From owner-freebsd-net@FreeBSD.ORG Mon Sep 17 09:45:48 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5668A16A41A for ; Mon, 17 Sep 2007 09:45:48 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from s200aog14.obsmtp.com (s200aog14.obsmtp.com [207.126.144.128]) by mx1.freebsd.org (Postfix) with SMTP id A3D8413C457 for ; Mon, 17 Sep 2007 09:45:46 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from source ([217.206.187.80]) by eu1sys200aob014.postini.com ([207.126.147.11]) with SMTP; Mon, 17 Sep 2007 09:45:45 UTC Received: from [10.0.0.89] (bill.mintel.co.uk [10.0.0.89]) by rodney.mintel.co.uk (Postfix) with ESMTP id B4BD618141F; Mon, 17 Sep 2007 10:45:44 +0100 (BST) Message-ID: <46EE4CC8.4000906@tomjudge.com> Date: Mon, 17 Sep 2007 10:45:44 +0100 From: Tom Judge User-Agent: Thunderbird 1.5.0.12 (X11/20070604) MIME-Version: 1.0 To: Giorgos Keramidas References: <46E11515.8090007@tomjudge.com> <46E174DB.8070004@FreeBSD.org> <20070907185757.GA25624@kobe.laptop> <262949390709091803s507265e6mf3929c4dd26ecc56@mail.gmail.com> <20070910110528.GB2476@kobe.laptop> <20070910115636.GA8326@kobe.laptop> In-Reply-To: <20070910115636.GA8326@kobe.laptop> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, Nuno Antunes , "Bruce M. Simpson" Subject: Re: Strange behaviour of route command X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Sep 2007 09:45:48 -0000 Giorgos Keramidas wrote: > On 2007-09-10 14:05, Giorgos Keramidas wrote: >> On 2007-09-10 02:03, Nuno Antunes wrote: >>>>> Tom Judge wrote: >>>>>> Hi, >>>>>> While making some changes to the routing table on one of our routers >>>>>> today I noticed that "route add" was showing some strange >>>>>> behaviour. When adding a route for 128/8 to the table rather than >>>>>> adding 128.0.0.0/8 it would add 0.0.0.0/8, however adding 10/9 works >>>>>> correctly. >>>>>> >>>>>> Is this a bug in route or the routing table? >>> Hi, >>> Can you take a look at this patch, please? >>> >>> http://leaf.dragonflybsd.org/mailarchive/submit/2007-09/msg00000.html >> Fantastic, thanks for the pointer! :-) >> >> Skimming fast through the diff it seems to be ok. It doesn't apply >> cleanly over HEAD so some merging was required to get this version >> instead: >> >> %%% >> diff -r 3624c4072e63 sbin/route/route.c >> --- a/sbin/route/route.c Fri Sep 07 09:19:22 2007 +0000 >> +++ b/sbin/route/route.c Mon Sep 10 14:02:01 2007 +0300 >> @@ -799,18 +799,19 @@ inet_makenetandmask(net, sin, bits) >> rtm_addrs |= RTA_NETMASK; >> if (net == 0) >> mask = addr = 0; >> [snip] >> + else { >> + if (net <= 0xff) >> + addr = net << IN_CLASSA_NSHIFT; >> + else if (net < 0xffff) >> + addr = net << IN_CLASSB_NSHIFT; >> + else if (net < 0xffffff) >> + addr = net << IN_CLASSC_NSHIFT; > > ... which will fail for 0xffff and 0xffffff comparisons. I apologize > for not testing all the possible address lengths before emailing the > first patch. > > I should have used <= here, so an updated patch is: Is there any chance of getting this commited, or should I raise a PR about this? Tom > > %%% > diff -r 3624c4072e63 sbin/route/route.c > --- a/sbin/route/route.c Fri Sep 07 09:19:22 2007 +0000 > +++ b/sbin/route/route.c Mon Sep 10 14:55:16 2007 +0300 > @@ -799,18 +799,19 @@ inet_makenetandmask(net, sin, bits) > rtm_addrs |= RTA_NETMASK; > if (net == 0) > mask = addr = 0; > - else if (net < 128) { > - addr = net << IN_CLASSA_NSHIFT; > - mask = IN_CLASSA_NET; > - } else if (net < 65536) { > - addr = net << IN_CLASSB_NSHIFT; > - mask = IN_CLASSB_NET; > - } else if (net < 16777216L) { > - addr = net << IN_CLASSC_NSHIFT; > - mask = IN_CLASSC_NET; > - } else { > - addr = net; > - if ((addr & IN_CLASSA_HOST) == 0) > + else { > + if (net <= 0xff) > + addr = net << IN_CLASSA_NSHIFT; > + else if (net <= 0xffff) > + addr = net << IN_CLASSB_NSHIFT; > + else if (net <= 0xffffff) > + addr = net << IN_CLASSC_NSHIFT; > + else > + addr = net; > + > + if (bits) > + mask = 0xffffffff << (32 - bits); > + else if ((addr & IN_CLASSA_HOST) == 0) > mask = IN_CLASSA_NET; > else if ((addr & IN_CLASSB_HOST) == 0) > mask = IN_CLASSB_NET; > @@ -819,8 +820,6 @@ inet_makenetandmask(net, sin, bits) > else > mask = -1; > } > - if (bits) > - mask = 0xffffffff << (32 - bits); > sin->sin_addr.s_addr = htonl(addr); > sin = &so_mask.sin; > sin->sin_addr.s_addr = htonl(mask); > %%% > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Mon Sep 17 10:04:39 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 11E9516A469 for ; Mon, 17 Sep 2007 10:04:39 +0000 (UTC) (envelope-from telecom.cs@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.242]) by mx1.freebsd.org (Postfix) with ESMTP id BC68913C4B4 for ; Mon, 17 Sep 2007 10:04:36 +0000 (UTC) (envelope-from telecom.cs@gmail.com) Received: by an-out-0708.google.com with SMTP id c14so290093anc for ; Mon, 17 Sep 2007 03:04:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type; bh=Dcmy1ytNr2aV6e1MckYUVfKENvPoZHvXQci3FdApA94=; b=ag5T9IxnjuLp2gBjlYHyFpnXxWMn+u78Inll8eUFFfvNf05XeBHBH1TNxsvNi8mR7QRt1spLe5rv8INAbRX5QBnJ0BA5MALDhsK0IhvKjhYViRc53jhLyGCb+00TJ2bCgvXdORH5Zis6qPHLrvTFFwkydqtzlszuzfDu0s1gF0s= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=fO31DxfdRfw8c1EURJFAi9UPvSsmcXNF5SD4v0oSKfdCVyynb6MP7pwzeIH5zHWC6WVFYo6+5SF2geqg0B+Ytehc7alMCJThHdQk9DMwDnNmUJNDie2MxqBby7ND6kf3OaOaikn9EsJoF2nwcBS4YU7UATo8ATl/yfzPxtNrElw= Received: by 10.100.140.6 with SMTP id n6mr6974078and.1190021809866; Mon, 17 Sep 2007 02:36:49 -0700 (PDT) Received: by 10.70.116.17 with HTTP; Mon, 17 Sep 2007 02:36:49 -0700 (PDT) Message-ID: Date: Mon, 17 Sep 2007 15:06:49 +0530 From: "Chandra sekar" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Request to Join in mailing list X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Sep 2007 10:04:39 -0000 Thanks & Regards, Chandrasekar M From owner-freebsd-net@FreeBSD.ORG Mon Sep 17 10:13:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A6F4B16A41B for ; Mon, 17 Sep 2007 10:13:54 +0000 (UTC) (envelope-from nuno.antunes@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.187]) by mx1.freebsd.org (Postfix) with ESMTP id 32D2413C469 for ; Mon, 17 Sep 2007 10:13:53 +0000 (UTC) (envelope-from nuno.antunes@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so1089052nfb for ; Mon, 17 Sep 2007 03:13:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=3KRp4F08/bCJx5gzhYzBQ2h0TA5rJ23Y2WnVfGfBcJc=; b=IYwa9J5uON1vS8Ac3bfAgryyuMY/SFK9dCLCqnyNKZOIbrVoOoZyjx59O26f/dvnNV3gKhOTZ5mk3SAj05yN7mfEgST1pxbnyP7i4wYf9jIBTELs4xcCGrNd5zIq14LoK/nJe6yQSUnSA2ocGqG2koUNiXVMxAb3hVUNPQ8HcBM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=T5R8CIPuByoIK1QBrCVy8jHI4ylu8tV3OK58l1Rf3KxUhifhkAL5mn+k20MOlUgq6D2F8xwiEm9nH8maLvSXpOb2GH267a+E0lHdpRuC0M+s4WzEkl0RErMV2hd2S1VeP560y6Lzw9Y4KyK1Odl/UeaLk4qeWJhKNJrkh5daU/c= Received: by 10.86.73.17 with SMTP id v17mr3609710fga.1190024032801; Mon, 17 Sep 2007 03:13:52 -0700 (PDT) Received: by 10.86.3.15 with HTTP; Mon, 17 Sep 2007 03:13:52 -0700 (PDT) Message-ID: <262949390709170313t649a40d2n5b0598a8bcc034a7@mail.gmail.com> Date: Mon, 17 Sep 2007 11:13:52 +0100 From: "Nuno Antunes" To: "Tom Judge" In-Reply-To: <46EE4CC8.4000906@tomjudge.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <46E11515.8090007@tomjudge.com> <46E174DB.8070004@FreeBSD.org> <20070907185757.GA25624@kobe.laptop> <262949390709091803s507265e6mf3929c4dd26ecc56@mail.gmail.com> <20070910110528.GB2476@kobe.laptop> <20070910115636.GA8326@kobe.laptop> <46EE4CC8.4000906@tomjudge.com> Cc: freebsd-net@freebsd.org, "Bruce M. Simpson" , Giorgos Keramidas Subject: Re: Strange behaviour of route command X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Sep 2007 10:13:54 -0000 On 9/17/07, Tom Judge wrote: > Giorgos Keramidas wrote: > > On 2007-09-10 14:05, Giorgos Keramidas wrote: > >> On 2007-09-10 02:03, Nuno Antunes wrote: > >>>>> Tom Judge wrote: > >>>>>> Hi, > >>>>>> While making some changes to the routing table on one of our routers > >>>>>> today I noticed that "route add" was showing some strange > >>>>>> behaviour. When adding a route for 128/8 to the table rather than > >>>>>> adding 128.0.0.0/8 it would add 0.0.0.0/8, however adding 10/9 works > >>>>>> correctly. > >>>>>> > >>>>>> Is this a bug in route or the routing table? > >>> Hi, > >>> Can you take a look at this patch, please? > >>> > >>> http://leaf.dragonflybsd.org/mailarchive/submit/2007-09/msg00000.html > >> Fantastic, thanks for the pointer! :-) > >> > >> Skimming fast through the diff it seems to be ok. It doesn't apply > >> cleanly over HEAD so some merging was required to get this version > >> instead: BTW, there's also a fix for netstat to print CIDR network addresses correctly: http://leaf.dragonflybsd.org/mailarchive/submit/2007-09/msg00005.html Cheers, Nuno From owner-freebsd-net@FreeBSD.ORG Mon Sep 17 11:08:10 2007 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DA36816A419 for ; Mon, 17 Sep 2007 11:08:10 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id B16F013C47E for ; Mon, 17 Sep 2007 11:08:10 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l8HB8AmR049461 for ; Mon, 17 Sep 2007 11:08:10 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l8HB89jD049457 for freebsd-net@FreeBSD.org; Mon, 17 Sep 2007 11:08:09 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 17 Sep 2007 11:08:09 GMT Message-Id: <200709171108.l8HB89jD049457@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to you X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Sep 2007 11:08:11 -0000 Current FreeBSD problem reports Critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/115360 net [ipv6] IPv6 address and if_bridge don't play well toge o kern/116172 net Network / ipv6 recursive mutex panic 2 problems total. Serious problems S Tracker Resp. Description -------------------------------------------------------------------------------- s kern/21998 net [socket] [patch] ident only for outgoing connections a kern/38554 net changing interface ipaddress doesn't seem to work s kern/39937 net ipstealth issue s kern/81147 net [net] [patch] em0 reinitialization while adding aliase o kern/92552 net A serious bug in most network drivers from 5.X to 6.X s kern/95665 net [if_tun] "ping: sendto: No buffer space available" wit s kern/105943 net Network stack may modify read-only mbuf chain copies o kern/106316 net [dummynet] dummynet with multipass ipfw drops packets o kern/108542 net [bce]: Huge network latencies with 6.2-RELEASE / STABL o kern/109406 net [ndis] Broadcom WLAN driver 4.100.15.5 doesn't work wi o kern/110959 net [ipsec] Filtering incoming packets with enc0 does not o kern/112528 net [nfs] NFS over TCP under load hangs with "impossible p o kern/112686 net [patm] patm driver freezes System (FreeBSD 6.2-p4) i38 o kern/112722 net IP v4 udp fragmented packet reject o kern/113457 net [ipv6] deadlock occurs if a tunnel goes down while the o kern/113842 net [ipv6] PF_INET6 proto domain state can't be cleared wi o kern/114714 net [gre][patch] gre(4) is not MPSAFE and does not support o kern/114839 net [fxp] fxp looses ability to speak with traffic o kern/115239 net [ipnat] panic with 'kmem_map too small' using ipnat o kern/116077 net 6.2-STABLE panic during use of multi-cast networking c o kern/116185 net if_iwi driver leads system to reboot o kern/116186 net can not set wi channel on current 22 problems total. Non-critical problems S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/23063 net [PATCH] for static ARP tables in rc.network s bin/41647 net ifconfig(8) doesn't accept lladdr along with inet addr o kern/54383 net [nfs] [patch] NFS root configurations without dynamic s kern/60293 net FreeBSD arp poison patch o kern/95267 net packet drops periodically appear f kern/95277 net [netinet] [patch] IP Encapsulation mask_match() return o kern/100519 net [netisr] suggestion to fix suboptimal network polling o kern/102035 net [plip] plip networking disables parallel port printing o conf/102502 net [patch] ifconfig name does't rename netgraph node in n o kern/103253 net inconsistent behaviour in arp reply of a bridge o conf/107035 net [patch] bridge interface given in rc.conf not taking a o kern/112654 net [pcn] Kernel panic upon if_pcn module load on a Netfin o kern/114095 net [carp] carp+pf delay with high state limit o kern/114915 net [patch] [pcn] pcn (sys/pci/if_pcn.c) ethernet driver f 14 problems total. From owner-freebsd-net@FreeBSD.ORG Mon Sep 17 12:37:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5F99216A468; Mon, 17 Sep 2007 12:37:47 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36]) by mx1.freebsd.org (Postfix) with ESMTP id B407B13C48A; Mon, 17 Sep 2007 12:37:46 +0000 (UTC) (envelope-from keramida@freebsd.org) Received: from kobe.laptop (dialup167.ach.sch.gr [81.186.70.167]) (authenticated bits=128) by igloo.linux.gr (8.14.1/8.14.1/Debian-9) with ESMTP id l8HCbKMa000895 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 17 Sep 2007 15:37:35 +0300 Received: from kobe.laptop (kobe.laptop [127.0.0.1]) by kobe.laptop (8.14.1/8.14.1) with ESMTP id l8HCbItA002873; Mon, 17 Sep 2007 15:37:19 +0300 (EEST) (envelope-from keramida@freebsd.org) Received: (from keramida@localhost) by kobe.laptop (8.14.1/8.14.1/Submit) id l8HCbG9Y002872; Mon, 17 Sep 2007 15:37:16 +0300 (EEST) (envelope-from keramida@freebsd.org) Date: Mon, 17 Sep 2007 15:37:16 +0300 From: Giorgos Keramidas To: Tom Judge , Nuno Antunes Message-ID: <20070917123715.GB2648@kobe.laptop> References: <20070910115636.GA8326@kobe.laptop> <46EE4CC8.4000906@tomjudge.com> <262949390709170313t649a40d2n5b0598a8bcc034a7@mail.gmail.com> <46E11515.8090007@tomjudge.com> <46E174DB.8070004@FreeBSD.org> <20070907185757.GA25624@kobe.laptop> <262949390709091803s507265e6mf3929c4dd26ecc56@mail.gmail.com> <20070910110528.GB2476@kobe.laptop> <20070910115636.GA8326@kobe.laptop> <46EE4CC8.4000906@tomjudge.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <262949390709170313t649a40d2n5b0598a8bcc034a7@mail.gmail.com> <46EE4CC8.4000906@tomjudge.com> X-Hellug-MailScanner: Found to be clean X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-4.094, required 5, autolearn=not spam, ALL_TRUSTED -1.80, AWL 0.30, BAYES_00 -2.60) X-Hellug-MailScanner-From: keramida@freebsd.org X-Spam-Status: No Cc: freebsd-net@freebsd.org, "Bruce M. Simpson" Subject: Re: Strange behaviour of route command X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Sep 2007 12:37:47 -0000 On 2007-09-17 10:45, Tom Judge wrote: >Giorgos Keramidas wrote: >>On 2007-09-10 14:05, Giorgos Keramidas wrote: >>>On 2007-09-10 02:03, Nuno Antunes wrote: >>>>>> Tom Judge wrote: >>>>>>> Hi, >>>>>>> While making some changes to the routing table on one of our routers >>>>>>> today I noticed that "route add" was showing some strange >>>>>>> behaviour. When adding a route for 128/8 to the table rather than >>>>>>> adding 128.0.0.0/8 it would add 0.0.0.0/8, however adding 10/9 works >>>>>>> correctly. >>>>>>> >>>>>>> Is this a bug in route or the routing table? >>>> >>>> Hi, >>>> Can you take a look at this patch, please? >>>> >>>> http://leaf.dragonflybsd.org/mailarchive/submit/2007-09/msg00000.html >>> >>> Fantastic, thanks for the pointer! :-) > > Is there any chance of getting this commited, or should I raise a PR > about this? I'm not an src-committer, so we have to get an approval from Bruce first, but the patch is saved in my online patch queue: http://hg.hellug.gr/freebsd/src-keramida/file/08d313afdc9a/ The patch is the file called 'route'. On 2007-09-17 11:13, Nuno Antunes wrote: > BTW, there's also a fix for netstat to print CIDR network addresses correctly: > http://leaf.dragonflybsd.org/mailarchive/submit/2007-09/msg00005.html Neat, yeah I noticed that too, while looking at the threads about route/netstat. I just came back from a trip and I will have some time to see how much of it applies to FreeBSD's netstat too. Thanks once more :) From owner-freebsd-net@FreeBSD.ORG Tue Sep 18 12:30:36 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7788A16A41A for ; Tue, 18 Sep 2007 12:30:36 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from bavaria.utcluj.ro (unknown [IPv6:2001:b30:5000:2:20e:cff:fe4b:ca01]) by mx1.freebsd.org (Postfix) with ESMTP id E052813C481 for ; Tue, 18 Sep 2007 12:30:35 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from localhost (localhost [127.0.0.1]) by bavaria.utcluj.ro (Postfix) with ESMTP id CF8AA50870; Tue, 18 Sep 2007 15:30:34 +0300 (EEST) X-Virus-Scanned: by the daemon playing with your mail on local.mail.utcluj.ro Received: from bavaria.utcluj.ro ([127.0.0.1]) by localhost (bavaria.utcluj.ro [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aJyfryRwgcVA; Tue, 18 Sep 2007 15:30:28 +0300 (EEST) Received: from [193.226.5.46] (hades.utcluj.ro [193.226.5.46]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by bavaria.utcluj.ro (Postfix) with ESMTP id 6E1DA50884; Tue, 18 Sep 2007 15:30:28 +0300 (EEST) Message-ID: <46EFC4E3.7090205@net.utcluj.ro> Date: Tue, 18 Sep 2007 15:30:27 +0300 From: Cristian KLEIN User-Agent: Thunderbird 1.5.0.13 (X11/20070824) MIME-Version: 1.0 To: Mohacsi Janos References: <20070824095600.B41622@mignon.ki.iif.hu> In-Reply-To: <20070824095600.B41622@mignon.ki.iif.hu> X-Enigmail-Version: 0.94.2.