From owner-freebsd-net Sun Apr 9 7:45:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from netcom.com (netcom13.netcom.com [199.183.9.113]) by hub.freebsd.org (Postfix) with ESMTP id C6B9537B782 for ; Sun, 9 Apr 2000 07:45:53 -0700 (PDT) (envelope-from stanb@netcom.com) Received: (from stanb@localhost) by netcom.com (8.9.3/8.9.3) id HAA14400 for freebsd-net@FreeBSD.ORG; Sun, 9 Apr 2000 07:45:52 -0700 (PDT) From: Stan Brown Message-Id: <200004091445.HAA14400@netcom.com> Subject: identd To: freebsd-net@FreeBSD.ORG (FreeBSD Networking) Date: Sun, 9 Apr 2000 10:45:52 -0400 (EDT) X-Mailer: ELM [version 2.5 PL3] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org one of my upstream pop servers has just been upgraded to a 4.0 machine. It's now attempting to connect to port 113. I see in /etc/servicesthat this is the identd port. I looked around a bit in the ports collection and found identd2. Should I be runing this? The machine in question is a FreeBSD 3.4 STABLE machine, that is serving as my nat gateway to the world, via a cablemodem. -- Stan Brown stanb@netcom.com 404-996-6955 Factory Automation Systems Atlanta Ga. -- Look, look, see Windows 95. Buy, lemmings, buy! Pay no attention to that cliff ahead... Henry Spencer (c) 1998 Stan Brown. Redistribution via the Microsoft Network is prohibited. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Apr 9 11: 9: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from scientia.demon.co.uk (scientia.demon.co.uk [212.228.14.13]) by hub.freebsd.org (Postfix) with ESMTP id 7BEC737B545 for ; Sun, 9 Apr 2000 11:08:48 -0700 (PDT) (envelope-from ben@scientia.demon.co.uk) Received: from strontium.scientia.demon.co.uk ([192.168.91.36] ident=exim) by scientia.demon.co.uk with esmtp (Exim 3.12 #1) id 12eKj5-000Avr-00; Sun, 09 Apr 2000 17:38:19 +0100 Received: (from ben) by strontium.scientia.demon.co.uk (Exim 3.12 #7) id 12eKj5-0003Vd-00; Sun, 09 Apr 2000 17:38:19 +0100 Date: Sun, 9 Apr 2000 17:38:19 +0100 From: Ben Smithurst To: Stan Brown Cc: FreeBSD Networking Subject: Re: identd Message-ID: <20000409173819.A78591@strontium.scientia.demon.co.uk> References: <200004091445.HAA14400@netcom.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <200004091445.HAA14400@netcom.com> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Stan Brown wrote: > one of my upstream pop servers has just been upgraded to a 4.0 machine. > It's now attempting to connect to port 113. I see in /etc/servicesthat > this is the identd port. > > I looked around a bit in the ports collection and found identd2. Should > I be runing this? > > The machine in question is a FreeBSD 3.4 STABLE machine, that is > serving as my nat gateway to the world, via a cablemodem. No need to install an identd daemon, inetd has identd support built-in. Just add a line like auth stream tcp nowait root internal auth -r -o UNKNOWN -t 30 to /etc/inetd.conf. -- Ben Smithurst / ben@scientia.demon.co.uk / PGP: 0x99392F7D To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Apr 10 2:48: 7 2000 Delivered-To: freebsd-net@freebsd.org Received: from v6.kddcom.co.jp (igloo.kddcom.co.jp [210.142.34.36]) by hub.freebsd.org (Postfix) with SMTP id 6374C37B88F for ; Mon, 10 Apr 2000 02:48:04 -0700 (PDT) (envelope-from baba@kddcom.co.jp) Received: (qmail 236 invoked from network); 10 Apr 2000 09:48:01 -0000 Received: from baba.kddcom.co.jp (HELO baba) (210.142.34.11) by igloo.kddcom.co.jp with SMTP; 10 Apr 2000 09:48:01 -0000 Message-Id: <4.2.0.58.J.20000410182705.00b7cd60@igloo.kddcom.co.jp> X-Sender: baba@igloo.kddcom.co.jp X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.0.58.J Date: Mon, 10 Apr 2000 18:47:54 +0900 To: freebsd-net@FreeBSD.ORG From: Koji Baba Subject: release-4.0 route6d terminates In-Reply-To: <38F1948D.5A0382B6@u-aizu.ac.jp> References: <38E6D93A.9A9A47EF@u-aizu.ac.jp> <38F15F6D.E0EC5D77@u-aizu.ac.jp> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello. My route6d terminates with following messages. What kind of interface is this 'interface 11'? Unknown interface 11: Interrupted system call Any suggestion welcome. Thanks. