From owner-freebsd-isp Sun May 10 03:43:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA11813 for freebsd-isp-outgoing; Sun, 10 May 1998 03:43:54 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from chain.freebsd.os.org.za (/xr2MudOzRvrZSGTQm4l2BdbNvMXUAki@chain.freebsd.os.org.za [196.7.74.174]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA11808 for ; Sun, 10 May 1998 03:43:39 -0700 (PDT) (envelope-from khetan@chain.freebsd.os.org.za) Received: from localhost (khetan@localhost) by chain.freebsd.os.org.za (8.8.8+3.0Wbeta13/8.8.8) with SMTP id MAA18307 for ; Sun, 10 May 1998 12:43:31 +0200 (SAT) Date: Sun, 10 May 1998 12:43:31 +0200 (SAT) From: Khetan Gajjar X-Sender: khetan@chain Reply-To: Khetan Gajjar To: freebsd-isp@FreeBSD.ORG Subject: Hashed mail spool delivery Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi. I'm running Sendmail 8.8.8 on FreeBSD 2.2.6, and have patches for Qualcomm Popper to deliver mail to mailboxes of the format /var/mail/a/ab/abcdefg Has anyone patched Sendmail to deliver mail to do the same ? I've searched the archives for this, and discovered that you can use a hacked procmail to do this, but I'd prefer to do this either within sendmail itself, or with sendmail's mail.local (which I believe is the standard delivery agent). Thanks in advance! --- Khetan Gajjar (!kg1779) khetan@iafrica.com (w); khetan@os.org.za (h) http://www.os.org.za/~khetan | Finger: khetan@chain.freebsd.os.org.za UUNET Internet Africa Support | FreeBSD enthusiast-www2.za.freebsd.org FreeBSD: Because rebooting is for adding new hardware To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun May 10 16:04:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA24362 for freebsd-isp-outgoing; Sun, 10 May 1998 16:04:09 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from Radford.i-Plus.net (root@NS.i-Plus.net [208.24.67.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA24280 for ; Sun, 10 May 1998 16:03:52 -0700 (PDT) (envelope-from rewt@i-plus.net) Received: from abyss (god@irc.radford.net [208.24.86.20]) by Radford.i-Plus.net (8.8.8/8.8.5) with SMTP id TAA06201 for ; Sun, 10 May 1998 19:03:24 -0400 (EDT) Message-ID: <017701bd7c67$d1c5d180$0637a8c0@abyss.i-plus.net> From: "Troy Settle" To: "(ML) FreeBSD ISP" Subject: gated, OSPF, and other fun stuff Date: Sun, 10 May 1998 19:03:17 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hey all, I recently re-arranged my network, and while it's already running much more efficient than it was before, I'd like to get OSPF running on my FreeBSD boxes to eliminate the need for static routes. I've gone through the documentation at gated.org, but can't seem to get gated to speak OSPF with my cisco 2501 and Ascend Max 4xxx's. If anyone can provide me a sample gated.conf that will work for me, I would be eternally grateful. Here's my cisco configuration (as far os OSPF goes). ! interface Ethernet0 ip address xx.yy.67.1 255.255.255.0 ip ospf cost 1 ip ospf priority 100 ! router ospf 100 network xx.yy.86.0 0.0.1.255 area 0 network xx.yy.67.0 0.0.0.255 area 0 ! Thanks, -- Troy Settle Network Administrator, iPlus Internet Services http://www.i-Plus.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun May 10 18:39:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA13350 for freebsd-isp-outgoing; Sun, 10 May 1998 18:39:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from gjp.erols.com (alex-va-n008c243.moon.jic.com [206.156.18.253]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA13325 for ; Sun, 10 May 1998 18:39:04 -0700 (PDT) (envelope-from gjp@gjp.erols.com) Received: from gjp.erols.com (localhost.erols.com [127.0.0.1]) by gjp.erols.com (8.8.8/8.8.7) with ESMTP id VAA21619; Sun, 10 May 1998 21:38:55 -0400 (EDT) (envelope-from gjp@gjp.erols.com) X-Mailer: exmh version 2.0.1 12/23/97 To: Khetan Gajjar cc: freebsd-isp@FreeBSD.ORG From: "Gary Palmer" Subject: Re: Hashed mail spool delivery In-reply-to: Your message of "Sat, 10 May 1998 12:43:31 +0200." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sun, 10 May 1998 21:38:54 -0400 Message-ID: <21615.894850734@gjp.erols.com> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Khetan Gajjar wrote in message ID : > Has anyone patched Sendmail to deliver mail to do the same ? sendmail is a MTA. Eric Allman only includes mail.local as a nicety. Or thats what he said at ISPCON anyhow :) > I've searched the archives for this, and discovered that > you can use a hacked procmail to do this, but I'd > prefer to do this either within sendmail itself, or with > sendmail's mail.local (which I believe is the standard > delivery agent). The patches to mail.local are similar to the ones needed for qpopper... Shouldn't much work to do it yourself if you did the qpopper stuff yourself. Gary -- Gary Palmer FreeBSD Core Team Member FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 00:08:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA23720 for freebsd-isp-outgoing; Mon, 11 May 1998 00:08:33 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from nntp1.interworld.net (nntp.interworld.net [206.117.63.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA23706 for ; Mon, 11 May 1998 00:08:28 -0700 (PDT) (envelope-from pete@nntp1.interworld.net) Received: (from pete@localhost) by nntp1.interworld.net (8.8.8/8.8.7) id AAA24915; Mon, 11 May 1998 00:08:26 -0700 (PDT) Date: Mon, 11 May 1998 00:08:26 -0700 (PDT) From: Pete Carah Message-Id: <199805110708.AAA24915@nntp1.interworld.net> To: rewt@i-plus.net Subject: Re: gated, OSPF, and other fun stuff In-Reply-To: <017701bd7c67$d1c5d180$0637a8c0@abyss.i-plus.net> Organization: Dis Cc: freebsd-isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In article <017701bd7c67$d1c5d180$0637a8c0@abyss.i-plus.net> you write: >Hey all, > >I recently re-arranged my network, and while it's already running much more >efficient than it was before, I'd like to get OSPF running on my FreeBSD >boxes to eliminate the need for static routes. So far, so good. I've had good luck with most versions of gated but like 3.5.8 ok. I don't know what version is in the fbsd ports; several earlier 3.5.x and 3.6a versions didn't handle ospf quite right. (and 3.5.8 (finally!!) compiles out-of-the-box for freebsd so the ports aren't as important as they used to be). >I've gone through the documentation at gated.org, but can't seem to get >gated to speak OSPF with my cisco 2501 and Ascend Max 4xxx's. > >If anyone can provide me a sample gated.conf that will work for me, I would >be eternally grateful. Here's my cisco configuration (as far os OSPF goes). > >! >interface Ethernet0 > ip address xx.yy.67.1 255.255.255.0 > ip ospf cost 1 > ip ospf priority 100 >! >router ospf 100 > network xx.yy.86.0 0.0.1.255 area 0 > network xx.yy.67.0 0.0.0.255 area 0 If you are running bgp also, then the ospf task number should normally be your AS. This won't really affect anything, though. If there are customers connected to any of the router or fbsd systems you should use one or another password in ospf (but not doing so won't prevent it from working). We have a mix of Bay, Cisco, and FreeBSD routers, and Livingston PM2's and PM3's, all running ospf "happily" together. Bay doesn't support md5 auth in ospf, though. (we have one ascend max (400; there so far has been no upgrade to 5.x firmware for it)) that doesn't talk ospf; all its routes are static in its facility router, then exported there to ospf.) Cisco conf follows (partially): ! interface Ethernet0 description main ethernet ip address xxx.yyy.140.253 255.255.255.0 no ip directed-broadcast ip ospf authentication-key vvvvvvvv arp timeout 240 bandwidth 10000 media-type 10BaseT no mop enabled ! router ospf 5736 network xxx.yyy.159.36 0.0.0.3 area 0.0.0.0 network xxx.yyy.141.0 0.0.0.255 area 0.0.0.0 network xxx.yyy.140.0 0.0.0.255 area 0.0.0.0 area 0.0.0.0 authentication ! 159.36 is a serial to another of our locations; 141 is on another ethernet on the same cisco. Note that I don't need network statements for my entire area (which is a /19 on xxx.yyy.128, and several other isolated class C's). In a Livingston (pardon, Lucent), you need ranges that cover your entire area or it won't believe the routes to them. Bay, Cisco, and gated tend to believe the incoming link-states anyhow. Also note the "no ip directed broadcast". This is becoming rather important, though it has nothing to do with ospf :-) Now, for the corresponding gated.conf entries. Note that there is normally no reason to run ospf in a freebsd box that is not itself routing, unless you are on a lan with more than 2 routers on it, each of which has multiple routes. The box in question here has a slip interface to some specialized hardware which I wanted to route; that is the *only* reason it runs gated (though it is on a lan with 5 other routers...) The gated.conf that corresponds to the above cisco config: autonomoussystem zzzz; routerid xxx.yyy.140.2; rip off; ospf on { defaults { tag as ; } ; backbone { authtype simple ; interface xxx.yyy.140.2 cost 10 { enable ; transitdelay 1 ; retransmitinterval 5 ; hellointerval 10 ; routerdeadinterval 40 ; authkey "vvvvvvvv" ; } ; } ; } ; autonomoussystem zzzz; defaults { tag as;}; aren't really needed anymore; this machine used to also run ibgp. Note that if hellointerval or deadinterval don't match all the other boxes on the same broadcast medium, the box that is different won't talk to the rest of the network. Those numbers are both Bay and Cisco's defaults; I don't know gated's. A standard these days for interface cost is 100,000,000/speed. This is ok for most short-distance links but doesn't factor in latency on longer ones. (Bay recommends retransmit 10, hello 15, dead 60 for point-to-point links). At least in older days, ospf would NOT work if the address given in the interface statement above was not the lowest one in the subnet. "rip off" is fairly important if you are routing subnets, anywhere in your network. Note that my slip link isn't in here this part of the gated.conf; I export it into ospf so that it shows up as ospf-ase type 1. -- Pete To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 01:03:58 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA00631 for freebsd-isp-outgoing; Mon, 11 May 1998 01:03:58 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id BAA00600 for ; Mon, 11 May 1998 01:03:54 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [195.50.91.43] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0yYnYq-0001WQ-00; Mon, 11 May 1998 09:03:48 +0100 Message-Id: <3.0.5.32.19980511090241.0096e460@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Mon, 11 May 1998 09:02:41 +0100 To: freebsd-isp@FreeBSD.ORG From: Manar Hussain Subject: Re: Hashed mail spool delivery In-Reply-To: <21615.894850734@gjp.erols.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Khetan Gajjar wrote in message ID : > Has anyone patched Sendmail to deliver mail to do the same ? > > I've searched the archives for this, and discovered that > you can use a hacked procmail to do this, but I'd > prefer to do this either within sendmail itself, or with > sendmail's mail.local (which I believe is the standard > delivery agent). You could look at Exim (www.exim.org) or qmail (www.qmail.org) as impressive public domain replacements to sendmail - for which you should find this easier. Exim's focus is functionality/ease of use and is probably an easier drop in replacement for sendmail. Qmail's focus is security and performance though both are many times better than sendmail on this and you should note that qmail is happy to load your machine into the ground if there is a lot of mail traffic reltative to the machine spec. Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 10:58:17 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA18369 for freebsd-isp-outgoing; Mon, 11 May 1998 10:58:17 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from nntp1.interworld.net (nntp.interworld.net [206.117.63.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA18352 for ; Mon, 11 May 1998 10:58:13 -0700 (PDT) (envelope-from pete@nntp1.interworld.net) Received: (from pete@localhost) by nntp1.interworld.net (8.8.8/8.8.7) id KAA05408; Mon, 11 May 1998 10:58:11 -0700 (PDT) From: Pete Carah Message-Id: <199805111758.KAA05408@nntp1.interworld.net> Subject: Re: gated, OSPF, and other fun stuff To: tim@futuresouth.com (Tim Tsai) Date: Mon, 11 May 1998 10:58:10 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <19980511061928.22981@futuresouth.com> from Tim Tsai at "May 11, 98 06:19:28 am" X-Mailer: ELM [version 2.4ME+ PL22 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Hi, do you have your OSPF definitions from your PM I can take a look at > by any chance? I have been trying to convince our Cisco to talk to our > PM3 without any luck. Thanks! Unfortunately not; the only thing that is particularly different about the PM3 (and PM2) is that ALL networks in an area have to be specified in explicit ranges in order to be recognized; on Cisco, Bay, and gated they (normally) don't. I just followed the "procedure" in chap 11 of the Livingston manual (and usually have to access their web site each time I do this - we don't have a current printed manual). With a PM3 make sure you have recent firmware :-) (2 of ours have the V.90 beta 3.8b15, the other is 3.7.2c3; 3.7.2 had problems with some cheap V.34 modems which c3 helped some). Note that ospf didn't work (though was present) before 3.5. That shouldn't affect you with a PM3 since they need >=3.7 anyhow. You have to "set ospf enable", "save all", and reboot before any other ospf commands will have any effect... (you may also want to enable snmp before the above "save all"; I usually do). I then "add ospf area 0.0.0.0", and various: set ospf area 0.0.0.0 password vvvvvvvv set ospf area 0.0.0.0 range xxx.yyy.zzz.0/19 (set more ranges as needed) set ospf area external set ether0 ospf on set ether0 rip off set user-netmask on save all reboot yet again (may not be needed) I don't remember exactly all the steps. Making this useful needs the set user-netmask thing; then subnet routes via radius work. It is a bad idea to run both rip and ospf, though you could if desperate. (a *very* bad idea if you are routing subnets via the segment in question) 3.8 has improved the output from most commands; the show and help are finally fairly complete. Both Bay (all versions so far) and our older Cisco code (10.3) don't have "NSSA" support; I think the gated I run doesn't either. So, I don't use it in the PM either. Remember that the hello and dead intervals must match on all routers talking on a segment; this has bit me several times and makes the mismatched one refuse to talk to the rest. I think the PM and cisco defaults match. -- Pete To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 12:07:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA01010 for freebsd-isp-outgoing; Mon, 11 May 1998 12:07:35 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from axe.cablenet.net (axe.cablenet.net [195.248.96.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA00996 for ; Mon, 11 May 1998 12:07:31 -0700 (PDT) (envelope-from damian@axe.cablenet.net) Received: from axe (localhost [127.0.0.1]) by axe.cablenet.net (8.9.0.Beta3/8.6.9) with SMTP id TAA05925 for ; Mon, 11 May 1998 19:35:41 +0100 (BST) Message-ID: <355744FD.4487EB71@cablenet.net> Date: Mon, 11 May 1998 19:35:41 +0100 From: Damian Hamill Organization: CableNet Ltd X-Mailer: Mozilla 3.0 (X11; I; SunOS 4.1.4 sun4m) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: limit ftp uploads Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'd like to limit the ability for anonymous FTP uploads to IP addresses in my netblock. Any ideas how to do that ? regards damian -- * Damian Hamill M.D. damian@cablenet.net * CableNet & The Landscape Channel * http://www.cablenet.net/ http://www.landscapetv.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 14:44:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA26677 for freebsd-isp-outgoing; Mon, 11 May 1998 14:44:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from darla.swimsuit.internet.dk (pm25-16.image.dk [194.234.59.16]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA26666 for ; Mon, 11 May 1998 14:44:10 -0700 (PDT) (envelope-from leifn@internet.dk) Received: from darla.swimsuit.internet.dk (darla.swimsuit.internet.dk. [192.168.0.10]) by darla.swimsuit.internet.dk (8.8.8/8.8.8) with SMTP id XAA00633 for ; Mon, 11 May 1998 23:43:16 +0200 (CEST) (envelope-from leifn@internet.dk) Date: Mon, 11 May 1998 23:43:15 +0200 (CEST) From: Leif Neland Reply-To: leifn@internet.dk To: isp@FreeBSD.ORG Subject: routed and portmasters Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We have two portmasters, and some clients with fixed ip-adresses, say 194.255.40.xxx The ports also have dynamic ip-adresses, where xxx is 33-62 and 65-194 respectively on each portmaster. Our servers have another class: 194.19.140.xxx (the portmaster's ethernet adress is also in this class) Then we have a cisco (also on class 194.19.140.xxx) as the feed to the rest of the internet. A single machine functions as a router to another machine at a remote location over dedicated lines. If I make all servers and portmasters to have the cisco as default gateway, and run routed on the servers, will all routing then appear automagically? Currently, all fixed-ip customers are on the one portmaster with isdn, but what would happen if they sometimes connected to one portmaster and sometimes to another? Then the route to that ip should change also. Will routed also take care of this? Leif Neland leifn@internet.dk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 21:02:18 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA24226 for freebsd-isp-outgoing; Mon, 11 May 1998 21:02:18 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from divre5.telkom.co.id ([202.134.0.55]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id VAA24206 for ; Mon, 11 May 1998 21:02:14 -0700 (PDT) (envelope-from sandy@divre5.telkom.co.id) Received: from dial-up by divre5.telkom.co.id (SMI-8.6/SMI-SVR4) id KAA17421; Tue, 12 May 1998 10:53:20 -0700 Message-ID: <002a01bd7d5a$23c98560$7305600a@dial-up.divre5.net> From: "Arisandy" To: "Isp-FreeBSD" Subject: Masquerade Date: Tue, 12 May 1998 10:57:45 +0700 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org in Linux there is IP-Masquerade.... how can I do it with FreeBSD??? Wassalam, Arisandy ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Inside your PC is a ]:) waiting to be unleashed To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon May 11 22:40:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA07259 for freebsd-isp-outgoing; Mon, 11 May 1998 22:40:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from uhf.wireless.net (uhf.wireless.net [209.189.23.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA07105 for ; Mon, 11 May 1998 22:39:21 -0700 (PDT) (envelope-from bad@uhf.wireless.net) Received: from localhost (bad@localhost) by uhf.wireless.net (8.8.8/8.8.7) with SMTP id WAA01389; Mon, 11 May 1998 22:37:35 -0700 (PDT) Date: Mon, 11 May 1998 22:37:34 -0700 (PDT) From: Bernie Doehner To: Arisandy cc: Isp-FreeBSD Subject: Re: Masquerade In-Reply-To: <002a01bd7d5a$23c98560$7305600a@dial-up.divre5.