From owner-freebsd-isp Sun Apr 22 0:19:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id 5D94637B423 for ; Sun, 22 Apr 2001 00:19:44 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 14rE5l-0007dx-00; Sun, 22 Apr 2001 00:15:33 -0700 Date: Sun, 22 Apr 2001 00:15:31 -0700 (PDT) From: Tom Samplonius To: Kris Kirby Cc: isp@freebsd.org Subject: Re: Multiport FBSD Routing? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 22 Apr 2001, Kris Kirby wrote: > > If each T1 goes to a different provider, well, that is kinda of a messed up > > situation. I see people trying to do this, and configure all their > > servers with IPs from each provider. It turns into a unreliable, > > convulted mess. Not a good thing if you want to achieve better > > reliability. > > I'm not saying I want to try to use both networks in a parallel > fashion. I'm saying I want to try to use a FreeBSD machine in place of a > cisco router. This requires managing the default/current route. Logically, > Zebra would have to feed the BGP route information into the routing > table. If cisco's already done it, it should be able to be done on UN*X. Yes, but FreeBSD can't have more than one gateway per destination. There has been a patch for that, but it has been lost. The routing table simply lacks the ability to store more than one gateway. I really don't understand why you want to use Zebra and BGP to manage the default route? If you are using default routing, you really don't need a routing protocol at all. Typically if you are using BGP, you won't even have a default route, because you'll have a specific route to every destination. > ----- > Kris Kirby, KE4AHR | TGIFreeBSD... 'Nuff said. > | > ------------------------------------------------------- > "Fate, it seems, is not without a sense of irony." Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 22 6:42:59 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tao.org.uk (genesis.tao.org.uk [212.135.162.62]) by hub.freebsd.org (Postfix) with ESMTP id 0B52F37B422 for ; Sun, 22 Apr 2001 06:42:56 -0700 (PDT) (envelope-from joe@tao.org.uk) Received: by tao.org.uk (Postfix, from userid 100) id E626B31E1; Sun, 22 Apr 2001 14:42:53 +0100 (BST) Date: Sun, 22 Apr 2001 14:42:53 +0100 From: Josef Karthauser To: Tom Samplonius Cc: Kris Kirby , isp@freebsd.org Subject: Re: Multiport FBSD Routing? Message-ID: <20010422144252.H225@tao.org.uk> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="tT3UgwmDxwvOMqfu" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from tom@sdf.com on Sun, Apr 22, 2001 at 12:15:31AM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --tT3UgwmDxwvOMqfu Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Apr 22, 2001 at 12:15:31AM -0700, Tom Samplonius wrote: >=20 > On Sun, 22 Apr 2001, Kris Kirby wrote: >=20 > > > If each T1 goes to a different provider, well, that is kinda of a > messed up > > > situation. I see people trying to do this, and configure all their > > > servers with IPs from each provider. It turns into a unreliable, > > > convulted mess. Not a good thing if you want to achieve better > > > reliability. > >=20 > > I'm not saying I want to try to use both networks in a parallel > > fashion. I'm saying I want to try to use a FreeBSD machine in place of a > > cisco router. This requires managing the default/current route. Logical= ly, > > Zebra would have to feed the BGP route information into the routing > > table. If cisco's already done it, it should be able to be done on UN*X= .=20 >=20 > Yes, but FreeBSD can't have more than one gateway per destination. > There has been a patch for that, but it has been lost. The routing table > simply lacks the ability to store more than one gateway. Yes, it's something that Chris Luke at Easynet knocked up. You'll probably find it in the archives if you look. Joe --tT3UgwmDxwvOMqfu Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjri39IACgkQXVIcjOaxUBbJPQCglX7JlSUgbJfZF0JH+xkrlxxH vUEAoNTEsfZLeVv3LrwZASs+VgW3/U9t =SYhT -----END PGP SIGNATURE----- --tT3UgwmDxwvOMqfu-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 22 7:16:19 2001 Delivered-To: freebsd-isp@freebsd.org Received: from pericles.IPAustralia.gov.au (pericles.IPAustralia.gov.au [202.14.186.30]) by hub.freebsd.org (Postfix) with ESMTP id C671F37B422 for ; Sun, 22 Apr 2001 07:16:15 -0700 (PDT) (envelope-from anwsmh@IPAustralia.Gov.AU) Received: (from smap@localhost) by pericles.IPAustralia.gov.au (8.11.1/8.11.1) id f3MEGQi17914 for ; Mon, 23 Apr 2001 00:16:26 +1000 (EST) (envelope-from anwsmh@IPAustralia.Gov.AU) Received: from wf-136.aipo.gov.au(192.168.1.136) by pericles.IPAustralia.gov.au via smap (V2.0) id xma017910; Mon, 23 Apr 01 00:16:02 +1000 Received: (from anwsmh@localhost) by stan.aipo.gov.au (8.11.1/8.11.1) id f3MEIqS00288 for isp@FreeBSD.ORG; Mon, 23 Apr 2001 00:18:52 +1000 (EST) (envelope-from anwsmh@IPAustralia.Gov.AU) X-Authentication-Warning: stan.aipo.gov.au: anwsmh set sender to anwsmh@IPAustralia.Gov.AU using -f Date: Mon, 23 Apr 2001 00:18:51 +1000 From: Stanley Hopcroft To: isp@FreeBSD.ORG Subject: Re: Multiport FBSD Routing? Message-ID: <20010423001849.A267@IPAustralia.Gov.AU> References: <20010422144252.H225@tao.org.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010422144252.H225@tao.org.uk>; from joe@tao.org.uk on Sun, Apr 22, 2001 at 02:42:53PM +0100 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear Sir, I am writing to say that > > Yes, but FreeBSD can't have more than one gateway per destination. > > There has been a patch for that, but it has been lost. The routing table > > simply lacks the ability to store more than one gateway. > > Yes, it's something that Chris Luke at Easynet knocked up. You'll > probably find it in the archives if you look. > > Joe unfortunately Mr Lukes patch to support Equal Cost Multi Path routing was for a.out/2.x FreeBSD. It has not been ported to FreeBSD 4.x. Oh that it would ! Yours sincerely. -- ------------------------------------------------------------------------ Stanley Hopcroft IP Australia Network Specialist +61 2 6283 3189 +61 2 6281 1353 (FAX) Stanley.Hopcroft@IPAustralia.Gov.AU ------------------------------------------------------------------------ They spell it "da Vinci" and pronounce it "da Vinchy". Foreigners always spell better than they pronounce. -- Mark Twain To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 22 9:33:37 2001 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [204.244.213.49]) by hub.freebsd.org (Postfix) with ESMTP id 2017837B42C for ; Sun, 22 Apr 2001 09:33:33 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 14rMgk-0000Mf-00; Sun, 22 Apr 2001 09:26:18 -0700 Date: Sun, 22 Apr 2001 09:26:11 -0700 (PDT) From: Tom Samplonius To: Josef Karthauser Cc: Kris Kirby , isp@freebsd.org Subject: Re: Multiport FBSD Routing? In-Reply-To: <20010422144252.H225@tao.org.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; CHARSET=US-ASCII Content-ID: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, 22 Apr 2001, Josef Karthauser wrote: ... > > Yes, but FreeBSD can't have more than one gateway per destination. > > There has been a patch for that, but it has been lost. The routing table > > simply lacks the ability to store more than one gateway. > > Yes, it's something that Chris Luke at Easynet knocked up. You'll > probably find it in the archives if you look. > > Joe I have looked, since I very much want to find the patch. However, the archives only contain the original annoucment e-mails and a link to the patch. The posted link is no longer valid, as that site doesn't have the patch anymore. Does anyone have a copy of the Chris Luke multipath patch? Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 9:49:26 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.sai.co.za (mail.sai.co.za [196.33.40.8]) by hub.freebsd.org (Postfix) with ESMTP id A9B9C37B42C for ; Mon, 23 Apr 2001 09:49:20 -0700 (PDT) (envelope-from davew@sai.co.za) Received: from dave.sai.co.za ([196.33.40.17] helo=dave) by mail.sai.co.za with smtp (Exim 3.22 #1) id 14rjYY-00047m-00 for freebsd-isp@freebsd.org; Mon, 23 Apr 2001 18:51:22 +0200 From: "David Wilson" To: Subject: Changing DNS serials in multiple zone files Date: Mon, 23 Apr 2001 18:50:13 +0200 Message-ID: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0108_01C0CC26.3B1B91E0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0108_01C0CC26.3B1B91E0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi All, howzit going ? I'm sure this is pretty easy, I'm just not sure on how to do it. ;-) I have 300 DNS zones on my FreeBSD boxlet, and I need to change the serials on all of them. How would go about doing this in one easy step so that I didn't have to vi 300 times. ? Thanks, any guidance would be greatly appreciated. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za ------=_NextPart_000_0108_01C0CC26.3B1B91E0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi = All, howzit going=20 ?
 
I'm = sure this is=20 pretty easy, I'm just not sure on how to do it. ;-)
 
I have = 300 DNS zones=20 on my FreeBSD boxlet, and I need to change the serials on all of=20 them.
How = would go about=20 doing this in one easy step so that I didn't have to vi 300 times.=20 ?
Thanks, any guidance=20 would be greatly appreciated.
 

Regards

David Wilson

Technical Support Centre

The S.A Internet

0860 100 869

http://www.sai.co.za

 
------=_NextPart_000_0108_01C0CC26.3B1B91E0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 9:54:43 2001 Delivered-To: freebsd-isp@freebsd.org Received: from anaconda.acceleratedweb.net (anaconda.acceleratedweb.net [209.51.164.130]) by hub.freebsd.org (Postfix) with SMTP id 8FD9837B422 for ; Mon, 23 Apr 2001 09:54:37 -0700 (PDT) (envelope-from simon@optinet.com) Received: (qmail 34689 invoked by uid 106); 23 Apr 2001 16:54:36 -0000 Received: from 66-65-36-21.nyc.rr.com (HELO sharky) (66.65.36.21) by anaconda.acceleratedweb.net with SMTP; 23 Apr 2001 16:54:36 -0000 From: "Simon" To: "David Wilson" , "freebsd-isp@freebsd.org" Date: Mon, 23 Apr 2001 12:58:56 -0400 Reply-To: "Simon" X-Mailer: PMMail 2000 Professional (2.10.2010) For Windows 2000 (5.0.2195) In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="_=_=_=IMA.BOUNDARY.HTML_4963584=_=_=_" Subject: Re: Changing DNS serials in multiple zone files Message-Id: <20010423165437.8FD9837B422@hub.freebsd.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --_=_=_=IMA.BOUNDARY.HTML_4963584=_=_=_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit This depends on your zone file's format. You can use perl, etc... to do this. Or, depending on what you're trying to accomplish, you can just delete all zone files from slave servers and restart them. This will cause slave servers to load new zone files. -Simon --Original Message Text--- From: David Wilson Date: Mon, 23 Apr 2001 18:50:13 +0200 Hi All, howzit going ? I'm sure this is pretty easy, I'm just not sure on how to do it. ;-) I have 300 DNS zones on my FreeBSD boxlet, and I need to change the serials on all of them. How would go about doing this in one easy step so that I didn't have to vi 300 times. ? Thanks, any guidance would be greatly appreciated. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za --_=_=_=IMA.BOUNDARY.HTML_4963584=_=_=_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: 7bit This depends on your zone file's format. You can use perl, etc... to do this. Or, depending on what you're trying to accomplish, you can just delete all zone files from slave servers and restart them. This will cause slave servers to load new zone files.

-Simon

--Original Message Text---
From: David Wilson
Date: Mon, 23 Apr 2001 18:50:13 +0200

Hi All, howzit going ?

I'm sure this is pretty easy, I'm just not sure on how to do it. ;-)

I have 300 DNS zones on my FreeBSD boxlet, and I need to change the serials on all of them.
How would go about doing this in one easy step so that I didn't have to vi 300 times. ?
Thanks, any guidance would be greatly appreciated.



Regards

David Wilson

Technical Support Centre

The S.A Internet

0860 100 869

http://www.sai.co.za



--_=_=_=IMA.BOUNDARY.HTML_4963584=_=_=_-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 9:57:38 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mailman.thenap.com (mailman.thenap.com [209.190.0.10]) by hub.freebsd.org (Postfix) with ESMTP id 3A25A37B423 for ; Mon, 23 Apr 2001 09:57:31 -0700 (PDT) (envelope-from drew.weaver@thenap.com) Received: by mailman.thenap.com with Internet Mail Service (5.5.2650.21) id <26M8S3DD>; Mon, 23 Apr 2001 13:11:44 -0400 Message-ID: From: "Drew J. Weaver" To: 'Simon' , David Wilson , freebsd-isp@freebsd.org Subject: RE: Changing DNS serials in multiple zone files Date: Mon, 23 Apr 2001 13:11:41 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C0CC18.787512D6" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C0CC18.787512D6 Content-Type: text/plain; charset="iso-8859-1" He could have PHP/PERL load all of the zones into an array and change the number from something to something else, but this would be a custom script. -Drew -----Original Message----- From: Simon [mailto:simon@optinet.com] Sent: Monday, April 23, 2001 12:59 PM To: David Wilson; freebsd-isp@freebsd.org Subject: Re: Changing DNS serials in multiple zone files This depends on your zone file's format. You can use perl, etc... to do this. Or, depending on what you're trying to accomplish, you can just delete all zone files from slave servers and restart them. This will cause slave servers to load new zone files. -Simon --Original Message Text--- From: David Wilson Date: Mon, 23 Apr 2001 18:50:13 +0200 Hi All, howzit going ? I'm sure this is pretty easy, I'm just not sure on how to do it. ;-) I have 300 DNS zones on my FreeBSD boxlet, and I need to change the serials on all of them. How would go about doing this in one easy step so that I didn't have to vi 300 times. ? Thanks, any guidance would be greatly appreciated. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za ------_=_NextPart_001_01C0CC18.787512D6 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
He=20 could have PHP/PERL load all of the zones into an array and change the = number=20 from something to something else, but this would be a custom=20 script.
 
-Drew
 
-----Original Message-----
From: Simon=20 [mailto:simon@optinet.com]
Sent: Monday, April 23, 2001 = 12:59=20 PM
To: David Wilson; = freebsd-isp@freebsd.org
Subject: Re:=20 Changing DNS serials in multiple zone files

This depends on your zone file's format. You can use = perl,=20 etc... to do this. Or, depending on what you're trying to accomplish, = you can=20 just delete all zone files from slave servers and restart them. This = will=20 cause slave servers to load new zone = files.

-Simon

--Original=20 Message Text---
From: David Wilson
Date: Mon, 23 = Apr 2001=20 18:50:13 +0200

Hi All,=20 howzit going ?

I'm sure this is pretty easy, I'm just not sure on = how to do=20 it. ;-)

I have 300=20 DNS zones on my FreeBSD boxlet, and I need to change the serials on = all of=20 them.
How would go=20 about doing this in one easy step so that I didn't have to vi 300 = times.=20 ?
Thanks, any=20 guidance would be greatly appreciated.