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 2: 6:49 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 3737737B532; Wed, 12 Apr 2000 02:06:40 -0700 (PDT) (envelope-from julian@elischer.org) Received: from muzak.iinet.net.au (muzak.iinet.net.au [203.59.24.237]) by urban.iinet.net.au (8.8.7/8.8.7) with ESMTP id RAA25992; Wed, 12 Apr 2000 17:06:36 +0800 Received: from jules.elischer.org (reggae-11-231.nv.iinet.net.au [203.59.69.231]) by muzak.iinet.net.au (8.8.5/8.8.5) with SMTP id RAA17815; Wed, 12 Apr 2000 17:06:25 +0800 Message-ID: <38F43C84.3F54BC7E@elischer.org> Date: Wed, 12 Apr 2000 02:06:12 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: net@freebsd.org Cc: archie@wistle.com, brian@freebsd.org Subject: pptp over NAT? Impossible? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've been beeting my head against a problem that I think I suddenly understand.. I've been trying to run a pptp session out from an address translated network (i.e. ppp -nat). It gets so far tand then stops. It has suddenly (after a day wasted) occured to me that maybe the ppp negotiation is being carried by GRE and that I'm guessing that GRE is not translatable.. (At least by ppp -nat). (what's happenning is that the ppp negotiating packets are getting lost in transit.) Can anyone comment on this theory? -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 2:52:38 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id A869337B8D5; Wed, 12 Apr 2000 02:52:24 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id MAA10671; Wed, 12 Apr 2000 12:51:31 +0300 (EEST) (envelope-from ru) Date: Wed, 12 Apr 2000 12:51:31 +0300 From: Ruslan Ermilov To: Julian Elischer Cc: net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG Subject: Re: pptp over NAT? Impossible? Message-ID: <20000412125131.A8975@relay.ucb.crimea.ua> Mail-Followup-To: Julian Elischer , net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG References: <38F43C84.3F54BC7E@elischer.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <38F43C84.3F54BC7E@elischer.org>; from Julian Elischer on Wed, Apr 12, 2000 at 02:06:12AM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Apr 12, 2000 at 02:06:12AM -0700, Julian Elischer wrote: > I've been beeting my head against a problem that I think > I suddenly understand.. > I've been trying to run a pptp session out from an address translated > network (i.e. ppp -nat). It gets so far tand then stops. > It has suddenly (after a day wasted) occured to me that > maybe the ppp negotiation is being carried by GRE and that > I'm guessing that GRE is not translatable.. (At least by > ppp -nat). (what's happenning is that the ppp negotiating packets are > getting lost in transit.) > GRE is supported in different way, see `nat pptp [addr]' in ppp(8), and PacketAliasPptp() in libalias(3). Cheers, -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 3:23:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id 8F14F37B9A5; Wed, 12 Apr 2000 03:22:55 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id NAA19260; Wed, 12 Apr 2000 13:22:21 +0300 (EEST) (envelope-from ru) Date: Wed, 12 Apr 2000 13:22:21 +0300 From: Ruslan Ermilov To: Julian Elischer Cc: net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG, Dru Nelson Subject: Re: pptp over NAT? Impossible? Message-ID: <20000412132221.A14970@relay.ucb.crimea.ua> Mail-Followup-To: Julian Elischer , net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG, Dru Nelson References: <38F43C84.3F54BC7E@elischer.org> <20000412125131.A8975@relay.ucb.crimea.ua> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <20000412125131.A8975@relay.ucb.crimea.ua>; from Ruslan Ermilov on Wed, Apr 12, 2000 at 12:51:31PM +0300 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Apr 12, 2000 at 12:51:31PM +0300, Ruslan Ermilov wrote: > On Wed, Apr 12, 2000 at 02:06:12AM -0700, Julian Elischer wrote: > > I've been beeting my head against a problem that I think > > I suddenly understand.. > > I've been trying to run a pptp session out from an address translated > > network (i.e. ppp -nat). It gets so far tand then stops. > > It