From owner-freebsd-isp Sun Aug 25 2:31:10 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E711537B400 for ; Sun, 25 Aug 2002 02:31:06 -0700 (PDT) Received: from hotmail.com (oe66.pav2.hotmail.com [64.4.36.200]) by mx1.FreeBSD.org (Postfix) with ESMTP id A2C7843E42 for ; Sun, 25 Aug 2002 02:31:06 -0700 (PDT) (envelope-from unixtools@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Sun, 25 Aug 2002 02:31:06 -0700 X-Originating-IP: [202.41.224.36] From: "Unix Tools" To: , References: <10F29E27A956D511B0940050DA8D86A985C533@mailserver.dagupan.com> Subject: Re: Setting default e-mail sender on Apache Date: Sun, 25 Aug 2002 03:16:17 +0530 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 25 Aug 2002 09:31:06.0554 (UTC) FILETIME=[2356B1A0:01C24C1A] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org It depends on the script you are using If it is php then edit the php.ini file If it is cgi then I think the cgi pm modules will take care of it. ----- Original Message ----- From: To: Sent: Monday, August 12, 2002 05:21 PM Subject: Setting default e-mail sender on Apache > Hi, > > We have a virtual hosting machine running FreeBSD 4.6-STABLE with Apache and > PHP as a module. Our users use PHP's mail() function to send e-mail from > within the web application. However, the default sender is the user running > the web process and not the virtual host owner. How do I configure Apache > (or PHP) to use mail() as the virtual host owner and not the user running > the web process? > > Thanks! > > --- > francis a. vidal [bitstop network services] | http://www.bitstop.ph > streaming media + web hosting | http://www.keystone.ph > v(02)330-2871,(02)330-2872; f(02)330-2873 | http://www.kuro.ph > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 25 2:37:33 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6704237B400 for ; Sun, 25 Aug 2002 02:37:31 -0700 (PDT) Received: from web20107.mail.yahoo.com (web20107.mail.yahoo.com [216.136.226.44]) by mx1.FreeBSD.org (Postfix) with SMTP id EDA5043E42 for ; Sun, 25 Aug 2002 02:37:30 -0700 (PDT) (envelope-from freefabri@yahoo.it) Message-ID: <20020825093730.74051.qmail@web20107.mail.yahoo.com> Received: from [217.133.221.126] by web20107.mail.yahoo.com via HTTP; Sun, 25 Aug 2002 11:37:30 CEST Date: Sun, 25 Aug 2002 11:37:30 +0200 (CEST) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: Qmailadmin compile, missing nsl library To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, my installation is: FreeBSD 4.5 qmail-1.03 vpopmail-5.2.1.88 ucspi-tcp-0.88 courier-imap-1.5.3p-0.88 ezmlm-0.53 autoresponder from ports I want also to install qmailadmin for web-administration. I've downloaded qmailadmin-1.0.6 from Inter7. I configure it with: configure --enable-cgibindir=/usr/local/apache/cgi-bin The configure it's ok and also the "make clean", but when I run the "make" I receive this error: gcc -g -O2 -o qmailadmin qmailadmin.o alias.o autorespond.o forward.o mailinglist.o user.o util.o auth.o template.o command.o show.o cgi.o limits.o dotqmail.o -L/home/vpopmail/lib -lvpopmail -lnsl -lm -lcrypt /usr/libexec/elf/ld: cannot find -lnsl *** Error code 1 Stop in /var/qmailadmin-1.0.6. *** Error code 1 Stop in /var/qmailadmin-1.0.6. *** Error code 1 Stop in /var/qmailadmin-1.0.6. I've made this installation, (with qmailadmin 0.42) on other machines without any problems. Any help? Thanks ______________________________________________________________________ Scarica il nuovo Yahoo! Messenger: con webcam, nuove faccine e tante altre novità. http://it.yahoo.com/mail_it/foot/?http://it.messenger.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 25 3:29:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5210437B400 for ; Sun, 25 Aug 2002 03:29:51 -0700 (PDT) Received: from mail.ipfnet.net (mail.ipfnet.net [62.138.44.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0E3F843E75 for ; Sun, 25 Aug 2002 03:29:50 -0700 (PDT) (envelope-from ml-freebsd-isp@phobgate.de) Received: from iushfghj-69877f (localhost [127.0.0.1]) by mail.ipfnet.net (8.11.6/8.11.6) with ESMTP id g7PATew03232; Sun, 25 Aug 2002 12:29:40 +0200 Date: Sun, 25 Aug 2002 12:29:25 +0200 From: alex Reply-To: alex To: francisv@dagupan.com, freebsd-isp@FreeBSD.ORG Subject: Re: Setting default e-mail sender on Apache Message-ID: <98217088.1030278565@[192.168.2.94]> In-Reply-To: References: X-Mailer: Mulberry/2.2.1 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hi, i haven't tested it (i just setup the system and i'm still configuring apache), but this should/could work: php_admin_value sendmail_from "webmaster@customerdomain" php_admin_value sendmail_path "/usr/sbin/sendmail -t -i -fwebmaster@customerdomain" into each virtualhost, replacing customerdomain with actual domain name alex --On Sonntag, 25. August 2002 03:16 +0530 Unix Tools wrote: > It depends on the script you are using > If it is php then edit the php.ini file > If it is cgi then I think the cgi pm modules will take care of it. > > > ----- Original Message ----- > From: > To: > Sent: Monday, August 12, 2002 05:21 PM > Subject: Setting default e-mail sender on Apache > > >> Hi, >> >> We have a virtual hosting machine running FreeBSD 4.6-STABLE with Apache > and >> PHP as a module. Our users use PHP's mail() function to send e-mail from >> within the web application. However, the default sender is the user > running >> the web process and not the virtual host owner. How do I configure Apache >> (or PHP) to use mail() as the virtual host owner and not the user running >> the web process? >> >> Thanks! >> >> --- >> francis a. vidal [bitstop network services] | http://www.bitstop.ph >> streaming media + web hosting | http://www.keystone.ph >> v(02)330-2871,(02)330-2872; f(02)330-2873 | http://www.kuro.ph >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-isp" in the body of the message >> > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Aug 25 6: 2:30 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9466537B400 for ; Sun, 25 Aug 2002 06:02:27 -0700 (PDT) Received: from hex.databits.net (hex.csh.rit.edu [129.21.60.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id 14B1243E75 for ; Sun, 25 Aug 2002 06:02:27 -0700 (PDT) (envelope-from petef@databits.net) Received: by hex.databits.net (Postfix, from userid 1001) id 855A021141; Sun, 25 Aug 2002 07:02:26 -0600 (MDT) Date: Sun, 25 Aug 2002 07:02:26 -0600 From: Pete Fritchman To: Fabrizio Ravazzini Cc: freebsd-isp@freebsd.org Subject: Re: Qmailadmin compile, missing nsl library Message-ID: <20020825070226.A63574@absolutbsd.org> References: <20020825093730.74051.qmail@web20107.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020825093730.74051.qmail@web20107.mail.yahoo.com>; from freefabri@yahoo.it on Sun, Aug 25, 2002 at 11:37:30AM +0200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org ++ 25/08/02 11:37 +0200 - Fabrizio Ravazzini: | I want also to install qmailadmin for | web-administration. | I've downloaded qmailadmin-1.0.6 from Inter7. | I configure it with: | configure --enable-cgibindir=/usr/local/apache/cgi-bin Unfortunately, the port is a bit out of date (at 1.0.2 and marked as BROKEN). | The configure it's ok and also the "make clean", but | when I run the "make" I receive this error: | gcc -g -O2 -o qmailadmin qmailadmin.o alias.o | autorespond.o forward.o mailinglist.o user.o util.o | auth.o template.o command.o show.o cgi.o limits.o | dotqmail.o -L/home/vpopmail/lib -lvpopmail -lnsl -lm | -lcrypt | /usr/libexec/elf/ld: cannot find -lnsl | *** Error code 1 You need to find the line in the generated Makefiles that has -lnsl and remove it, that library isn't needed to link against on FreeBSD. --pete -- Pete Fritchman [petef@(databits.net|freebsd.org|wyom.net)] finger petef@databits.net for PGP key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 26 7:51:49 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A039E37B400 for ; Mon, 26 Aug 2002 07:51:44 -0700 (PDT) Received: from web20110.mail.yahoo.com (web20110.mail.yahoo.com [216.136.226.47]) by mx1.FreeBSD.org (Postfix) with SMTP id 4284043E42 for ; Mon, 26 Aug 2002 07:51:44 -0700 (PDT) (envelope-from freefabri@yahoo.it) Message-ID: <20020826145143.80770.qmail@web20110.mail.yahoo.com> Received: from [217.133.217.99] by web20110.mail.yahoo.com via HTTP; Mon, 26 Aug 2002 16:51:43 CEST Date: Mon, 26 Aug 2002 16:51:43 +0200 (CEST) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: ppp -auto -nat Gateway routing problem To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all. I've done a Gateway on FreeBSD4.5 for a small lan, connecting to Internet with a 56K modem. On this gateway I've installed also qmail,pop3 and courier imap for send and receive(fetchmail) mails from internet. This the scheme: ed0 Internet----56Kmodem--Fbsdbox---------------LAN 192.168.0.1 192.168.0/24 The problem is that when the modem is disconnected, if I try for example to "telnet 192.168.0.1 25" from a machine on the Lan to test q-mail, the q-mail server takes a very very long time to respond me. And if the modem is also light-up, he attempt to connect to internet. When the modem is connected to internet all works well. I use user-ppp in this way: ppp -auto -nat provider (or with flags in rc.conf) Looking at the routing tables I see that the default route is the 10.0.0.2, right because of the ppp. If I delete the default route ("route delete default") the q-mail daemon responds ok and also pop and imap, but the ppp doesn't work because I deleted the default route. This is the output of "netstat -rn": Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 10.0.0.2 UGSc 0 0 tun0 10/24 link#1 UC 0 0 dc0 10.0.0.2 10.0.0.1 UH 1 0 tun0 127.0.0.1 127.0.0.1 UH 0 0 lo0 192.168.0 link#3 UC 0 0 ed0 ~snip IPV6 And this is the /etc/rc.conf: gateway_enable="YES" firewall_enable="YES" firewall_type="OPEN" hostname="Walrus.Gsg" ppp_enable="YES" ppp_mode="auto" ppp_nat="YES" ppp_profile="provider" inetd_enable="YES" kern_securelevel_enable="NO" keymap="it.iso" linux_enable="YES" moused_enable="NO" moused_type="NO" nfs_reserved_port_only="NO" sendmail_enable="NO" sshd_enable="YES" ifconfig_dc0="inet 10.0.0.1 netmask 255.255.255.0" ifconfig_ed0="inet 192.168.0.1 netmask 255.255.255.0" Anybody knows what do I have to do to make the qmail and other servers have a faster response and Internet connection working? Thanks all ______________________________________________________________________ Scarica il nuovo Yahoo! Messenger: con webcam, nuove faccine e tante altre novità. http://it.yahoo.com/mail_it/foot/?http://it.messenger.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 26 8: 3:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CF1B337B400 for ; Mon, 26 Aug 2002 08:03:19 -0700 (PDT) Received: from newnet.co.uk (newnet.co.uk [212.87.80.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id C539843E4A for ; Mon, 26 Aug 2002 08:03:18 -0700 (PDT) (envelope-from jamie@jamiesdomain.org.uk) Received: from kandy (cantbob.jamiesdomain.org.uk [213.131.191.130] (may be forged)) by newnet.co.uk (8.12.3/8.12.3) with SMTP id g7QF2oQn043034; Mon, 26 Aug 2002 16:02:55 +0100 (BST) (envelope-from jamie@jamiesdomain.org.uk) Message-ID: <009401c24d11$a7850290$82bf83d5@kandy> From: "Jamie Heckford" To: "Fabrizio Ravazzini" , References: <20020826145143.80770.qmail@web20110.mail.yahoo.com> Subject: Re: ppp -auto -nat Gateway routing problem Date: Mon, 26 Aug 2002 16:02:48 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Newnet-MailScanner: Found to be clean Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Possibly a DNS issue? Try running tcpdump to see what traffic is triggering the dialup. Maybe try banging your own IP addresses into /etc/hosts to speed things up a bit. Jamie ----- Original Message ----- From: "Fabrizio Ravazzini" To: Sent: Monday, August 26, 2002 3:51 PM Subject: ppp -auto -nat Gateway routing problem > Hello all. I've done a Gateway on FreeBSD4.5 for a > small lan, connecting to Internet with a 56K modem. > On this gateway I've installed also qmail,pop3 and > courier imap for send and receive(fetchmail) mails > from internet. > This the scheme: ed0 > Internet----56Kmodem--Fbsdbox---------------LAN > 192.168.0.1 192.168.0/24 > > The problem is that when the modem is disconnected, if > I try for example to "telnet 192.168.0.1 25" from a > machine on the Lan to test q-mail, the q-mail server > takes a very very long time to respond me. > And if the modem is also light-up, he attempt to > connect to internet. > When the modem is connected to internet all works > well. > I use user-ppp in this way: > ppp -auto -nat provider (or with flags in rc.conf) > > Looking at the routing tables I see that the default > route is the 10.0.0.2, right because of the ppp. > If I delete the default route ("route delete default") > the q-mail daemon responds ok and also pop and imap, > but the ppp doesn't work because I deleted the default > route. > This is the output of "netstat -rn": > > Routing tables > > Internet: > Destination Gateway Flags Refs Use Netif Expire > default 10.0.0.2 UGSc 0 0 tun0 > 10/24 link#1 UC 0 0 dc0 > 10.0.0.2 10.0.0.1 UH 1 0 tun0 > 127.0.0.1 127.0.0.1 UH 0 0 lo0 > 192.168.0 link#3 UC 0 0 ed0 > > ~snip IPV6 > > > And this is the /etc/rc.conf: > gateway_enable="YES" > firewall_enable="YES" > firewall_type="OPEN" > hostname="Walrus.Gsg" > ppp_enable="YES" > ppp_mode="auto" > ppp_nat="YES" > ppp_profile="provider" > inetd_enable="YES" > kern_securelevel_enable="NO" > keymap="it.iso" > linux_enable="YES" > moused_enable="NO" > moused_type="NO" > nfs_reserved_port_only="NO" > sendmail_enable="NO" > sshd_enable="YES" > ifconfig_dc0="inet 10.0.0.1 netmask 255.255.255.0" > ifconfig_ed0="inet 192.168.0.1 netmask 255.255.255.0" > > > Anybody knows what do I have to do to make the qmail > and other servers have a faster response and Internet > connection working? > > Thanks all > > > > > > ______________________________________________________________________ > Scarica il nuovo Yahoo! Messenger: con webcam, nuove faccine e tante altre novità. > http://it.yahoo.com/mail_it/foot/?http://it.messenger.yahoo.com/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Aug 26 22:56:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3B7C837B400 for ; Mon, 26 Aug 2002 22:56:20 -0700 (PDT) Received: from flock1.newmail.ru (flock1.newmail.ru [212.48.140.157]) by mx1.FreeBSD.org (Postfix) with SMTP id 9B14443E6A for ; Mon, 26 Aug 2002 22:56:18 -0700 (PDT) (envelope-from Andrew.Karjagin@newmail.ru) Received: (qmail 28802 invoked by alias); 27 Aug 2002 05:56:15 -0000 Message-ID: <20020827055615.28800.qmail@flock1.newmail.ru> From: Andrew Karjagin To: freebsd-isp@freebsd.org Subject: Re: ppp -auto -nat Gateway routing problem X-Mailer: DenMail v1.0 by ORC X-Uid: 689 X-RemoteIP: 212.42.53.214 Date: Tue, 27 Aug 2002 09:56:15 +0400 Content-type: text/plain; charset="koi8-r" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Yes, it is DNS problem. But editing /etc/hosts doesn't resolve it. Qmail have very strong security options and it require full time DNS-server access. So when you disconnect from your provider Qmail start working very slowly, because try to find DNS-servers. Change it to Exim, for example (www.exim.org). This program doesn't have so paranoya options, stable, very simple configured and worked very well for me. ðÎ, 26.08 19:02 you wrote: > >Possibly a DNS issue? Try running tcpdump to see what traffic is triggering >the >dialup. > >Maybe try banging your own IP addresses into /etc/hosts to speed things up a >bit. > >Jamie > >----- Original Message ----- >From: "Fabrizio Ravazzini" >To: >Sent: Monday, August 26, 2002 3:51 PM >Subject: ppp -auto -nat Gateway routing problem > > >> Hello all. I've done a Gateway on FreeBSD4.5 for a >> small lan, connecting to Internet with a 56K modem. >> On this gateway I've installed also qmail,pop3 and >> courier imap for send and receive(fetchmail) mails >> from internet. >> This the scheme: ed0 >> Internet----56Kmodem--Fbsdbox---------------LAN >> 192.168.0.1 192.168.0/24 >> >> The problem is that when the modem is disconnected, if >> I try for example to "telnet 192.168.0.1 25" from a >> machine on the Lan to test q-mail, the q-mail server >> takes a very very long time to respond me. >> And if the modem is also light-up, he attempt to >> connect to internet. >> When the modem is connected to internet all works >> well. >> I use user-ppp in this way: >> ppp -auto -nat provider (or with flags in rc.conf) >> >> Looking at the routing tables I see that the default >> route is the 10.0.0.2, right because of the ppp. >> If I delete the default route ("route delete default") >> the q-mail daemon responds ok and also pop and imap, >> but the ppp doesn't work because I deleted the default >> route. >> This is the output of "netstat -rn": >> >> Routing tables >> >> Internet: >> Destination Gateway Flags Refs Use Netif Expire >> default 10.0.0.2 UGSc 0 0 tun0 >> 10/24 link#1 UC 0 0 dc0 >> 10.0.0.2 10.0.0.1 UH 1 0 tun0 >> 127.0.0.1 127.0.0.1 UH 0 0 lo0 >> 192.168.0 link#3 UC 0 0 ed0 >> >> ~snip IPV6 >> >> >> And this is the /etc/rc.conf: >> gateway_enable="YES" >> firewall_enable="YES" >> firewall_type="OPEN" >> hostname="Walrus.Gsg" >> ppp_enable="YES" >> ppp_mode="auto" >> ppp_nat="YES" >> ppp_profile="provider" >> inetd_enable="YES" >> kern_securelevel_enable="NO" >> keymap="it.iso" >> linux_enable="YES" >> moused_enable="NO" >> moused_type="NO" >> nfs_reserved_port_only="NO" >> sendmail_enable="NO" >> sshd_enable="YES" >> ifconfig_dc0="inet 10.0.0.1 netmask 255.255.255.0" >> ifconfig_ed0="inet 192.168.0.1 netmask 255.255.255.0" >> >> >> Anybody knows what do I have to do to make the qmail >> and other servers have a faster response and Internet >> connection working? >> >> Thanks all >> >> >> >> >> >> ______________________________________________________________________ >> Scarica il nuovo Yahoo! Messenger: con webcam, nuove faccine e tante altre >novitÒ. >> http://it.yahoo.com/mail_it/foot/?http://it.messenger.yahoo.com/ >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-isp" in the body of the message >> > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message >__________ >http://www.newhost.ru - õÀÔÎÏ, ÐÏ-ÄÏÍÁÛÎÅÍÕ, × ÔÁÐÏÞËÁÈ..... > __________ www.newmail.ru -- ×ÓÅÇÄÁ ÞÔÏ-ÔÏ ÎÏ×ÏÅ. