From owner-freebsd-net Sun Oct 11 08:00:26 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA02460 for freebsd-net-outgoing; Sun, 11 Oct 1998 08:00:26 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from ifi.uio.no (ifi.uio.no [129.240.64.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA02453 for ; Sun, 11 Oct 1998 08:00:22 -0700 (PDT) (envelope-from dag-erli@ifi.uio.no) Received: from fenja.ifi.uio.no (2602@fenja.ifi.uio.no [129.240.65.174]) by ifi.uio.no (8.8.8/8.8.7/ifi0.2) with ESMTP id RAA22988; Sun, 11 Oct 1998 17:00:01 +0200 (MET DST) Received: (from dag-erli@localhost) by fenja.ifi.uio.no ; Sun, 11 Oct 1998 17:00:00 +0200 (MET DST) Mime-Version: 1.0 To: Open Systems Networking Cc: Jim Cassata , FreeBSD Net Subject: Re: xntpd References: Organization: University of Oslo, Department of Informatics X-url: http://www.stud.ifi.uio.no/~dag-erli/ X-other-addresses: 'finger dag-erli@ifi.uio.no' for a list X-disclaimer-1: The views expressed in this article are mine alone, and do X-disclaimer-2: not necessarily coincide with those of any organisation or X-disclaimer-3: company with which I am or have been affiliated. X-Stop-Spam: http://www.cauce.org/ From: dag-erli@ifi.uio.no (Dag-Erling C. =?iso-8859-1?Q?Sm=F8rgrav?= ) Date: 11 Oct 1998 17:00:00 +0200 In-Reply-To: Open Systems Networking's message of "Sat, 10 Oct 1998 18:48:24 -0400 (EDT)" Message-ID: Lines: 33 X-Mailer: Gnus v5.5/Emacs 19.34 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id IAA02454 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Open Systems Networking writes: > On Sat, 10 Oct 1998, Jim Cassata wrote: > > server 128.173.14.71 > Is 128.173.14.71 an actual time server? root@fixus-ipv6 ~# nslookup 128.173.14.71 Server: mimming.ifi.uio.no Address: 129.240.64.16 Name: black-ice.cc.vt.edu Address: 128.173.14.71 root@fixus-ipv6 ~# ntpdate 128.173.14.71 11 Oct 16:57:10 ntpdate: adjust time server 128.173.14.71 offset 0.005766 > > driftfile /etc/ntp.drift > Did you tell xntpd to use this file? Did you notice that he mentioned this was from his /etc/ntp.conf? > > and there is a writable driftfile that never gets written to. According to > > the complete FreeBSD book, the driftfile's presence in the conf file tells > > xntpd to get the time from the server, and it's absence tells it to get > > the time from listening to ntp broadcasts. > To get all your servers to sync to a common time you need to tell the main > xntpd server that gets its time from an atomic clock to broadcast time > notices to your lan. I think the option to xntpd is: broadcast lan-netmask Uh, no. Read the man page. DES -- Dag-Erling Smørgrav - dag-erli@ifi.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 11 11:16:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA19517 for freebsd-net-outgoing; Sun, 11 Oct 1998 11:16:31 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mail.webspan.net (mail.webspan.net [206.154.70.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA19512 for ; Sun, 11 Oct 1998 11:16:29 -0700 (PDT) (envelope-from opsys@mail.webspan.net) Received: from orion.webspan.net (orion.webspan.net [206.154.70.5]) by mail.webspan.net (WEBSPAN/970608) with SMTP id OAA05435; Sun, 11 Oct 1998 14:15:57 -0400 (EDT) Date: Sun, 11 Oct 1998 14:15:56 -0400 (EDT) From: Open Systems Networking X-Sender: opsys@orion.webspan.net To: "Dag-Erling C. =?iso-8859-1?Q?Sm=F8rgrav?=" cc: Jim Cassata , FreeBSD Net Subject: Re: xntpd In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by hub.freebsd.org id LAA19513 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 11 Oct 1998, Dag-Erling C. [iso-8859-1] Smørgrav wrote: > Uh, no. Read the man page. I did and thats what I use at a remote site. And it works fine for me, care to elaborate? > more ntp.conf server 128.252.19.1 server 128.105.201.11 server 128.118.25.3 server 192.31.216.30 broadcast 90.0.255.255 13:11:05.668172 timehost.net.ntp > 90.0.255.255.ntp: v3 bcast strat 2 poll 6 prec -16 Chris -- "You both seem to be ignoring the fact that the networking market is driven by so-called 'IT professionals' these days, most of whom can't tell the difference between an ARP and a carp." -Wes Peters ===================================| Open Systems Networking And Consulting. FreeBSD 2.2.7 is available now! | Phone: 316-326-6800 -----------------------------------| 1402 N. Washington, Wellington, KS-67152 FreeBSD: The power to serve! | E-Mail: opsys@open-systems.net http://www.freebsd.org | Consulting-Network Engineering-Security ===================================| http://open-systems.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Oct 11 11:46:53 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA23773 for freebsd-net-outgoing; Sun, 11 Oct 1998 11:46:53 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from ifi.uio.no (ifi.uio.no [129.240.64.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA23763 for ; Sun, 11 Oct 1998 11:46:48 -0700 (PDT) (envelope-from dag-erli@ifi.uio.no) Received: from fenja.ifi.uio.no (2602@fenja.ifi.uio.no [129.240.65.174]) by ifi.uio.no (8.8.8/8.8.7/ifi0.2) with ESMTP id UAA16632; Sun, 11 Oct 1998 20:44:52 +0200 (MET DST) Received: (from dag-erli@localhost) by fenja.ifi.uio.no ; Sun, 11 Oct 1998 20:44:52 +0200 (MET DST) Mime-Version: 1.0 To: Open Systems Networking Cc: "=?iso-8859-1?Q?=22Dag?= -Erling C. =?iso-8859-1?Q?Sm=F8rgrav=22?=" , Jim Cassata , FreeBSD Net Subject: Re: xntpd References: Organization: University of Oslo, Department of Informatics X-url: http://www.stud.ifi.uio.no/~dag-erli/ X-other-addresses: 'finger dag-erli@ifi.uio.no' for a list X-disclaimer-1: The views expressed in this article are mine alone, and do X-disclaimer-2: not necessarily coincide with those of any organisation or X-disclaimer-3: company with which I am or have been affiliated. X-Stop-Spam: http://www.cauce.org/ From: dag-erli@ifi.uio.no (Dag-Erling C. =?iso-8859-1?Q?Sm=F8rgrav?= ) Date: 11 Oct 1998 20:44:51 +0200 In-Reply-To: Open Systems Networking's message of "Sun, 11 Oct 1998 14:15:56 -0400 (EDT)" Message-ID: Lines: 59 X-Mailer: Gnus v5.5/Emacs 19.34 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id LAA23768 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Open Systems Networking writes: > On 11 Oct 1998, Dag-Erling C. [iso-8859-1] Smørgrav wrote: > > Uh, no. Read the man page. > I did and thats what I use at a remote site. And it works fine for me, > care to elaborate? Of course, you *had* to quote me out of context. The (incorrect) claim I responded to was: > > To get all your servers to sync to a common time you need to tell the main > > xntpd server that gets its time from an atomic clock to broadcast time > > notices to your lan. I think the option to xntpd is: broadcast lan-netmask That is simply not true. You *may* set up a computer on your LAN to act as a broadcast server, and set up the other computers to run xntpd in broadcastclient mode. But if you want *accuracy* and not just *precision*, your broadcast server needs to act as a simple client wrt some other ntp server, unless you have a cesium clock in your NOC. Not many people have. If you have a small number of machines, there's no point in setting up a broadcast server. Just configure each of them to get the time directly from an upstream server. And even if you want to set up a local server to act as a proxy, there's no need to set it up as a broadcast server. Just set it up as a normal client (optionally using the internal clock as reference if you're on a flaky network connection such as a dialup) and set up your other clients to use your proxy as server. Here are example ntp.conf files: # Proxy configuration (ntpproxy.domain.net) server low.stratum.server.net server 127.127.1.0 fudge 127.127.1.0 stratum 12 driftfile /var/run/ntp.drift and # Client configuration server ntpproxy.domain.net driftfile /var/run/ntp.drift For picking the right upstream server, ntptrace is your friend. Point it at a few random servers (large DNS servers often double as NTP servers) and see if there's a low-stratum NTP server anywhere near you (or several, if you're paranoid). Most universities should have a server in the 2-4 range, and larger ones (large enough to have their own atomic clock) may even have a stratum 1 server. Finally, broadcast clients are vulnerable to spoofing attacks and should be set up to use ntp authentication. Unless you have a huge subnet and feel that a broadcast server is necessary to lighten your network and server load (Yeah, right. NTP is a really CPU and network- intensive protocol. Not.) there's not much point. (disclaimer: I'm not phk, so I may be wrong about some of this) DES -- Dag-Erling Smørgrav - dag-erli@ifi.