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: hlh@restart.be, freebsd-net@freebsd.org Subject: Re: Wrong order in rc.d (pf and ipv6) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Sep 2007 12:30:36 -0000 Mohacsi Janos wrote: > Hi Henri, > I am not on the list of freebsd-net therefore I send you off list > the answers. FreeBSD-pf team rather reluctant to change the order. I > sent a PR about this a while ago: > http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/113650 > > Solution is use "(if_name)" in pf rules. pf will use after interface > gets ipv6 address. Somewhat on the same subject, do you happen to know a solution if one uses "self", either in a ruleset or in a table? From owner-freebsd-net@FreeBSD.ORG Wed Sep 19 14:59:51 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0531C16A41A for ; Wed, 19 Sep 2007 14:59:51 +0000 (UTC) (envelope-from fabien.thomas@netasq.com) Received: from netasq.netasq.com (netasq.netasq.com [213.30.137.178]) by mx1.freebsd.org (Postfix) with ESMTP id CF7C913C48A for ; Wed, 19 Sep 2007 14:59:50 +0000 (UTC) (envelope-from fabien.thomas@netasq.com) Received: from [10.20.1.5] (unknown [10.0.0.126]) by netasq.netasq.com (Postfix) with ESMTP id 8443A30D16; Wed, 19 Sep 2007 16:59:49 +0200 (CEST) Mime-Version: 1.0 (Apple Message framework v752.3) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Fabien THOMAS Date: Wed, 19 Sep 2007 16:59:49 +0200 To: freebsd-net@freebsd.org X-Mailer: Apple Mail (2.752.3) Cc: Vlad GALU Subject: pollng: pcap bench X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Sep 2007 14:59:51 -0000 Result of pcap benchmark requested by Vlad Galu: Using polling is better. Test setup: --------------- netblast -- em|fxp -- pcap_bmark under FreeBSD 6.2 Small product (fxp interface): --------------------------------------- pollng: Captured 30322.00 pps (total of 333542) and dropped 144 Captured 30358.45 pps (total of 333943) and dropped 219 Captured 30253.18 pps (total of 332785) and dropped 151 Captured 30276.82 pps (total of 333045) and dropped 88 Captured 30362.64 pps (total of 333989) and dropped 369 intr: Captured 0.01 pps (total of 6877442) and dropped 6876215 completly stuck with intr mode so the period take more than 10s. Large product (em interface): --------------------------------------- pollng: Captured 114669.09 pps (total of 1261360) and dropped 0 Captured 115263.18 pps (total of 1267895) and dropped 0 Captured 115226.45 pps (total of 1267491) and dropped 0 Captured 115003.64 pps (total of 1265040) and dropped 0 intr: Captured 99091.91 pps (total of 1090011) and dropped 629467 Captured 105180.64 pps (total of 1156987) and dropped 617526 Captured 99722.36 pps (total of 1096946) and dropped 607367 Captured 104180.91 pps (total of 1145990) and dropped 626567 From owner-freebsd-net@FreeBSD.ORG Wed Sep 19 23:35:53 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 00FF816A417 for ; Wed, 19 Sep 2007 23:35:53 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id 99F2E13C459 for ; Wed, 19 Sep 2007 23:35:52 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 77672 invoked by uid 1002); 19 Sep 2007 23:09:11 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 11.360315 secs); 19 Sep 2007 23:09:11 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 19 Sep 2007 23:08:59 -0000 Message-ID: <46F1AC0B.9040109@ibctech.ca> Date: Wed, 19 Sep 2007 19:08:59 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: freebsd-net@freebsd.org X-Enigmail-Version: 0.95.3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Sep 2007 23:35:53 -0000 Hi all, First off, sorry for being so verbose, but any reply to any portion will help me! I was referred to this list from over at -isp/-questions after a question I asked regarding the viability of an ISP using Quagga under FreeBSD as a border router. Many suggested OpenBGP and OpenOSPF as alternatives, but for now, I'll stick with Quagga as it makes it easier for me, and other staff to follow the Cisco-style configuration. I have a few questions to ask however. Here is my scenario and minimum requirements: - two upstreams, BGP, accepting default-originate only, advertising my /21 v4 and /32 v6 - 8 Ethernet interfaces - two of said interfaces will be under the control of mpd4, multi-linking two ADSL connections - one will be connected to a 100Mbps fibre-to-Ethernet converter for a LANx connection - rest will be to a mix of 100Mb and 1000Mb switches, and behind those: -- ~50 SDSL 1Mbps clients -- ~6 Port Master 3's, 48 56K modems per -- a few very heavily utilized DNS servers -- about 300 websites across about 10 servers -- a handful of co-lo boxes -- an email infrastructure that realizes ~1 million emails per day -- other things I've forgotten What I'd like to know beyond learning (from this list) that anything more than a dual-core is futile, what hardware should I be looking at? I already have my router config pretty well done, on a flash memory card, so in particular: - is 64 bit CPU advantageous for anything more than the 4GB memory limit - is there a benefit to having more than 2GB of memory, and if so, what are said benefits - is there a specific motherboard that I should look at - is there specific NIC's I should look at (of course, dual or quad 1Gbps, but what brand/model) Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps 8 RAM slots (if I can find justification that my router will work better with up to 16GB of memory). On the software side, many people suggested OpenBGP to me as opposed to Quagga, but I really didn't hear any 'technical' reason as to the recommendation, so I'm *very* interested to hear of any benchmarks or personal experience from anyone who has switched from one to the other. Another thing...what do you recommend as far as measuring pps and Kbps within FreeBSD? Thanks in advance for any advice whatsoever! Steve From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 00:52:44 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 360B416A419 for ; Thu, 20 Sep 2007 00:52:44 +0000 (UTC) (envelope-from netslists@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.174]) by mx1.freebsd.org (Postfix) with ESMTP id A31A213C46C for ; Thu, 20 Sep 2007 00:52:43 +0000 (UTC) (envelope-from netslists@gmail.com) Received: by ug-out-1314.google.com with SMTP id a2so397543ugf for ; Wed, 19 Sep 2007 17:52:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; bh=uhpxtcS1m+z6E3TYnoT0HbGXUGPYnOInYKOLAI+syto=; b=fl4MZkZUmnShpzXJOWWkoSoW9K6/tDZu3OI3owsqXmSC78PZcHEQnTz0zPIb03Ec8lrNqJXtOZ7v3FvCuL4jZAmPiARR0VOYaCxQXYBOyQAvw5Rbf1d/rANsByUPYAjkhm3uEe05aQWfqMyT1hgJkY4pqrVvwwpauRJ8JvoiRsE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=IZVu41rZZSSepYokNFjv3B2ZrwQzsNcMLKVkj+GSk+atyRc6Mr23gvsAVtwpp7ZteJev2o8UTWn5XvdJhuxTvYw5lmk4ySWg/j2Ay9Aeg2MEhkByII1nUFGKKSMMvT92uRx3opJS4ZRyWdimBKT5wz811WXw0BTqhOGCXIYl4Ak= Received: by 10.67.31.5 with SMTP id i5mr218228ugj.1190247912532; Wed, 19 Sep 2007 17:25:12 -0700 (PDT) Received: from ?192.168.17.8? ( [91.135.49.237]) by mx.google.com with ESMTPS id m1sm1575182ugc.2007.09.19.17.25.10 (version=SSLv3 cipher=RC4-MD5); Wed, 19 Sep 2007 17:25:11 -0700 (PDT) Message-ID: <46F1BDE1.8090102@gmail.com> Date: Thu, 20 Sep 2007 02:25:05 +0200 From: Sten Daniel Soersdal User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Steve Bertrand References: <46F1AC0B.9040109@ibctech.ca> In-Reply-To: <46F1AC0B.9040109@ibctech.ca> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 00:52:44 -0000 Steve Bertrand wrote: > Hi all, > > First off, sorry for being so verbose, but any reply to any portion will > help me! > > I was referred to this list from over at -isp/-questions after a > question I asked regarding the viability of an ISP using Quagga under > FreeBSD as a border router. > > Many suggested OpenBGP and OpenOSPF as alternatives, but for now, I'll > stick with Quagga as it makes it easier for me, and other staff to > follow the Cisco-style configuration. > > I have a few questions to ask however. > > Here is my scenario and minimum requirements: > > - two upstreams, BGP, accepting default-originate only, advertising my > /21 v4 and /32 v6 > - 8 Ethernet interfaces > - two of said interfaces will be under the control of mpd4, > multi-linking two ADSL connections > - one will be connected to a 100Mbps fibre-to-Ethernet converter for a > LANx connection > - rest will be to a mix of 100Mb and 1000Mb switches, and behind those: > > -- ~50 SDSL 1Mbps clients > -- ~6 Port Master 3's, 48 56K modems per > -- a few very heavily utilized DNS servers > -- about 300 websites across about 10 servers > -- a handful of co-lo boxes > -- an email infrastructure that realizes ~1 million emails per day > -- other things I've forgotten > > What I'd like to know beyond learning (from this list) that anything > more than a dual-core is futile, what hardware should I be looking at? I > already have my router config pretty well done, on a flash memory card, > so in particular: > > - is 64 bit CPU advantageous for anything more than the 4GB memory limit I am no authority on this but I'd like to theorize (maybe someone will enlighten me afterwards); It could be beneficial for v6 processing but then i think you might be hurt more from pushing/popping "twice" as much data on the stack the on a context switch. You will be doing a lot of those, unless you use polling. > > - is there a benefit to having more than 2GB of memory, and if so, what > are said benefits Not unless you want to pull in the entire world through those bgp peers, but since you use default-originate only, this shouldn't be a problem. But that could imply that you are going to do attempt active load balancing on those two peer links. If so, you should be aware that such load balancing must be done manually by some other method (pf? ng?) > > - is there a specific motherboard that I should look at One with the least amount of IRQ's that need to be shared with your ethernets. You might want to consider AMD cpu's with enormous caches and low memory latency (but also sometimes lower bandwidth). There will be a lot of tiny packets that go in and out of memory, not large chunks. One could say you would benefit more from a speedy sportster than a U-Haul truck. The large caches would benefit you on all those context switches. > > - is there specific NIC's I should look at (of course, dual or quad > 1Gbps, but what brand/model) Intel! Intel? oh yeah, Intel. > > Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps > 8 RAM slots (if I can find justification that my router will work better > with up to 16GB of memory). I can't think of a reason why it would go faster with 16GB of memory. Memory for packets live in kernel space. Usable kernel address space isn't big as it has to be shared with application address space. > > On the software side, many people suggested OpenBGP to me as opposed to > Quagga, but I really didn't hear any 'technical' reason as to the > recommendation, so I'm *very* interested to hear of any benchmarks or > personal experience from anyone who has switched from one to the other. I haven't had the pleasure of using OpenBGPD much as it was not available when i used Quagga. Quagga has several architectural issues involving importing lots of routes. Way back then, Quagga could disconnect peers just simply because the initial route "flooding" took too much time. Peer communication (keep alives) and route importing/structure updates were not separate threads. Also Quagga used up a lot more memory for it's structures for no gain. These things might have changed. But OpenBGPD doesn't look like an alternative for you, if you are using ipv6 as it only supports ipv4 route distribution (according to man pages) > > Another thing...what do you recommend as far as measuring pps and Kbps > within FreeBSD? > > Thanks in advance for any advice whatsoever! > > Steve > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > -- Sten Daniel Soersdal From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 03:29:10 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2D20716A417 for ; Thu, 20 Sep 2007 03:29:10 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outN.internet-mail-service.net (outN.internet-mail-service.net [216.240.47.237]) by mx1.freebsd.org (Postfix) with ESMTP id ECC7713C459 for ; Thu, 20 Sep 2007 03:29:09 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Wed, 19 Sep 2007 20:29:09 -0700 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id A44C0126428; Wed, 19 Sep 2007 20:29:08 -0700 (PDT) Message-ID: <46F1E900.7070604@elischer.org> Date: Wed, 19 Sep 2007 20:29:04 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Sten Daniel Soersdal References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> In-Reply-To: <46F1BDE1.8090102@gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: Steve Bertrand , freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 03:29:10 -0000 Sten Daniel Soersdal wrote: > Steve Bertrand wrote: >> >> Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps >> 8 RAM slots (if I can find justification that my router will work better >> with up to 16GB of memory). Why would you go with PCI-X? it's slow and getting end-of life.. go for PCI-Express. there are quad PCI-E gigabit cards available. Much lower packet latency. From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 04:04:18 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4508C16A41B for ; Thu, 20 Sep 2007 04:04:18 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id D349013C45D for ; Thu, 20 Sep 2007 04:04:17 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 88492 invoked by uid 1002); 20 Sep 2007 04:04:16 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 11.354236 secs); 20 Sep 2007 04:04:16 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 20 Sep 2007 04:04:05 -0000 Message-ID: <46F1F136.3010203@ibctech.ca> Date: Thu, 20 Sep 2007 00:04:06 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Sten Daniel Soersdal References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> In-Reply-To: <46F1BDE1.8090102@gmail.com> X-Enigmail-Version: 0.95.3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 04:04:18 -0000 I'm going to reply