From owner-freebsd-isp Sun Jul 20 09:21:03 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA22438 for isp-outgoing; Sun, 20 Jul 1997 09:21:03 -0700 (PDT) Received: from veda.is (veda.is [193.4.230.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA22433 for ; Sun, 20 Jul 1997 09:20:58 -0700 (PDT) Received: from ubiq.veda.is (ubiq.veda.is [193.4.230.60]) by veda.is (8.8.6/8.8.5) with ESMTP id QAA01711; Sun, 20 Jul 1997 16:20:46 GMT From: Adam David Received: (from adam@localhost) by ubiq.veda.is (8.8.6/8.8.5) id QAA05273; Sun, 20 Jul 1997 16:20:43 GMT Message-Id: <199707201620.QAA05273@ubiq.veda.is> Subject: Re: anon PPP In-Reply-To: from Daniel O'Callaghan at "Jul 20, 97 04:34:43 pm" To: danny@panda.hilink.com.au (Daniel O'Callaghan) Date: Sun, 20 Jul 1997 16:20:42 +0000 (GMT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > What I'm really after is some way of saying (in options.ttyd*) use this > > alternate IP address if authentication fails. I'm not sure what syntax > > would be best, but :x.x.x.x,y.y.y.y looks promising. > > > > Another solution would be to let pap-secrets define a range of available > > IP addresses for the user, let the "login" user (via the login option) have > > a class entry in pap-secrets, and let the "authentication failed" class have > > lower precedence there. > > I can't help wondering why you want to do this when auth fails. If you > want to give anon ppp, can't you just give out a passwordless account name? It is my experience that the new breed of Internet users will not be able to cope with such instructions, because it is too complicated or irrelevant. Therefore I need to provide a mechanism to handle this eventuality. For instance, there is a strong tendency to capitalize the username, but that's not all. Besides, how would I specify that a whole class of users (for instance, "login" & PAP_OK) be handled by a single secret? After that it is a simple matter to add the !PAP_OK feature. The purpose is to provide a plug-in and go functionality for bootstrapping the users and to act as a safety net when the remote configuration is no longer correct. If a user can install the software in the first place, he gets a limited access which he can use to assist in the software configuration and for user registration and other support/admin communication. Of course, this is no help when Windows often forgets that it is installed for TCP/IP, but it covers most other areas. -- Adam David From owner-freebsd-isp Sun Jul 20 11:49:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA28549 for isp-outgoing; Sun, 20 Jul 1997 11:49:07 -0700 (PDT) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA28544 for ; Sun, 20 Jul 1997 11:49:05 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id SAA01339; Sun, 20 Jul 1997 18:48:48 GMT Date: Sun, 20 Jul 1997 11:48:48 -0700 (PDT) From: Dan Busarow To: "Ronald E. Eakins, Sr." cc: isp@FreeBSD.ORG Subject: Re: DNS "slow" In-Reply-To: <199707191942.MAA02575@ns1.nms.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 19 Jul 1997, Ronald E. Eakins, Sr. wrote: > I have seen this problem under the following conditions: > > You have a Primary and a Secondary server and the clients point at > the Secondary server first. Since the secondary server has to obtain > info from the primary, it goes to get the name from the primary, but Not so. Secondaries are just as authoritative as primaries. The only difference between the two is in how they load zone data. > http://www.acmebw.com/askmr.htm Well, he has it right. See http://www.acmebw.com/askmrdns/general.htm#rtt-explanation But you should really be using DNS and BIND as your info source. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 From owner-freebsd-isp Sun Jul 20 14:47:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA04113 for isp-outgoing; Sun, 20 Jul 1997 14:47:29 -0700 (PDT) Received: from Wicked.eaznet.com ([206.62.254.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA04108 for ; Sun, 20 Jul 1997 14:47:25 -0700 (PDT) Received: from wicked.eaznet.com ([206.62.254.145]) by Wicked.eaznet.com (8.7.5/8.7.3) with ESMTP id OAA07323; Sun, 20 Jul 1997 14:48:40 -0700 (MST) Message-ID: <33D28822.17354A0@eaznet.com> Date: Sun, 20 Jul 1997 14:50:26 -0700 From: Eddie Fry Organization: Creative Solutions X-Mailer: Mozilla 4.0b4 [en] (Win95; I) MIME-Version: 1.0 To: Robert Blayzor , isp@freebsd.org Subject: Re: Portmaster 3 X-Priority: 3 (Normal) References: <199707201708.NAA12013@nimbus.superior.net> Content-Type: text/plain; charset=iso-8859-1 Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Robert, We were using 3.5.1b8 for a couple of weeks but kept having problems with ports locking up. Livingston had us upgrade from there. Eddie Robert Blayzor wrote: > > I have a confusing problem. I've recently > installed a PM3 with > ComOS > > 3.5.1b20 on a channelized T-1. A lot of my > customers now complain > that > > they keep getting disconnected from the > network or they get messages > > when they log in that they cannot establish a > network connection. > We > > were previously using a USR Total Control and > these customers had no > > problems. Does anybody have any ideas? > > Same problem here, it's the beta. The best > ComOS for channelized T1 > that > I've found so far to be the most stable is > beta8, but thats just us. > We > have similar problems. Hopefully with the > release of the K56flex > stuff, > these problems will disappear. > > -- > Robert Blayzor robert@superior.net > Telecon > Communications > CIS Manager/SysAdmin Network > Engineer 131 Enterprise > Rd. > Superior Net Services > 518-762-3456 Johnstown, NY > 12095 > "FreeBSD! Turning PC's into > Workstations!" From owner-freebsd-isp Sun Jul 20 14:53:57 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA04350 for isp-outgoing; Sun, 20 Jul 1997 14:53:57 -0700 (PDT) Received: from Wicked.eaznet.com ([206.62.254.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA04345 for ; Sun, 20 Jul 1997 14:53:54 -0700 (PDT) Received: from wicked.eaznet.com ([206.62.254.145]) by Wicked.eaznet.com (8.7.5/8.7.3) with ESMTP id OAA07343; Sun, 20 Jul 1997 14:55:31 -0700 (MST) Message-ID: <33D289BD.467D2BC6@eaznet.com> Date: Sun, 20 Jul 1997 14:57:17 -0700 From: Eddie Fry Organization: Creative Solutions X-Mailer: Mozilla 4.0b4 [en] (Win95; I) MIME-Version: 1.0 To: Jacob Suter , freebsd-isp@freebsd.org Subject: Re: Portmaster 3 X-Priority: 3 (Normal) References: <33D1AEE7.B3D1DDFC@linus.intrastar.net> Content-Type: multipart/alternative; boundary="------------0389614EC5F5F76870556C7A" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk --------------0389614EC5F5F76870556C7A Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Jacob, Jacob Suter wrote: > Were the USR-TC's on the CT1's or were they on > analog? If they were > not They were on analog lines. Do you think it may be a problem with the telco? Some of our users aren't having any problems at all. Although, I haven't seen any logins at > 28.8k. Hmmm... Eddie > on the same CT1's, I'd start bitching out the > telco. Also, try > testing > other versions of the ComOS (3.5b8 is good and > has 33.6k code). If > Livingston & Lucent would get on the ball the > entire problem would > leave, as Lucent already has (supposibly) good > software for their > DSP's. > > JS > > Gary D. Margiotta wrote: > > > > I have a confusing problem. I've recently > installed a PM3 with > > ComOS > > > 3.5.1b20 on a channelized T-1. A lot of my > customers now complain > > that > > > they keep getting disconnected from the > network or they get > messages > > > > > when they log in that they cannot establish > a network connection. > > We > > > were previously using a USR Total Control > and these customers had > no > > > > > problems. Does anybody have any ideas? > > > > Honestly, go search the Portmaster-users > mailing list at > > Livinston....I > > was on the list for a while and there were > many similar problems > like > > the > > one you are having...I don't remember what > exactly it was that was > the > > > > problem in most cases, but it might've been > buggy code...I think > > 3.5.1b8 > > was the most stable one they had at that time. > > > > > -Gary Margiotta > > TBE Internet Services > > http://www.tbe.net --------------0389614EC5F5F76870556C7A Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit Jacob,

Jacob Suter wrote:

Were the USR-TC's on the CT1's or were they on analog?  If they were
not
They were on analog lines.  Do you think it may be a problem with the telco?  Some of our users aren't having any problems at all.  Although, I haven't seen any logins at > 28.8k.

Hmmm...

Eddie

on the same CT1's, I'd start bitching out the telco.  Also, try
testing
other versions of the ComOS (3.5b8 is good and has 33.6k code).  If
Livingston & Lucent would get on the ball the entire problem would
leave, as Lucent already has (supposibly) good software for their
DSP's.

JS

Gary D. Margiotta wrote:

> > I have a confusing problem.  I've recently installed a PM3 with
> ComOS
> > 3.5.1b20 on a channelized T-1.  A lot of my customers now complain
> that
> > they keep getting disconnected from the network or they get
messages
>
> > when they log in that they cannot establish a network connection.
> We
> > were previously using a USR Total Control and these customers had
no
>
> > problems.  Does anybody have any ideas?
>
> Honestly, go search the Portmaster-users mailing list at
> Livinston....I
> was on the list for a while and there were many similar problems
like
> the
> one you are having...I don't remember what exactly it was that was
the
>
> problem in most cases, but it might've been buggy code...I think
> 3.5.1b8
> was the most stable one they had at that time.
>
> -Gary Margiotta
> TBE Internet Services
> http://www.tbe.net

  --------------0389614EC5F5F76870556C7A-- From owner-freebsd-isp Sun Jul 20 16:10:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA06968 for isp-outgoing; Sun, 20 Jul 1997 16:10:09 -0700 (PDT) Received: from linus.intrastar.net (root@linus.intrastar.net [206.136.25.19]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA06958 for ; Sun, 20 Jul 1997 16:10:03 -0700 (PDT) Received: from jake.fuck.org (pmnac1-10.inu.net [208.129.167.12]) by linus.intrastar.net (8.8.5/TerraNovaNet) with ESMTP id SAA00190; Sun, 20 Jul 1997 18:09:15 -0500 (CDT) Message-ID: <33D29B6A.FC6312A7@linus.intrastar.net> Date: Sun, 20 Jul 1997 18:12:42 -0500 From: Jacob Suter X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: Eddie Fry CC: freebsd-isp@FreeBSD.ORG Subject: Re: Portmaster 3 X-Priority: 3 (Normal) References: <33D1AEE7.B3D1DDFC@linus.intrastar.net> <33D289BD.467D2BC6@eaznet.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >> Were the USR-TC's on the CT1's or were they on analog? If they were >> >> not > > They were on analog lines. Do you think it may be a problem with the > telco? Some of our users aren't having any problems at all. > Although, I haven't seen any logins at > 28.8k. I'd check first if the T1s are 'line side' or 'trunk side'.. you NEED trunk side for any decent quality connections. Trunk side is straight digital out of the switch, line side is just that - switch -> analog -> reverse channel bank -> digital -> your pm3 and VERY VERY crappy. I'd make sure you aren't getting screwed (ie - line side) and take it from there. From owner-freebsd-isp Sun Jul 20 16:57:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA08587 for isp-outgoing; Sun, 20 Jul 1997 16:57:32 -0700 (PDT) Received: from csgs2.c-s-g.com ([209.12.189.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA08581 for ; Sun, 20 Jul 1997 16:57:25 -0700 (PDT) Received: from ricko.jcrnet.com ([209.12.189.47]) by csgs2.c-s-g.com (post.office MTA v2.0 0813 ID# 0-0U10) with SMTP id AAA242 for ; Sun, 20 Jul 1997 17:54:37 -0600 Message-ID: <33D2A694.77E7@c-s-g.com> Date: Sun, 20 Jul 1997 18:00:20 -0600 From: rosteen@c-s-g.com (Rick Osteen) Reply-To: rosteen@c-s-g.com Organization: Internet Access of El Paso X-Mailer: Mozilla 3.0Gold (Win95; I) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: name server not working Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello, I just installed another server and the name server does not work on it. Where might I look for the error messages for this paticular daemon?(named) Thanks, Rick newbie on the loose From owner-freebsd-isp Sun Jul 20 19:50:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA17101 for isp-outgoing; Sun, 20 Jul 1997 19:50:18 -0700 (PDT) Received: from bmccane.uit.net (bmccane.uit.net [208.129.189.48]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA17095 for ; Sun, 20 Jul 1997 19:50:10 -0700 (PDT) Received: from bmccane.uit.net (localhost.mccane.com [127.0.0.1]) by bmccane.uit.net (8.8.5/8.8.5) with ESMTP id VAA12559; Sun, 20 Jul 1997 21:49:21 -0500 (CDT) Message-Id: <199707210249.VAA12559@bmccane.uit.net> X-Mailer: exmh version 2.0gamma 1/27/96 To: Robert Shady cc: muditha@seychelles.net, isp@FreeBSD.ORG, portmaster-users@livingston.com Subject: Re: OFF Topic In-reply-to: Your message of "Fri, 18 Jul 1997 14:21:46 EDT." <199707181821.OAA04927@server.id.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 20 Jul 1997 21:49:21 -0500 From: Wm Brian McCane Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Brian; > It's pretty unlikely that the equipment used to setup a WAN to 34 US > cities runs on 240V as he stated he needed... :) > > -- Rob Rob, It's beeen a while, but I believe most of the boxes have this little switch by the power cord receptical that says 120/240. brian From owner-freebsd-isp Mon Jul 21 04:12:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA07170 for isp-outgoing; Mon, 21 Jul 1997 04:12:04 -0700 (PDT) Received: from albert.osu.cz (albert.osu.cz [195.113.106.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA07121; Mon, 21 Jul 1997 04:11:32 -0700 (PDT) Received: from localhost (belkovic@localhost) by albert.osu.cz (8.8.5/8.6.12) with SMTP id NAA00375; Mon, 21 Jul 1997 13:13:31 +0200 (MET DST) Date: Mon, 21 Jul 1997 13:13:31 +0200 (MET DST) From: Josef Belkovics To: Jamie Rishaw cc: freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: timezone In-Reply-To: <199707191820.OAA16843@intuition.iagnet.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 19 Jul 1997, Jamie Rishaw wrote: > This is a really dumb question, but I know it's probably an FAQ. > > How do you change the time zone on a machine? I had a disk die on a server > last week.. I brought up a new system, and am synching time via NTP.. the > problem is, it's 5 hours off.. (exactly 5 hours off) ;) I think the GMT > offset is hosed.. where can I look to fix this? > > Thanks ;) > > -jamie > -- > jamie g.k. rishaw dal/efnet:gavroche Internet Access Group > 'whois JGR2' for PGP keyID/Fingerprint __ Network Operations/TSD > DID:216.902.5455 FAX:216.623.3566 \/ 800.637.4IAGx5455 > "The machine's fine. It just doesn't work." -dan@nic.net > Copy appropriate file from /usr/share/zoneinfo into /etc and rename it as /etc/localtime. You need also null file (touch ->) /etc/wall_cmos_clock + run adjkerntz -i. Both are for you set up in /etc/rc (or /etc/rc.local (2.2.2), sysconfig (before 2.2.2); try grep adjkerntz /etc/rc*). You can also try /stand/sysinstall. See also man zic - time zone compiler (but you probably haven't source for zic). Thing isn't complicated. You can simply do it in various ways. Most simply is to use /stand/sysinstall. Here you have source for zic and timezone MET: #/osu/etc/xMET # Rule NAME FROM TO TYPE IN ON AT SAVE LETTER Rule M-Eur 1986 max - Mar lastSun 2:00s 1:00 " DST" Rule M-Eur 1986 max - Oct lastSun 2:00s 0 - # Zone NAME GMTOFF RULES/SAVE FORMAT [UNTIL] Zone MET 1:00 M-Eur MET%s # Tom Hoffman says that MET is also known as Central European Time Link MET CET #eof Josef Belkovics From owner-freebsd-isp Mon Jul 21 07:51:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA16869 for isp-outgoing; Mon, 21 Jul 1997 07:51:01 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA16864 for ; Mon, 21 Jul 1997 07:50:59 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id KAA00961; Mon, 21 Jul 1997 10:53:43 -0400 (EDT) Message-ID: <33D37839.41C67EA6@club-web.com> Date: Mon, 21 Jul 1997 10:54:49 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: rosteen@c-s-g.com CC: isp@freebsd.org Subject: Re: name server not working References: <33D2A694.77E7@c-s-g.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Rick Osteen wrote: > > Hello, > I just installed another server and the name server does not work on it. > Where might I look for the error messages for this paticular > daemon?(named) You have to turn named on.. :).. it isn't on by default... look in your netstart or rc.local file... and picp up the Oriley book on BIND :). Mark -- Mark Segal mark@club-web.com Systems Admin - Club-Web Inc. From owner-freebsd-isp Mon Jul 21 16:56:10 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA21048 for isp-outgoing; Mon, 21 Jul 1997 16:56:10 -0700 (PDT) Received: from csgs2.c-s-g.com ([209.12.189.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA21042 for ; Mon, 21 Jul 1997 16:56:08 -0700 (PDT) Received: from ricko.jcrnet.com ([209.12.189.59]) by csgs2.c-s-g.com (post.office MTA v2.0 0813 ID# 0-0U10) with SMTP id AAA248; Mon, 21 Jul 1997 17:53:20 -0600 Message-ID: <33D3F7B9.15B1@c-s-g.com> Date: Mon, 21 Jul 1997 17:58:49 -0600 From: rosteen@c-s-g.com (Rick Osteen) Reply-To: rosteen@c-s-g.com Organization: Internet Access of El Paso X-Mailer: Mozilla 3.0Gold (Win95; I) MIME-Version: 1.0 To: Mark Segal CC: freebsd-isp@freebsd.org Subject: Re: name server not working References: <33D2A694.77E7@c-s-g.com> <33D37839.41C67EA6@club-web.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Mark Segal wrote: > > Rick Osteen wrote: > > > > Hello, > > I just installed another server and the name server does not work on it. > > Where might I look for the error messages for this paticular > > daemon?(named) > You have to turn named on.. :).. it isn't on by default... look in your > netstart or rc.local file... and picp up the Oriley book on BIND :). > > Mark > > -- > Mark Segal > mark@club-web.com > Systems Admin - Club-Web Inc. Mark, Thanks for the heads up. I am now getting an error on a different machine. Can you make heads or tails of this: # grep named messages Jul 19 02:25:27 bsd named[968]: starting. named 4.9.4-P1 Tue May 20 09:23:44 Gd Jul 19 02:25:42 bsd named[968]: There may be a name server already running Jul 19 02:25:42 bsd named[968]: exiting Jul 19 02:28:36 ns2 named[75]: starting. named 4.9.4-P1 Tue May 20 09:23:44 GMd Jul 19 02:28:36 ns2 named[75]: localhost.rev: No such file or directory Jul 19 02:28:36 ns2 named[76]: Ready to answer queries. # nslookup *** Can't find server name for address 209.12.189.2: Server failed *** Default servers are not available Is this more an nslookup error or a nameserver error? Thanks, Rick From owner-freebsd-isp Mon Jul 21 18:44:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA26357 for isp-outgoing; Mon, 21 Jul 1997 18:44:13 -0700 (PDT) Received: from shop1 (pool40.hiper.net [207.137.172.40]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA26350 for ; Mon, 21 Jul 1997 18:44:09 -0700 (PDT) Message-ID: <33D4115A.A4E48658@ccsales.com> Date: Mon, 21 Jul 1997 18:48:10 -0700 From: "Randy A. Katz" Reply-To: randyk@ccsales.com Organization: CCSales, Inc. X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: isp@freebsd.org Subject: ANALOG MODEM CHASSIS X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Here's what I want: I've got a Livingston 2E-10 (it's got 10 serial ports). I want a modem rack (8 modems is fine) which has a single power source, possibly redundant power, perhaps not. What I really wanted was a solution that allowed for 8 analog modems that can be remotely reset and had a single power source. I wanted to be able to authenticate dialups through RADIUS. The 2E-10 works like a rock but I have these single external modems that I'm getting just sick of... Any suggestions??? Thanx, Randy Katz From owner-freebsd-isp Mon Jul 21 20:22:42 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA01787 for isp-outgoing; Mon, 21 Jul 1997 20:22:42 -0700 (PDT) Received: from luke.cpl.net (luke.cpl.net [206.85.245.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA01782 for ; Mon, 21 Jul 1997 20:22:38 -0700 (PDT) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.8.5) with SMTP id UAA02366; Mon, 21 Jul 1997 20:22:44 -0700 (PDT) Date: Mon, 21 Jul 1997 20:22:43 -0700 (PDT) From: Shawn Ramsey To: Rick Osteen cc: Mark Segal , freebsd-isp@FreeBSD.ORG Subject: Re: name server not working In-Reply-To: <33D3F7B9.15B1@c-s-g.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Jul 19 02:25:42 bsd named[968]: exiting > Jul 19 02:28:36 ns2 named[75]: starting. named 4.9.4-P1 Tue May 20 > 09:23:44 GMd > Jul 19 02:28:36 ns2 named[75]: localhost.rev: No such file or directory > Jul 19 02:28:36 ns2 named[76]: Ready to answer queries. > # nslookup > *** Can't find server name for address 209.12.189.2: Server failed > *** Default servers are not available > > Is this more an nslookup error or a nameserver error? I believe this error means there is no reverse DNS for the default name server, which is 209.12.189.2. I would suggest(like others) to get DNS & Bind, it will make setting up a DNS server a peice of cake. From owner-freebsd-isp Mon Jul 21 23:18:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA09194 for isp-outgoing; Mon, 21 Jul 1997 23:18:49 -0700 (PDT) Received: from topgun.asiapac.net (topgun.asiapac.net [202.188.0.106]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA09187 for ; Mon, 21 Jul 1997 23:18:40 -0700 (PDT) Received: from topgun ([202.188.0.106]) by topgun.asiapac.net (Netscape Mail Server v2.0) with SMTP id AAA24728 for ; Tue, 22 Jul 1997 14:16:20 +0800 Date: Tue, 22 Jul 1997 14:16:20 +0800 (SGT) From: Swee-Chuan Khoo X-Sender: sckhoo@topgun To: isp@freebsd.org Subject: named-xfer problem Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk hi, i am trying to troubleshoot the zone xfer problem here is the error mesg # /usr/local/sbin/named-xfer -z xxxxx.zone -f /tmp/xxxxx.zone 202.135.xxx.168 named-xfer[8636]: [202.135.xxx.168] not authoritative for xxxxx.zone, SOA query got rcode 0, aa 0, ancount 0, aucount 13 but 202.135.xxx.168 machine is the authoritative server for this zone. the other domain is ok and only this is having problem. ---------------------------------------------------------------- Swee-Chuan Khoo sckhoo@asiapac.net System Administrator - Internet Evangelist http://www.asiapac.net/~sckhoo/ #include ---------------------------------------------------------------- Astronimical Soc M'sia http://www.asiapac.net/~sckhoo/asm.html "Simplify - There is no value in complexity, it's too difficult to manage." From owner-freebsd-isp Mon Jul 21 23:53:18 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA10865 for isp-outgoing; Mon, 21 Jul 1997 23:53:18 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA10858 for ; Mon, 21 Jul 1997 23:53:11 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id QAA20817; Tue, 22 Jul 1997 16:52:48 +1000 (EST) Date: Tue, 22 Jul 1997 16:52:47 +1000 (EST) From: "Daniel O'Callaghan" To: Swee-Chuan Khoo cc: isp@FreeBSD.ORG Subject: Re: named-xfer problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Swee-Chuan Khoo wrote: > i am trying to troubleshoot the zone xfer problem > > here is the error mesg > > # /usr/local/sbin/named-xfer -z xxxxx.zone -f /tmp/xxxxx.zone > 202.135.xxx.168 > named-xfer[8636]: [202.135.xxx.168] not authoritative for xxxxx.zone, SOA > query got rcode 0, aa 0, ancount 0, aucount 13 > > but 202.135.xxx.168 machine is the authoritative server for > this zone. the other domain is ok and only this is having problem. 203.135.xxx.168 says it is *not* authoritative because there is an error in the zone file. Look in /var/log/messages on .168, or turn named on on .168. The secondary machine is OK. Danny From owner-freebsd-isp Mon Jul 21 23:57:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA11020 for isp-outgoing; Mon, 21 Jul 1997 23:57:04 -0700 (PDT) Received: from topgun.asiapac.net (topgun.asiapac.net [202.188.0.106]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA11011 for ; Mon, 21 Jul 1997 23:57:00 -0700 (PDT) Received: from topgun ([202.188.0.106]) by topgun.asiapac.net (Netscape Mail Server v2.0) with SMTP id AAA24956; Tue, 22 Jul 1997 14:54:46 +0800 Date: Tue, 22 Jul 1997 14:54:46 +0800 (SGT) From: Swee-Chuan Khoo X-Sender: sckhoo@topgun To: "Daniel O'Callaghan" cc: isp@FreeBSD.ORG Subject: Re: named-xfer problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Daniel O'Callaghan wrote: > 203.135.xxx.168 says it is *not* authoritative because there is an error > in the zone file. Look in /var/log/messages on .168, or turn named on on > .168. The secondary machine is OK. this is inthe /var/log/messages after i did the "ndc restart" Jul 22 14:34:55 luke named[2540]: starting. named 4.9.4-P1 Tue May 20 09:23:44 GMT 1997 jkh@time.cdrom.com:/usr/obj/usr/src/usr.sbin/named Jul 22 14:34:55 luke named[2541]: Ready to answer queries. ---------------------------------------------------------------- Swee-Chuan Khoo sckhoo@asiapac.net System Administrator - Internet Evangelist http://www.asiapac.net/~sckhoo/ #include ---------------------------------------------------------------- Astronimical Soc M'sia http://www.asiapac.net/~sckhoo/asm.html "Simplify - There is no value in complexity, it's too difficult to manage." From owner-freebsd-isp Tue Jul 22 02:36:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA19214 for isp-outgoing; Tue, 22 Jul 1997 02:36:13 -0700 (PDT) Received: from wizard.teksupport.net.au (wizard.teksupport.net.au [203.17.1.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA19196 for ; Tue, 22 Jul 1997 02:36:03 -0700 (PDT) Received: from magician.teksupport.net.au (magician.teksupport.net.au [203.17.1.98]) by wizard.teksupport.net.au (8.8.5/8.6.9) with SMTP id TAA09642; Tue, 22 Jul 1997 19:34:38 +1000 (EST) Date: Tue, 22 Jul 1997 19:34:38 +1000 (EST) Message-Id: <199707220934.TAA09642@wizard.teksupport.net.au> X-Sender: robseco1@wizard.teksupport.net.au X-Mailer: Windows Eudora Light Version 1.5.2 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: randyk@ccsales.com From: Rob Secombe Subject: Re: ANALOG MODEM CHASSIS Cc: isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 18:48 21-07-97 -0700, you wrote: >Here's what I want: > >I've got a Livingston 2E-10 (it's got 10 serial ports). >I want a modem rack (8 modems is fine) which has a single power source, >possibly redundant power, perhaps not. > > > >What I really wanted was a solution that allowed for 8 analog modems >that can be remotely reset and had a single power source. I wanted to be >able to authenticate dialups through RADIUS. The 2E-10 works like a rock >but I have these single external modems that I'm getting just sick of... > > >Any suggestions??? > >Thanx, >Randy Katz > > Hi, We currently use a rack mount system made here in Australia by Vortex. They are Rockwell based and will take up to 16 modems in a 3RU box. They use one switchmode power supply for each bank of eight modems. We are 240 VAC down here so I am making a rash assumption that they are auto/jumper/switchable for 110 VAC. We have found them extremely reliable and reasonably priced. One other bonus is that they are remote resetable by dropping DTR for 30 seconds. I dont know if it is viable to import them from Australia but if you are interested check out their website at http://www.vcc.com.au/ Cheers Rob Secombe Teksupport Pty. Ltd. 7 Warwick Avenue, Springvale, Email robseco@wizard.teksupport.net.au Melbourne 3171 Victoria Australia World Wide Web http://www.teksupport.net.au/ ************************************************************************* From owner-freebsd-isp Tue Jul 22 05:36:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA25547 for isp-outgoing; Tue, 22 Jul 1997 05:36:48 -0700 (PDT) Received: from extrouter.test.cdu.elektra.ru ([193.125.114.71]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA25453; Tue, 22 Jul 1997 05:36:04 -0700 (PDT) Received: from mailhub.cdu.ru (mailhub.cdu.ru [172.16.10.50]) by extrouter.test.cdu.elektra.ru (8.8.6/8.8.6) with ESMTP id QAA00334; Tue, 22 Jul 1997 16:34:59 +0400 (MSD) Received: from mailhub.cdu.ru (Win95.cdu.ru [172.16.2.10]) by mailhub.cdu.ru (8.8.6/8.8.6) with ESMTP id QAA00462; Tue, 22 Jul 1997 16:35:19 +0400 (MSD) Message-Id: <199707221235.QAA00462@mailhub.cdu.ru> From: "Win95" To: "FreeBSD bugs" , "FreeBSD current" , "FreeBSD hackers" , "FreeBSD hubs" , "FreeBSD hardware" , "FreeBSD isp" , "FreeBSD questions" , "FreeBSD security" Subject: I have a problem with Ethernet adapters! Date: Tue, 22 Jul 1997 16:27:08 +0400 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1157 MIME-Version: 1.0 Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello! I've installed the FreeBSD 2.2.2-RELEASE on three PC (Gateway2000 P5-100) to make a Firewall. But there is something strange with my Ethernet adapters :-( There is my schema: | | | | x------------x | x------------x | <------X ext_router X-----X------X int_router X----X to my x------------x | x------------x | provider | | x----------x | X-------X mail_hub | | | x----------x | | | | x----------x | X-------X client | | x----------x | | All computers have FreeBSD 2.2.2-RELEASE. ext_router and int_router have two Ethernet adapters: 3Com 3C900 and SMC 80xx. mail_hub have 3Com 3C509 Ethernet adapter. Now I try to describe my problem: When I try to download a file from ext_router to int_router via FTP, transfer rate is around 700 KBytes/sec. The same transfere rate is when I try to transfer a file from int_router to mail_hub or even from ext_router to mail_hub! But if only I try to UPLOAD a file from int_router to ext_router, then transfer rate is only around 200 KBytes/sec! ;-((((( I have only one question: WHY? There is output of command "ifconfig -a" on int_router: vx0: flags=8843 mtu 1500 inet 193.125.114.36 netmask 0xffffffe0 broadcast 193.125.114.63 ether 00:60:97:b5:f6:37 ed0: flags=8843 mtu 1500 inet 172.16.10.35 netmask 0xffff0000 broadcast 172.16.255.255 ether 00:00:c0:50:6d:c3 lo0: flags=8049 mtu 16384 inet 127.0.0.1 netmask 0xff000000 Maybe, a SIMPLEX flag is wrong? HELP ME! It's very important for me! If you answer me by email, it may be more fast! PS: I'm so sorry for my English :-( Yours sincerely, Pavel ----------------------------------------------------------- Pavel P. Zabortsev, software engineer CDO UPS of Russia Tel.: (095) 220-4513, 220-4350 E-mail: ppz@cdu.elektra.ru ppz@usa.net ----------------------------------------------------------- From owner-freebsd-isp Tue Jul 22 05:48:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA26024 for isp-outgoing; Tue, 22 Jul 1997 05:48:25 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA26016 for ; Tue, 22 Jul 1997 05:48:19 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id IAA02747; Tue, 22 Jul 1997 08:48:06 -0400 (EDT) Date: Tue, 22 Jul 1997 08:49:02 -0400 (EDT) From: Steve Hovey To: Swee-Chuan Khoo cc: isp@FreeBSD.ORG Subject: Re: named-xfer problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Sounds like a typo in the original file on 168 On Tue, 22 Jul 1997, Swee-Chuan Khoo wrote: > > hi, > > i am trying to troubleshoot the zone xfer problem > > here is the error mesg > > # /usr/local/sbin/named-xfer -z xxxxx.zone -f /tmp/xxxxx.zone > 202.135.xxx.168 > named-xfer[8636]: [202.135.xxx.168] not authoritative for xxxxx.zone, SOA > query got rcode 0, aa 0, ancount 0, aucount 13 > > but 202.135.xxx.168 machine is the authoritative server for > this zone. the other domain is ok and only this is having problem. > > ---------------------------------------------------------------- > Swee-Chuan Khoo sckhoo@asiapac.net > System Administrator - Internet Evangelist > http://www.asiapac.net/~sckhoo/ #include > ---------------------------------------------------------------- > Astronimical Soc M'sia http://www.asiapac.net/~sckhoo/asm.html > > "Simplify - There is no value in complexity, it's too difficult to > manage." > > From owner-freebsd-isp Tue Jul 22 06:19:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA27284 for isp-outgoing; Tue, 22 Jul 1997 06:19:44 -0700 (PDT) Received: from virtualmarketing.com (email.virtualmarketing.com [207.7.29.253]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA27279 for ; Tue, 22 Jul 1997 06:19:38 -0700 (PDT) Received: from ntserver2 (207.7.29.107) by virtualmarketing.com with ESMTP (Eudora Internet Mail Server 1.2b2); Tue, 22 Jul 1997 08:20:17 -0600 Message-ID: <33D4B369.4E76694E@v-m.com> Date: Tue, 22 Jul 1997 08:19:37 -0500 From: MP Reply-To: marcin@v-m.com X-Mailer: Mozilla 4.01 [en] (WinNT; I) MIME-Version: 1.0 To: freebsd Subject: KICK the USER.... X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Is there a simple way to disconnect the USER if he is conected via. Telnet to the system... Thanks Marcin From owner-freebsd-isp Tue Jul 22 06:43:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA28521 for isp-outgoing; Tue, 22 Jul 1997 06:43:29 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA28512 for ; Tue, 22 Jul 1997 06:43:24 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id JAA07153 for ; Tue, 22 Jul 1997 09:46:07 -0400 (EDT) Message-ID: <33D4B9ED.446B9B3D@club-web.com> Date: Tue, 22 Jul 1997 09:47:25 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: isp@freebsd.org Subject: Re: Kick the USER .. Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk MP wrote: > > Is there a simple way to disconnect the USER if he is conected via. > Telnet to the system... > There is always to simple su to the user and type "kill -9 1" :). -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Tue Jul 22 06:44:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA28639 for isp-outgoing; Tue, 22 Jul 1997 06:44:39 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA28631 for ; Tue, 22 Jul 1997 06:44:32 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id IAA26108 for ; Tue, 22 Jul 1997 08:44:24 -0500 (CDT) Message-Id: <2.2.32.19970722134430.00903ea0@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 22 Jul 1997 08:44:30 -0500 To: isp@FreeBSD.ORG From: Rick Morel Subject: FTP Problem Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I'm running Wu-FTP and can't seem to find any real info, except for the statement that it adds security. Anonymous FTP is fine. Here's my problem. Users can see anything on the machine. I did do a "chmod 711" on the /home subdir, so "backing" up one level hides that. Of course, someone can just "cd /home" and see everything. Also, a user can just keep going up a level and see everything on the system. I hesitate to "chmod 711" on every subdir -- I really don't know if this would bomb out other software? Of course, a savy user could just "cd /etc" or something. I've been using War-FTPD on an NT box, with the FreeBSD drive mapped using Samba. I'd really prefer to use FreeBSD and get rid of that @#$@#$ NT! Surely there's a way to prevent users from seeing/downloading things outside their home subdir???? Rick Morel * * * * * * * * * * * * **** * * * * * * * * * * * * * * * * * * Rick Morel * # # # ### ### * * Morel Research, Ltd. * # # # # # * * New Iberia, LA * # # # # * * * # # # # # * * http://www.morelr.com * # # # ### ### * * * * * rmorel@morelr.com * * * * Keep It Simple Stupid! * * * * * * * * * * * **** * * * * * * * * * * * * * * * * * * * From owner-freebsd-isp Tue Jul 22 06:56:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA29358 for isp-outgoing; Tue, 22 Jul 1997 06:56:27 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA29352 for ; Tue, 22 Jul 1997 06:56:25 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id JAA04267; Tue, 22 Jul 1997 09:56:18 -0400 (EDT) Date: Tue, 22 Jul 1997 09:57:14 -0400 (EDT) From: Steve Hovey To: MP cc: freebsd Subject: Re: KICK the USER.... In-Reply-To: <33D4B369.4E76694E@v-m.