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 4:15:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D134737B400 for ; Tue, 27 Aug 2002 04:15:15 -0700 (PDT) Received: from falcon.mail.pas.earthlink.net (falcon.mail.pas.earthlink.net [207.217.120.74]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8156143E6A for ; Tue, 27 Aug 2002 04:15:15 -0700 (PDT) (envelope-from absinthe@pobox.com) Received: from dhcp068-64-151-24.nt01-c4.cpe.charter-ne.com ([24.151.64.68] helo=laredo.retrovertigo.com) by falcon.mail.pas.earthlink.net with esmtp (Exim 3.33 #1) id 17jeJS-0002xf-00 for freebsd-isp@FreeBSD.ORG; Tue, 27 Aug 2002 04:15:10 -0700 Content-Type: text/plain; charset="us-ascii" From: Dylan Carlson Reply-To: absinthe@pobox.com To: freebsd-isp@FreeBSD.ORG Subject: Port forwarding recommendations? Date: Tue, 27 Aug 2002 07:15:29 -0400 User-Agent: KMail/1.4.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <200208270715.29162.absinthe@pobox.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, There are volumes of mailing list messages out there on the subject of firewalls, but the solutions for different circumstances are not clear. Your recommendations would be appreciated. I have a simple low-end pentium box I want to do the following: - Firewall (ipfilter or ipfw, comfortable with either one) - One external IP assigned via DHCP (from the ISP) - One internal IP serving as a gateway address for a private class C - NAT sharing to 4-5 hosts on the protected, internal subnet - Inbound port forwarding ...where "port forwarding" means listening on a port on the external interface of the firewall and forwarding to a specified internal host for the rule. I have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if this works with any of the NAT and firewall implementations. Wondering which components you would use, why - and any caveats. I would be thankful for any references as well. Provided I am successful with this I plan on writing up a procedure in DocBook and and kicking it over to the FreeBSD documentation project. TIA, -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 4:26:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E26AE37B400 for ; Tue, 27 Aug 2002 04:26:14 -0700 (PDT) Received: from lemsip.invictanet.co.uk (pop3.anti84787.com [213.48.153.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9187F43E6E for ; Tue, 27 Aug 2002 04:26:13 -0700 (PDT) (envelope-from support@invicta.net) Received: from harry (fw-gw.invicta.net [80.88.194.11]) (authenticated bits=0) by lemsip.invictanet.co.uk (8.12.5/8.12.5) with ESMTP id g7RBQmji061012; Tue, 27 Aug 2002 12:26:49 +0100 (BST) (envelope-from support@invicta.net) X-Authentication-Warning: lemsip.invictanet.co.uk: Host fw-gw.invicta.net [80.88.194.11] claimed to be harry Reply-To: From: "InvictaNet Customer Support" To: Cc: "Freebsd-ISP" Subject: RE: Port forwarding recommendations? Date: Tue, 27 Aug 2002 12:25:46 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <200208270715.29162.absinthe@pobox.com> X-MailScanner: Found to be clean X-MailScanner-SpamCheck: not spam, SpamAssassin (score=-1.9, required 5, IN_REP_TO, X_AUTH_WARNING, SUBJ_ENDS_IN_Q_MARK, DOUBLE_CAPSWORD, AWL) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org http://www.smoothwall.org - gpl http://www.smoothwall.co.uk - commercial A dedicated linux based distribution, all the hard work is done for you, just install it. Martyn Routley ----------------------------------------------------- InvictaNet - The Internet in Plain English, Guaranteed http://www.invictanet.co.uk info@invictanet.co.uk phone: 08707 440180 fax: 08707 440181 ------------------------------------------------------ Please Note: All services are provided on the basis that they are business to business and that the Consumer Protection (Distance Selling) Regulations 2000 do not apply. ----------------------------------------------------- -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Dylan Carlson Sent: 27 August 2002 12:15 To: freebsd-isp@FreeBSD.ORG Subject: Port forwarding recommendations? Hi, There are volumes of mailing list messages out there on the subject of firewalls, but the solutions for different circumstances are not clear. Your recommendations would be appreciated. I have a simple low-end pentium box I want to do the following: - Firewall (ipfilter or ipfw, comfortable with either one) - One external IP assigned via DHCP (from the ISP) - One internal IP serving as a gateway address for a private class C - NAT sharing to 4-5 hosts on the protected, internal subnet - Inbound port forwarding ...where "port forwarding" means listening on a port on the external interface of the firewall and forwarding to a specified internal host for the rule. I have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if this works with any of the NAT and firewall implementations. Wondering which components you would use, why - and any caveats. I would be thankful for any references as well. Provided I am successful with this I plan on writing up a procedure in DocBook and and kicking it over to the FreeBSD documentation project. TIA, -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message -- This message has been scanned for viruses and dangerous content by the http://www.anti84787.com MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by the http://www.anti84787.com MailScanner, and is believed to be clean. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 4:46:50 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6B82E37B400 for ; Tue, 27 Aug 2002 04:46:47 -0700 (PDT) Received: from lemsip.invictanet.co.uk (pop3.anti84787.com [213.48.153.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id C2A9843E72 for ; Tue, 27 Aug 2002 04:46:45 -0700 (PDT) (envelope-from martyn@support.invictanet.co.uk) Received: from harry (fw-gw.invicta.net [80.88.194.11]) (authenticated bits=0) by lemsip.invictanet.co.uk (8.12.5/8.12.5) with ESMTP id g7RBlBji061357; Tue, 27 Aug 2002 12:47:12 +0100 (BST) (envelope-from martyn@support.invictanet.co.uk) X-Authentication-Warning: lemsip.invictanet.co.uk: Host fw-gw.invicta.net [80.88.194.11] claimed to be harry From: "InvictaNet Customer Support" To: "Patrick Kelso" Cc: "Freebsd-ISP" Subject: RE: Port forwarding recommendations? Date: Tue, 27 Aug 2002 12:46:09 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <000301c24dbd$f41f12b0$4864a8c0@mrt1000> X-MailScanner: Found to be clean X-MailScanner-SpamCheck: not spam, SpamAssassin (score=-3.2, required 5, IN_REP_TO, X_AUTH_WARNING, SUBJ_ENDS_IN_Q_MARK, AWL) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org My point in mentioning Smoothwall is that I don't like re-inventing wheels. I know one can setup FreeBSD as a firewall and painstakingly create all the necesary rulesets but with Smoothwall, all of the hard work is already done for you and you only need to administer the box by a well designed and easy to use web interface. I think Smoothwall is worth a look, even if you end up creating the same thing in FreeBSD - Now there's a thought? Martyn Routley ----------------------------------------------------- InvictaNet - The Internet in Plain English, Guaranteed http://www.invictanet.co.uk info@invictanet.co.uk phone: 08707 440180 fax: 08707 440181 ------------------------------------------------------ Please Note: All services are provided on the basis that they are business to business and that the Consumer Protection (Distance Selling) Regulations 2000 do not apply. ----------------------------------------------------- -----Original Message----- From: Patrick Kelso [mailto:lujan@zgeek.com] Sent: 27 August 2002 12:36 To: martyn@support.invictanet.co.uk Subject: RE: Port forwarding recommendations? I think that defeats the purpose of using FreeBSD and learning new things. Firstly, this article. http://bsdvault.net/sections.php?op=viewarticle&artid=6 is very handy its helped a few people I know setup their first firewalls, and I wish I had it when I setup my first one. Then edit the fwrules file again, and add this $fwcmd add 100 fwd 192.168.1.10,8080 tcp from any to any 80 i /usr/sbin/sysctl -w net.inet.ip.forwarding=1 Which will allow forwarding from port 80 requests to port 8080 on the server with the 192.168.1.10 ip. (I think, someone correct me if I am wrong. -- This message has been scanned for viruses and dangerous content by the http://www.anti84787.com MailScanner, and is believed to be clean. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 6:48:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5D45937B400 for ; Tue, 27 Aug 2002 06:48:54 -0700 (PDT) Received: from mta03ps.bigpond.com (mta03ps.bigpond.com [144.135.25.135]) by mx1.FreeBSD.org (Postfix) with ESMTP id 308EE43E88 for ; Tue, 27 Aug 2002 06:48:53 -0700 (PDT) (envelope-from leighv@roq.com) Received: from michael ([144.135.25.81]) by mta03ps.bigpond.com (Netscape Messaging Server 4.15 mta03ps May 23 2002 23:53:28) with SMTP id H1I90400.314; Tue, 27 Aug 2002 23:48:04 +1000 Received: from CPE-203-45-56-16.vic.bigpond.net.au ([203.45.56.16]) by psmam05.mailsvc.email.bigpond.com(MailRouter V3.0n 107/5522622); 27 Aug 2002 23:48:04 Message-ID: <004d01c24dd0$5f63d670$2d01a8c0@michael> From: "Leigh V" To: , References: <200208270715.29162.absinthe@pobox.com> Subject: Re: Port forwarding recommendations? Date: Tue, 27 Aug 2002 23:48:06 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org You can use my IpFilter,IpNat / DHCP automagic setup script on FreeBSD. www.roq.com/bsd/ Had a few people email me back saying it saved them allot of time. Technically the only information you need to give it is the name of the internal and external nics, you can just hit enter for the rest for a typical 192.168.1.0/24 private network setup. The script doesn't have any port forward rules, but here is a typical one you would add to your /etc/ipnat.rules file to forward identd connections for IRC. rdr rl1 0.0.0.0/0 port 113 -> 192.168.1.5 port 113 tcp rl1 would be your external nic I was thinking of putting IP accounting setup for it as well. The interesting thing about Ipfilter I have noticed but no one else has ever said is that while all the Linux fans are running around saying how great netfilter is with its full stateful firewalling support is now stable for production use, ipfilter has been around for almost 10 years now for BSD :) tail /usr/src/contrib/ipfilter/HISTORY 1.0 22/04/93 - Released ----- Original Message ----- From: "Dylan Carlson" To: Sent: Tuesday, August 27, 2002 9:15 PM Subject: Port forwarding recommendations? > Hi, > > There are volumes of mailing list messages out there on the subject of > firewalls, but the solutions for different circumstances are not clear. Your > recommendations would be appreciated. > > I have a simple low-end pentium box I want to do the following: > > - Firewall (ipfilter or ipfw, comfortable with either one) > - One external IP assigned via DHCP (from the ISP) > - One internal IP serving as a gateway address for a private class C > - NAT sharing to 4-5 hosts on the protected, internal subnet > - Inbound port forwarding > > ...where "port forwarding" means listening on a port on the external interface > of the firewall and forwarding to a specified internal host for the rule. I > have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if this > works with any of the NAT and firewall implementations. > > Wondering which components you would use, why - and any caveats. I would be > thankful for any references as well. > > Provided I am successful with this I plan on writing up a procedure in DocBook > and and kicking it over to the FreeBSD documentation project. > > TIA, > -- > Dylan Carlson [absinthe@pobox.com] > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 9:35:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 31E5437B400 for ; Tue, 27 Aug 2002 09:35:55 -0700 (PDT) Received: from mail4.cableaz.com (mail4.cableaz.com [66.218.238.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id A915B43E6A for ; Tue, 27 Aug 2002 09:35:54 -0700 (PDT) (envelope-from jeremy@cableaz.com) Received: from admin (proxy.cableaz.com [66.218.238.31]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g7RGNuV55432 for ; Tue, 27 Aug 2002 09:23:56 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <000801c24de7$c93e4280$0c0aa8c0@admin> From: "Jeremy Buckner" To: Subject: ftpd woes Date: Tue, 27 Aug 2002 09:35:42 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0005_01C24DAD.1CAFF610" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0005_01C24DAD.1CAFF610 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Is there some new trick to ftpd in the 4.6 build? I have built 3 = differnet servers that wont let me log in via ftp no matter where I make = the login attempt. I have tried to debug it using syslog but the logs = don't give me any kind of useful info. Oh and FYI the ****** is me = blanking out my IP:) Any help would be great. Aug 27 09:22:29 mail ftpd[99]: connection from ******** Aug 27 09:22:29 mail ftpd[99]: <--- 220 Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:22:29 mail ftpd[99]: <--- 221 Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. Aug 27 09:27:18 mail ftpd[139]: connection from ******** Aug 27 09:27:18 mail ftpd[139]: <--- 220 Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:27:18 mail ftpd[139]: lost connection Aug 27 09:28:02 mail ftpd[140]: connection from ******** Aug 27 09:28:02 mail ftpd[140]: <--- 220 Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:28:02 mail ftpd[140]: <--- 221 Aug 27 09:28:02 mail ftpd[140]: You could at least say goodbye. Aug 27 09:33:45 mail ftpd[97]: connection from ******** ------=_NextPart_000_0005_01C24DAD.1CAFF610 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Is there some new trick to ftpd in the = 4.6 build? I=20 have built 3 differnet servers that wont let me log in via ftp no matter = where I=20 make the login attempt. I have tried  to debug it using syslog but = the logs=20 don't give me any kind of useful info. Oh and FYI the ****** is me = blanking out=20 my IP:) Any help would be great.
 