Regards=20

David Wilson

Technical = Support=20 Centre

The S.A Internet=20

0860 100 869

http://www.sai.co.za



<= /FONT> ------_=_NextPart_001_01C0CC18.787512D6-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 10:22:35 2001 Delivered-To: freebsd-isp@freebsd.org Received: from black.purplecat.net (ns1.purplecat.net [209.16.228.148]) by hub.freebsd.org (Postfix) with ESMTP id CC9DD37B422 for ; Mon, 23 Apr 2001 10:22:31 -0700 (PDT) (envelope-from peter@black.purplecat.net) Received: from localhost (peter@localhost) by black.purplecat.net (8.8.8/8.8.8) with ESMTP id NAA17538 for ; Mon, 23 Apr 2001 13:24:57 -0400 (EDT) (envelope-from peter@black.purplecat.net) Date: Mon, 23 Apr 2001 13:24:57 -0400 (EDT) From: Peter Brezny To: freebsd-isp@freebsd.org Subject: dns transfer through ipfw keep-state rule not working Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In a somewhat desperate attempt to convince my firewall to allow our upstream provider to perform a zone transfer, I've added the following line to the ipfw firewall. $fwcmd add allow all from 209.16.228.146 to $ns1 keep-state in via $oif However, this is still not allowing a zone transfer. On occasion, the secondary will write a file with a somewhat garbled name for the zone to be transfered, but it is blank. This firewall entry however, works. $fwcmd add allow all from 209.16.228.146 to $ns1 in via $oif $fwcmd add allow all from $ns1 to 209.16.228.146 out via $oif Why doesn't the above dynamic rule work? My rc.conf options section is as follows. TIA, pb // $FreeBSD: src/etc/namedb/named.conf,v 1.6.2.1 2000/07/15 07:49:29 kris Exp $ options { directory "/etc/namedb"; forwarders { 207.230.75.34; //ns1.deltacom.net 207.230.75.50; //ns2.deltacom.net 206.191.128.46; //c2901.wa.net 199.166.24.1; }; //ns1.vrx.net allow-transfer { 209.16.228.140; //virtual/ns2 207.230.75.34; //ns1.deltacom.net 207.230.75.50; }; //ns2.deltacom.net query-source address 209.16.228.145 port 53; transfer-source 209.16.228.145; listen-on { 209.16.228.145; 209.16.228.150; }; dump-file "s/named_dump.db"; pid-file "s/named.pid"; }; //end of options Peter Brezny SysAdmin Services Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 10:59:10 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id D068C37B422 for ; Mon, 23 Apr 2001 10:59:02 -0700 (PDT) (envelope-from Eric_Stanfield@kenokozie.com) Subject: Re: dns transfer through ipfw keep-state rule not working To: Peter Brezny Cc: freebsd-isp@freebsd.org X-Mailer: Lotus Notes Release 5.0.2a November 23, 1999 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Mon, 23 Apr 2001 12:58:22 -0500 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 04/23/2001 12:58:29 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Perhaps it's just a typo, but you aren't allowing zone transfers from 209.16.228.146 in your named.conf file. FW Rule: $fwcmd add allow all from 209.16.228.146 to $ns1 Named.conf: allow-transfer { 209.16.228.140; //virtual/ns2 207.230.75.34; //ns1.deltacom.net 207.230.75.50; }; -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 Peter Brezny cc: Sent by: Subject: dns transfer through ipfw keep-state rule not working owner-freebsd-isp@F reeBSD.ORG 04/23/01 12:24 PM In a somewhat desperate attempt to convince my firewall to allow our upstream provider to perform a zone transfer, I've added the following line to the ipfw firewall. $fwcmd add allow all from 209.16.228.146 to $ns1 keep-state in via $oif However, this is still not allowing a zone transfer. On occasion, the secondary will write a file with a somewhat garbled name for the zone to be transfered, but it is blank. This firewall entry however, works. $fwcmd add allow all from 209.16.228.146 to $ns1 in via $oif $fwcmd add allow all from $ns1 to 209.16.228.146 out via $oif Why doesn't the above dynamic rule work? My rc.conf options section is as follows. TIA, pb // $FreeBSD: src/etc/namedb/named.conf,v 1.6.2.1 2000/07/15 07:49:29 kris Exp $ options { directory "/etc/namedb"; forwarders { 207.230.75.34; //ns1.deltacom.net 207.230.75.50; //ns2.deltacom.net 206.191.128.46; //c2901.wa.net 199.166.24.1; }; //ns1.vrx.net allow-transfer { 209.16.228.140; //virtual/ns2 207.230.75.34; //ns1.deltacom.net 207.230.75.50; }; //ns2.deltacom.net query-source address 209.16.228.145 port 53; transfer-source 209.16.228.145; listen-on { 209.16.228.145; 209.16.228.150; }; dump-file "s/named_dump.db"; pid-file "s/named.pid"; }; //end of options Peter Brezny SysAdmin Services Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 11:19:44 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cleanwhisker.420.am (cleanwhisker.420.am [205.179.65.211]) by hub.freebsd.org (Postfix) with SMTP id 918D537B422 for ; Mon, 23 Apr 2001 11:19:41 -0700 (PDT) (envelope-from ivan@420.am) Received: (qmail 27463 invoked by uid 1000); 23 Apr 2001 18:19:35 -0000 Date: Mon, 23 Apr 2001 11:19:35 -0700 From: ivan To: freebsd-isp@freebsd.org Subject: ANNOUNCE: Freeside 1.3.0 Message-ID: <20010423111934.A27414@cleanwhisker.420.am> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm happy to announce the release of Freeside 1.3.0. Freeside is an open-source billing and account administration package for ISPs. You can download the new version, read the documentation, and play with a web demo at . (Blatant plug: you might even want to buy installation service or outsourced billing service - http://www.sisd.com/freeside/commercial.html) New features include: - Database transactions - Web aging reports - Export of BIND and Apache configuration files. - Session monitor to track and limit usage on a time (hourly/"minutely") basis. This can be used, with RADIUS, to keep track of NAS ports, and can also be used to implement hotel- or cafe- type access, where the user must sign in on a webpage before being granted access to the network. In conjunction with the session server, prepaid cards can now be for an amount of time rather than money. Enjoy! -- meow _ivan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 12: 2:11 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (dhcp-1-108.n01.orldfl01.us.ra.verio.net [157.238.210.108]) by hub.freebsd.org (Postfix) with ESMTP id 0A7F337B422 for ; Mon, 23 Apr 2001 12:02:06 -0700 (PDT) (envelope-from bill@bilver.wjv.com) Received: (from bill@localhost) by bilver.wjv.com (8.11.1/8.11.1) id f3NJ1Oi87860; Mon, 23 Apr 2001 15:01:24 -0400 (EDT) (envelope-from bill) Date: Mon, 23 Apr 2001 15:01:23 -0400 From: Bill Vermillion To: David Wilson Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Changing DNS serials in multiple zone files Message-ID: <20010423150123.B87577@wjv.com> Reply-To: bv@wjv.com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from davew@sai.co.za on Mon, Apr 23, 2001 at 06:50:13PM +0200 Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, Apr 23, 2001 at 06:50:13PM +0200, David Wilson thus sprach: > I'm sure this is pretty easy, I'm just not sure on how to do it. ;-) > I have 300 DNS zones on my FreeBSD boxlet, and I need to change > the serials on all of them. > How would go about doing this in one easy step so that I didn't > have to vi 300 times. ? Well it's a bit late now for what I do, but in the future. In your site records use the include directive like this. $INCLUDE named.soa Then have ONE file [more if you need to just just different include], and have just the pertinent SOA records in it. Then it is one serial number you change. The only downside I can see is that all the domains get the same serial number, but if you need to know zone modifcation date you can include that in each zone when you modify them. I just use the time stamp on the file for my records. I find it works well for me. For your current sites you'll have to try one of the approaches others have outlined. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 23 12:48: 8 2001 Delivered-To: freebsd-isp@freebsd.org Received: from virtual2.sysadmin-inc.com (ns2.sysadmin-inc.com [209.16.228.145]) by hub.freebsd.org (Postfix) with SMTP id ECB1B37B423 for ; Mon, 23 Apr 2001 12:48:03 -0700 (PDT) (envelope-from peter@sysadmin-inc.com) Received: (qmail 1640 invoked by alias); 23 Apr 2001 17:01:15 -0000 Received: from unknown (HELO w2kstest) (10.10.1.70) by ns2.sysadmin-inc.com with SMTP; 23 Apr 2001 17:01:15 -0000 From: "Peter Brezny" To: Subject: dns transfer through ipfw keepstate rule not working. Date: Mon, 23 Apr 2001 13:00:35 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In a somewhat desperate attempt to convince my firewall to allow our upstream provider to perform a zone transfer, I've added the following line to the ipfw firewall. $fwcmd add allow all from 209.16.228.146 to $ns1 keep-state in via $oif However, this is still not allowing a zone transfer. On occasion, the secondary will write a file with a somewhat garbled name for the zone to be transfered, but it is blank. This firewall entry however, works. $fwcmd add allow all from 209.16.228.146 to $ns1 in via $oif $fwcmd add allow all from $ns1 to 209.16.228.146 out via $oif Why doesn't the above dynamic rule work? My rc.conf options section is as follows. TIA, pb // $FreeBSD: src/etc/namedb/named.conf,v 1.6.2.1 2000/07/15 07:49:29 kris Exp $ options { directory "/etc/namedb"; forwarders { 207.230.75.34; //ns1.deltacom.net 207.230.75.50; //ns2.deltacom.net 206.191.128.46; //c2901.wa.net 199.166.24.1; }; //ns1.vrx.net allow-transfer { 209.16.228.140; //virtual/ns2 207.230.75.34; //ns1.deltacom.net 207.230.75.50; }; //ns2.deltacom.net query-source address 209.16.228.145 port 53; transfer-source 209.16.228.145; listen-on { 209.16.228.145; 209.16.228.150; }; dump-file "s/named_dump.db"; pid-file "s/named.pid"; }; //end of options Peter Brezny SysAdmin Services Inc. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 0: 2:25 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hotmail.com (f237.law14.hotmail.com [64.4.21.237]) by hub.freebsd.org (Postfix) with ESMTP id 0407837B43E for ; Tue, 24 Apr 2001 00:02:20 -0700 (PDT) (envelope-from chemvz@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 24 Apr 2001 00:02:15 -0700 Received: from 217.18.66.11 by lw14fd.law14.hotmail.msn.com with HTTP; Tue, 24 Apr 2001 07:02:15 GMT X-Originating-IP: [217.18.66.11] From: "chem vz" To: freebsd-isp@FreeBSD.ORG Subject: dump request in messages Date: Tue, 24 Apr 2001 09:02:15 +0200 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 24 Apr 2001 07:02:15.0976 (UTC) FILETIME=[7EB6A280:01C0CC8C] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have been getting these entries in my messages-log: Apr 19 04:36:27 router portmap[1798]: connect from 204.57.33.130 to dump(): request from unauthorized host Apr 19 11:36:38 router portmap[2264]: connect from 203.232.4.4 to dump(): request from unauthorized host Apr 20 09:57:58 router portmap[3779]: connect from 64.29.16.193 to dump(): request from unauthorized host Apr 21 13:22:40 router portmap[7591]: connect from 216.116.36.4 to dump(): request from unauthorized host Apr 23 17:35:48 router portmap[11015]: connect from 210.103.80.199 to dump(): request from unauthorized host Apr 23 23:12:41 router portmap[11313]: connect from 206.14.173.10 to dump(): request from unauthorized host Does anybody have any idea what they are up to? TIA chem _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 12:32:41 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 6383837B422 for ; Tue, 24 Apr 2001 12:32:38 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from ibmxeon (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id NAA43750 for ; Tue, 24 Apr 2001 13:32:35 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <006301c0ccf5$4a5e4600$c800a8c0@aspenworks.com> From: "alex huppenthal" To: "free" Subject: IPFW ? hacked? Date: Tue, 24 Apr 2001 13:32:21 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I setup a pipe - number 5, and set the bandwidth to 20Mbits. Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 collecting data from x.x.18.3 I don't know 205.149.189.91 or have any process running to that site. However, the numbers are increasing. Anyone seen this behavior? 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 0 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 12:44: 7 2001 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id 7FF0E37B423 for ; Tue, 24 Apr 2001 12:44:02 -0700 (PDT) (envelope-from Eric_Stanfield@kenokozie.com) Subject: Re: IPFW ? hacked? To: "alex huppenthal" Cc: freebsd-isp@freebsd.org X-Mailer: Lotus Notes Release 5.0.2a November 23, 1999 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Tue, 24 Apr 2001 14:43:19 -0500 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 04/24/2001 02:43:25 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I would do: [exs@mrtg]> sockstat -4u |more and see what process is talking to that address. I set up a linux box not to long ago and before I got back to it to tighten it down, some punk from an Israeli dsl provider rooted it and set up an app that would let him access the box. The process he loaded changed its name in ps to something harmless like cron or something (I don't recall) and had I not looked at netstat (which shows more on a linux box) I would never have found out what happened. I really hope you didn't get rooted as one of the main reasons I go about preaching the goodness of all things freebsd is that I've never had a bsd box hacked. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 "alex huppenthal" m> cc: Sent by: Subject: IPFW ? hacked? owner-freebsd-isp@F reeBSD.ORG 04/24/01 02:32 PM I setup a pipe - number 5, and set the bandwidth to 20Mbits. Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 collecting data from x.x.18.3 I don't know 205.149.189.91 or have any process running to that site. However, the numbers are increasing. Anyone seen this behavior? 