From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 00:01:55 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7033016A420 for ; Sun, 25 Nov 2007 00:01:55 +0000 (UTC) (envelope-from rrichard@blythe-systems.com) Received: from mail3.panix.com (mail3.panix.com [166.84.1.74]) by mx1.freebsd.org (Postfix) with ESMTP id 02D7013C468 for ; Sun, 25 Nov 2007 00:01:54 +0000 (UTC) (envelope-from rrichard@blythe-systems.com) Received: from mailspool3.panix.com (mailspool3.panix.com [166.84.1.78]) by mail3.panix.com (Postfix) with ESMTP id 5578213A79F for ; Sat, 24 Nov 2007 19:01:54 -0500 (EST) Received: from tania.servebbs.org (pool-141-157-246-57.ny325.east.verizon.net [141.157.246.57]) by mailspool3.panix.com (Postfix) with ESMTP id E49F716996 for ; Sat, 24 Nov 2007 19:01:53 -0500 (EST) Date: Sun, 25 Nov 2007 00:01:36 +0000 From: Bob Richards To: Message-ID: <20071125000136.415caa11@tania.servebbs.org> In-Reply-To: References: <4741BD57.9070800@networktest.com> Organization: blythe Systems X-Mailer: Claws Mail 3.0.2 (GTK+ 2.12.1; i386-portbld-freebsd6.1) X-Face: +\{75whsIB]=i--WqkV^U>!y`<~%(FUd, DQs, &e1yLt==9%It?7#?n>%Splqb, lDIEu%WsB7o+6k2n`6Q5Fl, vJei{$-.KlHPHu/.~VuE=C[}lQmL}>V1t\yTn2iTwCfM`% Mime-Version: 1.0 Content-Type: multipart/signed; boundary="Sig_/gZqe0096p=SGMjPsqooRoos"; protocol="application/pgp-signature"; micalg=PGP-SHA1 Subject: Re: dealing with a failing drive X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 00:01:55 -0000 --Sig_/gZqe0096p=SGMjPsqooRoos Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable > Compaq uses several RAID cards most are under the so-called > "SmartArray" using the ida driver. If this is yours, you can > use a utility called "idacontrol" that can monitor the array, Interesting discussion! I have a similar issue, only it is with a Dell server which has 6 SCSI drives in a hardware raid array. The controller is a Dell PERC 2/Si. Is there an equivalent monitor utility for this as well? I am currently running: FreeBSD 6.1-RELEASE-p20 #2. TIA Bob --Sig_/gZqe0096p=SGMjPsqooRoos Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iD8DBQFHSLtgCiULygfUvEMRAsXNAKCoMyyFYBe+5XLNBMPmri768LArwgCfWDFU y8yYjHynHzW7XIIhc6BzpJI= =Bzxq -----END PGP SIGNATURE----- --Sig_/gZqe0096p=SGMjPsqooRoos-- From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 00:05:34 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 51CE016A494 for ; Sun, 25 Nov 2007 00:05:34 +0000 (UTC) (envelope-from robert@ml.erje.net) Received: from smtpout-2.iphouse.net (smtpout-2.iphouse.net [216.250.188.191]) by mx1.freebsd.org (Postfix) with ESMTP id CBFB513C46B for ; Sun, 25 Nov 2007 00:05:33 +0000 (UTC) (envelope-from robert@ml.erje.net) Received: from smtpout-2.iphouse.net (localhost [127.0.0.1]) by outbound-clamsmtpd.iphouse.net (Postfix) with ESMTP id 1F4142AC4BC for ; Sat, 24 Nov 2007 17:50:29 -0600 (CST) Received: from ziemel.erje.net (erje.net [80.126.62.176]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtpout-2.iphouse.net (Postfix) with ESMTP id 9C5AE2AC481 for ; Sat, 24 Nov 2007 17:50:28 -0600 (CST) Received: from ismet.erje.net (ismet.erje.net [IPv6:2001:888:1f33::8e45:7e]) by ziemel.erje.net (PostFix 2.4.5) with ESMTP id 9DE581287B4 for ; Sun, 25 Nov 2007 00:49:23 +0100 (CET) Received: (from robert@localhost) by ismet.erje.net (8.13.8/8.13.8/Submit) id lAONnN1m014370 for freebsd-questions@freebsd.org; Sun, 25 Nov 2007 00:49:23 +0100 (CET) (envelope-from robert@ml.erje.net) X-Authentication-Warning: ismet.erje.net: robert set sender to robert@ml.erje.net using -f Date: Sun, 25 Nov 2007 00:49:22 +0100 From: Robert Joosten To: freebsd-questions@freebsd.org Message-ID: <20071124234922.GS1918@iphouse.com> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.17 (2007-11-01) X-ziemel.erje.net-MailScanner: Ok, found to be clean X-Spam-Status: No X-Virus-Scanned: ClamAV using ClamSMTP Subject: Re: Help with a new port? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 00:05:34 -0000 Hi, > I have a new port which I feel should be included in the FreeBSD > accessibility category, if only because I noticed its absence in > searching for it. Have you read http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/index.html yet ? I don't use ports myself and never ported anything but I've read that guide a long time ago and to me it seemed quite easy to do. Happy porting. Regards, Robert From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 01:06:10 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 464B416A418 for ; Sun, 25 Nov 2007 01:06:10 +0000 (UTC) (envelope-from freebsd-questions@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.freebsd.org (Postfix) with ESMTP id AD85113C44B for ; Sun, 25 Nov 2007 01:06:09 +0000 (UTC) (envelope-from freebsd-questions@m.gmane.org) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1Iw5v4-0004fs-H9 for freebsd-questions@freebsd.org; Sun, 25 Nov 2007 01:04:22 +0000 Received: from 193.sub-70-193-2.myvzw.com ([70.193.2.193]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 25 Nov 2007 01:04:22 +0000 Received: from Z_kline by 193.sub-70-193-2.myvzw.com with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sun, 25 Nov 2007 01:04:22 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-questions@freebsd.org From: "Zachary Kline" Date: Sat, 24 Nov 2007 17:01:36 -0800 Lines: 21 Message-ID: References: <20071124234922.GS1918@iphouse.com> X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: 193.sub-70-193-2.myvzw.com X-MSMail-Priority: Normal X-Newsreader: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 X-RFC2646: Format=Flowed; Original X-Antivirus: avast! (VPS 071124-0, 11/24/2007), Outbound message X-Antivirus-Status: Clean Sender: news Subject: Re: Help with a new port? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 01:06:10 -0000 "Robert Joosten" wrote in message news:20071124234922.GS1918@iphouse.com... > Hi, > >> I have a new port which I feel should be included in the FreeBSD >> accessibility category, if only because I noticed its absence in >> searching for it. > > Have you read > http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/index.html > yet ? > I must confess I haven't. I'll look into it and see what comes up. Currently trying to figure out how to get ports upgraded in a sane fashion as well, as I've noticed some of the packages are quite behind in comparison to the ports they're based on. Thanks, Zack. From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 01:18:44 2007 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 50E0816A419 for ; Sun, 25 Nov 2007 01:18:44 +0000 (UTC) (envelope-from david+dated+1196384513.9a9c53@skytracker.ca) Received: from 3s1.com (3s1.com [209.161.205.12]) by mx1.freebsd.org (Postfix) with ESMTP id DC96313C442 for ; Sun, 25 Nov 2007 01:18:42 +0000 (UTC) (envelope-from david+dated+1196384513.9a9c53@skytracker.ca) Received: from 3s1.com (localhost [127.0.0.1]) by 3s1.com (8.13.8/8.13.8) with ESMTP id lAP11sFe096303 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Sat, 24 Nov 2007 20:01:54 -0500 (EST) (envelope-from david+dated+1196384513.9a9c53@skytracker.ca) Received: (from david@localhost) by 3s1.com (8.13.8/8.14.1/Submit) id lAP11sSV096302 for questions@freebsd.org; Sat, 24 Nov 2007 20:01:54 -0500 (EST) (envelope-from david+dated+1196384513.9a9c53@skytracker.ca) X-Authentication-Warning: 3s1.com: david set sender to david+dated+1196384513.9a9c53@skytracker.ca using -f Received: by 3s1.com (tmda-sendmail, from uid 1000); Sat, 24 Nov 2007 20:01:53 -0500 Date: Sat, 24 Nov 2007 20:01:53 -0500 To: questions@freebsd.org Message-ID: <20071125010152.GA94883@skytracker.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.2i X-Delivery-Agent: TMDA/1.1.11 (Ladyburn) From: David Banning X-Spam-Status: No, score=-1.4 required=5.0 tests=ALL_TRUSTED autolearn=failed version=3.2.3 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on 3s1.com Cc: Subject: what is needed for realplayer X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 01:18:44 -0000 I have been using realplayer for years and it has worked fine. All of a sudden I get a Segmentation fault: 11 error and core dump. I did a portupgrade on both realplayer and linux_base with no improvement. Presently using 6.2-RELEASE FreeBSD. I wondered about even just a simple test to see if linux_base is working. Any pointers would be helpful - From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 02:04:25 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5F1FC16A421 for ; Sun, 25 Nov 2007 02:04:25 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from mxout3.cac.washington.edu (mxout3.cac.washington.edu [140.142.32.166]) by mx1.freebsd.org (Postfix) with ESMTP id 2A57113C448 for ; Sun, 25 Nov 2007 02:04:25 +0000 (UTC) (envelope-from youshi10@u.washington.edu) Received: from smtp.washington.edu (smtp.washington.edu [140.142.32.139]) by mxout3.cac.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lAP24BEx003654 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Sat, 24 Nov 2007 18:04:11 -0800 X-Auth-Received: from [128.208.5.249] (lodovico.cs.washington.edu [128.208.5.249]) (authenticated authid=youshi10) by smtp.washington.edu (8.13.7+UW06.06/8.13.7+UW07.09) with ESMTP id lAP24BJP022418 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sat, 24 Nov 2007 18:04:11 -0800 Message-ID: <4748D803.1040807@u.washington.edu> Date: Sat, 24 Nov 2007 18:03:47 -0800 From: Garrett Cooper User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: Jonathan Horne References: <200711241707.05859.freebsd@dfwlp.com> In-Reply-To: <200711241707.05859.freebsd@dfwlp.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-PMX-Version: 5.3.3.310218, Antispam-Engine: 2.5.2.313940, Antispam-Data: 2007.11.24.173950 X-Uwash-Spam: Gauge=IIIIIII, Probability=7%, Report='BODY_SIZE_800_899 0, __CT 0, __CTE 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0, __USER_AGENT 0' Cc: freebsd-questions@freebsd.org Subject: Re: problems with self-built packages X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 02:04:25 -0000 Jonathan Horne wrote: > for a while now, ive been experimenting with building a package of everything > i build from ports, or via portupgrade, and then using said packages to > quickly update other systems on my network. never had any problems, until > recently. lately, it seems like a port here or there will be missing a > critical piece from the bzip file thats created in ports/packages/All. > > i have seen this in the past few revisions of apache2.2(the rc script and data > directory missing), and today, xorg-server did the same thing (this time, the > file 'startx' was left out). > > does anyone else keep the packages they build, and if so, are you also seeing > issues like this? > I haven't tried, but based on what you're saying it sounds like the plist is incorrect or something.. pkg_create(1) / port Makefile related bug? -Garrett From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 02:18:05 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 56D4616A417 for ; Sun, 25 Nov 2007 02:18:05 +0000 (UTC) (envelope-from hg@queue.to) Received: from pickle.queue.to (pickle.queue.to [71.180.69.18]) by mx1.freebsd.org (Postfix) with ESMTP id 0511D13C45B for ; Sun, 25 Nov 2007 02:18:04 +0000 (UTC) (envelope-from hg@queue.to) Received: (qmail 4787 invoked from network); 24 Nov 2007 21:17:58 -0500 Received: from cally.queue.to (172.16.0.6) by pickle.queue.to with ESMTP; 24 Nov 2007 21:17:58 -0500 Message-ID: <4748DB56.3010206@queue.to> Date: Sat, 24 Nov 2007 21:17:58 -0500 From: Howard Goldstein User-Agent: Thunderbird 2.0.0.9 (X11/20071116) MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: scoll lock - can't unlock in text login after xorg session X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 02:18:05 -0000 Just noticed this, after scroll locking for page up/page down in a text login: I cannot unlock anymore. Does anyone else see this? From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 02:38:18 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5370616A419 for ; Sun, 25 Nov 2007 02:38:18 +0000 (UTC) (envelope-from caioabecia@yahoo.com.br) Received: from smtp110.mail.mud.yahoo.com (smtp110.mail.mud.yahoo.com [209.191.85.220]) by mx1.freebsd.org (Postfix) with SMTP id E051413C469 for ; Sun, 25 Nov 2007 02:38:17 +0000 (UTC) (envelope-from caioabecia@yahoo.com.br) Received: (qmail 13428 invoked from network); 25 Nov 2007 02:11:30 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.br; h=Received:X-YMail-OSG:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MimeOLE:X-Antivirus:X-Antivirus-Status; b=ZVkrcEYPitbI+Y7TyE87Ox/8s1NUtxkro9RbOn2En6rSlTA4f6eN50oBv5nLsmPeiU8XUhvE9/fiNhm/5TlMWn+MKOMCSvuELkUQuTVHRFqF/UJaaUCq3su5Sgd2SvriknDhkx1YWqwJZJC8iuHI5cvX/MxZ2ABxukCBxrpdvwU= ; Received: from unknown (HELO pcaio) (caioabecia@189.18.74.75 with login) by smtp110.mail.mud.yahoo.com with SMTP; 25 Nov 2007 02:11:30 -0000 X-YMail-OSG: aqY4hdcVM1nk0gXSaC3DGJDSB7dD0hzNzA81V0SRuATmc82syaBS0PcSRYpGZj6gd22Y6pqqaQ-- Message-ID: <0dd601c82f08$7cdcd430$010210ac@pcaio> From: "Caio Figueiredo Abecia" To: References: <20071124074812.EE36.GERARD@seibercom.net> Date: Sun, 25 Nov 2007 00:11:25 -0200 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 X-Antivirus: avast! (VPS 071124-0, 24/11/2007), Outbound message X-Antivirus-Status: Clean Subject: Partition to be shared over OSes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 02:38:18 -0000 Hi I have some operation systems installed on a hd in some partitions. I'd like to know if could I have a partition FAT32 in my hd and let my linux/bsd/windows read/write any file there. To that purpose (share a partition to windows/linux/bsd) what's the best solution? My partition to be NTFS and install on each SO (-win) ntfs-3g ? Thank you in advance Caio F. From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 02:58:10 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3211616A418 for ; Sun, 25 Nov 2007 02:58:10 +0000 (UTC) (envelope-from merithium@internode.on.net) Received: from mail.internode.on.net (bld-mail10.adl2.internode.on.net [203.16.214.74]) by mx1.freebsd.org (Postfix) with ESMTP id 7EA0613C45D for ; Sun, 25 Nov 2007 02:58:09 +0000 (UTC) (envelope-from merithium@internode.on.net) Received: from mango (unverified [121.45.20.199]) by mail.internode.on.net (SurgeMail 3.8f2) with ESMTP id 2590818-1927428 for ; Sun, 25 Nov 2007 13:28:05 +1030 (CDT) To: freebsd-questions@freebsd.org From: "Milosh Djuric" Content-Type: text/plain; format=flowed; delsp=yes; charset=iso-8859-15 MIME-Version: 1.0 References: <474850AF.9070001@foster.cc> Content-Transfer-Encoding: 7bit Date: Sun, 25 Nov 2007 13:28:04 +1030 Message-ID: In-Reply-To: <474850AF.9070001@foster.cc> User-Agent: Opera Mail/9.02 (Win32) Subject: Re: VMware FreeBSD to Physical X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 02:58:10 -0000 Hi, The rsync method sounds interesting. Could you give me a quick summary of what I'd need to do? Thanks. On Sun, 25 Nov 2007 02:56:23 +1030, Mark D. Foster wrote: > Milosh Djuric wrote: >> Hi, >> >> I've got a VMWare guest running FreeBSD 6.2 which I'd like to move to >> a physical machine. I've tried ghosting it, but when it gets to the >> "Default: F5 Disk0" screen (sorry, I don't know the appropriate name >> for it), it refuses to go any further. >> >> Can anything be done to fix this? Or is there a better way of doing >> the whole procedure? > See > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-trouble.html#Q2.11.3.3. > > Were I in your shoes I would make sure to run (revert to?) a GENERIC > kernel in the VM then use g4u to image the entire drive(s). But this > will only work if the destination drive is larger than the source. > There are many things that can go wrong in this sort of procedure and > you should plan to be cunning and persistent or fail in your attempts. > It may be that you are using the wrong approach also, because rsync can > be a wonderful alternative for these types of scenarios as can knoppix + > dd + netcat. > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 03:09:52 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 947D116A419 for ; Sun, 25 Nov 2007 03:09:52 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36]) by mx1.freebsd.org (Postfix) with ESMTP id DDDC013C469 for ; Sun, 25 Nov 2007 03:09:51 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from kobe.laptop (dialup242.ach.sch.gr [81.186.70.242]) (authenticated bits=128) by igloo.linux.gr (8.14.1/8.14.1/Debian-9) with ESMTP id lAP39HEI001112 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 25 Nov 2007 05:09:30 +0200 Received: from kobe.laptop (kobe.laptop [127.0.0.1]) by kobe.laptop (8.14.2/8.14.2) with ESMTP id lAP39Bfq004633; Sun, 25 Nov 2007 05:09:11 +0200 (EET) (envelope-from keramida@freebsd.org) Received: (from keramida@localhost) by kobe.laptop (8.14.2/8.14.2/Submit) id lAP395fu004632; Sun, 25 Nov 2007 05:09:05 +0200 (EET) (envelope-from keramida@freebsd.org) Date: Sun, 25 Nov 2007 05:09:05 +0200 From: Giorgos Keramidas To: Zachary Kline Message-ID: <20071125030905.GB4493@kobe.laptop> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Hellug-MailScanner: Found to be clean X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-4.135, required 5, autolearn=not spam, ALL_TRUSTED -1.80, AWL 0.26, BAYES_00 -2.60) X-Hellug-MailScanner-From: keramida@freebsd.org X-Spam-Status: No Cc: freebsd-questions@freebsd.org Subject: Re: Help with a new port? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 03:09:52 -0000 On 2007-11-24 15:24, Zachary Kline wrote: > Hi, > My name is Zachary Kline, Hi Zachary, > Anyway, to get to the point: I'm not quite sure where to ask this. I > have a new port which I feel should be included in the FreeBSD > accessibility category, [...] > This port is Emacspeak, from http://emacspeak.sf.net. It's a screen > reader--though that term isn't really encouraged by the developer--for > the Emacs work environment. I can help with the integration of the new port. I will have a look at the site of the program, but it would be nice if you sent me any porting details/work you have already. Happy FreeBSD'ing :-) From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 03:27:25 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E3DFD16A417 for ; Sun, 25 Nov 2007 03:27:25 +0000 (UTC) (envelope-from mike.jeays@rogers.com) Received: from smtp102.rog.mail.re2.yahoo.com (smtp102.rog.mail.re2.yahoo.com [206.190.36.80]) by mx1.freebsd.org (Postfix) with SMTP id 6A6C013C44B for ; Sun, 25 Nov 2007 03:27:25 +0000 (UTC) (envelope-from mike.jeays@rogers.com) Received: (qmail 93239 invoked from network); 25 Nov 2007 03:00:44 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=rogers.com; h=Received:X-YMail-OSG:From:To:Subject:Date:User-Agent:References:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Content-Disposition:Message-Id; b=2bBjQlT3cRhDOyA2Qn4yxLRGHDqQ6GkgC1rRUDvY9c/ShrFAxLEURw0qAkwcaxmHMHtFQmBzz/MQrUgmn2HN32iMx6x55loEf4X8xIPAwV80yRvCnmQdlYmXUCObQsdxsm/NKe/1a8BZgtbkv2xut0jZ1LphCowK2mX6dbhOFCk= ; Received: from unknown (HELO napoleon.local) (mike.jeays@rogers.com@99.224.73.40 with login) by smtp102.rog.mail.re2.yahoo.com with SMTP; 25 Nov 2007 03:00:44 -0000 X-YMail-OSG: gXqNX0YVM1lAJZSEsR_l3zXL2EJ17uCycYGpxIOzhft__7c564Ph4jeWVcJJesR1mA-- From: Mike Jeays To: freebsd-questions@freebsd.org Date: Sat, 24 Nov 2007 22:01:25 -0500 User-Agent: KMail/1.9.6 (enterprise 0.20070907.709405) References: <20071124074812.EE36.GERARD@seibercom.net> <0dd601c82f08$7cdcd430$010210ac@pcaio> In-Reply-To: <0dd601c82f08$7cdcd430$010210ac@pcaio> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200711242201.25560.mike.jeays@rogers.com> Subject: Re: Partition to be shared over OSes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 03:27:26 -0000 On November 24, 2007 09:11:25 pm Caio Figueiredo Abecia wrote: > Hi > I have some operation systems installed on a hd in some partitions. > I'd like to know if could I have a partition FAT32 in my hd and let my > linux/bsd/windows read/write any file there. > > To that purpose (share a partition to windows/linux/bsd) what's the best > solution? > > My partition to be NTFS and install on each SO (-win) ntfs-3g ? > > Thank you in advance > > Caio F. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" Yes, you can read and write FAT filesystems from Linux and BSD systems. Reading from an NTFS system is generally supported, but writing is still experimental, and I wouldn't recommend it for a production system. -- Mike Jeays http://www.jeays.ca From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 03:37:05 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C25D416A417 for ; Sun, 25 Nov 2007 03:37:05 +0000 (UTC) (envelope-from mark@foster.cc) Received: from QMTA04.emeryville.ca.mail.comcast.net (qmta04.emeryville.ca.mail.comcast.net [76.96.30.40]) by mx1.freebsd.org (Postfix) with ESMTP id 907E913C457 for ; Sun, 25 Nov 2007 03:37:05 +0000 (UTC) (envelope-from mark@foster.cc) Received: from OMTA11.emeryville.ca.mail.comcast.net ([76.96.30.36]) by QMTA04.emeryville.ca.mail.comcast.net with comcast id GqWs1Y0040mlR8U0A03v00; Sun, 25 Nov 2007 03:37:09 +0000 Received: from fosgate.dyndns.org ([24.17.77.253]) by OMTA11.emeryville.ca.mail.comcast.net with comcast id Grd71Y00D5TuUQw0800000; Sun, 25 Nov 2007 03:37:09 +0000 X-Authority-Analysis: v=1.0 c=1 a=81ABGVOTAAAA:8 a=jqC0wcmqvYcc7WD9SD4A:9 a=PwIBq29ey3PoygNp51eCxH9a65gA:4 a=0dRpvnS4h04A:10 Received: from localhost (localhost [127.0.0.1]) by fosgate.dyndns.org (Postfix) with ESMTP id 7351A3982B; Sat, 24 Nov 2007 19:33:09 -0800 (PST) X-Virus-Scanned: amavisd-new at foster.cc Received: from fosgate.dyndns.org ([127.0.0.1]) by localhost (sonar.foster.dmz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XC+-qaAQ4Gfh; Sat, 24 Nov 2007 19:33:06 -0800 (PST) Received: from [192.168.1.9] (monk.foster.dmz [192.168.1.9]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by fosgate.dyndns.org (Postfix) with ESMTP id 0270739828; Sat, 24 Nov 2007 19:33:05 -0800 (PST) Message-ID: <4748EDDB.8090105@foster.cc> Date: Sat, 24 Nov 2007 19:36:59 -0800 From: "Mark D. Foster" User-Agent: Thunderbird 2.0.0.6 (X11/20071022) MIME-Version: 1.0 To: Milosh Djuric References: <474850AF.9070001@foster.cc> In-Reply-To: X-Enigmail-Version: 0.95.0 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: VMware FreeBSD to Physical X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 03:37:05 -0000 Milosh Djuric wrote: > Hi, > > The rsync method sounds interesting. Could you give me a quick summary > of what I'd need to do? > Please don't top post. You can see what I mean about using rsync in this way at http://mark.foster.cc/wiki/index.php/Xen_Clone -- Said one park ranger, 'There is considerable overlap between the intelligence of the smartest bears and the dumbest tourists.' Mark D. Foster, CISSP http://mark.foster.cc/ From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 03:58:32 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 653DC16A41A for ; Sun, 25 Nov 2007 03:58:31 +0000 (UTC) (envelope-from oceanare@pacific.net.sg) Received: from smtpgate2.pacific.net.sg (smtpgate2.pacific.net.sg [203.120.90.32]) by mx1.freebsd.org (Postfix) with SMTP id E216613C455 for ; Sun, 25 Nov 2007 03:58:29 +0000 (UTC) (envelope-from oceanare@pacific.net.sg) Received: (qmail 29758 invoked from network); 25 Nov 2007 03:31:47 -0000 Received: from bb121-7-107-117.singnet.com.sg (HELO P2120.somewherefaraway.com) (oceanare@121.7.107.117) by smtpgate2.pacific.net.sg with ESMTPA; 25 Nov 2007 03:31:47 -0000 Message-ID: <4748EC9F.7000808@pacific.net.sg> Date: Sun, 25 Nov 2007 11:31:43 +0800 From: Erich Dollansky User-Agent: Thunderbird 2.0.0.6 (X11/20070826) MIME-Version: 1.0 To: Caio Figueiredo Abecia References: <20071124074812.EE36.GERARD@seibercom.net> <0dd601c82f08$7cdcd430$010210ac@pcaio> In-Reply-To: <0dd601c82f08$7cdcd430$010210ac@pcaio> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Partition to be shared over OSes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 03:58:32 -0000 Hi, Caio Figueiredo Abecia wrote: > Hi > I have some operation systems installed on a hd in some partitions. > I'd like to know if could I have a partition FAT32 in my hd and let my > linux/bsd/windows read/write any file there. > > To that purpose (share a partition to windows/linux/bsd) what's the best > solution? > > My partition to be NTFS and install on each SO (-win) ntfs-3g ? I get sometimes problems in mounting them after I wrote some GB in one session to them. FAT32 is something much more safer when it comes just to data exchange. I would not keep any kind of data on this partition then. Erich From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 05:10:05 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6972316A41B for ; Sun, 25 Nov 2007 05:10:05 +0000 (UTC) (envelope-from dan@nyi.unixathome.org) Received: from nyi.unixathome.org (nyi.unixathome.org [64.147.113.42]) by mx1.freebsd.org (Postfix) with ESMTP id 2D99813C469 for ; Sun, 25 Nov 2007 05:10:05 +0000 (UTC) (envelope-from dan@nyi.unixathome.org) Received: from localhost (localhost [127.0.0.1]) by nyi.unixathome.org (Postfix) with ESMTP id 816FB508B8 for ; Sun, 25 Nov 2007 05:10:03 +0000 (GMT) X-Virus-Scanned: amavisd-new at unixathome.org Received: from nyi.unixathome.org ([127.0.0.1]) by localhost (nyi.unixathome.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HvikU8epPy3k for ; Sun, 25 Nov 2007 05:10:02 +0000 (GMT) Received: by nyi.unixathome.org (Postfix, from userid 1001) id 1D7AC508B0; Sun, 25 Nov 2007 05:10:01 +0000 (GMT) From: Dan Langille To: freebsd-questions@freebsd.org Message-Id: <20071125051002.1D7AC508B0@nyi.unixathome.org> Date: Sun, 25 Nov 2007 05:10:01 +0000 (GMT) Subject: The FreeBSD Diary: 2007-11-04 - 2007-11-24 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 05:10:05 -0000 The FreeBSD Diary contains a large number of practical examples and how-to guides. This message is posted weekly to freebsd-questions@freebsd.org with the aim of letting people know what's available on the website. Before you post a question here it might be a good idea to first search the mailing list archives and/or The FreeBSD Diary . -- Dan Langille BSDCan - http://www.BSDCan.org/ - BSD Conference From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 05:38:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5365B16A417 for ; Sun, 25 Nov 2007 05:38:31 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id EBD2913C447 for ; Sun, 25 Nov 2007 05:38:30 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAP5cJtu075135; Sat, 24 Nov 2007 21:38:20 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Murray Taylor" , "Tony" , Date: Sat, 24 Nov 2007 21:39:33 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <04E232FDCD9FBE43857F7066CAD3C0F142DE39@svmailmel.bytecraft.internal> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 Importance: Normal Cc: Subject: RE: Squid with a Net nanny type setup.... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 05:38:31 -0000 Or much better yet, do it the way I do it. Load Squid, setup the kids system to use it, then setup squid to only allow the kids to go to a list of sites. As my kids learn about interesting sites they want to go to, -I- visit those sites, and if I decide they are OK, I put them in the approved list. Stuff like dansguardian is, in my opinion, for lazy parents who want to hand off their parental responsibilities to other people. The other thing is that by the time the kid is 14-15 they should be mature enough to make their own choices and deal with what they find. At that time, if your still having to run filtering software, you better turn off Internet access completely and schedule your kid in with some sessions with a psychologist, as seriously, he's got a problem. Ted > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Murray Taylor > Sent: Thursday, November 22, 2007 4:59 PM > To: Tony; freebsd-questions@freebsd.org > Subject: RE: Squid with a Net nanny type setup.... > > > look at dansguardian its in the ports and is excellent for > kid-management > > mjt > > > -----Original Message----- > > From: owner-freebsd-questions@freebsd.org > > [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Tony > > Sent: Friday, 23 November 2007 4:34 AM > > To: freebsd-questions@freebsd.org > > Subject: Squid with a Net nanny type setup.... > > > > Is there a big list if inappropriate websites somewhere that > > I can build > > into squid to keep my kids out of Adult websites? > > > > If not squid is there a better Proxy to use on my FreeBSD firewall for > > that purpose? > > > > > > Thanks, > > > > Tony > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" > > > --------------------------------------------------------------- > The information transmitted in this e-mail is for the exclusive > use of the intended addressee and may contain confidential > and/or privileged material. Any review, re-transmission, > dissemination or other use of it, or the taking of any action > in reliance upon this information by persons and/or entities > other than the intended recipient is prohibited. If you > received this in error, please inform the sender and/or > addressee immediately and delete the material. > > E-mails may not be secure, may contain computer viruses and > may be corrupted in transmission. Please carefully check this > e-mail (and any attachment) accordingly. No warranties are > given and no liability is accepted for any loss or damage > caused by such matters. > --------------------------------------------------------------- > > ### This e-mail message has been scanned for Viruses by Bytecraft ### > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 05:42:17 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 285BC16A41B for ; Sun, 25 Nov 2007 05:42:17 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id B3D6713C448 for ; Sun, 25 Nov 2007 05:42:16 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAP5gF5f075162; Sat, 24 Nov 2007 21:42:15 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "James Shaw" , "Warren Block" Date: Sat, 24 Nov 2007 21:43:28 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <49c554520711200812l629ce15bje66b925d0a6418b1@mail.gmail.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 Importance: Normal Cc: freebsd-questions@freebsd.org Subject: RE: 3Com 3c515-TX Fast Ethernet ISA Card X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 05:42:17 -0000 I have about a dozen 3c509 cards. If you must have ISA cards due to supporting ISA-only hardware, e-mail me off list and I'll box them and ship them all to you. Otherwise, if your hardware has PCI slots then you need to let go of this old hardware. Excellent PCI cards can be had from the used market for a couple bucks. I just picked up a SMC using a real Digital chipset today for $2 from a scrap dealer for a system I'm working on. Just open your eyes and look around. Granted the 3c509 is 10baseT ISA not 100BaseT ISA. But the ISA bus does not have the bandwidth to seriously push even close to what a 10BaseT ethernet can handle, let alone 100BaseT. Ted > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of James Shaw > Sent: Tuesday, November 20, 2007 8:13 AM > To: Warren Block > Cc: freebsd-questions@freebsd.org > Subject: Re: 3Com 3c515-TX Fast Ethernet ISA Card > > > Of course, but I have 6 of these cards and would like to utilize them > in FreeBSD. They seem to run great with OpenBSD and Linux, but my > preference is FreeBSD. > > On Nov 19, 2007 2:59 PM, Warren Block wrote: > > > > On Mon, 19 Nov 2007, James Shaw wrote: > > > > > I'm trying to get an old 3Com 3c515-TX Fast Ethernet ISA Card to > > > work with FreeBSD 7.0-BETA3. So far, the only operating systems I can > > > use this card on are OpenBSD, NetBSD, Linux, and (ugh) Windows. > > > Is there a way to port the OpenBSD (or NetBSD) driver to FreeBSD so > > > we can utilize this card instead of switching OS's? > > > > If that's the card I'm thinking of, I fought with one several years ago > > on a late-model PS/2 (ISA). Can another ISA card be used instead? > > > > -Warren Block * Rapid City, South Dakota USA > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 06:02:23 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EF2B616A41B for ; Sun, 25 Nov 2007 06:02:23 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id A1EAA13C458 for ; Sun, 25 Nov 2007 06:02:23 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAP62L68075313; Sat, 24 Nov 2007 22:02:21 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Andrey Slusar" , "Tek Bahadur Limbu" Date: Sat, 24 Nov 2007 22:03:35 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 In-Reply-To: <864pfbu2fe.fsf@santinel.home.ua> Importance: Normal Cc: freebsd-questions@freebsd.org Subject: RE: Open Source softwares in FreeBSD for web hosting platform X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 06:02:24 -0000 > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Andrey Slusar > Sent: Saturday, November 24, 2007 6:46 AM > To: Tek Bahadur Limbu > Cc: freebsd-questions@freebsd.org > Subject: Re: Open Source softwares in FreeBSD for web hosting platform > > > Fri, 23 Nov 2007 15:49:19 +0545, Tek Bahadur Limbu wrote: > > > I know that this question has been asked on this list in the past. So > > I am sorry for repeating it. > > > However, I would like to know the current answers and views on this > > question. > > > Basically, I want to know which software you might be using as a Site > > configuration and management application for web hosting services. > > > It will be used primarily to control about 500-1000 virtual domains. > > > I know that there are Cpanel and Plesk which are very good commercial > > softwares catering the needs for a good web based management tool. > > > So far, I have only tried out RAQdevil http://www.raqdevil.com/ > > For commercial hostings needs commercial panels. Not really true. It depends on what your charging. If your charging the equivalent of $4.99 a month USD for a light duty site then your customers are cheapskates who are going to be satisfied with whatever you give then, commercial or not. The commercial control panels are appropriate for hosts that are charging some real money for the service. Ted From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 08:46:14 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D660916A417 for ; Sun, 25 Nov 2007 08:46:14 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from smtp.infracaninophile.co.uk (ns0.infracaninophile.co.uk [IPv6:2001:8b0:151:1::1]) by mx1.freebsd.org (Postfix) with ESMTP id 93B2A13C43E for ; Sun, 25 Nov 2007 08:46:13 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1]) by smtp.infracaninophile.co.uk (8.14.1/8.14.1) with ESMTP id lAP8jkWH025861; Sun, 25 Nov 2007 08:45:47 GMT (envelope-from m.seaman@infracaninophile.co.uk) Message-ID: <4749363A.9050102@infracaninophile.co.uk> Date: Sun, 25 Nov 2007 08:45:46 +0000 From: Matthew Seaman Organization: Infracaninophile User-Agent: Thunderbird 2.0.0.9 (X11/20071122) MIME-Version: 1.0 To: Bob Richards References: <4741BD57.9070800@networktest.com> <20071125000136.415caa11@tania.servebbs.org> In-Reply-To: <20071125000136.415caa11@tania.servebbs.org> X-Enigmail-Version: 0.95.