From owner-freebsd-isp Sun Jan 14 09:40:13 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA13389 for isp-outgoing; Sun, 14 Jan 1996 09:40:13 -0800 (PST) Received: from cabal.io.org (cabal.io.org [198.133.36.103]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id JAA13365 Sun, 14 Jan 1996 09:40:06 -0800 (PST) Received: (from taob@localhost) by cabal.io.org (8.6.12/8.6.12) id MAA01695; Sun, 14 Jan 1996 12:38:09 -0500 Date: Sun, 14 Jan 1996 12:38:07 -0500 (EST) From: Brian Tao To: Bill Fenner cc: Michael Smith , freebsd-hackers@freebsd.org, freebsd-isp@freebsd.org Subject: Re: A few other concerns from a FreeBSD ISP In-Reply-To: <96Jan10.155941pst.177478@crevenia.parc.xerox.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk On Wed, 10 Jan 1996, Bill Fenner wrote: > > I have always thought that this situation could only be attributed to > one or the other end not waiting for 2*MSL before deleting connection > information. In particular, if the source end cut its TIME_WAIT state > short for some tcpcb, that port number could get reused while the > server end was still in TIME_WAIT and thus completely ignoring all > packets. Hmmmm, okay, whatever you say. ;-) > But I haven't yet gotten around to testing this theory; I can't say > that I recall seeing this problem, so it may also be load-related, > etc. I don't think it is. I've seen it happen to individual workstations as well as to shell servers with 100+ people on it. The really irritating thing is that it works *most* of the time, under either extreme of load condition. :( -- Brian Tao (BT300, taob@io.org) Systems Administrator, Internex Online Inc. "Though this be madness, yet there is method in't" From owner-freebsd-isp Sun Jan 14 10:25:57 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id KAA14855 for isp-outgoing; Sun, 14 Jan 1996 10:25:57 -0800 (PST) Received: from kitten.mcs.com (Kitten.mcs.com [192.160.127.90]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id KAA14850 Sun, 14 Jan 1996 10:25:53 -0800 (PST) Received: from venus.mcs.com (root@Venus.mcs.com [192.160.127.92]) by kitten.mcs.com (8.6.10/8.6.9) with SMTP id MAA11463; Sun, 14 Jan 1996 12:25:46 -0600 Received: by venus.mcs.com (/\==/\ Smail3.1.28.1 #28.5) id ; Sun, 14 Jan 96 12:25 CST Message-Id: Subject: Re: A few other concerns from a FreeBSD ISP To: taob@io.org (Brian Tao) Date: Sun, 14 Jan 1996 12:25:45 -0600 (CST) From: "Karl Denninger, MCSNet" Cc: fenner@parc.xerox.com, msmith@atrad.adelaide.edu.au, freebsd-hackers@freebsd.org, freebsd-isp@freebsd.org In-Reply-To: from "Brian Tao" at Jan 14, 96 12:38:07 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org Precedence: bulk > > On Wed, 10 Jan 1996, Bill Fenner wrote: > > > > I have always thought that this situation could only be attributed to > > one or the other end not waiting for 2*MSL before deleting connection > > information. In particular, if the source end cut its TIME_WAIT state > > short for some tcpcb, that port number could get reused while the > > server end was still in TIME_WAIT and thus completely ignoring all > > packets. > > Hmmmm, okay, whatever you say. ;-) > > > But I haven't yet gotten around to testing this theory; I can't say > > that I recall seeing this problem, so it may also be load-related, > > etc. > > I don't think it is. I've seen it happen to individual > workstations as well as to shell servers with 100+ people on it. The > really irritating thing is that it works *most* of the time, under > either extreme of load condition. :( > -- > Brian Tao (BT300, taob@io.org) > Systems Administrator, Internex Online Inc. > "Though this be madness, yet there is method in't" Run a few hundred "rshs" from a Freebsd machine to anything else. At least some small number will *HANG PERMANENTLY*. We have had to modify "rsh" to have a timeout parameter option (yeeeech!) and retry in the calling script to fix this here. That sucks; I would love to understand EXACTLY what is going on when this happens. -- -- Karl Denninger (karl@MCS.Net)| MCSNet - The Finest Internet Connectivity Modem: [+1 312 248-0900] | T1 from $600 monthly; speeds to DS-3 available Voice: [+1 312 803-MCS1] | 21 Chicagoland POPs, ISDN, 28.8, much more Fax: [+1 312 248-9865] | Email to "info@mcs.net" WWW: http://www.mcs.net/ ISDN - Get it here TODAY! | Home of Chicago's only FULL Clarinet feed! From owner-freebsd-isp Sun Jan 14 13:16:50 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id NAA23415 for isp-outgoing; Sun, 14 Jan 1996 13:16:50 -0800 (PST) Received: from itchy.mosquito.com (itchy.mosquito.com [206.205.132.2]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id NAA23406 for ; Sun, 14 Jan 1996 13:16:33 -0800 (PST) Received: (from boot@localhost) by itchy.mosquito.com (8.6.11/8.6.9) id QAA17625; Sun, 14 Jan 1996 16:16:51 -0500 From: Bruce Bauman Message-Id: <199601142116.QAA17625@itchy.mosquito.com> Subject: syslog.conf questions To: freebsd-isp@freebsd.org Date: Sun, 14 Jan 1996 16:16:51 -0500 (EST) Cc: boot@itchy.mosquito.com (Bruce Bauman) X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org Precedence: bulk We are a small ISP using a Livingston Portmaster attached to a couple of FreeBSD machines. We are extremely pleased with our setup - everything works really well. But, I have a question about syslog.conf. We get many lines in our /var/log/messages of the form: Jan 14 15:55:03 pm1 dialnet: port S3 connection succeeded dest dial16.mosquito.com How can we cause these to not be written to the logfile? Is there a way to capture lines of the form: Jan 14 15:55:33 pm1 dialnet: port S6 jsmith.PPP login failed but ignore lines which are just successful connections? The documentation isn't really clear on this. -- Bruce Bauman Mosquito Net From owner-freebsd-isp Sun Jan 14 13:36:52 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id NAA24396 for isp-outgoing; Sun, 14 Jan 1996 13:36:52 -0800 (PST) Received: from haven.uniserve.com (haven.uniserve.com [198.53.215.121]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id NAA24389 for ; Sun, 14 Jan 1996 13:36:33 -0800 (PST) Received: by haven.uniserve.com id <30882-3>; Sun, 14 Jan 1996 13:38:56 -0000 Date: Sun, 14 Jan 1996 13:38:47 -0800 (PST) From: Tom Samplonius To: Bruce Bauman cc: freebsd-isp@freebsd.org Subject: Re: syslog.conf questions In-Reply-To: <199601142116.QAA17625@itchy.mosquito.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk On Sun, 14 Jan 1996, Bruce Bauman wrote: > We are a small ISP using a Livingston Portmaster attached to a couple > of FreeBSD machines. We are extremely pleased with our setup - > everything works really well. But, I have a question about syslog.conf. > > We get many lines in our /var/log/messages of the form: > > Jan 14 15:55:03 pm1 dialnet: port S3 connection succeeded dest dial16.mosquito.com > > How can we cause these to not be written to the logfile? > Is there a way to capture lines of the form: > > Jan 14 15:55:33 pm1 dialnet: port S6 jsmith.PPP login failed > > but ignore lines which are just successful connections? The documentation isn't > really clear on this. You need to look at /etc/syslog.conf and the man pages. You need to determine if the PM's log messages at different levels (ERROR, or NOTICE), and then you can use /etc/syslog.conf to filter them. It doesn't make a big deal. I've used PM's before, and just ignored all the syslog'ing that they do. Tom From owner-freebsd-isp Mon Jan 15 01:29:08 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id BAA29731 for isp-outgoing; Mon, 15 Jan 1996 01:29:08 -0800 (PST) Received: from nic.ftns.no (nic.ftns.no [194.52.172.18]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id BAA29719 for ; Mon, 15 