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [trimmed -current, only sending to -net] On Sun, 10 Sep 2000, Julian Elischer wrote: > Assuming we have a "my processor" index somewhere, > how much work would it take to give each processor a > separate cache of mbufs? This was the intent from the beginning. Alfred originally suggested it. Personally, I'm waiting for things with SMP to sort of stabalize more before taking a stab at it. That work would be considered more as optimization work and since we have quite a bit to yet optimize/make run faster, I was told that it could wait - and I agree. Better to have things work _properly_ and then go for making them work faster and optimally. > Also, I've often wondered if the 'cluster' special code might > more simply be implemented by puting pointers to cluster methods > in the mbuf external method pointers and removing all the special > case tests to see if it's a cluster. In that case there > would be just 2 cases: > non-external and external, where 'cluster mbufs' are only > a presupplied external type. This is a good idea. We would have to make sure also that the non-subsystem code doesn't make assumptions about the external storage of an mbuf as much, either. I primarily like this idea, not only for the simplicity that it will help bring to the system, but also because it would allow us to work on freeing clusters back to the map when no longer needed, and when we want to, and leaving the mbuf allocator to do its own stuff. I would now argue that leaving mbufs on a purely cached list (i.e. not freeing them back to mb_map) is a good idea, as they are small anyway. However, I still have those thoughts of having clusters eventually freed back, as long as it doesn't have too much of a performance impact. Finally, it would be a good idea to see with the socket zero-copy code guys if it would be worth doing something like what was done with the jumbo frame bufs that they have, and attempt some sort of generlization in order to minimize code bloat. Since I'm replying to you, I'd like to ask you a question. :-) You implemented the > PAGE_SIZE mcluster kproc stuff, right? Is this stuff still usable? (I know that we have certain issues with using contigmalloc()). > -- > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 > ---> X_.---._/ presently in: Perth > v Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 10: 7: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from falcon.prod.itd.earthlink.net (falcon.prod.itd.earthlink.net [207.217.120.74]) by hub.freebsd.org (Postfix) with ESMTP id 9013A37B423 for ; Sun, 10 Sep 2000 10:07:04 -0700 (PDT) Received: from nukemhigh (hybrid-024-221-117-152.phoenix.speedchoice.com [24.221.117.152]) by falcon.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with SMTP id KAA06851 for ; Sun, 10 Sep 2000 10:07:01 -0700 (PDT) Message-Id: <200009101707.KAA06851@falcon.prod.itd.earthlink.net> X-Sender: egravel@mail.earthlink.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Sun, 10 Sep 2000 10:07:13 -0700 To: freebsd-net@freebsd.org From: Emmanuel Gravel Subject: Strange TTL Exceeded messages Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Knowing I shouldn't have much (any) traffic on my system I ran ethereal overnight to see what my firewall could and couldn't catch. Apart from the usual querries on ports 139 and 137, I saw something strange. I recieved about 20 TTL Exceeded messages from a host I never sent any info to (according to the ethereal log) just past 3 this morning. I tried nslookup on the host and it doesn't seem to exist. I tried pining the host and it doesn't seem to be up. The IP of that host is 10.254.3.2. When I did a traceroute, the first message that came up was natd[132]: failed to write packet back (Permission denied) yet my firewall logs didn't show anything. I also tried dumbing down the firewall to divert NATD then allow all, with the same results. Does anyone know of any kind of attack that would use TTL Exceeded messages? What effect would any amount of those messages on any system (i.e. are there any known attacks and what are its effects)? Thanks! Emmanuel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 10:21:32 2000 Delivered-To: freebsd-net@freebsd.org Received: from amazhan.bitstream.net (amazhan.bitstream.net [216.243.128.132]) by hub.freebsd.org (Postfix) with SMTP id D57A937B422 for ; Sun, 10 Sep 2000 10:21:29 -0700 (PDT) Received: (qmail 25097 invoked from network); 10 Sep 2000 17:21:29 -0000 Received: from unknown (HELO jah) (216.243.128.155) by amazhan with SMTP; 10 Sep 2000 17:21:29 -0000 Date: Sun, 10 Sep 2000 12:21:38 -0500 (CDT) From: Dan Debertin To: Emmanuel Gravel Cc: freebsd-net@freebsd.org Subject: Re: Strange TTL Exceeded messages In-Reply-To: <200009101707.KAA06851@falcon.prod.itd.earthlink.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 10 Sep 2000, Emmanuel Gravel wrote: > Knowing I shouldn't have much (any) traffic on my system I ran ethereal > overnight to see what my firewall could and couldn't catch. Apart from the > usual querries on ports 139 and 137, I saw something strange. I recieved > about 20 TTL Exceeded messages from a host I never sent any info to > (according to the ethereal log) just past 3 this morning. Somebody (possibly you) was using traceroute. It uses ICMP TTL-exceded-in-transit and destination-unreachable messages to do its work (I won't explain how traceroute works here, but read any good TCP/IP book for more info). > > I tried nslookup on the host and it doesn't seem to exist. I tried pining the > host and it doesn't seem to be up. The IP of that host is 10.254.3.2. Anything 10.x.x.x/8 is an rfc1918 reserved network number; It is non-routable on the Internet at large. Therefore, it isn't surprising that you would be unable to ping it. ~Dan D. -- Senior Systems Administrator Bitstream Underground, LLC airboss@bitstream.net (612)321-9290 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 11:38:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from falcon.prod.itd.earthlink.net (falcon.prod.itd.earthlink.net [207.217.120.74]) by hub.freebsd.org (Postfix) with ESMTP id 3796037B423 for ; Sun, 10 Sep 2000 11:38:43 -0700 (PDT) Received: from nukemhigh (hybrid-024-221-117-152.phoenix.speedchoice.com [24.221.117.152]) by falcon.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with SMTP id LAA01178 for ; Sun, 10 Sep 2000 11:38:40 -0700 (PDT) Message-Id: <200009101838.LAA01178@falcon.prod.itd.earthlink.net> X-Sender: egravel@mail.earthlink.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Sun, 10 Sep 2000 11:38:50 -0700 To: freebsd-net@FreeBSD.ORG From: Emmanuel Gravel Subject: Re: Strange TTL Exceeded messages In-Reply-To: References: <200009101707.KAA06851@falcon.prod.itd.earthlink.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 12:21 PM 9/10/00 -0500, Dan Debertin wrote: >On Sun, 10 Sep 2000, Emmanuel Gravel wrote: > >> Knowing I shouldn't have much (any) traffic on my system I ran ethereal >> overnight to see what my firewall could and couldn't catch. Apart from the >> usual querries on ports 139 and 137, I saw something strange. I recieved >> about 20 TTL Exceeded messages from a host I never sent any info to >> (according to the ethereal log) just past 3 this morning. > >Somebody (possibly you) was using traceroute. It uses ICMP >TTL-exceded-in-transit and destination-unreachable messages to do its work >(I won't explain how traceroute works here, but read any good TCP/IP book >for more info). At 3 AM I was fast asleep :) According to the ethereal logs, there were no transmissions at all originating from me. And since it's in the non-routable addresses, it must mean someone was sending this to me with forged origin info. Something strange though. I have these rules in the firewall: ${fwcmd} add deny all from 10.0.0.0/8 to any via ${oif} ${fwcmd} add deny all from any to 10.0.0.0/8 out via ${oif} and ipfw -a list gives 00600 0 0 deny ip from 10.0.0.0/8 to any via ep0 00700 18 1160 deny ip from any to 10.0.0.0/8 out xmit ep0 Keep in mind I did try pining the host, and tried a traceroute on it... Just a quick question about this, I know the first number is the ifpw rule sequence #. I believe the second is number of packets. So the third, would it be number of bytes? I did a timestamp on it, and it shows that rule 00700 was first logged at 10 this morning. Also keep in mind that I restarted my rules a few times... I know I shouldn't have, and checked them in more detail (to see if the firewall actually dropped the packets). I'm not logging them, so I'll start to now... Shouldn't get too much data though :) I know that icmp ttl exceeded messages are common with a traceroute, however why would I get so many from the same host (in a normal situation, considering I would have actually done a traceroute, which isn't the case)? Also, anyone know of anything running on port 27374? This, and any setup connection from the outside (usually on port 139 :) just got blocked a few minutes ago... Just trying to understand what kind of weird traffic is coming in on my system :) Mind you, if it's not something known, it may just be BO or Netbus trying in on a different port too... Wasn't dumping packets when I got it... Thanks! Emmanuel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 11:46: 4 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (oe35.law9.hotmail.com [64.4.8.92]) by hub.freebsd.org (Postfix) with ESMTP id 90E1937B422 for ; Sun, 10 Sep 2000 11:46:03 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Sun, 10 Sep 2000 11:46:03 -0700 X-Originating-IP: [194.109.60.172] From: "Vincent Bruijnes" To: Subject: Datatraffic shaper Date: Sun, 10 Sep 2000 20:44:31 +0200 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Message-ID: X-OriginalArrivalTime: 10 Sep 2000 18:46:03.0451 (UTC) FILETIME=[5EE478B0:01C01B57] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear Net's I'm looking for a piece of software or a small solution to limit datatraffic per uid/gid. When the limit has been reached the ipfw must take action to stop the users datatraffic. Hope one of you has a simple answer, just a program which works, cause I have read lots of mailinglists and documentation (ipfw, dummynet) but still can't find the thing where I'm looking for. Thanks Alot, Vincent Bruijnes vinxs_@hotmail.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 13: 5:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from hoga.cs.pitt.edu (hoga.cs.pitt.edu [136.142.79.114]) by hub.freebsd.org (Postfix) with ESMTP id BCEC837B423 for ; Sun, 10 Sep 2000 13:05:48 -0700 (PDT) Received: from cs.pitt.edu (localhost [127.0.0.1]) by hoga.cs.pitt.edu (8.9.3/8.9.3) with ESMTP id QAA70934; Sun, 10 Sep 2000 16:07:12 -0400 (EDT) (envelope-from taka@cs.pitt.edu) Message-Id: <200009102007.QAA70934@hoga.cs.pitt.edu> To: "Vincent Bruijnes" Cc: freebsd-net@FreeBSD.ORG Subject: Re: Datatraffic shaper In-reply-to: Your message of "Sun, 10 Sep 2000 20:44:31 +0200." Date: Sun, 10 Sep 2000 16:07:12 -0400 From: Takashi Okumura Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org You may modify my netnice code, which works on process input/output. It would be the easiest way to get what you need, i believe. Just add a few lines of admission control routine into the flow specification syscall. http://www.cs.pitt.edu/~taka/software/netnice.html I've been planning to contribute the code, but, I've not had enough time.... cheers, -- taka >>Dear Net's >> >>I'm looking for a piece of software or a small solution to limit datatraffic >>per uid/gid. When the limit has been reached the ipfw must take action to >>stop the users datatraffic. >>Hope one of you has a simple answer, just a program which works, cause I >>have read lots of mailinglists and documentation (ipfw, dummynet) but still >>can't find the thing where I'm looking for. >> >>Thanks Alot, >>Vincent Bruijnes >>vinxs_@hotmail.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 13:53:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from gaia.nimnet.asn.au (nimbin.lnk.telstra.net [139.130.45.143]) by hub.freebsd.org (Postfix) with ESMTP id 2B13737B422 for ; Sun, 10 Sep 2000 13:53:48 -0700 (PDT) Received: from localhost (smithi@localhost) by gaia.nimnet.asn.au (8.8.8/8.8.8R1.0) with SMTP id GAA13336; Mon, 11 Sep 2000 06:53:37 +1000 (EST) (envelope-from smithi@nimnet.asn.au) Date: Mon, 11 Sep 2000 06:53:36 +1000 (EST) From: Ian Smith Reply-To: Ian Smith To: Emmanuel Gravel Cc: freebsd-net@FreeBSD.ORG Subject: Re: Strange TTL Exceeded messages In-Reply-To: <200009101838.LAA01178@falcon.prod.itd.earthlink.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 10 Sep 2000, Emmanuel Gravel wrote: > At 12:21 PM 9/10/00 -0500, Dan Debertin wrote: > >On Sun, 10 Sep 2000, Emmanuel Gravel wrote: > > > >> Knowing I shouldn't have much (any) traffic on my system I ran ethereal > >> overnight to see what my firewall could and couldn't catch. Apart from the > >> usual querries on ports 139 and 137, I saw something strange. I recieved > >> about 20 TTL Exceeded messages from a host I never sent any info to > >> (according to the ethereal log) just past 3 this morning. > > > >Somebody (possibly you) was using traceroute. It uses ICMP > >TTL-exceded-in-transit and destination-unreachable messages to do its work > >(I won't explain how traceroute works here, but read any good TCP/IP book > >for more info). One of the better references regarding traceroute and many other things you may encounter is http://www.robertgraham.com/pubs/firewall-seen.html > At 3 AM I was fast asleep :) According to the ethereal logs, there were no > transmissions at all originating from me. And since it's in the non-routable > addresses, it must mean someone was sending this to me with forged > origin info. Something strange though. I have these rules in the firewall: > > ${fwcmd} add deny all from 10.0.0.0/8 to any via ${oif} > ${fwcmd} add deny all from any to 10.0.0.0/8 out via ${oif} > > and ipfw -a list gives > > 00600 0 0 deny ip from 10.0.0.0/8 to any via ep0 > 00700 18 1160 deny ip from any to 10.0.0.0/8 out xmit ep0 > > Keep in mind I did try pining the host, and tried a traceroute on it... Which explains why your ping and traceroute failed :) apart from the address being unrouteable - but which doesn't explain how you could have received those ICMP packets in the first place, given rule 600, unless: . They did appear against rule 600 and you've since cleared that? or . They came via another interface, perhaps somewhere on the inside, assuming you have an inside LAN also? Logging is the go either way. > Just a quick question about this, I know the first number is the ifpw > rule sequence #. I believe the second is number of packets. So the > third, would it be number of bytes? It would. > I did a timestamp on it, and it shows that rule 00700 was first logged last logged .. the stamps are updated per hit. > at 10 this morning. Also keep in mind that I restarted my rules a few > times... I know I shouldn't have, and checked them in more detail (to > see if the firewall actually dropped the packets). I'm not logging them, > so I'll start to now... Shouldn't get too much data though :) You may be surprised :) Using ipfw zero rule [..rule] saves reloading. > I know that icmp ttl exceeded messages are common with a traceroute, > however why would I get so many from the same host (in a normal situation, > considering I would have actually done a traceroute, which isn't the case)? Can't imagine. > Also, anyone know of anything running on port 27374? This, and any SubSeven V2. On the increase here lately, with fewer of the old 1243 .. No use chasing source addresses on these either; invariably spoofed, I think the address the trojan contacts if triggered is embedded anyway. > setup connection from the outside (usually on port 139 :) just got blocked > a few minutes ago... Just trying to understand what kind of weird traffic is > coming in on my system :) Mind you, if it's not something known, it may > just be BO or Netbus trying in on a different port too... Wasn't dumping > packets when I got it... Deny, and log for education, anything not specifically allowed; there are almost daily new ports being used by more scripts/trojans .. even so, after many months of (futile) UDP 137 scanning, we're seeing TCP 139 scans in waves just the last few days here, and so have specific rules to deny and log till limit some of this 'snow' first (UDP 111 137, TCP setup on 139, 1243, 12345, 27374, 111 among others) just because there are so many of them, which will otherwise quickly exceed logging limits for all nonspecific denied traffic that we do want to know about. FWIW, all of the TCP 139 (netbios-session) scans we're getting appear to have spoofed source addresses, having checked a few out. Which is a bit baffling, wondering what useful info could be gleaned without hoping to get responses back - unless these are perhaps part of a distributed DoS against the spoofed sources (ie, are they in fact the targets?) Cheers, Ian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 18:52:57 2000 Delivered-To: freebsd-net@freebsd.org Received: from im1.scinternet.net (ip146.color-country.net [208.46.64.146]) by hub.freebsd.org (Postfix) with ESMTP id 4424937B423 for ; Sun, 10 Sep 2000 18:52:54 -0700 (PDT) Received: from phiber [24.165.240.184] by im1.scinternet.net (SMTPD32-6.04) id A7EAC61701EE; Sun, 10 Sep 2000 19:39:54 -0600 From: "Phiber" To: Subject: Netscape with KDE error? Date: Sun, 10 Sep 2000 21:59:44 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I just recently installed FreeBSD on an old p 166 with 16 megs of RAM. I slaped in a NIC and configured it (with the help of the people on this list)and now I am online. I installed netscape so I could browse the web in style, but it will only show up in Gnome. In fact, none of the pacages except for ICQ (which doesn't work) show up in KDE. Has anyone had this problem before? Thanks in advance Robby To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 21:23:21 2000 Delivered-To: freebsd-net@freebsd.org Received: from glitch.crosswinds.net (glitch.crosswinds.net [209.208.163.35]) by hub.freebsd.org (Postfix) with ESMTP id 40FF437B422 for ; Sun, 10 Sep 2000 21:23:15 -0700 (PDT) Received: from bis-bsd.stm (dialup47.as5300.sakhalin.ru [195.72.254.47]) by glitch.crosswinds.net (8.9.3/8.9.3) with ESMTP id AAA34773 for ; Mon, 11 Sep 2000 00:23:10 -0400 (EDT) (envelope-from valentin@russia.crosswinds.net) Received: from it (unknown [10.0.1.101]) by bis-bsd.stm (Postfix) with ESMTP id 28D263DE2 for ; Mon, 11 Sep 2000 04:25:28 +0000 (GMT) Date: Mon, 11 Sep 2000 15:24:18 +1100 From: Vitaminoid X-Mailer: The Bat! (v1.44) UNREG / CD5BF9353B3B7091 Reply-To: Vitaminoid X-Priority: 3 (Normal) Message-ID: <1081983368933.20000911152418@russia.crosswinds.net> To: FreeBSD-net Subject: ipfw/natd on FreeBSD 4.1-RELEASE Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all! I have the following problem: My FreeBSD box act as a dial-up router for my small network. This is a AMD-machine with two network cards and a modem. Dial-up connection works via pppd, firewall and nat - ipfw/natd su-2.04# cat '/etc/natd.conf' dynamic yes same_ports no use_sockets yes this is how nat is configured firewall_enable="YES" firewall_type="open" natd_enable="YES" natd_interface="ppp0" natd_flags="-f /etc/natd.conf" this is how i made it work. The problem: I have some clients with ICQ 99b on both sides of this router. Icq connects to it's server as usual, seems like working fine, but sometimes it disconnects from the server for a few seconds (3-4 to 15-20 secs) and then connects again. How can i fix it? Before there was an NT box with Winroute inside, i haven't experienced this problem.. ICQ:14043855 \Vitaminoid\ __________________________________________________________________ Get Your Private, Free Operational System at http://www.redhat.