has suddenly (after a day wasted) occured to me that > > maybe the ppp negotiation is being carried by GRE and that > > I'm guessing that GRE is not translatable.. (At least by > > ppp -nat). (what's happenning is that the ppp negotiating packets are > > getting lost in transit.) > > > GRE is supported in different way, see `nat pptp [addr]' in ppp(8), > and PacketAliasPptp() in libalias(3). > By the way, I see no reason why PPTP support is limited to only one local IP address. It *is* possible to improve PPTP support by introducing the following interface: int PacketAliasPptp( struct in_addr local_addr, struct in_addr remote_addr, struct in_addr alias_addr ); where `local_addr', `alias_addr' and `remote_addr' are of the same semantics as in PacketAliasRedirectPort() (see libalias(3) manpage). If Brian does not mind, I will implement this, then patch natd(8), wait until Brian prepares patches for ppp(8), commit the change to libalias(3), bump library's major number, and commit the rest to natd(8) and ppp(8). Comments? -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 5: 3:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 49EB237B7BB; Wed, 12 Apr 2000 05:03:26 -0700 (PDT) (envelope-from julian@elischer.org) Received: from popserver-02.iinet.net.au (popserver-02.iinet.net.au [203.59.24.148]) by urban.iinet.net.au (8.8.7/8.8.7) with ESMTP id UAA26887; Wed, 12 Apr 2000 20:02:59 +0800 Received: from jules.elischer.org (reggae-11-113.nv.iinet.net.au [203.59.69.113]) by popserver-02.iinet.net.au (8.9.3/8.9.3) with SMTP id UAA30847; Wed, 12 Apr 2000 20:02:36 +0800 Message-ID: <38F465BE.ABD322C@elischer.org> Date: Wed, 12 Apr 2000 05:02:06 -0700 From: Julian Elischer X-Mailer: Mozilla 3.04Gold (X11; I; FreeBSD 5.0-CURRENT i386) MIME-Version: 1.0 To: Ruslan Ermilov Cc: net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG, Dru Nelson Subject: Re: pptp over NAT? Impossible? References: <38F43C84.3F54BC7E@elischer.org> <20000412125131.A8975@relay.ucb.crimea.ua> <20000412132221.A14970@relay.ucb.crimea.ua> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ruslan Ermilov wrote: > > On Wed, Apr 12, 2000 at 12:51:31PM +0300, Ruslan Ermilov wrote: > > On Wed, Apr 12, 2000 at 02:06:12AM -0700, Julian Elischer wrote: > > > I've been beeting my head against a problem that I think > > > I suddenly understand.. > > > I've been trying to run a pptp session out from an address translated > > > network (i.e. ppp -nat). It gets so far tand then stops. > > > It has suddenly (after a day wasted) occured to me that > > > maybe the ppp negotiation is being carried by GRE and that > > > I'm guessing that GRE is not translatable.. (At least by > > > ppp -nat). (what's happenning is that the ppp negotiating packets are > > > getting lost in transit.) > > > > > GRE is supported in different way, see `nat pptp [addr]' in ppp(8), > > and PacketAliasPptp() in libalias(3). > > > By the way, I see no reason why PPTP support is limited to only > one local IP address. It *is* possible to improve PPTP support > by introducing the following interface: > > int PacketAliasPptp( > struct in_addr local_addr, > struct in_addr remote_addr, > struct in_addr alias_addr > ); > > where `local_addr', `alias_addr' and `remote_addr' are of the same > semantics as in PacketAliasRedirectPort() (see libalias(3) manpage). > > If Brian does not mind, I will implement this, then patch natd(8), > wait until Brian prepares patches for ppp(8), commit the change to > libalias(3), bump library's major number, and commit the rest to > natd(8) and ppp(8). > > Comments? Makes sence to me as it is quite possible that GRE/PPTP could be coming from several different internal machines. BTW shouldn't this be called PacketAliasGRE instead? > > -- > Ruslan Ermilov Sysadmin and DBA of the > ru@ucb.crimea.ua United Commercial Bank, > ru@FreeBSD.org FreeBSD committer, > +380.652.247.647 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 5:20:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id CEEB137BCA6; Wed, 12 Apr 2000 05:20:39 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id PAA51435; Wed, 12 Apr 2000 15:19:50 +0300 (EEST) (envelope-from ru) Date: Wed, 12 Apr 2000 15:19:50 +0300 From: Ruslan Ermilov To: Julian Elischer Cc: net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG, Dru Nelson Subject: Re: pptp over NAT? Impossible? Message-ID: <20000412151950.A50059@relay.ucb.crimea.ua> Mail-Followup-To: Julian Elischer , net@FreeBSD.ORG, archie@wistle.com, brian@FreeBSD.ORG, Dru Nelson References: <38F43C84.3F54BC7E@elischer.org> <20000412125131.A8975@relay.ucb.crimea.ua> <20000412132221.A14970@relay.ucb.crimea.ua> <38F465BE.ABD322C@elischer.