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, MP wrote: > Is there a simple way to disconnect the USER if he is conected via. > Telnet to the system... > You can kill of his shell. From owner-freebsd-isp Tue Jul 22 08:01:42 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA03358 for isp-outgoing; Tue, 22 Jul 1997 08:01:42 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA03353 for ; Tue, 22 Jul 1997 08:01:39 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.6/8.6.9) with ESMTP id IAA01873; Tue, 22 Jul 1997 08:00:02 -0700 (PDT) To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-reply-to: Your message of "Tue, 22 Jul 1997 08:44:30 CDT." <2.2.32.19970722134430.00903ea0@mail.morelr.com> Date: Tue, 22 Jul 1997 08:00:02 -0700 Message-ID: <1869.869583602@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Anonymous FTP is fine. Here's my problem. Users can see anything on the > machine. I did do a "chmod 711" on the /home subdir, so "backing" up one > level hides that. Of course, someone can just "cd /home" and see everything. You must have set it up very oddly for this behavior to be in effect. Read the man page for ftpd (the system one) since it actually describes the setup of an anonymous ftp area in some detail, showing how you keep anon ftp users wholly confined to a given subtree (and completely unable to "cd /home and see everything"), and you can compare that procedure with whatever you did to set up your "anon ftp" user. Jordan From owner-freebsd-isp Tue Jul 22 08:41:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA05381 for isp-outgoing; Tue, 22 Jul 1997 08:41:34 -0700 (PDT) Received: from tsi.gte.com ([205.174.176.40]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id IAA05369 for ; Tue, 22 Jul 1997 08:41:29 -0700 (PDT) Received: from iiohab.tsi.gte.com by tsi.gte.com (5.x/SMI-SVR4) id AA23532; Tue, 22 Jul 1997 11:45:01 -0400 Date: Tue, 22 Jul 1997 11:40:29 -0400 (EDT) From: Scott Morris To: MP Cc: freebsd Subject: Re: KICK the USER.... In-Reply-To: <33D4B369.4E76694E@v-m.com> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ummmm...kill pid On Tue, 22 Jul 1997, MP wrote: > Is there a simple way to disconnect the USER if he is conected via. > Telnet to the system... > > Thanks > > Marcin > > > ----- Scott Morris GTE Telecommunication Services Inc. Information Security smorris@tsi.gte.com From owner-freebsd-isp Tue Jul 22 08:48:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA05784 for isp-outgoing; Tue, 22 Jul 1997 08:48:20 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.visint.co.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA05775 for ; Tue, 22 Jul 1997 08:48:13 -0700 (PDT) Received: from dylan.visint.co.uk (dylan.visint.co.uk [194.207.134.180]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id QAA14403; Tue, 22 Jul 1997 16:47:52 +0100 (BST) Date: Tue, 22 Jul 1997 16:47:52 +0100 (BST) From: Stephen Roome To: Steve Hovey cc: MP , freebsd Subject: Re: KICK the USER.... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Steve Hovey wrote: > On Tue, 22 Jul 1997, MP wrote: > > > Is there a simple way to disconnect the USER if he is conected via. > > Telnet to the system... > > > > You can kill of his shell. how about somethink like.. foreach f (`ps axug | grep | awk '{print $2}'`) { kill -1 $f } Although that could have seriously bad side effects =) (and it's zsh, dunno if sh/csh etc. likes that) The package "skill" in the sysutils collection is more handy if you've got a lot of users, although you could just write a shell script... -- Steve Roome - Vision Interactive Ltd. Tel:+44(0)117 9730597 Home:+44(0)976 241342 WWW: http://dylan.visint.co.uk/ From owner-freebsd-isp Tue Jul 22 09:16:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA08168 for isp-outgoing; Tue, 22 Jul 1997 09:16:25 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA08148 for ; Tue, 22 Jul 1997 09:16:17 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.6/8.6.9) with ESMTP id JAA03276; Tue, 22 Jul 1997 09:14:42 -0700 (PDT) To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-reply-to: Your message of "Tue, 22 Jul 1997 11:10:29 CDT." <2.2.32.19970722161029.0091b1a8@mail.morelr.com> Date: Tue, 22 Jul 1997 09:14:41 -0700 Message-ID: <3273.869588081@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Anonymous FTP is fine. It's _users'_ FTP. Ah, I read it wrong. In that case, what you're describing is a feature, not a bug, and if you want to chroot _every_ user on your system then that's going to take some hacking of ftpd. Jordan From owner-freebsd-isp Tue Jul 22 09:20:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA08676 for isp-outgoing; Tue, 22 Jul 1997 09:20:40 -0700 (PDT) Received: from wopr.inetu.net (wopr.inetu.net [207.18.13.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA08671 for ; Tue, 22 Jul 1997 09:20:36 -0700 (PDT) Received: from localhost (dev@localhost) by wopr.inetu.net (8.8.5/8.8.5) with SMTP id MAA03379 for ; Tue, 22 Jul 1997 12:27:41 -0400 (EDT) Date: Tue, 22 Jul 1997 12:27:41 -0400 (EDT) From: Dev Chanchani To: freebsd-isp@freebsd.org Subject: pseudo-device ccd Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Has anyone played with the following kernel option: pseudo-device ccd number Concatenated disks. This pseudo-device allows you to concatenate multiple disk partitions into one large ``meta''-disk. The number after ccd is the total number of concatenated disks (not total number of disks that can be concatenated) that can be created. (See ccd(4) and ccdconfig(8) man pages for more details.) Optional. I was just wondering about experience in concatenating multiple disks. (And does this option work with multiple disks, or just multiple partitions within one disk)? Thanks in advance, Dev From owner-freebsd-isp Tue Jul 22 09:39:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA09870 for isp-outgoing; Tue, 22 Jul 1997 09:39:25 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA09860 for ; Tue, 22 Jul 1997 09:39:20 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id LAA02386; Tue, 22 Jul 1997 11:10:22 -0500 (CDT) Message-Id: <2.2.32.19970722161029.0091b1a8@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 22 Jul 1997 11:10:29 -0500 To: "Jordan K. Hubbard" From: Rick Morel Subject: Re: FTP Problem Cc: isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I wrote: >> Anonymous FTP is fine. Here's my problem. Users can see anything on the ^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^ >> machine. I did do a "chmod 711" on the /home subdir, so "backing" up one >> level hides that. Of course, someone can just "cd /home" and see everything. At 08:00 AM 7/22/97 -0700, you wrote: >You must have set it up very oddly for this behavior to be in effect. >Read the man page for ftpd (the system one) since it actually >describes the setup of an anonymous ftp area in some detail, showing >how you keep anon ftp users wholly confined to a given subtree (and >completely unable to "cd /home and see everything"), and you can >compare that procedure with whatever you did to set up your "anon ftp" >user. > > Jordan > Anonymous FTP is fine. It's _users'_ FTP. Rick From owner-freebsd-isp Tue Jul 22 09:42:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA10010 for isp-outgoing; Tue, 22 Jul 1997 09:42:43 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA10004 for ; Tue, 22 Jul 1997 09:42:40 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id LAA04472; Tue, 22 Jul 1997 11:42:28 -0500 (CDT) Message-Id: <2.2.32.19970722164234.0091eee0@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 22 Jul 1997 11:42:34 -0500 To: "Jordan K. Hubbard" From: Rick Morel Subject: Re: FTP Problem Cc: isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 09:14 AM 7/22/97 -0700, you wrote: >> Anonymous FTP is fine. It's _users'_ FTP. > >Ah, I read it wrong. In that case, what you're describing is a >feature, not a bug, and if you want to chroot _every_ user on your >system then that's going to take some hacking of ftpd. > > Jordan > Agggghhhh! A _FEATURE_! (Insert Twilight Zone Theme here) I've been warped into a Microsoft list! A _FEATURE_! :-) Really? Seems like that's "releasing" a lot of info the "great unwashed" shouldn't be privy to. Guess I'll stick with War-FTPD on NT and Samba :-( Rick --------------------------------------------------------------------- We have not succeeded in answering all of our questions. Indeed, we sometimes feel that we have not completely answered any of them. The answers we have found only served to raise a whole new set of questions. In some ways we feel that we are as confused as ever, but we think we are now confused on a higher level, and about more important things. From owner-freebsd-isp Tue Jul 22 09:50:45 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA10553 for isp-outgoing; Tue, 22 Jul 1997 09:50:45 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA10546 for ; Tue, 22 Jul 1997 09:50:41 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.6/8.6.9) with ESMTP id JAA03508; Tue, 22 Jul 1997 09:49:11 -0700 (PDT) To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-reply-to: Your message of "Tue, 22 Jul 1997 11:42:34 CDT." <2.2.32.19970722164234.0091eee0@mail.morelr.com> Date: Tue, 22 Jul 1997 09:49:11 -0700 Message-ID: <3504.869590151@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Agggghhhh! A _FEATURE_! (Insert Twilight Zone Theme here) I've been warped > into a Microsoft list! A _FEATURE_! :-) Yep, a feature, and you actually have the Microsoft case backwards. What they'd allow you to do is ONLY have the user be restricted to a small sandbox and getting at any other files because, say, the user was an administrator, would be impossible out-of-the-box and you'd have articles in NT user about how to work around this limitation with all sorts of wizardly tricks. > Really? Seems like that's "releasing" a lot of info the "great unwashed" > shouldn't be privy to. Well, UNIX systems have been typically run in environments where the "great unwashed" is actually a skilled userbase who would be extremely displeased _not_ to have this work (as would I since it violates the principle of least astonishment all over the place to have the trusted user so constrained). It's only comparatively recently that ISPs and their shell account machines have essentially introduced the new phenomenon of mixing truly unskilled & potentially hostile users to the UNIX environment, and it will take some time to figure out what security issues are raised by this and deal with them accordingly. Jordan From owner-freebsd-isp Tue Jul 22 10:07:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA11455 for isp-outgoing; Tue, 22 Jul 1997 10:07:27 -0700 (PDT) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA11447 for ; Tue, 22 Jul 1997 10:07:23 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id RAA13678; Tue, 22 Jul 1997 17:07:14 GMT Date: Tue, 22 Jul 1997 10:07:14 -0700 (PDT) From: Dan Busarow To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722134430.00903ea0@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Rick Morel wrote: > I'm running Wu-FTP and can't seem to find any real info, except for the > statement that it adds security. > > Anonymous FTP is fine. Here's my problem. Users can see anything on the Since you say that anon ftp is fine I'll assume that you mean users with an account on the machine can see everything when they connect via ftp. If these are supposed to be ftp only accounts then put all the users in group ftp and then in ftpaccess add a line guestgroup ftp Make sure you add -a to the ftpd entry in /etc/inetd.conf Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 From owner-freebsd-isp Tue Jul 22 10:12:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA11922 for isp-outgoing; Tue, 22 Jul 1997 10:12:29 -0700 (PDT) Received: from guardian.fortress.org (fortress.org [199.202.137.242]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA11912 for ; Tue, 22 Jul 1997 10:12:25 -0700 (PDT) Received: from localhost (andrew@localhost) by guardian.fortress.org (8.8.5/8.6.12) with SMTP id NAA19743; Tue, 22 Jul 1997 13:11:48 -0400 (EDT) Date: Tue, 22 Jul 1997 13:11:47 -0400 (EDT) From: Andrew Webster Reply-To: andrew@pubnix.net To: "Jordan K. Hubbard" cc: Rick Morel , isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <3273.869588081@time.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Jordan K. Hubbard wrote: > > Anonymous FTP is fine. It's _users'_ FTP. > > Ah, I read it wrong. In that case, what you're describing is a > feature, not a bug, and if you want to chroot _every_ user on your > system then that's going to take some hacking of ftpd. A better solution would be to chroot to a common place (eg: /home assuming all users are in /home) otherwise you'll need the bin etc skeletons to each user's directory. In that vein, anyone working on a dynamically extensible file system like the journaling system on AIX. It's very handy to be able to grow your /home as you add disks to the machine. > > Jordan > Andrew Webster andrew@pubnix.net Key fingerprint = CF E8 16 B8 A6 DB E3 C9 83 E7 96 24 25 58 15 6E PubNIX Montreal Connected to the world Branche au monde P.O. Box 147 Cote Saint Luc, Quebec H4V 2Y3 tel 514.990.5911 http://www.pubnix.net fax 514.990.9443 From owner-freebsd-isp Tue Jul 22 10:18:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12192 for isp-outgoing; Tue, 22 Jul 1997 10:18:40 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12183 for ; Tue, 22 Jul 1997 10:18:35 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.6/8.6.9) with ESMTP id KAA04370; Tue, 22 Jul 1997 10:17:09 -0700 (PDT) To: Dev Chanchani cc: freebsd-isp@FreeBSD.ORG Subject: Re: pseudo-device ccd In-reply-to: Your message of "Tue, 22 Jul 1997 12:27:41 EDT." Date: Tue, 22 Jul 1997 10:17:09 -0700 Message-ID: <4367.869591829@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Has anyone played with the following kernel option: > > pseudo-device ccd number Yes. > I was just wondering about experience in concatenating multiple disks. It works just great - several entries in the FAQ deal with it. > (And does this option work with multiple disks, or just multiple > partitions within one disk)? Both. :-) Jordan From owner-freebsd-isp Tue Jul 22 10:19:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12237 for isp-outgoing; Tue, 22 Jul 1997 10:19:32 -0700 (PDT) Received: from ns-ww.plusline.de (ns.gds.de [194.77.222.14]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12227 for ; Tue, 22 Jul 1997 10:19:22 -0700 (PDT) Received: from richi.plusline.de (pluto-ww.plusline.de [194.77.222.13]) by ns-ww.plusline.de (8.8.5/8.8.5) with SMTP id TAA29028; Tue, 22 Jul 1997 19:18:36 +0200 (MET DST) Message-Id: <3.0.1.32.19970722191436.009677d0@mail.ww.plusline.de> X-Sender: richard@mail.ww.plusline.de X-Mailer: Windows Eudora Light Version 3.0.1 (32) Date: Tue, 22 Jul 1997 19:14:36 +0200 To: Dev Chanchani From: Richard Gresek Subject: Re: pseudo-device ccd Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id KAA12231 Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >I was just wondering about experience in concatenating multiple disks. >(And does this option work with multiple disks, or just multiple >partitions within one disk)? You can concatenate multiple disks. They should be of the same geometry but don´t have to be. We have best experiences with ccd on our news server - absolutly reliable. It is one of the nice features in FreeBSD ;-)) Richard #======================================================= # Richard Gresek DPN Verbund-Partner # c/o Plus.Line -> Frankfurt # Oppenheimer Landstr. 55 -> Stuttgart # D-60596 Frankfurt/M. -> Westerwald # Tel.: +49 69 61991275 # Fax: +49 69 610238 http://www.plusline.de #======================================================= From owner-freebsd-isp Tue Jul 22 10:26:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12767 for isp-outgoing; Tue, 22 Jul 1997 10:26:44 -0700 (PDT) Received: from databus.databus.com (databus.databus.com [198.186.154.34]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA12762 for ; Tue, 22 Jul 1997 10:26:41 -0700 (PDT) From: Barney Wolff To: isp@FreeBSD.ORG Date: Tue, 22 Jul 1997 13:25 EDT Subject: Re: FTP Problem Content-Type: text/plain Message-ID: <33d4ed470.1637@databus.databus.com> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk No, it should not take hacking of wu-ftpd. Look at the guestgroup feature. Barney Wolff > To: Rick Morel > Cc: isp@FreeBSD.ORG > Subject: Re: FTP Problem > Date: Tue, 22 Jul 1997 09:14:41 -0700 > From: "Jordan K. Hubbard" > Content-Length: 244 > > > Anonymous FTP is fine. It's _users'_ FTP. > > Ah, I read it wrong. In that case, what you're describing is a > feature, not a bug, and if you want to chroot _every_ user on your > system then that's going to take some hacking of ftpd. > > Jordan > From owner-freebsd-isp Tue Jul 22 10:26:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12784 for isp-outgoing; Tue, 22 Jul 1997 10:26:55 -0700 (PDT) Received: from negril.msrce.howard.edu (negril.msrce.howard.edu [138.238.128.153]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA12779 for ; Tue, 22 Jul 1997 10:26:52 -0700 (PDT) Received: by negril.msrce.howard.edu; (5.65/1.1.8.2/24Feb97-8.2MPM) id AA29459; Tue, 22 Jul 1997 13:20:12 -0400 Date: Tue, 22 Jul 1997 13:20:12 -0400 From: Aaron Jackson Message-Id: <9707221720.AA29459@negril.msrce.howard.edu> To: marcin@v-m.com Subject: Re: KICK the USER.... Cc: isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk kill -9 `'ps aux | awk '$1==USER {print $2}'` Aaron Jackson jackson@msrce.howard.edu >Is there a simple way to disconnect the USER if he is conected via. >Telnet to the system... > >Thanks > >Marcin From owner-freebsd-isp Tue Jul 22 10:28:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12926 for isp-outgoing; Tue, 22 Jul 1997 10:28:44 -0700 (PDT) Received: from luke.cpl.net (luke.cpl.net [206.85.245.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12916 for ; Tue, 22 Jul 1997 10:28:42 -0700 (PDT) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.8.5) with SMTP id KAA03764; Tue, 22 Jul 1997 10:29:12 -0700 (PDT) Date: Tue, 22 Jul 1997 10:29:12 -0700 (PDT) From: Shawn Ramsey To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722134430.00903ea0@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Surely there's a way to prevent users from seeing/downloading things outside > their home subdir???? > wu-ftpd supports this, although I have never used it. From owner-freebsd-isp Tue Jul 22 10:40:57 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA13824 for isp-outgoing; Tue, 22 Jul 1997 10:40:57 -0700 (PDT) Received: from server.amis.net (root@server.amis.net [193.77.234.34]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA13817 for ; Tue, 22 Jul 1997 10:40:51 -0700 (PDT) Received: (from uucp@localhost) by server.amis.net (8.8.6/8.8.6/970721) with UUCP id TAA17523; Tue, 22 Jul 1997 19:40:33 +0200 (CEST) Received: (from blaz@localhost) by gold.amis.net (8.8.6/8.8.5) id TAA01942; Tue, 22 Jul 1997 19:40:27 +0200 (CEST) From: Blaz Zupan Message-Id: <199707221740.TAA01942@gold.amis.net> Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722164234.0091eee0@mail.morelr.com> from Rick Morel at "Jul 22, 97 11:42:34 am" To: rmorel@morelr.com (Rick Morel) Date: Tue, 22 Jul 1997 19:40:27 +0200 (CEST) Cc: jkh@time.cdrom.com, isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > >> Anonymous FTP is fine. It's _users'_ FTP. > >Ah, I read it wrong. In that case, what you're describing is a > >feature, not a bug, and if you want to chroot _every_ user on your > >system then that's going to take some hacking of ftpd. > Really? Seems like that's "releasing" a lot of info the "great unwashed" > shouldn't be privy to. As far as I remember the original poster was mentioning wu-ftpd? You can achieve what you want with wu-ftpd, but it takes some setup. You need to setup a pseudo-anonymous hierarchy as you would do for the anonymous user and then create a group of users (in /etc/group) that should be restricted. Specify this group with the "guestgroup" command in wu-ftpd's ftpaccess file. You really should read the manpage for ftpaccess and search for "guestgroup" andd you will get all the info you need. If you still can't make it work send me private e-mail and we'll make it work together :) -- Blaz Zupan, blaz@amis.net, http://www.amis.net/staff/blaz Medinet d.o.o., Linhartova 21, 2000 Maribor, Slovenia From owner-freebsd-isp Tue Jul 22 11:16:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA16277 for isp-outgoing; Tue, 22 Jul 1997 11:16:39 -0700 (PDT) Received: from luke.cpl.net (luke.cpl.net [206.85.245.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA16269 for ; Tue, 22 Jul 1997 11:16:33 -0700 (PDT) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.8.5) with SMTP id LAA03915; Tue, 22 Jul 1997 11:17:04 -0700 (PDT) Date: Tue, 22 Jul 1997 11:17:03 -0700 (PDT) From: Shawn Ramsey To: Dan Busarow cc: Rick Morel , isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > with an account on the machine can see everything when they > connect via ftp. > > If these are supposed to be ftp only accounts then put all the users > in group ftp and then in ftpaccess add a line > > guestgroup ftp > > Make sure you add -a to the ftpd entry in /etc/inetd.conf Is this all thats neccesary? I tried this, and it denies EVERYTHING if they are in the ftp group... From owner-freebsd-isp Tue Jul 22 11:30:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA17196 for isp-outgoing; Tue, 22 Jul 1997 11:30:58 -0700 (PDT) Received: from ns1.theonlynet.com (ns1.theonlynet.com [206.29.203.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA17189 for ; Tue, 22 Jul 1997 11:30:52 -0700 (PDT) Received: (from rricci@localhost) by ns1.theonlynet.com (8.8.5/8.7.3) id MAA29873; Tue, 22 Jul 1997 12:30:50 -0600 (MDT) Date: Tue, 22 Jul 1997 12:30:49 -0600 (MDT) From: "Robert P. Ricci" To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722164234.0091eee0@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk We use ncftpd, and, though we don't use the option, I seem to remember one in it that lets you restrict users to their own directories. However, ncftpd is shareware, not freeware. :-< On the other hand, I find it very convenient, to, say, put things in my own directory that other users can get, rather than having to put it up on anonymous. It's also nice to be able to get at /etc from home, and I don't think many people are A) going to try to get there, B) know what to do with the files there, and C) permissions are such that they won't be able to do any damage. Robert Ricci The Only Net..You'll Ever Need rricci@theonlynet.com On Tue, 22 Jul 1997, Rick Morel wrote: > At 09:14 AM 7/22/97 -0700, you wrote: > >> Anonymous FTP is fine. It's _users'_ FTP. > > > >Ah, I read it wrong. In that case, what you're describing is a > >feature, not a bug, and if you want to chroot _every_ user on your > >system then that's going to take some hacking of ftpd. > > > > Jordan > > > > Agggghhhh! A _FEATURE_! (Insert Twilight Zone Theme here) I've been warped > into a Microsoft list! A _FEATURE_! :-) > > Really? Seems like that's "releasing" a lot of info the "great unwashed" > shouldn't be privy to. > > Guess I'll stick with War-FTPD on NT and Samba :-( > > Rick > > --------------------------------------------------------------------- > We have not succeeded in answering all of our questions. Indeed, > we sometimes feel that we have not completely answered any of them. > The answers we have found only served to raise a whole new set of > questions. In some ways we feel that we are as confused as ever, but > we think we are now confused on a higher level, and about more important > things. > > From owner-freebsd-isp Tue Jul 22 11:41:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA18216 for isp-outgoing; Tue, 22 Jul 1997 11:41:46 -0700 (PDT) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA18211 for ; Tue, 22 Jul 1997 11:41:42 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id SAA14594; Tue, 22 Jul 1997 18:41:34 GMT Date: Tue, 22 Jul 1997 11:41:33 -0700 (PDT) From: Dan Busarow To: Shawn Ramsey cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Shawn Ramsey wrote: > Is this all thats neccesary? I tried this, and it denies EVERYTHING if > they are in the ftp group... Well, you said anon ftp was working, so yes. Oh, you need to set their home directories up like the ftp directory. Add bin/ls and any other support programs you want them to have to their home dir. They will be running chrooted so everything they need, aside from ftpd itself needs to be in their home directory. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 From owner-freebsd-isp Tue Jul 22 11:54:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA19240 for isp-outgoing; Tue, 22 Jul 1997 11:54:40 -0700 (PDT) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA19232 for ; Tue, 22 Jul 1997 11:54:35 -0700 (PDT) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id LAA25486; Tue, 22 Jul 1997 11:42:42 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd025483; Tue Jul 22 18:42:37 1997 Message-ID: <33D4FEAD.3F54BC7E@whistle.com> Date: Tue, 22 Jul 1997 11:40:45 -0700 From: Julian Elischer Organization: Whistle Communications X-Mailer: Mozilla 3.0Gold (X11; I; FreeBSD 2.2-CURRENT i386) MIME-Version: 1.0 To: Dan Busarow CC: Rick Morel , isp@FreeBSD.ORG Subject: Re: FTP Problem References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dan Busarow wrote: > > On Tue, 22 Jul 1997, Rick Morel wrote: > > I'm running Wu-FTP and can't seem to find any real info, except for the > > statement that it adds security. > > > > Anonymous FTP is fine. Here's my problem. Users can see anything on the > > Since you say that anon ftp is fine I'll assume that you mean users > with an account on the machine can see everything when they > connect via ftp. > > If these are supposed to be ftp only accounts then put all the users > in group ftp and then in ftpaccess add a line > > guestgroup ftp > > Make sure you add -a to the ftpd entry in /etc/inetd.conf > > Dan > -- > Dan Busarow 714 443 4172 > DPC Systems / Beach.Net dan@dpcsys.com > Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 wu-ftpd can allow you to confine users to their own directory using a 'chroot' see teh section that mentions putting a "/./" in their /etc/passwd entry.. a home dir of /usr/home/./fred will chroot to /usr/home before cd-ing to fred. a home dir of /usr/home/fred/./ will chroot to /usr/home/fred/. then cd to / (in the chroot area etc. From owner-freebsd-isp Tue Jul 22 12:00:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA19649 for isp-outgoing; Tue, 22 Jul 1997 12:00:54 -0700 (PDT) Received: from luke.cpl.net (luke.cpl.net [206.85.245.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA19642 for ; Tue, 22 Jul 1997 12:00:52 -0700 (PDT) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.8.5) with SMTP id MAA04042; Tue, 22 Jul 1997 12:01:27 -0700 (PDT) Date: Tue, 22 Jul 1997 12:01:27 -0700 (PDT) From: Shawn Ramsey To: Dan Busarow cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > On Tue, 22 Jul 1997, Shawn Ramsey wrote: > > Is this all thats neccesary? I tried this, and it denies EVERYTHING if > > they are in the ftp group... > > Well, you said anon ftp was working, so yes. Oh, you need to set their > home directories up like the ftp directory. Add bin/ls and any other > support programs you want them to have to their home dir. They will > be running chrooted so everything they need, aside from ftpd itself > needs to be in their home directory. Actually, it wasnt me. :) Im just interested in this, but have never investigated much on how to do it. Does the home dir need any special permissions? From owner-freebsd-isp Tue Jul 22 12:21:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA20996 for isp-outgoing; Tue, 22 Jul 1997 12:21:47 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA20981 for ; Tue, 22 Jul 1997 12:21:42 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id PAA14460; Tue, 22 Jul 1997 15:21:36 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id PAA11972; Tue, 22 Jul 1997 15:21:35 -0400 (EDT) To: Dev Chanchani cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: pseudo-device ccd In-reply-to: Your message of "Tue, 22 Jul 1997 12:27:41 EDT." Date: Tue, 22 Jul 1997 15:21:35 -0400 Message-ID: <11941.869599295@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dev Chanchani wrote in message ID : > Has anyone played with the following kernel option: > > pseudo-device ccd number I wouldn't say I've played with it, but I've got two machines in production using it :) > I was just wondering about experience in concatenating multiple disks. > (And does this option work with multiple disks, or just multiple > partitions within one disk)? Both ways, although the real win is multiple disks (with same-size paritions, or ideally, identical disks with identical layouts) as there can be some major performance gains. Note that not only can you use it for striping (i.e. chaining multiple physical partitions into one bigger logical partition) but you can also do mirroring. Unfortunately mirroring is not as guarenteed as it should be about data safety. I've had one disk in a 2 drive mirror die, and when the machine came back all the files that were on the still-alive drive were 0 length :-/ Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Tue Jul 22 13:30:03 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA25726 for isp-outgoing; Tue, 22 Jul 1997 13:30:03 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA25684 for ; Tue, 22 Jul 1997 13:30:00 -0700 (PDT) Received: from dialup-usr11.etinc.com (dialup-usr11.etinc.com [204.141.95.132]) by etinc.com (8.8.3/8.6.9) with SMTP id QAA10508; Tue, 22 Jul 1997 16:36:22 -0400 (EDT) Message-Id: <3.0.32.19970722162211.00c60708@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 22 Jul 1997 16:22:18 -0400 To: Alex Belits From: dennis Subject: Re: FreeBSD and NT Cc: isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 12:14 PM 7/22/97 -0700, you wrote: >On Tue, 22 Jul 1997, Rod Ebrahimi wrote: > >> I am currently involved in a new Internet Presence Provider establishment > > As I understand it, "Internet Presence Provider" == Internet Service >Provider (ISP) that mostly handles HTTP servers, FTP servers, nameservers >and mail relaying, but not ISDN lines and plain modem dialins? > >> and would really like to use FreeBSD on our systems. One of the reasons we >> are skeptical and would rather use NT is mainly setup time > > Even if FreeBSD required more time to install than NT (it doesn't) >the choice of the operating system for a large HTTP or mail server >that should be running for many years based on its *INSTALLATION TIME* is >the most wrong thing, ISP can make. It's like to choose the car closest to >the dealer's office because it takes less time to walk to it. > >> and expertise, >> most of us working on this project do not know much about Unix (only basic >> knowledge) but in turn know NT in and out. > > If you are going to use NT for a large web server, I suggest you to >choose other kind of business immediately. I'm just using NT for web browsing and mail and I need to reboot it every other day or so (just gets real slow)...It MIGHT be easier to set up (I dont think it is....), but if something stops working you have to reinstall to get everything to work right again...its certainly much more difficult to fine tune. Dennis From owner-freebsd-isp Tue Jul 22 14:17:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA29035 for isp-outgoing; Tue, 22 Jul 1997 14:17:49 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA29023 for ; Tue, 22 Jul 1997 14:17:34 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id HAA24364; Wed, 23 Jul 1997 07:16:30 +1000 (EST) Date: Wed, 23 Jul 1997 07:16:29 +1000 (EST) From: "Daniel O'Callaghan" To: Rick Morel cc: isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722134430.00903ea0@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Rick Morel wrote: > I'm running Wu-FTP and can't seem to find any real info, except for the > statement that it adds security. > > Anonymous FTP is fine. Here's my problem. Users can see anything on the > machine. I did do a "chmod 711" on the /home subdir, so "backing" up one > level hides that. Of course, someone can just "cd /home" and see everything. > > Surely there's a way to prevent users from seeing/downloading things outside > their home subdir???? In ftpaccess define a guestgroup, and list the users in that group in /etc/group. The user then has no access to /bin/ls, so you need to provide ~/bin/ls for each one. A better method is to get the srcs for the latest ftpd for FreeBSD, enable INTERNAL_LS (or whatever the macro is) and put the users into /etc/ftpchroot after reading the man page. Danny From owner-freebsd-isp Tue Jul 22 14:20:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA29239 for isp-outgoing; Tue, 22 Jul 1997 14:20:08 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA29133 for ; Tue, 22 Jul 1997 14:19:54 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id HAA24385; Wed, 23 Jul 1997 07:18:48 +1000 (EST) Date: Wed, 23 Jul 1997 07:18:47 +1000 (EST) From: "Daniel O'Callaghan" To: Rick Morel cc: "Jordan K. Hubbard" , isp@FreeBSD.ORG Subject: Re: FTP Problem In-Reply-To: <2.2.32.19970722164234.0091eee0@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Rick Morel wrote: > At 09:14 AM 7/22/97 -0700, you wrote: > >> Anonymous FTP is fine. It's _users'_ FTP. > > > >Ah, I read it wrong. In that case, what you're describing is a > >feature, not a bug, and if you want to chroot _every_ user on your > >system then that's going to take some hacking of ftpd. > > Agggghhhh! A _FEATURE_! (Insert Twilight Zone Theme here) I've been warped > into a Microsoft list! A _FEATURE_! :-) > > Really? Seems like that's "releasing" a lot of info the "great unwashed" > shouldn't be privy to. > > Guess I'll stick with War-FTPD on NT and Samba :-( No, Jordan is only half right. You should read the man page fot FreeBSD's ftpd and look for /etc/ftpchroot. Danny From owner-freebsd-isp Tue Jul 22 14:44:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA01010 for isp-outgoing; Tue, 22 Jul 1997 14:44:29 -0700 (PDT) Received: from mx.serv.net (mx.serv.net [205.153.153.234]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA01005 for ; Tue, 22 Jul 1997 14:44:26 -0700 (PDT) Received: from MindBender.serv.net (root@mindbender.serv.net [205.153.153.98]) by mx.serv.net (8.8.5/8.8.5) with ESMTP id OAA28254; Tue, 22 Jul 1997 14:44:21 -0700 (PDT) Received: from localhost.HeadCandy.com (michaelv@localhost.HeadCandy.com [127.0.0.1]) by MindBender.serv.net (8.7.5/8.7.3) with SMTP id OAA03553; Tue, 22 Jul 1997 14:42:41 -0700 (PDT) Message-Id: <199707222142.OAA03553@MindBender.serv.net> X-Authentication-Warning: MindBender.serv.net: Host michaelv@localhost.HeadCandy.com [127.0.0.1] didn't use HELO protocol To: dennis cc: Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-reply-to: Your message of Tue, 22 Jul 97 16:22:18 -0400. <3.0.32.19970722162211.00c60708@etinc.com> Date: Tue, 22 Jul 1997 14:42:25 -0700 From: "Michael L. VanLoon -- HeadCandy.com" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >>> and expertise, >>> most of us working on this project do not know much about Unix (only basic >>> knowledge) but in turn know NT in and out. >> If you are going to use NT for a large web server, I suggest you to >>choose other kind of business immediately. Right now, the free Unix systems (FreeBSD, NetBSD, etc.) are probably the best platforms for a small ISP, for many reasons. However, Microsoft is starting to take this market seriously, so expect to see lots of software addressing this market in the next year or two. >I'm just using NT for web browsing and mail and I need to reboot >it every other day or so (just gets real slow)...It MIGHT be easier to >set up (I dont think it is....), but if something stops working you have >to reinstall to get everything to work right again...its certainly much more >difficult to fine tune. I would guess that you have software doing something stupid, or you have something badly configured. Any OS can slow to a crawl if there are user processes leaking memory, or just written badly that suck up a lot of CPU, which are long-running (or just plain run-away) on your system. NT by itself (and NT with tons of development tools and such open) runs for weeks at a time without reboots, for me, and thousands of others. Modern NT servers (as opposed to "workstations", which you described) are every bit as stable as Unix servers, with months of uptime. FYI... ----------------------------------------------------------------------------- Michael L. VanLoon michaelv@MindBender.serv.net --< Free your mind and your machine -- NetBSD free un*x >-- NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, Sun3, Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32... NetBSD ports in progress: PICA, others... ----------------------------------------------------------------------------- From owner-freebsd-isp Tue Jul 22 15:43:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA04211 for isp-outgoing; Tue, 22 Jul 1997 15:43:26 -0700 (PDT) Received: from linus.intrastar.net (root@linus.intrastar.net [206.136.25.19]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA04201 for ; Tue, 22 Jul 1997 15:43:17 -0700 (PDT) Received: from jake.fuck.org (pmnac1-11.inu.net [208.129.167.13]) by linus.intrastar.net (8.8.5/TerraNovaNet) with ESMTP id RAA04079; Tue, 22 Jul 1997 17:41:39 -0500 (CDT) Message-ID: <33D537FE.C43837E6@linus.intrastar.net> Date: Tue, 22 Jul 1997 17:45:18 -0500 From: Jacob Suter X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: "Michael L. VanLoon -- HeadCandy.com" CC: dennis , Alex Belits , isp@FreeBSD.ORG Subject: Re: FreeBSD and NT X-Priority: 3 (Normal) References: <199707222142.OAA03553@MindBender.serv.