From owner-freebsd-net  Sun Apr 21 10: 5:38 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mail.wolves.k12.mo.us (mail.wolves.k12.mo.us [207.160.214.1])
	by hub.freebsd.org (Postfix) with ESMTP id B796A37B400
	for <freebsd-net@FreeBSD.ORG>; Sun, 21 Apr 2002 10:05:35 -0700 (PDT)
Received: from mail.wolves.k12.mo.us (cdillon@mail.wolves.k12.mo.us [207.160.214.1])
	by mail.wolves.k12.mo.us (8.9.3/8.9.3) with ESMTP id MAA10730;
	Sun, 21 Apr 2002 12:05:33 -0500 (CDT)
	(envelope-from cdillon@wolves.k12.mo.us)
Date: Sun, 21 Apr 2002 12:05:32 -0500 (CDT)
From: Chris Dillon <cdillon@wolves.k12.mo.us>
To: Michael Smith <msmith@texas.net>
Cc: freebsd-net@FreeBSD.ORG
Subject: Re: network traffic analysis with a network switch
In-Reply-To: <20020419081453.X30314@staff.texas.net>
Message-ID: <20020421115733.U9678-100000@mail.wolves.k12.mo.us>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Fri, 19 Apr 2002, Michael Smith wrote:

> What I would like to be able to do is somehow send copies of
> network traffic to the RH box without having to move it
> between the FreeBSD box and the switch.  Is this possible
> and if so, how would I go about setting this up?

With the right switch you can do this easily.  It requires a managed
switch with the ability to have a "monitoring" port.  You can copy
traffic to/from one port to another port, or if the switch allows it,
all of the traffic on an entire VLAN to a port.

--
 Chris Dillon - cdillon@wolves.k12.mo.us - cdillon@inter-linc.net
 FreeBSD: The fastest and most stable server OS on the planet
 - Available for IA32 (Intel x86) and Alpha architectures
 - IA64, PowerPC, UltraSPARC, and ARM architectures under development
 - http://www.freebsd.org



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sun Apr 21 20:23:43 2002
Delivered-To: freebsd-net@freebsd.org
Received: from web21108.mail.yahoo.com (web21108.mail.yahoo.com [216.136.227.110])
	by hub.freebsd.org (Postfix) with SMTP id 3118737B41A
	for <freebsd-net@freebsd.org>; Sun, 21 Apr 2002 20:23:39 -0700 (PDT)
Message-ID: <20020422032338.70150.qmail@web21108.mail.yahoo.com>
Received: from [152.15.26.29] by web21108.mail.yahoo.com via HTTP; Sun, 21 Apr 2002 20:23:38 PDT
Date: Sun, 21 Apr 2002 20:23:38 -0700 (PDT)
From: Vinod <geekvinod@yahoo.com>
Subject: rl0 problems
To: freebsd-net@freebsd.org
Cc: freebsd-newbies@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

i had an earlier post about my smc 1211tx ethernet
card not being configured.
This is what i get in my dmesg

rl0: <Accton MPX 5030/5038 10/100 BaseTX> irq11 at
device 13.0 on pci0
rl0:couldn't map ports/memory
device_probe_and_attach: rl0 returned 6
pci0:<unknown card> (vendor=0x1274,dev=0x1371) at 16.0
irq 9
..................

will appreciate if anybody can help me with whats
happening and how i fix this.
Thanks in advance,
Vinod


__________________________________________________
Do You Yahoo!?
Yahoo! Games - play chess, backgammon, pool and more
http://games.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22  1:59:56 2002
Delivered-To: freebsd-net@freebsd.org
Received: from h38n2fls34o1000.telia.com (h38n2fls34o1000.telia.com [213.64.210.38])
	by hub.freebsd.org (Postfix) with ESMTP id 1B9A837B421
	for <freebsd-net@FreeBSD.org>; Mon, 22 Apr 2002 01:59:52 -0700 (PDT)
Received: from veidit.net ([213.88.130.20])
	(authenticated bits=0)
	by h38n2fls34o1000.telia.com (8.12.2/8.12.2) with ESMTP id g3M88Uq5013422
	(version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NO)
	for <freebsd-net@FreeBSD.org>; Mon, 22 Apr 2002 10:08:31 +0200 (CEST)
Message-ID: <3CC3C4F9.5050602@veidit.net>
Date: Mon, 22 Apr 2002 10:08:25 +0200
From: John Angelmo <john@veidit.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0rc1) Gecko/20020417
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-net@FreeBSD.org
Subject: FreeBSD - windows communication
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Hello

I have two questions about windows - freebsd communication

1. What VPN servers work with freebsd, the VPN server should run under 
freebsd, and the clients should run under Win2k (and winxp/freebsd/linux 
if possible) the clients has to be easy to handle.

2. I want to make sure that only users logged in to the network can have 
access to the internet, since I have a FreeBSD box as firewall what kind 
of solutions are possible?

Commercial solutions are very welcome :)

/John


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22  2:49:28 2002
Delivered-To: freebsd-net@freebsd.org
Received: from jane.inty.net (jane.inty.net [195.224.93.242])
	by hub.freebsd.org (Postfix) with ESMTP id B954A37B42A
	for <freebsd-net@FreeBSD.org>; Mon, 22 Apr 2002 02:49:17 -0700 (PDT)
Received: from inty.hq.inty.net (inty.hq.inty.net [213.38.150.150])
	by jane.inty.net (8.11.3/8.11.3) with ESMTP id g3M96hC68666
	for <freebsd-net@FreeBSD.org>; Mon, 22 Apr 2002 10:06:43 +0100 (BST)
Received: from tariq ([10.0.1.156])
	by inty.hq.inty.net (8.12.1/8.12.1) with SMTP id g3M96hL1084229
	for <freebsd-net@FreeBSD.org>; Mon, 22 Apr 2002 10:06:43 +0100 (BST)
Message-ID: <01d601c1e9dd$a74621c0$9c01000a@tariq>
From: "Tariq Rashid" <tariq@inty.net>
To: <freebsd-net@FreeBSD.org>
References: <3CC3C4F9.5050602@veidit.net>
Subject: Re: FreeBSD - windows communication
Date: Mon, 22 Apr 2002 10:11:11 +0100
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Sender-IP: 10.0.1.156
X-INT-DeliveryDone: g3M96hL1084229
X-suppress-rcpt-virus-notify: yes
X-Skip-Virus-Check: yes
X-Virus-Checked: 38383
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


1. personally, i have found that using OpenBSD's isakmpd to implement IPSEC
on FreeBSD 4.4-R works very well.

  clients that work include SoftNet's SoftPK, OpenSSH, and PGPNet - i find
that PGPnet to be well implemented.

  As a bonus - you'll get a good level of interoperability with other
servers too like Checkpoint's VPN.

I'll leave question 2 to someone who knows better!

tariq

----- Original Message -----
From: "John Angelmo" <john@veidit.net>
To: <freebsd-net@FreeBSD.org>
Sent: Monday, April 22, 2002 9:08 AM
Subject: FreeBSD - windows communication


> Hello
>
> I have two questions about windows - freebsd communication
>
> 1. What VPN servers work with freebsd, the VPN server should run under
> freebsd, and the clients should run under Win2k (and winxp/freebsd/linux
> if possible) the clients has to be easy to handle.
>
> 2. I want to make sure that only users logged in to the network can have
> access to the internet, since I have a FreeBSD box as firewall what kind
> of solutions are possible?
>
> Commercial solutions are very welcome :)
>
> /John
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-net" in the body of the message
>
> intY (www.inty.com) has automatically scanned this email using Sophos
Anti-Virus
>
>


intY (www.inty.com) has automatically scanned this email using Sophos Anti-Virus



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22  8:57:14 2002
Delivered-To: freebsd-net@freebsd.org
Received: from localhost.net (host-4.python-2.demon.nl [212.238.176.180])
	by hub.freebsd.org (Postfix) with ESMTP id B1CE137B417
	for <freebsd-net@freebsd.org>; Mon, 22 Apr 2002 08:57:06 -0700 (PDT)
Received: from localhost.l ([127.0.0.1] helo=NO-SPAM-HERE.com)
	by localhost.l with esmtp (Custom mailer)
	id 16zJAS-0000JS-00
	for <freebsd-net@freebsd.org>; Sun, 21 Apr 2002 17:22:20 +0200
Message-ID: <3CC2D91C.2010308@NO-SPAM-HERE.com>
Date: Sun, 21 Apr 2002 17:22:04 +0200
From: "Richie B." <richie@NO-SPAM-HERE.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020320
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Subject: Path MTU Discovery and missing DF bit
Content-Type: multipart/mixed;
 boundary="------------090407090603000004000204"
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

This is a multi-part message in MIME format.
--------------090407090603000004000204
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit

When using Path MTU Discovery, according to RFC 1191, all TCP datagrams 
must have the Don't Fragment (DF) bit set. It seems that FreeBSD does 
not obey this rule. On "SYN ACK" packets, the DF bit is not set. It is 
set on all other packets though (including SYN packets). See attached 
dumps (use ethereal to view them). The versions of the systems are:

$ uname -a
SunOS mort 5.9 s81_57 sun4u sparc SUNW,Sun-Blade-100
$ uname -a
FreeBSD trantor.xs4all.nl 5.0-CURRENT FreeBSD 5.0-CURRENT #6: Mon Apr 15 
20:16:39 MET DST 2002 
paulz@trantor.xs4all.nl:/usr/obj/usr/source/src/sys/trantor i386

Can anyone explain this behaviour?

Thanks to paulz for providing the dumps.

Please respond to me directly (as well), since I am not a member of this 
list.

Richie

-- 
Yes that *is* my E-mail address

--------------090407090603000004000204
Content-Type: application/gzip;
 name="snooplog-solaris-to-to-bsd.gz"
Content-Transfer-Encoding: base64
Content-Disposition: inline;
 filename="snooplog-solaris-to-to-bsd.gz"

H4sICG3QwjwAA3Nub29wbG9nLXNvbGFyaXMtdG8tdG8tYnNkACvOy88vYAADJiBmAWI7KI4A
CdocupDDwKuszHBhO9/K0wzMu3jv+XEwuDIwGJhdcWBwYPs09cCKE1xAzNTPzMD76XjZDpCu
AqaDL7a7A41kYd3CyMjCBDbfBoqRzFVZDzERYjrYXJ0d6xiA5m7YDzITZDYDbz/zvzqnMKDZ
OxOE/v/3DYSYywADZlAcgGTuVQz3aphdBbt3Dpp7dwLNDg8QOPhisSrUvAAozkCYp/sKw51O
O9aDzCtYgebOcJCZAZL//0cA3RRcmqfgWFCkYGSoYGhmZWJqZWCoYGRgYMTLhd3dekZY3H0N
7O7ZWNxdBHY3F+5wMLuIxbzrYPNmYTVPEGgeJ9Q8LPFlfgwjHDR2bACHw0G0cCgCmrkrQOD/
/5RPDEgAAOoG8WVwAgAA
--------------090407090603000004000204
Content-Type: application/gzip;
 name="tcpdump-log-bsd-to-solaris.gz"
Content-Transfer-Encoding: base64
Content-Disposition: inline;
 filename="tcpdump-log-bsd-to-solaris.gz"

H4sICPzOwjwAA3RjcGR1bXAtbG9nLWJzZC10by1zb2xhcmlzALtyeNNCJgYWBhhIAGJGIP52
7pDN2q18DF5ANggzMO/ivefHcGE738rTHAyuAgw2U144MDiwTUk9sOIEExBznVzNwOumq1EK
UryA6f//s6YMDEwsrFsYmZkZGRk5uBg/G6kyQE3evB3JZLCZEPOBJjMw2GhqOzDYsLEYg0wF
mc7Ae3L1W6nsFUDTyxYIHQjQdQe6EWRicWs4yFSoLWCTPwNNdgIa6oTNzSZTXoLdnIPm5jKg
6SsbBJokpjtDTQaaCjIdZOLy3XwMMUDDYrC51U9TB+xWBTS3rgSZ2iBxIMBbC9WtwaV5Co4F
RQpGhgqGZlbGFlYmZgpGBgZGXLwgux7vRnI9ul0mmrpguyzR7DoMtkvwQEDEB1S7QCby7sEb
Hq/A4ZGNJTyOAMODe7opZngY7cNr4muwiVlYTRQEhrA6pokiB/D6Wg/saws0Xx8BmlreIAD0
9XtUXwMAJdHM4NICAAA=
--------------090407090603000004000204--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22 13:34:54 2002
Delivered-To: freebsd-net@freebsd.org
Received: from web14810.mail.yahoo.com (web14810.mail.yahoo.com [216.136.224.231])
	by hub.freebsd.org (Postfix) with SMTP id B42A137B416
	for <freebsd-net@freebsd.org>; Mon, 22 Apr 2002 13:34:48 -0700 (PDT)
Message-ID: <20020422203338.17971.qmail@web14810.mail.yahoo.com>
Received: from [213.19.151.12] by web14810.mail.yahoo.com via HTTP; Mon, 22 Apr 2002 13:33:38 PDT
Date: Mon, 22 Apr 2002 13:33:38 -0700 (PDT)
From: ali nasseh <freebsd_list@yahoo.com>
Subject: subscription
To: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

hi,
pleasz subscribe me for freebsd-net list

a. nasseh

__________________________________________________
Do You Yahoo!?
Yahoo! Games - play chess, backgammon, pool and more
http://games.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22 16:34:17 2002
Delivered-To: freebsd-net@freebsd.org
Received: from web21105.mail.yahoo.com (web21105.mail.yahoo.com [216.136.227.107])
	by hub.freebsd.org (Postfix) with SMTP id 73A4D37B843
	for <freebsd-net@freebsd.org>; Mon, 22 Apr 2002 16:27:59 -0700 (PDT)
Message-ID: <20020422214118.14621.qmail@web21105.mail.yahoo.com>
Received: from [152.15.26.29] by web21105.mail.yahoo.com via HTTP; Mon, 22 Apr 2002 14:41:18 PDT
Date: Mon, 22 Apr 2002 14:41:18 -0700 (PDT)
From: Vinod <geekvinod@yahoo.com>
Subject: SMC9432 not being recognized
To: freebsd-newbies@freebsd.org
Cc: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

i was having problems with a SMC9432TX ethernet card.i
already have a Realtek 1211TX configured on this
machine.its just not recognizing this card.i am not
getting a tx0 assigned.
here's the dmesg below.hope somebody can give me
useful pointer's.
Thanks in advance,
Vinod

The Regents of the University of California. All
rights reserved.
FreeBSD 4.5-RELEASE #0: Mon Jan 28 14:31:56 GMT 2002
   
murray@builder.freebsdmall.com:/usr/src/sys/compile/GENERIC
Timecounter "i8254"  frequency 1193182 Hz
CPU: Pentium II/Pentium II Xeon/Celeron (333.27-MHz
686-class CPU)
  Origin = "GenuineIntel"  Id = 0x651  Stepping = 1
  