this first response in full context, and Cc my colleague so he can see this. Please reply-all as he is not subscribed, and remove anything not in context from here on out... >> Here is my scenario and minimum requirements: >> >> - two upstreams, BGP, accepting default-originate only, advertising my >> /21 v4 and /32 v6 >> - 8 Ethernet interfaces >> - two of said interfaces will be under the control of mpd4, >> multi-linking two ADSL connections >> - one will be connected to a 100Mbps fibre-to-Ethernet converter for a >> LANx connection >> - rest will be to a mix of 100Mb and 1000Mb switches, and behind those: >> >> -- ~50 SDSL 1Mbps clients >> -- ~6 Port Master 3's, 48 56K modems per >> -- a few very heavily utilized DNS servers >> -- about 300 websites across about 10 servers >> -- a handful of co-lo boxes >> -- an email infrastructure that realizes ~1 million emails per day >> -- other things I've forgotten >> >> What I'd like to know beyond learning (from this list) that anything >> more than a dual-core is futile, what hardware should I be looking at? I >> already have my router config pretty well done, on a flash memory card, >> so in particular: >> >> - is 64 bit CPU advantageous for anything more than the 4GB memory limit > > I am no authority on this but I'd like to theorize (maybe someone will > enlighten me afterwards); > It could be beneficial for v6 processing but then i think you might be > hurt more from pushing/popping "twice" as much data on the stack the on > a context switch. You will be doing a lot of those, unless you use polling. Can you please explain in a technical way how polling can benefit me here in a dual-stacked situation? In all honesty, the last few months, I've been seeing many mails to the lists saying 'polling' has caused issues. (I'm not arguing, I'm just looking for reason ;) >> - is there a benefit to having more than 2GB of memory, and if so, what >> are said benefits > > Not unless you want to pull in the entire world through those bgp peers, > but since you use default-originate only, this shouldn't be a problem. I am only planning on receiving default-only. However, AFAIK, a substantial enough Cisco router can house the entire v4 route table via BGP with 1GB of memory. I would like to ensure that this worse-case-scenario is possible with this FBSD box, even though it's not on the table...yet. > But that could imply that you are going to do attempt active load > balancing on those two peer links. If so, you should be aware that such > load balancing must be done manually by some other method (pf? ng?) No plan on load balancing. It's all based on 100% failover. Thank you for the input, so if I ever do need to do load balancing, it has been already planned in a manual configuration as you stated, however via BGP. I'll break up my aggregate as an absolute LAST resort. (Essentially, in regards to v4, I will NOT advertise anything smaller than my allocated block...period). >> - is there a specific motherboard that I should look at > > One with the least amount of IRQ's that need to be shared with your > ethernets. I'm not a hardware person. I'd rather have a name brand and model as opposed to those terms ;) (sorry). > You might want to consider AMD cpu's with enormous caches and low memory > latency (but also sometimes lower bandwidth). There will be a lot of > tiny packets that go in and out of memory, not large chunks. One could > say you would benefit more from a speedy sportster than a U-Haul truck. > The large caches would benefit you on all those context switches. Thank you... >> - is there specific NIC's I should look at (of course, dual or quad >> 1Gbps, but what brand/model) > Intel! > Intel? > oh yeah, Intel. LOL. My partner will recognize this statement :) >> Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps >> 8 RAM slots (if I can find justification that my router will work better >> with up to 16GB of memory). > > I can't think of a reason why it would go faster with 16GB of memory. > Memory for packets live in kernel space. Usable kernel address space > isn't big as it has to be shared with application address space. Ok. >> On the software side, many people suggested OpenBGP to me as opposed to >> Quagga, but I really didn't hear any 'technical' reason as to the >> recommendation, so I'm *very* interested to hear of any benchmarks or >> personal experience from anyone who has switched from one to the other. > > I haven't had the pleasure of using OpenBGPD much as it was not > available when i used Quagga. Quagga has several architectural issues > involving importing lots of routes. Way back then, Quagga could > disconnect peers just simply because the initial route "flooding" took > too much time. Peer communication (keep alives) and route > importing/structure updates were not separate threads. > Also Quagga used up a lot more memory for it's structures for no gain. > These things might have changed. > But OpenBGPD doesn't look like an alternative for you, if you are using > ipv6 as it only supports ipv4 route distribution (according to man pages) IPv6 is an absolute MANDATORY requirement. If a recommendation does not support IPv6, than it will NOT fit into my environment. Thank you for your detailed response! Steve From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 04:13:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6971E16A41B for ; Thu, 20 Sep 2007 04:13:54 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id E6BAA13C4A7 for ; Thu, 20 Sep 2007 04:13:53 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 88821 invoked by uid 1002); 20 Sep 2007 04:13:53 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 11.268814 secs); 20 Sep 2007 04:13:53 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 20 Sep 2007 04:13:41 -0000 Message-ID: <46F1F376.3020609@ibctech.ca> Date: Thu, 20 Sep 2007 00:13:42 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Julian Elischer References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> In-Reply-To: <46F1E900.7070604@elischer.org> X-Enigmail-Version: 0.95.3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org, Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 04:13:54 -0000 >>> Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps >>> 8 RAM slots (if I can find justification that my router will work better >>> with up to 16GB of memory). > > Why would you go with PCI-X? it's slow and getting end-of life.. > > go for PCI-Express. > there are quad PCI-E gigabit cards available. > Much lower packet latency. As per my last email to Sten and the list... I'm not a hardware person. PCI-E, PCI-X, I don't know the difference. It was assumed that others would understand what I wanted and be able to make recommendations to me, and correct me on my terminology. All I do know is that there is something more than ISA slots, and 386's now ;) My request wasn't for clarification on motherboard technicalities, it was essentially a request on a recommendation for a hardware/software platform based on FreeBSD, that could possibly replace a Cisco 7206-VXR based on the NPE-G2 processing engine (or equivalent). Steve From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 07:09:53 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8A69E16A417 for ; Thu, 20 Sep 2007 07:09:53 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from bavaria.utcluj.ro (unknown [IPv6:2001:b30:5000:2:20e:cff:fe4b:ca01]) by mx1.freebsd.org (Postfix) with ESMTP id E09B313C442 for ; Thu, 20 Sep 2007 07:09:52 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from localhost (localhost [127.0.0.1]) by bavaria.utcluj.ro (Postfix) with ESMTP id 9C39C50871; Thu, 20 Sep 2007 10:09:51 +0300 (EEST) X-Virus-Scanned: by the daemon playing with your mail on local.mail.utcluj.ro Received: from bavaria.utcluj.ro ([127.0.0.1]) by localhost (bavaria.utcluj.ro [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N3Ly0E18D3ic; Thu, 20 Sep 2007 10:09:48 +0300 (EEST) Received: from [172.27.2.200] (c7.campus.utcluj.ro [193.226.6.226]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by bavaria.utcluj.ro (Postfix) with ESMTP id 7C11250884; Thu, 20 Sep 2007 10:09:48 +0300 (EEST) Message-ID: <46F21CBC.2060506@net.utcluj.ro> Date: Thu, 20 Sep 2007 10:09:48 +0300 From: Cristian KLEIN User-Agent: Thunderbird 1.5.0.13 (X11/20070824) MIME-Version: 1.0 To: Steve Bertrand References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1F136.3010203@ibctech.ca> In-Reply-To: <46F1F136.3010203@ibctech.ca> X-Enigmail-Version: 0.94.2.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org, Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 07:09:53 -0000 Steve Bertrand wrote: >> But OpenBGPD doesn't look like an alternative for you, if you are using >> ipv6 as it only supports ipv4 route distribution (according to man pages) > > IPv6 is an absolute MANDATORY requirement. If a recommendation does not > support IPv6, than it will NOT fit into my environment. I'm curious. Has anybody tried xorp? Is it competitive when used in environments with many routes? It does support both IPv4 and IPv6. From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 07:24:16 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 88CD816A421 for ; Thu, 20 Sep 2007 07:24:16 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.freebsd.org (Postfix) with ESMTP id 1D1B913C4DE for ; Thu, 20 Sep 2007 07:24:15 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: by elvis.mu.org (Postfix, from userid 1192) id 911741A4D7C; Thu, 20 Sep 2007 00:24:09 -0700 (PDT) Date: Thu, 20 Sep 2007 00:24:09 -0700 From: Alfred Perlstein To: Steve Bertrand Message-ID: <20070920072409.GT79417@elvis.mu.org> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <46F1F376.3020609@ibctech.ca> User-Agent: Mutt/1.4.2.3i Cc: mattr@eagle.ca, freebsd-net@freebsd.org, Julian Elischer , Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 07:24:16 -0000 * Steve Bertrand [070919 21:14] wrote: > >>> Essentially, I'd like a board with at *least* 6 PCI-X slots, and perhaps > >>> 8 RAM slots (if I can find justification that my router will work better > >>> with up to 16GB of memory). > > > > Why would you go with PCI-X? it's slow and getting end-of life.. > > > > go for PCI-Express. > > there are quad PCI-E gigabit cards available. > > Much lower packet latency. > > As per my last email to Sten and the list... > > I'm not a hardware person. PCI-E, PCI-X, I don't know the difference. > > It was assumed that others would understand what I wanted and be able to > make recommendations to me, and correct me on my terminology. > > All I do know is that there is something more than ISA slots, and 386's > now ;) > > My request wasn't for clarification on motherboard technicalities, it > was essentially a request on a recommendation for a hardware/software > platform based on FreeBSD, that could possibly replace a Cisco 7206-VXR > based on the NPE-G2 processing engine (or equivalent). Juniper is based on FreeBSD. ;-) -- - Alfred Perlstein From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 22:22:28 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2AC4F16A4A0 for ; Thu, 20 Sep 2007 22:22:28 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: from mu-out-0910.google.com (mu-out-0910.google.com [209.85.134.190]) by mx1.freebsd.org (Postfix) with ESMTP id 9BF3913C459 for ; Thu, 20 Sep 2007 22:22:27 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: by mu-out-0910.google.com with SMTP id w9so732605mue for ; Thu, 20 Sep 2007 15:22:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=TBFCRJLYCm828VX/8ABfAVs773YGku1ZKIKgryjHZ/c=; b=et57mhhKr9uAmITeWDP4hM0kFxv5fIAuAQOc83/OFAiUsZyVJlDreLq5DUMicnzlHYEekI+4Lt1wPI+l9APvjrx81BRkmiupAeXrTqADlL+xPhJJBcbSuIZn5IGl3/imYE2YOxNb2N6Zyky2NVVDGzEKWqaLYCDpoC4s/MGKuRo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=OUgXXE9WKycFu1h6BBUzqs5LzuqJaI4f23Qq9pdp/4Mg64u1u7rLEQREiwYKZ4FT+ELYjWdANpuU9sY6U/r+9bix7nJ6J6rQkM9MOvbd7goseytlukgFCa2YfY+GKavAoCOaRbpgptT7PS1fNx6QZkzwTdUQEFsItrlUfqBbpQo= Received: by 10.82.100.1 with SMTP id x1mr240964bub.1190325473671; Thu, 20 Sep 2007 14:57:53 -0700 (PDT) Received: by 10.82.108.1 with HTTP; Thu, 20 Sep 2007 14:57:53 -0700 (PDT) Message-ID: <7bc80d500709201457p5be576e3hdbe0fc536493497a@mail.gmail.com> Date: Thu, 20 Sep 2007 14:57:53 -0700 From: "Christopher Chen" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Creation of carp interface on amd64 spins X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 22:22:28 -0000 Hi: I'm running 6.2-RELEASE on some Pentium D's running and amd64 port. I'm doing some mildly interesting things with vlan tagging, etc, and I want to also set up carp. On identical machines running the i386 port, this works correctly, but when running ifconfig carp0 For instance, the process just spins and can't be killed. The rest of the machine is fine, though! This is 6.2-RELEASE/amd64 running in SMP mode. Any ideas? -- Chris Chen "I want the kind of six pack you can't drink." -- Micah From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 22:33:29 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2B5E916A469 for ; Thu, 20 Sep 2007 22:33:29 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.186]) by mx1.freebsd.org (Postfix) with ESMTP id 7DA1513C458 for ; Thu, 20 Sep 2007 22:33:28 +0000 (UTC) (envelope-from max@love2party.net) Received: from dslb-088-066-001-016.pools.arcor-ip.net [88.66.1.16] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu3) with ESMTP (Nemesis), id 0MKxQS-1IYUa80Int-0008Q5; Fri, 21 Sep 2007 00:33:27 +0200 From: Max Laier Organization: FreeBSD To: freebsd-net@freebsd.org Date: Fri, 21 Sep 2007 00:32:56 +0200 User-Agent: KMail/1.9.7 References: <7bc80d500709201457p5be576e3hdbe0fc536493497a@mail.gmail.com> In-Reply-To: <7bc80d500709201457p5be576e3hdbe0fc536493497a@mail.gmail.com> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1814644.cpPTabLRq2"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200709210033.05263.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18E4Oh7Y3xV9kX5rZqbXGgzsql0vozIkcjtuEV 0u0pCutZD1Eqvrjji45Q9JgEtvvVluU3iiiJBx095CgjkWcWvI r+ECggfMvvEM6WyfvKRM5jA5N1bnprTJoq3aDnkaOs= Cc: Christopher Chen Subject: Re: Creation of carp interface on amd64 spins X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 22:33:29 -0000 --nextPart1814644.cpPTabLRq2 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 20 September 2007, Christopher Chen wrote: > Hi: > > I'm running 6.2-RELEASE on some Pentium D's running and amd64 port. > > I'm doing some mildly interesting things with vlan tagging, etc, and I > want to also set up carp. On identical machines running the i386 port, > this works correctly, but when running > > ifconfig carp0 > > For instance, the process just spins and can't be killed. The rest of > the machine is fine, though! > > This is 6.2-RELEASE/amd64 running in SMP mode. > > Any ideas? Can you tell me what "^T" or ps gives for the spinning process? Does it=20 hang in userland or kernel? Can you try to trace the ifconfig, or - if=20 the hang is in the kernel - break into the kernel debugger and get a back=20 trace for the process? =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1814644.cpPTabLRq2 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQBG8vUhXyyEoT62BG0RAkUXAJ0emn96bkMdcCEAVSk/ywbNbYQ6igCeLu4w d2Acq2kzRCEGNZJ4jIax2WE= =LieA -----END PGP SIGNATURE----- --nextPart1814644.cpPTabLRq2-- From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 22:45:44 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 805FA16A41A for ; Thu, 20 Sep 2007 22:45:44 +0000 (UTC) (envelope-from netslists@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.187]) by mx1.freebsd.org (Postfix) with ESMTP id 1F0B313C48A for ; Thu, 20 Sep 2007 22:45:43 +0000 (UTC) (envelope-from netslists@gmail.com) Received: by nf-out-0910.google.com with SMTP id b2so574178nfb for ; Thu, 20 Sep 2007 15:45:43 -0700 (PDT) Received: by 10.86.23.17 with SMTP id 17mr1232211fgw.1190280571632; Thu, 20 Sep 2007 02:29:31 -0700 (PDT) Received: from ?192.168.9.8? ( [91.135.49.10]) by mx.google.com with ESMTPS id d23sm3072237nfh.2007.09.20.02.29.30 (version=SSLv3 cipher=RC4-MD5); Thu, 20 Sep 2007 02:29:31 -0700 (PDT) Message-ID: <46F23D74.9000701@gmail.com> Date: Thu, 20 Sep 2007 11:29:24 +0200 From: Sten Daniel Soersdal User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Steve Bertrand References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1F136.3010203@ibctech.ca> In-Reply-To: <46F1F136.3010203@ibctech.ca> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 22:45:44 -0000 Steve Bertrand wrote: > Can you please explain in a technical way how polling can benefit me > here in a dual-stacked situation? In all honesty, the last few months, > I've been seeing many mails to the lists saying 'polling' has caused > issues. (I'm not arguing, I'm just looking for reason ;) I'm not saying you should use polling. I'm saying that not using polling makes for more context switches. 