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 06:39:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id GAA22480 for freebsd-net-outgoing; Mon, 12 Oct 1998 06:39:28 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mail.sic.shibaura-it.ac.jp (mail.sic.shibaura-it.ac.jp [202.18.114.7]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id GAA22431 for ; Mon, 12 Oct 1998 06:39:21 -0700 (PDT) (envelope-from l94066@sic.shibaura-it.ac.jp) Received: from fso.o.sic.shibaura-it.ac.jp (fso.o.sic.shibaura-it.ac.jp [172.25.201.3]) by mail.sic.shibaura-it.ac.jp (8.9.0/3.7W-sic1.6) with ESMTP id WAA13185 for ; Mon, 12 Oct 1998 22:39:08 +0900 (JST) Received: from default (oppp16.sras.sic.shibaura-it.ac.jp [192.168.9.16]) by fso.o.sic.shibaura-it.ac.jp (8.9.0/3.7W-o.sic1.6) with SMTP id WAA04660 for ; Mon, 12 Oct 1998 22:39:06 +0900 (JST) From: "=?iso-2022-jp?B?GyRCRURDZhsoQiAbJEI9KE9CGyhC?=" To: Subject: =?iso-2022-jp?B?GyRCJE8kOCRhJF4kNyRGI0IjUyNEJE49aT80PFQkRyQ5ISMbKEI=?= Date: Mon, 12 Oct 1998 22:40:27 +0900 Message-ID: <01bdf5e5$ded8ada0$LocalHost@default> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.71.1712.3 X-MimeOLE: Produced By Microsoft MimeOLE V4.71.1712.3 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org $B$O$8$a$^$7$F(B $B#2=54VDxA0$K#F#r#e#e#B#S#D$r!"$O$8$a$?$P$+$j$NEDCf$H?=$7$^$9!#(B $B$3$NDx(B ports(ja-navigator-4.05, ja-communicator-4.05) $B$r%@%&%s%m!<%I$7$?$N$G$9$,(B $B%$%s%9%H!<%k$9$k$?$a$N(B tarball$B!J(BNetscape-V405.gz)$B$O$I$3$GF~ Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA15885 for freebsd-net-outgoing; Mon, 12 Oct 1998 09:03:23 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from boingo.pciway.com (boingo.pciway.com [206.0.98.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA15880; Mon, 12 Oct 1998 09:03:21 -0700 (PDT) (envelope-from loren@pciway.com) Received: from vatos.pciway.com (vatos.pciway.com [206.0.98.30]) by boingo.pciway.com (8.8.5/8.8.8) with SMTP id JAA02095; Mon, 12 Oct 1998 09:03:09 -0700 (PDT) Message-ID: <005601bdf5fa$2cdc34e0$1e6200ce@vatos.pciway.com> From: "Loren Koss" To: , , Subject: Dialup PPP Server.. Date: Mon, 12 Oct 1998 09:05:47 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0053_01BDF5BF.803A3960" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.2106.4 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0053_01BDF5BF.803A3960 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I followed the instructions in the handbook and have successfully dialed = in using my Win95 (bleh!) box. I can ping and get mail, telnet, and = HTTP the BSD box, but I can't get to the rest of the network.. I assume = I need to set up a route but am not sure how.. Any help would be = greatly appreciated. Detailed help is very good, btw. I have gotten = some very obscure answers and understand that I am a newbie in this = field. Thanks Loren ------=_NextPart_000_0053_01BDF5BF.803A3960 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
I followed the instructions in the = handbook and=20 have successfully dialed in using my Win95 (bleh!) box.  I can ping = and get=20 mail, telnet, and HTTP the BSD box, but I can't get to the rest of the=20 network..  I assume I need to set up a route but am not sure = how.. =20 Any help would be greatly appreciated.  Detailed help is very good, = btw. I=20 have gotten some very obscure answers and understand that I am a newbie = in this=20 field.
 
Thanks
Loren
------=_NextPart_000_0053_01BDF5BF.803A3960-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 09:29:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA19331 for freebsd-net-outgoing; Mon, 12 Oct 1998 09:29:13 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mail.ftf.dk (mail.ftf.net [129.142.64.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA19324 for ; Mon, 12 Oct 1998 09:29:08 -0700 (PDT) (envelope-from regnauld@deepo.prosa.dk) Received: from mail.prosa.dk ([192.168.100.254]) by mail.ftf.dk (8.8.8/8.8.8/gw-ftf-1.0) with ESMTP id SAA22279; Mon, 12 Oct 1998 18:33:52 +0200 (CEST) (envelope-from regnauld@deepo.prosa.dk) X-Authentication-Warning: mail.ftf.dk: Host [192.168.100.254] claimed to be mail.prosa.dk Received: from deepo.prosa.dk (deepo.prosa.dk [192.168.100.10]) by mail.prosa.dk (8.8.8/8.8.5/prosa-1.1) with ESMTP id SAA17222; Mon, 12 Oct 1998 18:48:03 +0200 (CEST) Received: (from regnauld@localhost) by deepo.prosa.dk (8.8.8/8.8.5/prosa-1.1) id SAA15004; Mon, 12 Oct 1998 18:40:40 +0200 (CEST) Message-ID: <19981012184040.11139@deepo.prosa.dk> Date: Mon, 12 Oct 1998 18:40:40 +0200 From: Philippe Regnauld To: Loren Koss Cc: freebsd-net@FreeBSD.ORG Subject: Re: Dialup PPP Server.. References: <005601bdf5fa$2cdc34e0$1e6200ce@vatos.pciway.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.88e In-Reply-To: <005601bdf5fa$2cdc34e0$1e6200ce@vatos.pciway.com>; from Loren Koss on Mon, Oct 12, 1998 at 09:05:47AM -0700 X-Operating-System: FreeBSD 2.2.6-RELEASE i386 Phone: +45 3336 4148 Address: Ahlefeldtsgade 16, 1359 Copenhagen K, Denmark Organization: PROSA Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Loren Koss writes: [please format 78 chars/line -- it's easier to read, and _don't_ crosspost to 3 lists at a time -- this will only attract hostility (if people even read your mail] > dialed in using my Win95 (bleh!) box. I can ping and get mail, telnet, > and HTTP the BSD box, but I can't get to the rest of the network.. I > assume I need to set up a route but am not sure how.. Any help would > be greatly appreciated. Detailed help is very good, btw. I have gotten > some very obscure answers and understand that I am a newbie in this > field. We need more info: - what address(es) are you using ? Are they "routable" or "private" (RFC1918, aka 192.168.*, 10.*, 172.16.*) ? - do you have packet forwarding enabled on the FreeBSD box ? (sysctl -w net.inet.ip.forwarding=1) Dialup networking on Wheeze 95 has by default a checkbox which says "make default route to peer server" (or something like it -- it's written in Danish here :-) -- is that checkbox enabled in the Dialup Networking profile ? You can, once connected, check that you have a default route to the peer with the following command (in a MS-DOG box): netstat -rn Under Whine 98, you can get this with the command "winipcfg". -- -[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]- The Internet is busy. Please try again later. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 10:16:28 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA25739 for freebsd-net-outgoing; Mon, 12 Oct 1998 10:16:28 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mimer.erilab.com (mpk103.erilab.com [208.224.156.103]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA25732 for ; Mon, 12 Oct 1998 10:16:26 -0700 (PDT) (envelope-from Rainer.Enders@erilab.com) Received: from erilab.com (willow.erilab.com [192.168.174.2]) by mimer.erilab.com (8.9.1a/8.9.1) with ESMTP id KAA07222; Mon, 12 Oct 1998 10:15:37 -0700 (PDT) Message-ID: <36223A22.71782E03@erilab.com> Date: Mon, 12 Oct 1998 10:19:30 -0700 From: Rainer Enders Organization: Ericsson Inc. X-Mailer: Mozilla 4.06 [en] (X11; U; SunOS 5.6 sun4m) MIME-Version: 1.0 To: Andrew Gallatin CC: freebsd-net@FreeBSD.ORG Subject: Re: DEC DE500-BA 21143 in Full-Duplex mode References: <361D363B.7737CE8B@erilab.com> <13853.15292.134948.153362@grasshopper.cs.duke.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Andrew Gallatin wrote: > Rainer Enders writes: > > balder# ifconfig de0 media 100TX_FD > > ifconfig: unknown media subtype: 100TX_FD > > balder# ifconfig de0 media 100TX-FD > > ifconfig: unknown media subtype: 100TX-FD > > > > You are specifying the media incorrectly. Read the de(4) man > page. You want to say: > ifconfig de0 media 100baseTX mediaopt full-duplex > > See if that helps. > > In my case (*BSD/alpha, Digital Personal Workstation 500au), the > driver recognizes the options, but doesn't know enough about the > hardware to actually throw it into full-duplex mode. > > Drew > > ------------------------------------------------------------------------------ > Andrew Gallatin, Sr Systems Programmer http://www.cs.duke.edu/~gallatin > Duke University Email: gallatin@cs.duke.edu > Department of Computer Science Phone: (919) 660-6590 Hi, yes I have that issue too. FreeBSD says: media: 100baseTX status: active but it doesn't look like that the card actually runs at full-duplex. Is there any way to figure it out? Is there any better NIC card that works all right in full-duplex under FreeBSD? Rainer. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 10:41:59 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA01010 for freebsd-net-outgoing; Mon, 12 Oct 1998 10:41:59 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from duke.cs.duke.edu (duke.cs.duke.edu [152.3.140.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA00997 for ; Mon, 12 Oct 1998 10:41:53 -0700 (PDT) (envelope-from gallatin@cs.duke.edu) Received: from grasshopper.cs.duke.edu (grasshopper.cs.duke.edu [152.3.145.30]) by duke.cs.duke.edu (8.8.5/8.8.5) with ESMTP id NAA06489; Mon, 12 Oct 1998 13:41:30 -0400 (EDT) Received: (from gallatin@localhost) by grasshopper.cs.duke.edu (8.9.1/8.9.1) id NAA16502; Mon, 12 Oct 1998 13:41:12 -0400 (EDT) (envelope-from gallatin@cs.duke.edu) From: Andrew Gallatin MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Date: Mon, 12 Oct 1998 13:41:11 -0400 (EDT) To: Rainer Enders Cc: freebsd-net@FreeBSD.ORG Subject: Re: DEC DE500-BA 21143 in Full-Duplex mode In-Reply-To: <36223A22.71782E03@erilab.com> References: <361D363B.7737CE8B@erilab.com> <13853.15292.134948.153362@grasshopper.cs.duke.edu> <36223A22.71782E03@erilab.com> X-Mailer: VM 6.43 under 20.4 "Emerald" XEmacs Lucid Message-ID: <13858.15938.812975.751909@grasshopper.cs.duke.edu> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Rainer Enders writes: > Hi, > > yes I have that issue too. FreeBSD says: media: 100baseTX status: > active > but it doesn't look like that the card actually runs at full-duplex. Is there any > way > to figure it out? If you see collisions, terrible tcp performance & good udp performance, you probably have a duplex mismatch. > Is there any better NIC card that works all right in full-duplex under FreeBSD? I'd strongly recommend the Intel EtherExpress Pro 10/100B. If you end up replacing the DEC DE500-BA, would you consider loaning that card to the if_de driver's author? I'd have done this long ago, but all my cards of this type are built into $10k workstations. ------------------------------------------------------------------------------ Andrew Gallatin, Sr Systems Programmer http://www.cs.duke.edu/~gallatin Duke University Email: gallatin@cs.duke.edu Department of Computer Science Phone: (919) 660-6590 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 15:39:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id PAA00283 for freebsd-net-outgoing; Mon, 12 Oct 1998 15:39:12 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from paprika.michvhf.com (paprika.michvhf.com [209.57.60.12]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA00276 for ; Mon, 12 Oct 1998 15:39:10 -0700 (PDT) (envelope-from vev@michvhf.com) Received: (qmail 16780 invoked by uid 1000); 12 Oct 1998 22:41:07 -0000 Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 Date: Mon, 12 Oct 1998 18:41:07 -0400 (EDT) From: Vince Vielhaber To: freebsd-net@FreeBSD.ORG Subject: ipfw and dummynet Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm having a problem with ipfw and dummynet - but I'm not sure that dummynet has anything to do with it. First some background. I'm running a news server that I sometimes need to limit bandwidth coming from certain sites - but not all and not all the time which is why I don't want to tell any of them to limit what they send me. I installed the patches to 2.2.7-REL for dummynet and enabled it in the kernel and built a new kernel with these options: options IPFIREWALL options DUMMYNET The problem I'm having is that even with only one rule: ipfw add pipe 1 ip from any to any and ipfw pipe 1 config bw 100MB/s only the local subnet can get in. After a while (no specific timeframe that I've found) it starts allowing traffic from outside. After a while it closes down again. This can/has even happen(ed) right from bootup. There seems to be no pattern to it and the only thing I can find in /var/log/messages is: Oct 12 17:35:25 marge /kernel: arplookup 209.57.60.17 failed: host is not on local network There's a string of these from anything that tried to contact it - the above is from one of my machines on a different subnet. When these messages stop the traffic again flows. After chatting with Luigi about it, he thought it may have been running out of mbufs, so I added this to the config: options "NMBCLUSTERS=7000" and once again rebuilt. Same thing. I've even tried powering the machine down for a while and restarting it (just in case), but it's the same thing. But there's no sign of it from netstat -m: 347 mbufs in use: 183 mbufs allocated to data 86 mbufs allocated to packet headers 76 mbufs allocated to protocol control blocks 2 mbufs allocated to socket names and addresses 87/412 mbuf clusters in use 867 Kbytes allocated to network (25% in use) 0 requests for memory denied 0 requests for memory delayed 0 calls to protocol drain routines There is no traffic flowing right now as I cut-n-pasted this. With the above rule, this should be maxing out both T1's and occasionally it will. But then it'll close down again. Any suggestions? Vince. -- ========================================================================== Vince Vielhaber -- KA8CSH email: vev@michvhf.com flame-mail: /dev/null # include TEAM-OS2 Online Searchable Campground Listings http://www.camping-usa.com "There is no outfit less entitled to lecture me about bloat than the federal government" -- Tony Snow ========================================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Oct 12 20:37:44 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id UAA16922 for freebsd-net-outgoing; Mon, 12 Oct 1998 20:37:44 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id UAA16916 for ; Mon, 12 Oct 1998 20:37:42 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id CAA21888; Tue, 13 Oct 1998 02:38:27 +0100 From: Luigi Rizzo Message-Id: <199810130138.CAA21888@labinfo.iet.unipi.it> Subject: Re: ipfw and dummynet To: vev@michvhf.com (Vince Vielhaber) Date: Tue, 13 Oct 1998 02:38:27 +0100 (MET) Cc: freebsd-net@FreeBSD.ORG In-Reply-To: from "Vince Vielhaber" at Oct 12, 98 06:40:48 pm X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > I'm having a problem with ipfw and dummynet - but I'm not sure that > dummynet has anything to do with it. actually it looks like you are having a problem with ARP resolution. > First some background. I'm running a news server that I sometimes need > to limit bandwidth coming from certain sites - but not all and not all > the time which is why I don't want to tell any of them to limit what they > send me. > > I installed the patches to 2.2.7-REL for dummynet and enabled it in > the kernel and built a new kernel with these options: First and most important: how do your sources (src/sys/netinet) compare with the ones in -stable ? i thought you were using -stable, which is much more up-to-date than the version on my web page (especially for bugfixes). i think quite a few people are using dummynet with the same config as you, so if there was some major screwup in the code in -stable i'd have got a lot of reports. > options IPFIREWALL > options DUMMYNET > > The problem I'm having is that even with only one rule: > > ipfw add pipe 1 ip from any to any and > ipfw pipe 1 config bw 100MB/s > > only the local subnet can get in. After a while (no specific timeframe * have you seen any difference by adding a catchall rule (much like setting IPFIREWALL_DEFAULT_TO_ACCEPT ?) * does local traffic always flow ? * have you tried pinging a remote host for which you already have an ARP cache entry ? * what is the output of "ipfw show" "ipfw pipe show" "netstat -nr" while traffic is being blocked ? cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 13 04:56:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA14497 for freebsd-net-outgoing; Tue, 13 Oct 1998 04:56:14 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from cinnamon.michvhf.com (cinnamon.michvhf.com [209.57.60.10]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id EAA14464 for ; Tue, 13 Oct 1998 04:56:07 -0700 (PDT) (envelope-from vev@michvhf.com) Received: (qmail 13786 invoked from network); 13 Oct 1998 11:55:43 -0000 Received: from cinnamon.michvhf.com (209.57.60.10) by cinnamon.michvhf.com with