Features=0x183f9ff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR>
real memory  = 67108864 (65536K bytes)
avail memory = 60649472 (59228K bytes)
Preloaded elf kernel "kernel" at 0xc0496000.
Pentium Pro MTRR support enabled
md0: Malloc disk
Using $PIR table, 7 entries at 0xc00fdf50
npx0: <math processor> on motherboard
npx0: INT 16 interface
pcib0: <Intel 82443LX (440 LX) host to PCI bridge> on
motherboard
pci0: <PCI bus> on pcib0
pcib1: <Intel 82443LX (440 LX) PCI-PCI (AGP) bridge>
at device 1.0 on 
pci0
pci1: <PCI bus> on pcib1
pci1: <ATI Mach64-GB graphics accelerator> at 0.0
isab0: <Intel 82371AB PCI to ISA bridge> at device 7.0
on pci0
isa0: <ISA bus> on isab0
atapci0: <Intel PIIX4 ATA33 controller> port
0xfc90-0xfc9f at device 
7.1 on pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
uhci0: <Intel 82371AB/EB (PIIX4) USB controller> port
0xfca0-0xfcbf irq 
9 at device 7.2 on pci0
usb0: <Intel 82371AB/EB (PIIX4) USB controller> on
uhci0
usb0: USB revision 1.0
uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00,
addr 1
uhub0: 2 ports with 2 removable, self powered
chip1: <Intel 82371AB Power management controller>
port 0x7000-0x700f 
at device 7.3 on pci0
rl0: <Accton MPX 5030/5038 10/100BaseTX> port
0xf800-0xf8ff mem 
0xfedffc00-0xfedffcff irq 11 at device 13.0 on pci0
rl0: Ethernet address: 00:e0:29:32:36:7a
miibus0: <MII bus> on rl0
rlphy0: <RealTek internal media interface> on miibus0
rlphy0:  10baseT, 10baseT-FDX, 100baseTX,
100baseTX-FDX, auto
pci0: <unknown card> (vendor=0x1274, dev=0x1371) at
16.0 irq 9
orm0: <Option ROMs> at iomem
0xc0000-0xc7fff,0xe4000-0xeffff on isa0
fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7
irq 6 drq 2 on 
isa0
fdc0: FIFO enabled, 8 bytes threshold
fd0: <1440-KB 3.5" drive> on fdc0 drive 0
atkbdc0: <Keyboard controller (i8042)> at port
0x60,0x64 on isa0
atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
kbd0 at atkbd0
psm0: <PS/2 Mouse> irq 12 on atkbdc0
psm0: model IntelliMouse, device ID 3
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem
0xa0000-0xbffff on 
isa0
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=0x300>
sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
sio0: type 16550A
sio1: configured irq 3 not in bitmap of probed irqs 0
ppc0: <Parallel port> at port 0x378-0x37f irq 7 on
isa0
ppc0: Generic chipset (NIBBLE-only) in COMPATIBLE mode
plip0: <PLIP network interface> on ppbus0
lpt0: <Printer> on ppbus0
lpt0: Interrupt-driven port
ppi0: <Parallel I/O> on ppbus0
ad0: 4110MB <QUANTUM FIREBALL SE4.3A> [14848/9/63] at
ata0-master 
UDMA33
acd0: CDROM <TOSHIBA CD-ROM XM-6202B> at ata1-master
using PIO4
Mounting root from ufs:/dev/ad0s1a


__________________________________________________
Do You Yahoo!?
Yahoo! Games - play chess, backgammon, pool and more
http://games.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22 18:20:47 2002
Delivered-To: freebsd-net@freebsd.org
Received: from tomts20-srv.bellnexxia.net (tomts20.bellnexxia.net [209.226.175.74])
	by hub.freebsd.org (Postfix) with ESMTP
	id EAF9037B427; Mon, 22 Apr 2002 18:20:33 -0700 (PDT)
Received: from xena.gsicomp.on.ca ([65.95.179.11])
          by tomts20-srv.bellnexxia.net
          (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with ESMTP
          id <20020423011821.FDTT20706.tomts20-srv.bellnexxia.net@xena.gsicomp.on.ca>;
          Mon, 22 Apr 2002 21:18:21 -0400
Received: from hermes (hermes.gsicomp.on.ca [192.168.0.18])
	by xena.gsicomp.on.ca (8.11.3/8.11.3) with SMTP id g3N04Ub15576;
	Mon, 22 Apr 2002 20:04:31 -0400 (EDT)
	(envelope-from matt@gsicomp.on.ca)
Message-ID: <00b201c1ea64$c1cc1090$1200a8c0@gsicomp.on.ca>
From: "Matthew Emmerton" <matt@gsicomp.on.ca>
To: "Vinod" <geekvinod@yahoo.com>, <freebsd-newbies@FreeBSD.ORG>
Cc: <freebsd-net@FreeBSD.ORG>
References: <20020422214118.14621.qmail@web21105.mail.yahoo.com>
Subject: Re: SMC9432 not being recognized
Date: Mon, 22 Apr 2002 21:18:19 -0400
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


> i was having problems with a SMC9432TX ethernet card.i
> already have a Realtek 1211TX configured on this
> machine.its just not recognizing this card.i am not
> getting a tx0 assigned.
> here's the dmesg below.hope somebody can give me
> useful pointer's.
> Thanks in advance,
> Vinod
>
> The Regents of the University of California. All
> rights reserved.
> FreeBSD 4.5-RELEASE #0: Mon Jan 28 14:31:56 GMT 2002
>
> murray@builder.freebsdmall.com:/usr/src/sys/compile/GENERIC
> Timecounter "i8254"  frequency 1193182 Hz
> CPU: Pentium II/Pentium II Xeon/Celeron (333.27-MHz
> 686-class CPU)
>   Origin = "GenuineIntel"  Id = 0x651  Stepping = 1
>
>
Features=0x183f9ff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,
PAT,PSE36,MMX,FXSR>
> real memory  = 67108864 (65536K bytes)
> avail memory = 60649472 (59228K bytes)
> Preloaded elf kernel "kernel" at 0xc0496000.
> Pentium Pro MTRR support enabled
> md0: Malloc disk
> Using $PIR table, 7 entries at 0xc00fdf50
> npx0: <math processor> on motherboard
> npx0: INT 16 interface
> pcib0: <Intel 82443LX (440 LX) host to PCI bridge> on
> motherboard
> pci0: <PCI bus> on pcib0
> pcib1: <Intel 82443LX (440 LX) PCI-PCI (AGP) bridge>
> at device 1.0 on
> pci0
> pci1: <PCI bus> on pcib1
> pci1: <ATI Mach64-GB graphics accelerator> at 0.0
> isab0: <Intel 82371AB PCI to ISA bridge> at device 7.0
> on pci0
> isa0: <ISA bus> on isab0
> atapci0: <Intel PIIX4 ATA33 controller> port
> 0xfc90-0xfc9f at device
> 7.1 on pci0
> ata0: at 0x1f0 irq 14 on atapci0
> ata1: at 0x170 irq 15 on atapci0
> uhci0: <Intel 82371AB/EB (PIIX4) USB controller> port
> 0xfca0-0xfcbf irq
> 9 at device 7.2 on pci0
> usb0: <Intel 82371AB/EB (PIIX4) USB controller> on
> uhci0
> usb0: USB revision 1.0
> uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00,
> addr 1
> uhub0: 2 ports with 2 removable, self powered
> chip1: <Intel 82371AB Power management controller>
> port 0x7000-0x700f
> at device 7.3 on pci0
> rl0: <Accton MPX 5030/5038 10/100BaseTX> port
> 0xf800-0xf8ff mem
> 0xfedffc00-0xfedffcff irq 11 at device 13.0 on pci0
> rl0: Ethernet address: 00:e0:29:32:36:7a
> miibus0: <MII bus> on rl0
> rlphy0: <RealTek internal media interface> on miibus0
> rlphy0:  10baseT, 10baseT-FDX, 100baseTX,
> 100baseTX-FDX, auto
> pci0: <unknown card> (vendor=0x1274, dev=0x1371) at
> 16.0 irq 9
> orm0: <Option ROMs> at iomem
> 0xc0000-0xc7fff,0xe4000-0xeffff on isa0
> fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7
> irq 6 drq 2 on
> isa0
> fdc0: FIFO enabled, 8 bytes threshold
> fd0: <1440-KB 3.5" drive> on fdc0 drive 0
> atkbdc0: <Keyboard controller (i8042)> at port
> 0x60,0x64 on isa0
> atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
> kbd0 at atkbd0
> psm0: <PS/2 Mouse> irq 12 on atkbdc0
> psm0: model IntelliMouse, device ID 3
> vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem
> 0xa0000-0xbffff on
> isa0
> sc0: <System console> at flags 0x100 on isa0
> sc0: VGA <16 virtual consoles, flags=0x300>
> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
> sio0: type 16550A
> sio1: configured irq 3 not in bitmap of probed irqs 0
> ppc0: <Parallel port> at port 0x378-0x37f irq 7 on
> isa0
> ppc0: Generic chipset (NIBBLE-only) in COMPATIBLE mode
> plip0: <PLIP network interface> on ppbus0
> lpt0: <Printer> on ppbus0
> lpt0: Interrupt-driven port
> ppi0: <Parallel I/O> on ppbus0
> ad0: 4110MB <QUANTUM FIREBALL SE4.3A> [14848/9/63] at
> ata0-master
> UDMA33
> acd0: CDROM <TOSHIBA CD-ROM XM-6202B> at ata1-master
> using PIO4
> Mounting root from ufs:/dev/ad0s1a

There's not much to go on here.  The only "unknown device" is this:

> pci0: <unknown card> (vendor=0x1274, dev=0x1371) at
> 16.0 irq 9

Which apparently is a Ensoniq AudioPCI device.

It appears that your system isn't even recognizing your SMC9432TX card.  I
have one of these cards, and I know FreeBSD will detect them.

Try yanking your RealTek card and seeing if the tx0 magically appears.

--
Matt Emmerton


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Mon Apr 22 23: 6:47 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mail.latnet.lv (mail.latnet.lv [159.148.108.208])
	by hub.freebsd.org (Postfix) with SMTP id 9E40737B41F
	for <freebsd-net@FreeBSD.ORG>; Mon, 22 Apr 2002 23:06:43 -0700 (PDT)
Received: (qmail 5999 invoked by uid 64014); 23 Apr 2002 06:06:42 -0000
Received: from ac-freebsd@latnet.lv by mail with qmail-scanner-0.96 (. Clean. Processed in 0.046298 secs); 23 Apr 2002 06:06:42 -0000
Received: from unknown (HELO box) (159.148.108.188)
  by mail.latnet.lv with SMTP; 23 Apr 2002 06:06:42 -0000
Message-ID: <006b01c1ea8c$f36b48a0$bc6c949f@box>
From: "Artis Caune" <ac-freebsd@latnet.lv>
To: <freebsd-net@FreeBSD.ORG>
Subject: 
Date: Tue, 23 Apr 2002 09:06:04 +0300
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-4"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

auth 2b9097ce subscribe freebsd-hackers ac-FreeBSD@latnet.lv


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23  8:39:56 2002
Delivered-To: freebsd-net@freebsd.org
Received: from ixion.tartarus.org (ixion.tartarus.org [195.149.39.210])
	by hub.freebsd.org (Postfix) with ESMTP id 5EE2837B400
	for <freebsd-net@freebsd.org>; Tue, 23 Apr 2002 08:39:53 -0700 (PDT)
Received: from localhost (ixion.tartarus.org) [127.0.0.1] 
	by ixion.tartarus.org with esmtp (Exim 3.12 #1 (Debian))
	id 1702OR-0001as-00; Tue, 23 Apr 2002 16:39:47 +0100
From: putty-bugs-admin@lists.tartarus.org
Subject: Mail sent to putty-bugs
To: freebsd-net@freebsd.org
X-Mailman-Version: 1.1
List-Id: Bug reporting for PuTTY <putty-bugs.lists.tartarus.org>
Message-Id: <E1702OR-0001as-00@ixion.tartarus.org>
Date: Tue, 23 Apr 2002 16:39:47 +0100
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Your mail to 'putty-bugs' with the subject:

    A special  new game

Is being held until the list moderator can review it for approval.

The reason it is being held:

    Message body too long (>40k)

Either the message will get posted to the list, or you will receive
notification of the moderator's decision.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23 12:33:32 2002
Delivered-To: freebsd-net@freebsd.org
Received: from crufty.research.bell-labs.com (crufty.research.bell-labs.com [204.178.16.49])
	by hub.freebsd.org (Postfix) with ESMTP
	id 417F337B41F; Tue, 23 Apr 2002 12:33:21 -0700 (PDT)
Received: from scummy.research.bell-labs.com (H-135-104-2-10.research.bell-labs.com [135.104.2.10])
	by crufty.research.bell-labs.com (8.12.2/8.12.2) with ESMTP id g3NJX2Xt045621;
	Tue, 23 Apr 2002 15:33:02 -0400 (EDT)
Received: from aura.research.bell-labs.com (aura.research.bell-labs.com [135.104.46.10])
	by scummy.research.bell-labs.com (8.11.6/8.11.6) with ESMTP id g3NJWuk11943;
	Tue, 23 Apr 2002 15:32:56 -0400 (EDT)
Received: from fgupcmh (fgu-pcmh.research.bell-labs.com [135.104.47.121])
	by aura.research.bell-labs.com (8.12.2/8.12.2) with SMTP id g3NJWSEJ008018;
	Tue, 23 Apr 2002 15:32:28 -0400 (EDT)
Reply-To: <gfr@lucent.com>
From: "Fengrui Gu" <gfr@lucent.com>
To: <freebsd-hackers@freebsd.org>, <freebsd-net@freebsd.org>
Cc: <gfr@lucent.com>
Subject: Problems with nge driver and copper GbE cards
Date: Tue, 23 Apr 2002 15:32:38 -0400
Message-ID: <FCENIMJAHNNHNOPKCEFEIEOOCKAA.gfr@lucent.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Importance: Normal
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

I am evaluating copper GbE cards for our lab.
According to previous talk threads, it seems that SMC9462TX has better
performance than NetGear cards. I bought two SMC9462TX cards
and connect them through a Cat 5e cross-link cable. The machines in use
are two dual PIII 733Mhz with 756MB memory. I use 32bit/33Mhz PCI slots.
I know PCI bus of 32bit/33Mhz is slow but the major purpose of evaluation
is to compare the performance between copper and Fiber GbE cards. There are
another two identical dual PIII 733Mhz machines installed NetGear 620 Fiber
GbE cards(using ti driver). So it is not an issue.
I am using FreeBSD 4.5 and statically link nge driver into the kernel.

First, there are a lot of "link up" messages from nge driver.
I guess this has been reported. I use a small program to measure TCP
performance.
Basically, it sends 1G or 2G data over the network and calculate time and
bit rate.
The link between two copper GbE cards became unavailable after some TCP
runs.
There is no response from "ping". The kernel didn't report error messages
except
 some new "link up" messages. There is no abnormal from the output of
"ifconfig -a".
Based on some suggestions(master or slave mode), I issued command "ifconfig
nge0 link0".
The link would be back sometimes but not always. Did anyone suffer the same
problem?

Second, it seems that the link is more stable with UDP traffic though it
became
unavailable now and then. I could manage to collect some UPD performance
data:

               UDP performance(sender)
           w/o jumbo frame       w/ jumbo frame
copper GbE       510Mb/s         632Mb/s
(SMC9462Tx)
Fiber GbE        750Mb/s         856Mb/s
(GA 620)
(Note: data are from the results of netperf and shared the same parameters).
Did anybody knows why copper GbE cards are so slow? Both copper and Fiber
GbE cards are in the same kind of PCI slot and identical machines. The extra
memory on GA620 should not cause 40-50% difference in my opinion.

