From owner-freebsd-isp Sun Jan 27 1:50:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from weigon.dyndns.org (pD950789C.dip.t-dialin.net [217.80.120.156]) by hub.freebsd.org (Postfix) with SMTP id B7AE937B400 for ; Sun, 27 Jan 2002 01:50:46 -0800 (PST) Received: (qmail 17497 invoked by uid 100); 27 Jan 2002 09:50:38 -0000 Date: Sun, 27 Jan 2002 10:50:38 +0100 From: jan@kneschke.de To: Alexander Leidinger Cc: freefabri@yahoo.it, freebsd-isp@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: better way to read qmail logs Message-ID: <20020127105037.V18725@weigon.home.kneschke.de> References: <20020123082653.66472.qmail@web20107.mail.yahoo.com> <200201231329.g0NDTNa03574@Magelan.Leidinger.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200201231329.g0NDTNa03574@Magelan.Leidinger.net> User-Agent: Mutt/1.3.22.1i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 23, 2002 at 02:29:22PM +0100, Alexander Leidinger wrote: > On 23 Jan, Fabrizio Ravazzini wrote: > > hello all, is there a way to read qmail logs via web > > interface or some other graphics interface? > > /usr/ports/textproc/modlogan has support for qmail logs. I haven't used > any mail processor of it (only the weblogs processor), but if there's > something you miss in the output of it, you can contact the author > (jane@kneschke.de, CCed), hi's usually very responsive. s/jane/jan/ :) modlogan has support for parsing qmail and sendmail logfile and provides the neccesary reports. currently it provides the following reports for the mailserver logfiles: - Mails by Sender - Mails by Receipient - Mails by Domain (sender) - Mails by Domain (receipient) - Qmail queue usage and for the virus-scanners qmail-scanner and viruswall we also provide support the number of affected mail by a virus. > Alexander. Jan -- mailto: jan@kneschke.de weigon @ #php.de (IRCnet) http://jan.kneschke.de weigon @ #modlogan (openprojects) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 4:16: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web20109.mail.yahoo.com (web20109.mail.yahoo.com [216.136.226.46]) by hub.freebsd.org (Postfix) with SMTP id 4CDAD37B42A for ; Mon, 28 Jan 2002 04:15:47 -0800 (PST) Message-ID: <20020128121544.33045.qmail@web20109.mail.yahoo.com> Received: from [193.227.212.161] by web20109.mail.yahoo.com via HTTP; Mon, 28 Jan 2002 13:15:44 CET Date: Mon, 28 Jan 2002 13:15:44 +0100 (CET) From: =?iso-8859-1?q?Fabrizio=20Ravazzini?= Subject: Lan between two network links To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all, a question about splitting a lan between two different network links. At this moment we connect the Dmz & Lan of our network to a 2 Mbit link isp via a FreeBSD bridge/Firewall & Nat/Firewall: 190.20.20.1 Isp--------Router---FBSD 2Mbit | Bridge----DMZ | (190.20.20/128) | |____ FBSD NAT--Linux Proxy---LAN (192.168.1.x) The 2Mbit link is free since reaced some amount of traffic, then we pay for the exceeding traffic. Our managers wants to buy a second link, adsl, slower but cheaper to use in addition to the 2Mbit link to reduce the costs when the 2Mbit reaces the traffic limit. Some users can still use the 2 Mbit and the others goes on the adsl based on something like acl. And if the 2Mbit goes down, there is the adsl who can take care of the Dmz as a backup. So to have this setup: 190.20.20.1 Isp1--------RouterA---FBSD 2Mbit | Bridge----DMZ | (190.20.20/128) | |____ FBSD NAT--Linux Proxy---LAN (192.168.1.x) 212.20.20.1 Isp2-----RouterB--------????? Is there a way to do such a thing? We thought about proxy(squid on Linux) to give different gateways at the Lan based on acls. Then we thought about building a router between th two networks, but how to decide to use a link instead of another? Traffic shaping? is dummynet or others on FreeBSD good to do such a thing? or Iproute on Linux? Any suggestion would be appreciated. Thanks ______________________________________________________________________ Dillo con una cartolina! http://it.greetings.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 6:29:16 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail6.rambler.ru (mail6.rambler.ru [217.73.192.115]) by hub.freebsd.org (Postfix) with SMTP id 94BCA37B402 for ; Mon, 28 Jan 2002 06:29:09 -0800 (PST) Received: from 62.64.18.231 by rambler.ru with SMTP id AA11079 for freebsd-isp@freebsd.org; Mon, 28 Jan 2002 17:23:15 +0300 (MSK) Date: Mon, 28 Jan 2002 17:24:58 +0300 From: Alexander Lunyov X-Mailer: The Bat! (v1.44) Reply-To: Alexander Lunyov X-Priority: 3 (Normal) Message-ID: <44646912.20020128172458@rambler.ru> To: freebsd-isp@freebsd.org Subject: modems with direct lines Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello All, So, the fabule: inside of our factory there is a little modem pool, we have 4 modems with direct lines (and 10 with commutable lines). With the last ones everything is clear - mgetty. Is there some way to put direct lines on mgetty? For now situation on direct lines is that: sol# cat /etc/ttys [skip] ttyR01 "/usr/sbin/pppd 57600" dialup on insecure .... ttyR04 "/usr/sbin/pppd 57600" dialup on insecure [skip] sol# cat /etc/ppp/options.ttyR01 lock modem nodetach noauth nodefaultroute passive crtscts noproxyarp debug 9 connect '/usr/bin/chat "" at OK atx3 OK ata CONNECT' 192.168.33.23:192.168.89.41 netmask 255.255.255.255 domain sol.myserv.ru dns1 195.0.0.0 sol# 195.0.0.0 - IP of my ISP. I tried to put in /etc/ttys ttyR01 "/usr/local/sbin/mgetty -r" dialup on insecure but modem just sitting and waiting for something. How to force him to hangup? Here is /var/log/mgetty.ttyR01 01/28 16:28:55 R02 mgetty: experimental test release 1.1.22-Aug17 01/28 16:28:55 R02 check for lockfiles 01/28 16:28:55 R02 locking the line 01/28 16:28:58 R02 lowering DTR to reset Modem 01/28 16:28:58 R02 tcsetattr failed: Invalid argument 01/28 16:28:59 R02 waiting... Is there any ideas? -- Best regards, Alexander mailto:soleizo_mailng@rambler.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 7:31: 1 2002 Delivered-To: freebsd-isp@freebsd.org Received: from altoonanet.altoonanet.com (ns1.altoonanet.com [12.151.19.2]) by hub.freebsd.org (Postfix) with SMTP id CE82837B404 for ; Mon, 28 Jan 2002 07:30:52 -0800 (PST) Received: (qmail 16324 invoked by uid 2520); 28 Jan 2002 15:33:55 -0000 Received: from root@altoonanet.altoonanet.com by altoonanet.altoonanet.com with qmail-scanner-1.01 (. Clean. Processed in 0.07516 secs); 28 Jan 2002 15:33:55 -0000 To: freebsd-isp@freebsd.org Subject: Re-location with no downtime. Message-ID: <1012232035.3c556f6395b00@webmail.freedomhosting.com> Date: Mon, 28 Jan 2002 10:33:55 -0500 (EST) From: admin@freedomhosting.com MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 216.208.96.66 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, I will need to move one of my servers from one physical location, to another one about 3-5 hours away. My client does not want any down time during the move... So.. Now I have the task of trying to figure out a solution. What would be the best way to move this server? It does quite a bit of traffic (mostly http, peaking at 20 Mbit daily, with a low of 5 Mbit) Now what would be ideal... Is there a good way that I could completely mirror this server to another one at the new location? That way I could serve web pages, etc from the server in the new location while the old one is being moved, then switch it back once the old one is online again. Any suggestions would be welcomed... The machine runs apache, mysql, proftpd and has about 8,500 users. Best Regards, Kevin Turner admin@freedomhosting.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 7:50:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ra.upan.org (ra.upan.org [204.107.76.19]) by hub.freebsd.org (Postfix) with ESMTP id 4C43137B41B for ; Mon, 28 Jan 2002 07:50:25 -0800 (PST) Received: from ocsinternet.com ([10.0.0.102]) by ra.upan.org (8.11.6/8.11.6) with ESMTP id g0SFof145446; Mon, 28 Jan 2002 10:50:41 -0500 (EST) (envelope-from mikel@ocsinternet.com) Message-ID: <3C5572F9.2040101@ocsinternet.com> Date: Mon, 28 Jan 2002 10:49:13 -0500 From: Mikel King User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: en-us MIME-Version: 1.0 To: admin@freedomhosting.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Re-location with no downtime. References: <1012232035.3c556f6395b00@webmail.freedomhosting.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I believe that the mirror method would be the best idea...and then you could simply pull a DNS switch. Once you are absolutely sure that the world is running off of the new server then you could physically relocate the old server. Once in it's new home you could sync up MySql and your other apps so that no one would really know... Of course the key to this sort of thing is your ability to manipulate the DNS...;) cheers, Mikel admin@freedomhosting.com wrote: >Hello, > >I will need to move one of my servers from one physical location, to another >one about 3-5 hours away. My client does not want any down time during the >move... So.. Now I have the task of trying to figure out a solution. > >What would be the best way to move this server? It does quite a bit of traffic >(mostly http, peaking at 20 Mbit daily, with a low of 5 Mbit) > >Now what would be ideal... Is there a good way that I could completely mirror >this server to another one at the new location? That way I could serve web >pages, etc from the server in the new location while the old one is being >moved, then switch it back once the old one is online again. > >Any suggestions would be welcomed... >The machine runs apache, mysql, proftpd and has about 8,500 users. > >Best Regards, > >Kevin Turner >admin@freedomhosting.com > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 14:53:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from psknet.com (voyager.psknet.com [63.171.251.15]) by hub.freebsd.org (Postfix) with SMTP id 27A7437B41B for ; Mon, 28 Jan 2002 14:53:28 -0800 (PST) Received: (qmail 51973 invoked by uid 85); 28 Jan 2002 22:44:15 -0000 Received: from troy@psknet.com by voyager.psknet.com with qmail-scanner-1.02 (uvscan: v4.1.20/v4143. . Clean. Processed in 0.229492 secs); 28 Jan 2002 22:44:15 -0000 X-Qmail-Scanner-Mail-From: troy@psknet.com via voyager.psknet.com X-Qmail-Scanner-Rcpt-To: freebsd-isp@freebsd.org X-Qmail-Scanner: 1.02 (Clean. Processed in 0.229492 secs) Received: from arcadia.psknet.com (HELO arcadia) (63.171.251.7) by voyager.psknet.com with SMTP; 28 Jan 2002 22:44:15 -0000 From: "Troy Settle" To: Subject: Tuning a system... Date: Mon, 28 Jan 2002 17:53:26 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org All, Ever since updating to 4.x (just after 4.1 went to -STABLE), I've experienced problems with several of my systems running out of file descriptors. For example, on my mail server (4.2-STABLE 2/27/01): kern.maxfiles: 8092 kern.maxfilesperproc: 2088 kern.openfiles: 332 This is normal, the machine has been up for 55 days with 0 problems. However, three times since installing this machine (4.1-R, 2 updates since), it's ran out of file descriptors, yet I could not find any processes to account for this behavior. So... my question is, how can I tune my FreeBSD 4-STABLE boxes to run a little more stable? I intend to update soon, I've just been putting it off in favor of running my business. FYI, I don't consider myself an amature admin... my previous employer has 2 3.2-STABLE boxes that have been running for 2+ years without issue (one is a mail server w/5000+ accounts, the other is a web server serving with an entire class-c bound to it, serving >280k hits per day). Any help or suggestions is appreciated, -- Troy Settle Pulaski Networks 540.994.4254 - 866.477.5638 http://www.psknet.