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org NATD (network address translation daemon). On Tue, 12 May 1998, Arisandy wrote: > Date: Tue, 12 May 1998 10:57:45 +0700 > From: Arisandy > To: Isp-FreeBSD > Subject: Masquerade > > in Linux there is IP-Masquerade.... > how can I do it with FreeBSD??? > > > Wassalam, > > Arisandy > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > Inside your PC is a ]:) waiting to be unleashed > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 00:09:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA18112 for freebsd-isp-outgoing; Tue, 12 May 1998 00:09:52 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from pasca1.unpad.ac.id ([167.205.206.193]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA18104 for ; Tue, 12 May 1998 00:09:44 -0700 (PDT) (envelope-from mukti@unpad.ac.id) Received: from localhost (mukti@localhost) by pasca1.unpad.ac.id (8.8.7/8.8.7) with SMTP id NAA09028 for ; Tue, 12 May 1998 13:52:22 +0700 (JAVT) (envelope-from mukti@unpad.ac.id) Date: Tue, 12 May 1998 13:52:21 +0700 (JAVT) From: Mukti Arip To: freebsd-isp@FreeBSD.ORG Subject: FreeBSD error message Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org My FreeBSD machine give me error message like this: inetd in realloc(): warning: junk pointer, too low to make sense. What's the meaning of that error message? Thanks, Mukti A. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 00:48:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA22634 for freebsd-isp-outgoing; Tue, 12 May 1998 00:48:54 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from hub.dimpex.com.au (hub.dimpex.com.au [203.36.169.129]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA22614 for ; Tue, 12 May 1998 00:48:19 -0700 (PDT) (envelope-from apk@dimpex.com.au) Received: by hub.dimpex.com.au with Internet Mail Service (5.0.1457.3) id ; Tue, 12 May 1998 17:52:14 +1000 Message-ID: From: Andrew Kaszubski Jnr To: "'freebsd-isp@freebsd.org'" Subject: re ppp and -alias Date: Tue, 12 May 1998 17:52:03 +1000 X-Priority: 3 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.0.1457.3) Content-Type: text/plain Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, just setup a FreeBSD box which is doing NAT for a small network. I used the userlevel PPP with the 2.2.2-Release which works just great. Apart from the 1 IP address the PPP link is assigned I have also a /26 network which I am routing to some of the clients with real IP address as well as aliasing to the ethernet card. Eg. tun0: flags=8051 mtu 1500 inet 139.130.53.55 --> 139.130.51.65 netmask 0xffffffc0 de0: flags=8843 mtu 1500 inet 203.36.205.193 netmask 0xffffffc0 broadcast 203.36.205.255 inet 192.168.1.10 netmask 0xffffff00 broadcast 192.168.1.255 ether 00:80:c8:76:ec:80 My problem is that when I turn on the alias switch in ppp to NAT the incoming data from the 192.168.1.0/24 network, it also seems to be doing NAT on the real ip 203.36.203.193 address. I can ping this address but when I try and connect to a service it times out. Is there any way I can specify which addresses are to be translated and which are not ? Any help would be appreciated. Regards Andrew Kaszubski - Technical Consultant - M: 0411263880 Dimpex Pty Ltd - Engineering & Computer Consulting E-mail apk@dimpex.com.au http://www.dimpex.com.au To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 00:54:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA23479 for freebsd-isp-outgoing; Tue, 12 May 1998 00:54:54 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freebie.lemis.com (freebie.lemis.com [139.130.136.133]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA23471 for ; Tue, 12 May 1998 00:54:48 -0700 (PDT) (envelope-from grog@lemis.com) Received: (from grog@localhost) by freebie.lemis.com (8.8.8/8.8.7) id RAA25911; Tue, 12 May 1998 17:24:46 +0930 (CST) (envelope-from grog) Message-ID: <19980512172446.O20153@freebie.lemis.com> Date: Tue, 12 May 1998 17:24:46 +0930 From: Greg Lehey To: Mukti Arip , freebsd-isp@FreeBSD.ORG Subject: inetd in realloc() (was: FreeBSD error message) References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Mukti Arip on Tue, May 12, 1998 at 01:52:21PM +0700 WWW-Home-Page: http://www.lemis.com/~grog Organization: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-41-739-7062 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 12 May 1998 at 13:52:21 +0700, Mukti Arip wrote: > My FreeBSD machine give me error message like this: > > inetd in realloc(): warning: junk pointer, too low to make sense. > > What's the meaning of that error message? It's a bug in inetd. It seems to be related to running low on swap, but I haven't been able to pinpoint it yet. You don't need to recompile inetd, just restarting it will clear up the problem. If anybody has this problem, please contact me *before* restarting it. I'd really like to find out where it happens. Greg -- See complete headers for address and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 01:50:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA29946 for freebsd-isp-outgoing; Tue, 12 May 1998 01:50:44 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from divre5.telkom.co.id ([202.134.0.55]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id BAA29938 for ; Tue, 12 May 1998 01:50:35 -0700 (PDT) (envelope-from sandy@divre5.telkom.co.id) Received: from dial-up by divre5.telkom.co.id (SMI-8.6/SMI-SVR4) id PAA19987; Tue, 12 May 1998 15:41:44 -0700 Message-ID: <000d01bd7d82$682d9480$7305600a@dial-up.divre5.net> From: "Arisandy" To: "Isp-FreeBSD" Subject: Can't routing Date: Tue, 12 May 1998 15:46:07 +0700 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I just finish setup my PPP server using mgetty+pppd but the remote host can't join into my network in /etc/options i add : proxyarp but still the same :( in linux(redhat) i must setting /etc/sysconfig/network IP_FORWARD=true in FreeBSD....??? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 03:07:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA07621 for freebsd-isp-outgoing; Tue, 12 May 1998 03:07:28 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id DAA07614 for ; Tue, 12 May 1998 03:07:25 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [195.50.91.43] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0yZBxe-00026c-00; Tue, 12 May 1998 11:07:02 +0100 Message-Id: <3.0.5.32.19980512093431.009f7d10@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Tue, 12 May 1998 09:34:31 +0100 To: Damian Hamill From: Manar Hussain Subject: Re: limit ftp uploads Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <355744FD.4487EB71@cablenet.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 19:35 11/05/98 +0100, Damian Hamill wrote: >I'd like to limit the ability for anonymous FTP uploads to IP addresses >in my netblock. > >Any ideas how to do that ? * Don't allow it at all * run tcp wrapper pr some such around your ftp server * run the annonymous ftp server bound to another ip address (given a suitable server) or port so you can block it at your firewall Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 03:11:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA08048 for freebsd-isp-outgoing; Tue, 12 May 1998 03:11:04 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from cam.grad.kiev.ua (grad-UTC-28k8.ukrtel.net [195.5.25.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA08040 for ; Tue, 12 May 1998 03:11:00 -0700 (PDT) (envelope-from Ruslan@Shevchenko.Kiev.UA) Received: from Shevchenko.Kiev.UA (localhost [127.0.0.1]) by cam.grad.kiev.ua (8.8.8/8.8.5) with ESMTP id NAA24764; Tue, 12 May 1998 13:07:56 +0300 (EEST) Message-ID: <35581F6E.3AAB3BB0@Shevchenko.Kiev.UA> Date: Tue, 12 May 1998 13:07:48 +0300 From: Ruslan Shevchenko Reply-To: rssh@grad.kiev.ua Organization: GlavAPU X-Mailer: Mozilla 4.04 [en] (X11; I; FreeBSD 2.2.5-STABLE i386) MIME-Version: 1.0 To: Arisandy CC: Isp-FreeBSD Subject: Re: Can't routing References: <000d01bd7d82$682d9480$7305600a@dial-up.divre5.net> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Arisandy wrote: > I just finish setup my PPP server using mgetty+pppd > but the remote host can't join into my network > in /etc/options i add : > proxyarp > > but still the same :( > > in linux(redhat) i must setting /etc/sysconfig/network > IP_FORWARD=true > > in FreeBSD....??? > GATEWAY=YES in /etc/rc.conf (you can look in FreeBSD FAQ and Handbook for things like this) > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- @= //RSSH mailto:Ruslan@Shevchenko.Kiev.UA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 05:06:45 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA20844 for freebsd-isp-outgoing; Tue, 12 May 1998 05:06:45 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA20837 for ; Tue, 12 May 1998 05:06:42 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id WAA08839; Tue, 12 May 1998 22:05:50 +1000 (EST) Date: Tue, 12 May 1998 22:05:49 +1000 (EST) From: "Daniel O'Callaghan" To: Arisandy cc: Isp-FreeBSD Subject: Re: Can't routing In-Reply-To: <000d01bd7d82$682d9480$7305600a@dial-up.divre5.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 12 May 1998, Arisandy wrote: > I just finish setup my PPP server using mgetty+pppd > but the remote host can't join into my network > in /etc/options i add : > proxyarp > > but still the same :( > > in linux(redhat) i must setting /etc/sysconfig/network > IP_FORWARD=true > > in FreeBSD....??? in /etc/rc.conf gateway="YES" Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 05:09:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA21249 for freebsd-isp-outgoing; Tue, 12 May 1998 05:09:43 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA21238 for ; Tue, 12 May 1998 05:09:40 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id WAA08846; Tue, 12 May 1998 22:09:21 +1000 (EST) Date: Tue, 12 May 1998 22:09:21 +1000 (EST) From: "Daniel O'Callaghan" To: Manar Hussain cc: Damian Hamill , freebsd-isp@FreeBSD.ORG Subject: Re: limit ftp uploads In-Reply-To: <3.0.5.32.19980512093431.009f7d10@stingray.ivision.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 12 May 1998, Manar Hussain wrote: > At 19:35 11/05/98 +0100, Damian Hamill wrote: > >I'd like to limit the ability for anonymous FTP uploads to IP addresses > >in my netblock. > > > >Any ideas how to do that ? > > * Don't allow it at all > * run tcp wrapper pr some such around your ftp server > * run the annonymous ftp server bound to another ip address (given a > suitable server) or port so you can block it at your firewall One possibility is to use wu-ftpd and define a guest class user (chrooted to homedir) in ftpaccess, which has restricted locations in ftphosts. I don't think this sort of thing is in FreeBSD's ftpd. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 05:55:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id FAA27312 for freebsd-isp-outgoing; Tue, 12 May 1998 05:55:55 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from korin.warman.org.pl (korin.nask.waw.pl [148.81.160.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA27297 for ; Tue, 12 May 1998 05:55:48 -0700 (PDT) (envelope-from abial@nask.pl) Received: from localhost (abial@localhost) by korin.warman.org.pl (8.8.8/8.8.5) with SMTP id OAA10789 for ; Tue, 12 May 1998 14:59:28 +0200 (CEST) X-Authentication-Warning: korin.warman.org.pl: abial owned process doing -bs Newsgroups: comp.unix.bsd.freebsd.misc Date: Tue, 12 May 1998 14:59:25 +0200 (CEST) From: Andrzej Bialecki X-Sender: abial@korin.warman.org.pl Subject: New boot.flp with CAM support Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII To: undisclosed-recipients:; Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello! I prepared new set of installation floppies with built-in SCSI CAM code. This allows you (among others) to install FreeBSD on the machines equipped with new AHA7895 SCSI controller. You can get them from: http://www.freebsd.org/~abial/cam-boot/ Please read carefully the instructions in README - you'll need both floppies, and you'll need to follow special bootstrapping procedure described therein. I used 3.0-current sources from 13.04.1998, patched with CAM patches from the same day. Andrzej Bialecki --------------------+--------------------------------------------------------- abial@nask.pl | if(halt_per_mth > 0) { fetch("http://www.freebsd.org") } Research & Academic | "Be open-minded, but don't let your brains to fall out." Network in Poland | All of the above (and more) is just my personal opinion. --------------------+--------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 08:42:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA22573 for freebsd-isp-outgoing; Tue, 12 May 1998 08:42:25 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns1.walls-media.com (ns1.walls-media.com [12.6.113.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA22568 for ; Tue, 12 May 1998 08:42:22 -0700 (PDT) (envelope-from bryanb@walls-media.com) Received: from ntwksbry ([12.6.113.54]) by ns1.walls-media.com (Post.Office MTA v3.1.2 release (PO205-101c) ID# 0-0U10L2S100) with SMTP id AAA353 for ; Tue, 12 May 1998 10:39:56 -0500 Message-ID: <004001bd7dbc$8cf85310$3671060c@ntwksbry.walls-media.com> From: "Bryan Bunch" To: Subject: Bandwidth Allocation Date: Tue, 12 May 1998 10:42:20 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know of a way or a product to allocate bandwidth by IP address range. The reason I ask is because in our office building we have some people who are in the same building who want high speed net access and they want to run copper to us and plug into our network, but I need to know how we can effectively limit their bandwidth. Thanks for any suggestions/recommendations.. Bryan bryanb@walls-media.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 10:43:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA13689 for freebsd-isp-outgoing; Tue, 12 May 1998 10:43:35 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id KAA13651 for ; Tue, 12 May 1998 10:43:27 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id SAA19662; Tue, 12 May 1998 18:11:42 +0200 From: Luigi Rizzo Message-Id: <199805121611.SAA19662@labinfo.iet.unipi.it> Subject: Re: Bandwidth Allocation To: bryanb@walls-media.com (Bryan Bunch) Date: Tue, 12 May 1998 18:11:41 +0200 (MET DST) Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <004001bd7dbc$8cf85310$3671060c@ntwksbry.walls-media.com> from "Bryan Bunch" at May 12, 98 10:42:01 am X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Does anyone know of a way or a product to allocate bandwidth by IP address range. there is a commercial product by ETinc (dennis will probably post the exact references), and there is my dummynet stuff which I have just finished to integrate with the ipfw code to allow flexible configuration, and there is the ALTQ package that can probably do something similar dummynet is at http://www.iet.unipi.it/~luigi/ip_dummynet/ and runs on 2.2.6, and probably on 3.0 as well. It can be configured with a modified ipfw command. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 12:03:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA02104 for freebsd-isp-outgoing; Tue, 12 May 1998 12:03:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns1.win.net (ns1.win.net [204.215.209.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA02076 for ; Tue, 12 May 1998 12:03:04 -0700 (PDT) (envelope-from freebsd-isp@launchpad.win.net) Received: from launchpad.win.net (notebook01.win.net [204.215.209.215]) by ns1.win.net (8.8.7/8.6.9) with ESMTP id PAA10132 for ; Tue, 12 May 1998 15:02:57 -0400 (EDT) Message-ID: <35589BB2.D5C9606B@launchpad.win.net> Date: Tue, 12 May 1998 14:57:54 -0400 From: "Joe Mays (FreeBSD ISP Mail List)" X-Mailer: Mozilla 4.04 [en] (Win95; U) MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Add me Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org subscribe freebsd-isp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 13:35:30 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA19440 for freebsd-isp-outgoing; Tue, 12 May 1998 13:35:30 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from domino.primelink.com (domino.primelink.com [206.24.58.56]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id NAA19433 for ; Tue, 12 May 1998 13:35:27 -0700 (PDT) (envelope-from kbrown@primelink.com) From: kbrown@primelink.com Received: by domino.primelink.com(Lotus SMTP MTA v4.6.1 (569.2 2-6-1998)) id 86256602.00714A68 ; Tue, 12 May 1998 15:37:26 -0500 X-Lotus-FromDomain: HUBER & ASSOCIATES To: freebsd-isp@FreeBSD.ORG Message-ID: <86256602.00711323.00@domino.primelink.com> Date: Tue, 12 May 1998 15:37:24 -0500 Subject: some interesting named syslog entries... Mime-Version: 1.0 Content-type: text/plain; charset=us-ascii Content-Disposition: inline Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I have been getting several entries in my syslog from named. They happen nearly once an hour...what ever do they mean? Response from unexpected source ([208.220.140.1].53) Response from unexpected source ([208.220.140.2].53) What is causing this? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 16:49:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA27208 for freebsd-isp-outgoing; Tue, 12 May 1998 16:49:20 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dt050n33.san.rr.com (@dt053nd2.san.rr.com [204.210.34.210]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA27202 for ; Tue, 12 May 1998 16:49:16 -0700 (PDT) (envelope-from Studded@dal.net) Received: from dal.net (Studded@localhost [127.0.0.1]) by dt050n33.san.rr.com (8.8.8/8.8.8) with ESMTP id QAA09733; Tue, 12 May 1998 16:49:10 -0700 (PDT) (envelope-from Studded@dal.net) Message-ID: <3558DFF5.DC16BC44@dal.net> Date: Tue, 12 May 1998 16:49:09 -0700 From: Studded Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.05 [en] (X11; I; FreeBSD 2.2.6-STABLE-0507 i386) MIME-Version: 1.0 To: kbrown@primelink.com CC: freebsd-isp@FreeBSD.ORG Subject: Re: some interesting named syslog entries... References: <86256602.00711323.00@domino.primelink.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org kbrown@primelink.com wrote: > > I have been getting several entries in my syslog from named. They happen > nearly once an hour...what ever do they mean? > > Response from unexpected source ([208.220.140.1].53) > Response from unexpected source ([208.220.140.2].53) Most times that message is harmless. It means that you queried a nameserver at one IP address and the nameserver sent out its response on a different one. It *can* mean that someone is attempting various exploits against your nameserver (especially if it's a resolver) however if you are using BIND 4.9.6 or later you needn't worry about those exploits (although you should upgrade to 4.9.7 or 8.1.2). A little detective work might give you a hint as to where the information is coming from, here's where I usually start: 146# whois -a 208.220.140 Green Hills Telephone (NETBLK-UU-208-220-140) UU-208-220-140 208.220.140.0 - 208.220.141.255 UUNET Technologies, Inc. (NETBLK-UUNET1996B) UUNET1996B 208.192.0.0 - 208.243.255.255 Is anyone from your site looking up something at Green Hills Telephone? :) Good luck, Doug -- *** Chief Operations Officer, DALnet IRC network *** *** Proud designer and maintainer of the world's largest Internet *** Relay Chat server with 5,328 simultaneous connections. *** Try spider.dal.net on ports 6662-4 (Powered by FreeBSD) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue May 12 20:29:47 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA29247 for freebsd-isp-outgoing; Tue, 12 May 1998 20:29:47 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA29241 for ; Tue, 12 May 1998 20:29:44 -0700 (PDT) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id UAA12774; Tue, 12 May 1998 20:29:14 -0700 (PDT) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma012772; Tue May 12 20:28:51 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id UAA02366; Tue, 12 May 1998 20:28:49 -0700 (PDT) From: Archie Cobbs Message-Id: <199805130328.UAA02366@bubba.whistle.com> Subject: Re: FreeBSD error message In-Reply-To: from Mukti Arip at "May 12, 98 01:52:21 pm" To: mukti@unpad.ac.id (Mukti Arip) Date: Tue, 12 May 1998 20:28:49 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Mukti Arip writes: > My FreeBSD machine give me error message like this: > > inetd in realloc(): warning: junk pointer, too low to make sense. > > What's the meaning of that error message? This is a message from the malloc/free code in libc. inetd is apparently corrupting the heap somehow (in this case, trying to free() a bogus value). -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 00:05:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA26247 for freebsd-isp-outgoing; Wed, 13 May 1998 00:05:00 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from korin.warman.org.pl (korin.nask.waw.pl [148.81.160.