SMTP; 13 Oct 1998 11:55:43 -0000 Date: Tue, 13 Oct 1998 07:55:42 -0400 (EDT) From: Vince Vielhaber Reply-To: Vince Vielhaber To: Luigi Rizzo cc: freebsd-net@FreeBSD.ORG Subject: Re: ipfw and dummynet In-Reply-To: <199810130138.CAA21888@labinfo.iet.unipi.it> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 13 Oct 1998, Luigi Rizzo wrote: > > I installed the patches to 2.2.7-REL for dummynet and enabled it in > > the kernel and built a new kernel with these options: > > First and most important: how do your sources (src/sys/netinet) > compare with the ones in -stable ? i thought you were using -stable, > which is much more up-to-date than the version on my web page > (especially for bugfixes). It is now at -stable (I sent Luigi the diffs off list), only difference was the jumpto stuff. > * have you seen any difference by adding a catchall rule (much like > setting IPFIREWALL_DEFAULT_TO_ACCEPT ?) I rebuilt with this, and here's the output of ipfw show and ipfw pipe show 01000 720 50963 pipe 1 ip from any to any 65535 0 0 allow ip from any to any 00001: 800.000 Mbit/s 0 ms 100 sl. -- 0 pkts (0 B) 0 drops Note, I was able to access it from the local subnet, but nowhere else. This was immediately after bootup. > > * does local traffic always flow ? As far as I can tell, yes. The server's showing no backlogs. > > * have you tried pinging a remote host for which you already have an > ARP cache entry ? Only things I see there are local. > > * what is the output of "ipfw show" "ipfw pipe show" "netstat -nr" > while traffic is being blocked ? show and pipe show are above, I blew the -nr and did -ns. Now traffic is flowing again so I'll pass it along once things stop again. Vince. -- ========================================================================== Vince Vielhaber -- KA8CSH email: vev@michvhf.com flame-mail: /dev/null # include TEAM-OS2 Online Searchable Campground Listings http://www.camping-usa.com "There is no outfit less entitled to lecture me about bloat than the federal government" -- Tony Snow ========================================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 13 08:38:24 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA06269 for freebsd-net-outgoing; Tue, 13 Oct 1998 08:38:24 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from web4-1.ability.net (web4-1.ability.net [207.240.60.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA06259 for ; Tue, 13 Oct 1998 08:38:20 -0700 (PDT) (envelope-from rich@f2sys.net) Received: from [192.168.1.2] (client-151-200-125-227.bellatlantic.net [151.200.125.227]) by web4-1.ability.net (8.9.1/8.9.1/Pub) with ESMTP id LAA27989 for ; Tue, 13 Oct 1998 11:29:42 -0400 (EDT) Date: Tue, 13 Oct 1998 11:29:42 -0400 (EDT) X-Sender: rich@mail.burntchicken.com Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: freebsd-net@FreeBSD.ORG From: Rich Fox Subject: IP aliasing Sendmail - receiving mail?! Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I have setup IP aliasing on my Freebsd machine. This morning, I noticed traffic over my lines when theoretically there shouldn't have been any... It turns out that some machine (appears to be mail.iglobal.net) was sending mail through my machine... I shut down sendmail, but thought I might run this by the net-list as I have other plans for handling mail across my aliasing machine and wanted to see if there was a more 'optimal' solution... This message was received as were several others. Most of them appeared to be headed to dyn.ml.org which is running some kind of dynamic IP <-> domain name mapping system (which might explain why I am getting their users' mail). It is stated on the ml.org site that this is still in beta, clearly! Perhaps I should contact ml.org and let them know, although this mild voyeurism is kind of fun... I am assuming that I didn't do something quite right that allowed this to happen, but I wanted to get a second opinion or direction before I dive back into the FAQs... Rich. here's a header from one of the messages... (interesting topics I might add...) This is a MIME-encapsulated message --LAA08961.908290925/portal.my.domain The original message was received at Tue, 13 Oct 1998 10:54:02 -0400 (EDT) from mail.iglobal.net [209.83.240.7] ----- The following addresses had permanent fatal errors ----- ----- Transcript of session follows ----- 550 ... Host unknown (Name server: oathbound.dyn.ml. org.: host not found) --LAA08961.908290925/portal.my.domain Content-Type: message/delivery-status Reporting-MTA: dns; portal.my.domain Received-From-MTA: DNS; mail.iglobal.net Arrival-Date: Tue, 13 Oct 1998 10:54:02 -0400 (EDT) Final-Recipient: RFC822; bower@oathbound.dyn.ml.org Action: failed Status: 5.1.2 Remote-MTA: DNS; oathbound.dyn.ml.org Last-Attempt-Date: Tue, 13 Oct 1998 11:02:05 -0400 (EDT) --LAA08961.908290925/portal.my.domain Content-Type: message/rfc822 Content-Transfer-Encoding: 8bit Return-Path: Received: from iglobal.net (mail.iglobal.net [209.83.240.7]) by portal.my.domain (8.8.8/8.8.8) with ESMTP id KAA08959 for ; Tue, 13 Oct 1998 10:54:02 -0400 (EDT) (envelope-from singer@iglobal.net) From: singer@iglobal.net Received: from [207.43.170.42] (denp1-12.iglobal.net [207.43.170.42]) by iglobal.net (8.9.1/8.9.1) with ESMTP id MAA29342 for ; Mon, 12 Oct 1998 12:53:56 -0500 (CDT) Date: Mon, 12 Oct 1998 12:53:56 -0500 (CDT) Message-Id: In-Reply-To: <360F2947.34E2C62D@earthlink.net> References: <361A273F.1DE0@earthlink.net> Conversation <000601bdf0ee$5070e2e0$64644cd1@smere> with last message <361A273F.1DE0@earthlink.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: bower@oathbound.dyn.ml.org Subject: Re: -=Bower=- getting spayed....????? | rich fox | rich@f2sys.net | 1513 N. Rhodes St. #1 | Arlington, VA 22209 | t:703.528.9616 | f:703.329.2314 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 13 16:29:46 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA19784 for freebsd-net-outgoing; Tue, 13 Oct 1998 16:29:46 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from merchant.tns.net (ns1.tns.net [204.216.142.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA19776 for ; Tue, 13 Oct 1998 16:29:42 -0700 (PDT) (envelope-from gvb@tns.net) Received: from gvb (gvb.tns.net [204.216.245.137]) by merchant.tns.net (8.9.1a/Go away SPAMers. No relay allowed!) with SMTP id QAA12698 for ; Tue, 13 Oct 1998 16:35:22 -0700 (PDT) Message-Id: <199810132335.QAA12698@merchant.tns.net> X-Sender: gvb@mail.tns.net (Unverified) X-Mailer: QUALCOMM Windows Eudora Pro Version 4.0.2 Date: Tue, 13 Oct 1998 16:33:39 -0700 To: freebsd-net@FreeBSD.ORG From: GVB Subject: Single signon solution Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org We are a small ISP and are looking to setup some kind of single signon solution. We are looking at distributing an IEAK CD for new users, but I dont know if there is anything that supports FreeBSD and this kind of solution. Basically, a new user signs themself up and it checks their card, and creates accounts on certian machines according to what plan the payed for, web, email, etc.. Any help is appriciated. Thanks. GVB To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 13 18:48:41 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA13559 for freebsd-net-outgoing; Tue, 13 Oct 1998 18:48:41 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from rovis.com (tony1.mpinet.net [208.6.199.201] (may be forged)) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA13548; Tue, 13 Oct 1998 18:48:37 -0700 (PDT) (envelope-from adchen@skatefaq.com) Received: from [138.210.141.219] ([138.210.141.219]) by rovis.com (8.9.1/8.9.1) with ESMTP id VAA06171; Tue, 13 Oct 1998 21:47:59 -0400 (EDT) X-Sender: adchen@skatefaq.com (Unverified) Message-Id: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Tue, 13 Oct 1998 21:50:22 -0400 To: freebsd-hardware@FreeBSD.ORG, freebsd-net@FreeBSD.ORG From: Tony Chen Subject: ethernet card weirdness Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, Have an odd problem, not sure if a hardware problem or a network/OS problem. System: VA-502 motherboard 32 MB 6x86 PR200+ FreeBSD 2.2.7-stable SMC EtherPower PCI card, (SMC8432T) 10-baseT Part 1: ------- Originally this machine was using 2.2.2-stable. The PCI Ethernet card is on de0 and has about 16 ip aliased on it. Every few days (sometimes several times a day) the interface will stop working. No packets out, no packets in - link light on the ethernet card shows link (green) but no traffic. There *were* only two ways to wake it back up: 1) reboot, 2) do "ifconfig de0 down" followed by "ifconfig de0 up". We had a script do #2 whenever it could ping out. Crude, but it worked. Part 2: ------- A while later, we upgraded to 2.2.7-stable. The network card still goes silent but now the ifconfig down/up trick no longer wakes the interface back up. Now only a reboot will make it work again. Not good. The included DOS diagnostic programs show the card appears to be fine hardware-wise. We even swapped in another ethernet card, exact same model, brand-new, and the problem still occurs. We tried different PCI slots on the motherboard with each card. Still happens. So is this a hardware compatibility problem or an OS problem? Thanks for any help. -Tony Chen adchen@skatefaq.