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 14:59:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from priv-edtnes09-hme0.telusplanet.net (mtaout.telus.net [199.185.220.235]) by hub.freebsd.org (Postfix) with ESMTP id 9300637B402 for ; Mon, 28 Jan 2002 14:59:25 -0800 (PST) Received: from pfak ([66.183.50.98]) by priv-edtnes09-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with SMTP id <20020128225925.KYEC16355.priv-edtnes09-hme0.telusplanet.net@pfak> for ; Mon, 28 Jan 2002 15:59:25 -0700 Message-ID: <00a301c1a84f$86e21210$6401a8c0@pfak> From: "Peter Kieser" To: References: Subject: Re: Tuning a system... Date: Mon, 28 Jan 2002 15:00:05 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org You can try putting: options NMBCLUSTERS=16000 in you Kernel Config, and then recompling, and then adding: kern.maxfiles=32768 kern.maxfilesperproc=32768 into your /etc/sysctl.conf; or do: sysctl -w kern.maxfiles=32768 sysctl -w kern.maxfilesperproc=32768 So that you dont have to reboot again; both will work, but the second method you have to do every single time you startup your computer. Cheers, --Peter ----- Original Message ----- From: "Troy Settle" To: Sent: Monday, January 28, 2002 2:53 PM Subject: Tuning a system... > > All, > > Ever since updating to 4.x (just after 4.1 went to -STABLE), I've > experienced problems with several of my systems running out of file > descriptors. > > For example, on my mail server (4.2-STABLE 2/27/01): > > kern.maxfiles: 8092 > kern.maxfilesperproc: 2088 > kern.openfiles: 332 > > This is normal, the machine has been up for 55 days with 0 problems. > However, three times since installing this machine (4.1-R, 2 updates since), > it's ran out of file descriptors, yet I could not find any processes to > account for this behavior. > > So... my question is, how can I tune my FreeBSD 4-STABLE boxes to run a > little more stable? I intend to update soon, I've just been putting it off > in favor of running my business. > > FYI, I don't consider myself an amature admin... my previous employer has 2 > 3.2-STABLE boxes that have been running for 2+ years without issue (one is a > mail server w/5000+ accounts, the other is a web server serving with an > entire class-c bound to it, serving >280k hits per day). > > Any help or suggestions is appreciated, > > -- > Troy Settle > Pulaski Networks > 540.994.4254 - 866.477.5638 > http://www.psknet.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 15:57: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hindenburg.eboai.org (hindenburg.eboai.org [206.183.134.245]) by hub.freebsd.org (Postfix) with ESMTP id 8768537B416 for ; Mon, 28 Jan 2002 15:57:02 -0800 (PST) Received: by hindenburg.eboai.org (Postfix, from userid 1000) id AF4555E2DF; Mon, 28 Jan 2002 18:57:01 -0500 (EST) Date: Mon, 28 Jan 2002 18:57:01 -0500 From: Chip Marshall To: freebsd-isp@freebsd.org Subject: Re: Tuning a system... Message-ID: <20020128185701.B33348@setzer.chocobo.cx> Reply-To: chip@chocobo.cx Mail-Followup-To: freebsd-isp@freebsd.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.20i X-URL: http://www.chocobo.cx/chip/ X-OS: FreeBSD 4.2-RELEASE i386 up 113 days, 16:25 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On January 28, 2002, Troy Settle sent me the following: > So... my question is, how can I tune my FreeBSD 4-STABLE boxes to run > a little more stable? I intend to update soon, I've just been putting > it off in favor of running my business. Have you read tuning(7) yet? It's got some good pointers. -- Chip Marshall http://www.chocobo.cx/chip/ GCM/CS d+(-) s+:++ a20>? C++ UB++++$ P+++$ L- E--- W++ N@ o K- w O M+ V-- PS+ PE Y+ PGP+ t+@ 5 X R@ tv+() b++>+++ DI++++ D(-) G++ e>++ h->++ r++ y- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 16:18:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 8274237B417 for ; Mon, 28 Jan 2002 16:18:41 -0800 (PST) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id RAA15552; Mon, 28 Jan 2002 17:11:24 -0700 (MST) Date: Mon, 28 Jan 2002 17:11:24 -0700 (MST) From: "Forrest W. Christian" To: Troy Settle Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Tuning a system... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 28 Jan 2002, Troy Settle wrote: > So... my question is, how can I tune my FreeBSD 4-STABLE boxes to run a > little more stable? I intend to update soon, I've just been putting it off > in favor of running my business. First of all, what do you have MAXUSERS set to in the config file? It sounds like you have it set to a rediculously low (like the default) value. I generally set it to 256 and forget it. Others might argue that a lower value is better as you don't want to "waste" too much memory and that 256 increases a lot of kernel parameters. I'd rather just set it and forget it. I can't say I've needed more than the quantity set by 256. Beyond this, I highly recommend you look at man tuning. This has everything you need to know in it about tuning, as a general rule. I would highly recommend you increase NMBCLUSTERS on any internet-serving box. I have mine set to 32768 on a heavy-use (5k users) qmail mail server box, but if you have a heavier use box, or if you tweak on the TCP window parameters you might need to increase it. Again I highly recommend you looking at the tuning(7) man page. > FYI, I don't consider myself an amature admin... my previous employer has 2 > 3.2-STABLE boxes that have been running for 2+ years without issue (one is a > mail server w/5000+ accounts, the other is a web server serving with an > entire class-c bound to it, serving >280k hits per day). Yep, I recognize you from somewhere else (nanog or inet-access perhaps) and associate your name as an "Old Timer" (meaning pre-1999 internet guy). - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 16:58:39 2002 Delivered-To: freebsd-isp@freebsd.org Received: from falcon.prod.itd.earthlink.net (falcon.mail.pas.earthlink.net [207.217.120.74]) by hub.freebsd.org (Postfix) with ESMTP id 3D3C837B400 for ; Mon, 28 Jan 2002 16:58:34 -0800 (PST) Received: from dhcp151-67-151-24.nt01-c3.cpe.charter-ne.com ([24.151.67.151] helo=there) by falcon.prod.itd.earthlink.net with smtp (Exim 3.33 #1) id 16VMbW-00047M-00; Mon, 28 Jan 2002 16:58:30 -0800 Content-Type: text/plain; charset="iso-8859-1" From: Dylan Carlson Reply-To: absinthe@pobox.com Organization: r e t r o v e r t i g o To: "Forrest W. Christian" , Troy Settle Subject: Re: Tuning a system... Date: Mon, 28 Jan 2002 19:58:28 -0500 X-Mailer: KMail [version 1.3] Cc: freebsd-isp@FreeBSD.ORG References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Monday 28 January 2002 19:11, Forrest W. Christian wrote: > On Mon, 28 Jan 2002, Troy Settle wrote: > > So... my question is, how can I tune my FreeBSD 4-STABLE boxes to run a > > little more stable? I intend to update soon, I've just been putting it > > off in favor of running my business. > > First of all, what do you have MAXUSERS set to in the config file? It > sounds like you have it set to a rediculously low (like the > default) value. > > I generally set it to 256 and forget it. Others might argue that a lower > value is better as you don't want to "waste" too much memory and that 256 > increases a lot of kernel parameters. I'd rather just set it and forget > it. I can't say I've needed more than the quantity set by 256. > > Beyond this, I highly recommend you look at man tuning. This has > everything you need to know in it about tuning, as a general rule. This is something of an opinion piece, but I think it perhaps it needs to be raised... I wonder how many of these things, with some work to the kernel, could be made dynamic? I know Solaris has moved in this direction with a lot of its internals... including allocation of swap space, which no longer has to follow that "2 x physical" sizing rule of thumb anymore. If you have, say, 4GB of RAM in the machine and will never use more than that for your applications, it's ridiculous to create an 8GB swap partition to satisfy the algorithms the VM uses to address memory. At 30,000 ft it seems silly that the kernel can't be smart enough to take memory and allocate more resource as it needs to automatically, although even in my ignorance I understand that it's far from trivial to implement. Culturally, I think some admins prefer a kernel with hard limits because they believe it makes the system more predictable when you can lock in limits on resources. If there has been some reluctance on the part of both Linux and FreeBSD camps to put that kind of kernel work in, I would suspect that's why. I'm of the school of thought that says you're likely to spend a lot more time making kernel adjustments, compiling and rebooting than you ever would trying to reason with a dynamic kernel or deal with memory shortages, especially with as cheap as RAM is now. -- Dylan Carlson [absinthe@pobox.com] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Jan 28 23:32:30 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.iMach.com (workhorse.iMach.com [206.127.77.89]) by hub.freebsd.org (Postfix) with ESMTP id 75A7737B402 for ; Mon, 28 Jan 2002 23:32:23 -0800 (PST) Received: from localhost (forrestc@localhost) by workhorse.iMach.com (8.9.3/8.9.3) with ESMTP id AAA16798; Tue, 29 Jan 2002 00:25:07 -0700 (MST) Date: Tue, 29 Jan 2002 00:25:07 -0700 (MST) From: "Forrest W. Christian" To: Dylan Carlson Cc: Troy Settle , freebsd-isp@FreeBSD.ORG Subject: Re: Tuning a system... In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 28 Jan 2002, Dylan Carlson wrote: > I'm of the school of thought that says you're likely to spend a lot more time > making kernel adjustments, compiling and rebooting than you ever would trying > to reason with a dynamic kernel or deal with memory shortages, especially > with as cheap as RAM is now. I'll add my $0.02: About the only thing which I have run across which I regularly run into problems with are TCP/IP buffer parameters such as mbufs. If I tune my kernel so I can get insane flows across the internet (DS-3/OC-3 level links), I will quickly run out of buffers if I get more than a couple of flows going. I would *love* to see these dynamically sized - the buffer space, not necessarily the tcp/ip tuning parameters. I would also like a warning if they go above a certain level, and perhaps a configurable hard limit if necessary. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 0:59:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from joshua.nobaloney.net (joshua.nobaloney.net [63.108.93.100]) by hub.freebsd.org (Postfix) with ESMTP id 64F8537B402 for ; Tue, 29 Jan 2002 00:59:39 -0800 (PST) Received: from nobaloney.net (adsl-64-170-52-125.dsl.lsan03.pacbell.net [64.170.52.125]) (authenticated) by ns1.ns-one.net (8.10.2/8.10.2) with ESMTP id g0T8xXH05719 for ; Tue, 29 Jan 2002 00:59:33 -0800 Message-ID: <3C566475.296D5F98@nobaloney.net> Date: Tue, 29 Jan 2002 00:59:33 -0800 From: Jeff Lasman Organization: nobaloney.net X-Mailer: Mozilla 4.72 [en] (Win98; U) X-Accept-Language: en,en-US MIME-Version: 1.0 To: freebsd-isp@FreeBSD.ORG Subject: Re: using jail in a shell-account environment References: <3C50DB97.B8C201D3@nobaloney.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks, everyone. I've decided to NOT do it . Jeff Jeff Lasman wrote: > We've found a lot of our clients and prospects who would like > shell-accounts. A quick search of many search engines shows that almost > no-one who offered them does anymore, presumably for good reasons. -- Jeff Lasman nobaloney.net P. O. Box 52672, Riverside, CA 92517 voice: (909) 778-9980 * fax: (702) 548-9484 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 2:18:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.voljatel.si (mail.voljatel.si [217.72.64.15]) by hub.freebsd.org (Postfix) with ESMTP id C4FF737B402 for ; Tue, 29 Jan 2002 02:18:19 -0800 (PST) Received: from pxna.hide.voljatel.si (unknown [217.72.64.8]) by mail.voljatel.si (Postfix) with SMTP id 8F73A53501 for ; Tue, 29 Jan 2002 11:18:15 +0100 (CET) Date: Tue, 29 Jan 2002 11:19:27 +0100 From: Damir Horvat To: freebsd-isp@freebsd.org Subject: Re: Tuning a system... Message-Id: <20020129111927.5d5a40bf.damir@voljatel.si> In-Reply-To: References: Organization: Voljatel telekomunikacije d.d. X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386--freebsd4.4) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 28 Jan 2002 17:11:24 -0700 (MST) "Forrest W. Christian" wrote: > I generally set it to 256 and forget it. Others might argue that a > lower value is better as you don't want to "waste" too much memory and > that 256 increases a lot of kernel parameters. I'd rather just set it > and forget it. I can't say I've needed more than the quantity set by > 256. I guess you'll have no problems with that if you upgrade to 4.5-RELEASE. Default value is 0, which means, system will select the best value for your machine regarding the amount of RAM you have. A nice feature if you ask me. regards, Damir Horvat -- ................................. Damir Horvat System administrator VOLJATEL telekomunikacije d.d. Smartinska 106 SI-1000 Ljubljana Slovenia Tel. +386.