From owner-freebsd-net Sun Oct 8 3:41:32 2000 Delivered-To: freebsd-net@freebsd.org Received: from gidora.zeta.org.au (gidora.zeta.org.au [203.26.10.25]) by hub.freebsd.org (Postfix) with SMTP id E165F37B66E for ; Sun, 8 Oct 2000 03:41:24 -0700 (PDT) Received: (qmail 30914 invoked from network); 8 Oct 2000 10:41:19 -0000 Received: from unknown (HELO bde.zeta.org.au) (203.2.228.102) by gidora.zeta.org.au with SMTP; 8 Oct 2000 10:41:19 -0000 Date: Sun, 8 Oct 2000 21:41:14 +1100 (EST) From: Bruce Evans X-Sender: bde@besplex.bde.org To: Garrett Wollman Cc: itojun@iijlab.net, freebsd-net@FreeBSD.org, developers@FreeBSD.org Subject: Re: header bogosity in In-Reply-To: <200010080104.VAA99968@khavrinen.lcs.mit.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 7 Oct 2000, Garrett Wollman wrote: > < > > i believe this was here so that we can share radix.[ch] among > > sys/net, and sbin/routed. > > And, potentially, other routing processes. However, last time I tried > this, support had rotted sufficiently elsewhere as to require manual > edits elsewhere, so I don't see much value in keeping the non-kernel routed has its own radix.h anyway. This has rotted in a different way than the kernel one (not all that much). At least it has advanced to the early 1980's -- it casts to void * and size_t instead of to caddr_t and unsigned, and uses the memcpy family instead of the bcopy family. It still doesn't understand "const". routed/radix.c #defines yet another bogus version of Bcmp(). Bruce To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 8 17:49:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from bastuba.partitur.se (bastuba.partitur.se [212.209.169.194]) by hub.freebsd.org (Postfix) with ESMTP id 9F7ED37B503 for ; Sun, 8 Oct 2000 17:49:41 -0700 (PDT) Received: from palle.girgensohn.se (c193.150.250.87.cm-upc.chello.se [193.150.250.87]) by bastuba.partitur.se (8.9.3/8.9.3) with ESMTP id CAA57197; Mon, 9 Oct 2000 02:49:36 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se (localhost [127.0.0.1]) by palle.girgensohn.se (8.11.0/8.11.0) with ESMTP id e990nTV04378; Mon, 9 Oct 2000 02:49:34 +0200 (CEST) (envelope-from girgen@partitur.se) Message-ID: <39E11619.4694F780@partitur.se> Date: Mon, 09 Oct 2000 02:49:29 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1.1-RELEASE i386) X-Accept-Language: sv, en MIME-Version: 1.0 To: Raymond Wiker Cc: freebsd-net@FreeBSD.ORG Subject: Re: bridged vmnet make NIS go berzerk killing servers with icmp msgs References: <87aeck14mk.fsf@palle.girgensohn.se> <39DC81E1.2C0F7315@quack.kfu.com> <14813.28763.410367.378304@raw.grenland.fast.no> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Raymond Wiker wrote: > > Nick Sayer writes: > > Palle Girgensohn wrote: > > > > > > Hi! > > > > > > Sorry for crossposting, but I'm not certain wheather this is -net or > > > -emulation; probably both... > > > > I see a similar failure every once in a while on FreeBSD machines that > > are NIS clients that are not running vmware, though it sounds to me like > > you are seeing it a lot more frequently. hmmm... not running vmware? are they running an IP bridge, or do you mean that this happens to vanilla fbsd systems? > > I can sometimes precipitate this by disconnecting an NIS client from the > > net briefly, using NIS, then reconnecting it. It ends up in the icmp > > supression state and the only way out is the history eraser button. Yes, that is usually a "good" way to trigger it, but I have seen it happen on occasion without disconnecting. Might be high network load at those times, though, I'm not sure. > You can achieve the same effect by putting wildly > inappropriate values in /var/yp/securenets... > > //Raymond. Maybe, I could deny all bridged IP's from NIS by putting only every allowed IP# in securenets, instead of the entire network as now? The odd thing is, it is not the bridged IP that sends the bad icmps, but the host's standard IP. /Palle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 8 17:57:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from bastuba.partitur.se (bastuba.partitur.se [212.209.169.194]) by hub.freebsd.org (Postfix) with ESMTP id 29A1137B503; Sun, 8 Oct 2000 17:57:32 -0700 (PDT) Received: from palle.girgensohn.se (c193.150.250.87.cm-upc.chello.se [193.150.250.87]) by bastuba.partitur.se (8.9.3/8.9.3) with ESMTP id CAA57228; Mon, 9 Oct 2000 02:57:30 +0200 (CEST) (envelope-from girgen@partitur.se) Received: from partitur.se (localhost [127.0.0.1]) by palle.girgensohn.se (8.11.0/8.11.0) with ESMTP id e990vTV04392; Mon, 9 Oct 2000 02:57:30 +0200 (CEST) (envelope-from girgen@partitur.se) Message-ID: <39E117F9.DDDA6881@partitur.se> Date: Mon, 09 Oct 2000 02:57:29 +0200 From: Palle Girgensohn Organization: Partitur X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1.1-RELEASE i386) X-Accept-Language: sv, en MIME-Version: 1.0 To: Nick Sayer , freebsd-net@FreeBSD.ORG, freebsd-emulation@FreeBSD.ORG Subject: Re: bridged vmnet make NIS go berzerk killing servers with icmp msgs References: <87aeck14mk.fsf@palle.girgensohn.se> <39DC81E1.2C0F7315@quack.kfu.com> <39DC89E9.6569F@partitur.se> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Palle Girgensohn wrote: > > Nick Sayer wrote: > > > > I can sometimes precipitate this by disconnecting an NIS client from the > > net briefly, using NIS, then reconnecting it. It ends up in the icmp > > supression state and the only way out is the history eraser button. > > you mean that after disconnecting the client, you do some NIS > operations? precipitate wasn't in my dictionary, hence the somewhat confusing reply :) Cheers, Palle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 0:26: 3 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp3.libero.it (smtp3.libero.it [193.70.192.53]) by hub.freebsd.org (Postfix) with ESMTP id 2ABEB37B502 for ; Mon, 9 Oct 2000 00:26:01 -0700 (PDT) Received: from libero.it (193.70.192.63) by smtp3.libero.it; 9 Oct 2000 09:25:59 +0200 Date: Mon, 9 Oct 2000 09:25:58 +0200 Message-Id: Subject: Randon net errors: a pain in the ass =( MIME-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable From: "flaggaccio@libero.it" To: freebsd-net@freebsd.org X-XaM3-API-Version: 1.1.9.1.22 X-SenderIP: 159.149.134.17 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I've some random net problems using my FreeBSD 4.1.1 STABLE (i'm using dial-up connection). A lot of site seems to be unreachable. I get a lot of timeout errors when i try to wget, to connect to irc server, to use www, etcetc but: -ping, nslookup & traceroute give me a positive response: the site is up and running, and i'm unable to reach it -the errors are random: in the first connection www.slashdot.org is unreachable. So i disconnect and redial, now i can see slashdot but another one site that previously was ok, now is unavailable, and so again...i'm really sad...=3D( -all is ok under windows, so it's not an error of my isp, it's the bsd side that is wrong I hope that anyone can help me... Paolo p.s. apologize me for my bad english To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 6:13:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp.alacritech.com (smtp.alacritech.com [209.10.208.82]) by hub.freebsd.org (Postfix) with ESMTP id A6E7637B502 for ; Mon, 9 Oct 2000 06:13:33 -0700 (PDT) Received: from [10.1.10.19] by smtp.alacritech.com (NTMail 4.30.0012/NY3553.00.2884f51f) with ESMTP id fqtiaaaa for ; Mon, 9 Oct 2000 06:11:37 -0700 From: "Christopher Harrer" To: "Freebsd-Net" Subject: Locking a SOCKET Date: Mon, 9 Oct 2000 09:11:47 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello All, Sorry if this is a simplistic question. I am writing a SOCKET "filter" driver. Can someone please point me to documentation that explains the locking methods in FreeBSD? Thanks! Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 7:44:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from falla.videotron.net (falla.videotron.net [205.151.222.106]) by hub.freebsd.org (Postfix) with ESMTP id 5966C37B502 for ; Mon, 9 Oct 2000 07:44:28 -0700 (PDT) Received: from modemcable213.3-201-24.mtl.mc.videotron.ca ([24.201.3.213]) by falla.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G2600JDS3M1OP@falla.videotron.net> for freebsd-net@FreeBSD.ORG; Mon, 9 Oct 2000 10:44:26 -0400 (EDT) Date: Mon, 09 Oct 2000 10:48:27 -0400 (EDT) From: Bosko Milekic Subject: Re: Locking a SOCKET In-reply-to: X-Sender: bmilekic@jehovah.technokratis.com To: Christopher Harrer Cc: Freebsd-Net Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 9 Oct 2000, Christopher Harrer wrote: > Hello All, > > Sorry if this is a simplistic question. I am writing a SOCKET "filter" > driver. Can someone please point me to documentation that explains the > locking methods in FreeBSD? > > Thanks! > > Chris Hi Chris, The "locking" methods for sockets are still "in-development." :-) Basically, Alfred is working on this, the last time I checked. I'm hoping that he will post in follow-up to your Email, but if not, you can always peek/poke/etc at his web space: http://people.freebsd.org/~alfred/mpsafe/ There is a file in there called "stackjournal.txt" which, amongst other things, discusses some issues pertaining to locking the socket structure. This is work-in-progress, and it's taking place in -CURRENT. If you are running -STABLE, the code there takes care of structure consistency by masking out the soft net interrupt, with splnet(). This takes care of sockets, and socket buffers. If you write something using these semantics, and want to keep supporting it, be prepared to do some modifying eventually, when the locking stuff is finalized and committed. Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 7:48:18 2000 Delivered-To: freebsd-net@freebsd.org Received: from smtp.alacritech.com (smtp.alacritech.com [209.10.208.82]) by hub.freebsd.org (Postfix) with ESMTP id 7564C37B66C for ; Mon, 9 Oct 2000 07:48:16 -0700 (PDT) Received: from [10.1.10.19] by smtp.alacritech.com (NTMail 4.30.0012/NY3553.00.2884f51f) with ESMTP id cstiaaaa for ; Mon, 9 Oct 2000 07:46:26 -0700 From: "Christopher Harrer" To: "Bosko Milekic" Cc: "Freebsd-Net" Subject: RE: Locking a SOCKET Date: Mon, 9 Oct 2000 10:46:35 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bosko, Thanks very much for the answer, it's very imformative and a great help! Chris -----Original Message----- From: owner-freebsd-net@FreeBSD.ORG [mailto:owner-freebsd-net@FreeBSD.ORG]On Behalf Of Bosko Milekic Sent: Monday, October 09, 2000 10:48 AM To: Christopher Harrer Cc: Freebsd-Net Subject: Re: Locking a SOCKET On Mon, 9 Oct 2000, Christopher Harrer wrote: > Hello All, > > Sorry if this is a simplistic question. I am writing a SOCKET "filter" > driver. Can someone please point me to documentation that explains the > locking methods in FreeBSD? > > Thanks! > > Chris Hi Chris, The "locking" methods for sockets are still "in-development." :-) Basically, Alfred is working on this, the last time I checked. I'm hoping that he will post in follow-up to your Email, but if not, you can always peek/poke/etc at his web space: http://people.freebsd.org/~alfred/mpsafe/ There is a file in there called "stackjournal.txt" which, amongst other things, discusses some issues pertaining to locking the socket structure. This is work-in-progress, and it's taking place in -CURRENT. If you are running -STABLE, the code there takes care of structure consistency by masking out the soft net interrupt, with splnet(). This takes care of sockets, and socket buffers. If you write something using these semantics, and want to keep supporting it, be prepared to do some modifying eventually, when the locking stuff is finalized and committed. Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 8:23:19 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailtoaster2.pipeline.ch (mailtoaster2.pipeline.ch [62.48.0.71]) by hub.freebsd.org (Postfix) with ESMTP id 7D0A437B503 for ; Mon, 9 Oct 2000 08:23:15 -0700 (PDT) Received: (qmail 87658 invoked from network); 9 Oct 2000 15:24:34 -0000 Received: from unknown (HELO telehouse.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster2.pipeline.ch (qmail-ldap-1.03) with RC4-MD5 encrypted SMTP for ; 9 Oct 2000 15:24:34 -0000 Message-ID: <39E1E2FB.C397B8EF@telehouse.ch> Date: Mon, 09 Oct 2000 17:23:39 +0200 From: Andre Oppermann X-Mailer: Mozilla 4.74 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: netgraph and ar0 (digi sync/570i) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello guys I've got a few problems with a new FreeBSD 4.1 router test setup. Up until now I was unsing the Digi Sync/570i (V.35) with the native driver plus kernel sppp for ppp and/or cisco HDLC mode. No problems here. Works fine. To leverage the new possibilities of VPN's, protocol stacking, etc. I now tried to use it with netgraph. The card is still detected fine and I set up netgraph with the following: $ ngctl mkpeer sync_ar0: cisco rawdata downstream $ ngctl mkpeer sync_ar0:rawdata iface inet inet OK, now the ng0 interface appears in ifconfig -a and can be configured: $ ifconfig ng0 62.48.31.181 62.48.31.182 netmask 255.255.255.252 This brings up the interface but leads to an error message like the following: ar0 Receive error, chan 0, stat a4, msci st3 3, rxhind 25, cda40fa eda Has anybody got a hint what might be going wrong here or has got it working? Remember, without netgraph is works fine. A few more questions and observations: 1. With netgraph the ifconfig output shows 'NOARP', without it does not. 2. With netgraph the ifconfig output shows 'SIMPLEX', without it does not. This is clearly wrong, leased lines are duplex. Thanks -- Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 18:38: 7 2000 Delivered-To: freebsd-net@freebsd.org Received: from relay.securify.com (relay.securify.com [207.5.63.61]) by hub.freebsd.org (Postfix) with ESMTP id AD02637B502 for ; Mon, 9 Oct 2000 18:38:04 -0700 (PDT) Received: by relay.securify.com; id SAA13713; Mon, 9 Oct 2000 18:38:06 -0700 (PDT) Received: from unknown(10.5.63.6) by relay.securify.com via smap (V5.5) id xma013705; Mon, 9 Oct 00 18:37:36 -0700 Received: from localhost (tomb@localhost) by dude.securify.com (8.9.3/8.9.3) with ESMTP id SAA56475 for ; Mon, 9 Oct 2000 18:37:36 -0700 (PDT) (envelope-from tomb@dude.securify.com) Date: Mon, 9 Oct 2000 18:37:36 -0700 (PDT) From: Tom Brown To: freebsd-net@freebsd.org Subject: arp problems with foundry networks serveriron Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have a FreeBSD 3.4 server running apache which I am trying to loadbalance. I have hit a problem with ARP. My loadbalancer is sending an arp request to the bsd box which is not responding. This is being send inside an IEE 802.1q vlan packet. This includes an extra 4 bytes of data which offset's the arp flags further into the packet. If I turn off the vlan the loadbalancer produces normal Ethernet II arp requests and the BSD web server responds without a problem. Can anyone explain why an 802.1q ARP request is rejected by the BSD box??? Thanks for your time. Tom Brown To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 20:35: 9 2000 Delivered-To: freebsd-net@freebsd.org Received: from urban.iinet.net.au (urban.iinet.net.au [203.59.24.231]) by hub.freebsd.org (Postfix) with ESMTP id 402EA37B66D for ; Mon, 9 Oct 2000 20:35:04 -0700 (PDT) Received: from elischer.org (reggae-34-194.nv.iinet.net.au [203.59.167.194]) by urban.iinet.net.au (8.8.7/8.8.7) with ESMTP id LAA05454; Tue, 10 Oct 2000 11:34:50 +0800 Message-ID: <39E28E54.7086BA0D@elischer.org> Date: Mon, 09 Oct 2000 20:34:44 -0700 From: Julian Elischer X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 5.