Jan 1996 01:29:02 -0800 (PST) Received: from alpha1.nipnett.no (alpha1.nipnett.no [194.52.171.10]) by nic.ftns.no (8.6.12/8.6.12) with SMTP id JAA18804 for ; Mon, 15 Jan 1996 09:53:20 +0100 Received: from nic.follonett.no by alpha1.nipnett.no; (5.65/1.1.8.2/30Aug95-0205PM) id AA18387; Mon, 15 Jan 1996 09:54:34 +0100 Received: from gori.follonett.no (gori.follonett.no [194.198.33.77]) by follonett.no (8.7.2/8.7.2) with SMTP id JAA28606 for ; Mon, 15 Jan 1996 09:54:29 +0100 (MET) Message-Id: <30FA1646.19DC@follonett.no> Date: Mon, 15 Jan 1996 09:54:30 +0100 From: "K. Rune Nilsen" X-Mailer: Mozilla 2.0b3 (Win95; I) Mime-Version: 1.0 To: freebsd-isp@FreeBSD.org Subject: Re: syslog.conf questions Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk According to Bruce Bauman: > We get many lines in our /var/log/messages of the form: > > Jan 14 15:55:03 pm1 dialnet: port S3 connection succeeded dest dial16.mosquito.com > > How can we cause these to not be written to the logfile? > Is there a way to capture lines of the form: > > Jan 14 15:55:33 pm1 dialnet: port S6 jsmith.PPP login failed > > but ignore lines which are just successful connections? The documentation isn't > really clear on this. Your Portmaster is set up to log to the syslog demon on your server. It logs both successful and failed logins. The only way to change this is to turn off syslog logging on the Portmaster, and modify your radius demon instead. It is quite simple to do so: In acct.c, insert an #include statement among the others listed at the top: #include Add the hack like this: (the first line in the cut is line 80 in acct.c) /* * Write Detail file. */ sprintf(buffer, "%s/%s/detail", radacct_dir, clientname); if((outfd = fopen(buffer, "a")) == (FILE *)NULL) { sprintf(buffer, "Acct: Couldn't open file %s/%s/detail\n", radacct_dir, clientname); log_err(buffer); /* don't respond if we can't save record */ } else { /* Post a timestamp */ curtime = time(0); fputs(ctime(&curtime), outfd); /* Write each attribute/value to the log file */ pair = authreq->request; /* HACK INSERTED BY KRN */ new_syslog( pair ); /* END OF HACK */ while(pair != (VALUE_PAIR *)NULL) { fputs("\t", outfd); fprint_attr_val(outfd, pair); fputs("\n", outfd); pair = pair->next; } fputs("\n", outfd); fclose(outfd); /* let NAS know it is OK to delete from buffer */ send_acct_reply(authreq, (VALUE_PAIR *)NULL, (char *)NULL,activefd); } At the end of the file, add this function: void new_syslog( VALUE_PAIR *Pair ) { char *UserName; int AcctStatus; int AcctSessTime; while( Pair != (VALUE_PAIR*)0 ) { else if( !strcmp( Pair->name, "User-Name" ) ) UserName = Pair->strvalue; else if( !strcmp( Pair->name, "Acct-Status-Type" ) ) AcctStatus = Pair->lvalue; else if( !strcmp( Pair->name, "Acct-Session-Time" ) ) AcctSessTime = Pair->lvalue; Pair = Pair->next; } syslog( LOG_AUTH | LOG_INFO, "User %s %s, time %u", UserName, AcctStatus == PW_STATUS_START ? "up" : "down", AcctSessTime ); } I hope this does the trick. I picked it out of a larger hack I made a couple of months ago. We just started making a new radiusd (with the working name 'diameter' :) ) with a lot of fancy features for ISP's: * Classes of users, with type of service and prices for ever hour of the week. * Cached user-database. Each user can be a member of several classes, selected by a prefix after the username (joe-ppp, joe-telnet, etc.). * A log for each user, with time and price. * Redirecton to another radius-server if the username has a certain prefix. This way a central site can have users that need to connect from several other sites. * ++++ If you have more ideas, please tell. It'll take a couple of weeks before we have a working beta, but we have already set up a mailinglist for all who are interested. Send a message to 'diameter@follonett.no' with the subject 'subscribe' to join. It will be a little while before there is much traffic there, though. Rune. --------------------------------------------------------------------------- K. Rune Nilsen follonett@follonett.no Ansvar TV AS/Follonett rune@follonett.no info@follonett.no Tel (+47) 64877140 http://www.follonett.no/ Fax (+47) 64877141 From owner-freebsd-isp Mon Jan 15 05:40:14 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id FAA13580 for isp-outgoing; Mon, 15 Jan 1996 05:40:14 -0800 (PST) Received: from xioa.cosmic.org (xioa.cosmic.org [205.218.96.207]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id FAA13525 for ; Mon, 15 Jan 1996 05:40:08 -0800 (PST) Received: (from jwb@localhost) by xioa.cosmic.org (8.6.12/8.6.9) id IAA19666 for freebsd-isp@FreeBSD.ORG; Mon, 15 Jan 1996 08:42:50 GMT From: Joe Beiter Message-Id: <199601150842.IAA19666@xioa.cosmic.org> Subject: deluser To: freebsd-isp@FreeBSD.ORG Date: Mon, 15 Jan 1996 08:42:49 +0000 () X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.ORG Precedence: bulk I saw this was brought up a couple of times in the mail list archives but I couldn't seem to find the program. I need a program that will remove a specified user from the system (passwd entry, home directory and mailbox). I'm presently trying to hack vipw to do it but since I'm not much of a c programmer this is both difficult and dangerous. If it already exists I'd be overjoyed to find it :) Its the only thing presently keeping me from migrating our systems over from linux to freebsd. The adding and deleting of accounts is handled by administrative personnel that would not do well with the passwd file in an editor. From owner-freebsd-isp Mon Jan 15 14:30:27 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id OAA14737 for isp-outgoing; Mon, 15 Jan 1996 14:30:27 -0800 (PST) Received: from cabal.io.org (cabal.io.org [198.133.36.103]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id OAA14717 Mon, 15 Jan 1996 14:30:09 -0800 (PST) Received: (from taob@localhost) by cabal.io.org (8.6.12/8.6.12) id RAA01468; Mon, 15 Jan 1996 17:27:03 -0500 Date: Mon, 15 Jan 1996 17:27:02 -0500 (EST) From: Brian Tao To: Michael Smith cc: FREEBSD-HACKERS-L , FREEBSD-ISP-L Subject: Re: Blocked rlogin connections (was Re: A few other concerns ... ) In-Reply-To: <199601090124.LAA03919@genesis.atrad.adelaide.edu.au> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk On Tue, 9 Jan 1996, Michael Smith wrote: > > You say that inet doesn't see the incoming connections; can you use > tcpdump() to specifically watch for opening rlogin sessions? I've never really used tcpdump before (other than to marvel at all the information coming across the interface ;-)), so if anyone has some helpful suggestions on what switches to use or what to look for, I will gladly accept them. :) cabal is the source of the rlogin, zap is the destination. I fired up 'tcpdump -lq host cabal and port login' in one xterm and 'rlogin zap' in another. This is what I'm getting on the cabal side: # tcpdump -lq host cabal and port login tcpdump: listening on ed0 17:16:56.019745 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:16:56.020146 zap.io.org.login > cabal.io.org.1023: tcp 0 17:16:57.030426 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:16:57.030995 zap.io.org.login > cabal.io.org.1023: tcp 0 17:16:59.040373 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:16:59.040774 zap.io.org.login > cabal.io.org.1023: tcp 0 17:17:03.050413 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:17:03.050805 zap.io.org.login > cabal.io.org.1023: tcp 0 17:17:11.060380 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:17:11.060752 zap.io.org.login > cabal.io.org.1023: tcp 0 17:17:27.070400 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:17:27.071068 zap.io.org.login > cabal.io.org.1023: tcp 0 17:17:27.071246 cabal.io.org.1023 > zap.io.org.login: tcp 0 17:17:27.071466 cabal.io.org.1023 > zap.io.org.login: tcp 1 17:17:27.149950 zap.io.org.login > cabal.io.org.1023: tcp 0 [tos 0x10] 17:17:27.150086 cabal.io.org.1023 > zap.io.org.login: tcp 21 17:17:27.277057 zap.io.org.login > cabal.io.org.1023: tcp 1 [tos 0x10] 17:17:27.286097 zap.io.org.login > cabal.io.org.1023: tcp 1 [tos 0x10] 17:17:27.286648 cabal.io.org.1023 > zap.io.org.login: tcp 12 [tos 0x10] 17:17:27.336123 zap.io.org.login > cabal.io.org.1023: tcp 62 [tos 0x10] 17:17:27.500116 cabal.io.org.1023 > zap.io.org.login: tcp 0 [tos 0x10] 17:17:27.502165 zap.io.org.login > cabal.io.org.1023: tcp 1270 [tos 0x10] 17:17:27.700111 cabal.io.org.1023 > zap.io.org.login: tcp 0 [tos 0x10] 17:17:29.912278 zap.io.org.login > cabal.io.org.1023: tcp 61 [tos 0x10] 17:17:30.100138 cabal.io.org.1023 > zap.io.org.login: tcp 0 [tos 0x10] The rlogin hung for about the first 30 seconds (17:16:56 to 17:17:27 in the dump), then I got in. The rest of the dump is the FreeBSD banner and motd scrolling by. I don't know how to interpret tcpdump output, but it does appear that zap is sending some sort of acknowledgement back to cabal (0 bytes?). I can produce more verbose output from both cabal and zap for an actual failed rlogin attempt (this one was just delayed) if that will help. > > If a kernel problem, would setting net.inet.tcp.rfc1323 and > > net.inet.tcp.rfc1644 with sysctl have any effect (or side effect)? > > No idea; try it 8) Those to parameters are still set to 1. Do I need to reboot for changes from sysctl to take place? I haven't heard any reports from our customer support people about users not being able to rlogin from a terminal server, but that doesn't mean it isn't happening. :( -- Brian Tao (BT300, taob@io.org) Systems Administrator, Internex Online Inc. "Though this be madness, yet there is method in't" From owner-freebsd-isp Mon Jan 15 18:20:28 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id SAA02240 for isp-outgoing; Mon, 15 Jan 1996 18:20:28 -0800 (PST) Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id SAA02013 Mon, 15 Jan 1996 18:17:14 -0800 (PST) Received: from msmith@localhost by genesis.atrad.adelaide.edu.au (8.6.12/8.6.9) id MAA26941; Tue, 16 Jan 1996 12:43:38 +1030 From: Michael Smith Message-Id: <199601160213.MAA26941@genesis.atrad.adelaide.edu.au> Subject: Re: Blocked rlogin connections (was Re: A few other concerns ... ) To: taob@io.org (Brian Tao) Date: Tue, 16 Jan 1996 12:43:38 +1030 (CST) Cc: msmith@atrad.adelaide.edu.au, freebsd-hackers@freebsd.org, freebsd-isp@freebsd.org In-Reply-To: from "Brian Tao" at Jan 15, 96 05:27:02 pm MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org Precedence: bulk Brian Tao stands accused of saying: > I've never really used tcpdump before (other than to marvel at all > the information coming across the interface ;-)), so if anyone has > some helpful suggestions on what switches to use or what to look for, > I will gladly accept them. :) > > cabal is the source of the rlogin, zap is the destination. I > fired up 'tcpdump -lq host cabal and port login' in one xterm and > 'rlogin zap' in another. This is what I'm getting on the cabal side: Try 'tcpdump -lvv ...', there's not really enough info here to guess with. > I can produce more verbose output from both cabal and zap for an > actual failed rlogin attempt (this one was just delayed) if that will > help. Definitely. > > No idea; try it 8) > > Those to parameters are still set to 1. Do I need to reboot for > changes from sysctl to take place? I haven't heard any reports from No, sysctl changes aren't (yet) saved, so you'll have to do it every time after rebooting (there are options in /etc/sysconfig for this). > Brian Tao (BT300, taob@io.org) -- ]] Mike Smith, Software Engineer msmith@atrad.adelaide.edu.au [[ ]] Genesis Software genesis@atrad.adelaide.edu.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control (ph/fax) +61-8-267-3039 [[ ]] "Who does BSD?" "We do Chucky, we do." [[ From owner-freebsd-isp Mon Jan 15 20:42:03 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id UAA10690 for isp-outgoing; Mon, 15 Jan 1996 20:42:03 -0800 (PST) Received: from cabal.io.org (cabal.io.org [198.133.36.103]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id UAA10672 Mon, 15 Jan 1996 20:41:52 -0800 (PST) Received: (from taob@localhost) by cabal.io.org (8.6.12/8.6.12) id XAA01926; Mon, 15 Jan 1996 23:37:26 -0500 Date: Mon, 15 Jan 1996 23:37:26 -0500 (EST) From: Brian Tao To: Lyndon Nerenberg cc: FREEBSD-HACKERS-L , FREEBSD-ISP-L Subject: Re: A few other concerns from a FreeBSD ISP In-Reply-To: <199601062132.NAA07410@multivac.orthanc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk On Sat, 6 Jan 1996, Lyndon Nerenberg wrote: > > The rlogin problem is as you described it. I see it under all 2.X > releases. It's been infrequent enough of a problem that I haven't > bothered with a fix. It is annoying, though. *sigh*... any ideas what might constitute a fix? > The NFS problem you see is specific to TCP mounts. Can you run UDP? How do I specify that? The nfsd's on the server are started as "nfsd -t -u 7", to accomodate both types of requests. I don't see any such option with mount or nfsiod on the client side. > There are other problems with TCP mounts. If you restart mountd on the > server the existing TCP connections are dropped, forcing you to go > through a manual umount/mount cycle on the clients. I'm not clear on > whether TCP mounts should restart automatically -- I can't find anything > that specifies how TCP based mounts are supposed to act. > > If hanging NFS mounts are a problem you really should look at using > amd. It's a bit of work to set up, but one running it at least gives > a workaround for some of the NFS problems. Then again, I find that right > now I cannot unmount and NFS FS that's gone stale, even with umount -f. I had that problem too. The directory mount point doesn't show up in an ls, mount says it isn't mounted, but df says it is. :( -- Brian Tao (BT300, taob@io.org) Systems Administrator, Internex Online Inc. "Though this be madness, yet there is method in't" From owner-freebsd-isp Mon Jan 15 22:35:58 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id WAA16556 for isp-outgoing; Mon, 15 Jan 1996 22:35:58 -0800 (PST) Received: from isgate.is (isgate.is [193.4.58.51]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id WAA16534 for ; Mon, 15 Jan 1996 22:35:52 -0800 (PST) Received: from hummer.islandia.is by isgate.is (8.7.3/ISnet/14-10-91); Tue, 16 Jan 1996 06:35:39 GMT Received: from skalmarbaer.islandia.is by hummer.islandia.is (8.6.11/ISnet/12-09-94); Tue, 16 Jan 1996 06:31:54 GMT Date: Tue, 16 Jan 1996 06:31:54 GMT Message-Id: <199601160631.GAA11793@hummer.islandia.is> X-Sender: gestur@islandia.is X-Mailer: Windows Eudora Version 2.0.3 Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit To: Joe Beiter From: gestur@islandia.is (Gestur A. Grjetarsson) Subject: Re: deluser Cc: freebsd-isp@FreeBSD.org Sender: owner-isp@FreeBSD.org Precedence: bulk > > >I saw this was brought up a couple of times in the mail list archives but >I couldn't seem to find the program. I need a program that will remove a >specified user from the system (passwd entry, home directory and mailbox). > >I'm presently trying to hack vipw to do it but since I'm not much of a c >programmer this is both difficult and dangerous. If it already exists I'd >be overjoyed to find it :) > >Its the only thing presently keeping me from migrating our systems over from >linux to freebsd. The adding and deleting of accounts is handled by >administrative personnel that would not do well with the passwd file in an >editor. > > Try make new script used for erasing accounts in /usr/bin like thisone: /usr/bin/closeaccount begin script: --------------------- #!