 
Aug 27 09:22:29 mail ftpd[99]: = connection from=20 ********
Aug 27 09:22:29 mail ftpd[99]: <--- = 220
Aug=20 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS)=20 ready.
Aug 27 09:22:29 mail ftpd[99]: <--- 221
Aug 27 09:22:29 = mail=20 ftpd[99]: You could at least say goodbye.
Aug 27 09:27:18 mail = ftpd[139]:=20 connection from ********
Aug 27 09:27:18 mail ftpd[139]: <--- = 220
Aug=20 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version 6.00LS) = ready.
Aug 27 09:27:18 mail ftpd[139]: lost connection
Aug 27 = 09:28:02=20 mail ftpd[140]: connection from ********
Aug 27 09:28:02 mail = ftpd[140]:=20 <--- 220
Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP = server=20 (Version 6.00LS) ready.
Aug 27 09:28:02 mail ftpd[140]: <--- = 221
Aug 27=20 09:28:02 mail ftpd[140]: You could at least say goodbye.
Aug 27 = 09:33:45 mail=20 ftpd[97]: connection from ********
------=_NextPart_000_0005_01C24DAD.1CAFF610-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 9:41:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 41C9037B400 for ; Tue, 27 Aug 2002 09:41:37 -0700 (PDT) Received: from mohegan.mohawk.net (mohegan.mohawk.net [63.66.68.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8B11043E65 for ; Tue, 27 Aug 2002 09:41:36 -0700 (PDT) (envelope-from rjh@mohawk.net) Received: from mail.mohawk.net (mail.mohawk.net [63.66.68.12]) by mohegan.mohawk.net (8.11.4/8.11.3) with ESMTP id g7RGfFs17874; Tue, 27 Aug 2002 12:41:15 -0400 (EDT) Date: Tue, 27 Aug 2002 12:41:15 -0400 (EDT) From: Ralph Huntington To: Jeremy Buckner Cc: Subject: Re: ftpd woes In-Reply-To: <000801c24de7$c93e4280$0c0aa8c0@admin> Message-ID: <20020827124035.B1174-100000@mohegan.mohawk.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is your shell listed in /etc/shells? ftpd will not allow you to connect if your shell is not listed. On Tue, 27 Aug 2002, Jeremy Buckner wrote: > Is there some new trick to ftpd in the 4.6 build? I have built 3 > differnet servers that wont let me log in via ftp no matter where I > make the login attempt. I have tried to debug it using syslog but the > logs don't give me any kind of useful info. Oh and FYI the ****** is > me blanking out my IP:) Any help would be great. > > > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > Aug 27 09:22:29 mail ftpd[99]: <--- 220 > Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS) ready. > Aug 27 09:22:29 mail ftpd[99]: <--- 221 > Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. > Aug 27 09:27:18 mail ftpd[139]: connection from ******** > Aug 27 09:27:18 mail ftpd[139]: <--- 220 > Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version 6.00LS) ready. > Aug 27 09:27:18 mail ftpd[139]: lost connection > Aug 27 09:28:02 mail ftpd[140]: connection from ******** > Aug 27 09:28:02 mail ftpd[140]: <--- 220 > Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP server (Version 6.00LS) ready. > Aug 27 09:28:02 mail ftpd[140]: <--- 221 > Aug 27 09:28:02 mail ftpd[140]: You could at least say goodbye. > Aug 27 09:33:45 mail ftpd[97]: connection from ******** > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 9:43:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 699A737B400 for ; Tue, 27 Aug 2002 09:43:15 -0700 (PDT) Received: from mail4.cableaz.com (mail4.cableaz.com [66.218.238.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id D8C3043E3B for ; Tue, 27 Aug 2002 09:43:14 -0700 (PDT) (envelope-from jeremy@cableaz.com) Received: from admin (proxy.cableaz.com [66.218.238.31]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g7RGVPV57776; Tue, 27 Aug 2002 09:31:25 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <001c01c24de8$d503c260$0c0aa8c0@admin> From: "Jeremy Buckner" To: "Ralph Huntington" Cc: References: <20020827124035.B1174-100000@mohegan.mohawk.net> Subject: Re: ftpd woes Date: Tue, 27 Aug 2002 09:43:08 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Yes I can ssh and telnet and do everything else.....just no ftp. ----- Original Message ----- From: "Ralph Huntington" To: "Jeremy Buckner" Cc: Sent: Tuesday, August 27, 2002 9:41 AM Subject: Re: ftpd woes > Is your shell listed in /etc/shells? ftpd will not allow you to connect if > your shell is not listed. > > > On Tue, 27 Aug 2002, Jeremy Buckner wrote: > > > Is there some new trick to ftpd in the 4.6 build? I have built 3 > > differnet servers that wont let me log in via ftp no matter where I > > make the login attempt. I have tried to debug it using syslog but the > > logs don't give me any kind of useful info. Oh and FYI the ****** is > > me blanking out my IP:) Any help would be great. > > > > > > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > > Aug 27 09:22:29 mail ftpd[99]: <--- 220 > > Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS) ready. > > Aug 27 09:22:29 mail ftpd[99]: <--- 221 > > Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. > > Aug 27 09:27:18 mail ftpd[139]: connection from ******** > > Aug 27 09:27:18 mail ftpd[139]: <--- 220 > > Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version 6.00LS) ready. > > Aug 27 09:27:18 mail ftpd[139]: lost connection > > Aug 27 09:28:02 mail ftpd[140]: connection from ******** > > Aug 27 09:28:02 mail ftpd[140]: <--- 220 > > Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP server (Version 6.00LS) ready. > > Aug 27 09:28:02 mail ftpd[140]: <--- 221 > > Aug 27 09:28:02 mail ftpd[140]: You could at least say goodbye. > > Aug 27 09:33:45 mail ftpd[97]: connection from ******** > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 9:52:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8F2E137B400 for ; Tue, 27 Aug 2002 09:52:35 -0700 (PDT) Received: from su.ualberta.ca (mail.su.ualberta.ca [129.128.133.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id A9D3043E77 for ; Tue, 27 Aug 2002 09:52:33 -0700 (PDT) (envelope-from colin.harford@mail.su.ualberta.ca) Received: from [129.128.133.207] ([129.128.133.207] verified) by su.ualberta.ca (CommuniGate Pro SMTP 4.0b7) with ESMTP id 46971648; Tue, 27 Aug 2002 10:44:06 -0600 User-Agent: Microsoft-Entourage/10.1.0.2006 Date: Tue, 27 Aug 2002 10:52:35 -0600 Subject: Re: ftpd woes From: Colin Harford To: Jeremy Buckner , Ralph Huntington Cc: Message-ID: In-Reply-To: <001c01c24de8$d503c260$0c0aa8c0@admin> Mime-version: 1.0 X-address: Suite 2-900, SUB, University of Alberta, 8900-114 St, Edmonton: Alberta, T6G 2J7 X-disclaimer: Opinions expressed herein are solely the responsibility Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 8/27/02 10:43 AM, "Jeremy Buckner" wrote: > Yes I can ssh and telnet and do everything else.....just no ftp. I've been having some problems recently with FTP (as in since the last time I did a cvs-stable update (which was 42 days ago)). What would happen is I could make a connection, login, and all that, but as soon as I would issue a get/send command it would disconnect me. No config change, the last cvs was to patch my box of all the recent vulnerabilities. This might be something to look into. When I get some time, I will look into fixing it.... Its probably been fixed in a more recent cvs-stable version. CH > > ----- Original Message ----- > From: "Ralph Huntington" > To: "Jeremy Buckner" > Cc: > Sent: Tuesday, August 27, 2002 9:41 AM > Subject: Re: ftpd woes > > >> Is your shell listed in /etc/shells? ftpd will not allow you to connect if >> your shell is not listed. >> >> >> On Tue, 27 Aug 2002, Jeremy Buckner wrote: >> >>> Is there some new trick to ftpd in the 4.6 build? I have built 3 >>> differnet servers that wont let me log in via ftp no matter where I >>> make the login attempt. I have tried to debug it using syslog but the >>> logs don't give me any kind of useful info. Oh and FYI the ****** is >>> me blanking out my IP:) Any help would be great. >>> >>> >>> Aug 27 09:22:29 mail ftpd[99]: connection from ******** >>> Aug 27 09:22:29 mail ftpd[99]: <--- 220 >>> Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version > 6.00LS) ready. >>> Aug 27 09:22:29 mail ftpd[99]: <--- 221 >>> Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. >>> Aug 27 09:27:18 mail ftpd[139]: connection from ******** >>> Aug 27 09:27:18 mail ftpd[139]: <--- 220 >>> Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version > 6.00LS) ready. >>> Aug 27 09:27:18 mail ftpd[139]: lost connection >>> Aug 27 09:28:02 mail ftpd[140]: connection from ******** >>> Aug 27 09:28:02 mail ftpd[140]: <--- 220 >>> Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP server (Version > 6.00LS) ready. >>> Aug 27 09:28:02 mail ftpd[140]: <--- 221 >>> Aug 27 09:28:02 mail ftpd[140]: You could at least say goodbye. >>> Aug 27 09:33:45 mail ftpd[97]: connection from ******** >>> >>> >> >> >> > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 12:11:13 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BE5BD37B401 for ; Tue, 27 Aug 2002 12:11:10 -0700 (PDT) Received: from sixshooter.v6.thrupoint.net (sixshooter.v6.thrupoint.net [65.242.152.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 47B7743E42 for ; Tue, 27 Aug 2002 12:11:10 -0700 (PDT) (envelope-from jpb@sixshooter.v6.thrupoint.net) Received: by sixshooter.v6.thrupoint.net (Postfix, from userid 1000) id 55C90107A3; Tue, 27 Aug 2002 15:11:09 -0400 (EDT) Date: Tue, 27 Aug 2002 15:11:09 -0400 From: Jim Brown To: Jeremy Buckner Cc: freebsd-isp@freebsd.org Subject: Re: ftpd woes Message-ID: <20020827191109.GB75597@sixshooter.v6.thrupoint.net> Mail-Followup-To: Jeremy Buckner , freebsd-isp@freebsd.org References: <000801c24de7$c93e4280$0c0aa8c0@admin> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000801c24de7$c93e4280$0c0aa8c0@admin> User-Agent: Mutt/1.4i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Jeremy Buckner [2002-08-27 12:36]: > Is there some new trick to ftpd in the 4.6 build? I have built 3 differnet servers that wont let me log in via ftp no matter where I make the login attempt. I have tried to debug it using syslog but the logs don't give me any kind of useful info. Oh and FYI the ****** is me blanking out my IP:) Any help would be great. > > > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > Aug 27 09:22:29 mail ftpd[99]: <--- 220 [snip] Try switching to the debug screen (IIRC Alt-f2, check instll help) and watch the exact sequence during the FTP sessions. You may see error info there. If you can write really fast :-) write down what the exact sequences are then try those on the command line from a separate machine. HTH, jpb === To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 12:21:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3698E37B400 for ; Tue, 27 Aug 2002 12:21:41 -0700 (PDT) Received: from tchpc01.tcd.ie (tchpc.tcd.ie [134.226.10.78]) by mx1.FreeBSD.org (Postfix) with ESMTP id 66E7B43E4A for ; Tue, 27 Aug 2002 12:21:40 -0700 (PDT) (envelope-from bobb+freebsd-isp@redbrick.dcu.ie) Received: from flipflop.tchpc.tcd.ie (hpc04.iss.tcd.ie [134.226.10.47]) by tchpc01.tcd.ie (Postfix) with ESMTP id 28BB85102; Tue, 27 Aug 2002 20:21:39 +0100 (IST) Received: by flipflop.tchpc.tcd.ie (Postfix, from userid 1001) id 1B2B1177; Tue, 27 Aug 2002 20:22:17 +0100 (IST) Date: Tue, 27 Aug 2002 20:22:16 +0100 From: Robert bobb Crosbie To: Jeremy Buckner Cc: isp@FreeBSD.ORG Subject: Re: ftpd woes Message-ID: <20020827192216.GA25948@lummux.tchpc.tcd.ie> References: <000801c24de7$c93e4280$0c0aa8c0@admin> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000801c24de7$c93e4280$0c0aa8c0@admin> User-Agent: Mutt/1.4i Organization: bobb Industries Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Jeremy Buckner hath declared on Tuesday the 27 day of August 2002 :-: > Is there some new trick to ftpd in the 4.6 build? Their bringing in lukemftpd, though I believe the origional is still the default, anyway they should both "Just work(tm)". > I have built 3 differnet > servers that wont let me log in via ftp no matter where I make the login > attempt. I have tried to debug it using syslog but the logs don't give me > any kind of useful info. You could also try a packet sniffer, tcpdump/ethereal/other... Might tell you a little more about what (if anything) is going back and forth. > Oh and FYI the ****** is me blanking out my IP:) Any > help would be great. Are you useing the standard ftpd or lukemftpd ? Running as a standalone daemon or from inetd ? Do you have any firewall rules on the machine/client/inbetween ? Have you tried connecting from localhost ? Do you have anything about ftp in /etc/hosts.{allow,deny} ? Is your username in /etc/ftpusers ? users in there are _not_ allowed to use ftp. > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > Aug 27 09:22:29 mail ftpd[99]: <--- 220 > Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS) ready. > Aug 27 09:22:29 mail ftpd[99]: <--- 221 > Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. That looks like a standard timeout message, you connect but don't enter a username/password, and after a while ftpd disconnects you. What ftp client are you using ? - bobb To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 13:56: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3912737B400 for ; Tue, 27 Aug 2002 13:56:03 -0700 (PDT) Received: from mail4.cableaz.com (mail4.cableaz.com [66.218.238.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id B0F3F43E65 for ; Tue, 27 Aug 2002 13:56:02 -0700 (PDT) (envelope-from jeremy@cableaz.com) Received: from admin (proxy.cableaz.com [66.218.238.31]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g7RKib667954; Tue, 27 Aug 2002 13:44:37 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <003601c24e0c$247533b0$0c0aa8c0@admin> From: "Jeremy Buckner" To: "Robert bobb Crosbie" Cc: References: <000801c24de7$c93e4280$0c0aa8c0@admin> <20020827192216.GA25948@lummux.tchpc.tcd.ie> Subject: Re: ftpd woes Date: Tue, 27 Aug 2002 13:55:57 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org No this a new build..nothing fancy or customized. FTP running out of inetd...whatever the standard build comes with. I will look into some of your suggestions. Thanks. ----- Original Message ----- From: "Robert bobb Crosbie" To: "Jeremy Buckner" Cc: Sent: Tuesday, August 27, 2002 12:22 PM Subject: Re: ftpd woes > Jeremy Buckner hath declared on Tuesday the 27 day of August 2002 :-: > > Is there some new trick to ftpd in the 4.6 build? > > Their bringing in lukemftpd, though I believe the origional is still > the default, anyway they should both "Just work(tm)". > > > I have built 3 differnet > > servers that wont let me log in via ftp no matter where I make the login > > attempt. I have tried to debug it using syslog but the logs don't give me > > any kind of useful info. > > You could also try a packet sniffer, tcpdump/ethereal/other... > Might tell you a little more about what (if anything) is > going back and forth. > > > Oh and FYI the ****** is me blanking out my IP:) Any > > help would be great. > > Are you useing the standard ftpd or lukemftpd ? > Running as a standalone daemon or from inetd ? > Do you have any firewall rules on the machine/client/inbetween ? > Have you tried connecting from localhost ? > Do you have anything about ftp in /etc/hosts.{allow,deny} ? > Is your username in /etc/ftpusers ? users in there are _not_ allowed to use ftp. > > > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > > Aug 27 09:22:29 mail ftpd[99]: <--- 220 > > Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS) ready. > > Aug 27 09:22:29 mail ftpd[99]: <--- 221 > > Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. > > That looks like a standard timeout message, you connect but > don't enter a username/password, and after a while ftpd disconnects you. > What ftp client are you using ? > > > - bobb > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Aug 27 14:40:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B54E737B400 for ; Tue, 27 Aug 2002 14:40:32 -0700 (PDT) Received: from mail4.cableaz.com (mail4.cableaz.com [66.218.238.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2635843E6A for ; Tue, 27 Aug 2002 14:40:32 -0700 (PDT) (envelope-from jeremy@cableaz.com) Received: from admin (proxy.cableaz.com [66.218.238.31]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g7RLT7686626; Tue, 27 Aug 2002 14:29:07 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <005401c24e12$5bed9570$0c0aa8c0@admin> From: "Jeremy Buckner" To: "Robert bobb Crosbie" Cc: References: <000801c24de7$c93e4280$0c0aa8c0@admin> <20020827192216.GA25948@lummux.tchpc.tcd.ie> Subject: Re: ftpd woes Date: Tue, 27 Aug 2002 14:40:27 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Here is the tcpdump: 14:43:36.040256 silly.goofy.com.3733 > 66.219.239.81.ftp: S 450009741:450009741(0) win 16384 (DF) 14:43:36.040348 66.219.239.81.ftp > silly.goofy.com.3733: S 550559400:550559400(0) ack 450009742 win 57344 14:43:36.040794 silly.goofy.com.3733 > 66.219.239.81.ftp: . ack 1 win 17520 (DF) 14:44:08.045457 silly.goofy.com.3733 > 66.219.239.81.ftp: F 1:1(0) ack 1 win 17520 (DF) 14:44:08.045532 66.219.239.81.ftp > silly.goofy.com.3733: . ack 2 win 58400 (DF) After this it times out I guess.... Now honestly I can't make heads or tails of this stuff so I'm at your mercy. JB ----- Original Message ----- From: "Robert bobb Crosbie" To: "Jeremy Buckner" Cc: Sent: Tuesday, August 27, 2002 12:22 PM Subject: Re: ftpd woes > Jeremy Buckner hath declared on Tuesday the 27 day of August 2002 :-: > > Is there some new trick to ftpd in the 4.6 build? > > Their bringing in lukemftpd, though I believe the origional is still > the default, anyway they should both "Just work(tm)". > > > I have built 3 differnet > > servers that wont let me log in via ftp no matter where I make the login > > attempt. I have tried to debug it using syslog but the logs don't give me > > any kind of useful info. > > You could also try a packet sniffer, tcpdump/ethereal/other... > Might tell you a little more about what (if anything) is > going back and forth. > > > Oh and FYI the ****** is me blanking out my IP:) Any > > help would be great. > > Are you useing the standard ftpd or lukemftpd ? > Running as a standalone daemon or from inetd ? > Do you have any firewall rules on the machine/client/inbetween ? > Have you tried connecting from localhost ? > Do you have anything about ftp in /etc/hosts.{allow,deny} ? > Is your username in /etc/ftpusers ? users in there are _not_ allowed to use ftp. > > > Aug 27 09:22:29 mail ftpd[99]: connection from ******** > > Aug 27 09:22:29 mail ftpd[99]: <--- 220 > > Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version 6.00LS) ready. > > Aug 27 09:22:29 mail ftpd[99]: <--- 221 > > Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. > > That looks like a standard timeout message, you connect but > don't enter a username/password, and after a while ftpd disconnects you. > What ftp client are you using ? > > > - bobb > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 0: 9:48 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0AF8937B400 for ; Wed, 28 Aug 2002 00:09:46 -0700 (PDT) Received: from mail.yazzy.org (mail.wrs.no [80.232.16.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 36E4D43E6A for ; Wed, 28 Aug 2002 00:09:45 -0700 (PDT) (envelope-from yazzy@yazzy.org) Received: from yazzy.org (saruman.wrs [192.168.64.6]) by mail.yazzy.org (Postfix) with SMTP id 20D7562F6B2D; Wed, 28 Aug 2002 09:06:40 +0200 (CEST) Received: from mail.wrs.no ([80.232.16.66]) (SquirrelMail authenticated user yazzy.yazzy.org) by www.yazzy.org with HTTP; Wed, 28 Aug 2002 09:08:59 +0200 (CEST) Message-ID: <43677.80.232.16.66.1030518539.squirrel@www.yazzy.org> Date: Wed, 28 Aug 2002 09:08:59 +0200 (CEST) Subject: Re: Port forwarding recommendations? From: "Marcin Jessa" To: Importance: Normal X-MSMail-Priority: Normal X-Priority: 3 In-Reply-To: <200208270715.29162.absinthe@pobox.com> References: <200208270715.29162.absinthe@pobox.com> Cc: Reply-To: yazzy@yazzy.org X-Mailer: h4x0r mail yazzy.org (version 1337) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Dylan. Sounds like you need NAT. Both ipfw and ipf have this funcionality which is really easy to implement. I have written 2 'ipf and ipfw quick and dirty' howtos about this subject. Check out the FreeBSD section on www.ezunix.orgBtw, next time someone tells you to use some fancy web based (linux!) tool to configure your filrewall, put his email directly to /dev/null.Running a web server on a firewall... geez... Good luck. Cheers YazzY Dylan Carlson said: > Hi, > > There are volumes of mailing list messages out there on the subject of > firewalls, but the solutions for different circumstances are not clear. > Your recommendations would be appreciated. > > I have a simple low-end pentium box I want to do the following: > > - Firewall (ipfilter or ipfw, comfortable with either one) > - One external IP assigned via DHCP (from the ISP) > - One internal IP serving as a gateway address for a private class C - > NAT sharing to 4-5 hosts on the protected, internal subnet > - Inbound port forwarding > > ...where "port forwarding" means listening on a port on the external > interface of the firewall and forwarding to a specified internal host > for the rule. I have looked at [ /usr/ports/net/portfwd ] but I am > not sure how well/if this works with any of the NAT and firewall > implementations. > > Wondering which components you would use, why - and any caveats. I > would be thankful for any references as well. > > Provided I am successful with this I plan on writing up a procedure in > DocBook and and kicking it over to the FreeBSD documentation project. > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 1:14: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B69FC37B400 for ; Wed, 28 Aug 2002 01:14:03 -0700 (PDT) Received: from sixshooter.v6.thrupoint.net (sixshooter.v6.thrupoint.net [65.242.152.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1883F43E6A for ; Wed, 28 Aug 2002 01:14:03 -0700 (PDT) (envelope-from jpb@sixshooter.v6.thrupoint.net) Received: by sixshooter.v6.thrupoint.net (Postfix, from userid 1000) id 25D26107A3; Wed, 28 Aug 2002 04:14:02 -0400 (EDT) Date: Wed, 28 Aug 2002 04:14:02 -0400 From: Jim Brown To: isp@FreeBSD.ORG Subject: Re: ftpd woes Message-ID: <20020828081401.GA77042@sixshooter.v6.thrupoint.net> Mail-Followup-To: Jim Brown , isp@FreeBSD.ORG References: <000801c24de7$c93e4280$0c0aa8c0@admin> <20020827192216.GA25948@lummux.tchpc.tcd.ie> <005401c24e12$5bed9570$0c0aa8c0@admin> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <005401c24e12$5bed9570$0c0aa8c0@admin> User-Agent: Mutt/1.4i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Jeremy Buckner [2002-08-27 17:41]: > Here is the tcpdump: > > 14:43:36.040256 silly.goofy.com.3733 > 66.219.239.81.ftp: S > 450009741:450009741(0) win 16384 (DF) > 14:43:36.040348 66.219.239.81.ftp > silly.goofy.com.3733: S > 550559400:550559400(0) ack 450009742 win 57344 > 14:43:36.040794 silly.goofy.com.3733 > 66.219.239.81.ftp: . ack 1 win 17520 > (DF) > 14:44:08.045457 silly.goofy.com.3733 > 66.219.239.81.ftp: F 1:1(0) ack 1 win > 17520 (DF) > 14:44:08.045532 66.219.239.81.ftp > silly.goofy.com.3733: . ack 2 win 58400 > (DF) > > After this it times out I guess.... > > Now honestly I can't make heads or tails of this stuff so I'm at your mercy. > > JB You can get more detail with the following: tcpdump -n -vv -x -X -s 1000 tcp -n don't resolve addresses -vv (or -vvv) more detail -x and -X print ascii and hex packet contents -s 1000 snaplength of packet dump First glace- the 3way handshake looks OK, but the server isn't sending banner info.... there is a 30 second delay between the lines 3 and 4. The client didn't get anything, so it is retranmitting its previous ACK. Check for a firewall or some other packet filtering proxy between you and the server... Also check that the ftpd process is actually running (after being started by inetd if needed) on the server.... HTH, jpb === To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 1:37:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7BC3937B400 for ; Wed, 28 Aug 2002 01:37:51 -0700 (PDT) Received: from pintail.mail.pas.earthlink.net (pintail.mail.pas.earthlink.net [207.217.120.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 375B943E6E for ; Wed, 28 Aug 2002 01:37:51 -0700 (PDT) (envelope-from absinthe@pobox.com) Received: from dhcp068-64-151-24.nt01-c4.cpe.charter-ne.com ([24.151.64.68] helo=laredo.retrovertigo.com) by pintail.mail.pas.earthlink.net with esmtp (Exim 3.33 #1) id 17jyKk-000280-00 for freebsd-isp@FreeBSD.ORG; Wed, 28 Aug 2002 01:37:50 -0700 Content-Type: text/plain; charset="us-ascii" From: Dylan Carlson Reply-To: absinthe@pobox.com To: freebsd-isp@FreeBSD.ORG Subject: [SUMMARY] Port forwarding recommendations? Date: Wed, 28 Aug 2002 04:37:50 -0400 User-Agent: KMail/1.4.2 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <200208280437.50576.absinthe@pobox.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I got a lot of responses to this (thank you). 1. "Derek" and Noah K Sematimba suggested the ipfw/natd combination. Which worked, but took me couple of hours. I ran into some circumstances where natd seemed to blow it's brains out when I was reloading the rules, but I got it to work. I've always (personally) preferred the ipfilter way of doing things, and this experience hasn't changed that. 2. "Leigh V" suggested an ipfilter script which worked pretty well, got the basic firewall up quickly, and then I dropped in the port forwarding rules and it worked great. 3. Martyn Routley suggested SmoothWall, a linux-based canned firewall package. Reluctant at first, I tried it out. Admittedly, it's pretty slick. If you don't plan on the machine being anything but a firewall, it does the job. I had it up and running in about 20 minutes with the port forwarding. And snort, squid, and dynamic DNS built in. Port forwarding was as easy as it gets. Apart from being an ipchains firewall, it's using the same tools as everything else ... it's just been packaged neatly into a purpose-built platform, and has an apache/mod_ssl interface for configuration-which is pretty much how all the commercial firewall interfaces are going anyway (web UI). The UI makes changes easy; particularly the "patching" part of SmoothWall was quite nice. There's no reason something like SmoothWall couldn't be built around FreeBSD. I hope someday there is, though I'm not the guy for that job. I'm wrapped up in Java and helping out the FreeBSD Java Project. Conclusions SmoothWall is the easiest and probably ideal way to go. I'm still running it live at the moment, but I plan on going back to #2, because I am a BSD guy. It's called "eating one's own dog food." I hope that someday a nice package such as this comes to BSD. Thanks to everyone for your input. Cheers, -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 10:58:24 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4DBCF37B401 for ; Wed, 28 Aug 2002 10:58:20 -0700 (PDT) Received: from psknet.com (voyager.psknet.com [63.171.251.15]) by mx1.FreeBSD.org (Postfix) with SMTP id 9E04C43E42 for ; Wed, 28 Aug 2002 10:58:19 -0700 (PDT) (envelope-from troy@psknet.com) Received: (qmail 35489 invoked by uid 25); 28 Aug 2002 17:44:18 -0000 Received: from inspiron.psknet.com (HELO dilbert) (63.171.251.8) by smtp2.psknet.com with SMTP; 28 Aug 2002 17:44:18 -0000 From: "Troy Settle" To: Subject: 3ware Escalades 7500 Date: Wed, 28 Aug 2002 13:58:14 -0400 Message-ID: <000801c24ebc$7b1bc1b0$08fbab3f@psknet.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I've checked Mike's RAID page, and didn't see the Escalade 7500 listed. Does anyone know if this will work as a RAID-5 device under FreeBSD? Thanks, -- Troy Settle Pulaski Networks http://www.psknet.com 540.994.4254 - 866.477.5638 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 11:26:11 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 404C837B400 for ; Wed, 28 Aug 2002 11:26:04 -0700 (PDT) Received: from exchange.corp.cre8.com (ns.cre8.com [216.135.81.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 52CB243E77 for ; Wed, 28 Aug 2002 11:26:03 -0700 (PDT) (envelope-from sullrich@CRE8.COM) Received: by exchange.corp.cre8.com with Internet Mail Service (5.5.2653.19) id ; Wed, 28 Aug 2002 14:25:59 -0400 Message-ID: <2F6DCE1EFAB3BC418B5C324F13934C9601D232C7@exchange.corp.cre8.com> From: Scott Ullrich To: 'Troy Settle' , freebsd-isp@freebsd.org Subject: RE: 3ware Escalades 7500 Date: Wed, 28 Aug 2002 14:25:56 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C24EC0.59C7D130" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C24EC0.59C7D130 Content-Type: text/plain; charset="iso-8859-1" Yes, the 3ware will run as a raid 5. My 7500 was configured with a raid 5 at first then I decided to move to a Raid 10. Needless to say, I'm pushing 70 megabytes a sec with bonnie++ using 4 100GB WD drives with the 8 megabyte cache. Take a look at http://people.freebsd.org/~msmith/RAID/3ware/notes.html and http://people.freebsd.org/~msmith/RAID/3ware/ Hope this helps, Scott -----Original Message----- From: Troy Settle [mailto:troy@psknet.com] Sent: Wednesday, August 28, 2002 1:58 PM To: freebsd-isp@freebsd.org Subject: 3ware Escalades 7500 I've checked Mike's RAID page, and didn't see the Escalade 7500 listed. Does anyone know if this will work as a RAID-5 device under FreeBSD? Thanks, -- Troy Settle Pulaski Networks http://www.psknet.com 540.994.4254 - 866.477.5638 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message ------_=_NextPart_001_01C24EC0.59C7D130 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: 3ware Escalades 7500