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i In-Reply-To: <38F465BE.ABD322C@elischer.org>; from Julian Elischer on Wed, Apr 12, 2000 at 05:02:06AM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Apr 12, 2000 at 05:02:06AM -0700, Julian Elischer wrote: > Ruslan Ermilov wrote: > > > > On Wed, Apr 12, 2000 at 12:51:31PM +0300, Ruslan Ermilov wrote: > > > On Wed, Apr 12, 2000 at 02:06:12AM -0700, Julian Elischer wrote: > > > > I've been beeting my head against a problem that I think > > > > I suddenly understand.. > > > > I've been trying to run a pptp session out from an address translated > > > > network (i.e. ppp -nat). It gets so far tand then stops. > > > > It has suddenly (after a day wasted) occured to me that > > > > maybe the ppp negotiation is being carried by GRE and that > > > > I'm guessing that GRE is not translatable.. (At least by > > > > ppp -nat). (what's happenning is that the ppp negotiating packets are > > > > getting lost in transit.) > > > > > > > GRE is supported in different way, see `nat pptp [addr]' in ppp(8), > > > and PacketAliasPptp() in libalias(3). > > > > > By the way, I see no reason why PPTP support is limited to only > > one local IP address. It *is* possible to improve PPTP support > > by introducing the following interface: > > > > int PacketAliasPptp( > > struct in_addr local_addr, > > struct in_addr remote_addr, > > struct in_addr alias_addr > > ); > > > > where `local_addr', `alias_addr' and `remote_addr' are of the same > > semantics as in PacketAliasRedirectPort() (see libalias(3) manpage). > > > > If Brian does not mind, I will implement this, then patch natd(8), > > wait until Brian prepares patches for ppp(8), commit the change to > > libalias(3), bump library's major number, and commit the rest to > > natd(8) and ppp(8). > > > > Comments? > > Makes sence to me as it is quite possible that GRE/PPTP could be > coming from several different internal machines. > > BTW shouldn't this be called PacketAliasGRE instead? > Nope, since PacketAliasPptp() supports IPPROTO_GRE, IPPROTO_ESP and IPPROTO_AH packets. -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 6:32:47 2000 Delivered-To: freebsd-net@freebsd.org Received: from stumble.ath.cx (winterpark-ubr-a-c5s2-164.cfl.rr.com [24.26.121.164]) by hub.freebsd.org (Postfix) with ESMTP id 4B9C937B9CD for ; Wed, 12 Apr 2000 06:32:44 -0700 (PDT) (envelope-from daemons@stumble.ath.cx) Received: from localhost (daemons@localhost) by stumble.ath.cx (8.9.3/8.9.3) with ESMTP id JAA16667; Wed, 12 Apr 2000 09:30:28 -0500 (EST) Date: Wed, 12 Apr 2000 09:30:27 -0500 (EST) From: daemons To: Julian Elischer Cc: net@FreeBSD.ORG Subject: Re: pptp over NAT? Impossible? In-Reply-To: <38F43C84.3F54BC7E@elischer.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This can be done. Here is an excert from an OpenBSD mailing list.. this is for ipfilter of course... DATE: 01/12/2000 08:53:29 SUBJECT: RE: IPSec across a NAT i`m not an expert, and i`m sure someone will tell me this is no good, but this is what i do to get gre (for MS PPTP) to redirect. Setup an external ip address specifically for ipsec in ifaliases. then in ipnat.rules bimap mx0 *internalip*/32 -> *externalip*/32 rdr mx0 *externalip*/32 port 500 -> *internalip* port 500 udp (i assume you want to use ike with ipsec) then in ipf.rules: block in on mx0 from any to 207.103.201.143/32 head 1 pass in on mx0 proto esp from any to 207.103.201.143/32 group 1 That works for me to redirect gre, so i don`t see why it wouldn`t work with esp. Luke On