64bit registers are twice as large as 32bit registers. There will be a bigger penalty on stack/memory usage and therefore slower transitions from one context to another (read: handling a packet). This might be mitigated by having a very large cpu cache. It may or may not make much of a difference considering stacks are aligned, i was just theorizing. >> But that could imply that you are going to do attempt active load >> balancing on those two peer links. If so, you should be aware that such >> load balancing must be done manually by some other method (pf? ng?) > > No plan on load balancing. It's all based on 100% failover. > > Thank you for the input, so if I ever do need to do load balancing, it > has been already planned in a manual configuration as you stated, > however via BGP. I'll break up my aggregate as an absolute LAST resort. > (Essentially, in regards to v4, I will NOT advertise anything smaller > than my allocated block...period). Just curious: Is there a reason you can't advertise your entire allocated block and receive two full feeds? -- Sten Daniel Soersdal From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 22:52:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8C30F16A418 for ; Thu, 20 Sep 2007 22:52:47 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.187]) by mx1.freebsd.org (Postfix) with ESMTP id 0EAD313C465 for ; Thu, 20 Sep 2007 22:52:46 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so785915fka for ; Thu, 20 Sep 2007 15:52:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=oOvWyGW7zc1qNyaeAkEAYQMQGv//drV3a5zrnMuAZ7Q=; b=diRrXfy1fJvV5J34gEGFAfXu+UKxkKnK6wKo72wLc5aHdnyTJbwjkYbMfQdT9Bh6pUYiUD8MsKnpu9sMCt0vH57fQFPANzS3o6wydDOYYiNNKb1tl90eBh3L3lqunKp0IsZi0Gt3hWPauiQ/4tqbH/ad+nzbm+BKVDyylNFcrLY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=ruLfvGNiauIHPTFcP+EbaxZwop86BdqqPP6Vg7kY9W/eAr3ul3vFQVOCRdJYzh2a39TF/4FHuWmw7B5dwvaoxpcBiTikNiESB20tU6pMTYQtCYjMceWL/IEu47wGWlPpaTFeKAA8SxJEivxfVN9eEkmnha2mkdKRHide28p/9zc= Received: by 10.82.174.20 with SMTP id w20mr1457185bue.1190328765350; Thu, 20 Sep 2007 15:52:45 -0700 (PDT) Received: by 10.82.108.1 with HTTP; Thu, 20 Sep 2007 15:52:45 -0700 (PDT) Message-ID: <7bc80d500709201552r563a2708o9f2e63474bd55bcd@mail.gmail.com> Date: Thu, 20 Sep 2007 15:52:45 -0700 From: "Christopher Chen" To: "Max Laier" In-Reply-To: <200709210033.05263.max@love2party.net> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <7bc80d500709201457p5be576e3hdbe0fc536493497a@mail.gmail.com> <200709210033.05263.max@love2party.net> Cc: freebsd-net@freebsd.org Subject: Re: Creation of carp interface on amd64 spins X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 22:52:47 -0000 On 9/20/07, Max Laier wrote: > On Thursday 20 September 2007, Christopher Chen wrote: > > Hi: > > > > I'm running 6.2-RELEASE on some Pentium D's running and amd64 port. > > > > I'm doing some mildly interesting things with vlan tagging, etc, and I > > want to also set up carp. On identical machines running the i386 port, > > this works correctly, but when running > > > > ifconfig carp0 > > > > For instance, the process just spins and can't be killed. The rest of > > the machine is fine, though! > > > > This is 6.2-RELEASE/amd64 running in SMP mode. > > > > Any ideas? > > Can you tell me what "^T" or ps gives for the spinning process? Does it > hang in userland or kernel? Can you try to trace the ifconfig, or - if > the hang is in the kernel - break into the kernel debugger and get a back > trace for the process? Max: load: 1.62 cmd: ifconfig 920 [runnable] 0.00u 96.02s 98% 920k That's what ^T says. I'm going to reboot and ktrace it now. So here's the last few lines of the ktrace: 944 ifconfig CALL modstat(0x10a,0x7fffffffe280) 944 ifconfig RET modstat 0 944 ifconfig CALL modfnext(0x10a) 944 ifconfig RET modfnext 267/0x10b 944 ifconfig CALL modstat(0x10b,0x7fffffffe280) 944 ifconfig RET modstat 0 944 ifconfig CALL socket(0x2,0x2,0) 944 ifconfig RET socket 3 944 ifconfig CALL ioctl(0x3,SIOCIFCREATE,0x514ce0) l# lsof -p 944 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME ifconfig 944 root cwd VDIR 0,77 512 16525 /root ifconfig 944 root rtd VDIR 0,77 512 2 / ifconfig 944 root txt VREG 0,77 80296 48 /sbin/ifconfig ifconfig 944 root txt VREG 0,77 192688 116 /libexec/ld-elf.so.1 ifconfig 944 root txt VREG 0,77 7424 24794 /lib/libipx.so.3 ifconfig 944 root txt VREG 0,77 1083208 24786 /lib/libc.so.6 ifconfig 944 root 0u VCHR 0,93 0t2101 93 /dev/ttyp0 ifconfig 944 root 1u VCHR 0,93 0t2101 93 /dev/ttyp0 ifconfig 944 root 2u VCHR 0,93 0t2101 93 /dev/ttyp0 ifconfig 944 root 3u IPv4 0xffffff002d459130 0t0 UDP *:* Sorry I don't have physical access so I can't break into the kernel debugger right now. cc Your #1 Fan -- Chris Chen "I want the kind of six pack you can't drink." -- Micah From owner-freebsd-net@FreeBSD.ORG Thu Sep 20 23:54:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0B22B16A417 for ; Thu, 20 Sep 2007 23:54:30 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id A6F2513C458 for ; Thu, 20 Sep 2007 23:54:29 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id B39921CC26; Fri, 21 Sep 2007 11:54:27 +1200 (NZST) Date: Fri, 21 Sep 2007 11:54:27 +1200 From: Andrew Thompson To: FreeBSD-net Message-ID: <20070920235427.GA46172@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="fdj2RfSjLxBAspz7" Content-Disposition: inline User-Agent: Mutt/1.5.13 (2006-08-11) Cc: Subject: ifconfig patch X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Sep 2007 23:54:30 -0000 --fdj2RfSjLxBAspz7 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Hi, I have been digging into why the edsc module wasnt being loaded by ifconfig and now have a patch. A few printfs showed the problem. # ifconfig edsc0 create ifmaybeload(edsc0) trying to find if_edsc or edsc0 found @ ed Its comparing using the string length of the module name so any partial matches are going through. I have changed it so it strips the number from the interface name and uses the full string to match. I want to ask re@ soon so any feedback would be great. Andrew --fdj2RfSjLxBAspz7 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ifconfig_kldload.diff" Index: ifconfig.c =================================================================== RCS file: /home/ncvs/src/sbin/ifconfig/ifconfig.c,v retrieving revision 1.133 diff -u -p -r1.133 ifconfig.c --- ifconfig.c 13 Jun 2007 18:07:59 -0000 1.133 +++ ifconfig.c 20 Sep 2007 23:47:28 -0000 @@ -897,7 +897,7 @@ ifmaybeload(const char *name) { struct module_stat mstat; int fileid, modid; - char ifkind[35], *dp; + char ifkind[35], ifname[32], *dp; const char *cp; /* loading suppressed by the user */ @@ -911,6 +911,12 @@ ifmaybeload(const char *name) *dp = *cp; *dp = 0; + /* trim the interface number off the end */ + strcpy(ifname, name); + for (dp = ifname; *dp != 0; dp++) + if (isdigit(*dp)) + *dp = '\0'; + /* scan files in kernel */ mstat.version = sizeof(struct module_stat); for (fileid = kldnext(0); fileid > 0; fileid = kldnext(fileid)) { @@ -926,8 +932,8 @@ ifmaybeload(const char *name) cp = mstat.name; } /* already loaded? */ - if (strncmp(name, cp, strlen(cp)) == 0 || - strncmp(ifkind, cp, strlen(cp)) == 0) + if (strncmp(ifname, cp, strlen(ifname)) == 0 || + strncmp(ifkind, cp, strlen(ifkind)) == 0) return; } } --fdj2RfSjLxBAspz7-- From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 00:03:38 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8291E16A417 for ; Fri, 21 Sep 2007 00:03:38 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id 3A67E13C461 for ; Fri, 21 Sep 2007 00:03:38 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 434341CC2C; Fri, 21 Sep 2007 12:03:37 +1200 (NZST) Date: Fri, 21 Sep 2007 12:03:37 +1200 From: Andrew Thompson To: FreeBSD-net Message-ID: <20070921000337.GB46172@heff.fud.org.nz> References: <20070920235427.GA46172@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20070920235427.GA46172@heff.fud.org.nz> User-Agent: Mutt/1.5.13 (2006-08-11) Subject: Re: ifconfig patch X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 00:03:38 -0000 On Fri, Sep 21, 2007 at 11:54:27AM +1200, Andrew Thompson wrote: > Hi, > > > I have been digging into why the edsc module wasnt being loaded by > ifconfig and now have a patch. > > A few printfs showed the problem. > > # ifconfig edsc0 create > ifmaybeload(edsc0) > trying to find if_edsc or edsc0 > found @ ed > > Its comparing using the string length of the module name so any partial > matches are going through. I have changed it so it strips the number > from the interface name and uses the full string to match. > > I want to ask re@ soon so any feedback would be great. > > > Andrew > *dp = 0; > > + /* trim the interface number off the end */ > + strcpy(ifname, name); oops, that should have been strlcpy(ifname, name, sizeof(ifname)); > + for (dp = ifname; *dp != 0; dp++) > + if (isdigit(*dp)) > + *dp = '\0'; > + Andrew From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 00:39:29 2007 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2B82416A417; Fri, 21 Sep 2007 00:39:29 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (cl-162.ewr-01.us.sixxs.net [IPv6:2001:4830:1200:a1::2]) by mx1.freebsd.org (Postfix) with ESMTP id BA9CD13C494; Fri, 21 Sep 2007 00:39:28 +0000 (UTC) (envelope-from brooks@lor.one-eyed-alien.net) Received: from lor.one-eyed-alien.net (localhost [127.0.0.1]) by lor.one-eyed-alien.net (8.13.8/8.13.8) with ESMTP id l8L0dROf077482; Thu, 20 Sep 2007 19:39:27 -0500 (CDT) (envelope-from brooks@lor.one-eyed-alien.net) Received: (from brooks@localhost) by lor.one-eyed-alien.net (8.13.8/8.13.8/Submit) id l8L0dR5w077481; Thu, 20 Sep 2007 19:39:27 -0500 (CDT) (envelope-from brooks) Date: Thu, 20 Sep 2007 19:39:27 -0500 From: Brooks Davis To: Andrew Thompson Message-ID: <20070921003927.GB77167@lor.one-eyed-alien.net> References: <20070920235427.GA46172@heff.fud.org.nz> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="LpQ9ahxlCli8rRTG" Content-Disposition: inline In-Reply-To: <20070920235427.GA46172@heff.fud.org.nz> User-Agent: Mutt/1.5.15 (2007-04-06) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (lor.one-eyed-alien.net [127.0.0.1]); Thu, 20 Sep 2007 19:39:28 -0500 (CDT) Cc: FreeBSD-net Subject: Re: ifconfig patch X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 00:39:29 -0000 --LpQ9ahxlCli8rRTG Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Sep 21, 2007 at 11:54:27AM +1200, Andrew Thompson wrote: > Hi, >=20 >=20 > I have been digging into why the edsc module wasnt being loaded by > ifconfig and now have a patch. >=20 > A few printfs showed the problem. >=20 > # ifconfig edsc0 create > ifmaybeload(edsc0) > trying to find if_edsc or edsc0 > found @ ed >=20 > Its comparing using the string length of the module name so any partial > matches are going through. I have changed it so it strips the number > from the interface name and uses the full string to match. >=20 > I want to ask re@ soon so any feedback would be great. Conceptually the patch seems right. A couple comments below (I saw the str= lcpy change). -- Brooks > Index: ifconfig.c > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D > RCS file: /home/ncvs/src/sbin/ifconfig/ifconfig.c,v > retrieving revision 1.133 > diff -u -p -r1.133 ifconfig.c > --- ifconfig.c 13 Jun 2007 18:07:59 -0000 1.133 > +++ ifconfig.c 20 Sep 2007 23:47:28 -0000 > @@ -897,7 +897,7 @@ ifmaybeload(const char *name) > { > struct module_stat mstat; > int fileid, modid; > - char ifkind[35], *dp; > + char ifkind[35], ifname[32], *dp; > const char *cp; Any reason ifname[32] shouldn't be ifname[IF_NAMESIZE]? > /* loading suppressed by the user */ > @@ -911,6 +911,12 @@ ifmaybeload(const char *name) > *dp =3D *cp; > *dp =3D 0; > =20 > + /* trim the interface number off the end */ > + strcpy(ifname, name); > + for (dp =3D ifname; *dp !=3D 0; dp++) > + if (isdigit(*dp)) > + *dp =3D '\0'; > + Should the if statement terminate the loop? > /* scan files in kernel */ > mstat.version =3D sizeof(struct module_stat); > for (fileid =3D kldnext(0); fileid > 0; fileid =3D kldnext(fileid)) { > @@ -926,8 +932,8 @@ ifmaybeload(const char *name) > cp =3D mstat.name; > } > /* already loaded? */ > - if (strncmp(name, cp, strlen(cp)) =3D=3D 0 || > - strncmp(ifkind, cp, strlen(cp)) =3D=3D 0) > + if (strncmp(ifname, cp, strlen(ifname)) =3D=3D 0 || > + strncmp(ifkind, cp, strlen(ifkind)) =3D=3D 0) > return; > } > } --LpQ9ahxlCli8rRTG Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFG8xK/XY6L6fI4GtQRAq5HAJ9jO30nFT8xFw6rAtot9i8iJtYTDgCfUm1g G9nGqdh1sK0JMBO+cdF7fIU= =QCTF -----END PGP SIGNATURE----- --LpQ9ahxlCli8rRTG-- From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 00:56:27 2007 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7C8A816A417 for ; Fri, 21 Sep 2007 00:56:27 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: from heff.fud.org.nz (203-109-251-39.static.bliink.ihug.co.nz [203.109.251.39]) by mx1.freebsd.org (Postfix) with ESMTP id AAC3313C45D for ; Fri, 21 Sep 2007 00:56:26 +0000 (UTC) (envelope-from thompsa@FreeBSD.org) Received: by heff.fud.org.nz (Postfix, from userid 1001) id 6A9D71CC2F; Fri, 21 Sep 2007 12:56:23 +1200 (NZST) Date: Fri, 21 Sep 2007 12:56:23 +1200 From: Andrew Thompson To: Brooks Davis Message-ID: <20070921005623.GD46172@heff.fud.org.nz> References: <20070920235427.GA46172@heff.fud.org.nz> <20070921003927.GB77167@lor.one-eyed-alien.net> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="0eh6TmSyL6TZE2Uz" Content-Disposition: inline In-Reply-To: <20070921003927.GB77167@lor.one-eyed-alien.net> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: FreeBSD-net Subject: Re: ifconfig patch X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 00:56:27 -0000 --0eh6TmSyL6TZE2Uz Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Thu, Sep 20, 2007 at 07:39:27PM -0500, Brooks Davis wrote: > On Fri, Sep 21, 2007 at 11:54:27AM +1200, Andrew Thompson wrote: > > Hi, > > > > > > I have been digging into why the edsc module wasnt being loaded by > > ifconfig and now have a patch. > > > > A few printfs showed the problem. > > > > # ifconfig edsc0 create > > ifmaybeload(edsc0) > > trying to find if_edsc or edsc0 > > found @ ed > > > > Its comparing using the string length of the module name so any partial > > matches are going through. I have changed it so it strips the number > > from the interface name and uses