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA26232 for ; Wed, 13 May 1998 00:04:55 -0700 (PDT) (envelope-from abial@nask.pl) Received: from localhost (abial@localhost) by korin.warman.org.pl (8.8.8/8.8.5) with SMTP id JAA02605; Wed, 13 May 1998 09:06:52 +0200 (CEST) X-Authentication-Warning: korin.warman.org.pl: abial owned process doing -bs Date: Wed, 13 May 1998 09:06:51 +0200 (CEST) From: Andrzej Bialecki X-Sender: abial@korin.warman.org.pl To: Archie Cobbs cc: Mukti Arip , freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD error message (junk pointer) In-Reply-To: <199805130328.UAA02366@bubba.whistle.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 12 May 1998, Archie Cobbs wrote: > Mukti Arip writes: > > My FreeBSD machine give me error message like this: > > > > inetd in realloc(): warning: junk pointer, too low to make sense. > > > > What's the meaning of that error message? > > This is a message from the malloc/free code in libc. inetd is > apparently corrupting the heap somehow (in this case, trying > to free() a bogus value). I know of a person who (apparently) can reproduce this bug at will, but I forgot who wanted to contact with such a person, so if he still wants it, let him speak up... Andrzej Bialecki --------------------+--------------------------------------------------------- abial@nask.pl | if(halt_per_mth > 0) { fetch("http://www.freebsd.org") } Research & Academic | "Be open-minded, but don't let your brains to fall out." Network in Poland | All of the above (and more) is just my personal opinion. --------------------+--------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 00:14:11 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA27909 for freebsd-isp-outgoing; Wed, 13 May 1998 00:14:11 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from divre5.telkom.co.id ([202.134.0.55]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id AAA27896 for ; Wed, 13 May 1998 00:14:04 -0700 (PDT) (envelope-from sandy@divre5.telkom.co.id) Received: from dial-up by divre5.telkom.co.id (SMI-8.6/SMI-SVR4) id OAA25165; Wed, 13 May 1998 14:05:10 -0700 Message-ID: <001301bd7e3e$14557960$7305600a@dial-up.divre5.net> From: "Arisandy" To: "Isp" Subject: Mgetty problem Date: Wed, 13 May 1998 14:09:31 +0700 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org hi....all I use Mgetty 1.1.11 + FreeBSD 2.2.6 to receive incoming call but until verifying user.....it must be disconnected with error ppp not responding :( may be the /AutoPPP - p /usr/pppd -detach is not run.... how can i set AutoPPP for Mgetty 1.1.11 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 00:50:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA03370 for freebsd-isp-outgoing; Wed, 13 May 1998 00:50:53 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from fenchurch.k2net.co.uk (fenchurch.k2net.co.uk [194.164.132.86]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA03364 for ; Wed, 13 May 1998 00:50:50 -0700 (PDT) (envelope-from andy@catherine.k2net.co.uk) Received: from catherine.k2net.co.uk (andy@catherine.k2net.co.uk [194.164.132.90]) by fenchurch.k2net.co.uk (8.8.8/8.8.8) with ESMTP id IAA13790 for ; Wed, 13 May 1998 08:53:02 +0100 (BST) Received: (from andy@localhost) by catherine.k2net.co.uk (8.8.8/8.8.8) id IAA04787 for freebsd-isp@freeBSD.org; Wed, 13 May 1998 08:55:15 +0100 (BST) From: Andy Kirkham Message-Id: <199805130755.IAA04787@catherine.k2net.co.uk> Subject: ipfw log To: freebsd-isp@FreeBSD.ORG Date: Wed, 13 May 1998 08:55:15 +0100 (BST) X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Can anyone tell me what the following log from ipfw means. I've searched everywhere but as yet no solution..... Deny TCP Fragment = 69 I have had this coming into our mail server from a number of other mail machines. The mail is eventually bounced as some of it is obviously missing. Any ideas what is killing frag 69? Andy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 00:52:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA03615 for freebsd-isp-outgoing; Wed, 13 May 1998 00:52:44 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from xwin.webweaver.net (xwin.webweaver.net [208.138.29.35]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA03609 for ; Wed, 13 May 1998 00:52:42 -0700 (PDT) (envelope-from nicole@xwin.webweaver.net) Received: (from nicole@localhost) by xwin.webweaver.net (8.8.8/8.8.7) id AAA12598 for freebsd-isp@freebsd.org; Wed, 13 May 1998 00:53:18 -0700 (PDT) (envelope-from nicole) Message-ID: X-Mailer: XFMail 1.2 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii MIME-Version: 1.0 Date: Wed, 13 May 1998 00:53:18 -0700 (PDT) From: Nicole To: freebsd-isp@FreeBSD.ORG Subject: tricky sendmail question Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id AAA03610 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi everyone I know this is more of a sendmail question, but I am hoping someone can help me with a tricky sendmail problem. I have a server running sendmail that i want to set up as fallover for our main mailserver, however I can't seem to figure out the setup for it. The specs: 1) It must not relay for non users - currently has anti relay hacks for IP addre sses and domains. 2) It must not send mail directly, but must hold in que until delivery to primar y mailer can accept it. I know it is something simple, but I can't seeem to figure it out... Too much work not enough sleep :< Thanks! Nicole nicole@webweaver.net - http://www.webweaver.net/ webmistress@dangermouse.org - http://www.dangermouse.org/ ------------------------------------------------- -- Powered by Coka Cola and FreeBSD -- -- Stong enough for a man - But made for a Woman -- -- Microsoft: What bug would you like today? -- -- I tried an internal modem once, but it hurt when I walked -- --------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 01:03:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA05999 for freebsd-isp-outgoing; Wed, 13 May 1998 01:03:43 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freebie.lemis.com (freebie.lemis.com [139.130.136.133]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA05968 for ; Wed, 13 May 1998 01:03:34 -0700 (PDT) (envelope-from grog@lemis.com) Received: (from grog@localhost) by freebie.lemis.com (8.8.8/8.8.7) id RAA02895; Wed, 13 May 1998 17:32:49 +0930 (CST) (envelope-from grog) Message-ID: <19980513173249.M20153@freebie.lemis.com> Date: Wed, 13 May 1998 17:32:49 +0930 From: Greg Lehey To: Andrzej Bialecki , Archie Cobbs Cc: Mukti Arip , freebsd-isp@FreeBSD.ORG Subject: Re: FreeBSD error message (junk pointer) References: <199805130328.UAA02366@bubba.whistle.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Andrzej Bialecki on Wed, May 13, 1998 at 09:06:51AM +0200 WWW-Home-Page: http://www.lemis.com/~grog Organization: LEMIS, PO Box 460, Echunga SA 5153, Australia Phone: +61-8-8388-8286 Fax: +61-8-8388-8725 Mobile: +61-41-739-7062 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998 at 9:06:51 +0200, Andrzej Bialecki wrote: > On Tue, 12 May 1998, Archie Cobbs wrote: > >> Mukti Arip writes: >>> My FreeBSD machine give me error message like this: >>> >>> inetd in realloc(): warning: junk pointer, too low to make sense. >>> >>> What's the meaning of that error message? >> >> This is a message from the malloc/free code in libc. inetd is >> apparently corrupting the heap somehow (in this case, trying >> to free() a bogus value). > > I know of a person who (apparently) can reproduce this bug at will, but I > forgot who wanted to contact with such a person, so if he still wants it, > let him speak up... Me. Sure, it would be particularly interesting if it can be repeated at will. Greg -- See complete headers for address and phone numbers finger grog@lemis.com for PGP public key To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 03:11:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA26988 for freebsd-isp-outgoing; Wed, 13 May 1998 03:11:00 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA26964 for ; Wed, 13 May 1998 03:10:57 -0700 (PDT) (envelope-from kpielorz@tdx.co.uk) Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242]) by caladan.tdx.co.uk (8.8.8/8.8.8) with ESMTP id LAA28777 for ; Wed, 13 May 1998 11:10:58 +0100 (BST) (envelope-from kpielorz@tdx.co.uk) Message-ID: <355971B9.23080379@tdx.co.uk> Date: Wed, 13 May 1998 11:11:05 +0100 From: Karl Pielorz Organization: TDX X-Mailer: Mozilla 4.04 [en] (WinNT; I) MIME-Version: 1.0 To: isp@FreeBSD.ORG Subject: Rhosts question... Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi All, I've now got quite a 'farm' of FreeBSD boxes on our network (around 8 in total), which I have to log into on a daily basis to set things up on, maintain etc... My question is about .rhosts Up until now, I've avoided them as the source of 'all-evil' etc. - as a lot of the books I've been reading do make them out to be very nasty things indeed... I've just read one article though that was refering to the way implementing .rhosts can stop you from having to send the root password accross the network, and therefore is a more 'secure' way of constantly logging into machines as root etc. Has anyone got any comments on this? I guess I really should look at setting up SSH if it's bothering me that much... ;-) Kp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 04:16:06 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA08296 for freebsd-isp-outgoing; Wed, 13 May 1998 04:16:06 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA08187 for ; Wed, 13 May 1998 04:16:01 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id VAA11343; Wed, 13 May 1998 21:15:48 +1000 (EST) Date: Wed, 13 May 1998 21:15:47 +1000 (EST) From: "Daniel O'Callaghan" To: Karl Pielorz cc: isp@FreeBSD.ORG Subject: Re: Rhosts question... In-Reply-To: <355971B9.23080379@tdx.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998, Karl Pielorz wrote: > I've just read one article though that was refering to the way implementing > .rhosts can stop you from having to send the root password accross the > network, and therefore is a more 'secure' way of constantly logging into > machines as root etc. > > Has anyone got any comments on this? > > I guess I really should look at setting up SSH if it's bothering me that > much... ;-) r commands do reduce password transmission in clear text, but often don't eliminate it. They are also dependent on accurate DNS. SSH and friends are much more secure, especially if used with RSA public key authentication. Once you get the hang of it, SSH is also easy to install and use. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 12:24:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA27357 for freebsd-isp-outgoing; Wed, 13 May 1998 12:24:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [192.109.159.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA27251 for ; Wed, 13 May 1998 12:24:15 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id VAA03298 for isp@FreeBSD.ORG; Wed, 13 May 1998 21:15:09 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id VAA13027; Wed, 13 May 1998 21:03:48 +0200 (CEST) (envelope-from andreas) Message-ID: <19980513210347.A12724@klemm.gtn.com> Date: Wed, 13 May 1998 21:03:47 +0200 From: Andreas Klemm To: isp@FreeBSD.ORG Subject: how many virtual www server on a 2.2.6 PPro machine ? Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi ! What do you think, if I want to put as many virtual webservers as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) ... how many would that be ? Currently a Linux DLD 5.1 chokes on over 120 virtual webservers. Every virtual webserver has it's own log an error logfile. I know, that most people only put about 40 or so virtual webservers onto one machine, but the virtual webservers aren't heavy loaded ... The max number of IP aliases is 255 I think per network card. If I would like to configure 240 ... would that run or do you see problems ? I'd try that if you don't know. What about the maximum number of open files ? Andreas /// -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 12:57:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA03007 for freebsd-isp-outgoing; Wed, 13 May 1998 12:57:24 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA03001 for ; Wed, 13 May 1998 12:57:23 -0700 (PDT) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id MAA21002; Wed, 13 May 1998 12:56:47 -0700 (PDT) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma021000; Wed May 13 12:56:47 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id MAA09494; Wed, 13 May 1998 12:56:47 -0700 (PDT) From: Archie Cobbs Message-Id: <199805131956.MAA09494@bubba.whistle.com> Subject: Re: ipfw log In-Reply-To: <199805130755.IAA04787@catherine.k2net.co.uk> from Andy Kirkham at "May 13, 98 08:55:15 am" To: ak@k2net.co.uk (Andy Kirkham) Date: Wed, 13 May 1998 12:56:46 -0700 (PDT) Cc: freebsd-isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andy Kirkham writes: > Can anyone tell me what the following log from ipfw means. I've searched > everywhere but as yet no solution..... > > Deny TCP Fragment = 69 This simply means that one of your ipfw rules is blocking a TCP packet from to , and the packet is a fragment with non-zero offset. If you don't like it, remove the rule.. -Archie PS. What version of FreeBSD are you running? ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 13:03:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA04342 for freebsd-isp-outgoing; Wed, 13 May 1998 13:03:12 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ns1.netcorps.com (ns1.netcorps.com [207.1.125.101]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA04335 for ; Wed, 13 May 1998 13:03:07 -0700 (PDT) (envelope-from satya@netcorps.com) Received: from localhost (satya@localhost) by ns1.netcorps.com (8.8.5/8.8.5) with SMTP id MAA17659; Wed, 13 May 1998 12:57:48 -0700 (PDT) Date: Wed, 13 May 1998 12:57:48 -0700 (PDT) From: Satya Palani Reply-To: Satya Palani To: Andreas Klemm cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <19980513210347.A12724@klemm.gtn.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998, Andreas Klemm wrote: > What do you think, if I want to put as many virtual webservers > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > ... how many would that be ? You should be able to hit at least 500. Depending on how heavily accessed the sites are, maybe more. > The max number of IP aliases is 255 I think per network card. > If I would like to configure 240 ... would that run or > do you see problems ? I'd try that if you don't know. Some OS's have this limit (Solaris), but you shouldn't have this problem with FreeBSD. > What about the maximum number of open files ? Recompile libc with a higher FD_SETSIZE. 1024 has worked well for us. Don't forget to up maxusers in the kernel too. Satya NetCorps/Alldomains.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 13:05:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA04883 for freebsd-isp-outgoing; Wed, 13 May 1998 13:05:07 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (freefall.pipeline.ch [195.134.128.40]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA04857 for ; Wed, 13 May 1998 13:05:00 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA284; Wed, 13 May 1998 22:03:40 +0200 Message-ID: <3559FCB1.C2722594@pipeline.ch> Date: Wed, 13 May 1998 22:04:01 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: Andreas Klemm CC: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andreas Klemm wrote: > > Hi ! > > What do you think, if I want to put as many virtual webservers > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > ... how many would that be ? Lots... > Currently a Linux DLD 5.1 chokes on over 120 virtual webservers. > Every virtual webserver has it's own log an error logfile. Just compile with enough MAXUSERS and modify the login class to allow all the open files. > I know, that most people only put about 40 or so virtual > webservers onto one machine, but the virtual webservers > aren't heavy loaded ... We are running with 128 or so, no problem so far (with apache). I've set up one apache daemon for every 32 virtual servers in the case one fails and to have not too many open files per process. The box works like a champ (only P5-133) due to the superior VM/task sheduler of FreeBSD. > The max number of IP aliases is 255 I think per network card. > If I would like to configure 240 ... would that run or > do you see problems ? I'd try that if you don't know. I've seen a mail on that subject sometime last year. It said there should be 'no limit' and he tried it with over 300 (if my memory did'nt fail). One suggestion was to alias your loopback interface with all that ip's and put a static route on your router that points to the whole class-c on your box. This avoids all the ARP entries on your ethernet (and I think the arp tables are not very huge). > What about the maximum number of open files ? See above. > Andreas /// -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 13:35:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA11096 for freebsd-isp-outgoing; Wed, 13 May 1998 13:35:26 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA11083 for ; Wed, 13 May 1998 13:35:15 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id WAA07161; Wed, 13 May 1998 22:30:14 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id WAA15495; Wed, 13 May 1998 22:23:22 +0200 (CEST) (envelope-from andreas) Message-ID: <19980513222322.B15191@klemm.gtn.com> Date: Wed, 13 May 1998 22:23:22 +0200 From: Andreas Klemm To: Satya Palani Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Satya Palani on Wed, May 13, 1998 at 12:57:48PM -0700 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, May 13, 1998 at 12:57:48PM -0700, Satya Palani wrote: > On Wed, 13 May 1998, Andreas Klemm wrote: > > > What do you think, if I want to put as many virtual webservers > > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > > ... how many would that be ? > > You should be able to hit at least 500. Depending on how heavily accessed > the sites are, maybe more. Wow ... > > The max number of IP aliases is 255 I think per network card. > > If I would like to configure 240 ... would that run or > > do you see problems ? I'd try that if you don't know. > > Some OS's have this limit (Solaris), but you shouldn't have this problem > with FreeBSD. Fine ! > > What about the maximum number of open files ? > > Recompile libc with a higher FD_SETSIZE. 