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Oct 13 21:06:55 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA01220 for freebsd-net-outgoing; Tue, 13 Oct 1998 21:06:55 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from sierrahill.com (sierrahill.com [216.30.23.2]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA01191 for ; Tue, 13 Oct 1998 21:06:46 -0700 (PDT) (envelope-from rjoe@sierrahill.com) Received: (from rjoe@localhost) by sierrahill.com (8.8.7/8.8.7) id XAA13379 for freebsd-net@FreeBSD.ORG; Tue, 13 Oct 1998 23:04:11 -0500 (CDT) (envelope-from rjoe) From: Joe Schwartz Message-Id: <199810140404.XAA13379@sierrahill.com> Subject: imap vs pop3 To: freebsd-net@FreeBSD.ORG Date: Tue, 13 Oct 1998 23:04:11 -0500 (CDT) X-Mailer: ELM [version 2.4 PL23] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Folks, As a new ISP, I'd appreciate your comments on the IMAP from the packages selection. Is it stable & mature? What testing I've done (Netscape on NT wkstn configured to use IMAP with FreeBSD 2.2.5) doen't refresh Netscape's list of mail without restarting it after sending a test message to myself and then expecting to see it update Netscape's top scroll list of mail on the IMAP server. Thanks, Joe Schwartz PS I'm using Qualcomm's pop3. Any other one I should consider replacing it with? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 08:05:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA03433 for freebsd-net-outgoing; Wed, 14 Oct 1998 08:05:29 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from picasso.tellique.de (big-gw.tellique.de [195.126.133.179]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA03428 for ; Wed, 14 Oct 1998 08:05:25 -0700 (PDT) (envelope-from ni@tellique.de) Received: from tellique.de (nolde.tellique.de [62.144.106.52]) by picasso.tellique.de (8.8.8/8.8.8) with ESMTP id RAA14910; Wed, 14 Oct 1998 17:05:04 +0200 (MET DST) Message-ID: <3624BD9F.112F47BA@tellique.de> Date: Wed, 14 Oct 1998 17:05:03 +0200 From: Juergen Nickelsen Organization: Tellique Kommunikationstechnik GmbH X-Mailer: Mozilla 4.05 [en] (WinNT; I) MIME-Version: 1.0 To: FreeBSD Networking Subject: VPN through encrypted IP tunnel for FreeBSD? Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, is there any software for FreeBSD that can connect two private networks over an encrypted IP tunnel through a public network? It sounds as if this should be moderately easy to realize with two FreeBSD machines acting as routers, but to my surprise I didn't find anything appropriate in the archives. Thanks in advance, Juergen. -- Juergen Nickelsen Tellique Kommunikationstechnik GmbH Gustav-Meyer-Allee 25, 13355 Berlin, Germany Tel. +49 30 46307-552 / Fax +49 30 46307-579 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 08:49:48 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA09250 for freebsd-net-outgoing; Wed, 14 Oct 1998 08:49:48 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from pau-amma.whistle.com (s205m64.whistle.com [207.76.205.64]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA09237 for ; Wed, 14 Oct 1998 08:49:46 -0700 (PDT) (envelope-from dhw@whistle.com) Received: (from dhw@localhost) by pau-amma.whistle.com (8.8.8/8.8.7) id IAA26399; Wed, 14 Oct 1998 08:49:14 -0700 (PDT) (envelope-from dhw) Date: Wed, 14 Oct 1998 08:49:14 -0700 (PDT) From: David Wolfskill Message-Id: <199810141549.IAA26399@pau-amma.whistle.com> To: freebsd-net@FreeBSD.ORG, ni@tellique.de Subject: Re: VPN through encrypted IP tunnel for FreeBSD? In-Reply-To: <3624BD9F.112F47BA@tellique.de> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Date: Wed, 14 Oct 1998 17:05:03 +0200 >From: Juergen Nickelsen >is there any software for FreeBSD that can connect two private networks >over an encrypted IP tunnel through a public network? Sounds like ssh. david -- David Wolfskill UNIX System Administrator dhw@whistle.com voice: (650) 577-7158 pager: (650) 371-4621 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 08:52:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA10119 for freebsd-net-outgoing; Wed, 14 Oct 1998 08:52:13 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from coconut.itojun.org (coconut.itojun.org [210.160.95.97]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA10114 for ; Wed, 14 Oct 1998 08:52:11 -0700 (PDT) (envelope-from itojun@itojun.org) Received: from localhost (itojun@localhost.itojun.org [127.0.0.1]) by coconut.itojun.org (8.8.8+3.0Wbeta12/3.6W) with ESMTP id AAA26735; Thu, 15 Oct 1998 00:51:14 +0900 (JST) To: Juergen Nickelsen cc: FreeBSD Networking In-reply-to: ni's message of Wed, 14 Oct 1998 17:05:03 +0200. <3624BD9F.112F47BA@tellique.de> X-Template-Reply-To: itojun@itojun.org X-Template-Return-Receipt-To: itojun@itojun.org X-PGP-Fingerprint: F8 24 B4 2C 8C 98 57 FD 90 5F B4 60 79 54 16 E2 Subject: Re: VPN through encrypted IP tunnel for FreeBSD? From: Jun-ichiro itojun Itoh Date: Thu, 15 Oct 1998 00:51:14 +0900 Message-ID: <26731.908380274@coconut.itojun.org> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >is there any software for FreeBSD that can connect two private networks >over an encrypted IP tunnel through a public network? >It sounds as if this should be moderately easy to realize with two >FreeBSD machines acting as routers, but to my surprise I didn't find >anything appropriate in the archives. experimental patch for 2.2.7-RELEASE can be found at http://www.kame.net/. It is experimental - you may have some hard time installing and configuring it. itojun To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 09:27:02 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA16333 for freebsd-net-outgoing; Wed, 14 Oct 1998 09:27:02 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from socrates.i-pi.com (socrates.i-pi.com [198.49.217.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA16322 for ; Wed, 14 Oct 1998 09:26:57 -0700 (PDT) (envelope-from ingham@i-pi.com) Received: (from ingham@localhost) by socrates.i-pi.com (8.8.8/8.8.7) id JAA02203; Wed, 14 Jan 1998 09:23:22 -0700 (MST) (envelope-from ingham) Message-ID: <19980114092322.C449@i-pi.com> Date: Wed, 14 Jan 1998 09:23:22 -0700 From: Kenneth Ingham To: Juergen Nickelsen , FreeBSD Networking Subject: Re: VPN through encrypted IP tunnel for FreeBSD? References: <3624BD9F.112F47BA@tellique.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.1i In-Reply-To: <3624BD9F.112F47BA@tellique.de>; from Juergen Nickelsen on Wed, Oct 14, 1998 at 05:05:03PM +0200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Oct 14, 1998 at 05:05:03PM +0200, Juergen Nickelsen wrote: > is there any software for FreeBSD that can connect two private networks > over an encrypted IP tunnel through a public network? I've not done it, but there is ssh and SKIP and one other I don't remember. Kenneth To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 09:47:29 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA18396 for freebsd-net-outgoing; Wed, 14 Oct 1998 09:47:29 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from colin.muc.de (colin.muc.de [193.174.4.1]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id JAA18387 for ; Wed, 14 Oct 1998 09:47:25 -0700 (PDT) (envelope-from lutz@muc.de) Received: from tavari.muc.de ([193.174.4.22]) by colin.muc.de with SMTP id <140550-3>; Wed, 14 Oct 1998 18:46:56 +0200 Received: (from daemon@localhost) by tavari.muc.de (8.8.8/8.8.7) id SAA01464; Wed, 14 Oct 1998 18:43:51 +0200 (CEST) Received: from ripley(192.168.42.202) by morranon via smap (V2.1) id xma001462; Wed, 14 Oct 98 18:43:49 +0200 From: "Lutz Albers" To: "Joe Schwartz" , Subject: RE: imap vs pop3 Date: Wed, 14 Oct 1998 18:43:48 +0200 Message-ID: <000d01bdf791$d0dcece0$ca2aa8c0@ripley.tavari.muc.de> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2377.0 In-Reply-To: <199810140404.XAA13379@sierrahill.com> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, > What testing I've done (Netscape on NT wkstn configured to > use IMAP with FreeBSD 2.2.5) doen't refresh Netscape's list > of mail without restarting it after sending a test message > to myself and then expecting to see it update Netscape's > top scroll list of mail on the IMAP server. You're not writing which imap-server you used, but i'm asuming that you've used the imap-uw server, right ? Don't use it, the cyrus server is far better, but somewhat complicated to setup. Works like a charm on my site ... -- Lutz Albers, lutz@muc.de, pgp key available from Do not take life too seriously, you will never get out of it alive. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 09:54:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA19856 for freebsd-net-outgoing; Wed, 14 Oct 1998 09:54:09 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from nebraska.utcorp.com ([146.145.135.14]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA19785 for ; Wed, 14 Oct 1998 09:53:59 -0700 (PDT) (envelope-from kseel@utcorp.com) Received: from kspc.utcorp.com (kseel@kspc.utcorp.com [146.145.135.1]) by nebraska.utcorp.com (8.8.5/8.8.5) with SMTP id MAA01240 for ; Wed, 14 Oct 1998 12:24:37 -0400 (EDT) Message-ID: <3624D5AF.167EB0E7@utcorp.com> Date: Wed, 14 Oct 1998 12:47:43 -0400 From: Kurt Seel Organization: Unified Technologies Corp. X-Mailer: Mozilla 3.0Gold (X11; I; BSD/OS 2.0 i386) MIME-Version: 1.0 To: freebsd-net@FreeBSD.ORG Subject: [Fwd: Re: VPN through encrypted IP tunnel for FreeBSD?] Content-Type: multipart/mixed; boundary="------------794BDF32446B9B3D2781E494" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------794BDF32446B9B3D2781E494 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit If _anyone_ gets skip to work, please let me know. I tried for two days, no luck. Tried everything short of slaughtering a chicken. hhmmm .... -- Kurt Seel, Systems Engineer Unified Technologies Corp. Phone : 610 964 8200 Email : kseel@utcorp.com "If you aim the gun at your foot and pull the trigger, it's UNIX's job to ensure reliable delivery of the bullet" --------------794BDF32446B9B3D2781E494 Content-Type: message/rfc822 Content-Transfer-Encoding: 7bit Content-Disposition: inline Received: from mail2.sol.net (mail2.sol.net [206.55.64.73]) by nebraska.utcorp.com (8.8.5/8.8.5) with ESMTP id MAA01200 for ; Wed, 14 Oct 1998 12:21:11 -0400 (EDT) Received: from hub.freebsd.org (hub.FreeBSD.ORG [204.216.27.18]) by mail2.sol.net (8.8.8/8.8.8/SNNS-1.02) with ESMTP id LAA04072; Wed, 14 Oct 1998 11:49:43 -0500 (CDT) Received: from localhost (daemon@localhost) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id JAA16471; Wed, 14 Oct 1998 09:27:29 -0700 (PDT) (envelope-from owner-freebsd-net) Received: by hub.freebsd.org (bulk_mailer v1.6); Wed, 14 Oct 1998 09:27:03 -0700 Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id JAA16333 for freebsd-net-outgoing; Wed, 14 Oct 1998 09:27:02 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from socrates.i-pi.com (socrates.i-pi.com [198.49.217.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA16322 for ; Wed, 14 Oct 1998 09:26:57 -0700 (PDT) (envelope-from ingham@i-pi.com) Received: (from ingham@localhost) by socrates.i-pi.com (8.8.8/8.8.7) id JAA02203; Wed, 14 Jan 1998 09:23:22 -0700 (MST) (envelope-from ingham) Message-ID: <19980114092322.C449@i-pi.com> Date: Wed, 14 Jan 1998 09:23:22 -0700 From: Kenneth Ingham To: Juergen Nickelsen , FreeBSD Networking Subject: Re: VPN through encrypted IP tunnel for FreeBSD? References: <3624BD9F.112F47BA@tellique.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.1i In-Reply-To: <3624BD9F.112F47BA@tellique.de>; from Juergen Nickelsen on Wed, Oct 14, 1998 at 05:05:03PM +0200 Sender: owner-freebsd-net@FreeBSD.ORG X-Loop: FreeBSD.org On Wed, Oct 14, 1998 at 05:05:03PM +0200, Juergen Nickelsen wrote: > is there any software for FreeBSD that can connect two private networks > over an encrypted IP tunnel through a public network? I've not done it, but there is ssh and SKIP and one other I don't remember. Kenneth To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message --------------794BDF32446B9B3D2781E494-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 10:34:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA26359 for freebsd-net-outgoing; Wed, 14 Oct 1998 10:34:14 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from picasso.tellique.de (big-gw.tellique.de [195.126.133.179]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA26353 for ; Wed, 14 Oct 1998 10:34:11 -0700 (PDT) (envelope-from ni@tellique.de) Received: from tellique.de (nolde.tellique.de [62.144.106.52]) by picasso.tellique.de (8.8.8/8.8.8) with ESMTP id TAA15641; Wed, 14 Oct 1998 19:33:50 +0200 (MET DST) Message-ID: <3624E07E.A5F6C57@tellique.de> Date: Wed, 14 Oct 1998 19:33:50 +0200 From: Juergen Nickelsen Organization: Tellique Kommunikationstechnik GmbH X-Mailer: Mozilla 4.05 [en] (WinNT; I) MIME-Version: 1.0 To: FreeBSD Networking Subject: Re: VPN through encrypted IP tunnel for FreeBSD? References: <3624BD9F.112F47BA@tellique.de> <19980114092322.C449@i-pi.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Oct 14, 1998 at 05:05:03PM +0200, I wrote: > is there any software for FreeBSD that can connect two private > networks over an encrypted IP tunnel through a public network? Many thanks to Kenneth Ingham, Jun-ichiro itojun Itoh, Mike Jenkins, and Lyndon Nerenberg for your very quick answers! For use in a production environment the coices seem to be SKIP or SSH. SKIP looks *exactly* what I have been looking for, but unfortunately it is not exportable to outside of the US and Canada -- same old story again. Does anyone know if there is a "foreign" or exportable version of SKIP, or something like SKIP, but available in Europe, for FreeBSD? Greetings, Juergen. -- Juergen Nickelsen Tellique Kommunikationstechnik GmbH Gustav-Meyer-Allee 25, 13355 Berlin, Germany Tel. +49 30 46307-552 / Fax +49 30 46307-579 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 11:34:42 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA05751 for freebsd-net-outgoing; Wed, 14 Oct 1998 11:34:42 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from roma.coe.ufrj.br (roma.coe.ufrj.br [146.164.53.65]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA05737 for ; Wed, 14 Oct 1998 11:34:35 -0700 (PDT) (envelope-from jonny@jonny.eng.br) Received: (from jonny@localhost) by roma.coe.ufrj.br (8.8.8/8.8.8) id QAA28872; Wed, 14 Oct 1998 16:31:20 -0200 (EDT) (envelope-from jonny) From: Joao Carlos Mendes Luis Message-Id: <199810141831.QAA28872@roma.coe.ufrj.br> Subject: Re: VPN through encrypted IP tunnel for FreeBSD? In-Reply-To: <19980114092322.C449@i-pi.com> from Kenneth Ingham at "Jan 14, 98 09:23:22 am" To: ingham@i-pi.com (Kenneth Ingham) Date: Wed, 14 Oct 1998 16:31:20 -0200 (EDT) Cc: ni@tellique.de, freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL40 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org #define quoting(Kenneth Ingham) // On Wed, Oct 14, 1998 at 05:05:03PM +0200, Juergen Nickelsen wrote: // > is there any software for FreeBSD that can connect two private networks // > over an encrypted IP tunnel through a public network? // // I've not done it, but there is ssh and SKIP and one other I don't // remember. Just looking for examples, how do I mount NFS from Solaris to FreeBSD over ssh ? Does ssh handles udp or does Solaris know how to mount NFS over tcp ? I'll take a look at kame today. Hope it's easy. :) I'd love to use SKIP, but I'm not in USA. Jonny -- Joao Carlos Mendes Luis M.Sc. Student jonny@jonny.eng.br Universidade Federal do Rio de Janeiro "This .sig is not meant to be politically correct." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 11:54:12 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id LAA08448 for freebsd-net-outgoing; Wed, 14 Oct 1998 11:54:12 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from hp9000.chc-chimes.com (hp9000.chc-chimes.com [206.67.97.84]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id LAA08414 for ; Wed, 14 Oct 1998 11:54:07 -0700 (PDT) (envelope-from billf@chc-chimes.com) Received: from localhost by hp9000.chc-chimes.com with SMTP (1.39.111.2/16.2) id AA220547269; Wed, 14 Oct 1998 11:01:09 -0400 Date: Wed, 14 Oct 1998 11:01:09 -0400 (EDT) From: Bill Fumerola To: Juergen Nickelsen Cc: FreeBSD Networking Subject: Re: VPN through encrypted IP tunnel for FreeBSD? In-Reply-To: <3624BD9F.112F47BA@tellique.de> Message-Id: Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 14 Oct 1998, Juergen Nickelsen wrote: > is there any software for FreeBSD that can connect two private networks > over an encrypted IP tunnel through a public network? Actually, userland ppp has an option to connect over a network, this combined with ssh could provide some sort of tunnel. > It sounds as if this should be moderately easy to realize with two > FreeBSD machines acting as routers, but to my surprise I didn't find > anything appropriate in the archives. It's harder when dealing with a Win95 Client, you might want to look at /usr/ports/security/skip, which also can do FreeBSD->FreeBSD (and solaris and win95..) - bill fumerola [root/billf]@chc-chimes.com - computer horizons corp - - ph:(800)252.2421 x128 / bfumerol@computerhorizons.com - BF1560 - "Logic, like whiskey, loses its beneficial effect when taken in too large quantities" -Lord Dunsany To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 12:35:09 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id MAA13655 for freebsd-net-outgoing; Wed, 14 Oct 1998 12:35:09 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from socrates.i-pi.com (socrates.i-pi.com [198.49.217.5]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id MAA13644 for ; Wed, 14 Oct 1998 12:35:03 -0700 (PDT) (envelope-from ingham@i-pi.com) Received: (from ingham@localhost) by socrates.i-pi.com (8.8.8/8.8.7) id NAA02781; Wed, 14 Oct 1998 13:34:20 -0600 (MDT) (envelope-from ingham) Message-ID: <19981014133418.B2659@i-pi.com> Date: Wed, 14 Oct 1998 13:34:18 -0600 From: Kenneth Ingham To: Joao Carlos Mendes Luis Cc: ni@tellique.de, freebsd-net@FreeBSD.ORG Subject: Re: VPN through encrypted IP tunnel for FreeBSD? References: <19980114092322.C449@i-pi.com> <199810141831.QAA28872@roma.coe.ufrj.br> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.1i In-Reply-To: <199810141831.QAA28872@roma.coe.ufrj.br>; from Joao Carlos Mendes Luis on Wed, Oct 14, 1998 at 04:31:20PM -0200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, Oct 14, 1998 at 04:31:20PM -0200, Joao Carlos Mendes Luis wrote: > Just looking for examples, how do I mount NFS from Solaris to FreeBSD > over ssh ? Does ssh handles udp or does Solaris know how to mount NFS > over tcp ? NFS v3 supports TCP as a transport layer. I have several (SGI) machines using it at one client site. I've not tried between Sun and FreeBSD (yet). Solaris 2.5.1 supports NFS v3 and TCP for transport. Kenneth To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 16:32:35 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA18793 for freebsd-net-outgoing; Wed, 14 Oct 1998 16:32:35 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from banshee.cs.uow.edu.au (banshee.cs.uow.edu.au [130.130.188.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA18785 for ; Wed, 14 Oct 1998 16:32:29 -0700 (PDT) (envelope-from ncb05@banshee.cs.uow.edu.au) Received: (from ncb05@localhost) by banshee.cs.uow.edu.au (8.9.1a/8.9.1) id JAA01229; Thu, 15 Oct 1998 09:31:57 +1000 (EST) Date: Thu, 15 Oct 1998 09:31:56 +1000 (EST) From: Nicholas Charles Brawn X-Sender: ncb05@banshee.cs.uow.edu.au To: Juergen Nickelsen cc: FreeBSD Networking Subject: Re: VPN through encrypted IP tunnel for FreeBSD? In-Reply-To: <3624E07E.A5F6C57@tellique.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 14 Oct 1998, Juergen Nickelsen wrote: > SKIP looks *exactly* what I have been looking for, but unfortunately it > is not exportable to outside of the US and Canada -- same old story > again. Does anyone know if there is a "foreign" or exportable version of > SKIP, or something like SKIP, but available in Europe, for FreeBSD? I believe you can download a copy of skip, already exported from the US, from ftp.replay.com (look in /pub/crypto). Nick -- Email: ncb@poboxes.com - http://www.poboxes.com/ncb Key fingerprint = DE 30 33 D3 16 91 C8 8D A7 F8 70 03 B7 77 1A 2A To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 18:02:23 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id SAA00734 for freebsd-net-outgoing; Wed, 14 Oct 1998 18:02:23 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from granite.sentex.net (granite.sentex.ca [199.212.134.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA00729 for ; Wed, 14 Oct 1998 18:02:21 -0700 (PDT) (envelope-from mike@sentex.net) Received: from ospf-mdt.sentex.net (ospf-mdt.sentex.net [205.211.164.81]) by granite.sentex.net (8.8.6/8.6.9) with SMTP id VAA23988; Wed, 14 Oct 1998 21:01:50 -0400 (EDT) From: mike@sentex.net (Mike Tancsa) To: ni@tellique.de (Juergen Nickelsen) Cc: freebsd-net@FreeBSD.ORG Subject: Re: VPN through encrypted IP tunnel for FreeBSD? Date: Thu, 15 Oct 1998 01:06:30 GMT Message-ID: <36254a2e.380781835@mail.sentex.net> References: <3624BD9F.112F47BA@tellique.de> In-Reply-To: <3624BD9F.112F47BA@tellique.de> X-Mailer: Forte Agent .99e/32.227 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 14 Oct 1998 17:05:03 +0200, in sentex.lists.freebsd.misc you wrote: >Hello, > >is there any software for FreeBSD that can connect two private networks >over an encrypted IP tunnel through a public network? Either in questions or in stable, someone mentioned a port of IPSEC. Wait, you are in luck, I did bookmark it after all... http://www.r4k.net/ipsec/ ---Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 19:27:16 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA15115 for freebsd-net-outgoing; Wed, 14 Oct 1998 19:27:16 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from gw-adsl.specialty.ab.ca (dsle00641.adsl.telusplanet.net [207.229.46.129]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA15072 for ; Wed, 14 Oct 1998 19:27:01 -0700 (PDT) (envelope-from freebsd-net@masterplan.org) Received: from skunkworks.specialty.ab.ca (uucp@skunkworks [192.168.1.10]) by gw-adsl.specialty.ab.ca (8.8.8/8.8.8) with ESMTP id UAA19121 for ; Wed, 14 Oct 1998 20:26:38 -0600 (MDT) (envelope-from freebsd-net@masterplan.org) Received: (from uucp@localhost) by skunkworks.specialty.ab.ca (8.8.8/8.8.8) with UUCP id UAA05183 for freebsd-net@freebsd.org; Wed, 14 Oct 1998 20:26:36 -0600 (MDT) (envelope-from freebsd-net@masterplan.org) Received: from localhost (jbg@localhost) by gongshow.masterplan.org (8.8.8/8.8.8) with SMTP id UAA18428 for ; Wed, 14 Oct 1998 20:22:37 -0600 (MDT) (envelope-from freebsd-net@masterplan.org) Date: Wed, 14 Oct 1998 20:22:35 -0600 (MDT) From: Jason George X-Sender: freebsd-net@masterplan.org To: freebsd-net@FreeBSD.ORG Subject: Re: VPN through encrypted IP tunnel for FreeBSD? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Date: Thu, 15 Oct 1998 02:20:22 GMT Take a look at http://www.r4k.net/ipsec There is a preliminary set of patches to enable IPsec on FreeBSD. I've patched my home system, but haven't had time to try any interoperability testing with my OpenBSD Sparc box at a client site yet. Stephanie Wehner, the porter, indicated to me in e-mail that it works fine between here x86 OpenBSD box and her x86 FreeBSD box. SKIP does work very nicely, though, if you have the time to get it working (getting SKIP to work with NATD and IPFW can be nasty!) Hope this helps. --Jason j.b.george@ieee.org jbg@masterplan.org In article , ncb05@uow.edu.au (Nicholas Charles Brawn) wrote: >On Wed, 14 Oct 1998, Juergen Nickelsen wrote: > >> SKIP looks *exactly* what I have been looking for, but unfortunately it >> is not exportable to outside of the US and Canada -- same old story >> again. Does anyone know if there is a "foreign" or exportable version of >> SKIP, or something like SKIP, but available in Europe, for FreeBSD? > >I believe you can download a copy of skip, already exported from the US, >from ftp.replay.com (look in /pub/crypto). > >Nick > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Oct 14 19:42:10 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA17246 for freebsd-net-outgoing; Wed, 14 Oct 1998 19:42:10 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from whistle.com (s205m131.whistle.com [207.76.205.131]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA17241 for ; Wed, 14 Oct 1998 19:42:08 -0700 (PDT) (envelope-from archie@whistle.com) Received: (from smap@localhost) by