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Sep 10 22:25:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.m.iinet.net.au (opera3.iinet.net.au [203.59.24.51]) by hub.freebsd.org (Postfix) with SMTP id 6C1AE37B423 for ; Sun, 10 Sep 2000 22:25:08 -0700 (PDT) Received: (qmail 14378 invoked by uid 666); 11 Sep 2000 05:25:03 -0000 Received: from reggae-02-45.nv.iinet.net.au (HELO jules.elischer.org) (203.59.91.45) by mail.m.iinet.net.au with SMTP; 11 Sep 2000 05:25:03 -0000 Message-ID: <39BC6CAC.41C67EA6@elischer.org> Date: Sun, 10 Sep 2000 22:25:00 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Bosko Milekic Cc: net@freebsd.org Subject: Re: mbuf system with mutexes References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bosko Milekic wrote: > > Since I'm replying to you, I'd like to ask you a question. :-) > > You implemented the > PAGE_SIZE mcluster kproc stuff, right? Is this > stuff still usable? (I know that we have certain issues with using > contigmalloc()). No I didn't any >PAGE_SIZE stuff in the current FreeBSD. I did a similar thing for TRW when I worked for them but it was not ported to FreeBSD.... actually it was, internally but it never made it out. We never used contigmalloc, but instead, because it was a special purpose machine, we preallocated a separate memory pool for huge buffers. This is not a general solution. I've had my fingers in a lot of places, but not that particular place :-) -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 2:32: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp2.jakinternet.co.uk (proxy.jakinternet.co.uk [212.41.43.4]) by hub.freebsd.org (Postfix) with ESMTP id 1E46437B422 for ; Mon, 11 Sep 2000 02:32:01 -0700 (PDT) Received: from smtp.jakinternet.co.uk (smtp.jakinternet.co.uk [212.41.41.61]) by smtp2.jakinternet.co.uk (Postfix) with SMTP id 3CA0EA76F1 for ; Mon, 11 Sep 2000 10:27:23 +0100 (BST) Received: from sykes.demon.co.uk ([212.41.50.51]) by smtp.jakinternet.co.uk ; Mon, 11 Sep 2000 10:30:29 -0100 Received: from martinh (martinh [192.168.2.6]) by sykes.demon.co.uk (8.7.6/v3.2) with SMTP id KAA03236 for ; Mon, 11 Sep 2000 10:30:49 +0100 Message-ID: <021901c01bd3$00d9d860$0602a8c0@melksham> From: "Martin Hillier" To: Subject: Help, I think I have a routing problem? Date: Mon, 11 Sep 2000 10:31:02 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have been trying to sort out a problem with a freebsd machine and linux, when I ping from one to the other I get packets sent but no received packets, 100% packet loss. I have done a tcpdump and... #Ping 192.168.2.110 (to blackhole(freebsd) from sykes ) Linux 12:48:29.869824 sykes > blackhole: icmp: echo request FreeBSD tcpdump: listening on ed0 12:48:29.632586 sykes > blackhole: icmp: echo request 12:48:29.633087 blackhole > sykes: icmp: echo reply I am not getting any icmp packets back to the linux machine. I can ping to and from a windows 98 machine to both freebsd and linux ok? my route on the freebsd box # route get sykes route to: sykes destination: sykes interface: ed0 flags: recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire 0 0 0 0 0 0 1500 1180 And the ethernet address is correct. sykes 0:a0:24:4e:b2:af UHLW 0 4 ed0 1186 The linux box can 'see' other packets from the freebsd machine to other machines, does this mean the routing is screwed up to the linux box from freebsd? I have NO IDEA where to look now, any ideas! Many Thanks... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 10:36:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id 6DC6F37B422 for ; Mon, 11 Sep 2000 10:36:32 -0700 (PDT) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e8BHaWT24067 for net@freebsd.org; Mon, 11 Sep 2000 10:36:32 -0700 (PDT) Date: Mon, 11 Sep 2000 10:36:32 -0700 From: Alfred Perlstein To: net@freebsd.org Subject: Network stack journal. Message-ID: <20000911103632.E12231@fw.wintelcom.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Journal: threading the FreeBSD network stack. --------------------------------------------- Notes: When I use a lowercase name for someone that refers to thier freefall login name. --------------------------------------------- Preface: I'm writing the journal for several reasons: 1) to provide a place for notes, because the network stack is so large there's going to be many parts I'm going to have to skip over, I'll note what I've skipped over so either I can get back to it or someone else can jump in and do it. 2) document how the locking systems I'm putting in work 3) random thoughts as I progress either towards my goal or insanity I started working on this a day or two after the SMPng commit which brought FreeBSD mutex primatives and interrupt threads, which was sometime in the first week of Sept 2000. I started this journal a couple of days after starting my work so I will detail a few things that have happened so far: Initially I wanted to place mutex locks in both the socket and socketbuffer structures, that proved to be too painful, instead use a lock on the socket and keep the old sleep/flags locking on the socketbuffer, there isn't a race because the socketbuffer flags are protected by my socket lock and the newly added msleep() function allows me to maninpulate the flags and sleep on them safely with my socket mutex interlocked. I'm gone through a lot of the code replacing manipulation of statistical counters with atomic_ operations, some places have many manipulations (particularly the tcp code) it may make more sense to keep a local statistics counter on the stack and do a batched update of the global statistics structure under a spinlock. Other alternatives include per-cpu counters but I've heard many negative comments about doing stats like that. Bosko Milekic was kind enough to MPsafe the mbuf allocator code, we need to test this, he used await/asleep rather than msleep, this ought to be checked for validity as the asleep interface was implemented before SMPng and may not be safe. I'm hoping that Bosko sticks around to help out, he's got some great programming skill and there's a lot of code to work on. I've already decided that my initial goal is going to be getting udp and tcp4 working, unfortunatly that means I'm most likely not working on: BRIDGE, DUMMYNET, INET6, NETATALK, NS, IPX, IPSEC, NETGRAPH I suspect that they can easily be made mpsafe, but they aren't a consideration at this point, I just want to get something working right now and that means userland<-(tcp/udp)->wire MPsafe code. The good part is that now more than ever developers are active enough to jump in and fix these. And before I get flamed off the earth I most likely will not be committing until INET6, IPSEC and NETGRAPH maintainers are comfortable with it. Malloc is now MPsafe thanks to jasone and jake which is obviously an important and key starting point. I had an interesting discovery the other night, when replaceing an spl with a mutex over a particular structure we must be very careful. While the spl is raised we can tsleep and are effectively dropping the mutual exclusion however we must be wary of that when switching over to mutexes to avoid deadlocks. A quick (stupid) example: calling a function to wait for data to arrive on a socket while holding the socket lock and forgetting to drop the lock before calling it. Normally spl would be dropped the instant you slept and the network stack could churn along and dump some data into your socketbuffer, but this is no longer the case, the interrupt must also block against your mutex and if you screw up you block waiting for data while the socket is locked against outside manipulation including data arrival. So far I think I have a pretty sound system protecting sockets, there also some preliminary stuff with routes and pcbs but I need to work on those more. I've switched the ucred system to use atomic ops which should make it mpsafe. Journal continued at: http://people.freebsd.org/~alfred/mpsafe/stackjournal.txt Work in progress: http://people.freebsd.org/~alfred/mpsafe/mpsafestack.diff Ok, and here begins a time based journal. ---------------------------------------------- Mon Sep 11 10:16:50 PDT 2000 Realized that attempting to thread tcp_input code before ether code was a bad idea. The tcp code uses global variables from the IP code which probably uses globals from the ether code, so I'm working in the wrong direction (or working in a direction that's going to have me spread out too thin). I've decided to take this route. either_input->ip_input->tcp/udp_input-> and tcp_output->ip_output->ether_output -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 10:48:23 2000 Delivered-To: freebsd-net@freebsd.org Received: from bmah-freebsd-0.cisco.com (bmah-freebsd-0.cisco.com [171.70.84.42]) by hub.freebsd.org (Postfix) with ESMTP id 2339B37B423 for ; Mon, 11 Sep 2000 10:48:20 -0700 (PDT) Received: (from bmah@localhost) by bmah-freebsd-0.cisco.com (8.11.0/8.11.0) id e8BHlga36000; Mon, 11 Sep 2000 10:47:42 -0700 (PDT) (envelope-from bmah) Message-Id: <200009111747.e8BHlga36000@bmah-freebsd-0.cisco.com> X-Mailer: exmh version 2.2 06/23/2000 with nmh-1.0.4 To: Ian Smith Cc: Emmanuel Gravel , freebsd-net@FreeBSD.ORG Subject: Re: Strange TTL Exceeded messages In-Reply-To: References: Comments: In-reply-to Ian Smith message dated "Mon, 11 Sep 2000 06:53:36 +1000." From: "Bruce A. Mah" Reply-To: bmah@FreeBSD.ORG X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A 2V%N&+ X-Image-Url: http://www.employees.org/~bmah/Images/bmah-cisco-small.gif X-Url: http://www.employees.org/~bmah/ Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_73906284P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Mon, 11 Sep 2000 10:47:42 -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --==_Exmh_73906284P Content-Type: text/plain; charset=us-ascii If memory serves me right, Ian Smith wrote: > On Sun, 10 Sep 2000, Emmanuel Gravel wrote: > > I know that icmp ttl exceeded messages are common with a traceroute, > > however why would I get so many from the same host (in a normal situation, > > considering I would have actually done a traceroute, which isn't the case) > ? > > Can't imagine. Hi-- I'm coming in to the middle of this thread (which I think probably belongs on -security anyways), but: 1) traceroute(1) can be told how many probe packets to send per hop. 2) There exist other programs that look like traceroute, but send many more packets per hop. In particular, the family of programs that includes pchar, pathchar, and clink, which are all experimental tools for network path characterization. I haven't a clue as to whether any of this information applies to the situation being discussed though. Bruce. --==_Exmh_73906284P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use MessageID: R6Q45eI5m5gjzFJqBkFpdFEO6eukCUSz iQA/AwUBOb0avtjKMXFboFLDEQI8HgCgv1Hq3HD5N5jqe9wSrk1uV7rXQNsAnA0k s7U4ug294Q5E9kxG0gtB7Ugk =fp4S -----END PGP SIGNATURE----- --==_Exmh_73906284P-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 15:55:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from shiva.jussieu.fr (shiva.jussieu.fr [134.157.0.129]) by hub.freebsd.org (Postfix) with ESMTP id F20B237B42C for ; Mon, 11 Sep 2000 15:55:30 -0700 (PDT) Received: from heho.snv.jussieu.fr (heho.snv.jussieu.fr [134.157.37.22]) by shiva.jussieu.fr (8.10.0/jtpda-5.3.3) with ESMTP id e8BMtT951117 for ; Tue, 12 Sep 2000 00:55:29 +0200 (CEST) Received: from (arno@localhost) by heho.snv.jussieu.fr (8.9.3/jtpda-5.2) id AAA87436 ; Tue, 12 Sep 2000 00:55:28 +0200 (MEST) From: arno@heho.snv.jussieu.fr (Arno J. Klaassen) X-Authentication-Warning: heho.snv.jussieu.fr: arno set sender to arno@heho.snv.jussieu.fr using -f To: freebsd-net@freebsd.org Subject: nfs send error 32 Date: 12 Sep 2000 00:55:28 +0200 Message-ID: Lines: 39 X-Mailer: Gnus v5.7/Emacs 20.7 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, about a month ago, I upgraded one of the laboratory's servers to -stable4. I tested client nfs options ``tcp,nfsv3'' when mounting from other -stable4 servers, and even under heavy load it works perfect. When making the machine production ready, I also mounted a SunOS 5.5 server with the options ``tcp,nfsv3''. Since, I regularly get the message: /kernel: nfs send error 32 for server slowlaris25 However, from a user point of view, everything seems OK. Could anyone tell me what this error means? I'm planning a (satur)day of non-availability of all the laboratory's machines within the next two weeks; I can spend some time testing if someone is willing to guide me a bit. Thanx in advance, -- Arno J. Klaassen SCITO S.A. INSERM U483 Le Grand Sablon University Pierre et Marie Curie 4, avenue de l'Obiou 9, quai Saint Bernard 38700 La Tronche 75 252 Paris Cedex 5 arno@heho.snv.jussieu.fr To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 16:34:39 2000 Delivered-To: freebsd-net@freebsd.org Received: from xena.gsicomp.on.ca (cr677933-a.ktchnr1.on.wave.home.com [24.42.130.87]) by hub.freebsd.org (Postfix) with ESMTP id 1C79E37B422 for ; Mon, 11 Sep 2000 16:34:37 -0700 (PDT) Received: from zircon (matt.gsicomp.on.ca [192.168.0.18]) by xena.gsicomp.on.ca (8.10.1/8.9.2) with SMTP id e8BNXsG09900; Mon, 11 Sep 2000 19:33:54 -0400 (EDT) (envelope-from matt@gsicomp.on.ca) Message-ID: <007a01c01c48$eebb01b0$1200a8c0@zircon> From: "Matthew Emmerton" To: "Zaitsau, Andrei" Cc: References: <054F7DAA9E54D311AD090008C74CE9BD01766B84@exchange.panasonicfa.com> Subject: Re: Suggestion for PPP Date: Mon, 11 Sep 2000 19:34:34 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Yeap I think it's really great idea. It will be worthy to implement this > feature. I did some preliminary coding over the weekend and am wondering how easy it's going to be to code without importing a bunch of code from natd into ppp. The amount of imported code may be too much (in my eyes, perhaps others' as well.) > As I also noticed there is no sample for PPP over Ethernet (PPPoE) in > FreeBSD, Really? I will look into submitting a patch to /usr/share/examples/ppp/ppp.conf.sample that will include a sample config for PPPoE. -- Matthew Emmerton GSI Computer Services +1 (800) 217-5409 (Canada) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 20:39:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from falla.videotron.net (falla.videotron.net [205.151.222.106]) by hub.freebsd.org (Postfix) with ESMTP id CA34237B42C for ; Mon, 11 Sep 2000 20:39:34 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.net ([24.201.203.136]) by falla.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0R00G248TWRZ@falla.videotron.net> for net@FreeBSD.ORG; Mon, 11 Sep 2000 23:39:32 -0400 (EDT) Date: Mon, 11 Sep 2000 23:42:58 -0400 (EDT) From: Bosko Milekic Subject: Re: Network stack journal. In-reply-to: <20000911103632.E12231@fw.wintelcom.net> X-Sender: bmilekic@jehovah.technokratis.com To: Alfred Perlstein Cc: net@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 11 Sep 2000, Alfred Perlstein wrote: > Journal: threading the FreeBSD network stack. Great idea. > So far I think I have a pretty sound system protecting sockets, there > also some preliminary stuff with routes and pcbs but I need to work on > those more. > > I've switched the ucred system to use atomic ops which should make it > mpsafe. Do we have someone with SMP hardware resources to help us test this stuff when we need to? > Journal continued at: > http://people.freebsd.org/~alfred/mpsafe/stackjournal.txt > > Work in progress: > http://people.freebsd.org/~alfred/mpsafe/mpsafestack.diff Here is my addition (as we discussed): http://www.technokratis.com/code/mbuf/mtx_journal (feel free to associate/link/unify this with your site - I'd like to keep it centralized with your stuff there). Also, I have version 2 of the mbuf mtx diff: http://www.technokratis.com/code/mbuf/mbuf_mtx-v2.patch [all are invited to test!] (version 1 is still there in its original form). I will soon be able to provide you with some real repo. diffs. I will also be able to provide you with some journal entries from time to time (as I poke around). Do you want me to Email that to you as it appears? [...] > -- > -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] > "I have the heart of a child; I keep it in a jar on my desk." Regards, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 23:11:55 2000 Delivered-To: freebsd-net@freebsd.org Received: from mhub1.tc.umn.edu (mhub1.tc.umn.edu [160.94.5.41]) by hub.freebsd.org (Postfix) with ESMTP id 5814037B423 for ; Mon, 11 Sep 2000 23:11:47 -0700 (PDT) Received: from [128.101.51.96] by mhub1.tc.umn.edu with ESMTP for freebsd-net@freebsd.org; Tue, 12 Sep 2000 01:11:45 -0500 Message-Id: <39BDC934.8DAD74D2@74international.com> Date: Tue, 12 Sep 2000 01:12:04 -0500 From: Zach Johnson Reply-To: thetoothfairy@74international.com X-Mailer: Mozilla 4.73 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: DHCP trouble Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org DHCP doesn't work. I was hoping it would be as easy as adding ifconfig_vr0="DHCP" to rc.conf, but no such luck. /stand/sysinstall doesn't set it up for me properly either. What can I do? Thanks!! Zach Johnson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 11 23:19:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C9FF537B424 for ; Mon, 11 Sep 2000 23:19:46 -0700 (PDT) Received: from mail.numachi.com (numachi.numachi.com [198.175.254.2]) by mx1.FreeBSD.org (Postfix) with SMTP id 23A866E2964 for ; Mon, 11 Sep 2000 23:19:46 -0700 (PDT) Received: (qmail 18733 invoked by uid 1001); 12 Sep 2000 06:17:59 -0000 Date: Tue, 12 Sep 2000 02:17:59 -0400 From: Brian Reichert To: Zach Johnson Cc: freebsd-net@freebsd.org Subject: Re: DHCP trouble Message-ID: <20000912021758.A18635@numachi.com> References: <39BDC934.8DAD74D2@74international.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre4i In-Reply-To: <39BDC934.8DAD74D2@74international.com>; from thetoothfairy@74international.com on Tue, Sep 12, 2000 at 01:12:04AM -0500 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Sep 12, 2000 at 01:12:04AM -0500, Zach Johnson wrote: > DHCP doesn't work. I was hoping it would be as easy as adding > ifconfig_vr0="DHCP" to rc.conf, but no such luck. /stand/sysinstall > doesn't set it up for me properly either. What can I do? DHCP has been working for me quite well... Do you actually have a DHCP server on your net? What do it's logs say? Which DHCP client do you use? What do _it's_ logs say? What happens when you run the DHCP client manually? > Thanks!! > Zach Johnson > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- Brian 'you Bastard' Reichert reichert@numachi.com 37 Crystal Ave. #303 Daytime number: (603) 434-6842 Derry NH 03038-1713 USA Intel architecture: the left-hand path To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Sep 12 3:54:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from marao.utad.pt (marao.utad.pt [193.136.40.3]) by hub.freebsd.org (Postfix) with ESMTP id 983F737B443 for ; Tue, 12 Sep 2000 03:54:26 -0700 (PDT) Received: from apache (pceii041.utad.pt [193.137.96.76]) by marao.utad.pt (8.9.3/8.9.3) with SMTP id LAA11106 for ; Tue, 12 Sep 2000 11:54:24 +0200 (MET DST) Message-Id: <200009120954.LAA11106@marao.utad.pt> X-Sender: sasilva@gcom.utad.pt X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Tue, 12 Sep 2000 11:52:01 +0100 To: freebsd-net@FreeBSD.ORG From: "Jorge Sa' Silva" Subject: unsubscribe Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org unsubscribe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Sep 12 9:14:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from calculon.northrops.com (adsl-63-201-150-203.dsl.snfc21.pacbell.net [63.201.150.203]) by hub.freebsd.org (Postfix) with ESMTP id 44C6D37B43E for ; Tue, 12 Sep 2000 09:14:20 -0700 (PDT) Received: from localhost (seth@localhost) by calculon.northrops.com (8.9.3/8.9.3) with ESMTP id JAA17959 for ; Tue, 12 Sep 2000 09:12:34 -0700 Date: Tue, 12 Sep 2000 09:12:33 -0700 (PDT) From: Seth Northrop To: freebsd-net@FreeBSD.ORG Subject: Intel PILA8480 Supported? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know if the Intel Pro/100 Intelligent Server Adapters (PILA8480) are supported under FreeBSD 4.1; even in a limited capacity? Thanks for info! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Sep 12 21: 1:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 7928D37B423; Tue, 12 Sep 2000 21:01:22 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e8D400R28308; Tue, 12 Sep 2000 21:00:00 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma028303; Tue, 12 Sep 2000 20:59:30 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.9.3/8.9.3) id UAA94749; Tue, 12 Sep 2000 20:59:30 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200009130359.UAA94749@bubba.whistle.com> Subject: Re: vmware2 networking question In-Reply-To: <200009081622.JAA63625@whistle.com> "from Doug Ambrisko at Sep 8, 2000 09:22:59 am" To: Doug Ambrisko Date: Tue, 12 Sep 2000 20:59:30 -0700 (PDT) Cc: Michael Harnois , Vladimir Silyaev , Mattias Pantzare , emulation@FreeBSD.ORG, net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Doug Ambrisko writes: > Also I haven't had to deal with reboots etc. This may not met everyones > needs but it works great for me. There is work under way for a real > netgraph bridging node so it could also plug into the hosts TCP/IP stack > etc. It's been checked in to -current as ng_bridge(4).. feedback welcome. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 13:53: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from ertpg14e1.nortelnetworks.com (ertpg14e1.nortelnetworks.com [47.234.0.35]) by hub.freebsd.org (Postfix) with ESMTP id 5419A37B424; Wed, 13 Sep 2000 13:52:59 -0700 (PDT) Received: from zrtpd004.us.nortel.com (actually zrtpd004) by ertpg14e1.nortelnetworks.com; Wed, 13 Sep 2000 16:52:33 -0400 Received: by zrtpd004.us.nortel.com with Internet Mail Service (5.5.2652.35) id ; Wed, 13 Sep 2000 16:52:32 -0400 Message-ID: From: "Hao Zhang" To: freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: need a recommendation of NIC Date: Wed, 13 Sep 2000 16:52:29 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2652.35) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C01DC4.87B53850" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C01DC4.87B53850 Content-Type: text/plain; charset="iso-8859-1" I am doing some testing on FreeBSD 3.3 platform by sending some UDP packets thru FreeBSD routers. It's found that the duplications happened in FreeBSD router. Now The FreeBSD 3.3 is running on Pentium III, and NIC is 3C905B-Tx. To isolate this problem. We will try different NIC. Can anyone give me some recommendation for the high performance NIC for FreeBSD 3.3. Thanks in advance for any comments. -Hao ------_=_NextPart_001_01C01DC4.87B53850 Content-Type: text/html; charset="iso-8859-1" need a recommendation of NIC

I am doing some testing on FreeBSD 3.3 platform by sending some UDP packets
thru FreeBSD routers. It's found that the duplications happened in FreeBSD router.
Now The FreeBSD 3.3 is running on Pentium III, and NIC is 3C905B-Tx. To isolate this
problem. We will try different NIC. Can anyone give me some recommendation for the
high performance NIC for FreeBSD 3.3. Thanks in advance for any comments.

