From owner-freebsd-net@FreeBSD.ORG Sun May 18 00:53:31 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2747337B401 for ; Sun, 18 May 2003 00:53:31 -0700 (PDT) Received: from gabrielle.polarcap.org (a.ns.polarcap.org [62.84.209.4]) by mx1.FreeBSD.org (Postfix) with SMTP id 68E0B43FB1 for ; Sun, 18 May 2003 00:53:29 -0700 (PDT) (envelope-from tsar@polarcap.org) Received: (qmail 29115 invoked from network); 18 May 2003 07:53:49 -0000 Received: from as10-3-1.sbg.s.bonet.se (HELO polarcap.org) (217.215.183.53) by 0 with SMTP; 18 May 2003 07:53:49 -0000 Message-ID: <3EC73BF6.2050802@polarcap.org> Date: Sun, 18 May 2003 09:53:26 +0200 From: Tony Sarendal User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020529 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 07:53:31 -0000 From what I can see nge is the only polling driver for Gig NICs, looking at 4.8. Has anyone done any performance tests on this ? I'm interested in knowing what can of bandwidth/pps one actually can achieve on a PC router. If the NIC now is the limitation(?), how much OS resources do I have left after the NIC is running at 100% ? I'm looking at building a new network, using pc routers for some of the bgp stuff can save quit a lot of money. /Tony S From owner-freebsd-net@FreeBSD.ORG Sun May 18 00:56:54 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4C3437B401 for ; Sun, 18 May 2003 00:56:54 -0700 (PDT) Received: from ns1.interbgc.com (mail.interbgc.com [217.9.224.3]) by mx1.FreeBSD.org (Postfix) with SMTP id 5CA1F43F75 for ; Sun, 18 May 2003 00:56:51 -0700 (PDT) (envelope-from rado@cablebg.net) Received: (qmail 8264 invoked by uid 1008); 18 May 2003 07:56:47 -0000 Message-ID: <20030518075647.8263.qmail@ns1.interbgc.com> From: "rado" To: freebsd-net@freebsd.org Date: Sun, 18 May 2003 10:56:47 +0300 Mime-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: fbsd briding && routing X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 07:56:55 -0000 Hi, I've got a FreeBSD box with 4 Ethernet interfaces. What I tried to achieve is making three ot them (xl0, xl1, xl2) part of a bridging cluster, and the last one is my Internet connection. So, basically the idea behind all this is using the box as an integrated routing and bridging mashine. The setup is someting like this: xl0: no IP Internet <---> | ISP IP Addr. xl1: 192.168.1.1 xl2: no IP All the machines have 192.168.1/24 addreses, as I want to see each other directly through bridging. xl1 has 192.168.1.1 as a default gw for all the machines. Everyting works just fine, for all intranet communication, between these three ethernet segments. The problem is when there's a sesion between internal machine and internet, and only for machines on xl0 and xl2 (every unnumbered interface). The problem, as I see it, is becuase FreeBSD tries to forward the packet, according to its routing tables (normall!!), and this always points to xl1 interface. But this prevent the machine on xl0/xl2 from seeing the packet, obviously the bridging is skipped this way. I wonder, is it logical to have net.link.ether.bridge turned on, and have the normal routing applied for packets with destination IPs on one of the bridge-cluster interfaces,skipping all unnumbered ifaces. From owner-freebsd-net@FreeBSD.ORG Sun May 18 02:25:56 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C74C37B438 for ; Sun, 18 May 2003 02:25:56 -0700 (PDT) Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4367B43F3F for ; Sun, 18 May 2003 02:25:55 -0700 (PDT) (envelope-from mike@sentex.net) Received: from house (cage.simianscience.com [64.7.134.1]) by smtp1.sentex.ca (8.12.9/8.12.9) with SMTP id h4I9Pr4M026018; Sun, 18 May 2003 05:25:53 -0400 (EDT) (envelope-from mike@sentex.net) From: Mike Tancsa To: Tony Sarendal Date: Sun, 18 May 2003 05:25:59 -0400 Message-ID: References: In-Reply-To: X-Mailer: Forte Agent 1.8/32.548 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable cc: freebsd-net@freebsd.org Subject: Re: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 09:25:56 -0000 The em driver has polling support in STABLE (post 4.8R). The limitation = is not so much the NIC, but the way the NIC is serviced via interrupts in = non polling modes. There are some very good discussions posted already you = can get via Google on what you can and cant do and what you might expect performance wise. ---Mike On Sun, 18 May 2003 09:53:26 +0200, in sentex.lists.freebsd.net you = wrote: > > From what I can see nge is the only polling driver for >Gig NICs, looking at 4.8. Has anyone done any performance >tests on this ? I'm interested in knowing what can of >bandwidth/pps one actually can achieve on a PC router. > >If the NIC now is the limitation(?), how much OS resources >do I have left after the NIC is running at 100% ? > >I'm looking at building a new network, using pc routers >for some of the bgp stuff can save quit a lot of money. > >/Tony S > >_______________________________________________ >freebsd-net@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-net >To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" Mike Tancsa (mike@sentex.net)=09 http://www.sentex.net/mike From owner-freebsd-net@FreeBSD.ORG Sun May 18 02:35:24 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 453B537B401 for ; Sun, 18 May 2003 02:35:24 -0700 (PDT) Received: from xorpc.icir.org (xorpc.icir.org [192.150.187.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id BD72943F3F for ; Sun, 18 May 2003 02:35:23 -0700 (PDT) (envelope-from rizzo@xorpc.icir.org) Received: from xorpc.icir.org (localhost [127.0.0.1]) by xorpc.icir.org (8.12.8p1/8.12.3) with ESMTP id h4I9ZNQg028945; Sun, 18 May 2003 02:35:23 -0700 (PDT) (envelope-from rizzo@xorpc.icir.org) Received: (from rizzo@localhost) by xorpc.icir.org (8.12.8p1/8.12.3/Submit) id h4I9ZNq9028944; Sun, 18 May 2003 02:35:23 -0700 (PDT) (envelope-from rizzo) Date: Sun, 18 May 2003 02:35:23 -0700 From: Luigi Rizzo To: Tony Sarendal Message-ID: <20030518023523.A28847@xorpc.icir.org> References: <3EC73BF6.2050802@polarcap.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3EC73BF6.2050802@polarcap.org>; from tsar@polarcap.org on Sun, May 18, 2003 at 09:53:26AM +0200 cc: freebsd-net@freebsd.org Subject: Re: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 09:35:24 -0000 On Sun, May 18, 2003 at 09:53:26AM +0200, Tony Sarendal wrote: > > From what I can see nge is the only polling driver for > Gig NICs, looking at 4.8. Has anyone done any performance actually that would be 'em' > tests on this ? I'm interested in knowing what can of > bandwidth/pps one actually can achieve on a PC router. it depends on a lot of factors including the size of the routing table, the firewall ruleset complexity, the bus speed, the CPU speed, the packet sizes. With a fast enough box (2.4GHz) i reached some 650-700kpps through a FreeBSD box running 4.7 and configured as a bridge, similar thing with a router and fastforwarding. If you use the firewall, you could get down to some 400-500kpps at best. This is with 64-byte packets. In terms of bandwidth, with large enough frames (i'd say 500+ bytes) you should have no trouble running close to wire speed (again, depending on the above factors). > If the NIC now is the limitation(?), how much OS resources > do I have left after the NIC is running at 100% ? the NIC is not always the limitation, you can run out of steam on many parts of the system. cheers luigi > I'm looking at building a new network, using pc routers > for some of the bgp stuff can save quit a lot of money. > > /Tony S > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Sun May 18 03:49:09 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 943F937B401 for ; Sun, 18 May 2003 03:49:09 -0700 (PDT) Received: from gabrielle.polarcap.org (a.ns.polarcap.org [62.84.209.4]) by mx1.FreeBSD.org (Postfix) with SMTP id E3B1343F75 for ; Sun, 18 May 2003 03:49:07 -0700 (PDT) (envelope-from tsar@polarcap.org) Received: (qmail 30492 invoked from network); 18 May 2003 10:49:28 -0000 Received: from as10-3-1.sbg.s.bonet.se (HELO polarcap.org) (217.215.183.53) by 0 with SMTP; 18 May 2003 10:49:28 -0000 Message-ID: <3EC76521.2010000@polarcap.org> Date: Sun, 18 May 2003 12:49:05 +0200 From: Tony Sarendal User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020529 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Mike Tancsa References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-net@freebsd.org Subject: Re: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 10:49:10 -0000 Mike Tancsa wrote: > The em driver has polling support in STABLE (post 4.8R). The limitation is > not so much the NIC, but the way the NIC is serviced via interrupts in non > polling modes. There are some very good discussions posted already you can > get via Google on what you can and cant do and what you might expect > performance wise. > OK, I checked the code in 4.8-RELEASE and only found polling in nge. Interrupts I know. I'm trying to answer emails while my 2,5 year daughter is playing with her Brio railroad and my 7 months son is assisting her. Interrupts are almost using up 100% of my time. I've googled and Marc'd quite a bit but I couldn't find any code in the Gig drivers to put the pieces together. /Tony S From owner-freebsd-net@FreeBSD.ORG Sun May 18 03:58:12 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA56D37B401 for ; Sun, 18 May 2003 03:58:11 -0700 (PDT) Received: from gabrielle.polarcap.org (a.ns.polarcap.org [62.84.209.4]) by mx1.FreeBSD.org (Postfix) with SMTP id A6DEB43FA3 for ; Sun, 18 May 2003 03:58:10 -0700 (PDT) (envelope-from tsar@polarcap.org) Received: (qmail 30578 invoked from network); 18 May 2003 10:58:31 -0000 Received: from as10-3-1.sbg.s.bonet.se (HELO polarcap.org) (217.215.183.53) by 0 with SMTP; 18 May 2003 10:58:31 -0000 Message-ID: <3EC76740.6000307@polarcap.org> Date: Sun, 18 May 2003 12:58:08 +0200 From: Tony Sarendal User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020529 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Luigi Rizzo References: <3EC73BF6.2050802@polarcap.org> <20030518023523.A28847@xorpc.icir.