the full string to match. > > > > I want to ask re@ soon so any feedback would be great. > > Conceptually the patch seems right. A couple comments below (I saw the strlcpy > change). > > -- Brooks > > > Index: ifconfig.c > > =================================================================== > > RCS file: /home/ncvs/src/sbin/ifconfig/ifconfig.c,v > > retrieving revision 1.133 > > diff -u -p -r1.133 ifconfig.c > > --- ifconfig.c 13 Jun 2007 18:07:59 -0000 1.133 > > +++ ifconfig.c 20 Sep 2007 23:47:28 -0000 > > @@ -897,7 +897,7 @@ ifmaybeload(const char *name) > > { > > struct module_stat mstat; > > int fileid, modid; > > - char ifkind[35], *dp; > > + char ifkind[35], ifname[32], *dp; > > const char *cp; > > Any reason ifname[32] shouldn't be ifname[IF_NAMESIZE]? > Should the if statement terminate the loop? fixed. I have found that the loop to create ifkind does not properly check the bounds of the passed string. I have reorganised the code to fix this, patch attached. Andrew --0eh6TmSyL6TZE2Uz Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="ifconfig_kldload2.diff" Index: ifconfig.c =================================================================== RCS file: /home/ncvs/src/sbin/ifconfig/ifconfig.c,v retrieving revision 1.133 diff -u -p -r1.133 ifconfig.c --- ifconfig.c 13 Jun 2007 18:07:59 -0000 1.133 +++ ifconfig.c 21 Sep 2007 00:49:45 -0000 @@ -897,19 +897,24 @@ ifmaybeload(const char *name) { struct module_stat mstat; int fileid, modid; - char ifkind[35], *dp; + char ifkind[IFNAMSIZ + 3], ifname[IFNAMSIZ], *dp; const char *cp; /* loading suppressed by the user */ if (noload) return; + /* trim the interface number off the end */ + strlcpy(ifname, name, sizeof(ifname)); + for (dp = ifname; *dp != 0; dp++) + if (isdigit(*dp)) { + *dp = 0; + break; + } + /* turn interface and unit into module name */ strcpy(ifkind, "if_"); - for (cp = name, dp = ifkind + 3; - (*cp != 0) && !isdigit(*cp); cp++, dp++) - *dp = *cp; - *dp = 0; + strlcpy(ifkind + 3, ifname, sizeof(ifkind) - 3); /* scan files in kernel */ mstat.version = sizeof(struct module_stat); @@ -926,8 +931,8 @@ ifmaybeload(const char *name) cp = mstat.name; } /* already loaded? */ - if (strncmp(name, cp, strlen(cp)) == 0 || - strncmp(ifkind, cp, strlen(cp)) == 0) + if (strncmp(ifname, cp, strlen(ifname)) == 0 || + strncmp(ifkind, cp, strlen(ifkind)) == 0) return; } } --0eh6TmSyL6TZE2Uz-- From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 01:19:46 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AFFB816A417 for ; Fri, 21 Sep 2007 01:19:46 +0000 (UTC) (envelope-from lists@swaggi.com) Received: from rusty.swaggy.net (rusty.swaggy.net [204.14.85.196]) by mx1.freebsd.org (Postfix) with ESMTP id 91F0913C45D for ; Fri, 21 Sep 2007 01:19:46 +0000 (UTC) (envelope-from lists@swaggi.com) Received: from localhost ([127.0.0.1] helo=swaggi.com) by rusty.swaggy.net with esmtp (Exim 4.67 (FreeBSD)) (envelope-from ) id 1IYKWt-0009gq-LK; Thu, 20 Sep 2007 07:49:12 -0400 From: "Yuri Lukin" To: Alfred Perlstein , Steve Bertrand Date: Thu, 20 Sep 2007 07:49:11 -0400 Message-Id: <20070920114839.M37866@swaggi.com> In-Reply-To: <20070920072409.GT79417@elvis.mu.org> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> <20070920072409.GT79417@elvis.mu.org> X-Mailer: swaggi.com MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Cc: mattr@eagle.ca, freebsd-net@freebsd.org, Julian Elischer , Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 01:19:46 -0000 On Thu, 20 Sep 2007 00:24:09 -0700, Alfred Perlstein wrote > > Juniper is based on FreeBSD. ;-) > On old code from the 4.x days I think, right? From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 01:28:30 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 43BE016A41B for ; Fri, 21 Sep 2007 01:28:30 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.freebsd.org (Postfix) with ESMTP id 3808713C47E for ; Fri, 21 Sep 2007 01:28:30 +0000 (UTC) (envelope-from bright@elvis.mu.org) Received: by elvis.mu.org (Postfix, from userid 1192) id 139C71A4D9A; Thu, 20 Sep 2007 18:28:30 -0700 (PDT) Date: Thu, 20 Sep 2007 18:28:30 -0700 From: Alfred Perlstein To: Yuri Lukin Message-ID: <20070921012830.GA79417@elvis.mu.org> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> <20070920072409.GT79417@elvis.mu.org> <20070920114839.M37866@swaggi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20070920114839.M37866@swaggi.com> User-Agent: Mutt/1.4.2.3i Cc: mattr@eagle.ca, Steve Bertrand , Sten Daniel Soersdal , Julian Elischer , freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 01:28:30 -0000 * Yuri Lukin [070920 16:49] wrote: > On Thu, 20 Sep 2007 00:24:09 -0700, Alfred Perlstein wrote > > > > Juniper is based on FreeBSD. ;-) > > > > On old code from the 4.x days I think, right? In the current release, yes. Would you like a router based on 5.x? :) -- - Alfred Perlstein From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 04:02:26 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 947D116A419 for ; Fri, 21 Sep 2007 04:02:26 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (e-gerbil.net [69.31.1.2]) by mx1.freebsd.org (Postfix) with ESMTP id 5B8C513C467 for ; Fri, 21 Sep 2007 04:02:26 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (ras@localhost.nlayer.net [127.0.0.1]) by gerbil.cluepon.net (8.13.8/8.13.8) with ESMTP id l8L3snhA086423; Thu, 20 Sep 2007 23:54:49 -0400 (EDT) (envelope-from ras@gerbil.cluepon.net) Received: (from ras@localhost) by gerbil.cluepon.net (8.13.8/8.13.8/Submit) id l8L3snOH086422; Thu, 20 Sep 2007 23:54:49 -0400 (EDT) (envelope-from ras) Date: Thu, 20 Sep 2007 23:54:49 -0400 From: Richard A Steenbergen To: Yuri Lukin Message-ID: <20070921035449.GC1906@gerbil.cluepon.net> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> <20070920072409.GT79417@elvis.mu.org> <20070920114839.M37866@swaggi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20070920114839.M37866@swaggi.com> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 04:02:26 -0000 On Thu, Sep 20, 2007 at 07:49:11AM -0400, Yuri Lukin wrote: > On Thu, 20 Sep 2007 00:24:09 -0700, Alfred Perlstein wrote > > > > Juniper is based on FreeBSD. ;-) > > On old code from the 4.x days I think, right? Technically no, they've been updating large portions of the FreeBSD code over time. I believe the current build is a late 5.x and a 6.x is due for public release soon in JUNOS 8.5. But at any rate, it really doesn't matter, because the FreeBSD part has absolutely bubkiss to do with routing the packets. Juniper simply took FreeBSD as an existing mature and stable OS, heavily modified it for their purposes, and slapped it onto an off-the-shelf PC for use as a control plane (running routing protocols, cli, chassis management, etc). The routes are calculated and pushed out to the forwarding hardware via Ethernet, and the packets never touch the FreeBSD based part unless they are destined for it locally (as though it was an ordinary host). Honestly, FreeBSD routing code is pretty poor as far as a modern router goes. If you throw enough CPU at it you can brute force your way through plenty of things, but in the context of modern commercial routers it doesn't even play in the same league (even for a software-only router). -- Richard A Steenbergen http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 06:15:13 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4388816A41B; Fri, 21 Sep 2007 06:15:13 +0000 (UTC) (envelope-from remko@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 23C8C13C461; Fri, 21 Sep 2007 06:15:13 +0000 (UTC) (envelope-from remko@FreeBSD.org) Received: from freefall.freebsd.org (remko@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l8L6FCsD079768; Fri, 21 Sep 2007 06:15:12 GMT (envelope-from remko@freefall.freebsd.org) Received: (from remko@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l8L6FCg2079764; Fri, 21 Sep 2007 06:15:12 GMT (envelope-from remko) Date: Fri, 21 Sep 2007 06:15:12 GMT Message-Id: <200709210615.l8L6FCg2079764@freefall.freebsd.org> To: remko@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: remko@FreeBSD.org Cc: Subject: Re: kern/116330: [nfe]: network problems under -current, nfe(4) and jumbo packets X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 06:15:13 -0000 Old Synopsis: network problems under -current, nfe(4) and jumbo packets New Synopsis: [nfe]: network problems under -current, nfe(4) and jumbo packets Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: remko Responsible-Changed-When: Fri Sep 21 06:14:55 UTC 2007 Responsible-Changed-Why: Reassign to networking group http://www.freebsd.org/cgi/query-pr.cgi?pr=116330 From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 06:16:14 2007 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5BDD916A41A; Fri, 21 Sep 2007 06:16:14 +0000 (UTC) (envelope-from remko@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id E905913C48A; Fri, 21 Sep 2007 06:16:13 +0000 (UTC) (envelope-from remko@FreeBSD.org) Received: from freefall.freebsd.org (remko@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l8L6GD79079814; Fri, 21 Sep 2007 06:16:13 GMT (envelope-from remko@freefall.freebsd.org) Received: (from remko@localhost) by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l8L6GDpq079810; Fri, 21 Sep 2007 06:16:13 GMT (envelope-from remko) Date: Fri, 21 Sep 2007 06:16:13 GMT Message-Id: <200709210616.l8L6GDpq079810@freefall.freebsd.org> To: remko@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: remko@FreeBSD.org Cc: Subject: Re: kern/116328: [bge]: Solid hang with bge interface X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 06:16:14 -0000 Old Synopsis: Solid hang with bge interface New Synopsis: [bge]: Solid hang with bge interface Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: remko Responsible-Changed-When: Fri Sep 21 06:15:58 UTC 2007 Responsible-Changed-Why: Reassign to networking team http://www.freebsd.org/cgi/query-pr.cgi?pr=116328 From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 11:46:07 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6BAA916A417 for ; Fri, 21 Sep 2007 11:46:07 +0000 (UTC) (envelope-from freebsd@meijome.net) Received: from sigma.octantis.com.au (ns2.octantis.com.au [207.44.189.124]) by mx1.freebsd.org (Postfix) with ESMTP id 328AF13C481 for ; Fri, 21 Sep 2007 11:46:06 +0000 (UTC) (envelope-from freebsd@meijome.net) Received: (qmail 3593 invoked from network); 21 Sep 2007 06:46:06 -0500 Received: from 124-170-90-150.dyn.iinet.net.au (HELO localhost) (124.170.90.150) by sigma.octantis.com.au with (DHE-RSA-AES256-SHA encrypted) SMTP; 21 Sep 2007 06:46:06 -0500 Date: Fri, 21 Sep 2007 21:46:02 +1000 From: Norberto Meijome To: Richard A Steenbergen Message-ID: <20070921214602.38487d27@meijome.net> In-Reply-To: <20070921035449.GC1906@gerbil.cluepon.net> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> <20070920072409.GT79417@elvis.mu.org> <20070920114839.M37866@swaggi.com> <20070921035449.GC1906@gerbil.cluepon.net> X-Mailer: Claws Mail 3.0.1 (GTK+ 2.10.14; i386-portbld-freebsd6.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 11:46:07 -0000 On Thu, 20 Sep 2007 23:54:49 -0400 Richard A Steenbergen wrote: > Honestly, FreeBSD routing code is pretty poor as far as a modern router > goes. If you throw enough CPU at it you can brute force your way through > plenty of things, but in the context of modern commercial routers it > doesn't even play in the same league (even for a software-only router). Interesting.... what is the golden aim of software based router we should be trying to reach? IMHO, comparing routing code in software vs. hardware routing, or vs a RTOS seems a bit useless (unless the comparison is something like 'we could do things much faster this way, but that would force us to go down the path of hard RT OS..) Which is different to saying 'well, this and that part of x and Y are inefficient / too expensive for the latest cpu models." I'm not bagging you , but there's always the balance to be had - something very flexible (as *BSD / Linux ) vs something very rigid (programmatically) but very fast / scalable... i'm interested in seeing how / whether we efficiency can be increased without losing the flexibility (of course, @ the cost of time,etc...something needs to give :D ) cheers, B _________________________ {Beto|Norberto|Numard} Meijome "He loves nature in spite of what it did to him." Forrest Tucker I speak for myself, not my employer. Contents may be hot. Slippery when wet. Reading disclaimers makes you go blind. Writing them is worse. You have been Warned. From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 12:23:47 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 14ED216A417 for ; Fri, 21 Sep 2007 12:23:47 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id 9B8D013C46A for ; Fri, 21 Sep 2007 12:23:46 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 70238 invoked by uid 1002); 21 Sep 2007 12:23:45 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 11.3624 secs); 21 Sep 2007 12:23:45 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 21 Sep 2007 12:23:33 -0000 Message-ID: <46F3B7C9.7050605@ibctech.ca> Date: Fri, 21 Sep 2007 08:23:37 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: Sten Daniel Soersdal References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1F136.3010203@ibctech.ca> <46F23D74.9000701@gmail.com> In-Reply-To: <46F23D74.9000701@gmail.com> X-Enigmail-Version: 0.95.3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 12:23:47 -0000 > I'm not saying you should use polling. I'm saying that not using polling > makes for more context switches. 64bit registers are twice as large as > 32bit registers. There will be a bigger penalty on stack/memory usage > and therefore slower transitions from one context to another (read: > handling a packet). > This might be mitigated by having a very large cpu cache. > > It may or may not make much of a difference considering stacks are > aligned, i was just theorizing. Ok, I get what you are saying now. > Just curious: Is there a reason you can't advertise your entire > allocated block and receive two full feeds? Well to be honest, there is no reason why I couldn't receive full routes with the new box. My current router couldn't handle the full route table, but any new router will be able to. Regards, Steve From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 15:52:08 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4EBCA16A417 for ; Fri, 21 Sep 2007 15:52:08 +0000 (UTC) (envelope-from bms@FreeBSD.org) Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by mx1.freebsd.org (Postfix) with ESMTP id 2320113C455 for ; Fri, 21 Sep 2007 15:52:08 +0000 (UTC) (envelope-from bms@FreeBSD.org) Received: from compute1.internal (compute1.internal [10.202.2.41]) by out1.messagingengine.com (Postfix) with ESMTP id 9984A2EAFE; Fri, 21 Sep 2007 11:52:07 -0400 (EDT) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by compute1.internal (MEProxy); Fri, 21 Sep 2007 11:52:07 -0400 X-Sasl-enc: vO8g/IDzbtz6TDF1GPFi1M1Y66V606V82fnSxUQ302WM 1190389927 Received: from empiric.lon.incunabulum.net (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTP id 9EF783496; Fri, 21 Sep 2007 11:52:06 -0400 (EDT) Message-ID: <46F3E8A5.6010304@FreeBSD.org> Date: Fri, 21 Sep 2007 16:52:05 +0100 From: "Bruce M. Simpson" User-Agent: Thunderbird 2.0.0.4 (X11/20070630) MIME-Version: 1.0 To: Steve Bertrand References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1F136.3010203@ibctech.ca> <46F23D74.9000701@gmail.com> <46F3B7C9.7050605@ibctech.ca> In-Reply-To: <46F3B7C9.7050605@ibctech.ca> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: mattr@eagle.ca, freebsd-net@freebsd.org, Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 15:52:08 -0000 Folks have been asking about XORP in this thread. XORP can take a full BGP feed just fine as long as you have enough memory.; for a full default-free-zone feed, you are looking at in the region of 1GB - 1.5GB, perhaps less if you use aggregation. If you look at the NSDI '05 paper you'll see that it has a number of benefits over existing designs, BGP route propagation in particular should be faster: http://www.usenix.org/events/nsdi05/tech/handley.html The architecture is deliberately structured so that forwarding functionality may be implemented in hardware. I believe XORP may work with the NetFPGA but don't have firm information about this. IPv6 support is strong as XORP was designed to route IPv6 from the start as a whole suite - multicast support is also strong. regards, BMS [Note: my opinion may be biased as I served on XORP core team for a few years, and still actively contribute code to the project.] From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 16:35:01 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 15D7A16A418 for ; Fri, 21 Sep 2007 16:35:01 +0000 (UTC) (envelope-from cjeker@diehard.n-r-g.com) Received: from diehard.n-r-g.com (diehard.n-r-g.com [62.48.3.9]) by mx1.freebsd.org (Postfix) with ESMTP id 787F813C455 for ; Fri, 21 Sep 2007 16:35:00 +0000 (UTC) (envelope-from cjeker@diehard.n-r-g.com) Received: (qmail 11732 invoked by uid 1001); 21 Sep 2007 16:34:59 -0000 Date: Fri, 21 Sep 2007 18:34:58 +0200 From: Claudio Jeker To: freebsd-net@freebsd.org Message-ID: <20070921163458.GC24267@diehard.n-r-g.com> Mail-Followup-To: Claudio Jeker , freebsd-net@freebsd.org References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1F136.3010203@ibctech.ca> <46F23D74.9000701@gmail.com> <46F3B7C9.7050605@ibctech.ca> <46F3E8A5.6010304@FreeBSD.