1024 has worked well for us. > Don't forget to up maxusers in the kernel too. 1024 is default on current #ifndef FD_SETSIZE #define FD_SETSIZE 1024 ... Do you perhaps mean a higher value ? -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 13:35:42 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA11124 for freebsd-isp-outgoing; Wed, 13 May 1998 13:35:42 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA11110 for ; Wed, 13 May 1998 13:35:31 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id WAA07163; Wed, 13 May 1998 22:30:19 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id WAA15504; Wed, 13 May 1998 22:24:42 +0200 (CEST) (envelope-from andreas) Message-ID: <19980513222442.C15191@klemm.gtn.com> Date: Wed, 13 May 1998 22:24:42 +0200 From: Andreas Klemm To: IBS / Andre Oppermann Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> <3559FCB1.C2722594@pipeline.ch> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <3559FCB1.C2722594@pipeline.ch>; from IBS / Andre Oppermann on Wed, May 13, 1998 at 10:04:01PM +0200 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, May 13, 1998 at 10:04:01PM +0200, IBS / Andre Oppermann wrote: > Andreas Klemm wrote: > > Currently a Linux DLD 5.1 chokes on over 120 virtual webservers. > > Every virtual webserver has it's own log an error logfile. > > Just compile with enough MAXUSERS and modify the login class > to allow all the open files. I currently have maxuser set to 128, is that ok for such an environment ? > > I know, that most people only put about 40 or so virtual > > webservers onto one machine, but the virtual webservers > > aren't heavy loaded ... > > We are running with 128 or so, no problem so far (with apache). > I've set up one apache daemon for every 32 virtual servers in the > case one fails and to have not too many open files per process. > The box works like a champ (only P5-133) due to the superior > VM/task sheduler of FreeBSD. Wow ! ;-) > > The max number of IP aliases is 255 I think per network card. > > If I would like to configure 240 ... would that run or > > do you see problems ? I'd try that if you don't know. > > I've seen a mail on that subject sometime last year. It said > there should be 'no limit' and he tried it with over 300 (if my > memory did'nt fail). One suggestion was to alias your loopback > interface with all that ip's and put a static route on your > router that points to the whole class-c on your box. This avoids > all the ARP entries on your ethernet (and I think the arp tables > are not very huge). Thanks ! Andreas /// -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 14:04:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA16326 for freebsd-isp-outgoing; Wed, 13 May 1998 14:04:10 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (freefall.pipeline.ch [195.134.128.40]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA16138 for ; Wed, 13 May 1998 14:03:54 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA257; Wed, 13 May 1998 23:02:42 +0200 Message-ID: <355A0A86.3432702D@pipeline.ch> Date: Wed, 13 May 1998 23:03:02 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: Andreas Klemm CC: IBS / Andre Oppermann , isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> <3559FCB1.C2722594@pipeline.ch> <19980513222442.C15191@klemm.gtn.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andreas Klemm wrote: > > On Wed, May 13, 1998 at 10:04:01PM +0200, IBS / Andre Oppermann wrote: > > Andreas Klemm wrote: > > > Currently a Linux DLD 5.1 chokes on over 120 virtual webservers. > > > Every virtual webserver has it's own log an error logfile. > > > > Just compile with enough MAXUSERS and modify the login class > > to allow all the open files. > > I currently have maxuser set to 128, is that ok for such an > environment ? Yes, I think so. But theres just another thing popping in my mind: put up your mbufs, the network buffers. They are used for caching/ queueing up the output of apache until the client has fetched all the stuff from the server (and that might take a bit over an 28.8 line). This value is normaly rised with maxusers but there has been a lot of discussion on -hackers or -chat the last weeks. Might be worth to take a look into the archives (and into McKusik, the design and implementation of 4.4BSD, I'm half way through). > > > I know, that most people only put about 40 or so virtual > > > webservers onto one machine, but the virtual webservers > > > aren't heavy loaded ... > > > > We are running with 128 or so, no problem so far (with apache). > > I've set up one apache daemon for every 32 virtual servers in the > > case one fails and to have not too many open files per process. > > The box works like a champ (only P5-133) due to the superior > > VM/task sheduler of FreeBSD. > > Wow ! ;-) I've run squid for 150+ users on a 486-100 with 64MB Ram and SCSI harddisk behind an 256k line. Never had any problem... solid like a rock and hyper performance. Users always asked how many gigs RAM in that box are... > > > The max number of IP aliases is 255 I think per network card. > > > If I would like to configure 240 ... would that run or > > > do you see problems ? I'd try that if you don't know. > > > > I've seen a mail on that subject sometime last year. It said > > there should be 'no limit' and he tried it with over 300 (if my > > memory did'nt fail). One suggestion was to alias your loopback > > interface with all that ip's and put a static route on your > > router that points to the whole class-c on your box. This avoids > > all the ARP entries on your ethernet (and I think the arp tables > > are not very huge). > > Thanks ! > > Andreas /// It's interesting, you ask always questions I know the answer for ;) Maybe we should put up a german language FreeBSD mailing list? -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 15:34:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA03943 for freebsd-isp-outgoing; Wed, 13 May 1998 15:34:32 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA03937 for ; Wed, 13 May 1998 15:34:25 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id AAA13273; Thu, 14 May 1998 00:30:12 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id AAA08563; Thu, 14 May 1998 00:14:42 +0200 (CEST) (envelope-from andreas) Message-ID: <19980514001441.A6630@klemm.gtn.com> Date: Thu, 14 May 1998 00:14:41 +0200 From: Andreas Klemm To: IBS / Andre Oppermann Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> <3559FCB1.C2722594@pipeline.ch> <19980513222442.C15191@klemm.gtn.com> <355A0A86.3432702D@pipeline.ch> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <355A0A86.3432702D@pipeline.ch>; from IBS / Andre Oppermann on Wed, May 13, 1998 at 11:03:02PM +0200 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, May 13, 1998 at 11:03:02PM +0200, IBS / Andre Oppermann wrote: > > Yes, I think so. But theres just another thing popping in my mind: > put up your mbufs, the network buffers. They are used for caching/ > queueing up the output of apache until the client has fetched all > the stuff from the server (and that might take a bit over an 28.8 > line). This value is normaly rised with maxusers but there has > been a lot of discussion on -hackers or -chat the last weeks. Might > be worth to take a look into the archives (and into McKusik, the > design and implementation of 4.4BSD, I'm half way through). Ok, will look for this ... > I've run squid for 150+ users on a 486-100 with 64MB Ram and SCSI > harddisk behind an 256k line. Never had any problem... solid like > a rock and hyper performance. Users always asked how many gigs RAM > in that box are... I'm already as fast as Hypersparc and I think more ;-)) > It's interesting, you ask always questions I know the answer for ;) > Maybe we should put up a german language FreeBSD mailing list? There are german FreeBSD mailing lists ;-) Relatively low traffic... de-bsd-questions@DE.FreeBSD.ORG de-bsd-chat@mail.de.freebsd.org BTW, we'll meet in Hamburg in June ... Hellmuth Michaelis was calling for a summer meeting ;-) Maybe Stefan Esser and Christoph Kukulis are there as well. Andreas /// -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 15:43:21 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA05575 for freebsd-isp-outgoing; Wed, 13 May 1998 15:43:21 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA05563 for ; Wed, 13 May 1998 15:43:09 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [194.112.59.75] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0yZkEv-0006eX-00; Wed, 13 May 1998 23:43:10 +0100 Message-Id: <3.0.5.32.19980513234205.00b97e30@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Wed, 13 May 1998 23:42:05 +0100 To: isp@FreeBSD.ORG From: Manar Hussain Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <3559FCB1.C2722594@pipeline.ch> References: <19980513210347.A12724@klemm.gtn.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I know someone who got to 1000 sites but it killed the machine (bit more work on config and RAM etc. would have cured it though). No several machines running fine with 600 off servers. Make sure there are enough mbufs and file handles available (preferably avoid too many file handles being needed by not giving all sites their own logs unless needed) and you're a good way there ... >memory did'nt fail). One suggestion was to alias your loopback >interface with all that ip's and put a static route on your >router that points to the whole class-c on your box. This avoids >all the ARP entries on your ethernet (and I think the arp tables >are not very huge). we do that ... not got too many interfaces on that box yet though so it's hard to say if it makes much difference. More convenient on the ip address tracking though :) Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 16:08:57 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA10653 for freebsd-isp-outgoing; Wed, 13 May 1998 16:08:57 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA10632 for ; Wed, 13 May 1998 16:08:51 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA12608; Thu, 14 May 1998 09:08:34 +1000 (EST) Date: Thu, 14 May 1998 09:08:34 +1000 (EST) From: "Daniel O'Callaghan" To: Andreas Klemm cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <19980513210347.A12724@klemm.gtn.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998, Andreas Klemm wrote: > What do you think, if I want to put as many virtual webservers > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > ... how many would that be ? > > Currently a Linux DLD 5.1 chokes on over 120 virtual webservers. Weird. It shouldn't choke on that. > The max number of IP aliases is 255 I think per network card. > If I would like to configure 240 ... would that run or > do you see problems ? I'd try that if you don't know. If you are going to put lots of webservers on a machine, alias the IPs onto lo0 and treat the ethernet interface as the gateway for other machines to send packets to VWS network. My webserver 203.29.224.19 (de0) has all of 203.8.13.0 and half of 203.8.12.0 on lo0. My router has the equivalent of route add -net 203.8.12.0 -netmask 0xffffff80 203.29.224.19 route add -net 203.8.13.0 203.29.224.19 Basically, there is no limit to the number of IPs you can put on a machine. 5000 was tested once.. > What about the maximum number of open files ? You should build with something like MAXUSERS=256, OPENMAX=1024 and something reasonable for CHILDMAX. Hmm, I really should write a Handbook section on this... regards, Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 16:14:05 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA11663 for freebsd-isp-outgoing; Wed, 13 May 1998 16:14:05 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA11630 for ; Wed, 13 May 1998 16:13:58 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id JAA12618; Thu, 14 May 1998 09:13:41 +1000 (EST) Date: Thu, 14 May 1998 09:13:41 +1000 (EST) From: "Daniel O'Callaghan" To: Andreas Klemm cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <19980513210347.A12724@klemm.gtn.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998, Andreas Klemm wrote: > What do you think, if I want to put as many virtual webservers > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > ... how many would that be ? Oh, I forgot to say that my machine with >300 VWS is a Pentium 133 with 64 MB RAM, taking about 5 million hits/month (bursts to about 15/second). The disks are plain SCSI-2, and no-one complains that it is slow, but I'm in the process of upgrading it to a 686-PR233 just to get a bit more headroom. It generally has about 10-15 MB disk cache, as shown by 'top'. A PPro200 with 128 MB RAM should be able to serve 20-30 million hits/month no sweat. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed May 13 16:47:50 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA17049 for freebsd-isp-outgoing; Wed, 13 May 1998 16:47:50 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from RWSystems.net (root@rwsystr.RWSystems.net [204.251.23.1]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id QAA17044 for ; Wed, 13 May 1998 16:47:48 -0700 (PDT) (envelope-from jwyatt@rwsystr.RWSystems.net) Received: from rwsystr.RWSystems.net by RWSystems.net with smtp (Smail3.1.29.1 #3) id m0yZl9I-0001gvC; Wed, 13 May 98 18:41 CDT Date: Wed, 13 May 1998 18:41:20 -0500 (CDT) From: James Wyatt To: Andreas Klemm cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <19980513210347.A12724@klemm.gtn.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 13 May 1998, Andreas Klemm wrote: > What do you think, if I want to put as many virtual webservers > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > ... how many would that be ? Last I heard, if you multinet (overlay 'C' subnets on the same interface, you should be able to put hundreds if you increase all the IPC stuff (file descs, mbufs, etc...). The ipalias stuff adds some decision making overhead onto the IP stack which slows packet throughput for everything. You may be better-off using "non-IP Virtual Hosts" in Apache (see host.html in the HTdocs/manual directory). They use one IP address which is easy on the stack and your address space. Apache has to make VHost routing decisions anyway. It works on every reader I've tested with, but something old out there may just go to the default server. Hope this helps - James (jwyatt@rwsystems.net) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 00:20:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA25337 for freebsd-isp-outgoing; Thu, 14 May 1998 00:20:08 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from news1.gtn.com (news1.gtn.com [194.77.0.15]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA25331 for ; Thu, 14 May 1998 00:20:03 -0700 (PDT) (envelope-from andreas@klemm.gtn.com) Received: (from uucp@localhost) by news1.gtn.com (8.8.6/8.8.6) with UUCP id JAA07447; Thu, 14 May 1998 09:00:18 +0200 (MET DST) Received: (from andreas@localhost) by klemm.gtn.com (8.8.8/8.8.8) id IAA04100; Thu, 14 May 1998 08:47:14 +0200 (CEST) (envelope-from andreas) Message-ID: <19980514084713.C3413@klemm.gtn.com> Date: Thu, 14 May 1998 08:47:13 +0200 From: Andreas Klemm To: "Daniel O'Callaghan" Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: ; from Daniel O'Callaghan on Thu, May 14, 1998 at 09:08:34AM +1000 X-Disclaimer: A free society is one where it is safe to be unpopular X-Operating-System: FreeBSD 3.0-CURRENT SMP Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, May 14, 1998 at 09:08:34AM +1000, Daniel O'Callaghan wrote: > > If you are going to put lots of webservers on a machine, alias the IPs > onto lo0 and treat the ethernet interface as the gateway for other > machines to send packets to VWS network. My webserver 203.29.224.19 > (de0) has all of 203.8.13.0 and half of 203.8.12.0 on lo0. My router has > the equivalent of > > route add -net 203.8.12.0 -netmask 0xffffff80 203.29.224.19 > route add -net 203.8.13.0 203.29.224.19 > > Basically, there is no limit to the number of IPs you can put on a > machine. 5000 was tested once.. > > > What about the maximum number of open files ? > > You should build with something like MAXUSERS=256, OPENMAX=1024 and > something reasonable for CHILDMAX. Thanks ! -- Andreas Klemm http://www.FreeBSD.ORG/~andreas What gives you 90% more speed, for example, in kernel compilation ? http://www.FreeBSD.ORG/~fsmp/SMP/akgraph-a/graph1.html "NT = Not Today" (Maggie Biggs) ``powered by FreeBSD SMP'' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 00:27:04 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA26192 for freebsd-isp-outgoing; Thu, 14 May 1998 00:27:04 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from idiom.com (idiom.com [140.174.82.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA26186 for ; Thu, 14 May 1998 00:27:03 -0700 (PDT) (envelope-from muir@idiom.com) Received: (from muir@localhost) by idiom.com (8.8.8/8.8.5) id AAA01835; Thu, 14 May 1998 00:05:41 -0700 (PDT) Date: Thu, 14 May 1998 00:05:41 -0700 (PDT) From: David Muir Sharnoff Message-Id: <199805140705.AAA01835@idiom.com> To: andreas@klemm.gtn.com Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? Cc: isp@FreeBSD.ORG Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * What do you think, if I want to put as many virtual webservers * as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) * .. how many would that be ? I've run about 300 on my system. A PPro 180, 192MB (at the time). I carefully made sure there were enough file descriptors. There was one serious problem though: bind 4.9.* could not handle more than about 256 interfaces! I had to do an emergency upgrade to bind 8.1.1. -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 01:23:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA05312 for freebsd-isp-outgoing; Thu, 14 May 1998 01:23:25 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id BAA05305 for ; Thu, 14 May 1998 01:23:22 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [195.50.91.43] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0yZtIH-0000pZ-00; Thu, 14 May 1998 09:23:13 +0100 Message-Id: <3.0.5.32.19980514092209.00926460@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Thu, 14 May 1998 09:22:09 +0100 To: James Wyatt From: Manar Hussain Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? Cc: Andreas Klemm , isp@FreeBSD.ORG In-Reply-To: References: <19980513210347.A12724@klemm.gtn.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >You may be better-off using "non-IP Virtual Hosts" in Apache (see >host.html in the HTdocs/manual directory). They use one IP address which >is easy on the stack and your address space. Apache has to make VHost >routing decisions anyway. It works on every reader I've tested with, but >something old out there may just go to the default server. The main browser of note that doesn't support non-ip virtual hosts (i.e. doesn't provide the hostname it's going for) is the default AOL browser (though AOL user can use other browsers if they know how). Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 01:47:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA11127 for freebsd-isp-outgoing; Thu, 14 May 1998 01:47:55 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (freefall.pipeline.ch [195.134.128.40]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA11117 for ; Thu, 14 May 1998 01:47:49 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA62; Thu, 14 May 1998 10:46:34 +0200 Message-ID: <355AAF81.407A9F76@pipeline.ch> Date: Thu, 14 May 1998 10:46:57 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: David Muir Sharnoff CC: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <199805140705.AAA01835@idiom.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org David Muir Sharnoff wrote: > > * What do you think, if I want to put as many virtual webservers > * as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > * .. how many would that be ? > > I've run about 300 on my system. A PPro 180, 192MB (at the time). > > I carefully made sure there were enough file descriptors. There was > one serious problem though: bind 4.9.