(0)1.5875 832 Fax. +386.(0)1.5875 899 www.voljatel.si E-mail: damir.horvat@voljatel.si ................................. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 3:12:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mailout05.sul.t-online.com (mailout05.sul.t-online.com [194.25.134.82]) by hub.freebsd.org (Postfix) with ESMTP id 34D9537B404 for ; Tue, 29 Jan 2002 03:12:48 -0800 (PST) Received: from fwd04.sul.t-online.de by mailout05.sul.t-online.com with smtp id 16VWBz-00077q-01; Tue, 29 Jan 2002 12:12:47 +0100 Received: from Magelan.Leidinger.net (520065502893-0001@[80.131.125.104]) by fmrl04.sul.t-online.com with esmtp id 16VWBk-2BZNx9C; Tue, 29 Jan 2002 12:12:32 +0100 Received: from Leidinger.net (netchild@localhost [127.0.0.1]) by Magelan.Leidinger.net (8.11.6/8.11.6) with ESMTP id g0TAgIs03880; Tue, 29 Jan 2002 11:42:19 +0100 (CET) (envelope-from netchild@Leidinger.net) Message-Id: <200201291042.g0TAgIs03880@Magelan.Leidinger.net> Date: Tue, 29 Jan 2002 11:42:17 +0100 (CET) From: Alexander Leidinger Subject: Re: Tuning a system... To: forrestc@imach.com Cc: absinthe@pobox.com, troy@psknet.com, freebsd-isp@FreeBSD.ORG In-Reply-To: MIME-Version: 1.0 Content-Type: TEXT/plain; charset=US-ASCII X-Sender: 520065502893-0001@t-dialin.net Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 29 Jan, Forrest W. Christian wrote: >> I'm of the school of thought that says you're likely to spend a lot more time >> making kernel adjustments, compiling and rebooting than you ever would trying >> to reason with a dynamic kernel or deal with memory shortages, especially >> with as cheap as RAM is now. > > I'll add my $0.02: > > About the only thing which I have run across which I regularly run into > problems with are TCP/IP buffer parameters such as mbufs. If I tune my > kernel so I can get insane flows across the internet (DS-3/OC-3 level > links), I will quickly run out of buffers if I get more than a couple of > flows going. > > I would *love* to see these dynamically sized - the buffer space, not > necessarily the tcp/ip tuning parameters. -current (and perhaps 4.5) do something like this already at boot time depending on the amount of memory (you have to set maxusers to 0 to get this behavior). It's not dynamic at run time, it's only dynamic at boot time. And if it doesn't allocate enough for you, you can override it with your own settings. Bye, Alexander. -- Loose bits sink chips. http://www.Leidinger.net Alexander @ Leidinger.net GPG fingerprint = C518 BC70 E67F 143F BE91 3365 79E2 9C60 B006 3FE7 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 4:44:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from psknet.com (voyager.psknet.com [63.171.251.15]) by hub.freebsd.org (Postfix) with SMTP id 4AF7E37B402 for ; Tue, 29 Jan 2002 04:44:11 -0800 (PST) Received: (qmail 89597 invoked by uid 85); 29 Jan 2002 12:34:47 -0000 Received: from troy@psknet.com by voyager.psknet.com with qmail-scanner-1.02 (uvscan: v4.1.20/v4143. . Clean. Processed in 0.379767 secs); 29 Jan 2002 12:34:47 -0000 X-Qmail-Scanner-Mail-From: troy@psknet.com via voyager.psknet.com X-Qmail-Scanner-Rcpt-To: forrestc@imach.com,freebsd-isp@FreeBSD.ORG X-Qmail-Scanner: 1.02 (Clean. Processed in 0.379767 secs) Received: from abyss.dashit.net (HELO abyss) (63.171.251.250) by voyager.psknet.com with SMTP; 29 Jan 2002 12:34:46 -0000 From: "Troy Settle" To: "'Forrest W. Christian'" Cc: Subject: RE: Tuning a system... Date: Tue, 29 Jan 2002 07:44:01 -0500 Message-ID: <000201c1a8c2$a0c60ba0$fafbab3f@psknet.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Forrest > W. Christian > Sent: Monday, January 28, 2002 7:11 PM > To: Troy Settle > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re: Tuning a system... > > > On Mon, 28 Jan 2002, Troy Settle wrote: > > > So... my question is, how can I tune my FreeBSD 4-STABLE > boxes to run a > > little more stable? I intend to update soon, I've just been > putting it off > > in favor of running my business. > > First of all, what do you have MAXUSERS set to in the config file? It > sounds like you have it set to a rediculously low (like the > default) value. Not quite... I set it to 64, which was in response to a post I saw on -STABLE that indicated that higher values didn't have much meaning in 4.x. Guess that's what I get from listening to the learned folks on the -stable list. Honestly, I've not had a problem with maxfiles at 4k, just once in a while, something runs away with all my file descriptors. Quite annoying. Especially now that it's happened on a box at a remote location, forcing me to drive 70 miles to hit the reset button (need to look into some remote power management solutions. :) > > I generally set it to 256 and forget it. Others might argue > that a lower > value is better as you don't want to "waste" too much memory > and that 256 > increases a lot of kernel parameters. I'd rather just set it > and forget > it. I can't say I've needed more than the quantity set by 256. > > Beyond this, I highly recommend you look at man tuning. This has > everything you need to know in it about tuning, as a general rule. > > I would highly recommend you increase NMBCLUSTERS on any > internet-serving > box. I have mine set to 32768 on a heavy-use (5k users) > qmail mail server > box, but if you have a heavier use box, or if you tweak on > the TCP window > parameters you might need to increase it. > > Again I highly recommend you looking at the tuning(7) man page. Hmm.. tuning(7) is new since 4.3, I'll have to take a look at it. Also, wasting memory has never been an issue for me. The first server I built had $2000 worth of memory in it (64mb in early '95). I'm a whore for memory, having 512mb in my box at home, which I use to read email and play Counter-Strike. > > > FYI, I don't consider myself an amature admin... my > previous employer has 2 > > 3.2-STABLE boxes that have been running for 2+ years > without issue (one is a > > mail server w/5000+ accounts, the other is a web server > serving with an > > entire class-c bound to it, serving >280k hits per day). > > Yep, I recognize you from somewhere else (nanog or > inet-access perhaps) > and associate your name as an "Old Timer" (meaning pre-1999 > internet guy). > Eww! How can you say that? Sure, I've been around FreeBSD since '94 (on this list and inet-access since '96), but I'd hardly consider myself an 'Old Timer.' What sucks most about the last 8 years, is that I've never had time to master any one part of this ISP thing, which sucks for me, but speaks well for FreeBSD, as I've never had any major issues with it (unlike the 6 months I spent working for an NT-based ISP). -- Troy Settle Pulaski Networks 540.994.4254 - 866.477.5638 http://www.psknet.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 4:48: 0 2002 Delivered-To: freebsd-isp@freebsd.org Received: from psknet.com (voyager.psknet.com [63.171.251.15]) by hub.freebsd.org (Postfix) with SMTP id 2AE6837B421 for ; Tue, 29 Jan 2002 04:47:35 -0800 (PST) Received: (qmail 90360 invoked by uid 85); 29 Jan 2002 12:38:19 -0000 Received: from troy@psknet.com by voyager.psknet.com with qmail-scanner-1.02 (uvscan: v4.1.20/v4143. . Clean. Processed in 0.346095 secs); 29 Jan 2002 12:38:19 -0000 X-Qmail-Scanner-Mail-From: troy@psknet.com via voyager.psknet.com X-Qmail-Scanner-Rcpt-To: freebsd-isp@FreeBSD.ORG X-Qmail-Scanner: 1.02 (Clean. Processed in 0.346095 secs) Received: from abyss.dashit.net (HELO abyss) (63.171.251.250) by voyager.psknet.com with SMTP; 29 Jan 2002 12:38:18 -0000 From: "Troy Settle" To: Subject: RE: Tuning a system... Date: Tue, 29 Jan 2002 07:47:33 -0500 Message-ID: <000301c1a8c3$1effe360$fafbab3f@psknet.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <200201291042.g0TAgIs03880@Magelan.Leidinger.net> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks to all for your input. It'll probably take me a month to get my machines updated though. -- Troy Settle Pulaski Networks 540.994.4254 - 866.477.5638 http://www.psknet.com > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Alexander > Leidinger > Sent: Tuesday, January 29, 2002 5:42 AM > To: forrestc@imach.com > Cc: absinthe@pobox.com; troy@psknet.com; freebsd-isp@FreeBSD.ORG > Subject: Re: Tuning a system... > > > On 29 Jan, Forrest W. Christian wrote: > > >> I'm of the school of thought that says you're likely to > spend a lot more time > >> making kernel adjustments, compiling and rebooting than > you ever would trying > >> to reason with a dynamic kernel or deal with memory > shortages, especially > >> with as cheap as RAM is now. > > > > I'll add my $0.02: > > > > About the only thing which I have run across which I > regularly run into > > problems with are TCP/IP buffer parameters such as mbufs. > If I tune my > > kernel so I can get insane flows across the internet > (DS-3/OC-3 level > > links), I will quickly run out of buffers if I get more > than a couple of > > flows going. > > > > I would *love* to see these dynamically sized - the buffer > space, not > > necessarily the tcp/ip tuning parameters. > > -current (and perhaps 4.5) do something like this already at boot time > depending on the amount of memory (you have to set maxusers > to 0 to get > this behavior). It's not dynamic at run time, it's only > dynamic at boot > time. And if it doesn't allocate enough for you, you can override it > with your own settings. > > Bye, > Alexander. > > -- > Loose bits sink chips. > http://www.Leidinger.net Alexander @ Leidinger.net GPG fingerprint = C518 BC70 E67F 143F BE91 3365 79E2 9C60 B006 3FE7 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 5:58: 4 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.inetcomm.ru (mail.inetcomm.ru [212.152.32.73]) by hub.freebsd.org (Postfix) with ESMTP id D951D37B402 for ; Tue, 29 Jan 2002 05:57:57 -0800 (PST) Received: from hit.inetcomm.net (hit.inetcomm.net [212.152.32.74]) by mail.inetcomm.ru (Postfix) with SMTP id DBAD426580; Tue, 29 Jan 2002 16:56:01 +0300 (MSK) Date: Tue, 29 Jan 2002 16:56:01 +0300 From: "Roman Korolyov" To: "Blake Crosby" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Restricting Users Geographically In-Reply-To: References: X-Mailer: stuphead ver. 0.5.4 (Insensible-cvs) (GTK+ 1.2.6; Linux 2.2.17-14; i686) Organization: INET Communications Mime-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Message-Id: <20020129135602.DBAD426580@mail.inetcomm.ru> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 7 Jan 2002 13:35:05 -0500 "Blake Crosby" wrote: > Is there any way I can restrict users based on geographic location? > Either as an apache module, or some fancy way using IPFW? If someone is still interested: there's a mod_geo for Apache - ftp://ftp.lexa.ru/pub/apache-rus/contrib/mod_geo-1.2.0.tar.gz -- Roman Korolyov INETCOMM ISP - Podolsk, Russia http://www.inetcomm.