From owner-freebsd-net Sun Oct 25 14:20:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA22723 for freebsd-net-outgoing; Sun, 25 Oct 1998 14:20:32 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from whizzo.transsys.com (whizzo.TransSys.COM [144.202.42.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA22718 for ; Sun, 25 Oct 1998 14:20:31 -0800 (PST) (envelope-from louie@whizzo.transsys.com) Received: from whizzo.transsys.com (localhost.transsys.com [127.0.0.1]) by whizzo.transsys.com (8.9.1/8.9.1) with ESMTP id RAA10102 for ; Sun, 25 Oct 1998 17:19:57 -0500 (EST) (envelope-from louie@whizzo.transsys.com) Message-Id: <199810252219.RAA10102@whizzo.transsys.com> X-Mailer: exmh version 2.0.2 2/24/98 To: freebsd-net@FreeBSD.ORG From: "Louis A. Mamakos" Subject: questions of taste.. mbuf header change Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 25 Oct 1998 17:19:56 -0500 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm working on a project which is going to use FreeBSD 3.0 based systems to do some precise (one-way) network delay measurements using to special hardware, GPS receivers and the like. Part of the mechanism to do this involves timestamping each packet as it's received from the network, and then passing this timestamp along much later on to a user-mode process; this is the easy part, and we can reuse some of the SO_TIMESTAMP changes that I submitted a year or so ago (and which we subsequently moved around a bit). The question of taste comes from the need to insert a struct timespec into the mbuf packet header. There are two issues here: - what, if anything, breaks if there are 8 or 10 bytes fewer space in the first mbuf? There was some discussion a while ago about increasing MSIZE from 128 to something larger, but this didn't seem to happen. - how to minimize header file dependencies by introducing a new data type. Should I add a #ifndef _SYS_TIME_H_ #include #endif in sys/mbuf.h? There seems to be a trade-off between the "right" thing and maintaining compatability, and I'm not sure what the correct approach is. I hoping someone else has suffered through this issue once before with some advice. I would eventually like to submit the changes back to the FreeBSD project, suitablye #ifdef'd for people that don't want to use them. Reading the clock on every packet might be expensive in some circumstances; for my application the clock hardware is just a few PCI bus cycles away.. louie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 25 21:59:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA03738 for freebsd-net-outgoing; Sun, 25 Oct 1998 21:59:39 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from chickenbean.ais-gwd.com (chickenbean.com [205.160.97.50]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA03574; Sun, 25 Oct 1998 21:57:41 -0800 (PST) (envelope-from charlespeters@chickenbean.com) Received: from ci1000971-d.sptnbrg1.sc.home.com (ci1000971-d.sptnbrg1.sc.home.com [24.4.115.200]) by chickenbean.ais-gwd.com (8.8.8/8.8.8) with SMTP id BAA02260; Mon, 26 Oct 1998 01:09:12 -0500 (EST) (envelope-from charlespeters@chickenbean.com) Reply-To: From: "Charles A. Peters" To: , , , , , , , , , , , , , , , , Date: Mon, 26 Oct 1998 00:51:11 -0500 Message-ID: <000001be00a5$5e2d8d40$c8730418@ci1000971-d.sptnbrg1.sc.home.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org subscribe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 26 09:13:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA00149 for freebsd-net-outgoing; Mon, 26 Oct 1998 09:13:41 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA00144 for ; Mon, 26 Oct 1998 09:13:40 -0800 (PST) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.1/8.9.1) id MAA19008; Mon, 26 Oct 1998 12:12:55 -0500 (EST) (envelope-from wollman) Date: Mon, 26 Oct 1998 12:12:55 -0500 (EST) From: Garrett Wollman Message-Id: <199810261712.MAA19008@khavrinen.lcs.mit.edu> To: "Louis A. Mamakos" Cc: freebsd-net@FreeBSD.ORG Subject: questions of taste.. mbuf header change In-Reply-To: <199810252219.RAA10102@whizzo.transsys.com> References: <199810252219.RAA10102@whizzo.transsys.com> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > - what, if anything, breaks if there are 8 or 10 bytes fewer space in > the first mbuf? There was some discussion a while ago about increasing > MSIZE from 128 to something larger, but this didn't seem to happen. Probably local-domain datagram sockets with long path names. Can't think of anything else. I'm inclined to increase MSIZE to 256 in any case... > - how to minimize header file dependencies by introducing a new data type. > Should I add a > #ifndef _SYS_TIME_H_ > #include > #endif > in sys/mbuf.h? No. What I would do instead is to declare a new structure which is an intentional type pun for `struct timespec'. (You have stumbled into one of the most annoying misfeatures of the C language: there is no way to actually USE an incomplete structure that is even marginally useful; in order to have opaque objects it is necessary to insert a level of indirection which is less than desirable in a low-level context such as this.) -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 26 09:46:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA03181 for freebsd-net-outgoing; Mon, 26 Oct 1998 09:46:55 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id JAA03168 for ; Mon, 26 Oct 1998 09:46:42 -0800 (PST) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id QAA02570; Mon, 26 Oct 1998 16:40:56 +0100 From: Luigi Rizzo Message-Id: <199810261540.QAA02570@labinfo.iet.unipi.it> Subject: Re: questions of taste.. mbuf header change To: wollman@khavrinen.lcs.mit.edu (Garrett Wollman) Date: Mon, 26 Oct 1998 16:40:56 +0100 (MET) Cc: louie@TransSys.COM, freebsd-net@FreeBSD.ORG In-Reply-To: <199810261712.MAA19008@khavrinen.lcs.mit.edu> from "Garrett Wollman" at Oct 26, 98 12:12:36 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > - what, if anything, breaks if there are 8 or 10 bytes fewer space in > > the first mbuf? There was some discussion a while ago about increasing > > MSIZE from 128 to something larger, but this didn't seem to happen. > > Probably local-domain datagram sockets with long path names. Can't > think of anything else. I'm inclined to increase MSIZE to 256 in any > case... from my experience with the previous implementation of dummynet: mbufs are not zeroed on allocation, and that might force you to initialize them in a lot of places. Also i had problems with the user-space ppp, not sure if it was something hardwired in the code or just my fault. In the current implementation i have reverted to standard mbufs and the code is much cleaner and robust. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 26 15:05:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA04522 for freebsd-net-outgoing; Mon, 26 Oct 1998 15:05:10 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from ns1.yes.no (ns1.yes.no [195.204.136.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA04511 for ; Mon, 26 Oct 1998 15:05:07 -0800 (PST) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218]) by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id AAA01917; Tue, 27 Oct 1998 00:04:29 +0100 (CET) Received: (from eivind@localhost) by bitbox.follo.net (8.8.8/8.8.6) id AAA27850; Tue, 27 Oct 1998 00:04:28 +0100 (MET) Message-ID: <19981027000427.59289@follo.net> Date: Tue, 27 Oct 1998 00:04:27 +0100 From: Eivind Eklund To: Garrett Wollman Cc: freebsd-net@FreeBSD.ORG Subject: Re: questions of taste.. mbuf header change References: <199810252219.RAA10102@whizzo.transsys.com> <199810261712.MAA19008@khavrinen.lcs.mit.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: <199810261712.MAA19008@khavrinen.lcs.mit.edu>; from Garrett Wollman on Mon, Oct 26, 1998 at 12:12:55PM -0500 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Oct 26, 1998 at 12:12:55PM -0500, Garrett Wollman wrote: > (You have stumbled into one of the most annoying misfeatures of the C > language: there is no way to actually USE an incomplete structure that > is even marginally useful; in order to have opaque objects it is > necessary to insert a level of indirection which is less than > desirable in a low-level context such as this.) Well, there is one nasty trick: Create a non-opaque definition of a variable as an anonymous structure, then fill in a char[] with the size of the structure, minus the size of the first element (which you need to get the correct alignement). Like this: struct something; static struct { struct something *something; ... more struct defintion here ... } anonymous_stuff; struct stuff { struct something *do_not_use_this_under_any_circumstance; char filler[sizeof(anonymous_stuff) - sizeof(anonymous_stuff.something)]; }; This is not allowed to fail in standard C. However, it may well produce a bunch of warnings, and I don't particularly like it. It will make any cross-file checker (like a good lint) SCREAM (at least until you set up the necessary filters for those warning messages). Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 26 22:43:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA17366 for freebsd-net-outgoing; Mon, 26 Oct 1998 22:43:13 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from shell6.ba.best.com (shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA17361 for ; Mon, 26 Oct 1998 22:43:11 -0800 (PST) (envelope-from jkb@shell6.ba.best.com) Received: (from jkb@localhost) by shell6.ba.best.com (8.9.0/8.9.0/best.sh) id WAA10438 for freebsd-net@freebsd.org; Mon, 26 Oct 1998 22:41:48 -0800 (PST) Message-ID: <19981026224146.A9124@best.com> Date: Mon, 26 Oct 1998 22:41:46 -0800 From: "Jan B. Koum " To: freebsd-net@FreeBSD.ORG Subject: tcp resets with ipfw Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, It will really be sad when someday someone with root access to FreeBSD box does (either accidently or on purpose): # ipfw add 1 reset tcp from any to any While one might argue this is equivalent to doing "rm -rf /*", many people alias rm to rm -i. Would it make sence to have ipfw code check to make sure people don't take down the network by making a typo or some such? If so, how would we do that? I like the way Cisco routers do: This may severely impact network performance. Continue? [confirm] But ipfw has to be non interactive (sh /etc/rc.firewall). On the other hand, maybe when someone is about to take down their network it would make sence to be interactive to make sure they know what they are doing? I guess this is going all the way back to "Unix lets you do stupid things - else it wouldn't let you do smart things" or some such saying. -- Yan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 26 23:11:23 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA19908 for freebsd-net-outgoing; Mon, 26 Oct 1998 23:11:23 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mars.mds.com.sg (mars.mds.com.sg [203.127.216.145]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA19902 for ; Mon, 26 Oct 1998 23:11:19 -0800 (PST) (envelope-from xichrome@pacific.net.ph) Received: from zeus.asiansources.com (root@zeusfr [203.172.0.46]) by mars.mds.com.sg (8.8.5/8.8.5) with ESMTP id PAA17674 for ; Tue, 27 Oct 1998 15:17:30 +0800 Received: from ph.asiansources.com (IDENT:mta@ph-2.asiansources.com [203.172.0.3]) by zeus.asiansources.com (8.9.1/8.9.1) with ESMTP id PAA31873 for ; Tue, 27 Oct 1998 15:30:44 +0800 Received: from xichrome ([192.168.8.201]) by ph.asiansources.com (post.office MTA v2.0 0906 ID# 50-42442U500) with SMTP id AAA10636 for ; Tue, 27 Oct 1998 15:08:01 +0800 Message-ID: <008401be0178$47967aa0$c908a8c0@xichrome.asiansources.com> From: "Joubert Uriarte" To: Subject: Booting Problems Date: Tue, 27 Oct 1998 15:06:09 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear All, I hope someone can help me with my installation of FreeBSD v.2.2.6. I don't have problems installing the OS at home, but the hardware configuration in the office is very different. The installation pushes through successfully, but after restarting the machine, I end up with an error message saying, Read Error The only way I could get FreeBSD to boot is via the installation disk and typing, sd()kernel This will start the FreeBSD kernel on my SCSI hard disk. The following illustrates the hardware in the office: HP Vectra VE Series 2 5/75 upgraded to Pentium-133 Mhz 56 MB SIMM RAM Adaptec AHA-2940AU SCSI Controller Seagate ST3100N SCSI Hard Disk (SCSI ID: 0) Seagate ST32151N SCSI Hard Disk (SCSI ID: 1) Cirrus Logic 5436 with 2MB RAM Video TEAC 24x IDE CDROM Drive I am installing FreeBSD on the ST3100N SCSI Hard Disk. The ST32151N has Windows 98 installed on it. The current bootable hard drive is SCSI ID: 0 (ST31200N) I have also tried eliminating the second hard disk (ST32151N) to avoid any conflicting operating systems. Please help. Could it be the geometry setting of the hard disk during the installation of FreeBSD? Thank you. Joubert Uriarte xichrome@pacific.net.ph To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 00:13:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA23991 for freebsd-net-outgoing; Tue, 27 Oct 1998 00:13:30 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id AAA23985 for ; Tue, 27 Oct 1998 00:13:28 -0800 (PST) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id HAA03617; Tue, 27 Oct 1998 07:08:36 +0100 From: Luigi Rizzo Message-Id: <199810270608.HAA03617@labinfo.iet.unipi.it> Subject: Re: tcp resets with ipfw To: jkb@best.com (Jan B. Koum) Date: Tue, 27 Oct 1998 07:08:36 +0100 (MET) Cc: freebsd-net@FreeBSD.ORG In-Reply-To: <19981026224146.A9124@best.com> from "Jan B. Koum" at Oct 26, 98 10:41:27 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Hello, > > It will really be sad when someday someone with root access to > FreeBSD box does (either accidently or on purpose): > > # ipfw add 1 reset tcp from any to any > > While one might argue this is equivalent to doing "rm -rf /*", > many people alias rm to rm -i. Would it make sence to have > ipfw code check to make sure people don't take down the network > by making a typo or some such? If so, how would we do that? I like > the way Cisco routers do: > > This may severely impact network performance. Continue? [confirm] because any modification to the firewall "may severely impact network performance" you'll have to primt message in all cases, at which point people will alias ipfw to avoid the message. The problem exists for far too many commands including ifconfig XXX delete etc. cheers luigi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 00:25:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA25125 for freebsd-net-outgoing; Tue, 27 Oct 1998 00:25:27 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from shell6.ba.best.com (shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA25120 for ; Tue, 27 Oct 1998 00:25:26 -0800 (PST) (envelope-from jkb@shell6.ba.best.com) Received: (from jkb@localhost) by shell6.ba.best.com (8.9.0/8.9.0/best.sh) id AAA22260; Tue, 27 Oct 1998 00:23:55 -0800 (PST) Message-ID: <19981027002354.A21396@best.com> Date: Tue, 27 Oct 1998 00:23:54 -0800 From: "Jan B. Koum " To: Luigi Rizzo Cc: freebsd-net@FreeBSD.ORG Subject: Re: tcp resets with ipfw References: <19981026224146.A9124@best.com> <199810270608.HAA03617@labinfo.iet.unipi.it> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i In-Reply-To: <199810270608.HAA03617@labinfo.iet.unipi.it>; from Luigi Rizzo on Tue, Oct 27, 1998 at 07:08:36AM +0100 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Oct 27, 1998 at 07:08:36AM +0100, Luigi Rizzo wrote: > > Hello, > > > > It will really be sad when someday someone with root access to > > FreeBSD box does (either accidently or on purpose): > > > > # ipfw add 1 reset tcp from any to any > > > > While one might argue this is equivalent to doing "rm -rf /*", > > many people alias rm to rm -i. Would it make sence to have > > ipfw code check to make sure people don't take down the network > > by making a typo or some such? If so, how would we do that? I like > > the way Cisco routers do: > > > > This may severely impact network performance. Continue? [confirm] > > because any modification to the firewall "may severely impact network > performance" you'll have to primt message in all cases, at which point > people will alias ipfw to avoid the message. > The problem exists for far too many commands including > > ifconfig XXX delete > > etc. > > cheers > luigi I was giving an example of what Cisco IOS say when you want to enable all the debug possible. I don't think doing some basic ip filtering severely impacts the network. Or does it? Plus, your example takes down a system. Mine takes down the whole network. Imagine a hub at an ISP Colo and someone does that. *Poof* But you do have a point and I completely agree with you. This example is from "I pointed gun at my foot, pulled the trigger and now my foot hurts" series unfortunately. However, in this case the foot is not only your system, but many others which might not even belong to you. -- Yan I don't have the password .... + Jan Koum But the path is chainlinked .. | Spelled Jan, pronounced Yan. There. So if you've got the time .... | Web: http://www.best.com/~jkb Set the tone to sync ......... + OS: http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 02:11:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA03020 for freebsd-net-outgoing; Tue, 27 Oct 1998 02:11:21 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from big-gw.tellique.de (big-gw.tellique.de [195.126.133.179]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA03007 for ; Tue, 27 Oct 1998 02:11:18 -0800 (PST) (envelope-from ni@tellique.de) Received: from tellique.de (nolde.tellique.de [62.144.106.52]) by big-gw.tellique.de (8.8.8/8.8.8) with ESMTP id LAA08383; Tue, 27 Oct 1998 11:10:35 +0100 (MET) Message-ID: <36359C1B.7EF1FEA2@tellique.de> Date: Tue, 27 Oct 1998 11:10:35 +0100 From: Juergen Nickelsen Organization: Tellique Kommunikationstechnik GmbH X-Mailer: Mozilla 4.07 [en] (WinNT; U) MIME-Version: 1.0 To: "Jan B. Koum" CC: FreeBSD Networking Subject: Re: tcp resets with ipfw References: <19981026224146.A9124@best.com> <199810270608.HAA03617@labinfo.iet.unipi.it> <19981027002354.A21396@best.