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 0 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 12:52:49 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 34C1E37B422 for ; Tue, 24 Apr 2001 12:52:44 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from ibmxeon (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id NAA43828; Tue, 24 Apr 2001 13:52:41 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <007001c0ccf8$18ccbb00$c800a8c0@aspenworks.com> From: "alex huppenthal" To: Cc: References: Subject: Re: IPFW ? hacked? Date: Tue, 24 Apr 2001 13:52:28 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks, I don't see the 5999 port address listed. yet, the packet count continues to grow. The data is of no use, it's just compressed webpages, but it concerns me that the BSD router between the Internet and target system has this interesting listing. I setup a pipe to limit bandwidth to the target machine, and to watch. BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp 0 tcp 205.149.189.91/5999 66.28.18.3/1027 123814 103707137 0 0 0 Checking http://205.149.189.91/ Doesn't give me a warm and fuzzy feeling. ----- Original Message ----- From: To: "alex huppenthal" Cc: Sent: Tuesday, April 24, 2001 1:43 PM Subject: Re: IPFW ? hacked? > > I would do: > > [exs@mrtg]> sockstat -4u |more > > and see what process is talking to that address. I set up a linux box not > to long ago and before I got back to it to tighten it down, some punk from > an Israeli dsl provider rooted it and set up an app that would let him > access the box. The process he loaded changed its name in ps to something > harmless like cron or something (I don't recall) and had I not looked at > netstat (which shows more on a linux box) I would never have found out what > happened. > > I really hope you didn't get rooted as one of the main reasons I go about > preaching the goodness of all things freebsd is that I've never had a bsd > box hacked. > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > > Eric Stanfield, K2Access > Keno Kozie Associates > 222 N LaSalle #1500 > Chicago, IL 60606 > (312) 332-3000 > > > > > > "alex huppenthal" > > m> cc: > Sent by: Subject: IPFW ? hacked? > owner-freebsd-isp@F > reeBSD.ORG > > > 04/24/01 02:32 PM > > > > > > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > Interestingly, I see 205.149.189.91 as a destination IP address at port > 5999 > collecting data from x.x.18.3 > > I don't know 205.149.189.91 or have any process running to that site. > However, the numbers are increasing. > > Anyone seen this behavior? > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte > Drp > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 > 0 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 12:59:26 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 857D537B42C for ; Tue, 24 Apr 2001 12:59:21 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from ibmxeon (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id NAA43860; Tue, 24 Apr 2001 13:59:01 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <007b01c0ccf9$01b228f0$c800a8c0@aspenworks.com> From: "alex huppenthal" To: , Cc: References: Subject: Re: IPFW ? hacked? Date: Tue, 24 Apr 2001 13:58:49 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yea, well, seems pretty funky to me.. Here's the owner of the IP address: A phone call to the number listed simply yields a fast-busy. HackerDome, Inc. (RDY-DOM) 707 Continental circle, #1634 Mountain View, CA 94040 US Domain Name: RDY.COM Administrative Contact, Technical Contact, Billing Contact: Ruban, Dima (DR7362) dima@RDY.COM Ruban Consulting, Inc. 707 Continental circle, #1634 Mountain View,, CA 94040 (415) 730-0648 ----- Original Message ----- From: To: "alex huppenthal" Cc: Sent: Tuesday, April 24, 2001 1:43 PM Subject: Re: IPFW ? hacked? > > I would do: > > [exs@mrtg]> sockstat -4u |more > > and see what process is talking to that address. I set up a linux box not > to long ago and before I got back to it to tighten it down, some punk from > an Israeli dsl provider rooted it and set up an app that would let him > access the box. The process he loaded changed its name in ps to something > harmless like cron or something (I don't recall) and had I not looked at > netstat (which shows more on a linux box) I would never have found out what > happened. > > I really hope you didn't get rooted as one of the main reasons I go about > preaching the goodness of all things freebsd is that I've never had a bsd > box hacked. > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > > Eric Stanfield, K2Access > Keno Kozie Associates > 222 N LaSalle #1500 > Chicago, IL 60606 > (312) 332-3000 > > > > > > "alex huppenthal" > > m> cc: > Sent by: Subject: IPFW ? hacked? > owner-freebsd-isp@F > reeBSD.ORG > > > 04/24/01 02:32 PM > > > > > > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > Interestingly, I see 205.149.189.91 as a destination IP address at port > 5999 > collecting data from x.x.18.3 > > I don't know 205.149.189.91 or have any process running to that site. > However, the numbers are increasing. > > Anyone seen this behavior? > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte > Drp > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 > 0 > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 13: 1:27 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ureach.com (mail.ureach.com [63.150.151.36]) by hub.freebsd.org (Postfix) with ESMTP id BB8BA37B422 for ; Tue, 24 Apr 2001 13:01:17 -0700 (PDT) (envelope-from pechter@ureach.com) Received: from www20.ureach.com (IDENT:root@www20.ureach.com [172.16.2.48]) by ureach.com (8.9.1/8.8.5) with ESMTP id QAA10252; Tue, 24 Apr 2001 16:01:17 -0400 Received: (from nobody@localhost) by www20.ureach.com (8.9.3/8.9.1) id QAA18631; Tue, 24 Apr 2001 16:01:17 -0400 Date: Tue, 24 Apr 2001 16:01:17 -0400 Message-Id: <200104242001.QAA18631@www20.ureach.com> To: "alex huppenthal" , Eric_Stanfield@kenokozie.com From: Bill Pechter Reply-To: Subject: Re: Hacked, nah probably cvsup. Cc: freebsd-isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-vsuite-type: e Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org nslookup shows the following on that address Name: burka.rdy.com Address: 205.149.189.91 Name's familliar... used to be my cvsup source... which when looked up as cvsup2.freebsd.org Name: burka.rdy.com Address: 205.149.189.91 Aliases: cvsup2.freebsd.org in /etc/services cvsup 5999/tcp Are you cron'ing cvsup updates? Bill -- Bill Pechter Systems Administrator ---- On Tue, 24 Apr 2001, alex huppenthal (alex@aspenworks.com) wrote: > Thanks, > > I don't see the 5999 port address listed. yet, the packet count > continues > to grow. > > The data is of no use, it's just compressed webpages, but it concerns > me > that the BSD router between the Internet and target system has this > interesting listing. I setup a pipe to limit bandwidth to the target > machine, and to watch. > > > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes > Pkt/Byte > Drp > 0 tcp 205.149.189.91/5999 66.28.18.3/1027 123814 103707137 0 > 0 0 > > Checking > > http://205.149.189.91/ > > Doesn't give me a warm and fuzzy feeling. > > > ----- Original Message ----- > From: > To: "alex huppenthal" > Cc: > Sent: Tuesday, April 24, 2001 1:43 PM > Subject: Re: IPFW ? hacked? > > > > > > I would do: > > > > [exs@mrtg]> sockstat -4u |more > > > > and see what process is talking to that address. I set up a linux box > not > > to long ago and before I got back to it to tighten it down, some punk > from > > an Israeli dsl provider rooted it and set up an app that would let him > > access the box. The process he loaded changed its name in ps to > something > > harmless like cron or something (I don't recall) and had I not looked > at > > netstat (which shows more on a linux box) I would never have found out > what > > happened. > > > > I really hope you didn't get rooted as one of the main reasons I go > about > > preaching the goodness of all things freebsd is that I've never had a > bsd > > box hacked. > > > > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > > > > Eric Stanfield, K2Access > > Keno Kozie Associates > > 222 N LaSalle #1500 > > Chicago, IL 60606 > > (312) 332-3000 > > > > > > > > > > > > "alex huppenthal" > > > > m> cc: > > Sent by: Subject: IPFW ? > hacked? > > owner-freebsd-isp@F > > reeBSD.ORG > > > > > > 04/24/01 02:32 PM > > > > > > > > > > > > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > > > Interestingly, I see 205.149.189.91 as a destination IP address at > port > > 5999 > > collecting data from x.x.18.3 > > > > I don't know 205.149.189.91 or have any process running to that site. > > However, the numbers are increasing. > > > > Anyone seen this behavior? > > > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail > > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes > Pkt/Byte > > Drp > > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 > 0 > > 0 > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 13: 3:54 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 50D2C37B423 for ; Tue, 24 Apr 2001 13:03:47 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from ibmxeon (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id OAA43930; Tue, 24 Apr 2001 14:03:43 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <008101c0ccf9$a3bc8d20$c800a8c0@aspenworks.com> From: "alex huppenthal" To: , Cc: References: <200104242001.QAA18631@www20.ureach.com> Subject: Re: Hacked, nah probably cvsup. Date: Tue, 24 Apr 2001 14:03:31 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have, but it's set to run at 4AM. Strange, and I didn't see a cvsup proc running anywhere. Thanks for the info. Perhaps its all just a bit of confusion on my part. Sorry if that's it. -Alex ----- Original Message ----- From: "Bill Pechter" To: "alex huppenthal" ; Cc: Sent: Tuesday, April 24, 2001 2:01 PM Subject: Re: Hacked, nah probably cvsup. > nslookup shows the following on that address > > Name: burka.rdy.com > Address: 205.149.189.91 > > Name's familliar... used to be my cvsup source... > > > which when looked up as cvsup2.freebsd.org > > Name: burka.rdy.com > Address: 205.149.189.91 > Aliases: cvsup2.freebsd.org > > in /etc/services > cvsup 5999/tcp > > > Are you cron'ing cvsup updates? > > Bill > > -- > Bill Pechter > Systems Administrator > > > > > > > ---- On Tue, 24 Apr 2001, alex huppenthal (alex@aspenworks.com) > wrote: > > > Thanks, > > > > I don't see the 5999 port address listed. yet, the packet > count > > continues > > to grow. > > > > The data is of no use, it's just compressed webpages, but it > concerns > > me > > that the BSD router between the Internet and target system has > this > > interesting listing. I setup a pipe to limit bandwidth to the > target > > machine, and to watch. > > > > > > BKT Prot ___Source IP/port____ ____Dest. IP/port____ > Tot_pkt/bytes > > Pkt/Byte > > Drp > > 0 tcp 205.149.189.91/5999 66.28.18.3/1027 123814 > 103707137 0 > > 0 0 > > > > Checking > > > > http://205.149.189.91/ > > > > Doesn't give me a warm and fuzzy feeling. > > > > > > ----- Original Message ----- > > From: > > To: "alex huppenthal" > > Cc: > > Sent: Tuesday, April 24, 2001 1:43 PM > > Subject: Re: IPFW ? hacked? > > > > > > > > > > I would do: > > > > > > [exs@mrtg]> sockstat -4u |more > > > > > > and see what process is talking to that address. I set up a > linux box > > not > > > to long ago and before I got back to it to tighten it down, > some punk > > from > > > an Israeli dsl provider rooted it and set up an app that > would let him > > > access the box. The process he loaded changed its name in > ps to > > something > > > harmless like cron or something (I don't recall) and had I > not looked > > at > > > netstat (which shows more on a linux box) I would never have > found out > > what > > > happened. > > > > > > I really hope you didn't get rooted as one of the main > reasons I go > > about > > > preaching the goodness of all things freebsd is that I've > never had a > > bsd > > > box hacked. > > > > > > > > > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- > > > > > > Eric Stanfield, K2Access > > > Keno Kozie Associates > > > 222 N LaSalle #1500 > > > Chicago, IL 60606 > > > (312) 332-3000 > > > > > > > > > > > > > > > > > > "alex huppenthal" > > > "free" > > > > > m> cc: > > > Sent by: Subject: > IPFW ? > > hacked? > > > owner-freebsd-isp@F > > > reeBSD.ORG > > > > > > > > > 04/24/01 02:32 PM > > > > > > > > > > > > > > > > > > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > > > > > Interestingly, I see 205.149.189.91 as a destination IP > address at > > port > > > 5999 > > > collecting data from x.x.18.3 > > > > > > I don't know 205.149.189.91 or have any process running to > that site. > > > However, the numbers are increasing. > > > > > > Anyone seen this behavior? > > > > > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) > droptail > > > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > > > BKT Prot ___Source IP/port____ ____Dest. IP/port____ > Tot_pkt/bytes > > Pkt/Byte > > > Drp > > > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 > 19344253 0 > > 0 > > > 0 > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > > > > > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 13: 5: 4 2001 Delivered-To: freebsd-isp@freebsd.org Received: from wopr.caltech.edu (wopr.caltech.edu [131.215.102.114]) by hub.freebsd.org (Postfix) with ESMTP id 3825037B424 for ; Tue, 24 Apr 2001 13:04:58 -0700 (PDT) (envelope-from mph@wopr.caltech.edu) Received: (from mph@localhost) by wopr.caltech.edu (8.11.3/8.11.0) id f3OK4tF28320; Tue, 24 Apr 2001 13:04:55 -0700 (PDT) (envelope-from mph) Date: Tue, 24 Apr 2001 13:04:55 -0700 From: Matthew Hunt To: alex huppenthal Cc: free Subject: Re: IPFW ? hacked? Message-ID: <20010424130455.B27566@wopr.caltech.edu> References: <006301c0ccf5$4a5e4600$c800a8c0@aspenworks.