From owner-freebsd-isp Sun Nov 2 01:17:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id BAA11181 for isp-outgoing; Sun, 2 Nov 1997 01:17:04 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id BAA11172 for ; Sun, 2 Nov 1997 01:16:59 -0800 (PST) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id UAA24119; Sun, 2 Nov 1997 20:23:28 +1100 (EST) Date: Sun, 2 Nov 1997 20:23:28 +1100 (EST) From: "Daniel O'Callaghan" To: Ronald Wiplinger cc: FreeBSD-isp Subject: Re: Routing entry for sysconf In-Reply-To: <199711020731.PAA08924@mail.trace.com.tw> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sun, 2 Nov 1997, Ronald Wiplinger wrote: > On Sun, 2 Nov 1997 17:30:47 +1100 (EST), Daniel O'Callaghan wrote: > >> ed1: 203.67.189.96 netmask 255.255.255.224 (96, 97 - 126, 127) > >> ed1: 203.67.189.128 netmask 255.255.255.224 (128, 129 - 158, 159) > >> ed1: 203.67.189.160 netmask 255.255.255.224 (160, 161 - 190, 191) > >> ed1: 203.67.189.192 netmask 255.255.255.224 (192, 193 - 222, 223) > >> ed1: 203.67.189.224 netmask 255.255.255.224 (224, 225 - 254, 255) > >> (for class room 10 MB/s) > > > >Why so many on ed1? Is there another router which splits up the nets to > >the classrooms or are the classrooms just linked by hubs? > > No, you can put it also into one line, but finally the question remains, how to put this info into sysconfig. To > split it in several lines should just emphesize, that you still cannot use, 95, 96, 127, 128, 159, 160, 191, 192, > 223, 224 and 255, even you put it into one line ;-( But you *can* use those addresses. If you want to make policy not to, then that is fine, but sysconfig need not know. Otherwise, just put in a comment. Hmm. How many machines for the classroom? Why not put ed1 203.67.189.128 netmask 255.255.255.128? You don't have to keep the netmask the same for all subnets any more; that went out years ago. Danny From owner-freebsd-isp Sun Nov 2 07:33:38 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id HAA27010 for isp-outgoing; Sun, 2 Nov 1997 07:33:38 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from picasso.wcape.school.za (picasso.wcape.school.za [196.21.102.12]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id HAA27005 for ; Sun, 2 Nov 1997 07:33:33 -0800 (PST) (envelope-from erin!erin.marneweck.wcape.school.za!JaCqUeS@picasso.wcape.school.za) Received: from erin by picasso.wcape.school.za via rmail with uucp id for freebsd-isp@freebsd.org; Sun, 2 Nov 1997 17:33:28 +0200 (SAT) (Smail-3.2 1996-Jul-4 #1 built 1997-Jan-18) Received: from erin.marneweck.wcape.school.za by erin.marneweck.wcape.school.za (UUPC/extended 1.12p/sm3) with UUCP for freebsd-isp@freebsd.org; Sun, 02 Nov 1997 17:31:38 +0200 Message-ID: <18bf6de620c6@erin.marneweck.wcape.school.za> From: JaCqUeS@erin.marneweck.wcape.school.za (Jacques Marneweck) Organization: CNET Africa BBS To: freebsd-isp@freebsd.org Date: Sun, 2 Nov 1997 15:32:05 +0200 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Cisco to FreeBSD machine Reply-to: jacques@marneweck.wcape.school.za X-Confirm-Reading-To: jacques@marneweck.wcape.school.za X-pmrqc: 1 Priority: normal X-mailer: Pegasus Mail for Win32 (v2.54) Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi all, A quick question. A client of mine has a cisco 1601 router on ip 196.21.169.131 and the FreeBSD 2.2.2-RELEASE server on ip 196.21.169.130 and I was wondering if there is anyway to bi pass a HUB out and connect the router to the nick on the BSD box? On Subnet, so netmask 255.255.255.224 Any help will be appreciated. Regards Jacques ---------------------------------------------------------------------- ("`-''-/").___..--''"`-._ , , `6_ 6 ) `-. ( ).`-.__.`) /( )` (_Y_.)' ._ ) `._ `.``-..-' \ \___ / | _..`--'_..-_/ /--'_.' ,' /- _ `-/ ' (il),-'' (li),' ((!.-' (/\/ \ \ /\ / / | ` \ Jacques Daniel Marneweck O O ) / | FreeBSD Systems Administrator `-^--'`< ' Novell NetWare Administrator (_.) _ ) / Remote Access Systems Administrator `.___/` / CNET Africa Technical Support `-----' / WCSN Technical Support <----. __ / __ \ Phone: +27 21 761-4569 (H) <----|====O)))==) \) /==== <----' `--' `.__,' \ Fax: +27 21 761-4569 (To be turned on) | | E-mail: JACQUES@marneweck.wcape.school.za \ / /\ ______( (_ / \______/ All opinions, thoughts that I write are ,' ,-----' | my own, and not of ANY company, person, `--{__________) or entity unless otherwise STATED. Jacques Marneweck is busy networking people not only computers. Now playing with "his" copy of the 45 day trial of BorderManager, on border-manager.marneweck.wcape.school.za ---------------------------------------------------------------------- Pursuate to US Code, Title 47, Chapter 5, Subchapter II, Sec. 227, any and all nonsolicited commercial E-mail sent to this address is subject to a download and archival fee in the amount of $500 US. Emailing denotes acceptance of these terms. From owner-freebsd-isp Sun Nov 2 11:30:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA07910 for isp-outgoing; Sun, 2 Nov 1997 11:30:00 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from bob.tri-lakes.net ([207.3.81.6]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id LAA07903 for ; Sun, 2 Nov 1997 11:29:55 -0800 (PST) (envelope-from cdillon@tri-lakes.net) Received: from [207.3.81.137] by bob.tri-lakes.net (NTMail 3.02.13) with ESMTP id aa326248 for ; Sun, 2 Nov 1997 13:30:49 -0600 Message-ID: X-Mailer: XFMail 1.1 [p0] on FreeBSD Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit MIME-Version: 1.0 In-Reply-To: <18bf6de620c6@erin.marneweck.wcape.school.za> Date: Sun, 02 Nov 1997 13:19:32 -0000 (GMT) From: Chris Dillon To: jacques@marneweck.wcape.school.za Subject: RE: Cisco to FreeBSD machine Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On 02-Nov-97 Jacques Marneweck wrote: >Hi all, > >A quick question. > >A client of mine has a cisco 1601 router on ip 196.21.169.131 and the >FreeBSD 2.2.2-RELEASE server on ip 196.21.169.130 and I was wondering >if there is anyway to bi pass a HUB out and connect the router to the >nick on the BSD box? > >On Subnet, so netmask 255.255.255.224 > A simple 10BASET crossover cable would work perfectly. You make crossover cables by wiring AT&T-568-A on one end, and AT&T-568-B on the other end (assuming you use the AT&T standards to begin with :-))... here's the color codes. AT&T-568-A Pins 1 2 3 4 5 6 7 8 Colors WG G WO Bl WBl O WBr Br AT&T-568-B Pins 1 2 3 4 5 6 7 8 Colors WO O WG Bl WBl G WBr Br (568-B is the wiring standard all of our buildings follow) Color Legend WO: White-Orange O: Orange WG: White-Green G: Green WBl: White-Blue Bl: Blue WBr: White-Brown Br: Brown While looking at the connector, with the cable coming down out of the connector, and the gold pins facing you, pin 1 is on the left. This all just came from memory, so hopefully they are correct.. Basically, as long as you reverse pairs 1-2 and 3-6, observing polarity (electrically, that is), you've got a crossover cable. --- Chris Dillon --- cdillon@tri-lakes.net --- Powered by FreeBSD, the best free OS on the planet. ---- (http://www.freebsd.org) From owner-freebsd-isp Sun Nov 2 17:16:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA23789 for isp-outgoing; Sun, 2 Nov 1997 17:16:06 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from alabama.nwlink.com (alabama.nwlink.com [209.20.130.40]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA23749 for ; Sun, 2 Nov 1997 17:16:01 -0800 (PST) (envelope-from bryn@nwlink.com) Received: from utah (bryn@nwlink.com [199.242.23.2]) by alabama.nwlink.com (8.8.7/8.8.7) with SMTP id RAA26292 for ; Sun, 2 Nov 1997 17:15:59 -0800 (PST) Date: Sun, 2 Nov 1997 17:09:31 -0800 (PST) From: "Bryn Wm. Moslow" X-Sender: bryn@utah To: freebsd-isp@freebsd.org Subject: Password file rebuilds (pwd_mkdb) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk First of all, a big thanks to R.D. Thrush for reminding me I have source code and of what I can do with it, modify... Thanks to all who responded with some insightful and very interesting ideas - I appreciate your time very much. And so, my problem was that pwd_mkdb was taking far too long to build my password databases and while doing so was more or less stopping anything else from going on while this was being done. When I was running BSDI and building these same databases I had the option (pwd_mkdb -c XXXX) of changing the cache size on the command line. FreeBSD uses a -c option but to my surprise only for validity checking the input to pwd_mkdb. I didn't really fret too much about it until the system was dropped into production and had umpteen sendmail processes running and many more pop3 sessions all waiting for file system access. *NOW*, I had a problem. The solution: I edited the source code for pwd_mkdb and changed the cache size in pwd_mkdb.c to '8192 * 1024' as this is what I had used with BSDI. The result: to coin a phrase, "BLAMMO!" What was taking well over a minute to two minutes now takes between 15 and 20 seconds and the rest of the system barely notices. The load is low and steady and the hiccups are gone. Thanks again to everyone who responded, good stuff! /\ /\ /| Bryn Wm. Moslow / \ / \ / | Northwest Link Systems Administrator / \ / \ / | Manager of Information Systems / \ / \ /\ / | (425) 451-1151 -or- (800) 390-1270 / \/ \/ \/ |_______ http://www.nwlink.com From owner-freebsd-isp Mon Nov 3 03:30:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id DAA25757 for isp-outgoing; Mon, 3 Nov 1997 03:30:29 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from tech.kgtu.runnet.ru (tech.kgtu.runnet.ru [195.208.226.108]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id DAA25744 for ; Mon, 3 Nov 1997 03:30:20 -0800 (PST) (envelope-from shin@tech.kgtu.runnet.ru) Received: from tech.kgtu.runnet.ru (localhost.tech.kgtu.runnet.ru [127.0.0.1]) by tech.kgtu.runnet.ru (8.8.5/8.8.5) with ESMTP id SAA02978; Mon, 3 Nov 1997 18:31:07 +0700 (KRS) Message-ID: <345DB5F9.DF6F4BF7@tech.kgtu.runnet.ru> Date: Mon, 03 Nov 1997 18:31:05 +0700 From: Boris Shinkarev Organization: KGTU X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.2-RELEASE i386) MIME-Version: 1.0 To: HyunSeog.Ryu@ablex.net CC: "freebsd-isp@freebsd.org" Subject: Re: restriction on IP aliasing??? References: <199710310238.LAA07028@ns.easy.re.kr> <34594D31.B8867A8B@tech.kgtu.runnet.ru> <34597270.73BE@ablex.net> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk So, First line in rc.conf for your interface must be main ifconfig without alias, it is as your install your system: ifconfig_ = "inet netmask " ifconfig__alias0 = "inet ..." ifconfig__alias1 = "inet ..."HyunSeog Ryu wrote: > > Hi, folks, > > I got an answer from Boris. > But some modification is needed... > ifconfig command for alias set down state on ifconfig alias command. > So I must do as below. > > in rc.conf (on our 2.2.2-RELEASE machine); > > add below line, > > ifconfig_vx0_alias0="inet 192.203.142.16 netmask 255.255.255.224 > broadcast 192.203.142.31 up" > ifconfig_vx0_alias1="inet 192.203.142.17 netmask 255.255.255.224 > broadcast 192.203.142.31 up" > > So I must insert "up" to ifconfig command. > > But it does not work at our FreeBSD 2.2-CURRENT Feb-1997 version. > Do I have to do upgrade our server??? > > Regards, > > HyunSeog Ryu > Network Manager at EASY-NET, ABLEX Co., Ltd. > > Boris Shinkarev wrote: > ? > ? Hyun-Seog Ryu wrote: > ? ? > ? ? Hi, folks, > ? ? > ? ? I have a question on FreeBSD IP aliasing... > ? ? Does FreeBSD support only one IP alias for each Ethernet port? > ? ? Can I use several IP aliasing on one Ethernet port??? > ? ? At Solaris, it is used many Virtual LAN address at one Ethernet port... > ? ? But at FreeBSD, how to do??? > ? ? Please let me know about it... > ? ? Thank you for your concern. > ? ? > ? ? Regards, > ? ? > ? ? HyunSeog Ryu > ? ? Network Manager at EASY-NET, ABLEX Co., Ltd. > ? Hi ! > ? In rc.conf add line > ? ifconfig_?your_interface?_alias?number of alias(begin from 0)="inet > ? ?your ip-address? netmask xxx.xxx.xxx.xxx" > ? > ? or manual ifconfig "some for your interface and ip" alias > ? see man ifconfig > ? -- > $)C > ? bORIS {INKAREW, > ? Boris Shinkarev, > ? independet consultant for internet/intranet networks, -- Борис Шинкарев, Boris Shinkarev, independet consultant for internet/intranet networks, From owner-freebsd-isp Mon Nov 3 05:39:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id FAA02624 for isp-outgoing; Mon, 3 Nov 1997 05:39:39 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from grunt.vl.net.ua (daemon@grunt.vl.net.ua [193.124.76.209]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id FAA02615 for ; Mon, 3 Nov 1997 05:39:26 -0800 (PST) (envelope-from news@grunt.vl.net.ua) Received: from news by grunt.vl.net.ua with local (Exim 1.71 #1) id 0xSMle-0001ax-00; Mon, 3 Nov 1997 15:42:11 +0200 To: freebsd-isp@freebsd.org Subject: Re: restriction on IP aliasing??? Date: 3 Nov 1997 15:42:08 +0200 Message-ID: <63kkbg$5vi$1@grunt.vl.net.ua> X-Newsreader: TIN [UNIX 1.3 unoff BETA 970930; i386 FreeBSD 2.2-970911-RELENG] X-Via: News-To-Mail v1.0 From: Vladimir Litovka Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi! Daniel O'Callaghan wrote: > Aliases must use netmask 255.255.255.255 (0xffffffff). Only if alias is in the same subnet, that main address. -- Vladimir Litovka , hostmaster of vl.net.ua ======== Don't trouble trouble until trouble troubles you. From owner-freebsd-isp Mon Nov 3 08:01:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA10268 for isp-outgoing; Mon, 3 Nov 1997 08:01:08 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from intercore.com (num1sun.intercore.com [199.181.243.1]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA10263; Mon, 3 Nov 1997 08:01:05 -0800 (PST) (envelope-from robin@intercore.com) Received: (robin@localhost) by intercore.com (8.7.1/8.6.4) id KAA17508; Mon, 3 Nov 1997 10:57:19 -0500 (EST) Message-ID: <19971103105719.08747@num1sun.intercore.com> Date: Mon, 3 Nov 1997 10:57:19 -0500 From: Robin Cutshaw To: Greg Skafte Cc: freebsd-isp@FreeBSD.ORG, freebsd-hackers@FreeBSD.ORG Subject: Re: Multiport Ethernet Cards References: <19971101005141.20155@worldgate.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.79 In-Reply-To: <19971101005141.20155@worldgate.com>; from Greg Skafte on Sat, Nov 01, 1997 at 12:51:41AM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Sat, Nov 01, 1997 at 12:51:41AM -0700, Greg Skafte wrote: > > What are peoples experience with either the adaptec or the matrox > multiport nics. or is there another nic that is getting rave > reveiws, that I haven't mentioned. > I'm using the adaptec 4x10/100 card in a P75 firewall. It works very well. It's running FreeBSD 2.2.1 with Matt's driver patched in. robin -- ---- Robin Cutshaw internet: robin@interlabs.com robin@intercore.com Internet Labs, Inc. BellNet: 404-817-9787 robin@XFree86.Org "Time is just one damn thing after another" -- PBS/Nova ---- -- From owner-freebsd-isp Mon Nov 3 09:28:23 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA16438 for isp-outgoing; Mon, 3 Nov 1997 09:28:23 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from wicked.eaznet.com ([206.62.254.2]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id JAA16421 for ; Mon, 3 Nov 1997 09:28:06 -0800 (PST) (envelope-from eddie@eaznet.com) Received: from eaznet.com (as1-22.eaznet.com [206.62.254.230]) by wicked.eaznet.com (8.8.7/8.8.5) with ESMTP id KAA10155; Mon, 3 Nov 1997 10:27:09 -0700 (MST) Message-ID: <345E039D.EFD41873@eaznet.com> Date: Mon, 03 Nov 1997 10:02:21 -0700 From: Eddie Fry X-Mailer: Mozilla 4.03 [en] (WinNT; I) MIME-Version: 1.0 To: "Daniel O'Callaghan" CC: Hyun-Seog Ryu , freebsd-isp@FreeBSD.ORG Subject: Re: restriction on IP aliasing??? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dan, Can you elloborate on this? ie: What type of applications apply to aliasing it to the ethernet vs. what applications on the loopback. Thanks, Eddie Daniel O'Callaghan wrote: > On Fri, 31 Oct 1997, Hyun-Seog Ryu wrote: > > > I have a question on FreeBSD IP aliasing... > > Does FreeBSD support only one IP alias for each Ethernet port? > > Can I use several IP aliasing on one Ethernet port??? > > At Solaris, it is used many Virtual LAN address at one Ethernet port... > > But at FreeBSD, how to do??? > > ifconfig ed0 201.2.3.4 netmask 0xffffff00 > ifconfig ed0 201.2.3.5 netmask 0xffffffff alias > ifconfig ed0 201.2.3.6 netmask 0xffffffff alias > ifconfig ed0 201.2.3.7 netmask 0xffffffff alias > > ...etc... > > There is no restriction on the number. Note that unless the IPs belong > on the ethernet network, it makes more sense to put them on lo0, not the > ethernet interface. > > Danny -- Eddie Fry eddie@eaznet.com EAZNet Internet Services http://www.eaznet.com 220 West 7th Street Safford, AZ 85546 EAZing you into the future... From owner-freebsd-isp Mon Nov 3 14:36:56 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id OAA09907 for isp-outgoing; Mon, 3 Nov 1997 14:36:56 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from mail.cbiowa.com (root@mail.cbiowa.com [204.26.81.2]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id OAA09882 for ; Mon, 3 Nov 1997 14:36:47 -0800 (PST) (envelope-from brian@cbiowa.com) Received: from cbiowa.com (root@[204.26.81.198]) by mail.cbiowa.com (8.8.5/8.6.9) with ESMTP id QAA27998 for ; Mon, 3 Nov 1997 16:36:39 -0600 Message-ID: <345E51BB.5739DD57@cbiowa.com> Date: Mon, 03 Nov 1997 16:35:39 -0600 From: Brian Weber Reply-To: brian@cbiowa.com X-Mailer: Mozilla 4.03 [en] (X11; I; Linux 2.1.57 i486) MIME-Version: 1.0 To: freebsd ISP Subject: User name authentication through firewalls Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Here is what I am up against. I am asked to install a firewall that will allow traffice on different ports. So far pretty standard. They want that access given through user name not ip address. That is were the problem is. I have been told that NT can do this through there proxy server. Is this possible through freebsd or linux or should I just go with the nt solution. Please tell me there is a way to make unix do this!!!! -- ---------- Brian Weber brian@cbiowa.com http://www.lunix.org From owner-freebsd-isp Mon Nov 3 15:35:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id PAA13395 for isp-outgoing; Mon, 3 Nov 1997 15:35:04 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from wicked.eaznet.com ([206.62.254.2]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id PAA13370 for ; Mon, 3 Nov 1997 15:34:58 -0800 (PST) (envelope-from eddie@wicked.eaznet.com) Received: (from eddie@localhost) by wicked.eaznet.com (8.8.7/8.8.5) id QAA11458 for isp@freebsd.org; Mon, 3 Nov 1997 16:37:09 -0700 (MST) Date: Mon, 3 Nov 1997 16:37:09 -0700 (MST) From: Eddie Fry Message-Id: <199711032337.QAA11458@wicked.eaznet.com> To: isp@freebsd.org Subject: crons Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm trying to set up a cron to compress my RADIUS log files every month. I wanted to start the cron at 11:59 on the last day of the month. But, I can't figure out if cron will recognize a date of 31 in a 30 day month or if there is another way to start the cron. Hmmm... I could run it at 1 minute after midnight the next day, but how do I get "date" to return the name of the previous month? Thanks for any help! I'm kinda new at the shellscript stuff. Eddie From owner-freebsd-isp Mon Nov 3 15:52:07 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id PAA14341 for isp-outgoing; Mon, 3 Nov 1997 15:52:07 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from ns1.primelink.com (ns1.primelink.com [206.24.58.10]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id PAA14334 for ; Mon, 3 Nov 1997 15:52:02 -0800 (PST) (envelope-from kbrown@primelink.com) Received: from hack ([206.24.58.11]) by ns1.primelink.com (post.office MTA v1.9.3 ID# 0-11777) with SMTP id AAA164; Mon, 3 Nov 1997 17:57:10 -0600 Message-Id: <3.0.32.19971103175057.009d7c70@mail.primelink.com> X-Sender: darkstar@mail.primelink.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Mon, 03 Nov 1997 17:50:59 -0600 To: brian@cbiowa.com, freebsd ISP From: Kevin Brown Subject: Re: User name authentication through firewalls Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 04:35 PM 11/3/97 -0600, Brian Weber wrote: >Here is what I am up against. I am asked to install a firewall that >will allow traffice on different ports. So far pretty standard. They >want that access given through user name not ip address. That is were >the problem is. I have been told that NT can do this through there >proxy server. Is this possible through freebsd or linux or should I >just go with the nt solution. > Please tell me there is a way to make unix do this!!!! IBM's Secure Network Gateway does this very well, and much more. But it honestly prefers AIX 4.1 or higher. I'm sure you were looking for a more FreeBSD oriented solution...I haven't been exposed. Perhaps Guardian's Unix deployment would work... check with them at http://www.netguard.com >-- >---------- >Brian Weber >brian@cbiowa.com >http://www.lunix.org > ////////////////////////////////////////////////////////////////////// Kevin Brown WAN Specialist ---------->(kbrown@primelink.com) -- email ->(darkstar@sockets.net) ---------->(darkstar@frequency.net) Huber and Associates (www.primelink.com) Frequency Networks (www.frequency.net) ////////////////////////////////////////////////////////////////////// ------------------------------------------------------------------ Pursuate to US Code, Title 47, Chapter 5, Subchapter II, Sec. 227, any and all nonsolicited commercial E-mail sent to this address is subject to a download and archival fee in the amount of $500 US. Emailing denotes acceptance of these terms. ------------------------------------------------------------------ From owner-freebsd-isp Mon Nov 3 17:18:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA20711 for isp-outgoing; Mon, 3 Nov 1997 17:18:27 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA20694 for ; Mon, 3 Nov 1997 17:18:22 -0800 (PST) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id MAA27618; Tue, 4 Nov 1997 12:27:13 +1100 (EST) Date: Tue, 4 Nov 1997 12:27:12 +1100 (EST) From: "Daniel O'Callaghan" To: Eddie Fry cc: isp@FreeBSD.ORG Subject: Re: crons In-Reply-To: <199711032337.QAA11458@wicked.eaznet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 3 Nov 1997, Eddie Fry wrote: > I'm trying to set up a cron to compress my RADIUS log files every month. I wanted to start the cron at 11:59 on the last day of the month. But, I can't figure out if cron will recognize a date of 31 in a 30 day month or if there is another way to start the cron. Hmmm... I could run it at 1 minute after midnight the next day, but how do I get "date" to return the name of the previous month? Try this: --------- #!/bin/sh now=`date +%s` # then is the date 28 days prior to now. then=expr `$now - 2419200` lastmonth=`date -r $then +%h` echo $lastmonth --------- Note that this will give the current month on 29,30,31 of this month. Danny From owner-freebsd-isp Mon Nov 3 18:18:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id SAA25757 for isp-outgoing; Mon, 3 Nov 1997 18:18:49 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from email.polaccess.com (polaccess.com [205.166.42.114]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id SAA25749 for ; Mon, 3 Nov 1997 18:18:44 -0800 (PST) (envelope-from marcin@polaccess.com) Received: from [205.166.42.125] by email.polaccess.com (SMTPD32-3.03) id AA8738B70128; Thu, 04 Sep 1997 21:12:23 -0500 Message-ID: <345FC7AE.2822@polaccess.com> Date: Tue, 04 Nov 1997 19:11:10 -0600 From: Marcin Pasek Reply-To: marcin@polaccess.com X-Mailer: Mozilla 3.01 (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Sendmail on the Web Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Does anyone know if thereis a web interface to manage Sendmail Server under FreeBsd...? Marcin From owner-freebsd-isp Mon Nov 3 20:35:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id UAA08336 for isp-outgoing; Mon, 3 Nov 1997 20:35:35 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from gw.itfs.nsk.su (gw.itfs.nsk.su [193.124.36.33]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id UAA08315 for ; Mon, 3 Nov 1997 20:35:21 -0800 (PST) (envelope-from itfs!news!nnd%itfs.nsk.su@gw.itfs.nsk.su) Received: from itfs.UUCP (uucp@localhost) by gw.itfs.nsk.su (8.6.12/8.6.12) with UUCP id KAA00639 for isp@freebsd.org; Tue, 4 Nov 1997 10:35:09 +0600 Received: by itfs.nsk.su; Tue, 4 Nov 97 10:34:44 +0600 (NSK) Received: (from daemon@localhost) by news.itfs.nsk.su (8.7.5/8.6.12) id KAA05815; Tue, 4 Nov 1997 10:25:32 +0600 (NSK) From: nnd@itfs.nsk.su To: isp@freebsd.org Subject: Re: crons Date: 4 Nov 1997 04:25:30 GMT Message-ID: <63m83q$4uh@news.itfs.nsk.su> References: <199711032337.QAA11458@wicked.eaznet.com> Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Eddie Fry wrote: (with VERY LONG lines ;-) > I'm trying to set up a cron to compress my RADIUS log files every month. > I wanted to start the cron at 11:59 on the last day of the month. > But, I can't figure out if cron will recognize a date of 31 in a 30 day > month or if there is another way to start the cron. > Hmmm... I could run it at 1 minute after midnight the next day, > but how do I get "date" to return the name of the previous month? May be not very beautifyl but very simple solution: - start the cron job at 23:59 - ask and remember date (f.e. with /bin/sh : set `date '+%y %m %d'` year=$1 month=$2 day=$1) - sleep 60 sec - repeat step 2 above (ask the date) Now you can test if today is the first day of month or year. N.Dudorov From owner-freebsd-isp Mon Nov 3 20:45:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id UAA08699 for isp-outgoing; Mon, 3 Nov 1997 20:45:14 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from email.polaccess.com (polaccess.com [205.166.42.114]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id UAA08681 for ; Mon, 3 Nov 1997 20:44:55 -0800 (PST) (envelope-from marcin@polaccess.com) Received: from [205.166.42.125] by email.polaccess.com (SMTPD32-3.03) id ACCA13B0013C; Thu, 04 Sep 1997 23:38:34 -0500 Message-ID: <345FE9F4.660B@polaccess.com> Date: Tue, 04 Nov 1997 21:37:24 -0600 From: Marcin Pasek Reply-To: marcin@polaccess.com X-Mailer: Mozilla 3.01 (Win95; I) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Adding Ethernet Card Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I don't know how it happend but after installing the FreeBSD my ethenet card was not on the list of thing probed on Boot 'UP...How do I add a ethernet card it's a NE2000 compatible....Any ideas....Can't find this in the manual Marcin From owner-freebsd-isp Mon Nov 3 21:09:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id VAA10109 for isp-outgoing; Mon, 3 Nov 1997 21:09:22 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from proxy.unpar.ac.id (proxy.unpar.ac.id [167.205.206.55]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id VAA10093 for ; Mon, 3 Nov 1997 21:09:14 -0800 (PST) (envelope-from 1193016@student.unpar.ac.id) Received: from student.unpar.ac.id (student.unpar.ac.id [167.205.206.58]) by proxy.unpar.ac.id (8.8.5/8.8.5) with ESMTP id LAA19531; Mon, 4 Nov 1996 11:52:08 +0700 (JAVT) Received: from localhost (1193016@localhost) by student.unpar.ac.id (8.8.5/8.8.5.D) with SMTP id MAA01720; Tue, 4 Nov 1997 12:39:49 +0700 (JAVT) Date: Tue, 4 Nov 1997 12:39:49 +0700 (JAVT) From: Thomas Wahyudi <1193016@student.unpar.ac.id> To: Marcin Pasek cc: freebsd-isp@FreeBSD.ORG Subject: Re: Adding Ethernet Card In-Reply-To: <345FE9F4.660B@polaccess.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 4 Nov 1997, Marcin Pasek wrote: >I don't know how it happend but after installing the FreeBSD my ethenet >card was not on the list of thing probed on Boot 'UP...How do I add a >ethernet card it's a NE2000 compatible....Any ideas....Can't find this >in the manual > >Marcin Have you try at boot prompt type -c or may be you have to make a new kernel. Thomas From owner-freebsd-isp Mon Nov 3 22:11:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id WAA14619 for isp-outgoing; Mon, 3 Nov 1997 22:11:08 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id WAA14612 for ; Mon, 3 Nov 1997 22:11:04 -0800 (PST) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id RAA27974; Tue, 4 Nov 1997 17:20:06 +1100 (EST) Date: Tue, 4 Nov 1997 17:20:05 +1100 (EST) From: "Daniel O'Callaghan" To: Marcin Pasek cc: freebsd-isp@FreeBSD.ORG Subject: Re: Adding Ethernet Card In-Reply-To: <345FE9F4.660B@polaccess.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 4 Nov 1997, Marcin Pasek wrote: > I don't know how it happend but after installing the FreeBSD my ethenet > card was not on the list of thing probed on Boot 'UP...How do I add a > ethernet card it's a NE2000 compatible....Any ideas....Can't find this > in the manual Read the chapter on building a kernel. This is the ed device driver. Set the irq and port address (e.g. 10, 0x300) and set ed1 to be the same either in kernel config file or by booting with -c flag. Danny From owner-freebsd-isp Tue Nov 4 00:48:36 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id AAA24913 for isp-outgoing; Tue, 4 Nov 1997 00:48:36 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from bsd3.nyct.net (myj@bsd3.nyct.net [204.141.86.7]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id AAA24900 for ; Tue, 4 Nov 1997 00:48:20 -0800 (PST) (envelope-from myj@bsd3.nyct.net) Received: (from myj@localhost) by bsd3.nyct.net (8.8.7/8.8.5) id DAA20439; Tue, 4 Nov 1997 03:48:17 -0500 (EST) Date: Tue, 4 Nov 1997 03:48:17 -0500 (EST) From: Paul Sandys To: Brian Weber cc: freebsd ISP Subject: Re: User name authentication through firewalls In-Reply-To: <345E51BB.5739DD57@cbiowa.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 3 Nov 1997, Brian Weber wrote: > Date: Mon, 03 Nov 1997 16:35:39 -0600 > From: Brian Weber > To: freebsd ISP > Subject: User name authentication through firewalls > > Here is what I am up against. I am asked to install a firewall that > will allow traffice on different ports. So far pretty standard. They > want that access given through user name not ip address. That is were > the problem is. I have been told that NT can do this through there > proxy server. Is this possible through freebsd or linux or should I > just go with the nt solution. > Please tell me there is a way to make unix do this!!!! What about implementing socks5 server (runs well under FreeBSD) + NEC SocksCap on Windows ? see http://www.socks.nec.com > -- > ---------- > Brian Weber > brian@cbiowa.com > http://www.lunix.org > P. <-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-> < myj@nyct.net Paul Sandys | New York Connect http://www.nyct.net > < network operations manager | Total Solution provider > <-------------------------------------------------------------------------> < " BRINGING NEW YORK THE INTERNET SERVICES IT DESERVES " > <-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-> From owner-freebsd-isp Tue Nov 4 10:37:12 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id KAA27652 for isp-outgoing; Tue, 4 Nov 1997 10:37:12 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from intra.vafibre.com ([205.139.223.3]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id KAA27646 for ; Tue, 4 Nov 1997 10:37:10 -0800 (PST) (envelope-from jbrown@vafibre.com) Received: from is01 by intra.vafibre.com (Unoverica 2.11a) id 00000F21; Tue, 4 Nov 1997 12:58:53 -0500 From: "John Brown" To: Subject: Fw: rdist Alternatives Date: Tue, 4 Nov 1997 12:53:43 -0500 Message-ID: <01bce94a$976a2960$65df8bcd@is01.vafibre.