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-net@freebsd.org Subject: Re: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 10:58:12 -0000 Luigi Rizzo wrote: > On Sun, May 18, 2003 at 09:53:26AM +0200, Tony Sarendal wrote: > >> From what I can see nge is the only polling driver for >>Gig NICs, looking at 4.8. Has anyone done any performance > > > actually that would be 'em' > The nge driver looked like it had it, and 4.8 release notes: The nge(4) driver now supports network device polling(4). I couldn't find it in any other driver, but Mike T. pointed out that I should look at STABLE. I'll do that. > >>tests on this ? I'm interested in knowing what can of >>bandwidth/pps one actually can achieve on a PC router. > > > it depends on a lot of factors including the size of the routing > table, the firewall ruleset complexity, the bus speed, the CPU > speed, the packet sizes. > Since I'm coming from Ciscoland I can buy the fattest PC on the block and still think it's a steal. > With a fast enough box (2.4GHz) i reached some 650-700kpps through > a FreeBSD box running 4.7 and configured as a bridge, similar > thing with a router and fastforwarding. If you use the firewall, you > could get down to some 400-500kpps at best. This is with 64-byte > packets. In terms of bandwidth, with large enough frames (i'd > say 500+ bytes) you should have no trouble running close > to wire speed (again, depending on the above factors). > > 650-700kpps on a 2.4GHz, that's awesome, what was the limitation ? CPU ? Do you know how much $ I have to spend to buy a Cisco which can match that in reality ? I can tell you, a lot ! Besides, Cisco counts one packet through the router as two packets. That makes it 1.3-1.4Mpps. After that the marketing department enters and makes it 3Mpps. >>If the NIC now is the limitation(?), how much OS resources >>do I have left after the NIC is running at 100% ? > > > the NIC is not always the limitation, you can run out of > steam on many parts of the system. > Faster PC's come along a lot more often than faster routers, or even faster NICs, if the NIC isn't the limitation but the CPU then more speed is on the way. /Tony From owner-freebsd-net@FreeBSD.ORG Sun May 18 12:21:05 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 798A137B401 for ; Sun, 18 May 2003 12:21:05 -0700 (PDT) Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id CEE2843F93 for ; Sun, 18 May 2003 12:21:04 -0700 (PDT) (envelope-from mike@sentex.net) Received: from house.sentex.net (cage.simianscience.com [64.7.134.1]) by smtp1.sentex.ca (8.12.9/8.12.9) with ESMTP id h4IJL14N095717; Sun, 18 May 2003 15:21:02 -0400 (EDT) (envelope-from mike@sentex.net) Message-Id: <5.2.0.9.0.20030518151605.05455ec8@192.168.0.12> X-Sender: mdtancsa@192.168.0.12 X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Sun, 18 May 2003 15:21:08 -0400 To: Tony Sarendal From: Mike Tancsa In-Reply-To: <3EC76521.2010000@polarcap.org> References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed cc: freebsd-net@freebsd.org Subject: Re: polling(4) and Gigabit X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 May 2003 19:21:05 -0000 At 12:49 PM 5/18/2003 +0200, Tony Sarendal wrote: >Mike Tancsa wrote: >>The em driver has polling support in STABLE (post 4.8R). The limitation is >>not so much the NIC, but the way the NIC is serviced via interrupts in non >>polling modes. There are some very good discussions posted already you can >>get via Google on what you can and cant do and what you might expect >>performance wise. > >OK, I checked the code in 4.8-RELEASE and only found polling in nge. Its in *after* 4.8 Release. See http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/dev/em/if_em.c?only_with_tag=RELENG_4 on April 4th. ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet since 1994 www.sentex.net Cambridge, Ontario Canada www.sentex.net/mike From owner-freebsd-net@FreeBSD.ORG Sun May 18 23:52:49 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0E7D737B401; Sun, 18 May 2003 23:52:49 -0700 (PDT) Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0AF1043F3F; Sun, 18 May 2003 23:52:48 -0700 (PDT) (envelope-from ericdahan@MEIway.com) Received: from VirusGate.MEIway.com (virus-gate.meiway.com [212.73.210.91]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 43245EF42E; Mon, 19 May 2003 08:45:11 +0200 (CEST) Received: from localhost (localhost.meiway.com [127.0.0.1]) by VirusGate.MEIway.com (Postfix) with SMTP id 7FCD65D00A; Mon, 19 May 2003 08:54:21 +0200 (CEST) Received: from ms1.meiway.com (ms1.meiway.com [212.73.210.73]) by VirusGate.MEIway.com (Postfix) with ESMTP id 1AF4D5D008; Mon, 19 May 2003 08:54:21 +0200 (CEST) Received: from EDA_VAIO.meiway.com [193.252.44.38] by ms1.meiway.com with ESMTP (SMTPD32-6.06) id A47C960C0130; Mon, 19 May 2003 09:15:08 +0200 Message-Id: <5.2.0.9.2.20030519085052.02efb5f0@ms1.meiway.com> X-Sender: ericdahan@meiway.com@ms1.meiway.com X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Mon, 19 May 2003 08:52:40 +0200 To: freebsd-questions@freebsd.org From: Eric Dahan Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.1 cc: freebsd-isp@freebsd.org cc: freebsd-net@freebsd.org Subject: PCI ADSL card X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 06:52:49 -0000 Hi All, Can anyone recommend a lower-price-range PCI ADSL card for Freebsd 4.8 R ? Thanks. Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com _______________________________________________ freebsd-hardware@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-hardware To unsubscribe, send any mail to "freebsd-hardware-unsubscribe@freebsd.org" Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com=20 From owner-freebsd-net@FreeBSD.ORG Mon May 19 04:26:44 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D42D137B401 for ; Mon, 19 May 2003 04:26:44 -0700 (PDT) Received: from srv00.el.com.br (srv00.el.com.br [200.179.165.123]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9807343F3F for ; Mon, 19 May 2003 04:26:43 -0700 (PDT) (envelope-from g-paiva@el.com.br) Received: from intranet.el.com.br (srv00.el.com.br [200.179.165.123]) by srv00.el.com.br (elsmtp) with SMTP id 2C85D7103E for ; Mon, 19 May 2003 08:26:33 -0300 (BRT) Received: from 192.168.1.194 (SquirrelMail authenticated user g-paiva) by intranet.el.com.br with HTTP; Mon, 19 May 2003 08:26:33 -0300 (BRT) Message-ID: <1286.192.168.1.194.1053343593.squirrel@intranet.el.com.br> Date: Mon, 19 May 2003 08:26:33 -0300 (BRT) From: "Paiva, Gilson de" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.0 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 X-Priority: 3 Importance: Normal Subject: Annoying arp messages won't go away!! X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 11:26:45 -0000 Hi everybody, I was running a freebsd machine bridging packets on 2 interfaces and acting as my internet router without any problem. Last week I had to change my IP allocation and, due ipfw2 improvements on layer2, I decided not to route packets through this machine anymore, but have a 3 nics bridge, then the annoying "/kernel: -- loop (x) xxarpxx to nicx from nicy (active)" is here :) . The moving arps are from the internet router - attached directly to ep0 - and a ras attached to xl0 . Freebsd keeps telling me the message with this 2 arps moving between its 3 nics. I understanding the arp and bridge basics very well and I think this problem has something to do with this 2 equipaments "scanning" my network with "arp who-has" ( detected with tcpdump ). I even "locked" all my 128 ips arps with arp -s and arp -s pub options but nothing changed. I tryied even to stop messages with net.link.ether.inet.log_arp_wrong_iface=0 , again no success. No google, no man pages, nothing I could do... Running 4.8-stable cvsuped and made world kernel at 15 this month, ipfw2, 3 nics with bridge on them. Did anyone have anything like this or do know any tip? -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Paiva, Gilson de Domingos Martins mailto:npd@el.com.br Brazil http://www.el.com.br/ E&L Producoes de Software http://www.FreeBSD.org/ FreeBSD: The Power to Serve =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ------------------------------------------------------------------------------ Aviso Legal: Esta mensagem pode nao expressar oficialmente as ideias ou vontades da empresa E&L Producoes de Software, sendo responsavel por esta exclusivamente seu autor. From owner-freebsd-net@FreeBSD.ORG Mon May 19 06:47:08 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 497E737B401 for ; Mon, 19 May 2003 06:47:08 -0700 (PDT) Received: from scoubidou.webnext.com (mail.webnext.com [213.161.193.129]) by mx1.FreeBSD.org (Postfix) with SMTP id 7048743FAF for ; Mon, 19 May 2003 06:47:05 -0700 (PDT) (envelope-from souris@nerim.net) Received: from sexy.mouh.org (213.161.192.227[213.161.192.227])by SCOUBIDOU(MailMax 4.2.4.9) with ESMTP id 5429991 for ; Mon, 19 May 2003 15:46:52 +0200 PDT Date: Mon, 19 May 2003 15:46:51 +0200 From: souris To: freebsd-net@freebsd.org Message-Id: <20030519154651.52d77bff.souris@nerim.net> X-Mailer: Sylpheed version 0.8.11 (GTK+ 1.2.10; i386-portbld-freebsd4.8) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: About IPsec ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 13:47:08 -0000 Hi, I tryed to make IPSEC between 2 computers : Freebsd 4.8 and NetBSD 1.5.2 While following the handbook : http://www.fr.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html I noticed something. setkey -c spdadd 10.2.3.4 10.6.7.8 any -P out ipsec ah/transport/10.2.3.4-10.6.7.8/require ; ^D At B: # setkey -c spdadd 10.6.7.8 10.2.3.4 any -P out ipsec esp/transport/10.6.7.8-10.2.3.4/require ; spdadd 10.6.7.8 10.2.3.4 any -P out ipsec ah/transport/10.6.7.8-10.2.3.4/require ; ^D >From A: only "OUT" traffic is set >From B: 2 "OUT" traffics are set. It seems to be two differents protocols ... so it doesn't matters, but still no "IN" traffic is set. I tryed to simulate exactly the same than the handbook, and setkey gave me an error : root@sexy 14:19 /home/souris$ setkey -c spdadd 10.6.7.8 10.2.3.4 any -P out ipsec esp/transport/10.6.7.8-10.2.3.4/require ; spdadd 10.6.7.8 10.2.3.4 any -P out ipsec ah/transport/10.6.7.8-10.2.3.4/require ; The result of line 4: File exists. (I've just flushed all the setkey's rules before doing that) In the others examples, like IPV6 etc ... there is an OUT and IN traffic set. It seems that without "IN" traffic set, IPSEC don't work ... Traffic go out but not IN : 14:05:07.973207 10.6.7.8 > 10.2.3.4: AH(spi=0x000003e8,seq=0x37d813cc): icmp: echo request 14:05:08.979010 10.6.7.8 > 10.2.3.4: AH(spi=0x000003e8,seq=0x99378b78): icmp: echo request I am obviously not the first one to use this book, but there is an mistake somewhere ... May somebody help me? thx -- souris From owner-freebsd-net@FreeBSD.ORG Tue May 20 03:36:37 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4A0A237B401 for ; Tue, 20 May 2003 03:36:37 -0700 (PDT) Received: from anor.ics.muni.cz (anor.ics.muni.cz [147.251.4.35]) by mx1.FreeBSD.org (Postfix) with ESMTP id 23D4B43F75 for ; Tue, 20 May 2003 03:36:36 -0700 (PDT) (envelope-from hopet@ics.muni.cz) Received: from dior.ics.muni.cz (dior.ics.muni.cz [147.251.6.10]) by anor.ics.muni.cz (8.12.1/8.12.1) with ESMTP id h4KAaYNw004579 for ; Tue, 20 May 2003 12:36:34 +0200 Received: from kloboucek (root@localhost) (authenticated as hopet with LOGIN) by dior.ics.muni.cz (8.10.1/8.10.0.Beta12) with ESMTP id h4KAaVI21377 for ; Tue, 20 May 2003 12:36:32 +0200 (MEST) From: "Petr Holub" To: Date: Tue, 20 May 2003 12:37:47 +0200 Message-ID: <000a01c31ebb$dae193c0$2ee2c6c1@kloboucek> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-2" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2377.0 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4920.2300 X-Muni-Virus-Test: Clean Subject: zero copy status X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 10:36:37 -0000 Hi all, I wonder what's the current status of zero copy TCP in -CURRENT. Does it work with cards other than TigonII? Cheers, Petr ================================================================ Petr Holub CESNET z.s.p.o. Supercomputing Center Brno Zikova 4 Institute of Compt. Science 162 00 Praha 6, CZ Masaryk University Czech Republic Botanicka 68a, 60200 Brno, CZ e-mail: Petr.Holub@cesnet.cz phone: +420-541512213 fax: +420-541212747 e-mail: hopet@ics.muni.cz From owner-freebsd-net@FreeBSD.ORG Tue May 20 05:53:52 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6DEC337B401; Tue, 20 May 2003 05:53:52 -0700 (PDT) Received: from srv00.el.com.br (srv00.el.com.br [200.179.165.123]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3CF7D43F3F; Tue, 20 May 2003 05:53:51 -0700 (PDT) (envelope-from g-paiva@el.com.br) Received: from intranet.el.com.br (srv00.el.com.br [200.179.165.123]) by srv00.el.com.br (elsmtp) with SMTP id EE75570E1E; Tue, 20 May 2003 09:53:46 -0300 (BRT) Received: from 192.168.1.194 (SquirrelMail authenticated user g-paiva) by intranet.el.com.br with HTTP; Tue, 20 May 2003 09:53:47 -0300 (BRT) Message-ID: <1254.192.168.1.194.1053435227.squirrel@intranet.el.com.br> In-Reply-To: <1159.192.168.1.194.1053360712.squirrel@intranet.el.com.br> References: <1159.192.168.1.194.1053360712.squirrel@intranet.el.com.br> Date: Tue, 20 May 2003 09:53:47 -0300 (BRT) From: "Paiva, Gilson de" To: freebsd-ipfw@freebsd.org User-Agent: SquirrelMail/1.4.0 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 X-Priority: 3 Importance: Normal cc: freebsd-net@freebsd.org Subject: Bridge + arp messages... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 12:53:52 -0000 Hi everyone ( and sorry for the cross post ), Isn't this supposed to work ( bridge )? internet -- ep0 freebsd xl0 -- local clients Bridging itself works fine, but arp loop messages won't stop... ex: brdg0 /kernel: -- loop (1) 00.00.c8.b3.a5.7e to xl0 from rl0 (active) brdg0 /kernel: -- loop (2) 00.60.97.70.59.bc to rl0 from xl0 (active) freebsd: net.inet.ip.fw.enable=1 net.inet.ip.fw.one_pass=0 net.inet.tcp.blackhole=2 net.inet.tcp.keepidle=9000 net.inet.tcp.recvspace=65536 net.inet.tcp.sendspace=65536 net.inet.udp.blackhole=1 net.link.ether.bridge=1 net.link.ether.bridge_cfg=xl0,ep0 net.link.ether.bridge_ipfw=1 net.link.ether.inet.log_arp_wrong_iface=0 net.link.ether.ipfw=1 freebsd-stable 4.8 ( made 15/05 ) ipfw2 with "open" firewall. -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Paiva, Gilson de Domingos Martins mailto:npd@el.com.br Brazil http://www.el.com.br/ E&L Producoes de Software http://www.FreeBSD.org/ FreeBSD: The Power to Serve =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ------------------------------------------------------------------------------ Aviso Legal: Esta mensagem pode nao expressar oficialmente as ideias ou vontades da empresa E&L Producoes de Software, sendo responsavel por esta exclusivamente seu autor. From owner-freebsd-net@FreeBSD.ORG Tue May 20 06:20:50 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2B6D237B401 for ; Tue, 20 May 2003 06:20:50 -0700 (PDT) Received: from mail-3.tiscali.it (mail-3.tiscali.it [195.130.225.149]) by mx1.FreeBSD.org (Postfix) with ESMTP id EE81B43FB1 for ; Tue, 20 May 2003 06:20:48 -0700 (PDT) (envelope-from gianz@radiance.it) Received: from mail.radiance.ods.org (217.133.190.91) by mail-3.tiscali.it (6.7.016) id 3EC4E8FB001DFC0D for freebsd-net@freebsd.org; Tue, 20 May 2003 15:20:46 +0200 Received: (qmail 16770 invoked by uid 1030); 20 May 2003 13:20:42 -0000 Date: Tue, 20 May 2003 15:20:42 +0200 From: Giampaolo Fresi Roglia To: freebsd-net@freebsd.org Message-ID: <20030520132042.GA16689@radiance.it> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="6TrnltStXW4iwmi0" Content-Disposition: inline User-Agent: Mutt/1.4i X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: [BPF Read and Write] Strange behaviour? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 13:20:50 -0000 --6TrnltStXW4iwmi0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi all, I must access to bpf in order to rewrite network traffic from a device to another one in both directions; I open 2 bpf descriptors, one for every device I must use and I found a strange behaviour: when I try to write a packet to bpf, it seems to me the driver drops silently some packets, even if the buffer associated with bpf is not full. I tried my program on FreeBSD 4.7, 4.8 and 5.0 (RELEASE). FreeBSD 5.0 behaves correctly unlike 4.7 and 4.8. I wonder if I am wrong with something, or if I can use a workaround for this... I attach part of the code I used to access bpf... Thanks in advance. -- Giampaolo Fresi Roglia GPG Key at http://security.dico.unimi.it/~gianz/gianz.gpg CERT-IT Computer Emergency Response Team ITaly http://security.dico.unimi.it --6TrnltStXW4iwmi0-- From owner-freebsd-net@FreeBSD.ORG Tue May 20 08:11:14 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CDD2537B404 for ; Tue, 20 May 2003 08:11:14 -0700 (PDT) Received: from idea.sec.dico.unimi.it (idea.sec.dico.unimi.it [159.149.151.197]) by mx1.FreeBSD.org (Postfix) with SMTP id CCC6B43F75 for ; Tue, 20 May 2003 08:11:12 -0700 (PDT) (envelope-from gianz@idea.sec.dico.unimi.it) Received: (qmail 14922 invoked by uid 1003); 20 May 2003 15:11:04 -0000 Date: Tue, 20 May 2003 17:11:04 +0200 From: gianz@security.dico.unimi.it To: freebsd-net@freebsd.org Message-ID: <20030520151104.GA14857@idea.sec.dico.unimi.it> References: <20030520132042.GA16689@radiance.it> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030520132042.GA16689@radiance.it> User-Agent: Mutt/1.3.28i Subject: Re: [BPF Read and Write] Strange behaviour? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 15:11:15 -0000 Sorry... that's the file: #include "common.h" #include "link_layer.h" int LINK_LAYER_open_device(char *device, int to) { int i, fd; struct ifreq ifr; u_int t; struct timeval tv; char pf[sizeof "/dev/bpf0000000000"]; i = 0; do { (void)snprintf(pf, sizeof(pf), "/dev/bpf%d", i++); fd = open(pf, O_RDWR); } while (fd < 0 && errno == EBUSY); if(fd >= 0) { for (t = 65536; t != 0; t >>= 1) { (void) ioctl(fd, BIOCSBLEN, &t); (void)strncpy(ifr.ifr_name, device, sizeof(ifr.ifr_name)); if (ioctl(fd, BIOCSETIF, (caddr_t)&ifr) >= 0) break; if (errno != ENOBUFS) { return EXIT_FAILURE; } } if(verb) { printf("opening %s\n", device); } t=1; if(ioctl(fd, BIOCPROMISC, &t)==-1) { perror("ioctl"); return EXIT_FAILURE; } if(ioctl(fd, BIOCSHDRCMPLT, &t)==-1) { perror("ioctl"); return EXIT_FAILURE; } if(to == 0) { if(ioctl(fd, BIOCIMMEDIATE, &t)==-1) { perror("ioctl"); return EXIT_FAILURE; } } else { tv.tv_sec = to / 1000; tv.tv_usec = (to % 1000) * 1000; if(verb) { printf("timeout: %ld secs %ld usecs\n", tv.tv_sec, tv.tv_usec); } if(ioctl(fd, BIOCSRTIMEOUT, &tv)==-1) { perror("ioctl"); return EXIT_FAILURE; } } } else { printf("cannot open %s\n", device); perror(pf); return EXIT_FAILURE; } return fd; } int LINK_LAYER_read( int readfd, int writefd, unsigned char *buf, int len, PACKET_DATA *p_data, void (*do_nat)(PACKET_DATA *data, char *buf, int len, int fd) ) { int count; struct bpf_hdr *p; struct bpf_hdr *e; again: count = read(readfd, buf, len); p = (struct bpf_hdr *)buf; e = (struct bpf_hdr *)(buf + count); if(count<0) { switch(errno) { case EINTR: printf("read interrupted\n"); goto again; case EAGAIN: return 0; default: return -1; } } if(count > 0) { while(p < e) { if(p->bh_caplen != p->bh_datalen) { printf("warning: truncated packet\n"); } do_nat(p_data, (char *)p + p->bh_hdrlen, p->bh_caplen, writefd); p = (struct bpf_hdr *)((char *)p + BPF_WORDALIGN(p->bh_hdrlen + p->bh_caplen)); } } return count; } unsigned char *LINK_LAYER_alloc_buffer(int fd, int *len) { if(ioctl(fd, BIOCGBLEN, len)==-1) { perror("ioctl"); return NULL; } return malloc(*len); } int LINK_LAYER_accept_from(int fd, unsigned char *mac) { unsigned long head; unsigned short tail; struct bpf_program bpfp; ((char *)(&head))[0] = mac[3]; ((char *)(&head))[1] = mac[2]; ((char *)(&head))[2] = mac[1]; ((char *)(&head))[3] = mac[0]; mac += sizeof(unsigned long); ((char *)(&tail))[0] = mac[1]; ((char *)(&tail))[1] = mac[0]; struct bpf_insn filter[] = { BPF_STMT(BPF_LD+BPF_W+BPF_ABS, 6), BPF_JUMP(BPF_JMP+BPF_JEQ+BPF_K, head, 0, 3), BPF_STMT(BPF_LD+BPF_H+BPF_ABS, 10), BPF_JUMP(BPF_JMP+BPF_JEQ+BPF_K, tail, 0, 1), BPF_STMT(BPF_RET+BPF_K, ((u_int)-1)), BPF_STMT(BPF_RET+BPF_K, 0) }; bpfp.bf_insns = filter; bpfp.bf_len = 6; if(ioctl(fd, BIOCSETF, &bpfp)==-1) { perror("BIOCSETF"); return -1; } return 1; } int LINK_LAYER_reject_from(int fd, unsigned char *mac) { unsigned long head; unsigned short tail; struct bpf_program bpfp; ((char *)(&head))[0] = mac[3]; ((char *)(&head))[1] = mac[2]; ((char *)(&head))[2] = mac[1]; ((char *)(&head))[3] = mac[0]; mac += sizeof(unsigned long); ((char *)(&tail))[0] = mac[1]; ((char *)(&tail))[1] = mac[0]; struct bpf_insn filter[] = { BPF_STMT(BPF_LD+BPF_W+BPF_ABS, 6), BPF_JUMP(BPF_JMP+BPF_JEQ+BPF_K, head, 0, 3), BPF_STMT(BPF_LD+BPF_H+BPF_ABS, 10), BPF_JUMP(BPF_JMP+BPF_JEQ+BPF_K, tail, 0, 1), BPF_STMT(BPF_RET+BPF_K, 0), BPF_STMT(BPF_RET+BPF_K, ((u_int)-1)) }; bpfp.bf_insns = filter; bpfp.bf_len = 6; if(ioctl(fd, BIOCSETF, &bpfp)==-1) { perror("BIOCSETF"); return -1; } return 1; } From owner-freebsd-net@FreeBSD.ORG Tue May 20 11:32:30 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B8D9B37B401; Tue, 20 May 2003 11:32:30 -0700 (PDT) Received: from out003.verizon.net (out003pub.verizon.net [206.46.170.103]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6C3B443F85; Tue, 20 May 2003 11:32:29 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.60.214]) by out003.verizon.net (InterMail vM.5.01.05.33 201-253-122-126-133-20030313) with ESMTP id <20030520183228.IGQQ2239.out003.verizon.net@mac.com>; Tue, 20 May 2003 13:32:28 -0500 Message-ID: <3ECA74B8.8010108@mac.com> Date: Tue, 20 May 2003 14:32:24 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4b) Gecko/20030507 X-Accept-Language: en-us, en MIME-Version: 1.0 References: <1159.192.168.1.194.1053360712.squirrel@intranet.el.com.br> <1254.192.168.1.194.1053435227.squirrel@intranet.el.com.br> In-Reply-To: <1254.192.168.1.194.1053435227.squirrel@intranet.el.com.br> X-Enigmail-Version: 0.75.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out003.verizon.net from [129.44.60.214] at Tue, 20 May 2003 13:32:28 -0500 cc: freebsd-ipfw@freebsd.org cc: freebsd-net@freebsd.org Subject: Re: Bridge + arp messages... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 May 2003 18:32:31 -0000 Paiva, Gilson de wrote: [ ... ] > internet -- ep0 freebsd xl0 -- local clients > > Bridging itself works fine, but arp loop messages won't stop... > ex: > brdg0 /kernel: -- loop (1) 00.00.c8.b3.a5.7e to xl0 from rl0 (active) > brdg0 /kernel: -- loop (2) 00.60.97.70.59.bc to rl0 from xl0 (active) Try "sysctl net.link.ether.inet.log_arp_wrong_iface=0"... Just to be sure, ep0 and xl0 are on two seperate hubs which are not connected to each other, correct? I don't believe that FreeBSD supports the spanning tree algorithm to prevent bridging loops... -Chuck From owner-freebsd-net@FreeBSD.ORG Tue May 20 19:04:50 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 17A3637B401; Tue, 20 May 2003 19:04:50 -0700 (PDT) Received: from www.svzserv.kemerovo.su (www.svzserv.kemerovo.su [213.184.65.80]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0481B43FAF; Tue, 20 May 2003 19:04:48 -0700 (PDT) (envelope-from eugen@kuzbass.ru) Received: from kuzbass.ru (kost [213.184.65.82])h4L24iYt074282; Wed, 21 May 2003 10:04:44 +0800 (KRAST) (envelope-from eugen@kuzbass.ru) Message-ID: <3ECADE5C.EC1A2630@kuzbass.ru> Date: Wed, 21 May 2003 10:03:08 +0800 From: Eugene Grosbein Organization: SVZServ X-Mailer: Mozilla 4.8 [en] (Win98; U) X-Accept-Language: ru,en MIME-Version: 1.0 To: "Saulius Menkevičius" References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit cc: freebsd-stable@freebsd.org cc: bug-followup@freebsd.org cc: net@freebsd.org Subject: Re: lots of sockets in TIME_WAIT X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 02:04:50 -0000 "Saulius Menkevičius" wrote: > > Hi there, > > I have some DDOS(?) attack on my router going where my apache HTTP > server is flooded with short-timed connections from some host. This > results in LOTS of sockets in TIME_WAIT/LAST_ACK/CLOSING states and > eventually I'm out of mbufs, which, consequently means I can't even > connect to the router from LAN. The kern.ipc.nmbclusters is 2560, (I > guess high enough for router with DSL connection). > After some time all mbufs are depleted (system says "All mbuf > cluster exhausted"). However, unexpectedly the system panics shortly > in about 10 minutes (+/-) with: > /kernel: All mbuf cluster exhausted, please see tuning(7) > /kernel: looutput: mbuf allocation failed > /kernel: panic: sbappendaddr > /kernel: > /kernel: syncing disks.... > . > . > I don't think this behaviour (a panic) is normal. This crash is > happens often when I'm under such attack and I guess I can easily > give crash dump, kgdb output or something like, if you need. > System is running 4.8-RELEASE, on iPentium166/mmx with 64MB of RAM. > 4 NICs, BRIDGE on two of them. > > Thanks for any response.. I agree with you. I've got crashdump for mbuf-related kernel panic (sbappendaddr), see http://www.FreeBSD.org/cgi/query-pr.cgi?pr=kern/50803 I believe a kernel must not panic due to DoS. Eugene Grosbein From owner-freebsd-net@FreeBSD.ORG Tue May 20 22:04:20 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3E2A837B404 for ; Tue, 20 May 2003 22:04:20 -0700 (PDT) Received: from web13205.mail.yahoo.com (web13205.mail.yahoo.com [216.136.174.190]) by mx1.FreeBSD.org (Postfix) with SMTP id F2EDA43F93 for ; Tue, 20 May 2003 22:04:19 -0700 (PDT) (envelope-from sn7519@yahoo.com) Message-ID: <20030521050419.18210.qmail@web13205.mail.yahoo.com> Received: from [219.95.4.2] by web13205.mail.yahoo.com via HTTP; Tue, 20 May 2003 22:04:19 PDT Date: Tue, 20 May 2003 22:04:19 -0700 (PDT) From: sn To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: Dynamic Address Translation ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 05:04:20 -0000 Hi currently I came across a product call nomadix hotspot gateway (http://www.nomadix.com/products/hsg25.asp) in the spec , they stated that the client dodn't have to change their ip to access the internet through the gateway server ( and using the their own patent technology ) is there any similarity in FreeBSD or linux ? thanks sean __________________________________ Do you Yahoo!? The New Yahoo! Search - Faster. Easier. Bingo. http://search.yahoo.com From owner-freebsd-net@FreeBSD.ORG Tue May 20 23:37:51 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C6C6637B408 for ; Tue, 20 May 2003 23:37:51 -0700 (PDT) Received: from mailer.cat.co.za (pop.cat.co.za [196.33.33.51]) by mx1.FreeBSD.org (Postfix) with SMTP id 7A50843FAF for ; Tue, 20 May 2003 23:37:45 -0700 (PDT) (envelope-from bradd@cat.co.za) Received: (qmail 4868 invoked from network); 21 May 2003 06:36:50 -0000 Received: from unknown (HELO 161?DEMO?400) (196.33.33.52) by mail.cat.co.za with SMTP; 21 May 2003 06:36:50 -0000 Content-Type: text/plain; charset="us-ascii" From: Brad du Plessis To: net@freebsd.org Date: Wed, 21 May 2003 08:32:23 +0200 User-Agent: KMail/1.4.3 MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200305210832.23046.bradd@cat.co.za> Subject: Packet mode in UserPPP X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 06:37:53 -0000 Hi Not sure if this should rather have gone to ISDN but I'll try here anyway= =2E.. Could anyone tell me exactly what packet mode does in UserPPP and if stan= dard=20 PPP has an equivalent mode for negotiating a connection. It appears to me= =20 that ML-PPP is the only standard 128KB protocol between ISDN TAs and I ca= n=20 only get my two TA's to connect with this protocol in UserPPP by entering= =20 packet mode. Is there a way to do it with standard PPP?? Thanks Brad From owner-freebsd-net@FreeBSD.ORG Wed May 21 00:06:19 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E5D7B37B401 for ; Wed, 21 May 2003 00:06:18 -0700 (PDT) Received: from relay.macomnet.ru (relay.macomnet.ru [195.128.64.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id E0ED143F93 for ; Wed, 21 May 2003 00:06:16 -0700 (PDT) (envelope-from maxim@macomnet.ru) Received: from news1.macomnet.ru (news1.macomnet.ru [195.128.64.14]) by relay.macomnet.ru (8.11.6/8.11.6) with ESMTP id h4L766l5789359; Wed, 21 May 2003 11:06:06 +0400 (MSD) Date: Wed, 21 May 2003 11:06:06 +0400 (MSD) From: Maxim Konovalov To: Chuck Swiger In-Reply-To: <3ECA74B8.8010108@mac.com> Message-ID: <20030521110342.D50883@news1.macomnet.ru> References: <1159.192.168.1.194.1053360712.squirrel@intranet.el.com.br> <3ECA74B8.8010108@mac.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-net@freebsd.org Subject: Re: Bridge + arp messages... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 07:06:20 -0000 [ Remove -ipfw from CC: ] On 14:32-0400, May 20, 2003, Chuck Swiger wrote: > Paiva, Gilson de wrote: > [ ... ] > > internet -- ep0 freebsd xl0 -- local clients > > > > Bridging itself works fine, but arp loop messages won't stop... > > ex: > > brdg0 /kernel: -- loop (1) 00.00.c8.b3.a5.7e to xl0 from rl0 (active) > > brdg0 /kernel: -- loop (2) 00.60.97.70.59.bc to rl0 from xl0 (active) > > Try "sysctl net.link.ether.inet.log_arp_wrong_iface=0"... This won't help. > Just to be sure, ep0 and xl0 are on two seperate hubs which are not > connected to each other, correct? I don't believe that FreeBSD supports > the spanning tree algorithm to prevent bridging loops... It doesn't but it does support a simple loop detection algorithm: sys/net/bridge.c, line #707 -- Maxim Konovalov, maxim@macomnet.ru, maxim@FreeBSD.org From owner-freebsd-net@FreeBSD.ORG Wed May 21 01:04:01 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CB54037B401 for ; Wed, 21 May 2003 01:04:01 -0700 (PDT) Received: from electricrain.com (electricrain.com [64.71.143.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6ADD743F75 for ; Wed, 21 May 2003 01:04:01 -0700 (PDT) (envelope-from greg@electricrain.com) Received: (qmail 13065 invoked by uid 601); 21 May 2003 08:04:01 -0000 Date: Wed, 21 May 2003 01:04:01 -0700 From: "Gregory P. Smith" To: freebsd-net@freebsd.org Message-ID: <20030521080400.GB21522@zot.electricrain.com> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="2fHTh5uZTiUOsy+g" Content-Disposition: inline User-Agent: Mutt/1.4i Subject: CFR: patch to ipfw2 iplen to match a range of lengths X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 08:04:02 -0000 --2fHTh5uZTiUOsy+g Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Here's a patch (attached) to make RELENG_5_0's ipfw2 iplen match a range of values rather than a single length. IMHO its much more useful than the current method of only matching an exact length. How often do you need to match only an exact packet length rather than "all packets less than 128 bytes" or "all packets over 500 bytes"? The ipfw command syntax doesn't change for those using the existing iplen rule. It adds the ability to say things like "iplen 28-128" any comments? Greg --2fHTh5uZTiUOsy+g Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="releng_5_0_ipfw2_iplen_range.patch" --- sbin/ipfw/ipfw.8.saved Mon May 19 23:01:38 2003 +++ sbin/ipfw/ipfw.8 Wed May 21 00:25:07 2003 @@ -885,10 +885,13 @@ .Cm ip_id field has value .Ar id . -.It Cm iplen Ar len +.It Cm iplen Ar len | minlen-maxlen Matches IP packets whose total length, including header and data, is .Ar len -bytes. +bytes or, if a range is given, is >= +.Ar minlen +and <= +.Ar maxlen. .It Cm ipoptions Ar spec Matches packets whose IP header contains the comma separated list of options specified in --- sbin/ipfw/ipfw2.c.saved Mon May 19 23:01:48 2003 +++ sbin/ipfw/ipfw2.c Wed May 21 00:44:54 2003 @@ -534,6 +534,42 @@ return i; } +/* + * fill the body of the command with the min & max u16s delimiting a range + */ +static void +fill_minmax(ipfw_insn_u16 *cmd, enum ipfw_opcodes opcode, char *av) +{ + u_int16_t *p = cmd->ports; + char *s = av; + u_int16_t min, max; + + min = strtol(av, &s, 0); + if (s == av) /* no parameter */ + errx(EX_DATAERR, "missing minimum or only value\n"); + if (*s == '-') { /* a range */ + av = s+1; + max = strtol(av, &s, 0); + if (s == av) { /* no parameter */ + errx(EX_DATAERR, "missing maximum value in range <%u->\n", min); + } else { + p[0] = min; + p[1] = max; + if (min > max) + errx(EX_DATAERR, "min > max in range <%u-%u>\n", min, max); + } + } else if (*s == '\0') { + p[0] = p[1] = min; + } else { /* invalid separator */ + errx(EX_DATAERR, "invalid separator <%c> in <%s>\n", + *s, av); + } + + cmd->o.opcode = opcode; + cmd->o.len |= 2; /* leave F_NOT and F_OR untouched */ +} + + static struct _s_x icmpcodes[] = { { "net", ICMP_UNREACH_NET }, { "host", ICMP_UNREACH_HOST }, @@ -1099,8 +1135,15 @@ printf(" ipprecedence %u", (cmd->arg1) >> 5 ); break; - case O_IPLEN: - printf(" iplen %u", cmd->arg1 ); + case O_IPLEN: { + u_int16_t min, max; + min = ((ipfw_insn_u16 *)cmd)->ports[0]; + max = ((ipfw_insn_u16 *)cmd)->ports[1]; + if (max != min) + printf(" iplen %u-%u", min, max ); + else + printf(" iplen %u", min ); + } break; case O_IPOPT: @@ -2903,8 +2946,8 @@ break; case TOK_IPLEN: - NEED1("iplen requires length"); - fill_cmd(cmd, O_IPLEN, 0, strtoul(*av, NULL, 0)); + NEED1("iplen requires length or a range of lengths"); + fill_minmax((ipfw_insn_u16 *)cmd, O_IPLEN, *av); ac--; av++; break; --- sys/netinet/ip_fw.h.saved Mon May 19 22:46:48 2003 +++ sys/netinet/ip_fw.h Mon May 19 23:00:50 2003 @@ -71,7 +71,7 @@ O_VIA, /* none */ O_IPOPT, /* arg1 = 2*u8 bitmap */ - O_IPLEN, /* arg1 = len */ + O_IPLEN, /* u16 min, u16 max */ O_IPID, /* arg1 = id */ O_IPTOS, /* arg1 = id */ --- sys/netinet/ip_fw2.c.saved Mon May 19 22:46:58 2003 +++ sys/netinet/ip_fw2.c Mon May 19 23:10:03 2003 @@ -1686,7 +1686,10 @@ break; case O_IPLEN: - match = (hlen > 0 && cmd->arg1 == ip_len); + /* match if min <= iplen <= max */ + match = (hlen > 0 && + ((ipfw_insn_u16 *)cmd)->ports[0] <= ip_len && + ((ipfw_insn_u16 *)cmd)->ports[1] >= ip_len); break; case O_IPPRECEDENCE: @@ -2303,7 +2306,6 @@ case O_IN: case O_FRAG: case O_IPOPT: - case O_IPLEN: case O_IPID: case O_IPTOS: case O_IPPRECEDENCE: @@ -2314,6 +2316,11 @@ case O_TCPOPTS: case O_ESTAB: if (cmdlen != F_INSN_SIZE(ipfw_insn)) + goto bad_size; + break; + + case O_IPLEN: + if (cmdlen != F_INSN_SIZE(ipfw_insn_u16)) goto bad_size; break; --2fHTh5uZTiUOsy+g-- From owner-freebsd-net@FreeBSD.ORG Wed May 21 11:14:52 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E51C737B401 for ; Wed, 21 May 2003 11:14:52 -0700 (PDT) Received: from mx6.aruba.it (mx6.aruba.it [62.149.128.137]) by mx1.FreeBSD.org (Postfix) with SMTP id 5D40F43FAF for ; Wed, 21 May 2003 11:14:51 -0700 (PDT) (envelope-from naetius@timworld.org) Received: (qmail 27725 invoked by uid 8002); 21 May 2003 18:14:49 -0000 Received: from unknown (HELO TIMWorldWebMailClient) (62.149.140.12) by mx6.aruba.it with SMTP; 21 May 2003 18:14:49 -0000 Received: from client 62.211.220.72 for UebiMiau2.7 (webmail client); Wed, 21 May 2003 20:14:55 +0200 Date: Wed, 21 May 2003 20:14:55 +0200 From: "Naetius" To: freebsd-net@freebsd.org X-Priority: 3 X-Mailer: TIMWorld WebMail Client 1.0.0 X-Original-IP: 62.211.220.72 Content-Transfer-Encoding: 8bit X-MSMail-Priority: Medium Importance: Medium Content-Type: text/plain; charset="iso-8859-1"; MIME-Version: 1.0 X-Spam-Rating: mx6.aruba.it 1.6.2 0/1000/N Message-Id: <20030521181451.5D40F43FAF@mx1.FreeBSD.org> Subject: Problems w/ default gw && PPP+cb X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Naetius List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 18:14:53 -0000 Hello all, it's long time I'm trying to solve a problem with a dialin PPP server with callback; everything goes well, except for the client that sets the default gateway with its own IP address (192.168.0.4) instead of 192.168.0.99 (default router) or 192.168.0.3 (dial in server's IP address with forwarding enabled). I'm using FreeBSD 5.0-RELEASE-p7 with user space PPP, this is the actual piece of ppp.conf for incoming calls: incoming: set log Phase Chat LCP IPCP CCP tun command set device /dev/cuaa1 set speed 115200 set timeout 600 enable pap # enable chap accept dns set dns 192.168.0.3 set ifaddr 192.168.0.3 192.168.0.4 add default 192.168.0.99 enable proxy enable proxyall set callback cbcp set cbcp * 10 4 set log +cbcp set redial 10 4 set dial "TIMEOUT 50 \"\" AT OK-AT-OK ATDT\\T CONNECT" Can anyone help me? PS: The client is a Win2K Pro; server's IP address's 192.168.0.3 C Ya! --- ...then it comes to be that the soothing light at the end of your tunnel was just a freight train comin' your way It's coming your way, It's coming your From owner-freebsd-net@FreeBSD.ORG Wed May 21 11:42:31 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D2A1D37B401 for ; Wed, 21 May 2003 11:42:31 -0700 (PDT) Received: from pit.databus.com (p70-227.acedsl.com [66.114.70.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id DD6D643F93 for ; Wed, 21 May 2003 11:42:30 -0700 (PDT) (envelope-from barney@pit.databus.com) Received: from pit.databus.com (localhost [127.0.0.1]) by pit.databus.com (8.12.9/8.12.9) with ESMTP id h4LIgU9r054584; Wed, 21 May 2003 14:42:30 -0400 (EDT) (envelope-from barney@pit.databus.com) Received: (from barney@localhost) by pit.databus.com (8.12.9/8.12.9/Submit) id h4LIgTLG054437; Wed, 21 May 2003 14:42:29 -0400 (EDT) Date: Wed, 21 May 2003 14:42:29 -0400 From: Barney Wolff To: Naetius Message-ID: <20030521184229.GA11405@pit.databus.com> References: <20030521181451.5D40F43FAF@mx1.FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030521181451.5D40F43FAF@mx1.FreeBSD.org> User-Agent: Mutt/1.4.1i X-Scanned-By: MIMEDefang 2.33 (www . roaringpenguin . com / mimedefang) cc: freebsd-net@freebsd.org Subject: Re: Problems w/ default gw && PPP+cb X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 18:42:32 -0000 On Wed, May 21, 2003 at 08:14:55PM +0200, Naetius wrote: > > it's long time I'm trying to solve a problem with a dialin PPP > server with callback; everything goes well, except for the > client that sets the default gateway with its own IP address > (192.168.0.4) instead of 192.168.0.99 (default router) or > 192.168.0.3 (dial in server's IP address with forwarding > enabled). What actually is the problem? That is, what can the client not do that you want done? Do packets actually flow from the client to your server? There is no way via the PPP protocol itself to set a default route. That has to be done on the client as an action when the link comes up. And since there's no ARP over PPP, the notion of ..0.99 as the default route makes no sense. -- Barney Wolff http://www.databus.com/bwresume.pdf I'm available by contract or FT, in the NYC metro area or via the 'Net. From owner-freebsd-net@FreeBSD.ORG Wed May 21 11:44:32 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA6E837B401 for ; Wed, 21 May 2003 11:44:31 -0700 (PDT) Received: from mail.fbfguns.com (adsl-64-123-156-89.dsl.okcyok.swbell.net [64.123.156.89]) by mx1.FreeBSD.org (Postfix) with ESMTP id 263C443F3F for ; Wed, 21 May 2003 11:44:31 -0700 (PDT) (envelope-from jb@fbfguns.com) MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Date: Wed, 21 May 2003 13:44:30 -0500 X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0 Message-ID: <3BD4A5842C8AE2428158AB1EE6DCC3774E10@mail.fbfguns.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: PCI ADSL card Thread-Index: AcMd02lWjafovFw9TfCqCCVMVkzVbAB9W2TQ From: "Jason Burgess" To: "Eric Dahan" cc: freebsd-net@freebsd.org Subject: RE: PCI ADSL card X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 18:44:32 -0000 Eric, I don't know that I could bring myself to recommend a PCI ADSL card to = anyone for any Operating System. I've never seen work well enough to = satisfy me. IMHO, you should always go with the external Ethernet based = models. Jason Burgess jb@fbfguns.com -----Original Message----- From: Eric Dahan [mailto:ericdahan@MEIway.com]=20 Sent: Monday, May 19, 2003 1:53 AM To: freebsd-questions@freebsd.org Cc: freebsd-isp@freebsd.org; freebsd-net@freebsd.org Subject: PCI ADSL card Hi All, Can anyone recommend a lower-price-range PCI ADSL card for Freebsd 4.8 R = ? Thanks. Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com _______________________________________________ freebsd-hardware@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-hardware To unsubscribe, send any mail to = "freebsd-hardware-unsubscribe@freebsd.org" Eric DAHAN. MEI 25 Avenue des Bretagnes 93230 ROMAINVILLE Tel : 01.41.71.06.06. Fax : 01.41.71.06.04. Centre de formation agr=E9e N=B011752906075 www.meiway.com=20 _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Wed May 21 14:03:46 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DD97337B401 for ; Wed, 21 May 2003 14:03:46 -0700 (PDT) Received: from mail.sandvine.com (sandvine.com [199.243.201.138]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0CB3243F75 for ; Wed, 21 May 2003 14:03:46 -0700 (PDT) (envelope-from ddolson@sandvine.com) Received: by mail.sandvine.com with Internet Mail Service (5.5.2653.19) id ; Wed, 21 May 2003 17:03:44 -0400 Message-ID: From: Dave Dolson To: freebsd-net@freebsd.org Date: Wed, 21 May 2003 17:03:39 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Subject: netgraph: why does ng_ether bother enqueuing packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 21:03:47 -0000 For reasons of performance, I tried the following modification to ng_ether.c in FreeBSD 4.7, and it seemed to work fine. The change is to call ng_send_data() vs. ng_queue_data(). We are running in polling mode, so ng_ether_input is called @ netisr anyhow. (Always ?) static void ng_ether_input2(node_p node, struct mbuf **mp, struct ether_header *eh) { const priv_p priv = node->private; meta_p meta = NULL; int error; /* Glue Ethernet header back on */ if ((error = ng_ether_glueback_header(mp, eh)) != 0) return; /* Send out lower/orphan hook */ + #ifdef DEVICE_POLLING + /* send directly, since we're already @ splnet */ + (void)ng_send_data(priv->lower, *mp, meta); + #else (void)ng_queue_data(priv->lower, *mp, meta); + #endif *mp = NULL; } Does anyone know why this might be bad? Any reason why this couldn't be done in interrupt (non-polling) mode also? The system's main purpose is to process packets. Thanks, David Dolson (ddolson@sandvine.com, www.sandvine.com) From owner-freebsd-net@FreeBSD.ORG Wed May 21 14:40:29 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A0ADE37B401 for ; Wed, 21 May 2003 14:40:29 -0700 (PDT) Received: from mwinf0604.wanadoo.fr (smtp3.wanadoo.fr [193.252.22.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 968A643F93 for ; Wed, 21 May 2003 14:40:28 -0700 (PDT) (envelope-from vjardin@wanadoo.fr) Received: from venus.vincentjardin.net (unknown [193.253.255.240]) by mwinf0604.wanadoo.fr (SMTP Server) with ESMTP id 266DF28000EA; Wed, 21 May 2003 23:40:27 +0200 (CEST) Content-Type: text/plain; charset="iso-8859-1" From: Vincent Jardin To: Dave Dolson , freebsd-net@freebsd.org Date: Wed, 21 May 2003 23:41:11 +0200 User-Agent: KMail/1.4.3 References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200305212341.11282.vjardin@wanadoo.fr> Subject: Re: netgraph: why does ng_ether bother enqueuing packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 21:40:30 -0000 Le Mercredi 21 Mai 2003 23:03, Dave Dolson a =E9crit : > For reasons of performance, I tried the following modification to > ng_ether.c in FreeBSD 4.7, and it seemed to work fine. > The change is to call ng_send_data() vs. ng_queue_data(). > > We are running in polling mode, so ng_ether_input is called @ netisr > anyhow. (Always ?) What's about the ng_ether's node that are created on the ethernet interfa= ces=20 that do not support polling ? > > static void > ng_ether_input2(node_p node, struct mbuf **mp, struct ether_header *e= h) > { > const priv_p priv =3D node->private; > meta_p meta =3D NULL; > int error; > > /* Glue Ethernet header back on */ > if ((error =3D ng_ether_glueback_header(mp, eh)) !=3D 0) > return; > > /* Send out lower/orphan hook */ > + #ifdef DEVICE_POLLING > + /* send directly, since we're already @ splnet */ > + (void)ng_send_data(priv->lower, *mp, meta); > + #else > (void)ng_queue_data(priv->lower, *mp, meta); > + #endif > *mp =3D NULL; > } > > Does anyone know why this might be bad? > Any reason why this couldn't be done in interrupt (non-polling) mode al= so? > > The system's main purpose is to process packets. > > Thanks, > David Dolson (ddolson@sandvine.com, www.sandvine.com) > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Wed May 21 15:40:22 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 687B837B401 for ; Wed, 21 May 2003 15:40:22 -0700 (PDT) Received: from sccrmhc02.attbi.com (sccrmhc02.attbi.com [204.127.202.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id A793C43F75 for ; Wed, 21 May 2003 15:40:21 -0700 (PDT) (envelope-from julian@elischer.org) Received: from interjet.elischer.org (12-232-168-4.client.attbi.com[12.232.168.4]) by attbi.com (sccrmhc02) with ESMTP id <20030521224020002002lafme>; Wed, 21 May 2003 22:40:20 +0000 Received: from localhost (localhost.elischer.org [127.0.0.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id PAA75572; Wed, 21 May 2003 15:40:18 -0700 (PDT) Date: Wed, 21 May 2003 15:40:17 -0700 (PDT) From: Julian Elischer To: Vincent Jardin In-Reply-To: <200305212341.11282.vjardin@wanadoo.fr> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE cc: freebsd-net@freebsd.org Subject: Re: netgraph: why does ng_ether bother enqueuing packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 22:40:22 -0000 On Wed, 21 May 2003, Vincent Jardin wrote: > Le Mercredi 21 Mai 2003 23:03, Dave Dolson a =E9crit : > > For reasons of performance, I tried the following modification to > > ng_ether.c in FreeBSD 4.7, and it seemed to work fine. > > The change is to call ng_send_data() vs. ng_queue_data(). The change is ok as long as you know that you are at splnet. in 5.x the change is probably not needed. > > > > We are running in polling mode, so ng_ether_input is called @ netisr > > anyhow. (Always ?) >=20 > What's about the ng_ether's node that are created on the ethernet interfa= ces=20 > that do not support polling ? >=20 > > > > static void > > ng_ether_input2(node_p node, struct mbuf **mp, struct ether_header *e= h) > > { > > const priv_p priv =3D node->private; > > meta_p meta =3D NULL; > > int error; > > > > /* Glue Ethernet header back on */ > > if ((error =3D ng_ether_glueback_header(mp, eh)) !