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <006301c0ccf5$4a5e4600$c800a8c0@aspenworks.com>; from alex@aspenworks.com on Tue, Apr 24, 2001 at 01:32:21PM -0600 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Apr 24, 2001 at 01:32:21PM -0600, alex huppenthal wrote: > Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 > collecting data from x.x.18.3 > > I don't know 205.149.189.91 or have any process running to that site. > However, the numbers are increasing. Are you sure you don't know that site? wopr:~$ host cvsup2.freebsd.org cvsup2.freebsd.org is a nickname for burka.rdy.com burka.rdy.com has address 205.149.189.91 burka.rdy.com mail is handled (pri=20) by mail1.best.com burka.rdy.com mail is handled (pri=10) by burka.rdy.com wopr:~$ grep 5999 /etc/services cvsup 5999/tcp #CVSup file transfer/John Polstra/FreeBSD Dima is a FreeBSD committer (dima@freebsd.org). -- Matthew Hunt * Clearly there are more things in the http://www.pobox.com/~mph/ * heavens than anyone anticipated. -enp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 13: 6:54 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ureach.com (mail.ureach.com [63.150.151.36]) by hub.freebsd.org (Postfix) with ESMTP id 45BE637B422 for ; Tue, 24 Apr 2001 13:06:51 -0700 (PDT) (envelope-from pechter@ureach.com) Received: from www20.ureach.com (IDENT:root@www20.ureach.com [172.16.2.48]) by ureach.com (8.9.1/8.8.5) with ESMTP id QAA01083; Tue, 24 Apr 2001 16:06:51 -0400 Received: (from nobody@localhost) by www20.ureach.com (8.9.3/8.9.1) id QAA21091; Tue, 24 Apr 2001 16:06:50 -0400 Date: Tue, 24 Apr 2001 16:06:50 -0400 Message-Id: <200104242006.QAA21091@www20.ureach.com> To: "Matthew Hunt" , "alex huppenthal " From: Bill Pechter Reply-To: Subject: Re: Re: IPFW ? hacked? Cc: "free " Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-vsuite-type: e Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org just sent him ther same thing... that's cvsup2.freebsd.org... I know that site anywhere. -- Bill Pechter Systems Administrator ---- On Tue, 24 Apr 2001, Matthew Hunt (mph@astro.caltech.edu) wrote: > On Tue, Apr 24, 2001 at 01:32:21PM -0600, alex huppenthal wrote: > > > Interestingly, I see 205.149.189.91 as a destination IP address at > port 5999 > > collecting data from x.x.18.3 > > > > I don't know 205.149.189.91 or have any process running to that site. > > However, the numbers are increasing. > > Are you sure you don't know that site? > > wopr:~$ host cvsup2.freebsd.org > cvsup2.freebsd.org is a nickname for burka.rdy.com > burka.rdy.com has address 205.149.189.91 > burka.rdy.com mail is handled (pri=20) by mail1.best.com > burka.rdy.com mail is handled (pri=10) by burka.rdy.com > > wopr:~$ grep 5999 /etc/services > cvsup 5999/tcp #CVSup file transfer/John Polstra/FreeBSD > > Dima is a FreeBSD committer (dima@freebsd.org). > > -- > Matthew Hunt * Clearly there are more things in > the > http://www.pobox.com/~mph/ * heavens than anyone anticipated. > -enp > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 13:23:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id DDECB37B422 for ; Tue, 24 Apr 2001 13:23:27 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from ibmxeon (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id OAA44021; Tue, 24 Apr 2001 14:23:24 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <00a101c0ccfc$635e8e60$c800a8c0@aspenworks.com> From: "alex huppenthal" To: "Matthew Hunt" Cc: "free" References: <006301c0ccf5$4a5e4600$c800a8c0@aspenworks.com> <20010424130455.B27566@wopr.caltech.edu> Subject: Re: IPFW ? hacked? Date: Tue, 24 Apr 2001 14:23:12 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Okay, I get it.. ;-) ----- Original Message ----- From: "Matthew Hunt" To: "alex huppenthal" Cc: "free" Sent: Tuesday, April 24, 2001 2:04 PM Subject: Re: IPFW ? hacked? > On Tue, Apr 24, 2001 at 01:32:21PM -0600, alex huppenthal wrote: > > > Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 > > collecting data from x.x.18.3 > > > > I don't know 205.149.189.91 or have any process running to that site. > > However, the numbers are increasing. > > Are you sure you don't know that site? > > wopr:~$ host cvsup2.freebsd.org > cvsup2.freebsd.org is a nickname for burka.rdy.com > burka.rdy.com has address 205.149.189.91 > burka.rdy.com mail is handled (pri=20) by mail1.best.com > burka.rdy.com mail is handled (pri=10) by burka.rdy.com > > wopr:~$ grep 5999 /etc/services > cvsup 5999/tcp #CVSup file transfer/John Polstra/FreeBSD > > Dima is a FreeBSD committer (dima@freebsd.org). > > -- > Matthew Hunt * Clearly there are more things in the > http://www.pobox.com/~mph/ * heavens than anyone anticipated. -enp > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 15:18:14 2001 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id 6C4AD37B42C for ; Tue, 24 Apr 2001 15:18:08 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id IAA27301 for ; Wed, 25 Apr 2001 08:17:51 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Wed, 25 Apr 2001 08:17:48 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: Re: IPFW ? hacked? In-Reply-To: <006301c0ccf5$4a5e4600$c800a8c0@aspenworks.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 24 Apr 2001, alex huppenthal wrote: > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 > collecting data from x.x.18.3 > > I don't know 205.149.189.91 or have any process running to that site. > However, the numbers are increasing. > > Anyone seen this behavior? > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte > Drp > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 > 0 Yes. I experimented with 4.x dummynet shaping on a popular web site, and it seems the first IP:port to run through the pipe gets shown, as above, for the life of that pipe. The byte/packet count is NOT specific to that single IP:port, it's everything travelling through the pipe. I'm not sure why this display is considered useful (?). If you delete and redo the pipe you'll probably get a different IP showing, so I wouldn't be too concerned about it... do some local testing with known IPs if you want to follow it up further? Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9388-9260 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 15:41:54 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 0C30237B422 for ; Tue, 24 Apr 2001 15:41:51 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from d7k ([66.28.18.7]) by aspenworks.com (8.9.3/8.9.3) with SMTP id QAA44476; Tue, 24 Apr 2001 16:41:34 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <005301c0cd0f$a980fbe0$07121c42@d7k> From: "Alex Huppenthal" To: "Rowan Crowe" , References: Subject: Re: IPFW ? hacked? Date: Tue, 24 Apr 2001 16:41:08 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Rowan, Thanks for sharing that observation. It concerned me that the numbers kept rising. As I recall, I added the pipe while the system was updating from cvsup. It would be nice if the listed connection was the latest connection. Cheers, - Alex ----- Original Message ----- From: "Rowan Crowe" To: Sent: Tuesday, April 24, 2001 4:17 PM Subject: Re: IPFW ? hacked? > On Tue, 24 Apr 2001, alex huppenthal wrote: > > > I setup a pipe - number 5, and set the bandwidth to 20Mbits. > > > > Interestingly, I see 205.149.189.91 as a destination IP address at port 5999 > > collecting data from x.x.18.3 > > > > I don't know 205.149.189.91 or have any process running to that site. > > However, the numbers are increasing. > > > > Anyone seen this behavior? > > > > 00005: 20.000 Mbit/s 0 ms 50 sl. 1 queues (1 buckets) droptail > > mask: 0x00 0x00000000/0x0000 -> 0x00000000/0x0000 > > BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte > > Drp > > 0 tcp x.x.18.3/1027 205.149.189.91/5999 76043 19344253 0 0 > > 0 > > Yes. I experimented with 4.x dummynet shaping on a popular web site, and > it seems the first IP:port to run through the pipe gets shown, as above, > for the life of that pipe. The byte/packet count is NOT specific to that > single IP:port, it's everything travelling through the pipe. I'm not sure > why this display is considered useful (?). If you delete and redo the pipe > you'll probably get a different IP showing, so I wouldn't be too concerned > about it... do some local testing with known IPs if you want to follow it > up further? > > Cheers. > > > -- > Rowan Crowe http://www.rowan.sensation.net.au/ > Sensation Internet Services http://info.sensation.net.au/ > Melbourne, Australia Phone: +61-3-9388-9260 > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 24 15:49:14 2001 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id 38F5637B42C for ; Tue, 24 Apr 2001 15:49:06 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id IAA27426 for ; Wed, 25 Apr 2001 08:48:56 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Wed, 25 Apr 2001 08:48:52 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: Re: IPFW ? hacked? In-Reply-To: <005301c0cd0f$a980fbe0$07121c42@d7k> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 24 Apr 2001, Alex Huppenthal wrote: > Rowan, > > Thanks for sharing that observation. It concerned me that the numbers kept > rising. As I recall, I added the pipe while the system was updating from > cvsup. It would be nice if the listed connection was the latest connection. Agreed. It caught me the first time too, but as a web site the machine had enough unique IPs accessing it to be able to see that it was only the "ipfw pipe s" output that was strange, rather than the activity itself... Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9388-9260 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 4:56:42 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hawk-systems.com (hawk-systems.com [161.58.152.235]) by hub.freebsd.org (Postfix) with ESMTP id 5CAF037B422 for ; Wed, 25 Apr 2001 04:56:39 -0700 (PDT) (envelope-from dave@hawk-systems.com) Received: from server0 (cr666317-a.pr1.on.wave.home.com [24.112.168.181]) by hawk-systems.com (8.8.8) id FAA48029 for ; Wed, 25 Apr 2001 05:56:38 -0600 (MDT) From: "Dave VanAuken" To: Subject: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch Date: Wed, 25 Apr 2001 07:57:15 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org (asked this in Questions earlier - no solution) router(also cisco) speaks to switch just fine Win2K workstations using 3C905 cards speak to switch just fine FreeBSD servers using 3C905 cards have problems... Had to manually set the xl0 interface to 100baseTX and full-duplex or the switch would not even recognize that a port was there (researched an article on this earlier... something about the auto negotiation not working for some BSD ports). one that was done, the switch recognized that a cable was attached and a NIC was on the other end. Cannot get out of the FreeBSD box to the switch/router/internet/other boxes on same network. ping and other network utils respond with "host is down" ifconfig shows the interface up(have also tried downing and upping) and reads the media correct, HOWEVER it does indicate "status: no carrier" am wondering if it is not picking up the switch during boot or something. At a loss here. The FreeBSD boxes are the only pieces of hardware unable to get online as a result of this. using unroutables, here is what the network looks like: Network 192.168.1.0/26 Router 192.168.1.1 255.255.255.192 WAN (upstream IP addr) Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 Workstations 192.168.1.20-24 255.255.255.192 Gateway 192.168.1.1 FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router 192.168.1.1 aliased 192.168.1.15-17 255.255.255.192 FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router 192.168.1.1 Obviously we are using all routable IP addresses, these are for layout purposes only. Cards were working just beautifully prior to moving them over to Cisco switch. Have tested cables and switch ports using Win2k machines... all working normally - no problems. Using FreeBSD 4.2 Stable (about 3 weeks since last cvsup) no X or anything like that. PIII 500, 256mb or greater RAM, low load ( no load right now! :) Any help or insight is appreciated. Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 8:43:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from icon.bg (icon.bg [62.176.80.58]) by hub.freebsd.org (Postfix) with SMTP id 713A737B43C for ; Wed, 25 Apr 2001 08:43:35 -0700 (PDT) (envelope-from v0rbiz@icon.bg) Received: (qmail 20556 invoked by uid 1144); 25 Apr 2001 15:48:18 -0000 Date: Wed, 25 Apr 2001 18:48:18 +0300 From: Victor Ivanov To: freebsd-hackers@freebsd.org Cc: freebsd-isp@freebsd.org Subject: ppp showing radius message Message-ID: <20010425184818.A20522@icon.icon.bg> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="R3G7APHDIzY6R/pk" Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --R3G7APHDIzY6R/pk Content-Type: multipart/mixed; boundary="82I3+IH0IqGh5yIs" Content-Disposition: inline --82I3+IH0IqGh5yIs Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, I made a simple (and ugly) patch to ppp to show the radius message when a radius reject is received. It also saves it in struct authinfo so the au= th failure routine can pass it to the peer. The patch modifies pap.c to do th= is, but I don't know how to modify the other auth types (I'm using pap only her= e). Someone finds this useful (except me)? P.S. It's tested on the server side (with Windows client and a PicoBSD clie= nt for peers). --=20 Players win and winners play Have a lucky day --82I3+IH0IqGh5yIs Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ppp-message.patch" Content-Transfer-Encoding: quoted-printable --- auth.h.orig Wed Apr 25 18:13:13 2001 +++ auth.h Wed Apr 25 18:13:25 2001 @@ -42,6 +42,7 @@ struct { struct fsm_retry fsm; /* How often/frequently to resend requests */ } cfg; + char *fail_message; }; =20 #define auth_Failure(a) (*a->fn.failure)(a); --- pap.c.orig Wed Apr 25 18:13:43 2001 +++ pap.c Wed Apr 25 18:15:51 2001 @@ -149,7 +149,8 @@ static void pap_Failure(struct authinfo *authp) { - SendPapCode(authp, PAP_NAK, "Login incorrect"); + SendPapCode(authp, PAP_NAK, + (authp->fail_message ? authp->fail_message : "Login incorrect")); datalink_AuthNotOk(authp->physical->dl); } =20 --- radius.c.orig Wed Apr 25 18:15:55 2001 +++ radius.c Wed Apr 25 18:24:07 2001 @@ -83,6 +83,8 @@ #include "datalink.h" #include "bundle.h" =20 +static char fail_message[128]; + /* * rad_continue_send_request() has given us `got' (non-zero). Deal with i= t. */ @@ -111,10 +113,32 @@ break; =20 case RAD_ACCESS_REJECT: - log_Printf(LogPHASE, "Radius(%s): REJECT received\n", stype); - if (r->cx.auth) - auth_Failure(r->cx.auth); - rad_close(r->cx.rad); + { + int got2; + + nuke =3D NULL; + while (!nuke && ((got2 =3D rad_get_attr(r->cx.rad, &data, &len)) >= 0)) { + if (got2 =3D=3D RAD_REPLY_MESSAGE) { + if ((nuke =3D rad_cvt_string(data, len)) =3D=3D NULL) { + log_Printf(LogERROR, "rad_cvt_string: %s\n", rad_strerror(r->cx.rad= )); + rad_close(r->cx.rad); + return; + } + } + } + if (nuke) { + strlcpy(fail_message, nuke, sizeof(fail_message)); + free(nuke); + r->cx.auth->fail_message =3D fail_message; + log_Printf(LogPHASE, "Radius(%s): REJECT received (%s)\n", + stype, fail_message); + } else + log_Printf(LogPHASE, "Radius(%s): REJECT received\n", stype); + + if (r->cx.auth) + auth_Failure(r->cx.auth); + rad_close(r->cx.rad); + } return; =20 case RAD_ACCESS_CHALLENGE: --82I3+IH0IqGh5yIs-- --R3G7APHDIzY6R/pk Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.1i iQCVAwUBOubxwPD9M5lef5W3AQH3vgQAjcmUOXh9w7seLaBhpEl4n8IZkgSCS1Z3 jzaNt3QMgfOGRz2zMubV0JyJxu2lgBoGn1+NnQ/wRJyzGQI9w8qkG9ZPzwnNN9Qu wlCksFfJ+WTaEpJYDeiqDuYSt+qQB+J2fCz0sINUg2yGIpB2CNgIIGo3qGK5KMzC Oon5YS8ZZV4= =9p7B -----END PGP SIGNATURE----- --R3G7APHDIzY6R/pk-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 8:55:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.sai.co.za (mail.sai.co.za [196.33.40.8]) by hub.freebsd.org (Postfix) with ESMTP id 916DD37B423 for ; Wed, 25 Apr 2001 08:55:26 -0700 (PDT) (envelope-from davew@sai.co.za) Received: from dave.sai.co.za ([196.33.40.17] helo=dave) by mail.sai.co.za with smtp (Exim 3.22 #1) id 14sRfe-0001Hy-00 for freebsd-isp@freebsd.org; Wed, 25 Apr 2001 17:57:38 +0200 From: "David Wilson" To: Subject: Off topic: Anyone have Cisco2522's for sale Date: Wed, 25 Apr 2001 17:56:20 +0200 Message-ID: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_02D1_01C0CDB1.08FC45B0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_02D1_01C0CDB1.08FC45B0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi All, I know this is not a network hardware bartering mall, however I was wondering if anyone had any Cisco2522's that they are willing to part with ? Please let me know of what pricing you are expecting. Thanks. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za ------=_NextPart_000_02D1_01C0CDB1.08FC45B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi=20 All,
 