-Hao

------_=_NextPart_001_01C01DC4.87B53850-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 17: 9:52 2000 Delivered-To: freebsd-net@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id C2FDF37B423 for ; Wed, 13 Sep 2000 17:09:36 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.ca ([24.201.203.136]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0U00GAVOFZE6@field.videotron.net> for freebsd-net@freebsd.org; Wed, 13 Sep 2000 20:09:35 -0400 (EDT) Date: Wed, 13 Sep 2000 20:13:05 -0400 (EDT) From: Bosko Milekic Subject: Clusters larger than PAGE_SIZE and contigmalloc() X-Sender: bmilekic@jehovah.technokratis.com To: freebsd-net@freebsd.org Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, With the recent cleanups and SMP work that I'm involved with revolving around mbufs and friends, I feel that it's about the time to raise this issue. I'd like to know: Are there any people out there using the "large cluster" feature (i.e. manually defining the cluster size, MCLBYTES, to be larger than a PAGE_SIZE?) If so, how useful do you find this? Did you stumble across any problems worth mentionning? I'm wondering if it would be worth just scrapping this code, as contigmalloc() doesn't help us in this case much anyway, and since most, if not all of the code, that needs such a feature maintains its own free lists and has its own allocator, which is somewhat more efficient as it pre-allocates all of the required space while attaching (the last time I checked). contigmalloc() may have trouble finding the required contiguous physical pages after a certain period of uptime. I would assume that when this was initially written that it was real nice to have around, but I'm not sure if this is still the correct approach for reaching our present goals. Regards, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 17:16:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id 2E06F37B422 for ; Wed, 13 Sep 2000 17:16:14 -0700 (PDT) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e8E0GCX27001; Wed, 13 Sep 2000 17:16:12 -0700 (PDT) Date: Wed, 13 Sep 2000 17:16:12 -0700 From: Alfred Perlstein To: Bosko Milekic Cc: freebsd-net@FreeBSD.ORG Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() Message-ID: <20000913171611.E12231@fw.wintelcom.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from bmilekic@dsuper.net on Wed, Sep 13, 2000 at 08:13:05PM -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * Bosko Milekic [000913 17:10] wrote: > > Hi, > > With the recent cleanups and SMP work that I'm involved with > revolving around mbufs and friends, I feel that it's about the time to > raise this issue. > > I'd like to know: > > Are there any people out there using the "large cluster" feature > (i.e. manually defining the cluster size, MCLBYTES, to be larger than > a PAGE_SIZE?) If so, how useful do you find this? Did you stumble across > any problems worth mentionning? Well I attempted to use clusters larger than PAGE_SIZE without contigmalloc not realizing that there was no bus_space_foo for mbufs. It wasn't fun debugging that. Mike Smith suggested that I investigate how NetBSD handles this situation, I looked and it seemed somewhat ok, but at a glance somewhat inneficient. > I'm wondering if it would be worth just scrapping this code, as > contigmalloc() doesn't help us in this case much anyway, and since most, > if not all of the code, that needs such a feature maintains its own free > lists and has its own allocator, which is somewhat more efficient as it > pre-allocates all of the required space while attaching (the last time I > checked). contigmalloc() may have trouble finding the required > contiguous physical pages after a certain period of uptime. I would > assume that when this was initially written that it was real nice to have > around, but I'm not sure if this is still the correct approach for > reaching our present goals. Well, if you could do the bus space stuff for mbufs that would be optimal, I'm sure the ethernet driver authors wouldn't have much trouble migrating over to it. -Alfred To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 18:41: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from falla.videotron.net (falla.videotron.net [205.151.222.106]) by hub.freebsd.org (Postfix) with ESMTP id 3610E37B422 for ; Wed, 13 Sep 2000 18:40:56 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.ca ([24.201.203.136]) by falla.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0U00JLBSO6S2@falla.videotron.net> for freebsd-net@FreeBSD.ORG; Wed, 13 Sep 2000 21:40:55 -0400 (EDT) Date: Wed, 13 Sep 2000 21:44:25 -0400 (EDT) From: Bosko Milekic Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() In-reply-to: <20000913171611.E12231@fw.wintelcom.net> X-Sender: bmilekic@jehovah.technokratis.com To: Alfred Perlstein Cc: freebsd-net@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 Sep 2000, Alfred Perlstein wrote: > Well I attempted to use clusters larger than PAGE_SIZE without > contigmalloc not realizing that there was no bus_space_foo for > mbufs. It wasn't fun debugging that. Mike Smith suggested that > I investigate how NetBSD handles this situation, I looked and it > seemed somewhat ok, but at a glance somewhat inneficient. If I recall correctly, you tried allocating your own external buffer. I'm actually wondering whether the kproc that is initialized in the case where MCLBYTES (the constant) is increased by the developer/whoever to something > PAGE_SIZE is still being used, and what the results are if it is. That's the part I'd like to scrap (you see a lot of #if MCLBYTES > PAGE_SIZE junk around the mbuf code). > Well, if you could do the bus space stuff for mbufs that would be > optimal, I'm sure the ethernet driver authors wouldn't have much > trouble migrating over to it. The drivers that typically require these larger buffers are usually the gigabit network adapters that do jumbo frames. I think that some of this hardware actually supports DMAing into several different buffer areas - I wonder if someone more familiar with this (like one of the guys working on the socket zero-copy code, or Bill Paul) could confirm this... > -Alfred Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 19:22:52 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 7F8F237B422 for ; Wed, 13 Sep 2000 19:22:49 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id WAA04696; Wed, 13 Sep 2000 22:22:37 -0400 (EDT) (envelope-from wollman) Date: Wed, 13 Sep 2000 22:22:37 -0400 (EDT) From: Garrett Wollman Message-Id: <200009140222.WAA04696@khavrinen.lcs.mit.edu> To: Bosko Milekic Cc: freebsd-net@FreeBSD.ORG Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() In-Reply-To: References: <20000913171611.E12231@fw.wintelcom.net> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > The drivers that typically require these larger buffers are usually > the gigabit network adapters that do jumbo frames. The code was originally written for an ATM driver than never saw the light of day, as I recall. Prior to that, you could specify a large cluster size, but there was no guarantee that the pages in the cluster would be physically contiguous, and the hardware in question did not support scatter/gather DMA. (Some of the code which did not make it into FreeBSD supported embedding the header mbuf into the cluster, a feature which would still be a good idea today.) I don't think there is anybody who still cares about that code now; it was just a stopgap measure on the way to something that never happened. The Right Way to do this, as I've been expounding for several years[0] (but never actually done the work) is to push mbuf allocation down into the driver, so that each interface can create precisely the sort of buffer that works best for it. Obviously, most Ethernet interfaces would share a common allocator, just as they do now.[1] -GAWollman [0] Van Jacobson has been saying it for at least twice as long. [1] It might be worthwhile for Ethernet interfaces to use 1536-byte clusters rather than 2048-byte clusters. 1536 is large enough to hold and Ethernet packet with complete headers, but packs eight buffers in the space of six 2kbyte clusters. With the new refcounting code this should be quite easy to accomplish. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 19:31:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 1409737B422 for ; Wed, 13 Sep 2000 19:31:48 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id WAA04768; Wed, 13 Sep 2000 22:31:46 -0400 (EDT) (envelope-from wollman) Date: Wed, 13 Sep 2000 22:31:46 -0400 (EDT) From: Garrett Wollman Message-Id: <200009140231.WAA04768@khavrinen.lcs.mit.edu> To: Bosko Milekic Cc: freebsd-net@FreeBSD.ORG Subject: Clusters larger than PAGE_SIZE and contigmalloc() In-Reply-To: References: Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: [Pointless four-space indentation removed.] >contigmalloc() may have trouble finding the required >contiguous physical pages after a certain period of uptime. When the code was written (and this may have since rotted), contigmalloc() would forcibly swap out every process on the machine until it found some contiguous physical memory. Doesn't solve the issue of virtual fragmentation, but physical fragmentation was not a problem. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 19:59:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id 2F10F37B423 for ; Wed, 13 Sep 2000 19:59:36 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.ca ([24.201.203.136]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0U00M32WBAPU@field.videotron.net> for freebsd-net@FreeBSD.ORG; Wed, 13 Sep 2000 22:59:34 -0400 (EDT) Date: Wed, 13 Sep 2000 23:03:02 -0400 (EDT) From: Bosko Milekic Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() In-reply-to: <200009140222.WAA04696@khavrinen.lcs.mit.edu> X-Sender: bmilekic@jehovah.technokratis.com To: Garrett Wollman Cc: freebsd-net@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 Sep 2000, Garrett Wollman wrote: [...] > The Right Way to do this, as I've been expounding for several years[0] > (but never actually done the work) is to push mbuf allocation down > into the driver, so that each interface can create precisely the sort > of buffer that works best for it. Obviously, most Ethernet interfaces > would share a common allocator, just as they do now.[1] if_ti, if_wb, and at least one other already manage their own buffers. I don't like them, as they wire down too much physical memory, but they're probably the best thing we can do at this very instant. I wouldn't actually push for allocating mbufs themselves to that layer, simply because this isn't the only place we'd need to allocate mbufs from - but I don't think that's what you meant by the above anyway. > -GAWollman > > [0] Van Jacobson has been saying it for at least twice as long. > > [1] It might be worthwhile for Ethernet interfaces to use 1536-byte > clusters rather than 2048-byte clusters. 1536 is large enough to hold > and Ethernet packet with complete headers, but packs eight buffers in > the space of six 2kbyte clusters. With the new refcounting code this > should be quite easy to accomplish. Assuming we're dealing with a general purpose allocator, such as the kernel's malloc(), then I can see how this _may_ be profitable. However, if we're just allocating same-sized objects (or some small limited number of various sized objects), then wouldn't this just fragment the space? (i.e. 1536 < PAGE_SIZE and also not a power of 2). Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 20:32: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 1D6E837B422 for ; Wed, 13 Sep 2000 20:31:58 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id XAA05166; Wed, 13 Sep 2000 23:31:46 -0400 (EDT) (envelope-from wollman) Date: Wed, 13 Sep 2000 23:31:46 -0400 (EDT) From: Garrett Wollman Message-Id: <200009140331.XAA05166@khavrinen.lcs.mit.edu> To: Bosko Milekic Cc: Garrett Wollman , freebsd-net@FreeBSD.ORG Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() In-Reply-To: References: <200009140222.WAA04696@khavrinen.lcs.mit.edu> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: >Assuming we're dealing with a general purpose allocator, such as the >kernel's malloc(), then I can see how this _may_ be profitable. However, >if we're just allocating same-sized objects (or some small limited number >of various sized objects), then wouldn't this just fragment the space? >(i.e. 1536 < PAGE_SIZE and also not a power of 2). 1536 is exactly 1.5 kbytes, so three pages fit eight of them as I mentioned before. You don't want to use a general-purpose allocator for locality and efficiency reasons. Of course, the trick is that they have to be physically contiguous if you want to pack them that way. (However, finding three physically-contiguous pages is potentially much easier than finding 16 physically-contiguous pages.) Putting the headers in the same block of memory is probably more practical today. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 20:34:39 2000 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 0230A37B423 for ; Wed, 13 Sep 2000 20:34:38 -0700 (PDT) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id XAA05176; Wed, 13 Sep 2000 23:34:37 -0400 (EDT) (envelope-from wollman) Date: Wed, 13 Sep 2000 23:34:37 -0400 (EDT) From: Garrett Wollman Message-Id: <200009140334.XAA05176@khavrinen.lcs.mit.edu> To: Bosko Milekic Cc: Garrett Wollman , freebsd-net@FreeBSD.ORG Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() In-Reply-To: References: <200009140222.WAA04696@khavrinen.lcs.mit.edu> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: >I wouldn't actually push for allocating mbufs themselves to that >layer, simply because this isn't the only place we'd need to allocate >mbufs from - but I don't think that's what you meant by the above anyway. No, that's precisely what I meant. Only the network interface driver can tell what the precise requirements are for its buffers. (Remember the Amiga with its ``chip'' and ``fast'' memory?) Furthermore, anything which isn't either a packet about to be (re-)transmitted or a packet just received doesn't belong in an mbuf. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 21:27:22 2000 Delivered-To: freebsd-net@freebsd.org Received: from gluttony.henshaw.net (gluttony.henshaw.net [63.70.222.4]) by hub.freebsd.org (Postfix) with SMTP id D903237B42C for ; Wed, 13 Sep 2000 21:27:19 -0700 (PDT) Received: (qmail 1857 invoked from network); 14 Sep 2000 04:27:16 -0000 Received: from dhcp-64-58-25-247.henshaw.net (HELO ben.henshaw.net) (64.58.25.247) by gluttony.henshaw.net with SMTP; 14 Sep 2000 04:27:16 -0000 Message-Id: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> X-Sender: (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Wed, 13 Sep 2000 22:27:17 -0600 To: freebsd-net@freebsd.org From: Ben Schumacher Subject: netgraph based MAC authentication Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello- I'm working on a project where I need to be able to authenticate people by their MAC address against a RADIUS server. While looking into the best way to develop this, I starting toying around with netgraph and think it is the perfect framework for what I'm trying to do. Basically what I'm going to need to do (AFAIK) is divert the packets coming from one ethernet card (dc0) to my netgraph node, verify their MAC address, and then push their packet on its way. However, I'm still not entirely certain how to implement this. The way I envision this, people will power on their machines which will be connected to my box via an interface (dc0 for right now), then they'll try to get an address via DHCP. When their DHCP packet comes, it'll contain their MAC address which will then be authenticate in my node. If they packets are authenticated, they are passed on as normal, and if authentication fails all further packets from their MAC address will be discarded. So my node will hook into 'divert' on my ether card, and then do the authentication (or compare it to a table of already authenticated/failed MACs) and then pass or drop the packet. I guess the part that's stumping me most right now, is where the node will pass the packets that are allowed. If anybody can give me any hints as to where I should go with this, it would be much apprecaited. I'm sorry if it seems like I repeated myself a couple times in this email (I feel like I did), but I just wanted to make sure that I was drawing a complete picture of what I'm trying to do. Thanks in advance, - Ben Schumacher To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 21:37:25 2000 Delivered-To: freebsd-net@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id E5B9A37B423 for ; Wed, 13 Sep 2000 21:37:21 -0700 (PDT) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e8E4bJG04047; Wed, 13 Sep 2000 21:37:19 -0700 (PDT) Date: Wed, 13 Sep 2000 21:37:18 -0700 From: Alfred Perlstein To: Garrett Wollman Cc: Bosko Milekic , freebsd-net@FreeBSD.ORG Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() Message-ID: <20000913213718.H12231@fw.wintelcom.net> References: <200009140222.WAA04696@khavrinen.lcs.mit.edu> <200009140331.XAA05166@khavrinen.lcs.mit.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: <200009140331.XAA05166@khavrinen.lcs.mit.edu>; from wollman@khavrinen.lcs.mit.edu on Wed, Sep 13, 2000 at 11:31:46PM -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * Garrett Wollman [000913 20:32] wrote: > < said: > > >Assuming we're dealing with a general purpose allocator, such as the > >kernel's malloc(), then I can see how this _may_ be profitable. However, > >if we're just allocating same-sized objects (or some small limited number > >of various sized objects), then wouldn't this just fragment the space? > >(i.e. 1536 < PAGE_SIZE and also not a power of 2). > > 1536 is exactly 1.5 kbytes, so three pages fit eight of them as I > mentioned before. You don't want to use a general-purpose allocator > for locality and efficiency reasons. Of course, the trick is that > they have to be physically contiguous if you want to pack them that > way. (However, finding three physically-contiguous pages is > potentially much easier than finding 16 physically-contiguous pages.) > > Putting the headers in the same block of memory is probably more > practical today. I'm sorry if this has already been mentioned or perhaps if I'm just repeating your last statement, but wouldn't it be an interesting hack to let's say allocate a PAGE_SIZE chunk, split it into as many clusters as possible and then divvy up the remainder into mbuf headers? Of course this doesn't fix it when a cluster total size if > PAGE_SIZE. -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 21:57:31 2000 Delivered-To: freebsd-net@freebsd.org Received: from ESG.eecs.berkeley.edu (esg.EECS.Berkeley.EDU [128.32.134.100]) by hub.freebsd.org (Postfix) with ESMTP id 8B9A637B627 for ; Wed, 13 Sep 2000 21:57:27 -0700 (PDT) Received: by ESG.eecs.berkeley.edu with Internet Mail Service (5.5.2650.21) id ; Wed, 13 Sep 2000 21:58:53 -0700 Message-ID: From: Timothy Naple To: "'net@freebsd.org'" Subject: mpd-netgraph as a pptp server Date: Wed, 13 Sep 2000 21:58:48 -0700 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I have recently thought about using the mpd-netgraph port to replace my nt > vpn server for my win 98 and windows 2k laptop users' remote access. I > prefer to keep as few nt boxes with public ip's as possible :) > > I have gotten it to work (somewhat). The first client connection works > great, but the a second simultaneous connection attempt from a different > windows machine returns the following error to the windows client: > > Windows 98 SE > Error 751 > The remote computer refused the VPN connection. Please try again later. > If the problem persists, please check with your network administrator. > > Windows 2000 Professional > Error 651 > The modem (or other connecting device) has reported an error > > Here is my mpd.conf > > default: > load pptp > > pptp: > new ligos pptp1 > set bundle disable multilink > set iface disable on-demand > set iface idle 1800 > set ipcp ranges 192.168.150.1/32 192.168.150.2/24 > set iface enable proxy-arp > set iface route 192.168.150.0/24 > set ipcp dns 192.168.1.1 > set ipcp yes vjcomp > set bundle accept compression > set bundle accept encryption > set bundle enable crypt-reqd > set ccp accept mppc > set ccp accept mpp-compress > set ccp accept mpp-e40 > set ccp accept mpp-e128 > > > > Here is my mpd.links > > pptp1: > set link type pptp > set pptp enable incoming > set pptp enable originate > set pptp disable outcall > set pptp self 128.32.12.12 > set link enable chap > set link disable pap > set link enable acfcomp protocomp > set link keep-alive 10 75 > set link enable no-orig-auth > > > Here is the mpd log reporting the error > > Sep 13 21:49:08 red mpd: mpd: PPTP connection from 158.252.223.191:1027 > Sep 13 21:49:08 red mpd: pptp1: attached to connection with > 158.252.223.191:1027 > Sep 13 21:49:09 red mpd: pptp1: peer's outgoing call request denied > Sep 13 21:49:09 red mpd: pptp1: got StopCtrlConnRequest: reason=local > shutdown > Sep 13 21:49:09 red mpd: pptp1: killing connection with > 158.252.223.191:1027 > > Any help or a point in the proper direction would be great. I have been > fiddling for days with this and cannot seem to figure it out. I am > running FreeBSD 4.1 and natd on this box also. > > Thank You. > Timothy Naple > tnaple@eecs.berkeley.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 13 22:56:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail1.mx.voyager.net (mail1.mx.voyager.net [216.93.66.200]) by hub.freebsd.org (Postfix) with ESMTP id 1490337B43C for ; Wed, 13 Sep 2000 22:56:19 -0700 (PDT) Received: from thunder.voyager.net (net-216-93-125-061.hcv.com [216.93.125.61]) by mail1.mx.voyager.net (8.10.0/Voyager) with ESMTP id e8E5t9514228 for ; Thu, 14 Sep 2000 01:55:09 -0400 (EDT) Message-Id: <4.3.2.7.2.20000914012505.00c27580@pop3.venux.net> X-Sender: mhagerty@pop.voyager.net X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Thu, 14 Sep 2000 01:48:27 -0400 To: freebsd-net@FreeBSD.ORG From: Matthew Hagerty Subject: To finish this VPN configuration...? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, If this belongs in security (or even questions) my apologies, it seemed appropriate for net... I am trying to get a simple VPN between two gateways configured but there seems to be a lack of examples on doing this with FreeBSD. What I have so far is this: Added to the kernel: options IPSEC options IPSEC_ESP Set: sysctl -w net.inet6.ip6.forwarding=1 Checked out the example in the handbook for a IP4 tunnel config, something like this: ======= AH ======= | | Network-A Gateway-A Gateway-B Network-B 10.0.1.0/24 ---- 172.16.0.1 ----- 172.16.0.2 ---- 10.0.2.0/24 So I entered the setkey parameters like the example, replacing the 172.16.0.x addresses with the real external IP addresses of the two hosts. # setkey -c <; Thu, 14 Sep 2000 01:05:11 -0700 (PDT) Received: (qmail 47105 invoked from network); 14 Sep 2000 08:05:50 -0000 Received: from unknown (HELO telehouse.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster2.pipeline.ch (qmail-ldap-1.03) with RC4-MD5 encrypted SMTP for ; 14 Sep 2000 08:05:50 -0000 Message-ID: <39C086C1.33F2E220@telehouse.ch> Date: Thu, 14 Sep 2000 10:05:21 +0200 From: Andre Oppermann X-Mailer: Mozilla 4.74 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Anybody got LMC1200 card run at E1 speed? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi there Has anybody got an LMC1200P T1/E1 card run at E1 speeds? I've just some these and should deploy them fairly quickly but as it looks the default is only T1 1.5Mbit/s. I installed FreeBSD 3.5.1 and the driver patches apply cleanly to the kernel and compile as well. No problem in that area. Now the lmcctl program is not of much help because it only knows of T1 lines. Yesterday I called LanMedia support but only got a voicemail box, I left a message but received no call back yet (will I ever?). So in the mean time stuck with what I have here. So far I was looking through the dirver sources and managed to change the default initialization from T1 to E1 but the clock speed still stays at 1.5M instead of 2Meg for E1. If anybody has got these beasts to run at E1 speeds it would be great if you could tell me how much arm twisting (to the drivers source or to LanMedia) it takes to get it working. Any other helpful ideas welcome as well of course! Cheers -- Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 1:18:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 4071737B422 for ; Thu, 14 Sep 2000 01:18:45 -0700 (PDT) Received: from popserver-02.iinet.net.au (popserver-02.iinet.net.au [203.59.24.148]) by urban.iinet.net.au (8.8.7/8.8.7) with ESMTP id QAA30346; Thu, 14 Sep 2000 16:18:41 +0800 Received: from jules.elischer.org (reggae-39-66.nv.iinet.net.au [203.59.173.66]) by popserver-02.iinet.net.au (8.9.3/8.9.3) with SMTP id QAA01050; Thu, 14 Sep 2000 16:18:39 +0800 Message-ID: <39C089D8.167EB0E7@elischer.org> Date: Thu, 14 Sep 2000 01:18:32 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Ben Schumacher Cc: freebsd-net@freebsd.org Subject: Re: netgraph based MAC authentication References: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ben Schumacher wrote: > > Hello- > > I'm working on a project where I need to be able to authenticate people by > their MAC address against a RADIUS server. While looking into the best way > to develop this, I starting toying around with netgraph and think it is the > perfect framework for what I'm trying to do. that's the kind of thing we wrote it for.. [...] > I guess the part that's stumping > me most right now, is where the node will pass the packets that are allowed. back to the ethernet inteface.... in 5.x and 4.x (not sure about 3.x) the ethernet interface has upper and lower hooks.. If you receive a packet on "lower", and it's ok, then pass it back to 'upper' to continue on it's way. (and visa versa) > julian -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 1:37:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from server02.belenus.com (ns2.belenus.com [131.99.17.130]) by hub.freebsd.org (Postfix) with ESMTP id 60AA437B424; Thu, 14 Sep 2000 01:37:52 -0700 (PDT) Received: by server02.belenus.com with Internet Mail Service (5.5.2650.21) id ; Thu, 14 Sep 2000 10:37:45 +0200 Message-ID: From: "Schmalzbauer, Harald" To: 'Andre Oppermann' , freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: AW: Anybody got LMC1200 card run at E1 speed? Date: Thu, 14 Sep 2000 10:37:38 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello Andre, I tried the LMC 1200 a vew weeks ago. I had contact with one of the developers at LMC. So far they neither support FreeBSD4 nor E1 (on the software side!). But he got some E1 equipment and they are working on = E1 support. I don't know what the current status is. Just contact LMC support, they = are very helpful and will give you the contact. Best Rgards, Harry belenus GmbH Harald Schmalzbauer Sys/Net Admin Tel: +49 (89) 21979-120 Fax: +49 (89) 21979-111 www.belenus.com > -----Urspr=FCngliche Nachricht----- > Von: Andre Oppermann [mailto:oppermann@telehouse.ch] > Gesendet: Donnerstag, 14. September 2000 10:05 > An: freebsd-net@freebsd.org; freebsd-isp@freebsd.org > Betreff: Anybody got LMC1200 card run at E1 speed? >=20 >=20 > Hi there >=20 > Has anybody got an LMC1200P T1/E1 card run at E1 speeds? >=20 > I've just some these and should deploy them fairly quickly but as it > looks the default is only T1 1.5Mbit/s. >=20 > I installed FreeBSD 3.5.1 and the driver patches apply cleanly to the > kernel and compile as well. No problem in that area. >=20 > Now the lmcctl program is not of much help because it only knows of > T1 lines. >=20 > Yesterday I called LanMedia support but only got a voicemail box, I > left a message but received no call back yet (will I ever?). >=20 > So in the mean time stuck with what I have here. So far I was looking > through the dirver sources and managed to change the default > initialization from T1 to E1 but the clock speed still stays at 1.5M > instead of 2Meg for E1. >=20 > If anybody has got these beasts to run at E1 speeds it would be great > if you could tell me how much arm twisting (to the drivers source or > to LanMedia) it takes to get it working. >=20 > Any other helpful ideas welcome as well of course! >=20 > Cheers > --=20 > Andre >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message >=20 -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.2 iQA/AwUBOcCAQ1XEptsBus8cEQLP+QCgrJo1YVaGOHEQqISASv5QbnHSepQAoOJv iGZwHyU605m7bWqm9UzzUh4o =3DT9NK -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 2: 9:25 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailtoaster2.pipeline.ch (mailtoaster2.pipeline.ch [62.48.0.71]) by hub.freebsd.org (Postfix) with ESMTP id 3AD8437B424 for ; Thu, 14 Sep 2000 02:09:19 -0700 (PDT) Received: (qmail 47157 invoked from network); 14 Sep 2000 09:10:00 -0000 Received: from unknown (HELO telehouse.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster2.pipeline.ch (qmail-ldap-1.03) with RC4-MD5 encrypted SMTP for ; 14 Sep 2000 09:10:00 -0000 Message-ID: <39C095CF.8F36962F@telehouse.ch> Date: Thu, 14 Sep 2000 11:09:35 +0200 From: Andre Oppermann X-Mailer: Mozilla 4.74 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: "Schmalzbauer, Harald" Cc: freebsd-net@freebsd.org, freebsd-isp@freebsd.org Subject: Re: AW: Anybody got LMC1200 card run at E1 speed? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Schmalzbauer, Harald" wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hello Andre, Hi Harry, > I tried the LMC 1200 a vew weeks ago. I had contact with one of the > developers at LMC. So far they neither support FreeBSD4 nor E1 (on the > software side!). But he got some E1 equipment and they are working on E1 > support. That they've got no support for FreeBSD 4 is ok with me, I can live with 3.5.1. What hurts me is the lack of support for E1 because in their product description they claim to support it and thats why I got these cards... > I don't know what the current status is. Just contact LMC support, they are > very helpful and will give you the contact. OK, I'll try again to reach someone there. Thanks a lot for this information -- Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 6: 0:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay2.wertep.com (relay2.wertep.com [194.44.90.130]) by hub.freebsd.org (Postfix) with ESMTP id E986437B423 for ; Thu, 14 Sep 2000 06:00:21 -0700 (PDT) Received: from She.wertep.com (she-tun-proxy [192.168.252.2]) by relay2.wertep.com (8.9.3/8.9.3) with ESMTP id QAA53914 for ; Thu, 14 Sep 2000 16:00:10 +0300 (EEST) (envelope-from petro@She.wertep.com) Received: from localhost (petro@localhost) by She.wertep.com (8.9.3/8.9.3) with ESMTP id QAA43829 for ; Thu, 14 Sep 2000 16:00:35 +0300 (EEST) (envelope-from petro@She.wertep.com) Date: Thu, 14 Sep 2000 16:00:29 +0300 (EEST) From: petro To: freebsd-net@FreeBSD.ORG Subject: Question! Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello! Does FreeBSD support MYLEX PNA960... Thank you... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 8:19: 1 2000 Delivered-To: freebsd-net@freebsd.org Received: from hookie.cs.ndsu.NoDak.edu (hookie.cs.ndsu.NoDak.edu [134.129.125.253]) by hub.freebsd.org (Postfix) with ESMTP id 4C56A37B423 for ; Thu, 14 Sep 2000 08:18:57 -0700 (PDT) Received: (from tinguely@localhost) by hookie.cs.ndsu.NoDak.edu (8.9.3/8.9.3) id KAA67788; Thu, 14 Sep 2000 10:18:41 -0500 (CDT) (envelope-from tinguely) Date: Thu, 14 Sep 2000 10:18:41 -0500 (CDT) From: mark tinguely Message-Id: <200009141518.KAA67788@hookie.cs.ndsu.NoDak.edu> To: bmilekic@dsuper.net, wollman@khavrinen.lcs.mit.edu Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() Cc: freebsd-net@FreeBSD.ORG In-Reply-To: <200009140334.XAA05176@khavrinen.lcs.mit.edu> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org my IDT NICStAR ATM card driver allocates contiguous memory for mbuf external buffers. the card can use buffers larger than a physical page, but I don't use it that way. there were a couple problems that helped manually allocating buffers contiguously; one is in a couple occasions, such as raw cell processing, I had the physical address of the external buffer from the card but I need to use the kernel virtual address. The ATM card needs to have external buffers programed into a queue to be used when the data arrives. Instead allocating and deallocating mbufs as packets came in and were processed, as an experiment, I am mucked up the MBUF even more by making the mbuf structure and the external buffer permanent connected: #define M_PERM 0x8000 /* permanently allocated */ /* * MFREE(struct mbuf *m, struct mbuf *n) * Free a single mbuf and associated external storage. * Place the successor, if any, in n. */ #define MFREE(m, n) MBUFLOCK( \ struct mbuf *_mm = (m); \ \ KASSERT(_mm->m_type != MT_FREE, ("freeing free mbuf")); \ mbstat.m_mtypes[_mm->m_type]--; \ if (_mm->m_flags & M_EXT) \ MEXTFREE1(m); \ (n) = _mm->m_next; \ if (_mm->m_flags & M_PERM) { \ _mm->m_next = (struct mbuf *) 0; \ } else { \ _mm->m_type = MT_FREE; \ mbstat.m_mtypes[MT_FREE]++; \ _mm->m_next = mmbfree; \ mmbfree = _mm; \ MMBWAKEUP(); \ } \ ) when the packet fills a buffer, I can have it return the kernel virtual address of the mbuf holding the external buffer, and link up the new mbuf to the chain that was come in so far. I haven't actually counted how much this really saves vs. the extra space required for the permanently allocated mbufs. the downside with having your own pool of mbuf is that you are at the mercy of other code that may overwrite your ext_free() routine and you never get your buffers back. I suspect this is happening to one person using my driver. --mark tinguely. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 9:31:14 2000 Delivered-To: freebsd-net@freebsd.org Received: from lunatic.oneinsane.net (lunatic.oneinsane.net [207.113.133.231]) by hub.freebsd.org (Postfix) with ESMTP id 320C337B423 for ; Thu, 14 Sep 2000 09:31:11 -0700 (PDT) Received: by lunatic.oneinsane.net (Postfix, from userid 1000) id 59D7815513; Thu, 14 Sep 2000 09:31:07 -0700 (PDT) Date: Thu, 14 Sep 2000 09:31:07 -0700 From: Ron 'The InSaNe One' Rosson To: freebsd-net@freebsd.org Subject: How can I..... Message-ID: <20000914093106.A44369@lunatic.oneinsane.net> Reply-To: Ron Rosson Mail-Followup-To: freebsd-net@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Operating-System: FreeBSD lunatic.oneinsane.net 4.0-STABLE X-Moon: The Moon is Waning Gibbous (100% of Full) X-Opinion: What you read here is my IMHO X-WWW: http://www.oneinsane.net X-GPG-FINGERPRINT: 3F11 DB43 F080 C037 96F0 F8D3 5BD2 652B 171C 86DB X-Uptime: 9:25AM up 43 days, 17:04, 2 users, load averages: 1.04, 0.51, 0.21 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a small delimma.. I have a small network with a routed /28 behind a firewall.. I have some services that can only be accessed from inside the firewall. What I want todo is with my FreeBSD laptop and a machine on my network create a VPN when I am away so I can access my private services from anywhere using my laptop. Any one have any pointers or howto on how to get this accomplished. Just keep in mind I am not using any RFC address spacing. I have 1-2 routed IP's available if needed. Is it also possible to make all the VPN RFC addresses and NAT them through the machine that is acting as the VPN server. TIA -- ------------------------------------------------------------------------------ Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was /dev/null and *void() ------------------------------------------------------------------------------ NAK NAK, "Who's There?" #@#^#$%#(#@^ NO CARRIER To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 10:19:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from rios.sitaranetworks.com (rios.sitaranetworks.com [199.103.141.78]) by hub.freebsd.org (Postfix) with ESMTP id DAEAC37B423 for ; Thu, 14 Sep 2000 10:19:37 -0700 (PDT) Received: by rios.sitaranetworks.com with Internet Mail Service (5.5.2650.21) id ; Thu, 14 Sep 2000 13:22:10 -0400 Message-ID: <31269226357BD211979E00A0C9866DABE411F5@rios.sitaranetworks.com> From: Charles Richmond To: 'mark tinguely' , bmilekic@dsuper.net, wollman@khavrinen.lcs.mit.edu Cc: freebsd-net@FreeBSD.ORG Subject: RE: Clusters larger than PAGE_SIZE and contigmalloc() Date: Thu, 14 Sep 2000 13:22:09 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org So maybe I am being blind on this, but... It seems to me if the mbuf clusters cross page boundaries in an unaligned fashion as the earlier suggestion of 8 X 1.5k would do or if the size is privately configurable and thus not guaranteed to align, then the DMA code is forced into a scatter gather mode, even if the actual pages are contiguous. Can someone clear up my blindness? Charlie > -----Original Message----- > From: mark tinguely [mailto:tinguely@hookie.cs.ndsu.NoDak.edu] > Sent: Thursday, September 14, 2000 11:19 AM > To: bmilekic@dsuper.net; wollman@khavrinen.lcs.mit.edu > Cc: freebsd-net@FreeBSD.ORG > Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() > > > > my IDT NICStAR ATM card driver allocates contiguous memory for > mbuf external buffers. the card can use buffers larger than a physical > page, but I don't use it that way. there were a couple problems that > helped manually allocating buffers contiguously; one is in a couple > occasions, such as raw cell processing, I had the physical address of > the external buffer from the card but I need to use the kernel virtual > address. > > The ATM card needs to have external buffers programed into a queue to > be used when the data arrives. Instead allocating and > deallocating mbufs > as packets came in and were processed, as an experiment, I am > mucked up > the MBUF even more by making the mbuf structure and the > external buffer > permanent connected: > > #define M_PERM 0x8000 /* permanently allocated */ > > /* > * MFREE(struct mbuf *m, struct mbuf *n) > * Free a single mbuf and associated external storage. > * Place the successor, if any, in n. > */ > #define MFREE(m, n) MBUFLOCK( > \ > struct mbuf *_mm = (m); > \ > > \ > KASSERT(_mm->m_type != MT_FREE, ("freeing free mbuf")); > \ > mbstat.m_mtypes[_mm->m_type]--; > \ > if (_mm->m_flags & M_EXT) > \ > MEXTFREE1(m); > \ > (n) = _mm->m_next; > \ > if (_mm->m_flags & M_PERM) { > \ > _mm->m_next = (struct mbuf *) 0; > \ > } else { > \ > _mm->m_type = MT_FREE; > \ > mbstat.m_mtypes[MT_FREE]++; > \ > _mm->m_next = mmbfree; > \ > mmbfree = _mm; > \ > MMBWAKEUP(); > \ > } > \ > ) > > when the packet fills a buffer, I can have it return the > kernel virtual > address of the mbuf holding the external buffer, and link up the new > mbuf to the chain that was come in so far. I haven't actually counted > how much this really saves vs. the extra space required for > the permanently > allocated mbufs. > > the downside with having your own pool of mbuf is that you are at the > mercy of other code that may overwrite your ext_free() routine and you > never get your buffers back. I suspect this is happening to one person > using my driver. > > --mark tinguely. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 10:50:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from ebola.biohz.net (ebola.biohz.net [206.80.1.35]) by hub.freebsd.org (Postfix) with ESMTP id AAD5837B424 for ; Thu, 14 Sep 2000 10:50:55 -0700 (PDT) Received: from flu (localhost [127.0.0.1]) by ebola.biohz.net (Postfix) with SMTP id 24F6B3A3C2 for ; Thu, 14 Sep 2000 10:50:52 -0700 (PDT) Message-ID: <017b01c01e74$52d7fc20$0302010a@biohz.net> From: "Renaud Waldura" To: Subject: mpd-netgraph with multiple PPTP clients? Date: Thu, 14 Sep 2000 10:50:51 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org SUMMARY Does mpd-netgraph, configured as a PPTP server, allow multiple client connections? LONG VERSION Dear FreeBSD developers, I'm running mpd-netgraph on a 4.1 STABLE system. First allow me to congratulate the author(s) : this is a beautiful piece of software, well implemented and with excellent documentation -- a feature unfortunately too rare with open-source projects ! I configured mpd-netgraph (version 3.0) as a PPTP server, allowing VPN access to my internal network. I use the default configuration from mpd.conf_sample included in the distribution: ========= mpd.conf ========= pptp: new -i ng0 pptp pptp set iface disable on-demand set iface enable proxy-arp set iface idle 1800 set bundle disable multilink set link yes acfcomp protocomp set link no pap chap set link enable chap set link keep-alive 10 60 set ipcp yes vjcomp #set ipcp ranges 192.168.1.1/32 192.168.1.2/32 set ipcp ranges 192.168.1.1/32 192.168.1.222/24 <-- * set ipcp dns 192.168.1.1 (*) only change to the original config ========= mpd.links ========== pptp: set link type pptp set pptp self a.b.c.d set pptp enable incoming set pptp disable originate One Windows client (98/2000) connects perfectly. The performance is OK. I'm happy! But a second client, attempting to connect while the first client is still connected, is bounced with error "751 The remote computer refused the VPN connection". On the server side, mpd says: Sep 13 21:49:09 ebola mpd: pptp1: peer's outgoing call request denied Needless to say I went through the documentation, but even the "PPTP hints" section does not mention anything special about multiple client connections. At least they don't seem prohibited, although the original configuration (above) provisions for a single address. Which leaves with a strong doubt as to mpd's ability to actually handle multiple client connections... I browsed through the source code, and discovered the error message I'm getting means that no outgoing link is defined. This seems coherent to me, since I do not want to allow outgoing connections using this link. But I'm confused: why would the "peer" be requesting a "outgoing call"? Is there something fundamental I'm missing? I tried to configure mpd with multiple PPTP links, apparently this is not allowed. What am I missing here? Thank you very much for your time, your comments and suggestions are very much appreciated, --Renaud To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:15:17 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.m.iinet.net.au (opera3.iinet.net.au [203.59.24.51]) by hub.freebsd.org (Postfix) with SMTP id B70D037B424 for ; Thu, 14 Sep 2000 11:15:04 -0700 (PDT) Received: (qmail 13365 invoked by uid 666); 14 Sep 2000 18:14:58 -0000 Received: from unknown (HELO jules.elischer.org) (203.59.169.109) by mail.m.iinet.net.au with SMTP; 14 Sep 2000 18:14:58 -0000 Message-ID: <39C1159B.167EB0E7@elischer.org> Date: Thu, 14 Sep 2000 11:14:51 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Renaud Waldura Cc: freebsd-net@freebsd.org Subject: Re: mpd-netgraph with multiple PPTP clients? References: <017b01c01e74$52d7fc20$0302010a@biohz.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Renaud Waldura wrote: > > SUMMARY > > Does mpd-netgraph, configured as a PPTP server, allow multiple client > connections? > > LONG VERSION > > Dear FreeBSD developers, > > I'm running mpd-netgraph on a 4.1 STABLE system. First allow me to > congratulate the author(s) : this is a beautiful piece of software, well > implemented and with excellent documentation -- a feature unfortunately too > rare with open-source projects ! > > I configured mpd-netgraph (version 3.0) as a PPTP server, allowing VPN > access to my internal network. I use the default configuration from > mpd.conf_sample included in the distribution: > > ========= mpd.conf ========= > > pptp: > new -i ng0 pptp pptp > set iface disable on-demand > set iface enable proxy-arp > set iface idle 1800 > set bundle disable multilink > set link yes acfcomp protocomp > set link no pap chap > set link enable chap > set link keep-alive 10 60 > set ipcp yes vjcomp > #set ipcp ranges 192.168.1.1/32 192.168.1.2/32 > set ipcp ranges 192.168.1.1/32 192.168.1.222/24 <-- * > set ipcp dns 192.168.1.1 > > (*) only change to the original config > > ========= mpd.links ========== > > pptp: > set link type pptp > set pptp self a.b.c.d > set pptp enable incoming > set pptp disable originate > you duplicate the config for each potential incoming session and give it a different ng device to use. e.g. ng0, ng1, ng2.... (with a differnt address.) Each incoming session needs a different interface to use. You can then specify which address each login should be assigned, (in the secrets file I think from memory) and that in turn implies which ng interfave should be used.. Archie can give you more exact info of course, and maybe there should be a better example of this.. ==== here's a sample files I'm using..... (all IP addresses etc. are fictional..) (mpd.conf) default: load default-log load client client: load Pptp0 load Pptp1 load Pptp2 load Pptp3 load Pptp4 load Pptp5 load Pptp6 load Pptp7 load Pptp8 load Pptp9 Pptp0: new -i ng0 Pptp0 Pptp0 set iface disable on-demand set iface enable proxy-arp set iface idle 1800 set bundle disable multilink set link yes acfcomp protocomp set link no pap chap set link enable chap set link keep-alive 10 60 set ipcp yes vjcomp set ipcp ranges 108.206.78.1/32 108.206.78.4/29 set ipcp dns 108.206.78.1 108.206.78.2 set ipcp nbns 108.206.78.1 set bundle enable compression set ccp yes mppc set ccp yes mpp-e40 set ccp yes mpp-e128 set bundle enable crypt-reqd set ccp yes mpp-stateless Pptp1: new -i ng1 Pptp1 Pptp1 set iface disable on-demand set iface enable proxy-arp set iface idle 1800 set bundle disable multilink set link yes acfcomp protocomp set link no pap chap set link enable chap set link keep-alive 10 60 set ipcp yes vjcomp set ipcp ranges 108.206.78.1/32 108.206.78.4/29 set ipcp dns 108.206.78.1 108.206.78.2 set ipcp nbns 108.206.78.1 set bundle enable compression set ccp yes mppc set ccp yes mpp-e40 set ccp yes mpp-e128 set bundle enable crypt-reqd set ccp yes mpp-stateless [....... etc.] default-log: log +bund +link +chat +lcp +auth +fsm +phys +ipcp +ccp +pptp === end of mpd.conf=== in mpd.links I have: # mpd links file for pptp Pptp0: set link type pptp set pptp self 108.218.234.250 set pptp enable incoming set pptp disable originate Pptp1: set link type pptp set pptp self 108.218.234.250 set pptp enable incoming set pptp disable originate [... etc.] ==== end of mpd.links === In the mpd.secret file I have: julian mypasswd 108.206.78.4 freddy passwd01 108.206.78.5 employee1 passwd02 108.206.78.6 employee2 passwd03 108.206.78.7 this will support 10 simultanious connections (assuming you extend the conf and links files ou to the right number of entries). Each login has a FIXED address it is given for it's tunnel. Also since this was on a special system, I'm not sure if all the encryption/compression modes in these config files are supported in public freebsd/mpd. If not just delete those config file lines. > One Windows client (98/2000) connects perfectly. The performance is OK. I'm > happy! > But a second client, attempting to connect while the first client is still > connected, is bounced with error "751 The remote computer refused the VPN > connection". On the server side, mpd says: > > Sep 13 21:49:09 ebola mpd: pptp1: peer's outgoing call request denied > > Needless to say I went through the documentation, but even the "PPTP hints" > section does not mention anything special about multiple client connections. > At least they don't seem prohibited, although the original configuration > (above) provisions for a single address. Which leaves with a strong doubt as > to mpd's ability to actually handle multiple client connections... > > I browsed through the source code, and discovered the error message I'm > getting means that no outgoing link is defined. This seems coherent to me, > since I do not want to allow outgoing connections using this link. But I'm > confused: why would the "peer" be requesting a "outgoing call"? Is there > something fundamental I'm missing? > > I tried to configure mpd with multiple PPTP links, apparently this is not > allowed. What am I missing here? > > Thank you very much for your time, your comments and suggestions are very > much appreciated, > > --Renaud > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:19: 5 2000 Delivered-To: freebsd-net@freebsd.org Received: from defiant.quansoo.com (defiant.quansoo.com [12.40.126.90]) by hub.freebsd.org (Postfix) with ESMTP id 6351E37B423 for ; Thu, 14 Sep 2000 11:19:01 -0700 (PDT) Received: from localhost (cgriffiths@localhost) by defiant.quansoo.com (8.11.0/8.11.0) with ESMTP id e8EIIZ402998; Thu, 14 Sep 2000 14:18:35 -0400 (EDT) (envelope-from cgriffiths@quansoo.com) X-Authentication-Warning: defiant.quansoo.com: cgriffiths owned process doing -bs Date: Thu, 14 Sep 2000 14:18:35 -0400 (EDT) From: "Christopher T. Griffiths" To: Renaud Waldura Cc: archie@whistle.com, freebsd-net@FreeBSD.ORG Subject: Re: mpd-netgraph with multiple PPTP clients? In-Reply-To: <017b01c01e74$52d7fc20$0302010a@biohz.