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <46F3E8A5.6010304@FreeBSD.org> User-Agent: Mutt/1.5.12-2006-07-14 Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 16:35:01 -0000 On Fri, Sep 21, 2007 at 04:52:05PM +0100, Bruce M. Simpson wrote: > Folks have been asking about XORP in this thread. > > XORP can take a full BGP feed just fine as long as you have enough > memory.; for a full default-free-zone feed, you are looking at in the > region of 1GB - 1.5GB, perhaps less if you use aggregation. > Wow. That's a serious amount of memory for a single full feed. I have a OpenBGPD test box with currently 7 full feeds plus a bit of additional chicken shit consuming less than 160MB for all three bgpd daemons. Btw. the box is a 600MHz Via C3 with 512MB of RAM acting as route-viewer. > If you look at the NSDI '05 paper you'll see that it has a number of > benefits over existing designs, BGP route propagation in particular > should be faster: > http://www.usenix.org/events/nsdi05/tech/handley.html > Like XORP OpenBGPD is "event" driven and does not use timeout based route scanners for updates. That's probably why most people like the speed of OpenBGPD :) > The architecture is deliberately structured so that forwarding > functionality may be implemented in hardware. I believe XORP may work > with the NetFPGA but don't have firm information about this. > > IPv6 support is strong as XORP was designed to route IPv6 from the start > as a whole suite - multicast support is also strong. > Yes, multicast support is one of the strength of xorp. -- :wq Claudio From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 16:53:09 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CCCA916A41B; Fri, 21 Sep 2007 16:53:09 +0000 (UTC) (envelope-from SRS0=d0c8b9c90915d0208f62c239425c5d64ac37ac8e=465=es.net=oberman@es.net) Received: from postal1.es.net (postal1.es.net [IPv6:2001:400:14:3::6]) by mx1.freebsd.org (Postfix) with ESMTP id 52DAC13C457; Fri, 21 Sep 2007 16:53:07 +0000 (UTC) (envelope-from SRS0=d0c8b9c90915d0208f62c239425c5d64ac37ac8e=465=es.net=oberman@es.net) Received: from ptavv.es.net (ptavv.es.net [198.128.4.29]) by postal1.es.net (Postal Node 1) with ESMTP (SSL) id AZW23804; Fri, 21 Sep 2007 09:53:04 -0700 Received: from ptavv.es.net (ptavv.es.net [127.0.0.1]) by ptavv.es.net (Tachyon Server) with ESMTP id 7FDDB45028; Fri, 21 Sep 2007 09:53:03 -0700 (PDT) To: Alfred Perlstein In-Reply-To: Your message of "Thu, 20 Sep 2007 18:28:30 PDT." <20070921012830.GA79417@elvis.mu.org> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1190393583_67439P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Fri, 21 Sep 2007 09:53:03 -0700 From: "Kevin Oberman" Message-Id: <20070921165303.7FDDB45028@ptavv.es.net> X-Sender-IP: 198.128.4.29 X-Sender-Domain: es.net X-Recipent: ; ; ; ; ; ; ; X-Sender: X-To_Name: Alfred Perlstein X-To_Domain: freebsd.org X-To: Alfred Perlstein X-To_Email: alfred@freebsd.org X-To_Alias: alfred Cc: mattr@eagle.ca, Steve Bertrand , Julian Elischer , freebsd-net@freebsd.org, Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 16:53:09 -0000 --==_Exmh_1190393583_67439P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > Date: Thu, 20 Sep 2007 18:28:30 -0700 > From: Alfred Perlstein > Sender: owner-freebsd-net@freebsd.org > > * Yuri Lukin [070920 16:49] wrote: > > On Thu, 20 Sep 2007 00:24:09 -0700, Alfred Perlstein wrote > > > > > > Juniper is based on FreeBSD. ;-) > > > > > > > On old code from the 4.x days I think, right? > > In the current release, yes. > > Would you like a router based on 5.x? :) I would like to see NOTHING running anything that looked too much like 5.x. And I can't really think the 6.x (while much better that 5) would be a good choice for a route processor. I really, really hope that Juniper does update to 7.x in about a year, though. Routers still tend to run older CPUs in their route engines (and I don't just mean Juniper), but sooner or later they will start running on dual-core CPUs as requirements of routing in the increasingly complex Internet require more from the RE and, when that day arrives, 7.X is likely to become an urgent requirement. I rather suspect that Alfred is aware of the issues. It's also worth noting that, while JunOS is based on 4, it has many things from newer versions that they (Juniper) retrofitted into the system. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: oberman@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 --==_Exmh_1190393583_67439P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Exmh version 2.5 06/03/2002 iD8DBQFG8/bvkn3rs5h7N1ERAl/HAJwLkoxrEtj/CVqfrmioOZJzYkSu+ACfSYCa eGgR/tGoeX110pq+mZJd76E= =zobp -----END PGP SIGNATURE----- --==_Exmh_1190393583_67439P-- From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 17:10:12 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9819416A419 for ; Fri, 21 Sep 2007 17:10:12 +0000 (UTC) (envelope-from SRS0=d0c8b9c90915d0208f62c239425c5d64ac37ac8e=465=es.net=oberman@es.net) Received: from postal1.es.net (postal1.es.net [IPv6:2001:400:14:3::6]) by mx1.freebsd.org (Postfix) with ESMTP id 1C1EE13C448 for ; Fri, 21 Sep 2007 17:10:12 +0000 (UTC) (envelope-from SRS0=d0c8b9c90915d0208f62c239425c5d64ac37ac8e=465=es.net=oberman@es.net) Received: from ptavv.es.net (ptavv.es.net [198.128.4.29]) by postal1.es.net (Postal Node 1) with ESMTP (SSL) id AAF35807; Fri, 21 Sep 2007 10:10:07 -0700 Received: from ptavv.es.net (ptavv.es.net [127.0.0.1]) by ptavv.es.net (Tachyon Server) with ESMTP id 90BEF45027; Fri, 21 Sep 2007 10:10:06 -0700 (PDT) To: Norberto Meijome In-Reply-To: Your message of "Fri, 21 Sep 2007 21:46:02 +1000." <20070921214602.38487d27@meijome.net> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1190394606_67439P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Fri, 21 Sep 2007 10:10:06 -0700 From: "Kevin Oberman" Message-Id: <20070921171006.90BEF45027@ptavv.es.net> X-Sender-IP: 198.128.4.29 X-Sender-Domain: es.net X-Recipent: ; ; ; X-Sender: X-To_Name: Norberto Meijome X-To_Domain: meijome.net X-To: Norberto Meijome X-To_Email: freebsd@meijome.net X-To_Alias: freebsd Cc: freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 17:10:12 -0000 --==_Exmh_1190394606_67439P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > Date: Fri, 21 Sep 2007 21:46:02 +1000 > From: Norberto Meijome > Sender: owner-freebsd-net@freebsd.org > > On Thu, 20 Sep 2007 23:54:49 -0400 > Richard A Steenbergen wrote: > > > Honestly, FreeBSD routing code is pretty poor as far as a modern router > > goes. If you throw enough CPU at it you can brute force your way through > > plenty of things, but in the context of modern commercial routers it > > doesn't even play in the same league (even for a software-only router). > > Interesting.... what is the golden aim of software based router we should be > trying to reach? > > IMHO, comparing routing code in software vs. hardware routing, or vs a > RTOS seems a bit useless (unless the comparison is something like 'we > could do things much faster this way, but that would force us to go > down the path of hard RT OS..) Which is different to saying 'well, > this and that part of x and Y are inefficient / too expensive for the > latest cpu models." > > I'm not bagging you , but there's always the balance to be had - > something very flexible (as *BSD / Linux ) vs something very rigid > (programmatically) but very fast / scalable... i'm interested in > seeing how / whether we efficiency can be increased without losing the > flexibility (of course, @ the cost of time,etc...something needs to > give :D ) Ever run into a non-existent 'olive'? Or even a J series Juniper? Juniper put together a very impressive software based routing system that is FreeBSD based. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: oberman@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 --==_Exmh_1190394606_67439P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Exmh version 2.5 06/03/2002 iD8DBQFG8/rukn3rs5h7N1ERAgCIAJ9KSIR2NcX96NYNuKBwEzDv8gihwACePXe1 VK0PFFrmK3QMTKvaPJDpeFo= =T1D5 -----END PGP SIGNATURE----- --==_Exmh_1190394606_67439P-- From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 17:47:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ABA4A16A417 for ; Fri, 21 Sep 2007 17:47:52 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (e-gerbil.net [69.31.1.2]) by mx1.freebsd.org (Postfix) with ESMTP id 5085613C459 for ; Fri, 21 Sep 2007 17:47:51 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (ras@localhost.nlayer.net [127.0.0.1]) by gerbil.cluepon.net (8.13.8/8.13.8) with ESMTP id l8LIA6Rr097483; Fri, 21 Sep 2007 14:10:06 -0400 (EDT) (envelope-from ras@gerbil.cluepon.net) Received: (from ras@localhost) by gerbil.cluepon.net (8.13.8/8.13.8/Submit) id l8LIA6Ju097482; Fri, 21 Sep 2007 14:10:06 -0400 (EDT) (envelope-from ras) Date: Fri, 21 Sep 2007 14:10:06 -0400 From: Richard A Steenbergen To: Norberto Meijome Message-ID: <20070921181006.GG1906@gerbil.cluepon.net> References: <46F1AC0B.9040109@ibctech.ca> <46F1BDE1.8090102@gmail.com> <46F1E900.7070604@elischer.org> <46F1F376.3020609@ibctech.ca> <20070920072409.GT79417@elvis.mu.org> <20070920114839.M37866@swaggi.com> <20070921035449.GC1906@gerbil.cluepon.net> <20070921214602.38487d27@meijome.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20070921214602.38487d27@meijome.net> User-Agent: Mutt/1.5.13 (2006-08-11) Cc: freebsd-net@freebsd.org Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 17:47:52 -0000 On Fri, Sep 21, 2007 at 09:46:02PM +1000, Norberto Meijome wrote: > Richard A Steenbergen wrote: > > > Honestly, FreeBSD routing code is pretty poor as far as a modern router > > goes. If you throw enough CPU at it you can brute force your way through > > plenty of things, but in the context of modern commercial routers it > > doesn't even play in the same league (even for a software-only router). > > Interesting.... what is the golden aim of software based router we should be > trying to reach? Well for starters, to have a routing stack that is based on any modern techniques developed in the last 20 years or so. It may not even matter, there is plenty to FreeBSD that has absolutely nothing to do with routing, and if all you're doing is throw 5Mbps at a core 2 duo it really doesn't matter how the routing code is implemented. :) There are plenty of good folks who understand all of this perfectly well (for example Andre Oppermann), who are working hard to modernize fbsd's routing code, so I have full faith that it will be fixed eventually. :) On Fri, Sep 21, 2007 at 10:10:06AM -0700, Kevin Oberman wrote: > > Ever run into a non-existent 'olive'? Or even a J series Juniper? > Juniper put together a very impressive software based routing system > that is FreeBSD based. Ever tried to use an Olive for anything more than a cute lab trick or route-server? Everything important is missing, because there has been no reason for Juniper to implement it for the FreeBSD based portion. J-series doesn't change any of this, all they did was implement a software emulator for the regular PFE so that the standard JUNOS hooks could all still be used in the same way. The packets still don't touch the FreeBSD part, and nothing Juniper has done has "improved" the routing subsystems in any significant way. Mind you I'm not bashing fbsd here, I love fbsd, and Juniper's choice of FreeBSD for what it uses it for couldn't be any better suited. But lets not get carried away with generalities and perpetuating mistaken beliefs about what Juniper does or does not do with fbsd. Denying the reality that the routing code is old and antiquated doesn't help anyone, and even Linux has started to randomly wander in to the right direction. :P -- Richard A Steenbergen http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 22:34:52 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D217D16A468 for ; Fri, 21 Sep 2007 22:34:52 +0000 (UTC) (envelope-from souleorama@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.177]) by mx1.freebsd.org (Postfix) with ESMTP id 87D3413C43E for ; Fri, 21 Sep 2007 22:34:52 +0000 (UTC) (envelope-from souleorama@gmail.com) Received: by py-out-1112.google.com with SMTP id u77so1887165pyb for ; Fri, 21 Sep 2007 15:34:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:mime-version:content-type:x-google-sender-auth; bh=DdveQh3mlCdYC2kKa3LEBwvt0FcKO/OMgzjqTV+BMd4=; b=NU8l4xkGFEjhQBm8MIcbSTVtgKuc+qGkkja9iLPsNQ5DGDjWizC9OO6Gq/rjaBXTPBXxK3pgQzxZcFw/QfuatdbdS3CB8YtvBd7JG1RrJCVakk2oZH9M6slcaV5TjnppmZyaBCfpWhuqBFzoUk5ueuddHmg0BoW0YCNk7UHR9WQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:mime-version:content-type:x-google-sender-auth; b=lUwmsehYcmGFzYIG9dCL4qPRgfOUIQ8Srz/NZUvg5a0XzHjybx+jlKEaVnMT99GzRYua/MPZawr94m5uN8aBv+UuaQ2511qfuPIqi+n9w5n/sqikVZKmtt5OouqLSykeHCtRq+P5zHFOSBh3xAuQwEyjiWYfH3dc8KXegbRCGWY= Received: by 10.35.85.1 with SMTP id n1mr1387851pyl.1190412452699; Fri, 21 Sep 2007 15:07:32 -0700 (PDT) Received: by 10.35.79.1 with HTTP; Fri, 21 Sep 2007 15:07:32 -0700 (PDT) Message-ID: <6c845d510709211507j4f2d82daxd10f800c89a915f4@mail.gmail.com> Date: Fri, 21 Sep 2007 15:07:32 -0700 From: Jeff Sender: souleorama@gmail.com To: freebsd-net@freebsd.org MIME-Version: 1.0 X-Google-Sender-Auth: 3dc9e27661d55da3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: tcp listen problem X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 22:34:53 -0000 We are seeing an intermittent problem with FreeBSD 6.2 and our custom web server application, where incoming listens will sometimes not be passed to our application to be accepted. It is as if the listen queue is "clogged" somehow, and all incoming listens are blocked from being passed to our application. The clogged state lasts anywhere from a few minutes to over 30 minutes, then (if we wait it out) picks up and runs