Third, I had trouble to set half-duplex mode on nge0.
If I issued command "ifconfig nge0 media 1000baseTX mediaopt half-duplex", I
got the
following error message
"ifconfig: SIOCSIFMEDIA: Device not configured"
I don't have trouble to issue command "ifconfig nge0 media 1000baseTX
mediaopt full-duplex".

thanks,
--Fengrui










To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23 13:24:19 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mta6.snfc21.pbi.net (mta6.snfc21.pbi.net [206.13.28.240])
	by hub.freebsd.org (Postfix) with ESMTP
	id 6AA5037B449; Tue, 23 Apr 2002 13:23:44 -0700 (PDT)
Received: from kokeb.ambesa.net ([64.172.24.219])
 by mta6.snfc21.pbi.net (iPlanet Messaging Server 5.1 (built May  7 2001))
 with ESMTP id <0GV100E9YFBJET@mta6.snfc21.pbi.net>; Tue,
 23 Apr 2002 13:23:43 -0700 (PDT)
Received: from kokeb.ambesa.net (localhost [127.0.0.1])
	by kokeb.ambesa.net (8.12.3/8.12.3) with ESMTP id g3NKSjw0059136; Tue,
 23 Apr 2002 13:28:45 -0700 (PDT envelope-from makonnen@pacbell.net)
Received: (from mikem@localhost)	by kokeb.ambesa.net (8.12.3/8.12.3/Submit)
 id g3NKSjbt059135; Tue, 23 Apr 2002 13:28:45 -0700 (PDT)
Date: Tue, 23 Apr 2002 14:28:45 -0600
From: Mike Makonnen <makonnen@pacbell.net>
Subject: Re: Problems with nge driver and copper GbE cards
In-reply-to: <FCENIMJAHNNHNOPKCEFEIEOOCKAA.gfr@lucent.com>
To: gfr@lucent.com
Cc: freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG
Message-id: <1019593725.1977.12.camel@kokeb.ambesa.net>
MIME-version: 1.0
X-Mailer: Evolution/1.0.2
Content-type: text/plain
Content-transfer-encoding: 7BIT
References: <FCENIMJAHNNHNOPKCEFEIEOOCKAA.gfr@lucent.com>
X-Authentication-warning: kokeb.ambesa.net: mikem set sender to
 makonnen@pacbell.net using -f
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Tue, 2002-04-23 at 13:32, Fengrui Gu wrote:
> 
> Third, I had trouble to set half-duplex mode on nge0.
> If I issued command "ifconfig nge0 media 1000baseTX mediaopt half-duplex", I
> got the
> following error message
> "ifconfig: SIOCSIFMEDIA: Device not configured"
> I don't have trouble to issue command "ifconfig nge0 media 1000baseTX
> mediaopt full-duplex".
> 

This I can help you with. the correct way of doing it is disabling
full-duplex:
	# iconfig nge0 media 1000baseTX -mediaopt full-duplex


cheers,
Mike Makonnen

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23 13:39:50 2002
Delivered-To: freebsd-net@freebsd.org
Received: from dirty.research.bell-labs.com (dirty.research.bell-labs.com [204.178.16.6])
	by hub.freebsd.org (Postfix) with SMTP
	id 423BE37B417; Tue, 23 Apr 2002 13:39:37 -0700 (PDT)
Received: from scummy.research.bell-labs.com ([135.104.2.10]) by dirty; Tue Apr 23 16:39:37 EDT 2002
Received: from aura.research.bell-labs.com (aura.research.bell-labs.com [135.104.46.10])
	by scummy.research.bell-labs.com (8.11.6/8.11.6) with ESMTP id g3NKd7k18795;
	Tue, 23 Apr 2002 16:39:08 -0400 (EDT)
Received: from fgupcmh (fgu-pcmh.research.bell-labs.com [135.104.47.121])
	by aura.research.bell-labs.com (8.12.2/8.12.2) with SMTP id g3NKd5EJ012521;
	Tue, 23 Apr 2002 16:39:07 -0400 (EDT)
Reply-To: <gfr@lucent.com>
From: "Fengrui Gu" <gfr@lucent.com>
To: "Mike Makonnen" <makonnen@pacbell.net>
Cc: <freebsd-hackers@FreeBSD.ORG>, <freebsd-net@FreeBSD.ORG>
Subject: RE: Problems with nge driver and copper GbE cards
Date: Tue, 23 Apr 2002 16:39:16 -0400
Message-ID: <FCENIMJAHNNHNOPKCEFEOEOPCKAA.gfr@lucent.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
In-Reply-To: <1019593725.1977.12.camel@kokeb.ambesa.net>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Importance: Normal
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

It works. Thanks a lot.
So setting half-duplex is to disabe full-duplex.:)
I didn't do this before so I was confused in the first place.
But the following statement in the man page of nge driver
probably may need some changes.
===========================================================
     The nge driver supports the following media options:

     full-duplex  Force full duplex operation.

     half-duplex  Force half duplex operation.
===========================================================

thanks,
--Fengrui


-----Original Message-----
From: Mike Makonnen [mailto:makonnen@pacbell.net]
Sent: Tuesday, April 23, 2002 4:29 PM
To: gfr@lucent.com
Cc: freebsd-hackers@FreeBSD.ORG; freebsd-net@FreeBSD.ORG
Subject: Re: Problems with nge driver and copper GbE cards


On Tue, 2002-04-23 at 13:32, Fengrui Gu wrote:
>
> Third, I had trouble to set half-duplex mode on nge0.
> If I issued command "ifconfig nge0 media 1000baseTX mediaopt half-duplex",
I
> got the
> following error message
> "ifconfig: SIOCSIFMEDIA: Device not configured"
> I don't have trouble to issue command "ifconfig nge0 media 1000baseTX
> mediaopt full-duplex".
>

This I can help you with. the correct way of doing it is disabling
full-duplex:
	# iconfig nge0 media 1000baseTX -mediaopt full-duplex


cheers,
Mike Makonnen


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23 14:32:35 2002
Delivered-To: freebsd-net@freebsd.org
Received: from crufty.research.bell-labs.com (crufty.research.bell-labs.com [204.178.16.49])
	by hub.freebsd.org (Postfix) with ESMTP
	id 6676637B41B; Tue, 23 Apr 2002 14:32:05 -0700 (PDT)
Received: from grubby.research.bell-labs.com (H-135-104-2-9.research.bell-labs.com [135.104.2.9])
	by crufty.research.bell-labs.com (8.12.2/8.12.2) with ESMTP id g3NLW4Xt046794;
	Tue, 23 Apr 2002 17:32:04 -0400 (EDT)
Received: from aura.research.bell-labs.com (aura.research.bell-labs.com [135.104.46.10])
	by grubby.research.bell-labs.com (8.11.6/8.11.6) with ESMTP id g3NLVwo89145;
	Tue, 23 Apr 2002 17:31:58 -0400 (EDT)
Received: from fgupcmh (fgu-pcmh.research.bell-labs.com [135.104.47.121])
	by aura.research.bell-labs.com (8.12.2/8.12.2) with SMTP id g3NLVvEJ015824;
	Tue, 23 Apr 2002 17:31:57 -0400 (EDT)
Reply-To: <gfr@lucent.com>
From: "Fengrui Gu" <gfr@lucent.com>
To: <gfr@lucent.com>, <freebsd-hackers@freebsd.org>,
	<freebsd-net@freebsd.org>
Subject: RE: Problems with nge driver and copper GbE cards
Date: Tue, 23 Apr 2002 17:32:07 -0400
Message-ID: <FCENIMJAHNNHNOPKCEFEOEPACKAA.gfr@lucent.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
In-Reply-To: <FCENIMJAHNNHNOPKCEFEIEOOCKAA.gfr@lucent.com>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Importance: Normal
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

There is something interesting. I accidentally started a
ping command(ping data sender side) from data receiver side.
As you know, ping will continue running until you stop it.

I started netperf again from data sender side. You know what?
The link seems more stable with additional ping session on
receiver side no matter TCP or UDP traffic. I got the following
numbers by running netperf.

         The performance of TCP
                w/ jumbo frame
Copper GbE         650Mb/s
(SMC9462TX)
Fiber GbE          660Mb/s
(GA 620)
(Note: my experience told me that enable/disable jumbo frame
will cause 20% performance difference).

--Fengrui


-----Original Message-----
From: Fengrui Gu [mailto:gfr@lucent.com]
Sent: Tuesday, April 23, 2002 3:33 PM
To: freebsd-hackers@freebsd.org; freebsd-net@freebsd.org
Cc: gfr@lucent.com
Subject: Problems with nge driver and copper GbE cards


I am evaluating copper GbE cards for our lab.
According to previous talk threads, it seems that SMC9462TX has better
performance than NetGear cards. I bought two SMC9462TX cards
and connect them through a Cat 5e cross-link cable. The machines in use
are two dual PIII 733Mhz with 756MB memory. I use 32bit/33Mhz PCI slots.
I know PCI bus of 32bit/33Mhz is slow but the major purpose of evaluation
is to compare the performance between copper and Fiber GbE cards. There are
another two identical dual PIII 733Mhz machines installed NetGear 620 Fiber
GbE cards(using ti driver). So it is not an issue.
I am using FreeBSD 4.5 and statically link nge driver into the kernel.

First, there are a lot of "link up" messages from nge driver.
I guess this has been reported. I use a small program to measure TCP
performance.
Basically, it sends 1G or 2G data over the network and calculate time and
bit rate.
The link between two copper GbE cards became unavailable after some TCP
runs.
There is no response from "ping". The kernel didn't report error messages
except
 some new "link up" messages. There is no abnormal from the output of
"ifconfig -a".
Based on some suggestions(master or slave mode), I issued command "ifconfig
nge0 link0".
The link would be back sometimes but not always. Did anyone suffer the same
problem?

Second, it seems that the link is more stable with UDP traffic though it
became
unavailable now and then. I could manage to collect some UPD performance
data:

               UDP performance(sender)
           w/o jumbo frame       w/ jumbo frame
copper GbE       510Mb/s         632Mb/s
(SMC9462Tx)
Fiber GbE        750Mb/s         856Mb/s
(GA 620)
(Note: data are from the results of netperf and shared the same parameters).
Did anybody knows why copper GbE cards are so slow? Both copper and Fiber
GbE cards are in the same kind of PCI slot and identical machines. The extra
memory on GA620 should not cause 40-50% difference in my opinion.

Third, I had trouble to set half-duplex mode on nge0.
If I issued command "ifconfig nge0 media 1000baseTX mediaopt half-duplex", I
got the
following error message
"ifconfig: SIOCSIFMEDIA: Device not configured"
I don't have trouble to issue command "ifconfig nge0 media 1000baseTX
mediaopt full-duplex".

thanks,
--Fengrui










To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Tue Apr 23 16:59:19 2002
Delivered-To: freebsd-net@freebsd.org
Received: from hawk.mail.pas.earthlink.net (hawk.mail.pas.earthlink.net [207.217.120.22])
	by hub.freebsd.org (Postfix) with ESMTP
	id 325E737B404; Tue, 23 Apr 2002 16:59:08 -0700 (PDT)
Received: from pool0099.cvx40-bradley.dialup.earthlink.net ([216.244.42.99] helo=mindspring.com)
	by hawk.mail.pas.earthlink.net with esmtp (Exim 3.33 #2)
	id 170ABd-0003rj-00; Tue, 23 Apr 2002 16:59:06 -0700
Message-ID: <3CC5F52D.707C721A@mindspring.com>
Date: Tue, 23 Apr 2002 16:58:37 -0700
From: Terry Lambert <tlambert2@mindspring.com>
X-Mailer: Mozilla 4.7 [en]C-CCK-MCD {Sony}  (Win98; U)
X-Accept-Language: en
MIME-Version: 1.0
To: gfr@lucent.com
Cc: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org
Subject: Re: Problems with nge driver and copper GbE cards
References: <FCENIMJAHNNHNOPKCEFEOEPACKAA.gfr@lucent.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Fengrui Gu wrote:
> There is something interesting. I accidentally started a
> ping command(ping data sender side) from data receiver side.
> As you know, ping will continue running until you stop it.
> 
> I started netperf again from data sender side. You know what?
> The link seems more stable with additional ping session on
> receiver side no matter TCP or UDP traffic. I got the following
> numbers by running netperf.

Do a search engine query on "receiver livelock".


-- Terry

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Wed Apr 24  0: 5:34 2002
Delivered-To: freebsd-net@freebsd.org
Received: from rover.village.org (rover.bsdimp.com [204.144.255.66])
	by hub.freebsd.org (Postfix) with ESMTP id 4ABFB37B405
	for <net@freebsd.org>; Wed, 24 Apr 2002 00:05:30 -0700 (PDT)
Received: from harmony.village.org (harmony.village.org [10.0.0.6])
	by rover.village.org (8.11.3/8.11.3) with ESMTP id g3O75SH81915
	for <net@freebsd.org>; Wed, 24 Apr 2002 01:05:29 -0600 (MDT)
	(envelope-from imp@village.org)
Received: from localhost (warner@rover2.village.org [10.0.0.1])
	by harmony.village.org (8.11.6/8.11.6) with ESMTP id g3O75Rb31423
	for <net@freebsd.org>; Wed, 24 Apr 2002 01:05:28 -0600 (MDT)
	(envelope-from imp@village.org)
Date: Wed, 24 Apr 2002 01:05:08 -0600 (MDT)
Message-Id: <20020424.010508.131147446.imp@village.org>
To: net@freebsd.org
Subject: MFC: IF_HANDOFF and IF_HANDOFF_ADJ
From: "M. Warner Losh" <imp@village.org>
X-Mailer: Mew version 2.1 on Emacs 21.1 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Any objections to MFCing IF_HANDOFF and IF_HANDOFF_ADJ?  I'd like
there to be a common API between -stable and -current.

I'm thinking that the following macros would be sufficient for -stable:

#define IF_HANDOFF_ADJ(q, m, ifp, adj) \
		if (IF_QFULL((q))) { \
			IF_DROP((q)); \
			m_freem((m)); \
		} else { \
			(ifp)->if_obytes += (m)->m_pkthdr.len + (adj); \
			if ((m)->m_flags & M_MCAST) \
				(ifp)->if_omcasts++; \
			IF_ENQUEUE((q), (m)); \
			if (((ifp)->if_flags & IFF_OACTIVE) == 0) \
				(*(ifp)->if_start)((ifp)); \
		}
#define IF_HANDOFF(q, m, ifp) IF_HANDOFF_ADJ(q, m, ifp, 0)

Comments?

Warner

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Wed Apr 24  4:14:10 2002
Delivered-To: freebsd-net@freebsd.org
Received: from web12208.mail.yahoo.com (web12208.mail.yahoo.com [216.136.173.92])
	by hub.freebsd.org (Postfix) with SMTP id 97A7937B41A
	for <freebsd-net@freebsd.org>; Wed, 24 Apr 2002 04:14:01 -0700 (PDT)
Message-ID: <20020424111242.77223.qmail@web12208.mail.yahoo.com>
Received: from [203.124.128.243] by web12208.mail.yahoo.com via HTTP; Wed, 24 Apr 2002 04:12:42 PDT
Date: Wed, 24 Apr 2002 04:12:42 -0700 (PDT)
From: kshitij gunjikar <kshitijgunjikar@yahoo.com>
Subject: Record Routes 
To: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Hi All,
  I have a question related to record routes in the
FreeBSD code. In the
ip_dooptions() fn in ip_input.c there is this code in
the Record Route
option.