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Renaud, I have run into the same problem. I created the following, but mpd does not like it: pptp: new -i ng0 pptp pptp pptp1: new -i ng1 pptp1 pptp1 I tried starting mpd with: mpd pptp then mpd pptp1 I get the first one started but the second one throws the following error: Multi-link PPP for FreeBSD, by Archie L. Cobbs. Based on iij-ppp, by Toshiharu OHNO. mpd: pid 55054, version 3.0 (root@excalibur 16:48 7-Sep-2000) mpd: already running as process 55048 I would eventually like to run this software with -b to put it in the background. Any help would be great. Thanks Chris On Thu, 14 Sep 2000, Renaud Waldura wrote: > SUMMARY > > Does mpd-netgraph, configured as a PPTP server, allow multiple client > connections? > > > LONG VERSION > > Dear FreeBSD developers, > > I'm running mpd-netgraph on a 4.1 STABLE system. First allow me to > congratulate the author(s) : this is a beautiful piece of software, well > implemented and with excellent documentation -- a feature unfortunately too > rare with open-source projects ! > > I configured mpd-netgraph (version 3.0) as a PPTP server, allowing VPN > access to my internal network. I use the default configuration from > mpd.conf_sample included in the distribution: > > ========= mpd.conf ========= > > pptp: > new -i ng0 pptp pptp > set iface disable on-demand > set iface enable proxy-arp > set iface idle 1800 > set bundle disable multilink > set link yes acfcomp protocomp > set link no pap chap > set link enable chap > set link keep-alive 10 60 > set ipcp yes vjcomp > #set ipcp ranges 192.168.1.1/32 192.168.1.2/32 > set ipcp ranges 192.168.1.1/32 192.168.1.222/24 <-- * > set ipcp dns 192.168.1.1 > > (*) only change to the original config > > ========= mpd.links ========== > > pptp: > set link type pptp > set pptp self a.b.c.d > set pptp enable incoming > set pptp disable originate > > One Windows client (98/2000) connects perfectly. The performance is OK. I'm > happy! > But a second client, attempting to connect while the first client is still > connected, is bounced with error "751 The remote computer refused the VPN > connection". On the server side, mpd says: > > Sep 13 21:49:09 ebola mpd: pptp1: peer's outgoing call request denied > > Needless to say I went through the documentation, but even the "PPTP hints" > section does not mention anything special about multiple client connections. > At least they don't seem prohibited, although the original configuration > (above) provisions for a single address. Which leaves with a strong doubt as > to mpd's ability to actually handle multiple client connections... > > I browsed through the source code, and discovered the error message I'm > getting means that no outgoing link is defined. This seems coherent to me, > since I do not want to allow outgoing connections using this link. But I'm > confused: why would the "peer" be requesting a "outgoing call"? Is there > something fundamental I'm missing? > > I tried to configure mpd with multiple PPTP links, apparently this is not > allowed. What am I missing here? > > Thank you very much for your time, your comments and suggestions are very > much appreciated, > > --Renaud > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > --- Christopher T. Griffiths Quansoo Group Inc. cgriffiths@quansoo.com Phone: (302) 777-4141 Fax: (302) 777-4142 Mobile: (302) 521-3436 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:30:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.m.iinet.net.au (opera3.iinet.net.au [203.59.24.51]) by hub.freebsd.org (Postfix) with SMTP id 523E137B424 for ; Thu, 14 Sep 2000 11:30:26 -0700 (PDT) Received: (qmail 15345 invoked by uid 666); 14 Sep 2000 18:30:23 -0000 Received: from unknown (HELO jules.elischer.org) (203.59.169.109) by mail.m.iinet.net.au with SMTP; 14 Sep 2000 18:30:23 -0000 Message-ID: <39C11937.15FB7483@elischer.org> Date: Thu, 14 Sep 2000 11:30:15 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: "Christopher T. Griffiths" Cc: Renaud Waldura , archie@whistle.com, freebsd-net@FreeBSD.ORG Subject: Re: mpd-netgraph with multiple PPTP clients? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Christopher T. Griffiths wrote: > > Renaud, > > I have run into the same problem. > > I created the following, but mpd does not like it: > > pptp: > new -i ng0 pptp pptp > > pptp1: > new -i ng1 pptp1 pptp1 > > I tried starting mpd with: > > mpd pptp > > then > > mpd pptp1 > > I get the first one started but the second one throws the following error: > with the config files I just sent, one mpd will accept multiple sessions you don't need to start multiple MPDs. -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:32:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 580DC37B422 for ; Thu, 14 Sep 2000 11:32:46 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e8EIWcO18409; Thu, 14 Sep 2000 11:32:38 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma018403; Thu, 14 Sep 2000 11:32:26 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.9.3/8.9.3) id LAA51555; Thu, 14 Sep 2000 11:32:26 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200009141832.LAA51555@bubba.whistle.com> Subject: Re: mpd-netgraph with multiple PPTP clients? In-Reply-To: "from Christopher T. Griffiths at Sep 14, 2000 02:18:35 pm" To: "Christopher T. Griffiths" Date: Thu, 14 Sep 2000 11:32:26 -0700 (PDT) Cc: renaud@waldura.com, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Christopher T. Griffiths writes: > Renaud, > > I have run into the same problem. > > I created the following, but mpd does not like it: > > pptp: > new -i ng0 pptp pptp > > pptp1: > new -i ng1 pptp1 pptp1 > > I tried starting mpd with: > > mpd pptp > > then > > mpd pptp1 Don't run 2 mpd's.. instead run one mpd with multiple bundles defined. For example: # mpd.conf default: load pptp1 load pptp2 load pptp3 ... pptp1: new -i ng1 pptp1 pptp1 ... set ipcp ranges 1.1.1.1/32 1.1.1.11/32 ... pptp2: new -i ng2 pptp2 pptp2 ... set ipcp ranges 1.1.1.1/32 1.1.1.12/32 ... pptp3: new -i ng3 pptp3 pptp3 ... set ipcp ranges 1.1.1.1/32 1.1.1.13/32 ... Add entries for "pptp1" through "pptp3" in mpd.links as well. Hope this helps. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:36: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 696A337B424 for ; Thu, 14 Sep 2000 11:36:04 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id MAA37359; Thu, 14 Sep 2000 12:35:57 -0600 (MDT) Date: Thu, 14 Sep 2000 12:35:57 -0600 (MDT) From: Nick Rogness To: Matthew Hagerty Cc: freebsd-net@FreeBSD.ORG Subject: Re: To finish this VPN configuration...? In-Reply-To: <4.3.2.7.2.20000914012505.00c27580@pop3.venux.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 14 Sep 2000, Matthew Hagerty wrote: > Checked out the example in the handbook for a IP4 tunnel config, something > like this: > ======= AH ======= > | | > Network-A Gateway-A Gateway-B Network-B > 10.0.1.0/24 ---- 172.16.0.1 ----- 172.16.0.2 ---- 10.0.2.0/24 Can you ping 10.0.2.0/24 network from your 10.0.1/24 network before you add the encryption? What are you using to add your IPv4 tunnel? Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:54:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from ebola.biohz.net (ebola.biohz.net [206.80.1.35]) by hub.freebsd.org (Postfix) with ESMTP id 77D7037B423 for ; Thu, 14 Sep 2000 11:54:13 -0700 (PDT) Received: from flu (localhost [127.0.0.1]) by ebola.biohz.net (Postfix) with SMTP id 215393A3C2 for ; Thu, 14 Sep 2000 11:54:13 -0700 (PDT) Message-ID: <00b701c01e7d$2c6c1540$0302010a@biohz.net> From: "Renaud Waldura" To: References: <017b01c01e74$52d7fc20$0302010a@biohz.net> Subject: Re: mpd-netgraph with multiple PPTP clients (CONCLUSION) Date: Thu, 14 Sep 2000 11:54:12 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2314.1300 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thank you very much to all the helpful people involved in solving this problem: Julian Elischer, Archie Cobbs, Christopher T. Griffiths and Timothy Naple. To summarize the answers, in order to accept multiple client connections, mpd needs to be configured with multiple bundles, each using a separate link. Julian Elischer provided a template configuration to work from. Now, may I suggest this to be integrated in the documentation? Or even better, that incoming PPTP connections somehow inherit a template configuration and "instantiate" it? I have no idea what is involved in doing this, but it sure would be nice -- it doesn't seem right to have a server limited by the number of statically configured clients. Maybe a special syntax, e.g. default: load vpn* vpn*: new -i ng0 vpn pptp* ... in mpd.links: pptp*: set link type pptp set pptp yes incoming set pptp no originate Thanks again for the help, --Renaud ----- Original Message ----- From: Renaud Waldura To: Sent: Thursday, September 14, 2000 10:50 AM Subject: mpd-netgraph with multiple PPTP clients? > SUMMARY > > Does mpd-netgraph, configured as a PPTP server, allow multiple client > connections? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 11:57:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from defiant.quansoo.com (defiant.quansoo.com [12.40.126.90]) by hub.freebsd.org (Postfix) with ESMTP id B989B37B424 for ; Thu, 14 Sep 2000 11:57:37 -0700 (PDT) Received: from localhost (cgriffiths@localhost) by defiant.quansoo.com (8.11.0/8.11.0) with ESMTP id e8EIvYL03363; Thu, 14 Sep 2000 14:57:34 -0400 (EDT) (envelope-from cgriffiths@quansoo.com) X-Authentication-Warning: defiant.quansoo.com: cgriffiths owned process doing -bs Date: Thu, 14 Sep 2000 14:57:34 -0400 (EDT) From: "Christopher T. Griffiths" To: Renaud Waldura Cc: freebsd-net@FreeBSD.ORG Subject: Re: mpd-netgraph with multiple PPTP clients (CONCLUSION) In-Reply-To: <00b701c01e7d$2c6c1540$0302010a@biohz.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Got it working as well. Thanks everyone. Chris On Thu, 14 Sep 2000, Renaud Waldura wrote: > Thank you very much to all the helpful people involved in solving this > problem: Julian Elischer, Archie Cobbs, Christopher T. Griffiths and Timothy > Naple. > > To summarize the answers, in order to accept multiple client connections, > mpd needs to be configured with multiple bundles, each using a separate > link. Julian Elischer provided a template configuration to work from. > > Now, may I suggest this to be integrated in the documentation? Or even > better, that incoming PPTP connections somehow inherit a template > configuration and "instantiate" it? I have no idea what is involved in doing > this, but it sure would be nice -- it doesn't seem right to have a server > limited by the number of statically configured clients. Maybe a special > syntax, e.g. > > default: > load vpn* > > vpn*: > new -i ng0 vpn pptp* > > ... > > in mpd.links: > > pptp*: > set link type pptp > set pptp yes incoming > set pptp no originate > > Thanks again for the help, > > --Renaud > > > > ----- Original Message ----- > From: Renaud Waldura > To: > Sent: Thursday, September 14, 2000 10:50 AM > Subject: mpd-netgraph with multiple PPTP clients? > > > > SUMMARY > > > > Does mpd-netgraph, configured as a PPTP server, allow multiple client > > connections? > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 12:31:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from light.imasy.or.jp (light.imasy.or.jp [202.227.24.4]) by hub.freebsd.org (Postfix) with ESMTP id 3A83437B422; Thu, 14 Sep 2000 12:31:43 -0700 (PDT) Received: (from uucp@localhost) by light.imasy.or.jp (8.11.0+3.3W/3.7W-light) with UUCP id e8EJUP009944; Fri, 15 Sep 2000 04:30:25 +0900 (JST) (envelope-from ume@mahoroba.org) Received: from localhost (peace.mahoroba.org [2001:200:301:0:200:f8ff:fe05:3eae]) by mail.mahoroba.org (8.11.0/8.11.0/chaos) with ESMTP/inet6 id e8EJSQm27102; Fri, 15 Sep 2000 04:28:26 +0900 (JST) (envelope-from ume@mahoroba.org) Date: Fri, 15 Sep 2000 04:28:25 +0900 (JST) Message-Id: <20000915.042825.59653153.ume@mahoroba.org> To: freebsd-current@freebsd.org, freebsd-net@freebsd.org Subject: [CFR] KLDfy ip6_fw From: Hajimu UMEMOTO X-Mailer: Mew version 1.95b38 on Emacs 20.7 / Mule 4.0 =?iso-2022-jp?B?KBskQjJWMWMbKEIp?= Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I made KLD module of ip6_fw. Please review it. http://www.imasy.or.jp/~ume/ipv6/FreeBSD/ip6_fw-kld-5C.diff for 5-CURRENT http://www.imasy.or.jp/~ume/ipv6/FreeBSD/ip6_fw-kld-41R.diff for 4.1-RELEASE Thanks, -- Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan ume@mahoroba.org ume@bisd.hitachi.co.jp ume@FreeBSD.org http://www.imasy.org/~ume/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 13:50:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id 3E4F437B422 for ; Thu, 14 Sep 2000 13:50:30 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.ca ([24.201.203.136]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G0W00GJ49W4MA@field.videotron.net> for freebsd-net@FreeBSD.ORG; Thu, 14 Sep 2000 16:50:28 -0400 (EDT) Date: Thu, 14 Sep 2000 16:53:59 -0400 (EDT) From: Bosko Milekic Subject: RE: Clusters larger than PAGE_SIZE and contigmalloc() In-reply-to: <31269226357BD211979E00A0C9866DABE411F5@rios.sitaranetworks.com> X-Sender: bmilekic@jehovah.technokratis.com To: Charles Richmond Cc: freebsd-net@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 14 Sep 2000, Charles Richmond wrote: > So maybe I am being blind on this, but... > > It seems to me if the mbuf clusters cross page boundaries > in an unaligned fashion as the earlier suggestion of 8 X 1.5k > would do or if the size is privately configurable and thus not > guaranteed to align, then the DMA code is forced into a scatter > gather mode, even if the actual pages are contiguous. Can someone > clear up my blindness? > > Charlie I'm unsure of what the DMA code is forced to do, but there are likely alignment problems with the buffer that will cross the page boundry. Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 14:58:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from cleitus.hosting.swbell.net (cleitus.hosting.swbell.net [216.100.99.4]) by hub.freebsd.org (Postfix) with ESMTP id 43FE337B423 for ; Thu, 14 Sep 2000 14:58:14 -0700 (PDT) Received: from imimic.com (adsl-216-63-78-19.dsl.hstntx.swbell.net [216.63.78.19]) by cleitus.hosting.swbell.net id RAA09556; Thu, 14 Sep 2000 17:58:09 -0400 (EDT) [ConcentricHost SMTP Relay 1.7] Message-ID: <39C149EF.A3DC0582@imimic.com> Date: Thu, 14 Sep 2000 16:58:07 -0500 From: "Alan L. Cox" Organization: iMimic Networking, Inc. X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 4.1-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: net@freebsd.org Subject: Re: Clusters larger than PAGE_SIZE and contigmalloc() Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > < said: > > [Pointless four-space indentation removed.] > > >contigmalloc() may have trouble finding the required > >contiguous physical pages after a certain period of uptime. > > When the code was written (and this may have since rotted), > contigmalloc() would forcibly swap out every process on the machine > until it found some contiguous physical memory. Doesn't solve the > issue of virtual fragmentation, but physical fragmentation was not a > problem. The problem with contigmalloc is wired pages. Yes, it can forcibly swap "pageable" pages and recover them, but as soon as it runs into a wired page that chunk of memory is ruled out. Over time, you wind up with wired pages scattered throughout the physical memory. Hence, the failure of contigmalloc to find large chunks on long-running systems. Alan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 16:31:34 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id 3A66B37B424 for ; Thu, 14 Sep 2000 16:31:31 -0700 (PDT) Received: by gw.nectar.com (Postfix, from userid 1001) id 3C2C71925D; Thu, 14 Sep 2000 18:31:30 -0500 (CDT) Date: Thu, 14 Sep 2000 18:31:30 -0500 From: "Jacques A. Vidrine" To: freebsd-net@freebsd.org Subject: an0: id mismatch Message-ID: <20000914183129.A556@spawn.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , freebsd-net@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, After a happy two weeks using a Cisco Aironet 342 PCI and 342 PC Card, today something has gone amiss. Upon plugging in my PC Card today, I found that I was unable to talk to the server (with the PCI card). The blinky lights on the card alternately blink `status' and `activity'. After resetting the PC card, laptop, et cetera, with no change in the symptomss, I decided to try resetting the server. When the server came back, I began to get messages such as the following: an0: id mismatch: expected 0, got 1f3 an0: id mismatch: expected 0, got 201 an0: id mismatch: expected 0, got 20f an0: id mismatch: expected 0, got 21d an0: id mismatch: expected 28f, got 265 an0: id mismatch: expected 265, got 273 an0: id mismatch: expected 273, got 281 an0: id mismatch: expected 281, got 28f an0: id mismatch: expected 28f, got 265 an0: id mismatch: expected 265, got 273 an0: id mismatch: expected 273, got 281 an0: id mismatch: expected 281, got 28f an0: id mismatch: expected 0, got 265 an0: id mismatch: expected 265, got 273 an0: id mismatch: expected 273, got 281 an0: id mismatch: expected 281, got 28f an0: id mismatch: expected 28f, got 265 an0: id mismatch: expected 265, got 273 an0: id mismatch: expected 273, got 281 an0: id mismatch: expected 281, got 28f an0: id mismatch: expected 28f, got 265 an0: id mismatch: expected 265, got 273 an0: id mismatch: expected 273, got 281 an0: id mismatch: expected 281, got 28f an0: id mismatch: expected 28f, got 265 an0: id mismatch: expected 265, got 273 Notice how the sequence seems to be `off by one'. Now I wonder if one of the cards is fried ... and if so, how can I tell which? -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 18:18:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id 5B98D37B43C for ; Thu, 14 Sep 2000 18:18:21 -0700 (PDT) Received: by gw.nectar.com (Postfix, from userid 1001) id 62F7A1925D; Thu, 14 Sep 2000 20:18:17 -0500 (CDT) Date: Thu, 14 Sep 2000 20:18:17 -0500 From: "Jacques A. Vidrine" To: freebsd-net@freebsd.org Subject: ICMP6 redirect rejected; not equal to gw-for-src Message-ID: <20000914201817.A1041@spawn.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , freebsd-net@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can anyone decipher the following from me (shows up on console when pinging across a link): ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 22:42:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from vbook.express.ru (vbook.express.ru [212.24.37.106]) by hub.freebsd.org (Postfix) with ESMTP id AA0FF37B43E; Thu, 14 Sep 2000 22:42:10 -0700 (PDT) Received: (from vova@localhost) by vbook.express.ru (8.9.3/8.9.3) id JAA39047; Fri, 15 Sep 2000 09:27:59 +0400 (MSD) (envelope-from vova) From: "Vladimir B. Grebenschikov" MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14785.45919.363291.506910@vbook.express.ru> Date: Fri, 15 Sep 2000 09:27:59 +0400 (MSD) To: "Hao Zhang" Cc: freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: need a recommendation of NIC In-Reply-To: References: X-Mailer: VM 6.72 under 21.1 (patch 9) "Canyonlands" XEmacs Lucid Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hao Zhang writes: > I am doing some testing on FreeBSD 3.3 platform by sending some UDP packets > thru FreeBSD routers. It's found that the duplications happened in FreeBSD router. > Now The FreeBSD 3.3 is running on Pentium III, and NIC is 3C905B-Tx. To isolate this > problem. We will try different NIC. Can anyone give me some recommendation for the > high performance NIC for FreeBSD 3.3. Thanks in advance for any comments. Intell EtherExpress fxp driver in FreeBSD, I think it best low-cost ethernet card for FreeBSD now. > -Hao -- TSB Russian Express, Moscow Vladimir B. Grebenschikov, vova@express.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 14 23:52:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from jason.argos.org (a1-3a105.neo.rr.com [24.93.180.105]) by hub.freebsd.org (Postfix) with ESMTP id BD66B37B422 for ; Thu, 14 Sep 2000 23:51:54 -0700 (PDT) Received: from localhost (mike@localhost) by jason.argos.org (8.10.1/8.10.1) with ESMTP id e8F6lC600378 for ; Fri, 15 Sep 2000 02:47:12 -0400 Date: Fri, 15 Sep 2000 02:47:12 -0400 (EDT) From: Mike Nowlin To: freebsd-net@freebsd.org Subject: NIS replacement Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We've been using NIS for quite some time to provide auth info, home dir, and login shell info to a bunch of FBSD machines. So far, it's worked fairly well, but it's getting to be a pain to administer - we're looking for something different... In a nutshell, we're primarily using it to make sure that UIDs and GIDs stay the same across multiple machines so that the NFS-mounted directories don't have any ownership problems. This is accomplished through a SQL database with a perl program that queries the DB and builds the NIS maps. It works, but it's really ugly. I've been toying with using RADIUS to handle this, but that only provides the auth info - do any plans exist (or packages available) to handle home dirs and login shells via RADIUS? Or any other suggestions? (Yes, I realize this is kinda vague - it's been a long day...) Tnx - Mike - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Understated/funny man-page sentence of the current time period: From route(4) on FreeBSD-3.4, DESCRIPTION section: "FreeBSD provides some packet routing facilities." ...duh....... Mike Nowlin, N8NVW mike@argos.org http://www.viewsnet.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 0:19:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from iclub.nsu.ru (iclub.nsu.ru [193.124.222.66]) by hub.freebsd.org (Postfix) with ESMTP id 0AFFF37B423 for ; Fri, 15 Sep 2000 00:19:35 -0700 (PDT) Received: from localhost (fjoe@localhost) by iclub.nsu.ru (8.9.3/8.9.3) with ESMTP id OAA60751; Fri, 15 Sep 2000 14:17:39 +0700 (NSS) (envelope-from fjoe@iclub.nsu.ru) Date: Fri, 15 Sep 2000 14:17:39 +0700 (NSS) From: Max Khon To: Mike Nowlin Cc: freebsd-net@FreeBSD.ORG Subject: Re: NIS replacement In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi, there! On Fri, 15 Sep 2000, Mike Nowlin wrote: > We've been using NIS for quite some time to provide auth info, home dir, > and login shell info to a bunch of FBSD machines. So far, it's worked > fairly well, but it's getting to be a pain to administer - we're looking > for something different... [snip] > I've been toying with using RADIUS to handle this, but that only provides > the auth info - do any plans exist (or packages available) to handle home > dirs and login shells via RADIUS? Or any other suggestions? NSS has been committed to -current recently. There are plans to implement dynamic modules and MFC it before 4.2-RELEASE IIRC. Check out http://www.padl.com/ for NSS+LDAP solution. /fjoe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 0:21:12 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.rdc1.az.home.com (ha1.rdc1.az.home.com [24.1.240.66]) by hub.freebsd.org (Postfix) with ESMTP id 66DB937B423 for ; Fri, 15 Sep 2000 00:21:10 -0700 (PDT) Received: from tjabring ([24.1.196.75]) by mail.rdc1.az.home.com (InterMail vM.4.01.02.00 201-229-116) with SMTP id <20000915072110.CHPW12685.mail.rdc1.az.home.com@tjabring> for ; Fri, 15 Sep 2000 00:21:10 -0700 Message-ID: <000801c01ee5$d2cbf5a0$020a0a0a@tjabring> From: "Kelsey Womack" To: Subject: SpeedStream 4060 USB DSL Modem Date: Fri, 15 Sep 2000 00:23:19 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0005_01C01EAB.2643EAC0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0005_01C01EAB.2643EAC0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Has anyone had any experience, or any knowledge as to if this will work = with fbsd 4.x? -Kelsey ------=_NextPart_000_0005_01C01EAB.2643EAC0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Has anyone had any experience, or any = knowledge as=20 to if this will work with fbsd 4.x?