I know = this is not a=20 network hardware bartering mall, however I was wondering if anyone had = any=20 Cisco2522's that they are willing to part with ?
Please = let me know=20 of what pricing you are expecting.
Thanks.
 

Regards

David Wilson

Technical Support Centre

The S.A Internet

0860 100 869

http://www.sai.co.za

 
------=_NextPart_000_02D1_01C0CDB1.08FC45B0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 9:14:10 2001 Delivered-To: freebsd-isp@freebsd.org Received: from ns.internet.dk (ns.internet.dk [194.19.140.1]) by hub.freebsd.org (Postfix) with ESMTP id E503737B424 for ; Wed, 25 Apr 2001 09:14:04 -0700 (PDT) (envelope-from leifn@neland.dk) Received: (from uucp@localhost) by ns.internet.dk (8.11.2/8.11.2) id f3PGE3F11727 for freebsd-isp@FreeBSD.ORG.AVP; Wed, 25 Apr 2001 18:14:03 +0200 (CEST) (envelope-from leifn@neland.dk) Received: (from uucp@localhost) by ns.internet.dk (8.11.2/8.11.2) with UUCP id f3PGDxF11705; Wed, 25 Apr 2001 18:13:59 +0200 (CEST) (envelope-from leifn@neland.dk) Received: from gina (gina.neland.dk [192.168.5.100] (may be forged)) by arnold.neland.dk (8.11.3/8.11.0) with SMTP id f3PGDjd47907; Wed, 25 Apr 2001 18:13:46 +0200 (CEST) (envelope-from leifn@neland.dk) Message-ID: <036201c0cda2$e2e18380$6405a8c0@neland.dk> From: "Leif Neland" To: "Victor Ivanov" , Cc: References: <20010425184818.A20522@icon.icon.bg> Subject: Re: ppp showing radius message Date: Wed, 25 Apr 2001 18:14:48 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from base64 to 8bit by ns.internet.dk id f3PGDxF11705 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ----- Original Message ----- From: "Victor Ivanov" To: Cc: Sent: Wednesday, April 25, 2001 5:48 PM Subject: ppp showing radius message Hi, > I made a simple (and ugly) patch to ppp to show the radius message when > a radius reject is received. Great idea. It annoys me our radiusserver can send messages like "You are already connected. Simultaneous connects not allowed" or "Access only allowed between 18:00 and 08:00", but M$ completely ignores it. So let's make Fbsd better in this respect too. Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 9:21:30 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.tgd.net (rand.tgd.net [64.81.67.117]) by hub.freebsd.org (Postfix) with SMTP id 58C1737B422 for ; Wed, 25 Apr 2001 09:21:26 -0700 (PDT) (envelope-from sean@mailhost.tgd.net) Received: (qmail 16835 invoked by uid 1001); 25 Apr 2001 16:21:22 -0000 Date: Wed, 25 Apr 2001 09:21:22 -0700 From: Sean Chittenden To: Dave VanAuken Cc: freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch Message-ID: <20010425092122.F13545@rand.tgd.net> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="XIiC+We3v3zHqZ6Z" Content-Disposition: inline In-Reply-To: ; from "dave@hawk-systems.com" on Wed, Apr 25, 2001 at = 07:57:15AM X-PGP-Key: 0x1EDDFAAD X-PGP-Fingerprint: C665 A17F 9A56 286C 5CFB 1DEA 9F4F 5CEF 1EDD FAAD X-Web-Homepage: http://sean.chittenden.org/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --XIiC+We3v3zHqZ6Z Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Apr 25, 2001 at 07:57:15AM -0400, Dave VanAuken wrote: > router(also cisco) speaks to switch just fine Win2K workstations > using 3C905 cards speak to switch just fine FreeBSD servers using > 3C905 cards have problems... Autonegotiation of network speeds and duplexes is horribly unreliable. I have administered clusters of FreeBSD systems that plug into 6006's and 3524's and there wasn't rhym or reason as to which boxes autonegotiated correctly. 100% of the time, with maybe the exception of a workgroup environment, you want to manually set it's speed to 100 and duplex to full. Cisco: in if-conf: speed 100 duplex full on server in /etc/rc.conf: ifconfig_foo0=3D".... media 100baseTX mediaopt full-duplex" > ping and other network utils respond with "host is down" That's because the switch doesn't see the computer as up. > am wondering if it is not picking up the switch during boot > or something. Maybe, but auto-neg is bad in every way shape and form and was designed for workgroup environments, not servers. If a server doesn't negotiate at 100 full, then I've got a problem and I want the server to disappear from the network. > using unroutables, here is what the network looks like: > Network 192.168.1.0/26 > Router 192.168.1.1 255.255.255.192 WAN (upstream IP addr) > Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 > Workstations 192.168.1.20-24 255.255.255.192 Gateway > 192.168.1.1 > FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router > 192.168.1.1 > aliased 192.168.1.15-17 255.255.255.192 > FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router > 192.168.1.1 This won't matter, the 3524XL doesn't, by and large, see layer three traffic. They're great switches though, I've only had one problem a cluster of 5 of them in over a year of operation. -sc --=20 Sean Chittenden --XIiC+We3v3zHqZ6Z Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Comment: Sean Chittenden iEYEARECAAYFAjrm+YIACgkQn09c7x7d+q2XMQCfVO0SSfdTsBW49LbP5ZIszVQR eV0AnjovmNBM69P8E2hSHrVYuLX3Az62 =NO9D -----END PGP SIGNATURE----- --XIiC+We3v3zHqZ6Z-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 9:26:15 2001 Delivered-To: freebsd-isp@freebsd.org Received: from rafiu.psi-domain.co.uk (rafiu.psi-domain.co.uk [212.87.84.199]) by hub.freebsd.org (Postfix) with ESMTP id 9229337B423 for ; Wed, 25 Apr 2001 09:26:08 -0700 (PDT) (envelope-from heckfordj@psi-domain.co.uk) Received: from smtp.psi-domain.co.uk (mail.trident-uk.co.uk [195.166.16.10]) by rafiu.psi-domain.co.uk (8.11.3/8.11.3) with SMTP id f3PGLpX38923; Wed, 25 Apr 2001 17:21:52 +0100 (BST) Date: Wed, 25 Apr 2001 18:23:49 +0100 From: Jamie Heckford To: David Wilson Cc: freebsd-isp@freebsd.org Subject: Re: Off topic: Anyone have Cisco2522's for sale Message-ID: <20010425182349.G31916@storm.psi-domain.co.uk> Reply-To: heckfordj@psi-domain.co.uk References: Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit In-Reply-To: ; from davew@sai.co.za on Wed, Apr 25, 2001 at 16:56:20 +0100 X-Mailer: Balsa 1.1.1 Lines: 89 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ebay is your friend. Jamie On 2001.04.25 16:56 David Wilson wrote: > Hi All, > > I know this is not a network hardware bartering mall, however I was > wondering if anyone had any Cisco2522's that they are willing to part > with ? > Please let me know of what pricing you are expecting. > Thanks. > > Regards > > David Wilson > > Technical Support Centre > > The S.A Internet > > 0860 100 869 > > http://www.sai.co.za > > > > > > > > >
Hi > All,
>
size=2> 
>
I know this > is not a > network hardware bartering mall, however I was wondering if anyone had > any > Cisco2522's that they are willing to part with ?
>
Please let me > know > of what pricing you are expecting.
>
size=2>Thanks.
>
 
>
>

align=left> size=2>Regards

>

align=left> size=2>David Wilson

>

align=left> size=2>Technical Support Centre

>

align=left> size=2>The S.A Internet

>

align=left> size=2>0860 100 869

>

align=left> size=2>http://www.sai.co.za

>
 
> -- Jamie Heckford Network Operations Manager Psi-Domain - Innovative Linux Solutions. Ask Us How. FreeBSD - The power to serve Join our mailing list and stay informed by emailing majordomo@psi-domain.co.uk with the line: subscribe collective ===================================== email: heckfordj@psi-domain.co.uk web: http://www.psi-domain.co.uk/ tel: +44 (0)1737 789 246 fax: +44 (0)1737 789 245 mobile: +44 (0)7866 724 224 ===================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 10:45:12 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.sai.co.za (mail.sai.co.za [196.33.40.8]) by hub.freebsd.org (Postfix) with ESMTP id 618E937B423 for ; Wed, 25 Apr 2001 10:45:05 -0700 (PDT) (envelope-from dave@sai.co.za) Received: from dave.sai.co.za ([196.33.40.17] helo=dave) by mail.sai.co.za with smtp (Exim 3.22 #1) id 14sTNx-0002GI-00 for freebsd-isp@freebsd.org; Wed, 25 Apr 2001 19:47:29 +0200 From: "David Wilson" To: Subject: Off topic: Secondary international DNS hosting (Trade ?) Date: Wed, 25 Apr 2001 19:46:12 +0200 Message-ID: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_02F7_01C0CDC0.618D02A0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_02F7_01C0CDC0.618D02A0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi All, I need an international DNS server to host zones as secondary's for us, maybe we can make a deal where we can host for you too ? Please let me know if anyone is interested, we probably only need to host at the most 20 zones. Thanks. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za ------=_NextPart_000_02F7_01C0CDC0.618D02A0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi=20 All,
 
I need = an=20 international DNS server to host zones as secondary's for us, maybe we = can make=20 a deal where we can host for you too ?
Please = let me know=20 if anyone is interested, we probably only need to host at the most 20=20 zones.
Thanks.
 
 
 

Regards

David Wilson

Technical Support Centre

The S.A Internet

0860 100 869

http://www.sai.co.za

 
------=_NextPart_000_02F7_01C0CDC0.618D02A0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 10:57:19 2001 Delivered-To: freebsd-isp@freebsd.org Received: from nathan.allegany.com (nathan.allegany.com [198.212.246.2]) by hub.freebsd.org (Postfix) with ESMTP id 455CF37B423 for ; Wed, 25 Apr 2001 10:57:12 -0700 (PDT) (envelope-from orange@allegany.com) Received: from orn (orn.allegany.com [198.212.246.102]) by nathan.allegany.com (8.11.0/8.11.0) with SMTP id f3PI3TY17664; Wed, 25 Apr 2001 14:03:29 -0400 (EDT) Message-ID: <003001c0cdb0$d8deeb80$66f6d4c6@allegany.com> From: "oran" To: "David Wilson" , References: Subject: Re: Off topic: Anyone have Cisco2522's for sale Date: Wed, 25 Apr 2001 13:55:00 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_002D_01C0CD8F.51ABB9C0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2462.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2462.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_002D_01C0CD8F.51ABB9C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable There is a list or two of folks, ISPs, selling new and used equipment at = the following link. Oran Stewart http://www.isp-planet.com/ ----- Original Message -----=20 From: David Wilson=20 To: freebsd-isp@FreeBSD.ORG=20 Sent: Wednesday, April 25, 2001 11:56 AM Subject: Off topic: Anyone have Cisco2522's for sale Hi All, I know this is not a network hardware bartering mall, however I was = wondering if anyone had any Cisco2522's that they are willing to part = with ? Please let me know of what pricing you are expecting. Thanks. Regards David Wilson Technical Support Centre The S.A Internet 0860 100 869 http://www.sai.co.za ------=_NextPart_000_002D_01C0CD8F.51ABB9C0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
There is a list or two of folks, ISPs, selling new = and used=20 equipment at the following link.
 
Oran Stewart
 
 
http://www.isp-planet.com/=
----- Original Message -----
From:=20 David = Wilson
Sent: Wednesday, April 25, 2001 = 11:56=20 AM
Subject: Off topic: Anyone have = Cisco2522's for sale

Hi=20 All,
 
I = know this is not=20 a network hardware bartering mall, however I was wondering if anyone = had any=20 Cisco2522's that they are willing to part with ?
Please let me know=20 of what pricing you are expecting.
Thanks.
 