* could not handle more than > about 256 interfaces! I had to do an emergency upgrade to bind > 8.1.1. Well, you don't have to bind named to all interfaces. Just one, the primary, should be enough. -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 01:53:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA12646 for freebsd-isp-outgoing; Thu, 14 May 1998 01:53:53 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from luke.cpl.net (luke.cpl.net [209.150.92.68]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA12625 for ; Thu, 14 May 1998 01:53:49 -0700 (PDT) (envelope-from shawn@luke.cpl.net) Received: (from shawn@localhost) by luke.cpl.net (8.8.8/8.8.8) id BAA00562; Thu, 14 May 1998 01:52:13 -0700 (PDT) Message-ID: <19980514015212.37909@cpl.net> Date: Thu, 14 May 1998 01:52:12 -0700 From: Shawn Ramsey To: "Daniel O'Callaghan" , Andreas Klemm Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: ; from Daniel O'Callaghan on Thu, May 14, 1998 at 09:13:41AM +1000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, May 14, 1998 at 09:13:41AM +1000, Daniel O'Callaghan wrote: > On Wed, 13 May 1998, Andreas Klemm wrote: > > > What do you think, if I want to put as many virtual webservers > > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > > ... how many would that be ? > > Oh, I forgot to say that my machine with >300 VWS is a Pentium 133 with 64 > MB RAM, taking about 5 million hits/month (bursts to about 15/second). > The disks are plain SCSI-2, and no-one complains that it is slow, but I'm > in the process of upgrading it to a 686-PR233 just to get a bit more > headroom. It generally has about 10-15 MB disk cache, as shown by 'top'. > > A PPro200 with 128 MB RAM should be able to serve 20-30 million > hits/month no sweat. Couldn't a PPro handle this in a day, assuming the majority are HTML hits? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 02:12:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA15029 for freebsd-isp-outgoing; Thu, 14 May 1998 02:12:07 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from idiom.com (idiom.com [140.174.82.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA15020 for ; Thu, 14 May 1998 02:12:04 -0700 (PDT) (envelope-from muir@idiom.com) Received: (from muir@localhost) by idiom.com (8.8.8/8.8.5) id BAA11050; Thu, 14 May 1998 01:54:06 -0700 (PDT) Date: Thu, 14 May 1998 01:54:06 -0700 (PDT) From: David Muir Sharnoff Message-Id: <199805140854.BAA11050@idiom.com> To: "IBS / Andre Oppermann" Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org * Well, you don't have to bind named to all interfaces. Just one, the * primary, should be enough. With 8.1.1, that's true. With 4.9.4, you don't get a choice. -Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 02:18:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA16090 for freebsd-isp-outgoing; Thu, 14 May 1998 02:18:38 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from divre5.telkom.co.id ([202.134.0.55]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id CAA16065; Thu, 14 May 1998 02:18:32 -0700 (PDT) (envelope-from sandy@divre5.telkom.co.id) Received: from dial-up by divre5.telkom.co.id (SMI-8.6/SMI-SVR4) id QAA03992; Thu, 14 May 1998 16:09:06 -0700 Message-ID: <000e01bd7f18$87190b30$7305600a@dial-up.divre5.net> From: "Arisandy" To: "Isp" , "Question" Subject: ppp.conf sample? Date: Thu, 14 May 1998 16:13:09 +0700 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org thanks everyone....my ppp sever run smoothly now :) now i want to connect 3 machines to internet using ppp -alias... anyone have ppp.conf and ppp.linkup example....for that?? i use ppp.conf and ppp.linkup in pedantic ppp primer it's contain error :( Warning :OK-AT-OK\\dATDT\\T : invalid command Warning :Add route failed: 0.0.0.0 already exits To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 04:27:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA07625 for freebsd-isp-outgoing; Thu, 14 May 1998 04:27:12 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA07617 for ; Thu, 14 May 1998 04:27:07 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id VAA13854; Thu, 14 May 1998 21:26:54 +1000 (EST) Date: Thu, 14 May 1998 21:26:53 +1000 (EST) From: "Daniel O'Callaghan" To: David Muir Sharnoff cc: andreas@klemm.gtn.com, isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <199805140705.AAA01835@idiom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > I've run about 300 on my system. A PPro 180, 192MB (at the time). > > I carefully made sure there were enough file descriptors. There was > one serious problem though: bind 4.9.* could not handle more than > about 256 interfaces! I had to do an emergency upgrade to bind > 8.1.1. Or don't run BIND on the WWW machine. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 07:31:18 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA08156 for freebsd-isp-outgoing; Thu, 14 May 1998 07:31:18 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA08148 for ; Thu, 14 May 1998 07:31:13 -0700 (PDT) (envelope-from kpielorz@tdx.co.uk) Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242]) by caladan.tdx.co.uk (8.8.8/8.8.8) with ESMTP id PAA03712 for ; Thu, 14 May 1998 15:31:09 +0100 (BST) (envelope-from kpielorz@tdx.co.uk) Message-ID: <355B002E.4315383F@tdx.co.uk> Date: Thu, 14 May 1998 15:31:10 +0100 From: Karl Pielorz Organization: TDX X-Mailer: Mozilla 4.04 [en] (WinNT; I) MIME-Version: 1.0 To: isp@FreeBSD.ORG Subject: Question re. Inetd, security & Virtual Hosts Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Does anyone know of any problems with running inetd just for the primary interface on a FreeBSD system? My main concern was security (I don't really want telnetd listening on every IP interface the box has), so I now run: inetd -l -a primary.ip.address inetd -l -a secondary.ip.address And I don't run it for the other 8 IP addresses my system has... The only thing I've noticed is that inetd will also bind services to the 127.0.0.1 (loopback) address - but using the above it doesn't... Does this mean I should also do: inetd -l -a 127.0.0.1 ? Any comments on this like 'you must be mad' are welcome... ;-) On some servers I'd imagine it might save a lot of network sockets (e.g. 200 virtual servers would normally run 200 listeners for telnetd, pop3 etc. ;-) Regards, Karl Pielorz To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 08:09:03 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA15844 for freebsd-isp-outgoing; Thu, 14 May 1998 08:09:03 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA15834 for ; Thu, 14 May 1998 08:09:00 -0700 (PDT) (envelope-from marcs@znep.com) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.7/8.8.7) with UUCP id JAA16196; Thu, 14 May 1998 09:08:21 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id JAA28749; Thu, 14 May 1998 09:03:39 -0600 (MDT) Date: Thu, 14 May 1998 09:03:38 -0600 (MDT) From: Marc Slemko To: "Daniel O'Callaghan" cc: David Muir Sharnoff , andreas@klemm.gtn.com, isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 14 May 1998, Daniel O'Callaghan wrote: > > > > I've run about 300 on my system. A PPro 180, 192MB (at the time). > > > > I carefully made sure there were enough file descriptors. There was > > one serious problem though: bind 4.9.* could not handle more than > > about 256 interfaces! I had to do an emergency upgrade to bind > > 8.1.1. > > Or don't run BIND on the WWW machine. Or tell it to only listen on certain interfaces. There are patches around to let you do this on 4.9.x. 8.x, of course, has this built in. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 08:09:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA15918 for freebsd-isp-outgoing; Thu, 14 May 1998 08:09:33 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA15899 for ; Thu, 14 May 1998 08:09:27 -0700 (PDT) (envelope-from marcs@znep.com) Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.8.7/8.8.7) with UUCP id JAA16208; Thu, 14 May 1998 09:09:06 -0600 (MDT) Received: from localhost (marcs@localhost) by alive.znep.com (8.7.5/8.7.3) with SMTP id JAA28758; Thu, 14 May 1998 09:05:13 -0600 (MDT) Date: Thu, 14 May 1998 09:05:13 -0600 (MDT) From: Marc Slemko To: Shawn Ramsey cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? In-Reply-To: <19980514015212.37909@cpl.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 14 May 1998, Shawn Ramsey wrote: > On Thu, May 14, 1998 at 09:13:41AM +1000, Daniel O'Callaghan wrote: > > On Wed, 13 May 1998, Andreas Klemm wrote: > > > > > What do you think, if I want to put as many virtual webservers > > > as possible onto one FreeBSD (2.2.6) Machine (PPro 200, 128 MB) > > > ... how many would that be ? > > > > Oh, I forgot to say that my machine with >300 VWS is a Pentium 133 with 64 > > MB RAM, taking about 5 million hits/month (bursts to about 15/second). > > The disks are plain SCSI-2, and no-one complains that it is slow, but I'm > > in the process of upgrading it to a 686-PR233 just to get a bit more > > headroom. It generally has about 10-15 MB disk cache, as shown by 'top'. > > > > A PPro200 with 128 MB RAM should be able to serve 20-30 million > > hits/month no sweat. > > Couldn't a PPro handle this in a day, assuming the majority are HTML hits? I don't know what you mean by "HTML hits", but if the majority is reasonably small static content, then sure. You would want more RAM though to take it to probably 512. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 08:51:39 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA22424 for freebsd-isp-outgoing; Thu, 14 May 1998 08:51:39 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shell.futuresouth.com (shell.futuresouth.com [198.78.58.18]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA22418 for ; Thu, 14 May 1998 08:51:37 -0700 (PDT) (envelope-from tim@shell.futuresouth.com) Received: (from tim@localhost) by shell.futuresouth.com (8.8.8/8.8.8) id KAA15624; Thu, 14 May 1998 10:51:38 -0500 (CDT) Message-ID: <19980514105137.55535@futuresouth.com> Date: Thu, 14 May 1998 10:51:37 -0500 From: Tim Tsai To: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <199805140705.AAA01835@idiom.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.88 In-Reply-To: ; from Daniel O'Callaghan on Thu, May 14, 1998 at 09:26:53PM +1000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > I've run about 300 on my system. A PPro 180, 192MB (at the time). > > > > I carefully made sure there were enough file descriptors. There was > > one serious problem though: bind 4.9.* could not handle more than > > about 256 interfaces! I had to do an emergency upgrade to bind > > 8.1.1. > > Or don't run BIND on the WWW machine. 4.9.* works just fine with more than 256 interfaces. There is a compile time constant you have to tweak. FreeBSD by default has a constant (it's in one of the header files) that limits to 256 file descriptors. If you compile bind with a larger descriptor it works fine. Took me a few hours to track that one down in the debugger. One of our clients has a lot of scripts that depends on 4.9's config. file syntax so 8.x wasn't an option at the time. Tim To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 08:58:15 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA23555 for freebsd-isp-outgoing; Thu, 14 May 1998 08:58:15 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from sun-test.hightek.com ([194.74.141.100]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA23547 for ; Thu, 14 May 1998 08:58:10 -0700 (PDT) (envelope-from andreas@klemm2.hightek.com) Received: from klemm2.hightek.com ([195.90.203.76]) by sun-test.hightek.com (Netscape Mail Server v1.1) with ESMTP id AAA21798 for ; Thu, 14 May 1998 17:58:10 +0200 Received: (from andreas@localhost) by klemm2.hightek.com (8.8.8/8.8.8) id RAA00504; Thu, 14 May 1998 17:58:10 +0200 (CEST) (envelope-from andreas) Message-ID: <19980514175809.06000@hightek.com> Date: Thu, 14 May 1998 17:58:09 +0200 From: Andreas Klemm To: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <19980513210347.A12724@klemm.gtn.com> <3.0.5.32.19980514092209.00926460@stingray.ivision.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: <3.0.5.32.19980514092209.00926460@stingray.ivision.co.uk>; from Manar Hussain on Thu, May 14, 1998 at 09:22:09AM +0100 X-Operating-System: FreeBSD 2.2.6-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, May 14, 1998 at 09:22:09AM +0100, Manar Hussain wrote: > The main browser of note that doesn't support non-ip virtual hosts (i.e. > doesn't provide the hostname it's going for) is the default AOL browser > (though AOL user can use other browsers if they know how). *sick* -- B&K Gruppe - Wuppertal phone +49 202 7399 - 170 fax +49 202 7399 - 100 http://www.FreeBSD.ORG/~andreas/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 08:58:37 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA23651 for freebsd-isp-outgoing; Thu, 14 May 1998 08:58:37 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from sun-test.hightek.com ([194.74.141.100]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA23629 for ; Thu, 14 May 1998 08:58:32 -0700 (PDT) (envelope-from andreas@klemm2.hightek.com) Received: from klemm2.hightek.com ([195.90.203.76]) by sun-test.hightek.com (Netscape Mail Server v1.1) with ESMTP id AAA21804; Thu, 14 May 1998 17:58:32 +0200 Received: (from andreas@localhost) by klemm2.hightek.com (8.8.8/8.8.8) id RAA01190; Thu, 14 May 1998 17:58:27 +0200 (CEST) (envelope-from andreas) Message-ID: <19980514175827.27158@hightek.com> Date: Thu, 14 May 1998 17:58:27 +0200 From: Andreas Klemm To: David Muir Sharnoff , IBS / Andre Oppermann Cc: isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <199805140854.BAA11050@idiom.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: <199805140854.BAA11050@idiom.com>; from David Muir Sharnoff on Thu, May 14, 1998 at 01:54:06AM -0700 X-Operating-System: FreeBSD 2.2.6-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, May 14, 1998 at 01:54:06AM -0700, David Muir Sharnoff wrote: > * Well, you don't have to bind named to all interfaces. Just one, the > * primary, should be enough. > > With 8.1.1, that's true. With 4.9.4, you don't get a choice. And later 4.9.x ? -- B&K Gruppe - Wuppertal phone +49 202 7399 - 170 fax +49 202 7399 - 100 http://www.FreeBSD.ORG/~andreas/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 11:10:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA15156 for freebsd-isp-outgoing; Thu, 14 May 1998 11:10:27 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id LAA14605; Thu, 14 May 1998 11:07:53 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id SAA00965; Thu, 14 May 1998 18:23:03 +0200 From: Luigi Rizzo Message-Id: <199805141623.SAA00965@labinfo.iet.unipi.it> Subject: Bandwidth limiter available To: isp@FreeBSD.ORG Date: Thu, 14 May 1998 18:23:03 +0200 (MET DST) Cc: luigi@labinfo.iet.unipi.it (Luigi Rizzo) X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Ok guys, i have added all features i wanted to the dummynet package (a bandwidth limiter and testing tool), and now it should be safe to use. What i need is people testing it other than me... so why don't you fetch a copy and try it ? Description and diffs for 2.2.6 are at http://www.iet.unipi.it/~luigi/ip_dummynet/ and hopefully the port to other versions should be straightforward. Because it is configured with "ipfw", its use should be simple. E.g. consider a web server with multiple aliases, you can allocate bandwidth in the following way: # first virtual server... ipfw pipe 1 config bw 256Kbit/s ipfw add pipe 1 ip from my-alias-1 port 80 to any # second virtual server... ipfw pipe 2 config bw 128Kbit/s ipfw add pipe 2 ip from my-alias-2 port 80 to any # third virtual server... ipfw pipe 3 config bw 64Kbit/s ipfw add pipe 3 ip from my-alias-3 port 80 to any # make ICMP packets very slow... ipfw pipe 4 config bw 16Kbit/s delay 200ms ipfw add pipe 3 icmp from any to any and for simulation purposes, if you want to see the effect of a peculiar asymmetric line: ipfw pipe 5 config bw 2Mbit/s delay 100ms # downlink ipfw pipe 6 config bw 128Kbit/s delay 300ms # uplink ipfw add pipe 5 ip from not my_ip to my_ip ipfw add pipe 6 ip from my_ip to any have fun... cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 11:16:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA16844 for freebsd-isp-outgoing; Thu, 14 May 1998 11:16:53 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shell.futuresouth.com (shell.futuresouth.com [198.78.58.18]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA16838 for ; Thu, 14 May 1998 11:16:52 -0700 (PDT) (envelope-from fullermd@futuresouth.com) Received: from localhost (fullermd@localhost) by shell.futuresouth.com (8.8.8/8.8.8) with SMTP id NAA23513 for ; Thu, 14 May 1998 13:16:53 -0500 (CDT) Date: Thu, 14 May 1998 13:16:53 -0500 (CDT) From: "Matthew D. Fuller" To: isp@FreeBSD.ORG Subject: named messages Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org OK, it's not FreeBSD related, but I imagine there's someone here who knows what these strange messages we've been getting from named mean. Most are of the form: ns named[pid]: ns_resp: TCP truncated: "some.domain.we.dont.serve" IN A some instead show a "1.2.3.4.in-addr-arpa" IN PTR (with of course a real domain and real IP). Is this a problem on someone else's end trying to secondary a domain we don't serve off us, or what? Usually happen either every hour, every half hour, or every 20 minutes or so, randomly switching between intervals. Thoughts? *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* | FreeBSD; the way computers were meant to be | * "The only reason I'm burning my candle at both ends, is * | that I haven't figured out how to light the middle yet."| * fullermd@futuresouth.com :-} MAtthew Fuller * | http://keystone.westminster.edu/~fullermd | *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 11:55:03 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA22191 for freebsd-isp-outgoing; Thu, 14 May 1998 11:55:03 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from DNS.Lamb.net (root@DNS.Lamb.net [207.90.181.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA22183 for ; Thu, 14 May 1998 11:55:01 -0700 (PDT) (envelope-from ulf@Gatekeeper.Alameda.net) Received: (from uucp@localhost) by DNS.Lamb.net (8.8.6/8.8.6) id LAA11728; Thu, 14 May 1998 11:55:11 -0700 (PDT) Received: from gatekeeper.Alameda.net(207.90.181.2) via SMTP by DNS.Lamb.net, id smtpd011724; Thu May 14 11:55:05 1998 Received: (from ulf@localhost) by Gatekeeper.Alameda.net (8.8.6/8.7.6) id LAA19032; Thu, 14 May 1998 11:54:57 -0700 (PDT) From: Ulf Zimmermann Message-Id: <199805141854.LAA19032@Gatekeeper.Alameda.net> Subject: Re: named messages In-Reply-To: from "Matthew D. Fuller" at "May 14, 98 01:16:53 pm" To: fullermd@futuresouth.com (Matthew D. Fuller) Date: Thu, 14 May 1998 11:54:56 -0700 (PDT) Cc: isp@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL31 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > OK, it's not FreeBSD related, but I imagine there's someone here who knows > what these strange messages we've been getting from named mean. > > Most are of the form: > ns named[pid]: ns_resp: TCP truncated: "some.domain.we.dont.serve" IN A > some instead show a "1.2.3.4.in-addr-arpa" IN PTR (with of course a real > domain and real IP). Is this a problem on someone else's end trying to > secondary a domain we don't serve off us, or what? > Usually happen either every hour, every half hour, or every 20 minutes or > so, randomly switching between intervals. I have the "TCP truncated" messages too. And all for "hostspace.com". They have hundreds of A records (repeating themself even) in their zone file. I talked with them, they said they have a reason for it, but weren't telling me why. > > Thoughts? > > *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* > | FreeBSD; the way computers were meant to be | > * "The only reason I'm burning my candle at both ends, is * > | that I haven't figured out how to light the middle yet."