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 6:35: 4 2002 Delivered-To: freebsd-isp@freebsd.org Received: from infiniteloop.ca (infiniteloop.ca [216.126.86.53]) by hub.freebsd.org (Postfix) with ESMTP id 90B5D37B402 for ; Tue, 29 Jan 2002 06:35:00 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by infiniteloop.ca (Postfix) with ESMTP id 6A009210; Tue, 29 Jan 2002 09:34:59 -0500 (EST) Received: from blake (CPE0050da7c7e5d.cpe.net.cable.rogers.com [24.101.32.246]) (using TLSv1 with cipher RC4-MD5 (128/128 bits)) (Client did not present a certificate) by infiniteloop.ca (Postfix) with ESMTP id B9FF6203; Tue, 29 Jan 2002 09:34:54 -0500 (EST) From: "Blake Crosby" To: "Roman Korolyov" Cc: Subject: RE: Restricting Users Geographically Date: Tue, 29 Jan 2002 09:34:54 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20020129135602.DBAD426580@mail.inetcomm.ru> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Virus-Scanned: by AMaViS snapshot-20010714 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is there an English version of the README.html someplace? Blake > If someone is still interested: > there's a mod_geo for Apache - > ftp://ftp.lexa.ru/pub/apache-rus/contrib/mod_geo-1.2.0.tar.gz > > -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 6:43:17 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.siteplus.com (aurora.siteplus.com [66.129.2.160]) by hub.freebsd.org (Postfix) with ESMTP id 965DE37B400 for ; Tue, 29 Jan 2002 06:43:10 -0800 (PST) Received: from host-216-78-4-191.jan.bellsouth.net (host-216-78-4-191.jan.bellsouth.net [216.78.4.191]) by aurora.siteplus.com (8.9.3/8.9.3) with ESMTP id JAA28398 for ; Tue, 29 Jan 2002 09:43:13 -0500 (EST) (envelope-from jim@jwweeks.com) Date: Tue, 29 Jan 2002 09:43:07 -0500 (EST) From: jim To: freebsd-isp@freebsd.org Subject: Security methods Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hey Guys, I would like to get a rough idea as to what people are using for hacker detection i.e. port scan logging, deception software, etc. Possibly some pointers on recently well written articles. Thanks in advance. -- Jim Weeks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 7:19:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.inetcomm.ru (mail.inetcomm.ru [212.152.32.73]) by hub.freebsd.org (Postfix) with ESMTP id 013FA37B425 for ; Tue, 29 Jan 2002 07:19:28 -0800 (PST) Received: from hit.inetcomm.net (hit.inetcomm.net [212.152.32.74]) by mail.inetcomm.ru (Postfix) with SMTP id 7DBD71758B; Tue, 29 Jan 2002 18:19:26 +0300 (MSK) Date: Tue, 29 Jan 2002 18:19:26 +0300 From: "Roman Korolyov" To: "Blake Crosby" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Restricting Users Geographically In-Reply-To: References: <20020129135602.DBAD426580@mail.inetcomm.ru> X-Mailer: stuphead ver. 0.5.4 (Insensible-cvs) (GTK+ 1.2.6; Linux 2.2.17-14; i686) Organization: INET Communications Mime-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Message-Id: <20020129151926.7DBD71758B@mail.inetcomm.ru> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, 29 Jan 2002 09:34:54 -0500 "Blake Crosby" wrote: > Is there an English version of the README.html someplace? Hmmm... Nope :) Here's an auto-translated README, hope to fix it in the nearest future: http://rk.inetcomm.net/mod_geo/ -- Roman Korolyov INETCOMM ISP - Podolsk, Russia http://www.inetcomm.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 7:38:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from netra.netcologne.de (netra.netcologne.de [194.8.194.106]) by hub.freebsd.org (Postfix) with ESMTP id 3DB2237B416 for ; Tue, 29 Jan 2002 07:38:45 -0800 (PST) Received: from emre.de (sys-125.netcologne.de [194.8.193.125]) by netra.netcologne.de (8.9.1/8.9.1) with ESMTP id QAA22321; Tue, 29 Jan 2002 16:38:41 +0100 (MET) X-Ncc-Regid: de.netcologne Message-ID: <3C56C20B.70306@emre.de> Date: Tue, 29 Jan 2002 16:38:51 +0100 From: Emre Bastuz User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; de-DE; rv:0.9.2) Gecko/20010726 Netscape6/6.1 X-Accept-Language: de-DE MIME-Version: 1.0 To: freebsd-isp@freebsd.org Cc: jim Subject: Re: Security methods References: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Jim, > I would like to get a rough idea as to what people are using for hacker > detection there are several software packets out there, but first off you have to decide if you are looking for a network intrusion detection system or a host based intrusion detection system. A freeware NIDS thatīs quite popular is Snort: http://www.snort.org. There are commercial NIDS out there. For example NFR (Network Flight Recorder) and RealSecure. Basically these do listen on a network interface and compare the collected ip packets with certain rules. If a packet matches a known attacking scheme/rule, an alert is sent out (or at least recorded). On the other hand, host based intrusion detection systems are installed on a certain host and gather information about the modification time and checksums of vital system files. With a cron job the recorded information is checked against the current modification time and checksums. If a change has occured, indicating a compromised system, a message is being sent out (or at least recorded :) The two HIDS that come to my mind are Tripwire (http://sourceforge.net/projects/tripwire/) or Aide (in ports collection, /usr/ports/security/aide). Regards, Emre jim wrote: > Hey Guys, > > I would like to get a rough idea as to what people are using for hacker > detection i.e. port scan logging, deception software, etc. Possibly some > pointers on recently well written articles. > > Thanks in advance. > > -- > Jim Weeks > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > -- Emre Bastuz info@emre.de http://www.emre.de UIN: 561260 PGP Key ID: 0xEA0E2CA1 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 7:52:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from rallos.eatonform.com (rallos.eatonform.com [206.190.178.235]) by hub.freebsd.org (Postfix) with ESMTP id 071D237B404 for ; Tue, 29 Jan 2002 07:52:20 -0800 (PST) Received: (from rch@localhost) by rallos.eatonform.com (8.11.2/8.11.2) id g0TFrn493588; Tue, 29 Jan 2002 10:53:49 -0500 (EST) Date: Tue, 29 Jan 2002 10:53:49 -0500 From: Robert Hough To: jim Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Security methods Message-ID: <20020129105349.A93293@acidpit.org> Mail-Followup-To: jim , freebsd-isp@FreeBSD.ORG References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from jim@jwweeks.com on Tue, Jan 29, 2002 at 09:43:07 -0500 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Jan 29, 2002, jim wrote: > I would like to get a rough idea as to what people are using for hacker > detection i.e. port scan logging, deception software, etc. Possibly some > pointers on recently well written articles. man security - if you have not already. It's not a be all, end all guide or anything, but I think it's a good start in the right direction. Things like aide, logcheck, and other utilities make for good first starters, but there are tons of other things that can be done too. Hell, just digging around in ports/security can be hours of fun. :) Plenty of things to read here, should keep ya busy for a bit: http://rr.sans.org/intrusion/intrusion_list.php -- Robert Hough (rch@acidpit.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 16:59:22 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.siteplus.com (aurora.siteplus.com [66.129.2.160]) by hub.freebsd.org (Postfix) with ESMTP id 6D61C37B405 for ; Tue, 29 Jan 2002 16:59:18 -0800 (PST) Received: from host-216-78-3-153.jan.bellsouth.net (host-216-78-3-153.jan.bellsouth.net [216.78.3.153]) by aurora.siteplus.com (8.9.3/8.9.3) with ESMTP id TAA44909 for ; Tue, 29 Jan 2002 19:59:20 -0500 (EST) (envelope-from jim@jwweeks.com) Date: Tue, 29 Jan 2002 19:59:15 -0500 (EST) From: jim To: freebsd-isp@FreeBSD.ORG Subject: Re: Security methods In-Reply-To: <20020129105349.A93293@acidpit.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Again, Thanks for all the fine replies. Thought of some, read some, some I haven't heard of. All in all, a good cross section. However, unless I missed it, no one seems to be running any sort of deception software such as http://all.net/contents/dtk.html . Do most of you think it is useless, too much overhead, whatever? Any comment? -- Jim Weeks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Jan 29 19:12:28 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mercury.jorsm.com (mercury.jorsm.com [207.112.128.9]) by hub.freebsd.org (Postfix) with ESMTP id 3E44637B404 for ; Tue, 29 Jan 2002 19:12:24 -0800 (PST) Received: by mercury.jorsm.com (Postfix, from userid 101) id 6AD70E4C48; Tue, 29 Jan 2002 21:10:18 -0600 (CST) Received: from localhost (localhost [127.0.0.1]) by mercury.jorsm.com (Postfix) with ESMTP id BBA03E0C50; Tue, 29 Jan 2002 21:10:17 -0600 (CST) Date: Tue, 29 Jan 2002 21:10:17 -0600 (CST) From: Jeff Lynch To: francisv@dagupan.com Cc: freebsd-isp@freebsd.org Subject: Re: Making remote dumps faster In-Reply-To: <10F29E27A956D511B0940050DA8D86A9340E45@apmail.dagupan.com> Message-ID: <20020129210903.J96078-100000@mercury.jorsm.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org "team" in the ports seems to do the trick for us. --jeff ============================================================================ Jeffrey A. Lynch | JORSM Internet, Regional Internet Services email: jeff@jorsm.com | 7 Area Codes in Chicagoland and NW Indiana Voice: (219)322-2180 | 100Mbps+ Connectivity, 56K-DS3, V.90, ISDN Autoresponse: info@jorsm.com | Quality Service, Affordable Prices http://www.jorsm.com | Serving Gov, Biz, Residential Since 1995 On Fri, 25 Jan 2002 francisv@dagupan.com wrote: > Hi, > > Is there any other way to make remote dumps faster? I'm doing the dump on a > 10mbps LAN using: > > /sbin/dump -0uaf - /usr | ssh -2 -c blowfish remote.host.com \ > 'dd of=/dev/nrsa0' > > --- > francis a. vidal [bitstop network services] | http://www.dagupan.com > streaming media + web hosting | http://www.keystone.ph > v(02)330-2871,(02)330-2872; f(02)330-2873 | http://www.kuro.ph > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 4: 2: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hitit.bimel.com.tr (hitit.bimel.com.tr [212.175.97.140]) by hub.freebsd.org (Postfix) with ESMTP id 9459737B416 for ; Wed, 30 Jan 2002 04:02:02 -0800 (PST) Received: (from root@localhost) by hitit.bimel.com.tr (8.11.6/8.11.6) id g0UC3Z763956 for freebsd-isp@freebsd.org; Wed, 30 Jan 2002 14:03:35 +0200 (EET) (envelope-from simsek@bimel.com.tr) Received: from localhost (simsek@localhost) by hitit.bimel.com.tr (8.11.6/8.11.6av) with ESMTP id g0UC3Nd63904 for ; Wed, 30 Jan 2002 14:03:23 +0200 (EET) (envelope-from simsek@bimel.com.tr) X-Authentication-Warning: hitit.bimel.com.tr: simsek owned process doing -bs Date: Wed, 30 Jan 2002 14:03:22 +0200 (EET) From: Baris Simsek To: Subject: relay to a domain Message-ID: <20020130140117.M52626-100000@hitit.bimel.com.tr> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS perl-10 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org i am using sendmail-8.11.6, i want to give RELAY to a domain, not ip. Because ip is not statik. access file is unusable. i wrote this domain to access file and then makemap. but it doesnt give relay. thx :wq To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 4:21:26 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id 13FE537B405 for ; Wed, 30 Jan 2002 04:21:23 -0800 (PST) Received: from sisko (hobbiton.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g0UCKeut027231; Wed, 30 Jan 2002 12:20:41 GMT From: "Danny Horne" To: "Baris Simsek" , Subject: RE: relay to a domain Date: Wed, 30 Jan 2002 12:20:40 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <20020130140117.M52626-100000@hitit.bimel.com.tr> Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Baris Simsek > Sent: Wednesday 30 January 2002 12:03pm > To: freebsd-isp@FreeBSD.ORG > Subject: relay to a domain > > > i am using sendmail-8.11.6, > > i want to give RELAY to a domain, not ip. Because ip is not statik. access > file is unusable. i wrote this domain to access file and then makemap. but > it doesnt give relay. > What are you trying to acheive? I act as secondary MX to a few domains & have this entry in /etc/mail/access for each one - To:domain.com RELAY Note this will only allow relay _TO_ the domain & not from it. I think removing the 'To:' should allow 2-way relay but not sure. --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.319 / Virus Database: 178 - Release Date: 28/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 5:45:22 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id 6EBFC37B405 for ; Wed, 30 Jan 2002 05:45:16 -0800 (PST) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g0UDjAq16750 for freebsd-isp@freebsd.org; Wed, 30 Jan 2002 08:45:10 -0500 (EST) (envelope-from bv) Date: Wed, 30 Jan 2002 08:45:10 -0500 From: Bill Vermillion To: freebsd-isp@freebsd.org Subject: Re: relay to a domain Message-ID: <20020130134510.GA16630@wjv.com> Reply-To: bv@wjv.com References: <20020130140117.M52626-100000@hitit.bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020130140117.M52626-100000@hitit.bimel.com.tr> User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 30, 2002 at 02:03:22PM +0200, Baris Simsek thus spoke: > i am using sendmail-8.11.6, > i want to give RELAY to a domain, not ip. Because ip is not > statik. access file is unusable. i wrote this domain to access > file and then makemap. but it doesnt give relay. Look in your sendmail.cf. You will see a varilable called FR pointing to a file. Current versions name this file /etc/mail/relay-domains. Enter the domain in the file, creating the file if neccessary. I don't recall when the current name was implemented but it would still be refeneced by FR. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 7:12:47 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hitit.bimel.com.tr (hitit.bimel.com.tr [212.175.97.140]) by hub.freebsd.org (Postfix) with ESMTP id 6341E37B416 for ; Wed, 30 Jan 2002 07:12:19 -0800 (PST) Received: (from root@localhost) by hitit.bimel.com.tr (8.11.6/8.11.6) id g0UFDpL23369; Wed, 30 Jan 2002 17:13:51 +0200 (EET) (envelope-from simsek@bimel.com.tr) Received: from localhost (simsek@localhost) by hitit.bimel.com.tr (8.11.6/8.11.6av) with ESMTP id g0UFDe123240; Wed, 30 Jan 2002 17:13:41 +0200 (EET) (envelope-from simsek@bimel.com.tr) X-Authentication-Warning: hitit.bimel.com.tr: simsek owned process doing -bs Date: Wed, 30 Jan 2002 17:13:40 +0200 (EET) From: Baris Simsek To: Bill Vermillion Cc: Subject: Re: relay to a domain In-Reply-To: <20020130134510.GA16630@wjv.com> Message-ID: <20020130170814.K19914-100000@hitit.bimel.com.tr> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS perl-10 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org yes, there is a line like this: FR-o /etc/mail/relay-domains But it doesnt work. I created this file and wrote my domain in it. Must i add any line to sendmail.cf like FEATURES('xxxx') ? I think sendmail does not read this file. My problem, our customer connects internet by using another ISP. But they host emails and webs on our sites. Their IP's don't have relay permission on our server. For that they cannot send email. It is not possible, i'll add their IP pool to my access file. I want to add their domain. thx... :wq On Wed, 30 Jan 2002, Bill Vermillion wrote: > Look in your sendmail.cf. You will see a varilable called > FR pointing to a file. Current versions name this file > /etc/mail/relay-domains. > > Enter the domain in the file, creating the file if neccessary. > I don't recall when the current name was implemented but it would > still be refeneced by FR. [...] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 8: 3:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id B40DE37B404 for ; Wed, 30 Jan 2002 08:03:47 -0800 (PST) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g0UFvtP17934 for freebsd-isp@freebsd.org; Wed, 30 Jan 2002 10:57:55 -0500 (EST) (envelope-from bv) Date: Wed, 30 Jan 2002 10:57:55 -0500 From: Bill Vermillion To: freebsd-isp@freebsd.org Subject: Re: relay to a domain Message-ID: <20020130155755.GF16630@wjv.com> Reply-To: bv@wjv.com References: <20020130134510.GA16630@wjv.com> <20020130170814.K19914-100000@hitit.bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020130170814.K19914-100000@hitit.bimel.com.tr> User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 30, 2002 at 05:13:40PM +0200, Baris Simsek thus spoke: > yes, there is a line like this: > FR-o /etc/mail/relay-domains > But it doesnt work. I created this file and wrote my domain in it. Must i > add any line to sendmail.cf like FEATURES('xxxx') ? I think sendmail does > not read this file. If this line did not exist at first you will have to go back and run the mc scripts to generate all the proper 'line noise' codes later in the script. > My problem, our customer connects internet by using another ISP. > But they host emails and webs on our sites. Their IP's don't have > relay permission on our server. For that they cannot send email. > It is not possible, i'll add their IP pool to my access file. I > want to add their domain. Well then put that domain in the access table. Not the USERs domain but the domain of their ISP. Of course if that is Earthlink you have opened up a very large hole. In the case of a national provider then you could open up a block of IPs that the user might be assigned dialing into that modem bank. If the far user is on a cable modem then >typically< that IP would be in one /24 ip block [formerly known as Class C]. The you add the first 3 octets into the access list and rebuild access.db > thx... > > :wq > > On Wed, 30 Jan 2002, Bill Vermillion wrote: > > > Look in your sendmail.cf. You will see a varilable called > > FR pointing to a file. Current versions name this file > > /etc/mail/relay-domains. > > > > Enter the domain in the file, creating the file if neccessary. > > I don't recall when the current name was implemented but it would > > still be refeneced by FR. > > [...] > > -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 9: 3:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from xela.oopz.com (xela.oopz.com [209.20.244.131]) by hub.freebsd.org (Postfix) with ESMTP id F27B537B41D for ; Wed, 30 Jan 2002 09:03:08 -0800 (PST) Subject: Secondary MX MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Date: Wed, 30 Jan 2002 09:03:08 -0800 content-class: urn:content-classes:message X-MimeOLE: Produced By Microsoft Exchange V6.0.4712.0 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Secondary MX Thread-Index: AcGpr/2UnqOsEB45RXGjU9CCSYsF9Q== From: "Noah Davidson" To: "FreeBSD-ISP List (E-mail)" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Our primary mailserver is sendmail 8.12.2. We have some customers that have their own mail servers. We want our secondary mail server to queue mail until their server comes up on line then deliver it. I know how to set the priority in the MX records in DNS, but sendmail does not seem to queue the mail. I have added the domain in which I want to queue the mail for in the relay-domains. I thought I read that somewhere. Should this be done in the access using a line like: To:domain.com RELAY or how should this be done? Thanks Noah Davidson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 9:10: 9 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.siteplus.com (aurora.siteplus.com [66.129.2.160]) by hub.freebsd.org (Postfix) with ESMTP id 58A5A37B402 for ; Wed, 30 Jan 2002 09:10:01 -0800 (PST) Received: from veager.jwweeks.com (pcp01076331pcs.midval01.tn.comcast.net [68.59.219.194]) by aurora.siteplus.com (8.9.3/8.9.3) with ESMTP id MAA73248; Wed, 30 Jan 2002 12:09:27 -0500 (EST) (envelope-from jim@jwweeks.com) Date: Wed, 30 Jan 2002 12:09:27 -0500 (EST) From: jim To: Baris Simsek Cc: Bill Vermillion , freebsd-isp@FreeBSD.ORG Subject: Re: relay to a domain In-Reply-To: <20020130170814.K19914-100000@hitit.bimel.com.tr> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Did you create the database? From within /etc/mail makemap -r hash relay-domains < relay-domains -- Jim Weeks On Wed, 30 Jan 2002, Baris Simsek wrote: > yes, there is a line like this: > > FR-o /etc/mail/relay-domains > > But it doesnt work. I created this file and wrote my domain in it. Must i > add any line to sendmail.cf like FEATURES('xxxx') ? I think sendmail does > not read this file. > > My problem, our customer connects internet by using another ISP. But they > host emails and webs on our sites. Their IP's don't have relay permission > on our server. For that they cannot send email. It is not possible, i'll > add their IP pool to my access file. I want to add their domain. > > thx... > > :wq > > On Wed, 30 Jan 2002, Bill Vermillion wrote: > > > Look in your sendmail.cf. You will see a varilable called > > FR pointing to a file. Current versions name this file > > /etc/mail/relay-domains. > > > > Enter the domain in the file, creating the file if neccessary. > > I don't recall when the current name was implemented but it would > > still be refeneced by FR. > > [...] > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 9:41:24 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id 0643037B400 for ; Wed, 30 Jan 2002 09:41:15 -0800 (PST) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g0UHfE118968 for freebsd-isp@freebsd.org; Wed, 30 Jan 2002 12:41:14 -0500 (EST) (envelope-from bv) Date: Wed, 30 Jan 2002 12:41:13 -0500 From: Bill Vermillion To: freebsd-isp@freebsd.org Subject: Re: relay to a domain Message-ID: <20020130174113.GC18296@wjv.com> Reply-To: bv@wjv.com References: <20020130170814.K19914-100000@hitit.bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 30, 2002 at 12:09:27PM -0500, jim thus spoke: > Did you create the database? > > >From within /etc/mail > > makemap -r hash relay-domains < relay-domains I thought the relay-domains was a plain text files, just as the sendmail.cw [now local-host-names] and a couple of others. I only uses hash/.db type files for access, virtusertable, mailertable and aliases. Can you point me to where it shows making db tables for relay-domains? Bill > -- > Jim Weeks > > > On Wed, 30 Jan 2002, Baris Simsek wrote: > > > yes, there is a line like this: > > > > FR-o /etc/mail/relay-domains > > > > But it doesnt work. I created this file and wrote my domain in it. Must i > > add any line to sendmail.cf like FEATURES('xxxx') ? I think sendmail does > > not read this file. > > > > My problem, our customer connects internet by using another ISP. But they > > host emails and webs on our sites. Their IP's don't have relay permission > > on our server. For that they cannot send email. It is not possible, i'll > > add their IP pool to my access file. I want to add their domain. > > > > thx... > > > > :wq > > > > On Wed, 30 Jan 2002, Bill Vermillion wrote: > > > > > Look in your sendmail.cf. You will see a varilable called > > > FR pointing to a file. Current versions name this file > > > /etc/mail/relay-domains. > > > > > > Enter the domain in the file, creating the file if neccessary. > > > I don't recall when the current name was implemented but it would > > > still be refeneced by FR. > > > > [...] > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 9:42:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from deathstar.2ghz.net (deathstar.2ghz.net [216.129.141.116]) by hub.freebsd.org (Postfix) with ESMTP id 684F437B447 for ; Wed, 30 Jan 2002 09:42:00 -0800 (PST) Received: (from nobody@localhost) by deathstar.2ghz.net (8.9.3/8.9.3) id NAA01380; Tue, 29 Jan 2002 13:59:37 -0500 From: Viper X-Authentication-Warning: deathstar.2ghz.net: nobody set sender to viper@2ghz.net using -f Received: from 146.189.245.121 ( [146.189.245.121]) as user viper@127.0.0.1 by webmail.2ghz.net with HTTP; Tue, 29 Jan 2002 13:59:37 -0500 Message-ID: <1012330777.3c56f1196c974@webmail.2ghz.net> Date: Tue, 29 Jan 2002 13:59:37 -0500 To: Mikel King Cc: admin@freedomhosting.com, freebsd-isp@FreeBSD.ORG Subject: Re: Re-location with no downtime. References: <1012232035.3c556f6395b00@webmail.freedomhosting.com> <3C5572F9.2040101@ocsinternet.com> In-Reply-To: <3C5572F9.2040101@ocsinternet.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.0 X-Originating-IP: 146.189.245.121 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The problem with this is that there could be transactions to the old server in MySQL. It would require a little while to re-sync the databases if you are using transactions if not you will have to write a SQL script to compare the to and update them. But it is do-able. -=>Adam<=- Quoting Mikel King : > I believe that the mirror method would be the best idea...and then you > could simply pull a DNS switch. Once you are absolutely sure that the > world is running off of the new server then you could physically > relocate the old server. Once in it's new home you could sync up MySql > and your other apps so that no one would really know... > > Of course the key to this sort of thing is your ability to manipulate > the DNS...;) > > cheers, > Mikel > > admin@freedomhosting.com wrote: > > >Hello, > > > >I will need to move one of my servers from one physical location, to another > > >one about 3-5 hours away. My client does not want any down time during the > > >move... So.. Now I have the task of trying to figure out a solution. > > > >What would be the best way to move this server? It does quite a bit of > traffic > >(mostly http, peaking at 20 Mbit daily, with a low of 5 Mbit) > > > >Now what would be ideal... Is there a good way that I could completely > mirror > >this server to another one at the new location? That way I could serve web > > >pages, etc from the server in the new location while the old one is being > >moved, then switch it back once the old one is online again. > > > >Any suggestions would be welcomed... > >The machine runs apache, mysql, proftpd and has about 8,500 users. > > > >Best Regards, > > > >Kevin Turner > >admin@freedomhosting.com > > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-isp" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > ----------------------------------------- http://www.2ghz.net/ Welcome To the Future To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 11:48:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from exchange.is.innn.is (exchange.innn.is [213.176.158.3]) by hub.freebsd.org (Postfix) with ESMTP id 8091B37B444 for ; Wed, 30 Jan 2002 11:47:52 -0800 (PST) Received: by exchange.is.innn.is with Internet Mail Service (5.5.2653.19) id ; Wed, 30 Jan 2002 19:56:08 -0000 Message-ID: <6973E4999161D411A57600010233D19797F011@exchange.is.innn.is> From: =?iso-8859-1?Q?Bj=F6rn_Patrick_Swift?