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (smtp.infracaninophile.co.uk [IPv6:::1]); Sun, 25 Nov 2007 08:45:47 +0000 (GMT) X-Virus-Scanned: ClamAV 0.91.2/4908/Sun Nov 25 06:57:50 2007 on happy-idiot-talk.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-3.1 required=5.0 tests=AWL,BAYES_00,NO_RELAYS autolearn=ham version=3.2.3 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on happy-idiot-talk.infracaninophile.co.uk Cc: freebsd-questions@freebsd.org Subject: Re: dealing with a failing drive X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 08:46:14 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Bob Richards wrote: > I have a similar issue, only it is with a Dell server which has 6 SCSI > drives in a hardware raid array. The controller is a Dell PERC 2/Si. > > Is there an equivalent monitor utility for this as well? I am currently > running: FreeBSD 6.1-RELEASE-p20 #2. If that's a rebadged LSI MegaRAID card and uses the amr driver under FreeBSD, then there are two packages that may be of interest: sysutils/amrstat amrstat-20070216 Utility for LSI Logic's MegaRAID RAID controllers sysutils/megarc megarc-1.51 LSI Logic's MegaRAID controlling software On the other hand, if it's a rebadged Adaptec RAID controller using the aac driver under FreeBSD then you want: sysutils/aaccli aaccli-1.0 Adaptec SCSI RAID administration tool Cheers, Matthew - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHSTY68Mjk52CukIwRCPEqAJ9Pc4YyFagh7y9jmA2SPOUv7+2bJgCfd21K IGMSIdhSznOl9WTms5Oc0NI= =JgO2 -----END PGP SIGNATURE----- From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 08:52:09 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1E1F016A41A for ; Sun, 25 Nov 2007 08:52:09 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: from smtp5.wlink.com.np (smtp5.wlink.com.np [202.79.32.52]) by mx1.freebsd.org (Postfix) with SMTP id 3399013C448 for ; Sun, 25 Nov 2007 08:52:06 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: (qmail 15666 invoked from network); 25 Nov 2007 08:52:02 -0000 Received: from unknown (HELO smtp1.wlink.com.np) (202.79.32.76) by 0 with SMTP; 25 Nov 2007 08:52:02 -0000 Received: (qmail 47939 invoked by uid 98); 25 Nov 2007 08:52:02 -0000 Received: from 202.79.36.7 by smtp1.wlink.com.np (envelope-from , uid 1009) with qmail-scanner-1.25 (clamdscan: 0.88.4/2205. Clear:RC:1(202.79.36.7):. Processed in 0.044071 secs); 25 Nov 2007 08:52:02 -0000 X-Qmail-Scanner-Mail-From: teklimbu@wlink.com.np via smtp1.wlink.com.np X-Qmail-Scanner: 1.25 (Clear:RC:1(202.79.36.7):. Processed in 0.044071 secs) Received: from [202.79.36.7] (HELO [202.79.36.7]) by smtp1.wlink.com.np (qmail-smtpd) with SMTP; 25 Nov 2007 08:51:55 -0000 (Sun, 25 Nov 2007 14:36:55 +0545) Message-ID: <47493799.5020201@wlink.com.np> Date: Sun, 25 Nov 2007 14:36:37 +0545 From: Tek Bahadur Limbu User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: Ted Mittelstaedt References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Check-By: smtp1.wlink.com.np Spam: No ; 0.2 / 8.0 X-Spam-Status-WL: No, hits=0.2 required=8.0 Cc: Andrey Slusar , freebsd-questions@freebsd.org Subject: Re: Open Source softwares in FreeBSD for web hosting platform X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 08:52:09 -0000 Hi Andrey and Ted, Ted Mittelstaedt wrote: > >> -----Original Message----- >> From: owner-freebsd-questions@freebsd.org >> [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Andrey Slusar >> Sent: Saturday, November 24, 2007 6:46 AM >> To: Tek Bahadur Limbu >> Cc: freebsd-questions@freebsd.org >> Subject: Re: Open Source softwares in FreeBSD for web hosting platform >> >> >> Fri, 23 Nov 2007 15:49:19 +0545, Tek Bahadur Limbu wrote: >> >>> I know that this question has been asked on this list in the past. So >>> I am sorry for repeating it. >>> However, I would like to know the current answers and views on this >>> question. >>> Basically, I want to know which software you might be using as a Site >>> configuration and management application for web hosting services. >>> It will be used primarily to control about 500-1000 virtual domains. >>> I know that there are Cpanel and Plesk which are very good commercial >>> softwares catering the needs for a good web based management tool. >>> So far, I have only tried out RAQdevil http://www.raqdevil.com/ >> For commercial hostings needs commercial panels. > > Not really true. It depends on what your charging. If your charging > the equivalent of $4.99 a month USD for a light duty site then your > customers > are cheapskates who are going to be satisfied with whatever you give > then, commercial or not. > > The commercial control panels are appropriate for hosts that are > charging some real money for the service. I guess you are correct. The price will be equivalent to less than $9.99 a month. I think VHCS or ISPConfig will serve me good. From their sites, both are only available for Linux based systems. Anyway, I will setup VHCS in a Debian box. Once again, thanks alot for your input and suggestions. Thanking you... > > Ted > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > > -- With best regards and good wishes, Yours sincerely, Tek Bahadur Limbu System Administrator (TAG/TDG Group) Jwl Systems Department Worldlink Communications Pvt. Ltd. Jawalakhel, Nepal http://www.wlink.com.np http://teklimbu.wordpress.com From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 08:55:20 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E5FCD16A420 for ; Sun, 25 Nov 2007 08:55:20 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from ozzie.tundraware.com (ozzie.tundraware.com [66.92.130.199]) by mx1.freebsd.org (Postfix) with ESMTP id 9513313C457 for ; Sun, 25 Nov 2007 08:55:19 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [192.168.0.2] (viper.tundraware.com [192.168.0.2]) (authenticated bits=0) by ozzie.tundraware.com (8.14.2/8.14.2) with ESMTP id lAP8tGmO008665 (version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO) for ; Sun, 25 Nov 2007 02:55:16 -0600 (CST) (envelope-from tundra@tundraware.com) Message-ID: <47493871.9050006@tundraware.com> Date: Sun, 25 Nov 2007 02:55:13 -0600 From: Tim Daneliuk Organization: TundraWare Inc. User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: FreeBSD Mailing List Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-tundraware.com-MailScanner-Information: Please contact the ISP for more information X-tundraware.com-MailScanner: Found to be clean X-tundraware.com-MailScanner-From: tundra@tundraware.com X-Spam-Status: No Subject: Dreaded '__mb_sb_limit' Error And What To Do About It X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: tundra@tundraware.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 08:55:21 -0000 On one of my FBSD 6-STABLE machines, I have the system cvsup the latest sources nightly and rebuild (but not install) the system and all relevant kernels. Every week or so, I go to single user and install what was last built (assuming the build worked OK). My last such venture was on 11-20-2007 without problems. Tonight, I tried to do this again, and immediately got hit with the libexec '_mb_sb_limit' symbol missing problem. I fell back to the 11-20-2007 system image, and all is once again well. So, here's my question. Is this a temporary problem that will be resolved at some point before 6.3 is released, or do I have have to rebuild the entire system applications set to get new binaries that don't depend on this symbol? Also, if it is going to be fixed, how will I know it has been before trying another update like this again? TIA, P.S. Rebuilding the apps on this system would be a REAL pain. Here's hoping the fine FBSD developers can find it within themselves to make this symbol once again appear so old binaries will run unchanged. -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/ From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 08:59:28 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C754A16A418 for ; Sun, 25 Nov 2007 08:59:28 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id 762E213C457 for ; Sun, 25 Nov 2007 08:59:28 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAP8xQE6076103; Sun, 25 Nov 2007 00:59:27 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Roger Olofsson" , "Jerahmy Pocott" Date: Sun, 25 Nov 2007 01:00:41 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 In-Reply-To: <4748A115.1010002@passagen.se> Importance: Normal Cc: FreeBSD Questions Subject: RE: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 08:59:28 -0000 The other thing you can do is simply switch back to natd. You didn't say why you decided to switch in the first place. A lot of times people switch because they are having problems with natd. Are you? If not, you should be aware that natd does support more kinds of protocol translations. Ted > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Roger Olofsson > Sent: Saturday, November 24, 2007 2:09 PM > To: Jerahmy Pocott > Cc: FreeBSD Questions > Subject: Re: Difficulties establishing VPN tunnel with IPNAT > > > Hello again Jerahmy, > > I would suggest that you verify what port(s) and protocol(s) 'Sonic Wall > Global VPN Client' needs to work. > > I would also suggest that you look in the logfile from ipf to see what > it's blocking and when. > > My guess is that the VPN client is using a protocol like IPSEC (IP > protocol 50) and possibly port 500 (IKE) for which you will have to > activate the ipnat proxy. > > map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp > > You might also try to disable the blocking of fragged packets. For some > VPN clients this can cause problems. > > Good luck! > > /Roger > > > > Jerahmy Pocott skrev: > > Sorry let me clarify.. > > > > There are two issues, one is connecting to any external VPN, with no > > filter I > > can establish a connection to PPTP VPN, but the 'Sonic Wall Global VPN > > Client' > > still fails to connect even with no filter rules. > > > > The redirect for the CVS server has an ipf rule to allow > traffic on that > > port, but > > users are getting connection refused messages. > > > > I will include my ipf rules, I clearly need some sort of rule to allow > > inbound for > > the VPN to work, though I think the ipnat is breaking the Sonic Wall > > client. Which > > is strange because everything worked fine with ipfw/natd. > > > > Here are my ipf rules: > > > > # Allow all in/out on internel interface > > pass in quick on fxp0 all > > pass out quick on fxp0 all > > > > # Allow all in/out on loopback interface > > pass in quick on lo0 all > > pass out quick on lo0 all > > > > # Allow all out-going on public interface and keep state > > pass out quick on fxp1 proto tcp from any to any flags S keep state > > pass out quick on fxp1 proto udp from any to any keep state > > pass out quick on fxp1 proto icmp from any to any keep state > > > > # Block all inbound traffic from non-routable or reserved address spaces > > block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 > private IP > > block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 > private IP > > block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 > private IP > > block in quick on fxp1 from 127.0.0.0/8 to any #loopback > > block in quick on fxp1 from 0.0.0.0/8 to any #loopback > > block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto-config > > block in quick on fxp1 from 192.0.2.0/24 to any #reserved for docs > > block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster > > interconnect > > block in quick on fxp1 from 224.0.0.0/3 to any #Class D & > E multicast > > # Block frags > > block in quick on fxp1 all with frags > > # Block short tcp packets > > block in quick on fxp1 proto tcp all with short > > # block source routed packets > > block in quick on fxp1 all with opt lsrr > > block in quick on fxp1 all with opt ssrr > > # Block anything with special options > > block in quick on fxp1 all with ipopts > > # Block public pings > > block in quick on fxp1 proto icmp all icmp-type 8 > > # Block ident > > block in quick on fxp1 proto tcp from any to any port = 113 > > # Block all Netbios service. 137=name, 138=datagram, 139=session > > # Block MS/Windows hosts2 name server requests 81 > > block in quick on fxp1 proto tcp/udp from any to any port = 137 > > block in quick on fxp1 proto tcp/udp from any to any port = 138 > > block in quick on fxp1 proto tcp/udp from any to any port = 139 > > block in quick on fxp1 proto tcp/udp from any to any port = 81 > > > > # Allow CVS access > > pass in quick on fxp1 proto tcp/udp from any to any port = 2401 > > > > # Logged Blocking Rules # > > > > # Block nmap OS fingerprint attempts > > block in log first quick on fxp1 proto tcp from any to any flags FUP > > > > # Block all other in coming traffic > > block in log first quick on fxp1 all > > > > Thanks for the help! > > J. > > > > On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: > > > >> Hello Jerahmy, > >> > >> Assuming you want to connect from the outside to your VPN. > >> > >> Have you made sure that port 2401 is open for inbound traffic in your > >> ipf.rules? > >> > >> You might also want to do 'ipnat -C -f '. Man > >> ipnat ;^) > >> > >> Greeting from Sweden > >> /Roger > >> > >> > >> > >> Jerahmy Pocott skrev: > >>> Hello, > >>> I recently decided to give ipf and ipnat a try, previously I had > >>> always been using > >>> ipfw and natd. Since switching over I can no longer establish a VPN > >>> tunnel from > >>> any system behind the gateway. > >>> I did 'ipf -F a' to flush all rules but I was still unable to connect > >>> so I think it's a problem > >>> with ipnat? Also my redirect from ipnat doesn't seem to work either. > >>> These are the only ipnat rules I have: > >>> (fxp1 is the external interface) > >>> # ipnat built in ftp proxy rules > >>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp > >>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp > >>> # CVS Server on Fileserv > >>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp > >>> # nat all out going traffic on fxp1 from internal lan > >>> map fxp1 10.0.0.0/24 -> 0/32 > >>> I can post my firewall rules too if that would help, however with NO > >>> rules set it > >>> still didn't work so I don't think that would help.. (I'm using the > >>> klm which is default > >>> to accept?) > >>> Thanks! > >>> J. > >>> _______________________________________________ > >>> freebsd-questions@freebsd.org mailing list > >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >>> To unsubscribe, send any mail to > >>> "freebsd-questions-unsubscribe@freebsd.org" > >> _______________________________________________ > >> freebsd-questions@freebsd.org mailing list > >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >> To unsubscribe, send any mail to > >> "freebsd-questions-unsubscribe@freebsd.org" > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" > > > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:02:26 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 41AAB16A419 for ; Sun, 25 Nov 2007 09:02:26 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.177]) by mx1.freebsd.org (Postfix) with ESMTP id E91E813C468 for ; Sun, 25 Nov 2007 09:02:25 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so743788pyb for ; Sun, 25 Nov 2007 01:02:25 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:x-enigmail-version:content-type:content-transfer-encoding; bh=7rHYokszBD1J0F8myQ7HZ9SLamfLDtCFlZ60QQLyc00=; b=KKPeO3OrAY2aStFCoZs3dCkk49BEM1mpHURURtqUoG1rkLDuGEl+cT3BF/QQlbhlBmjhJ5tUjW1nyShoz8oJvosNfXnNs7DarD1e8EEoZbacWlk+3hTwuOeHj4X/kxLS/yPgyaOWQMp1jhydNfsH8FUhNqBcwEcu8zQoeNar5KM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=received:message-id:date:from:user-agent:mime-version:to:subject:x-enigmail-version:content-type:content-transfer-encoding; b=jRjMeVKeyGHBEg/lKMxlzynNKjmZx4RGLkRk0/ZC/PQPs6NpDtxO2HkBrNzCswRRTzZ59BjCWMKusBjOqEPF4/mVKRZjvlHY5oFIUymu+W3RYrEHjc81aSexM56WnfLk6RQcQq5GtDf+/9fthRr1AIBGdG4b3lAPqF1PRhU2rOA= Received: by 10.65.114.11 with SMTP id r11mr2841879qbm.1195981344005; Sun, 25 Nov 2007 01:02:24 -0800 (PST) Received: from ?192.168.2.2? ( [67.85.89.184]) by mx.google.com with ESMTPS id f18sm282749qba.2007.11.25.01.02.22 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 25 Nov 2007 01:02:23 -0800 (PST) Message-ID: <47493A1B.3080107@gmail.com> Date: Sun, 25 Nov 2007 04:02:19 -0500 From: "Aryeh M. Friedman" User-Agent: Thunderbird 2.0.0.9 (X11/20071125) MIME-Version: 1.0 To: FreeBSD Questions X-Enigmail-Version: 0.95.5 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: getting a background image to display with xcompmgr X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:02:26 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xcompmgr seems to place itself on top of anything else on the root window thus covering up any xv/feh/xsetroot images... how do I get a background image to display on top of xcompmgr - -- Aryeh M. Friedman Developer, not business, friendly http://www.flosoft-systems.