as if nothing had gone wrong. When the application picks up, the pending requests are accepted by our application with an error that they timed out on the client, and with new listens accepted and working fine. Other applications, and other ip:port pairs in our application, all continue to work fine while a listen for a particular ip:port is clogged. Our short-term fix for the problem is to check for incoming listens completing, and if none come in for a 2 second period to call ourselves and make sure that our call to ourselves completes. If not, then we kill the instance and restart. Restarting the application fixes the problem immediately (except that the listens in the queue at the time of the restart are lost and get errors). The problem is that the short-term fix reduces our uptime from 100% to 99.5%, and this is simply not an acceptable level of service for our customers; we have to fix this... Internal details on what we are doing: * using select for polled I/O, with all I/O requests coming out of a single thread * using threads for incoming requests in a single process (this is because it is a database application, and we need all threads to access the database cache) We've checked a tcpdump of incoming calls, and can't see anything funny about the calls that clog the listen queue; they look fine to us. So doesn't look like an attack per se. Incidence seems to be random. We might have 4-5 days without any, then get 10 in one day close together, or get one every now and then. Any help would be much appreciated, and we would be happy to hire someone on a consulting basis to help resolve. From owner-freebsd-net@FreeBSD.ORG Fri Sep 21 23:38:33 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8F16F16A41B for ; Fri, 21 Sep 2007 23:38:33 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.191]) by mx1.freebsd.org (Postfix) with ESMTP id EE90A13C44B for ; Fri, 21 Sep 2007 23:38:32 +0000 (UTC) (envelope-from muffaleta@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so1171412fka for ; Fri, 21 Sep 2007 16:38:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=9sjgNGrwnr6zG5LbGOmzc6iD+nfz1KzZm5ERLa11Xao=; b=CEg5F7Y7kUyDnbg9zNZiBPfgNtCMiBW9lFN7I3oos278eCJSsBYRLLG8udvLU+Nmii5bfOYf7lOgfTtzoNx6RsjGw1xLj3MNNQAnvV5fPl7VwOqZ85bokr/ct6WG47IjTYIzWSM0T2ccPE1tV/PKbCInA1EdikB/G7TAg8N7uQc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=ek+RSEmQJeY9cswUHQuPNT2QAoQUEB3pf1KaZ9Bxlpv3rD14wbWBNF7KcYDxLYjN9SUkzhy1JpDcqTZqDW91C/lcb/C8v8UsTSrFJAbg8QbeyNqZonxzw33189AV/1wIo2akYnSSfORNKxisyQxiZv2K7QNPw53rtX3wDv2kMiI= Received: by 10.82.189.6 with SMTP id m6mr5731944buf.1190417910656; Fri, 21 Sep 2007 16:38:30 -0700 (PDT) Received: by 10.82.108.1 with HTTP; Fri, 21 Sep 2007 16:38:30 -0700 (PDT) Message-ID: <7bc80d500709211638ha9d53e7ke4d3bd65471b63eb@mail.gmail.com> Date: Fri, 21 Sep 2007 16:38:30 -0700 From: "Christopher Chen" To: "Max Laier" In-Reply-To: <7bc80d500709201552r563a2708o9f2e63474bd55bcd@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <7bc80d500709201457p5be576e3hdbe0fc536493497a@mail.gmail.com> <200709210033.05263.max@love2party.net> <7bc80d500709201552r563a2708o9f2e63474bd55bcd@mail.gmail.com> Cc: freebsd-net@freebsd.org Subject: Re: Creation of carp interface on amd64 spins X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Sep 2007 23:38:33 -0000 On 9/20/07, Christopher Chen wrote: > On 9/20/07, Max Laier wrote: > > On Thursday 20 September 2007, Christopher Chen wrote: > > > Hi: > > > > > > I'm running 6.2-RELEASE on some Pentium D's running and amd64 port. > > > > > > I'm doing some mildly interesting things with vlan tagging, etc, and I > > > want to also set up carp. On identical machines running the i386 port, > > > this works correctly, but when running > > > > > > ifconfig carp0 > > > > > > For instance, the process just spins and can't be killed. The rest of > > > the machine is fine, though! > > > > > > This is 6.2-RELEASE/amd64 running in SMP mode. > > > > > > Any ideas? > > > > Can you tell me what "^T" or ps gives for the spinning process? Does it > > hang in userland or kernel? Can you try to trace the ifconfig, or - if > > the hang is in the kernel - break into the kernel debugger and get a back > > trace for the process? > > Max: > > load: 1.62 cmd: ifconfig 920 [runnable] 0.00u 96.02s 98% 920k > > That's what ^T says. I'm going to reboot and ktrace it now. So here's > the last few lines of the ktrace: > > 944 ifconfig CALL modstat(0x10a,0x7fffffffe280) > 944 ifconfig RET modstat 0 > 944 ifconfig CALL modfnext(0x10a) > 944 ifconfig RET modfnext 267/0x10b > 944 ifconfig CALL modstat(0x10b,0x7fffffffe280) > 944 ifconfig RET modstat 0 > 944 ifconfig CALL socket(0x2,0x2,0) > 944 ifconfig RET socket 3 > 944 ifconfig CALL ioctl(0x3,SIOCIFCREATE,0x514ce0) > > l# lsof -p 944 > COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME > ifconfig 944 root cwd VDIR 0,77 512 16525 /root > ifconfig 944 root rtd VDIR 0,77 512 2 / > ifconfig 944 root txt VREG 0,77 80296 48 /sbin/ifconfig > ifconfig 944 root txt VREG 0,77 192688 116 > /libexec/ld-elf.so.1 > ifconfig 944 root txt VREG 0,77 7424 24794 /lib/libipx.so.3 > ifconfig 944 root txt VREG 0,77 1083208 24786 /lib/libc.so.6 > ifconfig 944 root 0u VCHR 0,93 0t2101 93 /dev/ttyp0 > ifconfig 944 root 1u VCHR 0,93 0t2101 93 /dev/ttyp0 > ifconfig 944 root 2u VCHR 0,93 0t2101 93 /dev/ttyp0 > ifconfig 944 root 3u IPv4 0xffffff002d459130 0t0 UDP *:* > > Sorry I don't have physical access so I can't break into the kernel > debugger right now. Aha! Some data! Okay so I got the console cable attached with DDB. So far so good. But here's something else. With DDB/KDB enabled in the kernel, suddenly ifconfig carp0 create works! Sounds like some sort of race condition, maybe? But when destroying the interfaces, I get this: << kernel trap 12 with interrupts disabled Fatal trap 12: page fault while in kernel mode fault virtual address = 0x48 fault code = supervisor read, page not present instruction pointer = 0x8:0xffffffff80430035 stack pointer = 0x10:0xffffffffa54b2ab0 frame pointer = 0x10:0xffffffffa54b2af0 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags = resume, IOPL = 0 current process = 11 (swi4: clock sio) [thread pid 11 tid 100002 ] Stopped at propagate_priority+0x75: movq 0x48(%r15),%rdi db> trace Tracing pid 11 tid 100002 td 0xffffff003dba2980 propagate_priority() at propagate_priority+0x75 turnstile_wait() at turnstile_wait+0x20f _mtx_lock_sleep() at _mtx_lock_sleep+0x89 carp_send_ad() at carp_send_ad+0xa9 softclock() at softclock+0x21a ithread_loop() at ithread_loop+0x162 fork_exit() at fork_exit+0x86 fork_trampoline() at fork_trampoline+0xe --- trap 0, rip = 0, rsp = 0xffffffffa54b2d00, rbp = 0 --- >> Wow! -- Chris Chen "I want the kind of six pack you can't drink." -- Micah From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 03:48:46 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9D55F16A418 for ; Sat, 22 Sep 2007 03:48:46 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from gaia.nimnet.asn.au (nimbin.lnk.telstra.net [139.130.45.143]) by mx1.freebsd.org (Postfix) with ESMTP id 3DC0813C459 for ; Sat, 22 Sep 2007 03:48:44 +0000 (UTC) (envelope-from smithi@nimnet.asn.au) Received: from [192.168.1.1] (paqi.nimnet.asn.au [220.233.188.227]) by gaia.nimnet.asn.au (8.8.8/8.8.8R1.5) with ESMTP id NAA05099 for ; Sat, 22 Sep 2007 13:16:35 +1000 (EST) (envelope-from smithi@nimnet.asn.au) Message-ID: <46F48911.6010106@nimnet.asn.au> Date: Sat, 22 Sep 2007 13:16:33 +1000 From: Ian Smith Organization: Nimbin Network Association User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.13) Gecko/20061115 X-Accept-Language: en-au, en, en-us MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: how to use iic(4) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 03:48:46 -0000 This drew a blank in -questions. I don't know where else to post it, so I'm hoping someone here might be able to spare me a clue. We're building a small board with two AVR Tiny MCUs chatting to each other over an opto-isolated I2C-compatible bus, hopefully at 400kbps. Hoping to use the iicbb(4) on lpbb(4) parallel port interface to talk with either of these MCUs for debugging, control and data acquisition. iic(4) says: ======= The iic character device driver provides generic i/o to any iicbus(4) instance. In order to control I2C devices, use /dev/iic? with the fol- lowing ioctls: Ioctl Description I2CSTART send start condition to the specified device (with 7-bit address) on the bus I2CSTOP send stop condition to the bus I2CRSTCARD reset the bus You may also use read/write routines, then I2C start/stop handshake is managed by the iicbus system. ======= Does the latter statement suggest that ordinary reads from or writes to /dev/iic? could be performed by redirection of say echo and read from a script? Or is the device only accessible by ioctl from eg a C program? Secondly, how does /dev/iic? come to exist? This 5.5-STABLE system seems to have all the requisite drivers, but there's no /dev/iic*: paqi% kldstat -v | egrep 'iic|lpbb' 29 iicbus/ic 30 iicbus/iic 31 bktr/iicbb 32 lpbb/iicbb 33 viapm/iicbb 34 pcf/iicbus 35 envctrl/iicbus 36 iicbb/iicbus 37 bti2c/iicbus 38 iicbus/iicsmb 86 iicsmb/smbus 12 1 0xc2456000 3000 lpbb.ko 247 ppbus/lpbb Also, iicbb(4) is said to be a master-only interface. I can work with that, but if anyone knows of any iicbus slave-mode code I'm all eyes .. Cheers, Ian From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 10:35:13 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8563216A418 for ; Sat, 22 Sep 2007 10:35:13 +0000 (UTC) (envelope-from affanzbasalamah@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.187]) by mx1.freebsd.org (Postfix) with ESMTP id 5D80313C447 for ; Sat, 22 Sep 2007 10:35:13 +0000 (UTC) (envelope-from affanzbasalamah@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so891784rvb for ; Sat, 22 Sep 2007 03:35:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=6kKzQgStA3q57EZte0IA+c9XEPsPNTIEmyFWYFuqyIU=; b=DTQimV9zVsgF1OLzcOmPHo4DdbQ/0NIRtk9+PKQXRTVRmS+4go6RbRsPWea9T2hhRmcyzEdZ14kGX8lJME0N1Jl2ye4w5PL0s/NceQGS4TmIH5FxFPLLFSVyq+Kh+ChU1JQgOpWS1LapmkOgFfnsUvQBif92LN5ptsULoi4gXhs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=kWfZpdLfZlG+VhGYG6jl5v1RSNtwmYq3x+6wOTAyRe/50El3ljCFrYIdjceCVhSPJya4v9mfY7lNknF8C5xshSK1NNyfx0sLxgJJFq+pwNI4cUf3AJDX+QDNXQ87iE3P8KxLTq+vM4iqv8hZLKY3PMaLVpYh9YhUazeFys6hIIE= Received: by 10.141.129.14 with SMTP id g14mr209094rvn.1190455672859; Sat, 22 Sep 2007 03:07:52 -0700 (PDT) Received: by 10.140.164.16 with HTTP; Sat, 22 Sep 2007 03:07:52 -0700 (PDT) Message-ID: Date: Sat, 22 Sep 2007 17:07:52 +0700 From: "Affan Basalamah" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Inline/Bypass ethernet NIC for FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 10:35:13 -0000 Hi all, I just curious about the availability of inline/bypass ethernet NIC for FreeBSD. Maybe my google search skill is low, but I cannot find any information about that. The only thing that comes to me is this URL from Intel (http://www.intel.com/network/connectivity/products/pro1000_quad_bypass_server_adapters.htm), which I know by just looking at it, that thing won't come in cheap price. I just want to use it as a NIC for my firewall, to eliminate the possibilities of traffic went down when the firewall is unable to operate. Thank you, Regards, -affan From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 11:03:20 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3505216A418 for ; Sat, 22 Sep 2007 11:03:20 +0000 (UTC) (envelope-from edwin@mavetju.org) Received: from mail5out.barnet.com.au (mail5.barnet.com.au [202.83.178.78]) by mx1.freebsd.org (Postfix) with ESMTP id E9C2413C4B2 for ; Sat, 22 Sep 2007 11:03:19 +0000 (UTC) (envelope-from edwin@mavetju.org) Received: by mail5out.barnet.com.au (Postfix, from userid 1001) id 40C582219D32; Sat, 22 Sep 2007 20:45:15 +1000 (EST) X-Viruscan-Id: <46F4F23B000090B90BF8F8@BarNet> Received: from mail5auth.barnet.com.au (mail5.barnet.com.au [202.83.178.78]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mail5.barnet.com.au (Postfix) with ESMTP id 09E2E21B1070 for ; Sat, 22 Sep 2007 20:45:15 +1000 (EST) Received: from k7.mavetju (k7.mavetju.org [10.251.1.18]) by mail5auth.barnet.com.au (Postfix) with ESMTP id B40482219D2A for ; Sat, 22 Sep 2007 20:45:14 +1000 (EST) Received: by k7.mavetju (Postfix, from userid 1001) id EF34B62; Sat, 22 Sep 2007 20:45:16 +1000 (EST) Date: Sat, 22 Sep 2007 20:45:16 +1000 From: Edwin Groothuis To: freebsd-net@freebsd.org Message-ID: <20070922104516.GA12567@k7.mavetju> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i Subject: 127.0.0.1 missing from the routing table X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 11:03:20 -0000 Hello, Since this behaviour happened on a lot of different OS releases (from i386 till amd64, from 4.10 till 6.2) I doubt that it is a FreeBSD specific issue, but I still would like to hear if somebody has ever seen this behaviour: We run Quagga with OSPFD on our FreeBSD machines to automatically redistribute the extra IP addresses we put on the loopback interface. Has always worked like a charm and we're very happy with it. Last weekend we wrongly configured an OSPFD instance and accidently have it "network 10.252.8.0/0 area 0" in its configuration (spot the /0). As a result, the neighbouring router (Extreme Networks BD8806) got a route for 127.0.0.1/32 in its routingtable, and on all FreeBSD machines with Quagga/OSPFD it lost the 127.0.0.1 to lo0 from its routing table, but it pointed to the BD8806. Pinging to 127.0.0.1 gave a "Couldn't assign address", but "ifconfig lo0" still showed the 127.0.0.1 on its loopback interface. Disabling the wrongly configured OSPFD instance removed the 127.0.0.1 from the routing table on the BD8806 and thus from the FreeBSD machines, but then it still didn't have 127.0.0.1 to lo0 in its routing table. Only after I executed "ifconfig lo0 inet 127.0.0.1 netmask 0xff000000 alias" on all machines they were happy again. Now I'm not asking for a how and why, just if somebody has ever experienced such an issue... Edwin -- Edwin Groothuis | Personal website: http://www.mavetju.org edwin@mavetju.org | Weblog: http://www.mavetju.org/weblog/ From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 11:28:37 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2AABA16A417 for ; Sat, 22 Sep 2007 11:28:37 +0000 (UTC) (envelope-from erikt@midgard.homeip.net) Received: from ch-smtp01.sth.basefarm.net (ch-smtp01.sth.basefarm.net [80.76.149.212]) by mx1.freebsd.org (Postfix) with ESMTP id 8715213C45A for ; Sat, 22 Sep 2007 11:28:35 +0000 (UTC) (envelope-from erikt@midgard.homeip.net) Received: from c83-253-31-60.bredband.comhem.se ([83.253.31.60]:64588 helo=falcon.midgard.homeip.net) by ch-smtp01.sth.basefarm.net with esmtp (Exim 4.66) (envelope-from ) id 1IZ2vA-0000fW-5A for freebsd-net@freebsd.org; Sat, 22 Sep 2007 13:13:14 +0200 Received: (qmail 31902 invoked from network); 22 Sep 2007 13:13:07 +0200 Received: from owl.midgard.homeip.net (10.1.5.7) by falcon.midgard.homeip.net with ESMTP; 22 Sep 2007 13:13:07 +0200 Received: (qmail 55987 invoked by uid 1001); 22 Sep 2007 13:13:07 +0200 Date: Sat, 22 Sep 2007 13:13:07 +0200 From: Erik Trulsson To: Affan Basalamah Message-ID: <20070922111307.GA55828@owl.midgard.homeip.net> Mail-Followup-To: Affan Basalamah , freebsd-net@freebsd.org References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.16 (2007-06-09) X-Originating-IP: 83.253.31.60 X-Scan-Result: No virus found in message 1IZ2vA-0000fW-5A. X-Scan-Signature: ch-smtp01.sth.basefarm.net 1IZ2vA-0000fW-5A a8086e2ae16eea094b9cf1645aec0c1b Cc: freebsd-net@freebsd.org