Date: Mon, 16 Oct 2000 13:47:35 -0700 (PDT) From: Guolin Cheng <chenggl@yahoo.com> To: Matt Heckaman <matt@ARPA.MAIL.NET>, freebsd-questions@freebsd.org Subject: Re: Reserved ports too limited for amd (automount) on FreeBSD 4.1 Message-ID: <20001016204735.28469.qmail@web109.yahoomail.com>
next in thread | raw e-mail | index | archive | help
Matt Heckaman, Thanks. But in fact, I already added the following lines into the file /etc/sysctl.conf: net.inet.ip.portrange.lowfirst=2023 net.inet.ip.portrange.first=2024 But net.inet.ip.portrange.lowfirst is still 1023!! although net.inet.ip.portrange.first was changed into 2024 (this is of no use..:(( ), so when I use amd, the sockets still use reserved ports.(you can use netstat -a command to show the TCP/UDP ports in use) and make my machine crazy and die. I want to know if we can find a configuration option to instruct amd NOT to use reserved ports by deafault.. Thanks. Yours sincerely, Guolin Cheng --- Matt Heckaman <matt@ARPA.MAIL.NET> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > This is what you're looking for: > > net.inet.ip.portrange.lowfirst: 1023 > net.inet.ip.portrange.lowlast: 600 > net.inet.ip.portrange.first: 1024 > net.inet.ip.portrange.last: 5000 > > I don't see why they could not be adjusted.. Ie; moving portrange.first to > 2048, then changing portrange.lowfirst to 2047... (with sysctl -w) > > If you aren't familiar with sysctl, it works like this: > > # sysctl -w net.inet.ip.portrange.lowfirst=2047 > # sysctl -w net.inet.ip.portrange.first=2048 > > No reboot required. To make them stick after reboots, just put them in > /etc/sysctl.conf like: > > net.inet.ip.portrange.lowfirst=2047 > net.inet.ip.portrange.first=2048 > > Cheers, > Matt > > On Mon, 16 Oct 2000, Guolin Cheng wrote: > : > : Hi, all, > : > : > : I encountered a problem with amd(which using reserved ports by default) on > : FreeBSD box, the version is FreeBSD 4.1. > : /guolin> uname -v > : FreeBSD 4.1-RELEASE #0: Fri Sep 29 18:31:50 GMT 2000 > : /usr/src/sys/compile/ALEXA > : > : > : The problem is: > : > : I want to mount more than 800 entries using amd at the same time on a > freeBSD > : machines, but since the FreeBSD4.1 's amd using reserved ports by default > for > : security reasons, there's only (1023-600+1)=424 reserved ports available > at > : most!, so it always report error: > : > : amd: ALL PORTS IN USE.. > : > : because all the reserved ports are used up!! > : > : So, could anyone tell me a method to change the default configuration > setting > : of amd??? so that I can use non-deserved ports instead? > : > : I tried to edited the file /sys/netinet/in.h, change the parameter > : IPPORT_RESERVED to 2024 from 1024,recompile and restart, but the amd > services > : can NOT run normally! > : > : How to set the amd functions or change it back to a older version?? any > ideas? > : > : Thanks. > : > : > : ===== > : With Best Regards. > : > : Guolin Cheng > : Alexa Internet Company > : Presidio of San Francisco, > : San Francisco, CA 94129 > : (415)561-6900 ext. 6021 > : > : __________________________________________________ > : Do You Yahoo!? > : Yahoo! Messenger - Talk while you surf! It's FREE. > : http://im.yahoo.com/ > : > : > : To Unsubscribe: send mail to majordomo@FreeBSD.org > : with "unsubscribe freebsd-stable" in the body of the message > : > > * Matt Heckaman - mailto:matt@lucida.qc.ca http://www.lucida.qc.ca/ * > * GPG fingerprint - A9BC F3A8 278E 22F2 9BDA BFCF 74C3 2D31 C035 5390 * > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.0.3 (FreeBSD) > Comment: http://www.lucida.qc.ca/pgp > > iD8DBQE560/UdMMtMcA1U5ARAgsLAKCdQOk3ap29g6e1MYWw55AUmx0s7ACffs/D > zTGL/osvt0aEAwnP57sGMbo= > =RSWo > -----END PGP SIGNATURE----- > > ===== With Best Regards. Guolin Cheng Alexa Internet Company Presidio of San Francisco, San Francisco, CA 94129 (415)561-6900 ext. 6021 __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001016204735.28469.qmail>