Yes, the 3ware will run as a raid 5.  My 7500 = was configured with a raid 5 at first then I decided to move to a Raid = 10.  Needless to say, I'm pushing 70 megabytes a sec with bonnie++ = using 4 100GB WD drives with the 8 megabyte cache.

Take a look at http://people.freebsd.org/~msmith/RAID/3ware/notes.htm= l
and http://people.freebsd.org/~msmith/RAID/3ware/

Hope this helps,

Scott

-----Original Message-----
From: Troy Settle [mailto:troy@psknet.com]
Sent: Wednesday, August 28, 2002 1:58 PM
To: freebsd-isp@freebsd.org
Subject: 3ware Escalades 7500



I've checked Mike's RAID page, and didn't see the = Escalade 7500 listed.
Does anyone know if this will work as a RAID-5 = device under FreeBSD?

Thanks,

--
  Troy Settle
  Pulaski Networks
  http://www.psknet.com
  540.994.4254 - 866.477.5638
 


To Unsubscribe: send mail to = majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body = of the message

------_=_NextPart_001_01C24EC0.59C7D130-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Aug 28 14:42:14 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5560137B400 for ; Wed, 28 Aug 2002 14:42:08 -0700 (PDT) Received: from exchmx2.lsuhsc.edu (exchmx2.lsuhsc.edu [155.58.212.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8DA1243E3B for ; Wed, 28 Aug 2002 14:42:07 -0700 (PDT) (envelope-from jmire@lsuhsc.edu) Received: by exchmx2.lsuhsc.edu with Internet Mail Service (5.5.2653.19) id ; Wed, 28 Aug 2002 16:42:50 -0500 Message-ID: <1AD2F3FAFA91FE45B2CE01E20C4D92413BE81D@sh-exch> From: "Mire, John" To: "'freebsd-isp@FreeBSD.ORG'" Subject: RE: Port forwarding recommendations? Date: Wed, 28 Aug 2002 16:35:14 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C24EDA.CBC46CC0" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C24EDA.CBC46CC0 Content-Type: text/plain; charset="iso-8859-1" try www.netboz.org it's FreeBSD based and it's almost an appliance as far as setup is concerned. -----Original Message----- From: Dylan Carlson [mailto:absinthe@pobox.com] Sent: Tuesday, August 27, 2002 6:15 AM To: freebsd-isp@FreeBSD.ORG Subject: Port forwarding recommendations? Hi, There are volumes of mailing list messages out there on the subject of firewalls, but the solutions for different circumstances are not clear. Your recommendations would be appreciated. I have a simple low-end pentium box I want to do the following: - Firewall (ipfilter or ipfw, comfortable with either one) - One external IP assigned via DHCP (from the ISP) - One internal IP serving as a gateway address for a private class C - NAT sharing to 4-5 hosts on the protected, internal subnet - Inbound port forwarding ...where "port forwarding" means listening on a port on the external interface of the firewall and forwarding to a specified internal host for the rule. I have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if this works with any of the NAT and firewall implementations. Wondering which components you would use, why - and any caveats. I would be thankful for any references as well. Provided I am successful with this I plan on writing up a procedure in DocBook and and kicking it over to the FreeBSD documentation project. TIA, -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message ------_=_NextPart_001_01C24EDA.CBC46CC0 Content-Type: text/html; charset="iso-8859-1" RE: Port forwarding recommendations?

try www.netboz.org it's FreeBSD based and it's almost an appliance as far as setup is concerned.

-----Original Message-----
From: Dylan Carlson [mailto:absinthe@pobox.com]
Sent: Tuesday, August 27, 2002 6:15 AM
To: freebsd-isp@FreeBSD.ORG
Subject: Port forwarding recommendations?


Hi,

There are volumes of mailing list messages out there on the subject of
firewalls, but the solutions for different circumstances are not clear.  Your
recommendations would be appreciated.

I have a simple low-end pentium box I want to do the following:

- Firewall  (ipfilter or ipfw, comfortable with either one)
- One external IP assigned via DHCP (from the ISP)
- One internal IP serving as a gateway address for a private class C
- NAT sharing to 4-5 hosts on the protected, internal subnet
- Inbound port forwarding

...where "port forwarding" means listening on a port on the external interface
of the firewall and forwarding to a specified internal host for the rule.  I
have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if this
works with any of the NAT and firewall implementations.

Wondering which components you would use, why - and any caveats.  I would be
thankful for any references as well. 

Provided I am successful with this I plan on writing up a procedure in DocBook
and and kicking it over to the FreeBSD documentation project.

TIA,
--
Dylan Carlson [absinthe@pobox.com]