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > # ipfw add 1 reset tcp from any to any > > > > > > While one might argue this is equivalent to doing "rm -rf /*", > > > many people alias rm to rm -i. [...] > > The problem exists for far too many commands including > > > > ifconfig XXX delete [...] > Plus, your example takes down a system. Mine takes down the whole > network. Imagine a hub at an ISP Colo and someone does that. *Poof* Both commands do not take down the system (as it is still possible to log in at the console), and both take down the outside connection of a network if the network routes through this machine. I agree with Luigi; whoever puts his or her fingers on ipfw and ifconfig should know or be willing to learn what mistakes with these commands can do to a system. Taking a system or network down is, luckily, in most cases reversible. BTW, aliasing "rm" to "rm -i" is a very bad idea. Sweat on your palms when doing a "rm -rf" as root is good for remembering possible consequences. If you rely on "rm" being "rm -i", you may tend to do so even when the alias is not in place. Removing Files on a Unix file system is not reversible. Greetings, Juergen. -- Juergen Nickelsen Tellique Kommunikationstechnik GmbH Gustav-Meyer-Allee 25, 13355 Berlin, Germany Tel. +49 30 46307-552 / Fax +49 30 46307-579 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 02:36:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA04413 for freebsd-net-outgoing; Tue, 27 Oct 1998 02:36:14 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from shell6.ba.best.com (shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA04406 for ; Tue, 27 Oct 1998 02:36:12 -0800 (PST) (envelope-from jkb@shell6.ba.best.com) Received: (from jkb@localhost) by shell6.ba.best.com (8.9.0/8.9.0/best.sh) id CAA03946 for freebsd-net@freebsd.org; Tue, 27 Oct 1998 02:35:34 -0800 (PST) Message-ID: <19981027023534.A3619@best.com> Date: Tue, 27 Oct 1998 02:35:34 -0800 From: "Jan B. Koum " To: freebsd-net@FreeBSD.ORG Subject: Never Mind (WAS Re: tcp resets with ipfw) References: <19981026224146.A9124@best.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i In-Reply-To: <19981026224146.A9124@best.com>; from Jan B. Koum on Mon, Oct 26, 1998 at 10:41:46PM -0800 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Oct 26, 1998 at 10:41:46PM -0800, "Jan B. Koum " wrote: > > Hello, > > It will really be sad when someday someone with root access to > FreeBSD box does (either accidently or on purpose): > > # ipfw add 1 reset tcp from any to any > > While one might argue this is equivalent to doing "rm -rf /*", > many people alias rm to rm -i. Would it make sence to have > ipfw code check to make sure people don't take down the network > by making a typo or some such? If so, how would we do that? I like > the way Cisco routers do: > > This may severely impact network performance. Continue? [confirm] > > But ipfw has to be non interactive (sh /etc/rc.firewall). On the > other hand, maybe when someone is about to take down their network > it would make sence to be interactive to make sure they know what > they are doing? > > I guess this is going all the way back to "Unix lets you do stupid > things - else it wouldn't let you do smart things" or some such > saying. > Ok, Never mind. I am been stupid again. *sigh* See, I can swear that when at one point I tried the above ipfw command, my whole home LAN went down. I did it from the system A, which only sits on the network and wasn't able to connect to system B from C because of RST's from system A. Now I can't do this. Odd. Now it only works with packets going to/from the system which has the ipfw rule in it. I think I am going crazy. Sorry for wasted bandwidth, -- Yan I don't have the password .... + Jan Koum But the path is chainlinked .. | Spelled Jan, pronounced Yan. There. So if you've got the time .... | Web: http://www.best.com/~jkb Set the tone to sync ......... + OS: http://www.FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 03:48:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA08260 for freebsd-net-outgoing; Tue, 27 Oct 1998 03:48:27 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from ns.i.cz (ns.i.cz [193.85.255.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA08255 for ; Tue, 27 Oct 1998 03:48:24 -0800 (PST) (envelope-from mm@i.cz) Received: from woody.i.cz (woody.i.cz [193.85.255.60]) by ns.i.cz (8.9.1a/8.9.1) with ESMTP id MAA32363; Tue, 27 Oct 1998 12:47:39 +0100 Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=iso-8859-2 Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <008401be0178$47967aa0$c908a8c0@xichrome.asiansources.com> Date: Tue, 27 Oct 1998 12:47:46 +0100 (MET) Reply-To: mm@i.cz From: Martin Machacek To: Joubert Uriarte , freebsd-net@FreeBSD.ORG Subject: RE: Booting Problems Content-Transfer-Encoding: 8bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 27-Oct-98 Joubert Uriarte wrote: > I hope someone can help me with my installation of FreeBSD v.2.2.6. I don't > have problems installing the OS at home, but the hardware configuration in > the > office is very different. > > The installation pushes through successfully, but after restarting the > machine, > I end up with an error message saying, > > Read Error > > HP Vectra VE Series 2 5/75 