| > * fullermd@futuresouth.com :-} MAtthew Fuller * > | http://keystone.westminster.edu/~fullermd | > *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-769-2936 Alameda Networks, Inc. | http://www.Alameda.net | Fax#: 510-521-5073 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 12:03:50 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA23271 for freebsd-isp-outgoing; Thu, 14 May 1998 12:03:50 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from dt050n33.san.rr.com (@dt053nd2.san.rr.com [204.210.34.210]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA23259 for ; Thu, 14 May 1998 12:03:49 -0700 (PDT) (envelope-from Studded@dal.net) Received: from dal.net (Studded@localhost [127.0.0.1]) by dt050n33.san.rr.com (8.8.8/8.8.8) with ESMTP id MAA03626; Thu, 14 May 1998 12:03:39 -0700 (PDT) (envelope-from Studded@dal.net) Message-ID: <355B4009.7F2E1DFE@dal.net> Date: Thu, 14 May 1998 12:03:37 -0700 From: Studded Organization: Triborough Bridge & Tunnel Authority X-Mailer: Mozilla 4.05 [en] (X11; I; FreeBSD 2.2.6-STABLE-0507 i386) MIME-Version: 1.0 To: Andreas Klemm CC: David Muir Sharnoff , IBS / Andre Oppermann , isp@FreeBSD.ORG Subject: Re: how many virtual www server on a 2.2.6 PPro machine ? References: <199805140854.BAA11050@idiom.com> <19980514175827.27158@hightek.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andreas Klemm wrote: > > On Thu, May 14, 1998 at 01:54:06AM -0700, David Muir Sharnoff wrote: > > * Well, you don't have to bind named to all interfaces. Just one, the > > * primary, should be enough. > > > > With 8.1.1, that's true. With 4.9.4, you don't get a choice. > > And later 4.9.x ? Choosing which interfaces to bind to is a BIND 8 feature. If you're doing DNS work in the real world you need to move to BIND 8 sooner rather than later. The 4.9 branch is roughly equivalent to our 2.1.7.1 branch with the odd security patch tossed in. All the development and all the goodies are being done with the 8.x branch and 8.1.2 looks really good. Hope this helps, Doug -- *** Chief Operations Officer, DALnet IRC network *** *** Proud designer and maintainer of the world's largest Internet *** Relay Chat server with 5,328 simultaneous connections. *** Try spider.dal.net on ports 6662-4 (Powered by FreeBSD) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 12:14:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA25026 for freebsd-isp-outgoing; Thu, 14 May 1998 12:14:09 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from caffeine.internal.enteract.com (qmailr@caffeine.internal.enteract.com [207.229.129.24]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id MAA25015 for ; Thu, 14 May 1998 12:14:06 -0700 (PDT) (envelope-from kdulzo@caffeine.internal.enteract.com) Received: (qmail 16083 invoked by uid 100); 14 May 1998 19:14:08 -0000 Date: Thu, 14 May 1998 14:14:08 -0500 (CDT) From: "Kevin M. Dulzo" To: Luigi Rizzo cc: isp@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-Reply-To: <199805141623.SAA00965@labinfo.iet.unipi.it> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 14 May 1998, Luigi Rizzo wrote: [snip] > > # first virtual server... > ipfw pipe 1 config bw 256Kbit/s > ipfw add pipe 1 ip from my-alias-1 port 80 to any > # second virtual server... > ipfw pipe 2 config bw 128Kbit/s > ipfw add pipe 2 ip from my-alias-2 port 80 to any > # third virtual server... > ipfw pipe 3 config bw 64Kbit/s > ipfw add pipe 3 ip from my-alias-3 port 80 to any > # make ICMP packets very slow... > ipfw pipe 4 config bw 16Kbit/s delay 200ms > ipfw add pipe 3 icmp from any to any Are these limits hi-caps per instant on bandwidth? Is it possible to configure a limit over a time period or modify this to do so? -Kevin .-._.-. To see a thing uncolored by one's own personal preferences and desires is to see it in its own pristine simplicity. ._.-._. +==-- | Kevin M. Dulzo Check us out! | | System Administrator http://www.enteract.com | | Enteract, L.L.C. mailto: info@enteract.com| | kdulzo@enteract.com (773)248-8511 | --==+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 14:34:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA17098 for freebsd-isp-outgoing; Thu, 14 May 1998 14:34:20 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from stingray.ivision.co.uk (stingray.ivision.co.uk [195.50.91.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id OAA17077 for ; Thu, 14 May 1998 14:34:15 -0700 (PDT) (envelope-from manar@ivision.co.uk) Received: from pretender.ivision.co.uk [195.50.91.43] by stingray.ivision.co.uk with smtp (Exim 1.62 #2) id 0ya5dn-00005m-02; Thu, 14 May 1998 22:34:15 +0100 Message-Id: <3.0.5.32.19980514223309.00929c00@stingray.ivision.co.uk> X-Sender: manarpop@stingray.ivision.co.uk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Thu, 14 May 1998 22:33:09 +0100 To: isp@FreeBSD.ORG From: Manar Hussain Subject: Re: Bandwidth limiter available In-Reply-To: References: <199805141623.SAA00965@labinfo.iet.unipi.it> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Are these limits hi-caps per instant on bandwidth? Is it possible >to configure a limit over a time period or modify this to do so? And/or a means to let bandwidth increase if it's available or even better - set minimum and maximum bandwidths that some pipes can see where the max is only reached if there is enough free traffic and then never exceeded (or even some more general rule set means). Manar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 15:30:56 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA28833 for freebsd-isp-outgoing; Thu, 14 May 1998 15:30:56 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (intranet.pipeline.ch [195.134.128.66]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA28828; Thu, 14 May 1998 15:30:54 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA249; Fri, 15 May 1998 00:29:36 +0200 Message-ID: <355B706A.C08A4A3D@pipeline.ch> Date: Fri, 15 May 1998 00:30:02 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: Manar Hussain CC: isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: Bandwidth limiter available References: <199805141623.SAA00965@labinfo.iet.unipi.it> <3.0.5.32.19980514223309.00929c00@stingray.ivision.co.uk> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Manar Hussain wrote: > > > Are these limits hi-caps per instant on bandwidth? Is it possible > >to configure a limit over a time period or modify this to do so? > > And/or a means to let bandwidth increase if it's available or even better - > set minimum and maximum bandwidths that some pipes can see where the max is > only reached if there is enough free traffic and then never exceeded (or > even some more general rule set means). Use ALTQ: http://www.csl.sony.co.jp/person/kjc/programs.html#ALTQ Does dynamic BW limiting better than a static ipfw rule. To -hackers: When gets this code merged to -current and what about the if_dequeueing abstraction layer Kenjiro Cho is suggesting? Cisco beware! We are on the way with picoBSD booting from PCCARD and Zebra (http://www.zebra.org), a BGP4/OSPFv2/RIPii routing daemon (yea! delete that crappy gated s***). The last thing we need on our way is a Cisco-IOS shell integrating all those features under the well-known IOS command syntax. Beat 'em! (BTW, just my $0.02) -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 17:07:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id RAA15176 for freebsd-isp-outgoing; Thu, 14 May 1998 17:07:51 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from antipodes.cdrom.com ([210.145.37.178]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA15060; Thu, 14 May 1998 17:07:17 -0700 (PDT) (envelope-from mike@antipodes.cdrom.com) Received: from antipodes.cdrom.com (localhost [127.0.0.1]) by antipodes.cdrom.com (8.8.8/8.8.5) with ESMTP id QAA00334; Thu, 14 May 1998 16:03:38 -0700 (PDT) Message-Id: <199805142303.QAA00334@antipodes.cdrom.com> X-Mailer: exmh version 2.0zeta 7/24/97 To: "IBS / Andre Oppermann" cc: Manar Hussain , isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-reply-to: Your message of "Fri, 15 May 1998 00:30:02 +0200." <355B706A.C08A4A3D@pipeline.ch> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 14 May 1998 16:03:38 -0700 From: Mike Smith Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Manar Hussain wrote: > > Use ALTQ: http://www.csl.sony.co.jp/person/kjc/programs.html#ALTQ > > Does dynamic BW limiting better than a static ipfw rule. I can attest to this, having actually watched it in action. > To -hackers: > When gets this code merged to -current and what about the if_dequeueing > abstraction layer Kenjiro Cho is suggesting? I spoke with Cho-san here last week regarding his work and future directions. He is very emphatic about both the ongoing development of ALTQ and its use in deployed systems. I believe that the FreeBSD core are interested in incorporating his work when he feels it is ready. If you want to hear more about ALTQ, Cho Kenjiro will be talking about it at USENIX this year. We hope also to hear from Ito Jun-ichiro about the WIDE group's IPv6 work at an IPv6 BOF and/or the FreeBSD BOF. > Cisco beware! We are on the > way with picoBSD booting from PCCARD and Zebra (http://www.zebra.org), a > BGP4/OSPFv2/RIPii routing daemon (yea! delete that crappy gated s***). Certainly for the low-middle end routing server market, FreeBSD does a reasonable job. We could route IPX a bit better, perhaps. 8) > The last thing we need on our way is a Cisco-IOS shell integrating all > those features under the well-known IOS command syntax. I will say that is, indeed, the very last thing we need. -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 20:11:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA19683 for freebsd-isp-outgoing; Thu, 14 May 1998 20:11:44 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from spring.spider.net.hk (spring.spider.net.hk [202.73.0.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA19667 for ; Thu, 14 May 1998 20:11:37 -0700 (PDT) (envelope-from geoffrey@spider.net.hk) Received: from cat.spider.net.hk (cat.spider.net.hk [202.73.0.10]) by spring.spider.net.hk (8.8.7/8.8.7) with SMTP id LAA07821 for ; Fri, 15 May 1998 11:19:37 +0800 (CST) (envelope-from geoffrey@spider.net.hk) Message-Id: <3.0.5.32.19980515111115.008d1b20@spider.net.hk> X-Sender: geoffrey@spider.net.hk X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Fri, 15 May 1998 11:11:15 +0800 To: isp@FreeBSD.ORG From: Geoffrey Ng Subject: Fax Card - Dialogic Gammalink Card Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi All, Does any one try to install Gammalink Fax card in FreeBSD? If yes, would you please share the valuable experience with the FreeBSD community? regards, Geoffrey Ng To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 22:16:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA10260 for freebsd-isp-outgoing; Thu, 14 May 1998 22:16:40 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id WAA10234; Thu, 14 May 1998 22:16:30 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id FAA01765; Fri, 15 May 1998 05:31:30 +0200 From: Luigi Rizzo Message-Id: <199805150331.FAA01765@labinfo.iet.unipi.it> Subject: Re: Bandwidth limiter available To: mike@smith.net.au (Mike Smith) Date: Fri, 15 May 1998 05:31:30 +0200 (MET DST) Cc: andre@pipeline.ch, manar@ivision.co.uk, isp@FreeBSD.ORG, hackers@FreeBSD.ORG In-Reply-To: <199805142303.QAA00334@antipodes.cdrom.com> from "Mike Smith" at May 14, 98 04:03:19 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Manar Hussain wrote: > > > > Use ALTQ: http://www.csl.sony.co.jp/person/kjc/programs.html#ALTQ > > > > Does dynamic BW limiting better than a static ipfw rule. > > I can attest to this, having actually watched it in action. and i fully agree on this. Just want to comment that dummynet and ALTQ are two different things, that maybe could be integrated together at some point. I do think that ALTQ is a more complete package. On the other hand, the advantages of dummynet are, in my opinion, the following: * ability to simulate delays and packet losses; this is very useful for experiments, less useful for real-life apps :) * device-indipendent, since it works at the IP level; ALTQ works at a lower level so it needs to be aware of the interface (and this could be a problem in some cases). * uses ipfw for packet filtering, which makes it easier to configure things (for those already familiar with ipfw). Also, it might save some work since classification is done once both for queueing and firewalling purposes. The latter are probably design choices that ALTQ might benefit from as well. (if you want to compare sizes, the dummynet patches to the kernel are about 1/10 of the size of ALTQ patches; but ALTQ includes also an ATM device driver and other stuff, so the comparison is not very meaningful). > If you want to hear more about ALTQ, Cho Kenjiro will be talking about it > at USENIX this year. We hope also to hear from Ito Jun-ichiro about and just for the records, I have a paper at the FreeNIX track on dummynet and related networking stuff. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu May 14 22:20:25 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA11195 for freebsd-isp-outgoing; Thu, 14 May 1998 22:20:25 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id WAA11113 for ; Thu, 14 May 1998 22:20:13 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id FAA01787; Fri, 15 May 1998 05:35:33 +0200 From: Luigi Rizzo Message-Id: <199805150335.FAA01787@labinfo.iet.unipi.it> Subject: Re: Bandwidth limiter available To: manar@ivision.co.uk (Manar Hussain) Date: Fri, 15 May 1998 05:35:33 +0200 (MET DST) Cc: isp@FreeBSD.ORG In-Reply-To: <3.0.5.32.19980514223309.00929c00@stingray.ivision.co.uk> from "Manar Hussain" at May 14, 98 10:32:50 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > Are these limits hi-caps per instant on bandwidth? Is it possible yes. > >to configure a limit over a time period or modify this to do so? could be done with relative ease. > And/or a means to let bandwidth increase if it's available or even better - > set minimum and maximum bandwidths that some pipes can see where the max is > only reached if there is enough free traffic and then never exceeded (or > even some more general rule set means). use ALTQ for that :) in dummynet, a pipe has no information on traffic on other pipes using the same interface, so i need to implement some form of fair queueing to do this. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 00:07:00 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA24980 for freebsd-isp-outgoing; Fri, 15 May 1998 00:07:00 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from ca2.saca.net (ca2.saca.net [196.36.60.40]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id AAA24961 for ; Fri, 15 May 1998 00:06:37 -0700 (PDT) (envelope-from bertus@saca.net) Received: from saca.net by ca2.saca.net (SMI-8.6/SMI-SVR4) id JAA26008; Fri, 15 May 1998 09:04:55 +0200 Message-ID: <355BEA9A.FBCF8E36@saca.net> Date: Fri, 15 May 1998 09:11:22 +0200 From: Bertus Pretorius Organization: SACA X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: "Kevin M. Dulzo" CC: isp@FreeBSD.ORG Subject: Re: Bandwidth limiter available References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Kevin M. Dulzo wrote: > snip > Are these limits hi-caps per instant on bandwidth? Is it possible > to configure a limit over a time period or modify this to do so? The question is how or what will the behaviour be. I have trying to work that one out but end up with many scenarios: All with many periods, eg high and low time, etc. 1. Max bytes per time period 2. Max average per time period 3. High traffic max with lower trafic max with low trafic max 4. Preferencial source/destination with limiters 5. .... Gosh it sounds like ATM :) What make sence? I have played with the maths to make some of it work and created some nasty trix to do the averaging. -- These are my biased opinions and do not represent SACA nor PQ Holdings Bertus Pretorius, 083 303-1812, bertus@saca.net The South African Certification Agency, www.saca.net SACA is part of Persetel Q-Data Holdings, www.pqholdings.com ----------- A smile is the same in all languages ----------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 00:42:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA29697 for freebsd-isp-outgoing; Fri, 15 May 1998 00:42:12 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA29678; Fri, 15 May 1998 00:42:06 -0700 (PDT) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id AAA09208; Fri, 15 May 1998 00:34:33 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd009205; Fri May 15 07:34:25 1998 Date: Fri, 15 May 1998 00:34:21 -0700 (PDT) From: Julian Elischer To: Luigi Rizzo cc: Mike Smith , andre@pipeline.ch, manar@ivision.co.uk, isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-Reply-To: <199805150331.FAA01765@labinfo.iet.unipi.it> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > If you want to hear more about ALTQ, Cho Kenjiro will be talking about it > > at USENIX this year. We hope also to hear from Ito Jun-ichiro about > > and just for the records, I have a paper at the FreeNIX track on > dummynet and related networking stuff. And I may give a WIPS session on Whistle's "smart bandwidth" I shall be really looking forward to meeting both you and Kenjiro. julian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 01:21:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA06142 for freebsd-isp-outgoing; Fri, 15 May 1998 01:21:51 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id BAA06120 for ; Fri, 15 May 1998 01:21:41 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id IAA02065; Fri, 15 May 1998 08:36:28 +0200 From: Luigi Rizzo Message-Id: <199805150636.IAA02065@labinfo.iet.unipi.it> Subject: Re: Bandwidth limiter available To: luigi@labinfo.iet.unipi.it (Luigi Rizzo) Date: Fri, 15 May 1998 08:36:28 +0200 (MET DST) Cc: manar@ivision.co.uk, isp@FreeBSD.ORG In-Reply-To: <199805150335.FAA01787@labinfo.iet.unipi.it> from "Luigi Rizzo" at May 15, 98 05:35:14 am X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > > Are these limits hi-caps per instant on bandwidth? Is it possible > > yes. > > > >to configure a limit over a time period or modify this to do so? > > could be done with relative ease. Actually, thinking about it: you have a queue before the bandwidth limiter, so you can limit the amount of burstiness by setting the queue size (in bytes or packets) to an appropriate value. So i'd say it already does what you ask. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 04:29:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA05281 for freebsd-isp-outgoing; Fri, 15 May 1998 04:29:28 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from freefall.pipeline.ch (intranet.pipeline.ch [195.134.128.66]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA05264; Fri, 15 May 1998 04:29:25 -0700 (PDT) (envelope-from andre@pipeline.ch) Received: from pipeline.ch ([195.134.128.41]) by freefall.pipeline.ch (Netscape Mail Server v2.02) with ESMTP id AAA269; Fri, 15 May 1998 13:28:00 +0200 Message-ID: <355C26DE.50A6CB29@pipeline.ch> Date: Fri, 15 May 1998 13:28:30 +0200 From: "IBS / Andre Oppermann" Organization: Internet Business Solutions Ltd. (AG) X-Mailer: Mozilla 4.03 [en] (WinNT; U) MIME-Version: 1.0 To: Mike Smith CC: IBS / Andre Oppermann , Manar Hussain , isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: Bandwidth limiter available References: <199805142303.QAA00334@antipodes.cdrom.