 
   =20 -Kelsey
------=_NextPart_000_0005_01C01EAB.2643EAC0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 0:27:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id F1BF937B422 for ; Fri, 15 Sep 2000 00:27:13 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id QAA03790; Fri, 15 Sep 2000 16:10:19 +0900 (JST) Date: Fri, 15 Sep 2000 16:26:19 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Jacques A. Vidrine" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src In-Reply-To: In your message of "Thu, 14 Sep 2000 20:18:17 -0500" <20000914201817.A1041@spawn.nectar.com> References: <20000914201817.A1041@spawn.nectar.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 22 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Thu, 14 Sep 2000 20:18:17 -0500, >>>>> "Jacques A. Vidrine" said: > Can anyone decipher the following from me (shows up on console when > pinging across a link): > ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) Please show us the following information: 1. OS and the version of the host (the node that printed the above message) and the gateway (fe80:0007::0240:96ff:fe33:a3e7). 2. netstat -rn on the host 3. ifconfig -a on the host 4. (if the gateway is a BSD system) netstat -rn on the gateway 5. (if the gateway is a BSD system) ifconfig -a on the gateway Thanks, JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 4:25:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from ultra.ultra.net.au (ultra.ultra.net.au [203.20.237.5]) by hub.freebsd.org (Postfix) with ESMTP id 06B8737B43E for ; Fri, 15 Sep 2000 04:25:50 -0700 (PDT) Received: from ultranet (p070.prem2-tsv.ultra.net.au [202.80.67.70]) by ultra.ultra.net.au (8.10.2/8.10.2) with SMTP id e8FBPmk39275 for ; Fri, 15 Sep 2000 21:25:48 +1000 (EST) Message-ID: <000001c01f08$263ff8e0$5d3dfea9@ultranet.ultra.net.au> From: "Lee-Ann Barton" To: Subject: Date: Sat, 2 Sep 2000 13:16:56 +1000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0072_01C014E0.11616800" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0072_01C014E0.11616800 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable unsubscribe freebsd-net@FreeBSD.ORG ------=_NextPart_000_0072_01C014E0.11616800 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
unsubscribe freebsd-net@FreeBSD.ORG
------=_NextPart_000_0072_01C014E0.11616800-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 5: 5:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id 6C46237B423 for ; Fri, 15 Sep 2000 05:05:38 -0700 (PDT) Received: by gw.nectar.com (Postfix, from userid 1001) id 8CFDA1925D; Fri, 15 Sep 2000 07:05:37 -0500 (CDT) Date: Fri, 15 Sep 2000 07:05:37 -0500 From: "Jacques A. Vidrine" To: Max Khon Cc: Mike Nowlin , freebsd-net@FreeBSD.ORG Subject: Re: NIS replacement Message-ID: <20000915070537.A2484@spawn.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , Max Khon , Mike Nowlin , freebsd-net@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: ; from fjoe@iclub.nsu.ru on Fri, Sep 15, 2000 at 02:17:39PM +0700 X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Sep 15, 2000 at 02:17:39PM +0700, Max Khon wrote: > NSS has been committed to -current recently. > There are plans to implement dynamic modules and MFC it before 4.2-RELEASE > IIRC. Check out http://www.padl.com/ for NSS+LDAP solution. padl.com also has a NIS<-->LDAP gateway that could be used now. -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 5:56: 7 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id CA75A37B42C for ; Fri, 15 Sep 2000 05:56:00 -0700 (PDT) Received: from hamlet.nectar.com (hamlet.nectar.com [10.0.1.102]) by gw.nectar.com (Postfix) with ESMTP id 6BDCF1925D; Fri, 15 Sep 2000 07:55:59 -0500 (CDT) Received: (from nectar@localhost) by hamlet.nectar.com (8.9.3/8.9.3) id HAA06755; Fri, 15 Sep 2000 07:55:59 -0500 (CDT) (envelope-from nectar@spawn.nectar.com) Date: Fri, 15 Sep 2000 07:55:59 -0500 From: "Jacques A. Vidrine" To: "JINMEI Tatuya / ?$B?@L@C#:H?(B" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src Message-ID: <20000915075559.A6743@hamlet.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , "JINMEI Tatuya / ?$B?@L@C#:H?(B" , freebsd-net@FreeBSD.ORG References: <20000914201817.A1041@spawn.nectar.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from jinmei@isl.rdc.toshiba.co.jp on Fri, Sep 15, 2000 at 04:26:19PM +0900 X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Sep 15, 2000 at 04:26:19PM +0900, JINMEI Tatuya / ?$B?@L@C#:H?(B wrote: > > ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) > > Please show us the following information: > 1. OS and the version of the host (the node that printed the above > message) and the gateway (fe80:0007::0240:96ff:fe33:a3e7). > 2. netstat -rn on the host > 3. ifconfig -a on the host > 4. (if the gateway is a BSD system) netstat -rn on the gateway > 5. (if the gateway is a BSD system) ifconfig -a on the gateway Here we are: ==== host (ophelia) ==== Script started on Fri Sep 15 07:44:58 2000 # uname -a FreeBSD ophelia.nectar.com 4.1-STABLE FreeBSD 4.1-STABLE #2: Thu Sep 14 19:46:25 CDT 2000 root@ophelia.nectar.com:/usr/obj/usr/src/sys/OPHELIA i386 # ifconfig -a fxp0: flags=8802 mtu 1500 inet6 fe80::a00:46ff:fe05:6a43%fxp0 prefixlen 64 scopeid 0x1 ether 08:00:46:05:6a:43 media: autoselect (100baseTX) status: active supported media: autoselect 100baseTX 100baseTX 10baseT/UTP 10baseT/UTP gif0: flags=8010 mtu 1280 inet6 fe80::a00:46ff:fe05:6a43%gif0 --> :: prefixlen 64 scopeid 0x2 gif1: flags=8010 mtu 1280 gif2: flags=8010 mtu 1280 gif3: flags=8010 mtu 1280 lo0: flags=8049 mtu 16384 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff000000 an0: flags=8802 mtu 1500 inet6 fe80::240:96ff:fe31:e63c%an0 prefixlen 64 scopeid 0x7 ether 00:40:96:31:e6:3c # ifconfig an0 up # rtsol an0 # ifconfig an0 an0: flags=8843 mtu 1500 inet6 fe80::240:96ff:fe31:e63c%an0 prefixlen 64 scopeid 0x7 inet6 fec0:2::240:96ff:fe31:e63c prefixlen 64 ether 00:40:96:31:e6:3c # netstat -rn Routing tables Internet: Destination Gateway Flags Netif Expire 127.0.0.1 127.0.0.1 UH 0 0 lo0 Internet6: Destination Gateway Flags Netif Expire ::1 ::1 UH lo0 fe80::/10 link#1 UCS fxp0 fe80::%fxp0/64 link#1 UC fxp0 fe80::2e0:81ff:fe10:10a7%fxp0 0:e0:81:10:10:a7 UHLW fxp0 fe80::a00:46ff:fe05:6a43%fxp0 8:0:46:5:6a:43 UHLW lo0 fe80::%gif0/64 link#2 UC gif0 fe80::2a0:ccff:fe35:91c7%gif0 link#2 UHLW gif0 fe80::a00:46ff:fe05:6a43%gif0 ::1 UH lo0 fe80::%lo0/64 fe80::1%lo0 Uc lo0 fe80::%an0/64 link#7 UC an0 fe80::240:96ff:fe31:e63c%an0 0:40:96:31:e6:3c UHLW lo0 fe80::240:96ff:fe33:a3e7%an0 0:40:96:33:a3:e7 UHLW an0 fec0:1::2e0:81ff:fe10:10a7 0:e0:81:10:10:a7 UHLW fxp0 fec0:2::/64 link#7 UC an0 fec0:2::240:96ff:fe33:a3e7 0:40:96:33:a3:e7 UHLW an0 ff01::/32 ::1 U lo0 ff02::/16 link#1 UCS fxp0 ff02::%fxp0/32 link#1 UC fxp0 ff02::%gif0/32 link#2 UC gif0 ff02::%lo0/32 fe80::1%lo0 UC lo0 ff02::%an0/32 link#7 UC an0 # ping6 ff02::1%an0 PING6(56=40+8+8 bytes) fe80::240:96ff:fe31:e63c%an0 --> ff02::1%an0 16 bytes from fe80::240:96ff:fe31:e63c%an0, icmp_seq=0 hlim=64 time=0.377 ms 16 bytes from fe80::240:96ff:fe33:a3e7%an0, icmp_seq=0 hlim=64 time=1.608 ms(DUP!) 16 bytes from fe80::240:96ff:fe31:e63c%an0, icmp_seq=1 hlim=64 time=0.283 ms 16 bytes from fe80::240:96ff:fe33:a3e7%an0, icmp_seq=1 hlim=64 time=1.507 ms(DUP!) 16 bytes from fe80::240:96ff:fe31:e63c%an0, icmp_seq=2 hlim=64 time=0.282 ms 16 bytes from fe80::240:96ff:fe33:a3e7%an0, icmp_seq=2 hlim=64 time=1.512 ms(DUP!) ^C --- ff02::1%an0 ping6 statistics --- 3 packets transmitted, 3 packets received, +3 duplicates, 0% packet loss round-trip min/avg/max = 0.282/0.928/1.608 ms # ping6 fe80::240:96ff:fe33:a3e7 PING6(56=40+8+8 bytes) fe80::a00:46ff:fe05:6a43%fxp0 --> fe80::240:96ff:fe33:a3e7 ^C --- fe80::240:96ff:fe33:a3e7 ping6 statistics --- 6 packets transmitted, 0 packets received, 100% packet loss # dmesg | tail -n 3 ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) # netstat -rn Routing tables Internet: Destination Gateway Flags Netif Expire 127.0.0.1 127.0.0.1 UH 0 0 lo0 Internet6: Destination Gateway Flags Netif Expire ::1 ::1 UH lo0 fe80::/10 link#1 UCS fxp0 fe80::%fxp0/64 link#1 UC fxp0 fe80::2e0:81ff:fe10:10a7%fxp0 0:e0:81:10:10:a7 UHLW fxp0 fe80::a00:46ff:fe05:6a43%fxp0 8:0:46:5:6a:43 UHLW lo0 fe80::%gif0/64 link#2 UC gif0 fe80::2a0:ccff:fe35:91c7%gif0 link#2 UHLW gif0 fe80::a00:46ff:fe05:6a43%gif0 ::1 UH lo0 fe80::%lo0/64 fe80::1%lo0 Uc lo0 fe80::%an0/64 link#7 UC an0 fe80::240:96ff:fe31:e63c%an0 0:40:96:31:e6:3c UHLW lo0 fe80::240:96ff:fe33:a3e7%an0 0:40:96:33:a3:e7 UHLW an0 fec0:1::2e0:81ff:fe10:10a7 0:e0:81:10:10:a7 UHLW fxp0 fec0:2::/64 link#7 UC an0 fec0:2::240:96ff:fe33:a3e7 0:40:96:33:a3:e7 UHLW an0 ff01::/32 ::1 U lo0 ff02::/16 link#1 UCS fxp0 ff02::%fxp0/32 link#1 UC fxp0 ff02::%gif0/32 link#2 UC gif0 ff02::%lo0/32 fe80::1%lo0 UC lo0 ff02::%an0/32 link#7 UC an0 # Script done on Fri Sep 15 07:46:04 2000 ==== gateway (spawn) ==== Script started on Fri Sep 15 07:48:51 2000 $ uname -a FreeBSD spawn.nectar.com 4.1-STABLE FreeBSD 4.1-STABLE #2: Sun Sep 10 21:55:37 CDT 2000 root@spawn.nectar.com:/var/obj/usr/src/sys/SPAWN i386 $ ifconfig -a dc0: flags=8843 mtu 1500 inet 208.42.49.153 netmask 0xfffffffc broadcast 208.42.49.155 inet6 fe80::2a0:ccff:fe35:91c7%dc0 prefixlen 64 scopeid 0x1 inet 10.0.0.2 netmask 0xffffff00 broadcast 10.0.0.255 ether 00:a0:cc:35:91:c7 media: autoselect (100baseTX ) status: active supported media: autoselect 100baseTX 100baseTX 10baseT/UTP 10baseT/UTP 100baseTX none fxp0: flags=8843 mtu 1500 inet 10.0.1.101 netmask 0xffffff00 broadcast 10.0.1.255 inet6 fe80::2e0:81ff:fe10:10a7%fxp0 prefixlen 64 scopeid 0x2 inet6 fec0:1::2e0:81ff:fe10:10a7 prefixlen 64 inet6 fec0:1:: prefixlen 64 anycast ether 00:e0:81:10:10:a7 media: autoselect (100baseTX) status: active supported media: autoselect 100baseTX 100baseTX 10baseT/UTP 10baseT/UTP an0: flags=8843 mtu 1500 inet6 fe80::240:96ff:fe33:a3e7%an0 prefixlen 64 scopeid 0x3 inet6 fec0:2::240:96ff:fe33:a3e7 prefixlen 64 inet6 fec0:2:: prefixlen 64 anycast ether 00:40:96:33:a3:e7 lp0: flags=8810 mtu 1500 lo0: flags=8049 mtu 16384 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff000000 gif0: flags=8011 mtu 1280 inet6 fe80::2a0:ccff:fe35:91c7%gif0 --> :: prefixlen 64 scopeid 0x6 inet 10.5.5.1 --> 10.5.5.2 netmask 0xfffffffc gif1: flags=8010 mtu 1280 gif2: flags=8010 mtu 1280 gif3: flags=8010 mtu 1280 faith0: flags=8000 mtu 1500 $ netstat -rn Routing tables Internet: Destination Gateway Flags Netif Expire default 208.42.49.154 UGSc 26 3008 dc0 10/24 link#1 UC 0 0 dc0 => 10.0.1/24 link#2 UC 0 0 fxp0 => 10.0.1.101 0:e0:81:10:10:a7 UHLW 6 3181 lo0 10.0.1.102 0:a0:cc:35:8e:6a UHLW 3 56579 fxp0 1123 10.0.1.105 0:60:8:92:5e:fa UHLW 1 2194 fxp0 1043 10.0.1.255 ff:ff:ff:ff:ff:ff UHLWb 2 181 fxp0 10.5.5.2 10.5.5.1 UH 4 8335 gif0 127.0.0.1 127.0.0.1 UH 1 538 lo0 208.42.49.152/30 link#1 UC 0 0 dc0 => 208.42.49.153 0:a0:cc:35:91:c7 UHLW 3 391 lo0 208.42.49.154 0:e0:d0:11:34:88 UHLW 24 0 dc0 1099 Internet6: Destination Gateway Flags Netif Expire ::/96 ::1 UGRSc lo0 ::1 ::1 UH lo0 ::ffff:0.0.0.0/96 ::1 UGRSc lo0 fe80::/10 link#2 UCS fxp0 fe80::%dc0/64 link#1 UC dc0 fe80::%fxp0/64 link#2 UC fxp0 fe80::2e0:81ff:fe10:10a7%fxp0 0:e0:81:10:10:a7 UHLW lo0 fe80::a00:46ff:fe05:6a43%fxp0 8:0:46:5:6a:43 UHLW fxp0 fe80::%an0/64 link#3 UC an0 fe80::240:96ff:fe31:e63c%an0 0:40:96:31:e6:3c UHLW an0 fe80::240:96ff:fe33:a3e7%an0 0:40:96:33:a3:e7 UHLW lo0 fe80::%lo0/64 fe80::1%lo0 Uc lo0 fe80::%gif0/64 link#6 UC gif0 fe80::2a0:ccff:fe35:91c7%gif0 ::1 UH lo0 fe80::a00:46ff:fe05:6a43%gif0 link#6 UHLW gif0 fec0:1::/64 link#2 UC fxp0 fec0:1::2e0:81ff:fe10:10a7 0:e0:81:10:10:a7 UHLW lo0 fec0:1::a00:46ff:fe05:6a43 8:0:46:5:6a:43 UHLW fxp0 fec0:2::/64 link#3 UC an0 fec0:2::240:96ff:fe33:a3e7 fe80::240:96ff:fe31:e63c%an0 UGH an0 ff01::/32 ::1 U lo0 ff02::/16 link#2 UCS fxp0 ff02::%dc0/32 link#1 UC dc0 ff02::%fxp0/32 link#2 UC fxp0 ff02::%an0/32 link#3 UC an0 ff02::%lo0/32 fe80::1%lo0 UC lo0 ff02::%gif0/32 link#6 UC gif0 $ Script done on Fri Sep 15 07:49:02 2000 Thanks, -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 5:57:27 2000 Delivered-To: freebsd-net@freebsd.org Received: from iclub.nsu.ru (iclub.nsu.ru [193.124.222.66]) by hub.freebsd.org (Postfix) with ESMTP id 81BEB37B43F for ; Fri, 15 Sep 2000 05:57:18 -0700 (PDT) Received: from localhost (fjoe@localhost) by iclub.nsu.ru (8.9.3/8.9.3) with ESMTP id TAA74454; Fri, 15 Sep 2000 19:53:57 +0700 (NSS) (envelope-from fjoe@iclub.nsu.ru) Date: Fri, 15 Sep 2000 19:53:57 +0700 (NSS) From: Max Khon To: "Jacques A. Vidrine" Cc: Mike Nowlin , freebsd-net@FreeBSD.ORG Subject: Re: NIS replacement In-Reply-To: <20000915070537.A2484@spawn.nectar.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi, there! On Fri, 15 Sep 2000, Jacques A. Vidrine wrote: > On Fri, Sep 15, 2000 at 02:17:39PM +0700, Max Khon wrote: > > NSS has been committed to -current recently. > > There are plans to implement dynamic modules and MFC it before 4.2-RELEASE > > IIRC. Check out http://www.padl.com/ for NSS+LDAP solution. > > padl.com also has a NIS<-->LDAP gateway that could be used now. yes, forgot about NIS<->LDAP. but they do not distribute FreeBSD version and it is commercial. NSS<->LDAP is free (GPL). /fjoe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 6: 3:25 2000 Delivered-To: freebsd-net@freebsd.org Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by hub.freebsd.org (Postfix) with ESMTP id 21A9437B43E; Fri, 15 Sep 2000 06:03:18 -0700 (PDT) Received: (from babolo@localhost) by aaz.links.ru (8.9.3/8.9.3) id RAA17646; Fri, 15 Sep 2000 17:03:11 +0400 (MSD) Message-Id: <200009151303.RAA17646@aaz.links.ru> Subject: Re: need a recommendation of NIC In-Reply-To: <14785.45919.363291.506910@vbook.express.ru> from "Vladimir B. Grebenschikov" at "Sep 15, 0 09:27:59 am" To: vova@express.ru (Vladimir B. Grebenschikov) Date: Fri, 15 Sep 2000 17:03:10 +0400 (MSD) Cc: zhanghao@nortelnetworks.com, freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG From: "Aleksandr A.Babaylov" MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Vladimir B. Grebenschikov writes: > Hao Zhang writes: > > I am doing some testing on FreeBSD 3.3 platform by sending some UDP packets > > thru FreeBSD routers. It's found that the duplications happened in FreeBSD router. > > Now The FreeBSD 3.3 is running on Pentium III, and NIC is 3C905B-Tx. To isolate this > > problem. We will try different NIC. Can anyone give me some recommendation for the > > high performance NIC for FreeBSD 3.3. Thanks in advance for any comments. > > Intell EtherExpress > fxp driver in FreeBSD, I think it best low-cost ethernet card for > FreeBSD now. As far as I know EtherExpress has hardware bug. The easy way to trigger it is connect 2 EtherExpress by crossover cable and load by traffic. -- @BABOLO http://links.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 6:36: 9 2000 Delivered-To: freebsd-net@freebsd.org Received: from euitt.upm.es (haddock.euitt.upm.es [138.100.52.102]) by hub.freebsd.org (Postfix) with ESMTP id C8A2A37B42C; Fri, 15 Sep 2000 06:35:54 -0700 (PDT) Received: from deneb.euitt.upm.es (deneb.euitt.upm.es [138.100.52.12]) by euitt.upm.es (8.9.3/8.9.3) with ESMTP id PAA00639; Fri, 15 Sep 2000 15:34:43 +0200 (MET DST) Date: Fri, 15 Sep 2000 15:34:43 +0200 (CEST) From: "Pedro J. Lobo" To: "Aleksandr A.Babaylov" Cc: "Vladimir B. Grebenschikov" , zhanghao@nortelnetworks.com, freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: need a recommendation of NIC In-Reply-To: <200009151303.RAA17646@aaz.links.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8BIT Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 15 Sep 2000, Aleksandr A.Babaylov wrote: > Vladimir B. Grebenschikov writes: > > > > Intell EtherExpress > > fxp driver in FreeBSD, I think it best low-cost ethernet card for > > FreeBSD now. > As far as I know EtherExpress has hardware bug. > The easy way to trigger it is connect 2 EtherExpress by > crossover cable and load by traffic. :-? I've been using Pro/100 cards for years, and I've always found them rock stable. Can you explain us a bit more? -- --------------------------------------------------------------------- Pedro José Lobo Perea Tel: +34 91 336 78 19 Centro de Cálculo Fax: +34 91 331 92 29 E.U.I.T. Telecomunicación e-mail: pjlobo@euitt.upm.es Universidad Politécnica de Madrid Ctra. de Valencia, Km. 7 E-28031 Madrid - España / Spain To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 7:18:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from ertpg14e1.nortelnetworks.com (ertpg14e1.nortelnetworks.com [47.234.0.35]) by hub.freebsd.org (Postfix) with ESMTP id D7A9537B423; Fri, 15 Sep 2000 07:18:38 -0700 (PDT) Received: from zrtpd004.us.nortel.com (actually zrtpd004) by ertpg14e1.nortelnetworks.com; Fri, 15 Sep 2000 10:17:28 -0400 Received: by zrtpd004.us.nortel.com with Internet Mail Service (5.5.2652.35) id ; Fri, 15 Sep 2000 10:17:28 -0400 Message-ID: From: "Hao Zhang" To: "'Pedro J. Lobo'" , "Aleksandr A.Babaylov" Cc: freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: RE: need a recommendation of NIC Date: Fri, 15 Sep 2000 10:17:25 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2652.35) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C01F1F.ABCED500" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C01F1F.ABCED500 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Thanks for your info. I'm using FreeBSD v3.3 which suppports The PRO/100B with chipset 82558. = If I want to use Intel Pro/100+ with the 82559 chipset, what driver should I = use? fxp?=20 -Hao -----Original Message----- From: Pedro J. Lobo [mailto:pjlobo@euitt.upm.es] Sent: Friday, September 15, 2000 9:35 AM To: Aleksandr A.Babaylov Cc: Vladimir B. Grebenschikov; Zhang, Hao [WDLN2:AN22:EXCH]; freebsd-hackers@FreeBSD.ORG; freebsd-net@FreeBSD.ORG Subject: Re: need a recommendation of NIC On Fri, 15 Sep 2000, Aleksandr A.Babaylov wrote: > Vladimir B. Grebenschikov writes: > >=20 > > Intell EtherExpress > > fxp driver in FreeBSD, I think it best low-cost ethernet card for > > FreeBSD now. > As far as I know EtherExpress has hardware bug. > The easy way to trigger it is connect 2 EtherExpress by > crossover cable and load by traffic. :-? I've been using Pro/100 cards for years, and I've always found them rock stable. Can you explain us a bit more? --=20 --------------------------------------------------------------------- Pedro Jos=E9 Lobo Perea Tel: +34 91 336 78 19 Centro de C=E1lculo Fax: +34 91 331 92 29 E.U.I.T. Telecomunicaci=F3n e-mail: pjlobo@euitt.upm.es Universidad Polit=E9cnica de Madrid Ctra. de Valencia, Km. 7 E-28031 Madrid - Espa=F1a / Spain To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message ------_=_NextPart_001_01C01F1F.ABCED500 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: need a recommendation of NIC