Wed, 12 Apr 2000, Julian Elischer wrote: > I've been beeting my head against a problem that I think > I suddenly understand.. > I've been trying to run a pptp session out from an address translated > network (i.e. ppp -nat). It gets so far tand then stops. > It has suddenly (after a day wasted) occured to me that > maybe the ppp negotiation is being carried by GRE and that > I'm guessing that GRE is not translatable.. (At least by > ppp -nat). (what's happenning is that the ppp negotiating packets are > getting lost in transit.) > > Can anyone comment on this theory? > > > -- > __--_|\ Julian Elischer > / \ julian@elischer.org > ( OZ ) World tour 2000 > ---> X_.---._/ presently in: Perth > v > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Apr 12 6:48:54 2000 Delivered-To: freebsd-net@freebsd.org Received: from netcom.com (netcom13.netcom.com [199.183.9.113]) by hub.freebsd.org (Postfix) with ESMTP id 07A4A37B682 for ; Wed, 12 Apr 2000 06:48:51 -0700 (PDT) (envelope-from stanb@netcom.com) Received: (from stanb@localhost) by netcom.com (8.9.3/8.9.3) id GAA12591 for freebsd-net@FreeBSD.ORG; Wed, 12 Apr 2000 06:48:44 -0700 (PDT) From: Stan Brown Message-Id: <200004121348.GAA12591@netcom.com> Subject: Bad news for ep driver To: freebsd-net@FreeBSD.ORG (FreeBSD Networking) Date: Wed, 12 Apr 2000 09:48:44 -0400 (EDT) X-Mailer: ELM [version 2.5 PL3] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org As you may remember, I was having problems with 2 3C509's in an HP Vectra 486 (ISA) machine locking up in the OACTIVE state under 3.4 I have upgraded to 4.0 with it's much improved ep driver (thanks for all the good work), and I thought the problem was gone. Before the upgrade I could reliably cuase a lcokpu by running amandausing the FreeBSD machine as the gateway between 2 networks. Amanda has been runing nicely every night since I did the upgrade. However yesterdau, I tried runing it during the day with normal network traffic, and was able to reproduce the locckup. Any sugestiosn as to how to work around this? Doing an ifconfig down/up on the affected card will restore operation if O cathc it in time, but I usually don't, and I need this to work reliably unatended. -- Stan Brown stanb@netcom.com 404-996-6955 Factory Automation Systems Atlanta Ga. -- Look, look, see Windows 95. Buy, lemmings, buy! Pay no attention to that cliff ahead... Henry Spencer (c) 1998 Stan Brown. Redistribution via the Microsoft Network is prohibited. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Apr 13 9:19: 0 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id 89EBD37B5D1 for ; Thu, 13 Apr 2000 09:18:45 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id TAA34557; Thu, 13 Apr 2000 19:16:49 +0300 (EEST) (envelope-from ru) Date: Thu, 13 Apr 2000 19:16:49 +0300 From: Ruslan Ermilov To: Brian Somers , Charles Mott , Ari Suutari , Eivind Eklund , Julian Elischer Cc: net@FreeBSD.org Subject: Improved PPTP support for libalias(3) Message-ID: <20000413191649.A19493@relay.ucb.crimea.ua> Mail-Followup-To: Brian Somers , Charles Mott , Ari Suutari , Eivind Eklund , Julian Elischer , net@FreeBSD.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.3i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi! For those of you who would like to review this change, I have made it available from my FreeBSD homepage: http://people.FreeBSD.org/~ru/libalias_pptp_patch.0 WHAT IS ADDRESSED IN THIS PATCH The current PPTP support in libalias(3) is limited to only one local IP address. This change "eliminates" this limitation by adding the new API function, PacketAliasRedirectPptp(). It takes three arguments: src_addr, dst_addr and alias_addr. The meaning of these arguments is fully identical to the corresponding arguments of PacketAliasRedirectPort(), i.e. dst_addr can be INADDR_ANY or any specific IP address, while src_addr/alias_addr could be INADDR_ANY to always match the default aliasing address set by PacketAliasSetAddress(). IMPLEMENTATION DETAILS The old function, PacketAliasPptp(), is provided to maintain backwards compatibility, and is identical to the