/*
* If no space remains, ignore.
*/
off--; /* 0 origin */
if (off > optlen - (int)sizeof(struct in_addr))
break;
(void)memcpy(&ipaddr.sin_addr, &ip->ip_dst,
    sizeof(ipaddr.sin_addr));
/*
* locate outgoing interface; if we're the destination,
* use the incoming interface (should be same).
*/
if ((ia = (INA)ifa_ifwithaddr((SA)&ipaddr)) == 0 &&
    (ia = ip_rtaddr(ipaddr.sin_addr)) == 0) {
type = ICMP_UNREACH;
code = ICMP_UNREACH_HOST;
goto bad;
}

1.   Why is the ICMP_UNREACH_HOST generated?

2.  Because if a route is not found, then am I wrong
in saying
ICMP_UNREACH_NETWORK must be generated. Also, how does
ip_rtaddr() find out
that the IP address is not of the directly connected
networks?

Thanks in advance.

Regards
Kshitij



__________________________________________________
Do You Yahoo!?
Yahoo! Games - play chess, backgammon, pool and more
http://games.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Wed Apr 24 15: 2:55 2002
Delivered-To: freebsd-net@freebsd.org
Received: from web21308.mail.yahoo.com (web21308.mail.yahoo.com [216.136.128.174])
	by hub.freebsd.org (Postfix) with SMTP id F08DF37B41E
	for <freebsd-net@freebsd.org>; Wed, 24 Apr 2002 15:02:48 -0700 (PDT)
Message-ID: <20020424220128.4562.qmail@web21308.mail.yahoo.com>
Received: from [152.15.26.29] by web21308.mail.yahoo.com via HTTP; Wed, 24 Apr 2002 15:01:28 PDT
Date: Wed, 24 Apr 2002 15:01:28 -0700 (PDT)
From: Brian Howell <bsdmobile@yahoo.com>
Subject: do i need a switch between a machine and a gateway?
To: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

i had a basic networking question to ask.do i need a
switch to connect between two computers?
suppose there is A and B and B is a gateway to another
subnet.do i need a switch between A and B?i am asking
coz i am not getting any lights when i connect the
cable out of A's ethernet to  B's ethernet.i though
you could just give the output of A to B if u wanted
to route all packets of A through B.kinda seems weird
to me.i tried switching ethernet cards too.
plz cc to me as i am not subscribed.
Thanks.
Brian 

__________________________________________________
Do You Yahoo!?
Yahoo! Games - play chess, backgammon, pool and more
http://games.yahoo.com/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Wed Apr 24 15:41: 5 2002
Delivered-To: freebsd-net@freebsd.org
Received: from odin.ac.hmc.edu (Odin.AC.HMC.Edu [134.173.32.75])
	by hub.freebsd.org (Postfix) with ESMTP id D120037B400
	for <freebsd-net@FreeBSD.ORG>; Wed, 24 Apr 2002 15:40:57 -0700 (PDT)
Received: (from brdavis@localhost)
	by odin.ac.hmc.edu (8.11.0/8.11.0) id g3OM85O11986;
	Wed, 24 Apr 2002 15:08:05 -0700
Date: Wed, 24 Apr 2002 15:08:05 -0700
From: Brooks Davis <brooks@one-eyed-alien.net>
To: Brian Howell <bsdmobile@yahoo.com>
Cc: freebsd-net@FreeBSD.ORG
Subject: Re: do i need a switch between a machine and a gateway?
Message-ID: <20020424150805.A11528@Odin.AC.HMC.Edu>
References: <20020424220128.4562.qmail@web21308.mail.yahoo.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="0OAP2g/MAC+5xKAE"
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20020424220128.4562.qmail@web21308.mail.yahoo.com>; from bsdmobile@yahoo.com on Wed, Apr 24, 2002 at 03:01:28PM -0700
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


--0OAP2g/MAC+5xKAE
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Apr 24, 2002 at 03:01:28PM -0700, Brian Howell wrote:
> i had a basic networking question to ask.do i need a
> switch to connect between two computers?
> suppose there is A and B and B is a gateway to another
> subnet.do i need a switch between A and B?i am asking
> coz i am not getting any lights when i connect the
> cable out of A's ethernet to  B's ethernet.i though
> you could just give the output of A to B if u wanted
> to route all packets of A through B.kinda seems weird
> to me.i tried switching ethernet cards too.
> plz cc to me as i am not subscribed.

You need on of a hub, a switch, or a cross over cable.  (There is a hack
used by some Macs to make this work, but it's not standard.)

-- Brooks

--=20
Any statement of the form "X is the one, true Y" is FALSE.
PGP fingerprint 655D 519C 26A7 82E7 2529  9BF0 5D8E 8BE9 F238 1AD4

--0OAP2g/MAC+5xKAE
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8xyzFXY6L6fI4GtQRAqPvAJ4od2Zfcq0c6xhUZODl9domDXYoSwCfcyNq
lzVqh4q8w1myUwYJ6I52Ahc=
=hECd
-----END PGP SIGNATURE-----

--0OAP2g/MAC+5xKAE--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Thu Apr 25  1:40:28 2002
Delivered-To: freebsd-net@freebsd.org
Received: from papa.tanu.org (kame195.kame.net [203.178.141.195])
	by hub.freebsd.org (Postfix) with ESMTP id 64EF337B41B
	for <freebsd-net@FreeBSD.ORG>; Thu, 25 Apr 2002 01:40:13 -0700 (PDT)
Received: from localhost ([3ffe:501:4819:1000:260:1dff:fe21:f766])
	by papa.tanu.org (8.11.6/8.11.6) with ESMTP id g3P8Wjw09800;
	Thu, 25 Apr 2002 17:32:45 +0900 (JST)
	(envelope-from sakane@kame.net)
To: vctw@yahoo.com
Cc: freebsd-net@FreeBSD.ORG
Subject: Re: why prefer old SA in KAME's IPSec?
In-Reply-To: Your message of "Sat, 20 Apr 2002 22:12:05 -0700 (PDT)"
	<20020421051205.33101.qmail@web20004.mail.yahoo.com>
References: <20020421051205.33101.qmail@web20004.mail.yahoo.com>
X-Mailer: Cue version 0.6 (011026-1440/sakane)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Message-Id: <20020426024239G.sakane@kame.net>
Date: Fri, 26 Apr 2002 02:42:39 +0900
From: Shoichi Sakane <sakane@kame.net>
X-Dispatcher: imput version 20000228(IM140)
Lines: 10
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

> but freebsd use old SA. After searching maillist, I
> found that net.key.prefered_oldsa=0 will solve that
> problem. But why prefer old one?

the reason is for backword compatibility.
you can use new one by the system wide default as you know.

early kame implementation always used old one according to
draft-jenkins-ipsec-rekeying-06.txt.  it merged to freebsd.
then net.key.prefered_oldsa was added to be able to use new one.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Thu Apr 25 13: 9:45 2002
Delivered-To: freebsd-net@freebsd.org
Received: from garbo.lodgenet.com (garbo.lodgenet.com [204.124.122.252])
	by hub.freebsd.org (Postfix) with ESMTP id EFC7237B400
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 13:09:39 -0700 (PDT)
Received: from hardy.lodgenet.com (hardy.lodgenet.com [10.0.104.235])
	by garbo.lodgenet.com (8.11.4/8.11.4) with ESMTP id g3PK9b417860
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 15:09:38 -0500 (CDT)
Received: from chaplin.lodgenet.com (not verified[10.0.104.215]) by hardy.lodgenet.com with MailMarshal (4,2,5,0) 
	id <B0000f420b>; Thu, 25 Apr 2002 15:03:22 -0500
Received: by chaplin.lodgenet.com with Internet Mail Service (5.5.2653.19)
	id <2FNA4NL8>; Thu, 25 Apr 2002 15:05:28 -0500
Message-ID: <3EA88113DE92D211807300805FA7994209149D23@chaplin.lodgenet.com>
From: "McKenna, Lee" <lmckenna@lodgenet.com>
To: "'freebsd-net@freebsd.org'" <freebsd-net@freebsd.org>
Subject: RE: pxeboot and realtek 8139
Date: Thu, 25 Apr 2002 15:05:18 -0500
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
Content-Type: text/plain;
	charset="iso-8859-1"
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Answering my own question here ;)

I had to go into the BIOS on the SV-24 (FV-24 motherboard) and set:

Assign IRQ to VGA:  NO
Assign IRQ to USB:  NO

Now, pxeboot works wonderfully on the built-in RealTek 8139.

Woo-Hoo!

--Lee

> -----Original Message-----
> From: McKenna, Lee 
> Sent: Friday, April 19, 2002 7:31 PM
> To: 'freebsd-net@freebsd.org'
> Subject: pxeboot and realtek 8139
> 
> 
> Using 4.5-stable, I can get an Intel fxp0 card to work fine 
> using pxeboot in a diskless configuration, but if I try the 
> onboard RealTek 8139 it hangs when loading the kernel.  I 
> tried "BOOTP_WIRED_TO=rl0" but that didnt make a difference.
> 
> Motherboard is a shuttle fv-24, with builtin RealTek 8139.  
> About the only thing I can configure is the amount of memory 
> for the network boot on the 8139, either 8, 16, 32, 64, or 
> 128 -- changing this makes no difference.
> 
> I'd rather just use the built-in 8139 so I dont have to buy 
> an Intel card for all these machines...
> 
> Any suggestions?  
> 
> Thanks,
> 
> --Lee
> 
> lmckenna@lodgenet.com
> 
> 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Thu Apr 25 20: 2:56 2002
Delivered-To: freebsd-net@freebsd.org
Received: from outboundx.mv.meer.net (outboundx.mv.meer.net [209.157.152.12])
	by hub.freebsd.org (Postfix) with ESMTP id 21FC937B41B
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 20:02:53 -0700 (PDT)
Received: from mail.meer.net (mail.meer.net [209.157.152.14])
	by outboundx.mv.meer.net (8.11.6/8.11.6) with ESMTP id g3Q32oC28434
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 20:02:50 -0700 (PDT)
	(envelope-from gnn@neville-neil.com)
Received: from neville-neil.com ([209.157.133.226])
	by mail.meer.net (8.12.1/8.12.1/meer) with ESMTP id g3Q32lV4012073
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 20:02:52 -0700 (PDT)
Message-Id: <200204260302.g3Q32lV4012073@mail.meer.net>
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: freebsd-net@freebsd.org
Subject: Putting all PCBs into sysctl?
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Thu, 25 Apr 2002 20:02:47 -0700
From: "George V. Neville-Neil" <gnn@neville-neil.com>
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Hey Folks,

	I was just wondering if anyone had considered making it possible to
control PCBs from the sysctl interface?  I'm not completely familiar with
sysctl yet, is it possible to add information to the database dynamically?

	It would be nice to be able to disconnect, or modify, long running 
connections,
for instance on a machine under DOS attack or perhaps for debugging.

	Just an idea...

Thanks,
George

-- 
George V. Neville-Neil                                  gnn@neville-neil.com
Neville-Neil Consulting                                	www.neville-neil.com

"I learn only to be contented."  inscription at Ryoan-ji in Kyoto, Japan



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Thu Apr 25 21: 0: 5 2002
Delivered-To: freebsd-net@freebsd.org
Received: from elvis.mu.org (elvis.mu.org [192.203.228.196])
	by hub.freebsd.org (Postfix) with ESMTP id AEDCE37B416
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 21:00:01 -0700 (PDT)
Received: by elvis.mu.org (Postfix, from userid 1192)
	id 9DA7DAE27F; Thu, 25 Apr 2002 21:00:01 -0700 (PDT)
Date: Thu, 25 Apr 2002 21:00:01 -0700
From: Alfred Perlstein <bright@mu.org>
To: "George V. Neville-Neil" <gnn@neville-neil.com>
Cc: freebsd-net@freebsd.org
Subject: Re: Putting all PCBs into sysctl?
Message-ID: <20020426040001.GB1530@elvis.mu.org>
References: <200204260302.g3Q32lV4012073@mail.meer.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200204260302.g3Q32lV4012073@mail.meer.net>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

* George V. Neville-Neil <gnn@neville-neil.com> [020425 20:02] wrote:
> Hey Folks,
> 
> 	I was just wondering if anyone had considered making it possible to
> control PCBs from the sysctl interface?  I'm not completely familiar with
> sysctl yet, is it possible to add information to the database dynamically?
> 
> 	It would be nice to be able to disconnect, or modify, long running 
> connections,
> for instance on a machine under DOS attack or perhaps for debugging.
> 
> 	Just an idea...

A very good one in fact, see what you can do, I'd be interested in
seeing patches to do this safely.

-- 
-Alfred Perlstein [alfred@freebsd.org]
'Instead of asking why a piece of software is using "1970s technology,"
 start asking why software is ignoring 30 years of accumulated wisdom.'
Tax deductible donations for FreeBSD: http://www.freebsdfoundation.org/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Thu Apr 25 21:26:28 2002
Delivered-To: freebsd-net@freebsd.org
Received: from patrocles.silby.com (d64.as2.nwbl0.wi.voyager.net [169.207.92.64])
	by hub.freebsd.org (Postfix) with ESMTP id 2C66E37B41D
	for <freebsd-net@freebsd.org>; Thu, 25 Apr 2002 21:26:22 -0700 (PDT)
Received: from patrocles.silby.com (localhost [127.0.0.1])
	by patrocles.silby.com (8.12.3/8.12.3) with ESMTP id g3Q4QLUm009835;
	Thu, 25 Apr 2002 23:26:21 -0500 (CDT)
	(envelope-from silby@silby.com)
Received: from localhost (silby@localhost)
	by patrocles.silby.com (8.12.3/8.12.3/Submit) with ESMTP id g3Q4Q4JF009832;
	Thu, 25 Apr 2002 23:26:05 -0500 (CDT)
X-Authentication-Warning: patrocles.silby.com: silby owned process doing -bs
Date: Thu, 25 Apr 2002 23:26:04 -0500 (CDT)
From: Mike Silbersack <silby@silby.com>
To: Alfred Perlstein <bright@mu.org>
Cc: "George V. Neville-Neil" <gnn@neville-neil.com>,
	<freebsd-net@freebsd.org>
Subject: Re: Putting all PCBs into sysctl?
In-Reply-To: <20020426040001.GB1530@elvis.mu.org>
Message-ID: <20020425232324.S7839-100000@patrocles.silby.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


On Thu, 25 Apr 2002, Alfred Perlstein wrote:

> * George V. Neville-Neil <gnn@neville-neil.com> [020425 20:02] wrote:
> > Hey Folks,
> >
> > 	I was just wondering if anyone had considered making it possible to
> > control PCBs from the sysctl interface?  I'm not completely familiar with
> > sysctl yet, is it possible to add information to the database dynamically?
> >
> > 	It would be nice to be able to disconnect, or modify, long running
> > connections,
> > for instance on a machine under DOS attack or perhaps for debugging.
> >
> > 	Just an idea...
>
> A very good one in fact, see what you can do, I'd be interested in
> seeing patches to do this safely.
>
> --
> -Alfred Perlstein [alfred@freebsd.org]

Agreed, that would be cool.  The only problem I can see is how you would
uniquely identify a socket.  (It wouldn't be nice to kill the wrong socket
because they switched out from under you.)