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHSTobJ9+1V27SttsRAjtCAJ0RCggqzJHOi9sZx8c2wroZHHhttACdHcF6 FDpuB7OYsimgRuxqbTAngdc= =UftY -----END PGP SIGNATURE----- From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:10:44 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1CAB616A417 for ; Sun, 25 Nov 2007 09:10:44 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id B445913C44B for ; Sun, 25 Nov 2007 09:10:43 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAP9Af54076172; Sun, 25 Nov 2007 01:10:42 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Tek Bahadur Limbu" Date: Sun, 25 Nov 2007 01:11:56 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 In-Reply-To: <47493799.5020201@wlink.com.np> Importance: Normal Cc: Andrey Slusar , freebsd-questions@freebsd.org Subject: RE: Open Source softwares in FreeBSD for web hosting platform X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:10:44 -0000 > -----Original Message----- > From: Tek Bahadur Limbu [mailto:teklimbu@wlink.com.np] > Sent: Sunday, November 25, 2007 12:52 AM > To: Ted Mittelstaedt > Cc: Andrey Slusar; freebsd-questions@freebsd.org > Subject: Re: Open Source softwares in FreeBSD for web hosting platform > > > Hi Andrey and Ted, > > > Ted Mittelstaedt wrote: > > > >> -----Original Message----- > >> From: owner-freebsd-questions@freebsd.org > >> [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Andrey Slusar > >> Sent: Saturday, November 24, 2007 6:46 AM > >> To: Tek Bahadur Limbu > >> Cc: freebsd-questions@freebsd.org > >> Subject: Re: Open Source softwares in FreeBSD for web hosting platform > >> > >> > >> Fri, 23 Nov 2007 15:49:19 +0545, Tek Bahadur Limbu wrote: > >> > >>> I know that this question has been asked on this list in the past. So > >>> I am sorry for repeating it. > >>> However, I would like to know the current answers and views on this > >>> question. > >>> Basically, I want to know which software you might be using as a Site > >>> configuration and management application for web hosting services. > >>> It will be used primarily to control about 500-1000 virtual domains. > >>> I know that there are Cpanel and Plesk which are very good commercial > >>> softwares catering the needs for a good web based management tool. > >>> So far, I have only tried out RAQdevil http://www.raqdevil.com/ > >> For commercial hostings needs commercial panels. > > > > Not really true. It depends on what your charging. If your charging > > the equivalent of $4.99 a month USD for a light duty site then your > > customers > > are cheapskates who are going to be satisfied with whatever you give > > then, commercial or not. > > > > The commercial control panels are appropriate for hosts that are > > charging some real money for the service. > > I guess you are correct. The price will be equivalent to less than $9.99 > a month. I think VHCS or ISPConfig will serve me good. > > From their sites, both are only available for Linux based systems. > Anyway, I will setup VHCS in a Debian box. > We actually use webmin ourselves. Although, we do not give the users any access to control panels whatsoever. The major thing they use them for is setting up mysql databases, and we make them ask us to do that for them. Since most users don't need to do this, it really isn't much of a support burden. The biggest support burden with users is getting them to figure out how to use their FTP or whatever file transfer software, or publish-shit button on frontpage (thank the maker that MS finally officially struck that product, so we can get away with punting on support of ancient free copies of this. People who can't figure out frontpage don't have any business making websites) Ted From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:12:56 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 721C416A418 for ; Sun, 25 Nov 2007 09:12:56 +0000 (UTC) (envelope-from freebsd@elgert.dk) Received: from pqueuea.post.tele.dk (pqueuea.post.tele.dk [193.162.153.9]) by mx1.freebsd.org (Postfix) with ESMTP id 30FD813C442 for ; Sun, 25 Nov 2007 09:12:56 +0000 (UTC) (envelope-from freebsd@elgert.dk) Received: from pfepc.post.tele.dk (pfepc.post.tele.dk [195.41.46.237]) by pqueuea.post.tele.dk (Postfix) with ESMTP id DE0F8DC0B8 for ; Sun, 25 Nov 2007 09:43:01 +0100 (CET) Received: from elgert.dk (0x573c4cb5.nivaanqu1.broadband.tele.dk [87.60.76.181]) by pfepc.post.tele.dk (Postfix) with SMTP id BD3538A0074 for ; Sun, 25 Nov 2007 09:42:59 +0100 (CET) Received: by elgert.dk (sSMTP sendmail emulation); Sun, 25 Nov 2007 09:42:59 +0100 Date: Sun, 25 Nov 2007 09:42:59 +0100 From: Harry Matthiesen Jensen To: freebsd-questions@freebsd.org Message-ID: <20071125084259.GA1081@mugin.localhost> Mail-Followup-To: freebsd-questions@freebsd.org References: <340a29540711241122g6d2b582av435a7d783e7efcff@mail.gmail.com> <47487F5D.6010103@math.arizona.edu> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <47487F5D.6010103@math.arizona.edu> User-Agent: Mutt/1.5.16 (2007-06-09) Subject: Re: Having problems burning a DVD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:12:56 -0000 On Sat, Nov 24, 2007 at 12:45:33PM -0700, Predrag Punosevac wrote: >> > I think you are probably missing > > perm xpt0 0666 > perm pass0 0666 Which file are these to be set in? > # Misc other devices > > perm cdrom 0666 > perm dvd 0666 > perm rdvd 0666 > perm cd0 0666 > perm acd0 0666 > perm xpt0 0666 > perm pass0 0666 ..and where to set these? Are all to be set in devfs.conf? Thanks in advance -- Mvh/Brgds Harry FreeBSD 8.0-CURRENT #16: Nov 17 08:54:39 CET 2007 i386 From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:23:00 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CEF4316A418 for ; Sun, 25 Nov 2007 09:23:00 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from smtp-vbr10.xs4all.nl (smtp-vbr10.xs4all.nl [194.109.24.30]) by mx1.freebsd.org (Postfix) with ESMTP id 6953113C447 for ; Sun, 25 Nov 2007 09:23:00 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from slackbox.xs4all.nl (slackbox.xs4all.nl [213.84.242.160]) by smtp-vbr10.xs4all.nl (8.13.8/8.13.8) with ESMTP id lAP9Mwsk026124; Sun, 25 Nov 2007 10:22:59 +0100 (CET) (envelope-from rsmith@xs4all.nl) Received: by slackbox.xs4all.nl (Postfix, from userid 1001) id 6D184B8F8; Sun, 25 Nov 2007 10:22:58 +0100 (CET) Date: Sun, 25 Nov 2007 10:22:58 +0100 From: Roland Smith To: Zachary Kline Message-ID: <20071125092258.GA68038@slackbox.xs4all.nl> Mail-Followup-To: Zachary Kline , freebsd-questions@freebsd.org References: <20071124234922.GS1918@iphouse.com> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="SUOF0GtieIMvvwua" Content-Disposition: inline In-Reply-To: X-GPG-Fingerprint: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 X-GPG-Key: http://www.xs4all.nl/~rsmith/pubkey.txt X-GPG-Notice: If this message is not signed, don't assume I sent it! User-Agent: Mutt/1.5.16 (2007-06-09) X-Virus-Scanned: by XS4ALL Virus Scanner Cc: freebsd-questions@freebsd.org Subject: Re: Help with a new port? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:23:00 -0000 --SUOF0GtieIMvvwua Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Nov 24, 2007 at 05:01:36PM -0800, Zachary Kline wrote: > I must confess I haven't. I'll look into it and see what comes up.= =20 > Currently trying to figure out how to get ports upgraded in a sane fashio= n=20 > as well, as I've noticed some of the packages are quite behind in compari= son=20 > to the ports they're based on. First of all, if you look into the ports directories on the FreeBSD FTP servers, you'll see different versions of the packages, e.g. packages-5-stable, packages-6-stable, packages-6.2-release, packages-7-current, etc. Depending on which version you installed, 'pkg_add -r' picks the packages from one of those directories. So if you installed 6.2-RELEASE, you'll probably get packages from packages-6.2-release. That packages tree is based on the ports tree at the moment that 6.2 was released. So the best way to keep your ports current is to build them yourself. First, update your ports tree with portsnap (from the base system). Then install one of the ports management tools like portmaster or portupgrade, and use that to upgrade the ports. Do read /usr/ports/UPDATING so that you are aware of any issues. If you have questions, don't hesitate to ask on the list, but have a look through the list archives as well, if you can access them.=20 If you have trouble navigating the FreeBSD website, you should contact the website maintainers mailing list: freebsd-www@freebsd.org. Good luck! Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) --SUOF0GtieIMvvwua Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHST7yEnfvsMMhpyURAgCKAJ4s6mo0UxtJ9MWzo5hHv3AVL7P89ACgroH1 8GWZ+Psx6DYE39sMs8+0GQc= =oL3+ -----END PGP SIGNATURE----- --SUOF0GtieIMvvwua-- From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:32:59 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5D84B16A420 for ; Sun, 25 Nov 2007 09:32:59 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from smtp-vbr6.xs4all.nl (smtp-vbr6.xs4all.nl [194.109.24.26]) by mx1.freebsd.org (Postfix) with ESMTP id E504913C4CC for ; Sun, 25 Nov 2007 09:32:58 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from slackbox.xs4all.nl (slackbox.xs4all.nl [213.84.242.160]) by smtp-vbr6.xs4all.nl (8.13.8/8.13.8) with ESMTP id lAP9Wv91033363 for ; Sun, 25 Nov 2007 10:32:57 +0100 (CET) (envelope-from rsmith@xs4all.nl) Received: by slackbox.xs4all.nl (Postfix, from userid 1001) id EF3DEB8F8; Sun, 25 Nov 2007 10:32:56 +0100 (CET) Date: Sun, 25 Nov 2007 10:32:56 +0100 From: Roland Smith To: freebsd-questions@freebsd.org Message-ID: <20071125093256.GB68038@slackbox.xs4all.nl> Mail-Followup-To: freebsd-questions@freebsd.org References: <340a29540711241122g6d2b582av435a7d783e7efcff@mail.gmail.com> <47487F5D.6010103@math.arizona.edu> <20071125084259.GA1081@mugin.localhost> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="nVMJ2NtxeReIH9PS" Content-Disposition: inline In-Reply-To: <20071125084259.GA1081@mugin.localhost> X-GPG-Fingerprint: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 X-GPG-Key: http://www.xs4all.nl/~rsmith/pubkey.txt X-GPG-Notice: If this message is not signed, don't assume I sent it! User-Agent: Mutt/1.5.16 (2007-06-09) X-Virus-Scanned: by XS4ALL Virus Scanner Subject: Re: Having problems burning a DVD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:32:59 -0000 --nVMJ2NtxeReIH9PS Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Nov 25, 2007 at 09:42:59AM +0100, Harry Matthiesen Jensen wrote: > On Sat, Nov 24, 2007 at 12:45:33PM -0700, Predrag Punosevac wrote: > >> =20 > > I think you are probably missing > >=20 > > perm xpt0 0666 > > perm pass0 0666 >=20 > Which file are these to be set in? >=20 > > # Misc other devices > >=20 > > perm cdrom 0666 > > perm dvd 0666 > > perm rdvd 0666 > > perm cd0 0666 > > perm acd0 0666 > > perm xpt0 0666 > > perm pass0 0666 >=20 > ..and where to set these? >=20 > Are all to be set in devfs.conf? Looking at the format, I'd say yes. On my own system, I put the pass devices in devfs.rules, because they can be generated at runtime; add path 'pass*' mode 0666 group wheel Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) --nVMJ2NtxeReIH9PS Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHSUFIEnfvsMMhpyURAm46AJ9+L58jre8QYcNPhVVM2aNRJMhHhACglEp7 qFrjYKkjHC0MViUq+WRaNm8= =gByi -----END PGP SIGNATURE----- --nVMJ2NtxeReIH9PS-- From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 09:45:51 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 07C8916A419 for ; Sun, 25 Nov 2007 09:45:51 +0000 (UTC) (envelope-from kris@FreeBSD.org) Received: from weak.local (pointyhat.freebsd.org [IPv6:2001:4f8:fff6::2b]) by mx1.freebsd.org (Postfix) with ESMTP id 5A06C13C455; Sun, 25 Nov 2007 09:45:50 +0000 (UTC) (envelope-from kris@FreeBSD.org) Message-ID: <47494455.4010509@FreeBSD.org> Date: Sun, 25 Nov 2007 10:45:57 +0100 From: Kris Kennaway User-Agent: Thunderbird 2.0.0.9 (Macintosh/20071031) MIME-Version: 1.0 To: tundra@tundraware.com References: <47493871.9050006@tundraware.com> In-Reply-To: <47493871.9050006@tundraware.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Mailing List Subject: Re: Dreaded '__mb_sb_limit' Error And What To Do About It X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 09:45:51 -0000 Tim Daneliuk wrote: > On one of my FBSD 6-STABLE machines, I have the system cvsup the latest > sources nightly and rebuild (but not install) the system and all > relevant kernels. Every week or so, I go to single user and > install what was last built (assuming the build worked OK). > > My last such venture was on 11-20-2007 without problems. > > Tonight, I tried to do this again, and immediately got hit with > the libexec '_mb_sb_limit' symbol missing problem. I fell back > to the 11-20-2007 system image, and all is once again well. > > So, here's my question. Is this a temporary problem that will be > resolved at some point before 6.3 is released, or do I have have to > rebuild the entire system applications set to get new binaries that > don't depend on this symbol? Also, if it is going to be fixed, how > will I know it has been before trying another update like this again? See discussion on freebsd-stable Kris > > TIA, > > P.S. Rebuilding the apps on this system would be a REAL pain. Here's > hoping the fine FBSD developers can find it within themselves to > make this symbol once again appear so old binaries will run unchanged. From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 10:10:18 2007 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 45CB216A419 for ; Sun, 25 Nov 2007 10:10:18 +0000 (UTC) (envelope-from punosevac@math.arizona.edu) Received: from smtp102.math.arizona.edu (smtp102.math.arizona.edu [128.196.102.202]) by mx1.freebsd.org (Postfix) with ESMTP id 2ACF413C44B for ; Sun, 25 Nov 2007 10:10:18 +0000 (UTC) (envelope-from punosevac@math.arizona.edu) Received: from Debian-exim by smtp102.math.arizona.edu with local-bsmtp (Exim 4.50) id 1IwERF-0003su-B5 for questions@freebsd.org; Sun, 25 Nov 2007 03:10:14 -0700 Received: from 71-220-154-82.tcsn.qwest.net ([71.220.154.82] helo=.domain.actdsltmp) by smtp102.math.arizona.edu with esmtpsa (TLS-1.0:DHE_RSA_AES_256_CBC_SHA:32) (Exim 4.50) id 1IwER5-0003sU-Lp; Sun, 25 Nov 2007 03:09:59 -0700 Message-ID: <474949F2.6060803@math.arizona.edu> Date: Sun, 25 Nov 2007 03:09:54 -0700 From: Predrag Punosevac User-Agent: Thunderbird 2.0.0.6 (X11/20070916) MIME-Version: 1.0 To: Harry Matthiesen Jensen , questions@freebsd.org References: <340a29540711241122g6d2b582av435a7d783e7efcff@mail.gmail.com> <47487F5D.6010103@math.arizona.edu> <20071125084259.GA1081@mugin.localhost> In-Reply-To: <20071125084259.GA1081@mugin.localhost> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-ACL-Warn: The HELO/EHLO greeting .domain.actdsltmp is invalid X-Outgoing-Spam-Score: -5.9 (-----) Cc: Subject: Re: Having problems burning a DVD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 10:10:18 -0000 Harry Matthiesen Jensen wrote: > On Sat, Nov 24, 2007 at 12:45:33PM -0700, Predrag Punosevac wrote: > >>> >>> >> I think you are probably missing >> >> perm xpt0 0666 >> perm pass0 0666 >> > > Which file are these to be set in? > > >> # Misc other devices >> >> perm cdrom 0666 >> perm dvd 0666 >> perm rdvd 0666 >> perm cd0 0666 >> perm acd0 0666 >> perm xpt0 0666 >> perm pass0 0666 >> > > ..and where to set these? > > Are all to be set in devfs.conf? > > Thanks in advance > > Yes, they should be set in /etc/devfs.conf if you want to use something like K3b but I was rushing to post and I think you got much better advices from other people. Read very carefully http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/creating-dvds.html and follow every step. You should try to burn your first DVD from the command line as a supper user! Just to make your life easier if you have newer DVD-RW it is probably ATAPI. Best Predrag From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 10:12:20 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2558616A469 for ; Sun, 25 Nov 2007 10:12:20 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from mail03.syd.optusnet.com.au (mail03.syd.optusnet.com.au [211.29.132.184]) by mx1.freebsd.org (Postfix) with ESMTP id A031313C455 for ; Sun, 25 Nov 2007 10:12:19 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from [10.0.0.3] (c220-239-172-188.belrs4.nsw.optusnet.com.au [220.239.172.188]) by mail03.