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I gotta say one (compound) word... BULLSHIT. I've ran NT 3.51, 4.0, both Workstation and Server, and NEITHER have been able to stay up for more than a week or so with the same amount of speed and stability as when it started. I have had FreeBSD machines up for several months and never go down for anything other than hardware upgrades. Microsoft is CONSUMER GRADE SHIT and I wouldn't trust it if Bill Gates begged me to spank him tell he's raw if I have any complaints... My customer LOVED it when I upgraded to FreeBSD on the SAME EXACT hardware I was running NT on... even on their sorry little 14.4k and 28.8ks they could TELL the difference when picking up mail, or even simple tasks like DNS. I don't buy Microsoft, and all of those that have put their ass on the line using NT and got it burned, probably agree... Jacob Suter Michael L. VanLoon -- HeadCandy.com wrote: > >>> and expertise, > >>> most of us working on this project do not know much about Unix > (only basic > >>> knowledge) but in turn know NT in and out. > > >> If you are going to use NT for a large web server, I suggest you > to > >>choose other kind of business immediately. > > Right now, the free Unix systems (FreeBSD, NetBSD, etc.) are probably > the best platforms for a small ISP, for many reasons. However, > Microsoft is starting to take this market seriously, so expect to see > lots of software addressing this market in the next year or two. > > >I'm just using NT for web browsing and mail and I need to reboot > >it every other day or so (just gets real slow)...It MIGHT be easier > to > >set up (I dont think it is....), but if something stops working you > have > >to reinstall to get everything to work right again...its certainly > much more > >difficult to fine tune. > > I would guess that you have software doing something stupid, or you > have something badly configured. Any OS can slow to a crawl if there > are user processes leaking memory, or just written badly that suck up > a lot of CPU, which are long-running (or just plain run-away) on your > system. > > NT by itself (and NT with tons of development tools and such open) > runs for weeks at a time without reboots, for me, and thousands of > others. Modern NT servers (as opposed to "workstations", which you > described) are every bit as stable as Unix servers, with months of > uptime. FYI... > > --------------- > ------------------------------------------------------------- > Michael L. VanLoon > michaelv@MindBender.serv.net > --< Free your mind and your machine -- NetBSD free un*x >-- > NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, > Sun3, > Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32... > > NetBSD ports in progress: PICA, others... > --------------------------------------------- > ------------------------------- From owner-freebsd-isp Tue Jul 22 16:49:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA07488 for isp-outgoing; Tue, 22 Jul 1997 16:49:22 -0700 (PDT) Received: from rocky.mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA07477 for ; Tue, 22 Jul 1997 16:49:06 -0700 (PDT) Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id RAA10262; Tue, 22 Jul 1997 17:46:48 -0600 (MDT) Date: Tue, 22 Jul 1997 17:46:48 -0600 (MDT) Message-Id: <199707222346.RAA10262@rocky.mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: "Michael L. VanLoon -- HeadCandy.com" Cc: dennis , Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-Reply-To: <199707222142.OAA03553@MindBender.serv.net> References: <3.0.32.19970722162211.00c60708@etinc.com> <199707222142.OAA03553@MindBender.serv.net> X-Mailer: VM 6.29 under 19.15 XEmacs Lucid Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > >I'm just using NT for web browsing and mail and I need to reboot > >it every other day or so (just gets real slow)...It MIGHT be easier to > >set up (I dont think it is....), but if something stops working you have > >to reinstall to get everything to work right again...its certainly much more > >difficult to fine tune. > > I would guess that you have software doing something stupid, or you > have something badly configured. Or using NT as a developer. ... > NT by itself (and NT with tons of development tools and such open) > runs for weeks at a time without reboots, for me, and thousands of > others. I once believed that. Recently I installed NT on a P6-200 box, and I can crash it almost at will. Also, Explorer misses files (which can you see exist with the DOS window), screen updates are lost, graphics updates are obnoxious, basically it's *NOWHERE* near as stable as the FreeBSD that used to run on it. :( I started asking around some of my 'NT' expert friends, and if you do 'development' on an NT box, it's *very* unstable. Normal users can take it out doing development, which *never* happens under unix. These folks have been doing NT development with pre-NT 3 betas, so are not new to this. But, the 'market' is in NT, so they stick with it and reboot their machines 3-4 times/day, which has been typical behavior for M$ OS's since time began. > Modern NT servers (as opposed to "workstations", which you > described) are every bit as stable as Unix servers, with months of > uptime. FYI... *Bwah, ha, ha ha* I'll bet (I know) you work for M$, but that's the funniest thing I've heard in awhile. Nate ps. NT 4.0 Workstation, ServicePack 3, + Java/Visual-Depth patch. From owner-freebsd-isp Tue Jul 22 17:05:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA08616 for isp-outgoing; Tue, 22 Jul 1997 17:05:08 -0700 (PDT) Received: from mx.serv.net (mx.serv.net [205.153.153.234]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA08608 for ; Tue, 22 Jul 1997 17:05:00 -0700 (PDT) Received: from MindBender.serv.net (root@mindbender.serv.net [205.153.153.98]) by mx.serv.net (8.8.5/8.8.5) with ESMTP id RAA06793; Tue, 22 Jul 1997 17:05:00 -0700 (PDT) Received: from localhost.HeadCandy.com (michaelv@localhost.HeadCandy.com [127.0.0.1]) by MindBender.serv.net (8.7.5/8.7.3) with SMTP id RAA04041; Tue, 22 Jul 1997 17:03:12 -0700 (PDT) Message-Id: <199707230003.RAA04041@MindBender.serv.net> X-Authentication-Warning: MindBender.serv.net: Host michaelv@localhost.HeadCandy.com [127.0.0.1] didn't use HELO protocol To: Nate Williams cc: dennis , Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-reply-to: Your message of Tue, 22 Jul 97 17:46:48 -0600. <199707222346.RAA10262@rocky.mt.sri.com> Date: Tue, 22 Jul 1997 17:02:51 -0700 From: "Michael L. VanLoon -- HeadCandy.com" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >> >I'm just using NT for web browsing and mail and I need to reboot >> >it every other day or so (just gets real slow)...It MIGHT be easier to >> >set up (I dont think it is....), but if something stops working you have >> >to reinstall to get everything to work right again...its certainly much mor e >> >difficult to fine tune. >> I would guess that you have software doing something stupid, or you >> have something badly configured. >Or using NT as a developer. >... >> NT by itself (and NT with tons of development tools and such open) >> runs for weeks at a time without reboots, for me, and thousands of >> others. >I once believed that. Recently I installed NT on a P6-200 box, and I >can crash it almost at will. Also, Explorer misses files (which can you >see exist with the DOS window), screen updates are lost, graphics >updates are obnoxious, basically it's *NOWHERE* near as stable as the >FreeBSD that used to run on it. :( > >I started asking around some of my 'NT' expert friends, and if you do >'development' on an NT box, it's *very* unstable. Normal users can take >it out doing development, which *never* happens under unix. These folks >have been doing NT development with pre-NT 3 betas, so are not new to >this. But, the 'market' is in NT, so they stick with it and reboot >their machines 3-4 times/day, which has been typical behavior for M$ >OS's since time began. So what you're saying is I, and the thousands of people using NT for serious development, without crashing it, are imagining things? I'm willing to accept that there is a buggy driver(s) which is biting many people, and causing them lots of instability. Moving the graphics subsystem into the kernel was probably one of the dumber moves they made. And that alone also invalidates experience with pre-NT4 on the same hardware, since the same hardware may have been using a driver in NT3 which was outside the graphics subsystem, which has been changed to run inside the graphics subsystem. In other words, just having a marginally supported video card could be your problem. However, the fact that many many people are able to do serious development on NT without crashes attests to the assertion that it is not NT by itself that is the problem. >> Modern NT servers (as opposed to "workstations", which you >> described) are every bit as stable as Unix servers, with months of >> uptime. FYI... >*Bwah, ha, ha ha* I'll bet (I know) you work for M$, but that's the >funniest thing I've heard in awhile. Nevertheless, it's true. And I've witnessed it with my very own eyes on many occassions. Actually, I no longer work for Microsoft as of last week. >ps. NT 4.0 Workstation, ServicePack 3, + Java/Visual-Depth patch. My experience is NT 4.0 Server with SP3. Where is this Java/Visual-Depth patch located? ----------------------------------------------------------------------------- Michael L. VanLoon michaelv@MindBender.serv.net --< Free your mind and your machine -- NetBSD free un*x >-- NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, Sun3, Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32... NetBSD ports in progress: PICA, others... ----------------------------------------------------------------------------- From owner-freebsd-isp Tue Jul 22 17:05:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA08656 for isp-outgoing; Tue, 22 Jul 1997 17:05:48 -0700 (PDT) Received: from ns.NL.net (ns.NL.net [193.78.240.1]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id RAA08636 for ; Tue, 22 Jul 1997 17:05:39 -0700 (PDT) Received: from jaknl by ns.NL.net (5.65b/NLnet1.3) id AA15245; Wed, 23 Jul 1997 02:02:01 +0200 Received: from pp200-1 ([192.168.0.200]) by jak.nl (8.8.3/8.8.3) with ESMTP id BAA01068; Wed, 23 Jul 1997 01:49:06 +0200 (MET DST) Message-Id: <33D546F6.9A3F2E94@jak.nl> Date: Wed, 23 Jul 1997 01:49:10 +0200 From: Jan A Knepper Reply-To: Jan@jak.nl X-Mailer: Mozilla 4.01 [en] (WinNT; I) Mime-Version: 1.0 To: "Michael L. VanLoon -- HeadCandy.com" , FreeBSD-ISP@FreeBSD.org Subject: Re: FreeBSD and NT X-Priority: 3 (Normal) References: <199707222142.OAA03553@MindBender.serv.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Michael L. VanLoon -- HeadCandy.com wrote: > NT by itself (and NT with tons of development tools and such open) > runs for weeks at a time without reboots, for me, and thousands of > others. Well, I don't know how and where you get this, but I am sorry to say I can not agree with this. > Modern NT servers (as opposed to "workstations", which you > described) are every bit as stable as Unix servers, with months of > uptime. FYI... Not in my experience...Besides that NT how ever you turn it has to improve a LOT as far as performance issues go. Currently Windows NT 4.0 Server on a PP200 with 64MB RAM loses BIG TIME in performance from Novell NetWare (or FreeBSD for that matter) on a P90 with 32MB RAM! I have tested this here. We have 100 Mb/sec Ethernet and Windows NT Server certainly has a long way to go. OK, it might work OK for a heavy duty machine with only a few clients, but forget about any performance at all when the real users logon as clients. Not for no reason Microsoft has more or less decided to break NT apart in different versions. If I am correct there is going to be a lite workstation version, a heavy workstation version and a non-graphic server version (and may be more). Especially the server version has to go through a lot of changes to be anywhere compatitive in performance to any other Network OS. At the same time Novell is working at a 'better' memory management to improve stability of NetWare. (While writing several NLM's I learned that NetWare is very easy to crash from an NLM). So this is good I guess. As far as I am concerned... Yeah unfortunately for now I am pretty much bound to NT since that is what customers ask these days. I however wonder how long the world is going to take the M$ lies and promises for true. Don't worry, be Kneppie! Jan PS: On of the good things of NT is that there are quite a few C++ compilers available guess who is the best... From owner-freebsd-isp Tue Jul 22 17:42:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA11405 for isp-outgoing; Tue, 22 Jul 1997 17:42:58 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA11400 for ; Tue, 22 Jul 1997 17:42:52 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id TAA24841 for ; Tue, 22 Jul 1997 19:42:45 -0500 (CDT) Message-Id: <2.2.32.19970723004250.00908ac8@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 22 Jul 1997 19:42:50 -0500 To: isp@FreeBSD.ORG From: Rick Morel Subject: FTP Problem Solved! Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Thanks to everyone who replied. Here's what I found and did, kind of piecing together everything from several sources. Add to file "ftpaccess" (in /usr/local/etc/) guestgroup ftp Create a group "ftp" and add the users to that group. The entry in "group" (in /etc/) would look like: ftp:*:1001:user1,user2,user3,user4 (I'm just showing the user name(s) as "user1", "user2", etc.) Do a "chsh" on each user, changing the Home Directory entry like so: Home directory: /usr/home/user1/./ The entry in the passwd file now looks like: user1:*:1022:1000:Joe Blow:/usr/home/user1/./:/bin/sh The "/./" after the user name means wu-ftp will "chroot /usr/home/user1" And now, the final thing that made it all work...... Be _SURE_ to make a "bin" directory under the user's home, and put "ls" in it. This, thanks to Susie Ward . NOWHERE could I find this in the man pages or FAQ's, which I really, honestly did check before asking originally. Again, thanks to all. I hope this little "cookbook" email helps others. In answer to "Why would anyone want an FTP that only let regular users into their own home directory?" Surely if this list is for ISPs, everyone would know the answer! Or am I wrong in thinking ISP here stands for "Internet Service Provider"? Boy, will I feel like a dufus if I've misread ISP!!!!!!! Assuming I'm not a dufus, get into the ISP business for a year or so and I absolutely guarantee you'll know. You'll find things like your Majordomo config files, complete with passwords posted on some web page and/or someone else adminstering your lists. Anything that can be seen and read can be used by some folks. It's a shame, it's not the "old 'net", but it is a fact. Rick Morel From owner-freebsd-isp Tue Jul 22 18:07:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA12713 for isp-outgoing; Tue, 22 Jul 1997 18:07:53 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA12708 for ; Tue, 22 Jul 1997 18:07:49 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id UAA25776 for ; Tue, 22 Jul 1997 20:07:34 -0500 (CDT) Message-Id: <2.2.32.19970723010748.0090ba68@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 22 Jul 1997 20:07:48 -0500 To: isp@FreeBSD.ORG From: Rick Morel Subject: Re: FreeBSD and NT Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I was an owner of aisp.net (we sold out July 1) and am still Sys Admin. I Admin morelr.com and kxkc.com. All in all, there are 7 NT Servers, 2 with 3.51 and the rest with 4.0. There used to be 8, but I recently installed FreeBSD and INN for news at aisp (Don't even ask about NT and Netmanage for news!!!!!). Oh, my own computer is running NT 4.0. I do prefer it over Win 95. FreeBSD, or any UNIX, to me is the pits for a workstation, but unbeatable for a server. Here at morelr I've switched everything to FreeBSD except FTP (that's going to be done tomorrow, thanks to the folks here) :-) and DNS (DNS will be next). The only thing I'm going to keep on NT is a www server strictly for VB CGI's. I'm pretty new to UNIX, and seem to be going against the trend -- NT to UNIX instead of the other way around. I really can't understand a lot of folks switching from it to NT _FOR_AN_INTERNET_SERVER_. I have nothing against MS except that more and more lately, the massive amount of *NEW* things have been getting buggier and buggier... Pardon, me... there's all kinds of "new features" (that's what I meant earlier with my "Twilight Zone" remark. All that said, my experience is that a heavily worked NT server doesn't seem to go more than a week without developing sloooooow down and other problems. At aisp, the dial-in server will start giving users odd errors after about 8 days, refusing to let them in. It gets worse and worse if left alone. A re-boot and all is nice. For about 8 days. The combo www and email server will start sloooowing down after about 6 days. Again, re-boot and all is well. The kxkc.com server (www, email and ftp) will go about 2 to 3 weeks or even longer with no problems -- it's not used nearly as much. Then the oddities start. Slow downs then okay, then slow, then okay, etc. Slow email or odd email errors, such as locked mailboxes for _some_ users or just timeouts, again for _some_ users; plus things like "locked" html files. So, I think everyone in the debate here is correct. It just depends. Now, for the "runs forever" group -- We have one, version 3.51. It runs a RealAudio server, very little used, and otherwise is used to check RAS, add users and email admin, via www, very heavily used. Sometimes the person that does all this has several User Managers and RAS Admins and even Netscapes all open and minimized. For days. I've _NEVER_ had to re-boot this machine. Oh, for the curious. The news server. It never really worked right. It required daily re-boots, then more often. I'd reinstall NT and Netmanage News. It'd run for maybe a month with only daily reboots, then back to its old tricks. When it finally got down to not running more than several minutes at a stretch, I finally insisted and put FreeBSD / INN. It's sooooooo niiiiicccceeee :-) :-) Rick From owner-freebsd-isp Tue Jul 22 18:49:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA14748 for isp-outgoing; Tue, 22 Jul 1997 18:49:31 -0700 (PDT) Received: from rocky.mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA14740 for ; Tue, 22 Jul 1997 18:49:26 -0700 (PDT) Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id TAA10643; Tue, 22 Jul 1997 19:45:01 -0600 (MDT) Date: Tue, 22 Jul 1997 19:45:01 -0600 (MDT) Message-Id: <199707230145.TAA10643@rocky.mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: "Michael L. VanLoon -- HeadCandy.com" Cc: Nate Williams , dennis , Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-Reply-To: <199707230003.RAA04041@MindBender.serv.net> References: <199707222346.RAA10262@rocky.mt.sri.com> <199707230003.RAA04041@MindBender.serv.net> X-Mailer: VM 6.29 under 19.15 XEmacs Lucid Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > >I started asking around some of my 'NT' expert friends, and if you do > >'development' on an NT box, it's *very* unstable. Normal users can take > >it out doing development, which *never* happens under unix. These folks > >have been doing NT development with pre-NT 3 betas, so are not new to > >this. But, the 'market' is in NT, so they stick with it and reboot > >their machines 3-4 times/day, which has been typical behavior for M$ > >OS's since time began. > > So what you're saying is I, and the thousands of people using NT for > serious development, without crashing it, are imagining things? I'm saying that there aren't thousands of people using NT for serious development w/out crashing it. I asked around to the the dozens of people I know that develop under NT, and they all say it crashes. (Though not as often as Win 3.1). Interestingly enough, I *rarely* crash Win95, but I guess I'm just lucky. > I'm willing to accept that there is a buggy driver(s) which is biting > many people, and causing them lots of instability. With a Diamond video card, arguably the most common/popular card in existance? > pre-NT4 on the same hardware, since the same hardware may have been > using a driver in NT3 which was outside the graphics subsystem, which > has been changed to run inside the graphics subsystem. These folks have been using NT since pre NT3. NT 3.51 was *much* stabler than NT 4, but it still wasn't as bulletproof as *nix. (There statements, not mine since I have no experience with NT < 4.0) > However, the fact that many many people are able to do serious > development on NT without crashes attests to the assertion that it is > not NT by itself that is the problem. See above. I don't buy the statement that 'many people are able to do development w/out serious crashes'. > Where is this Java/Visual-Depth patch located? Look in the knowledge database on the WWW server. I don't have the patch off-hand, but Java programs won't run in greater than 8-bit mode w/out it. Nate From owner-freebsd-isp Tue Jul 22 18:57:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA15208 for isp-outgoing; Tue, 22 Jul 1997 18:57:48 -0700 (PDT) Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA15203 for ; Tue, 22 Jul 1997 18:57:44 -0700 (PDT) Received: (from msmith@localhost) by genesis.atrad.adelaide.edu.au (8.8.5/8.7.3) id LAA04715; Wed, 23 Jul 1997 11:25:44 +0930 (CST) From: Michael Smith Message-Id: <199707230155.LAA04715@genesis.atrad.adelaide.edu.au> Subject: Re: FreeBSD and NT In-Reply-To: from Alex Belits at "Jul 22, 97 12:14:07 pm" To: abelits@phobos.illtel.denver.co.us (Alex Belits) Date: Wed, 23 Jul 1997 11:25:43 +0930 (CST) Cc: info@pagecreators.com, isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Alex Belits stands accused of saying: > On Tue, 22 Jul 1997, Rod Ebrahimi wrote: > > and would really like to use FreeBSD on our systems. One of the reasons we > > are skeptical and would rather use NT is mainly setup time > > Even if FreeBSD required more time to install than NT (it doesn't) > the choice of the operating system for a large HTTP or mail server > that should be running for many years based on its *INSTALLATION TIME* is > the most wrong thing, ISP can make. It's like to choose the car closest to > the dealer's office because it takes less time to walk to it. This is salient. > > One of my questions is are you > > familiar with any people and/or firms that have experts that will help us > > through our setup in the Southern California area? > > If you can't do it yourself using the documentation that is supplied > with the system you are not qualified to operate an ISP of any size. It's > impossible to be as much clueless about system to need someone's help > installing it, and then operate a complex network environment that an ISP > requires. You need to permanently hire a sysadmin (even the most clueless > one, but who knows how to configure network). There are a lot of people > who can do this job, but definitely _not_ as one-time installation. Place > an ad in some local newspaper, and they will answer immediately. This is _very_ relevant, and a major cause of grief for new service startups. You _must_ have in-house expertise, or a _lot_ of money to pay contractors with. Attempting to establish yourself without strong, dependable networking expertise is extremely foolish. Alex is virulently opposed to the idea of using NT for your platform; I would add a couple of points which might help stiffen your resolve. I note that you're already interested in FreeBSD as a platform, so I'm not going to try to slag NT unnecessarily. - You have no control whatsoever over the software that you would run on an NT system; if you don't like how it behaves, you're stuck with it. By contrast, all of the tools for BSD systems are available in source form. There is a vast amount of collected experience with these tools available in terms of customisation and day-to-day operation. - The support community for FreeBSD is diverse and awake 24/7. It won't ask you for a credit card number. It won't lie to you to save its face. If something is broken and hurting your business, we take it personally. If you want something fixed Real Fast, it can be done. If a new security hole is found, you can be sure that it will be fixed quickly, and the tools required to close it made available immediately. - If you don't like the toolset you've chosen, you have plenty of migration choices which don't abandon your investment in data or expertise. - FreeBSD will perform significantly better on most systems than NT. This can be a significant factor in the early days of a startup business where capital has to be carefully watched. In addition, there is a great deal of user community knowledge regarding hardware. -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[ From owner-freebsd-isp Tue Jul 22 19:38:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA17769 for isp-outgoing; Tue, 22 Jul 1997 19:38:07 -0700 (PDT) Received: from guardian.fortress.org (fortress.org [199.202.137.242]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA17764 for ; Tue, 22 Jul 1997 19:38:04 -0700 (PDT) Received: from localhost (andrew@localhost) by guardian.fortress.org (8.8.5/8.6.12) with SMTP id WAA06026 for ; Tue, 22 Jul 1997 22:38:02 -0400 (EDT) Date: Tue, 22 Jul 1997 22:38:01 -0400 (EDT) From: Andrew Webster Reply-To: andrew@pubnix.net To: isp@FreeBSD.ORG Subject: Re: FreeBSD and NT In-Reply-To: <2.2.32.19970723010748.0090ba68@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I can't comment on NT for ISPs although we've had a few clients insist on using it. BUT, FreeBSD is the *BEST* thing, check out these numbers: Dial-up server with 24 modems (soon to go to 32, and I won't reboot it!), up for 214 days! Also runs 28 virtual WWW sites, and secondary DNS. FreeBSD 2.1.6 Router (3 x SMC 8013 + Gated)/DNS/WWW/Shell, up 59 days (rebooted by accident, was at 155 days). FreeBSD 2.0(!) News Server, well it is at 2.2.1 and the AHA-2940 isn't perfect in it, so I'll be upgrading it to 2.2.2 soon, but it is good for anywhere from 15-30 days. NT: Beat that! Andrew Webster andrew@pubnix.net Key fingerprint = CF E8 16 B8 A6 DB E3 C9 83 E7 96 24 25 58 15 6E PubNIX Montreal Connected to the world Branche au monde P.O. Box 147 Cote Saint Luc, Quebec H4V 2Y3 tel 514.990.5911 http://www.pubnix.net fax 514.990.9443 From owner-freebsd-isp Tue Jul 22 20:14:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA19528 for isp-outgoing; Tue, 22 Jul 1997 20:14:09 -0700 (PDT) Received: from time.cdrom.com (root@time.cdrom.com [204.216.27.226]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA19518 for ; Tue, 22 Jul 1997 20:14:06 -0700 (PDT) Received: from time.cdrom.com (jkh@localhost.cdrom.com [127.0.0.1]) by time.cdrom.com (8.8.6/8.6.9) with ESMTP id UAA02075; Tue, 22 Jul 1997 20:11:56 -0700 (PDT) To: Michael Smith cc: abelits@phobos.illtel.denver.co.us (Alex Belits), info@pagecreators.com, isp@FreeBSD.ORG Subject: Re: FreeBSD and NT In-reply-to: Your message of "Wed, 23 Jul 1997 11:25:43 +0930." <199707230155.LAA04715@genesis.atrad.adelaide.edu.au> Date: Tue, 22 Jul 1997 20:11:56 -0700 Message-ID: <2071.869627516@time.cdrom.com> From: "Jordan K. Hubbard" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Just to head off a potential misunderstanding here though... > - The support community for FreeBSD is diverse and awake 24/7. It > won't ask you for a credit card number. It won't lie to you to save > its face. If something is broken and hurting your business, we > take it personally. If you want something fixed Real Fast, it > can be done. If a new security hole is found, you can be sure that While the volunteer support community for FreeBSD is an extremely competent and responsive resource for one which costs nothing at all, it also has to be allowed to move at its own pace on problems since volunteers also have Real Jobs(tm) and those breadwinning activities naturally *must* take priority over anything FreeBSD related. In other words, the volunteers certainly do their best to deal with issues quickly but response time is nothing they can guarantee, and if your business really depends on getting something fixed Real Fast, Right Now, then you'd better either have some onsite expertise or be prepared to pay real money for Real Fast in the form of consulting hours because the volunteer support mechanism is not and never was intended to solve such problems. Jordan From owner-freebsd-isp Tue Jul 22 20:20:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA19903 for isp-outgoing; Tue, 22 Jul 1997 20:20:11 -0700 (PDT) Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA19812 for ; Tue, 22 Jul 1997 20:19:59 -0700 (PDT) Received: (from msmith@localhost) by genesis.atrad.adelaide.edu.au (8.8.5/8.7.3) id MAA05400; Wed, 23 Jul 1997 12:48:17 +0930 (CST) From: Michael Smith Message-Id: <199707230318.MAA05400@genesis.atrad.adelaide.edu.au> Subject: Re: FreeBSD and NT In-Reply-To: <2071.869627516@time.cdrom.com> from "Jordan K. Hubbard" at "Jul 22, 97 08:11:56 pm" To: info@pagecreators.com Date: Wed, 23 Jul 1997 12:48:16 +0930 (CST) Cc: isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jordan K. Hubbard stands accused of saying: > Just to head off a potential misunderstanding here though... Oops. Point. > > take it personally. If you want something fixed Real Fast, it > > can be done. If a new security hole is found, you can be sure that ... > issues quickly but response time is nothing they can guarantee, and if > your business really depends on getting something fixed Real Fast, > Right Now, then you'd better either have some onsite expertise or be > prepared to pay real money for Real Fast in the form of consulting > hours because the volunteer support mechanism is not and never was > intended to solve such problems. I should have qualified "can" more carefully. In contrast to a closed, commercial operating system, where the traditional response to a problem report is "wait for the next release", a truly open system like FreeBSD makes it possible for you to turn to a consultant-for-hire and seek an independant solution. Such a solution may involve you paying said consultant; the message I intended was merely that the solution was available at all. -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[ From owner-freebsd-isp Tue Jul 22 20:39:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA20858 for isp-outgoing; Tue, 22 Jul 1997 20:39:33 -0700 (PDT) Received: from hawk.ois.net.au (mikey@hawk.ois.net.au [203.17.194.