From owner-freebsd-isp Sun Apr 21 6:51:21 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail01.redcentre.net (mail01.redcentre.net [203.43.52.131]) by hub.freebsd.org (Postfix) with ESMTP id 9C44137B419 for ; Sun, 21 Apr 2002 06:51:13 -0700 (PDT) Received: from ws1 (ws1.redcentre.net [203.43.52.134]) by mail01.redcentre.net (8.8.8/8.8.8) with ESMTP id XAA24187 for ; Sun, 21 Apr 2002 23:51:04 +1000 (EST) (envelope-from marcus@redcentre.com) From: marcus@redcentre.com To: freebsd-isp@freebsd.org Date: Sun, 21 Apr 2002 23:51:03 +1000 MIME-Version: 1.0 Subject: Migrating mail servers Message-ID: <3CC35067.3642.28374DD@localhost> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I'm just looking for some advice re migrating a mail server from a 3.4 machine to 4.5. Is it as possible to simply transfer the passwd file and ftp mail boxes? Marcus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 21 16: 9:48 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mailsrv.amplex.net (mailsrv.amplex.net [65.165.120.194]) by hub.freebsd.org (Postfix) with ESMTP id 671D637B416 for ; Sun, 21 Apr 2002 16:07:35 -0700 (PDT) Received: from upstairs.70.natty.gatordog.com (ns1.gatordog.com [198.30.156.155]) by mailsrv.amplex.net (8.11.6/8.11.6) with ESMTP id g3LN4qY67129 for ; Sun, 21 Apr 2002 19:04:52 -0400 (EDT) Date: Sun, 21 Apr 2002 19:07:21 -0400 (EDT) From: Adam Kujawski - Amplex Support To: freebsd-isp@FreeBSD.ORG Subject: Re: sendmail virus scanning In-Reply-To: <012f01c1e8b5$d56b2ce0$0300a8c0@zeus> Message-ID: <20020421190212.S198-100000@adam-laptop.amplex.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Have you checked out AVP from Kaspersky Labs? Combinded with check_virus patch for sendmail (http://home.i.cz/reho//check_virus/), it works well on FreeBSD/Sendmail. -Adam On Sat, 20 Apr 2002, Patrick O. Fish wrote: > I'm looking for a sendmail addon to scan each e-mail (at least incoming, but > incoming and outgoing preferred) for virii's. I've heard that they don't > work well on FreeBSD? any ideas welcome. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 21 17:16:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from aurora-borealis.phear.org (phear.org [194.177.32.225]) by hub.freebsd.org (Postfix) with ESMTP id 625B737B404 for ; Sun, 21 Apr 2002 17:16:26 -0700 (PDT) Received: from localhost (kewl@localhost [127.0.0.1]) by aurora-borealis.phear.org with ESMTP id g3M0Fch15649; Mon, 22 Apr 2002 02:15:38 +0200 Date: Mon, 22 Apr 2002 02:15:37 +0200 (CEST) From: Tristan X-X-Sender: kewl@aurora-borealis.phear.org To: marcus@redcentre.com Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Migrating mail servers In-Reply-To: <3CC35067.3642.28374DD@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, 21 Apr 2002 marcus@redcentre.com wrote: > Date: Sun, 21 Apr 2002 23:51:03 +1000 > From: marcus@redcentre.com > To: freebsd-isp@FreeBSD.ORG > Subject: Migrating mail servers > > Hi, Hello, > I'm just looking for some advice re migrating a mail > server from a 3.4 machine to 4.5. Is it as possible > to simply transfer the passwd file and ftp mail > boxes? Don't use directly the passwd, use the master.passwd/password database instead. But this is not a problem. An interesting thing is that MD5 support is installed in FreeBSD 4.5, so it will make updated passwords more difficult to crack. Regards, Tristan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 21 22:24:10 2002 Delivered-To: freebsd-isp@freebsd.org Received: from picard.dyn.newmillennium.net.au (max057.apex.net.au [203.30.99.186]) by hub.freebsd.org (Postfix) with ESMTP id D282537B41A for ; Sun, 21 Apr 2002 22:24:01 -0700 (PDT) Received: (from root@localhost) by picard.dyn.newmillennium.net.au (8.12.2/8.12.2) id g3M5KK66068029 for freebsd-isp@freebsd.org; Mon, 22 Apr 2002 15:20:20 +1000 (EST) (envelope-from deece@newmillennium.net.au) Received: from riker (riker.internal [192.168.0.50]) by picard.dyn.newmillennium.net.au (8.12.2/8.9.3) with ESMTP id g3M5KCXi067996; Mon, 22 Apr 2002 15:20:13 +1000 (EST) From: "Alastair D'Silva" To: "'Patrick O. Fish'" , "'Jim Flowers'" , Subject: RE: sendmail virus scanning Date: Mon, 22 Apr 2002 15:18:23 +1000 Organization: New Millennium Networking Message-ID: <010201c1e9bd$239ff1e0$3200a8c0@riker> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <016101c1e8c9$e73a6940$0300a8c0@zeus> Importance: Normal X-scanner: scanned by Inflex 0.1.5c - (http://www.inflex.co.za/) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I use Inflex personally - it works well, and can use McAfee's vscan (also in the ports) for virus scanning. AFAIK one of the ports that Inflex depends on for MIME requires X. You can get away with just installing the XFree86 libraries port/package, you don't need to install X completely. -- Alastair D'Silva B. Sc. mob: 0413 485 733 Networking Consultant New Millennium Networking http://www.newmillennium.net.au > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Patrick O. Fish > Sent: Sunday, 21 April 2002 10:17 AM > To: Jim Flowers; freebsd-isp@FreeBSD.ORG > Subject: Re: sendmail virus scanning > > > - I went to go install inflex, but it depends on > XFree86...any idea WHY? > > I'm going to try out drweb right now. > ----- Original Message ----- > From: "Jim Flowers" > To: "Patrick O. Fish" ; > Sent: Saturday, April 20, 2002 4:34 PM > Subject: Re: sendmail virus scanning > > > > I'm currently looking at the inflex and drweb ports but other than > > having installed them both I haven't done much testing yet. Inflex > > does reject emails with .exe attachments but for much more > I have to > > add someting that looks at signatures. Don't have any > viruses at the > > moment to test drweb with. Inflex is both in and out. > > > > > I'm looking for a sendmail addon to scan each e-mail (at least > > > incoming, but incoming and outgoing preferred) for virii's. I've > > > heard that they don't work well on FreeBSD? any ideas welcome. > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > -- > > Jim Flowers > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Apr 21 22:40:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from apollo.pwhsnet.com (adsl-64-164-36-226.dsl.scrm01.pacbell.net [64.164.36.226]) by hub.freebsd.org (Postfix) with ESMTP id 67A8A37B431 for ; Sun, 21 Apr 2002 22:40:41 -0700 (PDT) Received: (from root@localhost) by apollo.pwhsnet.com (8.11.6/8.11.6) id g3M5coC13796 for freebsd-isp@freebsd.org; Sun, 21 Apr 2002 22:38:50 -0700 (PDT) (envelope-from patrick@pwhsnet.com) Received: from zeus (patrick@zeus.pwhsnet.com [192.168.0.3]) by apollo.pwhsnet.com (8.11.6/8.11.6) with SMTP id g3M5cok13750 for ; Sun, 21 Apr 2002 22:38:50 -0700 (PDT) (envelope-from patrick@pwhsnet.com) Message-ID: <012101c1e9be$e93d47d0$0300a8c0@zeus> From: "Patrick O. Fish" To: References: <010201c1e9bd$239ff1e0$3200a8c0@riker> Subject: Re: sendmail virus scanning Date: Sun, 21 Apr 2002 22:31:10 -0700 MIME-Version: 1.0 X-scanner: scanned by Inflex 1.0.12.2 - (http://pldaniels.com/inflex/) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org