Thanks for your info.
I'm using FreeBSD v3.3 which suppports The PRO/100B = with chipset 82558. If I want to use Intel Pro/100+ with the 82559 = chipset, what driver should I use? fxp?

-Hao



-----Original Message-----
From: Pedro J. Lobo [mailto:pjlobo@euitt.upm.es]
Sent: Friday, September 15, 2000 9:35 AM
To: Aleksandr A.Babaylov
Cc: Vladimir B. Grebenschikov; Zhang, Hao = [WDLN2:AN22:EXCH];
freebsd-hackers@FreeBSD.ORG; = freebsd-net@FreeBSD.ORG
Subject: Re: need a recommendation of NIC


On Fri, 15 Sep 2000, Aleksandr A.Babaylov = wrote:

> Vladimir B. Grebenschikov writes:
> >
> > Intell EtherExpress
> > fxp driver in FreeBSD, I think it best = low-cost ethernet card for
> > FreeBSD now.
> As far as I know EtherExpress has hardware = bug.
> The easy way to trigger it is connect 2 = EtherExpress by
> crossover cable and load by traffic.

:-? I've been using Pro/100 cards for years, and I've = always found them
rock stable. Can you explain us a bit more?

--
---------------------------------------------------------------= ------
Pedro Jos=E9 Lobo = Perea           &= nbsp;    Tel:    +34 91 336 78 19
Centro de = C=E1lculo          &nb= sp;         = Fax:    +34 91 331 92 29
E.U.I.T. = Telecomunicaci=F3n         =    e-mail: pjlobo@euitt.upm.es
Universidad Polit=E9cnica de Madrid
Ctra. de Valencia, Km. = 7            = ; E-28031 Madrid - Espa=F1a / Spain



To Unsubscribe: send mail to = majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the = body of the message

------_=_NextPart_001_01C01F1F.ABCED500-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 7:29:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from aaz.links.ru (aaz.links.ru [193.125.152.37]) by hub.freebsd.org (Postfix) with ESMTP id 238B137B423; Fri, 15 Sep 2000 07:29:33 -0700 (PDT) Received: (from babolo@localhost) by aaz.links.ru (8.9.3/8.9.3) id SAA22804; Fri, 15 Sep 2000 18:28:02 +0400 (MSD) Message-Id: <200009151428.SAA22804@aaz.links.ru> Subject: Re: need a recommendation of NIC In-Reply-To: from "Pedro J. Lobo" at "Sep 15, 0 03:34:43 pm" To: pjlobo@euitt.upm.es (Pedro J. Lobo) Date: Fri, 15 Sep 2000 18:28:02 +0400 (MSD) Cc: babolo@links.ru, vova@express.ru, zhanghao@nortelnetworks.com, freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG From: "Aleksandr A.Babaylov" MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Pedro J. Lobo writes: [Charset ISO-8859-1 unsupported, filtering to ASCII...] > On Fri, 15 Sep 2000, Aleksandr A.Babaylov wrote: > > > Vladimir B. Grebenschikov writes: > > > > > > Intell EtherExpress > > > fxp driver in FreeBSD, I think it best low-cost ethernet card for > > > FreeBSD now. > > As far as I know EtherExpress has hardware bug. > > The easy way to trigger it is connect 2 EtherExpress by > > crossover cable and load by traffic. > > :-? I've been using Pro/100 cards for years, and I've always found them > rock stable. Can you explain us a bit more? My mail based on message from David Greenman : http://www.FreeBSD.org/cgi/getmsg.cgi?fetch=45338+47352+/usr/local/www/db/text/1998/freebsd-hackers/19981025.freebsd-hackers -- @BABOLO http://links.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 9:44:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 401EC37B424 for ; Fri, 15 Sep 2000 09:44:54 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id BAA04970; Sat, 16 Sep 2000 01:28:17 +0900 (JST) Date: Sat, 16 Sep 2000 01:44:14 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Jacques A. Vidrine" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src In-Reply-To: In your message of "Fri, 15 Sep 2000 07:55:59 -0500" <20000915075559.A6743@hamlet.nectar.com> References: <20000914201817.A1041@spawn.nectar.com> <20000915075559.A6743@hamlet.nectar.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 23 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Fri, 15 Sep 2000 07:55:59 -0500, >>>>> "Jacques A. Vidrine" said: > $ uname -a > an0: flags=8843 mtu 1500 > inet6 fe80::240:96ff:fe33:a3e7%an0 prefixlen 64 scopeid 0x3 > inet6 fec0:2::240:96ff:fe33:a3e7 prefixlen 64 How did you configure the site-local address? It is very strange that the routing table has a routing entry corresponding to the site-local address with another node as the gateway: > $ netstat -rn > Internet6: > Destination Gateway Flags Netif Expire > fe80::240:96ff:fe31:e63c%an0 0:40:96:31:e6:3c UHLW an0 > fec0:2::240:96ff:fe33:a3e7 fe80::240:96ff:fe31:e63c%an0 UGH an0 JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 9:49:40 2000 Delivered-To: freebsd-net@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id A0D6437B422 for ; Fri, 15 Sep 2000 09:49:37 -0700 (PDT) Received: from hamlet.nectar.com (hamlet.nectar.com [10.0.1.102]) by gw.nectar.com (Postfix) with ESMTP id A4B051925D; Fri, 15 Sep 2000 11:49:36 -0500 (CDT) Received: (from nectar@localhost) by hamlet.nectar.com (8.9.3/8.9.3) id LAA07672; Fri, 15 Sep 2000 11:49:36 -0500 (CDT) (envelope-from nectar@spawn.nectar.com) Date: Fri, 15 Sep 2000 11:49:36 -0500 From: "Jacques A. Vidrine" To: "JINMEI Tatuya / ?$B?@L@C#:H?(B" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src Message-ID: <20000915114936.E7599@hamlet.nectar.com> Mail-Followup-To: "Jacques A. Vidrine" , "JINMEI Tatuya / ?$B?@L@C#:H?(B" , freebsd-net@FreeBSD.ORG References: <20000914201817.A1041@spawn.nectar.com> <20000915075559.A6743@hamlet.nectar.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from jinmei@isl.rdc.toshiba.co.jp on Sat, Sep 16, 2000 at 01:44:14AM +0900 X-Url: http://www.nectar.com/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, Sep 16, 2000 at 01:44:14AM +0900, JINMEI Tatuya / ?$B?@L@C#:H?(B wrote: > How did you configure the site-local address? rtsol on ophelia; prefix on spawn (via ipv6_prefix_an0="fec0:2" in /etc/rc.conf). > It is very strange that > the routing table has a routing entry corresponding to the site-local > address with another node as the gateway: Could a misfunction card cause this? -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 10:17:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from ds-01.itg.discovery.com (ops.itg.discovery.com [198.147.13.130]) by hub.freebsd.org (Postfix) with ESMTP id 8EA7A37B423; Fri, 15 Sep 2000 10:17:26 -0700 (PDT) Received: by ds-01.itg.discovery.com; id NAA21959; Fri, 15 Sep 2000 13:16:51 -0400 (EDT) Received: by bet-su5-23.itg.discovery.com; id RAA09229; Fri, 15 Sep 2000 17:17:05 GMT Message-ID: <39C25991.1A261861@freebsd.org> Date: Fri, 15 Sep 2000 17:17:05 +0000 From: Patrick Gardella X-Mailer: Mozilla 4.61 [en] (X11; U; SunOS 5.7 sun4u) X-Accept-Language: en MIME-Version: 1.0 To: "Aleksandr A.Babaylov" Cc: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org Subject: Re: need a recommendation of NIC References: <200009151428.SAA22804@aaz.links.ru> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org "Aleksandr A.Babaylov" wrote: > > Pedro J. Lobo writes: > [Charset ISO-8859-1 unsupported, filtering to ASCII...] > > On Fri, 15 Sep 2000, Aleksandr A.Babaylov wrote: > > > > > Vladimir B. Grebenschikov writes: > > > > > > > > Intell EtherExpress > > > > fxp driver in FreeBSD, I think it best low-cost ethernet card for > > > > FreeBSD now. > > > As far as I know EtherExpress has hardware bug. > > > The easy way to trigger it is connect 2 EtherExpress by > > > crossover cable and load by traffic. > > > > :-? I've been using Pro/100 cards for years, and I've always found them > > rock stable. Can you explain us a bit more? > My mail based on message from David Greenman : > http://www.FreeBSD.org/cgi/getmsg.cgi?fetch=45338+47352+/usr/local/www/db/text/1998/freebsd-hackers/19981025.freebsd-hackers So don't use cross-over cables :) Patrick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 10:27: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id A55D537B43C for ; Fri, 15 Sep 2000 10:26:57 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id CAA05269; Sat, 16 Sep 2000 02:10:22 +0900 (JST) Date: Sat, 16 Sep 2000 02:26:19 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Jacques A. Vidrine" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src In-Reply-To: In your message of "Fri, 15 Sep 2000 11:49:36 -0500" <20000915114936.E7599@hamlet.nectar.com> References: <20000914201817.A1041@spawn.nectar.com> <20000915075559.A6743@hamlet.nectar.com> <20000915114936.E7599@hamlet.nectar.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 23 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Fri, 15 Sep 2000 11:49:36 -0500, >>>>> "Jacques A. Vidrine" said: >> How did you configure the site-local address? > rtsol on ophelia; prefix on spawn (via ipv6_prefix_an0="fec0:2" in > /etc/rc.conf). >> It is very strange that >> the routing table has a routing entry corresponding to the site-local >> address with another node as the gateway: > Could a misfunction card cause this? Not sure, but one possibility is that the entry was installed via a routing daemon (e.g. route6d). So, if you have time, could you try the same configuration without any (IPv6) routing daemons? Does the entry still exist? JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 10:59:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from dayspring.firedrake.org (dayspring.firedrake.org [195.82.105.251]) by hub.freebsd.org (Postfix) with ESMTP id 978BA37B42C; Fri, 15 Sep 2000 10:59:47 -0700 (PDT) Received: from float by dayspring.firedrake.org with local (Exim 3.12 #1 (Debian)) id 13ZzlA-0005hy-00; Fri, 15 Sep 2000 18:58:48 +0100 Date: Fri, 15 Sep 2000 18:58:48 +0100 To: Hao Zhang Cc: "'Pedro J. Lobo'" , "Aleksandr A.Babaylov" , freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: need a recommendation of NIC Message-ID: <20000915185848.A21753@firedrake.org> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from zhanghao@nortelnetworks.com on Fri, Sep 15, 2000 at 10:17:25AM -0400 From: void Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, Sep 15, 2000 at 10:17:25AM -0400, Hao Zhang wrote: > Thanks for your info. > I'm using FreeBSD v3.3 which suppports The PRO/100B with chipset 82558. If I > want to use Intel Pro/100+ with the 82559 chipset, what driver should I use? > fxp? Yes. -- Ben 220 go.ahead.make.my.day ESMTP Postfix To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 14: 4:15 2000 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (oe46.law9.hotmail.com [64.4.8.18]) by hub.freebsd.org (Postfix) with ESMTP id 9D53637B422 for ; Fri, 15 Sep 2000 14:04:13 -0700 (PDT) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 15 Sep 2000 14:04:13 -0700 X-Originating-IP: [194.109.60.172] From: "Vincent Bruijnes" To: Subject: ip delegating.... Date: Fri, 15 Sep 2000 23:01:50 +0200 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Message-ID: X-OriginalArrivalTime: 15 Sep 2000 21:04:13.0638 (UTC) FILETIME=[804B5E60:01C01F58] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org If you want to deticate an ip address to a specific user on the system, to let him use that ip for irc e.g. would you use jail or something else? Hope to hear from you, Vincent Bruijnes To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 14: 6:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20]) by hub.freebsd.org (Postfix) with ESMTP id 15C6E37B422 for ; Fri, 15 Sep 2000 14:06:29 -0700 (PDT) Received: (from bright@localhost) by fw.wintelcom.net (8.10.0/8.10.0) id e8FL6Sb10800; Fri, 15 Sep 2000 14:06:28 -0700 (PDT) Date: Fri, 15 Sep 2000 14:06:28 -0700 From: Alfred Perlstein To: Vincent Bruijnes Cc: freebsd-net@FreeBSD.ORG Subject: Re: ip delegating.... Message-ID: <20000915140628.N12231@fw.wintelcom.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i In-Reply-To: ; from vinxs_@hotmail.com on Fri, Sep 15, 2000 at 11:01:50PM +0200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * Vincent Bruijnes [000915 14:04] wrote: > If you want to deticate an ip address to a specific user on the system, > to let him use that ip for irc e.g. would you use jail or something else? Jail would be a good way of doing that sort of restriction. So would ipfw. -Alfred To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 15: 1:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from telcom.columbia.k12.mo.us (telcom.columbia.k12.mo.us [198.209.97.194]) by hub.freebsd.org (Postfix) with ESMTP id 2909A37B422; Fri, 15 Sep 2000 15:01:43 -0700 (PDT) Received: (from ishmael@localhost) by telcom.columbia.k12.mo.us (8.9.3/8.9.3) id RAA00359; Fri, 15 Sep 2000 17:01:42 -0500 (CDT) (envelope-from ishmael) Date: Fri, 15 Sep 2000 17:01:42 -0500 From: Jeremy Norris To: security@FreeBSD.ORG Cc: net@FreeBSD.ORG Subject: ip filtering along side ipx Message-ID: <20000915170142.B321@telcomm.columbia.k12.mo.us> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.4i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm attempting to implement a firewall in a building on our WAN using ipfilter and 4.1-release. Since we are a Novell shop, it needs to be able to route all the IPX traffic through untouched. I've read through the manpages about IPXrouted, and also read through the info at http://people.freebsd.org/~bp , but I'm not sure how to set it up correctly. Can I ifconfig both ethernet interfaces with the same network number and enable IPXrouted (along with ipxgateway enabled) or is it more complex? Jeremy PS CC all replies to me, I'm not subscribed to the lists. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 16: 5: 5 2000 Delivered-To: freebsd-net@freebsd.org Received: from sasami.jurai.net (sasami.jurai.net [63.67.141.99]) by hub.freebsd.org (Postfix) with ESMTP id AAD9D37B424; Fri, 15 Sep 2000 16:05:01 -0700 (PDT) Received: from localhost (winter@localhost) by sasami.jurai.net (8.9.3/8.8.7) with ESMTP id TAA06616; Fri, 15 Sep 2000 19:04:58 -0400 (EDT) Date: Fri, 15 Sep 2000 19:04:58 -0400 (EDT) From: "Matthew N. Dodd" To: Jeremy Norris Cc: security@FreeBSD.ORG, net@FreeBSD.ORG Subject: Re: ip filtering along side ipx In-Reply-To: <20000915170142.B321@telcomm.columbia.k12.mo.us> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 15 Sep 2000, Jeremy Norris wrote: > Can I ifconfig both ethernet interfaces with the same network number > and enable IPXrouted (along with ipxgateway enabled) or is it more > complex? I setup my 2 ethernet interfaces with differnet IPX networks, enabled ipxgateway and IPXrouted and everything works. Granted I've only got a single server and performed only a single test on the remote network, but I don't think you should have any problem. -- | Matthew N. Dodd | '78 Datsun 280Z | '75 Volvo 164E | FreeBSD/NetBSD | | winter@jurai.net | 2 x '84 Volvo 245DL | ix86,sparc,pmax | | http://www.jurai.net/~winter | This Space For Rent | ISO8802.5 4ever | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 17: 4:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from dustdevil.waterspout.com (dustdevil.indy.progenylinux.com [64.64.82.245]) by hub.freebsd.org (Postfix) with ESMTP id 24CCA37B422 for ; Fri, 15 Sep 2000 17:04:43 -0700 (PDT) Received: (from csg@localhost) by dustdevil.waterspout.com (8.9.3/8.9.3) id TAA06348; Fri, 15 Sep 2000 19:10:08 -0500 (EST) (envelope-from csg) Date: Fri, 15 Sep 2000 19:10:08 -0500 From: "C. Stephen Gunn" To: Wes Peters Cc: Seigo Tanimura , freebsd-net@FreeBSD.ORG Subject: Re: the ifp to a removed pcmcia ethernet card is left in struct ip_moptions and struct ifmultiaddr Message-ID: <20000915191008.A6079@waterspout.com> References: <14772.34738.630468.85559N@rina> <39B59BB9.22C4BDFE@softweyr.