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Mike Smith wrote: -snip- > > The last thing we need on our way is a Cisco-IOS shell integrating all > > those features under the well-known IOS command syntax. > > I will say that is, indeed, the very last thing we need. Why not? You have one common syntax for all network related configurations. I don't mean that as shell for the whole FreeBSD box, just for network config. Simply type 'iosh' and do all your ifconfig's, route's and bgp/ospf seamless. -- Andre Oppermann CEO / Geschaeftsfuehrer Internet Business Solutions Ltd. (AG) Hardstrasse 235, 8005 Zurich, Switzerland Fon +41 1 277 75 75 / Fax +41 1 277 75 77 http://www.pipeline.ch ibs@pipeline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 15:12:43 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA13600 for freebsd-isp-outgoing; Fri, 15 May 1998 15:12:43 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from bmccane.maxbaud.net (ppp.maxbaud.net [208.155.166.81] (may be forged)) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA13585 for ; Fri, 15 May 1998 15:12:13 -0700 (PDT) (envelope-from root@bmccane.maxbaud.net) Received: from localhost (root@localhost) by bmccane.maxbaud.net (8.8.8/8.8.7) with SMTP id RAA21355 for ; Fri, 15 May 1998 17:11:10 -0500 (CDT) (envelope-from root@bmccane.maxbaud.net) Date: Fri, 15 May 1998 17:11:09 -0500 (CDT) From: Wm Brian McCane To: isp@FreeBSD.ORG Subject: pppd subnetting Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings, Okay, dumb question. How do I assign a subnet to a customer if I don't use *-secrets files? I RTFM'd, and the netmask options value is or'ed with the default netmask, which I believe is 255.255.255.255. brian To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 19:20:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA18020 for freebsd-isp-outgoing; Fri, 15 May 1998 19:20:08 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA18004 for ; Fri, 15 May 1998 19:20:03 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id MAA19545; Sat, 16 May 1998 12:19:47 +1000 (EST) Date: Sat, 16 May 1998 12:19:47 +1000 (EST) From: "Daniel O'Callaghan" To: Wm Brian McCane cc: isp@FreeBSD.ORG Subject: Re: pppd subnetting In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 15 May 1998, Wm Brian McCane wrote: > Okay, dumb question. How do I assign a subnet to a customer if I > don't use *-secrets files? I RTFM'd, and the netmask options value is > or'ed with the default netmask, which I believe is 255.255.255.255. Use an ip-up script which checks who the user is, and assigns appropriately. Or use gated. Danny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 21:15:17 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA27279 for freebsd-isp-outgoing; Fri, 15 May 1998 21:15:17 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from vnode.vmunix.com (vnode.vmunix.com [209.112.4.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA27264 for ; Fri, 15 May 1998 21:15:12 -0700 (PDT) (envelope-from mark@vnode.vmunix.com) Received: (from mark@localhost) by vnode.vmunix.com (8.8.8/8.8.8) id AAA25380; Sat, 16 May 1998 00:21:48 -0400 (EDT) (envelope-from mark) Message-ID: <19980516002148.B25146@vmunix.com> Date: Sat, 16 May 1998 00:21:48 -0400 From: Mark Mayo To: isp@FreeBSD.ORG Subject: virtusertable weirdness Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1 X-Operating-System: FreeBSD 2.2.6-STABLE i386 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all.. I'm having an odd problem with the virtuser feature in sendmail.. Hoping someone has run into the same problem. Basically, it don't work. :) Details: FreeBSD 2.2.6-STABLE, 'make world' around the middle of April sendmail 8.8.8 (obviously, built from the make world) sendmail.cf is basically the stock file shipped with freebsd db-2.3.16 and gdbm-1.7.3 packages added since the make world /etc/virtusertable.source looks like: mark@hi-fi.com mark editor@hi-fi.com mark @hi-fi.com mad ... vnode % makemap dbm /etc/virtusertable < /etc/virtusertable.source makemap: Type dbm not supported in this version Hmmm. db-2.3.16 suspicions happening... My /etc/sendmail.cf did look like: Kvirtuser dbm /etc/virtusertable So I try: vnode % makemap hash /etc/virtusertable < /etc/virtusertable.source which completes fine. Now I've got a /etc/virtusertable.db Change the sendmail.cf to: Kvirtuser hash -o /etc/virtusertable No go. So I try: Kvirtuser hash -o /etc/virtusertable.db Still no go. Mailing to a real user on the virtual domain works, but trying one of the mappings doesn't do it: ----- Transcript of session follows ----- ... while talking to mailhost.vmunix.com.: >>> RCPT To: <<< 550 ... User unknown 550 editor@hi-fi.com... User unknown Naturally, I remembered to HUP sendmail after making any sendmail.cf changes... Anyone have any ideas that I'm doing wrong here?? My only hunch is that the addition of the db-2.3.16 package might have fried something.. There is a ndbm.h file in /usr/include, and I tried rebuilding the /usr/src/usr.sbin/sendmail/makemap/makemap.c with -DNDBM instead of -DNEWDB but the same error about 'dbm not supported happens'.. TIA for any help, -Mark -- ------------------------------------------------------------------------ Mark Mayo mark@vmunix.com RingZero Comp. http://www.vmunix.com/mark finger mark@vmunix.com for my PGP key and GCS code ------------------------------------------------------------------------ "The problem is how do you build tools that understand your programs at a deeper semantic level." - James Gosling To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 21:54:37 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA29748 for freebsd-isp-outgoing; Fri, 15 May 1998 21:54:37 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from shell.thebestisp.com (shell.thebestisp.com [209.98.116.11]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA29743 for ; Fri, 15 May 1998 21:54:33 -0700 (PDT) (envelope-from joe@thebestisp.com) Received: from speed.thebestisp.com (speed.thebestisp.com [209.98.116.2]) by shell.thebestisp.com (8.8.7/8.8.7) with SMTP id XAA00937 for ; Fri, 15 May 1998 23:55:08 -0500 (CDT) (envelope-from joe@thebestisp.com) Message-ID: <004601bd8087$1885bcc0$027462d1@speed.thebestisp.com> From: "joe" To: Subject: Re: virtusertable weirdness Date: Fri, 15 May 1998 23:57:15 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org you probably already checked this but there is a section further down in the rules that deals with virtusertables that is commented out by default just a thought.. it starts... # handle virtual users R$+ < @ $=w . > $: < $(virtuser $1 @ $2 $@ $1 $: @ $) > $1 < @ $2 . > -----Original Message----- From: Mark Mayo To: isp@FreeBSD.ORG Date: Friday, May 15, 1998 11:40 PM Subject: virtusertable weirdness >Hi all.. I'm having an odd problem with the virtuser feature in >sendmail.. Hoping someone has run into the same problem. > >Basically, it don't work. :) > >Details: > FreeBSD 2.2.6-STABLE, 'make world' around the middle of April > sendmail 8.8.8 (obviously, built from the make world) > sendmail.cf is basically the stock file shipped with freebsd > db-2.3.16 and gdbm-1.7.3 packages added since the make world > >/etc/virtusertable.source looks like: > mark@hi-fi.com mark > editor@hi-fi.com mark > @hi-fi.com mad > ... > >vnode % makemap dbm /etc/virtusertable < /etc/virtusertable.source >makemap: Type dbm not supported in this version > >Hmmm. db-2.3.16 suspicions happening... My /etc/sendmail.cf did look >like: > Kvirtuser dbm /etc/virtusertable > >So I try: >vnode % makemap hash /etc/virtusertable < /etc/virtusertable.source > >which completes fine. Now I've got a /etc/virtusertable.db >Change the sendmail.cf to: > Kvirtuser hash -o /etc/virtusertable > >No go. So I try: > Kvirtuser hash -o /etc/virtusertable.db > >Still no go. Mailing to a real user on the virtual domain works, but >trying one of the mappings doesn't do it: > > ----- Transcript of session follows ----- > ... while talking to mailhost.vmunix.com.: > >>> RCPT To: > <<< 550 ... User unknown > 550 editor@hi-fi.com... User unknown > >Naturally, I remembered to HUP sendmail after making any sendmail.cf >changes... > >Anyone have any ideas that I'm doing wrong here?? My only hunch is >that the addition of the db-2.3.16 package might have fried something.. >There is a ndbm.h file in /usr/include, and I tried rebuilding the >/usr/src/usr.sbin/sendmail/makemap/makemap.c with -DNDBM instead of -DNEWDB >but the same error about 'dbm not supported happens'.. > >TIA for any help, >-Mark > >-- >------------------------------------------------------------------------ > Mark Mayo mark@vmunix.com > RingZero Comp. http://www.vmunix.com/mark > > finger mark@vmunix.com for my PGP key and GCS code >------------------------------------------------------------------------ > "The problem is how do you build tools that understand your programs > at a deeper semantic level." - James Gosling > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri May 15 22:20:03 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA02576 for freebsd-isp-outgoing; Fri, 15 May 1998 22:20:03 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from uhf.wireless.net (uhf.wireless.net [209.189.23.54]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA02483 for ; Fri, 15 May 1998 22:19:59 -0700 (PDT) (envelope-from bad@shf.wireless.net) Received: from shf.wireless.net (shf [209.189.23.56]) by uhf.wireless.net (8.8.8/8.8.7) with ESMTP id WAA08964; Fri, 15 May 1998 22:18:42 -0700 (PDT) Received: from localhost (bad@localhost) by shf.wireless.net (8.8.8/8.8.8) with SMTP id WAA01997; Fri, 15 May 1998 22:20:37 -0700 (PDT) (envelope-from bad@shf.wireless.net) Date: Fri, 15 May 1998 22:20:37 -0700 (PDT) From: Bernie Doehner To: Mark Mayo cc: isp@FreeBSD.ORG Subject: Re: virtusertable weirdness In-Reply-To: <19980516002148.B25146@vmunix.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > /etc/virtusertable.source looks like: > mark@hi-fi.com mark > editor@hi-fi.com mark > @hi-fi.com mad > ... Talk of coincidence, I just fixed a virtusertable today.. You have to properly recompile makemap (it seems) to get dbm format.. I ended up using hash format instead, so you have Kvirtuser hash -o /etc/virtusertable > vnode % makemap dbm /etc/virtusertable < /etc/virtusertable.source > makemap: Type dbm not supported in this version dbm != hash... > Hmmm. db-2.3.16 suspicions happening... My /etc/sendmail.cf did look > like: > Kvirtuser dbm /etc/virtusertable Change to Kwirtuser hash -o /etc/virtusertable > So I try: > vnode % makemap hash /etc/virtusertable < /etc/virtusertable.source > > which completes fine. Now I've got a /etc/virtusertable.db > Change the sendmail.cf to: > Kvirtuser hash -o /etc/virtusertable > > No go. So I try: > Kvirtuser hash -o /etc/virtusertable.db > > Still no go. Mailing to a real user on the virtual domain works, but > trying one of the mappings doesn't do it: > > ----- Transcript of session follows ----- > ... while talking to mailhost.vmunix.com.: > >>> RCPT To: > <<< 550 ... User unknown > 550 editor@hi-fi.com... User unknown > > Naturally, I remembered to HUP sendmail after making any sendmail.cf > changes... Right. > Anyone have any ideas that I'm doing wrong here?? My only hunch is > that the addition of the db-2.3.16 package might have fried something.. > There is a ndbm.h file in /usr/include, and I tried rebuilding the > /usr/src/usr.sbin/sendmail/makemap/makemap.c with -DNDBM instead of -DNEWDB > but the same error about 'dbm not supported happens'.. > Bernie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 08:22:56 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA25800 for freebsd-isp-outgoing; Sat, 16 May 1998 08:22:56 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA25782; Sat, 16 May 1998 08:22:50 -0700 (PDT) (envelope-from dennis@etinc.com) Received: from dbsys (dbsys.etinc.com [207.252.1.18]) by etinc.com (8.8.7/8.6.9) with SMTP id LAA19695; Sat, 16 May 1998 11:31:50 -0400 (EDT) Message-Id: <199805161531.LAA19695@etinc.com> X-Sender: dennis@etinc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Sat, 16 May 1998 11:30:21 -0400 To: "IBS / Andre Oppermann" From: Dennis Subject: Re: Bandwidth limiter available Cc: isp@FreeBSD.ORG, hackers@FreeBSD.ORG In-Reply-To: <355C26DE.50A6CB29@pipeline.ch> References: <199805142303.QAA00334@antipodes.cdrom.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 01:28 PM 5/15/98 +0200, you wrote: >Mike Smith wrote: >-snip- >> > The last thing we need on our way is a Cisco-IOS shell integrating all >> > those features under the well-known IOS command syntax. >> >> I will say that is, indeed, the very last thing we need. > >Why not? You have one common syntax for all network related >configurations. >I don't mean that as shell for the whole FreeBSD box, just for network >config. Simply type 'iosh' and do all your ifconfig's, route's and >bgp/ospf seamless. Because the unix command set is more "standard" than IOS, and IOS is poorly done in many areas because of the limitation in user interface resources. Surely an interface to generate gated configs would be useful, but to trash the well-known and powerful unix interface for IOS would be ridiculous. Dennis > >-- >Andre Oppermann > >CEO / Geschaeftsfuehrer >Internet Business Solutions Ltd. (AG) >Hardstrasse 235, 8005 Zurich, Switzerland >Fon +41 1 277 75 75 / Fax +41 1 277 75 77 >http://www.pipeline.ch ibs@pipeline.ch > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 08:28:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA26861 for freebsd-isp-outgoing; Sat, 16 May 1998 08:28:33 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA26854 for ; Sat, 16 May 1998 08:28:31 -0700 (PDT) (envelope-from dennis@etinc.com) Received: from dbsys (dbsys.etinc.com [207.252.1.18]) by etinc.com (8.8.7/8.6.9) with SMTP id LAA19703; Sat, 16 May 1998 11:37:30 -0400 (EDT) Message-Id: <199805161537.LAA19703@etinc.com> X-Sender: dennis@etinc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Sat, 16 May 1998 11:36:00 -0400 To: Luigi Rizzo From: Dennis Subject: Re: Bandwidth limiter available Cc: isp@FreeBSD.ORG In-Reply-To: <199805150335.FAA01787@labinfo.iet.unipi.it> References: <3.0.5.32.19980514223309.00929c00@stingray.ivision.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 05:35 AM 5/15/98 +0200, you wrote: >> > Are these limits hi-caps per instant on bandwidth? Is it possible > >yes. > >> >to configure a limit over a time period or modify this to do so? > >could be done with relative ease. > >> And/or a means to let bandwidth increase if it's available or even better - >> set minimum and maximum bandwidths that some pipes can see where the max is >> only reached if there is enough free traffic and then never exceeded (or >> even some more general rule set means). LOL...just to interject...bandwidth usage tends to be highly incidental...you get 10mb/s usage for short periods and holes of very low usage...with hundreds of simultaneous connections (as is the case with ISP networks) you simply cant tune a limiter so finely....the definition of available bandwidth changes from instant to instant. Dennis Emerging Technologies, Inc. www.etinc.com ISA and PCI Sync Cards for FreeBSD, LINUX and BSD/OS ET/BWMGR Bandwidth Manager To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 08:45:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA29605 for freebsd-isp-outgoing; Sat, 16 May 1998 08:45:52 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from etinc.com (et-gw.etinc.com [207.252.1.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA29570; Sat, 16 May 1998 08:45:44 -0700 (PDT) (envelope-from dennis@etinc.com) Received: from dbsys (dbsys.etinc.com [207.252.1.18]) by etinc.com (8.8.7/8.6.9) with SMTP id LAA19755; Sat, 16 May 1998 11:54:35 -0400 (EDT) Message-Id: <199805161554.LAA19755@etinc.com> X-Sender: dennis@etinc.com X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0 Date: Sat, 16 May 1998 11:53:06 -0400 To: Julian Elischer , Luigi Rizzo From: Dennis Subject: Re: Bandwidth limiter available Cc: Mike Smith , andre@pipeline.ch, manar@ivision.co.uk, isp@FreeBSD.ORG, hackers@FreeBSD.ORG In-Reply-To: References: <199805150331.FAA01765@labinfo.iet.unipi.it> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 12:34 AM 5/15/98 -0700, Julian Elischer wrote: >> >> > If you want to hear more about ALTQ, Cho Kenjiro will be talking about it >> > at USENIX this year. We hope also to hear from Ito Jun-ichiro about >> >> and just for the records, I have a paper at the FreeNIX track on >> dummynet and related networking stuff. > >And I may give a WIPS session on >Whistle's "smart bandwidth" Very fancy. Not what most isps are looking for, but useful. One question: why were the hooks put in the drivers rather than at a higher , more generic level. The process does not have to be as intrusive as ALTQ seems to be. Sounds like an ongoing maintenence nightmare. dennis Emerging Technologies, Inc. http://www.etinc.com ISA and PCI Sync Cards for FreeBSD, LINUX and BSD/OS Bandwidth Manager http://www.etinc.com/bwmgr.htm To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 10:10:47 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA09255 for freebsd-isp-outgoing; Sat, 16 May 1998 10:10:47 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id KAA09233; Sat, 16 May 1998 10:10:38 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id RAA04372; Sat, 16 May 1998 17:26:00 +0200 From: Luigi Rizzo Message-Id: <199805161526.RAA04372@labinfo.iet.unipi.it> Subject: Re: Bandwidth limiter available To: dennis@etinc.com (Dennis) Date: Sat, 16 May 1998 17:26:00 +0200 (MET DST) Cc: julian@whistle.com, mike@smith.net.au, andre@pipeline.ch, manar@ivision.co.uk, isp@FreeBSD.ORG, hackers@FreeBSD.ORG In-Reply-To: <199805161554.LAA19755@etinc.com> from "Dennis" at May 16, 98 11:52:47 am X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > Very fancy. Not what most isps are looking for, but useful. > > One question: why were the hooks put in the drivers rather than at a > higher , more generic level. The process does not have to be as intrusive > as ALTQ seems to be. Sounds like an ongoing maintenence nightmare. i guess you refer to ALTQ. The answer is, to do CBQ/WFQ you want to select the next packet to be sent at the time the interface asks for one. The current implementation of IF_DEQUEUE and friends instead implements a queue in front of the interface, and this can disturb the bandwidth allocation. If you just want a bandwidth limiter you can work at a higher level since each flow is scheduled independently of the others, so you don't care about what is downstream. One way to solve the mainteinance problem could be to make IF_DEQUEUE an upcall to a higher level queue-handling function, so that it can be modified independently of the device driver, and can work with binary-only drivers. But this still requires an upgrade of the driver once the transition is made. i don't know how many drivers are supplied in binary-only format. cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 11:11:03 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA15014 for freebsd-isp-outgoing; Sat, 16 May 1998 11:11:03 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from widefw.csl.sony.co.jp (widefw.csl.sony.co.jp [133.138.1.