/bin/sh rm -r /usr/home/$1 rm /var/mail/$1 rm /var/mail/.$1.pop vipw ---------------------- end script chmod 700 /usr/bin/closeaccount the command would be "closeaccount user", where the script would take user assigned for $1 in the script. where in vipw, you find the user password like and erase it from there. the script should be finished erasing the user from your user dir when you finish the vipw edit. Međ kveđju, Sincerely, ----------------------------------------------------------- Gestur A. Grjetarsson kerfisstjóri islandia.is sysadmin islandia.is Islandia, Grensásvegur 7, 2h.t.h., 108 Reykjavik sími 5884020, modem 5884120, fax 5884014 http://www.islandia.is http://www.islandia.is/english.htm ----------------------------------------------------------- Programmers never die, they just GOSUB without RETURN ! The only thing which makes you eternal, is to live a life worth remembering ----------------------------------------------------------- From owner-freebsd-isp Mon Jan 15 23:56:20 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id XAA20448 for isp-outgoing; Mon, 15 Jan 1996 23:56:20 -0800 (PST) Received: from warp10.smartlink.net (joe@smartlink.net [204.118.4.2]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id XAA20443 for ; Mon, 15 Jan 1996 23:56:17 -0800 (PST) Received: by warp10.smartlink.net(8.6.12/SMARTLINK-1.0) with id XAA27795 for on Mon, 15 Jan 1996 23:57:13 -0800 Date: Mon, 15 Jan 1996 23:57:12 -0800 (PST) From: Joseph McDonald To: "Gestur A. Grjetarsson" cc: Joe Beiter , freebsd-isp@freebsd.org Subject: Re: deluser In-Reply-To: <199601160631.GAA11793@hummer.islandia.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk On Tue, 16 Jan 1996, Gestur A. Grjetarsson wrote: > /usr/bin/closeaccount > > > begin script: > --------------------- > #!/bin/sh > > rm -r /usr/home/$1 > rm /var/mail/$1 > rm /var/mail/.$1.pop > vipw Isn't an "rm -r" dangerous? What if the user symlinks to "/" ? -joe From owner-freebsd-isp Tue Jan 16 01:55:41 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id BAA00742 for isp-outgoing; Tue, 16 Jan 1996 01:55:41 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [192.216.222.3]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id BAA00721 for ; Tue, 16 Jan 1996 01:55:37 -0800 (PST) Received: from ion1.ionet.net (mrbill@ion1.ionet.net [204.96.200.5]) by who.cdrom.com (8.6.12/8.6.11) with ESMTP id BAA23483 for ; Tue, 16 Jan 1996 01:01:32 -0800 Received: (from mrbill@localhost) by ion1.ionet.net (8.6.12/8.6.12) id CAA15110 for freebsd-isp@freebsd.org; Tue, 16 Jan 1996 02:56:32 -0600 From: Bill Bradford Message-Id: <199601160856.CAA15110@ion1.ionet.net> Subject: HELP with routing? To: freebsd-isp@FreeBSD.org Date: Tue, 16 Jan 1996 02:56:31 -0600 (CST) X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk OK, here's the problem. I've got my home system, mrbill.ionet.net. IP address of 204.96.200.234. I've got dialup PPP to the ISP that I work for. I can connect, get out to the net and everything just fine. I can telnet to "mrbill" or "localhost" just fine to rebound back into my own machine, but when I try to telnet to mrbill.ionet.net, or the IP address of 204.96.200.234, it just sits and hangs there. I can TELNET to one of the other machines at work, and from there TELNET to either "mrbill.ionet.net" or 204.96.200.234, and it works just fine. I figure there's gotta be some kind of routing problem somewhere on the local machine, can someone help? Sorry for the long post, but I thought maybe SOMEONE out there had had the same problem. My IP address: 204.96.200.234 (mrbill.ionet.net) Netmask: 255.255.255.0 DNS: 204.96.200.3 Router / Gateway: 204.96.200.1 (3Com NetBuilder) Thanks for any and all help. So far, except for this minor problem (I can get around it by putting "127.0.0.1 mrbill.ionet.net mrbill" in /etc/hosts, but that's a no-no and kinda hokey), I *love* FreeBSD! Count me in as one of the faithful converted from Linux. Bill Bradford mrbill@ionet.net Assistant UNIX Systems Administrator Internet Oklahoma ------- here's the /etc/hosts file (misc entries deleted) ------------ # hosts,v 1.5 1995/04/09 09:54:39 rgrimes Exp 127.0.0.1 localhost mrbill 204.96.200.234 mrbill.ionet.net 204.96.200.3 ns.ionet.net ns 206.41.131.3 ns2.ionet.net ns2 ------- here's the relevant section of /etc/sysconfig --------------- hostname=mrbill defaultdomainname=ionet.net tcp_extensions=YES network_interfaces="tun0 lo0" ifconfig_lo0="inet localhost" ifconfig_tun0="inet mrbill 204.96.200.1 netmask 0xffffff00" static_routes="loopback multicast" route_loopback="127.0.0.1 localhost" route_multicast="224.0.0.0 -netmask 0xf0000000 -interface mrbill" defaultrouter=204.96.200.1 routedflags="-s" timedflags=NO xntpdflags="NO" tickadjflags="-Aq" ntpdate="NO" rwhod=NO sendmail_flags="NO" amdflags="NO" nfs_client=NO nfs_server=NO nis_clientflags="NO" nis_serverflags="NO" yppasswddflags="NO" namedflags="NO" xtend=NO savecore=NO kerberos_server=NO gated=NO check_quotas=NO accounting=NO ---------- here's the /etc/ppp/ppp.conf file ------------------------ default: set device /dev/cuaa1 set speed 38400 disable lqr deny lqr set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" ATE1Q0 OK-AT-OK \\dATDT\\T TIMEOUT 40 CONNECT" iostatic: set phone 720xxxx set login "TIMEOUT 5 login:-\\r-login: username word: password $ ppp" set timeout 900 iodynamic: set phone 720xxxx set login "TIMEOUT 5 login:-\\r-login: username2 word: password2 $ ppp" set timeout 800 ---------- here's /etc/ppp/ppp.linkup ------------------------------ 204.96.200.234 add 0 0 HISADDR 0 add 0 0 HISADDR ---------- Here's the output of "ifconfig -a" while dialed in ----- lp0: flags=810 mtu 1500 inet 0.0.0.0 --> 0.0.0.0 netmask 0x0 lo0: flags=8009 mtu 16384 inet 127.0.0.1 netmask 0xff000000 tun0: flags=51 mtu 1500 inet 204.96.200.234 --> 204.96.200.10 netmask 0xffffff00 tun1: flags=10 mtu 1500 tun2: flags=10 mtu 1500 tun3: flags=10 mtu 1500 tun4: flags=10 mtu 1500 tun5: flags=10 mtu 1500 tun6: flags=10 mtu 1500 tun7: flags=10 mtu 1500 tun8: flags=10 mtu 1500 tun9: flags=10 mtu 1500 tun10: flags=10 mtu 1500 tun11: flags=10 mtu 1500 tun12: flags=10 mtu 1500 tun13: flags=10 mtu 1500 tun14: flags=10 mtu 1500 tun15: flags=10 mtu 1500 From owner-freebsd-isp Tue Jan 16 06:54:02 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id GAA18415 for isp-outgoing; Tue, 16 Jan 1996 06:54:02 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [192.216.222.3]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id GAA18396 for ; Tue, 16 Jan 1996 06:53:59 -0800 (PST) Received: from rover.village.org (rover.village.org [198.137.146.49]) by who.cdrom.com (8.6.12/8.6.11) with ESMTP id GAA26467 for ; Tue, 16 Jan 1996 06:28:54 -0800 Received: from localhost (localhost [127.0.0.1]) by rover.village.org (8.6.11/8.6.6) with SMTP id HAA01362; Tue, 16 Jan 1996 07:28:49 -0700 Message-Id: <199601161428.HAA01362@rover.village.org> To: Joseph McDonald Subject: Re: deluser Cc: freebsd-isp@freebsd.org In-reply-to: Your message of Mon, 15 Jan 1996 23:57:12 PST Date: Tue, 16 Jan 1996 07:28:49 -0700 From: Warner Losh Sender: owner-isp@freebsd.org Precedence: bulk : Isn't an "rm -r" dangerous? What if the user symlinks to "/" ? No. That would be stupid. It just unlinks the symlink. Hard links would be a problem if users were on /, but they aren't. And normal mortal users can't create hard links to directories. Warner From owner-freebsd-isp Tue Jan 16 07:24:03 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id HAA19548 for isp-outgoing; Tue, 16 Jan 