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

------_=_NextPart_001_01C24EDA.CBC46CC0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Aug 29 10:10:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7FF4A37B401 for ; Thu, 29 Aug 2002 10:10:45 -0700 (PDT) Received: from mail.yazzy.org (mail.wrs.no [80.232.16.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id D716543E4A for ; Thu, 29 Aug 2002 10:10:44 -0700 (PDT) (envelope-from yazzy@yazzy.org) Received: from yazzy.org (saruman.wrs [192.168.64.6]) by mail.yazzy.org (Postfix) with SMTP id BBB4762F7489 for ; Thu, 29 Aug 2002 15:37:17 +0200 (CEST) Received: from mail.wrs.no ([80.232.16.66]) (SquirrelMail authenticated user yazzy.yazzy.org) by www.yazzy.org with HTTP; Thu, 29 Aug 2002 15:39:43 +0200 (CEST) Message-ID: <54741.80.232.16.66.1030628383.squirrel@www.yazzy.org> Date: Thu, 29 Aug 2002 15:39:43 +0200 (CEST) Subject: RE: Port forwarding recommendations? From: "Marcin Jessa" To: Importance: Normal X-MSMail-Priority: Normal X-Priority: 3 Reply-To: yazzy@yazzy.org X-Mailer: h4x0r mail yazzy.org (version 1337) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi www.fwbuilder.org may be of interest as well Mire, John said: > try www.netboz.org it's FreeBSD based and it's almost an appliance as > far as setup is concerned. > > -----Original Message----- > From: Dylan Carlson [mailto:absinthe@pobox.com] > Sent: Tuesday, August 27, 2002 6:15 AM > To: freebsd-isp@FreeBSD.ORG > Subject: Port forwarding recommendations? > > > Hi, > > There are volumes of mailing list messages out there on the subject of > firewalls, but the solutions for different circumstances are not clear. > Your > recommendations would be appreciated. > > I have a simple low-end pentium box I want to do the following: > > - Firewall (ipfilter or ipfw, comfortable with either one) > - One external IP assigned via DHCP (from the ISP) > - One internal IP serving as a gateway address for a private class C - > NAT sharing to 4-5 hosts on the protected, internal subnet > - Inbound port forwarding > > ...where "port forwarding" means listening on a port on the external > interface > of the firewall and forwarding to a specified internal host for the > rule. I > > have looked at [ /usr/ports/net/portfwd ] but I am not sure how well/if > this > > works with any of the NAT and firewall implementations. > > Wondering which components you would use, why - and any caveats. I > would be > > thankful for any references as well. > > Provided I am successful with this I plan on writing up a procedure in > DocBook > and and kicking it over to the FreeBSD documentation project. > > TIA, > -- > Dylan Carlson [absinthe@pobox.com] > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- -- Marcin M. Jessa Software developer/System Administrator Wireless Reading Systems ASA Skreddervn 9 N-1537 Moss Norway http://www.wrs.no Phone: +47 69 27 96 88 Cellular: +47 988 505 44 ----------- My opinions may have changed, but not the fact that I am right. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 0:39:26 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C9F2C37B400 for ; Fri, 30 Aug 2002 00:39:22 -0700 (PDT) Received: from lemsip.invictanet.co.uk (pop3.anti84787.com [213.48.153.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id CE1B743E4A for ; Fri, 30 Aug 2002 00:39:20 -0700 (PDT) (envelope-from martyn@support.invictanet.co.uk) Received: from harry (fw-gw.invicta.net [80.88.194.11]) (authenticated bits=0) by lemsip.invictanet.co.uk (8.12.5/8.12.5) with ESMTP id g7U7dxAe015365 for ; Fri, 30 Aug 2002 08:39:59 +0100 (BST) (envelope-from martyn@support.invictanet.co.uk) X-Authentication-Warning: lemsip.invictanet.co.uk: Host fw-gw.invicta.net [80.88.194.11] claimed to be harry From: "InvictaNet Customer Support" To: "Freebsd-ISP" Subject: RE: Port forwarding recommendations? Date: Fri, 30 Aug 2002 08:38:42 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <43677.80.232.16.66.1030518539.squirrel@www.yazzy.org> Importance: Normal X-MailScanner: Found to be clean X-MailScanner-SpamCheck: not spam, SpamAssassin (score=-2.4, required 5, IN_REP_TO, X_AUTH_WARNING, SUBJ_ENDS_IN_Q_MARK, TO_LOCALPART_EQ_REAL, DOUBLE_CAPSWORD, AWL) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Not doing research before you criticise... geez... Read the website/docs first or even try it and try to crack it, then decide if it's not secure. http://www.smoothwall.co.uk Martyn Routley ----------------------------------------------------- InvictaNet - The Internet in Plain English, Guaranteed http://www.invictanet.co.uk info@invictanet.co.uk phone: 08707 440180 fax: 08707 440181 ------------------------------------------------------ Please Note: All services are provided on the basis that they are business to business and that the Consumer Protection (Distance Selling) Regulations 2000 do not apply. ----------------------------------------------------- -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Marcin Jessa Sent: 28 August 2002 08:09 To: absinthe@pobox.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Port forwarding recommendations? Hi Dylan. Sounds like you need NAT. Both ipfw and ipf have this funcionality which is really easy to implement. I have written 2 'ipf and ipfw quick and dirty' howtos about this subject. Check out the FreeBSD section on www.ezunix.orgBtw, next time someone tells you to use some fancy web based (linux!) tool to configure your filrewall, put his email directly to /dev/null.Running a web server on a firewall... geez... Good luck. Cheers YazzY -- This message has been scanned for viruses and dangerous content by the http://www.anti84787.com MailScanner, and is believed to be clean. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 4:58:20 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B12A037B400 for ; Fri, 30 Aug 2002 04:58:16 -0700 (PDT) Received: from hotmail.com (oe72.pav2.hotmail.com [64.4.36.206]) by mx1.FreeBSD.org (Postfix) with ESMTP id 685BE43E4A for ; Fri, 30 Aug 2002 04:58:16 -0700 (PDT) (envelope-from unixtools@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 30 Aug 2002 04:58:16 -0700 X-Originating-IP: [202.41.224.36] From: "Unix Tools" To: , "FreeBSD ISP List" References: Subject: Re: HostnameLookups directive not working in vhosts Date: Fri, 30 Aug 2002 05:43:02 +0530 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 30 Aug 2002 11:58:16.0379 (UTC) FILETIME=[8663D0B0:01C2501C] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, By default HostnameLookups is OFF So for the virtualhosts which need HostnameLookups On set it else leave it as is and in the main config set HostnameLookups to OFF ----- Original Message ----- From: To: "FreeBSD ISP List" Sent: Sunday, August 18, 2002 02:36 AM Subject: HostnameLookups directive not working in vhosts > > I recently moved a lot of virtual hosts from an old FBSD server running > apache 1.3.12 to a new one running 1.3.26. > > The server has HostNameLookups set to On in the main httpd.conf. In the > virtual hosts conf file (implemented using include/conf), I have a couple > of hosts with the the same directive turned Off. However, the custom logs > for these servers still show lookups unless I turn it off in the main > config. > > I'm pretty sure this was working fine on the old box, which had a > virtually identical config. The apache docs > (http://httpd.apache.org/docs/mod/core.html#hostnamelookups) note that > this can be done in a virtual host config. The vhost config looks like: > > > ServerAdmin webmaster@domain.com > User joeuser > Group vhosts > DocumentRoot /home/servers/domain.com/pages > ServerName domain.com > ServerAlias www.domain.com > HostnameLookups off > CustomLog /home/servers/domain.com/access_log combined > ScriptAlias /cgi-bin/ "/home/servers/domain.com/cgi-bin/" > > > From the main config: > > > AllowOverride all > Options Indexes FollowSymLinks MultiViews ExecCGI IncludesNOEXEC > Order allow,deny > Allow from all > > > Ideas? > > James Smallacombe PlantageNet, Inc. CEO and Janitor > up@3.am http://3.am > ========================================================================= > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 5:11:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4F1AC37B400 for ; Fri, 30 Aug 2002 05:11:25 -0700 (PDT) Received: from hotmail.com (oe58.pav2.hotmail.com [64.4.36.192]) by mx1.FreeBSD.org (Postfix) with ESMTP id EE7B943E72 for ; Fri, 30 Aug 2002 05:11:24 -0700 (PDT) (envelope-from unixtools@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 30 Aug 2002 05:11:24 -0700 X-Originating-IP: [202.41.224.36] From: "Unix Tools" To: "Jeremy Buckner" , References: <000801c24de7$c93e4280$0c0aa8c0@admin> Subject: Re: ftpd woes Date: Fri, 30 Aug 2002 05:56:10 +0530 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_03D1_01C24FE9.F0D57350" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 30 Aug 2002 12:11:24.0987 (UTC) FILETIME=[5C6FD8B0:01C2501E] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_03D1_01C24FE9.F0D57350 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable If your ftp log file is /usr/log/messages just open a ssh session and tupe tail -f /usr/log/messages simultaneously ftp to the server You will get the error scroll on the ssh screen BEST OF LUCK ----- Original Message -----=20 From: Jeremy Buckner=20 To: isp@FreeBSD.ORG=20 Sent: Tuesday, August 27, 2002 10:05 PM Subject: ftpd woes Is there some new trick to ftpd in the 4.6 build? I have built 3 = differnet servers that wont let me log in via ftp no matter where I make = the login attempt. I have tried to debug it using syslog but the logs = don't give me any kind of useful info. Oh and FYI the ****** is me = blanking out my IP:) Any help would be great. Aug 27 09:22:29 mail ftpd[99]: connection from ******** Aug 27 09:22:29 mail ftpd[99]: <--- 220 Aug 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:22:29 mail ftpd[99]: <--- 221 Aug 27 09:22:29 mail ftpd[99]: You could at least say goodbye. Aug 27 09:27:18 mail ftpd[139]: connection from ******** Aug 27 09:27:18 mail ftpd[139]: <--- 220 Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:27:18 mail ftpd[139]: lost connection Aug 27 09:28:02 mail ftpd[140]: connection from ******** Aug 27 09:28:02 mail ftpd[140]: <--- 220 Aug 27 09:28:02 mail ftpd[140]: goofy.server.com FTP server (Version = 6.00LS) ready. Aug 27 09:28:02 mail ftpd[140]: <--- 221 Aug 27 09:28:02 mail ftpd[140]: You could at least say goodbye. Aug 27 09:33:45 mail ftpd[97]: connection from ******** ------=_NextPart_000_03D1_01C24FE9.F0D57350 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
If your ftp log file is=20 /usr/log/messages
 
just open a ssh session and tupe tail = -f=20 /usr/log/messages
simultaneously ftp to the = server
You will get the error scroll on the = ssh=20 screen
BEST OF LUCK
 
 
----- Original Message -----
From:=20 Jeremy=20 Buckner
Sent: Tuesday, August 27, 2002 = 10:05=20 PM
Subject: ftpd woes

Is there some new trick to ftpd in = the 4.6 build?=20 I have built 3 differnet servers that wont let me log in via ftp no = matter=20 where I make the login attempt. I have tried  to debug it using = syslog=20 but the logs don't give me any kind of useful info. Oh and FYI the = ****** is=20 me blanking out my IP:) Any help would be great.
 