where is mcafee in the ports? cant find it. ----- Original Message ----- From: "Alastair D'Silva" To: "'Patrick O. Fish'" ; "'Jim Flowers'" ; Sent: Sunday, April 21, 2002 10:18 PM Subject: RE: sendmail virus scanning > I use Inflex personally - it works well, and can use McAfee's vscan > (also in the ports) for virus scanning. AFAIK one of the ports that > Inflex depends on for MIME requires X. You can get away with just > installing the XFree86 libraries port/package, you don't need to install > X completely. > > -- > Alastair D'Silva B. Sc. mob: 0413 485 733 > Networking Consultant > New Millennium Networking http://www.newmillennium.net.au > > > -----Original Message----- > > From: owner-freebsd-isp@FreeBSD.ORG > > [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Patrick O. Fish > > Sent: Sunday, 21 April 2002 10:17 AM > > To: Jim Flowers; freebsd-isp@FreeBSD.ORG > > Subject: Re: sendmail virus scanning > > > > > > - I went to go install inflex, but it depends on > > XFree86...any idea WHY? > > > > I'm going to try out drweb right now. > > ----- Original Message ----- > > From: "Jim Flowers" > > To: "Patrick O. Fish" ; > > Sent: Saturday, April 20, 2002 4:34 PM > > Subject: Re: sendmail virus scanning > > > > > > > I'm currently looking at the inflex and drweb ports but other than > > > having installed them both I haven't done much testing yet. Inflex > > > does reject emails with .exe attachments but for much more > > I have to > > > add someting that looks at signatures. Don't have any > > viruses at the > > > moment to test drweb with. Inflex is both in and out. > > > > > > > I'm looking for a sendmail addon to scan each e-mail (at least > > > > incoming, but incoming and outgoing preferred) for virii's. I've > > > > heard that they don't work well on FreeBSD? any ideas welcome. > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > -- > > > Jim Flowers > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-isp" in the body of the message > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > > ______________________________________ Scanned and protected by Inflex Inflex Scanning software Available at http://pldaniels.com/inflex To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 4:16:29 2002 Delivered-To: freebsd-isp@freebsd.org Received: from thehousleys.net (frenchknot.ne.client2.attbi.com [66.31.234.148]) by hub.freebsd.org (Postfix) with ESMTP id 92EF537B425 for ; Mon, 22 Apr 2002 04:16:25 -0700 (PDT) Received: (from root@localhost) by thehousleys.net (8.11.6/8.11.6) id g3MBCgQ92366; Mon, 22 Apr 2002 07:12:42 -0400 (EDT) (envelope-from jim@Thehousleys.net) Received: from Thehousleys.net (baby.int.thehousleys.net [192.168.0.125]) (authenticated) by thehousleys.net (8.11.6/8.11.6) with ESMTP id g3MBCeH92358; Mon, 22 Apr 2002 07:12:40 -0400 (EDT) (envelope-from jim@Thehousleys.net) Message-ID: <3CC3F028.155FA1AB@Thehousleys.net> Date: Mon, 22 Apr 2002 07:12:40 -0400 From: James Housley X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: "Patrick O. Fish" Cc: freebsd-isp@freebsd.org Subject: Re: sendmail virus scanning References: <010201c1e9bd$239ff1e0$3200a8c0@riker> <012101c1e9be$e93d47d0$0300a8c0@zeus> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS perl-10 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org "Patrick O. Fish" wrote: > > where is mcafee in the ports? cant find it. > security/vscan Jim -- /"\ ASCII Ribbon Campaign . \ / - NO HTML/RTF in e-mail . X - NO Word docs in e-mail . / \ ----------------------------------------------------------------- jeh@FreeBSD.org http://www.FreeBSD.org The Power to Serve jim@TheHousleys.Net http://www.TheHousleys.net jhousley@SimTel.Net http://www.SimTel.Net --------------------------------------------------------------------- "...there's no idea that's so good you can't ruin it with a few well-placed idiots." -- Charles Spickman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 13: 9:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web10306.mail.yahoo.com (web10306.mail.yahoo.com [216.136.130.84]) by hub.freebsd.org (Postfix) with SMTP id 5BB5037B400 for ; Mon, 22 Apr 2002 13:09:30 -0700 (PDT) Message-ID: <20020422200137.32095.qmail@web10306.mail.yahoo.com> Received: from [213.19.151.12] by web10306.mail.yahoo.com via HTTP; Mon, 22 Apr 2002 13:01:37 PDT Date: Mon, 22 Apr 2002 13:01:37 -0700 (PDT) From: Ali Nasseh Subject: subscribe To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org subscribe me please. __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 13:39:49 2002 Delivered-To: freebsd-isp@freebsd.org Received: from 100m.mpr200-2.esr.lvcm.net (100m.mpr200-2.esr.lvcm.net [24.234.0.81]) by hub.freebsd.org (Postfix) with ESMTP id 8628937B42C for ; Mon, 22 Apr 2002 13:39:15 -0700 (PDT) Received: from penguin (cm187.166.234.24.lvcm.com [24.234.166.187]) by 100m.mpr200-2.esr.lvcm.net (Mirapoint Messaging Server MOS 2.9.3.2) with SMTP id ACP94142; Mon, 22 Apr 2002 11:19:04 -0700 (PDT) Message-ID: <000f01c1ea2a$5c832870$6401a8c0@penguin> From: "Taylor Dondich" To: Subject: What's a good name server daemon for virtual hosting? Date: Mon, 22 Apr 2002 11:20:16 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I understand that bind out of the box isn't very good for virtual hosting because of the complexity of the zone files and how you can't do dynamic look ups well. I would think that a database implementation would make this easier. What is everyone's name server daemon of choice and what would be good for a virtual hosting scenario where I'm hosting multiple domains that are added/removed/edited each day? Taylor Dondich To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14: 9: 7 2002 Delivered-To: freebsd-isp@freebsd.org Received: from arnold.neland.dk (0x3ef312f8.albnxx2.adsl.tele.dk [62.243.18.248]) by hub.freebsd.org (Postfix) with ESMTP id A88D237BA06 for ; Mon, 22 Apr 2002 14:07:34 -0700 (PDT) Received: from gina ([192.168.5.109]) by arnold.neland.dk (8.12.2/8.12.2) with SMTP id g3ML7FNN013641; Mon, 22 Apr 2002 23:07:15 +0200 (CEST) (envelope-from leifn@neland.dk) Message-ID: <03af01c1ea41$b1a46780$6d05a8c0@neland.dk> From: "Leif Neland" To: "Taylor Dondich" , References: <000f01c1ea2a$5c832870$6401a8c0@penguin> Subject: Re: What's a good name server daemon for virtual hosting? Date: Mon, 22 Apr 2002 23:07:20 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: base64 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org QmluZCB3b3JrcyB3aXRob3V0IHByb2JsZW1zIGZvciB1cy4NCg0KV2hhdCBhcmUgeW91ciBwcm9i bGVtcz8NCg0KLS0tLS0gT3JpZ2luYWwgTWVzc2FnZSAtLS0tLSANCkZyb206ICJUYXlsb3IgRG9u ZGljaCIgPHRoZXhkZXJAbHZjbS5jb20+DQpUbzogPGlzcEBGcmVlQlNELk9SRz4NClNlbnQ6IE1v bmRheSwgQXByaWwgMjIsIDIwMDIgODoyMCBQTQ0KU3ViamVjdDogV2hhdCdzIGEgZ29vZCBuYW1l IHNlcnZlciBkYWVtb24gZm9yIHZpcnR1YWwgaG9zdGluZz8NCg0KDQo+IEkgdW5kZXJzdGFuZCB0 aGF0IGJpbmQgb3V0IG9mIHRoZSBib3ggaXNuJ3QgdmVyeSBnb29kIGZvciB2aXJ0dWFsIGhvc3Rp bmcNCj4gYmVjYXVzZSBvZiB0aGUgY29tcGxleGl0eSBvZiB0aGUgem9uZSBmaWxlcyBhbmQgaG93 IHlvdSBjYW4ndCBkbyBkeW5hbWljDQo+IGxvb2sgdXBzIHdlbGwuICBJIHdvdWxkIHRoaW5rIHRo