=3D 0) > > return; > > > > /* Send out lower/orphan hook */ > > + #ifdef DEVICE_POLLING > > + /* send directly, since we're already @ splnet */ > > + (void)ng_send_data(priv->lower, *mp, meta); > > + #else > > (void)ng_queue_data(priv->lower, *mp, meta); > > + #endif > > *mp =3D NULL; > > } > > > > Does anyone know why this might be bad? > > Any reason why this couldn't be done in interrupt (non-polling) mode al= so? > > Theoretically the queueing code should work whether or not you are doing polling. it just may increase the latency.. I don't know if there is a way that we can tell if we are at splnet, but if there is then a run-=3Dtime decision would be best, instead of a compile time decision. =20 From owner-freebsd-net@FreeBSD.ORG Wed May 21 15:46:16 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E3E6237B401 for ; Wed, 21 May 2003 15:46:16 -0700 (PDT) Received: from mwinf0603.wanadoo.fr (smtp3.wanadoo.fr [193.252.22.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9350143FA3 for ; Wed, 21 May 2003 15:46:15 -0700 (PDT) (envelope-from fabien.thomas@netasq.com) Received: from localhost (unknown [217.128.84.168]) by mwinf0603.wanadoo.fr (SMTP Server) with ESMTP id 1F30C24000A2 for ; Thu, 22 May 2003 00:46:14 +0200 (CEST) Date: Thu, 22 May 2003 00:50:35 +0200 From: Fabien THOMAS X-Mailer: The Bat! (v1.62r) Business X-Priority: 3 (Normal) Message-ID: <3810551947.20030522005035@wanadoo.fr> To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: Kernel packet generator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Fabien THOMAS List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 22:46:17 -0000 Hi, I'm trying to find a tools that can generate / receive high UDP packet count at kernel level (64bytes packet). While browsing BSD forum a while ago i've seen some discution about that. Perhaps someome will remember better than me ? :) fabien From owner-freebsd-net@FreeBSD.ORG Wed May 21 15:54:58 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0BD5337B404 for ; Wed, 21 May 2003 15:54:58 -0700 (PDT) Received: from mail.sandvine.com (sandvine.com [199.243.201.138]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9BA5A43F85 for ; Wed, 21 May 2003 15:54:50 -0700 (PDT) (envelope-from don@sandvine.com) Received: by mail.sandvine.com with Internet Mail Service (5.5.2653.19) id ; Wed, 21 May 2003 18:54:48 -0400 Message-ID: From: Don Bowman To: 'Fabien THOMAS' , freebsd-net@freebsd.org Date: Wed, 21 May 2003 18:54:43 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: multipart/mixed; boundary="----_=_NextPart_000_01C31FEB.F7D47F20" Subject: RE: Kernel packet generator X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 May 2003 22:54:58 -0000 This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_000_01C31FEB.F7D47F20 Content-Type: text/plain; charset="iso-8859-1" From: Fabien THOMAS [mailto:fabien.thomas@netasq.com] > Sent: May 21, 2003 18:51 > To: freebsd-net@freebsd.org > Subject: Kernel packet generator > > > Hi, > > I'm trying to find a tools that can generate / receive high UDP packet > count at kernel level (64bytes packet). > > While browsing BSD forum a while ago i've seen some discution about > that. > > Perhaps someome will remember better than me ? :) > > fabien A slightly older version was checked into FreeBSD on Oct 31 2002 and converted for -current. Attached is what we're running. Feel free to forward me any bug reports, especially if they included fixes. This is a netgraph module that we have code in TCL to drive to create high transmit rate for arbitrary packets. You can achieve about half of gigabit rate for 64-byte packets with this on a broadcom bge or intel em card [about 800Kpps]. ------_=_NextPart_000_01C31FEB.F7D47F20 Content-Type: application/octet-stream; name="ng_source.tar.gz" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="ng_source.tar.gz" H4sIAJkUwD4CA+w8/XPbtpL5VforEPclkXyMYjtOc2PXuVMk2uZEH45Excm890ZDk5DEZ4pU+WHH bX1/++0uQBKUSNl5aTtzN1WnNQksFovdxX4BrD+fRkES2vzVkz/st7d3uPf27Vv4+3rvDf2lX/pX PL998+bN6/3Dw8P9J3v7r/cOD5+wN0/+hF8SxVbI2BPHXlgrHl27vBzudsG59+T/3c/P5N+3rvnM 9fgfIP990AAQaJX891+/FfI/ePv68OANwB++2Tt4wvb+kv8f/vuB/e005Pz9uHvE/lavf+gPuye1 WqYV9fGoMz5hSkvLJqCufjE+qfk8nofWalGvt1zf9hKHs5+uIqd1vQyc1vL6Xf3JX7//K/tfkfCf uv/f7O0foP3/8WAPTMDbg9cA/2b/x8O/9v+f8Xu1W2e7TN3djFo6weoudOeLmB3s7R2wseU7N67P meHbLexvex6j/oiFPOLhDXdacug4ufoXt2MWByxecDYLPC+4df05C648d27FbuBHDPAxx41sz3KX PGTBjN1aYWj58Z3GkohjP+IKOQDFoXuV4DAEixduxKJgFgM815jrM0E5CwCLmNgOHJw2XEYau3Xj BXQhLnwMkpiBbXJnrp0SEnLGv65gEZF3x1Y8XLpxzB12dVdc9DFbhcGN63BHQ2SL4Jbf8FADeqz4 CFv2W6zt39HCLGQOB3gnscUsRDivIHUJOshS+wlgiA1+diYCP4hdGGZdBTfEmTW+lvLR5dFxysWD FhsEqbhwwXOEgJUg+ywgemn5Po4OiW0aig6FsCF1+MWh5fClFV5HmqQZSUCCsJHtjNuD7idjoO8w kJflAI9iNwIQjXHfCcKIL7kfR5rEhpyAseGtG6EYbL6KmQXyTewFs1YrboUR0ojoxeo3mAIYXD+l jVgsVCPVRvPcGLPx8NS8bI90Bs/vdWNwxi5Gw09GV++y919YSjLbaY8BYkdj0MDMIYzVWb/92ehP +ohK/2zqA5Nd6KO+YZpibK99qeUI+u0P+pgNhmykX4z0MUC3TWM4GLPhiMH8o/bANPSxJpAhBPUY /YueoXc1GHXWHnWRvALVGjMGnd6EOi4N83w4MVnPABoIOWFrD74Q0e1eL0WnTMiGp6yvjzrn8Np+ b/QM84vGTg1zgAScAgVtdtEemUZn0muPEN3FZHQxHMPE0DcYDl4ag9MRzK73YUUtlq+3O6Tlmulc GjubtPFBp7GICllC5K2zRF2sziZjHaikCfEVICc9kwiHV8QjANbFOWAmSIPgDADvDEcjvUPrAiF2 OpNRu/MF+doz5LoRFcwxBKyjS2Osw2oACUhM/4SyHZ8jB7P1vdcZjuzpgkuwim673z7Tx4hG0IgL OB0N+4i1PTLG+I4CAooQvoxsRZ6Ip0SkYioD14LA+VMHdBY42AOdu9A7Bj7on3UQeHv0RROSGxim 8UmIrgN81j9OYARApqRrqPvAGRIm0jaevB+bhjkxdXY2HHbHUnBjffTJ6CB8bzgmDk9QI7pts424 AQloEPSeDy+BdzBZG/q7pIWTQVcndokNqA9HX3B8JgSNXZ7rKAHkPRBpgphgeWNzZHRMFQy1YTgy EU0j3wMD/axnnOmDjl4QZTPjP2BFBl62v6SiyFVswyZoJHpmnOZih942POFy5FjYDWNDUCVY1jlH RIKlqalpJ+BgwiPWtcBQddJwgv2Uhxb/HUmL2rKD5Ts5TA3A2e6rel34ZBMdnY/+Af6CNXbQNrMF 2D4WrTi8riz7msdszn34JyR3htocs58TnvAIcaAjcqzYAm9ku+CvHDTKbvwiYi9cf5XEL8CPBdfk UiC+ATsbeA4af4yJYnbjWoQEjK4fh4HHluAkrTkQFLMIrHlEBleQAS4OXKtADU8ZbqSIzDP57Vvr TjzQumzLZ1eAIOReAE7FEc7aShcGfp9bSyDMBWfg0nqQENdPggR9NZAQp6zvJGEIr9AKtP0L/Sk4 CnCBwjFdJbMI3UrIf05cCCkEm+wggdU6AbuxQhdQEpWha19HFLqE0pffBK5DRMOoizC4sq68O0J7 xWEaCBjQZVo+uKJbRIhYYFGWvRAMhziCAo671E2CWwuDVehaMWdO6IKDpPlgjOQ+Yoi4N3sZ8pfc J2FmTG7w1rxFaNzZ9GqeYpBrCTl6bfKC1pKL9Vh+BBENc3hkh+4qBg/cZInv0Bgh1TSoQpkc44JA WyMUPvhSgWXmWfPUDSMz0eliH/lpYIsJ7SRR4gCgsECnwJH76mIRkTuDjFGgQy3juAzh7KNktQpA 54AO68ZyPeAyxXA0J1DqQ7TEibkuRC7hzLLJw8Nu+SHLPKO76NXKCq1la/FurRn+jUuaeRj6wWbz NQ997m22L2E/BXZJO/CkZM4AZVZsh+W/cmdlbVPQwo12Sq4xM5M7rwpAPlSPB7ZEvLqbYwy21p2l BNBc/8HhMwwEB2fT8XAy6uhTA6z2FEKGD+Nabb+kvzsCLzSaGqcfpxBC9fRBrXG4u793cNiso4Vj F6CBZHxcfxagIGG7Q7QsQ+QpdlHPr/UaPk9XNfjh03H9/jjDIOxjEQOo2w0ZPRiK/WIoaXe9Vj5L rUbmcEu/sGk5QMaeKdjKOKrV6E/e785o48LEke9M6fm4BkSnG5nUH8wLkJ0PAZHAgF0x19SdrXJ8 NqoeNC7AJnkc6Y3Dqb0AgGQKzz8eTnGoxF45E8G+PiBYomkIuwrJZvKXAbDy39L6KoYA800wlflI SWcMaciN5W2O9KwoNvzYhH6SYHy34qA0bF1ou5E9XQkBDyiPA2MRIfGbKgZBA+hYrdYYnJ1OzS8X +n6zBGp8PjG7w8vBdDA0BhcTMwc/aNI0nz9/JvxgikCR0TbO2If2GOIfM0Mn3xuYKWrLaN5Ev/Er cPEfdZDFjDWeUlezmTXWYEV+PGMAzI7TJst37cZOO4owKwr8neYxddzXxKB7dHYeb+zBOkBk7kyw QW5UcL8QXziRUHXw9zZqIdhGwcIgBLHmaqm0HyvgoX0DFBUgRZMKFC2S2Alu/SLYUmyhHMznt7Q1 VSjZtjYlSnZ9TmxTwTCLFXa+AJk3C6UYoqlis8SXmXXODFQ93CLqaNwm2STwohQyp3MeT/Otxhqo eM0MGN2+Cm174ZQU9AE4ETo9CBRsTLhGHe1ZAsE8O9byrQlDhP1Dm85wHwlHKXdezhBSAZYbLHIC U/E+nbkcXHU+nxw+RXyiM/r7P9kJGtFf2U58AwTZO1qt9jxDJMkB+Nq9lkIlD4MNJpBi3aMNKCeQ VlROmKDn+fpasEsT7dWrydxGkW3l9vzf5SINLvKwXjtRrRFkeGOyPuBBT4fH22dZY0WO/dGM2CAo ZUPPhfkg9INEBKJXR1TkFsEt+gsgBus2zArnCZVroPHVLAyWrD3uGMYW5thLx0PEyr5ZKopUrzHg RT9lRmc4/GDo2lrrmW4KNlHHDmxTWsSOgAPloYfSNdaFij1qmk5vpE4D+7tsGnz4FqxA/BpioL8C 93cvAWYZmWIWMjs7GVqhFYmMDIRWfPtixubwIkUfrL6TM8gWLB5k7EZr+p04M9/eH3Z1San0XZB0 8TJ+SFv0700HmgnB7HTYMeFp1DbTOXkMgVGAgRHk4b/7tGcV087LphW8zOOuUjLk7GxP2OFClEHm JU8Xlc2eb/N1Ew2vspP2OZg7iP3HVJys5bZvAEIi04etSCaGPRiqgqwSSPcgX/ZjJiJcmrc8nNHq G8FLsYkClUKTjErW54XQzqEcBOeSSrgRo2gCVr6tkVUK8/MaUB7CFPCjZUTuD3TzbNS+OAeHYJgN 0ampxiFnL7r+PFxgSTSFdB2cHQbiEL9i5NrV30/Opt1uCpelBzIhmGJEa7soqb3jTSDSpmoYSg3g L8gj8WV/Hqpiek5BuyKtuqJAMLBeKtKGyNPYLv5dNeugQxj5sMiGBAdXCok6qCJNV6/1273esAOx kcZEfBS5v/Bg1oDUoamx/jRlKD0PL9uG2UQ0Mwyn2MkJbZEmhN0hj5PQZw19MOzrfYS5+oWHgUCc o0Sm0+hGSgUm5NY1qBVSjQ408Bul8tKYWBDmBTDh6UjXCXtOI86aEUL4seW+XmtIXrx8h6kRFotO BDsi++U7SntPJLtkW5ZntiD3BPq+etwHmIO9w/+kfBDTHD+ATHLBQQ9EPljMKkHAbtx4jshkeolL z1LDXNkA7b44vGWv2OIXBQjmmUBy8zJacduFgEMWg9A84YRZsghTrKeSJF3CcHUH9mdmJR4e8jDP XboxFs+w2JOxag9Iu091ru04zKJqQrW2SROQahqZCCYqC/RHk7GMvbDA9vjWkpMaygBHKCOKHsZl IkHFSDND6H0qVEtjjZ1n0RHzE88TBQoJvqOx6fR0MuhgjX86bWZaGYf2ctXAOTUlVDwHZzCllLWJ WrsndEhIB5KWFlmuEybSLVEbUZXleQaJCsW4F1G1betsw4lZMp1Ikh41X1YmUQZSdkVbtyY3GIFS yJNttKwFubJeO8g6W0vX10VJ1LmQ9Y1MF49Rd/jXOORLziD4T7hQGbF2db8bg0/tHnK/VJtG3OYu HrSu172rlUt4oaJu5d4ShoP2opsq6BhMbjlOSF57A3o3XMXhYzSwtj4y5BGyGzWxzHh+p75Gt25s L1gDVvPy3YJbDg9baO9srJRx0hnbivhmUHOEOlEyGLyg0LT1YVkacFTSmcXYR+Ujlf6yMhbOV6vK /GQlr15RAqNNtLYCYmUJdbgy9sAPtmD/w0gfX+BhXQOlpzEKadgjfpmboq1TdHg1UZkS+iC9nlh5 rZaqhHB9Arg2DyD3cwKfi/d7+m++95SCIfmil+8KJcQS4NMQjEwKXPRP4JxyEhupT3v5TpT7nm9U +ZoETAHtc/ZUpvduBJG3Yk1aEIlggbGZrRNDZNcOAxxQAPSsVcQFsFy9xBklVxWAmoCr1ZRuSrsU LJJnpEgnZGtLVayJQnn5TpTAcMQV3mso2sWCedxllcYx/d1/h8Jme02w+XFWWojjXv69CsHRH5fs RkpSjyQUiWU9JEVW7Tby1t0mUZtxR0Rua36oqNCi2CrsmKjABb48ksIzRQgjxGDyXv/w1y2bEEK2 Kcg/SMGkyxKiBQ9jDrtDdC+uY6V3ktJlYEglNkG+sLQkjz1rVUJY1LewcXhxtI4kWKU4apUD07x7 bXBaz3wYQSHJ3hQkpQSB50yXIih9+nTrdl4vx4vJc0wQp6WYpE5Qc5lOZKBoElIKUo1Yp+G3ky1E 5KZoPbzKswXBPZFcZisU1CvR1VOVqIdoen7C/ucBou4frR8bRYJcVJWGwZcJH8bgY25v43mlByoP 5QtoRZKwnqBWYUz3snQ1kHQwTDqO2DPn1TMHcD9LcAc/5B9VCiDS/0UrJ7WZJbCPZPRZCaPLY4xv 9fiplc0r/esOvcqfl7nzojev9g5FieeOSbrtDYbtkjBTZpVhzFgnsziyPCXGNYNDnqcvypjNISnQ vUicRIxcq1GwDIBIPPRmmxHfm2neLfhcyLzryB6YifpJAsXEfD0v30gRiE94zzFNPrHTmIl2O8Dg R16bIJsiE830UodLXoqua+BhjwiOKjEoDkyjK59W6ACK1tashCx8IcuVIQld49hdanioaEEn/ilN N0SaV5F0rB/W74rRC3rJ458NsCYrZI9/QJ6SDheklGHILh+UDK+jo7+ki0cI9l/k2VGj5MoK2a7Y hDAgFQqFAbDJUa3I9TYknyuLPUVqT9TkPaM5IFKellJLQfQSNus0dbj96cUH87w7UnN5NUgi+ac3 ogVoeVj04DrybPpe8A0LTbc84wZdGoJBQqXxyM0PbkXFVaLu64ha4CUMtEHSa2AIKbFGC7pfBMip iMWM0+nHU5Bro8mEiKBBH3yc6BNdRq9pzgF0N2WdTE1j/uOEEddW1/HCCVuUlFRUBcbyXAGvgds8 wivNW3aeiBKUesCfUkzajHdINkb3uF4eNuKJXRJ7rn8dNdJwpjJEhI7Ex7JRDqrSn9ccCDDks0KU VFH7LOX1OW7NvGoOUXY1q3Mw1c6JEvLvbaRyyYmze4ED8qoyG/nd0lSQK/UcNELKdH6yxNeItjn7 7TdWZqGowoSd3xaZo+vMQ9581kq5jfHWZrHuBzHIKkDjLr8GIW+n3HdKv4zIbvWJrz4s2OAO3UEE qaiub4u7K97naEhhqZpQrMXthtHquHj7iu2KS1fKWccMHh3+ddNF0TvWiTZLnUJWZLba0bW49RnH Yk2+/DileLExX/8LdPgwYWoh+x/6+njcPpMBCgaidHU6PStUWjAyNU6NQVf/rLG9zdMPvIpUfvzx fnI6JuOrnHBgTDLFqmaqMzJILS0Za+w5cDOdSGB5io6nxOHJ2E2JYsu8SQaVlS2scI5HGj9thsmV CITsNtKaUCm+vMJvndCrJBQ00oADUoa/p+P/mX6Zgt/6oPdZ4AVvP4BttUtXmkGHb3go7/hms7qR KBMAvXg7OG333CXeZsaxXmBbHu4M6BMK0mhiB0jebBu9j9PT4Uhvd84boFbAYaJKQ2C02MKnI5Og F4KFbLEn2VRNNcq+lywlFVXTBzUssC3/RUznorlGQt61ERpo+RxVscDmtqC9Je/ZpS59mdjXyDV5 9Tu9EC2vT5Ko6f773LtjVwlx38fL725MHATeCUALmBmrtRjoAYPAbC/A2z54jORzcQ5F8frcnVtX Ekm+UqIiwmu+KZ4WQciQRsYfkEnEQShsWRC6c9cHKYoDBwsvwwQrvCCdOyYpUiqErkD8q0bzuJYy wI3E7ev0bnoea6ZihSBGPdL7adsl2ybdKchEmhnHIzxz8OdCPzNUdKXnGd34FzIWOWbZtNrWWY/r VePYybaBUlFW3tdGpCTilc6lYEnp0jIabTROYDazd/mVHR6uQKDGAtCo0JVXSbf4jwj8h5XEQRTa qfNQbt3R6CpnUpbAfJvtxvJNe2IOx6MOSUHYOFZZC6i05wVzXlHNARJxNcffY+9p1m05csfjFrlu khpNe8tfgOEUx3eqHPB6ZL3qquWaD5eJK65ufNGTERbZxfXUBZ1s4/hYGDnIDLr6lsxAMLRQ78vK E1me0lgqpq14HLKnaioVoJGfuN/EcmWpQHJDCWi28EG5Spoy4YEl5xFnsVqehp+4LGHoFQpY4mdx SEkcWlW2kzZGBd85klU3tWiX4OeksZVZVGjyvNIKXlm5SVTt5FDFRDz22EhJf4vHCFPFD2Ktdksc 