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.71.1712.3 X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3 Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I have been working for a couple of weeks now to get rdist to work and have been very unsuccessful. So now on to the next option. I need to duplicate my password db to my secondary radius server. Are there other utilities that I can use to make this happen? rdist info -- In case someone is interested. I started with a 2.1.x box and was able to get it to transfer files from this machine to a 2.2.2 box but could never get it going the other way. So being the smart individual that I am I upgrade the 2.1.x box to 2.2.5 now -- well you guessed it...Now it doesn't work either way. When running with the debug flag it appears to bomb at the first rsh that is executed with a 'permission denied' at this point I have checked everything that I can think of and am at a loss. rlogin will work both way's but rsh and rcp AND rdist will not. (all die with the same message 'Permission Denied'). Nothing in the messages log, NOTHING AAAAAARRRRRRRGGGGGHHHH!!! God I Love Unix!!! ;) From owner-freebsd-isp Tue Nov 4 10:56:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id KAA29038 for isp-outgoing; Tue, 4 Nov 1997 10:56:49 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from mail.cybernautics.com ([157.22.203.6]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id KAA29022 for ; Tue, 4 Nov 1997 10:56:45 -0800 (PST) (envelope-from rchadowitz@cybernautics.com) Received: from rchadowitz.marin.usweb.com ([157.22.203.70]) by mail.cybernautics.com (Post.Office MTA v3.1.2 release (PO205-101c) ID# 0-42675U100L100S0) with SMTP id AAA369; Tue, 4 Nov 1997 10:57:26 -0800 Message-Id: <3.0.32.19971104105535.006b55d4@mail.marin.usweb.com> X-Sender: rchadowitz@mail.marin.usweb.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 04 Nov 1997 10:55:35 -0800 To: freebsd-isp@FreeBSD.ORG From: Ronee Chadowitz Subject: FYI Cc: anelson@bannerfoundry.com Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I am currently working with USWeb and Microsoft on a Free Intranet Planning Pack, and thought it might be helpful to some of you. The Pack includes answers to the most common questions about building and designing an intranet as well as a free Front Page CD. It is only being offered for a limited time. To register for it go to: http://www.usweb.com/ipk1/index.html From owner-freebsd-isp Tue Nov 4 11:38:06 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA01641 for isp-outgoing; Tue, 4 Nov 1997 11:38:06 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from caliban.dihelix.com (caliban.dihelix.com [198.180.136.122]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id LAA01620 for ; Tue, 4 Nov 1997 11:37:58 -0800 (PST) (envelope-from langfod@caliban.dihelix.com) Received: (from langfod@localhost) by caliban.dihelix.com (8.8.7/8.8.3) id JAA07365; Tue, 4 Nov 1997 09:32:15 -1000 (HST) Message-Id: <199711041932.JAA07365@caliban.dihelix.com> Subject: Re: Fw: rdist Alternatives In-Reply-To: <01bce94a$976a2960$65df8bcd@is01.vafibre.com> from John Brown at "Nov 4, 97 12:53:43 pm" To: jbrown@vafibre.com (John Brown) Date: Tue, 4 Nov 1997 09:32:15 -1000 (HST) Cc: freebsd-isp@FreeBSD.ORG From: "David Langford" X-blank-line: This space intentionaly left blank. X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk If moving password files and such I prefer "scp" from the ssh distribution. It does encryption over the wire and compression. I do wish it had the intelligence of rdist though.... Did you check that "exec" was enabled in inetd.conf? This is diferent that rlogind that rlogin uses. -David Langford >I have been working for a couple of weeks now to get rdist to work and have >been very unsuccessful. > >So now on to the next option. I need to duplicate my password db to my >secondary radius server. Are there other utilities that I can use to make >this happen? > >rdist info -- In case someone is interested. I started with a 2.1.x box and >was able to get it to transfer files from this machine to a 2.2.2 box but >could never get it going the other way. So being the smart individual that I >am I upgrade the 2.1.x box to 2.2.5 now -- well you guessed it...Now it >doesn't work either way. When running with the debug flag it appears to bomb >at the first rsh that is executed with a 'permission denied' at this point I >have checked everything that I can think of and am at a loss. rlogin will >work both way's but rsh and rcp AND rdist will not. (all die with the same >message 'Permission Denied'). Nothing in the messages log, NOTHING >AAAAAARRRRRRRGGGGGHHHH!!! > >God I Love Unix!!! ;) > > > > > From owner-freebsd-isp Tue Nov 4 12:01:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA03245 for isp-outgoing; Tue, 4 Nov 1997 12:01:16 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from hal-pc.org (hal-pc.org [204.52.135.1]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id MAA03213 for ; Tue, 4 Nov 1997 12:00:57 -0800 (PST) (envelope-from reg@hal-pc.org) Received: (from reg@localhost) by hal-pc.org (8.8.5/8.6.9) id OAA14613; Tue, 4 Nov 1997 14:00:48 -0600 (CST) Message-Id: <199711042000.OAA14613@hal-pc.org> To: freebsd-isp@FreeBSD.ORG Priority: Normal X-Mailer: Post Road Mailer for OS/2 (Green Edition Ver 3.0) Date: Tue, 4 Nov 1997 14:00:39 CST From: "Robert E. Gunn" Reply-To: "Robert E. Gunn" Subject: Re: Fw: rdist Alternatives Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Addressed to: Distribution list (see below) ** Reply to note from "John Brown" Tue, 4 Nov 1997 12:53:43 -0500 > > I have been working for a couple of weeks now to get rdist to work and have > been very unsuccessful. > > So now on to the next option. I need to duplicate my password db to my > secondary radius server. Are there other utilities that I can use to make > this happen? > > rdist info -- In case someone is interested. I started with a 2.1.x box and > was able to get it to transfer files from this machine to a 2.2.2 box but > could never get it going the other way. So being the smart individual that I > am I upgrade the 2.1.x box to 2.2.5 now -- well you guessed it...Now it > doesn't work either way. When running with the debug flag it appears to bomb > at the first rsh that is executed with a 'permission denied' at this point I > have checked everything that I can think of and am at a loss. rlogin will > work both way's but rsh and rcp AND rdist will not. (all die with the same > message 'Permission Denied'). Nothing in the messages log, NOTHING > AAAAAARRRRRRRGGGGGHHHH!!! > > God I Love Unix!!! ;) OK, here's how I did it. 1) If you are running any kind of reasonable security, the remote system will not allow you to remotely execute as root. There are VERY good reasons for this. 2) You have to be root to read the master.password file. A small gotcha. 3) I've created a pseudo usr 'etc' to do the actual rcp. It has group read only access to everything in the /etc directory. I can't find a security flaw in this--but there are no guarantees. 4) This process runs out of cron every 10 minutes. # rcopy the /etc directory to news:/etc # 960213 00:13 reg Added rcopy at 10 minute interval */10 * * * * root /etc/rcopy 5) The rcopy script is owned by root: -rwxr----- 1 root wheel 1152 Feb 13 1996 rcopy* ------BEGIN rcopy 740----------------------------------------------------- #!/bin/ksh # rcopy, version 960212 reg@hal-pc.org #======================================================================== # A program to copy the /etc directory to news:/etc/etc.hal-pc.org # Running as root, it finds the files that do not have group read # access, chmods those files to read access, su to etc (tricky) # rcp the /etc directory to news:/etc/etc.hal-pc.org, reverts back # to root and chmods the files back the way they were. #======================================================================== # Last Revised UID Modification # 960212 01:16 reg Original rcopy #======================================================================== # DEBUG=true if [ ${DEBUG:-false} = true ];then echo "$*\n$PATH\n$PWD";sleep 2;set -xv;fi #trap 'echo $0: INTERRUPT;exit' INT #trap 'echo $0: ERROR;continue' ERR #trap 'echo $0: ERROR' ERR tmpfile=/tmp/perms.$$ cd /etc find /etc ! -perm -0040 > $tmpfile for file in $(cat $tmpfile) do chmod g+r $file done su etc # suid to etc and execute rcopy.etc for file in $(cat $tmpfile) do chmod g-r $file done rm $tmpfile ------------END-rcopy------------------------------------------------------- 6) The second script rcopy.etc is owned by 'etc'. It ONLY copies files that are newer than the date stamp on itself (the last time it ran). -rwxr----- 1 etc wheel 652 Nov 4 13:40 rcopy.etc* ------BEGIN rcopy.etc 740--------------------------------------------------- #!/bin/ksh # rcopy.etc version 960212 reg@hal-pc.org #======================================================================== # A program to copy the /etc directory to news:/etc/hal-pc.org/ #======================================================================== # Last Revised UID Modification # 960212 22:57 reg Changed rcp -rp to find /etc -newer # 960212 01:27 reg Original rcopy.etc #======================================================================== #rcp -pr /etc etc@news:/etc/hal-pc.org find /etc -type f -newer /etc/rcopy.etc\ -exec rcp -p {} etc@news:/etc/hal-pc.org/{} ';' touch /etc/rcopy.etc -------END rcopy.etc--------------------------------------------------------- 7) This has been running without serious problems for over a year. It keeps all the copied files in a secure area (/etc/hal-pc.org/etc) on the target disk. I've never felt like going back and cleaning it up--it works. I think you've already discovered the nitty-gritty like setting up trusted hosts, .... -- Robert Gunn <>|Post Office Box 27474 |Voice:+1 713 960 1588 reg@hal-pc.org |Houston, Texas 77227-7474|Fax: +1 713 960 9497 HAL-PC: The world's largest computer club and a lot more! Hiroshima 45, Chernobyl 86, Windows 95 Distribution list: "John Brown" freebsd-isp@FreeBSD.ORG From owner-freebsd-isp Tue Nov 4 12:50:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA06534 for isp-outgoing; Tue, 4 Nov 1997 12:50:55 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from axe.cablenet.net (axe.cablenet.net [194.154.36.65]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id MAA06529 for ; Tue, 4 Nov 1997 12:50:52 -0800 (PST) (envelope-from damian@axe.cablenet.net) Received: from axe (localhost [127.0.0.1]) by axe.cablenet.net (8.8.7/8.6.9) with SMTP id UAA11228; Tue, 4 Nov 1997 20:46:59 GMT Message-ID: <345F89C2.41C67EA6@cablenet.net> Date: Tue, 04 Nov 1997 20:46:58 +0000 From: Damian Hamill Organization: CableNet Ltd X-Mailer: Mozilla 3.0 (X11; I; SunOS 4.1.4 sun4m) MIME-Version: 1.0 To: Ronee Chadowitz CC: freebsd-isp@freebsd.org Subject: Re: FYI References: <3.0.32.19971104105535.006b55d4@mail.marin.usweb.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk You are taking the piss surely ? Ronee Chadowitz wrote: > > I am currently working with USWeb and Microsoft on a Free Intranet Planning > Pack, and thought it might be helpful to some of you. > > The Pack includes answers to the most common questions about building and > designing an intranet as well as a free Front Page CD. It is only being > offered for a limited time. To register for it go to: > > http://www.usweb.com/ipk1/index.html Let me see now, what's my next strategic business move ???? I Know!!! I'll junk this Freebsd/Apache thing (even though it's totally free, is a rock solid web server platform with server side scripting, database integration and supports secure electronic commerce) and go for this IIS whotsits and get some Internet planning and advice from a company that really knows what the Internet means, hell they discovered the thing last year didn't they!!! regards damian -- * Damian Hamill M.D. damian@cablenet.net * CableNet & The Landscape Channel * http://www.cablenet.net/ http://www.landscapetv.com/ From owner-freebsd-isp Tue Nov 4 13:24:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id NAA09147 for isp-outgoing; Tue, 4 Nov 1997 13:24:50 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from ravel.n2.net (dsmith@ravel.n2.net [207.113.132.20]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id NAA09141 for ; Tue, 4 Nov 1997 13:24:47 -0800 (PST) (envelope-from dsmith@ravel.n2.net) Received: (from dsmith@localhost) by ravel.n2.net (8.8.6/8.8.6) id NAA09007; Tue, 4 Nov 1997 13:24:41 -0800 (PST) From: Dave Smith Message-Id: <199711042124.NAA09007@ravel.n2.net> Subject: Re: Fw: rdist Alternatives In-Reply-To: <01bce94a$976a2960$65df8bcd@is01.vafibre.com> from John Brown at "Nov 4, 97 12:53:43 pm" To: jbrown@vafibre.com (John Brown) Date: Tue, 4 Nov 1997 13:24:41 -0800 (PST) Cc: freebsd-isp@freebsd.org X-Mailer: ELM [version 2.4ME+ PL31H (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > I have been working for a couple of weeks now to get rdist to work and have > been very unsuccessful. > > So now on to the next option. I need to duplicate my password db to my > secondary radius server. Are there other utilities that I can use to make > this happen? > > rdist info -- In case someone is interested. I started with a 2.1.x box and > was able to get it to transfer files from this machine to a 2.2.2 box but > could never get it going the other way. So being the smart individual that I > am I upgrade the 2.1.x box to 2.2.5 now -- well you guessed it...Now it > doesn't work either way. When running with the debug flag it appears to bomb > at the first rsh that is executed with a 'permission denied' at this point I > have checked everything that I can think of and am at a loss. rlogin will > work both way's but rsh and rcp AND rdist will not. (all die with the same > message 'Permission Denied'). Nothing in the messages log, NOTHING > AAAAAARRRRRRRGGGGGHHHH!!! > > God I Love Unix!!! ;) Are you trying to do this from the "root" account? If you have "root" remote login disabled, the system is not going to let you use an rsh command such as rdist with the root account. If you can't rlogin to the other system as root, this is probably the problem. Most FreeBSD systems have remote login as root disabled for obvious security reasons. I believe it is that way be default on most later versions of FreeBSD. Dave dsmith@n2.net From owner-freebsd-isp Tue Nov 4 13:45:53 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id NAA10462 for isp-outgoing; Tue, 4 Nov 1997 13:45:53 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from locust.net.ohio-state.edu (mail.net.ohio-state.edu [128.146.222.110]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id NAA10457 for ; Tue, 4 Nov 1997 13:45:50 -0800 (PST) (envelope-from maf@net.ohio-state.edu) Received: from bedbugs.net.ohio-state.edu (bedbugs [128.146.222.2]) by locust.net.ohio-state.edu (8.6.12/8.6.9) with ESMTP id QAA28828; Tue, 4 Nov 1997 16:45:47 -0500 Received: (from maf@localhost) by bedbugs.net.ohio-state.edu (8.6.12/8.6.9) id QAA29675; Tue, 4 Nov 1997 16:45:42 -0500 From: "Mark A. Fullmer" Message-Id: <199711042145.QAA29675@bedbugs.net.ohio-state.edu> Subject: Re: Fw: rdist Alternatives To: langfod@dihelix.com (David Langford) Date: Tue, 4 Nov 1997 16:45:42 -0500 (EST) Cc: jbrown@vafibre.com, freebsd-isp@FreeBSD.ORG In-Reply-To: <199711041932.JAA07365@caliban.dihelix.com> from "David Langford" at Nov 4, 97 09:32:15 am Reply-To: maf@net.ohio-state.edu X-Mailer: ELM [version 2.4 PL24 PGP1] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >If moving password files and such I prefer "scp" from the ssh distribution. >It does encryption over the wire and compression. > >I do wish it had the intelligence of rdist though.... Grab ftp://ucl.edu/pub/rdist/rdist-6.1.3.tar.gz, then in config/config.h change #undef _PATH_OLDRDIST #ifdef _PATH_RDISTD #undef _PATH_RDISTD #endif #define _PATH_RDISTD "/usr/local/bin/sdistd" #ifdef _PATH_REMSH #undef _PATH_REMSH #endif #define _PATH_REMSH "/usr/local/bin/ssh" make, install. Now sdist is rdist with ssh. -- mark From owner-freebsd-isp Tue Nov 4 16:29:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id QAA21850 for isp-outgoing; Tue, 4 Nov 1997 16:29:31 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from capecod.net (poca37.capecod.net [205.230.13.37]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA21819 for ; Tue, 4 Nov 1997 16:29:20 -0800 (PST) (envelope-from crtb@capecod.net) Received: from localhost (crtb@localhost) by capecod.net (8.8.5/8.8.5) with SMTP id TAA00617; Tue, 4 Nov 1997 19:00:38 -0500 (EST) Date: Tue, 4 Nov 1997 19:00:37 -0500 (EST) From: Chuck To: Eddie Fry cc: isp@FreeBSD.ORG Subject: Re: crons In-Reply-To: <199711032337.QAA11458@wicked.eaznet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Not sure how a shell script would do it, but in a perl script run at 1 min. after midnight, my @lastmonth = qw(Dec Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov); my $time = time; # Nail down this precise moment my $moment = $time % 86400; # Exactly what time is it after midnight? complain ('bitterly', $time) if $moment > 3*60; # Did cron err? my $day = $time - $moment - 60; # Talk about one minute before midnight my @date = (localtime ($day))[5,4,3]; # Get yr., mon., day (yesterday) my $monthname = $lastmonth[$date[1]]; # Get last month's name "complain" is fictitious but doesn't have to be. I think this will do it. Now how to do it streamlined :=) Chuck Bacon -- crtb@capecod.net ABHOR SECRECY -- DEFEND PRIVACY On Mon, 3 Nov 1997, Eddie Fry wrote: > I'm trying to set up a cron to compress my RADIUS log files every month. > I wanted to start the cron at 11:59 on the last day of the month. But, > I can't figure out if cron will recognize a date of 31 in a 30 day month > or if there is another way to start the cron. Hmmm... I could run it at > 1 minute after midnight the next day, but how do I get "date" to return > the name of the previous month? > > Thanks for any help! I'm kinda new at the shellscript stuff. > > Eddie > From owner-freebsd-isp Tue Nov 4 16:54:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id QAA23866 for isp-outgoing; Tue, 4 Nov 1997 16:54:49 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from freebie.lemis.com (gregl1.lnk.telstra.net [139.130.136.133]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA23853 for ; Tue, 4 Nov 1997 16:54:44 -0800 (PST) (envelope-from grog@freebie.lemis.com) Received: (from grog@localhost) by freebie.lemis.com (8.8.7/8.8.5) id LAA16387; Wed, 5 Nov 1997 11:24:30 +1030 (CST) Message-ID: <19971105112429.07806@lemis.com> Date: Wed, 5 Nov 1997 11:24:29 +1030 From: Greg Lehey To: Ronee Chadowitz Cc: freebsd-isp@FreeBSD.ORG Subject: Re: FYI References: <3.0.32.19971104105535.006b55d4@mail.marin.usweb.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.84e In-Reply-To: <3.0.32.19971104105535.006b55d4@mail.marin.usweb.com>; from Ronee Chadowitz on Tue, Nov 04, 1997 at 10:55:35AM -0800 Organisation: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-41-739-7062 WWW-Home-Page: http://www.lemis.com/~grog Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, Nov 04, 1997 at 10:55:35AM -0800, Ronee Chadowitz wrote: > I am currently working with USWeb and Microsoft on a Free Intranet Planning > Pack, and thought it might be helpful to some of you. > > The Pack includes answers to the most common questions about building and > designing an intranet as well as a free Front Page CD. It is only being > offered for a limited time. To register for it go to: > > http://www.usweb.com/ipk1/index.html Ronee, I'm sorry that you've had at least one nasty reply. It's not surprising, though: whether wittingly or unwittingly, you have stuck your head into the lion's den. FreeBSD is an implementation of the original operating system that defined the Internet. Microsoft has only started using the Internet, and appears bent on changing it to become a proprietary Microsoft product. Nobody here approves of this, and many of us are extremely angry about it. I can't apply for your Intranet Planning Pack, since I'm not located in the USA. But I suspect that there is nothing in there which is as good as the tools we use now. And they're free. Regards Greg Greg Lehey LEMIS grog@lemis.com PO Box 460 Tel: +61-8-8388-8286 Echunga SA 5153 Fax: +61-8-8388-8725 Australia -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.2i mQCNAzGpfDEAAAEEAMh6rH1c9+oKgazwGLitshrIFKFSGelccTK1fwnMw2O6SrK8 r0ttvRO42fZa8WXvlsSF1JIAqOJoaBP8HJNv6G/RA1NcKgqQKLc4RmTNnu6MoPe0 a25w25wyKOfzefJTS9dsQhWg2XJlyRo4YMtbSxDOZldq7kmga0Sj8+byVwABAAUR tBNDQyA8Y2NAbWFyY2FkZS5jb20+tAZDb250cm8= =FJvY -----END PGP PUBLIC KEY BLOCK----- From owner-freebsd-isp Tue Nov 4 17:25:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA25814 for isp-outgoing; Tue, 4 Nov 1997 17:25:19 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from chicagometro.usweb.com (email.virtualmarketing.com [207.7.29.253]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA25803 for ; Tue, 4 Nov 1997 17:25:14 -0800 (PST) (envelope-from marcin@v-m.com) Received: from v-m.com (207.7.29.107) by chicagometro.usweb.com with ESMTP (Eudora Internet Mail Server 1.2b2); Tue, 4 Nov 1997 19:25:29 -0700 Message-ID: <345FCB67.D880B3D4@v-m.com> Date: Tue, 04 Nov 1997 19:27:04 -0600 From: Marcin Pasek Reply-To: marcin@v-m.com X-Mailer: Mozilla 4.03 [en] (WinNT; I) MIME-Version: 1.0 To: freebsd Subject: Email-Server Recomendation Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Which Email server is the widely used in the FreeBSD ISP community? Marcin From owner-freebsd-isp Tue Nov 4 18:20:22 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id SAA29961 for isp-outgoing; Tue, 4 Nov 1997 18:20:22 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from cam.grad.kiev.ua ([195.5.25.54]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id SAA29954 for ; Tue, 4 Nov 1997 18:20:15 -0800 (PST) (envelope-from Ruslan@Shevchenko.kiev.ua) Received: from Shevchenko.kiev.ua (localhost [127.0.0.1]) by cam.grad.kiev.ua (8.8.7/8.8.5) with ESMTP id FAA07156; Wed, 5 Nov 1997 05:14:56 GMT Message-ID: <346000CA.E0BFD566@Shevchenko.kiev.ua> Date: Wed, 05 Nov 1997 05:14:50 +0000 From: Ruslan Shevchenko X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.5-RELEASE i386) MIME-Version: 1.0 To: marcin@v-m.com CC: freebsd-isp@freebsd.org Subject: Re: Email-Server Recomendation References: <345FCB67.D880B3D4@v-m.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Marcin Pasek wrote: > Which Email server is the widely used in the FreeBSD ISP community? > > Marcin Sendmail for external world, (iit live n base system) pop3 (in ports/mais) for local outcoming from outside word to clients. From owner-freebsd-isp Tue Nov 4 18:42:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id SAA01567 for isp-outgoing; Tue, 4 Nov 1997 18:42:17 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from freebie.lemis.com (gregl1.lnk.telstra.net [139.130.136.133]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id SAA01558 for ; Tue, 4 Nov 1997 18:42:13 -0800 (PST) (envelope-from grog@freebie.lemis.com) Received: (from grog@localhost) by freebie.lemis.com (8.8.7/8.8.5) id NAA18338; Wed, 5 Nov 1997 13:11:59 +1030 (CST) Message-ID: <19971105131158.56554@lemis.com> Date: Wed, 5 Nov 1997 13:11:58 +1030 From: Greg Lehey To: marcin@v-m.com Cc: freebsd Subject: Re: Email-Server Recomendation References: <345FCB67.D880B3D4@v-m.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.84e In-Reply-To: <345FCB67.D880B3D4@v-m.com>; from Marcin Pasek on Tue, Nov 04, 1997 at 07:27:04PM -0600 Organisation: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-41-739-7062 WWW-Home-Page: http://www.lemis.com/~grog Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, Nov 04, 1997 at 07:27:04PM -0600, Marcin Pasek wrote: > Which Email server is the widely used in the FreeBSD ISP community? I'm not sure what you mean by "Email Server". Mail uses MUAs and MTAs. I'm guessing you mean MTA. I'm pretty sure that by far the most widely used (though not necessarily most-loved :-) is sendmail. Greg From owner-freebsd-isp Tue Nov 4 19:20:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id TAA04352 for isp-outgoing; Tue, 4 Nov 1997 19:20:50 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from roguetrader.com (brandon@cold.org [206.81.134.103]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id TAA04339 for ; Tue, 4 Nov 1997 19:20:41 -0800 (PST) (envelope-from brandon@roguetrader.com) Received: from localhost (brandon@localhost) by roguetrader.com (8.8.5/8.8.5) with SMTP id UAA02353 for ; Tue, 4 Nov 1997 20:20:43 -0700 (MST) Date: Tue, 4 Nov 1997 20:20:43 -0700 (MST) From: Brandon Gillespie To: freebsd-isp@freebsd.org Subject: Security problem/oversight with user PPP! Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk This isn't really a bug or anything--as it is just a standard feature of how user PPP works. You can just telnet to port '3000' on any machine running user PPP and have full access to the ppp session--assuming they havn't setup ppp.secret. I really find this disconcerting, since the manual just 'suggests' setting up ppp.secret. Frankly, if there is no ppp.secret it should NOT bind to port 3000! I don't want to bother with passwords in my PPP config system, because frankly, I dont care--I'm the only one using it. But suddenly I find the new PPP is allowing anybody in the world to diddle with my ppp and its irritating! (that doesn't sound good :) Talk about a horrid default. At the very least it should bind to port 3000 on LOCALHOST, why does there need to be global access to it? -Brandon Gillespie From owner-freebsd-isp Tue Nov 4 19:30:30 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id TAA05036 for isp-outgoing; Tue, 4 Nov 1997 19:30:30 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from luke.cpl.net (luke.cpl.net [207.67.172.194]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id TAA05030 for ; Tue, 4 Nov 1997 19:30:25 -0800 (PST) (envelope-from shawn@luke.cpl.net) Received: from localhost (shawn@localhost) by luke.cpl.net (8.8.7/8.6.12) with SMTP id TAA05236; Tue, 4 Nov 1997 19:29:47 -0800 (PST) Date: Tue, 4 Nov 1997 19:29:47 -0800 (PST) From: Shawn Ramsey To: Marcin Pasek cc: freebsd Subject: Re: Email-Server Recomendation In-Reply-To: <345FCB67.D880B3D4@v-m.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Which Email server is the widely used in the FreeBSD ISP community? > > Marcin If you mean a pop3 server, we use Qualcomms popper. As for what is most widely used, im not sure. But FreeBSD.org does use the same. From owner-freebsd-isp Tue Nov 4 19:40:25 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id TAA05848 for isp-outgoing; Tue, 4 Nov 1997 19:40:25 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from packfish.gateway.net.hk (qmailr@packfish.gateway.net.hk [202.76.19.16]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id TAA05842 for ; Tue, 4 Nov 1997 19:40:18 -0800 (PST) (envelope-from bmf@gateway.net.hk) Received: (qmail 12780 invoked from network); 5 Nov 1997 03:40:01 -0000 Received: from packfish.gateway.net.hk (bmf@202.76.19.16) by packfish.gateway.net.hk with SMTP; 5 Nov 1997 03:40:01 -0000 Date: Wed, 5 Nov 1997 11:40:00 +0800 (HKT) From: Bo Fussing To: Marcin Pasek cc: freebsd Subject: Re: Email-Server Recomendation In-Reply-To: <345FCB67.D880B3D4@v-m.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Marcin, You will most likely find that most people are using sendmail since it comes as standard with FreeBSD. However unless you are willing to go through the steep learning curve of how to set sendmail up and learn to cope with potential security problems, I would seriously recommend qmail as a replacement, runs very well under FreeBSD. Have a look at http://www.qmail.org/ Bo On Tue, 4 Nov 1997, Marcin Pasek wrote: > Date: Tue, 04 Nov 1997 19:27:04 -0600 > From: Marcin Pasek > To: freebsd > Subject: Email-Server Recomendation > > Which Email server is the widely used in the FreeBSD ISP community? > > Marcin > > Gateway Internet - Hong Kong Tel : +852 2963 7359 MIME & PGP Mailing OK Fax : +852 2963 7353 From owner-freebsd-isp Tue Nov 4 20:20:16 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id UAA09118 for isp-outgoing; Tue, 4 Nov 1997 20:20:16 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from freight.msn.bc.ca (pc-21656.bc.rogers.wave.ca [24.112.126.7]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id UAA09010 for ; Tue, 4 Nov 1997 20:19:46 -0800 (PST) (envelope-from webmaster@nwss.sd40.bc.ca) Received: from [24.112.126.210] (pc-26156.bc.rogers.wave.ca [24.112.126.210]) by freight.msn.bc.ca (8.8.7/8.8.7) with ESMTP id UAA02271; Tue, 4 Nov 1997 20:21:24 -0800 (PST) (envelope-from webmaster@nwss.sd40.bc.ca) X-Sender: bpepa@msn.bc.ca Message-Id: In-Reply-To: References: <345FCB67.D880B3D4@v-m.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 4 Nov 1997 21:23:00 -0800 To: Shawn Ramsey From: Ben Pepa Subject: Re: Email-Server Recomendation Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk >> Which Email server is the widely used in the FreeBSD ISP community? >> >> Marcin > I use Sendmail, with IMAP v4 server with POP2/POP3 compatible servers. It works great for myself. I also installed poppassd, which allows users to change their passwords from within Eudora using the "Change Password" option. Ben From owner-freebsd-isp Tue Nov 4 21:13:17 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id VAA12304 for isp-outgoing; Tue, 4 Nov 1997 21:13:17 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from br01.acw-web.com (br01.acw-web.com [156.46.248.98]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id VAA12298 for ; Tue, 4 Nov 1997 21:13:14 -0800 (PST) (envelope-from info@bentreality.com) Received: from br02 (br02.acw-web.com [156.46.248.99]) by br01.acw-web.com (8.8.6/8.8.6) with SMTP id XAA13499; Tue, 4 Nov 1997 23:13:55 -0600 (CST) Message-Id: <3.0.32.19971104221127.0096bca0@acw-web.com> X-Sender: jwenger@acw-web.com X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Tue, 04 Nov 1997 22:11:28 -0600 To: Bo Fussing , Marcin Pasek From: Jack Wenger Subject: Re: Email-Server Recomendation Cc: freebsd Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I spent over a week trying to get qmail to work. Finally I gave up and installed sendmail. Took about 2 hours. At 11:40 AM 11/5/97 +0800, Bo Fussing wrote: >Marcin, > >You will most likely find that most people are using sendmail since it >comes as standard with FreeBSD. However unless you are willing to go >through the steep learning curve of how to set sendmail up and learn to >cope with potential security problems, I would seriously recommend >qmail as a replacement, runs very well under FreeBSD. > >Have a look at http://www.qmail.org/ > >Bo > >On Tue, 4 Nov 1997, Marcin Pasek wrote: > >> Date: Tue, 04 Nov 1997 19:27:04 -0600 >> From: Marcin Pasek >> To: freebsd >> Subject: Email-Server Recomendation >> >> Which Email server is the widely used in the FreeBSD ISP community? >> >> Marcin >> >> > >Gateway Internet - Hong Kong > >Tel : +852 2963 7359 MIME & PGP Mailing OK >Fax : +852 2963 7353 > > > ------------- Excellence in Web Design -------------- Bent Reality Graphics Jack Wenger, Owner info@bentreality.com http://www.bentreality.com 608-233-8571 or 1-888-701-1026 From owner-freebsd-isp Tue Nov 4 22:46:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id WAA17660 for isp-outgoing; Tue, 4 Nov 1997 22:46:08 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from atlas.iexpress.net.au (root@atlas.iexpress.net.au [203.61.175.33]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id WAA17654 for ; Tue, 4 Nov 1997 22:46:02 -0800 (PST) (envelope-from mikey@iexpress.net.au) Received: from