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA20853 for ; Tue, 22 Jul 1997 20:39:28 -0700 (PDT) Received: from localhost (mikey@localhost) by hawk.ois.net.au (8.8.4/8.8.4) with SMTP id LAA29470 for ; Wed, 23 Jul 1997 11:40:54 +0800 Date: Wed, 23 Jul 1997 11:40:54 +0800 (WST) From: Michael Slater To: freebsd-isp@freebsd.org Subject: Monitoring the IP usage of a single IP address on an ethernet Message-ID: MIME-Version: 1.0 Content-Type: MULTIPART/REPORT; REPORT-TYPE=delivery-status; BOUNDARY="KAA24773.869625496/hawk.ois.net.au" Content-ID: Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --KAA24773.869625496/hawk.ois.net.au Content-Type: TEXT/PLAIN; CHARSET=US-ASCII Content-ID: Hello, I am looking for a reliable method of monitoring/controlling the bandwidth consumed/bytes downloaded by a specific machine on my local office ethernet. Would it be best to have the machine in question use one of our FreeBSD machines with ipfw configured to log packets as a gateway ? Or perhaps is their a better method. Regards, Michael Slater --KAA24773.869625496/hawk.ois.net.au-- From owner-freebsd-isp Tue Jul 22 21:44:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA23818 for isp-outgoing; Tue, 22 Jul 1997 21:44:56 -0700 (PDT) Received: from nak.myhouse.com (nak.myhouse.com [209.70.45.162]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id VAA23812 for ; Tue, 22 Jul 1997 21:44:52 -0700 (PDT) Received: (qmail 10379 invoked by uid 1000); 23 Jul 1997 04:44:25 -0000 Date: Wed, 23 Jul 1997 00:44:25 -0400 (EDT) From: zoonie To: Michael Slater cc: freebsd-isp@FreeBSD.ORG Subject: Re: Monitoring the IP usage of a single IP address on an ethernet In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk you can measure the number of bytes transmitted and received via SNMP if you have an snmp hub and the proper software (assuming that the MIB will allow you to get the info on a per port basis which is something that an snmp hub should do). if you have a cisco router you can turn on IP accounting. i did that to track the bandwith usage for 6 different machines and i modified a perl script that sucks the info out so that a web page is generated with the current total number of bytes transmitted and received for the month, the page is generated hourly and the owners of the systems can check to see how much bandwidth they have used up for the month. a freebsd box should work also but i did my setup a while ago before i found out about ipfw. it seems to me like the best method is via snmp from a hub but the router or the freebsd box also work if you don't have an snmp hub... On Wed, 23 Jul 1997, Michael Slater wrote: > > Hello, > I am looking for a reliable method of monitoring/controlling the > bandwidth consumed/bytes downloaded by a specific machine on my local > office ethernet. Would it be best to have the machine in question > use one of our FreeBSD machines with ipfw configured to log packets as a > gateway ? Or perhaps is their a better method. > > > Regards, > > Michael Slater > > From owner-freebsd-isp Tue Jul 22 22:04:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA24467 for isp-outgoing; Tue, 22 Jul 1997 22:04:59 -0700 (PDT) Received: from mx.serv.net (mx.serv.net [205.153.153.234]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA24462 for ; Tue, 22 Jul 1997 22:04:54 -0700 (PDT) Received: from MindBender.serv.net (root@mindbender.serv.net [205.153.153.98]) by mx.serv.net (8.8.5/8.8.5) with ESMTP id WAA22280; Tue, 22 Jul 1997 22:05:01 -0700 (PDT) Received: from localhost.HeadCandy.com (michaelv@localhost.HeadCandy.com [127.0.0.1]) by MindBender.serv.net (8.7.5/8.7.3) with SMTP id WAA05004; Tue, 22 Jul 1997 22:03:07 -0700 (PDT) Message-Id: <199707230503.WAA05004@MindBender.serv.net> X-Authentication-Warning: MindBender.serv.net: Host michaelv@localhost.HeadCandy.com [127.0.0.1] didn't use HELO protocol To: Nate Williams cc: dennis , Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-reply-to: Your message of Tue, 22 Jul 97 19:45:01 -0600. <199707230145.TAA10643@rocky.mt.sri.com> Date: Tue, 22 Jul 1997 22:02:46 -0700 From: "Michael L. VanLoon -- HeadCandy.com" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >> >I started asking around some of my 'NT' expert friends, and if you do >> >'development' on an NT box, it's *very* unstable. Normal users can take [...] >> So what you're saying is I, and the thousands of people using NT for >> serious development, without crashing it, are imagining things? >I'm saying that there aren't thousands of people using NT for serious >development w/out crashing it. I asked around to the the dozens of >people I know that develop under NT, and they all say it crashes. >(Though not as often as Win 3.1). Interestingly enough, I *rarely* >crash Win95, but I guess I'm just lucky. I hate to burst your bubble, but it's true. I wouldn't be so adamant about it except that I do it successfully on a regular basis. My NT box works fine. I push it hard. A lot. It never crashes. It never does anything bad. Thousands of developers at Microsoft do the same. Thousands, if not millions, of people use NT for mission-critical servers, and manage to keep it up for weeks at a time. I'm sorry you're having so many problems. And I'm not discounting your experience. Obviously you're having problems, but without an intimate knowledge of the situation, I can't tell you why you're having problems. And, obviously, this is a very anti-Microsoft crowd. I'd expect to find a lot of people with a lot of negative things to say about NT. No big deal. I just want you to understand that there are a lot of people who manage to push NT very hard and not crash it. I don't expect you to actually like NT, or Microsoft. That doesn't make FreeBSD any less an excellent Unix. As I said in my first post, there are a bunch of reasons why FreeBSD/NetBSD are better for a small ISP. Not the least of which is that *BSD is in fact substantially more responsive on lesser hardware. (Though I don't buy the Novell guy's story -- a tired has-been OS that is way past its prime -- it might run a little faster, but what does it give you? Not much.) >> I'm willing to accept that there is a buggy driver(s) which is biting >> many people, and causing them lots of instability. >With a Diamond video card, arguably the most common/popular card in >existance? I have a Diamond card myself. An S3 Virge-based Diamond Stealth 3D 3400. It works rock solid with my Asus P6NP5 motherboard. The exact same video card wouldn't even boot in a Dell OptiPlex GXPro. Go figure. >> However, the fact that many many people are able to do serious >> development on NT without crashes attests to the assertion that it is >> not NT by itself that is the problem. >See above. I don't buy the statement that 'many people are able to do >development w/out serious crashes'. Regardless, it's true. >> Where is this Java/Visual-Depth patch located? >Look in the knowledge database on the WWW server. I don't have the >patch off-hand, but Java programs won't run in greater than 8-bit mode >w/out it. OK, so without this patch you crash the Java VM, an application, or the entire NT OS? ----------------------------------------------------------------------------- Michael L. VanLoon michaelv@MindBender.serv.net --< Free your mind and your machine -- NetBSD free un*x >-- NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, Sun3, Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32... NetBSD ports in progress: PICA, others... ----------------------------------------------------------------------------- From owner-freebsd-isp Tue Jul 22 22:38:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA25521 for isp-outgoing; Tue, 22 Jul 1997 22:38:51 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA25514 for ; Tue, 22 Jul 1997 22:38:48 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id BAA24137; Wed, 23 Jul 1997 01:38:47 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id BAA08430; Wed, 23 Jul 1997 01:38:46 -0400 (EDT) To: zoonie cc: Michael Slater , freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Monitoring the IP usage of a single IP address on an ethernet In-reply-to: Your message of "Wed, 23 Jul 1997 00:44:25 EDT." Date: Wed, 23 Jul 1997 01:38:46 -0400 Message-ID: <8428.869636326@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk zoonie wrote in message ID : > snmp hub should do). if you have a cisco router you can turn on IP > accounting. Just a warning: Cisco's IOS does allow you to turn on IP accounting, and it does generate useful information, however, it comes at a price. By default, Ciscos do something called `fast switching' which means that the packet is delivered to the queue for the destination interface as part of servicing the interrupt. Withouth fast switching, the packet is just put in an input queue and processed as and when the router gets round to it (thats a gross oversimplification). If you are running routing processes (e.g. OSPF, EIGRP, BGP) on that box too, it can lead to degraded service. Fast switching is still disabled, even if you turn off IP accounting, until the next reboot. (Apparently at least one major US national dialup provider found this the hard way *grin*) If you have a smart hub or a switch with a SNMP agent, and you just want basic bytes in/out, thats probably the best way to go. If you want more detailed statistics (e.g. bytes for ftp, bytes for telnet, etc) you'll need an IPFW/IPFilter based solution, Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Tue Jul 22 22:49:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA25930 for isp-outgoing; Tue, 22 Jul 1997 22:49:01 -0700 (PDT) Received: from topgun.asiapac.net (topgun.asiapac.net [202.188.0.106]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA25920 for ; Tue, 22 Jul 1997 22:48:55 -0700 (PDT) Received: from topgun ([202.188.0.106]) by topgun.asiapac.net (Netscape Mail Server v2.0) with SMTP id AAA1990; Wed, 23 Jul 1997 13:46:39 +0800 Date: Wed, 23 Jul 1997 13:46:39 +0800 (SGT) From: Swee-Chuan Khoo X-Sender: sckhoo@topgun To: "Michael L. VanLoon -- HeadCandy.com" cc: Nate Williams , dennis , Alex Belits , isp@FreeBSD.ORG Subject: Re: FreeBSD and NT In-Reply-To: <199707230503.WAA05004@MindBender.serv.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ok guys, back to discussing ISP issue on FreeBSD. ok? we are getting no where on this. thanx. On Tue, 22 Jul 1997, Michael L. VanLoon -- HeadCandy.com wrote: > > >> >I started asking around some of my 'NT' expert friends, and if you do > >> >'development' on an NT box, it's *very* unstable. Normal users can take > [...] > > >> So what you're saying is I, and the thousands of people using NT for > >> serious development, without crashing it, are imagining things? > > >I'm saying that there aren't thousands of people using NT for serious > >development w/out crashing it. I asked around to the the dozens of > >people I know that develop under NT, and they all say it crashes. > >(Though not as often as Win 3.1). Interestingly enough, I *rarely* > >crash Win95, but I guess I'm just lucky. > > I hate to burst your bubble, but it's true. I wouldn't be so adamant > about it except that I do it successfully on a regular basis. My NT > box works fine. I push it hard. A lot. It never crashes. It never > does anything bad. Thousands of developers at Microsoft do the same. > Thousands, if not millions, of people use NT for mission-critical > servers, and manage to keep it up for weeks at a time. > > I'm sorry you're having so many problems. And I'm not discounting > your experience. Obviously you're having problems, but without an > intimate knowledge of the situation, I can't tell you why you're > having problems. > > And, obviously, this is a very anti-Microsoft crowd. I'd expect to > find a lot of people with a lot of negative things to say about NT. > No big deal. I just want you to understand that there are a lot of > people who manage to push NT very hard and not crash it. I don't > expect you to actually like NT, or Microsoft. > > That doesn't make FreeBSD any less an excellent Unix. As I said in my > first post, there are a bunch of reasons why FreeBSD/NetBSD are better > for a small ISP. Not the least of which is that *BSD is in fact > substantially more responsive on lesser hardware. (Though I don't buy > the Novell guy's story -- a tired has-been OS that is way past its > prime -- it might run a little faster, but what does it give you? Not > much.) > > >> I'm willing to accept that there is a buggy driver(s) which is biting > >> many people, and causing them lots of instability. > > >With a Diamond video card, arguably the most common/popular card in > >existance? > > I have a Diamond card myself. An S3 Virge-based Diamond Stealth 3D > 3400. It works rock solid with my Asus P6NP5 motherboard. The exact > same video card wouldn't even boot in a Dell OptiPlex GXPro. Go > figure. > > >> However, the fact that many many people are able to do serious > >> development on NT without crashes attests to the assertion that it is > >> not NT by itself that is the problem. > > >See above. I don't buy the statement that 'many people are able to do > >development w/out serious crashes'. > > Regardless, it's true. > > >> Where is this Java/Visual-Depth patch located? > > >Look in the knowledge database on the WWW server. I don't have the > >patch off-hand, but Java programs won't run in greater than 8-bit mode > >w/out it. > > OK, so without this patch you crash the Java VM, an application, or > the entire NT OS? > > ----------------------------------------------------------------------------- > Michael L. VanLoon michaelv@MindBender.serv.net > --< Free your mind and your machine -- NetBSD free un*x >-- > NetBSD working ports: 386+PC, Mac 68k, Amiga, Atari 68k, HP300, Sun3, > Sun4/4c/4m, DEC MIPS, DEC Alpha, PC532, VAX, MVME68k, arm32... > NetBSD ports in progress: PICA, others... > ----------------------------------------------------------------------------- > ---------------------------------------------------------------- Swee-Chuan Khoo sckhoo@asiapac.net System Administrator - Internet Evangelist http://www.asiapac.net/~sckhoo/ #include ---------------------------------------------------------------- Astronimical Soc M'sia http://www.asiapac.net/~sckhoo/asm.html "Simplify - There is no value in complexity, it's too difficult to manage." From owner-freebsd-isp Tue Jul 22 23:21:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA27429 for isp-outgoing; Tue, 22 Jul 1997 23:21:24 -0700 (PDT) Received: from linus.intrastar.net (root@linus.intrastar.net [206.136.25.19]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA27422; Tue, 22 Jul 1997 23:21:19 -0700 (PDT) Received: from jake.fuck.org (pmnac1-18.inu.net [208.129.167.20]) by linus.intrastar.net (8.8.5/TerraNovaNet) with ESMTP id BAA04823; Wed, 23 Jul 1997 01:21:13 -0500 (CDT) Message-ID: <33D5A3B1.4879B018@linus.intrastar.net> Date: Wed, 23 Jul 1997 01:24:49 -0500 From: Jacob Suter X-Mailer: Mozilla 4.01 [en] (Win95; I) MIME-Version: 1.0 To: Gary Palmer CC: zoonie , Michael Slater , freebsd-isp@FreeBSD.ORG Subject: Re: Monitoring the IP usage of a single IP address on an ethernet X-Priority: 3 (Normal) References: <8428.869636326@orion.webspan.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > If you have a smart hub or a switch with a SNMP agent, and you just > want basic bytes in/out, thats probably the best way to go. If you > want more detailed statistics (e.g. bytes for ftp, bytes for telnet, > etc) you'll need an IPFW/IPFilter based solution, Looking at this, can I make a single ethernet card freebsd based router device (using the etinc card) and get per-IP-on-that-ethernet-segment usage info out of it? If so please give me a hint... JS From owner-freebsd-isp Tue Jul 22 23:48:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id XAA28907 for isp-outgoing; Tue, 22 Jul 1997 23:48:43 -0700 (PDT) Received: from willy.crimsonweb.com (willy.crimsonweb.com [206.117.218.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id XAA28897; Tue, 22 Jul 1997 23:48:32 -0700 (PDT) Received: from flippy (flippy.crimsonweb.com [206.117.218.10]) by willy.crimsonweb.com (Post.Office MTA v3.1 release PO205e ID# 0-36306U100L100S0) with SMTP id AAA287; Tue, 22 Jul 1997 23:47:59 -0700 Message-Id: <3.0.32.19970722234758.013e58a0@crimsonweb.com> X-Sender: root@crimsonweb.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 22 Jul 1997 23:47:59 -0700 To: freebsd-isp@FreeBSD.ORG From: Jason C Ingham Subject: Re: Monitoring the IP usage of a single IP address on an ethernet Cc: "Gary Palmer" Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 01:38 AM 7/23/97 -0400, Gary Palmer wrote: [...] >If you have a smart hub or a switch with a SNMP agent, and you just >want basic bytes in/out, thats probably the best way to go. If you >want more detailed statistics (e.g. bytes for ftp, bytes for telnet, >etc) you'll need an IPFW/IPFilter based solution, I there any document (beside manpages) that would detail this process? I've found some for Linux but want to give FreeBSD a go. (Besides just *playing* with it.) Also, I just read that IOS 11.2 does bandwidth shaping (or limiting.) Can IPFW/IPFilter do that? Like Joe gets 64k max, Sally gets 128k, etc. Can this be variable based on time of day? Can these tools output html so customers/users can see 1. How much of their b/width they're using and 2. What sort of traffic (based on percentage/totals etc.) is flowing? Maybe mrtg can be twisted into doing some or all of this via snmp all based on stats output by IPFW/IPFilter??? Any help/hints greatly appreciated. Thanks! Jason Ingham From owner-freebsd-isp Wed Jul 23 03:17:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA08405 for isp-outgoing; Wed, 23 Jul 1997 03:17:04 -0700 (PDT) Received: from login.bigblue.no (froden@login.bigblue.no [194.19.68.12]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA08391 for ; Wed, 23 Jul 1997 03:16:56 -0700 (PDT) Received: from localhost (froden@localhost) by login.bigblue.no (8.8.5/8.8.5) with SMTP id MAA27523 for ; Wed, 23 Jul 1997 12:16:54 +0200 (MET DST) Date: Wed, 23 Jul 1997 12:16:53 +0200 (MET DST) From: Frode Nordahl To: freebsd-isp@freebsd.org Subject: PPPD authentication with RADIUS? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I saw some discussion about using RADIUS to authenticate users dialing into a system with pppd. I wonder if this has been possible on FreeBSD yet? We really do need this functionallity. We have a portmaster for ISDN dialins, and currently use a NT (sigh) box for modem dialins. What I want to do is to transfer theese users to a FreeBSD box. But this is not possible without RADIUS. The ideal setup would be to buy a portmaster for the modems too, but PM's cost! :) Hope someone can answer this! --------------------------------- Frode Nordahl From owner-freebsd-isp Wed Jul 23 05:07:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA12773 for isp-outgoing; Wed, 23 Jul 1997 05:07:11 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.visint.co.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA12762 for ; Wed, 23 Jul 1997 05:07:01 -0700 (PDT) Received: from dylan.visint.co.uk (dylan.visint.co.uk [194.207.134.180]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id NAA28044; Wed, 23 Jul 1997 13:03:16 +0100 (BST) Date: Wed, 23 Jul 1997 13:03:16 +0100 (BST) From: Stephen Roome Reply-To: Stephen Roome To: "Michael L. VanLoon -- HeadCandy.com" cc: dennis , Alex Belits , isp@FreeBSD.ORG Subject: Re: FreeBSD and NT In-Reply-To: <199707222142.OAA03553@MindBender.serv.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Michael L. VanLoon -- HeadCandy.com wrote: > NT by itself (and NT with tons of development tools and such open) > runs for weeks at a time without reboots, for me, and thousands of > others. Modern NT servers (as opposed to "workstations", which you > described) are every bit as stable as Unix servers, with months of > uptime. FYI... I wouldn't be the first or the last if I said that NT sucks and is the worst operating system on the planet, and I won't because it does sell and it probably is due to slightly more than marketing hype. The only problem with what you are saying is that no matter how many people continuously state how stable NT is, there are still people commenting on it's instability. The two arguments seem to be : 1) NT can be unstable. (N.B. "can be unstable", not "is unstable") 2) UNIX can be difficult to use/setup. (N.B. "can be" vs. "is" again) I've seen very nothing the other way round, no-one seems to be shouting that NT is difficult to setup, and no Microsoft fan ever seems to shout about how unstable UNIX is. Really both of these alternatives seem to be stupid. So, I'm led to beleive that NT is *possibly* unstable, and UNIX will be difficult to use. Most people here will argue that UNIX is easy to use, just not if you're a complete idiot... (I don't entirely agree) and that NT just sucks and is bought to you straight from hell. (A rather rabid fantical style of argument, to say the least!) Now, assume "NT can be unstable" is wrong, then it's okay to go with it. Assume "UNIX is difficult to use" is wrong then it's okay to go with it. If "NT can be unstable" is true then it's not okay to use NT. However if the arguments against UNIX are true then all it means are that you will need a competent intelligent sysadmin. So, really all the arguments so far in favour of NT seem to be about the competence required to use NT vs. the competence required to use UNIX. Rather than the more sensible discussion/debate/fanatical arguments of which actually does the job properly. Chose for yourself, and if NT works for you then fine, but the closer you look at the arguments the NT side is fighting mainly on the premise of "we're too stupid to use UNIX". Oh, and I'll happily use NT if I need to, but currently our servers cope just fine on UNIX, cost a lot less and I'm clever enough to be able to use UNIX. (is that arrogance or is UNIX really not so difficult?) -- Steve Roome - Vision Interactive Ltd. Tel:+44(0)117 9730597 Home:+44(0)976 241342 WWW: http://dylan.visint.co.uk/ From owner-freebsd-isp Wed Jul 23 06:00:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA15176 for isp-outgoing; Wed, 23 Jul 1997 06:00:53 -0700 (PDT) Received: from ns.NL.net (ns.NL.net [193.78.240.1]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id GAA15169 for ; Wed, 23 Jul 1997 06:00:49 -0700 (PDT) Received: from jaknl by ns.NL.net (5.65b/NLnet1.3) id AA17876; Wed, 23 Jul 1997 14:22:38 +0200 Received: from pp200-1 ([192.168.0.200]) by jak.nl (8.8.3/8.8.3) with ESMTP id KAA01675; Wed, 23 Jul 1997 10:27:28 +0200 (MET DST) Message-Id: <33D5C076.3BA0EEBE@jak.nl> Date: Wed, 23 Jul 1997 10:27:35 +0200 From: Jan A Knepper Reply-To: Jan@jak.nl X-Mailer: Mozilla 4.01 [en] (WinNT; I) Mime-Version: 1.0 To: "Michael L. VanLoon -- HeadCandy.com" , FreeBSD-ISP@FreeBSD.org Subject: Re: FreeBSD and NT X-Priority: 3 (Normal) References: <199707230503.WAA05004@MindBender.serv.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Michael L. VanLoon -- HeadCandy.com wrote: > (Though I don't buy > the Novell guy's story I am not a Novell guy... > -- a tired has-been OS that is way past its > prime -- it might run a little faster, but what does it give you? Not > > much.) The fact of the matter is that in most of the instances where NT server is used NetWare would perform a lot better.It is not a matter of running a LITTLE faster. The difference is that NT server chokes with any more than 10 users. I.e. performance goes doen quickly. NetWare doesn't even have that problem with 100 users! Then, what would NT server give that IntranetWare 4.11 does not give? > >> I'm willing to accept that there is a buggy driver(s) which is > biting > >> many people, and causing them lots of instability. Well, you better try so serious networking and see how it hangs itself... Not even a blue screen! Don't worry, be Kneppie! Jan From owner-freebsd-isp Wed Jul 23 08:03:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA22551 for isp-outgoing; Wed, 23 Jul 1997 08:03:20 -0700 (PDT) Received: from nak.myhouse.com (nak.myhouse.com [209.70.45.162]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id IAA22535 for ; Wed, 23 Jul 1997 08:03:15 -0700 (PDT) Received: (qmail 11052 invoked by uid 1000); 23 Jul 1997 15:02:48 -0000 Date: Wed, 23 Jul 1997 11:02:48 -0400 (EDT) From: zoonie To: Gary Palmer cc: freebsd-isp@FreeBSD.ORG Subject: Re: Monitoring the IP usage of a single IP address on an ethernet In-Reply-To: <8428.869636326@orion.webspan.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 23 Jul 1997, Gary Palmer wrote: > Just a warning: Cisco's IOS does allow you to turn on IP accounting, > and it does generate useful information, however, it comes at a > price. By default, Ciscos do something called `fast switching' which > means that the packet is delivered to the queue for the destination > interface as part of servicing the interrupt. Withouth fast switching, > the packet is just put in an input queue and processed as and when the > router gets round to it (thats a gross oversimplification). If you are > running routing processes (e.g. OSPF, EIGRP, BGP) on that box too, it > can lead to degraded service. i don't think that's the case gary, if i do a "sh ip int" on my router to show all ip interfaces it says that fast switching is turned on and if i do a "sh ip cache" i can see what's in the fast switching cache. i know about the different switching methods that cisco uses but i'm not all that up on when it is working and when it isn't. but, according to my router it's turned on. on the other hand with some of the problems that i have seen with the 11.x code at work who knows what the router is really doing (to be fair to cisco, most of that is DLSW related). at least it gets stuff from our network to the rest of the world in a reasonable amount of time. somebody mentioned in a follow up message that 11.2 has a traffic shaping feature that allows you to control bandwidth usage (i don't remember the exact text), that sounds like a neat feature but i would be wary about deploying the later versions of IOS on my network. > If you have a smart hub or a switch with a SNMP agent, and you just > want basic bytes in/out, thats probably the best way to go. If you you're right, this is the best way of doing it..... From owner-freebsd-isp Wed Jul 23 08:18:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA23715 for isp-outgoing; Wed, 23 Jul 1997 08:18:39 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA23704 for ; Wed, 23 Jul 1997 08:18:34 -0700 (PDT) Received: from dialup-usr11.etinc.com (dialup-usr11.etinc.com [204.141.95.132]) by etinc.com (8.8.3/8.6.9) with SMTP id LAA17307; Wed, 23 Jul 1997 11:22:26 -0400 (EDT) Message-Id: <3.0.32.19970723110759.00cf8938@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Wed, 23 Jul 1997 11:08:17 -0400 To: "Michael L. VanLoon -- HeadCandy.com" , Nate Williams From: dennis Subject: Re: FreeBSD and NT Cc: Alex Belits , isp@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 10:02 PM 7/22/97 -0700, Michael L. VanLoon -- HeadCandy.com wrote: > >>> >I started asking around some of my 'NT' expert friends, and if you do >>> >'development' on an NT box, it's *very* unstable. Normal users can take >[...] > >>> So what you're saying is I, and the thousands of people using NT for >>> serious development, without crashing it, are imagining things? Mine doesnt crash, it just gets real slow. Many OSs and routers dont "crash" because they dont have panic routines.....UNIX crashes way too often because, unfortunately, panics are the way it handles adversity. Other OSs just get screwed up when a kernel failure occurs. db From owner-freebsd-isp Wed Jul 23 08:20:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA23899 for isp-outgoing; Wed, 23 Jul 1997 08:20:50 -0700 (PDT) Received: from rocky.mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA23894 for ; Wed, 23 Jul 1997 08:20:47 -0700 (PDT) Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id JAA12729; Wed, 23 Jul 1997 09:16:34 -0600 (MDT) Date: Wed, 23 Jul 1997 09:16:34 -0600 (MDT) Message-Id: <199707231516.JAA12729@rocky.mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: "Michael L. VanLoon -- HeadCandy.com" Cc: Nate Williams , dennis , Alex Belits , isp@freebsd.org Subject: Re: FreeBSD and NT In-Reply-To: <199707230503.WAA05004@MindBender.serv.net> References: <199707230145.TAA10643@rocky.mt.sri.com> <199707230503.WAA05004@MindBender.serv.net> X-Mailer: VM 6.29 under 19.15 XEmacs Lucid Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > >> Where is this Java/Visual-Depth patch located? > > >Look in the knowledge database on the WWW server. I don't have the > >patch off-hand, but Java programs won't run in greater than 8-bit mode > >w/out it. > > OK, so without this patch you crash the Java VM, an application, or > the entire NT OS? The entire OS. Not so much a crash as complete lockup of the system, with the only recourse being the 'big-red button'. Nate From owner-freebsd-isp Wed Jul 23 08:45:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA25516 for isp-outgoing; Wed, 23 Jul 1997 08:45:19 -0700 (PDT) Received: from newt.dlc.fi (newt.dlc.fi [195.218.64.6]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA25509 for ; Wed, 23 Jul 1997 08:45:14 -0700 (PDT) Received: (from raccoon@localhost) by newt.dlc.fi (8.8.5/8.8.5) id SAA21164 for isp@freebsd.org; Wed, 23 Jul 1997 18:45:13 +0300 (EDT) From: "A. Rytsola" Message-Id: <9707231845.ZM21161@newt.dlc.fi> Date: Wed, 23 Jul 1997 18:45:13 -0400 X-Mailer: Z-Mail (3.2.3 08feb96 MediaMail) To: isp@freebsd.org Subject: Adding memory shouldn't trigger bugs, right? Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi! One of our servers was running low on memory due to heavy database use, so I increased the memory from 128 to 192. Now the FreeBSD seems to jam up twice a week, aprox. I get no ping reply, no console activity, nothing in the logs, just pure jam up. I'll press the reset button and the computer gets up just nicely and works another three four days just nicely. I changed the installed memory with another pieces from a machine that has been working long, but no use. Anyone else have any similar experiences? Motherboard malfunction? The FreeBSD kernel has been recompiled and finds the 192 megs of memory allright. Any suggestions welcome. From owner-freebsd-isp Wed Jul 23 08:53:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA26184 for isp-outgoing; Wed, 23 Jul 1997 08:53:22 -0700 (PDT) Received: from dream.future.net (root@future.net [204.130.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA26172 for ; Wed, 23 Jul 1997 08:53:15 -0700 (PDT) Received: from dream.future.net (tomthai@future.net [204.130.134.1]) by dream.future.net (8.8.5-r-beta/8.6.10) with SMTP id PAA16371; Wed, 23 Jul 1997 15:47:59 -0500 (CDT) Date: Wed, 23 Jul 1997 15:47:58 -0500 (CDT) From: "Tom T. Thai" To: Frode Nordahl cc: freebsd-isp@FreeBSD.ORG Subject: Re: PPPD authentication with RADIUS? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk look for radiusclient or portslave at ftp.future.net/RADIUS On Wed, 23 Jul 1997, Frode Nordahl wrote: > I saw some discussion about using RADIUS to authenticate users dialing > into a system with pppd. > > I wonder if this has been possible on FreeBSD yet? > We really do need this functionallity. We have a portmaster for ISDN > dialins, and currently use a NT (sigh) box for modem dialins. What I want > to do is to transfer theese users to a FreeBSD box. But this is not > possible without RADIUS. The ideal setup would be to buy a portmaster for > the modems too, but PM's cost! :) > > Hope someone can answer this! > > --------------------------------- > Frode Nordahl > > .............. .................................... Thomas T. Thai Infomedia Interactive Communications tom@iic.net TEL 612.376.9090 * FAX 612.376.9087 From owner-freebsd-isp Wed Jul 23 09:41:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA28955 for isp-outgoing; Wed, 23 Jul 1997 09:41:50 -0700 (PDT) Received: from ns1.theonlynet.com (ns1.theonlynet.com [206.29.203.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA28949 for ; Wed, 23 Jul 1997 09:41:39 -0700 (PDT) Received: (from rricci@localhost) by ns1.theonlynet.com (8.8.5/8.7.3) id KAA09324; Wed, 23 Jul 1997 10:41:34 -0600 (MDT) Date: Wed, 23 Jul 1997 10:41:34 -0600 (MDT) From: "Robert P. Ricci" To: Frode Nordahl cc: freebsd-isp@FreeBSD.ORG Subject: Re: PPPD authentication with RADIUS? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk We use NIS, because, as far as I can tell, you have to hack pppd to make it a Radius client. But, of course, you'd have to have FreeBSD, or some other Unix flavor w/ NIS to do your authenticating from. If you're interested, take a look at the manpage for yp . Robert Ricci rricci@theonlynet.com On Wed, 23 Jul 1997, Frode Nordahl wrote: > I saw some discussion about using RADIUS to authenticate users dialing > into a system with pppd. > > I wonder if this has been possible on FreeBSD yet? > We really do need this functionallity. We have a portmaster for ISDN > dialins, and currently use a NT (sigh) box for modem dialins. What I want > to do is to transfer theese users to a FreeBSD box. But this is not > possible without RADIUS. The ideal setup would be to buy a portmaster for > the modems too, but PM's cost! :) > > Hope someone can answer this! > > --------------------------------- > Frode Nordahl > > From owner-freebsd-isp Wed Jul 23 11:14:10 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA04293 for isp-outgoing; Wed, 23 Jul 1997 11:14:10 -0700 (PDT) Received: from yacko.netgazer.net (yacko.netgazer.net [208.12.177.63]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA04288 for ; Wed, 23 Jul 1997 11:14:05 -0700 (PDT) Received: from [208.12.177.224] (furball.netgazer.com [208.12.177.224]) by yacko.netgazer.net (8.8.3/8.7.3) with ESMTP id NAA29111 for ; Wed, 23 Jul 1997 13:20:28 GMT Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Wed, 23 Jul 1997 13:20:55 -0500 To: freebsd-isp@FreeBSD.ORG From: "Darrin R. Woods" Subject: problems with sendmail security hacks Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Due to someone at juno.com using our mailserver as a relay we have added the sendmail hacks located at senmail.org to our server. Question is concerning the 'sendmail.cR' file that checks to see if a user is authorized to use the server for ourbound mail. There aren't really any instructions on what can be in this file so we've had to do it by trial and error. It seems as though this file will handle host.domains only. Is there anyway that we can set it up to use wildcards or better yet, can we set it up to handle IP addresses (with possible wildcards here as well). Does anyone have any experience with this file and what it will take and what it won't, or can you point me to a reference. Thanks in advance. Darrin R. Woods | "I'm so happy that I, can't stop crying." Director Operations | --- Sting Netgazer Solutions, Inc. | Dallas, Texas 972.702.9119 | work: http://www.netgazer.net My employer most whole-heartedly denies everything I say From owner-freebsd-isp Wed Jul 23 12:15:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA08131 for isp-outgoing; Wed, 23 Jul 1997 12:15:24 -0700 (PDT) Received: from ns1.theonlynet.com (ns1.theonlynet.com [206.29.203.