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <39B59BB9.22C4BDFE@softweyr.com>; from wes@softweyr.com on Tue, Sep 05, 2000 at 07:19:53PM -0600 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Sep 05, 2000 at 07:19:53PM -0600, Wes Peters wrote: > The full solution would be to implement ifs a full objects, and to > always check the state of the interface before trying to exercise an > associated function. It's an ugly problem with no real simple solutions > (in C). I was thinking about this issue (since it hits my VAIO once in a while). You could minimize the effect by defining reasonable "the device is gone" routines for the ifnet callbacks. Future attempts to use the ifnet would simply return the appropriate error. You also might want to add an IFF_DETACHED flag (I know the flags word is currently full), and stick this defunct ifnet on a list (to recycle at a later date). Perhaps sticking it on the recycle list, and replacing the function table is sufficient indication that this interface is not around. If you get the ethernet (and other ifnet consumers) drivers to use an allocator function for ifnet(s), then that allocator could recycle the old struct, or malloc() a new one as appropriate. struct ifnet *ifnet_alloc(char *ifname); NOTE: A cursory glance at the implementation, leads me to believe that newbus is allocating most of the device->softc(s), and therefore the struct ifnet/arpcom to boot. There's still the potential for problems, especially with lingering connnections that aren't necessairly intended for the new network connection. However, I estimate that the likelyhood of connecting to the same network is pretty high. - Steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 17:16:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.butya.kz (butya-gw.butya.kz [212.154.129.94]) by hub.freebsd.org (Postfix) with ESMTP id DE26F37B422; Fri, 15 Sep 2000 17:16:05 -0700 (PDT) Received: by relay.butya.kz (Postfix, from userid 1000) id 02AB5287F4; Sat, 16 Sep 2000 07:16:01 +0700 (ALMST) Received: from localhost (localhost [127.0.0.1]) by relay.butya.kz (Postfix) with ESMTP id E85BE287F3; Sat, 16 Sep 2000 07:16:01 +0700 (ALMST) Date: Sat, 16 Sep 2000 07:16:01 +0700 (ALMST) From: Boris Popov To: Jeremy Norris Cc: security@FreeBSD.ORG, net@FreeBSD.ORG Subject: Re: ip filtering along side ipx In-Reply-To: <20000915170142.B321@telcomm.columbia.k12.mo.us> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 15 Sep 2000, Jeremy Norris wrote: > I'm attempting to implement a firewall in a building on our WAN using > ipfilter and 4.1-release. Since we are a Novell shop, it needs to be able to > route all the IPX traffic through untouched. I've read through the manpages > about IPXrouted, and also read through the info at > http://people.freebsd.org/~bp , but I'm not sure how to set it up correctly. > Can I ifconfig both ethernet interfaces with the same network number and enable > IPXrouted (along with ipxgateway enabled) or is it more complex? No, each interface should have its own IPX network number just like when you configure NetWare server with multiple ethernet adapaters. IPX traffic are not affected by IP filtering programms. -- Boris Popov http://www.butya.kz/~bp/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 15 17:54:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from gluttony.henshaw.net (gluttony.henshaw.net [63.70.222.4]) by hub.freebsd.org (Postfix) with SMTP id 1504637B423 for ; Fri, 15 Sep 2000 17:54:43 -0700 (PDT) Received: (qmail 41989 invoked from network); 16 Sep 2000 00:54:34 -0000 Received: from dhcp-64-58-25-247.henshaw.net (HELO Ben.cyalchemy.com) (64.58.25.247) by gluttony.henshaw.net with SMTP; 16 Sep 2000 00:54:34 -0000 Message-Id: <5.0.0.25.2.20000915183859.026c2310@pop.henshaw.net> X-Sender: ben%henshaw.net@pop.henshaw.net X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Fri, 15 Sep 2000 18:54:49 -0600 To: Julian Elischer From: Ben Schumacher Subject: Re: netgraph based MAC authentication Cc: freebsd-net@freebsd.org In-Reply-To: <39C089D8.167EB0E7@elischer.org> References: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 01:18 AM 9/14/2000 -0700, Julian Elischer wrote: >back to the ethernet inteface.... >in 5.x and 4.x (not sure about 3.x) the ethernet interface has >upper and lower hooks.. > >If you receive a packet on "lower", and it's ok, then pass it back to >'upper' >to continue on it's way. >(and visa versa) Alright, I have starting working on a daemon that connects to the upper and lower hooks on my interface, and pulls the MAC address from the packet and sends the packet on its way. This all seems to be working properly, most of the time. The two problems I'm having right now is that ARP packets don't seem to be forwarding correctly through my daemon and more importantly, DHCP packets seem to cause kernel panics. Basically my code is a slight modified version of nghook. Here's the relavent portions: while(1) { fd_set rfds; FD_ZERO(&rfds); FD_SET(0, &rfds); FD_SET(dsock, &rfds); if (select(FD_SETSIZE, &rfds, NULL, NULL, NULL) < 0) err(EX_OSERR, "select"); if (FD_ISSET(dsock, &rfds)) { time_t now; u_char buf[BUF_SIZE]; char ihook[NG_HOOKLEN+1]; char *ohook; int rl; if ((rl = NgRecvData(dsock, buf, sizeof(buf), ihook)) < 0) err(EX_OSERR, "read(hook)"); if (rl == 0) errx(EX_OSERR, "read EOF from hook?!"); now = time(NULL); printf("%ld: RECV - HOOK: %s, BYTES: %d " "(SRC: %02x:%02x:%02x:%02x:%02x:%02x)\n", now, ihook, rl, buf[6], buf[7], buf[8], buf[9], buf[10], buf[11]); if (!strcmp(ihook, NG_SOCK_UHOOK_NAME)) { ohook = NG_SOCK_LHOOK_NAME; } else if (!strcmp(ihook, NG_SOCK_LHOOK_NAME)) { ohook = NG_SOCK_UHOOK_NAME; } else { errx(EX_OSERR, "data received on unknown hook?!"); } if (NgSendData(dsock, ohook, buf, rl) < 0) { err(EX_OSERR, "NgSendData(%s)", ohook); } now = time(NULL); printf("%ld: SENT - HOOK: %s, BYTES: %d " "(TAR: %02x:%02x:%02x:%02x:%02x:%02x)\n", now, ohook, rl, buf[0], buf[1], buf[2], buf[3], buf[4], buf[5]); } } Can anybody give me any insight as to why this might be having the problems I mentioned above? I realize it might be better to do what I'm trying to do as a node, but since I have little experience using mbuf's, and haven't been able to figure out where MAC address are stored in these, I thought this might be an easier way to do what I'm proposing. Thanks in advance, - Ben Schumacher To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 16 0:54: 4 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 2A9F937B424 for ; Sat, 16 Sep 2000 00:53:58 -0700 (PDT) Received: from jules.elischer.org ([203.59.169.10]) by urban.iinet.net.au (8.8.7/8.8.7) with SMTP id PAA03955; Sat, 16 Sep 2000 15:53:42 +0800 Message-ID: <39C326FD.41C67EA6@elischer.org> Date: Sat, 16 Sep 2000 00:53:33 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Ben Schumacher Cc: freebsd-net@freebsd.org Subject: Re: netgraph based MAC authentication References: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> <5.0.0.25.2.20000915183859.026c2310@pop.henshaw.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ben Schumacher wrote: > > Alright, I have starting working on a daemon that connects to the upper and > lower hooks on my interface, and pulls the MAC address from the packet and > sends the packet on its way. This all seems to be working properly, most > of the time. The two problems I'm having right now is that ARP packets > don't seem to be forwarding correctly through my daemon and more > importantly, DHCP packets seem to cause kernel panics. Can you do one of the following? Put have DDB in the kernel (and can get to it by running the test case from the console) so you can do a stack trace.. OR Enable kernel core-dumps and compile your kernel with -g so that you can examine the core-dump and see where the crash was. (these are the first things to do when you have a kernel crash) Are you talking about incoming or outgoing arp packets and DHCP packets? DHCP (from memory) uses the BPF interface to shove packets out on the wire, and it may be that they get put on after the point where Netgraph hooks in.. check if_ethersubr.c for illumination... not sure about arp.. once again, incoming or outgoing? I think ARP packets SHOULD be captured.. I'll have a look at the code and mail again later.. > > Basically my code is a slight modified version of nghook. Here's the > relavent portions: > > while(1) { > fd_set rfds; > > FD_ZERO(&rfds); > FD_SET(0, &rfds); > FD_SET(dsock, &rfds); > > if (select(FD_SETSIZE, &rfds, NULL, NULL, NULL) < 0) > err(EX_OSERR, "select"); > > if (FD_ISSET(dsock, &rfds)) { > time_t now; > u_char buf[BUF_SIZE]; > char ihook[NG_HOOKLEN+1]; > char *ohook; > int rl; > > if ((rl = NgRecvData(dsock, > buf, sizeof(buf), ihook)) < 0) > err(EX_OSERR, "read(hook)"); > if (rl == 0) > errx(EX_OSERR, "read EOF from hook?!"); > > now = time(NULL); > printf("%ld: RECV - HOOK: %s, BYTES: %d " > "(SRC: %02x:%02x:%02x:%02x:%02x:%02x)\n", > now, ihook, rl, > buf[6], buf[7], buf[8], > buf[9], buf[10], buf[11]); > > if (!strcmp(ihook, NG_SOCK_UHOOK_NAME)) { > ohook = NG_SOCK_LHOOK_NAME; > } > else if (!strcmp(ihook, NG_SOCK_LHOOK_NAME)) { > ohook = NG_SOCK_UHOOK_NAME; > } > else { > errx(EX_OSERR, > "data received on unknown hook?!"); > } > > if (NgSendData(dsock, ohook, buf, rl) < 0) { > err(EX_OSERR, "NgSendData(%s)", ohook); > } > > now = time(NULL); > printf("%ld: SENT - HOOK: %s, BYTES: %d " > "(TAR: %02x:%02x:%02x:%02x:%02x:%02x)\n", > now, ohook, rl, > buf[0], buf[1], buf[2], > buf[3], buf[4], buf[5]); > } > } Looks right to me... I think if there is a problem it would be in the ng_ether kernel module as it's pretty new.. > > Can anybody give me any insight as to why this might be having the problems > I mentioned above? I realize it might be better to do what I'm trying to > do as a node, but since I have little experience using mbuf's, and haven't > been able to figure out where MAC address are stored in these, I thought > this might be an easier way to do what I'm proposing. Well, it's easier, but it's also going to be quite a bit slower as it will require a process schedule for each packet. (this may or may not be ok in production, but it's definitly ok for a prototype) > > Thanks in advance, > - Ben Schumacher > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 16 7: 6:55 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 27F9537B43C for ; Sat, 16 Sep 2000 07:06:49 -0700 (PDT) Received: from localhost ([3ffe:501:100f:13ff::e]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id WAA10034; Sat, 16 Sep 2000 22:49:57 +0900 (JST) Date: Sat, 16 Sep 2000 23:05:54 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "Jacques A. Vidrine" Cc: freebsd-net@FreeBSD.ORG Subject: Re: ICMP6 redirect rejected; not equal to gw-for-src In-Reply-To: In your message of "Thu, 14 Sep 2000 20:18:17 -0500" <20000914201817.A1041@spawn.nectar.com> References: <20000914201817.A1041@spawn.nectar.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 44 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Thu, 14 Sep 2000 20:18:17 -0500, >>>>> "Jacques A. Vidrine" said: > Can anyone decipher the following from me (shows up on console when > pinging across a link): > ICMP6 redirect rejected; not equal to gw-for-src=0040:9633:a3e7:: (must be same): (src=fe80:0007::0240:96ff:fe33:a3e7 dst=fec0:0002::0240:96ff:fe33:a3e7 tgt=fe80:0007::0240:96ff:fe31:e63c) In any case, I'm now quite confident what happened. Since the host and the gateway shared a site-local subnet fec0:2::/64, and the host resolved the link-layer address of the gateway's site-local address, the host directly sent a packet to the gateway. The gateway received the packet, and saw its routing table to check if the packet was destined to the gateway itself. As you showed, the gateway had an entry for the destination with another gateway on the same link attached to the incoming interface. Thus, the gateway just forwarded to the packet to the (another) gateway, and sent an ICMPv6 redirect message to the host. (note that the logic to process the incoming packet is diffrent from one of IPv4. If you want to know more details about the process, please see Section 3.2 of http://www.isoc.org/inet99/proceedings/4s/4s_2.htm) When the host received the redirect message, it validated the redirect's source address; the source address MUST be same as the correct gateway for the destination of the original packet, according to the specification. In this case, however, the gateway is a link-layer address, so the validation should simply failed. Now, we have a bug here, the validation routine should check the address family of the route entry (for the original destination), but it didn't. As a consequence, the host regarded the link-layer address as an AF_INET6 gateway, and hence, it printed the odd address (0040:9633:a3e7::). We've already fixed the bug in the FreeBSD (current) repository, and the fix will soon be merged into the stable branch. Thanks for the report. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 16 11: 9: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from mercury.ccmr.cornell.edu (mercury.ccmr.cornell.edu [128.84.231.97]) by hub.freebsd.org (Postfix) with ESMTP id BE19637B423 for ; Sat, 16 Sep 2000 11:08:57 -0700 (PDT) Received: from khitomer.msc.cornell.edu (IDENT:0@khitomer.msc.cornell.edu [128.84.249.245]) by mercury.ccmr.cornell.edu (8.9.3/8.9.3) with ESMTP id OAA05165; Sat, 16 Sep 2000 14:08:45 -0400 Received: from localhost (mitch@localhost) by khitomer.msc.cornell.edu (8.9.3/8.9.3) with ESMTP id OAA31904; Sat, 16 Sep 2000 14:08:43 -0400 X-Authentication-Warning: khitomer.msc.cornell.edu: mitch owned process doing -bs Date: Sat, 16 Sep 2000 14:08:43 -0400 (EDT) From: Mitch Collinsworth To: Ben Schumacher Cc: freebsd-net@FreeBSD.ORG Subject: Re: netgraph based MAC authentication In-Reply-To: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 Sep 2000, Ben Schumacher wrote: > I'm working on a project where I need to be able to authenticate people by > their MAC address against a RADIUS server. Has it ever occurred to you that people don't have MAC addresses, so this is no way to authenticate people? And if what you really mean is to authenticate systems, has it occurred to you that MAC addresses are changeable these days? -Mitch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 16 13:26:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from gluttony.henshaw.net (gluttony.henshaw.net [63.70.222.4]) by hub.freebsd.org (Postfix) with SMTP id C5C3F37B423 for ; Sat, 16 Sep 2000 13:26:20 -0700 (PDT) Received: (qmail 52074 invoked from network); 16 Sep 2000 20:26:17 -0000 Received: from dhcp-64-58-25-247.henshaw.net (HELO Ben.henshaw.net) (64.58.25.247) by gluttony.henshaw.net with SMTP; 16 Sep 2000 20:26:17 -0000 Message-Id: <5.0.0.25.2.20000916141107.01c0beb0@pop.henshaw.net> X-Sender: (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Sat, 16 Sep 2000 14:26:32 -0600 To: Julian Elischer From: Ben Schumacher Subject: Re: netgraph based MAC authentication Cc: freebsd-net@freebsd.org In-Reply-To: <39C326FD.41C67EA6@elischer.org> References: <5.0.0.25.2.20000913221340.00a04950@pop.henshaw.net> <5.0.0.25.2.20000915183859.026c2310@pop.henshaw.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 12:53 AM 9/16/2000 -0700, you wrote: >Can you do one of the following? > >Put have DDB in the kernel (and can get to it by running >the test case from the console) so you can do a stack trace.. > >OR > >Enable kernel core-dumps >and compile your kernel with -g so that you can examine >the core-dump and see where the crash was. > >(these are the first things to do when you have a kernel crash) In the process of compiling DDB into the kernel, I'll let you know what I find out when I get it up and running. >Are you talking about incoming or outgoing arp packets and DHCP >packets? DHCP (from memory) uses the BPF interface to shove >packets out on the wire, and it may be that they get put on after >the point where Netgraph hooks in.. Incoming DHCP packets seem to crash it. I believe you're right, that DHCP uses BPF to transmit its packets and it occurred to me that that might be where the problem lies, but I wasn't entirely certain, so I thought I'd pass what I knew along to people who had more network programming experience. Basically what happens with DHCP packets is that I receive a DHCP request from the lower hook, and it the crash seems to happen when I call NgSendData to send the packets to the upper hook. >check if_ethersubr.c for illumination... >not sure about arp.. once again, incoming or outgoing? >I think ARP packets SHOULD be captured.. I'll have a look >at the code and mail again later.. I'm not entirely certain which way the packets aren't being transmitted. So far, all I know is that if I connect a box with an assigned IP on the hub that my interface is connected to, when I try to ping its IP, the ARP resolution fails. (I guess that would imply outgoing then, eh?) > > Can anybody give me any insight as to why this might be having the problems > > I mentioned above? I realize it might be better to do what I'm trying to > > do as a node, but since I have little experience using mbuf's, and haven't > > been able to figure out where MAC address are stored in these, I thought > > this might be an easier way to do what I'm proposing. > >Well, it's easier, but it's also going to be quite a bit slower as it >will require a process schedule for each packet. >(this may or may not be ok in production, >but it's definitly ok for a prototype) On a related note, I was playing around a little bit with the nodes and connected a ng_tee between the upper and lower hooks on my interface, and everything seems to work perfectly, no kernel panics when DHCP packets are send through, and ARP packets are being passed both directions. For that reason, I'd like to shift most of my development efforts this direction, however, I still don't completely understand how mbuf's work (the *first* programming gotcha in Archie's article), so could you (or anybody) point me in the direction of a good reference on this subject? Book or website, either would work. Thanks again, - Ben Schumacher To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message