Regards

David Wilson

Technical Support Centre

The S.A Internet

0860 100 869

http://www.sai.co.za

 
------=_NextPart_000_002D_01C0CD8F.51ABB9C0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 13: 2:37 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hawk-systems.com (hawk-systems.com [161.58.152.235]) by hub.freebsd.org (Postfix) with ESMTP id 2355D37B43C for ; Wed, 25 Apr 2001 13:02:28 -0700 (PDT) (envelope-from dave@hawk-systems.com) Received: from server0 (cr666317-a.pr1.on.wave.home.com [24.112.168.181]) by hawk-systems.com (8.8.8) id OAA06689 for ; Wed, 25 Apr 2001 14:02:27 -0600 (MDT) From: "Dave VanAuken" To: Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch Date: Wed, 25 Apr 2001 16:03:07 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20010425092122.F13545@rand.tgd.net> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Have the environments for the NIC and the Switch port manually set as you indicated... on both ends. Again, the bootup cycle (from the switch's perception) when the interface is activated, the switch light for the port goes amber for about 10-15 seconds then green. during this time, FreeBSD bootup(ifconfig portions) reports the no-carrier... one entry, still no pings from the switch to the server or vice versa. Damn annoying. Other ideas? Dave -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Sean Chittenden Sent: Wednesday, April 25, 2001 12:21 PM To: Dave VanAuken Cc: freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch On Wed, Apr 25, 2001 at 07:57:15AM -0400, Dave VanAuken wrote: > router(also cisco) speaks to switch just fine Win2K workstations > using 3C905 cards speak to switch just fine FreeBSD servers using > 3C905 cards have problems... Autonegotiation of network speeds and duplexes is horribly unreliable. I have administered clusters of FreeBSD systems that plug into 6006's and 3524's and there wasn't rhym or reason as to which boxes autonegotiated correctly. 100% of the time, with maybe the exception of a workgroup environment, you want to manually set it's speed to 100 and duplex to full. Cisco: in if-conf: speed 100 duplex full on server in /etc/rc.conf: ifconfig_foo0=".... media 100baseTX mediaopt full-duplex" > ping and other network utils respond with "host is down" That's because the switch doesn't see the computer as up. > am wondering if it is not picking up the switch during boot > or something. Maybe, but auto-neg is bad in every way shape and form and was designed for workgroup environments, not servers. If a server doesn't negotiate at 100 full, then I've got a problem and I want the server to disappear from the network. > using unroutables, here is what the network looks like: > Network 192.168.1.0/26 > Router 192.168.1.1 255.255.255.192 WAN (upstream IP addr) > Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 > Workstations 192.168.1.20-24 255.255.255.192 Gateway > 192.168.1.1 > FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router > 192.168.1.1 > aliased 192.168.1.15-17 255.255.255.192 > FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router > 192.168.1.1 This won't matter, the 3524XL doesn't, by and large, see layer three traffic. They're great switches though, I've only had one problem a cluster of 5 of them in over a year of peration. -sc -- Sean Chittenden To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 14:25:40 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 8E30537B423 for ; Wed, 25 Apr 2001 14:25:34 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id PAA24559; Wed, 25 Apr 2001 15:06:16 -0600 (MDT) Date: Wed, 25 Apr 2001 15:06:15 -0600 (MDT) From: "Forrest W. Christian" To: Dave VanAuken Cc: freebsd-isp@FreeBSD.ORG Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm sorry, anyone who uses 3com nics get what they deserve. Throw the @(#*$ 3com card away and get another (any other) nic. :) Even a $10 realtec would be preferrable. Athough the nic of choice seems to be the Intel Pro 100, and I can't say I've had any problems with them. I've just had my fill of problems with 3coms. I'm assuming you have tried another 3c905? I know for a fact that 3com believes in customer testing of their products. I have a friend who worked for a company who was acquired by 3com. He was one of the people who did test and rework. Basically, every unit would be powered on and would be run through a minimal set of tests to at least verify it functioned. 3com management was pissed off that they were failing too many of the units (or better put, they were catching too many problems before they sent them to the customer) and told them that if they weren't able to improve their post-test yeild they would have to just ship the products without doing the electrical testing. On Wed, 25 Apr 2001, Dave VanAuken wrote: > Date: Wed, 25 Apr 2001 16:03:07 -0400 > From: Dave VanAuken > To: freebsd-isp@FreeBSD.ORG > Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch > > Have the environments for the NIC and the Switch port > manually set as you indicated... on both ends. > > Again, the bootup cycle (from the switch's perception) when > the interface is activated, the switch light for the port > goes amber for about 10-15 seconds then green. during this > time, FreeBSD bootup(ifconfig portions) reports the > no-carrier... one entry, still no pings from the switch to > the server or vice versa. Damn annoying. > > Other ideas? > > Dave > > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Sean > Chittenden > Sent: Wednesday, April 25, 2001 12:21 PM > To: Dave VanAuken > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco > 3524XL > switch > > > On Wed, Apr 25, 2001 at 07:57:15AM -0400, Dave VanAuken > wrote: > > router(also cisco) speaks to switch just fine Win2K > workstations > > using 3C905 cards speak to switch just fine FreeBSD > servers using > > 3C905 cards have problems... > > Autonegotiation of network speeds and duplexes is horribly > unreliable. I have administered clusters of FreeBSD systems > that plug > into 6006's and 3524's and there wasn't rhym or reason as to > which > boxes autonegotiated correctly. 100% of the time, with > maybe the > exception of a workgroup environment, you want to manually > set it's > speed to 100 and duplex to full. > > Cisco: > > in if-conf: > speed 100 > duplex full > > on server in /etc/rc.conf: > ifconfig_foo0=".... media 100baseTX mediaopt full-duplex" > > > > ping and other network utils respond with "host is down" > > That's because the switch doesn't see the computer as up. > > > > am wondering if it is not picking up the switch during > boot > > or something. > > Maybe, but auto-neg is bad in every way shape and form and > was > designed for workgroup environments, not servers. If a > server doesn't > negotiate at 100 full, then I've got a problem and I want > the server > to disappear from the network. > > > > using unroutables, here is what the network looks like: > > Network 192.168.1.0/26 > > Router 192.168.1.1 255.255.255.192 WAN (upstream IP addr) > > Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 > > Workstations 192.168.1.20-24 255.255.255.192 Gateway > > 192.168.1.1 > > FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router > > 192.168.1.1 > > aliased 192.168.1.15-17 255.255.255.192 > > FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router > > 192.168.1.1 > > This won't matter, the 3524XL doesn't, by and large, see > layer > three traffic. They're great switches though, I've only had > one > problem a cluster of 5 of them in over a year of > peration. -sc > > > -- > Sean Chittenden > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 19:21:37 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hawk-systems.com (hawk-systems.com [161.58.152.235]) by hub.freebsd.org (Postfix) with ESMTP id D97A437B422 for ; Wed, 25 Apr 2001 19:21:28 -0700 (PDT) (envelope-from dave@hawk-systems.com) Received: from server0 ([204.50.168.21]) by hawk-systems.com (8.8.8) id UAA53557 for ; Wed, 25 Apr 2001 20:21:28 -0600 (MDT) From: "Dave VanAuken" To: Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch Date: Wed, 25 Apr 2001 22:21:57 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Yes tried another 3c905... unfortunately we have a mitfull of them over here (in just about all workstations and a bunch of spares to boot). Since no other solutions present themself, will replace the NIC with another brand and see what results. Dave -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Forrest W. Christian Sent: Wednesday, April 25, 2001 5:06 PM To: Dave VanAuken Cc: freebsd-isp@FreeBSD.ORG Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch I'm sorry, anyone who uses 3com nics get what they deserve. Throw the @(#*$ 3com card away and get another (any other) nic. :) Even a $10 realtec would be preferrable. Athough the nic of choice seems to be the Intel Pro 100, and I can't say I've had any problems with them. I've just had my fill of problems with 3coms. I'm assuming you have tried another 3c905? I know for a fact that 3com believes in customer testing of their products. I have a friend who worked for a company who was acquired by 3com. He was one of the people who did test and rework. Basically, every unit would be powered on and would be run through a minimal set of tests to at least verify it functioned. 3com management was pissed off that they were failing too many of the units (or better put, they were catching too many problems before they sent them to the customer) and told them that if they weren't able to improve their post-test yeild they would have to just ship the products without doing the electrical testing. On Wed, 25 Apr 2001, Dave VanAuken wrote: > Date: Wed, 25 Apr 2001 16:03:07 -0400 > From: Dave VanAuken > To: freebsd-isp@FreeBSD.ORG > Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch > > Have the environments for the NIC and the Switch port > manually set as you indicated... on both ends. > > Again, the bootup cycle (from the switch's perception) when > the interface is activated, the switch light for the port > goes amber for about 10-15 seconds then green. during this > time, FreeBSD bootup(ifconfig portions) reports the > no-carrier... one entry, still no pings from the switch to > the server or vice versa. Damn annoying. > > Other ideas? > > Dave > > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Sean > Chittenden > Sent: Wednesday, April 25, 2001 12:21 PM > To: Dave VanAuken > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco > 3524XL > switch > > > On Wed, Apr 25, 2001 at 07:57:15AM -0400, Dave VanAuken > wrote: > > router(also cisco) speaks to switch just fine Win2K > workstations > > using 3C905 cards speak to switch just fine FreeBSD > servers using > > 3C905 cards have problems... > > Autonegotiation of network speeds and duplexes is horribly > unreliable. I have administered clusters of FreeBSD systems > that plug > into 6006's and 3524's and there wasn't rhym or reason as to > which > boxes autonegotiated correctly. 100% of the time, with > maybe the > exception of a workgroup environment, you want to manually > set it's > speed to 100 and duplex to full. > > Cisco: > > in if-conf: > speed 100 > duplex full > > on server in /etc/rc.conf: > ifconfig_foo0=".... media 100baseTX mediaopt full-duplex" > > > > ping and other network utils respond with "host is down" > > That's because the switch doesn't see the computer as up. > > > > am wondering if it is not picking up the switch during > boot > > or something. > > Maybe, but auto-neg is bad in every way shape and form and > was > designed for workgroup environments, not servers. If a > server doesn't > negotiate at 100 full, then I've got a problem and I want > the server > to disappear from the network. > > > > using unroutables, here is what the network looks like: > > Network 192.168.1.0/26 > > Router 192.168.1.1 255.255.255.192 WAN (upstream IP addr) > > Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 > > Workstations 192.168.1.20-24 255.255.255.192 Gateway > > 192.168.1.1 > > FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router > > 192.168.1.1 > > aliased 192.168.1.15-17 255.255.255.192 > > FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router > > 192.168.1.1 > > This won't matter, the 3524XL doesn't, by and large, see > layer > three traffic. They're great switches though, I've only had > one > problem a cluster of 5 of them in over a year of > peration. -sc > > > -- > Sean Chittenden > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > - Forrest W. Christian (forrestc@imach.com) AC7DE ------------------------------------------------------------ ---------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ------------------------------------------------------------ ---------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 19:50:11 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id F36D337B423 for ; Wed, 25 Apr 2001 19:49:46 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id UAA25728; Wed, 25 Apr 2001 20:30:44 -0600 (MDT) Date: Wed, 25 Apr 2001 20:30:44 -0600 (MDT) From: "Forrest W. Christian" To: Dave VanAuken Cc: freebsd-isp@FreeBSD.ORG Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Didn't mean to be so onery about the 3coms ;) I do realize a LOT of people use them and have no problems with them. It just seems that I spend more time swearing at them, and have done so enough times that I've decided that it is definately not worth the extra money for them. I generally use a "generic" $10-15 nic when it isn't mission critical and (as I think a LOT of FreeBSD'ers out there will agree with me on) the Intel Pro/100B's when it is. I can't honestly say that the Intel is any better than the cheapies (I haven't had any problems to speak of with either one) but the Intel just "feels" a little better. The only caution on the cheapies is that certain iterations of the Realtec chipsets are known to have issues. On Wed, 25 Apr 2001, Dave VanAuken wrote: > Date: Wed, 25 Apr 2001 22:21:57 -0400 > From: Dave VanAuken > To: freebsd-isp@FreeBSD.ORG > Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch > > Yes tried another 3c905... unfortunately we have a mitfull > of them over here (in just about all workstations and a > bunch of spares to boot). Since no other solutions present > themself, will replace the NIC with another brand and see > what results. > > Dave > > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Forrest > W. Christian > Sent: Wednesday, April 25, 2001 5:06 PM > To: Dave VanAuken > Cc: freebsd-isp@FreeBSD.ORG > Subject: RE: FreeBSD w 3C905 cannot connect to/through Cisco > 3524XL > switch > > > I'm sorry, anyone who uses 3com nics get what they deserve. > > Throw the @(#*$ 3com card away and get another (any other) > nic. :) > > Even a $10 realtec would be preferrable. Athough the nic of > choice seems > to be the Intel Pro 100, and I can't say I've had any > problems with them. > > I've just had my fill of problems with 3coms. I'm assuming > you have tried > another 3c905? > > I know for a fact that 3com believes in customer testing of > their > products. I have a friend who worked for a company who was > acquired by > 3com. He was one of the people who did test and rework. > Basically, every > unit would be powered on and would be run through a minimal > set of tests > to at least verify it functioned. 3com management was > pissed off that > they were failing too many of the units (or better put, they > were catching > too many problems before they sent them to the customer) and > told them > that if they weren't able to improve their post-test yeild > they would have > to just ship the products without doing the electrical > testing. > > On Wed, 25 Apr 2001, Dave VanAuken wrote: > > > Date: Wed, 25 Apr 2001 16:03:07 -0400 > > From: Dave VanAuken > > To: freebsd-isp@FreeBSD.ORG > > Subject: RE: FreeBSD w 3C905 cannot connect to/through > Cisco 3524XL switch > > > > Have the environments for the NIC and the Switch port > > manually set as you indicated... on both ends. > > > > Again, the bootup cycle (from the switch's perception) > when > > the interface is activated, the switch light for the port > > goes amber for about 10-15 seconds then green. during > this > > time, FreeBSD bootup(ifconfig portions) reports the > > no-carrier... one entry, still no pings from the switch > to > > the server or vice versa. Damn annoying. > > > > Other ideas? > > > > Dave > > > > -----Original Message----- > > From: owner-freebsd-isp@FreeBSD.ORG > > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Sean > > Chittenden > > Sent: Wednesday, April 25, 2001 12:21 PM > > To: Dave VanAuken > > Cc: freebsd-isp@FreeBSD.ORG > > Subject: Re: FreeBSD w 3C905 cannot connect to/through > Cisco > > 3524XL > > switch > > > > > > On Wed, Apr 25, 2001 at 07:57:15AM -0400, Dave VanAuken > > wrote: > > > router(also cisco) speaks to switch just fine Win2K > > workstations > > > using 3C905 cards speak to switch just fine FreeBSD > > servers using > > > 3C905 cards have problems... > > > > Autonegotiation of network speeds and duplexes is > horribly > > unreliable. I have administered clusters of FreeBSD > systems > > that plug > > into 6006's and 3524's and there wasn't rhym or reason as > to > > which > > boxes autonegotiated correctly. 