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA08112 for ; Wed, 23 Jul 1997 12:15:19 -0700 (PDT) Received: (from rricci@localhost) by ns1.theonlynet.com (8.8.5/8.7.3) id NAA10739; Wed, 23 Jul 1997 13:15:17 -0600 (MDT) Date: Wed, 23 Jul 1997 13:15:17 -0600 (MDT) From: "Robert P. Ricci" To: freebsd-isp@freeBSD.org Subject: Perl5 and utmp and wtmp Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freeBSD.org X-Loop: FreeBSD.org Precedence: bulk I'd like to write some perl scripts that can get information from the utmp and wtmp files. Does anyone know of any perl libraries that deal with these files? Thanks. Robert Ricci rricci@theonlynet.com From owner-freebsd-isp Wed Jul 23 13:05:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA10827 for isp-outgoing; Wed, 23 Jul 1997 13:05:36 -0700 (PDT) Received: from kerouac.deepwell.com (kerouac.deepwell.com [207.212.140.2]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA10821 for ; Wed, 23 Jul 1997 13:05:33 -0700 (PDT) Received: from tolkien.deepwell.com ([207.212.140.201]) by kerouac.deepwell.com (post.office MTA v2.0 0813 ID# 0-12198) with SMTP id AAA27534 for ; Wed, 23 Jul 1997 13:05:41 -0700 Message-Id: <3.0.3.32.19970723130513.031f0ac8@deepwell.com> X-Sender: nevin@deepwell.com X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32) Date: Wed, 23 Jul 1997 13:05:13 -0700 To: freebsd-isp@FreeBSD.ORG From: Nevin Subject: Limits on apache Mime-Version: 1.0 Content-Type: text/enriched; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dear fellow bsd lovers, I have receintly ran into a problem with our webserver and I was wondering if anyone out there might be able to explain to me whats going on. I am running a web server using apache 1.2 and stronghold 3.0 both on freebsd 2.2.2. It seems the the server wants to go boom if I try to bind more than 150 ip addresses to the network interface with ifconfig. Has anyone else had this problem or might know if there is a limit to the number of ip addesses that can be used? Thanks in advance, Nevin Cirtin Network Systems Administrator DeepWell Internet Services http://www.deepwell.com From owner-freebsd-isp Wed Jul 23 13:47:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA13308 for isp-outgoing; Wed, 23 Jul 1997 13:47:01 -0700 (PDT) Received: from mail1.sirius.com (mail1.sirius.com [205.134.253.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA13303 for ; Wed, 23 Jul 1997 13:46:58 -0700 (PDT) Received: from ds9.sirius.com (ds9.sirius.com [205.134.226.34]) by mail1.sirius.com (8.8.6/Sirius-8.8.6-97.07.17) with ESMTP id NAA28533; Wed, 23 Jul 1997 13:46:50 -0700 (PDT) Received: from localhost (dlowe@localhost) by ds9.sirius.com (8.6.12/961127) with SMTP id NAA01414; Wed, 23 Jul 1997 13:46:46 -0700 X-Authentication-Warning: ds9.sirius.com: dlowe owned process doing -bs Date: Wed, 23 Jul 1997 13:46:44 -0700 (PDT) From: David Lowe X-Sender: dlowe@ds9 To: "Darrin R. Woods" cc: freebsd-isp@FreeBSD.ORG Subject: Re: problems with sendmail security hacks In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Darrin - The relay denial rule at www.sendmail.org is not as "nice" as it could be, and can be terribly inconvenient if you host a lot of domains. If you do use it, sendmail.cR should be a file containing domain names which *are* allowed to relay through your mail server, but are not in the $=w class (domains which are considered local), i.e.: foo.com bar.net I personally use a different approach, basing my relay allowing on the IP address of the connecting machine (since we host many, many domain names and only have a couple dozen class Cs, it's easier to keep track of. This also means that a temporary dns error won't cause relay denial for one of our clients.) This would be done via (roughly): # Netblocks we consider local for relaying purposes F{LocalIP} /etc/sendmail/LocalIP ... Scheck_rcpt # get the client's IP address R$+ $: $(dequote "" $&{client_addr} $) $| $1 # if it's directly invoked (i.e. alias or .forward - IP is 0) it's ok R0 $| $* $@ ok # if it's one of the class Cs in the LocalIP macro, it's ok R$={LocalIP}$* $| $* $@ ok # we want to check the recipient address next... R$* $| $* $: $>3 $2 # if it's in sendmail.cw, it's a local delivery so it's ok R$*<@$=w.>$* $@ ok # Otherwise, we're not responsible R$* $#error $@ 5.7.1 $: 571 Relaying Denied Where the LocalIP file contains either complete or partial network addresses: 127.0.0.1 10.10 10.11.159 Thanks, David Lowe On Wed, 23 Jul 1997, Darrin R. Woods wrote: > Due to someone at juno.com using our mailserver as a relay we have added > the sendmail hacks located at senmail.org to our server. > > Question is concerning the 'sendmail.cR' file that checks to see if a user > is authorized to use the server for ourbound mail. There aren't really any > instructions on what can be in this file so we've had to do it by trial and > error. It seems as though this file will handle host.domains only. Is > there anyway that we can set it up to use wildcards or better yet, can we > set it up to handle IP addresses (with possible wildcards here as well). > > Does anyone have any experience with this file and what it will take and > what it won't, or can you point me to a reference. > > Thanks in advance. > > > Darrin R. Woods | "I'm so happy that I, can't stop crying." > Director Operations | --- Sting > Netgazer Solutions, Inc. | > Dallas, Texas 972.702.9119 | work: http://www.netgazer.net > > My employer most whole-heartedly denies everything I say > > From owner-freebsd-isp Wed Jul 23 13:48:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA13413 for isp-outgoing; Wed, 23 Jul 1997 13:48:47 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA13407 for ; Wed, 23 Jul 1997 13:48:44 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id QAA08056; Wed, 23 Jul 1997 16:48:43 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id QAA15630; Wed, 23 Jul 1997 16:48:43 -0400 (EDT) To: Nevin cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Limits on apache In-reply-to: Your message of "Wed, 23 Jul 1997 13:05:13 PDT." <3.0.3.32.19970723130513.031f0ac8@deepwell.com> Date: Wed, 23 Jul 1997 16:48:42 -0400 Message-ID: <15626.869690922@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Nevin wrote in message ID <3.0.3.32.19970723130513.031f0ac8@deepwell.com>: > I have receintly ran into a problem with our webserver and I was > wondering if anyone out there might be able to explain to me > whats going on. > I am running a web server using apache 1.2 and stronghold 3.0 both > on freebsd 2.2.2. > It seems the the server wants to go boom if I try to bind more than > 150 ip addresses to the network interface with ifconfig. > Has anyone else had this problem or might know if there is a limit > to the number of ip addesses that can be used? No, the limit is on the number of file descriptors you can have open from one process. I bet once you add up the number of file descriptors (i.e. 1 per IP address, one per log file you have defined in apache) that you will run into the per-process limit that is defined on your machine. Try using the apache 1.2 commands (sorry, I don't have the docs avail right now) to increase the resource limits, specifically the number of file descriptors, and see if that helps. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Wed Jul 23 14:43:13 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA16766 for isp-outgoing; Wed, 23 Jul 1997 14:43:13 -0700 (PDT) Received: from negril.msrce.howard.edu (negril.msrce.howard.edu [138.238.128.153]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id OAA16759; Wed, 23 Jul 1997 14:43:05 -0700 (PDT) Received: by negril.msrce.howard.edu; (5.65/1.1.8.2/24Feb97-8.2MPM) id AA01622; Wed, 23 Jul 1997 17:36:26 -0400 Date: Wed, 23 Jul 1997 17:36:26 -0400 From: Aaron Jackson Message-Id: <9707232136.AA01622@negril.msrce.howard.edu> To: gpalmer@FreeBSD.ORG, nevin@deepwell.com Subject: Re: Limits on apache Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk The apache group released an update that addresses this problem. The current release of apache is 1.2.1. There should also be a workaround posted on the faq at www.apache.org. I hope this helps. Aaron Jackson jackson@msrce.howard.edu >> I am running a web server using apache 1.2 and stronghold 3.0 both >> on freebsd 2.2.2. > >> It seems the the server wants to go boom if I try to bind more than >> 150 ip addresses to the network interface with ifconfig. > >> Has anyone else had this problem or might know if there is a limit >> to the number of ip addesses that can be used? > >No, the limit is on the number of file descriptors you can have open >from one process. I bet once you add up the number of file descriptors >(i.e. 1 per IP address, one per log file you have defined in apache) >that you will run into the per-process limit that is defined on your >machine. Try using the apache 1.2 commands (sorry, I don't have the >docs avail right now) to increase the resource limits, specifically >the number of file descriptors, and see if that helps. From owner-freebsd-isp Wed Jul 23 15:09:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA18310 for isp-outgoing; Wed, 23 Jul 1997 15:09:52 -0700 (PDT) Received: from caliban.dihelix.com (caliban.dihelix.com [198.180.136.138]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA18300; Wed, 23 Jul 1997 15:09:41 -0700 (PDT) Received: (from langfod@localhost) by caliban.dihelix.com (8.8.5/8.8.3) id MAA18129; Wed, 23 Jul 1997 12:09:25 -1000 (HST) Message-Id: <199707232209.MAA18129@caliban.dihelix.com> Subject: Re: Limits on apache In-Reply-To: <9707232136.AA01622@negril.msrce.howard.edu> from Aaron Jackson at "Jul 23, 97 05:36:26 pm" To: jackson@negril.msrce.howard.edu (Aaron Jackson) Date: Wed, 23 Jul 1997 12:09:25 -1000 (HST) Cc: gpalmer@FreeBSD.ORG, nevin@deepwell.com, freebsd-isp@FreeBSD.ORG From: "David Langford" X-blank-line: This space intentionaly left blank. X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >>> I am running a web server using apache 1.2 and stronghold 3.0 both >>> on freebsd 2.2.2. >> >>> It seems the the server wants to go boom if I try to bind more than >>> 150 ip addresses to the network interface with ifconfig. >> >>> Has anyone else had this problem or might know if there is a limit >>> to the number of ip addesses that can be used? Add "-DFDSETSIZE=512" to make.conf. Add "options OPEN_MAX=512 " in your kernel. Recompile everything (kernel, make world, and Apache) and you should be set. -David Langford langfod@dihelix.com From owner-freebsd-isp Wed Jul 23 18:57:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id SAA29740 for isp-outgoing; Wed, 23 Jul 1997 18:57:47 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA29726; Wed, 23 Jul 1997 18:57:36 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id TAA28356; Wed, 23 Jul 1997 19:55:01 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id TAA00673; Wed, 23 Jul 1997 19:55:38 -0600 (MDT) Date: Wed, 23 Jul 1997 19:55:37 -0600 (MDT) From: Marc Slemko Reply-To: Marc Slemko To: Aaron Jackson cc: gpalmer@FreeBSD.ORG, nevin@deepwell.com, freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: <9707232136.AA01622@negril.msrce.howard.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 23 Jul 1997, Aaron Jackson wrote: > The apache group released an update that addresses this problem. The > current release of apache is 1.2.1. There should also be a workaround > posted on the faq at www.apache.org. I hope this helps. Yes. If you use 1.2.1 on FreeBSD 2.2.x, it should work fine as long as you set the right ulimits (if necessary, run a ulimit -n unlimited in a shell script that starts Apache) and compile Apache (just Apache, you don't need to recompile everything else) with -DFD_SETSIZE=1024 or some similar number. You shouldn't need to tune the Apache "slack" settings at all. Apache does try to magically increase the limit on file descriptors (adds 2 per virtual host), but that isn't always possible. With 1.2.0, that won't work a lot of the time because BIND has broken code that sets a hard limit based on the FD_SETSIZE setting when BIND was compiled. You would have to recompile the resolver library with a larger FD_SETSIZE to fix that on 1.2.0. However, as Gary says, this is a limit on the number of file descriptors not interfaces. However, you do _not_ need one descriptor per interface. You need one descriptor per logfile, one descriptor per Listen directive, and a couple more on the top for various things. If you have a lot of virtual hosts it is best if you can avoid using Listen directives because they add overhead. > > Aaron Jackson jackson@msrce.howard.edu > > >> I am running a web server using apache 1.2 and stronghold 3.0 both > >> on freebsd 2.2.2. > > > >> It seems the the server wants to go boom if I try to bind more than > >> 150 ip addresses to the network interface with ifconfig. > > > >> Has anyone else had this problem or might know if there is a limit > >> to the number of ip addesses that can be used? > > > >No, the limit is on the number of file descriptors you can have open > >from one process. I bet once you add up the number of file descriptors > >(i.e. 1 per IP address, one per log file you have defined in apache) > >that you will run into the per-process limit that is defined on your > >machine. Try using the apache 1.2 commands (sorry, I don't have the > >docs avail right now) to increase the resource limits, specifically > >the number of file descriptors, and see if that helps. > From owner-freebsd-isp Wed Jul 23 19:05:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA00296 for isp-outgoing; Wed, 23 Jul 1997 19:05:43 -0700 (PDT) Received: from info.tsu.tomsk.su (TSU-Relarn.Relarn.ru [194.226.29.46]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id TAA00188 for ; Wed, 23 Jul 1997 19:05:08 -0700 (PDT) Received: (from uucp@localhost) by info.tsu.tomsk.su (8.8.5/8.8.2) with UUCP id EAA14366 for isp@freebsd.org; Thu, 24 Jul 1997 04:38:10 +0800 (TSD) Received: (from vas@localhost) by vas.tomsk.su (8.8.5/8.8.3) id UAA17826 for isp@freebsd.org; Wed, 23 Jul 1997 20:37:36 +0800 (TSD) From: "Victor A. Sudakov" Message-Id: <199707231237.UAA17826@vas.tomsk.su> Subject: slirp and ppp To: isp@freebsd.org Date: Wed, 23 Jul 1997 20:37:35 +0800 (TSD) Reply-To: vas@vas.tsu.tomsk.su Organization: Tomsk Region Education Department X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello All. Is there a way to make SLiRP talk ppp or otherwise emulate ppp on a shell account? Thanks a lot. -- Victor Sudakov http://www.tomsk.su/r/persons/vas.htm From owner-freebsd-isp Wed Jul 23 20:07:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA03501 for isp-outgoing; Wed, 23 Jul 1997 20:07:09 -0700 (PDT) Received: from luke.cpl.net (luke.cpl.net [206.85.245.131]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA03496; Wed, 23 Jul 1997 20:07:06 -0700 (PDT) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.5/8.8.5) with SMTP id UAA04510; Wed, 23 Jul 1997 20:07:29 -0700 (PDT) Date: Wed, 23 Jul 1997 20:07:29 -0700 (PDT) From: Shawn Ramsey To: questions@freebsd.org cc: isp@freebsd.org Subject: strange mail problem Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk We are having a _very_ strange and annoying problem with mail. There is a particular company that we host a web page for, and they also have a dedicated connection with us. (ISDN). The thing is, on our mail server, if mail is sent from it, it tries to DELIVER IT LOCALLY. I had this problem once for a company we were virtual hosting, then couldnt get it to stop... but we have never done that for this particular client. Any ideas? Could it be a DNS problem? I just don't see how it thinks the domain is local, except we host their web site @ www.* . Thanks for any ideas... From owner-freebsd-isp Wed Jul 23 21:12:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA06296 for isp-outgoing; Wed, 23 Jul 1997 21:12:40 -0700 (PDT) Received: from gatekeeper.com (janus.gatekeeper.com [192.84.10.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA06266; Wed, 23 Jul 1997 21:12:29 -0700 (PDT) Received: by gatekeeper.com; id VAA13756; Wed, 23 Jul 1997 21:11:53 -0700 (PDT) Received: from alray.cfg.com(192.84.10.15) by janus.gatekeeper.com via smap (3.2) id xma013754; Wed, 23 Jul 97 21:11:44 -0700 Message-Id: <3.0.1.16.19970723211143.328fae56@mail.cfg.com> X-Sender: shc@mail.cfg.com X-Mailer: Windows Eudora Pro Version 3.0.1 (16) Date: Wed, 23 Jul 1997 21:11:43 -0700 To: Shawn Ramsey From: Steve Caine Subject: Re: strange mail problem Cc: questions@FreeBSD.ORG, isp@FreeBSD.ORG In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 20:07 97/07/23 -0700, Shawn Ramsey wrote: > We are having a _very_ strange and annoying problem with mail. There is a > particular company that we host a web page for, and they also have a > dedicated connection with us. (ISDN). The thing is, on our mail server, if > mail is sent from it, it tries to DELIVER IT LOCALLY. >[...] Any chance you have them in your /etc/sendmail.cw file? That would make sendmail think they were local. Steve. -- Steve Caine :: shc@cfg.com :: http://www.cfg.com/ Caine, Farber & Gordon, Inc. :: Pasadena, CA, USA From owner-freebsd-isp Wed Jul 23 21:32:23 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA07102 for isp-outgoing; Wed, 23 Jul 1997 21:32:23 -0700 (PDT) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA07091; Wed, 23 Jul 1997 21:32:15 -0700 (PDT) Received: from localhost (spork@localhost) by super-g.inch.com (8.8.5/8.8.5) with SMTP id AAA14490; Thu, 24 Jul 1997 00:35:45 -0400 (EDT) Date: Thu, 24 Jul 1997 00:35:45 -0400 (EDT) From: spork X-Sender: spork@super-g.inch.com To: Marc Slemko cc: Aaron Jackson , gpalmer@FreeBSD.ORG, nevin@deepwell.com, freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 23 Jul 1997, Marc Slemko wrote: > With 1.2.0, that won't work a lot of the time because BIND has broken code > that sets a hard limit based on the FD_SETSIZE setting when BIND was > compiled. You would have to recompile the resolver library with a larger > FD_SETSIZE to fix that on 1.2.0. On a tangent... I assume (correct me if I'm wrong...) what you are talking about here is apache doing the reverse lookups for logging. We used to let apache do this until I hit some of our sites from unnamed hosts and saw an incredible slowness in downloading just about anything from our webservers. Ping and traceroute showed excellent connectivity, and I figured out the delay was apache doing the lookups and waiting on the timeout... Turning off dns lookups in the apache configs made things fly, and we now run sans dns lookups and let analog do the lookups when it processes the logs. We've since gotten some positive responses from clients coming in from ISPs that don't do revs on most of their dialup connections. Charles From owner-freebsd-isp Wed Jul 23 21:35:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA07357 for isp-outgoing; Wed, 23 Jul 1997 21:35:59 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA07338; Wed, 23 Jul 1997 21:35:54 -0700 (PDT) Received: from Gatekeeper.Alameda.net (ulf@gatekeeper.Alameda.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id VAA21997; Wed, 23 Jul 1997 21:35:59 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Alameda.net (8.8.5/8.7.6) id VAA19527; Wed, 23 Jul 1997 21:35:50 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199707240435.VAA19527@Gatekeeper.Alameda.net> Subject: Re: strange mail problem In-Reply-To: from Shawn Ramsey at "Jul 23, 97 08:07:29 pm" To: shawn@luke.cpl.net (Shawn Ramsey) Date: Wed, 23 Jul 1997 21:35:50 -0700 (PDT) Cc: questions@FreeBSD.ORG, isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > We are having a _very_ strange and annoying problem with mail. There is a > particular company that we host a web page for, and they also have a > dedicated connection with us. (ISDN). The thing is, on our mail server, if > mail is sent from it, it tries to DELIVER IT LOCALLY. I had this problem > once for a company we were virtual hosting, then couldnt get it to stop... > but we have never done that for this particular client. Any ideas? > > > Could it be a DNS problem? I just don't see how it thinks the domain is > local, except we host their web site @ www.* . > > Thanks for any ideas... I have the same problems. One of the things to look for is the "Local Host = best MX". I had the same problems with virtual sites till I set no reverse DNS to the domain. So instead of "Domain.com" in the reverse I have on all virtual IP numbers "www-virtual.Alameda.net" -- Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Wed Jul 23 21:38:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA07508 for isp-outgoing; Wed, 23 Jul 1997 21:38:04 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA07502 for ; Wed, 23 Jul 1997 21:38:01 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id AAA25153; Thu, 24 Jul 1997 00:37:59 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id AAA27768; Thu, 24 Jul 1997 00:37:59 -0400 (EDT) To: spork cc: Marc Slemko , Aaron Jackson , nevin@deepwell.com, freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Limits on apache In-reply-to: Your message of "Thu, 24 Jul 1997 00:35:45 EDT." Date: Thu, 24 Jul 1997 00:37:59 -0400 Message-ID: <27760.869719079@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk spork wrote in message ID : > processes the logs. We've since gotten some positive responses from > clients coming in from ISPs that don't do revs on most of their dialup > connections. Thats broken. A number of ftp sites won't let you on without a valid DNS entry for both A and PTR records. I'd ask my ISP to fix their DNS if they weren't giving reverses. It's just plain stupid. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Wed Jul 23 21:40:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA07731 for isp-outgoing; Wed, 23 Jul 1997 21:40:53 -0700 (PDT) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA07726; Wed, 23 Jul 1997 21:40:46 -0700 (PDT) Received: from localhost (spork@localhost) by super-g.inch.com (8.8.5/8.8.5) with SMTP id AAA14514; Thu, 24 Jul 1997 00:44:34 -0400 (EDT) Date: Thu, 24 Jul 1997 00:44:34 -0400 (EDT) From: spork X-Sender: spork@super-g.inch.com To: Gary Palmer cc: Marc Slemko , Aaron Jackson , nevin@deepwell.com, freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: <27760.869719079@orion.webspan.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997, Gary Palmer wrote: > Thats broken. A number of ftp sites won't let you on without a valid > DNS entry for both A and PTR records. I'd ask my ISP to fix their DNS > if they weren't giving reverses. It's just plain stupid. And very common... > > Gary > -- > Gary Palmer FreeBSD Core Team Member > FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info > Charles From owner-freebsd-isp Wed Jul 23 21:52:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA08156 for isp-outgoing; Wed, 23 Jul 1997 21:52:07 -0700 (PDT) Received: from mail.webspan.net (root@mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA08151 for ; Wed, 23 Jul 1997 21:52:05 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id AAA27081; Thu, 24 Jul 1997 00:52:04 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id AAA00897; Thu, 24 Jul 1997 00:52:04 -0400 (EDT) To: spork cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Limits on apache In-reply-to: Your message of "Thu, 24 Jul 1997 00:44:34 EDT." Date: Thu, 24 Jul 1997 00:52:03 -0400 Message-ID: <895.869719923@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk spork wrote in message ID : > On Thu, 24 Jul 1997, Gary Palmer wrote: > > Thats broken. A number of ftp sites won't let you on without a valid > > DNS entry for both A and PTR records. I'd ask my ISP to fix their DNS > > if they weren't giving reverses. It's just plain stupid. > And very common... I hope they at least explain to their customers why some sites are unreachable. There should be an RFC against such sloppiness. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Wed Jul 23 21:54:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA08259 for isp-outgoing; Wed, 23 Jul 1997 21:54:54 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA08254 for ; Wed, 23 Jul 1997 21:54:50 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id WAA08415; Wed, 23 Jul 1997 22:54:30 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id WAA01560; Wed, 23 Jul 1997 22:53:54 -0600 (MDT) Date: Wed, 23 Jul 1997 22:53:53 -0600 (MDT) From: Marc Slemko To: spork cc: freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997, spork wrote: > On Wed, 23 Jul 1997, Marc Slemko wrote: > > > With 1.2.0, that won't work a lot of the time because BIND has broken code > > that sets a hard limit based on the FD_SETSIZE setting when BIND was > > compiled. You would have to recompile the resolver library with a larger > > FD_SETSIZE to fix that on 1.2.0. > > On a tangent... > > I assume (correct me if I'm wrong...) what you are talking about here is > apache doing the reverse lookups for logging. We used to let apache do Not really. Apache has to do DNS lookups as part of its normal startup. Turning them off during operation doesn't really help this particular problem. > this until I hit some of our sites from unnamed hosts and saw an > incredible slowness in downloading just about anything from our > webservers. Ping and traceroute showed excellent connectivity, and I > figured out the delay was apache doing the lookups and waiting on the > timeout... Turning off dns lookups in the apache configs made things fly, > and we now run sans dns lookups and let analog do the lookups when it > processes the logs. We've since gotten some positive responses from > clients coming in from ISPs that don't do revs on most of their dialup > connections. Turning off hostname lookups is a good thing. It may be the default for 1.3. You should do so if you aren't silly enough to get confused by it. The biggest gotcha is that domain based access restrictions no longer work, but that can (and I think is, in the 1.3 source tree... not sure if the patch is in or not) be fixed so Apache only does the lookups if required for authentication. From owner-freebsd-isp Thu Jul 24 00:51:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA15915 for isp-outgoing; Thu, 24 Jul 1997 00:51:00 -0700 (PDT) Received: from extrouter.test.cdu.elektra.ru ([193.125.114.71]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA15892; Thu, 24 Jul 1997 00:50:40 -0700 (PDT) Received: from mailhub.cdu.ru (mailhub.cdu.ru [172.16.10.50]) by extrouter.test.cdu.elektra.ru (8.8.6/8.8.6) with ESMTP id LAA00201; Thu, 24 Jul 1997 11:49:33 +0400 (MSD) Received: from mailhub.cdu.ru (Win95.cdu.ru [172.16.2.10]) by mailhub.cdu.ru (8.8.6/8.8.6) with ESMTP id LAA01499; Thu, 24 Jul 1997 11:49:53 +0400 (MSD) Message-Id: <199707240749.LAA01499@mailhub.cdu.ru> From: "Pavel P. Zabortsev" To: "FreeBSD questions" Cc: "FreeBSD isp" Subject: FreeBSD + IPX Date: Thu, 24 Jul 1997 11:41:46 +0400 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1157 MIME-Version: 1.0 Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello! Again about IPX on FreeBSD. I want to use one of my PC with FreeBSD 2.2.2-RELEASE as gateway between two LAN, where an IP traffic and an IPX traffic is. I've known there is an IPX router (called as IPXrouted) in FreeBSD. But it supports only IPX/SPX over Ethernet_II frame type 0x8137, but I need Ethernet_802.2. :-( If somebody use FreeBSD as IPX router, write me, please. Yours sincerely, Pavel ----------------------------------------------------------- Pavel P. Zabortsev, software engineer CDO UPS of Russia Tel.: (095) 220-4513, 220-4350 E-mail: ppz@cdu.elektra.ru ppz@usa.net ----------------------------------------------------------- From owner-freebsd-isp Thu Jul 24 01:35:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA17654 for isp-outgoing; Thu, 24 Jul 1997 01:35:21 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA17633; Thu, 24 Jul 1997 01:35:12 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id SAA02667; Thu, 24 Jul 1997 18:34:19 +1000 (EST) Date: Thu, 24 Jul 1997 18:34:18 +1000 (EST) From: "Daniel O'Callaghan" To: "Pavel P. Zabortsev" cc: FreeBSD questions , FreeBSD isp Subject: Re: FreeBSD + IPX In-Reply-To: <199707240749.LAA01499@mailhub.cdu.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997, Pavel P. Zabortsev wrote: > Again about IPX on FreeBSD. > I want to use one of my PC with FreeBSD 2.2.2-RELEASE as gateway between > two LAN, where an IP traffic and an IPX traffic is. I've known there is an > IPX router (called as IPXrouted) in FreeBSD. But it supports only IPX/SPX > over Ethernet_II frame type 0x8137, but I need Ethernet_802.2. :-( > > If somebody use FreeBSD as IPX router, write me, please. FreeBSD does not support frame types other than Ethernet_II. How many PCs are there? It is impossible to change to Ethernet_II? Danny From owner-freebsd-isp Thu Jul 24 05:23:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA25058 for isp-outgoing; Thu, 24 Jul 1997 05:23:06 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA25053 for ; Thu, 24 Jul 1997 05:23:03 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id IAA14156; Thu, 24 Jul 1997 08:23:02 -0400 (EDT) Date: Thu, 24 Jul 1997 08:23:02 -0400 (EDT) From: Steve Hovey To: Nevin cc: freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: <3.0.3.32.19970723130513.031f0ac8@deepwell.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I think you just need to up your kernal params - for instance, named, if invoked after the ifconfigs might not come up - it has to do with binding to each and every address. On Wed, 23 Jul 1997, Nevin wrote: > Dear fellow bsd lovers, > > > I have receintly ran into a problem with our webserver and I was wondering if anyone > > out there might be able to explain to me whats going on. > > > I am running a web server using apache 1.2 and stronghold 3.0 both on freebsd 2.2.2. > > > It seems the the server wants to go boom if I try to bind more than 150 ip addresses > > to the network interface with ifconfig. > > > Has anyone else had this problem or might know if there is a limit to the number of ip addesses that can be used? > > > Thanks in advance, > > > > > Nevin Cirtin > > Network Systems Administrator > > DeepWell Internet Services > > http://www.deepwell.com > From owner-freebsd-isp Thu Jul 24 06:26:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA27628 for isp-outgoing; Thu, 24 Jul 1997 06:26:58 -0700 (PDT) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA27611 for ; Thu, 24 Jul 1997 06:26:55 -0700 (PDT) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id JAA15180; Thu, 24 Jul 1997 09:26:15 -0400 (EDT) Date: Thu, 24 Jul 1997 09:26:15 -0400 (EDT) From: Steve Hovey To: vas@vas.tsu.tomsk.su cc: isp@FreeBSD.ORG Subject: Re: slirp and ppp In-Reply-To: <199707231237.UAA17826@vas.tomsk.su> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Yup - thats whats it for. On Wed, 23 Jul 1997, Victor A. Sudakov wrote: > Hello All. > > Is there a way to make SLiRP talk ppp or otherwise emulate ppp on a shell > account? > > Thanks a lot. > -- > Victor Sudakov > http://www.tomsk.su/r/persons/vas.htm > From owner-freebsd-isp Thu Jul 24 07:38:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA01735 for isp-outgoing; Thu, 24 Jul 1997 07:38:31 -0700 (PDT) Received: from wopr.inetu.net (wopr.inetu.net [207.18.13.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA01730; Thu, 24 Jul 1997 07:38:27 -0700 (PDT) Received: from localhost (dev@localhost) by wopr.inetu.net (8.8.5/8.8.5) with SMTP id KAA13520; Thu, 24 Jul 1997 10:44:35 -0400 (EDT) Date: Thu, 24 Jul 1997 10:44:35 -0400 (EDT) From: Dev Chanchani To: Shawn Ramsey cc: questions@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: strange mail problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Is the companies domain name in the sendmail cw file? Also, make sure you check the MX records. Dev On Wed, 23 Jul 1997, Shawn Ramsey wrote: > We are having a _very_ strange and annoying problem with mail. There is a > particular company that we host a web page for, and they also have a > dedicated connection with us. (ISDN). The thing is, on our mail server, if > mail is sent from it, it tries to DELIVER IT LOCALLY. I had this problem > once for a company we were virtual hosting, then couldnt get it to stop... > but we have never done that for this particular client. Any ideas? > > > Could it be a DNS problem? I just don't see how it thinks the domain is > local, except we host their web site @ www.* . > > Thanks for any ideas... > > > > From owner-freebsd-isp Thu Jul 24 07:39:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA01811 for isp-outgoing; Thu, 24 Jul 1997 07:39:39 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA01799 for ; Thu, 24 Jul 1997 07:39:34 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id KAA07189 for ; Thu, 24 Jul 1997 10:42:40 -0400 (EDT) Message-ID: <33D769C1.167EB0E7@club-web.com> Date: Thu, 24 Jul 1997 10:42:09 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: isp@freebsd.org Subject: Re: Strange mail problem Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Shawn Ramsey wrote: > > We are having a _very_ strange and annoying problem with mail. There is a > particular company that we host a web page for, and they also have a > dedicated connection with us. (ISDN). The thing is, on our mail server, if > mail is sent from it, it tries to DELIVER IT LOCALLY. I had this problem > once for a company we were virtual hosting, then couldnt get it to stop... > but we have never done that for this particular client. Any ideas? > > Could it be a DNS problem? I just don't see how it thinks the domain is > local, except we host their web site @ www.