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: Andre Oppermann Cc: freebsd-net@freebsd.org Subject: Re: netgraph and ar0 (digi sync/570i) References: <39E1E2FB.C397B8EF@telehouse.ch> Content-Type: text/plain; charset=iso-8859-15 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andre Oppermann wrote: > > Hello guys > > I've got a few problems with a new FreeBSD 4.1 router test setup. > > Up until now I was unsing the Digi Sync/570i (V.35) with the native > driver plus kernel sppp for ppp and/or cisco HDLC mode. No problems > here. Works fine. > > To leverage the new possibilities of VPN's, protocol stacking, etc. > I now tried to use it with netgraph. > > The card is still detected fine and I set up netgraph with the > following: > > $ ngctl mkpeer sync_ar0: cisco rawdata downstream > $ ngctl mkpeer sync_ar0:rawdata iface inet inet > > OK, now the ng0 interface appears in ifconfig -a and can be configured: > > $ ifconfig ng0 62.48.31.181 62.48.31.182 netmask 255.255.255.252 > > This brings up the interface but leads to an error message like the > following: > > ar0 Receive error, chan 0, stat a4, msci st3 3, rxhind 25, cda40fa > eda > > Has anybody got a hint what might be going wrong here or has got it > working? Remember, without netgraph is works fine. We have never had an AR card to test the netgraph code with. The netgraph code was done "in theory", but is waiting at the ("well that's all the hard work done" stage, for someone with a card to show up..) Basically it is the same code as in the Sr driver and a prorpretary card at Whistle. I will be out of touch for a day or two but if you would like to help me get it going send me some email and we can see what we can do.. The fact that you have it running in the old format shows that all the information needed is there.. I just need to figure out what I've missed out.. > > A few more questions and observations: > > 1. With netgraph the ifconfig output shows 'NOARP', without it does > not. > 2. With netgraph the ifconfig output shows 'SIMPLEX', without it does > not. This is clearly wrong, leased lines are duplex. With netgraph, the ar device should not HAVE a ifconfig entry.. if it doesm that that is coding problem straight away.. > > Thanks > -- > Andre > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- __--_|\ Julian Elischer / \ julian@elischer.org ( OZ ) World tour 2000 ---> X_.---._/ presently in: Perth v To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 9 23: 8:14 2000 Delivered-To: freebsd-net@freebsd.org Received: from sr14.nsw-remote.bigpond.net.au (sr14.nsw-remote.bigpond.net.au [24.192.3.29]) by hub.freebsd.org (Postfix) with ESMTP id 9746737B66D for ; Mon, 9 Oct 2000 23:08:09 -0700 (PDT) Received: from areilly.bpc-users.org (CPE-144-132-245-92.nsw.bigpond.net.au [144.132.245.92]) by sr14.nsw-remote.bigpond.net.au (Pro-8.9.3/8.9.3) with SMTP id RAA11209 for ; Tue, 10 Oct 2000 17:08:01 +1100 (EDT) Received: (qmail 3751 invoked by uid 1000); 10 Oct 2000 06:07:58 -0000 From: "Andrew Reilly" Date: Tue, 10 Oct 2000 17:07:58 +1100 To: Archie Cobbs Cc: freebsd-net@freebsd.org Subject: Re: mpd-netgraph port vs Windows-2000 PPTP vpn Message-ID: <20001010170757.A1428@gurney.reilly.home> References: <20000718231031.A16524@gurney.reilly.home> <200007181745.KAA55411@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200007181745.KAA55411@bubba.whistle.com>; from archie@whistle.com on Tue, Jul 18, 2000 at 10:45:59AM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Jul 18, 2000 at 10:45:59AM -0700, Archie Cobbs wrote: > Andrew Reilly writes: > > mpd: [vpn] LCP: auth: peer wants CHAP, I want CHAP > > mpd: [vpn] CHAP: sending CHALLENGE > > mpd: [vpn] LCP: LayerUp > > mpd: pptp0: CID 0xa525 in SetLinkInfo not found > > mpd: [vpn] CHAP: rec'd CHALLENGE #0 > > mpd: Name: "FIREWALL" > > mpd: Using authname "andrew" > > mpd: [vpn] CHAP: sending RESPONSE > > mpd: [vpn] CHAP: rec'd FAILURE #0 > > mpd: [vpn] LCP: authorization failed > > This is a bit weird.. the remote side claims to support CHAP MD5 > but either doesn't really, or your password is wrong. But even > if this were fixed, you need MS-CHAP to do MPPE encryption, so > that would still be a problem. > > Just for fun, try the patch below and see if you get any further. > =================================================================== > RCS file: /cvs/mod/whistle/ia/daemon/mpd/lcp.c,v > retrieving revision 1.12.2.18 > diff -u -r1.12.2.18 lcp.c > --- lcp.c 2000/05/08 20:33:34 1.12.2.18 > +++ lcp.c 2000/07/18 17:43:22 > @@ -736,7 +736,11 @@ > case TY_AUTHPROTO: /* authentication protocol */ > { > static const u_char chapcf[] = > +#ifdef MICROSOFT_CHAP > + { PROTO_CHAP >> 8, PROTO_CHAP & 0xff, CHAP_ALG_MSOFT }; > +#else > { PROTO_CHAP >> 8, PROTO_CHAP & 0xff, CHAP_ALG_MD5 }; > +#endif > static const struct fsmoption chapNak = > { TY_AUTHPROTO, 2 + sizeof(chapcf), (u_char *) chapcf }; > static const u_char papcf[] = I've just upgraded to mpd-netgraph-3.1, and that patch still seems to be required for authentication against the office's Windows{NT,2000} PPTP server. Any chance of this making it into the distribution? Or is this indicative that there is still something horribly wrong with my setup? Oh: the define MICROSOFT_CHAP is also necessary, but isn't mentioned in the ports/net/mpd-netgraph/Makefile. It is described in work/mpd-3.1/doc/mpd8.html, but by then it's too late for a straight make install. Should this be a send-pr? -- Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 1:48:35 2000 Delivered-To: freebsd-net@freebsd.org Received: from mailtoaster2.pipeline.ch (mailtoaster2.pipeline.ch [62.48.0.71]) by hub.freebsd.org (Postfix) with ESMTP id 8E3DE37B66D for ; Tue, 10 Oct 2000 01:48:30 -0700 (PDT) Received: (qmail 88537 invoked from network); 10 Oct 2000 08:49:50 -0000 Received: from unknown (HELO telehouse.ch) ([62.48.0.53]) (envelope-sender ) by mailtoaster2.pipeline.ch (qmail-ldap-1.03) with RC4-MD5 encrypted SMTP for ; 10 Oct 2000 08:49:50 -0000 Message-ID: <39E2D7F5.224188EF@telehouse.ch> Date: Tue, 10 Oct 2000 10:48:53 +0200 From: Andre Oppermann X-Mailer: Mozilla 4.74 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: Julian Elischer Cc: freebsd-net@freebsd.org Subject: Re: netgraph and ar0 (digi sync/570i) References: <39E1E2FB.C397B8EF@telehouse.ch> <39E28E54.7086BA0D@elischer.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian Elischer wrote: > > Andre Oppermann wrote: > > > > Hello guys > > > > I've got a few problems with a new FreeBSD 4.1 router test setup. > > > > Up until now I was unsing the Digi Sync/570i (V.35) with the native > > driver plus kernel sppp for ppp and/or cisco HDLC mode. No problems > > here. Works fine. > > > > To leverage the new possibilities of VPN's, protocol stacking, etc. > > I now tried to use it with netgraph. > > > > The card is still detected fine and I set up netgraph with the > > following: > > > > $ ngctl mkpeer sync_ar0: cisco rawdata downstream > > $ ngctl mkpeer sync_ar0:rawdata iface inet inet > > > > OK, now the ng0 interface appears in ifconfig -a and can be configured: > > > > $ ifconfig ng0 62.48.31.181 62.48.31.182 netmask 255.255.255.252 > > > > This brings up the interface but leads to an error message like the > > following: > > > > ar0 Receive error, chan 0, stat a4, msci st3 3, rxhind 25, cda40fa > > eda > > > > Has anybody got a hint what might be going wrong here or has got it > > working? Remember, without netgraph is works fine. > > We have never had an AR card to test the netgraph code with. > The netgraph code was done "in theory", but is waiting at the > ("well that's all the hard work done" stage, for someone with a card > to show up..) > Basically it is the same code as in the Sr driver and a prorpretary > card at Whistle. Ah, ok. > I will be out of touch for a day or two but if you would like to help me > get it going > send me some email and we can see what we can do.. Please help me getting this working. I just get used to netgraph but I really like it. > The fact that you have it running in the old format shows that all the > information > needed is there.. I just need to figure out what I've missed out.. I was browsing through the code today and, well, it looks like it is easy to miss something there. > > A few more questions and observations: > > > > 1. With netgraph the ifconfig output shows 'NOARP', without it does > > not. > > > 2. With netgraph the ifconfig output shows 'SIMPLEX', without it does > > not. This is clearly wrong, leased lines are duplex. > > With netgraph, the ar device should not HAVE a ifconfig entry.. > if it doesm that that is coding problem straight away.. Well, with netgraph it does not have an ifconfig entry directly but the ng0 node which shows this behaviour. -- Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 14:37:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from homer.softweyr.com (mail.dobox.com [208.187.122.44]) by hub.freebsd.org (Postfix) with ESMTP id D123737B503 for ; Tue, 10 Oct 2000 14:37:44 -0700 (PDT) Received: from localhost ([127.0.0.1] helo=softweyr.com ident=Fools trust ident!) by homer.softweyr.com with esmtp (Exim 3.16 #1) id 13j7GJ-00008p-00; Tue, 10 Oct 2000 15:48:39 -0600 Message-ID: <39E38EB6.DD37A815@softweyr.com> Date: Tue, 10 Oct 2000 15:48:38 -0600 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: Tom Brown Cc: freebsd-net@freebsd.org Subject: Re: arp problems with foundry networks serveriron References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Tom Brown wrote: > > Hi, > > I have a FreeBSD 3.4 server running apache which I am trying to > loadbalance. > > I have hit a problem with ARP. > > My loadbalancer is sending an arp request to the bsd box which is not > responding. This is being send inside an IEE 802.1q vlan packet. > > This includes an extra 4 bytes of data which offset's the arp flags > further into the packet. > > If I turn off the vlan the loadbalancer produces normal Ethernet II arp > requests and the BSD web server responds without a problem. > > Can anyone explain why an 802.1q ARP request is rejected by the BSD box??? Because you don't have VLAN enabled on the BSD network interface??? -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 15: 2:33 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 9D9DB37B502; Tue, 10 Oct 2000 15:02:29 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9AM2PN13554; Tue, 10 Oct 2000 15:02:25 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma013550; Tue, 10 Oct 2000 15:02:21 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9AM2L538821; Tue, 10 Oct 2000 15:02:21 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010102202.e9AM2L538821@bubba.whistle.com> Subject: ip_input.c patch To: bmilekic@freebsd.org Date: Tue, 10 Oct 2000 15:02:21 -0700 (PDT) Cc: freebsd-net@freebsd.org X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bosko (and anyone else..), Does this patch look appropriate to you? Thanks, -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com Index: ip_input.c =================================================================== RCS file: /home/ncvs/src/sys/netinet/ip_input.c,v retrieving revision 1.141 diff -u -r1.141 ip_input.c --- ip_input.c 2000/09/14 21:06:48 1.141 +++ ip_input.c 2000/10/10 21:58:46 @@ -338,15 +338,23 @@ goto bad; } +#if BYTE_ORDER != BIG_ENDIAN /* - * Convert fields to host representation. + * Convert fields to host representation. But first make + * sure we don't write into a multiply-referenced mbuf. */ + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) + && (m = m_pullup(m, sizeof(*ip))) == NULL) { + ipstat.ips_badhlen++; + return; + } NTOHS(ip->ip_len); + NTOHS(ip->ip_off); +#endif /* !BIG_ENDIAN */ if (ip->ip_len < hlen) { ipstat.ips_badlen++; goto bad; } - NTOHS(ip->ip_off); /* * Check that the amount of data in the buffers @@ -599,7 +607,7 @@ * Reassembly should be able to treat a mbuf cluster, for later * operation of contiguous protocol headers on the cluster. (KAME) */ - if (m->m_flags & M_EXT) { /* XXX */ + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m)) { if ((m = m_pullup(m, hlen)) == 0) { ipstat.ips_toosmall++; #ifdef IPFIREWALL_FORWARD @@ -688,6 +696,14 @@ #ifdef IPDIVERT /* Restore original checksum before diverting packet */ if (divert_info != 0) { + /* Don't overwrite multiply-referenced mbuf */ + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) + && (m = m_pullup(m, sizeof(*ip))) == NULL) { +#ifdef IPFIREWALL_FORWARD + ip_fw_fwd_addr = NULL; +#endif + return; + } ip->ip_len += hlen; HTONS(ip->ip_len); HTONS(ip->ip_off); @@ -717,6 +733,15 @@ /* Clone packet if we're doing a 'tee' */ if ((divert_info & IP_FW_PORT_TEE_FLAG) != 0) clone = m_dup(m, M_DONTWAIT); + + /* Don't overwrite multiply-referenced mbuf */ + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) + && (m = m_pullup(m, sizeof(*ip))) == NULL) { +#ifdef IPFIREWALL_FORWARD + ip_fw_fwd_addr = NULL; +#endif + return; + } /* Restore packet header fields to original values */ ip->ip_len += hlen; To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 16: 7:12 2000 Delivered-To: freebsd-net@freebsd.org Received: from falla.videotron.net (falla.videotron.net [205.151.222.106]) by hub.freebsd.org (Postfix) with ESMTP id 68CB837B502 for ; Tue, 10 Oct 2000 16:07:09 -0700 (PDT) Received: from modemcable213.3-201-24.mtl.mc.videotron.ca ([24.201.3.213]) by falla.