Maybe a procfs like filesystem for sockets would be better. :)

Mike "Silby" Silbersack


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26  2:17: 2 2002
Delivered-To: freebsd-net@freebsd.org
Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65])
	by hub.freebsd.org (Postfix) with ESMTP
	id 71AB037B41C; Fri, 26 Apr 2002 02:16:45 -0700 (PDT)
Received: (from ru@localhost)
	by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3Q9GKD24216;
	Fri, 26 Apr 2002 12:16:20 +0300 (EEST)
	(envelope-from ru)
Date: Fri, 26 Apr 2002 12:16:20 +0300
From: Ruslan Ermilov <ru@FreeBSD.ORG>
To: Igor M Podlesny <poige@morning.ru>
Cc: net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG
Subject: Re: patch -- An ingress filter (RFC2827)
Message-ID: <20020426091620.GA18917@sunbay.com>
References: <20020414180447.A93954@mars-gw.morning.ru>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="d6Gm4EdcadzBjdND"
Content-Disposition: inline
In-Reply-To: <20020414180447.A93954@mars-gw.morning.ru>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


--d6Gm4EdcadzBjdND
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote:
>=20
> Hello!
>=20
> I'd like to know your opinion about this patch
>=20
>   http://www.morning.ru/~poige/patchzone/ingressfiltering.patch
>=20
> which is mine attempt to implement an ingress filter being inspired by
> RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attacks
> which employ IP Source Address Spoofing".
>=20
>   (http://www.ietf.org/rfc/rfc2827.txt)
>=20
> It should be mentioned IMHO that this code makes another one in ip_input.=
c a
> kind of redundant -- I mean code checking/blocking the 127/8 network "on
> wire". BTW, I suggest if not removing it completely then adding (sys)logg=
ing
> into, -- 127/8-spoofing certainly should be logged. :)
>=20
> Another thing to pay an attention to: I deem it'd be better if a such fil=
ter
> was built-in into ip_fw.c, allowing such syntax for ipfw(8):
>=20
>   deny log ip from any to any in via fxp0 spoofed
>=20
> But AFAIS in ip_fw.h:
>=20
> #define IP_FW_F_IN      0x00000100
> ...
> #define IP_FW_F_DME     0x40000000      /* destination =3D me */
>=20
> #define IP_FW_F_MASK    0x7FFFFFFF      /* All possible flag bits mask */
>=20
> and u_int32_t       fw_flg;
>=20
> there is no free space for any additional flags...
>=20
> So, I was a bit unsure whether should I expand fw_flg to u_int64_t, and do
> any other extensions. For now I decided just to wrote something like a
> draft, test it (it seems to be working ;), and asking you, people, for yo=
ur
> comments/ideas on it.
>=20
> P.S. A bit more info on this patch is at http://www.morning.ru/~poige/pat=
chzone/
>=20
Style comments:

1.  There are many unnecessary whitespace changes.
2.  Don't use the `register' keyword.
3.  Double `const' doesn't do any good.  (I was once confused about this to=
o.)
4.  ip_fw.c part of the patch has some cruft in it.

Functional comments:

1.  The use and externalization of ipfw_report() wasn't a good
    idea.  Your patch makes ingressfilter dependent on `options
    IPFIREWALL' because ip_fw.c is only compiled if this option
    is present.

2.  Comment for ipf_rtaddr() is bogus -- the function returns
    the pointer to an interface not address.

3.  Function name is not good either, the more natural name
    would be ip_rtifp().  I would also suggest reimplementing
    the already existing ip_rtaddr() into ip_rtifp(), and
    implementing ip_rtaddr() in terms of ip_rtifp().

General notes:

Ingress filtering in unacceptable in many cases.  For example,
our site is connected to two ISPs, ISP-A and ISP-B.  Each ISP
has allocated a network (NET-A and NET-B).  Both channels are
connected to a single gateway box, and are reachable through
interfaces IF-A and IF-B, respectively.  The `default' route
on this box point to ISP-A through IF-A.

Now imagine that you want to ping(8) one of our addresses in
NET-B.  This packet will appear on our gateway box through
IF-B, but ingress filter would discard it because ip_rtifp()
lookup would return the IF-A interface for your address
(ip_src in the packet).

We solve the problem with multiple default routes with `ipfw
fwd'.  All outgoing packets with the source IP address in
NET-B we forward through the IF-B interface.


Cheers,
--=20
Ruslan Ermilov		Sysadmin and DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age

--d6Gm4EdcadzBjdND
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8yRrkUkv4P6juNwoRAo5oAJ9OJmLOs6m5DZUF7RqLj3O6eIPUEwCeLb3T
aSYkgbQ/xKRgDWrNBwF6oTo=
=Ovu3
-----END PGP SIGNATURE-----

--d6Gm4EdcadzBjdND--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26  6:37:20 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mars-gw.morning.ru (ns.morning.ru [195.161.98.5])
	by hub.freebsd.org (Postfix) with ESMTP
	id DFB6C37B405; Fri, 26 Apr 2002 06:37:00 -0700 (PDT)
Received: (from root@localhost)
	by mars-gw.morning.ru (8.11.5/8.11.5) id g3QDavK70582;
	Fri, 26 Apr 2002 21:36:57 +0800 (KRAST)
Date: Fri, 26 Apr 2002 21:36:57 +0800
From: Igor M Podlesny <poige@morning.ru>
To: Ruslan Ermilov <ru@FreeBSD.ORG>
Cc: Igor M Podlesny <poige@morning.ru>, net@FreeBSD.ORG,
	freebsd-isp@FreeBSD.ORG
Subject: Re: patch -- An ingress filter (RFC2827)
Message-ID: <20020426213657.D85230@mars-gw.morning.ru>
References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20020426091620.GA18917@sunbay.com>; from ru@FreeBSD.ORG on Fri, Apr 26, 2002 at 12:16:20PM +0300
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Fri, Apr 26, 2002 at 12:16:20PM +0300, Ruslan Ermilov wrote:
> On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote:
> > 
> > Hello!
> > 
> > I'd like to know your opinion about this patch
> > 
> >   http://www.morning.ru/~poige/patchzone/ingressfiltering.patch
> > 
> > which is mine attempt to implement an ingress filter being inspired by
> > RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attacks
> > which employ IP Source Address Spoofing".
> > 
> >   (http://www.ietf.org/rfc/rfc2827.txt)
> > 
> > It should be mentioned IMHO that this code makes another one in ip_input.c a
> > kind of redundant -- I mean code checking/blocking the 127/8 network "on
> > wire". BTW, I suggest if not removing it completely then adding (sys)logging
> > into, -- 127/8-spoofing certainly should be logged. :)
> > 
> > Another thing to pay an attention to: I deem it'd be better if a such filter
> > was built-in into ip_fw.c, allowing such syntax for ipfw(8):
> > 
> >   deny log ip from any to any in via fxp0 spoofed
> > 
> > But AFAIS in ip_fw.h:
> > 
> > #define IP_FW_F_IN      0x00000100
> > ...
> > #define IP_FW_F_DME     0x40000000      /* destination = me */
> > 
> > #define IP_FW_F_MASK    0x7FFFFFFF      /* All possible flag bits mask */
> > 
> > and u_int32_t       fw_flg;
> > 
> > there is no free space for any additional flags...
> > 
> > So, I was a bit unsure whether should I expand fw_flg to u_int64_t, and do
> > any other extensions. For now I decided just to wrote something like a
> > draft, test it (it seems to be working ;), and asking you, people, for your
> > comments/ideas on it.
> > 
> > P.S. A bit more info on this patch is at http://www.morning.ru/~poige/patchzone/
> > 

At first, thank you, Ruslan for your answer, it's quite fertile!

> Style comments:

I should had read the manual or just had known it by heart before writing
out the patch in case I was a commiter going to commit it into the
repository. But I'm not. Moreover, I don't suggest using _this_ code AS IS
in FreeBSD. I said before -- this is a draft. Other people also agree this
should be better done (ingress filtering I mean) at ip_fw.c not ip_input.c.

So yeah, it works someway, but again -- it's a draft. ;)

Well, thank you for time you spent telling me (us all, reading that) about
style, but I think that was done in a wrong time. And just one question
to you (if we're anyway have been talking about the style) as to a really
knowledgeable person: is the whole FreeBSD's kernel code is style(9)d from A
to Z?... :)

> 1.  There are many unnecessary whitespace changes.

(I consider using whitespaces similar to commenting, BTW. It's a good
C-style I heard. ;))

> 2.  Don't use the `register' keyword.

(Haven't found anything bout it in style(9)...)

> 3.  Double `const' doesn't do any good.  (I was once confused about this too.)

(const char *const ptr?

Why? I deem `const' can't make a code worse, only better, cause it makes an
additional description of variables/functions/code/algo...)

> 4.  ip_fw.c part of the patch has some cruft in it.

Namely what/where?

> Functional comments:
> 
> 1.  The use and externalization of ipfw_report() wasn't a good
>     idea.  Your patch makes ingressfilter dependent on `options
>     IPFIREWALL' because ip_fw.c is only compiled if this option
>     is present.

Not such a big deal cause this can be easily solved in various ways
dependent on what we want... (yeah, that's again about `draft'-approach :)

> 2.  Comment for ipf_rtaddr() is bogus -- the function returns
>     the pointer to an interface not address.

(A pointer is a value keeping an address. Am I wrong?)

> 3.  Function name is not good either, the more natural name
>     would be ip_rtifp().  I would also suggest reimplementing
>     the already existing ip_rtaddr() into ip_rtifp(), and
>     implementing ip_rtaddr() in terms of ip_rtifp().

(This'd be a good thing, I also thought about it,  but this wasn't the main
point of the patch -- the main idea stills be the same and it is ingress
filtering. :))

> General notes:
> 
> Ingress filtering in unacceptable in many cases.

And is acceptable in many others :)

Don't you agree with that?

>  For example,
> our site is connected to two ISPs, ISP-A and ISP-B.  Each ISP
> has allocated a network (NET-A and NET-B).  Both channels are
> connected to a single gateway box, and are reachable through
> interfaces IF-A and IF-B, respectively.  The `default' route
> on this box point to ISP-A through IF-A.
> 
> Now imagine that you want to ping(8) one of our addresses in
> NET-B.  This packet will appear on our gateway box through
> IF-B, but ingress filter would discard it because ip_rtifp()
> lookup would return the IF-A interface for your address
> (ip_src in the packet).
> We solve the problem with multiple default routes with `ipfw
> fwd'.  All outgoing packets with the source IP address in
> NET-B we forward through the IF-B interface.

1) in case of ip_fw.c integrated version you could easily specify
not using ingress filtering on such NICs.

2) this patch _AS_ _IS_ is already useful for both back bone routers making
up an internal network infrastructure and border gateways with single
_default_ route. I wrote about asymmetric routing incompatible with the patch,
and this point is quite similar to the situation, represented by you.

> Cheers,

P.S. I'd be very grateful if you could point out reasonable ways of
integration ingress filter with ip_fw.c... Or you consider this is not worth
doing at all?...

-- 
Igor M Podlesny a.k.a. Poige
http://WwW.MorninG.RU/~poige

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26  7:27:59 2002
Delivered-To: freebsd-net@freebsd.org
Received: from snipe.prod.itd.earthlink.net (snipe.mail.pas.earthlink.net [207.217.120.62])
	by hub.freebsd.org (Postfix) with ESMTP id 6DA3637B420
	for <net@freebsd.org>; Fri, 26 Apr 2002 07:27:45 -0700 (PDT)
Received: from pool0068.cvx22-bradley.dialup.earthlink.net ([209.179.198.68] helo=mindspring.com)
	by snipe.prod.itd.earthlink.net with esmtp (Exim 3.33 #2)
	id 1716hM-0002DH-00
	for net@freebsd.org; Fri, 26 Apr 2002 07:27:44 -0700
Message-ID: <3CC963C3.DA65074@mindspring.com>
Date: Fri, 26 Apr 2002 07:27:15 -0700
From: Terry Lambert <tlambert2@mindspring.com>
X-Mailer: Mozilla 4.7 [en]C-CCK-MCD {Sony}  (Win98; U)
X-Accept-Language: en
MIME-Version: 1.0
To: net@freebsd.org
Subject: 8 port ethernet cards for rackmount?
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Does anyone know of any 8 port or better ethernet cards?  The ideal
card (IMO) would be:

o	Plug into a PCI slot

o	At least 8 ports

o	The 8 ports would not be on the mounting bracket, but would
	instead be externally mounted (ideally, with a rackmount
	front panel)

o	Internally act as a single ethernet interface... e.g. it
	would be an 8 port switch on a PCI card

Intel has a couple of chips that could be used to build one of these,
no problem, but I haven't been able to find anyone using the things
in a product.

Thanks,
-- Terry

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26  9:45:19 2002
Delivered-To: freebsd-net@freebsd.org
Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65])
	by hub.freebsd.org (Postfix) with ESMTP
	id A6FFB37B420; Fri, 26 Apr 2002 09:44:53 -0700 (PDT)
Received: (from ru@localhost)
	by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3QGiR785283;
	Fri, 26 Apr 2002 19:44:27 +0300 (EEST)
	(envelope-from ru)
Date: Fri, 26 Apr 2002 19:44:27 +0300
From: Ruslan Ermilov <ru@FreeBSD.ORG>
To: Igor M Podlesny <poige@morning.ru>
Cc: net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG
Subject: Re: patch -- An ingress filter (RFC2827)
Message-ID: <20020426164427.GA82505@sunbay.com>
References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="EeQfGwPcQSOJBaQU"
Content-Disposition: inline
In-Reply-To: <20020426213657.D85230@mars-gw.morning.ru>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


--EeQfGwPcQSOJBaQU
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Apr 26, 2002 at 09:36:57PM +0800, Igor M Podlesny wrote:
> On Fri, Apr 26, 2002 at 12:16:20PM +0300, Ruslan Ermilov wrote:
> > On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote:
> > >=20
> > > Hello!
> > >=20
> > > I'd like to know your opinion about this patch
> > >=20
> > >   http://www.morning.ru/~poige/patchzone/ingressfiltering.patch
> > >=20
> > > which is mine attempt to implement an ingress filter being inspired by
> > > RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attac=
ks
> > > which employ IP Source Address Spoofing".
> > >=20
> > >   (http://www.ietf.org/rfc/rfc2827.txt)
> > >=20
> > > It should be mentioned IMHO that this code makes another one in ip_in=
put.c a
> > > kind of redundant -- I mean code checking/blocking the 127/8 network =
"on
> > > wire". BTW, I suggest if not removing it completely then adding (sys)=
logging
> > > into, -- 127/8-spoofing certainly should be logged. :)
> > >=20
> > > Another thing to pay an attention to: I deem it'd be better if a such=
 filter
> > > was built-in into ip_fw.c, allowing such syntax for ipfw(8):
> > >=20
> > >   deny log ip from any to any in via fxp0 spoofed
> > >=20
> > > But AFAIS in ip_fw.h:
> > >=20
> > > #define IP_FW_F_IN      0x00000100
> > > ...
> > > #define IP_FW_F_DME     0x40000000      /* destination =3D me */
> > >=20
> > > #define IP_FW_F_MASK    0x7FFFFFFF      /* All possible flag bits mas=
k */
> > >=20
> > > and u_int32_t       fw_flg;
> > >=20
> > > there is no free space for any additional flags...
> > >=20
> > > So, I was a bit unsure whether should I expand fw_flg to u_int64_t, a=
nd do
> > > any other extensions. For now I decided just to wrote something like a
> > > draft, test it (it seems to be working ;), and asking you, people, fo=
r your
> > > comments/ideas on it.
> > >=20
> > > P.S. A bit more info on this patch is at http://www.morning.ru/~poige=
/patchzone/
> > >=20
>=20
> At first, thank you, Ruslan for your answer, it's quite fertile!
>=20
> > Style comments:
>=20
> I should had read the manual or just had known it by heart before writing
> out the patch in case I was a commiter going to commit it into the
> repository. But I'm not. Moreover, I don't suggest using _this_ code AS IS
> in FreeBSD. I said before -- this is a draft. Other people also agree this
> should be better done (ingress filtering I mean) at ip_fw.c not ip_input.=
c.
>=20
> So yeah, it works someway, but again -- it's a draft. ;)
>=20
> Well, thank you for time you spent telling me (us all, reading that) about
> style, but I think that was done in a wrong time. And just one question
> to you (if we're anyway have been talking about the style) as to a really
> knowledgeable person: is the whole FreeBSD's kernel code is style(9)d fro=
m A
> to Z?... :)
>=20
Just tell me next time you don't want to hear about style, it's okay with m=
e.