 
Aug 27 09:22:29 mail ftpd[99]: = connection from=20 ********
Aug 27 09:22:29 mail ftpd[99]: = <--- 220
Aug=20 27 09:22:29 mail ftpd[99]: goofy.server.com FTP server (Version = 6.00LS)=20 ready.
Aug 27 09:22:29 mail ftpd[99]: <--- 221
Aug 27 = 09:22:29 mail=20 ftpd[99]: You could at least say goodbye.
Aug 27 09:27:18 mail = ftpd[139]:=20 connection from ********
Aug 27 09:27:18 mail ftpd[139]: = <---=20 220
Aug 27 09:27:18 mail ftpd[139]: goofy.server.com FTP server = (Version=20 6.00LS) ready.
Aug 27 09:27:18 mail ftpd[139]: lost = connection
Aug 27=20 09:28:02 mail ftpd[140]: connection from ********
Aug 27 09:28:02 = mail=20 ftpd[140]: <--- 220
Aug 27 09:28:02 mail ftpd[140]: = goofy.server.com FTP=20 server (Version 6.00LS) ready.
Aug 27 09:28:02 mail ftpd[140]: = <---=20 221
Aug 27 09:28:02 mail ftpd[140]: You could at least say = goodbye.
Aug=20 27 09:33:45 mail ftpd[97]: connection from=20 ********
------=_NextPart_000_03D1_01C24FE9.F0D57350-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 6:37: 1 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0814237B400 for ; Fri, 30 Aug 2002 06:36:56 -0700 (PDT) Received: from richard2.pil.net (richard2.pil.net [208.8.16.11]) by mx1.FreeBSD.org (Postfix) with SMTP id 2927243E42 for ; Fri, 30 Aug 2002 06:36:55 -0700 (PDT) (envelope-from up@3.am) Received: (qmail 49092 invoked by uid 1825); 30 Aug 2002 13:36:52 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 30 Aug 2002 13:36:52 -0000 Date: Fri, 30 Aug 2002 09:36:52 -0400 (EDT) From: X-Sender: up@richard2.pil.net To: Unix Tools Cc: FreeBSD ISP List Subject: Re: HostnameLookups directive not working in vhosts In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I think you misunderstood my query...I had turned it On in the global config and was trying to turn it Off on a per-vhost basis. I found the problem a few days ago...the path to the included conf file was pointing to the wrong file...doh! On Fri, 30 Aug 2002, Unix Tools wrote: > Hi, > By default HostnameLookups is OFF > So for the virtualhosts which need HostnameLookups On set it else leave it > as is > and in the main config set HostnameLookups to OFF > > > > ----- Original Message ----- > From: > To: "FreeBSD ISP List" > Sent: Sunday, August 18, 2002 02:36 AM > Subject: HostnameLookups directive not working in vhosts > > > > > > I recently moved a lot of virtual hosts from an old FBSD server running > > apache 1.3.12 to a new one running 1.3.26. > > > > The server has HostNameLookups set to On in the main httpd.conf. In the > > virtual hosts conf file (implemented using include/conf), I have a couple > > of hosts with the the same directive turned Off. However, the custom logs > > for these servers still show lookups unless I turn it off in the main > > config. > > > > I'm pretty sure this was working fine on the old box, which had a > > virtually identical config. The apache docs > > (http://httpd.apache.org/docs/mod/core.html#hostnamelookups) note that > > this can be done in a virtual host config. The vhost config looks like: > > > > > > ServerAdmin webmaster@domain.com > > User joeuser > > Group vhosts > > DocumentRoot /home/servers/domain.com/pages > > ServerName domain.com > > ServerAlias www.domain.com > > HostnameLookups off > > CustomLog /home/servers/domain.com/access_log combined > > ScriptAlias /cgi-bin/ "/home/servers/domain.com/cgi-bin/" > > > > > > From the main config: > > > > > > AllowOverride all > > Options Indexes FollowSymLinks MultiViews ExecCGI IncludesNOEXEC > > Order allow,deny > > Allow from all > > > > > > Ideas? > > > > James Smallacombe PlantageNet, Inc. CEO and Janitor > > up@3.am http://3.am > > ========================================================================= > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > James Smallacombe PlantageNet, Inc. CEO and Janitor up@3.am http://3.am ========================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 17: 7:35 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C301B37B401 for ; Fri, 30 Aug 2002 17:07:32 -0700 (PDT) Received: from laibach.mweb.co.za (laibach.mweb.co.za [196.2.53.177]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1DA0A43E77 for ; Fri, 30 Aug 2002 17:07:27 -0700 (PDT) (envelope-from savage@savage.za.org) Received: from cpt-dial-196-30-180-32.mweb.co.za ([196.30.180.32] helo=netsonic.megalan.co.za) by laibach.mweb.co.za with esmtp (Exim 3.33 #2) id 17kvdz-0002jc-00 for isp@freebsd.org; Sat, 31 Aug 2002 01:57:40 +0200 Received: from vscan by netsonic.megalan.co.za with scanned-ok (Exim 3.36 #1) id 17kvnU-00094I-46 for isp@freebsd.org; Sat, 31 Aug 2002 02:07:28 +0200 Received: from genocide.megalan.co.za ([192.168.1.254] helo=genocide) by netsonic.megalan.co.za with asmtp (Exim 3.36 #1) id 17kvnL-000945-46 for isp@freebsd.org; Sat, 31 Aug 2002 02:07:19 +0200 Message-ID: <000d01c25082$605551d0$fe01a8c0@genocide> Reply-To: "Chris Knipe" From: "Chris Knipe" To: Subject: PCCOM Multiport Serial Cards Date: Sat, 31 Aug 2002 02:07:11 +0200 Organization: MegaLAN Corporate Networking Services MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Lo all, I've been having a major uphill battle to get my PCCOM PCI card working on FreeBSD. After allot of searching, I seemed to have found out that the puc serial card needs to be used. After looking through src/sys/dev/puc/pucdata.c, I realised that only the 4-port versions are supported? What about the 2, 8, and 16-port cards? I currently have 2 x 8-port cards, and 1 x 16-port card I need to get working rather quickly :-( I have all the documentation / manuals / specs / linux drivers for these cards, but I'm not to sure of what to add where.... Can anyone perhaps give me some advice? -- me To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 18:58:22 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BDF5337B400 for ; Fri, 30 Aug 2002 18:58:20 -0700 (PDT) Received: from I-Sphere.COM (shell.i-sphere.com [209.249.146.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6190843E4A for ; Fri, 30 Aug 2002 18:58:20 -0700 (PDT) (envelope-from fasty@shell.i-sphere.com) Received: from shell.i-sphere.com (fasty@shell [209.249.146.70]) by I-Sphere.COM (8.12.3/8.12.3) with ESMTP id g7V1x0g9032823 for ; Fri, 30 Aug 2002 18:59:00 -0700 (PDT) (envelope-from fasty@shell.i-sphere.com) Received: (from fasty@localhost) by shell.i-sphere.com (8.12.3/8.12.3/Submit) id g7V1x05q032822 for freebsd-isp@freebsd.org; Fri, 30 Aug 2002 18:59:00 -0700 (PDT) Date: Fri, 30 Aug 2002 18:59:00 -0700 From: faSty To: freebsd-isp@freebsd.org Subject: solution? Message-ID: <20020831015900.GA32780@i-sphere.com> Mail-Followup-To: faSty , freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i X-Virus-Scanned: by amavisd-milter (http://amavis.org/) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I wonder anyone have solution. here my question is I have a shell server with FreeBSD 46.2. How do I prevent any customer abuse the IP aliases instead put all customers assign to one IP as default prevent anybody abuse on IP aliases for such as IRC session IE. export IRCHOST=IPALIAS. How do i stop them doing override IRCHOST? let me know thanks, -fasty To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 19:20:15 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0368A37B400 for ; Fri, 30 Aug 2002 19:20:13 -0700 (PDT) Received: from procyon.firepipe.net (procyon.firepipe.net [198.78.66.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8975B43E4A for ; Fri, 30 Aug 2002 19:20:12 -0700 (PDT) (envelope-from will@csociety.org) Received: by procyon.firepipe.net (Postfix, from userid 1000) id 174E921437; Fri, 30 Aug 2002 19:18:56 -0700 (PDT) Date: Fri, 30 Aug 2002 19:18:55 -0700 From: Will Andrews To: faSty Cc: freebsd-isp@freebsd.org Subject: Re: solution? Message-ID: <20020831021855.GU90596@procyon.firepipe.net> Mail-Followup-To: faSty , freebsd-isp@freebsd.org References: <20020831015900.GA32780@i-sphere.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020831015900.GA32780@i-sphere.com> User-Agent: Mutt/1.4i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, Aug 30, 2002 at 06:59:00PM -0700, faSty wrote: > I wonder anyone have solution. here my question is I have a shell server with > FreeBSD 46.2. How do I prevent any customer abuse the IP aliases instead put > all customers assign to one IP as default prevent anybody abuse on IP aliases > for such as IRC session IE. export IRCHOST=IPALIAS. How do i stop them doing > override IRCHOST? ipfw can restrict use of IPs per user. regards, -- wca To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 20: 0: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9FF1C37B400 for ; Fri, 30 Aug 2002 20:00:04 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 781B243E4A for ; Fri, 30 Aug 2002 20:00:03 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 17kxUu-0002Pl-00; Fri, 30 Aug 2002 18:56:24 -0700 Date: Fri, 30 Aug 2002 18:56:14 -0700 (PDT) From: Tom Samplonius To: Will Andrews Cc: faSty , freebsd-isp@freebsd.org Subject: Re: solution? In-Reply-To: <20020831021855.GU90596@procyon.firepipe.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 30 Aug 2002, Will Andrews wrote: > On Fri, Aug 30, 2002 at 06:59:00PM -0700, faSty wrote: > > I wonder anyone have solution. here my question is I have a shell server with > > FreeBSD 46.2. How do I prevent any customer abuse the IP aliases instead put > > all customers assign to one IP as default prevent anybody abuse on IP aliases > > for such as IRC session IE. export IRCHOST=IPALIAS. How do i stop them doing > > override IRCHOST? > > ipfw can restrict use of IPs per user. Though it might not be too scalable if you have lots of users. You can however, put all the shell users in jail, since jail users can only use the single jail IP. > regards, > -- > wca Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 20:26:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2F64237B400 for ; Fri, 30 Aug 2002 20:26:21 -0700 (PDT) Received: from stella.pyramus.com (ns2.pyramus.com [67.92.212.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 70E4143E42 for ; Fri, 30 Aug 2002 20:26:20 -0700 (PDT) (envelope-from blake@pyramus.com) Received: from pyramus.com (dark-star.pyramus.com [10.10.1.7]) by stella.pyramus.com (8.11.6/8.9.3) with ESMTP id g7T9iit00750 for ; Thu, 29 Aug 2002 02:44:44 -0700 (PDT) (envelope-from blake@pyramus.com) Message-ID: <3D6DECEA.1060608@pyramus.com> Date: Thu, 29 Aug 2002 02:44:10 -0700 From: Blake Swensen User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: FreeBSD ISP List Subject: IPFW Help Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I cannot get local traffic to contact sites. Consider that www.1235.com is a virtual domain and is natd-ed to a server inside the firewall. There is no occurance of 12345.com on our internal dns for private ip resolution, so when local machines try to access the natd-ed address, their connection is refused. any help? Peace, Blake To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Aug 30 20:31: 5 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 02DA737B400 for ; Fri, 30 Aug 2002 20:31:03 -0700 (PDT) Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 088EC43E72 for ; Fri, 30 Aug 2002 20:31:02 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by skywalker.rogness.net (8.11.3/8.11.3) with ESMTP id g7V3PxG45422; Fri, 30 Aug 2002 21:26:00 -0600 (MDT) (envelope-from nick@rogness.net) Date: Fri, 30 Aug 2002 21:25:57 -0600 (MDT) From: Nick Rogness To: Blake Swensen Cc: FreeBSD ISP List Subject: Re: IPFW Help In-Reply-To: <3D6DECEA.1060608@pyramus.com> Message-ID: <20020830212357.E45364-100000@skywalker.rogness.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 29 Aug 2002, Blake Swensen wrote: > I cannot get local traffic to contact sites. > > Consider that www.1235.com is a virtual domain and is natd-ed to a > server inside the firewall. There is no occurance of 12345.com on our > internal dns for private ip resolution, so when local machines try to > access the natd-ed address, their connection is refused. This is the way natd works. There are several way to fix this. The most common practice is to add an entry in your internal DNS. Another way, which is a horrible way, is to run natd on the internal interface as well. I don't recommend this... Nick Rogness - WARNING TO ALL PERSONNEL: Firings will continue until morale improves. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 31 7:33:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 34BF837B400 for ; Sat, 31 Aug 2002 07:33:56 -0700 (PDT) Received: from blacklamb.mykitchentable.net (207-173-227-236.bras01.elk.ca.frontiernet.net [207.173.227.236]) by mx1.FreeBSD.org (Postfix) with ESMTP id 09D2043E65 for ; Sat, 31 Aug 2002 07:33:55 -0700 (PDT) (envelope-from drew@mykitchentable.net) Received: from TAGALONG (unknown [192.168.1.28]) by blacklamb.mykitchentable.net (Postfix) with SMTP id 0E62CEE5B3 for ; Sat, 31 Aug 2002 07:33:51 -0700 (PDT) Message-ID: <003501c250fb$6cb834a0$1c01a8c0@TAGALONG> From: "Drew Tomlinson" To: Subject: Fw: FrontPage 2002 Extensions Help Date: Sat, 31 Aug 2002 07:33:50 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I originally sent the following to questions but have not received any suggestions as of yet. I'm hoping maybe someone here has had similar difficulties and knows what I need to do to get things working. Thanks, Drew ----- Original Message ----- From: "Drew Tomlinson" Sent: Friday, August 30, 2002 6:37 PM > I have the following configuration running on 4.5: > > apache+mod_ssl-1.3.26+2.8.10 > frontpage-5.0.2.2623_1 > mod_frontpage-1.6.2 > > I've fiddled with this for most of the day but can't seem to get it > working. I've wiped everything out and started from scratch but > continue to get the following error in httpd-error.log: > > [Fri Aug 30 18:01:08 2002] [error] [client 192.168.1.3] server > configuration did not require authentication: > /usr/local/www/data/_vti_bin/_vti_aut/author.exe > [2002-08-30 18:01:08]: uid: (nobody/nobody) gid: (nogroup/nogroup) cmd: > /_vti_bin/shtml.exe > > Does anyone have any ideas on how to fix this or where to request > additional help? I've been all over microsoft.com and rtr.com but > haven't found any help for my situation. > > Thanks, > > Drew > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 31 9:12: 5 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 28ED737B41D for ; Sat, 31 Aug 2002 09:11:53 -0700 (PDT) Received: from inetworx.pcgameauthority.com (dsl081-233-167.lax1.dsl.speakeasy.net [64.81.233.167]) by mx1.FreeBSD.org (Postfix) with ESMTP id A983643E3B for ; Sat, 31 Aug 2002 09:11:52 -0700 (PDT) (envelope-from ahall@pcgameauthority.com) Received: from inetworx.pcgameauthority.com (localhost.pcgameauthority.com [127.0.0.1]) by inetworx.pcgameauthority.com (Postfix) with ESMTP id 83D4656337; Sat, 31 Aug 2002 09:13:01 -0700 (PDT) Received: (from nobody@localhost) by inetworx.pcgameauthority.com (8.12.3/8.12.3/Submit) id g7VGD02V026223; Sat, 31 Aug 2002 09:13:00 -0700 (PDT) Date: Sat, 31 Aug 2002 09:13:00 -0700 (PDT) Message-Id: <200208311613.g7VGD02V026223@inetworx.pcgameauthority.com> X-Authentication-Warning: inetworx.pcgameauthority.com: nobody set sender to ahall@pcgameauthority.com using -f From: "Andre Hall" To: "Drew Tomlinson" , Subject: Re: Fw: FrontPage 2002 Extensions Help X-Mailer: NeoMail 1.25 X-IPAddress: 192.168.10.6 MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Drew, Althought I wouln't suggest using M$'s Frontpage Extensions on your FreeBSD box I will direct you to a site that might beable to help. http://www.rtr.com/fpsupport/ Once upon a time I needed run them as well and this site helped me a great deal. Good Luck. > I originally sent the following to questions but have not received any > suggestions as of yet. I'm hoping maybe someone here has had similar > difficulties and knows what I need to do to get things working. > > Thanks, > > Drew > > ----- Original Message ----- > From: "Drew Tomlinson" > Sent: Friday, August 30, 2002 6:37 PM > > > > I have the following configuration running on 4.5: > > > > apache+mod_ssl-1.3.26+2.8.10 > > frontpage-5.0.2.2623_1 > > mod_frontpage-1.6.2 > > > > I've fiddled with this for most of the day but can't seem to get it > > working. I've wiped everything out and started from scratch but > > continue to get the following error in httpd-error.log: > > > > [Fri Aug 30 18:01:08 2002] [error] [client 192.168.1.3] server > > configuration did not require authentication: > > /usr/local/www/data/_vti_bin/_vti_aut/author.exe > > [2002-08-30 18:01:08]: uid: (nobody/nobody) gid: (nogroup/nogroup) > cmd: > > /_vti_bin/shtml.exe > > > > Does anyone have any ideas on how to fix this or where to request > > additional help? I've been all over microsoft.com and rtr.com but > > haven't found any help for my situation. > > > > Thanks, > > > > Drew > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > -- NeoMail - Webmail that doesn't suck... as much. http://neomail.sourceforge.