* . > > Thanks for any ideas... It could be one of a few things.. (a) you have the option in your sendmail/or the mc file that says "best MX is local" (b) the dns says that you have the highest MX priority (c) or you have their domain in your sendmail.cw file -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Thu Jul 24 07:50:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA02560 for isp-outgoing; Thu, 24 Jul 1997 07:50:50 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA02543 for ; Thu, 24 Jul 1997 07:50:42 -0700 (PDT) Received: from dialup-usr11.etinc.com (dialup-usr11.etinc.com [204.141.95.132]) by etinc.com (8.8.3/8.6.9) with SMTP id KAA25679; Thu, 24 Jul 1997 10:56:40 -0400 (EDT) Message-Id: <3.0.32.19970724104202.00b52d70@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Thu, 24 Jul 1997 10:42:25 -0400 To: "Pavel P. Zabortsev" From: dennis Subject: Re: FreeBSD + IPX Cc: isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 11:41 AM 7/24/97 +0400, you wrote: >Hello! > >Again about IPX on FreeBSD. >I want to use one of my PC with FreeBSD 2.2.2-RELEASE as gateway between >two LAN, where an IP traffic and an IPX traffic is. I've known there is an >IPX router (called as IPXrouted) in FreeBSD. But it supports only IPX/SPX >over Ethernet_II frame type 0x8137, but I need Ethernet_802.2. :-( > >If somebody use FreeBSD as IPX router, write me, please. We do, but it only currently works if you are using one our our boards. Since I doubt that many would be willing to pay for it, it seems unlikely that we will change that. Dennis > >Yours sincerely, >Pavel > >----------------------------------------------------------- >Pavel P. Zabortsev, software engineer >CDO UPS of Russia >Tel.: (095) 220-4513, 220-4350 >E-mail: ppz@cdu.elektra.ru > ppz@usa.net >----------------------------------------------------------- > > > > From owner-freebsd-isp Thu Jul 24 07:55:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA02819 for isp-outgoing; Thu, 24 Jul 1997 07:55:33 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA02813 for ; Thu, 24 Jul 1997 07:55:27 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id KAA07366; Thu, 24 Jul 1997 10:58:32 -0400 (EDT) Message-ID: <33D76D79.2781E494@club-web.com> Date: Thu, 24 Jul 1997 10:58:01 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: isp@freebsd.org CC: james@bert.club-web.com Subject: BIND 8.1.1 and Socket errors Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello, just wondering if anyone here has tried adding some new domains to the new version of BIND (8.1.1). I just added a new domain and my name server will not restart, either from the hup or just the plain old command line. I tried moving a domain it still didn't help. I have 52 domains at the moment (this is not the highest it has ever been). anyways the ttyl on my records expires at 6:00 tonight on my secondary... so if i can't fix it by 2:00 or so i'll just revert back to the old bind. Any help will be appreciated.. :). in the telnet shell: ===== bert[5] /home/mark>named -b /etc/namedb/named.conf socket(SOCK_STREAM): Too many open files Abort (core dumped) In the messages file.. and an abrevated version of this to the console. ===== Jul 24 10:52:18 bert named[7306]: db.club-web.com: WARNING SOA expire value is less than 7 days (86400) .. many more of these... (in fact all the zone files) ... Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open files Jul 24 10:52:18 bert named[7306]: socket(SOCK_STREAM): Too many open files Jul 24 10:52:18 bert named[7306]: socket(SOCK_STREAM): Too many open files Jul 24 10:52:18 bert /kernel: pid 7306 (named), uid 0: exited on signal 6 (core dumped) thanxs, mark -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Thu Jul 24 07:55:58 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id HAA02866 for isp-outgoing; Thu, 24 Jul 1997 07:55:58 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id HAA02859 for ; Thu, 24 Jul 1997 07:55:55 -0700 (PDT) Received: from dialup-usr11.etinc.com (dialup-usr11.etinc.com [204.141.95.132]) by etinc.com (8.8.3/8.6.9) with SMTP id LAA25732; Thu, 24 Jul 1997 11:02:54 -0400 (EDT) Message-Id: <3.0.32.19970724104816.00b5315c@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Thu, 24 Jul 1997 10:48:19 -0400 To: "Daniel O'Callaghan" From: dennis Subject: Re: FreeBSD + IPX Cc: isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 06:34 PM 7/24/97 +1000, you wrote: > >On Thu, 24 Jul 1997, Pavel P. Zabortsev wrote: > >> Again about IPX on FreeBSD. >> I want to use one of my PC with FreeBSD 2.2.2-RELEASE as gateway between >> two LAN, where an IP traffic and an IPX traffic is. I've known there is an >> IPX router (called as IPXrouted) in FreeBSD. But it supports only IPX/SPX >> over Ethernet_II frame type 0x8137, but I need Ethernet_802.2. :-( >> >> If somebody use FreeBSD as IPX router, write me, please. > >FreeBSD does not support frame types other than Ethernet_II. How many >PCs are there? It is impossible to change to Ethernet_II? Why not just support 802.3. Its not that difficult for pete's sake. If someone asked me to change my entire network to suit a product with such a basic defect I would be very suspicious of the reliability (and support) of the feature. if you can't make something as trivial as 802.3 work then there are lots of more complicated things that probably wont work as well. db From owner-freebsd-isp Thu Jul 24 08:25:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA04501 for isp-outgoing; Thu, 24 Jul 1997 08:25:15 -0700 (PDT) Received: from yoss.canweb.net (root@yoss.canweb.net [207.139.235.8]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA04496; Thu, 24 Jul 1997 08:25:06 -0700 (PDT) Received: from localhost (yossman@localhost) by yoss.canweb.net (8.8.5/8.8.5) with SMTP id LAA09694; Thu, 24 Jul 1997 11:20:31 -0400 (EDT) Date: Thu, 24 Jul 1997 11:20:30 -0400 (EDT) From: yossman To: Gary Palmer cc: freebsd-isp@FreeBSD.ORG Subject: Re: Limits on apache In-Reply-To: <27760.869719079@orion.webspan.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk that might sound 'broken' but for web accesses at least, you could argue it's not really important to know what the hostname is ahead of time. if you have some funky CGI stuff setup on your site that has some sort of security issues you probably would want reverse resolve, but for regular public access to just information i find it unimportant to know where they're coming from specifically. i do the same thing here, where i don't ask for resolve until later when we process logs. the information we provide at this site isn't important/sensitive enough to warrant the extra DNS information right away. one other thing: things on the Net break constantly, and DNS is one of them. expecting everyone to have everything running correctly all the time, or know WHY things are broken when they break, is ridiculous. On Thu, 24 Jul 1997, Gary Palmer wrote: > spork wrote in message ID > : > > processes the logs. We've since gotten some positive responses from > > clients coming in from ISPs that don't do revs on most of their dialup > > connections. > > Thats broken. A number of ftp sites won't let you on without a valid > DNS entry for both A and PTR records. I'd ask my ISP to fix their DNS > if they weren't giving reverses. It's just plain stupid. > > Gary > -- > Gary Palmer FreeBSD Core Team Member > FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info > ------------------------------------------------------------------------ Yossarian Holmberg (yossman) yossman@canweb.net System Administrator, National Online http://www.canweb.net/~yossman/ my statements are my own, not my employer's -- i do not speak for them. '... and if i die, before i learn to speak .. can money pay for all the days i've lived awake but half asleep?' -- Primitive Radio Gods, "Standing Outside a Broken Phone Booth With Money In My Hand" From owner-freebsd-isp Thu Jul 24 08:32:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA04943 for isp-outgoing; Thu, 24 Jul 1997 08:32:34 -0700 (PDT) Received: from guardian.fortress.org (fortress.org [199.202.137.242]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA04937 for ; Thu, 24 Jul 1997 08:32:30 -0700 (PDT) Received: from localhost (andrew@localhost) by guardian.fortress.org (8.8.5/8.6.12) with SMTP id LAA23922; Thu, 24 Jul 1997 11:32:25 -0400 (EDT) Date: Thu, 24 Jul 1997 11:32:25 -0400 (EDT) From: Andrew Webster Reply-To: andrew@pubnix.net To: Mark Segal cc: isp@freebsd.org Subject: Re: BIND 8.1.1 and Socket errors In-Reply-To: <33D76D79.2781E494@club-web.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997, Mark Segal wrote: > Hello, > just wondering if anyone here has tried adding some new domains to the > new version of BIND (8.1.1). I just added a new domain and my name > server will not restart, either from the hup or just the plain old > command line. I tried moving a domain it still didn't help. I have 52 > domains at the moment (this is not the highest it has ever been). > anyways the ttyl on my records expires at 6:00 tonight on my > secondary... so if i can't fix it by 2:00 or so i'll just revert back to > the old bind. > Any help will be appreciated.. :). I had the same problem: If you are virtual-hosting on the same machine, there is no need to have bind listen on all the addresses, only the network card and lo0. Add the following line inside the options parameter block listen-on { 127.0.0.1; your network card ip address; }; Good luck! Andrew Webster andrew@pubnix.net Key fingerprint = CF E8 16 B8 A6 DB E3 C9 83 E7 96 24 25 58 15 6E PubNIX Montreal Connected to the world Branche au monde P.O. Box 147 Cote Saint Luc, Quebec H4V 2Y3 tel 514.990.5911 http://www.pubnix.net fax 514.990.9443 From owner-freebsd-isp Thu Jul 24 08:35:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA05179 for isp-outgoing; Thu, 24 Jul 1997 08:35:02 -0700 (PDT) Received: from uhf.wdc.net (uhf.4d.net [207.137.157.140]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA05163 for ; Thu, 24 Jul 1997 08:34:57 -0700 (PDT) Received: from localhost (bad@localhost) by uhf.wdc.net (8.8.5/8.6.12) with SMTP id LAA01270; Thu, 24 Jul 1997 11:37:02 -0400 (EDT) Date: Thu, 24 Jul 1997 11:37:01 -0400 (EDT) From: Bernie Doehner X-Sender: bad@uhf.wdc.net To: Mark Segal cc: isp@FreeBSD.ORG, james@bert.club-web.com Subject: Re: BIND 8.1.1 and Socket errors In-Reply-To: <33D76D79.2781E494@club-web.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I am not familiar with BIND 8.1.1, but I have encountered the same problem with sendmail UNDER FREEBSD. Check: kern.maxfilesperproc sysctl! Bernie On Thu, 24 Jul 1997, Mark Segal wrote: > Hello, > just wondering if anyone here has tried adding some new domains to the > new version of BIND (8.1.1). I just added a new domain and my name > server will not restart, either from the hup or just the plain old > command line. I tried moving a domain it still didn't help. I have 52 > domains at the moment (this is not the highest it has ever been). > anyways the ttyl on my records expires at 6:00 tonight on my > secondary... so if i can't fix it by 2:00 or so i'll just revert back to > the old bind. > Any help will be appreciated.. :). > > in the telnet shell: > ===== > bert[5] /home/mark>named -b /etc/namedb/named.conf > socket(SOCK_STREAM): Too many open files > Abort (core dumped) > > > In the messages file.. and an abrevated version of this to the console. > ===== > Jul 24 10:52:18 bert named[7306]: db.club-web.com: WARNING SOA expire > value is > less than 7 days (86400) .. many more of these... (in fact all the zone > files) > ... > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(sfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: fcntl(dfd, F_DUPFD, 20): Too many open > files > Jul 24 10:52:18 bert named[7306]: socket(SOCK_STREAM): Too many open > files > Jul 24 10:52:18 bert named[7306]: socket(SOCK_STREAM): Too many open > files > Jul 24 10:52:18 bert /kernel: pid 7306 (named), uid 0: exited on signal > 6 (core > dumped) > > thanxs, > mark > -- > Mark Segal > mark@club-web.com > System Administrator - Club-Web Inc. > From owner-freebsd-isp Thu Jul 24 08:35:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA05254 for isp-outgoing; Thu, 24 Jul 1997 08:35:47 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA05243 for ; Thu, 24 Jul 1997 08:35:42 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id LAA07855; Thu, 24 Jul 1997 11:38:47 -0400 (EDT) Message-ID: <33D776E9.41C67EA6@club-web.com> Date: Thu, 24 Jul 1997 11:38:17 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: andrew@pubnix.net CC: isp@freebsd.org Subject: Re: BIND 8.1.1 and Socket errors References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Andrew Webster wrote: > > On Thu, 24 Jul 1997, Mark Segal wrote: > > > Hello, > > just wondering if anyone here has tried adding some new domains to the > > new version of BIND (8.1.1). I just added a new domain and my name > > server will not restart, either from the hup or just the plain old > > command line. I tried moving a domain it still didn't help. I have 52 > > domains at the moment (this is not the highest it has ever been). > > anyways the ttyl on my records expires at 6:00 tonight on my > > secondary... so if i can't fix it by 2:00 or so i'll just revert back to > > the old bind. > > Any help will be appreciated.. :). > > I had the same problem: > > If you are virtual-hosting on the same machine, there is no need to have > bind listen on all the addresses, only the network card and lo0. > Add the following line inside the options parameter block > > listen-on { 127.0.0.1; your network card ip address; }; > Is this true if i have close to 45 IP's bound to the machine?.. and i do have DNS set up for the localhost. mark -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Thu Jul 24 08:58:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id IAA06713 for isp-outgoing; Thu, 24 Jul 1997 08:58:15 -0700 (PDT) Received: from mail.id.net (mail.id.net [199.125.1.6]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id IAA06708 for ; Thu, 24 Jul 1997 08:58:12 -0700 (PDT) Received: from server.id.net (server.id.net [199.125.2.20]) by mail.id.net (8.8.6/8.8.6) with ESMTP id LAA12010 for ; Thu, 24 Jul 1997 11:58:20 -0400 (EDT) From: Robert Shady Received: (from rls@localhost) by server.id.net (8.8.5/8.7.3) id LAA09744 for freebsd-isp@freebsd.org; Thu, 24 Jul 1997 11:58:44 -0400 (EDT) Message-Id: <199707241558.LAA09744@server.id.net> Subject: FreeBSD Router To: freebsd-isp@freebsg.org Date: Thu, 24 Jul 1997 06:31:58 -0400 (EDT) X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Okay, what would someone who is knowledgable (Dennis?) say about this... FreeBSD 2.2-RELENG-970713 486DX4/120 Mhz 64 Megabytes RAM 2 Intel Pro 100B Ethernet Cards (1-Loaded, 1-Not) 2 Western Digital Elite Ultra 16 Ethernet Cards (1-Loaded, 1-Not) 2 SDL V.35 Ports (1-Loaded, 1-Not) Running Gated and some misc. other "small servers". No web, ftp, nameservers, etc.. Just the basics. How feasible is this? What are the chances that I'm already pushing the max this machine can handle, let alone if I start using the other interfaces more... Here is the BIG question... Assuming the above configuration, what is the minimum (read: acceptable->good performance) machine that would be capable of handling this? Oh yeah, it's also supporting a FULL BGP routing table from two peers (Mae-East & Chicago NAP). -- Rob === _/_/_/_/_/ _/_/_/_/ _/_/ _/ _/_/_/_/_/ _/_/_/_/_/ _/ _/ _/ _/_/_/ _/ _/ _/ _/_/_/_/ _/ _/_/_/_/_/ _/_/_/_/ _/ _/ _/_/_/_/_/ _/ Innovative Data Services Serving South-Eastern Michigan Internet Service Provider / Hardware Sales / Consulting Services Voice: (810)855-0404 / Fax: (810)855-3268 / Web: http://www.id.net From owner-freebsd-isp Thu Jul 24 09:58:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id JAA11033 for isp-outgoing; Thu, 24 Jul 1997 09:58:09 -0700 (PDT) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id JAA11028; Thu, 24 Jul 1997 09:58:06 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id QAA29013; Thu, 24 Jul 1997 16:57:51 GMT Date: Thu, 24 Jul 1997 09:57:51 -0700 (PDT) From: Dan Busarow To: Shawn Ramsey cc: questions@FreeBSD.ORG, isp@FreeBSD.ORG Subject: Re: strange mail problem In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 23 Jul 1997, Shawn Ramsey wrote: > Could it be a DNS problem? I just don't see how it thinks the domain is > local, except we host their web site @ www.* . Possibly it's your DNS for their domain. Maybe it's in your .cf Take a look at both of these bearing in mind the www.their.domain IS in your Cw Run sendmail -d0.9 to see what sendmail sees as local. We have no problems sending mail to clients from the webserver and haven't done anything out of the ordinary to allow it. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 From owner-freebsd-isp Thu Jul 24 10:20:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA12742 for isp-outgoing; Thu, 24 Jul 1997 10:20:48 -0700 (PDT) Received: from cedb.dpcsys.com (cedb.DPCSYS.com [209.25.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id KAA12734 for ; Thu, 24 Jul 1997 10:20:45 -0700 (PDT) Received: from localhost (dan@localhost) by cedb.dpcsys.com (8.8.5/8.8.2) with SMTP id RAA29153; Thu, 24 Jul 1997 17:20:33 GMT Date: Thu, 24 Jul 1997 10:20:33 -0700 (PDT) From: Dan Busarow To: Mark Segal cc: isp@FreeBSD.ORG Subject: Re: BIND 8.1.1 and Socket errors In-Reply-To: <33D776E9.41C67EA6@club-web.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997, Mark Segal wrote: > > Add the following line inside the options parameter block > > > > listen-on { 127.0.0.1; your network card ip address; }; > > > Is this true if i have close to 45 IP's bound to the machine?.. and i do > have DNS set up for the localhost. Without the listen-on directive bind will bind :) to all of those IPs. Dan -- Dan Busarow 714 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 From owner-freebsd-isp Thu Jul 24 13:23:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA21853 for isp-outgoing; Thu, 24 Jul 1997 13:23:31 -0700 (PDT) Received: from ganymede.arisia.net (ganymede.arisia.net [207.100.94.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA21843 for ; Thu, 24 Jul 1997 13:23:22 -0700 (PDT) Received: from mars (ppp-jup-256.arisia.net [207.100.94.12]) by ganymede.arisia.net (8.8.6/8.8.5) with SMTP id QAA18377 for ; Thu, 24 Jul 1997 16:22:50 -0400 (EDT) Message-Id: <2.2.32.19970724202322.015d0480@207.100.94.11> X-Sender: msv@207.100.94.11 X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Thu, 24 Jul 1997 16:23:22 -0400 To: isp@FreeBSD.ORG From: "Mark S. Velasquez" Subject: Re: BIND 8.1.1 and Socket errors Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 11:37 AM 7/24/97 -0400, you wrote: >I am not familiar with BIND 8.1.1, but I have encountered the same problem >with sendmail UNDER FREEBSD. > Well, I just installed bind-8.8.1 on FreeBSD 2.1.5(yeah I know) and upgraded sendmail to 8.8.6 and sendmail is reporting gethostbyaddr errors every 10 minutes on all the ip aliases for my Virtual Web Sites. My Solaris 2.5.1 machines with bind-8.8.1 & sendmail 8.8.6(and multiple IPs) is not reporting any errors. Mark S. Velasquez From owner-freebsd-isp Thu Jul 24 16:44:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id QAA02292 for isp-outgoing; Thu, 24 Jul 1997 16:44:08 -0700 (PDT) Received: from mail.san.rr.com (mail-atm.san.rr.com [204.210.0.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id QAA02246 for ; Thu, 24 Jul 1997 16:43:59 -0700 (PDT) Received: (from uucp@localhost) by mail.san.rr.com (8.7.6/8.7.3) id QAA26405 for ; Thu, 24 Jul 1997 16:43:27 -0700 (PDT) Message-Id: <199707242343.QAA26405@mail.san.rr.com> Received: from dt5h3n16.san.rr.com(204.210.33.22) by mail via smap (V1.3) id tmpb26332; Thu Jul 24 16:43:19 1997 From: "Studded" To: "freebsd-isp@freebsd.org" Date: Thu, 24 Jul 97 16:43:00 -0800 Reply-To: "Studded" Priority: Normal X-Mailer: PMMail 1.92 For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Subject: Importance of DNS reverse resolution Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 24 Jul 1997 00:37:59 -0400, Gary Palmer wrote: >spork wrote in message ID >: >> processes the logs. We've since gotten some positive responses from >> clients coming in from ISPs that don't do revs on most of their dialup >> connections. > >Thats broken. A number of ftp sites won't let you on without a valid >DNS entry for both A and PTR records. I'd ask my ISP to fix their DNS >if they weren't giving reverses. It's just plain stupid. If IRC is important to your customers, you should know that on many networks (EFnet for instance) most servers won't let a person on if they don't reverse (partially as a protection from spoofing). On DALnet we are a little more liberal, in the sense that we allow the clients on but they show up with an IP address instead of the hostname. In the future, this may change though, and of course, reverse mapping is generally a good policy anyway. :) On a related note, it may be of interest that approximately 10% of the users that connect to us either don't have hostnames, or have names that don't resolve. I know that some of them are intentional, in fact I've contacted some sites who've told me explicitly that they don't resolve their user's hostnames to discourage them from using IRC. And I'll spare you the humorous responses I get from ISP's that I contact regarding misconfigured DNS entries, although my favorite was the one that tried to convince me that there was a GOOD REASON for the A and PTR records for the hostname of their shell server to be mismatched.... *Grin* The man who fears nothing, loves nothing. From owner-freebsd-isp Thu Jul 24 17:34:57 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA04931 for isp-outgoing; Thu, 24 Jul 1997 17:34:57 -0700 (PDT) Received: from uhf.wdc.net (uhf.wdc.net [198.147.74.44]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA04924 for ; Thu, 24 Jul 1997 17:34:53 -0700 (PDT) Received: from localhost (bad@localhost) by uhf.wdc.net (8.8.5/8.6.12) with SMTP id UAA00372; Thu, 24 Jul 1997 20:36:36 -0400 (EDT) Date: Thu, 24 Jul 1997 20:36:35 -0400 (EDT) From: Bernie Doehner X-Sender: bad@uhf.wdc.net To: "Mark S. Velasquez" cc: isp@FreeBSD.ORG Subject: Re: BIND 8.1.1 and Socket errors In-Reply-To: <2.2.32.19970724202322.015d0480@207.100.94.11> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > At 11:37 AM 7/24/97 -0400, you wrote: > >I am not familiar with BIND 8.1.1, but I have encountered the same problem > >with sendmail UNDER FREEBSD. > > > > Well, I just installed bind-8.8.1 on FreeBSD 2.1.5(yeah I know) and upgraded > sendmail to 8.8.6 and sendmail is reporting gethostbyaddr errors every 10 > minutes on all the ip aliases for my Virtual Web Sites. My Solaris 2.5.1 > machines with bind-8.8.1 & sendmail 8.8.6(and multiple IPs) is not reporting > any errors. > > Mark S. Velasquez RTFW. Your virtual hosts must have reverse DNS entries or be in /etc/hosts or this will happen under FreeBSD. Bernie From owner-freebsd-isp Fri Jul 25 02:57:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id CAA25229 for isp-outgoing; Fri, 25 Jul 1997 02:57:39 -0700 (PDT) Received: from destiny.waverider.co.uk (destiny.waverider.co.uk [194.207.28.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA25224 for ; Fri, 25 Jul 1997 02:57:36 -0700 (PDT) Received: from auden (zephania.waverider.net.uk [194.207.148.99]) by destiny.waverider.co.uk (8.8.2/8.8.2) with SMTP id KAA04328 for ; Fri, 25 Jul 1997 10:57:29 +0100 (BST) Message-Id: <3.0.32.19970725105738.00905100@waverider.net.uk> X-Sender: andyc@waverider.net.uk X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Fri, 25 Jul 1997 10:57:40 +0100 To: freebsd-isp@freebsd.org From: Andy Cowan Subject: Network Address Translation Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, I'm supplying a FreeBSD router to a customer using an sync X.21 card. Configuring this is no problem. However, in this case I need to avoid renumbering the client's network - does anyone know of anything I can use to translate addresses coming in on one interface to the internal addresses (like IJPPP does, but without using IJPPP :-) Andy Andy Cowan Tel: 01564 795888 Technical Director Fax: 01564 795177 Wave Rider Internet plc http://www.waverider.co.uk ------------------------------------------------------------------- From owner-freebsd-isp Fri Jul 25 03:20:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA26047 for isp-outgoing; Fri, 25 Jul 1997 03:20:09 -0700 (PDT) Received: from extrouter.test.cdu.elektra.ru ([193.125.114.71]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA25987; Fri, 25 Jul 1997 03:19:35 -0700 (PDT) Received: from mailhub.cdu.ru (mailhub.cdu.ru [172.16.10.50]) by extrouter.test.cdu.elektra.ru (8.8.6/8.8.6) with ESMTP id OAA01667; Fri, 25 Jul 1997 14:18:16 +0400 (MSD) Received: from mailhub.cdu.ru (Win95.cdu.ru [172.16.2.10]) by mailhub.cdu.ru (8.8.6/8.8.6) with ESMTP id OAA01364; Fri, 25 Jul 1997 14:17:57 +0400 (MSD) Message-Id: <199707251017.OAA01364@mailhub.cdu.ru> From: "Pavel P. Zabortsev" To: "Daniel O'Callaghan" Cc: "FreeBSD questions" , "FreeBSD isp" Subject: Re: FreeBSD + IPX Date: Fri, 25 Jul 1997 14:09:50 +0400 X-MSMail-Priority: Normal X-Priority: 3 X-Mailer: Microsoft Internet Mail 4.70.1157 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > On Thu, 24 Jul 1997, Pavel P. Zabortsev wrote: > > > Again about IPX on FreeBSD. > > I want to use one of my PC with FreeBSD 2.2.2-RELEASE as gateway between > > two LAN, where an IP traffic and an IPX traffic is. I've known there is an > > IPX router (called as IPXrouted) in FreeBSD. But it supports only IPX/SPX > > over Ethernet_II frame type 0x8137, but I need Ethernet_802.2. :-( > > > > If somebody use FreeBSD as IPX router, write me, please. > > FreeBSD does not support frame types other than Ethernet_II. How many > PCs are there? It is impossible to change to Ethernet_II? I haven't enough expirience in IPX and I don't know how IPX's frame type depends on number of PCs! But I think that Ethernet_II is a frame type for IP, and Ethernet_802.2 is a frame type for IPX. Correct me If I think wrong. Yours sincerely, Pavel ----------------------------------------------------------- Pavel P. Zabortsev, software engineer CDO UPS of Russia Tel.: (095) 220-4513, 220-4350 E-mail: ppz@cdu.elektra.ru ppz@usa.net ----------------------------------------------------------- From owner-freebsd-isp Fri Jul 25 04:39:30 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id EAA28428 for isp-outgoing; Fri, 25 Jul 1997 04:39:30 -0700 (PDT) Received: from albert.osu.cz (albert.osu.cz [195.113.106.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id EAA28417; Fri, 25 Jul 1997 04:39:17 -0700 (PDT) Received: from localhost (belkovic@localhost) by albert.osu.cz (8.8.5/8.6.12) with SMTP id NAA00399; Fri, 25 Jul 1997 13:40:48 +0200 (MET DST) Date: Fri, 25 Jul 1997 13:40:47 +0200 (MET DST) From: Josef Belkovics To: "Pavel P. Zabortsev" cc: "Daniel O'Callaghan" , FreeBSD questions , FreeBSD isp Subject: Re: FreeBSD + IPX In-Reply-To: <199707251017.OAA01364@mailhub.cdu.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > FreeBSD does not support frame types other than Ethernet_II. How many > > PCs are there? It is impossible to change to Ethernet_II? > > I haven't enough expirience in IPX and I don't know how IPX's frame type > depends on number of PCs! > But I think that Ethernet_II is a frame type for IP, and Ethernet_802.2 is > a frame type for IPX. Correct me If I think wrong. IP can use Ethernet_II or Ethernet_SNAP, but FreeBSD uses only Ethernet_II. IPX runs on four frame types: Ethernet_II, Ethernet_802.3, Ethernet_802.2, Ethernet_SNAP. The _default_ frame type for NetWare v3.x is Ethernet_802.3, the _default_ frame for NetWare v4.x is Ethernet_802.2. Only top management from IEEE and Novell knows, why IPX runs on four frames. I have headake (?) from their decision, which is normall for normall folks. JPB From owner-freebsd-isp Fri Jul 25 05:44:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA01199 for isp-outgoing; Fri, 25 Jul 1997 05:44:02 -0700 (PDT) Received: from mail.id.net (mail.id.net [199.125.1.6]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA01169 for ; Fri, 25 Jul 1997 05:43:58 -0700 (PDT) Received: from server.id.net (server.id.net [199.125.2.20]) by mail.id.net (8.8.6/8.8.6) with ESMTP id IAA19985; Fri, 25 Jul 1997 08:44:27 -0400 (EDT) From: Robert Shady Received: (from rls@localhost) by server.id.net (8.8.5/8.7.3) id IAA28861; Fri, 25 Jul 1997 08:44:35 -0400 (EDT) Message-Id: <199707251244.IAA28861@server.id.net> Subject: Re: FreeBSD Router In-Reply-To: from Stephen Roome at "Jul 25, 97 11:21:31 am" To: steve@visint.co.uk (Stephen Roome) Date: Fri, 25 Jul 1997 08:44:35 -0400 (EDT) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > Machine Configuration IS: > > ========================= > > FreeBSD 2.2-RELENG-970713 > > 486DX4/120 Mhz > > 64 Megabytes RAM > > 2 Intel Pro 100B Ethernet Cards (1-Loaded, 1-Not) > > 2 Western Digital Elite Ultra 16 Ethernet Cards (1-Loaded, 1-Not) > > 2 SDL V.35 Ports (1-Loaded, 1-Not) > > Not to jump to any conclusions, but if you replaced the 486 with a Pentium > and cut the memory down to 48MB or even 32MB you'll have a lot higher bus > speed and you're probably going to be needing that more than the CPU > power, having said that though a Pentium 100 would suffice. My guess is that 32MB is not enough to hold a full routing table, or maybe if I was running NOTHING else... From my calculations, 48MB would probably be okay, but memory is cheap as dirt right now, so... > Although you haven't said what rate of traffic you intend to route, and > I'm assuming something like one/two T1's through the SDL card. (is that > and N2/WANic card or something else?) No, it's the old N2/ISA card. I obviously would love to get full throughput on all of the ports if it's possible.. I am noticing a MAX of about ~250KBytes a second from ethernet -> ethernet right now... > I'm not sure why you'd want to go for two different sorts of cards either, > does the Ultra 16 have 10base2 or 5 or something.. Um, well.. There is only 2 PCI, 2 ISA, 1 VLB, and 1 shared/ISA-PCI slot.. ISA(4) = 1 Video, 1 N2 card, 2 SMC Elita Ultra cards Which leaves 2 usuable PCI slots = 2 Intel ethernet cards... ;) A little more info, here is the basic outline right now... What is needed to get more interrupts/second? How can I tell if I'm maxing them out/ 8:43AM up 1 day, 5:06, 1 user, load averages: 0.11, 0.09, 0.06 last pid: 5296; load averages: 0.20, 0.10, 0.06 08:42:16 26 processes: 1 running, 25 sleeping CPU states: 1.2% user, 0.0% nice, 0.4% system, 14.3% interrupt, 84.2% idle Mem: 20M Active, 2944K Inact, 25M Wired, 11M Cache, 7097K Buf, 2760K Free Swap: 128M Total, 128K Used, 128M Free PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND 5296 root 28 0 640K 828K RUN 0:00 2.40% 1.37% top 5293 root 18 0 644K 900K pause 0:00 1.88% 1.22% tcsh 5292 root 2 0 200K 608K select 0:00 0.74% 0.50% telnetd 198 root 18 0 536K 636K pause 1:12 0.04% 0.04% httpd 841 root 2 0 14440K 14408K select 5:55 0.00% 0.00% gated 161 root 18 0 364K 400K pause 0:07 0.00% 0.00% cron 23 root 18 0 200K 56K pause 0:00 0.00% 0.00% adjkerntz 1 root 10 0 472K 164K wait 0:00 0.00% 0.00% init 3278 root 3 0 176K 536K ttyin 0:00 0.00% 0.00% getty 119 root 2 0 828K 1112K select 9:17 0.00% 0.00% ypserv 622 nobody 2 0 580K 820K select 0:00 0.00% 0.00% httpd 623 nobody 2 0 580K 808K select 0:00 0.00% 0.00% httpd 106 root 2 0 560K 704K select 0:00 0.00% 0.00% named 3438 root 2 0 260K 620K select 0:00 0.00% 0.00% radiusd.ascend 204 root 2 0 476K 596K select 1:03 0.00% 0.00% snmpd 3437 root 2 0 244K 584K select 0:00 0.00% 0.00% radiusd.ascend 1025 root 2 0 304K 520K select 1:43 0.00% 0.00% mrouted 101 root 2 0 200K 508K select 0:07 0.00% 0.00% syslogd 227 root 2 0 212K 496K select 1:04 0.00% 0.00% radiusd.living 113 root 2 0 480K 448K select 0:01 0.00% 0.00% timed 116 daemon 2 0 180K 448K select 0:01 0.00% 0.00% portmap 144 daemon 2 0 208K 440K sbwait 0:10 0.00% 0.00% rwhod 124 root 2 0 224K 424K select 0:00 0.00% 0.00% rpc.yppasswdd # netstat -nr|wc -l 45189 # vmstat -i interrupt total rate clk0 irq0 10462882 99 rtc0 irq8 13388084 127 pci irq9 13135083 125 pci irq10 7100 0 fdc0 irq6 1 0 wdc0 irq14 49514 0 sc0 irq1 1761 0 ed0 irq5 29405 0 ed1 irq7 4124821 39 sr0 irq11 12338039 117 Total 53536690 511 # netstat -m 80 mbufs in use: 65 mbufs allocated to data 2 mbufs allocated to packet headers 10 mbufs allocated to protocol control blocks 3 mbufs allocated to socket names and addresses 64/208 mbuf clusters in use 426 Kbytes allocated to network (32% in use) 0 requests for memory denied 0 requests for memory delayed 0 calls to protocol drain routines -- Rob === _/_/_/_/_/ _/_/_/_/ _/_/ _/ _/_/_/_/_/ _/_/_/_/_/ _/ _/ _/ _/_/_/ _/ _/ _/ _/_/_/_/ _/ _/_/_/_/_/ _/_/_/_/ _/ _/ _/_/_/_/_/ _/ Innovative Data Services Serving South-Eastern Michigan Internet Service Provider / Hardware Sales / Consulting Services Voice: (810)855-0404 / Fax: (810)855-3268 / Web: http://www.id.net From owner-freebsd-isp Fri Jul 25 05:52:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA01478 for isp-outgoing; Fri, 25 Jul 1997 05:52:40 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA01471 for ; Fri, 25 Jul 1997 05:52:36 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id WAA08906; Fri, 25 Jul 1997 22:51:49 +1000 (EST) Date: Fri, 25 Jul 1997 22:51:48 +1000 (EST) From: "Daniel O'Callaghan" To: Andy Cowan cc: freebsd-isp@FreeBSD.ORG Subject: Re: Network Address Translation In-Reply-To: <3.0.32.19970725105738.00905100@waverider.net.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 25 Jul 1997, Andy Cowan wrote: > I'm supplying a FreeBSD router to a customer using an sync X.21 card. > > Configuring this is no problem. However, in this case I need to avoid > renumbering the client's network - does anyone know of anything I can use > to translate addresses coming in on one interface to the internal addresses > (like IJPPP does, but without using IJPPP :-) natd. You need divert sockets to run it. It should be in the ports collection, and for very recent 2.2-RELENG in the base distribution. Danny From owner-freebsd-isp Fri Jul 25 06:24:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id GAA02788 for isp-outgoing; Fri, 25 Jul 1997 06:24:49 -0700 (PDT) Received: from bagpuss.visint.co.uk (bagpuss.visint.co.uk [194.207.134.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id GAA02777 for ; Fri, 25 Jul 1997 06:24:44 -0700 (PDT) Received: from dylan.visint.co.uk (dylan.visint.co.uk [194.207.134.180]) by bagpuss.visint.co.uk (8.7.5/8.7.3) with SMTP id OAA03598; Fri, 25 Jul 1997 14:24:34 +0100 (BST) Date: Fri, 25 Jul 1997 14:24:34 +0100 (BST) From: Stephen Roome To: Robert Shady cc: freebsd-isp@freebsd.org Subject: Re: FreeBSD Router In-Reply-To: <199707251244.IAA28861@server.id.