2cxCGantx/XiTV3VbkDk1UzPvyvrz4I4BJOnTjZulm0HVJVwfg5TddilHlKVlW+Vq/npWV1x3HF2 74BuhQCQvGvdKN601li2/vtqvSm5hlSo2ZZ3lV86UvYceN3fY8ulF7MfueNSpXpIDVEBgfgtbCte u3nosCDXoMojTkUzSvWqIGsJrajaloNQVnkCWizUROSy3ShN/vB+kZvFSi5k4RDZi3JZ9Xbaf0Cd ZKhDQTwGr2l1Fa1M/nEifiT3TAa1YbLCT+kEAA+bZbaoqKVarn7aWterrEfZXduJkjbym2kq7I4C SYWerRQ9SyBcCiHCVabVwEizyAtulbYq+yyELlAYOLWiCYABmpQTlWx3XuJnLcyyYyya46UzDN9g +XelH5SR54haIuijq+kR/h8K7jJpWlGxZqDk0TGe9NL/7kH1cPhVIX5QCL1SEq0tRgB3IWvQd5+7 kHSWlu5kAQi6N775wiLCzzIizE5/Kz6T8oNbcI/LVQ7gBWDA0ht3HCaxIth2pV9oZb7y+4tNj7oK mBm77HRb1pwqDucfV3badNTlJ9yZ673/3/autseN2wh/lgD9B0Jx41N8er0X23LOgBtf0qCJ7xA7 TQrHMPaklW5xklbdXVm+uu5v7zwzQy53tdI5RZGkgBTkYGm55JAcDmcezgxz15yC7DOfA1j2eJ7G lUHWtfdTLtvM5/RcRZm/A3oVbG6OXJnv7bickf0/CrLRdXtFtUHnXDHqla1j4WOzjhOyKj3vx2hy ANo6ElRjnsog6i8r+Wnwhe9v2apXnyp6HAJXzy8KDsGbjiHsB/cpNXm0VNXjGA8LwflttLYcF3ol vFYqTw67xcIVncHY5c0/3XZEedQdbB20DYn14MGvHKwKQVisA0vlH0WfyLeefUxMnDuIUEn87gzm dv6LOEkVY8J4T9S3D/Oh2LY8VfUFVCnwA2kxB60nW1eZs8Vzt8lP1/yqhLnvQozJs8R9udur8+7J q3QF3ZC3H6tbf+pXFLz/L1rffKmydQ++WIwLuRJKwPYuXMJGAvIgYy6p9UvLAvmGkDODZy/bTYmW tIYhl03pQ/p/YPHs0CrY1XA3zfOgoJNbZeZ/e2qb9888PQOUrXWESB/1LvT6bzjgf1ddd+89nlkc LVRJWXD40Laj1lxI+ZQWTFWq03t25j/TowGk2GI9xkJ/NEbzK0ni5KGYgcnC+TJOAtKWVL/oaqSC OfjcTav1HjEH7qeWQ0HctNoZxcZNRi///qU/nNvcRKiwL3i/1J1fZ/9L71HriXnwABX7i6hWK4uf OwGZXBJtx2b03H21nCGfV+jlIxGrYj6gVudv4VwpP+MEu+BSw1UPSv40ZVpB7OUP55fnL55vIdan 1vfGARJX9nURor3kHgUcWclnRUI9CiuGbucpd06MNJW3goGQqFe1lIFXzxmTlqb8qj3Wmg9aFQ7R 8fZDdO6mJ0wK2PcOaK7c5sYEFcYyP2vKt7qaMN+TesEdmQStOCNjny4/8ZwBBhsdobKDMjtAgBAv sE/E24sX3/1dqDgsK8KuEzoj8kW9BT9oTRZa1IdFRHyr2etsPF/xKEEr6FC+sttGxqUaa5GyOhJt ndo8tqvg1No+06oqwN99Rs3///yf179t/t+HJw8HyP/ZPz3tHZ0c95D/c7DP//v75P+83uf/3Of/ 3Of/3Of/3Of/3Of/3Of//F3yf5LOz0nInKOsc8B46xKSVT1zOdMkPQeZO7xZzIMpZ+pBgG51IjWX mKPWlB2q6RUqxfHW+r2j46Pj00e9E26QfXUXHOdZWXcexV5rskN7c1sh8SypNcWAanLtLwGIpSTo Uz05WSXAS2B1yB5dFcTo5QIsR15+8PPlOdPvSelXMRV9P9Bitrzy77b8tix6ijNvL+Bg5O1FNuHO HWU3wMkc9NMTkJp/uF96lJ8Flx/kZ8CShTF8n4Vk//3qPF5PMLd/DcOlqHNQ4m4XI1HW8r0+n3Fm mIhVwEomK2XVqmkSPmM+mKab5eZhrTI1Uu3joV9YJvNTCns8sVE8T3lWLL6l9oriyjRUdGcqH/8V x0akwnzqO5t81Tz8hLc2OOxT3nI8p/2vyvDmFVc+tOnk7iqdM+cnVS9p6CSi+xfB6fMkSC4rGrFb uFjNJatRhag5M/1DYGxTTlismeNqlWnGGItjB57qkoXUYSgbZPE8wrnsLVcPWb7jdUkGxo2kWx3Q Nt65uLSvbPGfqegOZ/HyeoMVu6uRQpIuBmxjzczM5wE2Y5emoL4OJdiWQS57OiJmC6ezdm61ksMm D6rclaaLz2rh/dt26WQ8T7U0pCrJGqqu7pst1RnDGLxENBXS1EA0CnKGchVbNQr90fCfH86fPf/+ vJO9z37b+58G/f6A73867Q3o6ekR3/90fLLHf36LD2eZH0dJiDRct5zxJogWqUUqwNyBUQXV2JTR sm45GiIYsT9Oox44cCM/vcJ+Tnu7S0/dqDfqX7PBzjnTeT+nrX6V5TUjJ7j9cnDcIvO+Ub/OsuWw 212v151xEM6x+tdpJ06m3QEY6MjLf53NZ9xKo/6SzeCvYQgPh/AK//YF2Rc/8lney0b9bNenUX/G kA3t7Wbw+FAgMFGlo8UvRyd4lgTrTjaaiRgLxdMHufGn0bvQjiiNygixghYKGwXL4CqaRQBnLCTk FiAPqmSm53AAbEE4+c3iRl3SurOmZF2erPeci58SbYnRphkJukRwE3oHl7qZaNKoL+M0ja5mIY8Q crYXkTAikjoyHFLPRNqmijGl5kCIwVSzZqYxnchG3KhTO3Yw1O8vmKWc0D58H5B6EY5bQ7T4BeeJ XydRZl/mSNAsuAmBB3LqJsQ8w8fTZh41BxoPziBTbPotIt6YZ+pC+LRPY0qDw+8XR1Jz6s/iMV8t wJunpHOaiZvYOEZN6Mk6Tm40i73zMEuE0ox2pAC66XUSL/jaASp4gdQii7blOlSD/PLhXLrBB1I0 7iN3J4EggXqDwyymnZZ7iSPjfkeG5hkSX8jgsCurDtCaJiEYj0O9lSFeinrsUaQkgwh+OzW0Jc9u D6nzExukkjcprMXxE9xj+qotwUXOvLi4REVxsYOud+jXhNP6+wTIjPIFAoAxUQF1eApEtdA50mF+ kv5Be6nqoPKLHONqFcrgef90ppwRyPlmgQmvoszdGoAFw9ZEE2go7orImioYnok/8Dxm/ioswc5N bCT3v01JSfUC3lJwdow1seTsMrSc8KqVjK8uvzLRHBn6jflaQ5xv49V9+DyE0rlktSjhtqpkNuqa BQCV6KytUouqhotrXC4xVik2CQNYRDKy96jTYyJ5NsYFGqY77y5XV+N4lHYnaxqprKtCKe3yHQNH j07bSnDX77MnMM+1mfOfn+FbtZxEaSvu1HcBkqNRh79vYl47KfIZ/HhN24Wm9d5ImZWWWY2XWqbT 6cRLFkP0Lyp1L1G2urcyvVrtyWfmOXRG4rBrDMxBT5mhVSjKBUl0yyAe2gWRewUcpC3xvVkgxeZY q2xA4TSfMdM4nkcyUuZ2extFp0hV3zbGErH0TEh+RStk7cmE1WIGhnZN+HddQPBPLCHBO70Ao0i5 L5TQi36PLfPUvVYUVDlNkChMEf6RbooQHacDXty3NKZu0aip8ZpqKizfN9wm1fgDL8NUy1EFlb2T UxFLp4wTL08WSiTFr2lhxSOWmOOOLXfhTgYSbQVDOV9mt4AGiA864EMhFc0Lc13dUl/YcxCelK9x tmPu8fMDBwW0TNf+5gdavJGV0KgDEDMXfwMCev5TaRHYzbO03aAH8Plka2Xo7tdBx+2FOCq57FdS bICd8elPEkK1yP2YD02UpcUQeBqw2Sw3lqz51BFqCpfuSJ12Fy44Rwee7oaMKDFf4xOLiC0HqHUr Y4vdNUByGY3svBx8J5kOnHoRL/VaIqfr6G1GuWbBikHbWB+FRPKqjG1elOItRYkzM1kNWsAy7uB1 2pDpzWVo2wo28o85mnOrEzZyak1eqwpo/b6fXrYxutSIOK+PZvHohr18uUtBytuweqfrsBeiS2kC oe7g+Zwp9x3jDysrdgRzygtdvG5dpUQp7402zYx6+5Wj6otMUIqHYSblC51kGIKs6G7vbnby4/Bl 3Ec6ohuOayTw2SVrbCkTTMJOA0dQX4UhawtwJjnko0Cex3CZz2MquhC/dOhPHuSYhSsAOujmzocJ F98ZjbusUPTd8kU9fBESUWbvssr3Zm2ThCJAB72pih2a0B9SVRt1sWE4ScFiOspmLRFpm5kvWaJU gUd5bvshhtPK0sBDPtUgs9pATqBk86f3am3j5Nqw9qowG4JxdFkkCvWVHG0rEXCyXMmEf+3amb2j Gg8UrabGrjEOPi4v8ryKXbTcXYVDGqUCbJOiCQcMVPusuOaLweR6NH5XYceqN2GPVb3HZmrNmFrN W1rqySd6t5RmxVsaybedYe08YumpDbcd8VgTakUIIV7HSkzlkEPvJgNmKg7DFX8LOGpkqV2N9lzF P02x/Eiinc/isTrdhLKlb/NUyfSIrN+CYRavPmBiSF1yTSCafyTElSgKMneHGXe73IhIdL3ygOt9 JTYkMi1MSSr6CSZBJ6xhe43cFnmVxSqJxlYFh4xZipLRlpDeXOLs2CrKMvJVSdby1lzYlWmSJW+C GGcyG+7dheZT3y69VYHgvVz7Ub1vuyHg2wQ1QULFrmEj7GVfsbetgaDKeHU2vsI8xcudFPMuQ7/C dTCekJgnC2DOju+7QvihNbLuj62JFWrerlQGsCErCxN6QjRd0ByOW5usc3Gpt1kMZV6tQiy6yQRJ 2aCh8I5cscb4+NvdXuGvMP8uxF3ySXcqtbDkXB2H1rk+Kcf93/39DpTK7md/XkUzATgAAmG7cv2h Ue6KJUtLmrGHAKkzsL2voD211IxENnu4JLl/j8NlCMtUvrqftQExo8EkhabKmqCghwuPh2Dk5GUi mkBgBsGMJOP41ugtkCW7mQzcNFazGgDBUuyiNHSHNI0690tNealb7Xe2O3JK/WXD+gVwCU+LJ6M+ pvW4JJM7daX4rsdp2BsWe6dDZ41v+wy/sTpg5jfLkMrKq87zS+pWQhweQSynaZIYTlwXLshMwkmY qPqemiZXqBU1xabAOOblAUHqNZ+wFNgRYBbdCIQ4FLKFRH7k12fSZNRjqiae0My2UILCQ8FVWBUc 0Txmnky0U2hVJ09AiDJHm4UPnjbq2k4uoPhmUzvhNoPATgBiWQYXACcA/lpMoilUql8a7pSnzVP2 lvrxdh6MzIfe+17P0J9j+vPwlP6E+NrnP4OPFW+O02zbmwH9CR7jzaPim9ESDZp+p0f/9cuPqEZ9 NMCjGn6LxqZYjvrGRPOVmSdHG89A1tZnOKJ7LQY0vBRpykzzfVMt5dNjUjKOB29o0IhBU9NexMSO nDznNY3iN2Emthqbyq9iM+EpzpeW3UIYJsb0yj0ybuoLRjPnuqK31BIWTRr/VCYFpEwsIC2af+nD IsNqBUyMZAVkA8bJJdjlKo4LTAQxw2xtN0FZ/7kaUlgoSLVSaNaqMbRSkinZ+zhR9lTfMxpHT086 65uPjLFBv6iIZnYRQBVaxG46RJftn/KWImrkOogym2Fs7i+/A7LHo5jsstktzVs2YijNATfjMAUJ rUZd40NULcsNsLsoiZdsgukkFFS6AyIsRAolYGyeWsiSBDiFO0n2p6B15xzYevxpcNbQGa4bze2a s/7p7ilyuvXZByOxuVTD0clR7+TRo57ReNizhyePeken5qNV1+8o/Lh33EfhXN+XF1byRu+EHn60 RinDeazAsOrQLPrfNFORmho3LHfPsfI1YhiH84wJLh0uY3jQ4tBDJKpe6SbYCWCgMcSqSgEsPFqr tBxfM/Jgbds30E3xEFX++OLbn+Ut3Xd1cvindmLy3lNfSJnkw7OB6Q+GJ4+GJBzPn7/igzRRfxhs /t56gwJkP3+5HW3G2IBzSLpIFBGNEZlVwqJ+NI4cdeCgDCFzZNhntEH+JI7fjXoki0tsOtJnFrB5 nNUQLd7FI4dXldIBXIWSjDeLScGeBck0d8RWOy+RC51Jn/Qvih6vQiv7Xnz7lbCYnGVhtyrUkIqH tgnWwS3vqfDB5yAtVelybMWQUJauWuhGrZK5eHTHol8t0ggyrdAbbhRnvqgiU78FvviPMw+sw/uJ pDHTcabS0wCq8DwilbrQWWI32vBx+nbw75M/4aXBySnjr5bUFg3FX8RTHkA7M2eAmFTQmoiqLqq8 g4lAHvdMIiPnCn7wdd5OswBCjeRwpAySKEtCPeDTlLMs6gFrU5GbCDXFntxHwZgKJQz7OaAM4lYD 5QoGi55rgQ4AMWyZ0dTQnPCQazT045a1WkH/Jvt4p7ULJ+iuwql0zpuO63C21DvHv7r8kfnlXQCW jDbq1INTaL9KiR4zdTaXDJSseXDLW8Hqqo2zlnkw49Pm+97t8jgUSOJF9E9eBo26HuC7zVQQ340b 5YsJruUS20Z9k+fEqmrZRH7U5/tARkQzvMbt51ihcSysyJBFlN7wjpC8s3Y3LSPnSDCilRhlEnTB 3IBYNtwedbWaTgswnjWPEj5WllU+4h0fCgKQSDBb/I7PRS9ouI8enfIqG7EBI7EZc9zqvgi7o+UK F9B2rpluXh3Fg/5knKWjg5a7ppYnJlQbxTuqF3CIFocwj/RUPL0q+Yhoe4bdkiZssppZNMMHmhp1 H88pTgG9/Txmbsbl9kwSK4kcbcEHaynvO27eyzH+lou9WBU5iBcXThdT2diHAe4/+8/+s//sP/vP /rP/7D/7z/6z/+w/+88f6fMfLbfCeACgAAA= ------_=_NextPart_000_01C31FEB.F7D47F20-- From owner-freebsd-net@FreeBSD.ORG Wed May 21 18:01:22 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8028337B404 for ; Wed, 21 May 2003 18:01:22 -0700 (PDT) Received: from out002.verizon.net (out002pub.verizon.net [206.46.170.141]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6099343F3F for ; Wed, 21 May 2003 18:01:21 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.60.214]) by out002.verizon.net (InterMail vM.5.01.05.33 201-253-122-126-133-20030313) with ESMTP id <20030522010120.FXBG13328.out002.verizon.net@mac.com> for ; Wed, 21 May 2003 20:01:20 -0500 Message-ID: <3ECC215C.7040309@mac.com> Date: Wed, 21 May 2003 21:01:16 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4b) Gecko/20030507 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org References: <1159.192.168.1.194.1053360712.squirrel@intranet.el.com.br> <1254.192.168.1.194.1053435227.squirrel@intranet.el.com.br> <3ECA74B8.8010108@mac.com> <20030521110342.D50883@news1.macomnet.ru> In-Reply-To: <20030521110342.D50883@news1.macomnet.ru> X-Enigmail-Version: 0.75.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out002.verizon.net from [129.44.60.214] at Wed, 21 May 2003 20:01:20 -0500 Subject: Re: Bridge + arp messages... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 01:01:22 -0000 Maxim Konovalov wrote: [ ... ] > It doesn't but it does support a simple loop detection algorithm: > > sys/net/bridge.c, line #707 Which is the code that produces the warning messages Gilson de Paiva saw, of course. I'm quite willing to believe that FreeBSD's loop detection works great for the situation where bridged interfaces are put on the same subnet. -- -Chuck #if defined(SENSE_OF_HUMOR) Spanning tree protocol, link aggregation (or "port trunking", etc), and other layer-2 stuff found in managed switches still have their uses. For some odd reason, a Tom Lehrer song about Werner von Braun is coming to mind-- "FreeBSD forwards the packets, who cares whether they loop around." :-) #endif From owner-freebsd-net@FreeBSD.ORG Thu May 22 00:04:48 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0CFD837B401 for ; Thu, 22 May 2003 00:04:48 -0700 (PDT) Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 00DF543F93 for ; Thu, 22 May 2003 00:04:47 -0700 (PDT) (envelope-from ericdahan@MEIway.com) Received: from VirusGate.MEIway.com (virus-gate.meiway.com [212.73.210.91]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id 94AADEF439; Thu, 22 May 2003 08:56:40 +0200 (CEST) Received: from localhost (localhost.meiway.com [127.0.0.1]) by VirusGate.MEIway.com (Postfix) with SMTP id BD71C5D009; Thu, 22 May 2003 09:06:25 +0200 (CEST) Received: from ms1.meiway.com (ms1.meiway.com [212.73.210.73]) by VirusGate.MEIway.com (Postfix) with ESMTP id 390F95D008; Thu, 22 May 2003 09:06:25 +0200 (CEST) Received: from EDA_VAIO.meiway.com [193.252.44.38] by ms1.meiway.com with ESMTP (SMTPD32-6.06) id ABAA9BE005E; Thu, 22 May 2003 09:26:34 +0200 Message-Id: <5.2.0.9.2.20030522090235.02b3a770@ms1.meiway.com> X-Sender: ericdahan@meiway.com@ms1.meiway.com X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Thu, 22 May 2003 09:04:17 +0200 To: "Jason Burgess" From: Eric Dahan In-Reply-To: <3BD4A5842C8AE2428158AB1EE6DCC3774E10@mail.fbfguns.