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lAPACFKU019761; Sun, 25 Nov 2007 21:12:16 +1100 In-Reply-To: References: Mime-Version: 1.0 (Apple Message framework v752.2) X-Priority: 3 (Normal) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Jerahmy Pocott Date: Sun, 25 Nov 2007 21:12:14 +1100 To: Ted Mittelstaedt X-Mailer: Apple Mail (2.752.2) Cc: FreeBSD Questions , Roger Olofsson Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 10:12:20 -0000 Well the main reason is that it was part of IPF, and IPF seemed to be better than IPFW? So when trying out IPF I also used IPNAT.. I had no problems with natd but it seemed I should use the IPNAT if I was using IPF? On 25/11/2007, at 8:00 PM, Ted Mittelstaedt wrote: > > The other thing you can do is simply switch back to natd. > > You didn't say why you decided to switch in the first place. > > A lot of times people switch because they are having problems > with natd. Are you? If not, you should be aware that natd > does support more kinds of protocol translations. > > Ted > >> -----Original Message----- >> From: owner-freebsd-questions@freebsd.org >> [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Roger >> Olofsson >> Sent: Saturday, November 24, 2007 2:09 PM >> To: Jerahmy Pocott >> Cc: FreeBSD Questions >> Subject: Re: Difficulties establishing VPN tunnel with IPNAT >> >> >> Hello again Jerahmy, >> >> I would suggest that you verify what port(s) and protocol(s) >> 'Sonic Wall >> Global VPN Client' needs to work. >> >> I would also suggest that you look in the logfile from ipf to see >> what >> it's blocking and when. >> >> My guess is that the VPN client is using a protocol like IPSEC (IP >> protocol 50) and possibly port 500 (IKE) for which you will have to >> activate the ipnat proxy. >> >> map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp >> >> You might also try to disable the blocking of fragged packets. For >> some >> VPN clients this can cause problems. >> >> Good luck! >> >> /Roger >> >> >> >> Jerahmy Pocott skrev: >>> Sorry let me clarify.. >>> >>> There are two issues, one is connecting to any external VPN, with no >>> filter I >>> can establish a connection to PPTP VPN, but the 'Sonic Wall >>> Global VPN >>> Client' >>> still fails to connect even with no filter rules. >>> >>> The redirect for the CVS server has an ipf rule to allow >> traffic on that >>> port, but >>> users are getting connection refused messages. >>> >>> I will include my ipf rules, I clearly need some sort of rule to >>> allow >>> inbound for >>> the VPN to work, though I think the ipnat is breaking the Sonic Wall >>> client. Which >>> is strange because everything worked fine with ipfw/natd. >>> >>> Here are my ipf rules: >>> >>> # Allow all in/out on internel interface >>> pass in quick on fxp0 all >>> pass out quick on fxp0 all >>> >>> # Allow all in/out on loopback interface >>> pass in quick on lo0 all >>> pass out quick on lo0 all >>> >>> # Allow all out-going on public interface and keep state >>> pass out quick on fxp1 proto tcp from any to any flags S keep state >>> pass out quick on fxp1 proto udp from any to any keep state >>> pass out quick on fxp1 proto icmp from any to any keep state >>> >>> # Block all inbound traffic from non-routable or reserved address >>> spaces >>> block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 >> private IP >>> block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 >> private IP >>> block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 >> private IP >>> block in quick on fxp1 from 127.0.0.0/8 to any #loopback >>> block in quick on fxp1 from 0.0.0.0/8 to any #loopback >>> block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto- >>> config >>> block in quick on fxp1 from 192.0.2.0/24 to any #reserved >>> for docs >>> block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster >>> interconnect >>> block in quick on fxp1 from 224.0.0.0/3 to any #Class D & >> E multicast >>> # Block frags >>> block in quick on fxp1 all with frags >>> # Block short tcp packets >>> block in quick on fxp1 proto tcp all with short >>> # block source routed packets >>> block in quick on fxp1 all with opt lsrr >>> block in quick on fxp1 all with opt ssrr >>> # Block anything with special options >>> block in quick on fxp1 all with ipopts >>> # Block public pings >>> block in quick on fxp1 proto icmp all icmp-type 8 >>> # Block ident >>> block in quick on fxp1 proto tcp from any to any port = 113 >>> # Block all Netbios service. 137=name, 138=datagram, 139=session >>> # Block MS/Windows hosts2 name server requests 81 >>> block in quick on fxp1 proto tcp/udp from any to any port = 137 >>> block in quick on fxp1 proto tcp/udp from any to any port = 138 >>> block in quick on fxp1 proto tcp/udp from any to any port = 139 >>> block in quick on fxp1 proto tcp/udp from any to any port = 81 >>> >>> # Allow CVS access >>> pass in quick on fxp1 proto tcp/udp from any to any port = 2401 >>> >>> # Logged Blocking Rules # >>> >>> # Block nmap OS fingerprint attempts >>> block in log first quick on fxp1 proto tcp from any to any flags FUP >>> >>> # Block all other in coming traffic >>> block in log first quick on fxp1 all >>> >>> Thanks for the help! >>> J. >>> >>> On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: >>> >>>> Hello Jerahmy, >>>> >>>> Assuming you want to connect from the outside to your VPN. >>>> >>>> Have you made sure that port 2401 is open for inbound traffic in >>>> your >>>> ipf.rules? >>>> >>>> You might also want to do 'ipnat -C -f '. Man >>>> ipnat ;^) >>>> >>>> Greeting from Sweden >>>> /Roger >>>> >>>> >>>> >>>> Jerahmy Pocott skrev: >>>>> Hello, >>>>> I recently decided to give ipf and ipnat a try, previously I had >>>>> always been using >>>>> ipfw and natd. Since switching over I can no longer establish a >>>>> VPN >>>>> tunnel from >>>>> any system behind the gateway. >>>>> I did 'ipf -F a' to flush all rules but I was still unable to >>>>> connect >>>>> so I think it's a problem >>>>> with ipnat? Also my redirect from ipnat doesn't seem to work >>>>> either. >>>>> These are the only ipnat rules I have: >>>>> (fxp1 is the external interface) >>>>> # ipnat built in ftp proxy rules >>>>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp >>>>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp >>>>> # CVS Server on Fileserv >>>>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp >>>>> # nat all out going traffic on fxp1 from internal lan >>>>> map fxp1 10.0.0.0/24 -> 0/32 >>>>> I can post my firewall rules too if that would help, however >>>>> with NO >>>>> rules set it >>>>> still didn't work so I don't think that would help.. (I'm using >>>>> the >>>>> klm which is default >>>>> to accept?) >>>>> Thanks! >>>>> J. >>>>> _______________________________________________ >>>>> freebsd-questions@freebsd.org mailing list >>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>>> To unsubscribe, send any mail to >>>>> "freebsd-questions-unsubscribe@freebsd.org" >>>> _______________________________________________ >>>> freebsd-questions@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>> To unsubscribe, send any mail to >>>> "freebsd-questions-unsubscribe@freebsd.org" >>> >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to >>> "freebsd-questions-unsubscribe@freebsd.org" >>> >>> >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" >> > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions- > unsubscribe@freebsd.org" From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 10:21:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A7DA116A417 for ; Sun, 25 Nov 2007 10:21:31 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from mail13.syd.optusnet.com.au (mail13.syd.optusnet.com.au [211.29.132.194]) by mx1.freebsd.org (Postfix) with ESMTP id 2D6EF13C455 for ; Sun, 25 Nov 2007 10:21:30 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from [10.0.0.3] (c220-239-172-188.belrs4.nsw.optusnet.com.au [220.239.172.188]) by mail13.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lAPALRPQ014276; Sun, 25 Nov 2007 21:21:28 +1100 In-Reply-To: <4748A115.1010002@passagen.se> References: <7BB1A732-4F07-499E-A183-22776FEEEE90@optusnet.com.au> <47482C2C.6010700@passagen.se> <894E3C92-2C45-4FC2-8C56-D4B303F0349F@optusnet.com.au> <4748A115.1010002@passagen.se> Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> Content-Transfer-Encoding: 7bit From: Jerahmy Pocott Date: Sun, 25 Nov 2007 21:21:27 +1100 To: Roger Olofsson X-Mailer: Apple Mail (2.752.2) Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 10:21:31 -0000 The Sonic Wall client doesn't trigger ANY firewall rules, which is why I thought there must be something going wrong with the NAT. It actually establishes the tunnel okay but never gets an IP address, from my understanding this client uses some sort of dhcp over ipsec to provision the client address.. What I am getting using the standard PPTP method are a bunch of hits: fxp1 @0:25 b x.x.x.x -> 10.0.0.3 PR gre len 20 (93) IN NAT (rule @0:25 is the final 'block all' rule) What is protocol 'gre'? Why is a NAT'd packet getting blocked?! Thanks! J. On 25/11/2007, at 9:09 AM, Roger Olofsson wrote: > Hello again Jerahmy, > > I would suggest that you verify what port(s) and protocol(s) 'Sonic > Wall Global VPN Client' needs to work. > > I would also suggest that you look in the logfile from ipf to see > what it's blocking and when. > > My guess is that the VPN client is using a protocol like IPSEC (IP > protocol 50) and possibly port 500 (IKE) for which you will have to > activate the ipnat proxy. > > map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp > > You might also try to disable the blocking of fragged packets. For > some VPN clients this can cause problems. > > Good luck! > > /Roger > > > > Jerahmy Pocott skrev: >> Sorry let me clarify.. >> There are two issues, one is connecting to any external VPN, with >> no filter I >> can establish a connection to PPTP VPN, but the 'Sonic Wall Global >> VPN Client' >> still fails to connect even with no filter rules. >> The redirect for the CVS server has an ipf rule to allow traffic >> on that port, but >> users are getting connection refused messages. >> I will include my ipf rules, I clearly need some sort of rule to >> allow inbound for >> the VPN to work, though I think the ipnat is breaking the Sonic >> Wall client. Which >> is strange because everything worked fine with ipfw/natd. >> Here are my ipf rules: >> # Allow all in/out on internel interface >> pass in quick on fxp0 all >> pass out quick on fxp0 all >> # Allow all in/out on loopback interface >> pass in quick on lo0 all >> pass out quick on lo0 all >> # Allow all out-going on public interface and keep state >> pass out quick on fxp1 proto tcp from any to any flags S keep state >> pass out quick on fxp1 proto udp from any to any keep state >> pass out quick on fxp1 proto icmp from any to any keep state >> # Block all inbound traffic from non-routable or reserved address >> spaces >> block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 >> private IP >> block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 >> private IP >> block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 >> private IP >> block in quick on fxp1 from 127.0.0.0/8 to any #loopback >> block in quick on fxp1 from 0.0.0.0/8 to any #loopback >> block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto- >> config >> block in quick on fxp1 from 192.0.2.0/24 to any #reserved for >> docs >> block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster >> interconnect >> block in quick on fxp1 from 224.0.0.0/3 to any #Class D & E >> multicast >> # Block frags >> block in quick on fxp1 all with frags >> # Block short tcp packets >> block in quick on fxp1 proto tcp all with short >> # block source routed packets >> block in quick on fxp1 all with opt lsrr >> block in quick on fxp1 all with opt ssrr >> # Block anything with special options >> block in quick on fxp1 all with ipopts >> # Block public pings >> block in quick on fxp1 proto icmp all icmp-type 8 >> # Block ident >> block in quick on fxp1 proto tcp from any to any port = 113 >> # Block all Netbios service. 137=name, 138=datagram, 139=session >> # Block MS/Windows hosts2 name server requests 81 >> block in quick on fxp1 proto tcp/udp from any to any port = 137 >> block in quick on fxp1 proto tcp/udp from any to any port = 138 >> block in quick on fxp1 proto tcp/udp from any to any port = 139 >> block in quick on fxp1 proto tcp/udp from any to any port = 81 >> # Allow CVS access >> pass in quick on fxp1 proto tcp/udp from any to any port = 2401 >> # Logged Blocking Rules # >> # Block nmap OS fingerprint attempts >> block in log first quick on fxp1 proto tcp from any to any flags FUP >> # Block all other in coming traffic >> block in log first quick on fxp1 all >> Thanks for the help! >> J. >> On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: >>> Hello Jerahmy, >>> >>> Assuming you want to connect from the outside to your VPN. >>> >>> Have you made sure that port 2401 is open for inbound traffic in >>> your ipf.rules? >>> >>> You might also want to do 'ipnat -C -f '. >>> Man ipnat ;^) >>> >>> Greeting from Sweden >>> /Roger >>> >>> >>> >>> Jerahmy Pocott skrev: >>>> Hello, >>>> I recently decided to give ipf and ipnat a try, previously I had >>>> always been using >>>> ipfw and natd. Since switching over I can no longer establish a >>>> VPN tunnel from >>>> any system behind the gateway. >>>> I did 'ipf -F a' to flush all rules but I was still unable to >>>> connect so I think it's a problem >>>> with ipnat? Also my redirect from ipnat doesn't seem to work >>>> either. >>>> These are the only ipnat rules I have: >>>> (fxp1 is the external interface) >>>> # ipnat built in ftp proxy rules >>>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp >>>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp >>>> # CVS Server on Fileserv >>>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp >>>> # nat all out going traffic on fxp1 from internal lan >>>> map fxp1 10.0.0.0/24 -> 0/32 >>>> I can post my firewall rules too if that would help, however >>>> with NO rules set it >>>> still didn't work so I don't think that would help.. (I'm using >>>> the klm which is default >>>> to accept?) >>>> Thanks! >>>> J. >>>> _______________________________________________ >>>> freebsd-questions@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>> To unsubscribe, send any mail to "freebsd-questions- >>>> unsubscribe@freebsd.org" >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to "freebsd-questions- >>> unsubscribe@freebsd.org" >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to "freebsd-questions- >> unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions- > unsubscribe@freebsd.org" From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 11:41:21 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B09AA16A417 for ; Sun, 25 Nov 2007 11:41:21 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from mail.freebsd-corp-net-guide.com (mail.freebsd-corp-net-guide.com [65.75.192.90]) by mx1.freebsd.org (Postfix) with ESMTP id 4F84C13C43E for ; Sun, 25 Nov 2007 11:41:21 +0000 (UTC) (envelope-from tedm@toybox.placo.com) Received: from TEDSDESK (nat-rtr.freebsd-corp-net-guide.com [65.75.197.130]) by mail.freebsd-corp-net-guide.com (8.13.8/8.13.8) with SMTP id lAPBfIpa077402; Sun, 25 Nov 2007 03:41:19 -0800 (PST) (envelope-from tedm@toybox.placo.com) From: "Ted Mittelstaedt" To: "Jerahmy Pocott" Date: Sun, 25 Nov 2007 03:42:34 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1914 In-Reply-To: Importance: Normal Cc: FreeBSD Questions , Roger Olofsson Subject: RE: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 11:41:21 -0000 That's an absolutely terrible reason. On FreeBSD and the other open source operating systems there are always multiple ways to solve a problem. While in a few situations it can definitively be stated that one program is better (for example, sendmail is obviously superior to qmail) in most situations the different programs are merely different. The "better" one is the one that works for YOUR problem the best. Not the one that works for someone else's problem. ipf is no better than ipfw for most purposes, it's just different. In this case, you had a working solution and now you don't. So, clearly, in your case, it's WORSE. Ted > -----Original Message----- > From: Jerahmy Pocott [mailto:quakenet1@optusnet.com.au] > Sent: Sunday, November 25, 2007 2:12 AM > To: Ted Mittelstaedt > Cc: Roger Olofsson; FreeBSD Questions > Subject: Re: Difficulties establishing VPN tunnel with IPNAT > > > Well the main reason is that it was part of IPF, and IPF seemed to be > better > than IPFW? So when trying out IPF I also used IPNAT.. I had no problems > with natd but it seemed I should use the IPNAT if I was using IPF? > > On 25/11/2007, at 8:00 PM, Ted Mittelstaedt wrote: > > > > > The other thing you can do is simply switch back to natd. > > > > You didn't say why you decided to switch in the first place. > > > > A lot of times people switch because they are having problems > > with natd. Are you? If not, you should be aware that natd > > does support more kinds of protocol translations. > > > > Ted > > > >> -----Original Message----- > >> From: owner-freebsd-questions@freebsd.org > >> [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Roger > >> Olofsson > >> Sent: Saturday, November 24, 2007 2:09 PM > >> To: Jerahmy Pocott > >> Cc: FreeBSD Questions > >> Subject: Re: Difficulties establishing VPN tunnel with IPNAT > >> > >> > >> Hello again Jerahmy, > >> > >> I would suggest that you verify what port(s) and protocol(s) > >> 'Sonic Wall > >> Global VPN Client' needs to work. > >> > >> I would also suggest that you look in the logfile from ipf to see > >> what > >> it's blocking and when. > >> > >> My guess is that the VPN client is using a protocol like IPSEC (IP > >> protocol 50) and possibly port 500 (IKE) for which you will have to > >> activate the ipnat proxy. > >> > >> map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp > >> > >> You might also try to disable the blocking of fragged packets. For > >> some > >> VPN clients this can cause problems. > >> > >> Good