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Warning: some guesswork/cheesy estimations contained ... On Fri, 25 Jul 1997, Robert Shady wrote: > My guess is that 32MB is not enough to hold a full routing table, or maybe > if I was running NOTHING else... From my calculations, 48MB would probably > be okay, but memory is cheap as dirt right now, so... Fair enough, it's not exactly a small table is it! > > Although you haven't said what rate of traffic you intend to route, and > > I'm assuming something like one/two T1's through the SDL card. (is that > > and N2/WANic card or something else?) > > No, it's the old N2/ISA card. I obviously would love to get full throughput > on all of the ports if it's possible.. I am noticing a MAX of about ~250KBytes > a second from ethernet -> ethernet right now... I did use a an N2/ISA for a while in a box here, but then moved to the WANic, it's driving one E1 (2MB) line without problems, only one netcard though... and our routing table is several thousand times smaller than yours! The load never gets much higher than 0.0 ( :) ) and pushing as much as I can through the line (e.g. with tcpblast to the other end) I get about an extra 100 or so interupts a second and about an 10-15% system load. ABout 5% Intr shown in vmstat display... Don't know how well the ISA cards perform anymore.. > > > I'm not sure why you'd want to go for two different sorts of cards either, > > does the Ultra 16 have 10base2 or 5 or something.. > > Um, well.. There is only 2 PCI, 2 ISA, 1 VLB, and 1 shared/ISA-PCI slot.. > ISA(4) = 1 Video, 1 N2 card, 2 SMC Elita Ultra cards > > Which leaves 2 usuable PCI slots = 2 Intel ethernet cards... ;) This goes back to the get yourself a Pentium argument again... > > A little more info, here is the basic outline right now... What is needed > to get more interrupts/second? How can I tell if I'm maxing them out/ > > 8:43AM up 1 day, 5:06, 1 user, load averages: 0.11, 0.09, 0.06 I'm not sure how to tell if your maxing them out, but as I said with tcpblast I'm only getting an extra 100 or so interupts per second. On my P166 (this machine) runing X I can go from 0 to 500 interuppts per second on sio0 by just shaking my mouse about (a lot!). You'd have to try some stuff on your machine, but I've just got a remote machine to tcpblast this machine constantly while at the same time tcpblasting localhost on this machine constantly and shaking the mouse etc I got up to 1770 interrupts per second. (Yes, there's got to be a slightly more experimental method of doing this, but this is quick and easy!) This got me burst of cpu load up to about 70% usage, which isn't much really. God knows if I'm reaching some limit, but the tcpblast to localhost was still getting 3.6MB/s and the blast from the other machine a fairly standard 1.0MB/s.. (it's got a cheap ethernet card). I don't think interrupts is likely to be a problem for you yet then, although this is a P166. (32MB but no big routing tables) > last pid: 5296; load averages: 0.20, 0.10, 0.06 08:42:16 > 26 processes: 1 running, 25 sleeping > CPU states: 1.2% user, 0.0% nice, 0.4% system, 14.3% interrupt, 84.2% idle > Mem: 20M Active, 2944K Inact, 25M Wired, 11M Cache, 7097K Buf, 2760K Free > Swap: 128M Total, 128K Used, 128M Free > > PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND > 5296 root 28 0 640K 828K RUN 0:00 2.40% 1.37% top > 5293 root 18 0 644K 900K pause 0:00 1.88% 1.22% tcsh > 5292 root 2 0 200K 608K select 0:00 0.74% 0.50% telnetd > 198 root 18 0 536K 636K pause 1:12 0.04% 0.04% httpd > 841 root 2 0 14440K 14408K select 5:55 0.00% 0.00% gated > 161 root 18 0 364K 400K pause 0:07 0.00% 0.00% cron > 23 root 18 0 200K 56K pause 0:00 0.00% 0.00% adjkerntz > 1 root 10 0 472K 164K wait 0:00 0.00% 0.00% init > 3278 root 3 0 176K 536K ttyin 0:00 0.00% 0.00% getty > 119 root 2 0 828K 1112K select 9:17 0.00% 0.00% ypserv > 622 nobody 2 0 580K 820K select 0:00 0.00% 0.00% httpd > 623 nobody 2 0 580K 808K select 0:00 0.00% 0.00% httpd > 106 root 2 0 560K 704K select 0:00 0.00% 0.00% named > 3438 root 2 0 260K 620K select 0:00 0.00% 0.00% radiusd.ascend > 204 root 2 0 476K 596K select 1:03 0.00% 0.00% snmpd > 3437 root 2 0 244K 584K select 0:00 0.00% 0.00% radiusd.ascend > 1025 root 2 0 304K 520K select 1:43 0.00% 0.00% mrouted > 101 root 2 0 200K 508K select 0:07 0.00% 0.00% syslogd > 227 root 2 0 212K 496K select 1:04 0.00% 0.00% radiusd.living > 113 root 2 0 480K 448K select 0:01 0.00% 0.00% timed > 116 daemon 2 0 180K 448K select 0:01 0.00% 0.00% portmap > 144 daemon 2 0 208K 440K sbwait 0:10 0.00% 0.00% rwhod > 124 root 2 0 224K 424K select 0:00 0.00% 0.00% rpc.yppasswdd > > # netstat -nr|wc -l > 45189 yup, that's large! > # vmstat -i > interrupt total rate > clk0 irq0 10462882 99 > rtc0 irq8 13388084 127 > pci irq9 13135083 125 > pci irq10 7100 0 > fdc0 irq6 1 0 > wdc0 irq14 49514 0 > sc0 irq1 1761 0 > ed0 irq5 29405 0 > ed1 irq7 4124821 39 > sr0 irq11 12338039 117 > Total 53536690 511 I could be wrong but I beleive this is the averaged out figure since boot, so a peak figure would be handy. > > # netstat -m > 80 mbufs in use: > 65 mbufs allocated to data > 2 mbufs allocated to packet headers > 10 mbufs allocated to protocol control blocks > 3 mbufs allocated to socket names and addresses > 64/208 mbuf clusters in use > 426 Kbytes allocated to network (32% in use) > 0 requests for memory denied > 0 requests for memory delayed > 0 calls to protocol drain routines You could always up the amounts in the kernel.. but this isn't looking like it's about to cause you problems. On average the system will be fine, but I can't tell whether it's giong to handle the peak traffic, someone here will try to do the math, but that never works as someone is bound to lose a k or an M somewhere in the calculations again =) -- Steve Roome - Vision Interactive Ltd. Tel:+44(0)117 9730597 Home:+44(0)976 241342 WWW: http://dylan.visint.co.uk/ From owner-freebsd-isp Fri Jul 25 10:22:37 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA14087 for isp-outgoing; Fri, 25 Jul 1997 10:22:37 -0700 (PDT) Received: from fyeung5.netific.com (netific.vip.best.com [205.149.182.145]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA14081 for ; Fri, 25 Jul 1997 10:22:33 -0700 (PDT) Received: from fyeung8.netific.com (fyeung8 [204.238.125.8]) by fyeung5.netific.com (8.6.11/8.6.9) with SMTP id KAA01777; Fri, 25 Jul 1997 10:31:10 -0700 Received: by fyeung8.netific.com (5.x/SMI-SVR4) id AA04810; Fri, 25 Jul 1997 10:29:32 -0700 Date: Fri, 25 Jul 1997 10:29:32 -0700 From: fyeung@fyeung8.netific.com (Francis Yeung) Message-Id: <9707251729.AA04810@fyeung8.netific.com> To: steve@visint.co.uk, rls@mail.id.net Subject: Re: FreeBSD Router Cc: freebsd-isp@FreeBSD.ORG X-Sun-Charset: US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Greetings, > > My guess is that 32MB is not enough to hold a full routing table, or maybe > if I was running NOTHING else... From my calculations, 48MB would probably > be okay, but memory is cheap as dirt right now, so... > If 32MB is not enough to hold a full routing table, I wonder - how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline etc have ? Are those routes ever aged ? Best regards. Francis From owner-freebsd-isp Fri Jul 25 11:03:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA16108 for isp-outgoing; Fri, 25 Jul 1997 11:03:46 -0700 (PDT) Received: from biggusdiskus.flyingfox.com (biggusdiskus.flyingfox.com [206.14.52.27]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA16101 for ; Fri, 25 Jul 1997 11:03:43 -0700 (PDT) Received: (from jas@localhost) by biggusdiskus.flyingfox.com (8.8.5/8.8.5) id LAA15819 for freebsd-isp@freebsd.org; Fri, 25 Jul 1997 11:02:04 -0700 (PDT) Date: Fri, 25 Jul 1997 11:02:04 -0700 (PDT) From: Jim Shankland Message-Id: <199707251802.LAA15819@biggusdiskus.flyingfox.com> To: freebsd-isp@freebsd.org Subject: analog and Apache? Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Seems to me that just a few days ago, someone on this list made reference to a tool named "analog" that lets you turn off reverse DNS on Apache, and grind the IP addresses in the log files into host names asynchronously. Now of course, I've lost that mail, and someone is interested in it. I've searched the archives via the FreeBSD Web server, to no avail. If someone has a copy of that mail message, I'd sure appreciate seeing it again. Alternatively, a pointer to the "analog" tool would be great. (A search for "analog" on altavista turned up the expected 300,000 unrelated hits.) Jim Shankland Flying Fox Computer Systems, Inc. P.S.: If the actual mailing list archives (as opposed to the search engine) are available, I'd love to see a pointer to them, too. From owner-freebsd-isp Fri Jul 25 11:17:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA16664 for isp-outgoing; Fri, 25 Jul 1997 11:17:54 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA16659 for ; Fri, 25 Jul 1997 11:17:51 -0700 (PDT) Received: from Melmac.org (ulf@Melmac.org [207.90.181.122]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id LAA27832; Fri, 25 Jul 1997 11:17:53 -0700 (PDT) Received: (from ulf@localhost) by Melmac.org (8.8.5/8.7.6) id LAA00284; Fri, 25 Jul 1997 11:17:40 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199707251817.LAA00284@Melmac.org> Subject: Re: FreeBSD Router In-Reply-To: <9707251729.AA04810@fyeung8.netific.com> from Francis Yeung at "Jul 25, 97 10:29:32 am" To: fyeung@fyeung8.netific.com (Francis Yeung) Date: Fri, 25 Jul 1997 11:17:39 -0700 (PDT) Cc: steve@visint.co.uk, rls@mail.id.net, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > Greetings, > > > > My guess is that 32MB is not enough to hold a full routing table, or maybe > > if I was running NOTHING else... From my calculations, 48MB would probably > > be okay, but memory is cheap as dirt right now, so... > > > > If 32MB is not enough to hold a full routing table, I wonder - > how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline > etc have ? Are those routes ever aged ? > > > Best regards. > > Francis > A 2501 doesn't hold a full routing table, the maximum memory is 16MB, of which 2MB are used for shared buffers. A Cisco 7500 with RSP2 can have up to 128MB memory, with RSP4 it can have 256MB. -- Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Fri Jul 25 11:28:30 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA17046 for isp-outgoing; Fri, 25 Jul 1997 11:28:30 -0700 (PDT) Received: from nak.myhouse.com (nak.myhouse.com [209.70.45.162]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id LAA17041 for ; Fri, 25 Jul 1997 11:28:28 -0700 (PDT) Received: (qmail 14953 invoked by uid 1000); 25 Jul 1997 18:27:53 -0000 Date: Fri, 25 Jul 1997 14:27:53 -0400 (EDT) From: zoonie To: Jim Shankland cc: freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-Reply-To: <199707251802.LAA15819@biggusdiskus.flyingfox.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk you can find analog at http://www.statslab.cam.ac.uk/~sret1/analog/ On Fri, 25 Jul 1997, Jim Shankland wrote: > Seems to me that just a few days ago, someone on this list made reference > to a tool named "analog" that lets you turn off reverse DNS on Apache, > and grind the IP addresses in the log files into host names asynchronously. > Now of course, I've lost that mail, and someone is interested in it. > I've searched the archives via the FreeBSD Web server, to no avail. From owner-freebsd-isp Fri Jul 25 11:40:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA17665 for isp-outgoing; Fri, 25 Jul 1997 11:40:26 -0700 (PDT) Received: from mail.mexcom.net (mail.mexcom.net [206.103.64.97]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA17658 for ; Fri, 25 Jul 1997 11:40:22 -0700 (PDT) Received: from sunix (eculp@sunix.mexcom.net [206.103.64.3]) by mail.mexcom.net (8.8.5/8.8.5) with SMTP id NAA13472; Fri, 25 Jul 1997 13:39:59 -0500 (CDT) Message-ID: <33D8F2F8.F78C6B6@mexcom.net> Date: Fri, 25 Jul 1997 13:39:52 -0500 From: Edwin Culp Organization: Mexico Communicates, S.C. X-Mailer: Mozilla 3.01Gold (X11; I; Linux 2.0.14 i586) MIME-Version: 1.0 To: Francis Yeung CC: steve@visint.co.uk, rls@mail.id.net, freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD Router References: <9707251729.AA04810@fyeung8.netific.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Francis Yeung wrote: > > Greetings, > > > > My guess is that 32MB is not enough to hold a full routing table, or maybe > > if I was running NOTHING else... From my calculations, 48MB would probably > > be okay, but memory is cheap as dirt right now, so... > > > > If 32MB is not enough to hold a full routing table, I wonder - > how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline > etc have ? Are those routes ever aged ? > > Best regards. > > Francis If I'm not mistaken the only one of the above that can handle full routes is the cisco and with a 64M mem upgrade. ed From owner-freebsd-isp Fri Jul 25 11:56:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA18329 for isp-outgoing; Fri, 25 Jul 1997 11:56:26 -0700 (PDT) Received: from horst.bfd.com (horst.bfd.com [204.160.242.10]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA18324 for ; Fri, 25 Jul 1997 11:56:23 -0700 (PDT) Received: from harlie.bfd.com (bastion.bfd.com [204.160.242.14]) by horst.bfd.com (8.8.5/8.7.3) with SMTP id LAA07297; Fri, 25 Jul 1997 11:56:16 -0700 (PDT) Date: Fri, 25 Jul 1997 11:56:16 -0700 (PDT) From: "Eric J. Schwertfeger" To: Jim Shankland cc: freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-Reply-To: <199707251802.LAA15819@biggusdiskus.flyingfox.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 25 Jul 1997, Jim Shankland wrote: > Seems to me that just a few days ago, someone on this list made reference > to a tool named "analog" that lets you turn off reverse DNS on Apache, > and grind the IP addresses in the log files into host names asynchronously. > Now of course, I've lost that mail, and someone is interested in it. > I've searched the archives via the FreeBSD Web server, to no avail. > > If someone has a copy of that mail message, I'd sure appreciate seeing > it again. Alternatively, a pointer to the "analog" tool would be great. > (A search for "analog" on altavista turned up the expected 300,000 > unrelated hits.) /usr/ports/www/analog/Makefile should have a pointer to the distfiles. From owner-freebsd-isp Fri Jul 25 12:07:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA18865 for isp-outgoing; Fri, 25 Jul 1997 12:07:50 -0700 (PDT) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA18858 for ; Fri, 25 Jul 1997 12:07:46 -0700 (PDT) Received: from ernie.club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.6/8.8.6) with SMTP id PAA17958; Fri, 25 Jul 1997 15:10:46 -0400 (EDT) Message-ID: <33D8FA24.167EB0E7@club-web.com> Date: Fri, 25 Jul 1997 15:10:28 -0400 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: Jim Shankland CC: isp@freebsd.org Subject: Re: analog and Apache? References: <199707251802.LAA15819@biggusdiskus.flyingfox.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Jim Shankland wrote: > > Seems to me that just a few days ago, someone on this list made reference > to a tool named "analog" that lets you turn off reverse DNS on Apache, > and grind the IP addresses in the log files into host names asynchronously. > Now of course, I've lost that mail, and someone is interested in it. > I've searched the archives via the FreeBSD Web server, to no avail. > > If someone has a copy of that mail message, I'd sure appreciate seeing > it again. Alternatively, a pointer to the "analog" tool would be great. > (A search for "analog" on altavista turned up the expected 300,000 > unrelated hits.) > > Jim Shankland > Flying Fox Computer Systems, Inc. > > P.S.: If the actual mailing list archives (as opposed to the search > engine) are available, I'd love to see a pointer to them, too. http://www.statslab.cam.ac.uk/~sret1/analog/ -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Fri Jul 25 12:30:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA19895 for isp-outgoing; Fri, 25 Jul 1997 12:30:07 -0700 (PDT) Received: from marlin.exis.net (root@marlin.exis.net [205.252.72.102]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA19859 for ; Fri, 25 Jul 1997 12:29:58 -0700 (PDT) Received: from sailfish.exis.net (sailfish.exis.net [205.252.72.104]) by marlin.exis.net (8.8.4/8.8.5) with SMTP id PAA06982; Fri, 25 Jul 1997 15:28:51 -0400 Date: Fri, 25 Jul 1997 11:27:03 -0400 (EDT) From: Stefan Molnar To: Ulf Zimmermann cc: Francis Yeung , steve@visint.co.uk, rls@mail.id.net, freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD Router In-Reply-To: <199707251817.LAA00284@Melmac.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > If 32MB is not enough to hold a full routing table, I wonder - > > how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline > > etc have ? Are those routes ever aged ? > > > > > > Best regards. > > > > Francis > > > > A 2501 doesn't hold a full routing table, the maximum memory is 16MB, > of which 2MB are used for shared buffers. A Cisco 7500 with RSP2 can have > up to 128MB memory, with RSP4 it can have 256MB. Where I use to work we put in 64MB in a 7010 to get a full BGP map. Stefan From owner-freebsd-isp Fri Jul 25 12:45:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA20716 for isp-outgoing; Fri, 25 Jul 1997 12:45:59 -0700 (PDT) Received: from etinc.com (et-gw-fr1.etinc.com [204.141.244.98]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA20711 for ; Fri, 25 Jul 1997 12:45:56 -0700 (PDT) Received: from ntws (ntws.etinc.com [204.141.95.142]) by etinc.com (8.8.3/8.6.9) with SMTP id PAA06552; Fri, 25 Jul 1997 15:53:05 -0400 (EDT) Message-Id: <3.0.32.19970725154500.00cde1b0@etinc.com> X-Sender: dennis@etinc.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Fri, 25 Jul 1997 15:45:03 -0400 To: Ulf Zimmermann From: dennis Subject: Re: FreeBSD Router Cc: isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk At 11:17 AM 7/25/97 -0700, you wrote: >> >> Greetings, >> > >> > My guess is that 32MB is not enough to hold a full routing table, or maybe >> > if I was running NOTHING else... From my calculations, 48MB would probably >> > be okay, but memory is cheap as dirt right now, so... >> > >> >> If 32MB is not enough to hold a full routing table, I wonder - >> how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline >> etc have ? Are those routes ever aged ? You need 48MB to get 1 view. Dennis >> >> >> Best regards. >> >> Francis >> > >A 2501 doesn't hold a full routing table, the maximum memory is 16MB, >of which 2MB are used for shared buffers. A Cisco 7500 with RSP2 can have >up to 128MB memory, with RSP4 it can have 256MB. > >-- >Ulf. > >-------------------------------------------------------------------------- >Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 >Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 > > From owner-freebsd-isp Fri Jul 25 13:13:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA22178 for isp-outgoing; Fri, 25 Jul 1997 13:13:54 -0700 (PDT) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA22172 for ; Fri, 25 Jul 1997 13:13:52 -0700 (PDT) Received: from Gatekeeper.Alameda.net (ulf@gatekeeper.Alameda.net [207.90.181.2]) by DNS.Lamb.net (8.8.5/8.8.5) with ESMTP id NAA28156; Fri, 25 Jul 1997 13:14:01 -0700 (PDT) Received: (from ulf@localhost) by Gatekeeper.Alameda.net (8.8.5/8.7.6) id NAA29118; Fri, 25 Jul 1997 13:13:45 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199707252013.NAA29118@Gatekeeper.Alameda.net> Subject: Re: FreeBSD Router In-Reply-To: from Stefan Molnar at "Jul 25, 97 11:27:03 am" To: stefan@exis.net (Stefan Molnar) Date: Fri, 25 Jul 1997 13:13:45 -0700 (PDT) Cc: ulf@Alameda.net, fyeung@fyeung8.netific.com, steve@visint.co.uk, rls@mail.id.net, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > > > If 32MB is not enough to hold a full routing table, I wonder - > > > how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline > > > etc have ? Are those routes ever aged ? > > > > > > > > > Best regards. > > > > > > Francis > > > > > > > A 2501 doesn't hold a full routing table, the maximum memory is 16MB, > > of which 2MB are used for shared buffers. A Cisco 7500 with RSP2 can have > > up to 128MB memory, with RSP4 it can have 256MB. > > Where I use to work we put in 64MB in a 7010 to get a full BGP map. > > Stefan > > Yes, 64MB might be enough, it depends on how many BGP feeds you have. Also you need to consider that a Cisco has no VM system, no swap. -- Ulf. -------------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 From owner-freebsd-isp Fri Jul 25 13:44:38 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA23893 for isp-outgoing; Fri, 25 Jul 1997 13:44:38 -0700 (PDT) Received: from avon-gw.uk1.vbc.net (jdd@avon-gw.uk1.vbc.net [194.207.2.20]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA23888 for ; Fri, 25 Jul 1997 13:44:34 -0700 (PDT) Received: (from jdd@localhost) by avon-gw.uk1.vbc.net (8.8.2/8.7.3) id VAA14794; Fri, 25 Jul 1997 21:44:27 +0100 (BST) Date: Fri, 25 Jul 1997 21:44:26 +0100 (BST) From: Jim Dixon X-Sender: jdd@avon-gw.uk1.vbc.net To: Stefan Molnar cc: Ulf Zimmermann , Francis Yeung , steve@visint.co.uk, rls@mail.id.net, freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD Router In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 25 Jul 1997, Stefan Molnar wrote: > > > If 32MB is not enough to hold a full routing table, I wonder - > > > how much memory do most routers e.g. cisco 2501, cisco 7500, Ascend pipeline > > > etc have ? Are those routes ever aged ? We had a Cisco 2501 holding a full set of routes until six months or so ago; it couldn't cope when we went over 40K routes or so. Gated is quite a bit less efficient than the Cisco in storing routes, but we have a BSD router with full routing tables with has four iBGP peers and one external BGP peer; the latter is a customer exporting a small number of routes to it. That router has 32 MB, gated takes about 15 MB. Another BGP4-speaking router has the same number of iBGP peers and one external peer; it has 48 MB and currently shows 13 MB free. On that machine gated takes 16 MB. This isn't the size of a view. Each full view adds something like 3 - 5 MB. One of our FreeBSD routers has over 30 peers at the LINX in London; on that machine gated runs 17 MB. So our judgment is that 32 MB is borderline right now for a gated router holding a single full view. We put 64 MB on any new routers. We use motherboards that will take 128 MB in 32 MB SIMMs, but don't expect to need 128 MB this year, perhaps not next. -- Jim Dixon VBCnet GB Ltd http://www.vbc.net tel +44 117 929 1316 fax +44 117 927 2015 From owner-freebsd-isp Fri Jul 25 14:16:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA25299 for isp-outgoing; Fri, 25 Jul 1997 14:16:52 -0700 (PDT) Received: from broadway.vr1.com (broadway.vr1.com [206.246.38.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA25292 for ; Fri, 25 Jul 1997 14:16:49 -0700 (PDT) Received: from broadway.vr1.com (localhost [127.0.0.1]) by broadway.vr1.com (8.8.5/8.7.3) with ESMTP id PAA26846; Fri, 25 Jul 1997 15:16:32 -0600 (MDT) Message-Id: <199707252116.PAA26846@broadway.vr1.com> To: Jim Shankland cc: freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-reply-to: Your message of "Fri, 25 Jul 1997 11:02:04 PDT." <199707251802.LAA15819@biggusdiskus.flyingfox.com> Date: Fri, 25 Jul 1997 15:16:31 -0600 From: Linh Ngo Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk In message <199707251802.LAA15819@biggusdiskus.flyingfox.com>, Jim Shankland wr ites: > Seems to me that just a few days ago, someone on this list made reference > to a tool named "analog" that lets you turn off reverse DNS on Apache, > and grind the IP addresses in the log files into host names asynchronously. > Now of course, I've lost that mail, and someone is interested in it. > I've searched the archives via the FreeBSD Web server, to no avail. > > If someone has a copy of that mail message, I'd sure appreciate seeing > it again. Alternatively, a pointer to the "analog" tool would be great. > (A search for "analog" on altavista turned up the expected 300,000 > unrelated hits.) > > Jim Shankland > Flying Fox Computer Systems, Inc. > > P.S.: If the actual mailing list archives (as opposed to the search > engine) are available, I'd love to see a pointer to them, too. Try the Inference search engine (http://www.inference.com/ifind). It is far superior and catalogs your search result from all the search engines. That's how I found analog after hearing about it on this list. Here the home page for analog: http://www.statslab.cam.ac.uk/~sret1/analog/ Linh From owner-freebsd-isp Fri Jul 25 14:36:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA25990 for isp-outgoing; Fri, 25 Jul 1997 14:36:36 -0700 (PDT) Received: from info.tsu.tomsk.su (TSU-Relarn.Relarn.ru [194.226.29.46]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA25985 for ; Fri, 25 Jul 1997 14:36:26 -0700 (PDT) Received: (from uucp@localhost) by info.tsu.tomsk.su (8.8.5/8.8.2) with UUCP id FAA25177 for isp@freebsd.org; Sat, 26 Jul 1997 05:37:19 +0800 (TSD) Received: (from vas@localhost) by vas.tomsk.su (8.8.5/8.8.3) id JAA05001 for isp@freebsd.org; Fri, 25 Jul 1997 09:48:31 +0800 (TSD) From: "Victor A. Sudakov" Message-Id: <199707250148.JAA05001@vas.tomsk.su> Subject: Re: slirp and ppp To: isp@freebsd.org Date: Fri, 25 Jul 1997 09:48:31 +0800 (TSD) In-Reply-To: from "Steve Hovey" at "Jul 24, 97 09:26:15 am" Organization: Tomsk Region Education Department X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Steve Hovey wrote: > > > Yup - thats whats it for. How? There is nothing about it in the man page. Some command line options? When I start SliRP, it only says about SLIP/CSLIP. So does the man page. slirp-0.95f from the FreeBSD 2.1.6 ports collection. > > > > Is there a way to make SLiRP talk ppp or otherwise emulate ppp on a shell > > account? > > -- Victor Sudakov http://www.tomsk.su/r/persons/vas.htm From owner-freebsd-isp Fri Jul 25 14:36:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA26016 for isp-outgoing; Fri, 25 Jul 1997 14:36:59 -0700 (PDT) Received: from info.tsu.tomsk.su (TSU-Relarn.Relarn.ru [194.226.29.46]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA26011 for ; Fri, 25 Jul 1997 14:36:51 -0700 (PDT) Received: (from uucp@localhost) by info.tsu.tomsk.su (8.8.5/8.8.2) with UUCP id FAA25180 for isp@freebsd.org; Sat, 26 Jul 1997 05:37:37 +0800 (TSD) Received: (from vas@localhost) by vas.tomsk.su (8.8.5/8.8.3) id JAA05044 for isp@freebsd.org; Fri, 25 Jul 1997 09:53:54 +0800 (TSD) From: "Victor A. Sudakov" Message-Id: <199707250153.JAA05044@vas.tomsk.su> Subject: Re: slirp and ppp To: isp@freebsd.org Date: Fri, 25 Jul 1997 09:53:54 +0800 (TSD) Reply-To: vas@vas.tsu.tomsk.su In-Reply-To: from "Daniel O'Callaghan" at "Jul 24, 97 12:54:27 pm" Organization: Tomsk Region Education Department X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Daniel O'Callaghan wrote: > > > > > Is there a way to make SLiRP talk ppp or otherwise emulate ppp on a shell > > account? > > Yes - RTFM. Use the -P option. It is all in the documentation. Sorry. What SLiRP are you talking about? Mine is 0.95f from the FreeBSD 2.1.6 ports collection, there is no -P option in the man page. Do I need to fetch a newer version? -- Victor Sudakov http://www.tomsk.su/r/persons/vas.htm From owner-freebsd-isp Fri Jul 25 14:37:15 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id OAA26039 for isp-outgoing; Fri, 25 Jul 1997 14:37:15 -0700 (PDT) Received: from info.tsu.tomsk.su (TSU-Relarn.Relarn.ru [194.226.29.46]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id OAA26031 for ; Fri, 25 Jul 1997 14:37:08 -0700 (PDT) Received: (from uucp@localhost) by info.tsu.tomsk.su (8.8.5/8.8.2) with UUCP id FAA25184 for isp@freebsd.org; Sat, 26 Jul 1997 05:37:58 +0800 (TSD) Received: (from vas@localhost) by vas.tomsk.su (8.8.5/8.8.3) id MAA05435 for isp@freebsd.org; Fri, 25 Jul 1997 12:09:34 +0800 (TSD) From: "Victor A. Sudakov" Message-Id: <199707250409.MAA05435@vas.tomsk.su> Subject: Re: FreeBSD and NT To: isp@freebsd.org (freebsd isp mailing list) Date: Fri, 25 Jul 1997 12:09:33 +0800 (TSD) Reply-To: vas@vas.tsu.tomsk.su In-Reply-To: from "Stephen Roome" at "Jul 23, 97 01:03:16 pm" Organization: Tomsk Region Education Department X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Stephen Roome wrote: [...] > > However if the arguments against UNIX are true then all it means are that > you will need a competent intelligent sysadmin. > > So, really all the arguments so far in favour of NT seem to be about the > competence required to use NT vs. the competence required to use UNIX. [...] > look at the arguments the NT side is fighting mainly on the premise of > "we're too stupid to use UNIX". [...] I have a friend sysadmin who is familiar both with UNIX and NT and he says that NT is easy to use only until you do not have to do anything advanced. If you have to do something more complicated you need a lot of NT-specific training and special competence. Perhaps, NT is really an excellent platform for a secretary to run MS Office though. -- Victor Sudakov http://www.tomsk.su/r/persons/vas.htm From owner-freebsd-isp Fri Jul 25 15:24:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA28276 for isp-outgoing; Fri, 25 Jul 1997 15:24:39 -0700 (PDT) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA28249 for ; Fri, 25 Jul 1997 15:24:18 -0700 (PDT) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id IAA12946; Sat, 26 Jul 1997 08:23:45 +1000 (EST) Date: Sat, 26 Jul 1997 08:23:44 +1000 (EST) From: "Daniel O'Callaghan" To: vas@vas.tsu.tomsk.su cc: isp@FreeBSD.ORG Subject: Re: slirp and ppp In-Reply-To: <199707250153.JAA05044@vas.tomsk.su> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 25 Jul 1997, Victor A. Sudakov wrote: > Daniel O'Callaghan wrote: > > > > > > > > Is there a way to make SLiRP talk ppp or otherwise emulate ppp on a shell > > > account? > > > > Yes - RTFM. Use the -P option. It is all in the documentation. > > Sorry. What SLiRP are you talking about? Mine is 0.95f from the FreeBSD > 2.1.6 ports collection, there is no -P option in the man page. Do I need to > fetch a newer version? You can get the latest version from http://blitzen.canberra.edu.au/~danjo/ I believe. Latest is 1.0c or similar. It is easy to build under FreeBSD, because it was developed using FreeBSD. regards, Danny From owner-freebsd-isp Fri Jul 25 19:07:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id TAA08946 for isp-outgoing; Fri, 25 Jul 1997 19:07:50 -0700 (PDT) Received: from ns.NL.net (ns.NL.net [193.78.240.1]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id TAA08931 for ; Fri, 25 Jul 1997 19:07:35 -0700 (PDT) Received: from jaknl by ns.NL.net (5.65b/NLnet1.3) id AA19124; Sat, 26 Jul 1997 04:02:01 +0200 Received: from pp200-1 ([192.168.0.200]) by jak.nl (8.8.3/8.8.3) with ESMTP id DAA00614; Sat, 26 Jul 1997 03:02:34 +0200 (MET DST) Message-Id: <33D94CAC.E761E71D@jak.nl> Date: Sat, 26 Jul 1997 03:02:36 +0200 From: Jan A Knepper Reply-To: Jan@jak.nl X-Mailer: Mozilla 4.01 [en] (WinNT; I) Mime-Version: 1.0 To: vas@vas.tsu.tomsk.su, FreeBSD-ISP@FreeBSD.org Subject: Re: FreeBSD and NT X-Priority: 3 (Normal) References: <199707250409.MAA05435@vas.tomsk.su> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Victor A. Sudakov wrote: > I have a friend sysadmin who is familiar both with UNIX and NT and he > says > that NT is easy to use only until you do not have to do anything > advanced. Well, here an other one. Besides UNIX and NT, also, MS-DOS (still), OS/2, Novell NetWare. > If you have to do something more complicated you need a lot of > NT-specific > training and special competence. True. Especially the competence part. Often I need more 'competence' to get things going for NT than FreeBSD for instance. Especially if it is something specific. Then there are still things that just don't work. Even though vendors say it should... > Perhaps, NT is really an excellent platform for a secretary to run MS > Office though. Certainly! Don't worry, be Kneppie! Jan From owner-freebsd-isp Fri Jul 25 20:18:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA11061 for isp-outgoing; Fri, 25 Jul 1997 20:18:43 -0700 (PDT) Received: from mixcom.mixcom.com (mixcom.mixcom.com [198.137.186.100]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id UAA11056 for ; Fri, 25 Jul 1997 20:18:40 -0700 (PDT) Received: by mixcom.mixcom.com (8.6.12/2.2) id WAA18364; Fri, 25 Jul 1997 22:19:25 -0500 Received: from p75.mixcom.com(198.137.186.25) by mixcom.mixcom.com via smap (V1.3) id sma018359; Fri Jul 25 22:19:22 1997 Message-Id: <3.0.3.32.19970725221756.00c885a4@mixcom.com> X-Sender: sysop@mixcom.com X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32) Date: Fri, 25 Jul 1997 22:17:56 -0500 To: Jim Shankland From: "Jeffrey J. Mountin" Subject: Re: analog and Apache? Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <199707251802.LAA15819@biggusdiskus.flyingfox.