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G2800M9LLJOMZ@falla.videotron.net> for freebsd-net@freebsd.org; Tue, 10 Oct 2000 19:07:01 -0400 (EDT) Date: Tue, 10 Oct 2000 19:11:05 -0400 (EDT) From: Bosko Milekic Subject: Re: ip_input.c patch In-reply-to: <200010102202.e9AM2L538821@bubba.whistle.com> X-Sender: bmilekic@jehovah.technokratis.com To: Archie Cobbs Cc: freebsd-net@freebsd.org Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi Archie [and others?], Some few comments follow... On Tue, 10 Oct 2000, Archie Cobbs wrote: > Bosko (and anyone else..), > > Does this patch look appropriate to you? > > Thanks, > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > > Index: ip_input.c > =================================================================== > RCS file: /home/ncvs/src/sys/netinet/ip_input.c,v > retrieving revision 1.141 > diff -u -r1.141 ip_input.c > --- ip_input.c 2000/09/14 21:06:48 1.141 > +++ ip_input.c 2000/10/10 21:58:46 > @@ -338,15 +338,23 @@ > goto bad; > } > > +#if BYTE_ORDER != BIG_ENDIAN > /* > - * Convert fields to host representation. > + * Convert fields to host representation. But first make > + * sure we don't write into a multiply-referenced mbuf. > */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { Assuming that you only want to attempt to pullup into a "multiply" referenced mbuf, this check is OK. > + ipstat.ips_badhlen++; > + return; > + } > NTOHS(ip->ip_len); > + NTOHS(ip->ip_off); > +#endif /* !BIG_ENDIAN */ > if (ip->ip_len < hlen) { > ipstat.ips_badlen++; > goto bad; > } > - NTOHS(ip->ip_off); > > /* > * Check that the amount of data in the buffers > @@ -599,7 +607,7 @@ > * Reassembly should be able to treat a mbuf cluster, for later > * operation of contiguous protocol headers on the cluster. (KAME) > */ > - if (m->m_flags & M_EXT) { /* XXX */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m)) { > if ((m = m_pullup(m, hlen)) == 0) { > ipstat.ips_toosmall++; How about collapsing that m_pullup into the same if() statement, to remain consistent with the above? The reason I'm suggesting you be picky about this is that those relatively repetetive extensive checks on the "readability" of the mbuf will likely soon be replaced ... as soon as I merge a few diffs ( :-) ) and it will be simpler to search and replace this way. > #ifdef IPFIREWALL_FORWARD > @@ -688,6 +696,14 @@ > #ifdef IPDIVERT > /* Restore original checksum before diverting packet */ > if (divert_info != 0) { > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > ip->ip_len += hlen; > HTONS(ip->ip_len); > HTONS(ip->ip_off); > @@ -717,6 +733,15 @@ > /* Clone packet if we're doing a 'tee' */ > if ((divert_info & IP_FW_PORT_TEE_FLAG) != 0) > clone = m_dup(m, M_DONTWAIT); > + > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > > /* Restore packet header fields to original values */ > ip->ip_len += hlen; Overall, looks fine to me. Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 17:53:41 2000 Delivered-To: freebsd-net@freebsd.org Received: from info.iet.unipi.it (info.iet.unipi.it [131.114.9.184]) by hub.freebsd.org (Postfix) with ESMTP id 3A59E37B66C; Tue, 10 Oct 2000 17:53:37 -0700 (PDT) Received: (from luigi@localhost) by info.iet.unipi.it (8.9.3/8.9.3) id CAA85156; Wed, 11 Oct 2000 02:53:34 +0200 (CEST) (envelope-from luigi) From: Luigi Rizzo Message-Id: <200010110053.CAA85156@info.iet.unipi.it> Subject: Re: ip_input.c patch In-Reply-To: <200010102202.e9AM2L538821@bubba.whistle.com> from Archie Cobbs at "Oct 10, 2000 03:02:21 pm" To: Archie Cobbs Date: Wed, 11 Oct 2000 02:53:34 +0200 (CEST) Cc: bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL61 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Bosko (and anyone else..), > > Does this patch look appropriate to you? wouldn't it be better to just avoid the problem in the first place by removing the conversion to host format and fixing the rest of the code to handle things in net format ? cheers luigi > Thanks, > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > > Index: ip_input.c > =================================================================== > RCS file: /home/ncvs/src/sys/netinet/ip_input.c,v > retrieving revision 1.141 > diff -u -r1.141 ip_input.c > --- ip_input.c 2000/09/14 21:06:48 1.141 > +++ ip_input.c 2000/10/10 21:58:46 > @@ -338,15 +338,23 @@ > goto bad; > } > > +#if BYTE_ORDER != BIG_ENDIAN > /* > - * Convert fields to host representation. > + * Convert fields to host representation. But first make > + * sure we don't write into a multiply-referenced mbuf. > */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > + ipstat.ips_badhlen++; > + return; > + } > NTOHS(ip->ip_len); > + NTOHS(ip->ip_off); > +#endif /* !BIG_ENDIAN */ > if (ip->ip_len < hlen) { > ipstat.ips_badlen++; > goto bad; > } > - NTOHS(ip->ip_off); > > /* > * Check that the amount of data in the buffers > @@ -599,7 +607,7 @@ > * Reassembly should be able to treat a mbuf cluster, for later > * operation of contiguous protocol headers on the cluster. (KAME) > */ > - if (m->m_flags & M_EXT) { /* XXX */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m)) { > if ((m = m_pullup(m, hlen)) == 0) { > ipstat.ips_toosmall++; > #ifdef IPFIREWALL_FORWARD > @@ -688,6 +696,14 @@ > #ifdef IPDIVERT > /* Restore original checksum before diverting packet */ > if (divert_info != 0) { > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > ip->ip_len += hlen; > HTONS(ip->ip_len); > HTONS(ip->ip_off); > @@ -717,6 +733,15 @@ > /* Clone packet if we're doing a 'tee' */ > if ((divert_info & IP_FW_PORT_TEE_FLAG) != 0) > clone = m_dup(m, M_DONTWAIT); > + > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > > /* Restore packet header fields to original values */ > ip->ip_len += hlen; > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 18:15:13 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 5801737B66C for ; Tue, 10 Oct 2000 18:15:10 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9B1EZa15880; Tue, 10 Oct 2000 18:14:35 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma015873; Tue, 10 Oct 2000 18:14:05 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9B1E0J40614; Tue, 10 Oct 2000 18:14:00 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010110114.e9B1E0J40614@bubba.whistle.com> Subject: Re: ip_input.c patch In-Reply-To: "from Bosko Milekic at Oct 10, 2000 07:11:05 pm" To: Bosko Milekic Date: Tue, 10 Oct 2000 18:14:00 -0700 (PDT) Cc: freebsd-net@freebsd.org X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Bosko Milekic writes: > > /* > > - * Convert fields to host representation. > > + * Convert fields to host representation. But first make > > + * sure we don't write into a multiply-referenced mbuf. > > */ > > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > > Assuming that you only want to attempt to pullup into a "multiply" > referenced mbuf, this check is OK. Right.. we only need to pullup if (a) we're going to write into the mbuf and (b) it's multiply referenced. > > - if (m->m_flags & M_EXT) { /* XXX */ > > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m)) { > > if ((m = m_pullup(m, hlen)) == 0) { > > ipstat.ips_toosmall++; > > How about collapsing that m_pullup into the same if() statement, to > remain consistent with the above? The reason I'm suggesting you be picky > about this is that those relatively repetetive extensive checks on the > "readability" of the mbuf will likely soon be replaced ... as soon as I > merge a few diffs ( :-) ) and it will be simpler to search and replace > this way. I think I'll wait for your diffs. Uh oh.. I just thought of a plan.. :-) 1. Add a new macro to make an mbuf writable: #define M_MKWRITABLE(m, len) do { if ((m)->m_len < (len) || (((m)->m_flags & M_EXT) != 0 && MEXT_IS_REF(m))) { (m) = m_pullup((m), (len)); } } while (0) 2. Temporarily change the definition of mtod() as follows: BEFORE ------ #define mtod(m, t) ((t)((m)->m_data)) AFTER ----- #define mtod(m, t) ((const t)((m)->m_data)) 3. Compile LINT and find and fix every place that generates an error from the const-cast in mtod(): (A) If the code doesn't need to modify the mbuf (probably 99% of the time), then change it like so: BEFORE ------ struct ip *ip; ip = mtod(m, struct ip *); AFTER ------ const struct ip *ip; ip = mtod(m, struct ip *); (B) If the code does modify the mbuf, insert M_MKWRITABLE() at the appropriate point. 4. Put mtod() back the way it was -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 18:37:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id AB79C37B670; Tue, 10 Oct 2000 18:37:09 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9B1aaf16116; Tue, 10 Oct 2000 18:36:36 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma016112; Tue, 10 Oct 2000 18:36:19 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9B1aJo40890; Tue, 10 Oct 2000 18:36:19 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010110136.e9B1aJo40890@bubba.whistle.com> Subject: Re: ip_input.c patch In-Reply-To: <200010110053.CAA85156@info.iet.unipi.it> "from Luigi Rizzo at Oct 11, 2000 02:53:34 am" To: Luigi Rizzo Date: Tue, 10 Oct 2000 18:36:19 -0700 (PDT) Cc: bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Luigi Rizzo writes: > > Does this patch look appropriate to you? > > wouldn't it be better to just avoid the problem in the first place > by removing the conversion to host format and fixing the rest > of the code to handle things in net format ? Sounds OK to me.. maybe some asm() guru can come up with some fast functions for adding and subtracting byte-swapped values. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 19:57:22 2000 Delivered-To: freebsd-net@freebsd.org Received: from modemcable101.200-201-24.mtl.mc.videotron.ca (modemcable140.61-201-24.mtl.mc.videotron.ca [24.201.61.140]) by hub.freebsd.org (Postfix) with SMTP id A891637B66D for ; Tue, 10 Oct 2000 19:57:16 -0700 (PDT) Received: (qmail 2738 invoked from network); 11 Oct 2000 02:57:15 -0000 Received: from patrak.local.mindstep.com (HELO PATRAK) (192.168.10.4) by jacuzzi.local.mindstep.com with SMTP; 11 Oct 2000 02:57:15 -0000 Message-ID: <075501c0332e$fcfd1310$040aa8c0@local.mindstep.com> From: "Patrick Bihan-Faou" To: Subject: mpd-netgraph port and FreeBSD 3.5-STABLE Date: Tue, 10 Oct 2000 22:57:27 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I tried to install the mpd-netgraph port on a FreeBSD 3.5-STABLE machine, however it fails because the file "netgraph/ng_mppc.h" is missing from the standard include files on my system. I fiddled with mpd's Makefile, and compiled it without mppc support, however this also disables the encryption support for PPTP. A part from that mpd works beautifully and I can set up incoming PPTP sessions (without encryption). Could somebody MFC the appropriate netgraph code to the RELENG-3 branch please ? Thanks a lot in advance. Patrick. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 20:45:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id F02EC37B502 for ; Tue, 10 Oct 2000 20:45:18 -0700 (PDT) Received: from modemcable213.3-201-24.mtl.mc.videotron.ca ([24.201.3.213]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G28008PTX5K83@field.videotron.net> for freebsd-net@freebsd.org; Tue, 10 Oct 2000 23:17:44 -0400 (EDT) Date: Tue, 10 Oct 2000 23:21:49 -0400 (EDT) From: Bosko Milekic Subject: Re: ip_input.c patch In-reply-to: <200010110114.e9B1E0J40614@bubba.whistle.com> X-Sender: bmilekic@jehovah.technokratis.com To: Archie Cobbs Cc: freebsd-net@freebsd.org Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 10 Oct 2000, Archie Cobbs wrote: > I think I'll wait for your diffs. > > Uh oh.. I just thought of a plan.. :-) > > > 1. Add a new macro to make an mbuf writable: > > #define M_MKWRITABLE(m, len) > do { > if ((m)->m_len < (len) > || (((m)->m_flags & M_EXT) != 0 && MEXT_IS_REF(m))) { > (m) = m_pullup((m), (len)); > } > } while (0) This is very similar to what I already have in these diffs (I'll post the old version tomorrow after my exam so that you can beat it up as you like :-) ). The difference is that in the diffs we already have, there is an additional flag added to the mbuf... for various different reasons (this is all archived probably in -net mail archives...) ... It would be cool to revive this this weekend and commit it. I'll do it by upcoming Sunday, because I know also that dwmalone was planning to commit some related stuff following that. I'll keep you and -net posted. > 2. Temporarily change the definition of mtod() as follows: > > BEFORE > ------ > > #define mtod(m, t) ((t)((m)->m_data)) > > AFTER > ----- > > #define mtod(m, t) ((const t)((m)->m_data)) > > 3. Compile LINT and find and fix every place that generates > an error from the const-cast in mtod(): > > (A) If the code doesn't need to modify the mbuf (probably > 99% of the time), then change it like so: > > BEFORE > ------ > struct ip *ip; > ip = mtod(m, struct ip *); > > AFTER > ------ > const struct ip *ip; > ip = mtod(m, struct ip *); > > (B) If the code does modify the mbuf, insert M_MKWRITABLE() > at the appropriate point. > > 4. Put mtod() back the way it was > > -Archie That's a pretty clever way of catching potentially problematic areas... let me finish this one last test tomorrow and I'll post another followup with more information regarding this diff I keep talking about (which I'll fish out of the attic then). :-) > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com Cheers, Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 10 22:29:33 2000 Delivered-To: freebsd-net@freebsd.org Received: from info.iet.unipi.it (info.iet.unipi.it [131.114.9.184]) by hub.freebsd.org (Postfix) with ESMTP id AE5E137B503; Tue, 10 Oct 2000 22:29:30 -0700 (PDT) Received: (from luigi@localhost) by info.iet.unipi.it (8.9.3/8.9.3) id HAA85814; Wed, 11 Oct 2000 07:29:29 +0200 (CEST) (envelope-from luigi) From: Luigi Rizzo Message-Id: <200010110529.HAA85814@info.iet.unipi.it> Subject: Re: ip_input.c patch In-Reply-To: <200010110136.e9B1aJo40890@bubba.whistle.com> from Archie Cobbs at "Oct 10, 2000 06:36:19 pm" To: Archie Cobbs Date: Wed, 11 Oct 2000 07:29:28 +0200 (CEST) Cc: bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL61 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Luigi Rizzo writes: > > > Does this patch look appropriate to you? > > > > wouldn't it be better to just avoid the problem in the first place > > by removing the conversion to host format and fixing the rest > > of the code to handle things in net format ? > > Sounds OK to me.. maybe some asm() guru can come up with some > fast functions for adding and subtracting byte-swapped values. don't think there is much need for that... ip_len and ip_off are mostly or probably only used in ip_input() and there you just need to fetch&swap a copy of the value into a local variable on entry and use the local variable afterwards. Even better for ip_id which is only used for equality comparisons... cheers luigi > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 0:47:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from coconut.itojun.org (coconut.itojun.org [210.160.95.97]) by hub.freebsd.org (Postfix) with ESMTP id 6E60437B503; Wed, 11 Oct 2000 00:47:43 -0700 (PDT) Received: from kiwi.itojun.org (localhost.itojun.org [127.0.0.1]) by coconut.itojun.org (8.9.3+3.2W/3.7W) with ESMTP id QAA23732; Wed, 11 Oct 2000 16:46:06 +0900 (JST) To: Luigi Rizzo Cc: Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG In-reply-to: luigi's message of Wed, 11 Oct 2000 07:29:28 +0200. <200010110529.HAA85814@info.iet.unipi.it> X-Template-Reply-To: itojun@itojun.org X-Template-Return-Receipt-To: itojun@itojun.org X-PGP-Fingerprint: F8 24 B4 2C 8C 98 57 FD 90 5F B4 60 79 54 16 E2 Subject: Re: ip_input.c patch From: itojun@iijlab.net Date: Wed, 11 Oct 2000 16:46:06 +0900 Message-ID: <23730.971250366@coconut.itojun.org> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >don't think there is much need for that... ip_len and ip_off are >mostly or probably only used in ip_input() and there you just need >to fetch&swap a copy of the value into a local variable on entry >and use the local variable afterwards. Even better for ip_id which >is only used for equality comparisons... while i 100% agree that we should not swap bytes in ip_input, we need to be very sure to preserve (strange) byte ordering constraint in raw ip socket (IP_HDRINCL)... so be careful. itojun To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 0:58:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 7F15037B502; Wed, 11 Oct 2000 00:58:39 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9B7wNl59003; Wed, 11 Oct 2000 10:58:23 +0300 (EEST) (envelope-from ru) Date: Wed, 11 Oct 2000 10:58:23 +0300 From: Ruslan Ermilov To: Archie Cobbs Cc: bmilekic@FreeBSD.org, freebsd-net@FreeBSD.org Subject: Re: ip_input.c patch Message-ID: <20001011105823.C56373@sunbay.com> Mail-Followup-To: Archie Cobbs , bmilekic@FreeBSD.org, freebsd-net@FreeBSD.org References: <200010102202.e9AM2L538821@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200010102202.e9AM2L538821@bubba.whistle.com>; from archie@whistle.com on Tue, Oct 10, 2000 at 03:02:21PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Oct 10, 2000 at 03:02:21PM -0700, Archie Cobbs wrote: > Bosko (and anyone else..), > > Does this patch look appropriate to you? > > Thanks, > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > > Index: ip_input.c > =================================================================== > RCS file: /home/ncvs/src/sys/netinet/ip_input.c,v > retrieving revision 1.141 > diff -u -r1.141 ip_input.c > --- ip_input.c 2000/09/14 21:06:48 1.141 > +++ ip_input.c 2000/10/10 21:58:46 > @@ -338,15 +338,23 @@ > goto bad; > } > > +#if BYTE_ORDER != BIG_ENDIAN > /* > - * Convert fields to host representation. > + * Convert fields to host representation. But first make > + * sure we don't write into a multiply-referenced mbuf. > */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > + ipstat.ips_badhlen++; > + return; > + } > NTOHS(ip->ip_len); > + NTOHS(ip->ip_off); > +#endif /* !BIG_ENDIAN */ > if (ip->ip_len < hlen) { > ipstat.ips_badlen++; > goto bad; > } > - NTOHS(ip->ip_off); > > /* > * Check that the amount of data in the buffers This hunk does not look fine to me. Firstly, there is no need for BYTE_ORDER check; endian.h'es already handle this. Secondly, if you m_pullup(), `m' may become realloced thus invalidating the `ip' pointer. And lastly, it does not do anything useful, since at this point `m' is already pulled up to hlen >= sizeof(struct ip). Or maybe I am just overlooking something... > @@ -599,7 +607,7 @@ > * Reassembly should be able to treat a mbuf cluster, for later > * operation of contiguous protocol headers on the cluster. (KAME) > */ > - if (m->m_flags & M_EXT) { /* XXX */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m)) { > if ((m = m_pullup(m, hlen)) == 0) { > ipstat.ips_toosmall++; > #ifdef IPFIREWALL_FORWARD > @@ -688,6 +696,14 @@ > #ifdef IPDIVERT > /* Restore original checksum before diverting packet */ > if (divert_info != 0) { > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > ip->ip_len += hlen; > HTONS(ip->ip_len); > HTONS(ip->ip_off); The same here. > @@ -717,6 +733,15 @@ > /* Clone packet if we're doing a 'tee' */ > if ((divert_info & IP_FW_PORT_TEE_FLAG) != 0) > clone = m_dup(m, M_DONTWAIT); > + > + /* Don't overwrite multiply-referenced mbuf */ > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > +#ifdef IPFIREWALL_FORWARD > + ip_fw_fwd_addr = NULL; > +#endif > + return; > + } > > /* Restore packet header fields to original values */ > ip->ip_len += hlen; > > The same here. -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 1: 2:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id CF85437B66D; Wed, 11 Oct 2000 01:02:48 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9B81W559221; Wed, 11 Oct 2000 11:01:32 +0300 (EEST) (envelope-from ru) Date: Wed, 11 Oct 2000 11:01:32 +0300 From: Ruslan Ermilov To: itojun@iijlab.net Cc: Luigi Rizzo , Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, Garrett Wollman Subject: Re: ip_input.c patch Message-ID: <20001011110132.D56373@sunbay.com> Mail-Followup-To: itojun@iijlab.net, Luigi Rizzo , Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, Garrett Wollman References: <200010110529.HAA85814@info.iet.unipi.it> <23730.971250366@coconut.itojun.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <23730.971250366@coconut.itojun.org>; from itojun@iijlab.net on Wed, Oct 11, 2000 at 04:46:06PM +0900 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Oct 11, 2000 at 04:46:06PM +0900, itojun@iijlab.net wrote: > > >don't think there is much need for that... ip_len and ip_off are > >mostly or probably only used in ip_input() and there you just need > >to fetch&swap a copy of the value into a local variable on entry > >and use the local variable afterwards. Even better for ip_id which > >is only used for equality comparisons... > > while i 100% agree that we should not swap bytes in ip_input, > we need to be very sure to preserve (strange) byte ordering constraint > in raw ip socket (IP_HDRINCL)... so be careful. > If noone objects, I will prepare the patch that avoids byte-swapping for ip_len and ip_off (I have recently done a similar thing for ip_id). -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 1:53:45 2000 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 1181C37B503; Wed, 11 Oct 2000 01:53:40 -0700 (PDT) Received: from localhost ([3ffe:501:100f:10c1:250:4ff:fefe:d85f]) by shuttle.wide.toshiba.co.jp (8.9.1+3.1W/8.9.1) with ESMTP id RAA23001; Wed, 11 Oct 2000 17:38:07 +0900 (JST) Date: Wed, 11 Oct 2000 17:52:23 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: Ruslan Ermilov Cc: itojun@iijlab.net, Luigi Rizzo , Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, Garrett Wollman Subject: Re: ip_input.c patch In-Reply-To: In your message of "Wed, 11 Oct 2000 11:01:32 +0300" <20001011110132.D56373@sunbay.com> References: <200010110529.HAA85814@info.iet.unipi.it> <23730.971250366@coconut.itojun.org> <20001011110132.D56373@sunbay.com> User-Agent: Wanderlust/2.3.0 (Roam) Emacs/20.7 Mule/4.0 (HANANOEN) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 18 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >>>>> On Wed, 11 Oct 2000 11:01:32 +0300, >>>>> Ruslan Ermilov said: >> while i 100% agree that we should not swap bytes in ip_input, >> we need to be very sure to preserve (strange) byte ordering constraint >> in raw ip socket (IP_HDRINCL)... so be careful. >> > If noone objects, I will prepare the patch that avoids byte-swapping for > ip_len and ip_off (I have recently done a similar thing for ip_id). I don't necessarily object to the change, but we'll also have to note about the change will affect some part of kernel IPsec code (at least ah4_input() defined in netinet6/ah_input.c). JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 4:56:44 2000 Delivered-To: freebsd-net@freebsd.org Received: from rios.sitaranetworks.com (rios.sitaranetworks.com [199.103.141.78]) by hub.freebsd.org (Postfix) with ESMTP id 7908D37B66D; Wed, 11 Oct 2000 04:56:41 -0700 (PDT) Received: by rios.sitaranetworks.com with Internet Mail Service (5.5.2650.21) id <4W2Q4H2F>; Wed, 11 Oct 2000 08:00:19 -0400 Message-ID: <31269226357BD211979E00A0C9866DABE41202@rios.sitaranetworks.com> From: Charles Richmond To: 'Luigi Rizzo' , Archie Cobbs Cc: bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: RE: ip_input.c patch Date: Wed, 11 Oct 2000 08:00:19 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > -----Original Message----- > From: Luigi Rizzo [mailto:luigi@info.iet.unipi.it] > Sent: Wednesday, October 11, 2000 1:29 AM > To: Archie Cobbs > Cc: bmilekic@FreeBSD.ORG; freebsd-net@FreeBSD.ORG > Subject: Re: ip_input.c patch > > > > Luigi Rizzo writes: > > > > Does this patch look appropriate to you? > > > > > > wouldn't it be better to just avoid the problem in the first place > > > by removing the conversion to host format and fixing the rest > > > of the code to handle things in net format ? > > > > Sounds OK to me.. maybe some asm() guru can come up with some > > fast functions for adding and subtracting byte-swapped values. > > don't think there is much need for that... ip_len and ip_off are > mostly or probably only used in ip_input() and there you just need > to fetch&swap a copy of the value into a local variable on entry > and use the local variable afterwards. Even better for ip_id which > is only used for equality comparisons... > Making local byte swapped copies and leaving the mbuf unchanged is IMHO the best. Things like BPF and other mbuf using code is forced to make unnecessary copies of the mbufs because of the race conditions engendered by the local ip_stack changing (potentially) shared mbufs on the fly. And lest anyone think that it is easy to tell if a packet is going to be local, there are situations where packets can be hijacked and the bpf_tap has no means of determining that the packet will be local. (Been there / done that / will write up our changes soon) Charles Richmond To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 8:23:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from mail.squidge.com (ns1.squidge.com [195.10.252.5]) by hub.freebsd.org (Postfix) with ESMTP id 7CE2737B503 for ; Wed, 11 Oct 2000 08:23:06 -0700 (PDT) Received: from apollo (213-1-124-70.btconnect.com [213.1.124.70] (may be forged)) by mail.squidge.com (8.11.0/8.11.0) with SMTP id e9BFafe05578 for ; Wed, 11 Oct 2000 16:36:41 +0100 (BST) (envelope-from stewart@nameless-uk.com) Reply-To: From: "Stewart Morgan" To: Subject: FW: Winbond NIC driver Date: Wed, 11 Oct 2000 16:27:59 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, First of all, if this is the wrong place to be talking about all this let me apollogise and ask if you know to where I should be mailing? Right, now that's out the way, I've a PCI combined switch/ NIC based on the Winbond chipset which panics FreeBSD 4-stable on boot. Having looked at the code in an attempt to figure this out for myself, I found that the problem was due to the mii_phy_probe() failing, thus in turn causing the panic in the line free(sc->wb_ldata_ptr, M_DEVBUF). As far as I could see wb_ldata_ptr has not been allocated nor is used anywhere. I would very much apreciate any help in getting this driver to work with the card, but my understanding of either the card or driver is somewhat limited, though I will do anything I can. Thanks in advance... Stewart. - -- Stewart Morgan MEng AMIEEE Technical Director, Nameless-UK T: +44 117 974 55 44 | A: The Production House F: +44 870 168 02 10 | 147a St. Michael's Hill E: stewart@nameless-uk.com | Bristol W: www.nameless-uk.com | BS2 8DB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 10:38:14 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 3561137B66E; Wed, 