upgraded to Pentium-133 Mhz Aha, Vectra! Those machines up to Series 8 are pure shit. I've been struggling with them for about a month. I assume that you are installing FreeBSD in the so called "dangerously" dedicated mode i.e. without FDISK table, is that correct? This unfortunately does not work with Vectras. Their BIOS is too smart (stupid?) and it tries to read something from the disk assuming that there is a FDISK table. So, If FreeBSD is the only OS on your disk, you have to create FDISK table with a single partition spanning the entire disk (except for the FDISK tabel itself). There is one more gotcha! Before doing this, you have to zero out at least the first sector on the disk. Otherwise you will get 'Missing operatig system' next time you try to boot from it (again - too clever BIOS). So, do something like: dd if=/dev/zero of=/dev/rsd0 size=512 count=10 (one sector should be enough, but zeroing is cheap, so why not to zero couple more). This should make your FreeBSD boot. It worked at least in my case, however I've been trying it on Vectras Series 3 and 4 and I have no clue how much different Series 2 Vectras are. There were some substantial differences between Series 3 and 4, so ... Good luck! Martin Machacek --- [ICZ a.s., Zirovnicka 6/3133, 106 00 Prague 10, Czech Republic] [phone: +420 2 24245124 fax: +420 2 24245125] [PGP KeyID 981EB320]] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 04:14:47 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA12174 for freebsd-net-outgoing; Tue, 27 Oct 1998 04:14:47 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mail-gw.parex.lv (mail-gw.parex.lv [194.8.9.66]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA12169 for ; Tue, 27 Oct 1998 04:14:43 -0800 (PST) (envelope-from ank@parex.lv) Received: from mail.parex.lv (mail.parex.lv [192.168.3.66]) by mail-gw.parex.lv (8.7.2/8.7.2) with ESMTP id OAA13231 for ; Tue, 27 Oct 1998 14:14:01 +0200 (EET) Received: from parex.lv (ank-nt.parex.lv [192.168.3.99]) by mail.parex.lv (8.7.5/8.7.3) with ESMTP id OAA15824 for ; Tue, 27 Oct 1998 14:13:53 +0200 (EET) Message-ID: <3635B90B.AD278752@parex.lv> Date: Tue, 27 Oct 1998 14:14:03 +0200 From: Alexander Kirpa Reply-To: ank@parex.lv Organization: Parex Bank Corporation X-Mailer: Mozilla 4.04 [en] (WinNT; I) MIME-Version: 1.0 To: freebsd-net@FreeBSD.ORG Subject: Re: Booting Problems References: Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I use 6 diff HP Vectra with 6 diff release FreeBSD w/o problem :-| Possible need easy disable smart features in BIOS? Best regards, šAlexander Kirpa Martin Machacek wrote: > On 27-Oct-98 Joubert Uriarte wrote: > > I hope someone can help me with my installation of FreeBSD v.2.2.6.š I don't > > have problems installing the OS at home, but the hardware configuration in > > the > > office is very different. > > .... > Aha, Vectra! Those machines up to Series 8 are pure shit. I've been struggling > with them for about a month. > Good luck! > > ššššššš Martin Machacek > > --- > [ICZ a.s., Zirovnicka 6/3133, 106 00 Prague 10, Czech Republic] > [phone: +420 2 24245124 fax: +420 2 24245125] > [PGP KeyID 981EB320]] š To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 15:10:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA08530 for freebsd-net-outgoing; Tue, 27 Oct 1998 15:10:10 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mars.mds.com.sg (mars.mds.com.sg [203.127.216.145]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA08522 for ; Tue, 27 Oct 1998 15:10:04 -0800 (PST) (envelope-from xichrome@pacific.net.ph) Received: from zeus.asiansources.com (root@zeusfr [203.172.0.46]) by mars.mds.com.sg (8.8.5/8.8.5) with ESMTP id HAA07143; Wed, 28 Oct 1998 07:16:14 +0800 Received: from ph.asiansources.com (IDENT:mta@ph-2.asiansources.com [203.172.0.3]) by zeus.asiansources.com (8.9.1/8.9.1) with ESMTP id HAA30878; Wed, 28 Oct 1998 07:29:54 +0800 Received: from xichrome ([192.168.8.201]) by ph.asiansources.com (post.office MTA v2.0 0906 ID# 50-42442U500) with SMTP id AAA5134; Wed, 28 Oct 1998 07:09:22 +0800 Message-ID: <000e01be01fe$95499120$c908a8c0@xichrome.asiansources.com> From: "Joubert Uriarte" To: , Subject: Re: Booting Problems Date: Wed, 28 Oct 1998 07:07:34 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Martin, Thank you very much for your reply and for helping me. Yes, I couldn't agree with you more with these HP Vectra machines. I hate the HP Vectra BIOS! Anyway, I tried what you suggested... it didn't work. Um... can I clarify some items on your suggestion? If I partition my hard disk using FreeBSD and I don't use the dedicated mode, keeping it compatible with other operating systems, does it create the FDISK table you are referring to? Also, the operand 'size' in your dd command doesn't seem to be valid. I omitted it since the default block size is 512 anyway. Do I perform the dd command before or after I have installed FreeBSD? Yes, I do get Missing Operating System when I install FreeBSD without using the dedicated mode partition, but when I zeroed out the first sector, the computer didn't want to boot at all -- not even with the floppy boot disk. Incidentally, I erased the disk again using the DOS FDISK program and formatted the drive to see if it would boot DOS at least. It did. When I re-installed FreeBSD, the installation indicated an invalid geometry for the disk. FDISK for DOS used the 2727 cylinders * 9 heads * 84 sectors geometry which according to the hardware manual of the ST31200N is correct, but FreeBSD claims that the valid geometry is 128 cylinders, etc. (sorry, I can't remember the rest) * sigh * =8( Thanks... I hope you can help me further. Joubert -----Original Message----- From: Martin Machacek To: Joubert Uriarte ; freebsd-net@FreeBSD.ORG Date: Tuesday, October 27, 1998 7:47 PM Subject: RE: Booting Problems On 27-Oct-98 Joubert Uriarte wrote: > I hope