luck! > >> > >> /Roger > >> > >> > >> > >> Jerahmy Pocott skrev: > >>> Sorry let me clarify.. > >>> > >>> There are two issues, one is connecting to any external VPN, with no > >>> filter I > >>> can establish a connection to PPTP VPN, but the 'Sonic Wall > >>> Global VPN > >>> Client' > >>> still fails to connect even with no filter rules. > >>> > >>> The redirect for the CVS server has an ipf rule to allow > >> traffic on that > >>> port, but > >>> users are getting connection refused messages. > >>> > >>> I will include my ipf rules, I clearly need some sort of rule to > >>> allow > >>> inbound for > >>> the VPN to work, though I think the ipnat is breaking the Sonic Wall > >>> client. Which > >>> is strange because everything worked fine with ipfw/natd. > >>> > >>> Here are my ipf rules: > >>> > >>> # Allow all in/out on internel interface > >>> pass in quick on fxp0 all > >>> pass out quick on fxp0 all > >>> > >>> # Allow all in/out on loopback interface > >>> pass in quick on lo0 all > >>> pass out quick on lo0 all > >>> > >>> # Allow all out-going on public interface and keep state > >>> pass out quick on fxp1 proto tcp from any to any flags S keep state > >>> pass out quick on fxp1 proto udp from any to any keep state > >>> pass out quick on fxp1 proto icmp from any to any keep state > >>> > >>> # Block all inbound traffic from non-routable or reserved address > >>> spaces > >>> block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 > >> private IP > >>> block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 > >> private IP > >>> block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 > >> private IP > >>> block in quick on fxp1 from 127.0.0.0/8 to any #loopback > >>> block in quick on fxp1 from 0.0.0.0/8 to any #loopback > >>> block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto- > >>> config > >>> block in quick on fxp1 from 192.0.2.0/24 to any #reserved > >>> for docs > >>> block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster > >>> interconnect > >>> block in quick on fxp1 from 224.0.0.0/3 to any #Class D & > >> E multicast > >>> # Block frags > >>> block in quick on fxp1 all with frags > >>> # Block short tcp packets > >>> block in quick on fxp1 proto tcp all with short > >>> # block source routed packets > >>> block in quick on fxp1 all with opt lsrr > >>> block in quick on fxp1 all with opt ssrr > >>> # Block anything with special options > >>> block in quick on fxp1 all with ipopts > >>> # Block public pings > >>> block in quick on fxp1 proto icmp all icmp-type 8 > >>> # Block ident > >>> block in quick on fxp1 proto tcp from any to any port = 113 > >>> # Block all Netbios service. 137=name, 138=datagram, 139=session > >>> # Block MS/Windows hosts2 name server requests 81 > >>> block in quick on fxp1 proto tcp/udp from any to any port = 137 > >>> block in quick on fxp1 proto tcp/udp from any to any port = 138 > >>> block in quick on fxp1 proto tcp/udp from any to any port = 139 > >>> block in quick on fxp1 proto tcp/udp from any to any port = 81 > >>> > >>> # Allow CVS access > >>> pass in quick on fxp1 proto tcp/udp from any to any port = 2401 > >>> > >>> # Logged Blocking Rules # > >>> > >>> # Block nmap OS fingerprint attempts > >>> block in log first quick on fxp1 proto tcp from any to any flags FUP > >>> > >>> # Block all other in coming traffic > >>> block in log first quick on fxp1 all > >>> > >>> Thanks for the help! > >>> J. > >>> > >>> On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: > >>> > >>>> Hello Jerahmy, > >>>> > >>>> Assuming you want to connect from the outside to your VPN. > >>>> > >>>> Have you made sure that port 2401 is open for inbound traffic in > >>>> your > >>>> ipf.rules? > >>>> > >>>> You might also want to do 'ipnat -C -f '. Man > >>>> ipnat ;^) > >>>> > >>>> Greeting from Sweden > >>>> /Roger > >>>> > >>>> > >>>> > >>>> Jerahmy Pocott skrev: > >>>>> Hello, > >>>>> I recently decided to give ipf and ipnat a try, previously I had > >>>>> always been using > >>>>> ipfw and natd. Since switching over I can no longer establish a > >>>>> VPN > >>>>> tunnel from > >>>>> any system behind the gateway. > >>>>> I did 'ipf -F a' to flush all rules but I was still unable to > >>>>> connect > >>>>> so I think it's a problem > >>>>> with ipnat? Also my redirect from ipnat doesn't seem to work > >>>>> either. > >>>>> These are the only ipnat rules I have: > >>>>> (fxp1 is the external interface) > >>>>> # ipnat built in ftp proxy rules > >>>>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp > >>>>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp > >>>>> # CVS Server on Fileserv > >>>>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp > >>>>> # nat all out going traffic on fxp1 from internal lan > >>>>> map fxp1 10.0.0.0/24 -> 0/32 > >>>>> I can post my firewall rules too if that would help, however > >>>>> with NO > >>>>> rules set it > >>>>> still didn't work so I don't think that would help.. (I'm using > >>>>> the > >>>>> klm which is default > >>>>> to accept?) > >>>>> Thanks! > >>>>> J. > >>>>> _______________________________________________ > >>>>> freebsd-questions@freebsd.org mailing list > >>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >>>>> To unsubscribe, send any mail to > >>>>> "freebsd-questions-unsubscribe@freebsd.org" > >>>> _______________________________________________ > >>>> freebsd-questions@freebsd.org mailing list > >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >>>> To unsubscribe, send any mail to > >>>> "freebsd-questions-unsubscribe@freebsd.org" > >>> > >>> _______________________________________________ > >>> freebsd-questions@freebsd.org mailing list > >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >>> To unsubscribe, send any mail to > >>> "freebsd-questions-unsubscribe@freebsd.org" > >>> > >>> > >> _______________________________________________ > >> freebsd-questions@freebsd.org mailing list > >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions > >> To unsubscribe, send any mail to > >> "freebsd-questions-unsubscribe@freebsd.org" > >> > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "freebsd-questions- > > unsubscribe@freebsd.org" > > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 12:32:12 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AD3D316A479 for ; Sun, 25 Nov 2007 12:32:12 +0000 (UTC) (envelope-from ovi@unixservers.us) Received: from webserver.easyhosting.ro (unixware.iasi.rdsnet.ro [86.124.41.195]) by mx1.freebsd.org (Postfix) with ESMTP id 6ABB013C46A for ; Sun, 25 Nov 2007 12:32:11 +0000 (UTC) (envelope-from ovi@unixservers.us) Received: from [10.0.0.14] (unknown [10.0.0.14]) (Authenticated sender: ovi@unixservers.us) by webserver.easyhosting.ro (Postfix) with ESMTP id 84637FD023; Sun, 25 Nov 2007 14:32:23 +0200 (EET) Message-ID: <47496AD7.9070508@unixservers.us> Date: Sun, 25 Nov 2007 14:30:15 +0200 From: Ovi User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.2) Gecko/20040804 Netscape/7.2 (ax) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Tek Bahadur Limbu References: <4746A5A3.7040508@wlink.com.np> In-Reply-To: <4746A5A3.7040508@wlink.com.np> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Open Source softwares in FreeBSD for web hosting platform X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 12:32:12 -0000 Tek Bahadur Limbu wrote: > Hi All, > > I know that this question has been asked on this list in the past. So > I am sorry for repeating it. > > However, I would like to know the current answers and views on this > question. > > Basically, I want to know which software you might be using as a Site > configuration and management application for web hosting services. > > It will be used primarily to control about 500-1000 virtual domains. > > I know that there are Cpanel and Plesk which are very good commercial > softwares catering the needs for a good web based management tool. > > So far, I have only tried out RAQdevil http://www.raqdevil.com/ > > It seems good but is quite limited in it's features. > > So I would like to know more open source softwares used for this type > of services. > > > Thanking you... > > We are using syscp and it works well. (you will need to modify it to suit your needs, the source code is clean and easy to modify). Any open source software you try, it is not 100% complete (as far as I know, from my experience with open source web panels), so you will have to modify the code. The bad thing with syscp is that dns server is not configurable from web interface (there is a patch, but it allows you to modify DNS only from admin account, which is not good, I think you will need regular users to be able to configure their own dns servers), so this is one thing you must add. I asume you need 3 types of accounts, admin account, reseller account and user account. http://www.syscp.org/ best regards, ovi From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 12:47:52 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D056016A41B for ; Sun, 25 Nov 2007 12:47:52 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from mail16.syd.optusnet.com.au (mail16.syd.optusnet.com.au [211.29.132.197]) by mx1.freebsd.org (Postfix) with ESMTP id 5537A13C45B for ; Sun, 25 Nov 2007 12:47:52 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from [10.0.0.3] (c220-239-172-188.belrs4.nsw.optusnet.com.au [220.239.172.188]) by mail16.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lAPClfRR028324; Sun, 25 Nov 2007 23:47:41 +1100 In-Reply-To: References: Mime-Version: 1.0 (Apple Message framework v752.2) X-Priority: 3 (Normal) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Jerahmy Pocott Date: Sun, 25 Nov 2007 23:47:40 +1100 To: Ted Mittelstaedt X-Mailer: Apple Mail (2.752.2) Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 12:47:52 -0000 Perhaps, but I'v heard a lot of good things about IPF and IPNAT, especially since the nat is all in kernel where as natd is userland, so there is a slight performance boost possibly there as well.. It is not difficult to switch back to my old set up, but I thought I would give it a chance, since I'v not used IPF before I figured it was likely something I'v done wrong rather than something wrong with the program! I like the rule format in ipf and how simple it is to change ipnat rules on the fly without dumping current mappings. And it SHOULD work just as well as natd? On 25/11/2007, at 10:42 PM, Ted Mittelstaedt wrote: > > That's an absolutely terrible reason. > > On FreeBSD and the other open source operating systems there > are always multiple ways to solve a problem. While in a few > situations it can definitively be stated that one program is > better (for example, sendmail is obviously superior to qmail) > in most situations the different programs are merely different. > The "better" one is the one that works for YOUR problem the > best. Not the one that works for someone else's problem. > > ipf is no better than ipfw for most purposes, it's just different. > In this case, you had a working solution and now you don't. So, > clearly, in your case, it's WORSE. > > Ted > >> -----Original Message----- >> From: Jerahmy Pocott [mailto:quakenet1@optusnet.com.au] >> Sent: Sunday, November 25, 2007 2:12 AM >> To: Ted Mittelstaedt >> Cc: Roger Olofsson; FreeBSD Questions >> Subject: Re: Difficulties establishing VPN tunnel with IPNAT >> >> >> Well the main reason is that it was part of IPF, and IPF seemed to be >> better >> than IPFW? So when trying out IPF I also used IPNAT.. I had no >> problems >> with natd but it seemed I should use the IPNAT if I was using IPF? >> >> On 25/11/2007, at 8:00 PM, Ted Mittelstaedt wrote: >> >>> >>> The other thing you can do is simply switch back to natd. >>> >>> You didn't say why you decided to switch in the first place. >>> >>> A lot of times people switch because they are having problems >>> with natd. Are you? If not, you should be aware that natd >>> does support more kinds of protocol translations. >>> >>> Ted >>> >>>> -----Original Message----- >>>> From: owner-freebsd-questions@freebsd.org >>>> [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Roger >>>> Olofsson >>>> Sent: Saturday, November 24, 2007 2:09 PM >>>> To: Jerahmy Pocott >>>> Cc: FreeBSD Questions >>>> Subject: Re: Difficulties establishing VPN tunnel with IPNAT >>>> >>>> >>>> Hello again Jerahmy, >>>> >>>> I would suggest that you verify what port(s) and protocol(s) >>>> 'Sonic Wall >>>> Global VPN Client' needs to work. >>>> >>>> I would also suggest that you look in the logfile from ipf to see >>>> what >>>> it's blocking and when. >>>> >>>> My guess is that the VPN client is using a protocol like IPSEC (IP >>>> protocol 50) and possibly port 500 (IKE) for which you will have to >>>> activate the ipnat proxy. >>>> >>>> map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp >>>> >>>> You might also try to disable the blocking of fragged packets. For >>>> some >>>> VPN clients this can cause problems. >>>> >>>> Good luck! >>>> >>>> /Roger >>>> >>>> >>>> >>>> Jerahmy Pocott skrev: >>>>> Sorry let me clarify.. >>>>> >>>>> There are two issues, one is connecting to any external VPN, >>>>> with no >>>>> filter I >>>>> can establish a connection to PPTP VPN, but the 'Sonic Wall >>>>> Global VPN >>>>> Client' >>>>> still fails to connect even with no filter rules. >>>>> >>>>> The redirect for the CVS server has an ipf rule to allow >>>> traffic on that >>>>> port, but >>>>> users are getting connection refused messages. >>>>> >>>>> I will include my ipf rules, I clearly need some sort of rule to >>>>> allow >>>>> inbound for >>>>> the VPN to work, though I think the ipnat is breaking the Sonic >>>>> Wall >>>>> client. Which >>>>> is strange because everything worked fine with ipfw/natd. >>>>> >>>>> Here are my ipf rules: >>>>> >>>>> # Allow all in/out on internel interface >>>>> pass in quick on fxp0 all >>>>> pass out quick on fxp0 all >>>>> >>>>> # Allow all in/out on loopback interface >>>>> pass in quick on lo0 all >>>>> pass out quick on lo0 all >>>>> >>>>> # Allow all out-going on public interface and keep state >>>>> pass out quick on fxp1 proto tcp from any to any flags S keep >>>>> state >>>>> pass out quick on fxp1 proto udp from any to any keep state >>>>> pass out quick on fxp1 proto icmp from any to any keep state >>>>> >>>>> # Block all inbound traffic from non-routable or reserved address >>>>> spaces >>>>> block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 >>>> private IP >>>>> block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 >>>> private IP >>>>> block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 >>>> private IP >>>>> block in quick on fxp1 from 127.0.0.0/8 to any #loopback >>>>> block in quick on fxp1 from 0.0.0.0/8 to any #loopback >>>>> block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto- >>>>> config >>>>> block in quick on fxp1 from 192.0.2.0/24 to any #reserved >>>>> for docs >>>>> block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster >>>>> interconnect >>>>> block in quick on fxp1 from 224.0.0.0/3 to any #Class D & >>>> E multicast >>>>> # Block frags >>>>> block in quick on fxp1 all with frags >>>>> # Block short tcp packets >>>>> block in quick on fxp1 proto tcp all with short >>>>> # block source routed packets >>>>> block in quick on fxp1 all with opt lsrr >>>>> block in quick on fxp1 all with opt ssrr >>>>> # Block anything with special options >>>>> block in quick on fxp1 all with ipopts >>>>> # Block public pings >>>>> block in quick on fxp1 proto icmp all icmp-type 8 >>>>> # Block ident >>>>> block in quick on fxp1 proto tcp from any to any port = 113 >>>>> # Block all Netbios service. 