support1.iexpress.net.au (support1.iexpress.net.au [203.61.175.54]) by atlas.iexpress.net.au (8.8.5/8.8.5) with SMTP id OAA06488; Wed, 5 Nov 1997 14:45:32 +0800 Received: by support1.iexpress.net.au with Microsoft Mail id <01BCE9F9.E9902DC0@support1.iexpress.net.au>; Wed, 5 Nov 1997 14:48:43 +0800 Message-ID: <01BCE9F9.E9902DC0@support1.iexpress.net.au> From: Michael Slater To: "'Jack Wenger'" , Bo Fussing , Marcin Pasek Cc: freebsd Subject: RE: Email-Server Recomendation Date: Wed, 5 Nov 1997 14:44:05 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk -----Original Message----- From: Jack Wenger [SMTP:info@bentreality.com] Sent: Wednesday, November 05, 1997 2:39 PM To: Bo Fussing; Marcin Pasek Cc: freebsd Subject: Re: Email-Server Recomendation I spent over a week trying to get qmail to work. Finally I gave up and installed sendmail. Took about 2 hours. At 11:40 AM 11/5/97 +0800, Bo Fussing wrote: >Marcin, > >You will most likely find that most people are using sendmail since it >comes as standard with FreeBSD. However unless you are willing to go Steep learning curve ? It couldnt be simpler >through the steep learning curve of how to set sendmail up and learn to >cope with potential security problems, I would seriously recommend >qmail as a replacement, runs very well under FreeBSD. > >Have a look at http://www.qmail.org/ > >Bo > >On Tue, 4 Nov 1997, Marcin Pasek wrote: > >> Date: Tue, 04 Nov 1997 19:27:04 -0600 >> From: Marcin Pasek >> To: freebsd >> Subject: Email-Server Recomendation >> >> Which Email server is the widely used in the FreeBSD ISP community? >> >> Marcin >> >> > >Gateway Internet - Hong Kong > >Tel : +852 2963 7359 MIME & PGP Mailing OK >Fax : +852 2963 7353 > > > ------------- Excellence in Web Design -------------- Bent Reality Graphics Jack Wenger, Owner info@bentreality.com http://www.bentreality.com 608-233-8571 or 1-888-701-1026 From owner-freebsd-isp Tue Nov 4 23:28:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id XAA19747 for isp-outgoing; Tue, 4 Nov 1997 23:28:47 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from tech.kgtu.runnet.ru (tech.kgtu.runnet.ru [195.208.226.108]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id XAA19715 for ; Tue, 4 Nov 1997 23:28:36 -0800 (PST) (envelope-from shin@tech.kgtu.runnet.ru) Received: from tech.kgtu.runnet.ru (localhost.tech.kgtu.runnet.ru [127.0.0.1]) by tech.kgtu.runnet.ru (8.8.5/8.8.5) with ESMTP id OAA01126; Wed, 5 Nov 1997 14:28:22 +0700 (KRS) Message-ID: <34602015.A0356781@tech.kgtu.runnet.ru> Date: Wed, 05 Nov 1997 14:28:21 +0700 From: Boris Shinkarev Organization: KGTU X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.2-RELEASE i386) MIME-Version: 1.0 To: marcin@polaccess.com CC: "freebsd-isp@freebsd.org" Subject: Re: Adding Ethernet Card References: <345FE9F4.660B@polaccess.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Marcin Pasek wrote: > > I don't know how it happend but after installing the FreeBSD my ethenet > card was not on the list of thing probed on Boot 'UP...How do I add a > ethernet card it's a NE2000 compatible....Any ideas....Can't find this > in the manual > > Marcin Hi ! Just add ed0, it's compatible with NE2000 -- Борис Шинкарев, Boris Shinkarev, independet consultant for internet/intranet networks, From owner-freebsd-isp Wed Nov 5 01:04:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id BAA26298 for isp-outgoing; Wed, 5 Nov 1997 01:04:50 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from npc.haplink.com.cn ([202.96.192.53]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id BAA26285 for ; Wed, 5 Nov 1997 01:04:41 -0800 (PST) (envelope-from xiyuan@npc.haplink.com.cn) Received: (from xiyuan@localhost) by npc.haplink.com.cn (8.8.4/8.6.9) id RAA08810 for freebsd-isp@freebsd.org; Wed, 5 Nov 1997 17:08:26 GMT Date: Wed, 5 Nov 1997 17:08:26 GMT From: xiyuan qian Message-Id: <199711051708.RAA08810@npc.haplink.com.cn> To: freebsd-isp@freebsd.org Subject: teles ISDN internal card Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hi, can Freebsd support teles's internal ISDN card? Dial out to get the dynamic ppp connection. --xiyuan From owner-freebsd-isp Wed Nov 5 01:58:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id BAA29189 for isp-outgoing; Wed, 5 Nov 1997 01:58:01 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from cam.grad.kiev.ua ([195.5.25.54]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id BAA29170; Wed, 5 Nov 1997 01:57:48 -0800 (PST) (envelope-from rssh@cam.grad.kiev.ua) Received: from localhost (rssh@localhost) by cam.grad.kiev.ua (8.8.7/8.8.5) with SMTP id MAA00506; Wed, 5 Nov 1997 12:53:20 GMT Date: Wed, 5 Nov 1997 12:53:19 +0000 (GMT) From: Ruslan Shevchenko To: freebsd-questions@freebsd.org cc: freebsd-isp@freebsd.org Subject: Help with Natd, pls. Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have: ISP (user-level ppp) 10.0.0.50 = ep0 FreeBSD tun0 ---------> / \ | | Local net I can't setup natd, (during this nigth). I want, that mashines in 10.0.0. -- was be abble connect with news-server outside my, as i think, natd must change 10.0.0. address to address of my mashine, during request from client to outside mashine, and do back substitute, as proxy. According to documentation I included all options in kernel, in /etc/rc.firewall: /sbin/ipfw -f flash /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 /sbin/ipfw add divert 6668 all from any to any via ep0 /sbin/ipfw add 6500 pass all from any to any. in /etc/rc.local: /usr/sbin/natd -n ep0 what I doing wrong ? From owner-freebsd-isp Wed Nov 5 03:10:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id DAA03125 for isp-outgoing; Wed, 5 Nov 1997 03:10:05 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from proxy.unpar.ac.id (proxy.unpar.ac.id [167.205.206.55]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id DAA03086 for ; Wed, 5 Nov 1997 03:09:54 -0800 (PST) (envelope-from gatut@student.unpar.ac.id) Received: from student.unpar.ac.id (student.unpar.ac.id [167.205.206.58]) by proxy.unpar.ac.id (8.8.5/8.8.5) with ESMTP id RAA17380; Tue, 5 Nov 1996 17:53:18 +0700 (JAVT) Received: from localhost (gatut@localhost) by student.unpar.ac.id (8.8.5/8.8.5.D) with SMTP id SAA09296; Wed, 5 Nov 1997 18:08:56 +0700 (JAVT) Date: Wed, 5 Nov 1997 18:08:56 +0700 (JAVT) From: V Gatut Harijoso To: Ruslan Shevchenko cc: freebsd-isp@FreeBSD.ORG Subject: Re: Help with Natd, pls. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 5 Nov 1997, Ruslan Shevchenko wrote: > According to documentation I included all options in kernel, > > in /etc/rc.firewall: > /sbin/ipfw -f flash > /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 > /sbin/ipfw add divert 6668 all from any to any via ep0 > /sbin/ipfw add 6500 pass all from any to any. > in /etc/rc.local: > /usr/sbin/natd -n ep0 > what I doing wrong ? > I dont know whats wrong. Try to do these steps to detect. 1. Make sure, you have this line in /etc/services natd 6668/divert # Network Address Translation socket 2. Check your server routes (netstat -rn). 3. ipfw flush ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 4. run your natd natd -port 6668 -interface ep0 do 'netstat -a' and see is there any natd port open (listen) ? 5. ipfw add 1001 divert 6668 all from any to any via ep0 6. ipfw add 6500 pass all from any to any 7. Try to make connection. Make sure your client has correct gateway (server run natd). 8. Do 'ipfw show' and see what happen. How many packets come in and out, in which rule. Now, tell us the results for each step. From owner-freebsd-isp Wed Nov 5 04:01:14 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id EAA05744 for isp-outgoing; Wed, 5 Nov 1997 04:01:14 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from grunt.vl.net.ua (daemon@grunt.vl.net.ua [193.124.76.209]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id DAA05567 for ; Wed, 5 Nov 1997 03:59:40 -0800 (PST) (envelope-from news@grunt.vl.net.ua) Received: from news by grunt.vl.net.ua with local (Exim 1.73 #1) id 0xT4Bd-000289-00; Wed, 5 Nov 1997 14:03:53 +0200 To: freebsd-isp@freebsd.org Subject: Re: Email-Server Recomendation Date: 5 Nov 1997 14:03:51 +0200 Message-ID: <63pnb7$7vs$1@grunt.vl.net.ua> X-Newsreader: TIN [UNIX 1.3 unoff BETA 970930; i386 FreeBSD 2.2-970911-RELENG] X-Via: News-To-Mail v1.0 From: Vladimir Litovka Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello! Marcin Pasek wrote: > Which Email server is the widely used in the FreeBSD ISP community? Try exim (http://www.exim.org/) - quite useful MTA ... -- Vladimir Litovka , hostmaster of vl.net.ua ======== Don't trouble trouble until trouble troubles you. From owner-freebsd-isp Wed Nov 5 04:29:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id EAA06904 for isp-outgoing; Wed, 5 Nov 1997 04:29:59 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id EAA06898 for ; Wed, 5 Nov 1997 04:29:53 -0800 (PST) (envelope-from shovey@buffnet.net) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id HAA17932 for ; Wed, 5 Nov 1997 07:29:08 -0500 (EST) Date: Wed, 5 Nov 1997 07:30:15 -0500 (EST) From: Steve Hovey To: freebsd-isp@freebsd.org Subject: Large email install Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Any suggestions on a good topology/plan for email service to 20k users? From owner-freebsd-isp Wed Nov 5 05:15:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id FAA09112 for isp-outgoing; Wed, 5 Nov 1997 05:15:32 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from search.gz.gnet.cn ([202.96.152.196]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id FAA09107 for ; Wed, 5 Nov 1997 05:15:26 -0800 (PST) (envelope-from ding@nease.net) From: ding@nease.net Received: from ding ([202.96.184.89]) by search.gz.gnet.cn (8.8.5/8.8.5) with SMTP id VAA27440 for ; Wed, 5 Nov 1997 21:12:27 GMT Message-Id: <3.0.32.19971105211718.00da428c@nease.net> X-Sender: ding@nease.net X-Mailer: Windows Eudora Pro Version 3.0 (32) Date: Wed, 05 Nov 1997 21:17:23 +0800 To: freebsd-isp@freebsd.org Subject: web based email CGI program! Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk hi: I plan to set up a web based email service, But we didn't know where can get this kind program.? Thanks a lot! From owner-freebsd-isp Wed Nov 5 08:55:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA21275 for isp-outgoing; Wed, 5 Nov 1997 08:55:54 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from mole (mole.slip.net [207.171.193.16]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id IAA21254 for ; Wed, 5 Nov 1997 08:55:41 -0800 (PST) (envelope-from dnelson@slip.net) Received: from slip-3.slip.net [207.171.193.17] (dnelson) by mole with smtp (Exim 1.73 #2) id 0xT8jr-0000Fw-00; Wed, 5 Nov 1997 08:55:31 -0800 Date: Wed, 5 Nov 1997 08:55:29 -0800 (PST) From: Dru Nelson X-Sender: dnelson@slip-3 To: Brandon Gillespie cc: freebsd-isp@freebsd.org Subject: Re: Security problem/oversight with user PPP! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > At the very least it should bind to port 3000 on LOCALHOST, why does there > need to be global access to it? > I agreee, it shouldn't be on by default. It is good, though, when you want to work on the PPP client on the far end when getting things working. Dru From owner-freebsd-isp Wed Nov 5 10:16:27 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id KAA26392 for isp-outgoing; Wed, 5 Nov 1997 10:16:27 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from netrail.net (netrail.net [205.215.10.3]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id KAA26385 for ; Wed, 5 Nov 1997 10:16:23 -0800 (PST) (envelope-from jonz@netrail.net) Received: from localhost (jonz@localhost) by netrail.net (8.8.6/8.8.6) with SMTP id OAA05880; Wed, 5 Nov 1997 14:14:11 GMT Date: Wed, 5 Nov 1997 14:14:11 +0000 (GMT) From: "Jonathan A. Zdziarski" To: Eddie Fry cc: isp@FreeBSD.ORG Subject: Re: crons In-Reply-To: <199711032337.QAA11458@wicked.eaznet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Best bet would be to run it the 1st of the month, like I do. ------------------------------------------------------------------------- Jonathan A. Zdziarski NetRail Incorporated Systems Engineering Manager 230 Peachtree St. Suite 500 jonz@netrail.net Atlanta, GA 30303 http://www.netrail.net (888) - NETRAIL ------------------------------------------------------------------------- On Mon, 3 Nov 1997, Eddie Fry wrote: :I'm trying to set up a cron to compress my RADIUS log files every month. I wanted to start the cron at 11:59 on the last day of the month. But, I can't figure out if cron will recognize a date of 31 in a 30 day month or if there is another way to start the cron. Hmmm... I could run it at 1 minute after midnight the next day, but how do I get "date" to return the name of the previous month? : :Thanks for any help! I'm kinda new at the shellscript stuff. : :Eddie : From owner-freebsd-isp Wed Nov 5 10:56:08 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id KAA28836 for isp-outgoing; Wed, 5 Nov 1997 10:56:08 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from dumbwinter.logic.it (m4.logic.it [195.120.151.20]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id KAA28825 for ; Wed, 5 Nov 1997 10:56:03 -0800 (PST) (envelope-from molter@logic.it) Received: (qmail 1296 invoked by uid 1000); 5 Nov 1997 18:55:18 -0000 Date: Wed, 5 Nov 1997 19:55:17 +0100 (MET) From: Marco Molteni To: Jack Wenger cc: Bo Fussing , Marcin Pasek , freebsd Subject: Re: Email-Server Recomendation In-Reply-To: <3.0.32.19971104221127.0096bca0@acw-web.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 4 Nov 1997, Jack Wenger wrote: > I spent over a week trying to get qmail to work. Finally I gave up > and installed sendmail. Took about 2 hours. Yes, sure. May I suggest you to subscribe to the CERT security advisory, then? ;-) Marco Molteni Computer Science student at the Universita' degli studi di Milano, Italy. "Whuffo you jump out of them airplanes?" From owner-freebsd-isp Wed Nov 5 11:57:09 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA02962 for isp-outgoing; Wed, 5 Nov 1997 11:57:09 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from skyserv.med.osd.mil (skyserv.med.osd.mil [199.209.8.144]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id LAA02957 for ; Wed, 5 Nov 1997 11:57:07 -0800 (PST) (envelope-from rpotts@med.osd.mil) Received: from (ae1970.med.osd.mil [161.14.168.22]) by skyserv.med.osd.mil (8.6.8.1/SCA-6.6) with SMTP id OAA22595 for ; Wed, 5 Nov 1997 14:57:05 -0500 From: "Ross Potts" Message-Id: <9711051457.ZM6951@unknown.zmail.host> Date: Wed, 5 Nov 1997 14:57:03 -0500 X-Mailer: ZM-Win (3.2.1 11Sep94) To: freebsd-isp@FreeBSD.ORG Subject: Web Hosting Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I figured this might be a good place to start. What is involved in Web-hosting, at a minimum, equipment notwithstanding. I figured to provide space, consulting and 1 pop address to start out small. I am planning on using FreeBSD for the host, Apache as the Web server, basically everything included in the distribution. This is not to start out as a strict ISP, just Web-presence. -- UNIX Rules!!! Ross Potts Internet : Ross.Potts@med.osd.mil EDS-D/SIDDOMS Phone : (703) 824-7601 Skyline Two, Suite 1200 Beeper : 5203 Leesburg Pike, Falls Church, VA 22041 From owner-freebsd-isp Wed Nov 5 12:33:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA05672 for isp-outgoing; Wed, 5 Nov 1997 12:33:19 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from intra.vafibre.com ([205.139.223.3]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id MAA05667 for ; Wed, 5 Nov 1997 12:33:15 -0800 (PST) (envelope-from jbrown@vafibre.com) Received: from is01 by intra.vafibre.com (Unoverica 2.11a) id 00001118; Wed, 5 Nov 1997 15:34:07 -0500 From: "John Brown" To: Subject: SSH Rules Date: Wed, 5 Nov 1997 15:29:03 -0500 Message-ID: <01bcea29$754e5d80$65df8bcd@is01.vafibre.