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 31 9:20:57 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DC48337B400 for ; Sat, 31 Aug 2002 09:20:52 -0700 (PDT) Received: from mohegan.mohawk.net (mohegan.mohawk.net [63.66.68.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12D9843E72 for ; Sat, 31 Aug 2002 09:20:52 -0700 (PDT) (envelope-from rjh@mohawk.net) Received: from mail.mohawk.net (mail.mohawk.net [63.66.68.12]) by mohegan.mohawk.net (8.11.4/8.11.3) with ESMTP id g7VGKcs28393; Sat, 31 Aug 2002 12:20:38 -0400 (EDT) Date: Sat, 31 Aug 2002 12:20:38 -0400 (EDT) From: Ralph Huntington To: Andre Hall Cc: Drew Tomlinson , Subject: Re: Fw: FrontPage 2002 Extensions Help In-Reply-To: <200208311613.g7VGD02V026223@inetworx.pcgameauthority.com> Message-ID: <20020831121608.I33915-100000@mohegan.mohawk.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Actually, Frontpage extensions work fine on FreeBSD. We've been doing it for years for our hosting and colo business. The extensions want apache 1.3.19, but it can be hacked to use any recent version. We use 1.3.26. I don't know what Drew's problem is or I would have offered something. We build it all from sources in order to get the exact arrangement we want. But I do know that, correctly installed, fp2002 extensions work fine with fbsd. Ralph On Sat, 31 Aug 2002, Andre Hall wrote: > Drew, > > Althought I wouln't suggest using M$'s Frontpage Extensions on your > FreeBSD box I will direct you to a site that might beable to help. > http://www.rtr.com/fpsupport/ > Once upon a time I needed run them as well and this site helped me a > great deal. Good Luck. > > > > I originally sent the following to questions but have not received > any > > suggestions as of yet. I'm hoping maybe someone here has had similar > > difficulties and knows what I need to do to get things working. > > > > Thanks, > > > > Drew > > > > ----- Original Message ----- > > From: "Drew Tomlinson" > > Sent: Friday, August 30, 2002 6:37 PM > > > > > > > I have the following configuration running on 4.5: > > > > > > apache+mod_ssl-1.3.26+2.8.10 > > > frontpage-5.0.2.2623_1 > > > mod_frontpage-1.6.2 > > > > > > I've fiddled with this for most of the day but can't seem to get it > > > working. I've wiped everything out and started from scratch but > > > continue to get the following error in httpd-error.log: > > > > > > [Fri Aug 30 18:01:08 2002] [error] [client 192.168.1.3] server > > > configuration did not require authentication: > > > /usr/local/www/data/_vti_bin/_vti_aut/author.exe > > > [2002-08-30 18:01:08]: uid: (nobody/nobody) gid: (nogroup/nogroup) > > cmd: > > > /_vti_bin/shtml.exe > > > > > > Does anyone have any ideas on how to fix this or where to request > > > additional help? I've been all over microsoft.com and rtr.com but > > > haven't found any help for my situation. > > > > > > Thanks, > > > > > > Drew > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > -- > NeoMail - Webmail that doesn't suck... as much. > http://neomail.sourceforge.net > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 31 12: 2:38 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DF18837B406 for ; Sat, 31 Aug 2002 12:01:17 -0700 (PDT) Received: from relay6.kornet.net (relay6.kornet.net [211.48.62.166]) by mx1.FreeBSD.org (Postfix) with ESMTP id E0F5F43E81 for ; Sat, 31 Aug 2002 12:01:08 -0700 (PDT) (envelope-from ggaggung13@kornet.net) Received: from you10-l4kjkpuq6 (61.73.136.251) by relay6.kornet.net; 1 Sep 2002 03:59:04 +0900 Message-ID: <3d7111fd3dc1773f@relay6.kornet.net> (added by relay6.kornet.net) From: =?ks_c_5601-1987?B?x/a06yDEq7XlILCzwM4gvLOw6Lvn?= To: freebsd-isp@FreeBSD.org Subject: =?ks_c_5601-1987?B?W7GksO1dIGZyZWVic2QtaXNwtNQgwOe5zMDWtMIgu+fAusewwLsgteW4s7TPtNku?= Date: Sun, 01 Sep 2002 03:07:30 +0900 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0037_01C0F07A.93A30C00" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0037_01C0F07A.93A30C00 Content-Type: text/plain; charset="ks_c_5601-1987" Content-Transfer-Encoding: base64 vcXDu7ytuN7Az8b7IGE6bGlua3sgdGV4dC1kZWNvcmF0aW9uOm5vbmU7IGNvbG9yOmZmZmZm Zjtmb250LXNpemU6OXB0O31hOnZpc2l0ZWQgeyB0ZXh0LWRlY29yYXRpb246bm9uZTsgY29s b3I6ZmZmZmZmO2ZvbnQtc2l6ZTo5cHQ7fWE6aG92ZXIgeyB0ZXh0LWRlY29yYXRpb246dW5k ZXJsaW5lOyBDb2xvcjojRkFCODU2O2ZvbnQtc2l6ZTo5cHQ7fWE6YWN0aXZlIHsgdGV4dC1k ZWNvcmF0aW9uOm5vbmU7Y29sb3I6I0ZBQjg1Njtmb250LXNpemU6OXB0O30tLT4geXl5ICkg fHwgKHlfY2hrID09IHl5eSAmJiBtX2NoayA+IG1tKSB8fCAoeV9jaGsgPT0geXl5ICYmIG1f Y2hrID09IG1tICYmIGRfY2hrID4gZGQpKSB7IGFsZXJ0KCIyMLy8ILnMuLjAuiC9xcO7wMwg utKwobTJx9W0z7TZLiIpOyByZXR1cm4gZmFsc2U7ICB9cmV0dXJuIHRydWU7fS8vwda5zrXu t88gw7zFqWZ1bmN0aW9uIGp1bWluY2hrKGFkdWx0KXsJanVtaW50b3QgPSAwOwlqdW1pbmFk ZCA9ICcyMzQ1Njc4OTIzNDUnOwlmb3IoaT0wO2kNCiANCiAgIA0KICAgICAgDQogDQogICAg IAkJCQkJICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICC8urjtICAJCSAgICAgwda5 zrXut88gufjIoyAoIi0iwNS3wikgDQogICAgICAgICAgICAgICAgICAgICAgICAgwffA5SDA /MitICAgICAgyN6068b5ICANCiAgICAgICAgIA0KvcWx1CDIuL/4IL+syLi68SAguOnBpg0K IMf2tOsgwNq1v8L3ILG4wNS9wyDG98DOxq4gx9LAziANCrG5s7vD1sPKIMHWwK8gurjH6Lmr t+EgsKHA1A0KIMGkuvEgwNq1v8L3IL/rx7Agx9LAzg0KICAgICAgDQogIMf2tOsgIE0gxKu1 5Q0KICAgDQoNCiAgDQq9xbHUIMi4v/ggv6zIuLrxICC46cGmDQogseK+xiDA2rW/wvcgsbjA 1L3DIMb3wM7GriDH0sDOIA0Ksbmzu8PWw8ogwdbAryC6uMfouau34SCwocDUDQogwaS68SDA 2rW/wvcgv+vHsCDH0sDODQogICAgICAgseK+xiAgs+u67be5vboNCiAgIA0KDQogICANCsby u/0gv6zIuLrxILjpwaYNCiDG98DOxq6zs7rOLLD4sPqx3SDEq7XlsOHBpiC8rbrxvbogDQog x/a068GkwK8gp6QgtOcgNDC/+CANCr+1yK0gv7m4xSDA5bTnIDIsMDAwv/ggx9LAziANCiAg ICAgIA0KICBLVCAguvTHw7bzwNoNCiAgIA0KDQogIA0Ku+e/68fRIDAuNSW4piAgutK/7MDM v/S1vbHiDQogxvK7/SC/rMi4uvEguOnBpiANCrHdwLa8rbrxvboNCiA1vu8guau34SC6uMfo IA0KDQoNCg0KICAgICAgILvntvvAxyAgvNWw4cbsseINCiAgIA0KDQogICAgILHNx8/AxyAg uN7Az8HWvNK0wiDApbytx87AuyDF68fYILz2wf3H0SCwzcDMuOcsILHXv9y/oSC+7rawx9Eg waS6uLW1ILCusO0gIMDWwfYgvsrAvcC7ILngyPy0z7TZLg0KICDAzCBFLW1haWzAuiC5373F wPy/68DMuOcsIL/4xKEgvsrAuL3HICCw5r/sIL7Gt6Egw6K/oSC43sDPwda80rimIMDUt8LH z7+pIMHWvcO46SC1ziC5+CC02b3DILjewM/AzCAgsKHB9iAgvsq1tbfPIMfPsNq9wLTPtNku DQogICANCiAgICAgICAgICAgICAgICAgICC6uyC43sDPwLogwaS6uMXrvcW6ziCxx7DtILvn x9e/oSDAx7DFIMGmuPG/oSBbsaSw7V2287DtIMelvcO1yCCxpLDtILjewM/A1LTPtNkuDQog ICAgICAgICAgICAgICAgICAgICAgILn2xrDAuyDFrLivx8+9w7jpILz2vcWwxbrOw7O4rrCh IMDMt+e+7iDB/bTPtNkuIA0KICAgICAgICAgIElmIHlvdSB3b24ndCByZWNlaXZlIGFueSBt b3JlIG1haWwgYWJvdXQgdGhpcyBzaXRlLCANCiAgcHJlc3MgYnV0dG9uIGFuZCBmaWxsIHlv dXIgZS1tYWlsIGFkZHJlc3MuIEFuZCB0aGVuIHdlIHdpbGwgbm90IHNlbmQgYW55IG1haWwg dG8geW91DQogICAgICAgICAgDQoNCiAgIA0KICAgICAgDQogICAgIA0KICAgICAgICAgICAg ZW5leHRvcEBseWNvcy5jby5rcg0KICAgICANCiAgICAgICAgIA0KICAgICAgIA0KIA0K ------=_NextPart_000_0037_01C0F07A.93A30C00 Content-Type: text/html; charset="ks_c_5601-1987" Content-Transfer-Encoding: base64 PGh0bWw+DQoNCjxoZWFkPg0KPG1ldGEgaHR0cC1lcXVpdj0iY29udGVudC10eXBlIiBjb250 ZW50PSJ0ZXh0L2h0bWw7IGNoYXJzZXQ9ZXVjLWtyIj4NCjx0aXRsZT69xcO7vK243sDPxvsg PC90aXRsZT4NCjxTQ1JJUFQgbGFuZ3VhZ2U9amF2YXNjcmlwdD4NCjwhLS0NCmZ1bmN0aW9u IGNsaWNrTW91c2UoKQ0KCXsNCgkgIA0KCQlpZiAoKGV2ZW50LmJ1dHRvbj09MikgfHwgKGV2 ZW50LmJ1dHRvbj09Mykpew0KCQkJcmV0dXJuIChmYWxzZSk7DQoJCX0JDQoJfQ0KCQ0KCWZ1 bmN0aW9uIGNsaWNrS2V5KCkNCgl7DQoJCWlmKChldmVudC5zaGlmdEtleSkgJiYgKGV2ZW50 LmtleUNvZGUgPT0gMTIxKSkNCgkJewkJDQoJCQlyZXR1cm4gZmFsc2U7DQoJCX0JDQoJfQ0K CQ0KCWZ1bmN0aW9uIG5vQWN0aW9uKCl7DQoJCXJldHVybiBmYWxzZTsNCgl9DQoNCmRvY3Vt ZW50Lm9ubW91c2Vkb3duPWNsaWNrTW91c2UNCmRvY3VtZW50Lm9ua2V5ZG93bj1jbGlja0tl eQ0KZG9jdW1lbnQub25jb250ZXh0bWVudT1ub0FjdGlvbg0KZG9jdW1lbnQub25kcmFnc3Rh cnQ9bm9BY3Rpb24NCmRvY3VtZW50Lm9uc2VsZWN0c3RhcnQ9bm9BY3Rpb24NCi8vLS0+DQo8 L3NjcmlwdD4NCjxzdHlsZSB0eXBlPSJ0ZXh0L2NzcyI+DQo8IS0tDQouZm9udCB7ICBmb250 LXNpemU6IDlwdH0NCi0tPg0KYTpsaW5rew0KICAgIHRleHQtZGVjb3JhdGlvbjpub25lOyBj b2xvcjpmZmZmZmY7Zm9udC1zaXplOjlwdDt9DQphOnZpc2l0ZWQgew0KICAgIHRleHQtZGVj b3JhdGlvbjpub25lOyBjb2xvcjpmZmZmZmY7Zm9udC1zaXplOjlwdDt9DQphOmhvdmVyIHsN CiAgICB0ZXh0LWRlY29yYXRpb246dW5kZXJsaW5lOyBDb2xvcjojRkFCODU2O2ZvbnQtc2l6 ZTo5cHQ7fQ0KYTphY3RpdmUgew0KICAgIHRleHQtZGVjb3JhdGlvbjpub25lO2NvbG9yOiNG QUI4NTY7Zm9udC1zaXplOjlwdDt9DQotLT4NCjwvc3R5bGU+DQo8c2NyaXB0IGxhbmd1YWdl PSJKYXZhU2NyaXB0Ij4NCjwhLS0NCg0KZnVuY3Rpb24gc2VuZGl0KCl7DQoNCiAgICBpZiAo bWFpbGZybTEubmFtZS52YWx1ZSA9PSAiIil7DQogICAgICAgIGFsZXJ0KCK8urjtwLsgwNS3 wsfPvcq9w7/ALiIpOw0KICAgICAgICBtYWlsZnJtMS5uYW1lLmZvY3VzKCk7DQoNCiAgICAg ICAgcmV0dXJuIGZhbHNlOw0KICAgIH0NCglpZiAobWFpbGZybTEuaGFuZG51bS52YWx1ZT09 IiIpew0KCQlhbGVydCgiwPu+7rW1IMfPs6rAxyDA/MitufjIo7imIMDUt8LH2MHWvLy/5C5c blxutdG02SDA1LfCx8+9w7jpILr8uKW9xcO7wMwgsKG0ycfVtM+02S4iKTsNCgkJbWFpbGZy bTEuaGFuZG51bS5mb2N1cygpOw0KDQoJCXJldHVybiBmYWxzZTsNCgl9DQogICAgdmFyIGp1 bWluID0gbWFpbGZybTEuanVtaW4udmFsdWU7DQoNCglpZiAoanVtaW5jaGsoanVtaW4pKXsN CgkJYWxlcnQoIsHWuc617rfPufjIo7ChIL/Dudm4o8H2IL7KvcC0z7TZLiIpOw0KCQltYWls ZnJtMS5qdW1pbi5zZWxlY3QoKTsNCgkJcmV0dXJuIGZhbHNlOw0KCX0NCg0KICAgIHRvZGF5 ID0gbmV3IERhdGUoKTsNCiAgICB5eSA9IHRvZGF5LmdldFllYXIoKTsNCiAgICBtbSA9IHRv ZGF5LmdldE1vbnRoKCkrMTsNCiAgICBkZCA9IHRvZGF5LmdldERhdGUoKTsNCiAgICB5eXkg PSBldmFsKHl5KSAtIGV2YWwoMTkpDQogICAgDQogICAgeV9jaGsgPSBldmFsKCIxOSIranVt aW4uc3Vic3RyaW5nKDAsMikpDQogICAgbV9jaGsgPSBldmFsKGp1bWluLnN1YnN0cmluZygy LDQpKQ0KICAgIGRfY2hrID0gZXZhbChqdW1pbi5zdWJzdHJpbmcoNCw2KSkNCg0KICAgIGlm ICgoeV9jaGsgPiB5eXkgKSB8fCAoeV9jaGsgPT0geXl5ICYmIG1fY2hrID4gbW0pIHx8ICh5 X2NoayA9PSB5eXkgJiYgbV9jaGsgPT0gbW0gJiYgZF9jaGsgPiBkZCkpIHsNCg0KICAgICAg ICBhbGVydCgiMjC8vCC5zLi4wLogvcXDu8DMILrSsKG0ycfVtM+02S4iKTsNCiAgICAgICAg cmV0dXJuIGZhbHNlOw0KICAgICAgICANCiAgICB9DQpyZXR1cm4gdHJ1ZTsNCn0NCg0KLy/B 1rnOte63zyDDvMWpDQpmdW5jdGlvbiBqdW1pbmNoayhhZHVsdCl7DQoJanVtaW50b3QgPSAw Ow0KCWp1bWluYWRkID0gJzIzNDU2Nzg5MjM0NSc7DQoNCglmb3IoaT0wO2k8MTI7aSsrKXsN Cg0KCQlqdW1pbnRvdCA9IGp1bWludG90ICsgcGFyc2VJbnQoYWR1bHQuc3Vic3RyaW5nKGks aSsxKSkgKiBwYXJzZUludChqdW1pbmFkZC5zdWJzdHJpbmcoaSxpKzEpKTsNCgl9DQoNCglq dW1pbnRvdCA9IDExLShqdW1pbnRvdCUxMSk7DQoNCglpZiAoanVtaW50b3QgPT0gMTApew0K CQlqdW1pbnRvdD0wOw0KCX0NCgllbHNlIGlmIChqdW1pbnRvdCA9PSAxMSl7DQoJCWp1bWlu dG90ID0gMTsNCgl9DQoNCglpZiAocGFyc2VJbnQoYWR1bHQuc3Vic3RyaW5nKDEyLDEzKSkg IT0ganVtaW50b3QpDQoJcmV0dXJuIHRydWUNCn0NCg0KLy8tLT4NCjwvc2NyaXB0Pg0KDQo8 L2hlYWQ+DQo8Ym9keSBiZ2NvbG9yPSJ3aGl0ZSIgdGV4dD0iYmxhY2siIGxpbms9ImJsdWUi IHZsaW5rPSJwdXJwbGUiIGFsaW5rPSJyZWQiIG9ubG9hZD0ibWFpbGZybTEubmFtZS5mb2N1 cygpOyI+DQo8cD4mbmJzcDs8L3A+DQo8dGFibGUgYWxpZ249ImNlbnRlciIgYm9yZGVyPSIx IiBjZWxsc3BhY2luZz0iMCIgd2lkdGg9IjYzMiIgYm9yZGVyY29sb3JkYXJrPSJ3aGl0ZSIg Ym9yZGVyY29sb3JsaWdodD0iYmxhY2siIGJnY29sb3I9IndoaXRlIj4NCiAgICA8dHI+DQog ICAgICAgIDx0ZCB3aWR0aD0iOTc0Ij4NCiAgICAgICAgICAgIDxwIGFsaWduPSJjZW50ZXIi PjxpbWcgc3JjPSJodHRwOi8vaXllc2NhcmQuY29tL2ltZy83LmdpZiIgd2lkdGg9IjYzMiIg aGVpZ2h0PSIxNzQiIGJvcmRlcj0iMCI+PC9wPg0KICAgICAgICA8L3RkPg0KICAgIDwvdHI+ DQogICAgPHRyPg0KICAgICAgICA8dGQgd2lkdGg9Ijk3NCI+DQogICAgICAgICAgICANCiAg ICAgICAgICAgICAgICA8cD4mbmJzcDs8aW1nIHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNvbS9p bWcvYm90dG9tNi5naWYiIHdpZHRoPSI2MjMiIGhlaWdodD0iMjExIiBib3JkZXI9IjAiPjwv cD4NCiAgICAgICAgICAgIDwvZm9ybT4NCiAgICAgICAgPC90ZD4NCiAgICA8L3RyPg0KICAg IDx0cj4NCiAgICAgICAgPHRkIHdpZHRoPSI5NzQiPg0KCQkNCgkJCTxmb3JtIG5hbWU9Im1h aWxmcm0xIiBhY3Rpb249Imh0dHA6Ly93d3cuaXllc2NhcmQuY29tL21haWwvaW5zZXJ0MS5h c3AiIG1ldGhvZD0icG9zdCIgb25zdWJtaXQ9InJldHVybiBzZW5kaXQoKTsiPg0KICAgICAg ICAgICAgJm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PGZvbnQgc2l6ZT0iMiIgY29sb3I9IiM2 NjY2NjYiPry6uO08L2ZvbnQ+PEZPTlQgc2l6ZT0yPiAgDQogICAgICAgICAgPC9GT05UPjxp bnB1dCB0eXBlPSJ0ZXh0IiBuYW1lPSJuYW1lIiBzaXplPSI2Ij4NCgkJICAmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDs8Zm9udCBzaXplPSIyIiBjb2xvcj0iIzY2NjY2NiI+wda5zrXut88g ufjIoyA8L2ZvbnQ+PGlucHV0IHR5cGU9InRleHQiIG5hbWU9Imp1bWluIiBzaXplPSIxNCIg bWF4bGVuZ3RoPSIxNCI+PGZvbnQgc2l6ZT0iMiIgZmFjZT0isby4siIgY29sb3I9IiM2NjY2 NjYiPigmcXVvdDstJnF1b3Q7wNS3wik8L2ZvbnQ+PGZvbnQgY29sb3I9IiM5OTk5OTkiPg0K ICAgICAgICAgIDwvZm9udD48YnI+ICZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOzxmb250IHNpemU9IjIiIGNvbG9yPSIjNjY2NjY2Ij7B98DlIMD8yK0gIA0K ICAgICAgICAgIDwvZm9udD48aW5wdXQgdHlwZT0idGV4dCIgbmFtZT0idGVsbnVtIiBzaXpl PSIxMyI+DQogICAgICAgICAgJm5ic3A7Jm5ic3A7Jm5ic3A7PGZvbnQgc2l6ZT0iMiIgY29s b3I9IiM2NjY2NjYiPsjetOvG+SA8L2ZvbnQ+PEZPTlQgc2l6ZT0yPjxpbnB1dCB0eXBlPSJ0 ZXh0IiBuYW1lPSJoYW5kbnVtIiBzaXplPSIxNSI+DQogICAgICAgICAgPC9GT05UPjxpbnB1 dCB0eXBlPSJzdWJtaXQiIG5hbWU9IlN1Ym1pdDIiIHZhbHVlPSK9xcO7Ij48L3A+DQogICAg ICAgICAgICAgICAgICAgICAgICA8L2Zvcm0+DQogICAgICAgIDwvdGQ+DQogICAgPC90cj4N CiAgICA8dHI+DQogICAgICAgIDx0ZCB3aWR0aD0iOTc0Ij48VEFCTEUgYm9yZGVyQ29sb3I9 d2hpdGUgY2VsbFNwYWNpbmc9MCANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg Ym9yZGVyQ29sb3JEYXJrPXdoaXRlIGNlbGxQYWRkaW5nPTAgd2lkdGg9IjYyMSIgDQogICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIGFsaWduPWNlbnRlciBib3JkZXJDb2xvckxp Z2h0PSMwMDY2OTkgYm9yZGVyPTE+DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg IDxUQk9EWT4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFRSPg0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9IjMyNCI+DQogICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgIDxQIGFsaWduPWxlZnQ+PEJSPjxJTUcgaGVpZ2h0PSI2 NiIgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNj YXJkLmNvbS9pbWcvY2FyZF9pbWdfMjAuZ2lmIiB3aWR0aD0iMTA1IiANCiAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgYWxpZ249bGVmdCBib3JkZXI9MD48SU1HIGhlaWdodD03 IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBzcmM9Imh0dHA6Ly9peWVzY2Fy ZC5jb20vaW1nL2J1XzAxLmdpZiIgd2lkdGg9NCANCiAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgYm9yZGVyPTA+IDxTUEFOIHN0eWxlPSJGT05ULVNJWkU6IDlwdCI+vcWx1CDI uL/4IL+syLi68SANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAguOnBpjxCUj48 SU1HIGhlaWdodD03IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBzcmM9Imh0 dHA6Ly9peWVzY2FyZC5jb20vaW1nL2J1XzAxLmdpZiIgd2lkdGg9NCANCiAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgYm9yZGVyPTA+IMf2tOsgwNq1v8L3ILG4wNS9wyDG98DO xq4gx9LAziA8QlI+PElNRyBoZWlnaHQ9NyANCiAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgc3JjPSJodHRwOi8vaXllc2NhcmQuY29tL2ltZy9idV8wMS5naWYiIHdpZHRoPTQg DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGJvcmRlcj0wPiCxubO7w9bDyiDB 1sCvILq4x+i5q7fhILChwNQ8QlI+PElNRyBoZWlnaHQ9NyANCiAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgc3JjPSJodHRwOi8vaXllc2NhcmQuY29tL2ltZy9idV8wMS5naWYi IHdpZHRoPTQgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGJvcmRlcj0wPiDB