11 Oct 2000 10:38:11 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9BHc9u25143; Wed, 11 Oct 2000 10:38:09 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma025128; Wed, 11 Oct 2000 10:37:52 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9BHboe45566; Wed, 11 Oct 2000 10:37:50 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010111737.e9BHboe45566@bubba.whistle.com> Subject: Re: ip_input.c patch In-Reply-To: <20001011110132.D56373@sunbay.com> "from Ruslan Ermilov at Oct 11, 2000 11:01:32 am" To: Ruslan Ermilov Date: Wed, 11 Oct 2000 10:37:50 -0700 (PDT) Cc: itojun@iijlab.net, Luigi Rizzo , Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG, Garrett Wollman X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ruslan Ermilov writes: > > >don't think there is much need for that... ip_len and ip_off are > > >mostly or probably only used in ip_input() and there you just need > > >to fetch&swap a copy of the value into a local variable on entry > > >and use the local variable afterwards. Even better for ip_id which > > >is only used for equality comparisons... > > > > while i 100% agree that we should not swap bytes in ip_input, > > we need to be very sure to preserve (strange) byte ordering constraint > > in raw ip socket (IP_HDRINCL)... so be careful. > > > If noone objects, I will prepare the patch that avoids byte-swapping for > ip_len and ip_off (I have recently done a similar thing for ip_id). That would be great (assuming it gets reviewed by -net). -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 10:42:14 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 3E5BA37B503; Wed, 11 Oct 2000 10:42:11 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9BHgAM25207; Wed, 11 Oct 2000 10:42:10 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma025202; Wed, 11 Oct 2000 10:41:49 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9BHfnA45588; Wed, 11 Oct 2000 10:41:49 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010111741.e9BHfnA45588@bubba.whistle.com> Subject: Re: ip_input.c patch In-Reply-To: <20001011105823.C56373@sunbay.com> "from Ruslan Ermilov at Oct 11, 2000 10:58:23 am" To: Ruslan Ermilov Date: Wed, 11 Oct 2000 10:41:49 -0700 (PDT) Cc: bmilekic@FreeBSD.org, freebsd-net@FreeBSD.org X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ruslan Ermilov writes: > > +#if BYTE_ORDER != BIG_ENDIAN > > /* > > - * Convert fields to host representation. > > + * Convert fields to host representation. But first make > > + * sure we don't write into a multiply-referenced mbuf. > > */ > > + if ((m->m_flags & M_EXT) != 0 && MEXT_IS_REF(m) > > + && (m = m_pullup(m, sizeof(*ip))) == NULL) { > > + ipstat.ips_badhlen++; > > + return; > > + } > > NTOHS(ip->ip_len); > > + NTOHS(ip->ip_off); > > +#endif /* !BIG_ENDIAN */ > > if (ip->ip_len < hlen) { > > ipstat.ips_badlen++; > > goto bad; > > } > > - NTOHS(ip->ip_off); > > > > /* > > * Check that the amount of data in the buffers > > This hunk does not look fine to me. Firstly, there is no need for > BYTE_ORDER check; endian.h'es already handle this. Secondly, if you > m_pullup(), `m' may become realloced thus invalidating the `ip' pointer. > And lastly, it does not do anything useful, since at this point `m' is > already pulled up to hlen >= sizeof(struct ip). Or maybe I am just > overlooking something... You are right about not updating `ip'. Here is the justification for the other stuff: - #if BYTE_ORDER is used because the entire `if ((m->m_flags & M_EXT) ...' statement can be omitted on big endian machines, because we don't need to modify the mbuf - Secondly, `it does not do anything useful' is incorrect.. the point it to insure the mbuf is writable. The hlen >= sizeof(struct ip) pullup only happens if the first mbuf was < sizeof(struct ip), and in particular in the case of a shared cluster this will not be the case. Now, having said all that, I agree that the best solution is to forget my patches and instead change ip_input() to not modify the mbuf at all. Thanks, -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 12:42:21 2000 Delivered-To: freebsd-net@freebsd.org Received: from bug.uits.indiana.edu (bug.uits.indiana.edu [129.79.17.137]) by hub.freebsd.org (Postfix) with ESMTP id 0B2F137B786 for ; Wed, 11 Oct 2000 12:17:37 -0700 (PDT) Received: (from mpd@localhost) by bug.uits.indiana.edu (8.9.3/8.9.3) id OAA16836 for freebsd-net@freebsd.org; Wed, 11 Oct 2000 14:19:41 -0500 Date: Wed, 11 Oct 2000 14:19:41 -0500 From: Matthew Davy To: freebsd-net@freebsd.org Subject: mpd-netgraph with radius/kerberos authentication Message-ID: <20001011141941.L15099@indiana.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.2i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm looking to deploy a PPTP server and would really like a Unix-based solution instead of a MS server. I have been looking at PoPToP under Linux when I came across mpd. It was *very* easy to setup for my personal use. But I'll need to use some other kind of back-end authentication...Radius/Kerberos/TACACS... something other than a flat config file if I'm going to have a large number of users. Is this something that is already there or planned, or something that would be fairly easy to add ?? Thanks ! - Matt ----------------------------------------------------------------------------- Matthew Davy mpd@indiana.edu 812-855-7728 University Information Technology Services Network Engineering ----------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 12:48:56 2000 Delivered-To: freebsd-net@freebsd.org Received: from info.iet.unipi.it (info.iet.unipi.it [131.114.9.184]) by hub.freebsd.org (Postfix) with ESMTP id A479637B66C; Wed, 11 Oct 2000 12:48:52 -0700 (PDT) Received: (from luigi@localhost) by info.iet.unipi.it (8.9.3/8.9.3) id VAA87973; Wed, 11 Oct 2000 21:48:39 +0200 (CEST) (envelope-from luigi) From: Luigi Rizzo Message-Id: <200010111948.VAA87973@info.iet.unipi.it> Subject: Re: ip_input.c patch In-Reply-To: <23730.971250366@coconut.itojun.org> from "itojun@iijlab.net" at "Oct 11, 2000 04:46:06 pm" To: itojun@iijlab.net Date: Wed, 11 Oct 2000 21:48:39 +0200 (CEST) Cc: Archie Cobbs , bmilekic@FreeBSD.ORG, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL61 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > >don't think there is much need for that... ip_len and ip_off are > >mostly or probably only used in ip_input() and there you just need > >to fetch&swap a copy of the value into a local variable on entry > >and use the local variable afterwards. Even better for ip_id which > >is only used for equality comparisons... > > while i 100% agree that we should not swap bytes in ip_input, > we need to be very sure to preserve (strange) byte ordering constraint > in raw ip socket (IP_HDRINCL)... so be careful. that should be easier as packets need to be copied between kernel and user space so you can do the swap there (in the userspace copy i think) cheers luigi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 14:29:31 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 1F96737B66C for ; Wed, 11 Oct 2000 14:29:27 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9BLTPL28607 for ; Wed, 11 Oct 2000 14:29:25 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma028605; Wed, 11 Oct 2000 14:29:04 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9BLT4T54299 for freebsd-net@FreeBSD.ORG; Wed, 11 Oct 2000 14:29:04 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010112129.e9BLT4T54299@bubba.whistle.com> Subject: Re: mpd-netgraph port vs Windows-2000 PPTP vpn In-Reply-To: <20001010170757.A1428@gurney.reilly.home> "from Andrew Reilly at Oct 10, 2000 05:07:58 pm" To: freebsd-net@FreeBSD.ORG Date: Wed, 11 Oct 2000 14:29:04 -0700 (PDT) X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andrew Reilly writes: > > Just for fun, try the patch below and see if you get any further. > > =================================================================== > > RCS file: /cvs/mod/whistle/ia/daemon/mpd/lcp.c,v > > retrieving revision 1.12.2.18 > > diff -u -r1.12.2.18 lcp.c > > --- lcp.c 2000/05/08 20:33:34 1.12.2.18 > > +++ lcp.c 2000/07/18 17:43:22 > > @@ -736,7 +736,11 @@ > > case TY_AUTHPROTO: /* authentication protocol */ > > { > > static const u_char chapcf[] = > > +#ifdef MICROSOFT_CHAP > > + { PROTO_CHAP >> 8, PROTO_CHAP & 0xff, CHAP_ALG_MSOFT }; > > +#else > > { PROTO_CHAP >> 8, PROTO_CHAP & 0xff, CHAP_ALG_MD5 }; > > +#endif > > static const struct fsmoption chapNak = > > { TY_AUTHPROTO, 2 + sizeof(chapcf), (u_char *) chapcf }; > > static const u_char papcf[] = > > I've just upgraded to mpd-netgraph-3.1, and that patch still > seems to be required for authentication against the office's > Windows{NT,2000} PPTP server. > > Any chance of this making it into the distribution? Or is this > indicative that there is still something horribly wrong with my > setup? > > Oh: the define MICROSOFT_CHAP is also necessary, but isn't > mentioned in the ports/net/mpd-netgraph/Makefile. It is > described in work/mpd-3.1/doc/mpd8.html, but by then it's too > late for a straight make install. > > Should this be a send-pr? FYI- I forgot to CC: the list before... I upgraded the mpd port yesterday to version 3.2 and it includes this patch. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 14:31:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from center.mshindo.net (center.mshindo.net [210.231.221.221]) by hub.freebsd.org (Postfix) with ESMTP id CBC2437B503 for ; Wed, 11 Oct 2000 14:31:01 -0700 (PDT) Received: from cosinecom.com (proxy53.cosinecom.com [63.88.104.53]) by center.mshindo.net (8.9.3/3.7W/00041811) with SMTP id GAA10364 for ; Thu, 12 Oct 2000 06:38:01 +0900 (JST) Date: Thu, 12 Oct 2000 06:30:16 +0900 (JST) Message-Id: <20001012.063016.112630716.mshindo@mshindo.net> To: freebsd-net@freebsd.org Subject: pty question From: Motonori Shindo X-Mailer: Mew version 1.95b30 on XEmacs 21.1 (Canyonlands) X-PGP-fingerprint: 06 B0 B1 A4 06 C1 6A 14 63 C0 D7 18 01 CD D9 83 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I'm trying to use pty but it doesn't work as I expect. I probably miss something, but I can't find it for the last few days... Here's the essence of my program. It's supposed to work in a way that a child (slave) process reads data from starndard input, which is actually connected to a parent process (master)'s file discriptor 'fdm_w'. However, the slave doesn't seem to read anything from the standard input, though master did write somehting to the corresponding file descriptor. On the other hand, the opposite direction works, i.e, if slave writes something, master can read it OK. You may wonder why two pairs of ptys, but it's a differnt stroy I guess (uun, maybe not..). This is done because if master writes data but subsequent read by master reads the same thing it has written before (i.e loopbaked), so I decided to use two ptys, one for read and another for write. Any advise will be greatly appreciated! Best Regards, #include #include #include #include #include #include #include int main() { int fdm_r, fdm_w; int fds_r, fds_w; char buf[256]; int p; int x; openpty(&fdm_r, &fds_w, NULL, NULL, NULL); openpty(&fdm_w, &fds_r, NULL, NULL, NULL); bzero(buf, sizeof(buf)); p = fork(); if (p == 0) { /* child */ close(0); close(1); /* close(2); */ close(fdm_r); close(fdm_w); fprintf(stderr, "debug\n"); if (dup2(fds_r, 0) == -1) { fprintf(stderr, "dup2\n"); exit(1); } if (dup2(fds_w, 1) == -1) { fprintf(stderr, "dup2\n"); exit(2); } fprintf(stderr, "slave reading\n"); x = read(0, buf, 3); fprintf(stderr, "slave %d read\n", x); if (buf[0] == 'A') { printf("BBB\n"); } else { printf("ZZZ\n"); } exit(1); } else { /* parent */ close(fds_r); close(fds_w); printf("master writing\n"); sleep(3); write(fdm_w, "AAAAA", 5); printf("master written\n"); printf("master reading\n"); read(fdm_r, buf, 5); printf("%c%c%c\n", buf[0], buf[1], buf[2]); } return 0; } To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 14:32:11 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 8117637B66D for ; Wed, 11 Oct 2000 14:32:07 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9BLUPm28627; Wed, 11 Oct 2000 14:30:25 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma028624; Wed, 11 Oct 2000 14:30:17 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9BLUH354316; Wed, 11 Oct 2000 14:30:17 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010112130.e9BLUH354316@bubba.whistle.com> Subject: Re: mpd-netgraph with radius/kerberos authentication In-Reply-To: <20001011141941.L15099@indiana.edu> "from Matthew Davy at Oct 11, 2000 02:19:41 pm" To: Matthew Davy Date: Wed, 11 Oct 2000 14:30:17 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Matthew Davy writes: > I'm looking to deploy a PPTP server and would really like a Unix-based solution > instead of a MS server. I have been looking at PoPToP under Linux when I came > across mpd. It was *very* easy to setup for my personal use. But I'll need > to use some other kind of back-end authentication...Radius/Kerberos/TACACS... > something other than a flat config file if I'm going to have a large number of > users. > > Is this something that is already there or planned, or something that would > be fairly easy to add ?? mpd doesn't support RADIUS, et.al. because I've never had enough reason/time to do it.. but it might not be very difficult, as one could contain the changes mostly within "auth.c". -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 20:24:30 2000 Delivered-To: freebsd-net@freebsd.org Received: from MIT.EDU (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.69.0.28]) by hub.freebsd.org (Postfix) with SMTP id 5FEAC37B503 for ; Wed, 11 Oct 2000 20:24:28 -0700 (PDT) Received: from GRAND-CENTRAL-STATION.MIT.EDU by MIT.EDU with SMTP id AA04157; Wed, 11 Oct 00 23:25:14 EDT Received: from melbourne-city-street.MIT.EDU (MELBOURNE-CITY-STREET.MIT.EDU [18.69.0.45]) by grand-central-station.MIT.EDU (8.9.2/8.9.2) with ESMTP id XAA03041 for ; Wed, 11 Oct 2000 23:24:23 -0400 (EDT) Received: from all-night-tool.mit.edu (ALL-NIGHT-TOOL.MIT.EDU [18.184.0.50]) by melbourne-city-street.MIT.EDU (8.9.3/8.9.2) with ESMTP id XAA24559 for ; Wed, 11 Oct 2000 23:24:22 -0400 (EDT) Received: (from slyph@localhost) by all-night-tool.mit.edu (8.9.3) id XAA22892; Wed, 11 Oct 2000 23:24:22 -0400 (EDT) Message-Id: <200010120324.XAA22892@all-night-tool.mit.edu> To: freebsd-net@freebsd.org Subject: Static Nat Date: Wed, 11 Oct 2000 23:24:22 -0400 From: Michael L Artz Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have NAT set up with ipfw and natd using the 192.168.1.