> > 1.  There are many unnecessary whitespace changes.
>=20
> (I consider using whitespaces similar to commenting, BTW. It's a good
> C-style I heard. ;))
>=20
This makes patches very hard to read as there are many unrelated to the
functionality changes.

> > 2.  Don't use the `register' keyword.
>=20
> (Haven't found anything bout it in style(9)...)
>=20
There was a huge sweep in -CURRENT that "removed 'register' keyword".
This comment was inspired by this.

> > 3.  Double `const' doesn't do any good.  (I was once confused about thi=
s too.)
>=20
> (const char *const ptr?
>=20
> Why? I deem `const' can't make a code worse, only better, cause it makes =
an
> additional description of variables/functions/code/algo...)
>=20
Because this is merely equivalent to "const char *ptr".

> > 4.  ip_fw.c part of the patch has some cruft in it.
>=20
> Namely what/where?
>=20
I misread the diffs, in the part that const'ified some variables in
ipfw_report().  The change also included the bogus whitespace change,
after "int len;".  These are whitespace changes that make patches
unreadable.

> > Functional comments:
> >=20
> > 1.  The use and externalization of ipfw_report() wasn't a good
> >     idea.  Your patch makes ingressfilter dependent on `options
> >     IPFIREWALL' because ip_fw.c is only compiled if this option
> >     is present.
>=20
> Not such a big deal cause this can be easily solved in various ways
> dependent on what we want... (yeah, that's again about `draft'-approach :)
>=20
Well, you were pushy in asking me to comment on your patch, here they go.
What's up?

> > 2.  Comment for ipf_rtaddr() is bogus -- the function returns
> >     the pointer to an interface not address.
>=20
> (A pointer is a value keeping an address. Am I wrong?)
>=20
"addr" =3D=3D (AF_INET family address), "ifp" =3D=3D (pointer to "struct if=
").

> > 3.  Function name is not good either, the more natural name
> >     would be ip_rtifp().  I would also suggest reimplementing
> >     the already existing ip_rtaddr() into ip_rtifp(), and
> >     implementing ip_rtaddr() in terms of ip_rtifp().
>=20
> (This'd be a good thing, I also thought about it,  but this wasn't the ma=
in
> point of the patch -- the main idea stills be the same and it is ingress
> filtering. :))
>=20
Well, again, you asked for a feedback, and I just tried to do my best.

> > General notes:
> >=20
> > Ingress filtering in unacceptable in many cases.
>=20
> And is acceptable in many others :)
>=20
> Don't you agree with that?
>=20
"In many cases" does not of couse mean "never acceptable".
Just wanted to point this out.  And of course this patch
doesn't replace the 127/8 check which should also occur
in ip_output().

> >  For example,
> > our site is connected to two ISPs, ISP-A and ISP-B.  Each ISP
> > has allocated a network (NET-A and NET-B).  Both channels are
> > connected to a single gateway box, and are reachable through
> > interfaces IF-A and IF-B, respectively.  The `default' route
> > on this box point to ISP-A through IF-A.
> >=20
> > Now imagine that you want to ping(8) one of our addresses in
> > NET-B.  This packet will appear on our gateway box through
> > IF-B, but ingress filter would discard it because ip_rtifp()
> > lookup would return the IF-A interface for your address
> > (ip_src in the packet).
> > We solve the problem with multiple default routes with `ipfw
> > fwd'.  All outgoing packets with the source IP address in
> > NET-B we forward through the IF-B interface.
>=20
> 1) in case of ip_fw.c integrated version you could easily specify
> not using ingress filtering on such NICs.
>=20
That's true.

> 2) this patch _AS_ _IS_ is already useful for both back bone routers maki=
ng
> up an internal network infrastructure and border gateways with single
> _default_ route. I wrote about asymmetric routing incompatible with the p=
atch,
> and this point is quite similar to the situation, represented by you.
>=20
I haven't seen this in your original mail to which I replied, perhaps
I just missed it.

> > Cheers,
>=20
> P.S. I'd be very grateful if you could point out reasonable ways of
> integration ingress filter with ip_fw.c... Or you consider this is not wo=
rth
> doing at all?...
>=20
Maybe introducing the new "non-routable" keyword.  That would filter
all matching incoming packets.  Specifying "deny ip from any to any
non-routable" would mean "ingress filter on all interfaces".  The
keyword should only be accepted for "in" or "in out" rules.  It is
meaningless for "out" rules.


Cheers,
--=20
Ruslan Ermilov		Sysadmin and DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age

--EeQfGwPcQSOJBaQU
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8yYPrUkv4P6juNwoRAqBtAKCC94QAqr9hSFs98Vcg7pYq5XYT7QCcC5JX
73B6uA3XwqWPxeQ2vYLw4e4=
=Q+wx
-----END PGP SIGNATURE-----

--EeQfGwPcQSOJBaQU--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10: 1:47 2002
Delivered-To: freebsd-net@freebsd.org
Received: from tp.databus.com (p72-186.acedsl.com [66.114.72.186])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1C54B37B404; Fri, 26 Apr 2002 10:01:41 -0700 (PDT)
Received: from databus.com (localhost.databus.com [127.0.0.1])
	by tp.databus.com (8.12.3/8.12.2) with ESMTP id g3QH1dp7035132;
	Fri, 26 Apr 2002 13:01:39 -0400 (EDT)
	(envelope-from barney@databus.com)
Received: (from barney@localhost)
	by databus.com (8.12.3/8.12.3/Submit) id g3QH1dfn035131;
	Fri, 26 Apr 2002 13:01:39 -0400 (EDT)
Date: Fri, 26 Apr 2002 13:01:39 -0400
From: Barney Wolff <barney@tp.databus.com>
To: Ruslan Ermilov <ru@FreeBSD.ORG>
Cc: Igor M Podlesny <poige@morning.ru>, net@FreeBSD.ORG,
	freebsd-isp@FreeBSD.ORG
Subject: Re: patch -- An ingress filter (RFC2827)
Message-ID: <20020426130139.A34980@tp.databus.com>
References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru> <20020426164427.GA82505@sunbay.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20020426164427.GA82505@sunbay.com>; from ru@FreeBSD.ORG on Fri, Apr 26, 2002 at 07:44:27PM +0300
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

When did this change?  "const char *ptr" used to mean that the thing
pointed to cannot be changed, but the pointer itself can be.  So far
as I know, it still does.  Educate me, please, if that's no longer so.

On Fri, Apr 26, 2002 at 07:44:27PM +0300, Ruslan Ermilov wrote:
> > > 3.  Double `const' doesn't do any good.  (I was once confused about this too.)
> > 
> > (const char *const ptr?
> > 
> > Why? I deem `const' can't make a code worse, only better, cause it makes an
> > additional description of variables/functions/code/algo...)
> > 
> Because this is merely equivalent to "const char *ptr".

-- 
Barney Wolff
I never met a computer I didn't like.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10: 7:45 2002
Delivered-To: freebsd-net@freebsd.org
Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65])
	by hub.freebsd.org (Postfix) with ESMTP
	id F114C37B405; Fri, 26 Apr 2002 10:07:36 -0700 (PDT)
Received: (from ru@localhost)
	by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3QH77L87605;
	Fri, 26 Apr 2002 20:07:07 +0300 (EEST)
	(envelope-from ru)
Date: Fri, 26 Apr 2002 20:07:07 +0300
From: Ruslan Ermilov <ru@FreeBSD.ORG>
To: Barney Wolff <barney@tp.databus.com>
Cc: Igor M Podlesny <poige@morning.ru>, net@FreeBSD.ORG,
	freebsd-isp@FreeBSD.ORG
Subject: Re: patch -- An ingress filter (RFC2827)
Message-ID: <20020426170707.GA87482@sunbay.com>
References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru> <20020426164427.GA82505@sunbay.com> <20020426130139.A34980@tp.databus.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="GvXjxJ+pjyke8COw"
Content-Disposition: inline
In-Reply-To: <20020426130139.A34980@tp.databus.com>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


--GvXjxJ+pjyke8COw
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Apr 26, 2002 at 01:01:39PM -0400, Barney Wolff wrote:
> When did this change?  "const char *ptr" used to mean that the thing
> pointed to cannot be changed, but the pointer itself can be.  So far
> as I know, it still does.  Educate me, please, if that's no longer so.
>=20
> On Fri, Apr 26, 2002 at 07:44:27PM +0300, Ruslan Ermilov wrote:
> > > > 3.  Double `const' doesn't do any good.  (I was once confused about=
 this too.)
> > >=20
> > > (const char *const ptr?
> > >=20
> > > Why? I deem `const' can't make a code worse, only better, cause it ma=
kes an
> > > additional description of variables/functions/code/algo...)
> > >=20
> > Because this is merely equivalent to "const char *ptr".
>=20
Someone already pointed that out.  Me stands corrected.  :-)
There's a single example of this in n869.txt ISO C-99 draft I have.


Cheers,
--=20
Ruslan Ermilov		Sysadmin and DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age

--GvXjxJ+pjyke8COw
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8yYk7Ukv4P6juNwoRAiI/AJ0QrS3+DTBase+Ail5ef0sD4kTimQCeI7Bn
kjZVAbQWiTOa70+bRPhuG2g=
=h1dW
-----END PGP SIGNATURE-----

--GvXjxJ+pjyke8COw--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10:15:44 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mk-smarthost-1.mail.uk.tiscali.com (mk-smarthost-1.mail.uk.tiscali.com [212.74.112.71])
	by hub.freebsd.org (Postfix) with ESMTP
	id 7D69037B404; Fri, 26 Apr 2002 10:15:38 -0700 (PDT)
Received: from [212.139.129.126] (helo=bloodhound.uk.worldonline.com)
	by mk-smarthost-1.mail.uk.tiscali.com with esmtp (Exim 3.35 #1)
	id 1719JS-0000bE-00; Fri, 26 Apr 2002 18:15:14 +0100
Received: from brian by bloodhound.uk.worldonline.com with local (Exim 3.22 #1)
	id 1719Jn-0000jD-00; Fri, 26 Apr 2002 18:15:35 +0100
Date: Fri, 26 Apr 2002 18:15:35 +0100
From: Brian Candler <B.Candler@pobox.com>
To: freebsd-fs@freebsd.org, freebsd-net@freebsd.org
Subject: NFS clearing attribute cache in nfs_open
Message-ID: <20020426181535.B2748@linnet.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

I have been tracing some performance problems on diskless systems. In
particular, the following test program:

   perl -e 'for ($i=0;$i<1000;$i++) { open F,"</bin/rm"; $x=<F>; close F;}'

generates 1000 'access' transactions, and hence an exchange of 2000 UDP
packets, just from repeatedly opening the same file.

After some digging around, I have found the cause: the NFS attribute cache
for a file is explicitly invalidated every time the file is opened.

[sys/nfs/nfs_vnops.c]

static int
nfs_open(ap)
...
        if ((nmp->nm_flag & NFSMNT_NQNFS) == 0)
                np->n_attrstamp = 0; /* For Open/Close consistency */
        return (0);
}

For test purposes I changed this to

        if ((nmp->nm_flag & NFSMNT_NQNFS) == 0 && (np->n_flag & NMODIFIED))
                np->n_attrstamp = 0; /* For Open/Close consistency */
        return (0);

and suddenly the problem went away - attributes were being cached happily,
and NFS traffic dropped to virtually zero.

Now, there is obviously some "consistency" issue to beware of. Are there any
NFS gurus out there who can say why it is necessary to clear the attribute
cache on _every_ open? Could it safely be made less restrictive, e.g. don't
clear the cache when opening a file for read? I think there are some
potentially large performance gains for diskless server clusters, where the
same file is being repeatedly exec()'d.

I see that the code in nfs_close doesn't invalidate the cache unless the
file has been modified. However that doesn't help much if the cache is going
to get invalidated anyway the next time the file is opened :-)

Many thanks,

Brian Candler.

P.S. I am working to FreeBSD-4.5-STABLE-20020426

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10:35: 5 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mrout1.yahoo.com (mrout1.yahoo.com [216.145.54.171])
	by hub.freebsd.org (Postfix) with ESMTP id 4DD5D37B405
	for <freebsd-net@FreeBSD.ORG>; Fri, 26 Apr 2002 10:35:02 -0700 (PDT)
Received: from milk.yahoo.com (milk.yahoo.com [216.145.52.137])
	by mrout1.yahoo.com (8.11.6/8.11.6/y.out) with ESMTP id g3QHYqA24664;
	Fri, 26 Apr 2002 10:34:52 -0700 (PDT)
Received: (from root@localhost)
	by milk.yahoo.com (8.11.0/8.11.0) id g3QHYpX03778;
	Fri, 26 Apr 2002 10:34:51 -0700 (PDT)
	(envelope-from jayanth)
Date: Fri, 26 Apr 2002 10:34:51 -0700
From: jayanth <jayanth@yahoo-inc.com>
To: Mike Silbersack <silby@silby.com>
Cc: Alfred Perlstein <bright@mu.org>,
	"George V. Neville-Neil" <gnn@neville-neil.com>,
	freebsd-net@FreeBSD.ORG
Subject: Re: Putting all PCBs into sysctl?
Message-ID: <20020426103451.B92949@yahoo-inc.com>
References: <20020426040001.GB1530@elvis.mu.org> <20020425232324.S7839-100000@patrocles.silby.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2i
In-Reply-To: <20020425232324.S7839-100000@patrocles.silby.com>; from silby@silby.com on Thu, Apr 25, 2002 at 11:26:04PM -0500
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Mike Silbersack (silby@silby.com) wrote:
> 
> On Thu, 25 Apr 2002, Alfred Perlstein wrote:
> 
> > * George V. Neville-Neil <gnn@neville-neil.com> [020425 20:02] wrote:
> > > Hey Folks,
> > >
> > > 	I was just wondering if anyone had considered making it possible to
> > > control PCBs from the sysctl interface?  I'm not completely familiar with
> > > sysctl yet, is it possible to add information to the database dynamically?
> > >
> > > 	It would be nice to be able to disconnect, or modify, long running
> > > connections,
> > > for instance on a machine under DOS attack or perhaps for debugging.
> > >
> > > 	Just an idea...
> >
> > A very good one in fact, see what you can do, I'd be interested in
> > seeing patches to do this safely.
> >
> > --
> > -Alfred Perlstein [alfred@freebsd.org]
> 
> Agreed, that would be cool.  The only problem I can see is how you would
> uniquely identify a socket.  (It wouldn't be nice to kill the wrong socket
> because they switched out from under you.)