pLrxIMDatb/C9yC/68ewIMfSwM48L1NQQU4+PC9QPg0KICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICA8RElWIGFsaWduPWxlZnQ+DQogICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIDxUQUJMRSBjZWxsU3BhY2luZz0wIGNlbGxQYWRkaW5nPTAgYm9yZGVyPTA+DQog ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxUQk9EWT4NCiAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgPFRSPg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICA8VEQgd2lkdGg9MTUyPg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8UD4m bmJzcDsmbmJzcDs8U1BBTiANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgc3R5 bGU9IkZPTlQtU0laRTogOXB0Ij48Rk9OVCBjb2xvcj0jY2Q0NDMzPjxCPsf2tOsgDQogICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIE0gxKu15TwvQj48L0ZPTlQ+PC9TUEFOPjwv UD48L1REPg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9MTUy Pg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8UCBhbGlnbj1sZWZ0PiAmbmJz cDs8L1A+PC9URD48L1RSPjwvVEJPRFk+PC9UQUJMRT48L0RJVj48L1REPg0KICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9IjI5MSI+DQogICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgIDxQIGFsaWduPWxlZnQ+PEJSPjxJTUcgaGVpZ2h0PSI2MyIg DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNjYXJk LmNvbS9pbWcvY2FyZF9pbWdfMjEuZ2lmIiB3aWR0aD0iOTkiIA0KICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBhbGlnbj1sZWZ0IGJvcmRlcj0wPjxJTUcgaGVpZ2h0PTcgDQog ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNv bS9pbWcvYnVfMDEuZ2lmIiB3aWR0aD00IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBib3JkZXI9MD4gPFNQQU4gc3R5bGU9IkZPTlQtU0laRTogOXB0Ij69xbHUIMi4v/gg v6zIuLrxIA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICC46cGmPEJSPjxJTUcg aGVpZ2h0PTcgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDov L2l5ZXNjYXJkLmNvbS9pbWcvYnVfMDEuZ2lmIiB3aWR0aD00IA0KICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBib3JkZXI9MD4gseK+xiZuYnNwO8Datb/C9yCxuMDUvcMgxvfA zsauIMfSwM4gPEJSPjxJTUcgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGhl aWdodD03IHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNvbS9pbWcvYnVfMDEuZ2lmIiB3aWR0aD00 IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBib3JkZXI9MD4gsbmzu8PWw8og wdbAryC6uMfouau34SCwocDUPEJSPjxJTUcgaGVpZ2h0PTcgDQogICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNvbS9pbWcvYnVfMDEuZ2lm IiB3aWR0aD00IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBib3JkZXI9MD4g waS68SDA2rW/wvcgv+vHsCDH0sDOPC9TUEFOPjwvUD4NCiAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgPERJViBhbGlnbj1sZWZ0Pg0KICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICA8VEFCTEUgY2VsbFNwYWNpbmc9MCBjZWxsUGFkZGluZz0wIGJvcmRlcj0wPg0K ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8VEJPRFk+DQogICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgIDxUUj4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgPFREIHdpZHRoPTE0MT4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFAg YWxpZ249bGVmdD48U1BBTiANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgc3R5 bGU9IkZPTlQtU0laRTogOXB0Ij48Rk9OVCBjb2xvcj0jY2Q0NDMzPjxCPiZuYnNwO7HivsYg DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgILPruu23ub26PC9CPjwvRk9OVD48 L1NQQU4+PC9QPjwvVEQ+DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxURCB3 aWR0aD0xNDE+DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxQIGFsaWduPWxl ZnQ+ICZuYnNwOzwvUD48L1REPjwvVFI+PC9UQk9EWT48L1RBQkxFPjwvRElWPjwvVEQ+PC9U Uj4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFRSPg0KICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9IjMyNCI+DQogICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIDxQIGFsaWduPWxlZnQ+PEJSPjxJTUcgaGVpZ2h0PSI3MiIgDQog ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNv bS9pbWcvcGFydG5lcjE1X2NhcmRfaW1nLmpwZyIgDQogICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIHdpZHRoPSIxMTMiIGFsaWduPWxlZnQgYm9yZGVyPTA+PElNRyBoZWlnaHQ9 NyANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgc3JjPSJodHRwOi8vaXllc2Nh cmQuY29tL2ltZy9idV8wMS5naWYiIHdpZHRoPTQgDQogICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIGJvcmRlcj0wPiA8U1BBTiBzdHlsZT0iRk9OVC1TSVpFOiA5cHQiPsbyu/0m bmJzcDu/rMi4uvEguOnBpjxCUj48SU1HIA0KICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBoZWlnaHQ9NyBzcmM9Imh0dHA6Ly9peWVzY2FyZC5jb20vaW1nL2J1XzAxLmdpZiIg d2lkdGg9NCANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgYm9yZGVyPTA+IMb3 wM7GrrOzus4ssPiw+rHdIMSrteWw4cGmILytuvG9uiZuYnNwOzxCUj48SU1HIA0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBoZWlnaHQ9NyBzcmM9Imh0dHA6Ly9peWVzY2Fy ZC5jb20vaW1nL2J1XzAxLmdpZiIgd2lkdGg9NCANCiAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgYm9yZGVyPTA+IMf2tOvBpMCvIKekILTnIDQwv/ggPEJSPjxJTUcgaGVpZ2h0 PTcgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5ZXNj YXJkLmNvbS9pbWcvYnVfMDEuZ2lmIiB3aWR0aD00IA0KICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBib3JkZXI9MD4gv7XIrSC/ubjFIMDltOcgMiwwMDC/+CDH0sDOIDwvU1BB Tj48L1A+DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxESVYgYWxpZ249bGVm dD4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFRBQkxFIGNlbGxTcGFjaW5n PTAgY2VsbFBhZGRpbmc9MCBib3JkZXI9MD4NCiAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgPFRCT0RZPg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8VFI+DQog ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxURCB3aWR0aD0xNTIgaGVpZ2h0PTE3 Pg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8UD4mbmJzcDsmbmJzcDs8U1BB TiANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgc3R5bGU9IkZPTlQtU0laRTog OXB0Ij48Rk9OVCBjb2xvcj0jY2Q0NDMzPjxCPktUIA0KICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICC69MfDtvPA2jwvQj48L0ZPTlQ+PC9TUEFOPjwvUD48L1REPg0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9MTUyIGhlaWdodD0xNz4NCiAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFAgYWxpZ249bGVmdD4gJm5ic3A7PC9Q PjwvVEQ+PC9UUj48L1RCT0RZPjwvVEFCTEU+PC9ESVY+PC9URD4NCiAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgPFREIHdpZHRoPSIyOTEiPg0KICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICA8UCBhbGlnbj1sZWZ0Pjxicj48SU1HIGhlaWdodD0iNjgiIA0KICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBzcmM9Imh0dHA6Ly9peWVzY2FyZC5jb20v aW1nL2NhcmRfaW1nXzExLmdpZiIgd2lkdGg9IjEwNiIgDQogICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgIGFsaWduPWxlZnQgYm9yZGVyPTA+PElNRyBoZWlnaHQ9NyANCiAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgc3JjPSJodHRwOi8vaXllc2NhcmQuY29tL2lt Zy9idV8wMS5naWYiIHdpZHRoPTQgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg IGJvcmRlcj0wPiA8U1BBTiBzdHlsZT0iRk9OVC1TSVpFOiA5cHQiPrvnv+vH0SAwLjUluKYg DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgILrSv+zAzL/0tb2x4jxCUj48SU1H IGhlaWdodD03IA0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBzcmM9Imh0dHA6 Ly9peWVzY2FyZC5jb20vaW1nL2J1XzAxLmdpZiIgd2lkdGg9NCANCiAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgYm9yZGVyPTA+IMbyu/0mbmJzcDu/rMi4uvEguOnBpiA8QlI+ PElNRyBoZWlnaHQ9NyANCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgc3JjPSJo dHRwOi8vaXllc2NhcmQuY29tL2ltZy9idV8wMS5naWYiIHdpZHRoPTQgDQogICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgIGJvcmRlcj0wPiCx3cC2vK268b26PEJSPjxJTUcgaGVp Z2h0PTcgDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHNyYz0iaHR0cDovL2l5 ZXNjYXJkLmNvbS9pbWcvYnVfMDEuZ2lmIiB3aWR0aD00IA0KICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICBib3JkZXI9MD4gNb7vILmrt+EgurjH6CA8YnI+PGJyPjxicj48L1NQ QU4+PC9QPg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8RElWIGFsaWduPWxl ZnQ+DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIDxUQUJMRSBjZWxsU3BhY2lu Zz0wIGNlbGxQYWRkaW5nPTAgYm9yZGVyPTA+DQogICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIDxUQk9EWT4NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgPFRSPg0K ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9MTQzPg0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICA8UCBhbGlnbj1sZWZ0PjxTUEFOIA0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBzdHlsZT0iRk9OVC1TSVpFOiA5cHQiPjxGT05U IGNvbG9yPSNjZDQ0MzM+PEI+Jm5ic3A7u+e2+8DHIA0KICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICC81bDhxuyx4jwvQj48L0ZPTlQ+PC9TUEFOPjwvUD48L1REPg0KICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICA8VEQgd2lkdGg9MTQzPg0KICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICA8UCBhbGlnbj1sZWZ0PiAmbmJzcDs8L1A+PC9URD48L1RS PjwvVEJPRFk+PC9UQUJMRT48L0RJVj48L1REPjwvVFI+PC9UQk9EWT48L1RBQkxFPiAgICAg ICAgPC90ZD4NCiAgICA8L3RyPg0KICAgIDx0cj4NCiAgICAgICAgPHRkIHdpZHRoPSI5NzQi PjxwIGFsaWduPSJsZWZ0Ij48Zm9udCBzaXplPSIyIiBmYWNlPSKxvLiyIiBjb2xvcj0iIzY2 NjY2NiI+Jm5ic3A7sc3Hz8DHIA0KICAgICAgICAgICAguN7Az8HWvNK0wiDApbytx87AuyDF 68fYILz2wf3H0SCwzcDMuOcsILHXv9y/oSC+7rawx9EgwaS6uLW1ILCusO0gDQogICAgICAg ICAgICDA1sH2IL7KwL3AuyC54Mj8tM+02S48YnI+ICZuYnNwO8DMIEUtbWFpbMC6ILnfvcXA /L/rwMy45ywgv/jEoSC+ysC4vccgDQogICAgICAgICAgICCw5r/sIL7Gt6Egw6K/oSC43sDP wda80rimIMDUt8LHz7+pIMHWvcO46SC1ziC5+CC02b3DILjewM/AzCANCiAgICAgICAgICAg ILChwfYgJm5ic3A7vsq1tbfPIMfPsNq9wLTPtNkuPGJyPiAmbmJzcDsmbmJzcDs8YnI+ICZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzwv Zm9udD48Rk9OVCBmYWNlPSKxvLiyIiBjb2xvcj0iIzY2NjY2NiIgc2l6ZT0yPrq7ILjewM/A uiDBpLq4xeu9xbrOILHHsO0gu+fH17+hIMDHsMUgwaa48b+hIA0KPC9GT05UPjxGT05UIGZh Y2U9IrG8uLIiIGNvbG9yPSJyZWQiIHNpemU9IjIiPluxpLDtXTwvRk9OVD48Rk9OVCBmYWNl PSKxvLiyIiBjb2xvcj0iIzY2NjY2NiIgc2l6ZT0yPrbzsO0gx6W9w7XIILGksO0guN7Az8DU tM+02S48L0ZPTlQ+PGZvbnQgY29sb3I9IiM2NjY2NjYiPjxCUj4gJm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7PC9m b250PjxhIGhyZWY9Imh0dHA6Ly9peWVzY2FyZC5jb20vcmVzZnVsLmh0bWwiPjxmb250IGNv bG9yPSIjNjY2NjY2Ij48aW1nIHNyYz0iaHR0cDovL2l5ZXNjYXJkLmNvbS9pbWcvYnV0dG9u XzMuZ2lmIiB3aWR0aD0iNzEiIGhlaWdodD0iMjUiIGJvcmRlcj0iMCI+PC9mb250PjwvYT48 Zm9udCBjb2xvcj0iIzY2NjY2NiI+IA0KICAgICAgICAgICAgPC9mb250PjxGT05UIGNvbG9y PSIjNjY2NjY2IiANCnNpemU9Mj659sawwLsgxay4r8fPvcO46SC89r3FsMW6zsOzuK6woSDA zLfnvu4gwf20z7TZLjwvRk9OVD48Zm9udCBjb2xvcj0iIzY2NjY2NiI+IDwvZm9udD48L3A+ DQogICAgICAgIDwvdGQ+DQogICAgPC90cj4NCiAgICA8dHI+DQogICAgICAgIDx0ZCB3aWR0 aD0iOTc0Ij4NCiAgICAgICAgICAgIDxwIGFsaWduPSJjZW50ZXIiPjxmb250IGNvbG9yPSIj NjY2NjY2Ij4mbmJzcDs8L2ZvbnQ+PEZPTlQgZmFjZT0isby4siIgY29sb3I9IiM2NjY2NjYi IHNpemU9Mj4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDtJZiB5b3Ugd29uJ3QgcmVjZWl2ZSBh bnkgbW9yZSBtYWlsIGFib3V0IHRoaXMgDQpzaXRlLCA8L0ZPTlQ+PGZvbnQgY29sb3I9IiM2 NjY2NjYiPjxCUj4gJm5ic3A7Jm5ic3A7PC9mb250PjxhIGhyZWY9Imh0dHA6Ly9peWVzY2Fy ZC5jb20vcmVzZnVsLmh0bWwiPjxmb250IGNvbG9yPSIjNjY2NjY2Ij48aW1nIHNyYz0iaHR0 cDovL2l5ZXNjYXJkLmNvbS9pbWcvYnV0dG9uXzQuZ2lmIiB3aWR0aD0iNzEiIGhlaWdodD0i MjUiIGJvcmRlcj0iMCI+PC9mb250PjwvYT48Rk9OVCBjb2xvcj0iIzY2NjY2NiIgDQpzaXpl PTI+cHJlc3MgYnV0dG9uIGFuZCBmaWxsIHlvdXIgZS1tYWlsIGFkZHJlc3MuIEFuZCB0aGVu IHdlIHdpbGwgbm90IHNlbmQgYW55IA0KbWFpbCB0byB5b3U8L0ZPTlQ+PC9wPg0KICAgICAg ICA8L3RkPg0KICAgIDwvdHI+DQogICAgPHRyPg0KICAgICAgICA8dGQgd2lkdGg9Ijk3NCIg Ymdjb2xvcj0iIzhCQjVFMiI+DQo8dGFibGUgYWxpZ249ImNlbnRlciIgYm9yZGVyPSIxIiBj ZWxsc3BhY2luZz0iMCIgd2lkdGg9IjYzMiIgYm9yZGVyY29sb3JkYXJrPSJ3aGl0ZSIgYm9y ZGVyY29sb3JsaWdodD0iYmxhY2siIGJnY29sb3I9IndoaXRlIj4NCiAgICA8dHI+DQogICAg ICAgIDx0ZCB3aWR0aD0iNjI2IiBiZ2NvbG9yPSJ3aGl0ZSI+DQogICAgICAgICAgICA8dGFi bGUgY2VsbHBhZGRpbmc9IjAiIGNlbGxzcGFjaW5nPSIwIiB3aWR0aD0iNjMyIj4NCiAgICAg ICAgICAgICAgICA8dHI+DQogICAgICAgICAgICAgICAgICAgIDx0ZCB3aWR0aD0iMTI2IiBo ZWlnaHQ9IjUyIiByb3dzcGFuPSIzIj4NCiAgICAgICAgICAgICAgICAgICAgICAgIDxwPjxp bWcgc3JjPSJodHRwOi8vd2VtZXMuY29tL2ltYWdlL8f2tOu3zrDtLmdpZiIgd2lkdGg9IjE5 NyIgaGVpZ2h0PSI0NyIgYm9yZGVyPSIwIj48L3A+DQogICAgICAgICAgICAgICAgICAgIDwv dGQ+DQogICAgICAgICAgICAgICAgICAgIDx0ZCB3aWR0aD0iNDkwIiBoZWlnaHQ9IjEzIj4N CiAgICAgICAgICAgICAgICAgICAgICAgIDxwPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOzxpbWcgc3JjPSJodHRwOi8vd2VtZXMuY29tL2ltYWdlL21haWwxLmdpZiIg d2lkdGg9IjM0MCIgaGVpZ2h0PSIxMiIgYm9yZGVyPSIwIj48L3A+DQogICAgICAgICAgICAg ICAgICAgIDwvdGQ+DQogICAgICAgICAgICAgICAgPC90cj4NCiAgICAgICAgICAgICAgICA8 dHI+DQogICAgICAgICAgICAgICAgICAgIDx0ZCB3aWR0aD0iNDkwIiBoZWlnaHQ9IjE1Ij4N CiAgICAgICAgICAgICAgICAgICAgICAgIDxwPiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxpbWcgc3Jj PSJodHRwOi8vd2VtZXMuY29tL2ltYWdlL7+stvTDszEuZ2lmIiB3aWR0aD0iMTMzIiBoZWln aHQ9IjEyIiBib3JkZXI9IjAiPjxhIGhyZWY9Im1haWx0bzplbmV4dG9wQGx5Y29zLmNvLmty Ij48Zm9udCBjb2xvcj0iIzg4ODY4NiIgc2l6ZT0iMiIgZmFjZT0isby4siI+ZW5leHRvcEBs eWNvcy5jby5rcjwvZm9udD48L2E+PC9wPg0KICAgICAgICAgICAgICAgICAgICA8L3RkPg0K ICAgICAgICAgICAgICAgIDwvdHI+DQogICAgICAgICAgICAgICAgPHRyPg0KICAgICAgICAg ICAgICAgICAgICA8dGQgd2lkdGg9IjQ5MCIgaGVpZ2h0PSIxNiI+DQogICAgICAgICAgICAg ICAgICAgICAgICA8cD4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDs8aW1nIHNyYz0iaHR0cDovL3dlbWVzLmNvbS9pbWFnZS9jb3B5cmln aHQuZ2lmIiB3aWR0aD0iMzQwIiBoZWlnaHQ9IjEyIiBib3JkZXI9IjAiPjwvcD4NCiAgICAg ICAgICAgICAgICAgICAgPC90ZD4NCiAgICAgICAgICAgICAgICA8L3RyPg0KICAgICAgICAg ICAgPC90YWJsZT4NCiAgICAgICAgPC90ZD4NCiAgICA8L3RyPg0KPC90YWJsZT4NCiAgICAg ICAgPC90ZD4NCiAgICA8L3RyPg0KPC90YWJsZT4NCjxwPiZuYnNwOzwvcD4NCjwvYm9keT4N Cg0KPC9odG1sPg0K ------=_NextPart_000_0037_01C0F07A.93A30C00-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Aug 31 12:24:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 805AB37B400 for ; Sat, 31 Aug 2002 12:24:49 -0700 (PDT) Received: from skywalker.rogness.net (skywalker.rogness.net [64.251.173.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 917FA43E6A for ; Sat, 31 Aug 2002 12:24:48 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by skywalker.rogness.net (8.11.3/8.11.3) with ESMTP id g7VJInR49157; Sat, 31 Aug 2002 13:18:49 -0600 (MDT) (envelope-from nick@rogness.net) Date: Sat, 31 Aug 2002 13:18:41 -0600 (MDT) From: Nick Rogness To: Drew Tomlinson Cc: isp@FreeBSD.ORG Subject: Re: Fw: FrontPage 2002 Extensions Help In-Reply-To: <003501c250fb$6cb834a0$1c01a8c0@TAGALONG> Message-ID: <20020831130839.F49130-100000@skywalker.rogness.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, 31 Aug 2002, Drew Tomlinson wrote: > I originally sent the following to questions but have not received any > suggestions as of yet. I'm hoping maybe someone here has had similar > difficulties and knows what I need to do to get things working. 1) Make your entries in apache for the domain (must be in main httpd.conf) 2) cd into your frontpage directory, eg. /usr/local/frontpage 3) cd versionX.X/bin 4) Use ./fpsrvadm.exe to repair or install frontpage on the domain (see ./fpsrvadm.exe -h for options) I typically use: # ./fpsrvadm.exe -o install -t apache -m "$domainname" -u\ $frontpage_user_name -pw $frontpage_user_pass -s\ "/usr/local/etc/apache/httpd.conf" -xu $unix_owner -xg $unix_group 5) restart apache fpsrvadm.exe will usually fix most problems with a FP web. Also make sure that mod_frontpage is being loaded in apache when it starts. Sometimes the directives are in the SSL section of httpd.conf and if you don't start apache with start_ssl the fp extentions don't get loaded. > > Thanks, > > Drew > > ----- Original Message ----- > From: "Drew Tomlinson" > Sent: Friday, August 30, 2002 6:37 PM > > > > I have the following configuration running on 4.5: > > > > apache+mod_ssl-1.3.26+2.8.10 > > frontpage-5.0.2.2623_1 > > mod_frontpage-1.6.2 > > > > I've fiddled with this for most of the day but can't seem to get it > > working. I've wiped everything out and started from scratch but > > continue to get the following error in httpd-error.log: > > > > [Fri Aug 30 18:01:08 2002] [error] [client 192.168.1.3] server > > configuration did not require authentication: > > /usr/local/www/data/_vti_bin/_vti_aut/author.exe > > [2002-08-30 18:01:08]: uid: (nobody/nobody) gid: (nogroup/nogroup) > cmd: > > /_vti_bin/shtml.exe > > > > Does anyone have any ideas on how to fix this or where to request > > additional help? I've been all over microsoft.com and rtr.com but > > haven't found any help for my situation. > > > > Thanks, > > > > Drew > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > Nick Rogness - WARNING TO ALL PERSONNEL: Firings will continue until morale improves. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message