100% of the time, with > > maybe the > > exception of a workgroup environment, you want to manually > > set it's > > speed to 100 and duplex to full. > > > > Cisco: > > > > in if-conf: > > speed 100 > > duplex full > > > > on server in /etc/rc.conf: > > ifconfig_foo0=".... media 100baseTX mediaopt full-duplex" > > > > > > > ping and other network utils respond with "host is down" > > > > That's because the switch doesn't see the computer as up. > > > > > > > am wondering if it is not picking up the switch during > > boot > > > or something. > > > > Maybe, but auto-neg is bad in every way shape and form > and > > was > > designed for workgroup environments, not servers. If a > > server doesn't > > negotiate at 100 full, then I've got a problem and I want > > the server > > to disappear from the network. > > > > > > > using unroutables, here is what the network looks like: > > > Network 192.168.1.0/26 > > > Router 192.168.1.1 255.255.255.192 WAN (upstream IP > addr) > > > Switch 192.168.1.5 255.255.255.192 Network 192.168.1.1 > > > Workstations 192.168.1.20-24 255.255.255.192 Gateway > > > 192.168.1.1 > > > FreeBSD1 192.168.1.10 255.255.255.192 Gateway Router > > > 192.168.1.1 > > > aliased 192.168.1.15-17 255.255.255.192 > > > FreeBSD2 192.168.1.11 255.255.255.192 Gateway Router > > > 192.168.1.1 > > > > This won't matter, the 3524XL doesn't, by and large, see > > layer > > three traffic. They're great switches though, I've only > had > > one > > problem a cluster of 5 of them in over a year of > > peration. -sc > > > > > > -- > > Sean Chittenden > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > - Forrest W. Christian (forrestc@imach.com) AC7DE > ------------------------------------------------------------ > ---------- > iMach, Ltd., P.O. Box 5749, Helena, MT 59604 > http://www.imach.com > Solutions for your high-tech problems. > (406)-442-6648 > ------------------------------------------------------------ > ---------- > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 25 23:26:31 2001 Delivered-To: freebsd-isp@freebsd.org Received: from mail.tgd.net (rand.tgd.net [64.81.67.117]) by hub.freebsd.org (Postfix) with SMTP id D2F8F37B422 for ; Wed, 25 Apr 2001 23:26:28 -0700 (PDT) (envelope-from sean@mailhost.tgd.net) Received: (qmail 29336 invoked by uid 1001); 26 Apr 2001 06:26:22 -0000 Date: Wed, 25 Apr 2001 23:26:22 -0700 From: Sean Chittenden To: "Forrest W. Christian" Cc: Dave VanAuken , freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch Message-ID: <20010425232622.A29316@rand.tgd.net> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="envbJBWh7q8WU6mo" Content-Disposition: inline In-Reply-To: ; from "forrestc@imach.com" on Wed, Apr 25, 2001 at = 08:30:44PM X-PGP-Key: 0x1EDDFAAD X-PGP-Fingerprint: C665 A17F 9A56 286C 5CFB 1DEA 9F4F 5CEF 1EDD FAAD X-Web-Homepage: http://sean.chittenden.org/ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --envbJBWh7q8WU6mo Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Apr 25, 2001 at 08:30:44PM -0600, Forrest W. Christian wrote: > I can't honestly say that the Intel is any better than the cheapies > (I haven't had any problems to speak of with either one) but the > Intel just "feels" a little better. If you get a box that's pushing more than 20Mbps of traffic, it makes all the difference in the world in terms of dropped frames and throughput, however, I can probably safely venture to guess that most people will never push a single machine that hard in real life. -sc --=20 Sean Chittenden --envbJBWh7q8WU6mo Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Comment: Sean Chittenden iEYEARECAAYFAjrnv44ACgkQn09c7x7d+q1ncACfTjPypvJkXoS5OBUNBu/PpcJy RD4AoK7zjrDJufMo1Ocl+mQBSJQo7uNf =t6yh -----END PGP SIGNATURE----- --envbJBWh7q8WU6mo-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 26 0:32:19 2001 Delivered-To: freebsd-isp@freebsd.org Received: from nr8.i-p-d.nl (nr8.i-p-d.nl [217.18.64.42]) by hub.freebsd.org (Postfix) with ESMTP id B748237B42C for ; Thu, 26 Apr 2001 00:32:14 -0700 (PDT) (envelope-from danny@i-p-d.nl) Received: from danny [217.18.66.12] by nr8.i-p-d.nl with ESMTP (SMTPD32-6.04) id AE98195F00BC; Thu, 26 Apr 2001 09:30:32 +0200 From: danny@i-p-d.nl To: Greg Lehey , freebsd-isp@FreeBSD.ORG Date: Thu, 26 Apr 2001 09:32:18 +0200 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: vinum Message-ID: <3AE7EB22.15653.1E6721@localhost> In-reply-to: <20010421104529.B97904@wantadilla.lemis.com> References: ; from mic@t0.or.at on Sat, Apr 21, 2001 at 01:17:29AM +0200 X-mailer: Pegasus Mail for Win32 (v3.12c) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanx for the help so far. All worked, except one thing: After rebooting I get the next message for my 2 vinum-partitions: BAD SUPER BLOCK: MAGIC NUMBER WRONG I think it has something to do with the disklabeling, but I am not sure. Could you tell me what I might have done wrong? Date sent: Sat, 21 Apr 2001 10:45:29 +0930 From: Greg Lehey To: Michael Dosser Copies to: freebsd-isp@FreeBSD.ORG Subject: Re: vinum Organization: LEMIS, PO Box 460, Echunga SA 5153, Australia On Saturday, 21 April 2001 at 1:17:29 +0200, Michael Dosser wrote: > On Fri, 20 Apr 2001 danny@i-p-d.nl wrote: > >> I have been trying to setup vinum to mirror my first harddisk on a >> second identical harddisk. I get the feeling that it is not possible to >> mirror the first disk, as it is my FreeBSD bootdisk. Is that right? > > Don't know if somebody is interested in .. I made a small howto page for > RAID-1 with vinum: > > http://org.netbase.org/vinum-mirrored.html There are a number of errors in this page. To even be able to read it, I had to turn the colours off. Are you colour blind? I'm attaching a marked up version in HTML (exceptionally), since I need to explain some things and why they're wrong. You can also see this page at http://www.lemis.com/grog/vinum-mirrored-corrected.html Greg -- Finger grog@lemis.com for PGP public key See complete headers for address and phone numbers Met vriendelijke groeten, Danny Zwegers Unix SysAdmin (Spec:Domains) IPD Hosting & Design BV ------------------- WWW Hosting --------------------- http://www.i-p-d.nl Tel: 0165-571675 http://www.ipdhosting.com Fax: 0165-571710 http://www.domeinhosting.com Email: danny@i-p-d.nl http://www.secure.nl ------------------- WWW Design --------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 26 1: 7:29 2001 Delivered-To: freebsd-isp@freebsd.org Received: from wantadilla.lemis.com (wantadilla.lemis.com [192.109.197.80]) by hub.freebsd.org (Postfix) with ESMTP id A7EF337B424 for ; Thu, 26 Apr 2001 01:07:25 -0700 (PDT) (envelope-from grog@lemis.com) Received: by wantadilla.lemis.com (Postfix, from userid 1004) id 9E7A36ACB8; Thu, 26 Apr 2001 17:37:23 +0930 (CST) Date: Thu, 26 Apr 2001 17:37:23 +0930 From: Greg Lehey To: danny@i-p-d.nl Cc: freebsd-isp@FreeBSD.ORG Subject: Re: vinum Message-ID: <20010426173722.C89262@wantadilla.lemis.com> References: ; <20010421104529.B97904@wantadilla.lemis.com> <3AE7EB22.15653.1E6721@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3AE7EB22.15653.1E6721@localhost>; from danny@i-p-d.nl on Thu, Apr 26, 2001 at 09:32:18AM +0200 Organization: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-418-838-708 WWW-Home-Page: http://www.lemis.com/~grog X-PGP-Fingerprint: 6B 7B C3 8C 61 CD 54 AF 13 24 52 F8 6D A4 95 EF Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thursday, 26 April 2001 at 9:32:18 +0200, danny@i-p-d.nl wrote: > (missing attribution to Greg Lehey) >> On Saturday, 21 April 2001 at 1:17:29 +0200, Michael Dosser wrote: >>> On Fri, 20 Apr 2001 danny@i-p-d.nl wrote: >>> >>>> I have been trying to setup vinum to mirror my first harddisk on a >>>> second identical harddisk. I get the feeling that it is not possible to >>>> mirror the first disk, as it is my FreeBSD bootdisk. Is that right? >>> >>> Don't know if somebody is interested in .. I made a small howto page for >>> RAID-1 with vinum: >>> >>> http://org.netbase.org/vinum-mirrored.html >> >> There are a number of errors in this page. To even be able to read >> it, I had to turn the colours off. Are you colour blind? >> >> I'm attaching a marked up version in HTML (exceptionally), since I >> need to explain some things and why they're wrong. You can also see >> this page at http://www.lemis.com/grog/vinum-mirrored-corrected.html > > Thanx for the help so far. All worked, except one thing: > > After rebooting I get the next message for my 2 vinum-partitions: > BAD SUPER BLOCK: MAGIC NUMBER WRONG > > I think it has something to do with the disklabeling, but I am not > sure. > > Could you tell me what I might have done wrong? Well, one is lack of detail. Take a look at http://www.vinumvm.org/vinum/how-to-debug.html and give me the info I ask for there. Greg -- Finger grog@lemis.com for PGP public key See complete headers for address and phone numbers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 26 2:12:17 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id DD2BB37B422 for ; Thu, 26 Apr 2001 02:12:14 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id CAA27021; Thu, 26 Apr 2001 02:53:05 -0600 (MDT) Date: Thu, 26 Apr 2001 02:53:05 -0600 (MDT) From: "Forrest W. Christian" To: Sean Chittenden Cc: Dave VanAuken , freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD w 3C905 cannot connect to/through Cisco 3524XL switch In-Reply-To: <20010425232622.A29316@rand.tgd.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 25 Apr 2001, Sean Chittenden wrote: > On Wed, Apr 25, 2001 at 08:30:44PM -0600, Forrest W. Christian wrote: > > I can't honestly say that the Intel is any better than the cheapies > > (I haven't had any problems to speak of with either one) but the > > Intel just "feels" a little better. > > If you get a box that's pushing more than 20Mbps of traffic, > it makes all the difference in the world in terms of dropped frames > and throughput, however, I can probably safely venture to guess that > most people will never push a single machine that hard in real life. That makes sense. Any machine I expected to have that much traffic would, of course, have an Intel Card in it.. Anything which does 20Mb/s has GOT to be mission critical. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 26 7:28:25 2001 Delivered-To: freebsd-isp@freebsd.org Received: from nr8.i-p-d.nl (nr8.i-p-d.nl [217.18.64.42]) by hub.freebsd.org (Postfix) with ESMTP id 9304B37B422 for ; Thu, 26 Apr 2001 07:28:16 -0700 (PDT) (envelope-from danny@i-p-d.nl) Received: from danny [217.18.66.12] by nr8.i-p-d.nl with ESMTP (SMTPD32-6.04) id A01D235600BC; Thu, 26 Apr 2001 16:26:37 +0200 From: danny@i-p-d.nl To: freebsd-isp@FreeBSD.ORG Date: Thu, 26 Apr 2001 16:27:38 +0200 MIME-Version: 1.0 Content-type: text/enriched; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: vinum Message-ID: <3AE84C7A.5232.19AB654@localhost> X-mailer: Pegasus Mail for Win32 (v3.12c) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org 0100,0100,0100My problem is the following: 0000,0000,0000After rebooting I get the next message for my 2 vinum-partitions: BAD SUPER BLOCK: MAGIC NUMBER WRONG I think it has something to do with the disklabeling, but I am not sure. I have FreeBSD 4.2 ========================================= I will tell you what I have done: I start a new FreeBSD install with 2 identical drives. I setup the first drive as full use and bootable (+only FreeBSD) I setup the second identically, but not bootable. My labels are: ad0: / 2G /a rest of disk ad1: swap 2G /b rest of disk I do a complete install with ports and linux binaries. I restart and do: # disklabel -e ad0 (I have to note that in /root/.cshrc I changed my default editor from vi to ee, so the alteration of the disklabel is done in ee) At the bottom I change the name of only e: from 4.2BSD in vinum (I leave a: as 4.2BSD) When I do disklabel -e ad0 again, I see, that the numbers for fsize, bsize and bps/cpg have disappeared. Maybe this is what creates the problem? I do # disklabel -e ad1 At the bottom I change the name of only e: from 4.2BSD in vinum I create the /etc/vinum.conf file as following: drive drive1 device /dev/ad0s1e drive drive2 device /dev/ad1s1e volume usr plex org concat sd length 9g drive drive1 plex org concat sd length 9g drive drive2 volume var plex org concat sd length 0 drive drive1 plex org concat sd length 0 drive drive2 I start vinum I do # create -f /etc/vinum.conf I leave vinum (CTRL+D) I do # newfs -v /dev/vinum/usr # newfs -v /dev/vinum/var # mkdir /mnt/usr # mkdir /mnt/var # mount /dev/vinum/usr /mnt/usr # mount /dev/vinum/var /mnt/var 0100,0100,0100# cd / # tar cfv usr.tar usr # mv usr.tar /mnt # tar xfvp usr.tar 0000,0000,0000# cd / # tar cfv var.tar var # mv var.tar /mnt # tar xfvp var.tar 0100,0100,0100 # ee /etc/fstab I add: /dev/vinum/usr /mnt/usr ufs rw 2 /dev/vinum/var /mnt/var ufs rw 2 NOTE: I also tried /usr and /var in stead of /mnt/usr and /mnt/var earlier with the same result. NOTE: please tell me which is right: /mnt/usr or /usr (I guess the first) I do: # ee /etc/rc.conf and add: # start_vinum="YES" After this I reboot and get the problem. ==================================== Thanx for your help! Met vriendelijke groeten, Danny Zwegers Unix SysAdmin (Spec:Domains) IPD Hosting & Design BV ------------------- WWW Hosting --------------------- http://www.i-p-d.nl Tel: 0165-571675 http://www.ipdhosting.com Fax: 0165-571710 http://www.domeinhosting.com Email: danny@i-p-d.nl http://www.secure.nl ------------------- WWW Design --------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 0:16:25 2001 Delivered-To: freebsd-isp@freebsd.org Received: from kermit.netivity.nl (wc-68.r-195-85-144.essentkabel.com [195.85.144.68]) by hub.freebsd.org (Postfix) with ESMTP id B190337B423 for ; Fri, 27 Apr 2001 00:16:22 -0700 (PDT) (envelope-from enriko@netivity.nl) Received: by KERMIT with Internet Mail Service (5.5.2650.21) id ; Fri, 27 Apr 2001 09:16:16 +0200 Message-ID: <510EAC2065C0D311929200A024725262262424@NETIVITY-FS> From: Enriko Groen To: "'freebsd-isp@freebsd.org'" Subject: bsmtp Date: Fri, 27 Apr 2001 09:17:43 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi! I'm looking into starting batched SMTP service for one of our clients. I installed the bmstp package, but it's documentation is very poor (WHICH documentation?!). Can someone help me out in setting up bstmp? I would like to run it parallel to a regular smtp service. Maybe there are some good webpages or should I hit Usenet? -- Enriko Groen Netivity - http://www.netivity.nl phone: +31-38-8501000 mobile: +31-615284709 @work: enriko@netivity.nl @home: ric0@xhuman.net Those are my princeples. If you don't like them, I have others. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 5:57: 7 2001 Delivered-To: freebsd-isp@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 38E3C37B422 for ; Fri, 27 Apr 2001 05:57:05 -0700 (PDT) (envelope-from jwyatt@rwsystems.net) Received: from bsdie.rwsystems.net([209.197.223.2]) (1466 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Fri, 27 Apr 2001 07:56:18 -0500 (CDT) (Smail-3.2.0.111 2000-Feb-17 #1 built 2000-Jun-25) Date: Fri, 27 Apr 2001 07:56:17 -0500 (CDT) From: James Wyatt To: Enriko Groen Cc: "'freebsd-isp@freebsd.org'" Subject: Re: bsmtp In-Reply-To: <510EAC2065C0D311929200A024725262262424@NETIVITY-FS> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We have used Smail (a sendmail replacement) to handle this when we've needed it. We also really like it for UUCP routing and tons of SMTP. On Fri, 27 Apr 2001, Enriko Groen wrote: > I'm looking into starting batched SMTP service for one of our clients. > I installed the bmstp package, but it's documentation is very poor (WHICH > documentation?!). > Can someone help me out in setting up bstmp? I would like to run it parallel > to a regular smtp service. > > Maybe there are some good webpages or should I hit Usenet? > > -- > Enriko Groen > Netivity - http://www.netivity.nl > > phone: +31-38-8501000 mobile: +31-615284709 > @work: enriko@netivity.nl @home: ric0@xhuman.net > > Those are my princeples. If you don't like them, I have others. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 8:15:57 2001 Delivered-To: freebsd-isp@freebsd.org Received: from aspenworks.com (aspenworks.com [192.94.236.1]) by hub.freebsd.org (Postfix) with ESMTP id 1EA3B37B422 for ; Fri, 27 Apr 2001 08:15:54 -0700 (PDT) (envelope-from alex@aspenworks.com) Received: from d7k (matrix.aspenworks.com [216.38.199.82]) by aspenworks.com (8.9.3/8.9.3) with SMTP id JAA59614 for ; Fri, 27 Apr 2001 09:15:51 -0600 (MDT) (envelope-from alex@aspenworks.com) Message-ID: <008901c0cf2c$ee6bd990$1700a8c0@d7k> From: "Alex Huppenthal" To: Subject: BGP package recommendation? Date: Fri, 27 Apr 2001 09:15:42 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Now that ATM is working, we're pressing on with BGP for the backbone. Any recommendation for a BGP package on FreeBSD 4.3 ? Thanks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 8:36: 7 2001 Delivered-To: freebsd-isp@freebsd.org Received: from merchandisewholesale.com (ci392057-b.ruthfd1.tn.home.com [24.15.72.99]) by hub.freebsd.org (Postfix) with SMTP id 08F1837B43C for ; Fri, 27 Apr 2001 08:35:52 -0700 (PDT) (envelope-from cs@merchandisewholesale.com) From: "Merchandise WholeSale" To: Subject: Grand Opening Mime-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Date: Fri, 27 Apr 2001 10:30:23 -0700 Reply-To: "Merchandise WholeSale" Content-Transfer-Encoding: 8bit Message-Id: <20010427153552.08F1837B43C@hub.freebsd.org> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org First off I would like to Thank You for taking time to read this letter. Second of all your e-mail address was pulled from an on-line source. This is the only & last message you'll receive from us, so you don't have to worry about an unsubscribe list or spam. Nor will we give your e-mail out to any one else. I'd like to stop, and tell you about a new ON-LINE Retail store. Merchandise Wholesale, a retail store that has over 2,000 products for home,travel,jewelry,personal needs etc... Please take time out when you have it to browse our ON-LINE directory at http://www.merchandisewholesale.com Click on any images of the item to enlarge. Our site is always under constant change for the better. Thanks for your precious time, HTTP://MERCHANDISEWHOLESALE.COM promotions@merchandisewholesale.