someone can help me with my installation of FreeBSD v.2.2.6. I don't > have problems installing the OS at home, but the hardware configuration in > the > office is very different. > > The installation pushes through successfully, but after restarting the > machine, > I end up with an error message saying, > > Read Error > > HP Vectra VE Series 2 5/75 upgraded to Pentium-133 Mhz Aha, Vectra! Those machines up to Series 8 are pure shit. I've been struggling with them for about a month. I assume that you are installing FreeBSD in the so called "dangerously" dedicated mode i.e. without FDISK table, is that correct? This unfortunately does not work with Vectras. Their BIOS is too smart (stupid?) and it tries to read something from the disk assuming that there is a FDISK table. So, If FreeBSD is the only OS on your disk, you have to create FDISK table with a single partition spanning the entire disk (except for the FDISK tabel itself). There is one more gotcha! Before doing this, you have to zero out at least the first sector on the disk. Otherwise you will get 'Missing operatig system' next time you try to boot from it (again - too clever BIOS). So, do something like: dd if=/dev/zero of=/dev/rsd0 size=512 count=10 (one sector should be enough, but zeroing is cheap, so why not to zero couple more). This should make your FreeBSD boot. It worked at least in my case, however I've been trying it on Vectras Series 3 and 4 and I have no clue how much different Series 2 Vectras are. There were some substantial differences between Series 3 and 4, so ... Good luck! Martin Machacek --- [ICZ a.s., Zirovnicka 6/3133, 106 00 Prague 10, Czech Republic] [phone: +420 2 24245124 fax: +420 2 24245125] [PGP KeyID 981EB320]] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 17:44:23 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA00675 for freebsd-net-outgoing; Tue, 27 Oct 1998 17:44:23 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from xylan.com (postal.xylan.com [208.8.0.248]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA00668 for ; Tue, 27 Oct 1998 17:44:22 -0800 (PST) (envelope-from wes@softweyr.com) Received: from mailhub.xylan.com by xylan.com (8.8.7/SMI-SVR4 (xylan-mgw 2.2 [OUT])) id RAA16968; Tue, 27 Oct 1998 17:42:54 -0800 (PST) Received: from utah.XYLAN.COM by mailhub.xylan.com (SMI-8.6/SMI-SVR4 (mailhub 2.1 [HUB])) id RAA18960; Tue, 27 Oct 1998 17:42:54 -0800 Received: from softweyr.com by utah.XYLAN.COM (SMI-8.6/SMI-SVR4 (xylan utah [SPOOL])) id SAA08438; Tue, 27 Oct 1998 18:42:52 -0700 Message-ID: <3636769C.ECE07B59@softweyr.com> Date: Tue, 27 Oct 1998 18:42:52 -0700 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.5 [en] (X11; I; FreeBSD 2.2.6-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: Joubert Uriarte CC: mm@i.cz, freebsd-net@FreeBSD.ORG Subject: Re: Booting Problems References: <000e01be01fe$95499120$c908a8c0@xichrome.asiansources.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Joubert Uriarte wrote: > > Martin, > > Thank you very much for your reply and for helping me. > > Yes, I couldn't agree with you more with these HP Vectra machines. I hate the HP > Vectra BIOS! Anyway, I tried what you suggested... it didn't work. Um... can I > clarify some items on your suggestion? > > If I partition my hard disk using FreeBSD and I don't use the dedicated mode, > keeping it compatible with other operating systems, does it create the FDISK > table you are referring to? Yes, it does. Don't use the 'dangerously dedicated mode', that's what's biting you. > Also, the operand 'size' in your dd command doesn't seem to be valid. I omitted > it since the default block size is 512 anyway. Do I perform the dd command > before or after I have installed FreeBSD? The option should be bs=nnn (for blocksize). > Yes, I do get Missing Operating System when I install FreeBSD without using the > dedicated mode partition, but when I zeroed out the first sector, the computer > didn't want to boot at all -- not even with the floppy boot disk. You'll need to reinstall the FreeBSD boot selector. You can do this by running sysinstall (the FreeBSD installation program) up to the point where it asks you which boot program you want use, selecting the standard one (booteasy), then quitting from the next screen. If you need to reinstall FreeBSD again, in order to build the FDISK table, this will be done during the installation. > * sigh * =8( > > Thanks... I hope you can help me further. Sorry for your troubles -- most FreeBSD installations aren't quite this bad. ;^) -- Where am I, and what am I doing in this handbasket? Wes Peters +1.801.915.2061 Softweyr LLC wes@softweyr.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 27 22:58:01 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA26426 for freebsd-net-outgoing; Tue, 27 Oct 1998 22:58:01 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from lemming.acc.am (jeday.r.am [194.67.210.11]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA26406 for ; Tue, 27 Oct 1998 22:57:54 -0800 (PST) (envelope-from casper@acc.am) Received: from acc.am ([192.168.100.108]) by lemming.acc.am (8.9.1/8.9.1) with ESMTP id KAA16468 for ; Wed, 28 Oct 1998 10:56:54 +0400 (AMT) Message-ID: <3636CF29.BCAE48EC@acc.am> Date: Wed, 28 Oct 1998 11:00:41 +0300 From: Casper X-Mailer: Mozilla 4.04 [en] (Win95; I) MIME-Version: 1.0 To: Freebsd-net@FreeBSD.ORG Subject: Re: Booting Problems References: <000e01be01fe$95499120$c908a8c0@xichrome.asiansources.com> <3636769C.ECE07B59@softweyr.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello! Try to create a small disk partition with DOS FDisk (about 1Mb :) & after that try to install FBSD . I had some problem when installing FreeBSD on some old HDD on HP Vectra ..... :) In may case there was a problem with disk layout detection , when you allow freebsd occupy entire disk... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 28 12:17:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA13062 for freebsd-net-outgoing; Wed, 28 Oct 1998 12:17:09 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from proto.plasm.net (proto.plasm.net [207.96.19.192]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA13057 for ; Wed, 28 Oct 1998 12:17:06 -0800 (PST) (envelope-from awood@plasm.net) Received: from localhost (awood@localhost) by proto.plasm.net (8.9.1/8.8.7) with SMTP id PAA29729 for ; Wed, 28 Oct 1998 15:16:20 -0500 (EST) (envelope-from awood@plasm.net) Date: Wed, 28 Oct 1998 15:16:19 -0500 (EST) From: austin wood To: freebsd-net@FreeBSD.ORG Subject: NATD Question Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have a modem connection and I'm sharing it with my LAN. I (almost) succesfully configured natd and/or ipfw to act as a gateway. The setup looks like this: --------------- Modem ---------------- 10BaseT --------------- | Internet |--------------| FreeBSD Box |-----------| Other Boxes | --------------- ---------------- --------------- There is actually a hub bettween the FreeBSD Box and the Other Boxes. The problem is that I when I use a web browser on one of the "Other Boxes", it get's stuck on "Waiting for reply". However, this only happens on about 20% of the websites. Most of the time it works fine. Here are 2 of the non working web sites: http://www.idsoftware.com/ http://www.futurestep.com/ I started natd in verbose mode to see what was I could find out. This is the output of "natd -interface ppp0 -verbose": Out [UDP] 10.1.1.2 -> 207.96.19.192 aliased to 207.96.19.192 -> 207.172.3.16 In [UDP] 207.172.3.16 -> 207.96.19.192 aliased to 207.172.3.16 -> 10.1.1.2 Out [TCP] 10.1.1.2:1044 -> 192.246.40.37:80 aliased to 207.96.19.192:1044 -> 192.246.40.37:80 In [TCP] 192.246.40.37:80 -> 207.96.19.192:1044 aliased to 192.246.40.37:80 -> 10.1.1.2:1044 Out [TCP] 10.1.1.2:1044 -> 192.246.40.37:80 aliased to 207.96.19.192:1044 -> 192.246.40.37:80 Out [TCP] 10.1.1.2:1044 -> 192.246.40.37:80 aliased to 207.96.19.192:1044 -> 192.246.40.37:80 Out [TCP] 10.1.1.2:1044 -> 192.246.40.37:80 aliased to 207.96.19.192:1044 -> 192.246.40.37:80 In [TCP] 192.246.40.37:80 -> 207.96.19.192:1044 aliased to 192.246.40.37:80 -> 10.1.1.2:1044 That is all it does. Here are my configuration files for more information: /etc/services: natd 6668/divert /etc/firewall: /sbin/ipfw -f flush /sbin/ipfw add divert natd all from any to any via ppp0 /sbin/ipfw add pass all from any to any /etc/rc.conf gateway_enable="YES" firewall_enable="YES" network_interface="ep0 lo0" ifconfig_lo0="inet 127.0.0.1" ifconfig_ep0="inet 10.1.1.1 netmask 255.255.255.0 link2" kernel options: options IPDIVERT options IPFIREWALL That's all the things I can think of that are needed to run natd. Thanks in Advance, Austin Wood To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 28 17:14:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA01443 for freebsd-net-outgoing; Wed, 28 Oct 1998 17:14:33 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from dns.webwizard.net.mx (dns.webwizard.com.mx [148.245.50.27]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA01388 for ; Wed, 28 Oct 1998 17:14:18 -0800 (PST) (envelope-from eculp@webwizard.org.mx) Received: from webwizard.org.mx (dns.webwizard.com.mx [148.245.50.27]) by dns.webwizard.net.mx (8.9.1/8.9.1) with ESMTP id TAA12573; Wed, 28 Oct 1998 19:14:02 -0600 (CST) (envelope-from eculp@webwizard.org.mx) Message-ID: <3637C15A.60F64D7B@webwizard.org.mx> Date: Wed, 28 Oct 1998 19:14:02 -0600 From: Edwin Culp Reply-To: eculp@mexcom.net.mx X-Mailer: Mozilla 4.5b2 [en] (X11; I; FreeBSD 3.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: austin wood CC: freebsd-net@FreeBSD.ORG Subject: Re: NATD Question References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org austin wood wrote: > I have a modem connection and I'm sharing it with my LAN. I (almost) > succesfully configured natd and/or ipfw to act as a gateway. The setup > looks like this: > > --------------- Modem ---------------- 10BaseT --------------- > | Internet |--------------| FreeBSD Box |-----------| Other Boxes | > --------------- ---------------- --------------- > > There is actually a hub bettween the FreeBSD Box and the Other Boxes. The > problem is that I when I use a web browser on one of the "Other Boxes", it > get's stuck on "Waiting for reply". However, this only happens on about > 20% of the websites. Most of the time it works fine. Here are 2 of the non > working web sites: > > http://www.idsoftware.com/ > http://www.futurestep.com/ > I'm using natd and they both come up fine, although I'm not using a ppp link, but one ip for a network. On ppp links, I like to use ppp -ddial -alias for my connections and not use natd on my, in this case, tun0. I also sometimes use kernel pppd between the office for my home network and use proxyarp in the options file. I haven't had any problems with that either. It just grabs the MAC off my ethernet card and goes to work:-) As far as configuration, you might try the firewall_enable="YES" firewall_type="open" natd_enable="YES" natd_interface=ppp0 in your rc.conf which is similar to what you have. I would still go with ppp -alias :-) the famous "kiss" concept :-) Good luck, ed To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 28 17:18:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA01967 for freebsd-net-outgoing; Wed, 28 Oct 1998 17:18:00 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mars.mds.com.sg (mars.mds.com.sg [203.127.216.145]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA01933 for ; Wed, 28 Oct 1998 17:17:49 -0800 (PST) (envelope-from xichrome@pacific.net.ph) Received: from zeus.asiansources.com (root@zeusfr [203.172.0.46]) by mars.mds.com.sg (8.8.5/8.8.5) with ESMTP id JAA29799; Thu, 29 Oct 1998 09:03:54 +0800 Received: from ph.asiansources.com (IDENT:mta@ph-2.asiansources.com [203.172.0.3]) by zeus.asiansources.com (8.9.1/8.9.1) with ESMTP id JAA24412; Thu, 29 Oct 1998 09:13:53 +0800 Received: from xichrome ([192.168.8.201]) by ph.asiansources.com (post.office MTA v2.0 0906 ID# 50-42442U500) with SMTP id AAA3482; Thu, 29 Oct 1998 08:56:38 +0800 Message-ID: <002d01be02d6$bf762340$c908a8c0@xichrome.asiansources.com> From: "Joubert Uriarte" To: , "Martin Machacek" , "Wes Peters" , "Alexander Kirpa" Subject: Re: Booting Problems Date: Thu, 29 Oct 1998 08:54:56 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear All, Thank you very much for helping me out on my Booting Problem with FreeBSD v.2.2.6 on an HP Vectra machine. You were all very helpful. My FreeBSD is booting up properly now. The problem was with the geometry of the hard disk. With a Seagate ST31200N, the standard geometry is 2727 cylinders * 9 heads * 84 sectors, however, this is not accepted by FreeBSD. FreeBSD always suggests to use the geometry 128 cylinders * 255 heads * 63 sectors which the HP Vectra machine fails to recognize. After studying all your suggestions, I checked for another alternative geometry which both FAT and FreeBSD will accept. I figured, if FAT accepts such a geometry which FreeBSD also accepts, then the HP Vectra will be able to recognize it. I ended up with the following geometry for the ST31200N: 1006 cylinders * 64 heads * 32 sectors. I cannot, however, use the "dangerously dedicated" mode since it has to remain compatible with FAT which can be recognized by the HP Vectra machine -- besides, if I use the "dangerously dedicate" mode, FreeBSD forces the geometry to such which the HP Vectra machine does not recognize. Anyway, thank you to all of you... I would have given up if it weren't for you guys! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 28 18:34:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA14785 for freebsd-net-outgoing; Wed, 28 Oct 1998 18:34:20 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mail.webspan.net (mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA14737 for ; Wed, 28 Oct 1998 18:33:56 -0800 (PST) (envelope-from opsys@mail.webspan.net) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with SMTP id VAA22644; Wed, 28 Oct 1998 21:33:22 -0500 (EST) Date: Wed, 28 Oct 1998 21:33:27 -0500 (EST) From: Open Systems Networking X-Sender: opsys@orion.webspan.net To: eculp@mexcom.net.mx cc: austin wood , freebsd-net@FreeBSD.ORG Subject: Re: NATD Question In-Reply-To: <3637C15A.60F64D7B@webwizard.org.mx> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 28 Oct 1998, Edwin Culp wrote: > > There is actually a hub bettween the FreeBSD Box and the Other Boxes. The > > problem is that I when I use a web browser on one of the "Other Boxes", it > > get's stuck on "Waiting for reply". However, this only happens on about > > 20% of the websites. Most of the time it works fine. Here are 2 of the non > > working web sites: > > > > http://www.idsoftware.com/ > > http://www.futurestep.com/ DISABLE TCP extensions. in rc.conf And your problem should go away more than likely. Chris -- "You both seem to be ignoring the fact that the networking market is driven by so-called 'IT professionals' these days, most of whom can't tell the difference between an ARP and a carp." --Wes Peters ===================================| Open Systems FreeBSD Consulting. FreeBSD 3.0 is available now! | Phone: (402)573-9124 / ICQ # 20016186 -----------------------------------| 3335 N. 103 Plaza, Omaha, NE 68134 FreeBSD: The power to serve! | E-Mail: opsys@open-systems.net http://www.freebsd.org | Consulting, Network Engineering, Security ===================================| http://open-systems.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 28 18:37:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA15494 for freebsd-net-outgoing; Wed, 28 Oct 1998 18:37:04 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from proto.plasm.net (proto.plasm.net [207.96.19.192]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA15469 for ; Wed, 28 Oct 1998 18:36:58 -0800 (PST) (envelope-from awood@plasm.net) Received: from localhost (awood@localhost) by proto.plasm.net (8.9.1/8.8.7) with SMTP id VAA04017; Wed, 28 Oct 1998 21:36:37 -0500 (EST) (envelope-from awood@plasm.net) Date: Wed, 28 Oct 1998 21:36:36 -0500 (EST) From: austin wood To: Open Systems Networking cc: freebsd-net@FreeBSD.ORG Subject: Re: NATD Question In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org TCP extensions are already off. > grep extensions rc.conf tcp_extensions="NO" #Allow RFC1323 & ...... On Wed, 28 Oct 1998, Open Systems Networking wrote: > On Wed, 28 Oct 1998, Edwin Culp wrote: > > > > There is actually a hub bettween the FreeBSD Box and the Other Boxes. The > > > problem is that I when I use a web browser on one of the "Other Boxes", it > > > get's stuck on "Waiting for reply". However, this only happens on about > > > 20% of the websites. Most of the time it works fine. Here are 2 of the non > > > working web sites: > > > > > > http://www.idsoftware.com/ > > > http://www.futurestep.com/ > > DISABLE TCP extensions. > in rc.conf > And your problem should go away more than likely. > > Chris > > -- > "You both seem to be ignoring the fact that the networking market is > driven by so-called 'IT professionals' these days, most of whom can't > tell the difference between an ARP and a carp." --Wes Peters > > ===================================| Open Systems FreeBSD Consulting. > FreeBSD 3.0 is available now! | Phone: (402)573-9124 / ICQ # 20016186 > -----------------------------------| 3335 N. 103 Plaza, Omaha, NE 68134 > FreeBSD: The power to serve! | E-Mail: opsys@open-systems.net > http://www.freebsd.org | Consulting, Network Engineering, Security > ===================================| http://open-systems.net > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message