* non-routable internal net, and was wanting to be able to access one of those internal machines from the outside using static nat. For example, I have 2 IPs, one which is associated with the external interface on the gateway and one which is unused. I would like to map the unused address to one of the internal machines. I was just wondering what was involved ... i.e do I need to alias my FreeBSD gateway machine to all of the IPs that I want it to translate/accept? Do I need to change the routing tables of either the internal or the gateway machine? Does the internal machine need to know about the external translation? Any help would be great. Thanks Mike slyph@mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 11 20:38: 6 2000 Delivered-To: freebsd-net@freebsd.org Received: from rapidnet.com (rapidnet.com [205.164.216.1]) by hub.freebsd.org (Postfix) with ESMTP id 1B2E737B503 for ; Wed, 11 Oct 2000 20:38:03 -0700 (PDT) Received: from localhost (nick@localhost) by rapidnet.com (8.9.3/8.9.3) with ESMTP id VAA93103; Wed, 11 Oct 2000 21:37:55 -0600 (MDT) Date: Wed, 11 Oct 2000 21:37:55 -0600 (MDT) From: Nick Rogness To: Michael L Artz Cc: freebsd-net@freebsd.org Subject: Re: Static Nat In-Reply-To: <200010120324.XAA22892@all-night-tool.mit.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 11 Oct 2000, Michael L Artz wrote: > I have NAT set up with ipfw and natd using the 192.168.1.* non-routable > internal net, and was wanting to be able to access one of those internal > machines from the outside using static nat. For example, I have 2 IPs, > one which is associated with the external interface on the gateway and > one which is unused. I would like to map the unused address to one of > the internal machines. I was just wondering what was involved ... i.e > do I need to alias my FreeBSD gateway machine to all of the IPs that I > want it to translate/accept? Depends on how the external IP's are being routed to you...or if they are period. If they are not being routed, then yes you will have to setup an ARP entry to handle your other IP. > Do I need to change the routing tables of > either the internal or the gateway machine? No. Does the internal machine > need to know about the external translation? > No. > Any help would be great. Once you get your IP working, you can just use the redirect_address flag with your natd command. See natd(8). Nick Rogness - Drive defensively. Buy a tank. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 12 0:47:26 2000 Delivered-To: freebsd-net@freebsd.org Received: from center.mshindo.net (center.mshindo.net [210.231.221.221]) by hub.freebsd.org (Postfix) with ESMTP id 4315937B502 for ; Thu, 12 Oct 2000 00:47:22 -0700 (PDT) Received: from cosinecom.com (proxy61.cosinecom.com [63.88.104.61]) by center.mshindo.net (8.9.3/3.7W/00041811) with SMTP id QAA11109 for ; Thu, 12 Oct 2000 16:54:32 +0900 (JST) Date: Thu, 12 Oct 2000 16:47:26 +0900 (JST) Message-Id: <20001012.164726.41626950.mshindo@mshindo.net> To: freebsd-net@freebsd.org Subject: Re: pty question From: Motonori Shindo In-Reply-To: <20001012.063016.112630716.mshindo@mshindo.net> References: <20001012.063016.112630716.mshindo@mshindo.net> X-Mailer: Mew version 1.95b30 on XEmacs 21.1 (Canyonlands) X-PGP-fingerprint: 06 B0 B1 A4 06 C1 6A 14 63 C0 D7 18 01 CD D9 83 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, From: Motonori Shindo Subject: pty question Date: Thu, 12 Oct 2000 06:30:16 +0900 (JST) > You may wonder why two pairs of ptys, but it's a differnt stroy I > guess (uun, maybe not..). This is done because if master writes data > but subsequent read by master reads the same thing it has written > before (i.e loopbaked), so I decided to use two ptys, one for read and > another for write. To see what's happening, I wrote simpler code as follows. Why does parent process read the same thing as what has been previously written? Successful write() advances the file pointer and subsequent read should read right after that, shouldn't it? I believe this is true for a normal file but unsure about pty. Any comment? BTW, I'm using FreeBSD 4.0-R and 4.1.1. They gave me the same result. #include #include #include #include #include #include #include #include #include void log(const char *str) { FILE *fp; if ((fp = fopen("/var/tmp/log", "a")) == NULL) exit(100); fprintf(fp, "%s\n", str); fflush(fp); fclose(fp); } int main() { int fd; int pid; int x; char buf[256]; bzero(buf, sizeof(buf)); pid = forkpty(&fd, NULL, NULL, NULL); if (pid == 0) { /* child */ x = read(0, buf, 5); log(buf); if (x < 0) { exit(1); } else if (x == 0) { exit(2); } else { exit(3); } } else { /* parent */ printf("writing\n"); if (write(fd, "AAAAA", 5) < 0) { perror("write"); exit(1); } x = read(fd, buf, 5); if (x < 0) { perror("read"); } else if (x == 0) { printf("EOF\n"); } else { printf("%d bytes read (%c%c%c)\n", x, buf[0], buf[1], buf[2]); } } return 0; } To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 12 7:36:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from bug.uits.indiana.edu (bug.uits.indiana.edu [129.79.17.137]) by hub.freebsd.org (Postfix) with ESMTP id 5162337B66E for ; Thu, 12 Oct 2000 07:36:44 -0700 (PDT) Received: (from mpd@localhost) by bug.uits.indiana.edu (8.9.3/8.9.3) id JAA20829; Thu, 12 Oct 2000 09:38:51 -0500 Date: Thu, 12 Oct 2000 09:38:51 -0500 From: Matthew Davy To: Archie Cobbs Cc: freebsd-net@FreeBSD.ORG Subject: Re: mpd-netgraph with radius/kerberos authentication Message-ID: <20001012093851.B20779@indiana.edu> References: <20001011141941.L15099@indiana.edu> <200010112130.e9BLUH354316@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.2i In-Reply-To: <200010112130.e9BLUH354316@bubba.whistle.com>; from archie@whistle.com on Wed, Oct 11, 2000 at 02:30:17PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks for the quick response. I spent some time looking over the source code last night and think I have a good idea of what I'd need to do to add RADIUS support. I have one more quick question, do you know what the limit would be for the number of simultaneous PPTP sessions ?? Thanks ! - Matt -- ----------------------------------------------------------------------------- Matthew Davy mpd@indiana.edu 812-855-7728 University Information Technology Services Network Engineering ----------------------------------------------------------------------------- On Wed, Oct 11, 2000 at 02:30:17PM -0700, Archie Cobbs wrote: > Matthew Davy writes: > > I'm looking to deploy a PPTP server and would really like a Unix-based solution > > instead of a MS server. I have been looking at PoPToP under Linux when I came > > across mpd. It was *very* easy to setup for my personal use. But I'll need > > to use some other kind of back-end authentication...Radius/Kerberos/TACACS... > > something other than a flat config file if I'm going to have a large number of > > users. > > > > Is this something that is already there or planned, or something that would > > be fairly easy to add ?? > > mpd doesn't support RADIUS, et.al. because I've never had enough > reason/time to do it.. but it might not be very difficult, as one > could contain the changes mostly within "auth.c". > > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 12 14:41:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 820AA37B503 for ; Thu, 12 Oct 2000 14:41:31 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9CLe1H14384; Thu, 12 Oct 2000 14:40:01 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma014376; Thu, 12 Oct 2000 14:39:50 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9CLdo990178; Thu, 12 Oct 2000 14:39:50 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010122139.e9CLdo990178@bubba.whistle.com> Subject: Re: mpd-netgraph with radius/kerberos authentication In-Reply-To: <20001012093851.B20779@indiana.edu> "from Matthew Davy at Oct 12, 2000 09:38:51 am" To: Matthew Davy Date: Thu, 12 Oct 2000 14:39:50 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Matthew Davy writes: > Thanks for the quick response. I spent some time looking over the source > code last night and think I have a good idea of what I'd need to do to add > RADIUS support. > > I have one more quick question, do you know what the limit would be for the > number of simultaneous PPTP sessions ?? FYI- You can apply the patches below (to mpd-3.2) to eliminate all hard limits on the number of bundles, links, and/or PPTP sessions. This will be in the next version. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com begin 644 mpd.patch.gz M'XL(`((OYCD"`]0\_7/:2+(_RW_%Q%O)@8$8R1@;^R6W!..$6AN[@&PV+YNB M9#&`8I!82<3Q[>9_?]W3,Z.1^+"3NY>M2]TMTDQ/ST=_][3<"4;\RPF[60:C MY][.BW__WTZOU6=C?\9/V+[W.=Z?AZ/]NZD?)S.^[[O[(Y?/PV!_OACMTYSE MSSL13R*??_:#"8O@)_;#@-G/[>ISY[EC;^UU=D;^>,PJ2U:)]`CCV=FI5"IR MF+;5CI-J53*`-KP/X).Q?+'K%"(;P!D M0I/%'VX_%K'GSYW2>B23[G(N826:T@8T[,D+UGU[<5%D?^XP:V7U91;?5%X& M[ISCFJ$?A_:GX9TX`4`GFK^*PZL[AV6[RDIUIX:_>'R`:T<,:47<37AK/BI` M$W.],O.F;L3VW,\?/I;9Y]`?P7,T*>[`,BHTBQ7.1D.D7)G=G.)&,XVP#?P1 MIXYKL0)^-YS!@VA!Y-9>Q/_HC%V/,]KB*6*&Z:U;P!@LYP*I>$=RP*C]/=:, M)C';V\9^+I7$S%^)LH"J->7> M+9N[7_SYL7#,<)$Q6\#+C2`#3E?1TU68S5X*)KCH='_I%^D\8(_A MI'#Q>MCN]O^Z4Y$;[W..2Y!+0H(S=P;81O@5+E^)<2"O_K]X."[LW7'HH4*!QY%\K-CB?)&UA33#68+0*5+%2;3T8(6"GP%,$G_C\J"[2`1+5PAM M^47JII5URCF,I8HW<[5,,W>R7,!BDTGD+J:PU"48EY2ANY/S9>!U`C\IW)29 MTAI%8(+J-CIJ?#Z,]-V9_R\W02.&G,='L%)UPHJ"Y\!YO'"SGFWS"Q&*;V4M MI>]>2WJ0*V+BY.0$%X"*D4=">YK')59#"\1MR/.5_,!=;RJ4$7.!]NYHQ``/ MS)%,>5;7Y91X63'+C4%54I.K#"259)'M97A)#BB2'=;VT"9[Z'ID!I7&$>I) M60P`0PO2Y7>HH="THB@+#:5L^IH3A^WYXHBE2E>Z2I^XX%/Q<_NQJ-P#/@,A M_U/9_EF0\JU8_@=))K$NF.0%2\U:.J;RDDZS@SZ>1B`'K0)J4RF=!87R,;T; M)Y'0CUP[,Z$EA#28@O%,[GL'YH=SX)^$S4`G)BP,.)TP*9:M('Z0XS9)[,S, M2-Y-DKW&^J!JS@J35LRE[T%PPH*0;/8**JDA#'Z6':09^M-E,@KO`@&!74)Z M3_)C5<_)CCYUH(82.LD@>8RK2HKEE!235B=K#*782LHT0>CEYJ7@SWRDC_(L M8J$:YN!1"-T`_=XRBKCP"1/_LTFYTE:W-F.5;S\JGX+$7"O46R2U,:IH61:L M$E53QG@M0J'NY+1`4AY,8'%!,XK<^\(S-5%JOE0+6*5G!OXRDWJ*EF`N4(N9 M/*E-2K9D*MEB:L/0>9GS.'8G'-W;(.`SR=_$+O-X(M1E/.GQ"9PYCPHX.[R7 MF?#FKWN=*\"'KNQQ[1##G.,:1CODR)I^L''LQ!.W>7^H\,3<;DK"'B=Z`2C'FK_"_)H87,(HOLGYG3/R%]+I9A#C!Y8],0H9N`!#L= M(Z:>_@TQ]71C3-V`$-:N;>L\S$34!)\^'J;Q]%3&TX<04C/[^*16/SFH6WH* M'4Y/-X33$A^RF0V!X!$KT8^*E]J?0=I[?&Q97A+-Q-NI$,H^^&W`XT$X`@8/ MP3\/9XQCMV1S<^C(3=P-0[$K-RZ8##MGP\2R$*!S=DI*H'.&:FFQ6-`X\DQD M,&F11=-QU,=3'-'C[DR&;\+.^'%67:G!>V0C:9JM@\3R1+!J+3B/ANXRF2*7 M?VB^';P9XO3XT&U>MB'H`&37`/0/T*$23*,@YYN-_-B+_#GADB]T0G*@;/,# M-PDC/7HYI"7$?#8>SN/6U)U]:+UI7@\O^U?G@R$\7@POVEU:@FC#-<]FH"3% M$J1U=M!V[)V]^,; M/]B/PF7"=U>`NNU!?]`<(-@RCO81$@*`.'&37>U&]<%2Q(WD)J%_:,O`.%!FK0"C=;]=K:_NMF MO__NJG,\<^ ML6LG]J&5SH,LEH%2):;M7@\[Y\U6>W@Y>#L\:Y\WWUX,A/T_\V/W9L8+SR1X MN$`4X'\1>.NJ>SZ\ZIZU+YO"%WODB.O>U6_OR:N03CUR]E\71-Y"9U?42?SW!\;SL\W(R2+8N9$C+,T<.?=$^J?_AWB,MV>]&]LZ\RI8AJ0 M/DIE+.=9HXT/+3U+*BO3;3E_J9"/J^BDB/^2G+#SM]W6H'/5[2NI`7[@7X`V M@1`?:T5Z!('70PAA$@RXTG^UX,&V_M8LC/DV@+>+@C3\?C"$F"9B:,'++->( MW@!@D.R!KLB/5J8TYW;OM;&ETZFN>J\-_>@0:]`DV[Q7X@P3;JWWZA!?V(U: M^:`*.A1^G9K@#73O=G2RB&XPA!A*;2F#*+I68,:U`MT%0$0JO#9P`55&>QGS MD9F&SET$&996)[`J*H$U$7H?0],ZC4 MVMI\B)D@4ULGVS]"KSB3+@'-QRS";$R5S5_*F60DI^*T-S@-Y$P&WDC59,]UJSD0,-3(FA$KF2V1GFBTQ<\\B?XTI$4PJ$\$H M4YKF@L_[EREJZ)1&UKB;"$9I+IRGJZ;5YM%E[R8D/DR1IV3',:)-7U>(!&OF MMD*WZ,L*=7,JT[%KDC0X@TC2()N821KGJ"KTCU.O*1].:A-!>;6;;?D:@_]D MJD7OQTBTY.4YFY))[)0)VXF#]*[Q+H107V)N4XV50[PPBGB\"(-M MNMZX],]H'O.R7M\R:3]NQ36E"0`:!LQR>AW)#Y M`<94;&HIFQ`CO`G]56M#-XYYE.12S'4UVI`2"*CIK,1$^) M06K_M(P#FU2!BBK#`"S:%6JI*Q64$`$OO`69WB14Y1YQ]]^^TTG^&2`3@&%,B_UJJC6 M<>J.X@C\)V`$=&S>/H#)D6E,89:7,?#U(HR2^-L5VKH-&9HMK\ET3HG4%P)2 M*=/JY>DG0O3($RX]]H1+ZQ>6O1!5BRMM65R^UBJ^\Q-ORLAM6$SOX\I+X?.H M?F!CK`FY?O.^/[RZ;G<[W=K,D)I>4N$KRK"4D#K'#N:G;]J.KZ: MA7?,O7/O!2?KJ@',@,=_#PLK#EU_PRD6C[LZJ![AK@ZJ#;DKN:'.&'S2?N?U MH-T#CQ!VX_'Q\#WNQB$%"&56+;/^H#>\ONH-AOTW M;P=G5^^Z998&2%^5\5PL%C\Z1R2FW&PZ;0S1[:V]N;)0&F$\4UFHF&7&:)?F[U.\]5%>TV&B"R>83)7DN-TF43^ M-(F<'$J6<9TIQ0'JSI3\U,QLRKQ:&<2E'.+4XEIY?`:LL+JI(1:@@Q!%(5_" MF)E"#\O,D1]XD\[)C)06K4^X'62\6K(H(.-R9[:,+DL65CGQFL&3Q8_V#FG. MC2SN;&5Q9PV+.P:+.QD6QXG65#[CG923X?$4<(7)'8/)[7I#N`/XJVH"KF%P M)QB'%F(Y57X1.484[%P%H&FQ^.;Z>G`M*W`PN056AC([;K;PZ]_+<66R%FAA MS395S416UTQX?=,ZT6VZ629T41M/P^4,`C^N01_(K3R00ON6#6S*IXG[@G!U M/VJ%:6$Q6*PT(;&2-*O8:-HZR!E:FF>*EG^#]B9CL%()Q/H:) MJ,`'9K_A<0*A"+@SR-4+NFWN7&/."")?55(]Y_.8)X5G,&0<"F.E$B?8L,6< MKN.11]&!Z5MYNI>:.=FH7?1G^!R+(:G>^^BX[&"]]]$1_N*1_)F)#?Y?UKJ9 M9Y2+F-PO.'+)LPFN^QK:!M!B>-!Z.[3E!;^O8#4.9XBQ< M>SM`+AD5GBV,*S;D4@JZ.MW6U27XL>C.J)Q!)F]+6)Y,TCS@**,0UN:.4G'+ MY8ZR/$\VZ<[%RC,?W-\9^-K1*09Q%I+02?A)*XEF M!:,B#MNQ[0)3>D%A#2=@+COTW-DUQ$R465LSQDB,9J#S-WS(ID.LGOD[[)N< M>+N1:VRU<=55&]`+ M?*&*$2ZNKGX!HOW2'G8'DO*JJ]?LG@'[_F][V.J^U?+:OZI6I7[3739<`$5%567_ACX).QX#)Y`.Q`6B2#$0.93A<"NRY(4:MY`8+TVMKM8/8%0C(T@)$_P5(FL'J_ M7GH1E!L#Q[IEPL_$%4QF`*&@ M]7T5&@OM![*%/H]D@9)C[2F-I`R@(Z0G?,PKQ)J2^J!;/@$!< MKWG2"5"?P0E.],L:J*ME8H#)-_IX)86C\YFHQP\9,?JX`HT[DM#P^"$CF)2: M7('>T^"YPY?%B#DBR/%IEC(S.B6%QFK00ET+2\RJKG?L0F'2EQ# M9M3L466A*STH4.M]Q`PS9*,(S3ODT7A3=``U%\EKASP^F,R4K8Q7OPXA+EL" MDUN9.BS0+U-=.Q4+_#EO2EM$1\5+F^@(`9)\)=@&Z#\@2&<@6%9?-\OCT-^Z MR7=PC5[+XW@,9^-+]S(ZZ1&;9-7BXA MV-S]@A104)KPA&C"DVD8)\B.!83&%QUIJ`8=$(%D!=[B7G0`UXW"J+QBT#*C M"4B/5]+=Y7?X(XK@"I[R>>&DC6._@'U<7[R7B5J[>DSUT=6T^$BJD\SE`WV9 M>8E<=#Q@:>E01P!."ME6YQ!HUZV:YJS*XS&Z`.\JD4T4QAUAFAC3Q[J/*.?8]]6&EN=,':"&"1'-K#Y1T M*-#B^K(-U6U4;N@1LG@C!;E\)7'W5#1`D>'W[*!#^JR3.^]R26HGJ)DFU3J;4A5[?9SVGD,8LO!HQ/ M:K[-OJ2<1?;D.S@+<.;+@^CT"H*GGHY2KC+7BE<2XH0>J!7:;MR0?;+F:QL# M9<>N9R$#F\$`:2.R419/GI&FVSAI*K>;/708)%::VPJU"YQ97D(K+-Y+I/0MF*XS2ON$A4;^I`]9CNJ4'17%.