Subject: Re: Inline/Bypass ethernet NIC for FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 11:28:37 -0000 On Sat, Sep 22, 2007 at 05:07:52PM +0700, Affan Basalamah wrote: > Hi all, > > I just curious about the availability of inline/bypass ethernet NIC > for FreeBSD. Maybe my google search skill is low, but I cannot find > any information about that. I think there are few ethernet adapter that support bypass operation (for any OS, not just FreeBSD.) Your google search skill must be low, because simply googling on 'ethernet bypass adapter' and following the first link would lead you to http://www.silicom.co.il/pgx.php?p2=127 where they list several models that are claimed to work with FreeBSD. > > The only thing that comes to me is this URL from Intel > (http://www.intel.com/network/connectivity/products/pro1000_quad_bypass_server_adapters.htm), > which I know by just looking at it, that thing won't come in cheap > price. I am fairly certain that just about all alternatives will fall into one or both of the following categories: a) Hard to find b) Expensive > > I just want to use it as a NIC for my firewall, to eliminate the > possibilities of traffic went down when the firewall is unable to > operate. So you are saying that if somebody manages to crash your firewall then they should be able to bypass any protection the firewall was supposed to give? I am not at all sure that is a good idea. -- Erik Trulsson ertr1013@student.uu.se From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 14:43:31 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B04C716A417 for ; Sat, 22 Sep 2007 14:43:31 +0000 (UTC) (envelope-from mail@chdevelopment.se) Received: from av12-1-sn2.hy.skanova.net (av12-1-sn2.hy.skanova.net [81.228.8.185]) by mx1.freebsd.org (Postfix) with ESMTP id 3B0E713C447 for ; Sat, 22 Sep 2007 14:43:31 +0000 (UTC) (envelope-from mail@chdevelopment.se) Received: by av12-1-sn2.hy.skanova.net (Postfix, from userid 502) id E368638195; Sat, 22 Sep 2007 16:17:40 +0200 (CEST) Received: from smtp4-1-sn2.hy.skanova.net (smtp4-1-sn2.hy.skanova.net [81.228.8.92]) by av12-1-sn2.hy.skanova.net (Postfix) with ESMTP id CF68037E70 for ; Sat, 22 Sep 2007 16:17:40 +0200 (CEST) Received: from melissa.chdevelopment.se (90-227-26-163-no68.tbcn.telia.com [90.227.26.163]) by smtp4-1-sn2.hy.skanova.net (Postfix) with ESMTP id BE42437E46 for ; Sat, 22 Sep 2007 16:17:40 +0200 (CEST) Message-ID: <46F52404.2090903@chdevelopment.se> Date: Sat, 22 Sep 2007 16:17:40 +0200 From: Christer Hermansson User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.8.1.6) Gecko/20070811 SeaMonkey/1.1.4 MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Firewall and VPN considerations X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 14:43:31 -0000 Hello I am planning on setting up a FreeBSD Firewall that will be used to protect a LAN. The firewall will also act as a VPN-gateway for external workstations running Windows XP Professional, I will use Microsoft's ipsec software included in the Windows XP. I will also use the firewall's external side to connect with ipsec to other LAN which have Cisco VPN equipment. The firewall will use IPFW and doing NAT for the internal LAN. I would like to have som advice/opinions on the following isusses: - To achive NAT with IPFW I must use ipdivert, no other methods exists, wrong or right ? - In this thread http://lists.freebsd.org/pipermail/freebsd-net/2007-September/015290.html they say quad core does not raise the performance compared to duo core when building a router. I will have more than packet forwarding and userland processes, e.g. NAT and IPSEC so I think more cores will help. Should I get a machine with duo core cpu or quad core cpu, does quad helps the performance ? - In this thread http://lists.freebsd.org/pipermail/freebsd-net/2006-June/010909.html they suggest not to use gif together with ipsec to achive compatibility with cisco etc, so I'm planing to skip gif, wrong or right ? What are the benefits of using gif ? - In this mail http://lists.freebsd.org/pipermail/freebsd-doc/2007-June/012632.html they suggest gif and FAST_IPSEC. On the man page for FAST_IPSEC(4) I find the text "is an experimental implementation", maybe the man page just needs an update or is FAST_IPSEC not suited for production environments ? In the offcial FreeBSD handbook http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html they say not to use FAST_IPSEC, and show the use of gif, however I think this needs to be updated/rewritten. (If I get the time I really feel for writing an alternative page about IPSEC with FreeBSD and maybe the result get accepted for inclusion in the handbook.) -- Christer Hermansson From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 15:09:29 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3BBEE16A419; Sat, 22 Sep 2007 15:09:29 +0000 (UTC) (envelope-from randy@psg.com) Received: from rip.psg.com (rip.psg.com [147.28.0.39]) by mx1.freebsd.org (Postfix) with ESMTP id 16B5213C47E; Sat, 22 Sep 2007 15:09:29 +0000 (UTC) (envelope-from randy@psg.com) Received: from localhost ([127.0.0.1] helo=roam.psg.com) by rip.psg.com with esmtp (Exim 4.67 (FreeBSD)) (envelope-from ) id 1IZ6bm-000LZq-B6; Sat, 22 Sep 2007 15:09:26 +0000 Received: from localhost ([127.0.0.1] helo=roam.psg.com) by roam.psg.com with esmtp (Exim 4.67 (FreeBSD)) (envelope-from ) id 1IZ6bk-0002fJ-K2; Sat, 22 Sep 2007 05:09:24 -1000 From: Randy Bush MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <18165.12318.554794.770247@roam.psg.com> Date: Sat, 22 Sep 2007 05:09:18 -1000 To: "Kevin Oberman" References: <20070921012830.GA79417@elvis.mu.org> <20070921165303.7FDDB45028@ptavv.es.net> Cc: mattr@eagle.ca, Steve Bertrand , Alfred Perlstein , Julian Elischer , freebsd-net@freebsd.org, Sten Daniel Soersdal Subject: Re: Quagga as border router X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 15:09:29 -0000 > I would like to see NOTHING running anything that looked too much like > 5.x. And I can't really think the 6.x (while much better that 5) would > be a good choice for a route processor. juniper merely uses freebsd as a framework. all route processing, and anything to do with routing, is extremely different and custom code. randy From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 17:59:53 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AB96616A421 for ; Sat, 22 Sep 2007 17:59:53 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (e-gerbil.net [69.31.1.2]) by mx1.freebsd.org (Postfix) with ESMTP id 5B3CB13C461 for ; Sat, 22 Sep 2007 17:59:52 +0000 (UTC) (envelope-from ras@gerbil.cluepon.net) Received: from gerbil.cluepon.net (ras@localhost.nlayer.net [127.0.0.1]) by gerbil.cluepon.net (8.13.8/8.13.8) with ESMTP id l8MHxr2f010238 for ; Sat, 22 Sep 2007 13:59:53 -0400 (EDT) (envelope-from ras@gerbil.cluepon.net) Received: (from ras@localhost) by gerbil.cluepon.net (8.13.8/8.13.8/Submit) id l8MHxrMS010237 for freebsd-net@freebsd.org; Sat, 22 Sep 2007 13:59:53 -0400 (EDT) (envelope-from ras) Date: Sat, 22 Sep 2007 13:59:53 -0400 From: Richard A Steenbergen To: freebsd-net@freebsd.org Message-ID: <20070922175953.GI1906@gerbil.cluepon.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.13 (2006-08-11) Subject: BFD support X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 17:59:53 -0000 Has anyone out there done any work on implementing BFD (thats bidirectional forwarding detection, not anything else you might be thinking :P) for BSD? I'm a little surprised, I can't even seem to find so much as a userland version of it, let alone anything resembling a proper kernel implementation. -- Richard A Steenbergen http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 19:28:25 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E9BD416A418 for ; Sat, 22 Sep 2007 19:28:25 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from bavaria.utcluj.ro (unknown [IPv6:2001:b30:5000:2:20e:cff:fe4b:ca01]) by mx1.freebsd.org (Postfix) with ESMTP id 658C613C44B for ; Sat, 22 Sep 2007 19:28:25 +0000 (UTC) (envelope-from cristi@net.utcluj.ro) Received: from localhost (localhost [127.0.0.1]) by bavaria.utcluj.ro (Postfix) with ESMTP id 100D450891; Sat, 22 Sep 2007 22:28:24 +0300 (EEST) X-Virus-Scanned: by the daemon playing with your mail on local.mail.utcluj.ro Received: from bavaria.utcluj.ro ([127.0.0.1]) by localhost (bavaria.utcluj.ro [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zllIFst8PlzH; Sat, 22 Sep 2007 22:28:18 +0300 (EEST) Received: from [172.27.2.200] (c7.campus.utcluj.ro [193.226.6.226]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by bavaria.utcluj.ro (Postfix) with ESMTP id E069850871; Sat, 22 Sep 2007 22:28:17 +0300 (EEST) Message-ID: <46F56CD0.6070400@net.utcluj.ro> Date: Sat, 22 Sep 2007 22:28:16 +0300 From: Cristian KLEIN User-Agent: Thunderbird 1.5.0.13 (X11/20070824) MIME-Version: 1.0 To: Christer Hermansson References: <46F52404.2090903@chdevelopment.se> In-Reply-To: <46F52404.2090903@chdevelopment.se> X-Enigmail-Version: 0.94.2.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Firewall and VPN considerations X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 19:28:26 -0000 Christer Hermansson wrote: > Hello > > I am planning on setting up a FreeBSD Firewall that will be used to > protect a LAN. > > The firewall will also act as a VPN-gateway for external workstations > running Windows XP Professional, I will use Microsoft's ipsec software > included in the Windows XP. > > I will also use the firewall's external side to connect with ipsec to > other LAN which have Cisco VPN equipment. > > The firewall will use IPFW and doing NAT for the internal LAN. > > I would like to have som advice/opinions on the following isusses: > > - To achive NAT with IPFW I must use ipdivert, no other methods exists, > wrong or right ? I personally like to use IPFW with IPNAT or PF. I also heard that starting with 7-CURRENT, IPFW is able to use libalias to do NAT in kernel-space. > > - In this thread > http://lists.freebsd.org/pipermail/freebsd-net/2007-September/015290.html > they say quad core does not raise the performance compared to duo core > when building a router. I will have more than packet forwarding and > userland processes, e.g. NAT and IPSEC so I think more cores will help. > Should I get a machine with duo core cpu or quad core cpu, does quad > helps the performance ? > > - In this thread > http://lists.freebsd.org/pipermail/freebsd-net/2006-June/010909.html > they suggest not to use gif together with ipsec to achive compatibility > with cisco etc, so I'm planing to skip gif, wrong or right ? What are > the benefits of using gif ? > > - In this mail > http://lists.freebsd.org/pipermail/freebsd-doc/2007-June/012632.html > they suggest gif and FAST_IPSEC. On the man page for FAST_IPSEC(4) I > find the text "is an experimental implementation", maybe the man page > just needs an update or is FAST_IPSEC not suited for production > environments ? > > In the offcial FreeBSD handbook > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html > they say not to use FAST_IPSEC, and show the use of gif, however I think > this needs to be updated/rewritten. (If I get the time I really feel for > writing an alternative page about IPSEC with FreeBSD and maybe the > result get accepted for inclusion in the handbook.) > -- +-------------------------------------+ | Cristian KLEIN | | Network Engineer | | Communication Center | | Technical University of Cluj-Napoca | +-------------------------------------+ | Tel: +40-264-401247, int. 247 | | WWW: http://www.cc.utcluj.ro | +-------------------------------------+ From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 21:02:48 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E805B16A419 for ; Sat, 22 Sep 2007 21:02:48 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outD.internet-mail-service.net (outD.internet-mail-service.net [216.240.47.227]) by mx1.freebsd.org (Postfix) with ESMTP id D1F3B13C474 for ; Sat, 22 Sep 2007 21:02:48 +0000 (UTC) (envelope-from julian@elischer.org) Received: from mx0.idiom.com (HELO idiom.com) (216.240.32.160) by out.internet-mail-service.net (qpsmtpd/0.40) with ESMTP; Sat, 22 Sep 2007 14:02:47 -0700 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id CAC49126479; Sat, 22 Sep 2007 14:02:46 -0700 (PDT) Message-ID: <46F582F7.80808@elischer.org> Date: Sat, 22 Sep 2007 14:02:47 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728) MIME-Version: 1.0 To: Affan Basalamah References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Inline/Bypass ethernet NIC for FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 21:02:49 -0000 Affan Basalamah wrote: > Hi all, > > I just curious about the availability of inline/bypass ethernet NIC > for FreeBSD. Maybe my google search skill is low, but I cannot find > any information about that. > > The only thing that comes to me is this URL from Intel > (http://www.intel.com/network/connectivity/products/pro1000_quad_bypass_server_adapters.htm), > which I know by just looking at it, that thing won't come in cheap > price. silicom in israel make many and have FreeBSD drivers Intel has a 4 port PCI-Express full length full height board. They have FreeBSD drivers. Interface-masters in San Jose have good cards but only Linux drivers. > > I just want to use it as a NIC for my firewall, to eliminate the > possibilities of traffic went down when the firewall is unable to > operate. > Silicom is probably your best bet then. > Thank you, > > Regards, > > -affan > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Sat Sep 22 23:56:54 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6703916A419 for ; Sat, 22 Sep 2007 23:56:54 +0000 (UTC) (envelope-from jfvogel@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.190]) by mx1.freebsd.org (Postfix) with ESMTP id F30DA13C45A for ; Sat, 22 Sep 2007 23:56:53 +0000 (UTC) (envelope-from jfvogel@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so1528932fka for ; Sat, 22 Sep 2007 16:56:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; bh=E+jrFCRrF3HRtmxPqTvkdUDAEZ3VGxxzyOf8q8B8Tr4=; b=jU1CeO+G7aK0QZFSFKbm6WqXtjQ6DWQsTExMsVWlZwa2u6MbKOIf486EIV4+Iy1gRP5BDB5Wy4CTH3f92laQvdD4GYGd1e+M/oMrgwU+r3OET2WFJgH6xuNKsmp/W2JhHlrvSwmRsq9bykrpzhZTuqwwM/lmT3JniAkrdH3Tmfw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=h/Tg9SDLslmLAmdp3KijOBUyPCfu6o5FI2TWCz+nFfOaS01tCytVfdDw7WMY7Eo0whi1eHQnNVkCoN3Xy64gO+mxqbQLtR505Y82sPmQA3ShbSFgEBNeXJ5De74vDUL0dibXCCReTNxzl+mfhwVJEUX8dcMnSlqp7M0AwYbluLU= Received: by 10.86.100.7 with SMTP id x7mr3450173fgb.1190505412339; Sat, 22 Sep 2007 16:56:52 -0700 (PDT) Received: by 10.86.100.19 with HTTP; Sat, 22 Sep 2007 16:56:52 -0700 (PDT) Message-ID: <2a41acea0709221656n4aa62776y488c7f2da262c9f6@mail.gmail.com> Date: Sat, 22 Sep 2007 16:56:52 -0700 From: "Jack Vogel" To: "freebsd-net@freebsd.org" , "FreeBSD Current" MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Cc: Subject: TX Multiqueue? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2007 23:56:54 -0000 Our newest E1000 nic, the 82575, and the Oplin 10G hardware are capable of multiple queues both on the receive and the send side. On the receive end for the Oplin driver the queues actually help distribute interrupts and improve performance without any special support in the stack. I have been asked about multiple queues on the TX side, embedded appliance type system builders for instance are interested I suppose for priority queueing. Is anyone working on this right now, and if not does this sound like something anyone is interested in doing? I would like to see MQ on both TX and RX that drivers could use if able. Jack