= To: 'Noah Davidson ' , "'FreeBSD-ISP List (E-mail) '" Subject: RE: Secondary MX Date: Wed, 30 Jan 2002 19:56:08 -0000 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear Noah. First, edit your sendmail.cf file and make sure it includes a line like this one: FR-o /etc/mail/relay-domains The edit (or create if necessary) your /etc/mail/relay-domains. The format for this file is basically "domain per line" so a line including "customerdomain.com" should do the trick. Cheers, Bjorn Swift -----Original Message----- From: Noah Davidson To: FreeBSD-ISP List (E-mail) Sent: 30.1.2002 17:03 Subject: Secondary MX Our primary mailserver is sendmail 8.12.2. We have some customers that have their own mail servers. We want our secondary mail server to queue mail until their server comes up on line then deliver it. I know how to set the priority in the MX records in DNS, but sendmail does not seem to queue the mail. I have added the domain in which I want to queue the mail for in the relay-domains. I thought I read that somewhere. Should this be done in the access using a line like: To:domain.com RELAY or how should this be done? Thanks Noah Davidson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 11:56:21 2002 Delivered-To: freebsd-isp@freebsd.org Received: from exchange.is.innn.is (exchange.innn.is [213.176.158.3]) by hub.freebsd.org (Postfix) with ESMTP id E1D1837B419 for ; Wed, 30 Jan 2002 11:56:12 -0800 (PST) Received: by exchange.is.innn.is with Internet Mail Service (5.5.2653.19) id ; Wed, 30 Jan 2002 20:04:30 -0000 Message-ID: <6973E4999161D411A57600010233D19797F012@exchange.is.innn.is> From: =?iso-8859-1?Q?Bj=F6rn_Patrick_Swift?= To: "'freebsd-isp@freebsd.org'" Cc: =?iso-8859-1?Q?Bj=F6rn_Swift?= Subject: Load increasing Date: Wed, 30 Jan 2002 20:04:29 -0000 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear members I'm running a FreeBSD box with Apache and Mysql, among other things. Recently I noticed that the load is gradually getting higher, without = me having added more users to the system nor the network traffic = increasing. I have one user under suspicion; he is running a bulletin board system, = poorly written by himself. But before I go and shout at the guy I just want to be positive about = what is causing this load on mysqld (mainly) and httpd. I am reading the = mysql documentation as we speak without finding what I need - some way to = trace the activity on the server. This is possible with i.e. MSSQL server. This might be off topic since this is probably more of an mysql issue = than a FreeBSD one, but could anyone give me some advice or point me in the = right direction? BTW: I apologize for my answer to the "Secondary MX" thread. I hadn't finished reading the "relay to a domain" thread which pretty much said = the same thing... Thanks in advance, Bj=F6rn Swift To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 14: 2:36 2002 Delivered-To: freebsd-isp@freebsd.org Received: from exchange.is.innn.is (exchange.innn.is [213.176.158.3]) by hub.freebsd.org (Postfix) with ESMTP id 2817237B402 for ; Wed, 30 Jan 2002 14:02:29 -0800 (PST) Received: by exchange.is.innn.is with Internet Mail Service (5.5.2653.19) id ; Wed, 30 Jan 2002 22:10:45 -0000 Message-ID: <6973E4999161D411A57600010233D19797F013@exchange.is.innn.is> From: =?iso-8859-1?Q?Bj=F6rn_Patrick_Swift?= To: 'Noah Davidson' Cc: "'freebsd-isp@freebsd.org'" Subject: RE: Secondary MX Date: Wed, 30 Jan 2002 22:10:45 -0000 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear Noah. 1) Is this server the primary MX for this domain (has the lowest MX = record in the dns) ? If so, you need to look at something called mailertables. = That allows you to retrieve mail for a domain and then forward it to another = SMTP (or UUCP for that matter) host. For this to work you have to add the = line "FEATURE(mailertable, 'hash -o /etc/mail/mailertable')" to your = freebsd.mc file and do "make cf". The format of this file should be customerdomain.com smtp:[mailserver.customerdomain.com] Note, this file is not plan-text and has to be compiled with make maps. = More info can be found at Sendmail webpage; http://www.sendmail.org/m4/features.html 2) If not; hmm. Sendmail should figure out where the final destination should be. How are the MX records for this domain? Hope this helps, Bj=F6rn Swift -----Original Message----- From: Noah Davidson [mailto:Noah@oopz.com]=20 Sent: 30. jan=FAar 2002 19:52 To: Bj=F6rn Patrick Swift Subject: RE: Secondary MX I did this, but the mail bounces with the error MX points back to me error. How can I specify the domains that can relay, and also work as = a secondary MX to queue the mail? Thanks Noah -----Original Message----- From: Bj=F6rn Patrick Swift [mailto:bjorn@innn.is] Sent: Wednesday, January 30, 2002 11:56 AM To: Noah Davidson; 'FreeBSD-ISP List (E-mail) ' Subject: RE: Secondary MX Dear Noah. First, edit your sendmail.cf file and make sure it includes a line like this one: FR-o /etc/mail/relay-domains The edit (or create if necessary) your /etc/mail/relay-domains. The format for this file is basically "domain per line" so a line including "customerdomain.com" should do the trick. Cheers, Bjorn Swift -----Original Message----- From: Noah Davidson To: FreeBSD-ISP List (E-mail) Sent: 30.1.2002 17:03 Subject: Secondary MX Our primary mailserver is sendmail 8.12.2. We have some customers that have their own mail servers. We want our secondary mail server to = queue mail until their server comes up on line then deliver it. I know how = to set the priority in the MX records in DNS, but sendmail does not seem = to queue the mail. I have added the domain in which I want to queue the mail for in the relay-domains. I thought I read that somewhere. = Should this be done in the access using a line like: To:domain.com RELAY or how should this be done? Thanks Noah Davidson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 14:12:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id 7CA9F37B416 for ; Wed, 30 Jan 2002 14:12:21 -0800 (PST) Received: from sisko (hobbiton.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g0UMC5ut031009; Wed, 30 Jan 2002 22:12:06 GMT From: "Danny Horne" To: "Noah Davidson" , "FreeBSD-ISP List (E-mail)" Subject: RE: Secondary MX Date: Wed, 30 Jan 2002 22:12:05 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Noah Davidson > Sent: Wednesday 30 January 2002 5:03pm > To: FreeBSD-ISP List (E-mail) > Subject: Secondary MX > > mail for in the relay-domains. I thought I read that somewhere. Should > this be done in the access using a line like: > > To:domain.com RELAY > > or how should this be done? > This is almost right, you don't need to use relay-domains, just the /etc/mail/access file. You then need to rebuild the access database with the following - makemap hash /etc/mail/access < /etc/mail/access You've already stated that you know what to do with the domains MX records so I assume you've got that bit right. HTH --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.319 / Virus Database: 178 - Release Date: 28/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 15: 3:37 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.thehildermans.com (3.wchiv.soho.enteract.com [216.80.72.147]) by hub.freebsd.org (Postfix) with ESMTP id C47BB37B400; Wed, 30 Jan 2002 15:03:01 -0800 (PST) Received: from smtp-gw-4.msn.com ([65.71.104.185]) by mail.thehildermans.com with Microsoft SMTPSVC(5.0.2195.3779); Wed, 30 Jan 2002 16:56:47 -0600 Message-ID: <00005bbd61ca$000034a0$00001835@smtp-gw-4.msn.com> To: From: lisa_seemonline2@msn.com Subject: I WANT YOU (FREE) 22358 Date: Wed, 30 Jan 2002 16:59:54 -2000 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit Reply-To: lis_semeonline888@yahoo.com X-OriginalArrivalTime: 30 Jan 2002 22:56:48.0834 (UTC) FILETIME=[6612FA20:01C1A9E1] Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E COME FUCK MY JUICY WET HOLE http://cumageddon.com/?r=first&p=e I WISH THIS BIG DILDO WAS REALLY YOUR HUGE COCK http://hardcorepleasures.net/?r=second&p=e I'M TIRES OF FINGERING MYSELF. I NEED YOUR HUGE COCK NOW. http://smoothai.com/?r=third&p=e F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E F R E E To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 18:35: 5 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora.siteplus.com (aurora.siteplus.com [66.129.2.160]) by hub.freebsd.org (Postfix) with ESMTP id AD47637B417 for ; Wed, 30 Jan 2002 18:35:03 -0800 (PST) Received: from veager.jwweeks.com (pcp01076331pcs.midval01.tn.comcast.net [68.59.219.194]) by aurora.siteplus.com (8.9.3/8.9.3) with ESMTP id VAA85854; Wed, 30 Jan 2002 21:35:05 -0500 (EST) (envelope-from jim@jwweeks.com) Date: Wed, 30 Jan 2002 21:35:00 -0500 (EST) From: jim To: Bill Vermillion Cc: freebsd-isp@FreeBSD.ORG Subject: Re: relay to a domain In-Reply-To: <20020130174113.GC18296@wjv.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 30 Jan 2002, Bill Vermillion wrote: > Can you point me to where it shows making db tables for > relay-domains? My mistake. Never had the occasion to use relay-domains and just assumed it was handled like virtusertable, access, etc. I think this can be accomplished with access, which of course is hashed. Thanks for correcting me ;-) -- Jim Weeks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Jan 30 20:23:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id EF4D237B435 for ; Wed, 30 Jan 2002 20:22:49 -0800 (PST) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g0V4M2D23733; Wed, 30 Jan 2002 23:22:02 -0500 (EST) (envelope-from bv) Date: Wed, 30 Jan 2002 23:22:01 -0500 From: Bill Vermillion To: jim Cc: freebsd-isp@FreeBSD.ORG Subject: Re: relay to a domain Message-ID: <20020131042201.GF23065@wjv.com> Reply-To: bv@wjv.com References: <20020130174113.GC18296@wjv.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 30, 2002 at 09:35:00PM -0500, jim thus spoke: > On Wed, 30 Jan 2002, Bill Vermillion wrote: > > Can you point me to where it shows making db tables for > > relay-domains? > My mistake. Never had the occasion to use relay-domains and just > assumed it was handled like virtusertable, access, etc. I think > this can be accomplished with access, which of course is hashed. > Thanks for correcting me ;-) Well I wasn't sure if I had missed something. I didn't think I had but then I've made mistreaks be4. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 5:54:14 2002 Delivered-To: freebsd-isp@freebsd.org Received: from arwen.bmm.it (arwen.bmm.it [213.144.76.9]) by hub.freebsd.org (Postfix) with ESMTP id 4225537B404 for ; Fri, 1 Feb 2002 05:54:11 -0800 (PST) Received: from there (freecris.bmm.it [213.144.76.37]) by arwen.bmm.it (8.11.6/8.11.6) with SMTP id g11DruV92329; Fri, 1 Feb 2002 14:54:00 +0100 (CET) (envelope-from deana@bmm.it) Message-Id: <200202011354.g11DruV92329@arwen.bmm.it> Content-Type: text/plain; charset="iso-8859-15" From: Cristiano Deana To: "Noah Davidson" , Subject: Re: Secondary MX Date: Fri, 1 Feb 2002 14:52:51 +0100 X-Mailer: KMail [version 1.3] References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Il giorno Wednesday 30 January 2002 18:03, Noah Davidson mi scriveva: > Our primary mailserver is sendmail 8.12.2. We have some customers that > have their own mail servers. We want our secondary mail server to queue > mail until their server comes up on line then deliver it. ... > or how should this be done? echo "domain.i.wanto.queue.th.mail.com" >> /etc/mail/local-host-names killall -HUP sendmail finish To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 7:45:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from newmail.skyrunner.net (newmail.skyrunner.net [208.133.44.6]) by hub.freebsd.org (Postfix) with ESMTP id 46D1737B416 for ; Fri, 1 Feb 2002 07:45:24 -0800 (PST) Received: from micron (athena.skyrunner.net [208.150.25.130]) by newmail.skyrunner.net (8.11.2/8.11.0/SuSE Linux 8.11.0-0.4) with SMTP id g11FjN418030 for ; Fri, 1 Feb 2002 10:45:23 -0500 From: "Peter Brezny" To: Subject: limiting connections by MAC address Date: Fri, 1 Feb 2002 10:45:00 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi everyone, I'm looking for a way to limit connections to our wireless isp by mac address. Are there any packages that work well for this on freebsd, or any tips for putting one together with ipfw? TIA. Peter Brezny Skyrunner.