$;0>!:R9:!NG=+[I#(,D=`O00)^(@%HO"L*+5]3LQ?]B MIXCE72(CF9-"Z42.4A^_P!GB?``#FC?GH6LZ[&HO1R)4ZN*E_`!4$+?FU"D? M4+-K^&`D/]\!5U.2TQ6[(O1@7#V\)@?ZB%_ZCC&WAB0,)2F!0V9HB+,67'ZI MNHA"#SLA4%!\X2?/OUT-K1#`^8^3U%E+T]2R`T"&J$Z&JBRC#=E6;;A%Y2@\ MI+5R3J[TMMK]0?/51:?_IGUF@&,$(8^XF/5;1,V#R.EYRC6K-0XD3QS;.OI= M]K[+ANE,%()YO^ M7L\&6EF/4K'K$&Z22>N1.M:2E,_%@X+RP`U>-D#<$G&6-F!Z<""6J"#G^\$2 M/_J1:/"ZP`OG*'ZJ_B5-:G0"-,`]_L>2QXD5\3^D'-9M6WPN9Q\VTOMW1I9[ MKU`0*3J[/@2'L1_DA= M?H1N9GK^&PRKSE;B45A)=-\2!U3-V]Q-+)&UN?D_?F&04L0^LFII&MX9EY2I M\)QWNF?$%9?O,4]^(BEYU!#!;KWN&%\#2S>'O+-R>E0BC(X_:';[N-H7\#M5 M7ZR6!$UZ288T2PX][[7;6HQ3HM#<'_4?B9)B:1YR'D3N65YGH@M2S3NH$H3^ MF@(TY:Y?)7OC%_AX*,?.P98,`'T]@ER#$3]8L%A^+O=CPGEG-9[7*6C_S@]4 MOM@^KE,^X[B6?MR**>_[1R2)".Z!))%$]E"2B,"V)8D((N(Q%FE+@'ZKU0,4 M_8OAU2\4JQIY)!J0R22E38H+92:).A[,)9E@Q?3[K&7B__![/9ISTOW,._]5=4Y7$F;T__!MY^ MX,/4HVV=QZO?I1ZEC_\WI'0-77-H8*)O;`!*K@9F5@86G'`KX,D:[Z942*H& M'36HH`TD84NQD%?9A1=EEJ3Z)I6F:8`(!:U<:%)+`U6DT%8"J!64DYB4FH.R M=12L/<#3!5RA0/` M4C.:6V`)!:0F)S\=U?UIN<#"5D]/#]2@!(+X>,B8:TYF=JJ&D8Z",>:N6$[0 :R92^J<7IV`T$#]:"95+S@)H!6MD=FB-5``#X ` end To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Oct 12 14:44:53 2000 Delivered-To: freebsd-net@freebsd.org Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (Postfix) with ESMTP id 6CB7A37B502 for ; Thu, 12 Oct 2000 14:44:51 -0700 (PDT) Received: (from smap@localhost) by whistle.com (8.10.0/8.10.0) id e9CLi1714470; Thu, 12 Oct 2000 14:44:01 -0700 (PDT) Received: from bubba.whistle.com( 207.76.205.7) by whistle.com via smap (V2.0) id xma014467; Thu, 12 Oct 2000 14:43:35 -0700 Received: (from archie@localhost) by bubba.whistle.com (8.11.0/8.11.0) id e9CLhY190211; Thu, 12 Oct 2000 14:43:34 -0700 (PDT) (envelope-from archie) From: Archie Cobbs Message-Id: <200010122143.e9CLhY190211@bubba.whistle.com> Subject: Re: mpd-netgraph port and FreeBSD 3.5-STABLE In-Reply-To: <075501c0332e$fcfd1310$040aa8c0@local.mindstep.com> "from Patrick Bihan-Faou at Oct 10, 2000 10:57:27 pm" To: Patrick Bihan-Faou Date: Thu, 12 Oct 2000 14:43:34 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL82 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Patrick Bihan-Faou writes: > I tried to install the mpd-netgraph port on a FreeBSD 3.5-STABLE machine, > however it fails because the file "netgraph/ng_mppc.h" is missing from the > standard include files on my system. I fiddled with mpd's Makefile, and > compiled it without mppc support, however this also disables the encryption > support for PPTP. > > A part from that mpd works beautifully and I can set up incoming PPTP > sessions (without encryption). > > Could somebody MFC the appropriate netgraph code to the RELENG-3 branch > please ? You should be able to (pretty much) take the 4.1-stable sources for ng_mppc.c and ng_mppc.h and build them on 3.5-stable. Just grab these files from 4.1-stable, put them in your tree, and see if the KLD builds: sys/netgraph/ng_mppc.c sys/netgraph/ng_mppc.h sys/modules/netgraph/mppc/* -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 13 6:35:37 2000 Delivered-To: freebsd-net@freebsd.org Received: from bug.uits.indiana.edu (bug.uits.indiana.edu [129.79.17.137]) by hub.freebsd.org (Postfix) with ESMTP id 3409F37B503 for ; Fri, 13 Oct 2000 06:35:31 -0700 (PDT) Received: (from mpd@localhost) by bug.uits.indiana.edu (8.9.3/8.9.3) id IAA02556; Fri, 13 Oct 2000 08:37:54 -0500 Date: Fri, 13 Oct 2000 08:37:54 -0500 From: Matthew Davy To: Archie Cobbs Cc: freebsd-net@FreeBSD.ORG Subject: Re: mpd-netgraph with radius/kerberos authentication Message-ID: <20001013083754.C864@indiana.edu> References: <20001012093851.B20779@indiana.edu> <200010122139.e9CLdo990178@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.2i In-Reply-To: <200010122139.e9CLdo990178@bubba.whistle.com>; from archie@whistle.com on Thu, Oct 12, 2000 at 02:39:50PM -0700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks again, this has been very helpful. I'm trying to convince management that we should use FreeBSD or Linux as the platform for our PPTP server instead of Win2k (since I'll be the one supporting it :). I've read that the PoPToP server on Linux is limited to 2048 simultaneous users because it requires 2 processes per user and the process limit is 4096. Is there any such limit for mpd ?? - Matt On Thu, Oct 12, 2000 at 02:39:50PM -0700, Archie Cobbs wrote: > Matthew Davy writes: > > Thanks for the quick response. I spent some time looking over the source > > code last night and think I have a good idea of what I'd need to do to add > > RADIUS support. > > > > I have one more quick question, do you know what the limit would be for the > > number of simultaneous PPTP sessions ?? > > FYI- > You can apply the patches below (to mpd-3.2) to eliminate all hard > limits on the number of bundles, links, and/or PPTP sessions. This > will be in the next version. > > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com > > begin 644 mpd.patch.gz > M'XL(`((OYCD"`]0\_7/:2+(_RW_%Q%O)@8$8R1@;^R6W!..$6AN[@&PV+YNB > M9#&`8I!82<3Q[>9_?]W3,Z.1^+"3NY>M2]TMTDQ/ST=_][3<"4;\RPF[60:C > MY][.BW__WTZOU6=C?\9/V+[W.=Z?AZ/]NZD?)S.^[[O[(Y?/PV!_OACMTYSE > MSSL13R*??_:#"8O@)_;#@-G/[>ISY[EC;^UU=D;^>,PJ2U:)]`CCV=FI5"IR > MF+;5CI-J53*`-KP/X ME?#GF/W\\PZC?XO(#Y)QX=7;[MGP_'+`=B_\X#;^/=@ML]U7@'O&=XNG&X$K > M^(^`Q6-%`.]4"'P<1JQPRUZPZBF[9?_#+IN_#7%L'UY+I>).Q?+'K%"(;P!D > M0I/%'VX_%K'GSYW2>B23[G(N826:T@8T[,D+UGU[<5%D?^XP:V7U91;?5%X& > M[ISCFJ$?A_:GX9TX`4`GFK^*PZL[AV6[RDIUIX:_>'R`:T<,:47<37AK/BI` > M$W.],O.F;L3VW,\?/I;9Y]`?P7,T*>[`,BHTBQ7.1D.D7)G=G.)&,XVP#?P1 > MIXYKL0)^-YS!@VA!Y-9>Q/_HC%V/,]KB*6*&Z:U;P!@LYP*I>$=RP*C]/=:, > M)C';V\9^+I7$S%^)LH"J->7> > M+9N[7_SYL7#,<)$Q6\#+C2`#3E?1TU68S5X*)KCH='_I%^D\8(_A > MI'#Q>MCN] M"@I5>O^Z4Y$;[W..2Y!+0H(S=P;81O MB$[;0-GJWD"%G*AU_+[[-/Y]5Z^$?P%]$V_;DY"'29B$;.SZLQQ%7G-@/3:. > M8*L\2*)[N2 M\##E&$-"7+JS6>@5+E^)<2"O_K]X."[LW M>7'HH4*!QY%\K-CB?)&UA33#68+0*5+%2;3T8(6"GP%,$G_C\J"[2`1+5PAM > M^47JII5URCF,I8HW<[5,,W>R7,!BDTGD+J:PU"48EY2ANY/S9>!U`C\IW)29 > MTAI%8(+J-CIJ?#Z,]-V9_R\W02.&G,='L%)UPHJ"Y\!YO'"SGFWS"Q&*;V4M > MI>]>2WJ0*V+BY.0$%X"*D4=">YK')59#"\1MR/.5_,!=;RJ4$7.!]NYHQ``/ > MS)%,>5;7Y91X63'+C4%54I.K#"259)'M97A)#BB2'=;VT"9[Z'ID!I7&$>I) > M60P`0PO2Y7>HH="THB@+#:5L^IH3A^WYXHBE2E>Z2I^XX%/Q<_NQJ-P#/@,A > M_U/9_EF0\JU8_@=))K$NF.0%2\U:.J;RDDZS@SZ>1B`'K0)J4RF=!87R,;T; > M)Y'0CUP[,Z$EA#28@O%,[GL'YH=SX)^$S4`G)BP,.)TP*9:M('Z0XS9)[,S, > M2-Y-DKW&^J!JS@J35LRE[T%PPH*0;/8**JDA#'Z6':09^M-E,@KO`@&!74)Z > M3_)C5<_)CCYUH(82.LD@>8RK2HKEE!235B=K#*782LHT0>CEYJ7@SWRDC_(L > M8J$:YN!1"-T`_=XRBKCP"1/_LTFYTE:W-F.5;S\JGX+$7"O46R2U,:IH61:L > M$E53QG@M0J'NY+1`4AY,8'%!,XK<^\(S-5%JOE0+6*5G!OXRDWJ*EF`N4(N9 > M/*E-2K9D*MEB:L/0>9GS.'8G'-W;(.`SR=_$+O-X(M1E/.GQ"9PYCPHX.[R7 > MF?#FKWN=*\"'KNQQ[1##G.,:1CODR)I^L''LQ!.W>7^H\,3 MT:H,><;DK"'B=Z`2C'FK_"_)H87,(HOLGYG3/R%]+I9A#C!Y8],0H9N`!#L= > M(Z:>_@TQ]71C3-V`$-:N;>L\S$34!)\^'J;Q]%3&TX<04C/[^*16/SFH6WH* > M'4Y/-X33$A^RF0V!X!$KT8^*E]J?0=I[?&Q97A+-Q-NI$,H^^&W`XT$X`@8/ > MP3\/9XQCMV1S<^C(3=P-0[$K-RZ8##MGP\2R$*!S=DI*H'.&:FFQ6-`X\DQD > M,&F11=-QU,=3'-'C[DR&;\+.^'%67:G!>V0C:9JM@\3R1+!J+3B/ANXRF2*7 > M?VB^';P9XO3XT&U>MB'H`&37`/0/T*$23*,@YYN-_-B+_#GADB]T0G*@;/,# > M-PDC/7HYI"7$?#8>SN/6U)U]:+UI7@\O^U?G@R$\7@POVEU:@FC#-<]FH"3% > M$J1 M=G+@6&H"%`H)MEXH)#J18CHJVS8KP8_*(?P$0WUP8*Z;0//>U=M!V[)V]^,; > M/]B/PF7"=U>`NNU!?]`<(-@RCO81$@*`.'&37>U&]<%2Q MR8U*BDXK3,O"[68[!.M;5BW?/K@:($>(WD)J%_:,O`.%!FK0"C=;]=K:_NMF > MO__NJG,\<^ > ML6LG]J&5SH,LEH% M;4(0E8@3K7U@+&Z!3@9/SI<)M6<0W(KG4^VQK`<3SHF$5+[,&1^[RUF":G[L > M3Y81>2):;M7@\[Y\U6>W@Y>#L\:Y\WWUX,A/T_\V/W9L8+SR1X > MN$`4X'\1>.NJ>SZ\ZIZU+YO"%WODB.O>U6_OR:N03CUR]E\7 M>1-Y"9U?42?SW!\;SL\W(R2+8N9$C+,T<.?=$^J?_AWB,MV>]&]LZ\RI8AJ0 > M/DIE+.=9HXT/+3U+*BO3;3E_J9"/J^BDB/^2G+#SM]W6H'/5[2NI`7[@7X`V > M@1`?:T5Z!('70PAA$@RXTG^UX,&V_M8LC/DV@+>+@C3\?C"$F"9B:,'++->( > MW@!@D.R!KLB/5J8TYW;OM;&ETZFN>J\-_>@0:]`DV[Q7X@P3;JWWZA!?V(U: > M^:`*.A1^G9K@#73O=G2RB&XPA!A*;2F#*+I68,:U`MT%0$0JO#9P`55&>QGS > MD9F&SET$&996)[`J*H$U$7H?0],ZC4 > MVMI\B)D@4ULGVS]"KSB3+@'-QRS";$R5S5_*F60DI^*T- M:;8;V,UMFI+768< M1C*+S(G>S@-Y$P&WDC59,]UJSD0,-3(FA$KF2V1GFBTQ<\\B?XTI$4PJ$\$H > M4YKF@L_[EREJZ)1&UKB;"$9I+IRGJZ;5YM%E[R8D/DR1IV3',:)-7U>(!&OF > MMD*WZ,L*=7,JT[%KDC0X@TC2()N821KGJ"KTCU.O*1].:A-!>;6;;?D:@_]D > MJD7OQTBTY.4YFY) M:&WV,KV;=3%V'4D_-)M=7M>)[)0)VXF#]*[Q+H107V)N4XV50[PPBGB\"(-M > MNMZX],]H'O.R7M\R:3]NQ36E"0`:!LQR>AW)#Y > M`<94;&HIFQ`CO`G]56M#-XYYE.12 M!S_:DZ$Y'X@*JUM[[3518=5XMH4W0Q-);Z:^[S1$4&B?.`TKG0;=&1-P0TQH > M"WUR=%@^9J6C0U6;H2LG+$NI-E%A85GZED!V2R[/2>S'4UVI`2"*CIK,1$^) > M06K_M(P#FU2!BBK#`"S:% MO20$Z_^"\B<"]JS3DXKVP,$(P#E(TY2YJA"\)6%X30+.RRP-TV)VQ]DD M^.,%N_2(:IW,->6JI*Q64$`$OO`69WB14Y1YQ]]^^TTG^&2`3@&%,B_UJJC6 > M<>J.X@C\)V`$=&S>/H#)D6E,89:7,?#U(HR2^-L5VKH-&9HMK\ET3HG4%P)2 > M*=/JY>DG0O3($RX]]H1+ZQ>6O1!5BRMM65R^UBJ^\Q-ORLAM6$SOX\I+X?.H > M?F!CK`FY?O.^/[RZ;G<[W=K,D)I>4N$KRK"4D#K'#N:G;]J.KZ: > MA7?,O7/O!2?KJ@',@,=_#PLK#EU_PRD6C[LZJ![AK@ZJ#;DKN:'.&'S2?N?U > MH-T#CQ!VX_'Q M/T'.%\Y\#WNQB$%"&56+;/^H#>\ONH-AOTW > M;P=G5^^Z998&2%^5\5PL%C\Z1R2FW&PZ;0S1[:V]N;)0&F$\4UFHF& M/(":!2TGP6TPG!*?,)PU83AKF+>7&:)?F[U.\]5%>TV&B"R>83)7DN-TF43^ > M-(F<'$J6<9TIQ0'JSI3\U,QLRKQ:&<2E'.+4XEIY?`:LL+JI(1:@@Q!%(5_" > MF)E"#\O,D1]XD\[)C)06K4^X'62\6K(H(.-R9[:,+DL65CGQFL&3Q8_V#FG. > MC2SN;&5Q9PV+.P:+.QD6QXG65#[CG923X?$4<(7)'8/)[7I#N`/XJVH"KF%P > M)QB'%F(Y57X1.484[%P%H&FQ^.;Z>G`M*W`PN056AC([;K;PZ]_+<66R%FAA > MS395S416UTQX?=,ZT6VZ629T41M/P^4,`C^N01_(K3R00ON6#6S*IXG[@G!U > M/VJ%:6$Q6*PT(;&2-*O8:-HZR!E:FF>*EG^#]B9CL%()Q/H:) > MJ,`'9K_A<0*A"+@SR-4+NFWN7&/."")?55(]Y_.8)X5G,&0<"F.E$B?8L,6< > MKN.11]&!Z5MYNI>:.=FH7?1G^!R+(:G>^^BX[&"]]]$1_N*1_)F)#?Y?UKJ9 > M9Y2+F-PO.'+)LPFN^QK:!M!B>-!Z.[3E!;^O8#4.9XBQ< > M>SM`+AD5GBV,*S;D4@JZ.MW6U27XL>C.J)Q!)F]+6)Y,TCS@**,0UN:.4G'+ > MY8ZR/$\VZ<[%RC,?W-\9^-K1*09Q%I+02?A)*XEF > M!:,B#MNQ[0)3>D%A#2=@+COTW-DUQ$R465LSQDB,9J#S-WS(ID.LGOD[[)N< > M>+N1:VRU<=55&]`+ > M?*&*$2ZNKGX!HOW2'G8'DO*JJ]?LG@'[_F][V.J M+.W!K8=YT^R:,*4^U?+:OZI6I7[3739<`$5%567_ACX) M0?W:AJ7WAEA\L8+!Z+-V+Z_/3MCE MR>.QX#)Y`.Q`6B2#$0.93A<"NRY(4:MY`8+TVMKM8/8%0C(T@)$_P5(FL'J_ > M7G M_L#!PC'N3 M^YN$3-P$J*L3H0NF;@`^NBSMC,6B7+Q*0;]9M>H1E!L#Q[IEPL_$%4QF`*&@ > M]7T5&@OM![*%/H]D@9)C[2F-I`R@(Z0G?,PKQ)J2^J!;/@$!< > MKWG2"5"?P0E.],L:J*ME8H#)-_IX)86C\YFHQP\9,?JX`HT[DM#P^"$CF)2: > M7('>T^"YPY?%B#DBR/%IEC(S.B6%QFK00ET+2\RJKG?L MB"6`B$"U&K*Y4SO0F1[P(I0,#=\UNX.A5!'M"U`PH!$";[8<<;:;*LPIB/)/ > M2Z$HUHP@ILDM5Y4?XZ4("IV\J4,_4QR.")J/':%DQ:_2LO(ZX(E7>0F'2EQ# > M9M3L466A*STH4.M]Q`PS9*,(S3ODT7A3=``U%\EKASP^F,R4K8Q7OPXA+EL" > MDUN9.BS0+U-=.Q4+_#EO2EM$1\5+F^@(`9)\)=@&Z#\@2&<@6%9?-\OCT-^Z > MR7= M/47BG!Y8@%83U/?[;NLTA;OA;F2`O6HW>PC5[+XW@,9^-+]S(ZZ1&;9-7BXA > MV-S]@A104)KPA&C"DVD8)\B.!83&%QUIJ`8=$(%D!=[B7G0`UXW"J+QBT#*C > M"4B/5]+=Y7?X(XK@"I[R>>&DC6._@'U<7[R7B5J[>DSUT=6T^$BJD\SE`WV9 > M> M(K2$H>8E<=#Q@:>E01P!."ME6YQ!HUZV:YJS M'!F<&IWQR>*XS&Z`.\JD4T4QAUAFAC3Q[J/*.?8]]6&EN=,':"&"1'-K#Y1T > M*-#B^K(-U6U4;N@1LG@C!;E\) M0*WZF`>7'W5#1`D>'W[*!#^JR3.^]R26HGJ)DFU3J;4A5[?9SVGD,8LO!HQ/ > M:K[-OJ2<1?;D.S@+<.;+@^CT"H*GGHY2KC+7BE<2XH0>J!7:;MR0?;+F:QL# > M9<>N9R$#F\$`:2.R419/GI&FVSAI*K>;/708)%::VPJU"YQ97D(K+-Y+I M>/0MF*XS2ON$A4;^I`]9CNJ4'17%.$;0>!:R9:!NG=+[I M72#NB=+G.Q]\Q:?QR=,E5K\QQ?IE8%N>#(,D=`O00)^(@%HO"L*+5]3LQ?]B > MIXCE72(CF9-"Z42.4A^_P!GB?``#FC?GH6LZ[&HO1R)4ZN*E_`!4$+?FU"D? > M4+-K^&`D/]\!5U.2TQ6[(O1@7#V\)@?ZB%_ZCC&WAB0,)2F!0V9HB+,67'ZI > MNHA"#SLA4%!\X2?/OUT-K1#`^8^3U%E+T]2R`T"&J$Z&JBRC#=E6;;A%Y2@\ > MI+5R3J[TMMK]0?/51:?_IGUF@&,$(8^XF/5;1,V#R.EYRC6K-0XD3QS;.OI= > M] M2?*^9)8F9A(WK0FP#VM'I)8/#ZIF$0N53:PXX/W!U35YX">K[+ANE,%()YO^ > M7L\&6EF/4K'K$&Z22>N1.M:2E,_%@X+RP`U>-D#<$G&6-F!Z<""6J"#G^\$2 > M/_J1:/"ZP`OG*'ZJ_B5-:G0"-,`]_L>2QXD5\3^D'-9M6WPN9Q\VTOMW1I9[ > MKU`0*3J[/@2'L1_DA= > M?H1N9GK^&PRKSE;B45A)=-\2!U3-V]Q-+)&UN?D_?F&04L0^LFII&MX9EY2I > M\)QWNF?$%9?O,4]^(BEYU!#!;KWN&%\#2S>'O+-R>E0BC(X_:';[N-H7\#M5 > M7ZR6!$UZ288T2PX][[7;6HQ3HM#<'_4?B9)B:1YR'D3N65YGH@M2S3NH$H3^ > MF@(TY:Y?)7OC%_AX*,?.P98,`'T]@ER#$3]8L%A^+O=CPGEG-9[7*6C_S@]4 > MOM@^KE,^X[B6?MR**>_[1R2)".Z!))%$]E"2B,"V)8D((N(Q%FE+@'ZKU0,4 > M_8OAU2\4JQIY)!J0R22E38H+92:).A[,)9E@Q?3[K&7B__![/9IS M'6WM/ M5`&\UP-G^P*BJ`*6!K.]\:(LOLW"3_0Y2`!9A_T]D)"]7!R+2I%JH\0WLZ5L > MK_J3=?!,&#F252)W9SR0$^%M"V!"^TU#]DBJQ$AQO2Z;BZ+E5,.!+G-%=@3_ > MLIV;!L2($*))F@-LG/A+2&)R=+"$K=V3R,T:5LL";87 M2DN"B*:O\/\]O62Y-$LNHHA_R:?T%=<*!XGE<>TOW,._]5=4Y7$F;T__!MY^ > MX,/4HVV=QZO?I1ZEC_\WI'0-77-H8*)O;`!*K@9F5@86G'`KX,D:[Z942*H& > M'36HH`TD84NQD%?9A1=EEJ3Z)I6F:8`(!:U<:%)+`U6DT%8"J!64DYB4FH.R > M=12L/<#3!5RA0/` > M4C.:6V`)!:0F)S\=U?UIN<#"5D]/#]2@!