whistle.com (8.7.5/8.6.12) id TAA05593; Wed, 14 Oct 1998 19:41:52 -0700 (PDT) Received: from bubba.whistle.com(207.76.205.7) by whistle.com via smap (V1.3) id sma005581; Wed Oct 14 19:41:33 1998 Received: (from archie@localhost) by bubba.whistle.com (8.8.7/8.6.12) id TAA11423; Wed, 14 Oct 1998 19:41:33 -0700 (PDT) From: Archie Cobbs Message-Id: <199810150241.TAA11423@bubba.whistle.com> Subject: Re: [Fwd: Re: VPN through encrypted IP tunnel for FreeBSD?] In-Reply-To: <3624D5AF.167EB0E7@utcorp.com> from Kurt Seel at "Oct 14, 98 12:47:43 pm" To: kseel@utcorp.com (Kurt Seel) Date: Wed, 14 Oct 1998 19:41:33 -0700 (PDT) Cc: freebsd-net@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL38 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Kurt Seel writes: > If _anyone_ gets skip to work, please let me know. I tried for > two days, no luck. Tried everything short of slaughtering a > chicken. hhmmm .... Many folks seem to have gotten it working.. you might ask on the skip-info mailing list as well. What problem are you having? (I did the port but I don't use it anymore and am not much of an expert). -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 16 13:31:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA06552 for freebsd-net-outgoing; Fri, 16 Oct 1998 13:31:51 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from the.oneinsane.net (gw.oneinsane.net [207.113.133.226]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA06531 for ; Fri, 16 Oct 1998 13:31:45 -0700 (PDT) (envelope-from insane@the.oneinsane.net) Received: (from insane@localhost) by the.oneinsane.net (8.9.0/8.9.0) id NAA21748 for freebsd-net@freebsd.org; Fri, 16 Oct 1998 13:31:24 -0700 (PDT) Message-ID: <19981016133123.A21460@oneinsane.net> Date: Fri, 16 Oct 1998 13:31:23 -0700 From: "Ron 'The Insane One' Rosson" To: freebsd-net@FreeBSD.ORG Subject: PPP Server setup Reply-To: insane@oneinsane.net Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i X-Operating-System: FreeBSD the.oneinsane.net 2.2.7-STABLE X-Opinion: What you read here is my IMHO X-Disclaimer: I am a firm believer in RTFM X-WWW: http://www.oneinsane.net Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I think I have the right list.. I am having a hell of a time setting up ij-ppp to act as a dialin server to my freeBSD box. I used to have scripts/conf files to dial to my isp but since then I have gotten frame-relay and am Brain Farting on PPP configurations.. I have never accomplished the server side but have done the client side. CAn anyone share their configuration files on how to accomplish the server side of a ppp setup. TIA Ron -- ------------------------------------------------------------------- Ron Rosson ... and a UNIX user said ... The InSaNe One rm -rf * insane@oneinsane.net and all was null and void ------------------------------------------------------------------- It's so nice to be insane, nobody asks you to explain. [----------------------------System Info---------------------------] 1:27PM up 3 days, 4:18, 4 users, load averages: 0.72, 0.70, 0.74 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 16 14:52:51 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA24959 for freebsd-net-outgoing; Fri, 16 Oct 1998 14:52:51 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from boingo.pciway.com (boingo.pciway.com [206.0.98.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA24860 for ; Fri, 16 Oct 1998 14:51:45 -0700 (PDT) (envelope-from loren@boingo.pciway.com) Received: from localhost (loren@localhost) by boingo.pciway.com (8.8.8/8.8.8) with SMTP id OAA14993; Fri, 16 Oct 1998 14:51:07 -0700 (PDT) Date: Fri, 16 Oct 1998 14:51:07 -0700 (PDT) From: Loren Daniel Koss To: "Ron 'The Insane One' Rosson" cc: freebsd-net@FreeBSD.ORG Subject: Re: PPP Server setup In-Reply-To: <19981016133123.A21460@oneinsane.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Well, I'm not sure your exact setup, but I got it working using the following: mgetty user-ppp If you follow the instructions in the handbook, and have a little luck, you'll get it working.. Exactly how far have you gotten? Does the modem pick up? Are you running a getty against your device? -Loren On Fri, 16 Oct 1998, Ron 'The Insane One' Rosson wrote: > I think I have the right list.. I am having a hell of a time setting > up ij-ppp to act as a dialin server to my freeBSD box. I used to have > scripts/conf files to dial to my isp but since then I have gotten > frame-relay and am Brain Farting on PPP configurations.. > > I have never accomplished the server side but have done the client side. > CAn anyone share their configuration files on how to accomplish the server > side of a ppp setup. > > TIA > Ron > > -- > ------------------------------------------------------------------- > Ron Rosson ... and a UNIX user said ... > The InSaNe One rm -rf * > insane@oneinsane.net and all was null and void > ------------------------------------------------------------------- > It's so nice to be insane, nobody asks you to explain. > [----------------------------System Info---------------------------] > 1:27PM up 3 days, 4:18, 4 users, load averages: 0.72, 0.70, 0.74 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Oct 16 21:14:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id VAA24832 for freebsd-net-outgoing; Fri, 16 Oct 1998 21:14:27 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from beef.cybertouch.org (h24-64-143-210.mt.wave.shaw.ca [24.64.143.210]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA24826; Fri, 16 Oct 1998 21:14:23 -0700 (PDT) (envelope-from beef@mail.cybertouch.org) Received: from ribs (h24-64-143-197.mt.wave.shaw.ca [24.64.143.197]) by beef.cybertouch.org (8.8.8/8.8.8) with SMTP id AAA00375; Sat, 17 Oct 1998 00:12:19 -0400 (EDT) (envelope-from beef@mail.cybertouch.org) Message-Id: <199810170412.AAA00375@beef.cybertouch.org> From: beef@cybertouch.org To: , , , "Loren Koss" Date: Sun, 18 Oct 1998 00:12:11 -0400 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: Dialup PPP Server.. In-reply-to: <005601bdf5fa$2cdc34e0$1e6200ce@vatos.pciway.com> X-mailer: Pegasus Mail for Win32 (v3.01b) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org From: "Loren Koss" To: , , Subject: Dialup PPP Server.. Date sent: Mon, 12 Oct 1998 09:05:47 -0700 > I followed the instructions in the handbook and have successfully dialed in using my Win95 (bleh!) box. I can ping and get mail, telnet, and HTTP the BSD box, but I can't get to the rest of the network.. I assume I need to set up a route but am not sure how.. Any help would be greatly appreciated. Detailed help is very good, btw. I have gotten some very obscure answers and understand that I am a newbie in this field. > > Thanks > Loren > Hey since you are able to dial into to a FreeBSD box, would you mind helping me get 1 modem connected to my FreeBSD box to work? Thanks, Lanny To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Oct 17 08:16:54 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id IAA20620 for freebsd-net-outgoing; Sat, 17 Oct 1998 08:16:54 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from tor-dev1.nbc.netcom.ca (tor-dev1.nbc.netcom.ca [207.181.89.12]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA20615 for ; Sat, 17 Oct 1998 08:16:50 -0700 (PDT) (envelope-from dacole@netcom.ca) Received: from localhost (dacole@localhost) by tor-dev1.nbc.netcom.ca (8.8.8/8.8.8) with SMTP id LAA19854 for ; Sat, 17 Oct 1998 11:16:10 -0400 (EDT) X-Authentication-Warning: tor-dev1.nbc.netcom.ca: dacole owned process doing -bs Date: Sat, 17 Oct 1998 11:16:10 -0400 (EDT) From: Dave Cole X-Sender: dacole@tor-dev1.nbc.netcom.ca To: freebsd-net@FreeBSD.ORG Subject: FastEtherChannel? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org A quick scan of the archives comes up empty, so I'm querying here. Is there any support, or is there any thought of adding support, for FastEtherChannel? I believe it is a Cisco-originated technology but I keep seeing mention of support for it in several commercial hardware and OS (BSDi, I was told) products. ---------------------------------------------------------------- Dave Cole (DC1110) | dacole@netcom.ca Systems Administrator |* dacole@rik.net * | office/~dacole/ Netcom Canada |* www.rik.net/~dacole/ * 905 King Street West, Toronto, M6K 3G9 | phone - 416.341.5801 Toronto, Ontario, Canada, Earth, Sol | fax - 416.341.5725 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message