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 8:48:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from digitaldaemon.com (digitaldaemon.com [63.105.9.34]) by hub.freebsd.org (Postfix) with SMTP id 794A837B41C for ; Fri, 1 Feb 2002 08:48:42 -0800 (PST) Received: (qmail 33570 invoked from network); 1 Feb 2002 16:49:03 -0000 Received: from unknown (HELO digitaldaemon.com) (192.168.0.73) by digitaldaemon.com with SMTP; 1 Feb 2002 16:49:03 -0000 Message-ID: <3C5AC62C.6030601@digitaldaemon.com> Date: Fri, 01 Feb 2002 11:45:32 -0500 From: Jan Knepper User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2 X-Accept-Language: en-us MIME-Version: 1.0 To: FreeBSD ISP Subject: Running virtual server in jail? Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi! Does any of you run virtual server(s) in jail? If so, how does it work? Jan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 10:37:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from november.debolaz.com (november.debolaz.com [193.71.19.191]) by hub.freebsd.org (Postfix) with ESMTP id 96DBC37B402 for ; Fri, 1 Feb 2002 10:37:16 -0800 (PST) Received: from amphibic.com (november [193.71.19.191]) by november.debolaz.com (Postfix) with SMTP id D525E13603E; Fri, 1 Feb 2002 19:37:13 +0100 (CET) Received: from 62.179.128.205 (proxying for unknown) (SquirrelMail authenticated user debolaz) by webmail.debolaz.com with HTTP; Fri, 1 Feb 2002 19:37:13 +0100 (CET) Message-ID: <60378.62.179.128.205.1012588633.squirrel@webmail.debolaz.com> Date: Fri, 1 Feb 2002 19:37:13 +0100 (CET) Subject: =?iso-8859-1?Q?Re:_Running_virtual_server_in_jail=3F?= From: "Anders Nor Berle" To: In-Reply-To: <3C5AC62C.6030601@digitaldaemon.com> References: <3C5AC62C.6030601@digitaldaemon.com> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.0 [cvs]) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > Does any of you run virtual server(s) in jail? > If so, how does it work? > Works quite alright apart from minor issues here and there. 'man 8 jail' will give you a tutorial on how to set up the environment itself, and running it should be pretty straight forward from there. - Anders Nor Berle To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 11:43:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.infolink.com.br (smtp.infolink.com.br [200.187.64.6]) by hub.freebsd.org (Postfix) with ESMTP id AE50037B41A for ; Fri, 1 Feb 2002 11:43:40 -0800 (PST) Received: from academica01.freeshell.org (200-187-68-179.dialup.rjo.infolink.com.br [200.187.68.179]) by smtp.infolink.com.br (Postfix) with ESMTP id 9FDBF2B9A30; Fri, 1 Feb 2002 17:44:28 -0200 (BRST) Message-Id: <5.0.0.25.2.20020201174158.050644a0@mail.freeshell.org> X-Sender: mrdida@mail.freeshell.org X-Mailer: QUALCOMM Windows Eudora Version 5.0 Date: Fri, 01 Feb 2002 17:46:46 -0300 To: "Peter Brezny" From: Angelo Subject: Re: limiting connections by MAC address Cc: freebsd-isp@freebsd.org In-Reply-To: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I know that squid can be set up by mac address to allow or deny access. you have to compile it with this option you can try to redirect all tcp 80 request to the proxy.. and blocking them but, with mac address.. I think, you should know each address ( per example, if you'd installed each nic on your client's computer ) before trying to block.. not just try to find by arp.. you cant control a situation that, an user chaging his nic ( maybe because any damage ).. so, not so good solution.. regards Angelo At 10:45 1/2/2002 -0500, you wrote: >Hi everyone, > >I'm looking for a way to limit connections to our wireless isp by mac >address. > >Are there any packages that work well for this on freebsd, or any tips for >putting one together with ipfw? > >TIA. > >Peter Brezny >Skyrunner.net > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 12: 3:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from newmail.skyrunner.net (newmail.skyrunner.net [208.133.44.6]) by hub.freebsd.org (Postfix) with ESMTP id 3046737B404 for ; Fri, 1 Feb 2002 12:03:16 -0800 (PST) Received: from micron (athena.skyrunner.net [208.150.25.130]) by newmail.skyrunner.net (8.11.2/8.11.0/SuSE Linux 8.11.0-0.4) with SMTP id g11K3Cq04123; Fri, 1 Feb 2002 15:03:12 -0500 From: "Peter Brezny" To: "Angelo" Cc: Subject: RE: limiting connections by MAC address Date: Fri, 1 Feb 2002 15:02:44 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <5.0.0.25.2.20020201174158.050644a0@mail.freeshell.org> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks angelo, I'm working on a config that will use an ssl website where a user can authenticate, and once authenticated, their current mac gets recorded and placed in a table that allows that system to receive a dhcp address that routs to the public. There's a reference on how some larger universities have accomplished this, but I was wondering if anyone on the bsd list had some specific examples or ideas. http://www.itcom.itd.umich.edu/address/address.pp.detail.html Thanks for your comments. Peter Brezny Skyrunner.net -----Original Message----- From: Angelo [mailto:mrdida@freeshell.org] Sent: Friday, February 01, 2002 3:47 PM To: Peter Brezny Cc: freebsd-isp@freebsd.org Subject: Re: limiting connections by MAC address I know that squid can be set up by mac address to allow or deny access. you have to compile it with this option you can try to redirect all tcp 80 request to the proxy.. and blocking them but, with mac address.. I think, you should know each address ( per example, if you'd installed each nic on your client's computer ) before trying to block.. not just try to find by arp.. you cant control a situation that, an user chaging his nic ( maybe because any damage ).. so, not so good solution.. regards Angelo At 10:45 1/2/2002 -0500, you wrote: >Hi everyone, > >I'm looking for a way to limit connections to our wireless isp by mac >address. > >Are there any packages that work well for this on freebsd, or any tips for >putting one together with ipfw? > >TIA. > >Peter Brezny >Skyrunner.net > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 16: 4:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mako1.telstra.net (mako1.telstra.net [203.50.0.28]) by hub.freebsd.org (Postfix) with ESMTP id 5DDAB37B402 for ; Fri, 1 Feb 2002 16:04:39 -0800 (PST) Received: from rctp.telstra.net (rcd5.darkside.au.net [203.37.67.41]) by mako1.telstra.net (8.11.3/8.11.1) with ESMTP id g1204Wl49475; Sat, 2 Feb 2002 11:04:32 +1100 (EST) (envelope-from rchew@telstra.net) Message-Id: <5.1.0.14.2.20020202111358.01bd53d8@gomer.telstra.net> X-Sender: rchew@gomer.telstra.net X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sat, 02 Feb 2002 11:17:10 +1100 To: Cristiano Deana From: Richard Chew Subject: Re: Secondary MX Cc: "Noah Davidson" , In-Reply-To: <200202011354.g11DruV92329@arwen.bmm.it> References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org But does this stop customer from relaying through your mail server? I don't think so, and if only a secondary MX service is being offered, then ideally you do not want your customers to relay mail through you secondary MX box. The way we have done it is to use the access file to control which domains we accept mail for but do not allow the customers to relay through our secondary MX box. Thanks. At 02:52 PM 1/02/2002 +0100, Cristiano Deana wrote: >Il giorno Wednesday 30 January 2002 18:03, Noah Davidson mi scriveva: > > Our primary mailserver is sendmail 8.12.2. We have some customers that > > have their own mail servers. We want our secondary mail server to queue > > mail until their server comes up on line then deliver it. >... > > or how should this be done? > >echo "domain.i.wanto.queue.th.mail.com" >> /etc/mail/local-host-names >killall -HUP sendmail > >finish > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message Cheers, Richard ----------- Richard Chew Tel: 02 6208 1913 (International: +61 2 6208 1913) Telstra Internet Network Development To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 16:53:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mta06bw.bigpond.com (mta06bw.bigpond.com [139.134.6.96]) by hub.freebsd.org (Postfix) with ESMTP id 0E0C637B417 for ; Fri, 1 Feb 2002 16:53:29 -0800 (PST) Received: from MICHAEL2 ([144.135.24.84]) by mta06bw.bigpond.com (Netscape Messaging Server 4.15) with SMTP id GQVS5100.BUT for ; Sat, 2 Feb 2002 11:00:37 +1000 Received: from CPE-203-45-56-251.vic.bigpond.net.au ([203.45.56.251]) by bwmam06.mailsvc.email.bigpond.com(MailRouter V3.0h 53/417710); 02 Feb 2002 10:53:25 Message-ID: <003901c1ab84$16053f80$2e01a8c0@MICHAEL2> From: "Michael Vince" To: Subject: Secondary Mail server Date: Sat, 2 Feb 2002 11:53:53 +1100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi all. I need some help setting up a secondary mail server. Last night my primary one (and only mail server ) stopped running after I cvsup it to 4.5 release. It was that Amavis Antivirus perl needs /usr/bin/perlsuid to have the special permissions -rwsr-xr-x 3 root wheel /usr/bin/suidperl when its normally -r-xr-xr-x 3 root wheel /usr/bin/suidperl It was the make installworld that caused it. Because it reset the permissions of the file. I am running Qmail / Amavis antivirus. / VMailMgr http://www.vmailmgr.org/ / Omail http://omail.omnis.ch/ I was running on sendmail for the last year but thought I would try a change because I needed an web based user friendly system to have mail administration for other people (Achieved with Omail). I would like some documentation / suggestions on the best secondary mail solution, I have the O'rielly sendmail book but just browsing through it I cant see any section on setting up a secondary mail server. Is it that that you just configure the mail server like you would a primary but have a higher MX preference value and it automagically detects this and sends it to the primary mail server when its backup? I just cant find any infomation about this. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Feb 1 20:10:48 2002 Delivered-To: freebsd-isp@freebsd.org Received: from corey.datafast.net.au (corey.datafast.net.au [203.123.67.125]) by hub.freebsd.org (Postfix) with SMTP id 1CF7537B405 for ; Fri, 1 Feb 2002 20:10:43 -0800 (PST) Received: (qmail 27441 invoked by uid 1000); 2 Feb 2002 04:10:34 -0000 Date: Sat, 2 Feb 2002 15:10:34 +1100 From: Corey Ralph To: Michael Vince Cc: freebsd-isp@freebsd.org Subject: Re: Secondary Mail server Message-ID: <20020202041034.GA27049@corey.datafast.net.au> References: <003901c1ab84$16053f80$2e01a8c0@MICHAEL2> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <003901c1ab84$16053f80$2e01a8c0@MICHAEL2> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Michael, You need to set up a second MX record with a higher preference number, and you do need to set up the secondary server slightly differently. If you want to use qmail for this secondary server, put the list of domains in rcpthosts, and NOT in virtualdomains or locals. This way it will accept mail for those domains and pass it to the primary MX when it is available. Cheers Corey On 02/02/02 11:53 +1100, Michael Vince wrote: > Hi all. > I need some help setting up a secondary mail server. > Last night my primary one (and only mail server ) stopped running after I > cvsup it to 4.5 release. > It was that Amavis Antivirus perl needs /usr/bin/perlsuid to have the > special permissions > -rwsr-xr-x 3 root wheel /usr/bin/suidperl > when its normally > -r-xr-xr-x 3 root wheel /usr/bin/suidperl > It was the make installworld that caused it. Because it reset the > permissions of the file. > I am running Qmail / Amavis antivirus. / VMailMgr http://www.vmailmgr.org/ / > Omail http://omail.omnis.ch/ > > I was running on sendmail for the last year but thought I would try a change > because I needed an web based user friendly system to have mail > administration for other people (Achieved with Omail). > > I would like some documentation / suggestions on the best secondary mail > solution, I have the O'rielly sendmail book but just browsing through it I > cant see any section on setting up a secondary mail server. Is it that that > you just configure the mail server like you would a primary but have a > higher MX preference value and it automagically detects this and sends it to > the primary mail server when its backup? I just cant find any infomation > about this. > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- ------------------------------------------------------------ Corey Ralph corey.ralph@datafast.net.au System Administrator +61 3 5278 3955 Datafast Telecommunications ------------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 2: 5:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id 6DDD037B416 for ; Sat, 2 Feb 2002 02:05:40 -0800 (PST) Received: from sisko (frodo.