PacketAliasPptp(src_addr, nullAddress, nullAddress); meaning that any incoming PPTP traffic to the default aliasing address will be forwarded to the local (src_addr) machine. The static NAT rules set by PacketAliasRedirectAddress(), will now match PPTP packets, and PKT_ALIAS_DENY_INCOMING mode flag will be honored for PPTP packets as well. TESTING The patch was tested with both unmodified (using old PacketAliasPptp()) and modified (using new PacketAliasRedirectPptp()) natd(8) sources, and with nos-tun(8) as a tunneling software on both ends. This required a simple change to the alias.c (adding IPPROTO_IPEIP to the list of PPTP protocols), which did not get included in this patch. The manual page is not yet updated, pending your feedback. WHAT COULD BE IMPROVED It would be pretty easy to add a new PKT_ALIAS_DISABLE_PPTP mode bit to make it possible to disable PPTP support. Or PKT_ALIAS_ENABLE_PPTP could be introduced to enable PPTP support on demand, and have it disabled by default. Cheers, -- Ruslan Ermilov Sysadmin and DBA of the ru@ucb.crimea.ua United Commercial Bank, ru@FreeBSD.org FreeBSD committer, +380.652.247.647 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Apr 13 9:47:28 2000 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.elischer.org (c421509-a.pinol1.sfba.home.com [24.7.86.9]) by hub.freebsd.org (Postfix) with ESMTP id DBCC137BD64; Thu, 13 Apr 2000 09:47:20 -0700 (PDT) (envelope-from julian@elischer.org) Received: from InterJet.elischer.org (InterJet.elischer.org [192.168.1.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id JAA77770; Thu, 13 Apr 2000 09:47:19 -0700 (PDT) Date: Thu, 13 Apr 2000 09:47:18 -0700 (PDT) From: Julian Elischer To: Ruslan Ermilov Cc: Brian Somers , Charles Mott , Ari Suutari , Eivind Eklund , net@FreeBSD.org Subject: Re: Improved PPTP support for libalias(3) In-Reply-To: <20000413191649.A19493@relay.ucb.crimea.ua> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 13 Apr 2000, Ruslan Ermilov wrote: > Hi! > > For those of you who would like to review this change, I have made it > available from my FreeBSD homepage: > > http://people.FreeBSD.org/~ru/libalias_pptp_patch.0 > > > WHAT IS ADDRESSED IN THIS PATCH > > The current PPTP support in libalias(3) is limited to only one local IP > address. > > This change "eliminates" this limitation by adding the new API function, > PacketAliasRedirectPptp(). It takes three arguments: src_addr, dst_addr > and alias_addr. The meaning of these arguments is fully identical to > the corresponding arguments of PacketAliasRedirectPort(), i.e. dst_addr > can be INADDR_ANY or any specific IP address, while src_addr/alias_addr > could be INADDR_ANY to always match the default aliasing address set by > PacketAliasSetAddress(). > does this mean that only one PC at a time behind a NAT wall, can access a particular machine? i.e. two visitors with their own laptops from the same place, cannot go back to the same host to read their mail..? This is not a BAD restriction, but it is a restriction.. > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Apr 14 2:17:58 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.ucb.crimea.ua (relay.ucb.crimea.ua [212.110.138.1]) by hub.freebsd.org (Postfix) with ESMTP id 4C13E37B5FE; Fri, 14 Apr 2000 02:17:46 -0700 (PDT) (envelope-from ru@ucb.crimea.ua) Received: (from ru@localhost) by relay.ucb.crimea.ua (8.9.3/8.9.3/UCB) id MAA49281; Fri, 14 Apr 2000 12:17:59 +0300 (EEST) (envelope-from ru) Date: Fri, 14 Apr 2000 12:17:59 +0300 From: Ruslan Ermilov To: brian@pocketscience.com, brian@FreeBSD.org, cmott@scientech.com, net@FreeBSD.org Cc: freebsd-gnats-submit@FreeBSD.org Subject: Re: bin/17963: NATD appears to memory leak when a connection fails from the internal network to the external network. Message-ID: <20000414121759.A37837@relay.ucb.crimea.ua> Mail-Followup-To: brian@pocketscience.com, brian@FreeBSD.org, cmott@scientech.com, net@FreeBSD.org, freebsd-gnats-submit@FreeBSD.ORG References: <200004130218.TAA12378@freefall.freebsd.org> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary=ZGiS0Q5IWpPtfppv X-Mailer: Mutt 0.95.3i In-Reply-To: <200004130218.TAA12378@freefall.freebsd.org>; from brian@pocketscience.com on Wed, Apr 12, 2000 at 07:18:39PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --ZGiS0Q5IWpPtfppv Content-Type: text/plain; charset=us-ascii On Wed, Apr 12, 2000 at 07:18:39PM -0700, brian@pocketscience.com wrote: > [...] > from an internal machine, make several network connections that get > dropped on the remote end (not denied, but connection timeouts) > Please try the following patch. It is for RELENG_3 (latest) sources. Extract patch to the currrent directory, then follow instructions: # mv ./p /tmp # cd /usr/src/lib/libalias # patch data.tcp->state.out != ALIAS_TCP_STATE_CONNECTED) { + if (link->data.tcp->state.out != ALIAS_TCP_STATE_CONNECTED) link->expire_time = TCP_EXPIRE_DEAD; - } else { + else link->expire_time = TCP_EXPIRE_SINGLEDEAD; - } - link->data.tcp->state.in = state; break; case ALIAS_TCP_STATE_CONNECTED: - link->expire_time = TCP_EXPIRE_CONNECTED; - /*FALLTHROUGH*/ - case ALIAS_TCP_STATE_NOT_CONNECTED: - link->data.tcp->state.in = state; + if (link->data.tcp->state.out == ALIAS_TCP_STATE_CONNECTED) + link->expire_time = TCP_EXPIRE_CONNECTED; break; default: abort(); } + link->data.tcp->state.in = state; } @@ -1563,22 +1560,19 @@ SetStateOut(struct alias_link *link, int /* TCP output state */ switch (state) { case ALIAS_TCP_STATE_DISCONNECTED: - if (link->data.tcp->state.in != ALIAS_TCP_STATE_CONNECTED) { + if (link->data.tcp->state.in != ALIAS_TCP_STATE_CONNECTED) link->expire_time = TCP_EXPIRE_DEAD; - } else { + else link->expire_time = TCP_EXPIRE_SINGLEDEAD; - } - link->data.tcp->state.out = state; break; case ALIAS_TCP_STATE_CONNECTED: - link->expire_time = TCP_EXPIRE_CONNECTED; - /*FALLTHROUGH*/ - case ALIAS_TCP_STATE_NOT_CONNECTED: - link->data.tcp->state.out = state; + if (link->data.tcp->state.in == ALIAS_TCP_STATE_CONNECTED) + link->expire_time = TCP_EXPIRE_CONNECTED; break; default: abort(); } + link->data.tcp->state.out = state; } --ZGiS0Q5IWpPtfppv-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Apr 14 9: 0: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from rockstone.triada.bg (mail.triada.bg [212.50.28.138]) by hub.freebsd.org (Postfix) with ESMTP id ED06D37BEF8 for ; Fri, 14 Apr 2000 08:59:52 -0700 (PDT) (envelope-from plamen@office.triada.bg) Received: from kasandra (unverified [212.50.29.2]) by rockstone.triada.bg (Rockliffe SMTPRA 4.2.1) with SMTP id for ; Fri, 14 Apr 2000 18:59:39 +0300 Message-ID: <007d01bfa62a$b3e01e70$021d32d4@triada.bg> From: "Plamen Stoev" To: Subject: recover somefiles Date: Fri, 14 Apr 2000 19:01:29 +0300 Organization: Triada Soft Ltd MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_007A_01BFA643.D7785370" X-Priority: 1 X-MSMail-Priority: High X-Mailer: Microsoft Outlook Express 5.00.2919.6600 Disposition-Notification-To: "Plamen Stoev" X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_007A_01BFA643.D7785370 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable Can I recover *somefile* after rm -rf command? ------=_NextPart_000_007A_01BFA643.D7785370 Content-Type: text/html; charset="koi8-r" Content-Transfer-Encoding: quoted-printable
Can I recover *somefile* after rm -rf=20 command?
------=_NextPart_000_007A_01BFA643.D7785370-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Apr 14 10:35:43 2000 Delivered-To: freebsd-net@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id E725D37B883; Fri, 14 Apr 2000 10:35:26 -0700 (PDT) (envelope-from billf@jade.chc-chimes.com) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id 2FDE61C5C; Fri, 14 Apr 2000 13:35:26 -0400 (EDT) Date: Fri, 14 Apr 2000 13:35:26 -0400 From: Bill Fumerola To: Plamen Stoev Cc: questions@FreeBSD.org Subject: Re: recover somefiles Message-ID: <20000414133526.R397@jade.chc-chimes.com> References: <007d01bfa62a$b3e01e70$021d32d4@triada.bg> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <007d01bfa62a$b3e01e70$021d32d4@triada.bg>; from plamen@office.triada.bg on Fri, Apr 14, 2000 at 07:01:29PM +0300 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [ -net ---> -questions ] On Fri, Apr 14, 