We have a sysctl that takes the four tuple as an argument, which can
be got from netstat -an output. It is used only for deleting a 
connection not modifying it.

for e.g
sysctl net.inet.tcp.deleteconn="a.b.c.d:80:x.y.z.w:30000". 

netstat -Aan gives us the tcp control block address or the inpcb address
depending on the type of socket. That could also be used for identifying 
the socket.

jayanth


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10:48:33 2002
Delivered-To: freebsd-net@freebsd.org
Received: from outboundx.mv.meer.net (outboundx.mv.meer.net [209.157.152.12])
	by hub.freebsd.org (Postfix) with ESMTP id 913AE37B41C
	for <freebsd-net@FreeBSD.ORG>; Fri, 26 Apr 2002 10:48:29 -0700 (PDT)
Received: from mail.meer.net (mail.meer.net [209.157.152.14])
	by outboundx.mv.meer.net (8.11.6/8.11.6) with ESMTP id g3QHmRC40926;
	Fri, 26 Apr 2002 10:48:27 -0700 (PDT)
	(envelope-from gnn@neville-neil.com)
Received: from neville-neil.com ([209.157.133.226])
	by mail.meer.net (8.12.1/8.12.1/meer) with ESMTP id g3QHmSV4016488;
	Fri, 26 Apr 2002 10:48:28 -0700 (PDT)
Message-Id: <200204261748.g3QHmSV4016488@mail.meer.net>
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: jayanth <jayanth@yahoo-inc.com>
Cc: Mike Silbersack <silby@silby.com>,
	Alfred Perlstein <bright@mu.org>, freebsd-net@FreeBSD.ORG
Subject: Re: Putting all PCBs into sysctl? 
In-Reply-To: Message from jayanth <jayanth@yahoo-inc.com> 
   of "Fri, 26 Apr 2002 10:34:51 PDT." <20020426103451.B92949@yahoo-inc.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Fri, 26 Apr 2002 10:48:28 -0700
From: "George V. Neville-Neil" <gnn@neville-neil.com>
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

> We have a sysctl that takes the four tuple as an argument, which can
> be got from netstat -an output. It is used only for deleting a 
> connection not modifying it.
> 
> for e.g
> sysctl net.inet.tcp.deleteconn="a.b.c.d:80:x.y.z.w:30000". 
> 
> netstat -Aan gives us the tcp control block address or the inpcb address
> depending on the type of socket. That could also be used for identifying 
> the socket.

Do you mean this is what you'd like or that it exists?  I get:

# sysctl net.inet.tcp.deleteconn="209.157.133.226.4296:216.136.204.21.80"
sysctl: unknown oid 'net.inet.tcp.deleteconn'
#

when I try it.

Later,
George

-- 
George V. Neville-Neil                                  gnn@neville-neil.com
Neville-Neil Consulting                                	www.neville-neil.com

"I learn only to be contented."  inscription at Ryoan-ji in Kyoto, Japan



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10:54:55 2002
Delivered-To: freebsd-net@freebsd.org
Received: from elvis.mu.org (elvis.mu.org [192.203.228.196])
	by hub.freebsd.org (Postfix) with ESMTP
	id 7998737B41A; Fri, 26 Apr 2002 10:54:51 -0700 (PDT)
Received: by elvis.mu.org (Postfix, from userid 1192)
	id 51A67AE28D; Fri, 26 Apr 2002 10:54:51 -0700 (PDT)
Date: Fri, 26 Apr 2002 10:54:51 -0700
From: Alfred Perlstein <bright@mu.org>
To: Brian Candler <B.Candler@pobox.com>
Cc: freebsd-fs@freebsd.org, freebsd-net@freebsd.org
Subject: Re: NFS clearing attribute cache in nfs_open
Message-ID: <20020426175451.GG1530@elvis.mu.org>
References: <20020426181535.B2748@linnet.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20020426181535.B2748@linnet.org>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

* Brian Candler <B.Candler@pobox.com> [020426 10:15] wrote:
> 
> Now, there is obviously some "consistency" issue to beware of. Are there any
> NFS gurus out there who can say why it is necessary to clear the attribute
> cache on _every_ open? Could it safely be made less restrictive, e.g. don't
> clear the cache when opening a file for read? I think there are some
> potentially large performance gains for diskless server clusters, where the
> same file is being repeatedly exec()'d.

Open()s should be as consistant as possible, this requires a cache flush.

However, If you were to make this a tunable (defaults to off) I
would commit it.

If you can show that Solaris caches open()s as well I'd be ok with
turning it on by default. :)

-- 
-Alfred Perlstein [alfred@freebsd.org]
'Instead of asking why a piece of software is using "1970s technology,"
 start asking why software is ignoring 30 years of accumulated wisdom.'
Tax deductible donations for FreeBSD: http://www.freebsdfoundation.org/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 10:56:14 2002
Delivered-To: freebsd-net@freebsd.org
Received: from elvis.mu.org (elvis.mu.org [192.203.228.196])
	by hub.freebsd.org (Postfix) with ESMTP id 3043F37B41D
	for <freebsd-net@FreeBSD.ORG>; Fri, 26 Apr 2002 10:55:52 -0700 (PDT)
Received: by elvis.mu.org (Postfix, from userid 1192)
	id 024C9AE2B7; Fri, 26 Apr 2002 10:55:51 -0700 (PDT)
Date: Fri, 26 Apr 2002 10:55:51 -0700
From: Alfred Perlstein <bright@mu.org>
To: "George V. Neville-Neil" <gnn@neville-neil.com>
Cc: jayanth <jayanth@yahoo-inc.com>,
	Mike Silbersack <silby@silby.com>, freebsd-net@FreeBSD.ORG
Subject: Re: Putting all PCBs into sysctl?
Message-ID: <20020426175551.GH1530@elvis.mu.org>
References: <20020426103451.B92949@yahoo-inc.com> <200204261748.g3QHmSV4016488@mail.meer.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200204261748.g3QHmSV4016488@mail.meer.net>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

* George V. Neville-Neil <gnn@neville-neil.com> [020426 10:48] wrote:
> > We have a sysctl that takes the four tuple as an argument, which can
> > be got from netstat -an output. It is used only for deleting a 
> > connection not modifying it.
> > 
> > for e.g
> > sysctl net.inet.tcp.deleteconn="a.b.c.d:80:x.y.z.w:30000". 
> > 
> > netstat -Aan gives us the tcp control block address or the inpcb address
> > depending on the type of socket. That could also be used for identifying 
> > the socket.
> 
> Do you mean this is what you'd like or that it exists?  I get:
> 
> # sysctl net.inet.tcp.deleteconn="209.157.133.226.4296:216.136.204.21.80"
> sysctl: unknown oid 'net.inet.tcp.deleteconn'
> #
> 
> when I try it.

It's a yahoo specific os hack. :)

-- 
-Alfred Perlstein [alfred@freebsd.org]
'Instead of asking why a piece of software is using "1970s technology,"
 start asking why software is ignoring 30 years of accumulated wisdom.'
Tax deductible donations for FreeBSD: http://www.freebsdfoundation.org/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 12: 4: 3 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mail.wrs.com (unknown-1-11.windriver.com [147.11.1.11])
	by hub.freebsd.org (Postfix) with ESMTP id D100D37B41C
	for <freebsd-net@FreeBSD.ORG>; Fri, 26 Apr 2002 12:03:50 -0700 (PDT)
Received: from ala-tombila.wrs.com (tombila [147.11.38.16])
	by mail.wrs.com (8.9.3/8.9.1) with ESMTP id MAA15826;
	Fri, 26 Apr 2002 12:01:55 -0700 (PDT)
Message-Id: <5.1.0.14.2.20020426120422.030117b0@wrs.com>
X-Sender: anandn@wrs.com
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Fri, 26 Apr 2002 12:06:31 -0700
To: "George V. Neville-Neil" <gnn@neville-neil.com>,
	jayanth <jayanth@yahoo-inc.com>
From: Anand Narayanan <anandn@windriver.com>
Subject: Re: Putting all PCBs into sysctl? 
Cc: Mike Silbersack <silby@silby.com>,
	Alfred Perlstein <bright@mu.org>, freebsd-net@FreeBSD.ORG
In-Reply-To: <200204261748.g3QHmSV4016488@mail.meer.net>
References: <Message from jayanth <jayanth@yahoo-inc.com>
 <20020426103451.B92949@yahoo-inc.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

George,

I believe netstat already utilizes the sysctl API to get information about 
the TCP and UDP control blocks for state information. The modules for tcp 
and udp already contain sysctl backend routines that do this. Additionally, 
there is implementation for the ip_divertlist and the raw CBs as well.

Are you referring to something in addition to these?

-Anand

At 10:48 AM 4/26/02, George V. Neville-Neil wrote:
> > We have a sysctl that takes the four tuple as an argument, which can
> > be got from netstat -an output. It is used only for deleting a
> > connection not modifying it.
> >
> > for e.g
> > sysctl net.inet.tcp.deleteconn="a.b.c.d:80:x.y.z.w:30000".
> >
> > netstat -Aan gives us the tcp control block address or the inpcb address
> > depending on the type of socket. That could also be used for identifying
> > the socket.
>
>Do you mean this is what you'd like or that it exists?  I get:
>
># sysctl net.inet.tcp.deleteconn="209.157.133.226.4296:216.136.204.21.80"
>sysctl: unknown oid 'net.inet.tcp.deleteconn'
>#
>
>when I try it.
>
>Later,
>George
>
>--
>George V. Neville-Neil                                  gnn@neville-neil.com
>Neville-Neil Consulting                                 www.neville-neil.com
>
>"I learn only to be contented."  inscription at Ryoan-ji in Kyoto, Japan
>
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-net" in the body of the message



********************************
Anand Narayanan
Wind River Systems.
http://www.windriver.com
********************************


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 15:54:12 2002
Delivered-To: freebsd-net@freebsd.org
Received: from outboundx.mv.meer.net (outboundx.mv.meer.net [209.157.152.12])
	by hub.freebsd.org (Postfix) with ESMTP id 085E537B416
	for <freebsd-net@FreeBSD.ORG>; Fri, 26 Apr 2002 15:54:09 -0700 (PDT)
Received: from mail.meer.net (mail.meer.net [209.157.152.14])
	by outboundx.mv.meer.net (8.11.6/8.11.6) with ESMTP id g3QMs6C49835;
	Fri, 26 Apr 2002 15:54:06 -0700 (PDT)
	(envelope-from gnn@neville-neil.com)
Received: from neville-neil.com ([209.157.133.226])
	by mail.meer.net (8.12.1/8.12.1/meer) with ESMTP id g3QMs7V4071773;
	Fri, 26 Apr 2002 15:54:08 -0700 (PDT)
Message-Id: <200204262254.g3QMs7V4071773@mail.meer.net>
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: Anand Narayanan <anandn@windriver.com>
Cc: jayanth <jayanth@yahoo-inc.com>,
	Mike Silbersack <silby@silby.com>, Alfred Perlstein <bright@mu.org>,
	freebsd-net@FreeBSD.ORG
Subject: Re: Putting all PCBs into sysctl? 
In-Reply-To: Message from Anand Narayanan <anandn@windriver.com> 
   of "Fri, 26 Apr 2002 12:06:31 PDT." <5.1.0.14.2.20020426120422.030117b0@wrs.com> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Fri, 26 Apr 2002 15:54:08 -0700
From: "George V. Neville-Neil" <gnn@neville-neil.com>
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

> George,
> 
> I believe netstat already utilizes the sysctl API to get information about 
> the TCP and UDP control blocks for state information. The modules for tcp 
> and udp already contain sysctl backend routines that do this. Additionally, 
> there is implementation for the ip_divertlist and the raw CBs as well.
> 
> Are you referring to something in addition to these?

Yup, the ability to control them.  I've got the patch from the Yahoo
folks (thanks jayanth!) and I'm going to take a whack at putting that
and some other controls in when I return home after a 3 week jaunt.

They certainly don't show up when you do sysctl -a (which is one thing
I'd like).

Later,
George


-- 
George V. Neville-Neil                                  gnn@neville-neil.com
Neville-Neil Consulting                                	www.neville-neil.com

"I learn only to be contented."  inscription at Ryoan-ji in Kyoto, Japan



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 16:42:59 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mail.allcaps.org (mail.allcaps.org [208.252.245.17])
	by hub.freebsd.org (Postfix) with ESMTP
	id 003E337B41A; Fri, 26 Apr 2002 16:42:54 -0700 (PDT)
Received: from mail.allcaps.org (localhost [127.0.0.1])
	by mail.allcaps.org (Postfix) with ESMTP
	id 6C7CC32601; Fri, 26 Apr 2002 16:42:49 -0700 (PDT)
Received: from localhost (bsder@localhost)
	by mail.allcaps.org (8.12.3/8.12.3/Submit) with ESMTP id g3QNgmxo008721;
	Fri, 26 Apr 2002 16:42:49 -0700 (PDT)
X-Authentication-Warning: mail.allcaps.org: bsder owned process doing -bs
Date: Fri, 26 Apr 2002 16:42:48 -0700 (PDT)
From: "Andrew P. Lentvorski" <bsder@allcaps.org>
To: Brian Candler <B.Candler@pobox.com>
Cc: <freebsd-fs@freebsd.org>, <freebsd-net@freebsd.org>
Subject: Re: NFS clearing attribute cache in nfs_open
In-Reply-To: <20020426181535.B2748@linnet.org>
Message-ID: <20020426162442.N8693-100000@mail.allcaps.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Fri, 26 Apr 2002, Brian Candler wrote:

>    perl -e 'for ($i=0;$i<1000;$i++) { open F,"</bin/rm"; $x=<F>; close F;}'

I will assume that you wrote this *only* to prove the point.  However, if
you are using NFS, you need to check the status of both open *and* close.
Otherwise you are likely to start breeding *very* insidious bugs.

> ... Could it safely be made less restrictive, e.g. don't
> clear the cache when opening a file for read?

In a word, no.  Why couldn't the sysadmin be running "make installworld"
on the NFS server while you're running that program?  By definition, for
better or worse, NFS is "stateless".  The only way in which NFS can know
that your file hasn't changed (been deleted, renamed, etc) is to make that
round trip to the server.  Sorry.

> I think there are some
> potentially large performance gains for diskless server clusters, where the
> same file is being repeatedly exec()'d.

Yes, as long as you are willing to risk invalid data.  If you are really
into clusters with low-latency, you might want to look into something like
NFS V4 (Is anybody working on that on FreeBSD, anymore?), AFS, CODA, or
something more specialized.  Those networked filesystems have a
bidrectional characteristic and cached state protocols so that they can
minimize communication.

-a



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Fri Apr 26 17:15:33 2002
Delivered-To: freebsd-net@freebsd.org
Received: from spidey.speakeasy.net (webmail.speakeasy.net [216.254.0.16])
	by hub.freebsd.org (Postfix) with ESMTP id 8C86B37B417
	for <freebsd-net@freebsd.org>; Fri, 26 Apr 2002 17:15:29 -0700 (PDT)
Received: (from nobody@localhost)
	by spidey.speakeasy.net (8.11.6/8.11.2) id g3QNsI012926;
	Fri, 26 Apr 2002 16:54:18 -0700
Message-Id: <200204262354.g3QNsI012926@spidey.speakeasy.net>
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
MIME-Version: 1.0
Date: Fri, 26 Apr 2002 16:54:18 -0700
From: Qing <qingli@speakeasy.net>
To: freebsd-net@freebsd.org
Subject: genmask , rt_fixchange and kernel panic
X-Sender: qingli@speakeasy.net
X-Originating-Ip: [147.11.13.152]
X-Mailer: Speakeasy Network Webmail 2.1.0
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


Creating a route entry with -cloning flag and the -genmask
option causes a kernel panic on 4.5-STABLE.

The cloned entry created is a network route. The problem 
appears to be in route.c, in "rtrequest1" function, where

    if (!(rt->rt_flags & RTF_HOST) && (rt_mask(rt) !=0)
      <snip>
               rnh->rnh_walktree_from(..,rt_fixchange,.)

This newly created entry is immediately removed inside
rt_fixchange. This invalid "rt" pointer is returned back
to the caller.