(+X>,B8:TYF=JJ&D8Z",>:N6$[0 > :R92^J<7IV`T$#]:"95+S@)H!6MD=FB-5``#X > ` > end > -- ----------------------------------------------------------------------------- Matthew Davy mpd@indiana.edu 812-855-7728 University Information Technology Services Network Operations ----------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 13 9:26:48 2000 Delivered-To: freebsd-net@freebsd.org Received: from new-urth.wamnet.com (ns.wamnet.com [208.50.249.20]) by hub.freebsd.org (Postfix) with ESMTP id 350B337B66F; Fri, 13 Oct 2000 09:26:42 -0700 (PDT) Received: from ndm.wamnet.com([172.17.38.2]) (3920 bytes) by new-urth.wamnet.com via sendmail with P:esmtp/R:inet_hosts/T:smtp (sender: ) id for ; Fri, 13 Oct 2000 11:26:41 -0500 (CDT) (Smail-3.2.0.104 1998-Nov-20 #1 built 1998-Dec-7) Received: from ds.cops.wamnet.com (ds.cops.wamnet.com [172.17.31.2]) by ndm.wamnet.com (8.9.1a/8.9.1) with ESMTP id LAA2447316; Fri, 13 Oct 2000 11:26:40 -0500 (CDT) Received: from y.cops.wamnet.com (y.cops.wamnet.com [172.17.31.43]) by ds.cops.wamnet.com (980427.SGI.8.8.8/970903.SGI.AUTOCF) via SMTP id LAA63938; Fri, 13 Oct 2000 11:26:40 -0500 (CDT) Date: Fri, 13 Oct 2000 11:26:21 -0500 (CDT) From: Lee J Carmichael X-Sender: lcarmich@y.cops.wamnet.com Reply-To: Lee J Carmichael To: Piotr Kucharski , avatar@ultra.ultra.net.au Cc: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: network interface problem In-Reply-To: <20001013151727.J12744@sgh.waw.pl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello Everyone, I found that on the newer IBM 4500R the AMD ethernet chipset version is an new version(which 'Am79C975'). The newer version does not have a freebsd driver. I did some investgation and found that in Linux the new driver didn't seem to do anything different from the previous version. (it had set the same vars, it just handled detecting of the new chipset version and setting the new chipset name.) But I didn't try to hack the driver in FreeBSD because I still don't understand the structure and what the driver does well enough. It seems that it could be added in, '/usr/src/sys/i386/isa/if_lnc.c' and in the header '/usr/src/sys/i386/isa/if_lnc.h' as a new 'Chip Type'. Any helpful hints, links to FreeBSD device drivers how tos, etc? The other thing that seems odd to me is that these drivers still live under ISA and not under the PCI tree, it doesn't seem to matter but I was wondering why. Thanks, -------- Lee Carmichael WAM!NET Inc. System Engineer 655 Lone Oak Rd Building E 651-256-5292 Eagan, MN 55121 On Fri, 13 Oct 2000, Piotr Kucharski wrote: > Hey > > I have the same problem. Did you manage to get over it? > > p. > > On Wed, Sep 20, 2000 at 02:45:18PM -0500, Lee J Carmichael wrote: > > Date: Wed, 20 Sep 2000 14:45:18 -0500 (CDT) > > From: Lee J Carmichael > > To: freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG > > Subject: network interface problem > > > > Hello Everyone, > > > > I am having a problem with a network interface driver for a netfinity > > 4500R. The ethernet interface on this box is a AMD PCnet chip set(at least > > AMD). The issue is that ethernet interface is detected correctly on the > > PCI bus, but it logs the following message in dmesg: > > > > lnc0: port 0x2000-0x201f mem > > 0xfeb7fc00-0xfeb71c1f irq 11 at device 2.0 on pci0 > > lnc0: driver is using old-style compatability shims > > > > I edited the kernel config to only have: > > > > device lnc0 # without the ?isa parameters > > > > and, I tried > > > > device lnc # like other pci ethernet devices > > > > I did read through both '/usr/src/sys/i386/isa/if_lnc.c' and > > '/usr/src/sys/i386/pci/if_lnc_p.c'. But they didn't yield anything > > helpful. This could be due to my lack of understanding with how these > > drivers are loaded at boot time. > > > > One last piece of info, in my /etc/rc.conf file, I have: > > > > network_interfaces="lo0 lnc0" > > ifconfig_lnc0="inet xxx.xxx.xxx.xxx" > > > > Not that this really matters, since it just generates a 'lnc0 interface > > not found' or something like that. > > > > Any Ideas? Thanks for the help, in advance. > > -------- > > Lee Carmichael WAM!NET Inc. > > System Engineer 655 Lone Oak Rd Building E > > 651-256-5292 Eagan, MN 55121 > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 13 11:42:36 2000 Delivered-To: freebsd-net@freebsd.org Received: from dsms.com (dsms.com [205.158.42.162]) by hub.freebsd.org (Postfix) with ESMTP id 2386F37B503 for ; Fri, 13 Oct 2000 11:42:35 -0700 (PDT) Received: from dsms.com (bp-61.sm.dsms.com [199.89.215.61]) by dsms.com (8.9.3/8.9.3) with ESMTP id LAA86559 for ; Fri, 13 Oct 2000 11:46:36 -0700 (PDT) Message-ID: <39E756D6.830F1C04@dsms.com> Date: Fri, 13 Oct 2000 11:39:18 -0700 From: harold barker Reply-To: hvb@dsms.com Organization: Dark Side of the Moon SoftWare X-Mailer: Mozilla 4.75 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 To: "freebsd-net@FreeBSD.ORG" Subject: Multipal routes to the same destination. Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Do to the fact that my little cisco router can not do NAT with only one outside address I have been playing with a 4.1-R box to replace my cisco. I have run into one problem that i can not find the answer for. I need to install multiple default routes. I have figured out the command line that seems to be able to install multiple concurrent default routes. My question is. Will Freebsd 4.1-R load balance across the default routes, can i replace my cisco with a 4.1-R box? Is there a document covering this? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 13 17:39:59 2000 Delivered-To: freebsd-net@freebsd.org Received: from auemlsrv.firewall.lucent.com (auemail1.lucent.com [192.11.223.161]) by hub.freebsd.org (Postfix) with ESMTP id 1B12C37B66C; Fri, 13 Oct 2000 17:39:55 -0700 (PDT) Received: from auemlsrv.firewall.lucent.com (localhost [127.0.0.1]) by auemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA21534; Fri, 13 Oct 2000 20:39:54 -0400 (EDT) Received: from mhmail.mh.lucent.com (h135-3-115-8.lucent.com [135.3.115.8]) by auemlsrv.firewall.lucent.com (Pro-8.9.3/8.9.3) with ESMTP id UAA21530; Fri, 13 Oct 2000 20:39:53 -0400 (EDT) Received: from lucent.com (positron.micro.lucent.com [192.19.56.129]) by mhmail.mh.lucent.com (8.8.8+Sun/EMS-1.5 sol2) id UAA23312; Fri, 13 Oct 2000 20:39:51 -0400 (EDT) Message-ID: <39E7AB10.EADBB53B@lucent.com> Date: Fri, 13 Oct 2000 20:38:40 -0400 From: "Gary T. Corcoran" Organization: Lucent Microelectronics - Client Access Broadband Systems X-Mailer: Mozilla 4.73 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org Subject: Module parameters? (WildWire DSL card driver) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Back in July I was asking about the capability to set parameters (variables) when loading my DSL driver module. There was a small flurry of activity about some initial ideas on how to do it, but I never heard any more about it. Did you (Mike, Warner, or anybody) have time to work on it? Did this capability get put into release 4.1, by any chance? :) I'm going to be transitioning from the DSL department here, and so I'd like to get the FreeBSD flavor of our DSL driver fully working before I leave DSL land. Right now the driver basically works, but I have to recompile it when I want to change options (recall that at the time my attach routine is called I need to know some parameters, I can't wait for a later ioctl). If I get the ability to set module parameters, so that the driver will be useful to people in general, is there anyone out there with DSL service and a Lucent WildWire card who would like to try out the driver? The Lucent WildWire DSL + V.90 modem cards have been shipped in PCs from Compaq, Dell, Hewlett-Packard, and Samsung (or soon to be from them). I believe they're still not yet available by themselves in retail stores - they still only come from OEMs. The driver is written for FreeBSD 4.x. At this point we're still not releasing any source code (and may never :( ), so that's why you can't just recompile your own driver with the options you need... So what's the status of module parameters? (no longer subscribed to either of these lists, please keep me in the address list on all replies) Thanks, Gary -- ========================================================= Gary Corcoran - Distinguished Member of Technical Staff Lucent Microelectronics - Client Access Broadband Systems Communications Protocol & Driver Development Group "We make the drivers that make communications work" Email: gcorcoran@lucent.com --------------------------------------------------------- "No brain, no service." ========================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 13 18:22:29 2000 Delivered-To: freebsd-net@freebsd.org Received: from xena.gsicomp.on.ca (cr677933-a.ktchnr1.on.wave.home.com [24.42.130.87]) by hub.freebsd.org (Postfix) with ESMTP id E336C37B503; Fri, 13 Oct 2000 18:22:25 -0700 (PDT) Received: from hermes (hermes.gsicomp.on.ca [192.168.0.18]) by xena.gsicomp.on.ca (8.10.1/8.9.2) with SMTP id e9E1MOD11302; Fri, 13 Oct 2000 21:22:25 -0400 (EDT) (envelope-from matt@gsicomp.on.ca) Message-ID: <000901c0357d$373e5570$1200a8c0@gsicomp.on.ca> From: "Matthew Emmerton" To: Cc: , Subject: [DESIGN]: natd-style configuration for ppp's nat Date: Fri, 13 Oct 2000 21:22:27 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org All, What follows are my notes on how I've modified natd so that its configuration-file parsing routines can be used by other programs. (Why? Some of us would like ppp's nat to read it's configuration from a natd(8)-style configuration file, rather than from ppp.conf.) Currently ppp is the only program to need natd's option parser, but a NAT node for netgraph may require these routines as well. I welcome any and all comments and suggestions. -- Matthew Emmerton GSI Computer Services +1 (800) 217 5409 (Canada) -------------------------------------- 1a. Modifications to sbin/natd natd.c and natd.h have been modified in the following manner: - Function ParseOption() split into two pieces: - ParseOption() to handle option parsing, moved to natd_config.c - ProcessOption() to handle option processing, remains in natd.c - Functions ReadConfigFile() and ParseOption() moved to natd_config.c - Functions StrToXXX() moved to natd_config.c - Definitions of Option, Param, and OptionInfo moved to natd_config.h - Macros dealing with ports moved to natd_config.h 1b. Additions to sbin/natd - Strucure OptionValue added to natd_config.h, used to pass option data back to ProcessOption() - Function InitConfig added to natd_config.c, used to initialize hooks to option processing routines and error/warning routines 2. Developer Notes In general, all that is needed to take advantage of the common config read/parse code is to: - include src/sbin/natd_config.h - link with src/sbin/natd_config.o - implement a ProcessOptions() routine which will act upon configuration file directives The required setup prior to using ReadConfigFile() is to call InitConfig() with the appropriate functions for processing and error reporting. After the function hooks are initialized, a call to ReadConfig() will read a natd(8)-style configuration file, call ParseOption() to parse the configuration file, and then call ProcessOption() to act upon all recognized options. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 14 15:41:42 2000 Delivered-To: freebsd-net@freebsd.org Received: from worldclass.jolt.nu (lgh637b.hn-krukan.AC [212.217.139.112]) by hub.freebsd.org (Postfix) with ESMTP id A425937B66E for ; Sat, 14 Oct 2000 15:41:39 -0700 (PDT) Received: from localhost (c4@localhost) by worldclass.jolt.nu (8.9.3/8.9.3) with ESMTP id AAA01496 for ; Sun, 15 Oct 2000 00:40:57 +0200 (CEST) (envelope-from c4@worldclass.jolt.nu) Date: Sun, 15 Oct 2000 00:40:56 +0200 (CEST) From: Tobias Fredriksson To: freebsd-net@freebsd.org Subject: Limiting network usage on an user-basis? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Is there any way to use ipfw or other freebsd tools to shape so that an users processes cant exceed an specified total and is there any good documentation that you can point me to about this? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 14 16:11:46 2000 Delivered-To: freebsd-net@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id BB73E37B66C for ; Sat, 14 Oct 2000 16:11:44 -0700 (PDT) Received: by jade.chc-chimes.com (Postfix, from userid 1001) id 5DA861C41; Sat, 14 Oct 2000 19:11:44 -0400 (EDT) Date: Sat, 14 Oct 2000 19:11:44 -0400 From: Bill Fumerola To: Tobias Fredriksson Cc: freebsd-net@freebsd.org Subject: Re: Limiting network usage on an user-basis? Message-ID: <20001014191144.I37870@jade.chc-chimes.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: ; from c4@worldclass.jolt.nu on Sun, Oct 15, 2000 at 12:40:56AM +0200 X-Operating-System: FreeBSD 3.3-STABLE i386 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, Oct 15, 2000 at 12:40:56AM +0200, Tobias Fredriksson wrote: > Is there any way to use ipfw or other freebsd tools to shape so that an > users processes cant exceed an specified total and is there any good > documentation that you can point me to about this? man ipfw, particularly the parts about 'uid/gid' and dummynet. -- Bill Fumerola - Network Architect, BOFH / Chimes, Inc. billf@chimesnet.com / billf@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 14 17:40:51 2000 Delivered-To: freebsd-net@freebsd.org Received: from storm.FreeBSD.org.uk (storm.freebsd.org.uk [194.242.139.170]) by hub.freebsd.org (Postfix) with ESMTP id 27B2237B66C for ; Sat, 14 Oct 2000 17:40:43 -0700 (PDT) Received: from hak.lan.Awfulhak.org (root@hak.nat.Awfulhak.org [172.31.0.12]) by storm.FreeBSD.org.uk (8.11.0/8.11.0) with ESMTP id e9F0eZI11843; Sun, 15 Oct 2000 01:40:36 +0100 (BST) (envelope-from brian@Awfulhak.org) Received: from hak.lan.Awfulhak.org (brian@localhost [127.0.0.1]) by hak.lan.Awfulhak.org (8.11.1/8.11.0) with ESMTP id e9DEZiY48142; Fri, 13 Oct 2000 15:35:44 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Message-Id: <200010131435.e9DEZiY48142@hak.lan.Awfulhak.org> X-Mailer: exmh version 2.1.1 10/15/1999 To: Archie Cobbs Cc: Matthew Davy , freebsd-net@FreeBSD.ORG, brian@Awfulhak.org Subject: Re: mpd-netgraph with radius/kerberos authentication In-Reply-To: Message from Archie Cobbs of "Wed, 11 Oct 2000 14:30:17 PDT." <200010112130.e9BLUH354316@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 13 Oct 2000 15:35:42 +0100 From: Brian Somers Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Matthew Davy writes: > > I'm looking to deploy a PPTP server and would really like a Unix-based solution > > instead of a MS server. I have been looking at PoPToP under Linux when I came > > across mpd. It was *very* easy to setup for my personal use. But I'll need > > to use some other kind of back-end authentication...Radius/Kerberos/TACACS... > > something other than a flat config file if I'm going to have a large number of > > users. > > > > Is this something that is already there or planned, or something that would > > be fairly easy to add ?? > > mpd doesn't support RADIUS, et.al. because I've never had enough > reason/time to do it.. but it might not be very difficult, as one > could contain the changes mostly within "auth.c". If you don't mind using libradius (radius client support), have a look at the #ifndef NORADIUS bits of ppp(8). > -Archie > > ___________________________________________________________________________ > Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com -- Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message