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g12A5KNv051534; Sat, 2 Feb 2002 10:05:23 GMT From: "Danny Horne" To: "Richard Chew" , "Cristiano Deana" Cc: "Noah Davidson" , Subject: RE: Secondary MX Date: Sat, 2 Feb 2002 10:05:20 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <5.1.0.14.2.20020202111358.01bd53d8@gomer.telstra.net> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Richard Chew > Sent: Saturday 02 February 2002 12:17am > To: Cristiano Deana > Cc: Noah Davidson; freebsd-isp@FreeBSD.ORG > Subject: Re: Secondary MX > > At 02:52 PM 1/02/2002 +0100, Cristiano Deana wrote: > >Il giorno Wednesday 30 January 2002 18:03, Noah Davidson mi scriveva: > > > Our primary mailserver is sendmail 8.12.2. We have some > customers that > > > have their own mail servers. We want our secondary mail > server to queue > > > mail until their server comes up on line then deliver it. > >... > > > or how should this be done? > > > >echo "domain.i.wanto.queue.th.mail.com" >> /etc/mail/local-host-names > >killall -HUP sendmail > > > >finish > > But does this stop customer from relaying through your mail > server? I don't > think so, and if only a secondary MX service is being offered, > then ideally > you do not want your customers to relay mail through you secondary MX box. > > The way we have done it is to use the access file to control > which domains > we accept mail for but do not allow the customers to relay through our > secondary MX box. > > Thanks. > I'm sure that using local-host-names for a domain you're acting as secondary MX for will cause your mail server to try to deliver the mail locally, when it can't find the recipient locally it'll reject the mail with a 'user unknown' type of message. As Richard & I have stated, the only way to safely do this is through /etc/mail/access with - To:domain.com RELAY This will only allow relay _TO_ this domain, which is what you want a secondary MX to do. --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 30/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 2:39: 0 2002 Delivered-To: freebsd-isp@freebsd.org Received: from arwen.bmm.it (arwen.bmm.it [213.144.76.9]) by hub.freebsd.org (Postfix) with ESMTP id 4FCF537B402 for ; Sat, 2 Feb 2002 02:37:54 -0800 (PST) Received: from there (freecris.bmm.it [213.144.76.37]) by arwen.bmm.it (8.11.6/8.11.6) with SMTP id g12Abo100696; Sat, 2 Feb 2002 11:37:51 +0100 (CET) (envelope-from deana@bmm.it) Message-Id: <200202021037.g12Abo100696@arwen.bmm.it> Content-Type: text/plain; charset="iso-8859-15" From: Cristiano Deana To: , "Danny Horne" Subject: Re: Secondary MX Date: Sat, 2 Feb 2002 11:36:46 +0100 X-Mailer: KMail [version 1.3] References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Il giorno Saturday 02 February 2002 11:05, Danny Horne mi scriveva: > > >echo "domain.i.wanto.queue.th.mail.com" >> /etc/mail/local-host-names > > >killall -HUP sendmail > > > > > >finish > I'm sure that using local-host-names for a domain you're acting as > secondary MX for will cause your mail server to try to deliver the mail > locally, when it can't find the recipient locally it'll reject the mail > with a 'user unknown' type of message. My fault. i.e.: we have the domain example.com # host -t mx example.com example.com mail is handled (pri=20) by mx2.example.com example.com mail is handled (pri=10) by mx.example.com where mx2.example.com is our secondary, ok? the "starting-thread" machine ;) Well, in this machine (mx2.example.com) we need: echo "mx2.example.com" >> /etc/mail/local-host-names killall -HUP sendmail Cris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 2:42:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id 499C137B420 for ; Sat, 2 Feb 2002 02:42:45 -0800 (PST) Received: from sisko (frodo.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g12AgTNv051629; Sat, 2 Feb 2002 10:42:30 GMT From: "Danny Horne" To: "Michael Vince" , Subject: RE: Secondary Mail server Date: Sat, 2 Feb 2002 10:42:29 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <003901c1ab84$16053f80$2e01a8c0@MICHAEL2> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Michael Vince > Sent: Saturday 02 February 2002 12:54am > To: freebsd-isp@FreeBSD.ORG > Subject: Secondary Mail server > > > Hi all. > > I would like some documentation / suggestions on the best secondary mail > solution, I have the O'rielly sendmail book but just browsing through it I > cant see any section on setting up a secondary mail server. Is it > that that > you just configure the mail server like you would a primary but have a > higher MX preference value and it automagically detects this and > sends it to > the primary mail server when its backup? I just cant find any infomation > about this. > If you're going to be using Sendmail for secondary MX, you just need to set the server up as normal, but any domains you're secondary for should go in /etc/mail/access with the entry - To:domain.com RELAY There shouldn't be any reference to this domain in any other Sendmail files. HTH --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 30/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 2:47:41 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id 4F37537B404 for ; Sat, 2 Feb 2002 02:47:38 -0800 (PST) Received: from sisko (frodo.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g12AlMNv051646; Sat, 2 Feb 2002 10:47:23 GMT From: "Danny Horne" To: "Cristiano Deana" , Subject: RE: Secondary MX Date: Sat, 2 Feb 2002 10:47:23 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <200202021037.g12Abo100696@arwen.bmm.it> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Cristiano Deana > Sent: Saturday 02 February 2002 10:37am > To: freebsd-isp@FreeBSD.ORG; Danny Horne > Subject: Re: Secondary MX > > My fault. > i.e.: we have the domain example.com > # host -t mx example.com > example.com mail is handled (pri=20) by mx2.example.com > example.com mail is handled (pri=10) by mx.example.com > > where mx2.example.com is our secondary, ok? the "starting-thread" > machine ;) > > Well, in this machine (mx2.example.com) we need: > echo "mx2.example.com" >> /etc/mail/local-host-names > killall -HUP sendmail > Uh, not sure what you mean by "starting-thread" machine --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 30/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 13:59:36 2002 Delivered-To: freebsd-isp@freebsd.org Received: from black.purplecat.net (ns1.purplecat.net [209.16.228.148]) by hub.freebsd.org (Postfix) with ESMTP id 9A80037B402 for ; Sat, 2 Feb 2002 13:59:33 -0800 (PST) Received: from insp (highland.skyrunner.net [208.150.26.35]) by black.purplecat.net (8.8.8/8.8.8) with SMTP id RAA24836 for ; Sat, 2 Feb 2002 17:02:50 -0500 (EST) (envelope-from pbrezny@purplecat.net) Reply-To: From: "Peter Brezny" To: Subject: online web server log analysis package Date: Sat, 2 Feb 2002 16:59:27 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi everyone, I'm looking to put a log analyzer that can be configured to create a nice weboutput on a daily basis (with history) for my hosting customers to look at. Any favorites out there? I've seen some use of analog that looked ok. TIA. Peter Brezny purplecat.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 14: 3:41 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mailout05.sul.t-online.com (mailout05.sul.t-online.com [194.25.134.82]) by hub.freebsd.org (Postfix) with ESMTP id 97EF237B404 for ; Sat, 2 Feb 2002 14:03:38 -0800 (PST) Received: from fwd07.sul.t-online.de by mailout05.sul.t-online.com with smtp id 16X8Fy-0004eQ-0A; Sat, 02 Feb 2002 23:03:34 +0100 Received: from there (520075190812-0001@[217.4.239.115]) by fwd07.sul.t-online.com with smtp id 16X8Fw-0c1hKaC; Sat, 2 Feb 2002 23:03:32 +0100 Content-Type: text/plain; charset="iso-8859-1" From: stefan.sonnenberg-carstens@t-online.de (Stefan Sonnenberg-Carstens) To: , Subject: Re: online web server log analysis package Date: Sun, 3 Feb 2002 00:05:18 +0100 X-Mailer: KMail [version 1.3.1] References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-ID: <16X8Fw-0c1hKaC@fwd07.sul.t-online.com> X-Sender: 520075190812-0001@t-dialin.net Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Am Samstag, 2. Februar 2002 22:59 schrieb Peter Brezny: > Hi everyone, > > I'm looking to put a log analyzer that can be configured to create a nice > weboutput on a daily basis (with history) for my hosting customers to look > at. > > Any favorites out there? > > I've seen some use of analog that looked ok. > > TIA. > > Peter Brezny > purplecat.net > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message cd /usr/ports/www/webalizer make all install clean hope that helps ... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 14: 8:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from hades.gigguardian.com (villa2-053.sjc.ca.bbnow.net [24.219.18.53]) by hub.freebsd.org (Postfix) with ESMTP id D819937B400 for ; Sat, 2 Feb 2002 14:08:23 -0800 (PST) Received: from europa (europa.sofia-cafe.bg [192.168.1.2]) by hades.gigguardian.com (8.11.6/8.11.6) with SMTP id g12MAkA99820; Sat, 2 Feb 2002 14:10:46 -0800 (PST) (envelope-from vhm3@hades.gigguardian.com) From: "Chip McClure" To: Cc: Subject: RE: online web server log analysis package Date: Sat, 2 Feb 2002 14:10:27 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello Peter, There's a 2 of them that I use - one called wusage (under linux), and webalizer (linux & freebsd). My personal preference is webalizer. A lot easier to configure, and a lot less processor intensive. Chip -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Peter Brezny Sent: Saturday, February 02, 2002 1:59 PM To: freebsd-isp@FreeBSD.ORG Subject: online web server log analysis package Hi everyone, I'm looking to put a log analyzer that can be configured to create a nice weboutput on a daily basis (with history) for my hosting customers to look at. Any favorites out there? I've seen some use of analog that looked ok. TIA. Peter Brezny purplecat.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Feb 2 14: 9:23 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.clifftop.net (machassociates-6.dsl.easynet.co.uk [217.204.162.182]) by hub.freebsd.org (Postfix) with ESMTP id E599137B400 for ; Sat, 2 Feb 2002 14:09:18 -0800 (PST) Received: from frodo (frodo.shire.com [192.168.1.250]) (authenticated bits=0) by smtp.clifftop.net (8.12.2/8.12.2) with ESMTP id g12M91Nv054404; Sat, 2 Feb 2002 22:09:03 GMT From: "Danny Horne" To: , Subject: RE: online web server log analysis package Date: Sat, 2 Feb 2002 22:09:02 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal X-RAVMilter-Version: 8.3.0(snapshot 20010925) (odo.clifftop.net) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Peter Brezny > Sent: Saturday 02 February 2002 9:59pm > To: freebsd-isp@FreeBSD.ORG > Subject: online web server log analysis package > > > Hi everyone, > > I'm looking to put a log analyzer that can be configured to create a nice > weboutput on a daily basis (with history) for my hosting customers to look > at. > > Any favorites out there? > > I've seen some use of analog that looked ok. > Not too experienced in this area, but I'm using awstats on one of my sites. Not sure exactly what you want to show, but you can view the output of mine here - http://www.justfinanceuk.com/cgi-bin/awstats.pl?config=jf (click on the 'Jan' link on the first graph & it'll fill out a bit) --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.320 / Virus Database: 179 - Release Date: 30/01/02 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message