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.71.1712.3 X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3 Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk After two weeks of hair pulling and nail biting I installed ssh/scp and within 2 hours (had to actually read the man page to figure out those RSA keys) I had it transferring my files. Awesome!!! Thanks to all for your help and recommendations... John Brown -----Original Message----- From: John Brown To: freebsd-isp@FreeBSD.ORG Date: Tuesday, November 04, 1997 2:24 PM Subject: Fw: rdist Alternatives >I have been working for a couple of weeks now to get rdist to work and have >been very unsuccessful. > >So now on to the next option. I need to duplicate my password db to my >secondary radius server. Are there other utilities that I can use to make >this happen? > >rdist info -- In case someone is interested. I started with a 2.1.x box and >was able to get it to transfer files from this machine to a 2.2.2 box but >could never get it going the other way. So being the smart individual that I >am I upgrade the 2.1.x box to 2.2.5 now -- well you guessed it...Now it >doesn't work either way. When running with the debug flag it appears to bomb >at the first rsh that is executed with a 'permission denied' at this point I >have checked everything that I can think of and am at a loss. rlogin will >work both way's but rsh and rcp AND rdist will not. (all die with the same >message 'Permission Denied'). Nothing in the messages log, NOTHING >AAAAAARRRRRRRGGGGGHHHH!!! > >God I Love Unix!!! ;) > > > > > From owner-freebsd-isp Wed Nov 5 13:08:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id NAA08335 for isp-outgoing; Wed, 5 Nov 1997 13:08:04 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from toon.homenet.ml.org (homenet.ml.org [207.210.90.201]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id NAA08280 for ; Wed, 5 Nov 1997 13:07:56 -0800 (PST) (envelope-from toonces@homenet.ml.org) From: toonces@homenet.ml.org Received: from toon.homenet.ml.org (toonces@toon.homenet.ml.org [10.0.0.1]) by toon.homenet.ml.org (8.8.5/8.8.5) with SMTP id QAA04707; Wed, 5 Nov 1997 16:11:21 -0500 (EST) Date: Wed, 5 Nov 1997 16:11:18 -0500 (EST) To: Brandon Gillespie cc: freebsd-isp@FreeBSD.ORG Subject: Re: Security problem/oversight with user PPP! In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 4 Nov 1997, Brandon Gillespie wrote: > I don't want to bother with passwords in my PPP config system, because > frankly, I dont care--I'm the only one using it. But suddenly I find the > new PPP is allowing anybody in the world to diddle with my ppp and its > irritating! (that doesn't sound good :) > > Talk about a horrid default. > > At the very least it should bind to port 3000 on LOCALHOST, why does there > need to be global access to it? There is a way to block it, First make sure your kernel is built with firewall options with a line like, options IPFIREWALL #firewall options IPDIVERT #divert sockets (i use for aliasing you may not need) then in your /etc/rc.conf turn on your firewall settings with this line firewall="open" # Set to firewall type or NO for none. and then in the /etc/rc.firewall file i added these lines just before the any from any policy but after the allowed localhost. . /sbin/ipfw add 99 pass all from 127.0.0.1 to 127.0.0.1 if [ "${firewall_type}" = "open" ]; then /sbin/ipfw add 100 deny tcp from any to 3000 setup /sbin/ipfw add 65000 pass all from any to any . .and this has worked great for me, simply blocking a connection in, and notice you can still connect to 3000 via localhost. Of course you will have to tune it to your liking, I have two static ips and an aliased interface so I have a few additions to protect me locally and from the outside world. . hopefully this will give you a few ideas, 'man ipfw' will give you the rule lists to block just via an interface, or just spcific ip's etc. . etc. . all depends on your situation. kell ---------------------------------- Type Bits/KeyID Date User ID pub 1024/2800AD1D 1997/10/15 toon Key fingerprint = 85 7D 9D 1D 89 57 3D CA E2 19 8E 84 5A BD C3 90 finger toonces@homenet.ml.org for public key. From owner-freebsd-isp Wed Nov 5 13:12:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id NAA08670 for isp-outgoing; Wed, 5 Nov 1997 13:12:46 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id NAA08659 for ; Wed, 5 Nov 1997 13:12:42 -0800 (PST) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id IAA00896; Thu, 6 Nov 1997 08:22:51 +1100 (EST) Date: Thu, 6 Nov 1997 08:22:50 +1100 (EST) From: "Daniel O'Callaghan" To: Ross Potts cc: freebsd-isp@FreeBSD.ORG Subject: Re: Web Hosting In-Reply-To: <9711051457.ZM6951@unknown.zmail.host> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 5 Nov 1997, Ross Potts wrote: > I figured this might be a good place to start. What is involved in Web-hosting, > at a minimum, equipment notwithstanding. I figured to provide space, consulting > and 1 pop address to start out small. I am planning on using FreeBSD for the > host, Apache as the Web server, basically everything included in the > distribution. This is not to start out as a strict ISP, just Web-presence. One thing you should do is install full sources and rebuild ftpd with -DBUILTIN_LS (or similar) and put all of your customers in a login class which has the ftpchroot boolean, so they can't wander around your machine. Danny From owner-freebsd-isp Wed Nov 5 14:59:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id OAA16134 for isp-outgoing; Wed, 5 Nov 1997 14:59:54 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from chain.freebsd.os.org.za (9jW8d+nrNIdVz+av+pVstVcUCXoPf3RX@chain.iafrica.com [196.7.74.174]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id OAA16102 for ; Wed, 5 Nov 1997 14:59:02 -0800 (PST) (envelope-from khetan@chain.iafrica.com) Received: from localhost (khetan@localhost) by chain.freebsd.os.org.za (8.8.7/8.8.7) with SMTP id AAA06540 for ; Thu, 6 Nov 1997 00:58:44 +0200 (SAT) Date: Thu, 6 Nov 1997 00:58:38 +0200 (SAT) From: Khetan Gajjar X-Sender: khetan@chain Reply-To: Khetan Gajjar To: isp@freebsd.org Subject: Web front end for mail Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk -----BEGIN PGP SIGNED MESSAGE----- Hi. I'm looking for a good (preferably free) front end to mail stored on an e-mail server, using HTML. Has anybody out here implmeneted something ? I'd like to get things pretty secure (and convenient!) by having people read their mail over https, as opposed to plaintext passwords with POP3/IMAP. I've tried ssh-forwarding, but at $99 per Windows client, ssh is not a viable option. I looked at emumail, but it was just too darn slow (executing perl5 every time it wanted to do anything). I also had a look at www-mail (from Matt's CGI script archive), but that is a bit primitive for my needs. I don't really mind how many banners or ads it displays, but I need something relatively quickly. Emumail looked promising. TIA. - --- Khetan Gajjar - whois kg1779 | khetan@iafrica.com or khetan@os.org.za http://chain.iafrica.com/~khetan | PGPKey : finger khetan@chain.iafrica.com UUNET Internet Africa Support | FreeBSD enthusiast-www2.za.freebsd.org Unix is user friendly; it's just selective about who it calls a friend! -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBNGD6I10slw2AMOJdAQHwowQAl3akIUFI4f3UD3CzShZzGvjewTzoG0VL qwnCNLe44zp7ICqlI1HLcwfIBTiBlreag+wNfKJldIzNFElwfOHwieMf2pHNQK4X 2K3laCn98DGCsG3ExVz7Ybu6ur78K8YBwB4X/DdXC7BWw4mQIbxK0jgkdzxUC+0T o1KGzB+ZS7I= =zQi8 -----END PGP SIGNATURE----- From owner-freebsd-isp Wed Nov 5 16:24:47 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id QAA22005 for isp-outgoing; Wed, 5 Nov 1997 16:24:47 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from awfulhak.demon.co.uk (awfulhak.demon.co.uk [158.152.17.1]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id QAA21982; Wed, 5 Nov 1997 16:24:34 -0800 (PST) (envelope-from brian@awfulhak.org) Received: from gate.lan.awfulhak.org (localhost [127.0.0.1]) by awfulhak.demon.co.uk (8.8.7/8.8.5) with ESMTP id XAA03948; Wed, 5 Nov 1997 23:58:47 GMT Message-Id: <199711052358.XAA03948@awfulhak.demon.co.uk> X-Mailer: exmh version 2.0zeta 7/24/97 To: Ruslan Shevchenko cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: Help with Natd, pls. In-reply-to: Your message of "Wed, 05 Nov 1997 12:53:19 GMT." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 05 Nov 1997 23:58:47 +0000 From: Brian Somers Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > I have: > ISP (user-level ppp) > 10.0.0.50 = ep0 FreeBSD tun0 ---------> > / \ > | > | > Local net > > I can't setup natd, (during this nigth). > > I want, that mashines in 10.0.0. -- was be abble > connect with news-server outside my, > as i think, natd must change 10.0.0. address to address of my mashine, > during request from client to outside mashine, and do back substitute, > as proxy. > > > According to documentation I included all options in kernel, > > in /etc/rc.firewall: > /sbin/ipfw -f flash > /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 > /sbin/ipfw add divert 6668 all from any to any via ep0 > /sbin/ipfw add 6500 pass all from any to any. > > > in /etc/rc.local: > /usr/sbin/natd -n ep0 > > > what I doing wrong ? > You're masquerading on the wrong interface. You should remove natd altogether (along with your divert rules) and use the -alias switch to ppp. -- Brian , , Don't _EVER_ lose your sense of humour.... From owner-freebsd-isp Wed Nov 5 17:12:05 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA25153 for isp-outgoing; Wed, 5 Nov 1997 17:12:05 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA25136 for ; Wed, 5 Nov 1997 17:12:01 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id RAA12058; Wed, 5 Nov 1997 17:11:25 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma012054; Wed Nov 5 17:11:00 1997 Received: (from archie@localhost) by bubba.whistle.com (8.8.5/8.6.12) id RAA18423; Wed, 5 Nov 1997 17:10:59 -0800 (PST) From: Archie Cobbs Message-Id: <199711060110.RAA18423@bubba.whistle.com> Subject: Re: Security problem/oversight with user PPP! In-Reply-To: from Dru Nelson at "Nov 5, 97 08:55:29 am" To: dnelson@slip.net (Dru Nelson) Date: Wed, 5 Nov 1997 17:10:59 -0800 (PST) Cc: brandon@roguetrader.com, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dru Nelson writes: > > > At the very least it should bind to port 3000 on LOCALHOST, why does there > > need to be global access to it? > > I agreee, it shouldn't be on by default. It is good, though, when > you want to work on the PPP client on the far end when getting > things working. Doesn't completely fill the hole... :-) I can still take a UNIX machine on the same network as yours, disable my loopback interface, and set a route to 127.0.0.1 via your machine, and then telnet to it. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com From owner-freebsd-isp Wed Nov 5 18:30:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id SAA01375 for isp-outgoing; Wed, 5 Nov 1997 18:30:50 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from host.berk.com (berk.com [207.16.104.250]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id SAA01367 for ; Wed, 5 Nov 1997 18:30:42 -0800 (PST) (envelope-from rip@berk.com) Received: from [207.16.107.33] by host.berk.com; (5.65v3.0/1.1.8.2/16Aug95-0520PM) id AA09035; Wed, 5 Nov 1997 21:29:07 -0500 Date: Wed, 5 Nov 1997 21:29:07 -0500 Message-Id: <9711060229.AA09035@host.berk.com> X-Sender: ber00021@berk.com X-Mailer: Windows Eudora Pro Version 2.1.2 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: ding@nease.net From: Jim Subject: Re: web based email CGI program! Cc: freebsd-isp@freebsd.org Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk yessum... perl cgi script that has been tested on our freebsd2.2.1 server with apache1.2.4 Fairly easy to setup... have fun! http://www.endymion.com/portfolio/software/scripts/mailman.htm -Jim Palmer rip@berk.com jp@overset.com At 09:17 PM 11/5/97 +0800, you wrote: >hi: > >I plan to set up a web based email service, >But we didn't know where can get this kind program.? > >Thanks a lot! From owner-freebsd-isp Wed Nov 5 18:45:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id SAA02325 for isp-outgoing; Wed, 5 Nov 1997 18:45:04 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from uranus.intrastar.net (root@uranus.intrastar.net [206.136.25.19]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id SAA02297 for ; Wed, 5 Nov 1997 18:44:52 -0800 (PST) (envelope-from jsuter@uranus.intrastar.net) Received: from fixed.intrastar.net (j4k3@vax4.intrastar.net [206.136.25.253]) by uranus.intrastar.net (8.8.5/8.8.5) with SMTP id VAA09904; Wed, 5 Nov 1997 21:46:32 GMT Message-Id: <3.0.3.32.19971105203809.006b0cd0@uranus.intrastar.net> X-Sender: jsuter@uranus.intrastar.net X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.3 (32) Date: Wed, 05 Nov 1997 20:38:09 -0600 To: Jack Wenger , Bo Fussing , Marcin Pasek From: "Jacob H. Suter" Subject: Re: Email-Server Recomendation Cc: freebsd In-Reply-To: <3.0.32.19971104221127.0096bca0@acw-web.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 10:11 PM 11/4/97 -0600, Jack Wenger wrote: >I spent over a week trying to get qmail to work. Finally I gave up and >installed sendmail. Took about 2 hours. I'll second that. The software was also written in a way that the common 'newbie' admin can get it started and working... I've just learned more as I have needed to. There is enough GOOD support out on the net for Sendmail (and enough Guru's on irc) to make it a usable product till you can 'get your own clue' JS From owner-freebsd-isp Thu Nov 6 02:00:50 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id CAA04698 for isp-outgoing; Thu, 6 Nov 1997 02:00:50 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from cam.grad.kiev.ua ([195.5.25.54]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id CAA04691; Thu, 6 Nov 1997 02:00:44 -0800 (PST) (envelope-from Ruslan@Shevchenko.kiev.ua) Received: from Shevchenko.kiev.ua (localhost [127.0.0.1]) by cam.grad.kiev.ua (8.8.7/8.8.5) with ESMTP id MAA00340; Thu, 6 Nov 1997 12:56:04 GMT Message-ID: <3461BE63.D1047E3C@Shevchenko.kiev.ua> Date: Thu, 06 Nov 1997 12:56:04 +0000 From: Ruslan Shevchenko X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.5-STABLE i386) MIME-Version: 1.0 To: Brian Somers CC: freebsd-questions@FreeBSD.org, freebsd-isp@FreeBSD.org Subject: Re: Help with Natd, pls. References: <199711052358.XAA03948@awfulhak.demon.co.uk> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Brian Somers wrote: > ? > ? I have: > ? ISP (user-level ppp) > ? 10.0.0.50 = ep0 FreeBSD tun0 ---------? > ? / \ > ? | > ? | > ? Local net > ? > ? I can't setup natd, (during this nigth). > ? > ? I want, that mashines in 10.0.0. -- was be abble > ? connect with news-server outside my, > ? as i think, natd must change 10.0.0. address to address of my mashine, > ? during request from client to outside mashine, and do back substitute, > ? as proxy. > ? > ? > ? According to documentation I included all options in kernel, > ? > ? in /etc/rc.firewall: > ? /sbin/ipfw -f flash > ? /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 > ? /sbin/ipfw add divert 6668 all from any to any via ep0 > ? /sbin/ipfw add 6500 pass all from any to any. > ? > ? > ? in /etc/rc.local: > ? /usr/sbin/natd -n ep0 > ? > ? > ? what I doing wrong ? > ? > > You're masquerading on the wrong interface. You should remove natd > altogether (along with your divert rules) and use the -alias switch > to ppp. Yes. It's works. (But quite interesting, why Natd is not work, when I changed ep0 to tun0 in it ?) Great thanks. > -- > Brian ?brian@Awfulhak.org?, ?brian@FreeBSD.org?, ?bri@OpenBSD.org? > ?http://www.Awfulhak.org? > Don't _EVER_ lose your sense of humour.... From owner-freebsd-isp Thu Nov 6 07:57:33 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id HAA23891 for isp-outgoing; Thu, 6 Nov 1997 07:57:33 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from chicagometro.usweb.com (email.virtualmarketing.com [207.7.29.253]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id HAA23886 for ; Thu, 6 Nov 1997 07:57:30 -0800 (PST) (envelope-from marcin@v-m.com) Received: from v-m.com (207.7.29.107) by chicagometro.usweb.com with ESMTP (Eudora Internet Mail Server 1.2b2); Thu, 6 Nov 1997 09:58:05 -0700 Message-ID: <3461E93B.E453B02B@v-m.com> Date: Thu, 06 Nov 1997 09:58:51 -0600 From: Marcin Pasek Reply-To: marcin@v-m.com X-Mailer: Mozilla 4.03 [en] (WinNT; I) MIME-Version: 1.0 To: freebsd Subject: Modem Recomendation... Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk I am looking to buy extra modems what models do you guys use and recomend for use in the ISP infostructure. 56.k Flex ---- 56K 2X ------ Thanks Marcin From owner-freebsd-isp Thu Nov 6 08:40:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA26260 for isp-outgoing; Thu, 6 Nov 1997 08:40:40 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from bert.club-web.com (bert.club-web.com [207.176.196.11]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA26249 for ; Thu, 6 Nov 1997 08:40:36 -0800 (PST) (envelope-from mark@club-web.com) Received: from club-web.com (ernie.club-web.com [207.176.196.12]) by bert.club-web.com (8.8.8/8.8.6) with ESMTP id LAA01668; Thu, 6 Nov 1997 11:43:23 -0500 (EST) Message-ID: <3461F3E8.8E63DB2B@club-web.com> Date: Thu, 06 Nov 1997 11:44:24 -0500 From: Mark Segal Organization: Club-Web Inc. X-Mailer: Mozilla 4.03b8 [en] (X11; I; FreeBSD 2.2.1-RELEASE i386) MIME-Version: 1.0 To: marcin@v-m.com, freebsd-isp@freebsd.org Subject: Re: Modem Recomendation... References: <3461E93B.E453B02B@v-m.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Marcin Pasek wrote: > > I am looking to buy extra modems what models do you guys use and > recomend for use in the ISP infostructure. > 56.k Flex ---- > 56K 2X ------ Personaly I think You should get flex over x2 because.. it seems everyone (Cisco, Ascend, many modem manufactures) other than USR and 3com (now happily married) believe flex will be adopted as the standard. mark -- Mark Segal mark@club-web.com System Administrator - Club-Web Inc. From owner-freebsd-isp Thu Nov 6 09:31:12 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA29399 for isp-outgoing; Thu, 6 Nov 1997 09:31:12 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from mole (mole.slip.net [207.171.193.16]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id JAA29389 for ; Thu, 6 Nov 1997 09:31:06 -0800 (PST) (envelope-from dnelson@slip.net) Received: from slip-3.slip.net [207.171.193.17] (dnelson) by mole with smtp (Exim 1.73 #2) id 0xTVlR-00049Z-00; Thu, 6 Nov 1997 09:30:41 -0800 Date: Thu, 6 Nov 1997 09:30:38 -0800 (PST) From: Dru Nelson X-Sender: dnelson@slip-3 To: Archie Cobbs cc: brandon@roguetrader.com, freebsd-isp@freebsd.org Subject: Re: Security problem/oversight with user PPP! In-Reply-To: <199711060110.RAA18423@bubba.whistle.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > I agreee, it shouldn't be on by default. It is good, though, when > > you want to work on the PPP client on the far end when getting > > things working. > > Doesn't completely fill the hole... :-) > > I can still take a UNIX machine on the same network as yours, > disable my loopback interface, and set a route to 127.0.0.1 > via your machine, and then telnet to it. > Hi, where was I 'fill the hole'. If it is off, you can't telnet to 3000? Are you saying that Freebsd has a security hole where it allows ip with a source of 127.0.0.1. When it replies for that SYN for telnet, why would it go back to your machine? Dru From owner-freebsd-isp Thu Nov 6 10:38:55 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id KAA04038 for isp-outgoing; Thu, 6 Nov 1997 10:38:55 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id KAA04032 for ; Thu, 6 Nov 1997 10:38:52 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id KAA17736; Thu, 6 Nov 1997 10:38:17 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma017730; Thu Nov 6 10:38:07 1997 Received: (from archie@localhost) by bubba.whistle.com (8.8.5/8.6.12) id KAA11072; Thu, 6 Nov 1997 10:38:07 -0800 (PST) From: Archie Cobbs Message-Id: <199711061838.KAA11072@bubba.whistle.com> Subject: Re: Security problem/oversight with user PPP! In-Reply-To: from Dru Nelson at "Nov 6, 97 09:30:38 am" To: dnelson@slip.net (Dru Nelson) Date: Thu, 6 Nov 1997 10:38:07 -0800 (PST) Cc: brandon@roguetrader.com, freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Dru Nelson writes: > > > I agreee, it shouldn't be on by default. It is good, though, when > > > you want to work on the PPP client on the far end when getting > > > things working. > > > > Doesn't completely fill the hole... :-) > > > > I can still take a UNIX machine on the same network as yours, > > disable my loopback interface, and set a route to 127.0.0.1 > > via your machine, and then telnet to it. > > > > Hi, where was I 'fill the hole'. If it is off, you can't telnet to 3000? > > Are you saying that Freebsd has a security hole where it allows > ip with a source of 127.0.0.1. When it replies for that SYN for > telnet, why would it go back to your machine? Sorry, I was referring to the "fix" that just binds to 127.0.0.1 port 3000 (instead of INADDR_ANY) for the telnet thing. Whether it's a security hole or a feature depends on how you look at it. FreeBSD is working as designed. But yes, if I send a packet to your 127.0.0.1, it will have my (normal) source address.. so the response to my SYN comes back to me, etc. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com From owner-freebsd-isp Thu Nov 6 11:01:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA05649 for isp-outgoing; Thu, 6 Nov 1997 11:01:34 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from kilgour.nething.com (kilgour.nething.com [204.253.210.65]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id LAA05633 for ; Thu, 6 Nov 1997 11:01:25 -0800 (PST) (envelope-from rberndt@nething.com) Received: from randy.nething.com (randy.nething.com [204.253.210.83]) by kilgour.nething.com (8.7.5/8.6.9) with SMTP id MAA19773; Thu, 6 Nov 1997 12:57:39 -0600 (CST) Message-Id: <3.0.3.32.19971106125914.006b5ddc@nething.com> X-Sender: rberndt@nething.com X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32) Date: Thu, 06 Nov 1997 12:59:14 -0600 To: Mark Segal , marcin@v-m.com, freebsd-isp@FreeBSD.ORG From: Randy Berndt Subject: Re: Modem Recomendation... In-Reply-To: <3461F3E8.8E63DB2B@club-web.com> References: <3461E93B.E453B02B@v-m.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Leaving the x2 / Flex flame wars aside, here are some things to consider: 1) What do most of your customers have? (90% of the decision right there.) 2) When the standard (whatever it is) is adopted, will your current purchase be SOFTWARE upgradeable to the standard? At no cost? Is this guaranteed by the modem vendor? (by the way, the x2 answers are: yes, yes, yes. Older flex is hardware replacement, newer (I think) is software. No cost option will vary by manufacturer. Caveat Emptor squared!) 3) (If you already know this, my apologies, but it is important.) Remember that on your (ISP) side, the modem must be connected DIGITALLY to the phone network (ISDN, T-1, etc). You cannot put an analog x2/flex modem on the ISP side. If you are buying extra modems, I assume you would be filling space in whatever equipment you have now. This should limit your choices significantly :-) 4) There is at least one vendor (Bay, I think) that has a box that can contain x2 and flex modems at the same time. (The x2 license prohibits mixing "in a chassis". The Bay license looks at each card inserted in the box as a "separate chassis". Lawyers.... go figure. At 11:44 AM 11/6/97 -0500, Mark Segal wrote: >Marcin Pasek wrote: >> >> I am looking to buy extra modems what models do you guys use and >> recomend for use in the ISP infostructure. >> 56.k Flex ---- >> 56K 2X ------ >Personaly I think You should get flex over x2 because.. it seems >everyone (Cisco, Ascend, many modem manufactures) other than USR and >3com (now happily married) believe flex will be adopted as the standard. > >mark >-- >Mark Segal >mark@club-web.com >System Administrator - Club-Web Inc. > > Randy Berndt ---------------------------------- AOS/VS, Win95, FreeBSD, WinNT, DOS, Win311: I'm caught in a twisty little maze of operating systems, all different. From owner-freebsd-isp Thu Nov 6 14:18:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id OAA18129 for isp-outgoing; Thu, 6 Nov 1997 14:18:39 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id OAA18123 for ; Thu, 6 Nov 1997 14:18:33 -0800 (PST) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA01371; Fri, 7 Nov 1997 09:18:08 +1100 (EST) Date: Fri, 7 Nov 1997 09:18:08 +1100 (EST) From: "Daniel O'Callaghan" To: Marcin Pasek cc: freebsd Subject: Re: Modem Recomendation... In-Reply-To: <3461E93B.E453B02B@v-m.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Thu, 6 Nov 1997, Marcin Pasek wrote: > I am looking to buy extra modems what models do you guys use and > recomend for use in the ISP infostructure. > 56.k Flex ---- > 56K 2X ------ ISPs don't buy 56k modems. They buy ISDN and 56k virtual modem terminal servers. Two 56k modems talk to each other at 33.6k. Danny From owner-freebsd-isp Thu Nov 6 22:24:31 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id WAA13428 for isp-outgoing; Thu, 6 Nov 1997 22:24:31 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from proxy.unpar.ac.id (proxy.unpar.ac.id [167.205.206.55]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id WAA13398 for ; Thu, 6 Nov 1997 22:23:55 -0800 (PST) (envelope-from gatut@student.unpar.ac.id) Received: from student.unpar.ac.id (student.unpar.ac.id [167.205.206.58]) by proxy.unpar.ac.id (8.8.5/8.8.5) with ESMTP id NAA13682; Thu, 7 Nov 1996 13:05:46 +0700 (JAVT) Received: from localhost (gatut@localhost) by student.unpar.ac.id (8.8.5/8.8.5.D) with SMTP id NAA00534; Fri, 7 Nov 1997 13:22:40 +0700 (JAVT) Date: Fri, 7 Nov 1997 13:22:40 +0700 (JAVT) From: V Gatut Harijoso To: Brian Weber cc: freebsd ISP Subject: Re: User name authentication through firewalls In-Reply-To: <345E51BB.5739DD57@cbiowa.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 3 Nov 1997, Brian Weber wrote: > Here is what I am up against. I am asked to install a firewall that > will allow traffice on different ports. So far pretty standard. They > want that access given through user name not ip address. That is were > the problem is. I have been told that NT can do this through there > proxy server. Is this possible through freebsd or linux or should I > just go with the nt solution. > Please tell me there is a way to make unix do this!!!! I do detecting user-id for http & ftp proxy by modifying proxy module for apache. I also read that squid already has proxy-authentication. From owner-freebsd-isp Thu Nov 6 23:07:59 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id XAA14944 for isp-outgoing; Thu, 6 Nov 1997 23:07:59 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from freight.msn.bc.ca (pc-21656.bc.rogers.wave.ca [24.112.126.7]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id XAA14930 for ; Thu, 6 Nov 1997 23:07:46 -0800 (PST) (envelope-from webmaster@nwss.sd40.bc.ca) Received: from [24.112.126.210] (lc575.msn.bc.ca [24.112.126.210]) by freight.msn.bc.ca (8.8.7/8.8.7) with ESMTP id XAA00380; Thu, 6 Nov 1997 23:09:58 -0800 (PST) (envelope-from webmaster@nwss.sd40.bc.ca) X-Sender: bpepa@msn.bc.ca Message-Id: In-Reply-To: References: <345E51BB.5739DD57@cbiowa.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Fri, 7 Nov 1997 00:11:38 -0800 To: Brian Weber From: Ben Pepa Subject: Re: User name authentication through firewalls Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > Here is what I am up against. I am asked to install a firewall that > will allow traffice on different ports. So far pretty standard. They > want that access given through user name not ip address. That is were > the problem is. I have been told that NT can do this through there > proxy server. Is this possible through freebsd or linux or should I > just go with the nt solution. > Please tell me there is a way to make unix do this!!!! > What I had implemented for our high school lan was to use my FreeBSD box as a gateway using ipfw and natd. The clients were Novell & Macintosh computers running Netscape. Netscape would boot to a user login screen. They would submit their login name & password to the local server (as local packets didn't need exterior routing - our intranet). It would then, if authenticated, add a route from the client machine so they could get onto the internet. And, I set the server to logoff clients after 30 minutes using crontab (by flushing the ipfw rules). This limited students to 30 minutes per login. Ben From owner-freebsd-isp Fri Nov 7 05:40:04 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id FAA29722 for isp-outgoing; Fri, 7 Nov 1997 05:40:04 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from niagara.dataphone.net (NIAGARA.se.dataphone.net [194.23.94.254]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id FAA29671 for ; Fri, 7 Nov 1997 05:39:54 -0800 (PST) (envelope-from mikael.hugo@dataphone.net) Received: by NIAGARA.se.dataphone.net with Internet Mail Service (5.5.1664.3) id ; Fri, 7 Nov 1997 14:42:47 +0100 Message-ID: <71859F034878D011AB8500A024E7C93C028175@NIAGARA.se.dataphone.net> From: Mikael Hugo To: freebsd-isp@FreeBSD.ORG Subject: USENET Peering Date: Fri, 7 Nov 1997 14:42:44 +0100 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.1664.3) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Hi everyone! We have a relativly large usenet server, and are looking to exchange peers with more systems. We are located close the the MAE-East, even though we are european. We are only looking for full peers, and are today connected to uio.no, primenet, zippo.com and planetc (sattelite connection that gets internetmci, uunet, etc). We would like some more redundancy, and a faster propogation. Regards Mikael Hugo From owner-freebsd-isp Fri Nov 7 06:40:10 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id GAA02302 for isp-outgoing; Fri, 7 Nov 1997 06:40:10 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from chicagometro.usweb.com (email.virtualmarketing.com [207.7.29.253]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id GAA02295 for ; Fri, 7 Nov 1997 06:40:07 -0800 (PST) (envelope-from marcin@v-m.com) Received: from v-m.com (207.7.29.107) by chicagometro.usweb.com with ESMTP (Eudora Internet Mail Server 1.2b2); Fri, 7 Nov 1997 08:40:30 -0700 Message-ID: <34632890.4B28B8ED@v-m.com> Date: Fri, 07 Nov 1997 08:41:21 -0600 From: Marcin Reply-To: marcin@v-m.com X-Mailer: Mozilla 4.03 [en] (WinNT; I) MIME-Version: 1.0 To: freebsd Subject: ISP Related Code Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Has anyone know about a good ISP source for Perl scripts and ISP related software for FeeBSD OS... Marcin From owner-freebsd-isp Fri Nov 7 07:12:11 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id HAA03739 for isp-outgoing; Fri, 7 Nov 1997 07:12:11 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id HAA03732 for ; Fri, 7 Nov 1997 07:12:08 -0800 (PST) (envelope-from shovey@buffnet.net) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id KAA18648 for ; Fri, 7 Nov 1997 10:11:21 -0500 (EST) Date: Fri, 7 Nov 1997 10:12:24 -0500 (EST) From: Steve Hovey To: freebsd-isp@freebsd.org Subject: ADSL Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Anyone out there using ADSL? From owner-freebsd-isp Fri Nov 7 07:39:19 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id