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 8:52:48 2001 Delivered-To: freebsd-isp@freebsd.org Received: from cody.jharris.com (cody.jharris.com [205.238.128.83]) by hub.freebsd.org (Postfix) with ESMTP id CE44D37B423 for ; Fri, 27 Apr 2001 08:52:45 -0700 (PDT) (envelope-from nick@rogness.net) Received: from localhost (nick@localhost) by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f3RH1gl57514; Fri, 27 Apr 2001 12:01:42 -0500 (CDT) (envelope-from nick@rogness.net) Date: Fri, 27 Apr 2001 12:01:42 -0500 (CDT) From: Nick Rogness X-Sender: nick@cody.jharris.com To: Alex Huppenthal Cc: freebsd-isp@FreeBSD.ORG Subject: Re: BGP package recommendation? In-Reply-To: <008901c0cf2c$ee6bd990$1700a8c0@d7k> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 27 Apr 2001, Alex Huppenthal wrote: > > Now that ATM is working, we're pressing on with BGP for the backbone. > Any recommendation for a BGP package on FreeBSD 4.3 ? `gated' or `zebra'. Both are in the ports (ports/net). I have used gated but I heard zebra was easier to manage. Nick Rogness - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 9:40:28 2001 Delivered-To: freebsd-isp@freebsd.org Received: from tao.org.uk (genesis.tao.org.uk [212.135.162.62]) by hub.freebsd.org (Postfix) with ESMTP id 21D8037B422 for ; Fri, 27 Apr 2001 09:40:24 -0700 (PDT) (envelope-from joe@tao.org.uk) Received: by tao.org.uk (Postfix, from userid 100) id 0000C58; Fri, 27 Apr 2001 17:40:22 +0100 (BST) Date: Fri, 27 Apr 2001 17:40:22 +0100 From: Josef Karthauser To: Nick Rogness Cc: Alex Huppenthal , freebsd-isp@FreeBSD.ORG Subject: Re: BGP package recommendation? Message-ID: <20010427174022.G83671@tao.org.uk> Mail-Followup-To: Josef Karthauser , Nick Rogness , Alex Huppenthal , freebsd-isp@FreeBSD.ORG References: <008901c0cf2c$ee6bd990$1700a8c0@d7k> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="MrRUTeZlqqNo1jQ9" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from nick@rogness.net on Fri, Apr 27, 2001 at 12:01:42PM -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org --MrRUTeZlqqNo1jQ9 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Apr 27, 2001 at 12:01:42PM -0500, Nick Rogness wrote: > On Fri, 27 Apr 2001, Alex Huppenthal wrote: >=20 > >=20 > > Now that ATM is working, we're pressing on with BGP for the backbone. > > Any recommendation for a BGP package on FreeBSD 4.3 ? >=20 > `gated' or `zebra'. Both are in the ports (ports/net). I have > used gated but I heard zebra was easier to manage. My experience is that zebra is easier to manage, but has had reliability problems in the past due to the fact that it's still being actively developed. Your milage may vary, but it's worth trying. Joe --MrRUTeZlqqNo1jQ9 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjrpoPYACgkQXVIcjOaxUBbLHQCfQ9O42GewPEVHme7BRx+SxgvC aegAoKIsQKhBSiHEwoZB0yH/5FeCZsNk =RUxD -----END PGP SIGNATURE----- --MrRUTeZlqqNo1jQ9-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 27 23:30: 7 2001 Delivered-To: freebsd-isp@freebsd.org Received: from web10003.mail.yahoo.com (web10003.mail.yahoo.com [216.136.130.39]) by hub.freebsd.org (Postfix) with SMTP id 77D2937B423 for ; Fri, 27 Apr 2001 23:30:01 -0700 (PDT) (envelope-from xiyuan@yahoo.com) Message-ID: <20010428063000.18797.qmail@web10003.mail.yahoo.com> Received: from [202.109.72.104] by web10003.mail.yahoo.com; Fri, 27 Apr 2001 23:30:00 PDT Date: Fri, 27 Apr 2001 23:30:00 -0700 (PDT) From: xiyuan qian Subject: ADSL ISDN ppp how to & IP counting To: freebsd-questions@freebsd.org Cc: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, Can someone there do me a favour to tell me whether freebsd supporting ADSL or ISDN ppp connecting to an ISP? If can , how to ? Just like the configuration of tel. line? If I can dial my freebsd box to my ISP, all I want to do is make this box act like a gateway to let all my local net going out. I know I can carry this out with ipfilter. But I need to control the inner hosts like the following situation: some can do everthing like visiting web sites, sending email, ftping files etc, some only can sending email. How to control with ipfilter? Can the ipfilter log all the outgoing's begin and end time? Best regaurds! --xiyuan __________________________________________________ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 7: 5:44 2001 Delivered-To: freebsd-isp@freebsd.org Received: from shell.coffey-web.net (www.coffey-web.net [208.247.65.236]) by hub.freebsd.org (Postfix) with ESMTP id 93A3C37B422 for ; Sat, 28 Apr 2001 07:05:41 -0700 (PDT) (envelope-from bsd@shell.coffey-web.net) Received: from bduross (nic-41-c53-116.mw.mediaone.net [66.41.53.116]) by shell.coffey-web.net (8.11.1/8.11.1) with ESMTP id f3SE5ef51662 for ; Sat, 28 Apr 2001 10:05:40 -0400 (EDT) (envelope-from bsd@shell.coffey-web.net) From: bsd@shell.coffey-web.net Message-ID: <005a01c0cfec$1303c6e0$6401a8c0@bduross> To: Subject: ipfw and ISP's. Date: Sat, 28 Apr 2001 10:03:59 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, I am new to the list as of today. I work for a small ISP in Michigan, we have 2 T1's out to different providers in which we run BGP on a Cisco 3640. My question is this: We are looking for a way to filter traffic (if needed, due to an attack or similar) inbound or outbound to our network. I believe I could do this with a dual nic configuration on a FreeBSD machine with ipfw. Would the machine be able to handle the traffic? and if so, what kind of specs would you reccomend for a machine to do 3mb/s of bandwidth? We have a DS3 coming in the soon months, would the machine be able to handle even that? Here is a diagram (in my great ascii skills.. :/) 2 T1's ----------->Cisco 3640 -------->FreeBSD ipfw box -------->Cisco 3500XL Switch ------>rest of network(dialupandothers) Is this feasuble(sp)? Would appreciate any comments or reccomendations on this topic. TIA, Brian S. DuRoss bsd@shell.coffey-web.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 7:54:11 2001 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id BD47A37B423 for ; Sat, 28 Apr 2001 07:54:08 -0700 (PDT) (envelope-from forrestc@imach.com) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id IAA08721; Sat, 28 Apr 2001 08:34:21 -0600 (MDT) Date: Sat, 28 Apr 2001 08:34:21 -0600 (MDT) From: "Forrest W. Christian" To: bsd@shell.coffey-web.net Cc: freebsd-isp@FreeBSD.ORG Subject: Re: ipfw and ISP's. In-Reply-To: <005a01c0cfec$1303c6e0$6401a8c0@bduross> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Is there a reason you don't want to do this on the 3640? It can definately handle 3mb/s and probably even more. That said, any decent recent machine with Intel Nics (pro 100b) should be able to handle the load you are talking about. On Sat, 28 Apr 2001 bsd@shell.coffey-web.net wrote: > Date: Sat, 28 Apr 2001 10:03:59 -0400 > From: bsd@shell.coffey-web.net > To: freebsd-isp@FreeBSD.ORG > Subject: ipfw and ISP's. > > Hello, > I am new to the list as of today. I work for a small ISP in Michigan, we > have 2 T1's out to different providers in which we run BGP on a Cisco 3640. > My question is this: We are looking for a way to filter traffic (if needed, > due to an attack or similar) inbound or outbound to our network. I believe I > could do this with a dual nic configuration on a FreeBSD machine with ipfw. > Would the machine be able to handle the traffic? and if so, what kind of > specs would you reccomend for a machine to do 3mb/s of bandwidth? We have a > DS3 coming in the soon months, would the machine be able to handle even > that? Here is a diagram (in my great ascii skills.. :/) > > > > > 2 T1's ----------->Cisco 3640 -------->FreeBSD ipfw box -------->Cisco > 3500XL Switch ------>rest of network(dialupandothers) > > Is this feasuble(sp)? Would appreciate any comments or reccomendations on > this topic. > > TIA, > Brian S. DuRoss > bsd@shell.coffey-web.net > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- iMach, Ltd., P.O. Box 5749, Helena, MT 59604 http://www.imach.com Solutions for your high-tech problems. (406)-442-6648 ---------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 9:55:18 2001 Delivered-To: freebsd-isp@freebsd.org Received: from velvet.sensation.net.au (serial1-2-velvet-brunswick.sensation.net.au [203.20.114.195]) by hub.freebsd.org (Postfix) with ESMTP id 16A9637B422 for ; Sat, 28 Apr 2001 09:55:02 -0700 (PDT) (envelope-from rowan@sensation.net.au) Received: from localhost (rowan@localhost) by velvet.sensation.net.au (8.9.3/8.9.3) with ESMTP id CAA22938 for ; Sun, 29 Apr 2001 02:54:26 +1000 (EST) (envelope-from rowan@sensation.net.au) X-Authentication-Warning: velvet.sensation.net.au: rowan owned process doing -bs Date: Sun, 29 Apr 2001 02:54:24 +1000 (EST) From: Rowan Crowe To: freebsd-isp@freebsd.org Subject: "failsafe" NFS Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I've just started reading up on, and playing with NFS. Is it possible to use multiple servers, like HD mirroring? For example a passive second server quietly writes all changes to its local HD, but ignores read requests - unless the first server is unresponsive. I don't know if this could be kludged together easily with front end packet redirection and some hacks to the server code, or whether the NFS protocol itself maintains state information between the client and server that will be broken if another server is seamlessly switched in... Thoughts? BTW, I've found NFS works surprisingly well over a 512:2048kbit DSL link (server and client on the LAN at each end of that link), through no less than *two* IPIP/NOS tunnels (fragmented fragments!) BTW2, I know NFS is primarily for fast LANs, but does it use any data caching to minimise repetitive network activity for commonly loaded data? FreeBSD at both ends in this case. Cheers. -- Rowan Crowe http://www.rowan.sensation.net.au/ Sensation Internet Services http://info.sensation.net.au/ Melbourne, Australia Phone: +61-3-9388-9260 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 10:26:32 2001 Delivered-To: freebsd-isp@freebsd.org Received: from lunatic.oneinsane.net (lunatic.oneinsane.net [66.42.61.27]) by hub.freebsd.org (Postfix) with ESMTP id 0B12837B424 for ; Sat, 28 Apr 2001 10:26:29 -0700 (PDT) (envelope-from insane@lunatic.oneinsane.net) Received: by lunatic.oneinsane.net (Postfix, from userid 1000) id 7D68C1553F; Thu, 26 Apr 2001 15:59:46 -0700 (PDT) Date: Thu, 26 Apr 2001 15:59:46 -0700 From: Ron 'The InSaNe One' Rosson To: FreeBSD-isp@freeBSD.org Subject: MPPP Dailup Message-ID: <20010426155945.A15714@lunatic.oneinsane.net> Reply-To: Ron Rosson Mail-Followup-To: FreeBSD-isp@freeBSD.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i X-Operating-System: FreeBSD lunatic.oneinsane.net 4.2-STABLE X-Moon: The Moon is Waxing Crescent (13% of Full) X-Opinion: What you read here is my IMHO X-WWW: http://www.oneinsane.net X-GPG-FINGERPRINT: 3F11 DB43 F080 C037 96F0 F8D3 5BD2 652B 171C 86DB X-Uptime: 3:52PM up 37 days, 20:20, 1 user, load averages: 0.05, 0.10, 0.08 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I am trying to get a FreeBSD box to do dial in to its ISP using MPPP (user-ppp). Here is the ppp.conf: # $FreeBSD: src/etc/ppp/ppp.conf,v 1.2 1999/08/27 23:24:08 peter Exp $ ################################################################# default: allow user * set server +3000 adminme set speed 115200 set timeout 600 set log Phase Chat LCP IPCP CCP tun command set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK-AT-OK ATE1Q0 OK \\dATDT\\T TIMEOUT 40 CONNECT" mppp: # This is for multilink modem connection set device /dev/cuaa0 /dev/cuaa1 set phone 3870300 set timeout 600 set authname MYLOGIN set authkey MYPASS set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0 add default HISADDR enable dns set mrru 1500 clone 1,2 link deflink remove link * set mode auto # set autoload 10 100 30 # set bandwidth 115200 what happens is that both modems connect immedaitely and dont hang up. What I am trying to do here is set them up so they do Bandwisth on demand. Idealy the situation would be that you make your initial connection with 1 modem. Once you reach 85% of utilization you bring in the other modem. and that modem will stay connected till the bw is no longer needed. Then I want after a defined idle time disconnect. Any ideas what coiuld be wrong im my config. TIA -- ------------------------------------------------------------------------------ Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was /dev/null and *void() ------------------------------------------------------------------------------ Loose bits sink chips. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 15:26: 6 2001 Delivered-To: freebsd-isp@freebsd.org Received: from et-gw.etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (Postfix) with ESMTP id EA44337B423 for ; Sat, 28 Apr 2001 15:26:02 -0700 (PDT) (envelope-from dennis@etinc.com) Received: from dbsys.etinc.com (dbsys.etinc.com [207.252.1.18]) by et-gw.etinc.com (8.9.3/8.9.3) with ESMTP id SAA07728; Sat, 28 Apr 2001 18:26:40 GMT (envelope-from dennis@etinc.com) Message-Id: <5.0.2.1.0.20010428124409.0363c350@mail.etinc.com> X-Sender: dennis@mail.etinc.com X-Mailer: QUALCOMM Windows Eudora Version 5.0.2 Date: Sat, 28 Apr 2001 17:48:40 -0400 To: bsd@shell.coffey-web.net, From: Dennis Subject: Re: ipfw and ISP's. In-Reply-To: <005a01c0cfec$1303c6e0$6401a8c0@bduross> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 10:03 AM 04/28/2001, bsd@shell.coffey-web.net wrote: >Hello, > I am new to the list as of today. I work for a small ISP in Michigan, we >have 2 T1's out to different providers in which we run BGP on a Cisco 3640. >My question is this: We are looking for a way to filter traffic (if needed, >due to an attack or similar) inbound or outbound to our network. I believe I >could do this with a dual nic configuration on a FreeBSD machine with ipfw. >Would the machine be able to handle the traffic? and if so, what kind of >specs would you reccomend for a machine to do 3mb/s of bandwidth? We have a >DS3 coming in the soon months, would the machine be able to handle even >that? Here is a diagram (in my great ascii skills.. :/) You might want to take a look at our FreeBSD based bandwidth management solution. We now have DOS filters (packet/second filters) , as well as an HTML based firewall and bandwidth management interface. Our boxes can handle up to 100K pps and full 100Mb/s. Of course if you have 100s of rules your mileage may vary. You may also want to consider running your DS3 right into the freebsd box...You can run the DOS filters and firewall right on the HSSI line. The problem with ciscos is that the DOS may trash the cisco (particularly lower end models), so your external firewall wont help much. see www.etinc.com for info. We have a new gigabit-capable box soon to be announced for super heavy duty tasks. Dennis >2 T1's ----------->Cisco 3640 -------->FreeBSD ipfw box -------->Cisco >3500XL Switch ------>rest of network(dialupandothers) > > Is this feasuble(sp)? Would appreciate any comments or reccomendations on >this topic. > >TIA, >Brian S. DuRoss >bsd@shell.coffey-web.net > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 28 23:31:37 2001 Delivered-To: freebsd-isp@freebsd.org Received: from virtual-voodoo.com (virtual-voodoo.com [204.120.165.254]) by hub.freebsd.org (Postfix) with ESMTP id 0373E37B422 for ; Sat, 28 Apr 2001 23:31:35 -0700 (PDT) (envelope-from steve@virtual-voodoo.com) Received: (from steve@localhost) by virtual-voodoo.com (8.11.3/8.11.1) id f3T6VW190602 for freebsd-isp@freebsd.org; Sun, 29 Apr 2001 01:31:32 -0500 (EST) (envelope-from steve) Date: Sun, 29 Apr 2001 01:31:32 -0500 (EST) From: Steve Ames Message-Id: <200104290631.f3T6VW190602@virtual-voodoo.com> To: freebsd-isp@freebsd.org Subject: Trimming old mailboxes Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Got a question. This has to come up time and again. I have a small system with about 500 users on it. A good number of them are people who leave e-mail on the server rather than deleting it. As you can imagine over time these files have grown rather large. Is there a program I can run that'll go through the mailboxes (they are all in sendmail mailbox format) and delete any messages older than say 1 year? I've discovered that I can tell the pop3 server to do this (sort of) but would like to give everything a quick cleaning immediately to start fresh. Thoughts? -Steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message