This problem did not show up in the previous version of
the code apparently due to the missing flag check on
RTF_CLONING in the code above,

   if (cmd == RTM_RESOLVE)
      <snip>
      if ((*ret_nrt)->rt_flags & RTF_PRCLONING) (old version)

   new version
      if ((*ret_nrt)->rt_flags & (RTF_CLONING & RTF_PRCLONING)

   The rt_parent is not assigned so rt_fixchange returned
   immediately in the previous version.

   I am also not sure why rt_fixchange is needed if
   cmd is RTM_RESOLVE.

   Has anyone else seen this?

   -- Qing







To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27  7:20:35 2002
Delivered-To: freebsd-net@freebsd.org
Received: from internal.mail.telinco.net (internal.mail.telinco.net [212.1.128.4])
	by hub.freebsd.org (Postfix) with ESMTP
	id 2C80237B41B; Sat, 27 Apr 2002 07:20:30 -0700 (PDT)
Received: from ppp-dp1-mk-66.access.uk.worldonline.com ([212.74.113.66] helo=vaio.linnet.org)
	by internal.mail.telinco.net with esmtp (Exim 3.22 #1)
	id 171T3s-000CBP-00; Sat, 27 Apr 2002 15:20:28 +0100
Received: (from brian@localhost)
	by vaio.linnet.org (8.9.3/8.9.3) id PAA16666;
	Sat, 27 Apr 2002 15:27:19 +0100
Date: Sat, 27 Apr 2002 15:27:18 +0100
From: Brian Candler <B.Candler@pobox.com>
To: "Andrew P. Lentvorski" <bsder@allcaps.org>
Cc: freebsd-fs@freebsd.org, freebsd-net@freebsd.org
Subject: Re: NFS clearing attribute cache in nfs_open
Message-ID: <20020427152718.A16634@linnet.org>
References: <20020426181535.B2748@linnet.org> <20020426162442.N8693-100000@mail.allcaps.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0pre3us
In-Reply-To: <20020426162442.N8693-100000@mail.allcaps.org>
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Fri, Apr 26, 2002 at 04:42:48PM -0700, Andrew P. Lentvorski wrote:
> > ... Could it safely be made less restrictive, e.g. don't
> > clear the cache when opening a file for read?
> 
> In a word, no.  Why couldn't the sysadmin be running "make installworld"
> on the NFS server while you're running that program?  By definition, for
> better or worse, NFS is "stateless".  The only way in which NFS can know
> that your file hasn't changed (been deleted, renamed, etc) is to make that
> round trip to the server.  Sorry.

Sounds fair. I was talking about the _attribute_ cache, but does re-fetching
the attributes also tell the client that the _content_ of a file has
changed? A version number, perhaps?

> If you are really
> into clusters with low-latency, you might want to look into something like
> NFS V4 (Is anybody working on that on FreeBSD, anymore?), AFS, CODA, or
> something more specialized.  Those networked filesystems have a
> bidrectional characteristic and cached state protocols so that they can
> minimize communication.

Will do. For a diskless bootup I think I am restricted to either NFS or
ramdisk for the root filesystem though.

Is it possible to replace the root filesystem with a different one after the
system has started?

Regards,

Brian.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27  9:16:13 2002
Delivered-To: freebsd-net@freebsd.org
Received: from tesla.foo.is (tesla.reverse-bias.org [217.151.166.96])
	by hub.freebsd.org (Postfix) with ESMTP
	id 352D437B417; Sat, 27 Apr 2002 09:16:08 -0700 (PDT)
Received: from there (eniac.foo.is [192.168.1.25])
	by tesla.foo.is (Postfix) with SMTP
	id CC4CF2744; Sat, 27 Apr 2002 16:15:58 +0000 (GMT)
Content-Type: text/plain;
  charset="iso-8859-1"
From: Baldur Gislason <baldur@foo.is>
To: Terry Lambert <tlambert2@mindspring.com>
Subject: Re: load balancing with 2 nic cards possible?
Date: Sat, 27 Apr 2002 16:14:59 +0000
X-Mailer: KMail [version 1.3.2]
References: <5.1.1.2.2.20020426234504.029f7c30@208.141.46.3> <3CCA4004.B9A8D57A@mindspring.com>
In-Reply-To: <3CCA4004.B9A8D57A@mindspring.com>
Cc: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-Id: <20020427161558.CC4CF2744@tesla.foo.is>
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

I have tried that fec driver, no luck. I get the interface up, but when I try 
to transmit packets over it I get "invalid argument" or something like that, 
I had the network cards hooked to a Cisco catalyst and I had grouped the 
ports, and I've tried two types of network cards, 3com 905C and Intel 
EtherExpress 100

Baldur Gislason

On Saturday 27 April 2002 06:07, you wrote:
> Gary Stanley wrote:
> > Is it possible to split the load of IP traffic with 2 ethernet cards on a
> > 4.x machine? I'm new to "load balancing" in a sense, however, I'd like to
> > try something that seems more "robust"
>
> http://people.freebsd.org/~wpaul/FEC/4.x/
>
> -- Terry
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27 10:40:19 2002
Delivered-To: freebsd-net@freebsd.org
Received: from bsdman.netvulture.com (adsl-63-197-17-60.dsl.snfc21.pacbell.net [63.197.17.60])
	by hub.freebsd.org (Postfix) with ESMTP id 2A98F37B416
	for <freebsd-net@freebsd.org>; Sat, 27 Apr 2002 10:40:11 -0700 (PDT)
Received: from netvulture.com (bigv.netvulture.com [192.168.2.2])
	by bsdman.netvulture.com (8.12.2/8.12.2) with ESMTP id g3RHdhH1003526
	for <freebsd-net@freebsd.org>; Sat, 27 Apr 2002 10:39:43 -0700 (PDT)
Message-ID: <3CCAE27B.2010408@netvulture.com>
Date: Sat, 27 Apr 2002 10:40:11 -0700
From: Jonathan Feally <vulture@netvulture.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:0.9.4) Gecko/20011128 Netscape6/6.2.1
X-Accept-Language: en-us
MIME-Version: 1.0
To: freebsd-net <freebsd-net@freebsd.org>
Subject: IPSEC, IPFW, and NATD
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

Network setup:
Networks
Inside Net - 192
Outside Net - 63 - Natd from 192 to 63 and back
Server Net - 216
I have a esp transport IPSec policy setup from my outside IP(63) to a 
server on the Internet(216) and back.
Machines on the 192 go though the natd on the outside interface and get 
translated to 63
The packets are then encrypted into the esp packets
The server responds back in esp but the packets come back to the natd in 
esp form not regular packet form.

Apparent Packet Flow:
echo request 192 -> 216 in interface ed2
echo request 63 -> 216 out interface ed1 - though divert natd
esp 63 -> 216 - Packet leaves my side - packet on the network
esp 63 -> 216 - Packet gets to server - packet in em0
echo reply 216 -> 63 - Packet decrypted and responded to
esp 63 -> 216 - Packet leaves server - out interface em0
esp 63 -> 216 - Packet arrives - in interface ed1 though divert natd
packet dropped - firewall recieves reply instead of natd translating 
back to 192

Any help would be greatly appreciated

Thanks
Jonathan




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27 18:57:28 2002
Delivered-To: freebsd-net@freebsd.org
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by hub.freebsd.org (Postfix) with ESMTP
	id 4DDC737B400; Sat, 27 Apr 2002 18:57:22 -0700 (PDT)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.11.6/8.11.6) with SMTP id g3S1v7w19999;
	Sat, 27 Apr 2002 21:57:08 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Sat, 27 Apr 2002 21:57:07 -0400 (EDT)
From: Robert Watson <rwatson@freebsd.org>
X-Sender: robert@fledge.watson.org
To: Brian Candler <B.Candler@pobox.com>
Cc: freebsd-fs@freebsd.org, freebsd-net@freebsd.org
Subject: Re: NFS clearing attribute cache in nfs_open
In-Reply-To: <20020426181535.B2748@linnet.org>
Message-ID: <Pine.NEB.3.96L.1020427215343.64976B-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


On Fri, 26 Apr 2002, Brian Candler wrote:

> I have been tracing some performance problems on diskless systems. In
> particular, the following test program:
> 
>    perl -e 'for ($i=0;$i<1000;$i++) { open F,"</bin/rm"; $x=<F>; close F;}'
> 
> generates 1000 'access' transactions, and hence an exchange of 2000 UDP
> packets, just from repeatedly opening the same file.

Because access control is performed on the server with NFSv3, not the
client, you have to go to the server when you open a file.  The attribute
cache caches information for stat(), not for evaluation during open().
Although open() might stat the file (vop_getattr()), that's really not the
same thing.  Try instead a stat() rather than open() and see how the
results change in your performance test.  Note that an important reason to
invoke the NFS RPC for access during open() is that the client may not
understand the protection semantics of the server.  For example, the
server might support ACLs, but the client might not.  Or the server might
support another access control model of another sort.  The return from
GETATTR is generally just used for file information rendering as of NFSv3,
not actual evaluation.

If you cache data for open()'s, you risk problems during a revocation
operation.  Also, you potentially allow opening files that will become
ESTALE, etc.  NFSv2/3 isn't really intended to do this sort of caching. 
You might want to investigate AFS, since AFS tends to perform operations
on close() rather than open() once a file is in the cache (and has a
"callback" model to invalidate cached files on meta-data changes of this
sort). 

Robert N M Watson             FreeBSD Core Team, TrustedBSD Project
robert@fledge.watson.org      NAI Labs, Safeport Network Services



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27 19:13:46 2002
Delivered-To: freebsd-net@freebsd.org
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by hub.freebsd.org (Postfix) with ESMTP
	id 8CCA037B405; Sat, 27 Apr 2002 19:13:40 -0700 (PDT)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.11.6/8.11.6) with SMTP id g3S2DIw21402;
	Sat, 27 Apr 2002 22:13:18 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Sat, 27 Apr 2002 22:13:17 -0400 (EDT)
From: Robert Watson <rwatson@freebsd.org>
X-Sender: robert@fledge.watson.org
To: Brian Candler <B.Candler@pobox.com>
Cc: "Andrew P. Lentvorski" <bsder@allcaps.org>,
	freebsd-fs@freebsd.org, freebsd-net@freebsd.org
Subject: Re: NFS clearing attribute cache in nfs_open
In-Reply-To: <20020427152718.A16634@linnet.org>
Message-ID: <Pine.NEB.3.96L.1020427220257.64976C-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


On Sat, 27 Apr 2002, Brian Candler wrote:

> > If you are really
> > into clusters with low-latency, you might want to look into something like
> > NFS V4 (Is anybody working on that on FreeBSD, anymore?), AFS, CODA, or
> > something more specialized.  Those networked filesystems have a
> > bidrectional characteristic and cached state protocols so that they can
> > minimize communication.
> 
> Will do. For a diskless bootup I think I am restricted to either NFS or
> ramdisk for the root filesystem though. 
> 
> Is it possible to replace the root filesystem with a different one after
> the system has started? 

The trick I've played in this situation is the one I think you're alluding
to with the ramdisk comment above -- I pxeboot a kernel, but have the
loader also pull over an mfsroot containing the root filesystem to md/ffs
mount.  I then mounted other filesystems via NFS.  A trick I've played a
few times, and I know is popular at certain large web-based providers, is
to then pull down the rest of the OS to a local file system at that point,
and use that for /usr (etc).  Depends how much boot latency you can
accept vs. run-time latency.  For crash boxes, I tend to lean to the
completely-NFS direction, for some other boxes I've used mixed
local/mfs/nfs.  I tend not to use chroot() to change the rootfs, but I
imagine you could do that if you wanted.

One important observation is that newfs can be orders of magnitude faster
than fsck, and scales much better with disk size.  Rather than allow a
machine that's pretty stateless to fsck, just rebuild the box. :-) 

Our pxeboot loader (and normal loader) are incredibly flexible, and make
it easy to do a whole ton of different kinds of things.  For both
experimentation and production service, they can dramatically lower admin
costs by making OS roll forward/back and stateless systems a reality.

Robert N M Watson             FreeBSD Core Team, TrustedBSD Project
robert@fledge.watson.org      NAI Labs, Safeport Network Services



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message


From owner-freebsd-net  Sat Apr 27 20: 2:23 2002
Delivered-To: freebsd-net@freebsd.org
Received: from amun.isnic.is (amun.isnic.is [193.4.58.10])
	by hub.freebsd.org (Postfix) with ESMTP
	id E212737B41B; Sat, 27 Apr 2002 20:02:16 -0700 (PDT)
Received: from amun.isnic.is (oli@localhost [127.0.0.1])
	by amun.isnic.is (8.12.3/8.12.3/isnic) with ESMTP id g3S322P2053428;
	Sun, 28 Apr 2002 03:02:02 GMT
	(envelope-from oli@amun.isnic.is)
Received: (from oli@localhost)
	by amun.isnic.is (8.12.3/8.12.3/Submit) id g3S320Au053426;
	Sun, 28 Apr 2002 03:02:00 GMT
	(envelope-from oli)
Date: Sun, 28 Apr 2002 03:02:00 +0000
From: Olafur Osvaldsson <oli@isnic.is>
To: Baldur Gislason <baldur@foo.is>
Cc: Terry Lambert <tlambert2@mindspring.com>,
	freebsd-hackers@FreeBSD.ORG, freebsd-net@FreeBSD.ORG,
	wpaul@FreeBSD.ORG
Subject: Re: load balancing with 2 nic cards possible?
Message-ID: <20020428030200.GA51568@isnic.is>
References: <5.1.1.2.2.20020426234504.029f7c30@208.141.46.3> <3CCA4004.B9A8D57A@mindspring.com> <20020427161558.CC4CF2744@tesla.foo.is>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <20020427161558.CC4CF2744@tesla.foo.is>
User-Agent: Mutt/1.3.28i
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

The FEC works for me doing the following on 4.5-STABLE:

# cd /usr/src/sys
# tar -zxvf <path-to-download>/fec.tar.gz
# cd modules/netgrah/fec && make install

# kldload ng_fec.ko
# ngctl mkpeer fec dummy fec
# ngctl msg fec0: add_iface '"fxp0"'
# ngctl msg fec0: add_iface '"fxp1"'
# ngctl msg fec0: set_mode_inet

then it usually needs a "ifconfig fec0 up" to start moving packets.

Uplink is to a Cisco 3534 with the two ports setup with
"port group 1 distribution source", using "distribution destination" gives me
countless duplicates obviously because the same mac-address is on both
interfaces.
I also added the mac-address to forward to both interfaces using
"mac-address-table static"

With this setup the max throughput from one remote machine is the capacity of
one interface, but that is enaugh for me.

/Oli

Þann 27. April 2002, ritaði Baldur Gislason eitthvað á þessa leið:

> I have tried that fec driver, no luck. I get the interface up, but when I try 
> to transmit packets over it I get "invalid argument" or something like that, 
> I had the network cards hooked to a Cisco catalyst and I had grouped the 
> ports, and I've tried two types of network cards, 3com 905C and Intel 
> EtherExpress 100
> 
> Baldur Gislason
> 
> On Saturday 27 April 2002 06:07, you wrote:
> > Gary Stanley wrote:
> > > Is it possible to split the load of IP traffic with 2 ethernet cards on a
> > > 4.x machine? I'm new to "load balancing" in a sense, however, I'd like to
> > > try something that seems more "robust"
> >
> > http://people.freebsd.org/~wpaul/FEC/4.x/
> >
> > -- Terry
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-hackers" in the body of the message
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message

-- 
Ólafur Osvaldsson
Kerfisstjóri
Internet á Íslandi hf.
Sími:  525-5291
Email: oli@isnic.is

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message