HAA05266 for isp-outgoing; Fri, 7 Nov 1997 07:39:19 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from netrail.net (netrail.net [205.215.10.3]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id HAA05261 for ; Fri, 7 Nov 1997 07:39:14 -0800 (PST) (envelope-from jonz@netrail.net) Received: from localhost (jonz@localhost) by netrail.net (8.8.6/8.8.6) with SMTP id LAA21617 for ; Fri, 7 Nov 1997 11:37:23 GMT Date: Fri, 7 Nov 1997 11:37:23 +0000 (GMT) From: "Jonathan A. Zdziarski" To: freebsd-isp@freebsd.org Subject: Banning IPs from Sendmail Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk What's the easiest way to deny local smtp delivery to specific IP addresses? Some idiot keeps forging email from our staff to other staff. ------------------------------------------------------------------------- Jonathan A. Zdziarski NetRail Incorporated Systems Engineering Manager 230 Peachtree St. Suite 500 jonz@netrail.net Atlanta, GA 30303 http://www.netrail.net (888) - NETRAIL ------------------------------------------------------------------------- From owner-freebsd-isp Fri Nov 7 07:52:40 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id HAA06084 for isp-outgoing; Fri, 7 Nov 1997 07:52:40 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from user.xtdl.com (user.xtdl.com [206.25.228.20]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id HAA06078 for ; Fri, 7 Nov 1997 07:52:31 -0800 (PST) (envelope-from sderdau@xtdl.com) Received: from user.xtdl.com (user.xtdl.com [206.25.228.20]) by user.xtdl.com (8.6.11/8.6.9) with SMTP id LAA20994; Fri, 7 Nov 1997 11:13:14 -0500 Date: Fri, 7 Nov 1997 11:13:14 -0500 (EST) From: "Stephen A. Derdau" To: Steve Hovey cc: freebsd-isp@FreeBSD.ORG Subject: Re: ADSL In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Not yet but checking into it. Sounds better than 56k k2, or cable. That is if cable starts to get alot of customers on the same line. Stephen A. Derdau XTDL inc 10 Chestnut Dr. Bedford, NH 03110 603 4714700 "If it wasn't for something I would have nothing!:)" On Fri, 7 Nov 1997, Steve Hovey wrote: > > Anyone out there using ADSL? > > From owner-freebsd-isp Fri Nov 7 08:08:34 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA06978 for isp-outgoing; Fri, 7 Nov 1997 08:08:34 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA06813 for ; Fri, 7 Nov 1997 08:05:48 -0800 (PST) (envelope-from marcs@znep.com) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.7/8.8.7) with UUCP id JAA06080; Fri, 7 Nov 1997 09:04:33 -0700 (MST) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id JAA04998; Fri, 7 Nov 1997 09:05:18 -0700 (MST) Date: Fri, 7 Nov 1997 09:05:18 -0700 (MST) From: Marc Slemko To: Mikael Hugo cc: freebsd-isp@FreeBSD.ORG Subject: Re: USENET Peering In-Reply-To: <71859F034878D011AB8500A024E7C93C028175@NIAGARA.se.dataphone.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk If you haven't already, check out: http://www.usenet-se.net/peering/ On Fri, 7 Nov 1997, Mikael Hugo wrote: > > Hi everyone! > > We have a relativly large usenet server, and are looking to exchange > peers with more systems. > > We are located close the the MAE-East, even though we are european. > > We are only looking for full peers, and are today connected to uio.no, > primenet, zippo.com and planetc (sattelite connection that gets > internetmci, uunet, etc). > > We would like some more redundancy, and a faster propogation. > > Regards > > Mikael Hugo > From owner-freebsd-isp Fri Nov 7 08:15:35 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA07419 for isp-outgoing; Fri, 7 Nov 1997 08:15:35 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA07413 for ; Fri, 7 Nov 1997 08:15:29 -0800 (PST) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id IAA25230; Fri, 7 Nov 1997 08:14:50 -0800 (PST) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma025226; Fri Nov 7 08:14:20 1997 Received: (from archie@localhost) by bubba.whistle.com (8.8.5/8.6.12) id IAA15001; Fri, 7 Nov 1997 08:14:20 -0800 (PST) From: Archie Cobbs Message-Id: <199711071614.IAA15001@bubba.whistle.com> Subject: Re: Banning IPs from Sendmail In-Reply-To: from "Jonathan A. Zdziarski" at "Nov 7, 97 11:37:23 am" To: jonz@netrail.net (Jonathan A. Zdziarski) Date: Fri, 7 Nov 1997 08:14:20 -0800 (PST) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jonathan A. Zdziarski writes: > What's the easiest way to deny local smtp delivery to specific IP > addresses? Some idiot keeps forging email from our staff to other staff. ipfw add 100 reset tcp from to 25 setup -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com From owner-freebsd-isp Fri Nov 7 08:19:12 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA07693 for isp-outgoing; Fri, 7 Nov 1997 08:19:12 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from ns.mt.sri.com (SRI-56K-FR.mt.net [206.127.65.42]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA07672 for ; Fri, 7 Nov 1997 08:19:03 -0800 (PST) (envelope-from nate@rocky.mt.sri.com) Received: from rocky.mt.sri.com (rocky.mt.sri.com [206.127.76.100]) by ns.mt.sri.com (8.8.7/8.8.7) with ESMTP id JAA21910; Fri, 7 Nov 1997 09:19:01 -0700 (MST) Received: (from nate@localhost) by rocky.mt.sri.com (8.7.5/8.7.3) id JAA28143; Fri, 7 Nov 1997 09:18:59 -0700 (MST) Date: Fri, 7 Nov 1997 09:18:59 -0700 (MST) Message-Id: <199711071618.JAA28143@rocky.mt.sri.com> From: Nate Williams MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit To: "Jonathan A. Zdziarski" Cc: freebsd-isp@freebsd.org Subject: Re: Banning IPs from Sendmail In-Reply-To: References: X-Mailer: VM 6.29 under 19.15 XEmacs Lucid Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > What's the easiest way to deny local smtp delivery to specific IP > addresses? IPFW. netif == outside network connection myeip == my external IP addresses (necessary since packets are generated with it as my IP address) myiip == my 'internal' IP address, which is the one given to the world. The following rules limit email to my 'gateway' box, and only that box. You can modify it to accept email from other machines, or whatever. ############ # allow incoming SMTP only on NS, so we only have to keep it's stuff # current. There's no other reason for people to look internally, since # they are handled w/MX records. ipfw add 900 pass tcp from any to ${myeip} 25 via ${netif} in ipfw add 901 pass tcp from any to ${myiip} 25,53,110,113 via ${netif} in # Don't log (somewhat valid) attempts to connect to internal SMTP hosts # (sendmail uses AUTH, so don't log attempts there either.) ipfw add 910 deny tcp from any to any 25 via ${netif} in Nate From owner-freebsd-isp Fri Nov 7 08:37:29 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA08709 for isp-outgoing; Fri, 7 Nov 1997 08:37:29 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA08702 for ; Fri, 7 Nov 1997 08:37:26 -0800 (PST) (envelope-from spork@super-g.com) Received: from localhost (localhost [127.0.0.1]) by super-g.inch.com (8.8.7/8.8.5) with SMTP id LAA24032; Fri, 7 Nov 1997 11:33:21 -0500 (EST) Date: Fri, 7 Nov 1997 11:33:21 -0500 (EST) From: spork X-Sender: spork@super-g.inch.com To: Steve Hovey cc: freebsd-isp@FreeBSD.ORG Subject: Re: ADSL In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk We were talking with NYNEX briefly and you basically have two ways to go with this: 1) Become a CLEC, buy equipment that meets Bell standards and co-locate at some COs. The telco will bring copper to you. They will make no guarantees on the quality of the copper; maybe it will work for xDSL, maybe not ;) Run a big fat expensive pipe to colo for your bandwidth. 2) Hope your office is very close to CO. When a customer orders service, you order dry copper to the CO as well. Telco ties the two copper lines together so there is a path from the customer to your facilities. Same lack of guarantees on line qualities. Buy big bandwidth. We gave up because of all the "ifs". Charles Sprickman Internet Channel spork@super-g.com access@inch.com ---- ---- "I'm not a prophet or a stone-age man Just a mortal with potential of a superman I'm living on" -DB On Fri, 7 Nov 1997, Steve Hovey wrote: > > Anyone out there using ADSL? > From owner-freebsd-isp Fri Nov 7 08:59:26 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id IAA09589 for isp-outgoing; Fri, 7 Nov 1997 08:59:26 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from buffnet4.buffnet.net (buffnet4.buffnet.net [205.246.19.13]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id IAA09583 for ; Fri, 7 Nov 1997 08:59:23 -0800 (PST) (envelope-from shovey@buffnet.net) Received: from buffnet11.buffnet.net (shovey@buffnet11.buffnet.net [205.246.19.55]) by buffnet4.buffnet.net (8.7.5/8.7.3) with SMTP id LAA22820; Fri, 7 Nov 1997 11:58:23 -0500 (EST) Date: Fri, 7 Nov 1997 11:59:26 -0500 (EST) From: Steve Hovey To: spork cc: freebsd-isp@FreeBSD.ORG Subject: Re: ADSL In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 7 Nov 1997, spork wrote: > We were talking with NYNEX briefly and you basically have two ways to go > with this: > > 1) Become a CLEC, buy equipment that meets Bell standards and co-locate at > some COs. The telco will bring copper to you. They will make no > guarantees on the quality of the copper; maybe it will work for xDSL, > maybe not ;) Run a big fat expensive pipe to colo for your bandwidth. > > 2) Hope your office is very close to CO. When a customer orders service, > you order dry copper to the CO as well. Telco ties the two copper lines > together so there is a path from the customer to your facilities. Same > lack of guarantees on line qualities. Buy big bandwidth. > > We gave up because of all the "ifs". > Im looking at this and spectrum - Nynex sucks - period - so we are trying to work with the smaller phone companies, and around them all. > > Charles Sprickman Internet Channel > spork@super-g.com access@inch.com > > ---- ---- > "I'm not a prophet or a stone-age man > Just a mortal with potential of a superman > I'm living on" -DB > > On Fri, 7 Nov 1997, Steve Hovey wrote: > > > > > Anyone out there using ADSL? > > > > From owner-freebsd-isp Fri Nov 7 09:02:52 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA09798 for isp-outgoing; Fri, 7 Nov 1997 09:02:52 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from obiwan.TerraNova.net (root@obiwan.TerraNova.net [209.4.59.2]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id JAA09793 for ; Fri, 7 Nov 1997 09:02:49 -0800 (PST) (envelope-from bofh@terranova.net) Received: from P1mpBSD.TerraNova.net (coolholio@P1mpBSD.TerraNova.net [209.4.59.4]) by obiwan.TerraNova.net (8.8.8/TerraNovaNet) with SMTP id MAA08100; Fri, 7 Nov 1997 12:06:16 -0500 (EST) Message-ID: <3463495F.32D7@terranova.net> Date: Fri, 07 Nov 1997 12:01:19 -0500 From: Travis Mikalson Organization: TerraNovaNet X-Mailer: Mozilla 3.03 (Win95; I) MIME-Version: 1.0 To: "Jonathan A. Zdziarski" CC: freebsd-isp@FreeBSD.ORG Subject: Re: Banning IPs from Sendmail References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Jonathan A. Zdziarski wrote: > > What's the easiest way to deny local smtp delivery to specific IP > addresses? Some idiot keeps forging email from our staff to other staff. You might want to check out http://tech.gulf.net/spam/ for some good anti-spam rules including the ability to block by domain name, IP address and deny relaying from unwanted places as well as verifying the originating domain. -T -- TerraNovaNet Internet Services - Key Largo, FL Voice: (305)453-4011 Fax: (305)451-5991 http://www.TerraNova.net ---------------------------------------------- "Acceptance without proof is the fundamental characteristic of Western religion, Rejection without proof is the fundamental characteristic of Western science." -- Gary Zukav, "The Dancing Wu Li Masters" From owner-freebsd-isp Fri Nov 7 11:37:41 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id LAA18573 for isp-outgoing; Fri, 7 Nov 1997 11:37:41 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from intra.vafibre.com ([205.139.223.100]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id LAA18566 for ; Fri, 7 Nov 1997 11:37:32 -0800 (PST) (envelope-from jbrown@vafibre.com) Received: from is01 by intra.vafibre.com (Unoverica 2.11a) id 00000022; Fri, 7 Nov 1997 14:37:44 -0500 From: "John Brown" To: Subject: Zoltrix Modem Suggestions Date: Fri, 7 Nov 1997 14:32:05 -0500 Message-ID: <01bcebb3$d4780500$3b01017d@is01> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.71.1712.3 X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3 Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I have a customer that has a Zoltrix FMHSP336I modem that cannot connect to my Livingston box @ 3.7.1c (or whatever the latest COMOS is) greater than 1200 baud. Now I know that she can do better because she was connecting with another ISP (AOL) on this computer at better speeds. Anyone have any experiences with this modem? If So is there a magic setup string that will correct the connection speed problem? Thanks From owner-freebsd-isp Sat Nov 8 01:30:01 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id BAA26106 for isp-outgoing; Sat, 8 Nov 1997 01:30:01 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from game.over.net (game.over.net [193.189.162.107]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id BAA26088 for ; Sat, 8 Nov 1997 01:29:55 -0800 (PST) (envelope-from tomaz.borstnar@over.net) Received: from [193.189.183.202] ([193.189.183.202] HELO hang ident: NO-IDENT-SERVICE [port 29189]) by mail.over.net with SMTP id <53823-22660>; Sat, 8 Nov 1997 10:29:35 +0100 Message-Id: <3.0.5.32.19971107222524.00979a90@haktar.siol.net> X-Sender: tomaz@haktar.siol.net X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Fri, 07 Nov 1997 22:25:24 +0100 To: Bo Fussing From: Tomaz Borstnar Subject: Re: Email-Server Recomendation Cc: Marcin Pasek , freebsd In-Reply-To: References: <345FCB67.D880B3D4@v-m.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk At 11:40 AM 11/5/97 +0800, Bo Fussing wrote: >You will most likely find that most people are using sendmail since it >comes as standard with FreeBSD. However unless you are willing to go >through the steep learning curve of how to set sendmail up and learn to >cope with potential security problems, I would seriously recommend >qmail as a replacement, runs very well under FreeBSD. If you need fast and ncie MTA try zmailer (www.zmailer.org). It runs fine on FreeBSD and has best error logging I've seen - sendmail is nothing but problem. Tomaz p.s. I did set up qmail once too - it needs some rtfm, but works nice too. ---- Tomaz Borstnar From owner-freebsd-isp Sat Nov 8 20:47:54 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id UAA13555 for isp-outgoing; Sat, 8 Nov 1997 20:47:54 -0800 (PST) (envelope-from owner-freebsd-isp) Received: from legend.argo.net.au (argo.net.au [203.25.160.100]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id UAA13545 for ; Sat, 8 Nov 1997 20:47:45 -0800 (PST) (envelope-from jmckay@argo.net.au) Received: from argo.net.au (argo.net.au [203.25.160.100]) by legend.argo.net.au (NTMail 3.03.0013/1.adzy) with ESMTP id pa154923 for ; Sun, 9 Nov 1997 12:53:14 +0800 Message-Id: <2.2.32.19971109125313.00907c3c@argo.net.au> X-Sender: jmckay@argo.net.au X-Mailer: Windows Eudora Pro Version 2.2 (32) Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: questions@freebsd.org From: Jason McKay Subject: Boot Problems Cc: isp@freebsd.org Date: Sun, 9 Nov 1997 12:53:14 +0800 X-Info: argonaut.internet @ http://argo.net.au Sender: owner-freebsd-isp@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Hello, I edited my rc.conf file to add some named flags, the machine is now hanging when named is loading ... How can I get back to my rc.conf file to remove the flags. Any suggestions would be very greatful, as I need to get this machine up and going again ASAP. Thank you, Jason McKay.