1996 07:24:03 -0800 (PST) Received: from who.cdrom.com (who.cdrom.com [192.216.222.3]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id HAA19527 for ; Tue, 16 Jan 1996 07:23:58 -0800 (PST) Received: from xioa.cosmic.org (xioa.cosmic.org [205.218.96.207]) by who.cdrom.com (8.6.12/8.6.11) with ESMTP id HAA26896 for ; Tue, 16 Jan 1996 07:18:26 -0800 Received: (from jwb@localhost) by xioa.cosmic.org (8.6.12/8.6.9) id KAA02366; Tue, 16 Jan 1996 10:18:22 GMT From: Joe Beiter Message-Id: <199601161018.KAA02366@xioa.cosmic.org> Subject: Re: deluser To: gestur@islandia.is (Gestur A. Grjetarsson) Date: Tue, 16 Jan 1996 10:18:21 +0000 () Cc: freebsd-isp@freebsd.org In-Reply-To: <199601160631.GAA11793@hummer.islandia.is> from "Gestur A. Grjetarsson" at Jan 16, 96 06:31:54 am X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org Precedence: bulk Gestur A. Grjetarsson said and I quote: ] ]the command would be "closeaccount user", where the script would take ]user assigned for $1 in the script. ] ]where in vipw, you find the user password like and erase it from there. ]the script should be finished erasing the user from your user dir when ]you finish the vipw edit. ] the problem is combining the person deleting accounts and the passwd file in an editor (in vipw). I can't trust them to not delete the root account or the wrong user. Thats why I'm trying to hack vipw.c and pw_util.c.. I want to replace the part that puts you into an editor with something that will instead remove a line from the temp passwd file that contains a pre-verified username.. and then goes on to just rebuild the passwd database. From owner-freebsd-isp Tue Jan 16 07:53:18 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id HAA21323 for isp-outgoing; Tue, 16 Jan 1996 07:53:18 -0800 (PST) Received: from agora.rdrop.com (root@agora.rdrop.com [199.2.210.241]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id HAA21317 for ; Tue, 16 Jan 1996 07:53:15 -0800 (PST) Received: by agora.rdrop.com (Smail3.1.29.1 #17) id m0tcDgz-000AoHC; Tue, 16 Jan 96 07:53 PST Message-Id: From: batie@agora.rdrop.com (Alan Batie) Subject: Re: deluser To: joe@smartlink.net (Joseph McDonald) Date: Tue, 16 Jan 1996 07:53:01 -0800 (PST) Cc: gestur@islandia.is, jwb@xioa.cosmic.org, freebsd-isp@freebsd.org In-Reply-To: from "Joseph McDonald" at Jan 15, 96 11:57:12 pm X-Mailer: ELM [version 2.4 PL24 ME8a] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org Precedence: bulk > Isn't an "rm -r" dangerous? What if the user symlinks to "/" ? No, rm -r does not follow symlinks; it just removes them. -- Alan Batie ______ batie@agora.rdrop.com \ / Freedom for me to be and do +1 503 452-0960 \ / only what *you* approve of 45 28 59 N / 122 43 20 W / 440' MSL \/ is no freedom at all. It is my policy to avoid purchase of any products from companies which use unrequested email advertisements or telephone solicitation. From owner-freebsd-isp Tue Jan 16 10:25:04 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id KAA01663 for isp-outgoing; Tue, 16 Jan 1996 10:25:04 -0800 (PST) Received: from isgate.is (isgate.is [193.4.58.51]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id KAA01652 for ; Tue, 16 Jan 1996 10:24:59 -0800 (PST) Received: from hummer.islandia.is by isgate.is (8.7.3/ISnet/14-10-91); Tue, 16 Jan 1996 18:24:46 GMT Received: from skalmarbaer.islandia.is by hummer.islandia.is (8.6.11/ISnet/12-09-94); Tue, 16 Jan 1996 18:19:09 GMT Date: Tue, 16 Jan 1996 18:19:09 GMT Message-Id: <199601161819.SAA23206@hummer.islandia.is> X-Sender: gestur@islandia.is X-Mailer: Windows Eudora Version 2.0.3 Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit To: Joe Beiter From: gestur@islandia.is (Gestur A. Grjetarsson) Subject: Re: deluser Cc: freebsd-isp@freebsd.org Sender: owner-isp@freebsd.org Precedence: bulk Greetings >] >]the command would be "closeaccount user", where the script would take >]user assigned for $1 in the script. >] >]where in vipw, you find the user password like and erase it from there. >]the script should be finished erasing the user from your user dir when >]you finish the vipw edit. >] > >the problem is combining the person deleting accounts and the passwd file in >an editor (in vipw). I can't trust them to not delete the root account or >the wrong user. Thats why I'm trying to hack vipw.c and pw_util.c.. I want >to replace the part that puts you into an editor with something that will >instead remove a line from the temp passwd file that contains a pre-verified >username.. and then goes on to just rebuild the passwd database. > > I haven't had any trouble using rm -r with symbolic links, ,, I've used script like the one I sent out, for quite a while now with no trouble. If anyone comes with a better sollution, I'd like to see it ! Međ kveđju, Sincerely, ----------------------------------------------------------- Gestur A. Grjetarsson kerfisstjóri islandia.is sysadmin islandia.is Islandia, Grensásvegur 7, 2h.t.h., 108 Reykjavik sími 5884020, modem 5884120, fax 5884014 http://www.islandia.is http://www.islandia.is/english.htm ----------------------------------------------------------- Programmers never die, they just GOSUB without RETURN ! The only thing which makes you eternal, is to live a life worth remembering ----------------------------------------------------------- From owner-freebsd-isp Wed Jan 17 07:50:05 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id HAA17424 for isp-outgoing; Wed, 17 Jan 1996 07:50:05 -0800 (PST) Received: from ion1.ionet.net (mrbill@ion1.ionet.net [204.96.200.5]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id HAA17378 Wed, 17 Jan 1996 07:49:58 -0800 (PST) Received: (from mrbill@localhost) by ion1.ionet.net (8.6.12/8.6.12) id JAA05087; Wed, 17 Jan 1996 09:48:13 -0600 From: Bill Bradford Message-Id: <199601171548.JAA05087@ion1.ionet.net> Subject: IRCD 2.8.21+CSr19 on FreeBSD? anyone? To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Date: Wed, 17 Jan 1996 09:48:12 -0600 (CST) X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-isp@freebsd.org Precedence: bulk Has anyone managed to port ircd2.8.21+CSr19 to FreeBSD yet? Or even managed to get it to compile? I'm in the situation here of having to apply all the patches for 2.8.21 *manually*, and hope it compiles. If you've got 2.8.21+CSr19 working, *please* let me know ASAP. Bill Bradford mrbill@ionet.net From owner-freebsd-isp Wed Jan 17 08:33:50 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id IAA20258 for isp-outgoing; Wed, 17 Jan 1996 08:33:50 -0800 (PST) Received: from defiant.flash.net (defiant.flash.net [206.149.24.9]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id IAA20253 for ; Wed, 17 Jan 1996 08:33:44 -0800 (PST) From: mwilson@defiant.flash.net Received: from olympus (shadowdale.flash.net [206.149.24.25]) by defiant.flash.net (8.7.3/8.6.9) with SMTP id KAA10977 for ; Wed, 17 Jan 1996 10:33:28 -0600 (CST) Message-Id: <199601171633.KAA10977@defiant.flash.net> Comments: Authenticated sender is To: freebsd-isp@freebsd.org Date: Wed, 17 Jan 1996 10:30:03 +0000 Subject: Re: deluser Priority: normal X-mailer: Pegasus Mail for Windows (v2.10) Sender: owner-isp@freebsd.org Precedence: bulk > >Its the only thing presently keeping me from migrating our systems over from > >linux to freebsd. The adding and deleting of accounts is handled by > >administrative personnel that would not do well with the passwd file in an > >editor. > > > > > > Try make new script used for erasing accounts in /usr/bin > like thisone: I wrote a program that modifies all the files needed and also lets you define the groups you can delete from. It is available from http://www.flash.net/~mwilson/puters/puters.html