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA15008; Sat, 16 May 1998 11:10:59 -0700 (PDT) (envelope-from kjc@csl.sony.co.jp) Received: from hotaka.csl.sony.co.jp (root@hotaka.csl.sony.co.jp [43.27.98.57]) by widefw.csl.sony.co.jp (8.8.8/3.6W) with ESMTP id DAA08474; Sun, 17 May 1998 03:10:57 +0900 (JST) Received: from localhost (kjc@[127.0.0.1]) by hotaka.csl.sony.co.jp (8.8.8/3.6W/hotaka/98021914) with ESMTP id DAA00252; Sun, 17 May 1998 03:10:56 +0900 (JST) Message-Id: <199805161810.DAA00252@hotaka.csl.sony.co.jp> To: Luigi Rizzo cc: isp@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-reply-to: Your message of "Sat, 16 May 1998 17:26:00 +0200." <199805161526.RAA04372@labinfo.iet.unipi.it> Date: Sun, 17 May 1998 03:10:56 +0900 From: Kenjiro Cho Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Thanks Luigi for the clarification. In addition, modification to IF_DEQUEUE isn't enough. There are several drivers that peeks at if_snd or use IF_PREPEND; these operations don't work with multiple queues. If the drivers are written not to use these operations, replacing IF_DEQUEUE works fine. More details are described in my paper available at http://www.csl.sony.co.jp/person/kjc/papers/usenix98/ --Kenjiro Luigi Rizzo said: > Very fancy. Not what most isps are looking for, but useful. > > One question: why were the hooks put in the drivers rather than at a > higher , more generic level. The process does not have to be as intrusive > as ALTQ seems to be. Sounds like an ongoing maintenence nightmare. >> i guess you refer to ALTQ. The answer is, to do CBQ/WFQ you want >> to select the next packet to be sent at the time the interface asks >> for one. The current implementation of IF_DEQUEUE and friends >> instead implements a queue in front of the interface, and this can >> disturb the bandwidth allocation. >> If you just want a bandwidth limiter you can work at a higher level >> since each flow is scheduled independently of the others, so you don't >> care about what is downstream. >> One way to solve the mainteinance problem could be to make IF_DEQUEUE >> an upcall to a higher level queue-handling function, so that it can be >> modified independently of the device driver, and can work with >> binary-only drivers. But this still requires an upgrade of the driver >> once the transition is made. >> i don't know how many drivers are supplied in binary-only format. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 12:58:36 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA27133 for freebsd-isp-outgoing; Sat, 16 May 1998 12:58:36 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from luke.cpl.net (luke.cpl.net [209.150.92.68]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA27128 for ; Sat, 16 May 1998 12:58:35 -0700 (PDT) (envelope-from shawn@luke.cpl.net) Received: (from shawn@localhost) by luke.cpl.net (8.8.8/8.8.8) id MAA13997; Sat, 16 May 1998 12:57:14 -0700 (PDT) Message-ID: <19980516125713.22965@cpl.net> Date: Sat, 16 May 1998 12:57:13 -0700 From: Shawn Ramsey To: isp@FreeBSD.ORG Subject: mail problems Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We are using the virtusertable ruleset that comes with sendmail-8.8.8. It is working fine, unless we want to take the domain out of the database. If we take a domain out(we do it like foobar.txt, foobar2.txt and so on then cat all *.txt into one file). If we delete the domain in question, our server then tried to delivery all mail for this domain locally, even if the DNS points to another server. Anyone else experience this?? I can post a debug output if that will help. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 14:03:02 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA05986 for freebsd-isp-outgoing; Sat, 16 May 1998 14:03:02 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA05981 for ; Sat, 16 May 1998 14:03:01 -0700 (PDT) (envelope-from dan@dpcsys.com) Received: from localhost (dan@localhost) by java.dpcsys.com (8.8.7/8.8.2) with SMTP id OAA10356; Sat, 16 May 1998 14:01:55 -0700 (PDT) Date: Sat, 16 May 1998 14:01:55 -0700 (PDT) From: Dan Busarow To: Shawn Ramsey cc: isp@FreeBSD.ORG Subject: Re: mail problems In-Reply-To: <19980516125713.22965@cpl.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 16 May 1998, Shawn Ramsey wrote: > We are using the virtusertable ruleset that comes with sendmail-8.8.8. > It is working fine, unless we want to take the domain out of the > database. If we take a domain out(we do it like foobar.txt, foobar2.txt > and so on then cat all *.txt into one file). If we delete the domain in > question, our server then tried to delivery all mail for this domain > locally, even if the DNS points to another server. Anyone else > experience this?? I can post a debug output if that will help. In order for the stock virtusertable to work, the domain must be in Cw. Therefore the domains you removed were in Cw and still are so they are considered local. If you have an IP for their domain aliased to this box they are added to Cw automatically. There's a cf setting to disable this but I don't use it and can't tell you what it is. Dan -- Dan Busarow 949 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 16:17:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA24926 for freebsd-isp-outgoing; Sat, 16 May 1998 16:17:32 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from lohi.clinet.fi (UNKNOWN@lohi.clinet.fi [194.100.0.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA24921 for ; Sat, 16 May 1998 16:17:29 -0700 (PDT) (envelope-from hsu@katiska.clinet.fi) Received: from katiska.clinet.fi (katiska.clinet.fi [194.100.0.4]) by lohi.clinet.fi (8.8.8/8.8.6) with ESMTP id CAA27580; Sun, 17 May 1998 02:17:13 +0300 (EEST) Received: (from hsu@localhost) by katiska.clinet.fi (8.8.8/8.8.6) id CAA22799; Sun, 17 May 1998 02:17:10 +0300 (EEST) To: Luigi Rizzo Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Bandwidth limiter available References: <199805150331.FAA01765@labinfo.iet.unipi.it.newsgate.clinet.fi> From: Heikki Suonsivu Date: 17 May 1998 02:17:06 +0300 In-Reply-To: Luigi Rizzo's message of 15 May 1998 08:51:23 +0300 Message-ID: Lines: 42 X-Mailer: Gnus v5.3/Emacs 19.34 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Luigi Rizzo writes: > I do think that ALTQ is a more complete package. On the other hand, > the advantages of dummynet are, in my opinion, the following: ... > * device-indipendent, since it works at the IP level; ALTQ > works at a lower level so it needs to be aware of the interface > (and this could be a problem in some cases). This could be fixed in various ways, either by creating better device driver interface or adding extra layer (this would need simple modifications to devide driver interface to get a good result). > * uses ipfw for packet filtering, which makes it easier to configure > things (for those already familiar with ipfw). Also, it might save > some work since classification is done once both for queueing and > firewalling purposes. It may be easy to use, but ipfw is too inefficient implementation for this use. We used a single dedicated P150 to do byte counting for about 400 networks, totalling of 800 ipfw lines (one for incoming traffic, one for outgoing traffic). Even with a slow 2M line the P150 run out of CPU. The host was doing nothing else but byte-counting, no fancy queueing, bandwidth limiting or like. There has to be better address-matching code than a linear list. In particular this is bad because you want to do per IP matching and various IP parameters (type of service field in particular!). Another serious problem with ipfw is that all packets are processed independent of the interface used, which makes the performance problem worse. Instead of having 10 lists processed for each packet on each interface goes through, all packets go through 100 lists on 10-port router, only 10-20 of the lists being actually necessary to match. We are using Cisco custom queuing to get some sort of approximation of different service quality per each customer, but it is damn expensive equipment for that simple purpose and has some of the problems of ipfw. -- Heikki Suonsivu, T{ysikuu 10 C 83/02210 Espoo/FINLAND, hsu@clinet.fi mobile +358-40-5519679 work +358-9-43542270 fax -4555276 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 19:03:22 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA13202 for freebsd-isp-outgoing; Sat, 16 May 1998 19:03:22 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from home.us.net (home.us.net [198.240.72.28]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA13196 for ; Sat, 16 May 1998 19:03:19 -0700 (PDT) (envelope-from jjw@us.net) Received: from q.jjw.us.net (q.jjw.us.net [207.244.202.2]) by home.us.net (8.8.8/8.8.8) with SMTP id WAA17939; Sat, 16 May 1998 22:03:10 -0400 (EDT) X-Provider: US Net - Advanced Internet Services - 301-361-USNET - info@us.net Where Business Connects! (tm) -- http://www.us.net/ Message-ID: <355E455C.167EB0E7@us.net> Date: Sat, 16 May 1998 22:03:08 -0400 From: John Woodruff Organization: US Net X-Mailer: Mozilla 3.01Gold (X11; I; FreeBSD 2.2.5-RELEASE i386) MIME-Version: 1.0 To: Heikki Suonsivu CC: freebsd-isp@FreeBSD.ORG Subject: ipfw musings (was: Re: Bandwidth limiter available) References: <199805150331.FAA01765@labinfo.iet.unipi.it.newsgate.clinet.fi> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Heikki Suonsivu wrote: > There has to be better address-matching code than a linear list. True, but judicious use of skipto helps. In the best case, you might be able to do a binary decision tree. I do this on an ordinary ipfw firewall: first split is on ifc and direction, second is on protocol, then sequence of from/to rules. > It may be easy to use, but ipfw is too inefficient implementation > for this use. We used a single dedicated P150 to do byte counting > for about 400 networks, totalling of 800 ipfw lines (one for > incoming traffic, one for outgoing traffic). Exactly what I mean. With one skipto, looking simply at which direction the packet was traveling in, you could cut the average time spent traversing this list in half. Even though skipto is also a linear search, the whole loop is only two lines of code. Resolveing the goto's in add_entry() probably isn't worth the complexity. > Another serious problem with ipfw is that all packets are > processed independent of the interface used, which makes the > performance problem worse. Agreed - I was surprised when I found the head of the chain wasn't hanging off the ifp and/or protocol, which is why I wrote my rules starting with skipto. Does someone who knows want to explain why this is(nt)? Does anyone want to re-implement ipfw to work as a tree? If so, the next step might be an optimizer in /sbin/ipfw. PS: /sbin/ipfw desperately needs to understand comments and to give sane diagnostics. I havn't looked at -current; is it's /sbin/ipfw any better? I use a perl macro preproc... -- John Woodruff, Sr. Network Engineer, US Net - 301-361-USNET Washington/Baltimore/Richmond ISP - $6.95/month for full PPP! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 19:31:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA15454 for freebsd-isp-outgoing; Sat, 16 May 1998 19:31:13 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA15445 for ; Sat, 16 May 1998 19:31:11 -0700 (PDT) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id TAA01242; Sat, 16 May 1998 19:26:59 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd001239; Sun May 17 02:26:55 1998 Date: Sat, 16 May 1998 19:26:52 -0700 (PDT) From: Julian Elischer To: Heikki Suonsivu cc: Luigi Rizzo , freebsd-isp@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 17 May 1998, Heikki Suonsivu wrote: > > Luigi Rizzo writes: > > I do think that ALTQ is a more complete package. On the other hand, > > the advantages of dummynet are, in my opinion, the following: > ... > > * device-indipendent, since it works at the IP level; ALTQ > > works at a lower level so it needs to be aware of the interface > > (and this could be a problem in some cases). > > This could be fixed in various ways, either by creating better device > driver interface or adding extra layer (this would need simple > modifications to devide driver interface to get a good result). > > > * uses ipfw for packet filtering, which makes it easier to configure > > things (for those already familiar with ipfw). Also, it might save > > some work since classification is done once both for queueing and > > firewalling purposes. > > It may be easy to use, but ipfw is too inefficient implementation for this > use. We used a single dedicated P150 to do byte counting for about 400 > networks, totalling of 800 ipfw lines (one for incoming traffic, one for > outgoing traffic). Even with a slow 2M line the P150 run out of CPU. The > host was doing nothing else but byte-counting, no fancy queueing, bandwidth > limiting or like. I have a change to IPWF that will allow this to be improved radically. by making the SKIPTO much more efficient you will be able to (you already can do this but it's less efficient) use a decision tree to reduce the number of tests to do against each packet.. (theoretically about 32 would be the maximum..) teh alternative is to do what WE intend to do which is to finish off (I will be doing this next week) the TEE rule type and use a process with an efficient radix tree implementation to do the counting off-line. > > There has to be better address-matching code than a linear list. In > particular this is bad because you want to do per IP matching and various > IP parameters (type of service field in particular!). > > Another serious problem with ipfw is that all packets are processed > independent of the interface used, which makes the performance problem > worse. Instead of having 10 lists processed for each packet on each > interface goes through, all packets go through 100 lists on 10-port router, > only 10-20 of the lists being actually necessary to match. You can split it to 10 diferent lists using different rule number ranges and the skipto command in the first 10 lines. skipto is at present not very efficient, however as I said above. that is abount to change. (however it is still more efficient than processing all the rules between where you are and the desired rule#) > > We are using Cisco custom queuing to get some sort of approximation of > different service quality per each customer, but it is damn expensive > equipment for that simple purpose and has some of the problems of ipfw. stay tuned.. :-) > > -- > Heikki Suonsivu, T{ysikuu 10 C 83/02210 Espoo/FINLAND, hsu@clinet.fi > mobile +358-40-5519679 work +358-9-43542270 fax -4555276 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 20:02:37 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA19764 for freebsd-isp-outgoing; Sat, 16 May 1998 20:02:37 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA19755 for ; Sat, 16 May 1998 20:02:35 -0700 (PDT) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id TAA01620; Sat, 16 May 1998 19:51:41 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd001617; Sun May 17 02:51:37 1998 Date: Sat, 16 May 1998 19:51:34 -0700 (PDT) From: Julian Elischer To: John Woodruff cc: Heikki Suonsivu , freebsd-isp@FreeBSD.ORG Subject: Re: ipfw musings (was: Re: Bandwidth limiter available) In-Reply-To: <355E455C.167EB0E7@us.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 16 May 1998, John Woodruff wrote: > Heikki Suonsivu wrote: > > There has to be better address-matching code than a linear list. > > True, but judicious use of skipto helps. In the best case, you > might be able to do a binary decision tree. I do this on an > ordinary ipfw firewall: first split is on ifc and direction, > second is on protocol, then sequence of from/to rules. > > > It may be easy to use, but ipfw is too inefficient implementation > > for this use. We used a single dedicated P150 to do byte counting > > for about 400 networks, totalling of 800 ipfw lines (one for > > incoming traffic, one for outgoing traffic). > > Exactly what I mean. With one skipto, looking simply at which > direction the packet was traveling in, you could cut the average > time spent traversing this list in half. > > Even though skipto is also a linear search, the whole loop is > only two lines of code. Resolveing the goto's in add_entry() > probably isn't worth the complexity. > > > Another serious problem with ipfw is that all packets are > > processed independent of the interface used, which makes the > > performance problem worse. > > Agreed - I was surprised when I found the head of the chain > wasn't hanging off the ifp and/or protocol, which is why I > wrote my rules starting with skipto. Does someone who knows > want to explain why this is(nt)? Some rules are valid for all or some interfaces, and some rules might be good for both incoming and outgoing rules... SKIPTO is teh right way to go and I am woking slowly on pre-resolving the skipto rules (as you suggest is not worth doing :-) > > Does anyone want to re-implement ipfw to work as a tree? > If so, the next step might be an optimizer in /sbin/ipfw. > > PS: /sbin/ipfw desperately needs to understand comments and > to give sane diagnostics. I havn't looked at -current; is > it's /sbin/ipfw any better? I use a perl macro preproc... yes it has # comments :-) (or maybe the commit message was in my imagination) > -- > John Woodruff, Sr. Network Engineer, US Net - 301-361-USNET > Washington/Baltimore/Richmond ISP - $6.95/month for full PPP! > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat May 16 21:22:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA00345 for freebsd-isp-outgoing; Sat, 16 May 1998 21:22:29 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from lohi.clinet.fi (UNKNOWN@lohi.clinet.fi [194.100.0.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA00340 for ; Sat, 16 May 1998 21:22:26 -0700 (PDT) (envelope-from hsu@katiska.clinet.fi) Received: from katiska.clinet.fi (katiska.clinet.fi [194.100.0.4]) by lohi.clinet.fi (8.8.8/8.8.6) with ESMTP id HAA08998; Sun, 17 May 1998 07:21:43 +0300 (EEST) Received: (from hsu@localhost) by katiska.clinet.fi (8.8.8/8.8.6) id HAA06765; Sun, 17 May 1998 07:21:39 +0300 (EEST) From: Heikki Suonsivu MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <13662.26065.455168.786287@katiska.clinet.fi> Date: Sun, 17 May 1998 07:21:37 +0300 (EEST) To: Julian Elischer Cc: Heikki Suonsivu , Luigi Rizzo , freebsd-isp@FreeBSD.ORG Subject: Re: Bandwidth limiter available In-Reply-To: References: X-Mailer: VM 6.47 under Emacs 19.34.1 Organization: Clinet Ltd, Espoo, Finland Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Julian Elischer writes: > the TEE rule type and use a process with an efficient radix tree > implementation to do the counting off-line. I'm currently using a simple bpf program which matches the packets directly to a linear table. Does per-ip statistics and apparently could handle quite a bit more network load. The other extra goodie is that it can sit on a hub and watch by-flying traffic instead of packets having to go through the statistics-gathering host. > skipto is at present not very efficient, however as I said above. > that is abount to change. Using skipto to optimize ipfw tables is too much manual labor, I will wait for radix tree implementation or something like that :) -- Heikki Suonsivu, T{ysikuu 10 C 83/02210 Espoo/FINLAND, hsu@clinet.fi mobile +358-40-5519679 work +358-9-43542270 fax -4555276 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message