137=name, 138=datagram, 139=session >>>>> # Block MS/Windows hosts2 name server requests 81 >>>>> block in quick on fxp1 proto tcp/udp from any to any port = 137 >>>>> block in quick on fxp1 proto tcp/udp from any to any port = 138 >>>>> block in quick on fxp1 proto tcp/udp from any to any port = 139 >>>>> block in quick on fxp1 proto tcp/udp from any to any port = 81 >>>>> >>>>> # Allow CVS access >>>>> pass in quick on fxp1 proto tcp/udp from any to any port = 2401 >>>>> >>>>> # Logged Blocking Rules # >>>>> >>>>> # Block nmap OS fingerprint attempts >>>>> block in log first quick on fxp1 proto tcp from any to any >>>>> flags FUP >>>>> >>>>> # Block all other in coming traffic >>>>> block in log first quick on fxp1 all >>>>> >>>>> Thanks for the help! >>>>> J. >>>>> >>>>> On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: >>>>> >>>>>> Hello Jerahmy, >>>>>> >>>>>> Assuming you want to connect from the outside to your VPN. >>>>>> >>>>>> Have you made sure that port 2401 is open for inbound traffic in >>>>>> your >>>>>> ipf.rules? >>>>>> >>>>>> You might also want to do 'ipnat -C -f '. >>>>>> Man >>>>>> ipnat ;^) >>>>>> >>>>>> Greeting from Sweden >>>>>> /Roger >>>>>> >>>>>> >>>>>> >>>>>> Jerahmy Pocott skrev: >>>>>>> Hello, >>>>>>> I recently decided to give ipf and ipnat a try, previously I had >>>>>>> always been using >>>>>>> ipfw and natd. Since switching over I can no longer establish a >>>>>>> VPN >>>>>>> tunnel from >>>>>>> any system behind the gateway. >>>>>>> I did 'ipf -F a' to flush all rules but I was still unable to >>>>>>> connect >>>>>>> so I think it's a problem >>>>>>> with ipnat? Also my redirect from ipnat doesn't seem to work >>>>>>> either. >>>>>>> These are the only ipnat rules I have: >>>>>>> (fxp1 is the external interface) >>>>>>> # ipnat built in ftp proxy rules >>>>>>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp >>>>>>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp >>>>>>> # CVS Server on Fileserv >>>>>>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp >>>>>>> # nat all out going traffic on fxp1 from internal lan >>>>>>> map fxp1 10.0.0.0/24 -> 0/32 >>>>>>> I can post my firewall rules too if that would help, however >>>>>>> with NO >>>>>>> rules set it >>>>>>> still didn't work so I don't think that would help.. (I'm using >>>>>>> the >>>>>>> klm which is default >>>>>>> to accept?) >>>>>>> Thanks! >>>>>>> J. >>>>>>> _______________________________________________ >>>>>>> freebsd-questions@freebsd.org mailing list >>>>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>>>>> To unsubscribe, send any mail to >>>>>>> "freebsd-questions-unsubscribe@freebsd.org" >>>>>> _______________________________________________ >>>>>> freebsd-questions@freebsd.org mailing list >>>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>>>> To unsubscribe, send any mail to >>>>>> "freebsd-questions-unsubscribe@freebsd.org" >>>>> >>>>> _______________________________________________ >>>>> freebsd-questions@freebsd.org mailing list >>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>>> To unsubscribe, send any mail to >>>>> "freebsd-questions-unsubscribe@freebsd.org" >>>>> >>>>> >>>> _______________________________________________ >>>> freebsd-questions@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>> To unsubscribe, send any mail to >>>> "freebsd-questions-unsubscribe@freebsd.org" >>>> >>> >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to "freebsd-questions- >>> unsubscribe@freebsd.org" >> >> From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 13:06:37 2007 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EF6C216A417 for ; Sun, 25 Nov 2007 13:06:36 +0000 (UTC) (envelope-from frankstaals@gmx.net) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by mx1.freebsd.org (Postfix) with SMTP id 5F5DA13C442 for ; Sun, 25 Nov 2007 13:06:36 +0000 (UTC) (envelope-from frankstaals@gmx.net) Received: (qmail invoked by alias); 25 Nov 2007 13:06:29 -0000 Received: from ip176-173-59-62.adsl.versatel.nl (EHLO Rena.FStaals.net) [62.59.173.176] by mail.gmx.net (mp002) with SMTP; 25 Nov 2007 14:06:29 +0100 X-Authenticated: #25365336 X-Provags-ID: V01U2FsdGVkX18mn4hC+B4mz10rUaDYFilaBd1iu2YeGddVXo+5kQ uYyJyUvvBQtTQ8 Message-ID: <47497317.5090406@gmx.net> Date: Sun, 25 Nov 2007 14:05:27 +0100 From: Frank Staals User-Agent: Thunderbird 2.0.0.6 (X11/20071107) MIME-Version: 1.0 To: Roland Smith References: <47431E4D.3010702@gmx.net> <20071120182203.GA93313@slackbox.xs4all.nl> In-Reply-To: <20071120182203.GA93313@slackbox.xs4all.nl> X-Y-GMX-Trusted: 0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: questions@freebsd.org Subject: Re: snd_ich skipping playback X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 13:06:37 -0000 Roland Smith wrote: > On Tue, Nov 20, 2007 at 06:50:05PM +0100, Frank Staals wrote: > >> I updated to RELENG_7 yesterday, but I'm noticing that the snd_ich driver >> quite often skips playback for a short period of time at some points. >> Especially when doing mysql queries. Anyone else having problems with >> snd_ich ? >> >> frank@FStaals$ uname -a >> FreeBSD FStaals.net 7.0-BETA3 FreeBSD 7.0-BETA3 #2: Mon Nov 19 19:50:46 CET >> 2007 root@FStaals.net:/usr/obj/usr/src/sys/PFSERVERKERNEL amd64 >> >> frank@FStaals$ pciconf -lv >> pcm0@pci0:0:4:0: class=0x040100 card=0x71851462 chip=0x005910de >> rev=0xa2 hdr=0x00 >> vendor = 'Nvidia Corp' >> device = 'Realtek ALC850 Realtek AC'97 Audio' >> class = multimedia >> subclass = audio >> >> frank@FStaals$ dmesg | grep pcm >> pcm0: port 0xea00-0xeaff,0xee00-0xeeff mem >> 0xfe02d000-0xfe02dfff irq 23 at device 4.0 on pci0 >> pcm0: [ITHREAD] >> pcm0: >> > > I've had trouble with skipping sound some time ago on machines with > another chipset; > $ cat /dev/sndstat > FreeBSD Audio Driver (newpcm: 64bit 2007061600/amd64) > Installed devices: > pcm0: at io 0xd800 irq 22 [MPSAFE] (5p:4v/1r:1v channels > duplex default) > > I put the following in /boot/device.hints > > # Larger DMA buffer for the soundcard, for better sound quality. > hint.pcm.0.buffersize="16384" > > This fixed the problem for me. > > Roland > Ah thanks for the hint, but I'm guessing that won't work since aparently the buffersice is allready 16K : root@FStaals# sysctl -a | grep pcm dev.pcm.0.%desc: nVidia nForce4 dev.pcm.0.%driver: pcm dev.pcm.0.%location: slot=4 function=0 handle=\_SB_.PCI0.MACI dev.pcm.0.%pnpinfo: vendor=0x10de device=0x0059 subvendor=0x1462 subdevice=0x7185 class=0x040100 dev.pcm.0.%parent: pci0 dev.pcm.0.eapd: 1 dev.pcm.0.play.vchans: 1 dev.pcm.0.play.vchanrate: 48000 dev.pcm.0.play.vchanformat: s16le dev.pcm.0.rec.vchans: 1 dev.pcm.0.rec.vchanrate: 48000 dev.pcm.0.rec.vchanformat: s16le dev.pcm.0.buffersize: 16384 dev.pcm.0.ac97rate: 48000 Anyone else a hint ? -- -Frank Staals From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 13:47:14 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5CF2A16A417 for ; Sun, 25 Nov 2007 13:47:14 +0000 (UTC) (envelope-from elrap@web.de) Received: from fmmailgate02.web.de (fmmailgate02.web.de [217.72.192.227]) by mx1.freebsd.org (Postfix) with ESMTP id 1EAC813C4D1 for ; Sun, 25 Nov 2007 13:47:14 +0000 (UTC) (envelope-from elrap@web.de) Received: from smtp07.web.de (fmsmtp07.dlan.cinetic.de [172.20.5.215]) by fmmailgate02.web.de (Postfix) with ESMTP id 9A59BB2D8717; Sun, 25 Nov 2007 14:47:00 +0100 (CET) Received: from [84.152.142.21] (helo=freebsdangel.de) by smtp07.web.de with asmtp (WEB.DE 4.108 #208) id 1IwHp6-0001RR-00; Sun, 25 Nov 2007 14:47:00 +0100 Message-ID: <47497CDB.8050802@web.de> Date: Sun, 25 Nov 2007 14:47:07 +0100 From: Tino Engel User-Agent: Thunderbird 2.0.0.6 (X11/20071110) MIME-Version: 1.0 To: Howard Goldstein References: <4748DB56.3010206@queue.to> In-Reply-To: <4748DB56.3010206@queue.to> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Sender: elrap@web.de X-Sender: elrap@web.de X-Provags-ID: V01U2FsdGVkX19qDYK9LEgW15z/JOmsrdWQaa89IZXNzDd4QILX YKLC3TJRP9MWlIBc0t4sqZ6rGGemPJIl3SD2Lbbv553mK0QfZR xw4gZClgQ= Cc: freebsd-questions@freebsd.org Subject: Re: scoll lock - can't unlock in text login after xorg session X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 13:47:14 -0000 Howard Goldstein schrieb: > Just noticed this, after scroll locking for page up/page down in a text > login: I cannot unlock anymore. Does anyone else see this? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > I experienced a similar problem when not having set a login password. Setting it helped. Greez, Tino From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 13:58:56 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8A35F16A417 for ; Sun, 25 Nov 2007 13:58:56 +0000 (UTC) (envelope-from raggen@passagen.se) Received: from av9-2-sn2.hy.skanova.net (av9-2-sn2.hy.skanova.net [81.228.8.180]) by mx1.freebsd.org (Postfix) with ESMTP id F2AF513C45B for ; Sun, 25 Nov 2007 13:58:55 +0000 (UTC) (envelope-from raggen@passagen.se) Received: by av9-2-sn2.hy.skanova.net (Postfix, from userid 502) id 6FA3E38015; Sun, 25 Nov 2007 14:58:53 +0100 (CET) Received: from smtp4-2-sn2.hy.skanova.net (smtp4-2-sn2.hy.skanova.net [81.228.8.93]) by av9-2-sn2.hy.skanova.net (Postfix) with ESMTP id 33CBD37E96; Sun, 25 Nov 2007 14:58:53 +0100 (CET) Received: from [192.168.1.31] (90-230-142-213-no41.tbcn.telia.com [90.230.142.213]) by smtp4-2-sn2.hy.skanova.net (Postfix) with ESMTP id CAAE437E45; Sun, 25 Nov 2007 14:58:52 +0100 (CET) Message-ID: <47498012.9000201@passagen.se> Date: Sun, 25 Nov 2007 15:00:50 +0100 From: Roger Olofsson User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: Jerahmy Pocott References: <7BB1A732-4F07-499E-A183-22776FEEEE90@optusnet.com.au> <47482C2C.6010700@passagen.se> <894E3C92-2C45-4FC2-8C56-D4B303F0349F@optusnet.com.au> <4748A115.1010002@passagen.se> <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> In-Reply-To: <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 13:58:56 -0000 Jerahmy Pocott skrev: > The Sonic Wall client doesn't trigger ANY firewall rules, which is why I > thought > there must be something going wrong with the NAT. It actually > establishes the > tunnel okay but never gets an IP address, from my understanding this client > uses some sort of dhcp over ipsec to provision the client address.. > > What I am getting using the standard PPTP method are a bunch of hits: > > fxp1 @0:25 b x.x.x.x -> 10.0.0.3 PR gre len 20 (93) IN NAT > > (rule @0:25 is the final 'block all' rule) > > What is protocol 'gre'? Why is a NAT'd packet getting blocked?! > > Thanks! > J. > > On 25/11/2007, at 9:09 AM, Roger Olofsson wrote: > >> Hello again Jerahmy, >> >> I would suggest that you verify what port(s) and protocol(s) 'Sonic >> Wall Global VPN Client' needs to work. >> >> I would also suggest that you look in the logfile from ipf to see what >> it's blocking and when. >> >> My guess is that the VPN client is using a protocol like IPSEC (IP >> protocol 50) and possibly port 500 (IKE) for which you will have to >> activate the ipnat proxy. >> >> map WAN internal_ip/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp >> >> You might also try to disable the blocking of fragged packets. For >> some VPN clients this can cause problems. >> >> Good luck! >> >> /Roger >> >> >> >> Jerahmy Pocott skrev: >>> Sorry let me clarify.. >>> There are two issues, one is connecting to any external VPN, with no >>> filter I >>> can establish a connection to PPTP VPN, but the 'Sonic Wall Global >>> VPN Client' >>> still fails to connect even with no filter rules. >>> The redirect for the CVS server has an ipf rule to allow traffic on >>> that port, but >>> users are getting connection refused messages. >>> I will include my ipf rules, I clearly need some sort of rule to >>> allow inbound for >>> the VPN to work, though I think the ipnat is breaking the Sonic Wall >>> client. Which >>> is strange because everything worked fine with ipfw/natd. >>> Here are my ipf rules: >>> # Allow all in/out on internel interface >>> pass in quick on fxp0 all >>> pass out quick on fxp0 all >>> # Allow all in/out on loopback interface >>> pass in quick on lo0 all >>> pass out quick on lo0 all >>> # Allow all out-going on public interface and keep state >>> pass out quick on fxp1 proto tcp from any to any flags S keep state >>> pass out quick on fxp1 proto udp from any to any keep state >>> pass out quick on fxp1 proto icmp from any to any keep state >>> # Block all inbound traffic from non-routable or reserved address spaces >>> block in quick on fxp1 from 192.168.0.0/16 to any #RFC 1918 >>> private IP >>> block in quick on fxp1 from 172.16.0.0/12 to any #RFC 1918 >>> private IP >>> block in quick on fxp1 from 10.0.0.0/8 to any #RFC 1918 >>> private IP >>> block in quick on fxp1 from 127.0.0.0/8 to any #loopback >>> block in quick on fxp1 from 0.0.0.0/8 to any #loopback >>> block in quick on fxp1 from 169.254.0.0/16 to any #DHCP auto-config >>> block in quick on fxp1 from 192.0.2.0/24 to any #reserved for docs >>> block in quick on fxp1 from 204.152.64.0/23 to any #Sun cluster >>> interconnect >>> block in quick on fxp1 from 224.0.0.0/3 to any #Class D & E >>> multicast >>> # Block frags >>> block in quick on fxp1 all with frags >>> # Block short tcp packets >>> block in quick on fxp1 proto tcp all with short >>> # block source routed packets >>> block in quick on fxp1 all with opt lsrr >>> block in quick on fxp1 all with opt ssrr >>> # Block anything with special options >>> block in quick on fxp1 all with ipopts >>> # Block public pings >>> block in quick on fxp1 proto icmp all icmp-type 8 >>> # Block ident >>> block in quick on fxp1 proto tcp from any to any port = 113 >>> # Block all Netbios service. 137=name, 138=datagram, 139=session >>> # Block MS/Windows hosts2 name server requests 81 >>> block in quick on fxp1 proto tcp/udp from any to any port = 137 >>> block in quick on fxp1 proto tcp/udp from any to any port = 138 >>> block in quick on fxp1 proto tcp/udp from any to any port = 139 >>> block in quick on fxp1 proto tcp/udp from any to any port = 81 >>> # Allow CVS access >>> pass in quick on fxp1 proto tcp/udp from any to any port = 2401 >>> # Logged Blocking Rules # >>> # Block nmap OS fingerprint attempts >>> block in log first quick on fxp1 proto tcp from any to any flags FUP >>> # Block all other in coming traffic >>> block in log first quick on fxp1 all >>> Thanks for the help! >>> J. >>> On 25/11/2007, at 12:50 AM, Roger Olofsson wrote: >>>> Hello Jerahmy, >>>> >>>> Assuming you want to connect from the outside to your VPN. >>>> >>>> Have you made sure that port 2401 is open for inbound traffic in >>>> your ipf.rules? >>>> >>>> You might also want to do 'ipnat -C -f '. Man >>>> ipnat ;^) >>>> >>>> Greeting from Sweden >>>> /Roger >>>> >>>> >>>> >>>> Jerahmy Pocott skrev: >>>>> Hello, >>>>> I recently decided to give ipf and ipnat a try, previously I had >>>>> always been using >>>>> ipfw and natd. Since switching over I can no longer establish a VPN >>>>> tunnel from >>>>> any system behind the gateway. >>>>> I did 'ipf -F a' to flush all rules but I was still unable to >>>>> connect so I think it's a problem >>>>> with ipnat? Also my redirect from ipnat doesn't seem to work either. >>>>> These are the only ipnat rules I have: >>>>> (fxp1 is the external interface) >>>>> # ipnat built in ftp proxy rules >>>>> map fxp1 10.0.0.0/24 -> 0/32 proxy port 21 ftp/tcp >>>>> map fxp1 0.0.0.0/0 -> 0/32 proxy port 21 ftp/tcp >>>>> # CVS Server on Fileserv >>>>> rdr fxp1 0/32 port 2401 -> 10.0.0.2 port 2401 tcp/udp >>>>> # nat all out going traffic on fxp1 from internal lan >>>>> map fxp1 10.0.0.0/24 -> 0/32 >>>>> I can post my firewall rules too if that would help, however with >>>>> NO rules set it >>>>> still didn't work so I don't think that would help.. (I'm using the >>>>> klm which is default >>>>> to accept?) >>>>> Thanks! >>>>> J. >>>>> _______________________________________________ >>>>> freebsd-questions@freebsd.org mailing list >>>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>>> To unsubscribe, send any mail to >>>>> "freebsd-questions-unsubscribe@freebsd.org" >>>> _______________________________________________ >>>> freebsd-questions@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>>> To unsubscribe, send any mail to >>>> "freebsd-questions-unsubscribe@freebsd.org" >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to >>> "freebsd-questions-unsubscribe@freebsd.org" >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > Hello Jerahmy, (sorry for top-posting, btw). Gre is protocol 47. In your firewall rules you only allow/block protocols tcp/udp/icmp. If you want to use PPTP you will need to allow both the port and the protocol for it. Did you find out what ports and what protocols the VPN client needs? In my earlier post I guessed that you would have to enable the IPSEC proxy and allow protocol 50 and port 500. I gave an example on how to enable the IPSEC proxy in ipnat.conf, ie: map WAN 10.0.0.0/24 -> 0.0.0.0/32 proxy port 500 ipsec/udp You could also try to do like this (early in the ipf.conf file), depending on if you trust the vpn server or not: pass out quick on WAN proto tcp/udp from to pass in quick on WAN from to In your original question you mentioned having problems with CVS. From the looks of it, you redirect CVS to 10.0.0.2, meaning that all users on that machine can use CVS. If you mean that users are on other machines, ie, not on 10.0.0.2 they won't be able to use CVS. The solution to this would be to remove your rdr to 10.0.0.2. My own rules for stateful filtering looks like this, I am only allowing ports above 1023 for stateful: # [ Enable stateful connections LAN->WAN for all ports > 1023 tcp/udp ] pass out quick on WAN proto tcp from any to any port > 1023 flags S keep state keep frags pass out quick on WAN proto udp from any to any port > 1023 keep state keep frags BTW, to make changes to ipf/ipnat I use the following commands: ipf -Fa -f ipnat -C -f Good luck! /Roger From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 14:04:55 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 35A5616A419 for ; Sun, 25 Nov 2007 14:04:55 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (gizmo.acns.msu.edu [35.8.1.43]) by mx1.freebsd.org (Postfix) with ESMTP id EA67613C46B for ; Sun, 25 Nov 2007 14:04:54 +0000 (UTC) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: from gizmo.acns.msu.edu (localhost [127.0.0.1]) by gizmo.acns.msu.edu (8.13.6/8.13.6) with ESMTP id lAPE0Spu065440; Sun, 25 Nov 2007 09:00:28 -0500 (EST) (envelope-from jerrymc@gizmo.acns.msu.edu) Received: (from jerrymc@localhost) by gizmo.acns.msu.edu (8.13.6/8.13.6/Submit) id lAPE0S1d065439; Sun, 25 Nov 2007 09:00:28 -0500 (EST) (envelope-from jerrymc) Date: Sun, 25 Nov 2007 09:00:28 -0500 From: Jerry McAllister To: Caio Figueiredo Abecia Message-ID: <20071125140028.GA65404@gizmo.acns.msu.edu> References: <20071124074812.EE36.GERARD@seibercom.net> <0dd601c82f08$7cdcd430$010210ac@pcaio> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <0dd601c82f08$7cdcd430$010210ac@pcaio> User-Agent: Mutt/1.4.2.2i Cc: freebsd-questions@freebsd.org Subject: Re: Partition to be shared over OSes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 14:04:55 -0000 On Sun, Nov 25, 2007 at 12:11:25AM -0200, Caio Figueiredo Abecia wrote: > Hi > I have some operation systems installed on a hd in some partitions. > I'd like to know if could I have a partition FAT32 in my hd and let my > linux/bsd/windows read/write any file there. Yes. Anyway, FreeBSD and MS-Win can read/write Fat32. I presume Lunix can too. In FreeBSD, you just need to mount as an MSDOS type file system. By the way, in FreeBSD, the term is "slice" for what MS calls a Primary Partion. ////jerry > > To that purpose (share a partition to windows/linux/bsd) what's the best > solution? > > My partition to be NTFS and install on each SO (-win) ntfs-3g ? > > Thank you in advance > > Caio F. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 15:37:05 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1C1FB16A469 for ; Sun, 25 Nov 2007 15:37:05 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from mail18.syd.optusnet.com.au (mail18.syd.optusnet.com.au [211.29.132.199]) by mx1.freebsd.org (Postfix) with ESMTP id 937D413C448 for ; Sun, 25 Nov 2007 15:37:04 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from [10.0.0.3] (c220-239-172-188.belrs4.nsw.optusnet.com.au [220.239.172.188]) by mail18.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lAPFb11q020875; Mon, 26 Nov 2007 02:37:02 +1100 In-Reply-To: <47498012.9000201@passagen.se> References: <7BB1A732-4F07-499E-A183-22776FEEEE90@optusnet.com.au> <47482C2C.6010700@passagen.se> <894E3C92-2C45-4FC2-8C56-D4B303F0349F@optusnet.com.au> <4748A115.1010002@passagen.se> <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> <47498012.9000201@passagen.se> Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Jerahmy Pocott Date: Mon, 26 Nov 2007 02:37:00 +1100 To: Roger Olofsson X-Mailer: Apple Mail (2.752.2) Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 15:37:05 -0000 On 26/11/2007, at 1:00 AM, Roger Olofsson wrote: > Hello Jerahmy, (sorry for top-posting, btw). > > Gre is protocol 47. In your firewall rules you only allow/block > protocols tcp/udp/icmp. If you want to use PPTP you will need to > allow both the port and the protocol for it. I put: pass out quick on fxp1 proto gre from any to any keep state This allowed the PPTP connection to establish, how ever trying to use apps over that connection resulted in: fxp1 (block all rule) b x.x.x.x -> 10.0.0.3 PR gre len 20 (53) (frag 57516:33@552) IN bad NAT By placing to rule: pass in quick on fxp1 proto gre from any to any and allowing frags everything started working properly, but allowing all gre traffic in doesn't seem like a good idea.. Is there any way to make this work without putting static ip address rules or allowing all traffic? > In your original question you mentioned having problems with CVS. > From the looks of it, you redirect CVS to 10.0.0.2, meaning that > all users on that machine can use CVS. The redirect rule is supposed to redirect connections to CVS on the external interface to 10.0.0.2 on the internal lan, where the CVS server is actually running. Cheers, J. From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 17:10:17 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F29E516A41B for ; Sun, 25 Nov 2007 17:10:17 +0000 (UTC) (envelope-from tony@tntpro.net) Received: from ms-smtp-04.nyroc.rr.com (ms-smtp-04.nyroc.rr.com [24.24.2.58]) by mx1.freebsd.org (Postfix) with ESMTP id B3B7B13C442 for ; Sun, 25 Nov 2007 17:10:17 +0000 (UTC) (envelope-from tony@tntpro.net) Received: from tntpro.com (cpe-204-210-86-53.maine.res.rr.com [204.210.86.53]) by ms-smtp-04.nyroc.rr.com (8.13.6/8.13.6) with ESMTP id lAPHA3Ph026714; Sun, 25 Nov 2007 12:10:04 -0500 (EST) Received: from outkast (outkast.tntpro.com [192.168.0.10]) by tntpro.com (8.13.8/8.13.6) with ESMTP id lAPH9ABC089083; Sun, 25 Nov 2007 12:09:10 -0500 (EST) (envelope-from tony@tntpro.net) From: "Tony" To: "'Ted Mittelstaedt'" , "'Murray Taylor'" , Date: Sun, 25 Nov 2007 12:10:09 -0500 Message-ID: <006801c82f86$093d13e0$f300a8c0@outkast> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 Importance: Normal X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: Subject: RE: Squid with a Net nanny type setup.... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 17:10:18 -0000 Thanks for the advice, I've noticed dansguardian and looked into it a little bit, I've also blocked some words which works but doesn't work because it kills some legitimate pages. I've also tossed around the idea with my Fianc=E9 about locking them = down to certain websites, but that is problematic with doing some school work (kids are 9 and 11) I think what bothers me most is them stumbling across something. Say they are curious what the word milf means and they search for it... that would be an eye opener! So right now I have a list of words that are blocked from URLS and a large number of sites blacklisted gathered from other peoples lists scavenged from google. Thanks for the replies, Tony PS squid is a very cool thing, and I can use MRTG to gather data and display it, but it does seem to have some performance hit with surfing, I moved it from my dually Pentium Pro 200 to my Dual p3 1Ghz and that made a difference, now I just need some speedy Sata disks and a good Sata controller. -----Original Message----- From: Ted Mittelstaedt [mailto:tedm@toybox.placo.com]=20 Sent: Sunday, November 25, 2007 12:40 AM To: Murray Taylor; Tony; freebsd-questions@freebsd.org Subject: RE: Squid with a Net nanny type setup.... Or much better yet, do it the way I do it. Load Squid, setup the kids system to use it, then setup squid to only allow the kids to go to a list of sites. As my kids learn about interesting sites they want to go to, -I- visit those sites, and if I decide they are OK, I put them in the approved list. Stuff like dansguardian is, in my opinion, for lazy parents who want to hand off their parental responsibilities to other people. The other thing is that by the time the kid is 14-15 they should be mature enough to make their own choices and deal with what they find. At that time, if your still having to run filtering software, you better turn off Internet access completely and schedule your kid in with some sessions with a psychologist, as seriously, he's got a problem. Ted > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Murray Taylor > Sent: Thursday, November 22, 2007 4:59 PM > To: Tony; freebsd-questions@freebsd.org > Subject: RE: Squid with a Net nanny type setup.... > > > look at dansguardian its in the ports and is excellent for > kid-management > > mjt > > > -----Original Message----- > > From: owner-freebsd-questions@freebsd.org > > [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Tony > > Sent: Friday, 23 November 2007 4:34 AM > > To: freebsd-questions@freebsd.org > > Subject: Squid with a Net nanny type setup.... > > > > Is there a big list if inappropriate websites somewhere that > > I can build > > into squid to keep my kids out of Adult websites? > > > > If not squid is there a better Proxy to use on my FreeBSD firewall for > > that purpose? > > > > > > Thanks, > > > > Tony > > > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" > > > --------------------------------------------------------------- > The information transmitted in this e-mail is for the exclusive > use of the intended addressee and may contain confidential > and/or privileged material. Any review, re-transmission, > dissemination or other use of it, or the taking of any action > in reliance upon this information by persons and/or entities > other than the intended recipient is prohibited. If you > received this in error, please inform the sender and/or > addressee immediately and delete the material. > > E-mails may not be secure, may contain computer viruses and > may be corrupted in transmission. Please carefully check this > e-mail (and any attachment) accordingly. No warranties are > given and no liability is accepted for any loss or damage > caused by such matters. > --------------------------------------------------------------- > > ### This e-mail message has been scanned for Viruses by Bytecraft ### > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 17:29:47 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0F21C16A419 for ; Sun, 25 Nov 2007 17:29:47 +0000 (UTC) (envelope-from peter@boosten.org) Received: from smtpq1.groni1.gr.home.nl (smtpq1.groni1.gr.home.nl [213.51.130.200]) by mx1.freebsd.org (Postfix) with ESMTP id C1E9213C45B for ; Sun, 25 Nov 2007 17:29:46 +0000 (UTC) (envelope-from peter@boosten.org) Received: from [213.51.130.189] (port=40216 helo=smtp2.groni1.gr.home.nl) by smtpq1.groni1.gr.home.nl with esmtp (Exim 4.60) (envelope-from ) id 1IwLIf-0003Lz-6n for freebsd-questions@freebsd.org; Sun, 25 Nov 2007 18:29:45 +0100 Received: from cp268254-a.landg1.lb.home.nl ([84.25.65.88]:5016 helo=ra.egypt.nl) by smtp2.groni1.gr.home.nl with esmtp (Exim 4.60) (envelope-from ) id 1IwLIX-0002CH-7K for freebsd-questions@freebsd.org; Sun, 25 Nov 2007 18:29:45 +0100 Received: from www.boosten.org (localhost.egypt.nl [127.0.0.1]) by ra.egypt.nl (Postfix) with ESMTP id 8903139877 for ; Sun, 25 Nov 2007 18:29:36 +0100 (CET) Received: from 192.168.13.8 (SquirrelMail authenticated user peter) by www.boosten.org with HTTP; Sun, 25 Nov 2007 18:29:36 +0100 (CET) Message-ID: <64228.192.168.13.8.1196011776.squirrel@www.boosten.org> Date: Sun, 25 Nov 2007 18:29:36 +0100 (CET) From: "Peter Boosten" To: "FreeBSD Questions" User-Agent: SquirrelMail/1.5.1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 0.0 (/) Subject: Compliments to the team X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 17:29:47 -0000 Hi all, Just upgraded my 7 years old Toshiba Satellite Pro laptop from 6.2 to 7beta3 and it went like charm. Great job and keep up the good work! Peter --=20 http://www.boosten.org From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 17:38:30 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 316F816A418 for ; Sun, 25 Nov 2007 17:38:30 +0000 (UTC) (envelope-from dmehler26@woh.rr.com) Received: from ms-smtp-02.ohiordc.rr.com (ms-smtp-02.ohiordc.rr.com [65.24.5.136]) by mx1.freebsd.org (Postfix) with ESMTP id D246C13C455 for ; Sun, 25 Nov 2007 17:38:29 +0000 (UTC) (envelope-from dmehler26@woh.rr.com) Received: from satellite (cpe-65-31-42-110.woh.res.rr.com [65.31.42.110]) by ms-smtp-02.ohiordc.rr.com (8.13.6/8.13.6) with SMTP id lAPHcPaF028933 for ; Sun, 25 Nov 2007 12:38:25 -0500 (EST) Message-ID: <000701c82f89$fb9b40a0$0200a8c0@satellite> From: "Dave" To: Date: Sun, 25 Nov 2007 12:38:24 -0500 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="Windows-1252"; reply-type=original Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 X-Virus-Scanned: Symantec AntiVirus Scan Engine Subject: stability of FreeBSD 7 Beta 3? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Dave List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 17:38:30 -0000 Hello, How stable is FreeBSD 7 Beta 3? Is it near production are their any outstanding issues? Thanks. Dave. From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 17:46:01 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2CFFA16A420 for ; Sun, 25 Nov 2007 17:46:01 +0000 (UTC) (envelope-from raggen@passagen.se) Received: from av9-1-sn2.hy.skanova.net (av9-1-sn2.hy.skanova.net [81.228.8.179]) by mx1.freebsd.org (Postfix) with ESMTP id B382413C469 for ; Sun, 25 Nov 2007 17:46:00 +0000 (UTC) (envelope-from raggen@passagen.se) Received: by av9-1-sn2.hy.skanova.net (Postfix, from userid 502) id 269CB38AE5; Sun, 25 Nov 2007 18:45:59 +0100 (CET) Received: from smtp4-2-sn2.hy.skanova.net (smtp4-2-sn2.hy.skanova.net [81.228.8.93]) by av9-1-sn2.hy.skanova.net (Postfix) with ESMTP id CAB3338A69; Sun, 25 Nov 2007 18:45:58 +0100 (CET) Received: from [192.168.1.31] (90-230-142-213-no41.tbcn.telia.com [90.230.142.213]) by smtp4-2-sn2.hy.skanova.net (Postfix) with ESMTP id 82CEA37E45; Sun, 25 Nov 2007 18:45:58 +0100 (CET) Message-ID: <4749B54C.8000703@passagen.se> Date: Sun, 25 Nov 2007 18:47:56 +0100 From: Roger Olofsson User-Agent: Thunderbird 2.0.0.9 (Windows/20071031) MIME-Version: 1.0 To: Jerahmy Pocott References: <7BB1A732-4F07-499E-A183-22776FEEEE90@optusnet.com.au> <47482C2C.6010700@passagen.se> <894E3C92-2C45-4FC2-8C56-D4B303F0349F@optusnet.com.au> <4748A115.1010002@passagen.se> <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> <47498012.9000201@passagen.se> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 17:46:01 -0000 Jerahmy Pocott skrev: > > On 26/11/2007, at 1:00 AM, Roger Olofsson wrote: > >> Hello Jerahmy, (sorry for top-posting, btw). >> >> Gre is protocol 47. In your firewall rules you only allow/block >> protocols tcp/udp/icmp. If you want to use PPTP you will need to allow >> both the port and the protocol for it. > > I put: > > pass out quick on fxp1 proto gre from any to any keep state > > This allowed the PPTP connection to establish, how ever trying to use apps > over that connection resulted in: > > fxp1 (block all rule) b x.x.x.x -> 10.0.0.3 PR gre len 20 (53) (frag > 57516:33@552) IN bad NAT > > By placing to rule: > > pass in quick on fxp1 proto gre from any to any > > and allowing frags everything started working properly, but allowing all > gre traffic in doesn't seem > like a good idea.. Is there any way to make this work without putting > static ip address rules or allowing > all traffic? > > >> In your original question you mentioned having problems with CVS. From >> the looks of it, you redirect CVS to 10.0.0.2, meaning that all users >> on that machine can use CVS. > > The redirect rule is supposed to redirect connections to CVS on the > external interface to > 10.0.0.2 on the internal lan, where the CVS server is actually running. > > Cheers, > J. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > Hello Jerahmy, Some progress it seems? Why not set it to allow gre from VPN server only? Ie pass in quick on fxp1 proto gre from to any? The way you ask your question, 'make it work without static ip or allowing all traffic', isn't that contradictory? As for the frag part, I'd say that if gre needs frag, then you will have to enable it. About the CVS, I seem to have misunderstood your question. I assumed 10.0.0.2 wanted to recieve CVS inbound and not serve it outbound, or am I mistaking again? /Roger From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 18:43:31 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D5C6B16A417 for ; Sun, 25 Nov 2007 18:43:31 +0000 (UTC) (envelope-from hg@queue.to) Received: from pickle.queue.to (pickle.queue.to [71.180.69.18]) by mx1.freebsd.org (Postfix) with ESMTP id 79D1A13C4D3 for ; Sun, 25 Nov 2007 18:43:31 +0000 (UTC) (envelope-from hg@queue.to) Received: (qmail 24605 invoked from network); 25 Nov 2007 13:43:30 -0500 Received: from cally.queue.to (172.16.0.6) by pickle.queue.to with ESMTP; 25 Nov 2007 13:43:30 -0500 Message-ID: <4749C252.8050303@queue.to> Date: Sun, 25 Nov 2007 13:43:30 -0500 From: Howard Goldstein User-Agent: Thunderbird 2.0.0.9 (X11/20071116) MIME-Version: 1.0 To: Tino Engel References: <4748DB56.3010206@queue.to> <47497CDB.8050802@web.de> In-Reply-To: <47497CDB.8050802@web.de> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: scoll lock - can't unlock in text login after xorg session X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 18:43:31 -0000 Tino Engel wrote: > Howard Goldstein schrieb: >> Just noticed this, after scroll locking for page up/page down in a text >> login: I cannot unlock anymore. Does anyone else see this? >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to >> "freebsd-questions-unsubscribe@freebsd.org" >> >> > I experienced a similar problem when not having set a login password. > Setting it helped. > It happens in single user mode too. It's new behavior in 7.0 Beta 3 as compared to 6.2. Might be useful to know if you can reproduce it, just go to a local tty perhaps after a restart and see if your scroll lock toggles. Mine stays on and nothing but console messages makes it through (if on the primary tty) but fortunately it honors commands typed in the blind From owner-freebsd-questions@FreeBSD.ORG Sun Nov 25 18:59:18 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EEBF316A41B for ; Sun, 25 Nov 2007 18:59:18 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from mail16.syd.optusnet.com.au (mail16.syd.optusnet.com.au [211.29.132.197]) by mx1.freebsd.org (Postfix) with ESMTP id 71B7313C46E for ; Sun, 25 Nov 2007 18:59:18 +0000 (UTC) (envelope-from quakenet1@optusnet.com.au) Received: from [10.0.0.3] (c220-239-172-188.belrs4.nsw.optusnet.com.au [220.239.172.188]) by mail16.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id lAPIxGqu025432; Mon, 26 Nov 2007 05:59:16 +1100 In-Reply-To: <4749B54C.8000703@passagen.se> References: <7BB1A732-4F07-499E-A183-22776FEEEE90@optusnet.com.au> <47482C2C.6010700@passagen.se> <894E3C92-2C45-4FC2-8C56-D4B303F0349F@optusnet.com.au> <4748A115.1010002@passagen.se> <57A2907C-0660-458C-B254-3C893B4532CB@optusnet.com.au> <47498012.9000201@passagen.se> <4749B54C.8000703@passagen.se> Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Jerahmy Pocott Date: Mon, 26 Nov 2007 05:59:15 +1100 To: Roger Olofsson X-Mailer: Apple Mail (2.752.2) Cc: FreeBSD Questions Subject: Re: Difficulties establishing VPN tunnel with IPNAT X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 25 Nov 2007 18:59:19