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 11:02 AM 7/25/97 -0700, Jim Shankland wrote: >Seems to me that just a few days ago, someone on this list made reference >to a tool named "analog" that lets you turn off reverse DNS on Apache, >and grind the IP addresses in the log files into host names asynchronously. >Now of course, I've lost that mail, and someone is interested in it. >I've searched the archives via the FreeBSD Web server, to no avail. > >If someone has a copy of that mail message, I'd sure appreciate seeing >it again. Alternatively, a pointer to the "analog" tool would be great. >(A search for "analog" on altavista turned up the expected 300,000 >unrelated hits.) Uh, you may not want to do this. I found that after 4 weeks of running IP logging and using the results from 3 servers that 5 hours to run reports vs 5 minutes was just a bit too much. There is another problem with this as well. If a site has a very large logfile, 10 Mb, 100 Mb, or more even, Analog will start using a lot of memory. Once the server starts swapping it takes a bit of a performance hit. Not to mention that it was thrashing our name servers. Personally I find that FBSD and Apache work well together and with tweaking and ample memory you can handle a lot of traffic. The "savings" of not logging IP was non-exisistant. ------------------------------------------- Jeff Mountin - System/Network Administrator jeff@mixcom.net MIX Communications Serving the Internet since 1990 From owner-freebsd-isp Fri Jul 25 20:51:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id UAA12075 for isp-outgoing; Fri, 25 Jul 1997 20:51:24 -0700 (PDT) Received: from ns2.harborcom.net (root@ns2.harborcom.net [206.158.4.4]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id UAA12070 for ; Fri, 25 Jul 1997 20:51:22 -0700 (PDT) Received: from localhost (bradley@localhost) by ns2.harborcom.net (8.8.5/8.8.5) with SMTP id XAA23855 for ; Fri, 25 Jul 1997 23:51:20 -0400 (EDT) Date: Fri, 25 Jul 1997 23:51:20 -0400 (EDT) From: Bradley Dunn X-Sender: bradley@ns2.harborcom.net To: freebsd-isp@freebsd.org Subject: Re: FTP Problem Solved! In-Reply-To: <2.2.32.19970723004250.00908ac8@mail.morelr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Tue, 22 Jul 1997, Rick Morel wrote: > Assuming I'm not a dufus, get into the ISP business for a year or so and I > absolutely guarantee you'll know. You'll find things like your Majordomo > config files, complete with passwords posted on some web page and/or someone > else adminstering your lists. Anything that can be seen and read can be used > by some folks. It's a shame, it's not the "old 'net", but it is a fact. Well a lot of ISPs also offer shell accounts. It is significantly more difficult to make chrooted sandboxes for users to play in than it is to setup chrooted FTP. There has been some research into virtual machines and such...I seem to remember a web page at the Univeristy of Utah or somewhere. Setting up a shell server requires some thought, but it can be done securely. The short answer is: don't have your majordomo config. files on the same server that your users log into. Setup a box that does shell accounts and little to nothing else (certainly nothing mission critical). Setup your network in such a way that even if root were to be compromised on the shell machine no critical services would be affected. P.S. - Let's not get into whether offering shell accounts is 'good' or not. There is a market for that service. Some people provide it, some don't. It's a business decision. pbd -- Going to church does not make a person religious, nor does going to school make a person educated, any more than going to a garage makes a person a car. From owner-freebsd-isp Fri Jul 25 22:30:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA15317 for isp-outgoing; Fri, 25 Jul 1997 22:30:11 -0700 (PDT) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA15312 for ; Fri, 25 Jul 1997 22:30:08 -0700 (PDT) Received: from localhost (spork@localhost) by super-g.inch.com (8.8.5/8.8.5) with SMTP id BAA24624; Sat, 26 Jul 1997 01:35:15 -0400 (EDT) Date: Sat, 26 Jul 1997 01:35:14 -0400 (EDT) From: spork X-Sender: spork@super-g.inch.com To: "Jeffrey J. Mountin" cc: Jim Shankland , freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-Reply-To: <3.0.3.32.19970725221756.00c885a4@mixcom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 25 Jul 1997, Jeffrey J. Mountin wrote: > Uh, you may not want to do this. Or you might ;) Our number one concern was that if someone is paying us for quality hosting, we wish to do anything we can within our budget to make sure that some other ISP's customers get reasonable access to the site. The lag we saw coming in from an unnamed IP was *very* noticeable, and looked to the person trying to view the page like a problem on our side. Turning off lookups was like night and day... > > I found that after 4 weeks of running IP logging and using the results from > 3 servers that 5 hours to run reports vs 5 minutes was just a bit too much. We nice it down in the script. If a customer wants "instant" hit counts, we set it to look at one week's worth of logs with DNS resolving turned off, and the results come up within seconds. We've found most marketing types are happy enough with numbers for short term trends, and they look at the weekly totals with DNS for the "big picture". > There is another problem with this as well. If a site has a very large > logfile, 10 Mb, 100 Mb, or more even, Analog will start using a lot of > memory. Once the server starts swapping it takes a bit of a performance > hit. Not to mention that it was thrashing our name servers. Hmmm... Haven't seen this here, even on 200M files as long as the server is not overloaded. We set resolv.conf on the webservers to look at one of our little-used secondaries, so the deluge of DNS requests will not affect our two main nameservers. I haven't really seen this touch the load on the nameserver, though. Also, analog sets up a cache, so you'll see over a period of time the logs take less time to crunch. The current analog is very efficient, and other than a mind-spinning array of command line switches, it's fairly easy to tweak to your liking... Charles > Personally I find that FBSD and Apache work well together and with tweaking > and ample memory you can handle a lot of traffic. The "savings" of not > logging IP was non-exisistant. > > > ------------------------------------------- > Jeff Mountin - System/Network Administrator > jeff@mixcom.net > > MIX Communications > Serving the Internet since 1990 > From owner-freebsd-isp Sat Jul 26 01:40:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id BAA21021 for isp-outgoing; Sat, 26 Jul 1997 01:40:33 -0700 (PDT) Received: from ozemail.com.au (server3.syd.mail.ozemail.net [203.108.7.41]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA21016 for ; Sat, 26 Jul 1997 01:40:31 -0700 (PDT) Received: from oznet07.ozemail.com.au (oznet07.ozemail.com.au [203.2.192.122]) by ozemail.com.au (8.8.4/8.6.12) with ESMTP id SAA07934 for ; Sat, 26 Jul 1997 18:40:16 +1000 (EST) Received: from slmel55p16.ozemail.com.au (slmel55p16.ozemail.com.au [203.108.203.160]) by oznet07.ozemail.com.au (8.8.4/8.6.12) with SMTP id SAA03013 for ; Sat, 26 Jul 1997 18:40:11 +1000 (EST) Received: by slmel55p16.ozemail.com.au with Microsoft Mail id <01BC99F3.4FBF96F0@slmel55p16.ozemail.com.au>; Sat, 26 Jul 1997 18:39:55 +1000 Message-ID: <01BC99F3.4FBF96F0@slmel55p16.ozemail.com.au> From: Richard Lyon To: freebsd isp mailing list , "'vas@vas.tsu.tomsk.su'" Subject: RE: FreeBSD and NT Date: Sat, 26 Jul 1997 18:23:02 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id BAA21017 Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ---------- From: Victor A. Sudakov Sent: Friday, 25 July 1997 14:09 To: freebsd isp mailing list Subject: Re: FreeBSD and NT I have a friend sysadmin who is familiar both with UNIX and NT and he says that NT is easy to use only until you do not have to do anything advanced. If you have to do something more complicated you need a lot of NT-specific training and special competence. Perhaps, NT is really an excellent platform for a secretary to run MS Office though. To install workstation 4 and IE4.0 requires at least as much work as FreeBSD, assuming you don't just accept the default settings. The documentation is sparse and it takes a bit of poking around to find it. The server version is even worse. The sysadmin staff seem to be able to get unix boxes up and running in one hit. With NT it seems to be an iterative process. Every few weeks its a new patch or change in configuration. It requires a bit of horse power and ram to run NT effectively. Realistically something like a 200 MHz MMX with 64 meg of ram is about right for workstation. With server, get the biggest and most powerful machine you can lay your hands-on. Stuff it with as many processors and ram as your budget will allow. Send the staff on Microsoft training courses and allow a generous budget to purchase both Microsoft and third party documentation. MS office is ok for people who are generating small documents. Try writing a 50 page document with a lot of embedded graphics content. Even with 64 meg of ram it is quite common to get file corruption and out-of memory messages. Every paper I have written over the last year using MS-WORD has been a nightmare. The only solution has been to break up documents into small chunks, just like I do using Latex on FreeBSD. At least with Latex the original document source is safe (and its not just me who is having these problems). FreeBSD is pretty cool, because it accomplishes a lot with less. Regards Richard ... (If the format of this mail message is slightly strange, I must apologize on behalf of my Microsoft mail application) From owner-freebsd-isp Sat Jul 26 03:27:48 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id DAA23735 for isp-outgoing; Sat, 26 Jul 1997 03:27:48 -0700 (PDT) Received: from mail.id.net (mail.id.net [199.125.1.6]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id DAA23729 for ; Sat, 26 Jul 1997 03:27:40 -0700 (PDT) Received: from server.id.net (server.id.net [199.125.2.20]) by mail.id.net (8.8.6/8.8.6) with ESMTP id GAA00324; Sat, 26 Jul 1997 06:28:31 -0400 (EDT) From: Robert Shady Received: (from rls@localhost) by server.id.net (8.8.5/8.7.3) id GAA21284; Sat, 26 Jul 1997 06:28:21 -0400 (EDT) Message-Id: <199707261028.GAA21284@server.id.net> Subject: Re: analog and Apache? In-Reply-To: from spork at "Jul 26, 97 01:35:14 am" To: spork@super-g.com (spork) Date: Sat, 26 Jul 1997 06:28:21 -0400 (EDT) Cc: sysop@mixcom.com, jas@flyingfox.com, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > There is another problem with this as well. If a site has a very large > > logfile, 10 Mb, 100 Mb, or more even, Analog will start using a lot of > > memory. Once the server starts swapping it takes a bit of a performance > > hit. Not to mention that it was thrashing our name servers. > > Hmmm... Haven't seen this here, even on 200M files as long as the server > is not overloaded. We set resolv.conf on the webservers to look at one of > our little-used secondaries, so the deluge of DNS requests will not affect > our two main nameservers. I haven't really seen this touch the load on > the nameserver, though. Also, analog sets up a cache, so you'll see over > a period of time the logs take less time to crunch. The current analog is > very efficient, and other than a mind-spinning array of command line > switches, it's fairly easy to tweak to your liking... > > > Personally I find that FBSD and Apache work well together and with tweaking > > and ample memory you can handle a lot of traffic. The "savings" of not > > logging IP was non-exisistant. Hmmm.. We log DNS lookups, perhaps you guys are just "lucky" in a sense, but these are a couple of our logfiles (we have several like this), and these are about 200-300MB smaller than "normal" since they haven't been promoting their website for a while now. -rw-r--r-- 1 nobody nogroup 540540984 Jul 26 06:13 access_log -rw-r--r-- 1 nobody nogroup 584473315 Jul 26 06:14 access_log And let me tell you... Going through more than # wc -l access_log 2592183 access_log requests and processing DNS lookups AFTER the fact is a complete pain in the rump and DOES have an impact on DNS machines, the network, etc. We haven't really noticed too many problems with real-time DNS lookups. What *SHOULD* be done (perhaps it already is) is that the logging trail behind the incoming requests and the DNS lookups be done at the webservers convience, but as close to real-time as possible so as not to slow down any interactive connections.. -- Rob === _/_/_/_/_/ _/_/_/_/ _/_/ _/ _/_/_/_/_/ _/_/_/_/_/ _/ _/ _/ _/_/_/ _/ _/ _/ _/_/_/_/ _/ _/_/_/_/_/ _/_/_/_/ _/ _/ _/_/_/_/_/ _/ Innovative Data Services Serving South-Eastern Michigan Internet Service Provider / Hardware Sales / Consulting Services Voice: (810)855-0404 / Fax: (810)855-3268 / Web: http://www.id.net From owner-freebsd-isp Sat Jul 26 05:07:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA27787 for isp-outgoing; Sat, 26 Jul 1997 05:07:36 -0700 (PDT) Received: from ns.NL.net (ns.NL.net [193.78.240.1]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id FAA27782 for ; Sat, 26 Jul 1997 05:07:33 -0700 (PDT) Received: from jaknl by ns.NL.net (5.65b/NLnet1.3) id AA09469; Sat, 26 Jul 1997 14:02:05 +0200 Received: from pp200-1 ([192.168.0.200]) by jak.nl (8.8.3/8.8.3) with ESMTP id MAA02811; Sat, 26 Jul 1997 12:46:20 +0200 (MET DST) Message-Id: <33D9D581.B0717565@jak.nl> Date: Sat, 26 Jul 1997 12:46:25 +0200 From: Jan A Knepper Reply-To: Jan@jak.nl X-Mailer: Mozilla 4.01 [en] (WinNT; I) Mime-Version: 1.0 To: Richard Lyon , FreeBSD-ISP@FreeBSD.org Subject: Re: FreeBSD and NT X-Priority: 3 (Normal) References: <01BC99F3.4FBF96F0@slmel55p16.ozemail.com.au> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Richard Lyon wrote: > (If the format of this mail message is slightly strange, I must > apologize on behalf of my Microsoft mail application) Isn't it amazing! (The rest of what yousaid is true.) I am using Netscape Mail for Windows NT 4.0 Workstation on a PP200 with 96 MB RAM. I have it attached to a P133 with 32 MB Running FreeBSD (2.1.6 I think) that serves as offline mail server. Works great as far as I know. At least I hope messages are normal readable. Don't worry, be Kneppie! Jan From owner-freebsd-isp Sat Jul 26 05:20:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA28190 for isp-outgoing; Sat, 26 Jul 1997 05:20:36 -0700 (PDT) Received: from shadows.aeon.net (bsdisp@shadows.aeon.net [194.100.41.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA28185 for ; Sat, 26 Jul 1997 05:20:31 -0700 (PDT) Received: (from bsdisp@localhost) by shadows.aeon.net (8.8.6/8.8.3) id PAA02119 for isp@freebsd.org; Sat, 26 Jul 1997 15:20:06 +0300 (EET DST) From: mika ruohotie Message-Id: <199707261220.PAA02119@shadows.aeon.net> Subject: microsoft sign up server To: isp@freebsd.org Date: Sat, 26 Jul 1997 15:20:06 +0300 (EET DST) X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk is anyone using the product in a freebsd machine? some pointters how to set it up would be nice... (mika@aeon.net or reply) mickey From owner-freebsd-isp Sat Jul 26 05:48:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id FAA29019 for isp-outgoing; Sat, 26 Jul 1997 05:48:54 -0700 (PDT) Received: from m20.morelr.com (morelr.com [206.240.28.121]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id FAA29013 for ; Sat, 26 Jul 1997 05:48:50 -0700 (PDT) Received: from m3 (m3 [206.240.30.3]) by m20.morelr.com (8.8.5/8.8.5) with SMTP id HAA00706 for ; Sat, 26 Jul 1997 07:48:49 -0500 (CDT) Message-Id: <2.2.32.19970726124846.00924290@mail.morelr.com> X-Sender: rmorel@mail.morelr.com X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Sat, 26 Jul 1997 07:48:46 -0500 To: isp@FreeBSD.ORG From: Rick Morel Subject: FreeBSD and NT... Why????? Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Come on gang, let's not be MS or FreeBSD bashers or whatever. They're different. That's all. If you want to take a long trip, you take your LTD or Capri or whatever; if you want to haul some plywood you take your pickup. For round town driving, you may prefer the pickup and your spouse or SO the LTD, or vice versa. I'm a recent UNIX convert for a _SERVER_. If my very own, personal workstation had to run it, I'd get out of computing entirely (I'm using NT). My wife prefers Win 95 (she used to be a diehard DOS fan). This is _my_ decision and _her_ decision. You may think we're (insert cuss-words of your choice here) for feeling this way, and that's fine. I'm certainly not going to force or convince you to use NT, or DOS, or even UNIX -- please give me the same courtesy. Here at morelr.com, every service save two are running on FreeBSD. One is an NT web service strictly for running CGIs -- mainly for one user who does his with MS VB. The other is DNS. I'm fixin' to get ready (Southern for trying to find the time) to put BIND on the FreeBSD box. I may decide to stick with NT -- it certainly is easier and seems to work well. Let me add that my ISP is using BIND on NT (I'm also my ISP). I was running FTP on NT, but thanks to a bunch of folks on this list, it's now switched. At aisp.net (my ISP) we're running all NT except for the news server. I fought and fought for the last year, trying to get it to work right (using Netmanage News) with no luck. I finally _insisted_ to the new NT-loving owners (I'm an ex-owner and still Sys Admin) that we switch. Yes, Virginia, it's been up and running without a hitch for over a week. I suspect it's going to be in the same state in the future. Oh, it is _SOOOOOO_ nice! :-) kxkc.com (I'm C.E. there) is a very simple site. Web, email and FTP, all running on one NT box. Works well, they don't need or do anything fancy. Has one dial-in for connections from another office. No problems, needs to be rebooted about once a month.. when I think about it. So, really who cares? This list is for FreeBSD, to share info and help each other out. Isn't it? Why argue about which OS is best or which OS is garbage? Why even _mention_ NT? I'm on an NT list for that. Rick Morel * * * * * * * * * * * * **** * * * * * * * * * * * * * * * * * * Rick Morel * # # # ### ### * * Morel Research, Ltd. * # # # # # * * New Iberia, LA * # # # # * * * # # # # # * * http://www.morelr.com * # # # ### ### * * * * * rmorel@morelr.com * * * * Keep It Simple Stupid! * * * * * * * * * * * **** * * * * * * * * * * * * * * * * * * * From owner-freebsd-isp Sat Jul 26 10:11:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA07808 for isp-outgoing; Sat, 26 Jul 1997 10:11:34 -0700 (PDT) Received: from negril.msrce.howard.edu (negril.msrce.howard.edu [138.238.128.153]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA07802 for ; Sat, 26 Jul 1997 10:11:29 -0700 (PDT) Received: by negril.msrce.howard.edu; (5.65/1.1.8.2/24Feb97-8.2MPM) id AA00623; Sat, 26 Jul 1997 13:05:08 -0400 Date: Sat, 26 Jul 1997 13:05:08 -0400 From: Aaron Jackson Message-Id: <9707261705.AA00623@negril.msrce.howard.edu> To: isp@FreeBSD.ORG, rmorel@morelr.com Subject: Re: FreeBSD and NT... Why????? Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I prefer MacOS. ;-) Aaron Jackson jackson@msrce.howard.edu >Come on gang, let's not be MS or FreeBSD bashers or whatever. They're >different. That's all. If you want to take a long trip, you take your >LTD or >Capri or whatever; if you want to haul some plywood you take your >pickup. >For round town driving, you may prefer the pickup and your spouse or SO >the >LTD, or vice versa. > >I'm a recent UNIX convert for a _SERVER_. If my very own, personal >workstation had to run it, I'd get out of computing entirely (I'm using >NT). >My wife prefers Win 95 (she used to be a diehard DOS fan). This is _my_ >decision and _her_ decision. You may think we're (insert cuss-words of >your >choice here) for feeling this way, and that's fine. I'm certainly not >going >to force or convince you to use NT, or DOS, or even UNIX -- please give >me >the same courtesy. From owner-freebsd-isp Sat Jul 26 10:46:02 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id KAA09775 for isp-outgoing; Sat, 26 Jul 1997 10:46:02 -0700 (PDT) Received: from proxy-bsb.gns.com.br (0KFp0n7ltjZ3mXplRqv+oqVu72pW6A46@srv1-bsb.GNS.com.br [200.239.56.1]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA09769 for ; Sat, 26 Jul 1997 10:45:57 -0700 (PDT) Received: (qmail 8687 invoked from network); 26 Jul 1997 17:45:41 -0000 Received: from unknown (HELO srv1-bsb.gns.com.br) (unknown) by unknown with SMTP; 26 Jul 1997 17:45:41 -0000 Received: (from lioux@localhost) by srv1-bsb.gns.com.br (8.8.6/8.8.6) id OAA08683; Sat, 26 Jul 1997 14:45:41 -0300 (EST) From: Mario Sergio Fujikawa Ferreira Message-Id: <199707261745.OAA08683@srv1-bsb.gns.com.br> Subject: Re: analog and Apache? In-Reply-To: from spork at "Jul 26, 97 01:35:14 am" To: spork@super-g.com (spork) Date: Sat, 26 Jul 1997 14:45:40 -0300 (EST) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > our little-used secondaries, so the deluge of DNS requests will not affect > our two main nameservers. I haven't really seen this touch the load on > the nameserver, though. Also, analog sets up a cache, so you'll see over You didn't mention that before. Humm ... what about setting up a named cache only with forwarding resolving pointing to your little-used secondaries. It might help a lot. Even to the non resolving stratagema as long as analog will be doing te lookups instead. Regards, Mario Ferreira. --- System Administrator - SysAdm@gns.com.br Technical Consultant/Advisor - Mario.Ferreira@gns.com.br Personal - lioux@gns.com.br GNS - Global Network Solutions Tec. Ltda http://www.gns.com.br/ --- From owner-freebsd-isp Sat Jul 26 11:11:24 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id LAA10872 for isp-outgoing; Sat, 26 Jul 1997 11:11:24 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA10865 for ; Sat, 26 Jul 1997 11:11:20 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id MAA22792; Sat, 26 Jul 1997 12:11:08 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id MAA20094; Sat, 26 Jul 1997 12:12:27 -0600 (MDT) Date: Sat, 26 Jul 1997 12:12:27 -0600 (MDT) From: Marc Slemko To: Robert Shady cc: freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-Reply-To: <199707261028.GAA21284@server.id.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 26 Jul 1997, Robert Shady wrote: > Hmmm.. We log DNS lookups, perhaps you guys are just "lucky" in a sense, but > these are a couple of our logfiles (we have several like this), and these are > about 200-300MB smaller than "normal" since they haven't been promoting their > website for a while now. > > -rw-r--r-- 1 nobody nogroup 540540984 Jul 26 06:13 access_log > -rw-r--r-- 1 nobody nogroup 584473315 Jul 26 06:14 access_log > > And let me tell you... Going through more than > > # wc -l access_log > 2592183 access_log > > requests and processing DNS lookups AFTER the fact is a complete pain in the > rump and DOES have an impact on DNS machines, the network, etc. We haven't > really noticed too many problems with real-time DNS lookups. What *SHOULD* > be done (perhaps it already is) is that the logging trail behind the incoming > requests and the DNS lookups be done at the webservers convience, but as close > to real-time as possible so as not to slow down any interactive connections.. It would be possible to implement something like that in the current version of Apache by logging to a pipe and having it do lookups and buffer things, but logging to programs isn't entirely reliable yet. Deferred logging has the problem that it ruins any idea of having reliable logs for each "transaction", since a crash could wipe out unwritten logs. If you are having trouble doing DNS lookups on a large logfile, then simply do it more frequently on small logfiles. A script to rotate the logfile out, do DNS lookups and append it to the old one isn't that hard. There _are_ some potential negative performance implications of doing lookups in Apache. The biggest comes from sites without reverse DNS, especially if you are using older versions of BIND that don't do negative caching, but even if your version does do negative caching there is still quite an impact. Also note that, using the default settings in Apache, if you have it do reverse lookups then the results you get are easily faked. Unless you compile with MAXIMUM_DNS defined, Apache will only do a reverse lookup, not a reverse lookup then a forward lookup on the result to ensure it is valid. That means that anyone who can control their reverse DNS can appear to be from wherever they want. I don't find doing resolution after the fact to be that bad. Any high volume sites we rotate every day or two, so we only have around a hundred meg slice of logfile to deal with at one shot, which works fine. OTHO, if you have smaller machines or smaller network connectivity it can cause problems. If you have a program that can handle multiple pending queries at once (not nice to do with current resolvers), you could speed things up a good bit more. Hmm, perhaps I should try that. Fork a bunch of child processes and have a parent process send names to be resolved to them. From owner-freebsd-isp Sat Jul 26 12:01:21 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id MAA13554 for isp-outgoing; Sat, 26 Jul 1997 12:01:21 -0700 (PDT) Received: from h2o.journey.net (h2o.journey.net [207.227.162.60]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id MAA13540 for ; Sat, 26 Jul 1997 12:01:15 -0700 (PDT) Received: from localhost (listuser@localhost) by h2o.journey.net (8.8.5/8.8.5) with SMTP id PAA25578; Sat, 26 Jul 1997 15:03:51 -0400 (EDT) Date: Sat, 26 Jul 1997 15:03:50 -0400 (EDT) From: listuser To: mika ruohotie cc: isp@FreeBSD.ORG Subject: Re: microsoft sign up server In-Reply-To: <199707261220.PAA02119@shadows.aeon.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk If anyone is interested in prchasing a running system we currently have one available for 350$... --Matt On Sat, 26 Jul 1997, mika ruohotie wrote: > is anyone using the product in a freebsd machine? > > some pointters how to set it up would be nice... (mika@aeon.net or reply) > > > mickey > From owner-freebsd-isp Sat Jul 26 13:06:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id NAA17701 for isp-outgoing; Sat, 26 Jul 1997 13:06:35 -0700 (PDT) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id NAA17688 for ; Sat, 26 Jul 1997 13:06:30 -0700 (PDT) Received: from localhost (spork@localhost) by super-g.inch.com (8.8.5/8.8.5) with SMTP id QAA25849; Sat, 26 Jul 1997 16:11:57 -0400 (EDT) Date: Sat, 26 Jul 1997 16:11:57 -0400 (EDT) From: spork X-Sender: spork@super-g.inch.com To: Aaron Jackson cc: isp@FreeBSD.ORG, rmorel@morelr.com Subject: Re: FreeBSD and NT... Why????? In-Reply-To: <9707261705.AA00623@negril.msrce.howard.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Anyone played with the cygwin stuff for 95/NT? I now have a bash shell on my windoze box, and it's nice, if not a little... weird? There's also a new X server out there for mac/win that is FREE as in $0... http://www.cygnus.com/misc/gnu-win32/ http://tnt.microimages.com/www/html/freestuf/mixdlfrm.htm Charles On Sat, 26 Jul 1997, Aaron Jackson wrote: > I prefer MacOS. ;-) > > Aaron Jackson jackson@msrce.howard.edu > > >Come on gang, let's not be MS or FreeBSD bashers or whatever. They're > >different. That's all. If you want to take a long trip, you take your > >LTD or > >Capri or whatever; if you want to haul some plywood you take your > >pickup. > >For round town driving, you may prefer the pickup and your spouse or SO > >the > >LTD, or vice versa. > > > >I'm a recent UNIX convert for a _SERVER_. If my very own, personal > >workstation had to run it, I'd get out of computing entirely (I'm using > >NT). > >My wife prefers Win 95 (she used to be a diehard DOS fan). This is _my_ > >decision and _her_ decision. You may think we're (insert cuss-words of > >your > >choice here) for feeling this way, and that's fine. I'm certainly not > >going > >to force or convince you to use NT, or DOS, or even UNIX -- please give > >me > >the same courtesy. > From owner-freebsd-isp Sat Jul 26 15:09:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id PAA22557 for isp-outgoing; Sat, 26 Jul 1997 15:09:11 -0700 (PDT) Received: from mail.san.rr.com (mail-atm.san.rr.com [204.210.0.1]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA22550 for ; Sat, 26 Jul 1997 15:09:06 -0700 (PDT) Received: (from uucp@localhost) by mail.san.rr.com (8.7.6/8.7.3) id PAA20006 for ; Sat, 26 Jul 1997 15:08:36 -0700 (PDT) Message-Id: <199707262208.PAA20006@mail.san.rr.com> Received: from dt5h3n16.san.rr.com(204.210.33.22) by mail via smap (V1.3) id tmp019931; Sat Jul 26 15:08:17 1997 From: "Studded" To: "isp@freebsd.org" Date: Sat, 26 Jul 97 15:08:00 -0800 Reply-To: "Studded" Priority: Normal X-Mailer: PMMail 1.92 For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Subject: Installing BIND 4.9.6 or 8.1.1 in FreeBSD 2.2.1 Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk [Sorry for the spam for those on -questions too, but it seems I got the address wrong in the first letter.] I can still remember the frustration of people telling me "just install it" when I was new to system administration, so I thought I'd put together some instructions for installing the newest versions of BIND since the question has come up a few times now. Also, someone was talking about putting together a port, so hopefully this will save them some time. The only changes I have had to make for either version of BIND are in regards to the man pages, so this is actually pretty simple. However I am not a programmer, so it's possible that there are changes that do have to be made. I doubt this is the case however, since all of the binaries and libs build and work as advertised. I only have 2.2.1 systems to work with, so there may be a few details different if you're using something else. Particularly, there are some changes that have to be made to get 8.1.1 installed in the 2.1.x branch of FreeBSD that were recently detailed on both the FreeBSD and bind-users lists, so I won't belabour that. My advice to anyone using 2.1.x is to upgrade to 2.2.x, and install BIND 8.1.1, although I realize that's not possible for some people. In fact, I myself installed BIND 4.9.6 on a FreeBSD 2.2.1 system for a couple reasons, so you do what works for you. :) My hope is that someone from the FreeBSD team will put together all the changes that have to be made, and send them to the bind folks so that we'll have a true port. At minimum, I would like to request that the ISC include the following comments in the top level Makefile for 4.9.6: # FreeBSD 2.2.1 - These changes install the man pages in FreeBSD # format. You will also want to go into /usr/share/man/man<1,3,5,7,8> # and gzip -f the new man pages to replace the old ones. For instance, in # /usr/share/man/man1 you would execute gzip -f *.1 # These defaults should work with other FreeBSD distributions, but have # only been tested on FreeBSD 2.2.1. #CATEXT = $$$$N #MANROFF = cat #MANDIR = man It would also be nice if there were a way to change the group and owner of the pages as in 8.1.1 for consistency, but having them owned by root doesn't seem to hurt anything. Installing 4.9.6: 1. cd to /usr/src/contrib/bind 2. rm -r * 3. ftp://ftp.isc.org/isc/bind/src/4.9.6/bind-4.9.6-REL.tar.gz The 4.9.6 release is all in one package. 4. tar -zxvf *.gz 5. Change the values for CATEXT, MANROFF and MANDIR as indicated above in the top level Makefile. 6. make clean 7. make 8. make install 9. Go to /usr/share/man and gzip the new man pages in man1, man3, man5, man7 and man8 as indicated above. 10. Reboot, and you're done. :) For the 8.1.1 distribution, the following changes are needed to doc/man/Makefile. It would be nice if there were some kind of system-specific comments in this file, since finding the right combination based on the comments in there took a lot of trial and error. :) The same gzip process is needed as above, so the ISC people could duplicate those comments if they really wanted to. MANDIR = man CATEXT = $$N MAN_OWNER = -o bin MAN_GROUP = -g bin MANROFF = cat Installing 8.1.1: 1. cd to /usr/src/contrib/bind 2. rm -r * 3. ftp://ftp.isc.org/isc/bind/src/8.1.1 This distribution is in 3 files. You want bind-doc.tar.gz and bind-src.tar.gz for sure. The contrib stuff was still almost all for 4.9.6 when I installed 8.1, and I haven't had a chance to look at the contrib stuff for 8.1.1 yet, so I will leave this as an exercise for the reader. :) 4. tar -zxvf *.gz 5. First go into the src directory. All I had to do there was make, then make install and I was in business. 6. Now go into bind/doc/man, and make the changes to the Makefile there as indicated above. 7. make clean 8. make 9. make install 10. Go to /usr/share/man and gzip the new man pages as indicated above. 11. If this is the first time installing 8.1x, use named-bootconf.pl in /usr/src/contrib/bind/src/bin/named to convert your /etc/named.boot file to named.conf. 12. Reboot, and you're done. :) If you're installing 8.1.1 on a system that has never had a named running on it, you will want to go to /etc/namedb and run the make-localhost script before you run the named.boot conversion script that comes with BIND. That should set up your localhost domain for you, which is basically the only thing you need to run a resolver-only setup. Any FreeBSD-specific questions should probably be directed to freebsd-questions@freebsd.org. Other comments and suggestions are welcome of course. :) Good luck, Doug The man who fears nothing, loves nothing. From owner-freebsd-isp Sat Jul 26 21:01:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id VAA15771 for isp-outgoing; Sat, 26 Jul 1997 21:01:53 -0700 (PDT) Received: from mail.webspan.net (mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id VAA15766 for ; Sat, 26 Jul 1997 21:01:48 -0700 (PDT) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with ESMTP id XAA13454; Sat, 26 Jul 1997 23:59:34 -0400 (EDT) Received: from orion.webspan.net (localhost [127.0.0.1]) by orion.webspan.net (WEBSPAN/970608) with ESMTP id XAA09329; Sat, 26 Jul 1997 23:58:48 -0400 (EDT) To: Jason C Ingham cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Monitoring the IP usage of a single IP address on an ethernet In-reply-to: Your message of "Tue, 22 Jul 1997 23:47:59 PDT." <3.0.32.19970722234758.013e58a0@crimsonweb.com> Date: Sat, 26 Jul 1997 23:58:48 -0400 Message-ID: <9327.869975928@orion.webspan.net> Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jason C Ingham wrote in message ID <3.0.32.19970722234758.013e58a0@crimsonweb.com>: > I there any document (beside manpages) that would detail this > process? I've found some for Linux but want to give FreeBSD a > go. (Besides just *playing* with it.) Not that I am aware of. Perhaps the Handbook (http://www.freebsd.org/handbook) > Also, I just read that IOS 11.2 does bandwidth shaping (or limiting.) Can > IPFW/IPFilter do that? Like Joe gets 64k max, Sally gets 128k, etc. Can > this be variable based on time of day? Can these tools output html so > customers/users can see 1. How much of their b/width they're using and 2. > What sort of traffic (based on percentage/totals etc.) is flowing? bwmgr from etinc (http://www.etinc.com/ I believe) can do traffic limiting. I don't think IPFW or IPFilter can. I have no idea about its reporting capabilities (nor those of IOS actually, since I've never used IOS 11.2 for production) > Maybe mrtg can be twisted into doing some or all of this via snmp all based > on stats output by IPFW/IPFilter??? To the best of my knowledge neither IPFW or IPFilter will output via SNMP. You may be able to brute force it into mrtg somehow. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info From owner-freebsd-isp Sat Jul 26 22:41:44 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id WAA18422 for isp-outgoing; Sat, 26 Jul 1997 22:41:44 -0700 (PDT) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id WAA18416 for ; Sat, 26 Jul 1997 22:41:42 -0700 (PDT) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.5/8.8.5) with UUCP id XAA13603 for freebsd-isp@FreeBSD.ORG; Sat, 26 Jul 1997 23:41:41 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id XAA23408 for ; Sat, 26 Jul 1997 23:42:21 -0600 (MDT) Date: Sat, 26 Jul 1997 23:42:21 -0600 (MDT) From: Marc Slemko To: freebsd-isp@FreeBSD.ORG Subject: Re: analog and Apache? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, 26 Jul 1997, Marc Slemko wrote: > If you have a program that can handle multiple pending queries at once > (not nice to do with current resolvers), you could speed things up a good > bit more. Hmm, perhaps I should try that. Fork a bunch of child > processes and have a parent process send names to be resolved to them. My first few hacks have got the time, starting with a restarted named to clear the cache, for a 10000 lookup logfile down to 20 seconds on a P120 with a decent connection to the net. Using just the logresolve program that is distributed with Apache, that same file took 370 seconds before any changes. At that point it was being CPU limited. I'll probably make a nicer implementation of this sometime and add it to the logresolve program distributed with Apache.