Be sure to check the code out so that it works for YOUR system. I set it up specifically for ours. ----------------------------------------------------------------------------- Mike Wilson, System Admin. mwilson@flash.net, http://www.flash.net/~mwilson ----------------------------------------------------------------------------- From owner-freebsd-isp Thu Jan 18 06:32:31 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id GAA09866 for isp-outgoing; Thu, 18 Jan 1996 06:32:31 -0800 (PST) Received: from itchy.mosquito.com (itchy.mosquito.com [206.205.132.2]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id GAA09861 for ; Thu, 18 Jan 1996 06:32:29 -0800 (PST) Received: (from boot@localhost) by itchy.mosquito.com (8.6.11/8.6.9) id JAA05182 for freebsd-isp@freebsd.org; Thu, 18 Jan 1996 09:33:12 -0500 From: Bruce Bauman Message-Id: <199601181433.JAA05182@itchy.mosquito.com> Subject: virtual domain setup To: freebsd-isp@freebsd.org Date: Thu, 18 Jan 1996 09:33:12 -0500 (EST) X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org Precedence: bulk We are a small ISP with a single class C domain. A couple of customers now want virtual domains for e-mail and web sites. I know how to ifconfig the aliases and I know how to set up Apache, but the nameserver configuration has me a little confused. Does anyone have a simple example of how to add a virtual domain to our nameserver? We are currently mosquito.com, with 206.205.132.xyz as our address, and want to assign some addresses from this range to customers: e.g. 206.205.132.10 would be foo.com 206.205.132.11 would be bar.com etc. I'm assuming what we are trying to do is indeed possible. Thanks. -- Bruce Bauman Mosquito Net From owner-freebsd-isp Thu Jan 18 08:05:19 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id IAA16603 for isp-outgoing; Thu, 18 Jan 1996 08:05:19 -0800 (PST) Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id IAA16596 for ; Thu, 18 Jan 1996 08:05:14 -0800 (PST) Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id KAA22458; Thu, 18 Jan 1996 10:03:53 -0600 From: Joe Greco Message-Id: <199601181603.KAA22458@brasil.moneng.mei.com> Subject: Re: virtual domain setup To: boot@mosquito.com (Bruce Bauman) Date: Thu, 18 Jan 1996 10:03:52 -0600 (CST) Cc: freebsd-isp@freebsd.org In-Reply-To: <199601181433.JAA05182@itchy.mosquito.com> from "Bruce Bauman" at Jan 18, 96 09:33:12 am X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org Precedence: bulk > We are a small ISP with a single class C domain. A couple of customers now > want virtual domains for e-mail and web sites. I know how to ifconfig the > aliases and I know how to set up Apache, but the nameserver configuration > has me a little confused. > > Does anyone have a simple example of how to add a virtual domain to our > nameserver? We are currently mosquito.com, with 206.205.132.xyz as our > address, and want to assign some addresses from this range to customers: > > e.g. 206.205.132.10 would be foo.com > 206.205.132.11 would be bar.com > > etc. > > I'm assuming what we are trying to do is indeed possible. You have to get InterNIC to delegate you both foo.com and bar.com. You then maintain zone files for both of those zones. Then it doesn't matter: you can do whatever you want. Think about: ---- zone foo.com: $ORIGIN foo.com. @ IN SOA dns1.mosquito.com. hostmaster.nic.mosquito.com. ( 9601180 86400 14400 604800 86400 ) IN NS dns1.mosquito.com. IN NS dns2.mosquito.com. IN NS dns.off.site.backup.net. ; @ IN MX 0 your.mail.hub.mosquito.com. ; www IN A 206.205.132.10 ---- zone bar.com: $ORIGIN bar.com. @ IN SOA dns1.mosquito.com. hostmaster.nic.mosquito.com. ( 9601180 86400 14400 604800 86400 ) IN NS dns1.mosquito.com. IN NS dns2.mosquito.com. IN NS dns.off.site.backup.net. ; @ IN MX 0 your.mail.hub.mosquito.com. ; www IN A 206.205.132.11 ---- zone 132.205.206.in-addr.arpa: [...] 10 IN PTR www.foo.com. 11 IN PTR www.bar.com. [...] There really is no such thing as a "virtual" domain. There is only domain or no domain. :-) The fact that "mosquito.com" is handling mail is irrelevant, as is the fact that the A records are only alias interfaces on your Web server. ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 From owner-freebsd-isp Thu Jan 18 08:30:00 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id IAA17563 for isp-outgoing; Thu, 18 Jan 1996 08:30:00 -0800 (PST) Received: from helix.nih.gov (helix.nih.gov [128.231.2.3]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id IAA17553 for ; Thu, 18 Jan 1996 08:29:56 -0800 (PST) Received: (from crtb@localhost) by helix.nih.gov (8.6.12/8.6.12) id LAA18613; Thu, 18 Jan 1996 11:29:50 -0500 Date: Thu, 18 Jan 1996 11:29:50 -0500 From: Chuck Bacon Message-Id: <199601181629.LAA18613@helix.nih.gov> To: Bruce Bauman Subject: Re: virtual domain setup Cc: freebsd-isp@freebsd.org Sender: owner-isp@freebsd.org Precedence: bulk >We are a small ISP with a single class C domain. A couple of customers now >want virtual domains for e-mail and web sites. I know how to ifconfig the >aliases and I know how to set up Apache, but the nameserver configuration >has me a little confused. > >Does anyone have a simple example of how to add a virtual domain to our >nameserver? We are currently mosquito.com, with 206.205.132.xyz as our >address, and want to assign some addresses from this range to customers: > >e.g. 206.205.132.10 would be foo.com > 206.205.132.11 would be bar.com > > etc. > >I'm assuming what we are trying to do is indeed possible. > >Thanks. > >-- Bruce Bauman > Mosquito Net Assuming foo.com and bar.com are registered, you simply put those names and addresses into your name server with A records. And you must create the reverse mappings with PTR records. You can put all of these records in a single file, with one SOA. Chuck Bacon -- crtb@helix.nih.gov FWIW, BTW, IMHO, AFAIK, YMMV RSN. OTOH, RTFM. FYI. TTYL. From owner-freebsd-isp Thu Jan 18 09:29:27 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA20728 for isp-outgoing; Thu, 18 Jan 1996 09:29:27 -0800 (PST) Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id JAA20719 for ; Thu, 18 Jan 1996 09:29:24 -0800 (PST) Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id LAA22576; Thu, 18 Jan 1996 11:27:02 -0600 From: Joe Greco Message-Id: <199601181727.LAA22576@brasil.moneng.mei.com> Subject: Re: virtual domain setup To: crtb@helix.nih.gov (Chuck Bacon) Date: Thu, 18 Jan 1996 11:27:02 -0600 (CST) Cc: boot@mosquito.com, freebsd-isp@freebsd.org In-Reply-To: <199601181629.LAA18613@helix.nih.gov> from "Chuck Bacon" at Jan 18, 96 11:29:50 am X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@freebsd.org Precedence: bulk > Assuming foo.com and bar.com are registered, you simply put those > names and addresses into your name server with A records. You need to create a zone for each. > And you must create the reverse mappings with PTR records. Not necessarily. Highly advisable but NOT a "must". > You can put all of these records in a single file, with one SOA. NOT true at all. You need to have a SOA for both foo.com and bar.com, and the rule is one SOA per zone, one zone per file. ... Joe ------------------------------------------------------------------------------- Joe Greco - Systems Administrator jgreco@ns.sol.net Solaria Public Access UNIX - Milwaukee, WI 414/342-4847 From owner-freebsd-isp Thu Jan 18 09:31:15 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA20779 for isp-outgoing; Thu, 18 Jan 1996 09:31:15 -0800 (PST) Received: from nic.ftns.no (nic.ftns.no [194.52.172.18]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id JAA20774 for ; Thu, 18 Jan 1996 09:31:13 -0800 (PST) Received: from alpha1.nipnett.no (alpha1.nipnett.no [194.52.171.10]) by nic.ftns.no (8.6.12/8.6.12) with SMTP id SAA28301; Thu, 18 Jan 1996 18:30:24 +0100 Received: from nic.follonett.no by alpha1.nipnett.no; (5.65/1.1.8.2/30Aug95-0205PM) id AA03129; Thu, 18 Jan 1996 18:31:42 +0100 Received: from gori.follonett.no (gori.follonett.no [194.198.33.77]) by follonett.no (8.7.2/8.7.2) with SMTP id SAA04528; Thu, 18 Jan 1996 18:31:16 +0100 (MET) Message-Id: <30FE8402.2634@follonett.no> Date: Thu, 18 Jan 1996 18:31:46 +0100 From: "K. Rune Nilsen" X-Mailer: Mozilla 2.0b3 (Win95; I) Mime-Version: 1.0 To: Bruce Bauman Cc: freebsd-isp@FreeBSD.org Subject: Re: virtual domain setup References: <199601181433.JAA05182@itchy.mosquito.