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Content-Filtered-By: Mailman/MimeDel 2.1.1 cc: freebsd-net@freebsd.org Subject: RE: PCI ADSL card X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 07:04:48 -0000 At 13:44 21/05/2003 -0500, you wrote: >Eric, > > I don't know that I could bring myself to recommend a PCI ADSL > card to anyone for any Operating System. I've never seen work well > enough to satisfy me. IMHO, you should always go with the external > Ethernet based models. > > Jason Burgess > jb@fbfguns.com Thanks. >Hi All, > >Can anyone recommend a lower-price-range PCI ADSL card for Freebsd 4.8 R ? > >Thanks. From owner-freebsd-net@FreeBSD.ORG Thu May 22 06:05:27 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4204537B401 for ; Thu, 22 May 2003 06:05:27 -0700 (PDT) Received: from mail.sandvine.com (sandvine.com [199.243.201.138]) by mx1.FreeBSD.org (Postfix) with ESMTP id E418C43FA3 for ; Thu, 22 May 2003 06:05:25 -0700 (PDT) (envelope-from ddolson@sandvine.com) Received: by mail.sandvine.com with Internet Mail Service (5.5.2653.19) id ; Thu, 22 May 2003 09:05:24 -0400 Message-ID: From: Dave Dolson To: 'Julian Elischer' , Vincent Jardin Date: Thu, 22 May 2003 09:05:23 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" cc: freebsd-net@freebsd.org Subject: RE: netgraph: why does ng_ether bother enqueuing packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 13:05:27 -0000 Julian Elischer wrote: > On Wed, 21 May 2003, Vincent Jardin wrote: > > > Le Mercredi 21 Mai 2003 23:03, Dave Dolson a =E9crit : > > > For reasons of performance, I tried the following modification to > > > ng_ether.c in FreeBSD 4.7, and it seemed to work fine. > > > The change is to call ng_send_data() vs. ng_queue_data(). > > The change is ok as long as you know that you are at splnet. I was trying to understand why it would be wrong to call ng_send_data from an interrupt running at splimp(). Is this the correct explanation: The netgraph (and most of net) code protects its data structures at splnet() under the assumption that no routine capable of interrupting it will affect those data structures. And the ether device interrupt routine can interrupt code at splnet(). BTW, in FreeBSD how does one determine the spl level at which a device's interrupt routines execute? Thanks for the feedback, David Dolson (ddolson@sandvine.com, www.sandvine.com) From owner-freebsd-net@FreeBSD.ORG Thu May 22 11:42:00 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 769B737B401 for ; Thu, 22 May 2003 11:42:00 -0700 (PDT) Received: from sccrmhc02.attbi.com (sccrmhc02.attbi.com [204.127.202.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id BE68143FAF for ; Thu, 22 May 2003 11:41:59 -0700 (PDT) (envelope-from julian@elischer.org) Received: from interjet.elischer.org (12-232-168-4.client.attbi.com[12.232.168.4]) by attbi.com (sccrmhc02) with ESMTP id <20030522184158002002khjqe>; Thu, 22 May 2003 18:41:58 +0000 Received: from localhost (localhost.elischer.org [127.0.0.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id LAA83110; Thu, 22 May 2003 11:41:57 -0700 (PDT) Date: Thu, 22 May 2003 11:41:54 -0700 (PDT) From: Julian Elischer To: Dave Dolson In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-net@freebsd.org Subject: RE: netgraph: why does ng_ether bother enqueuing packets? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 May 2003 18:42:00 -0000 On Thu, 22 May 2003, Dave Dolson wrote: > > Julian Elischer wrote: > > On Wed, 21 May 2003, Vincent Jardin wrote: > > > > > Le Mercredi 21 Mai 2003 23:03, Dave Dolson a =E9crit : > > > > For reasons of performance, I tried the following modification to > > > > ng_ether.c in FreeBSD 4.7, and it seemed to work fine. > > > > The change is to call ng_send_data() vs. ng_queue_data(). > > > > The change is ok as long as you know that you are at splnet. > > I was trying to understand why it would be wrong to call ng_send_data from > an interrupt running at splimp(). > > Is this the correct explanation: > The netgraph (and most of net) code protects its data structures at splnet() > under the assumption that no routine capable of interrupting it will affect > those data structures. And the ether device interrupt routine can interrupt > code at splnet(). yes. it upgrades itself to splimp at crucial points (i.e. when passing data to the driver or dequeueing data from the queue) > > BTW, in FreeBSD how does one determine the spl level at which a device's > interrupt routines execute? > When you declare the interrupt driver that information is a part of the declaration (either if you folllow the pointers). > > Thanks for the feedback, > David Dolson (ddolson@sandvine.com, www.sandvine.com) > > From owner-freebsd-net@FreeBSD.ORG Thu May 22 17:00:07 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E191737B404 for ; Thu, 22 May 2003 17:00:07 -0700 (PDT) Received: from athenas.yan.com.br (athenas.yan.com.br [200.202.253.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 70A2E43FA3 for ; Thu, 22 May 2003 17:00:05 -0700 (PDT) (envelope-from ddg@yan.com.br) Received: (qmail 9675 invoked by uid 1023); 22 May 2003 20:58:30 -0300 Message-ID: <20030522235830.9674.qmail@athenas.yan.com.br> To: freebsd-config@freebsd.org, freebsd-security@freebsd.org, freebsd-hackers@freebsd.org, freebsd-net@freebsd.org From: "ddg" Date: Thu, 22 May 2003 20:58:30 --300 X-Priority: 3 X-Mailer: Yan Internet Webmail 1.0 X-Originating-IP: [200.202.253.162] MIME-Version: 1.0 Content-Type: text/plain; charset= X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: VPN IPSEC WIRELESS X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 00:00:08 -0000 I am having problems in the implementation of a VPN, below made a project of my net: INTRANET (10.0.0.0/24) | 10.0.0.5 xl0 NetBSD IPNAT ( map wi0 10.0.0.0/24 -> 192.168.213.10 ) wi0 192.168.213.10/30 | | Wireless VPN | | 192.168.213.9/30 xl2 FreeBSD NATD ( divert natd all from any to any ) xl0 200.x.x.5/24 | 200.x.x.1/24 Router | | INTERNET NetBSD Node ( ipsec.conf ): spdadd 192.168.213.10 0.0.0.0/0 any -P out ipsec esp/tunnel/192.168.213.10-192.168.213.9/require; spdadd 0.0.0.0/0 192.168.213.10 any -P in ipsec esp/tunnel/192.168.213.9-192.168.213.10/require; FreeBSD Node ( ipsec.conf ): spdadd 0.0.0.0/0 192.168.213.10 any -P out ipsec esp/tunnel/192.168.213.9-192.168.213.10/require; spdadd 192.168.213.10 0.0.0.0/0 any -P in ipsec esp/tunnel/192.168.213.10-192.168.213.9/require; The connection between the NetBSD and the FreeBSD work correctly. The problem is when I make a connection of the computer with IP 10.0.0.1 to an IP in the Internet. I do not know to make a rule for ipsec.conf that he makes with that the connections of 10.0.0.0/24 are directed for inside of tunnel. Somebody knows the solution? []s Daniel Dias Gonçalves f22@netbsd.com.br ---- From owner-freebsd-net@FreeBSD.ORG Fri May 23 06:14:17 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B39D037B401 for ; Fri, 23 May 2003 06:14:17 -0700 (PDT) Received: from postfix4-1.free.fr (postfix4-1.free.fr [213.228.0.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id 253E743FAF for ; Fri, 23 May 2003 06:14:13 -0700 (PDT) (envelope-from zel@free.fr) Received: from imp4-1.free.fr (imp4-1.free.fr [213.228.0.57]) by postfix4-1.free.fr (Postfix) with ESMTP id 33BB53AF19 for ; Fri, 23 May 2003 15:14:12 +0200 (CEST) Received: by imp4-1.free.fr (Postfix, from userid 33) id CFE415537; Fri, 23 May 2003 15:14:11 +0200 (CEST) To: freebsd-net@freebsd.org Message-ID: <1053695651.3ece1ea3c3b66@imp.free.fr> Date: Fri, 23 May 2003 15:14:11 +0200 (CEST) From: zel@free.fr MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 81.80.243.157 Subject: FreeBSD firewall and irc problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 13:14:18 -0000 I have a 486DX2/66 16Mo RAM which hosting a FreeBSD proxy-firewall. But behind, client computers should use some IRC like MSN. How can i do to let connect the MSN client to its server. I red some docs like the IP-Tunnel feature but I don't know how to set up it. Thanks Sylvain From owner-freebsd-net@FreeBSD.ORG Fri May 23 08:45:46 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3203C37B404; Fri, 23 May 2003 08:45:46 -0700 (PDT) Received: from srv00.el.com.br (srv00.el.com.br [200.179.165.123]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2B24F43F75; Fri, 23 May 2003 08:45:45 -0700 (PDT) (envelope-from g-paiva@el.com.br) Received: from intranet.el.com.br (srv00.el.com.br [200.179.165.123]) by srv00.el.com.br (elsmtp) with SMTP id 2DA097103C; Fri, 23 May 2003 12:45:39 -0300 (BRT) Received: from 192.168.1.39 (SquirrelMail authenticated user g-paiva) by intranet.el.com.br with HTTP; Fri, 23 May 2003 12:45:39 -0300 (BRT) Message-ID: <1091.192.168.1.39.1053704739.squirrel@intranet.el.com.br> Date: Fri, 23 May 2003 12:45:39 -0300 (BRT) From: "Paiva, Gilson de" To: freebsd-questions@freebsd.org, freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.0 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 X-Priority: 3 Importance: Normal Subject: 3 NICs NAT setup, almost there ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 15:45:46 -0000 Hi, Take this scenario: xxx/26 yyy/26 internet --- ep0 freebsd rl0 --- wired clients ep1 | private ip ( 192.168.1.0/24 ) | wireless I have to nat packets with destination to an ip xxx/26 to an ip at private ip net. So far so good with "common" redirect_address nat configuration. The problem happens with traffic between net yyy/26 and the private network ( and vice-versa ) because packets get routed to destination before they get translated by natd. What´s the secret ? I tried everything I known and learned from reading but no setup could work out. Any comments, -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Paiva, Gilson de Domingos Martins mailto:npd@el.com.br Brazil http://www.el.com.br/ E&L Producoes de Software http://www.FreeBSD.org/ FreeBSD: The Power to Serve =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ------------------------------------------------------------------------------ Aviso Legal: Esta mensagem pode nao expressar oficialmente as ideias ou vontades da empresa E&L Producoes de Software, sendo responsavel por esta exclusivamente seu autor. From owner-freebsd-net@FreeBSD.ORG Fri May 23 09:49:09 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 26DDB37B401; Fri, 23 May 2003 09:49:09 -0700 (PDT) Received: from pit.databus.com (p70-227.acedsl.com [66.114.70.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id 243B643FB1; Fri, 23 May 2003 09:49:08 -0700 (PDT) (envelope-from barney@pit.databus.com) Received: from pit.databus.com (localhost [127.0.0.1]) by pit.databus.com (8.12.9/8.12.9) with ESMTP id h4NGn29r036699; Fri, 23 May 2003 12:49:02 -0400 (EDT) (envelope-from barney@pit.databus.com) Received: (from barney@localhost) by pit.databus.com (8.12.9/8.12.9/Submit) id h4NGn2Y2036698; Fri, 23 May 2003 12:49:02 -0400 (EDT) Date: Fri, 23 May 2003 12:49:02 -0400 From: Barney Wolff To: "Paiva, Gilson de" Message-ID: <20030523164902.GA36660@pit.databus.com> References: <1091.192.168.1.39.1053704739.squirrel@intranet.el.com.br> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <1091.192.168.1.39.1053704739.squirrel@intranet.el.com.br> User-Agent: Mutt/1.4.1i X-Scanned-By: MIMEDefang 2.33 (www . roaringpenguin . com / mimedefang) cc: freebsd-net@freebsd.org cc: freebsd-questions@freebsd.org Subject: Re: 3 NICs NAT setup, almost there ... X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 May 2003 16:49:09 -0000 On Fri, May 23, 2003 at 12:45:39PM -0300, Paiva, Gilson de wrote: > Hi, > > Take this scenario: > > > xxx/26 yyy/26 > internet --- ep0 freebsd rl0 --- wired clients > ep1 > | private ip ( 192.168.1.0/24 ) > | > wireless > > I have to nat packets with destination to an ip xxx/26 to an ip at private > ip net. So far so good with "common" redirect_address nat configuration. > The problem happens with traffic between net yyy/26 and the private > network ( and vice-versa ) because packets get routed to destination > before they get translated by natd. > What´s the secret ? I tried everything I known and learned from reading > but no setup could work out. I'd use ipfw and natd, and run two instances of natd listening on different divert sockets. Rules in ipfw can divert the packets to the right natd depending on where the packets are coming from or going to. -- Barney Wolff http://www.databus.com/bwresume.pdf I'm available by contract or FT, in the NYC metro area or via the 'Net.