2000 at 07:01:29PM +0300, Plamen Stoev wrote: > Can I recover *somefile* after rm -rf command? Yes. Restore them from your backup. -- Bill Fumerola - Network Architect Computer Horizons Corp - CVM e-mail: billf@chc-chimes.com / billf@FreeBSD.org Office: 800-252-2421 x128 / Cell: 248-761-7272 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Apr 14 13:53:50 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.xmission.com (mail.xmission.com [198.60.22.22]) by hub.freebsd.org (Postfix) with ESMTP id EB00B37B67F for ; Fri, 14 Apr 2000 13:53:47 -0700 (PDT) (envelope-from connie@hobbscreek.com) Received: from www by mail.xmission.com with local (Exim 3.03 #3) id 12gD63-00073g-00 for freebsd-net@freebsd.org; Fri, 14 Apr 2000 14:53:47 -0600 User-Agent: IMHO/0.97.1 (Webmail for Roxen) Content-Type: text/plain; charset=iso-8859-1 Date: Fri, 14 Apr 2000 14:53:47 -700 To: freebsd-net@freebsd.org X-Originating-IP: [166.70.162.136] MIME-Version: 1.0 From: Connie Content-Length: 358 Content-Transfer-Encoding: 8bit Subject: IP header compression for PPP Message-Id: Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm looking for source that implements IP header compression as described in RFC 2507. Anyone know if this exists in FreeBSD? Thanks, Connie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Apr 14 14:25:16 2000 Delivered-To: freebsd-net@freebsd.org Received: from ants.pocketscience.com (gateway1.pocketscience.com [209.24.64.3]) by hub.freebsd.org (Postfix) with ESMTP id 5A40837B6D5; Fri, 14 Apr 2000 14:25:13 -0700 (PDT) (envelope-from brian@pocketscience.com) Received: from pocketscience.com (southpark.i.pocketscience.com [10.10.4.2]) by ants.pocketscience.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id HXB8H8PT; Fri, 14 Apr 2000 14:25:43 -0700 Message-ID: <38F78CB8.AC801CD4@pocketscience.com> Date: Fri, 14 Apr 2000 14:25:12 -0700 From: Brian Nelson Organization: PocketScience, Inc X-Mailer: Mozilla 4.72 [en] (X11; U; FreeBSD 4.0-STABLE i386) X-Accept-Language: en, pdf MIME-Version: 1.0 To: Ruslan Ermilov Cc: brian@FreeBSD.org, cmott@scientech.com, net@FreeBSD.org, freebsd-gnats-submit@FreeBSD.org Subject: Re: bin/17963: NATD appears to memory leak when a connection fails from the internal network to the external network. References: <200004130218.TAA12378@freefall.freebsd.org> <20000414121759.A37837@relay.ucb.crimea.ua> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This seems to have worked! been running for hours, and we're still at ~600k. Thanks a lot for your help! is this going into -current or -stable any time soon? Ruslan Ermilov wrote: > > On Wed, Apr 12, 2000 at 07:18:39PM -0700, brian@pocketscience.com wrote: > > > [...] > > from an internal machine, make several network connections that get > > dropped on the remote end (not denied, but connection timeouts) > > > Please try the following patch. It is for RELENG_3 (latest) sources. > Extract patch to the currrent directory, then follow instructions: > > # mv ./p /tmp > # cd /usr/src/lib/libalias > # patch # make clean all install # build/install new library > # cd /usr/src/sbin/natd > # make clean all install # build/install natd with new library > > BACKGROUND > > The problem was that the TCP link's timeout was set to TCP_EXPIRE_CONNECTED > (86400 secs) right after the first SYN from the client (or from the server > for incoming connections). With this change, this huge timeout value will > only be applied to ESTABLISHED connections, i.e. only after SYN was seen > from both client and server side. TCP links corresponding to failed TCP > connections (those which never receive neither SYN-ACK nor RST from server), > will be dropped after TCP_EXPIRE_INITIAL (300 seconds) timeout. > > Cheers, > -- > Ruslan Ermilov Sysadmin and DBA of the > ru@ucb.crimea.ua United Commercial Bank, > ru@FreeBSD.org FreeBSD committer, > +380.652.247.647 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age > > ------------------------------------------------------------------------ > > pName: p > Type: Plain Text (text/plain) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message