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk Bruce Bauman wrote: > Does anyone have a simple example of how to add a virtual domain to our > nameserver? We are currently mosquito.com, with 206.205.132.xyz as our > address, and want to assign some addresses from this range to customers: > e.g. 206.205.132.10 would be foo.com > 206.205.132.11 would be bar.com The domain is not 'virtual' for the name server. It is set up exactly as it would be for a regular domain. file named.boot: primary foo.com foo.com ;Main domain primary bar.com bar.com ;Virtual domain file foo.com: @ IN SOA ns.foo.com hostmaster.foo.com ( serial number, etc. ) NS ns.foo.com. NS other.name.server.com. ; MX MX 10 ns.foo.com. ; Hosts ns IN A 206.205.132.10 HINFO i586 FreeBSD ; Aliases www CNAME ns ftp CNAME ns news CNAME ns mail CNAME ns foo.com. CNAME ns ; etc. file bar.com: @ IN SOA ns.bar.com hostmaster.foo.com ( serial number, etc. ) NS ns.foo.com. NS other.name.server.com. ; MX MX 10 ns.foo.com. ; Hosts ns IN A 206.205.132.11 HINFO i586 FreeBSD ; Aliases www CNAME ns ftp CNAME ns news CNAME ns mail CNAME ns bar.com. CNAME ns ; etc. Hope this helps. --------------------------------------------------------------------------- K. Rune Nilsen follonett@follonett.no Ansvar TV AS/Follonett rune@follonett.no info@follonett.no Tel (+47) 64877140 http://www.follonett.no/ Fax (+47) 64877141 From owner-freebsd-isp Thu Jan 18 09:37:56 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id JAA21205 for isp-outgoing; Thu, 18 Jan 1996 09:37:56 -0800 (PST) Received: from nic.ftns.no (nic.ftns.no [194.52.172.18]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id JAA21198 for ; Thu, 18 Jan 1996 09:37:50 -0800 (PST) Received: from alpha1.nipnett.no (alpha1.nipnett.no [194.52.171.10]) by nic.ftns.no (8.6.12/8.6.12) with SMTP id SAA28506; Thu, 18 Jan 1996 18:37:04 +0100 Received: from nic.follonett.no by alpha1.nipnett.no; (5.65/1.1.8.2/30Aug95-0205PM) id AA03203; Thu, 18 Jan 1996 18:38:22 +0100 Received: from gori.follonett.no (gori.follonett.no [194.198.33.77]) by follonett.no (8.7.2/8.7.2) with SMTP id SAA04556; Thu, 18 Jan 1996 18:37:56 +0100 (MET) Message-Id: <30FE8592.653E@follonett.no> Date: Thu, 18 Jan 1996 18:38:26 +0100 From: "K. Rune Nilsen" X-Mailer: Mozilla 2.0b3 (Win95; I) Mime-Version: 1.0 To: boot@mosquito.com Cc: freebsd-isp@FreeBSD.org Subject: Re: virtual domain setup References: <199601181433.JAA05182@itchy.mosquito.com> <30FE8402.2634@follonett.no> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk K. Rune Nilsen wrote: > > Bruce Bauman wrote: > > Does anyone have a simple example of how to add a virtual domain to our > > nameserver? We are currently mosquito.com, with 206.205.132.xyz as our > > address, and want to assign some addresses from this range to customers: > > e.g. 206.205.132.10 would be foo.com > > 206.205.132.11 would be bar.com > > The domain is not 'virtual' for the name server. It is set up exactly as > it would be for a regular domain. > > file named.boot: > primary foo.com foo.com ;Main domain > primary bar.com bar.com ;Virtual domain And of cource the reverse lookup file: in named.boot: primary 132.205.206.in-addr.arpa 132.205.206 in file 132.205.206: @ IN SOA ns.foo.com. hostmaster.foo.com. ( serial, etc. ) NS ns.foo.com. NS other.name.server.com. ; Pointers 10 PTR ns.foo.com. 11 PTR ns.bar.com. That should be all... --------------------------------------------------------------------------- K. Rune Nilsen follonett@follonett.no Ansvar TV AS/Follonett rune@follonett.no info@follonett.no Tel (+47) 64877140 http://www.follonett.no/ Fax (+47) 64877141 From owner-freebsd-isp Thu Jan 18 12:26:55 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id MAA29820 for isp-outgoing; Thu, 18 Jan 1996 12:26:55 -0800 (PST) Received: from brasil.moneng.mei.com (brasil.moneng.mei.com [151.186.109.160]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id MAA29803 for ; Thu, 18 Jan 1996 12:26:52 -0800 (PST) Received: (from jgreco@localhost) by brasil.moneng.mei.com (8.7.Beta.1/8.7.Beta.1) id OAA22826; Thu, 18 Jan 1996 14:24:58 -0600 From: Joe Greco Message-Id: <199601182024.OAA22826@brasil.moneng.mei.com> Subject: Re: virtual domain setup To: rune@follonett.no (K. Rune Nilsen) Date: Thu, 18 Jan 1996 14:24:58 -0600 (CST) Cc: boot@mosquito.com, freebsd-isp@FreeBSD.org In-Reply-To: <30FE8402.2634@follonett.no> from "K. Rune Nilsen" at Jan 18, 96 06:31:46 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-isp@FreeBSD.org Precedence: bulk > file foo.com: > @ IN SOA ns.foo.com hostmaster.foo.com ( serial number, etc. ) > NS ns.foo.com. > NS other.name.server.com. > ; MX > MX 10 ns.foo.com. > ; Hosts > ns IN A 206.205.132.10 > HINFO i586 FreeBSD > ; Aliases > www CNAME ns > ftp CNAME ns > news CNAME ns > mail CNAME ns > foo.com. CNAME ns > ; etc. > > > file bar.com: > @ IN SOA ns.bar.com hostmaster.foo.com ( serial number, etc. ) > NS ns.foo.com. > NS other.name.server.com. > ; MX > MX 10 ns.foo.com. > ; Hosts > ns IN A 206.205.132.11 > HINFO i586 FreeBSD > ; Aliases > www CNAME ns > ftp CNAME ns > news CNAME ns > mail CNAME ns > bar.com. CNAME ns > ; etc. That's pretty good but you probably DON'T want to have to set up a "virtual" nameserver on your Web host (also note your SOA for bar.com would be wrong too).. you _probably_ want to use your primary and secondary existing DNS architecture to do this... easier to administer. ... JG From owner-freebsd-isp Thu Jan 18 19:22:06 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id TAA28155 for isp-outgoing; Thu, 18 Jan 1996 19:22:06 -0800 (PST) Received: from neptune.pristine.com.tw ([192.72.150.2]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id TAA28140 for ; Thu, 18 Jan 1996 19:21:57 -0800 (PST) Received: (from team_fbf@localhost) by neptune.pristine.com.tw (8.6.11/8.6.9) id LAA16625; Fri, 19 Jan 1996 11:16:36 GMT From: ywliu Message-Id: <199601191116.LAA16625@neptune.pristine.com.tw> Subject: Re: virtual domain setup To: jgreco@brasil.moneng.mei.com (Joe Greco) Date: Fri, 19 Jan 1996 11:16:35 +0000 () Cc: rune@follonett.no, boot@mosquito.com, freebsd-isp@FreeBSD.org In-Reply-To: <199601182024.OAA22826@brasil.moneng.mei.com> from "Joe Greco" at Jan 18, 96 02:24:58 pm X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk > > That's pretty good but you probably DON'T want to have to set up a > "virtual" nameserver on your Web host (also note your SOA for bar.com would > be wrong too).. you _probably_ want to use your primary and secondary > existing DNS architecture to do this... easier to administer. > > ... JG > Could you elaborate more on how to use primary and secondary servers to accomplish this setup wihtou really setting a "virtual" name server ? I am really eager to know because this is going to be one of our major business of our company (an ISP). Yen-Wei Liu From owner-freebsd-isp Fri Jan 19 00:26:47 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id AAA28146 for isp-outgoing; Fri, 19 Jan 1996 00:26:47 -0800 (PST) Received: from nic.ftns.no (nic.ftns.no [194.52.172.18]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id AAA28141 for ; Fri, 19 Jan 1996 00:26:44 -0800 (PST) Received: from alpha1.nipnett.no (alpha1.nipnett.no [194.52.171.10]) by nic.ftns.no (8.6.12/8.6.12) with SMTP id JAA19724 for ; Fri, 19 Jan 1996 09:25:57 +0100 Received: from nic.follonett.no by alpha1.nipnett.no; (5.65/1.1.8.2/30Aug95-0205PM) id AA09656; Fri, 19 Jan 1996 09:27:16 +0100 Received: from gori.follonett.no (gori.follonett.no [194.198.33.77]) by follonett.no (8.7.2/8.7.2) with SMTP id JAA13395 for ; Fri, 19 Jan 1996 09:26:46 +0100 (MET) Message-Id: <30FF55FD.112B@follonett.no> Date: Fri, 19 Jan 1996 09:27:41 +0100 From: "K. Rune Nilsen" X-Mailer: Mozilla 2.0b3 (Win95; I) Mime-Version: 1.0 To: freebsd-isp@FreeBSD.org Subject: Re: virtual domain setup References: <199601182024.OAA22826@brasil.moneng.mei.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-isp@FreeBSD.org Precedence: bulk Joe Greco wrote: > > file bar.com: > > @ IN SOA ns.bar.com hostmaster.foo.com ( serial number, etc. ) > > That's pretty good but you probably DON'T want to have to set up a > "virtual" nameserver on your Web host (also note your SOA for bar.com would > be wrong too).. you _probably_ want to use your primary and secondary > existing DNS architecture to do this... easier to administer. Ooops. The SOA Should of course be: @ IN SOA ns.foo.com. hostmaster.foo.com. ( ... ) Rune --------------------------------------------------------------------------- K. Rune Nilsen follonett@follonett.no Ansvar TV AS/Follonett rune@follonett.no info@follonett.no Tel (+47) 64877140 http://www.follonett.no/ Fax (+47) 64877141 PGP public key at: finger rune@follonett.no From owner-freebsd-isp Sat Jan 20 08:12:12 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id IAA02969 for isp-outgoing; Sat, 20 Jan 1996 08:12:12 -0800 (PST) Received: from aebeard.technion.ac.il (aebeard.technion.ac.il [132.68.146.67]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id IAA02841 Sat, 20 Jan 1996 08:11:30 -0800 (PST) Received: (from yuri@localhost) by aebeard.technion.ac.il (8.6.12/8.6.9) id SAA06897; Sat, 20 Jan 1996 18:12:01 +0200 Date: Sat, 20 Jan 1996 18:12:00 +0200 (IST) From: Yuri Gindin To: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: wu-ftpd won't tar files Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk Hello, I just compiled wu-ftpd from ports-current on my -stable system Everything works fine for anon-ftp, but it won't tar a files on the fly. The command "get file.tar.gz" gives: local: file.tar.gz remote: file.tar.gz 200 PORT command successful. 550 file.tar.gz: No such file OR directory. i installed ls, tar and gzip to ~ftp/bin with the following perms: drwx--x--x 2 0 wheel 512 Dec 28 14:47 bin drwx--x--x 2 0 wheel 512 Dec 27 18:07 etc drwxrwxrwt 2 0 wheel 512 Dec 27 18:32 incoming drwxr-xr-x 4 0 wheel 512 Jan 7 20:15 pub and in ~ftp/bin: -r-xr-xr-x 1 root wheel 16384 Dec 28 16:47 compress -r-xr-xr-x 1 root wheel 98304 Dec 28 16:46 gzip -r-xr-xr-x 1 root wheel 147456 Dec 28 16:29 ls -r-xr-xr-x 1 root wheel 229376 Dec 28 16:47 tar everything static. You can also see that it unable to get uid, instead of this gives a numbers, inspite of installation of the passwd file in ~ftp/etc. and also don't follows symbolic links, when trying to cd. lrwxr-xr-x 1 0 wheel 8 Jan 7 20:17 FreeBSD-stable -> /usr/src lrwxr-xr-x 1 0 wheel 14 Jan 7 20:17 ports -> /usr/src/ports ftp> cd ports 550 ports: No such file or directory. here are my config files: ftpconversions: :.Z: : :/bin/gzip -d -c %s:T_REG|T_ASCII:O_UNCOMPRESS:UNCOMPRESS : : :.Z:/bin/compress -c %s:T_REG:O_COMPRESS:COMPRESS :.gz: : :/bin/gzip -cd %s:T_REG|T_ASCII:O_UNCOMPRESS:GUNZIP : : :.gz:/bin/gzip -9 -c %s:T_REG:O_COMPRESS:GZIP : : :.tar:/bin/tar -c -f - %s:T_REG|T_DIR:O_TAR:TAR : : :.tar.Z:/bin/tar -c -Z -f - %s:T_REG|T_DIR:O_COMPRESS|O_TAR:TAR+COMPRESS : : :.tar.gz:/bin/tar -c -z -f - %s:T_REG|T_DIR:O_COMPRESS|O_TAR:TAR+GZIP What's wrong ? Any suggestions ? Thanks in advance . /-----------------------------------------------------------------\ | \\ Yuri Gindin http://www.xpert.com/~yuri | | \\ // || Home: +972-4-282475 | | \\ // ___ ___ ___||__ Work: +972-4-545259 | | \// / --\ / --\ / --||-- Internet | | //\ || \\// __/ || || S/W Development | | // \\ ||__//\\____ || \\__ Network Integration | | ==//===\\||======================= System Administration | \---------\||-------UNIX Systems LTD------------------------------/ From owner-freebsd-isp Sat Jan 20 21:21:08 1996 Return-Path: owner-isp Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id VAA15919 for isp-outgoing; Sat, 20 Jan 1996 21:21:08 -0800 (PST) Received: from news1.gtn.com (news1.gtn.com [192.109.159.3]) by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id VAA15912 Sat, 20 Jan 1996 21:21:04 -0800 (PST) Received: (from uucp@localhost) by news1.gtn.com (8.7.2/8.7.2) id LAA20836; Sat, 20 Jan 1996 11:30:12 +0100 (MET) Received: from knobel.gun.de (localhost [127.0.0.1]) by knobel.gun.de (8.7.3/8.7.3) with SMTP id LAA01618; Sat, 20 Jan 1996 11:28:33 +0100 (MET) Date: Sat, 20 Jan 1996 11:28:33 +0100 (MET) From: Andreas Klemm To: isp@freebsd.org cc: jkh@freebsd.org, joerg@freebsd.org Subject: FreeBSD-current Proxy Server in our company (vs. Sun) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-isp@freebsd.org Precedence: bulk Hi ! My company wants to connect to internet. My first hardware concept was too expensive :-( So the 'big boss' said "Nooooo" ;-) My first step is to replace the Sun Proxy Server (SS5, 125MHz) with a fine FreeBSD-current machine. Workload will be 50 people of my company doing mainly WWW and sometimes ftp services. Some people from outside will probably visit out WWW pages over an Euro ISDN (etsi) 64KBit line. Then additionally perhaps 10 Modem user who dial in over a Livingston portmaster via PPP... So let's assume a peak of 50-75 users. Our Network 10MBitTP +---------- FreeBSD Proxy Server / 10MBitTP Cisco 4500M +------------ Livingston Portmaster (10 Channels) | \ 64KBit | +---------- ISDN connection to ISP | +- company network 10MBitTP to a 3COM Lanplex 2500 The cisco is equipped with a 6-port TP card and a 8 x S0 ISDN card, because it will have to handle some other connections as well a) to about 6 other offices (Novell Server) b) to about 10 other suns via SunLink ISDN Ok, this was only for your information, whats going on. Now, the configuration of the FreeBSD machine ... ASUS P/I P55TP4XE 256k synchr. burst cache Pentium 133 CPU 2x32MB 60ns PS/2 (not EDO) RAM [I think the burst cache is more important than EDO] 3COM Ethernet card 3C509 And now ... The disk configuration ... Imagine ... the machine also will act as a News Server in the company for about 10 concurrent people. So basically I would tend to put Operating system, News Server and WWW server onto 3 different disks. I'd like to get three 2GB Wide SCSI disks, but I think this would be overkill. And would cost *too much*. What would be better ... generally ... To buy 3 or 4 1GB Harddisks at 5400rpm to distribute the SCSI workload onto 3 or four different disks (those drives are sooo inexpensive now ...) Or should buy a wide SCSI Controller and connect a four GB Quantum Atlas to it ??? The drive with the 2 MB cache on it ???? What would you do ??? The two basic q: are: How much RAM and what disk configuration .... Andreas /// -- andreas@knobel.gun.de /\/\___ Wiechers & Partner Datentechnik GmbH Andreas Klemm ___/\/\/ - Support Unix - aklemm@wup.de - \/ ftp://sunsite.unc.edu/pub/Linux/system/Printing/aps-491.tgz apsfilter - magic print filter 4lpd >>> knobel is powered by FreeBSD <<<