YXQgYSBkYXRhYmFzZSBpbXBsZW1lbnRhdGlvbiB3b3VsZCBtYWtlIHRoaXMNCj4gZWFzaWVyLg0K PiANCj4gV2hhdCBpcyBldmVyeW9uZSdzIG5hbWUgc2VydmVyIGRhZW1vbiBvZiBjaG9pY2UgYW5k IHdoYXQgd291bGQgYmUgZ29vZCBmb3IgYQ0KPiB2aXJ0dWFsIGhvc3Rpbmcgc2NlbmFyaW8gd2hl cmUgSSdtIGhvc3RpbmcgbXVsdGlwbGUgZG9tYWlucyB0aGF0IGFyZQ0KPiBhZGRlZC9yZW1vdmVk L2VkaXRlZCBlYWNoIGRheT8NCj4gDQo+IFRheWxvciBEb25kaWNoDQo+IA0KPiANCj4gVG8gVW5z dWJzY3JpYmU6IHNlbmQgbWFpbCB0byBtYWpvcmRvbW9ARnJlZUJTRC5vcmcNCj4gd2l0aCAidW5z dWJzY3JpYmUgZnJlZWJzZC1pc3AiIGluIHRoZSBib2R5IG9mIHRoZSBtZXNzYWdlDQo+IA0K To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14:27:57 2002 Delivered-To: freebsd-isp@freebsd.org Received: from 100m.mpr200-2.esr.lvcm.net (100m.mpr200-2.esr.lvcm.net [24.234.0.81]) by hub.freebsd.org (Postfix) with ESMTP id 5827837B766 for ; Mon, 22 Apr 2002 14:25:59 -0700 (PDT) Received: from penguin (cm187.166.234.24.lvcm.com [24.234.166.187]) by 100m.mpr200-2.esr.lvcm.net (Mirapoint Messaging Server MOS 2.9.3.2) with SMTP id ACQ12734; Mon, 22 Apr 2002 14:24:13 -0700 (PDT) Message-ID: <002101c1ea44$399d4b50$6401a8c0@penguin> From: "Taylor Dondich" To: "Leif Neland" , References: <000f01c1ea2a$5c832870$6401a8c0@penguin> <03af01c1ea41$b1a46780$6d05a8c0@neland.dk> Subject: Re: What's a good name server daemon for virtual hosting? Date: Mon, 22 Apr 2002 14:25:27 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Yes, but can your system automatically add/delete/modify zone files and reload the name server? I don't know of a system that can do this properly. Any ideas? Taylor Dondich ----- Original Message ----- From: "Leif Neland" To: "Taylor Dondich" ; Sent: Monday, April 22, 2002 2:07 PM Subject: Re: What's a good name server daemon for virtual hosting? > Bind works without problems for us. > > What are your problems? > > ----- Original Message ----- > From: "Taylor Dondich" > To: > Sent: Monday, April 22, 2002 8:20 PM > Subject: What's a good name server daemon for virtual hosting? > > > > I understand that bind out of the box isn't very good for virtual hosting > > because of the complexity of the zone files and how you can't do dynamic > > look ups well. I would think that a database implementation would make this > > easier. > > > > What is everyone's name server daemon of choice and what would be good for a > > virtual hosting scenario where I'm hosting multiple domains that are > > added/removed/edited each day? > > > > Taylor Dondich > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > > N…'²æìr¸›zǧvf¢–Ú&j:+v‰¨·ž è® "¶§²æìr¸›yúÞy»ŠÊbžØ^n‡r¡ûazg¬±¨ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14:41:14 2002 Delivered-To: freebsd-isp@freebsd.org Received: from quartz.bos.dyndns.org (quartz.bos.dyndns.org [66.37.215.2]) by hub.freebsd.org (Postfix) with ESMTP id 8974D37BDC9 for ; Mon, 22 Apr 2002 14:37:45 -0700 (PDT) Received: from quartz.bos.dyndns.org (twilde@localhost [127.0.0.1]) by quartz.bos.dyndns.org (8.12.2/8.12.2) with ESMTP id g3MLaEuH009086; Mon, 22 Apr 2002 17:36:14 -0400 (EDT) Received: from localhost (twilde@localhost) by quartz.bos.dyndns.org (8.12.2/8.12.2/Submit) with ESMTP id g3MLaE2o009083; Mon, 22 Apr 2002 17:36:14 -0400 (EDT) X-Authentication-Warning: quartz.bos.dyndns.org: twilde owned process doing -bs Date: Mon, 22 Apr 2002 17:36:14 -0400 (EDT) From: Tim Wilde X-X-Sender: twilde@quartz.bos.dyndns.org To: Taylor Dondich Cc: isp@FreeBSD.ORG Subject: Re: What's a good name server daemon for virtual hosting? In-Reply-To: <002101c1ea44$399d4b50$6401a8c0@penguin> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 22 Apr 2002, Taylor Dondich wrote: > Yes, but can your system automatically add/delete/modify zone files and > reload the name server? I don't know of a system that can do this properly. > Any ideas? We use BIND 9 and large piles of custom Perl to serve several thousand zones and hundreds of thousands of users dynamically without a problem. It can certainly be done; check BIND 8 and 9 contrib directories, too, there are several database-based zone items in there, I believe. Tim -- Tim Wilde twilde@dyndns.org Systems Administrator Dynamic DNS Network Services http://www.dyndns.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14:45:11 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.test123.lv (goblins.latnet.lv [159.148.108.149]) by hub.freebsd.org (Postfix) with SMTP id E4E3137BE9F for ; Mon, 22 Apr 2002 14:43:10 -0700 (PDT) Received: (qmail 82591 invoked from network); 22 Apr 2002 20:10:11 -0000 Received: from localhost (HELO box) (127.0.0.1) by mail.test123.lv with SMTP; 22 Apr 2002 20:10:11 -0000 Message-ID: <000d01c1ea3a$07ec3d50$1baee850@box> From: "Artis Caune" To: Subject: test, sorryy Date: Mon, 22 Apr 2002 23:12:30 +0300 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-4" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14:55: 9 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bhwg-mimeswpr.bhwg.com (mailgate.bhwg.com [194.217.231.231]) by hub.freebsd.org (Postfix) with ESMTP id 7F4B637C032 for ; Mon, 22 Apr 2002 14:52:06 -0700 (PDT) Received: from bhwgexchange.bhwg.com (unverified) by bhwg-mimeswpr.bhwg.com (Content Technologies SMTPRS 4.2.10) with ESMTP id ; Mon, 22 Apr 2002 22:57:10 +0100 Received: from [172.20.101.175] (172.20.101.175 [172.20.101.175]) by bhwgexchange.bhwg.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 247YR4F9; Mon, 22 Apr 2002 22:51:30 +0100 Date: Mon, 22 Apr 2002 22:51:21 +0100 (BST) From: Shashi Dookhee X-Sender: dookhee.s@emerald.traffic.co.uk To: Tim Wilde Cc: Taylor Dondich , isp@FreeBSD.ORG Subject: Re: What's a good name server daemon for virtual hosting? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org BIND + PERL is definately the best :) S. On Mon, 22 Apr 2002, Tim Wilde wrote: > On Mon, 22 Apr 2002, Taylor Dondich wrote: > > > Yes, but can your system automatically add/delete/modify zone files and > > reload the name server? I don't know of a system that can do this properly. > > Any ideas? > > We use BIND 9 and large piles of custom Perl to serve several thousand > zones and hundreds of thousands of users dynamically without a problem. > It can certainly be done; check BIND 8 and 9 contrib directories, too, > there are several database-based zone items in there, I believe. > > Tim > > ======================================================== Proximity London Limited 191 Old Marylebone Road London NW1 5DW United Kingdom Registered number: 2617496 Registered in England Tel: +44 (0) 20 7298 1000 Fax: +44 (0) 20 7298 1001 This email its contents and any files or images with it are intended solely for the addressee(s) and are confidential. If you have received this email in error you may not copy or use the contents, attachments or information in any way. Please destroy it and contact the sender on the number printed above, via the Proximity London switchboard or via email return. DISCLAIMER Material contained in this email may be copyright material of Proximity London or protected by other intellectual property rights. It may only be reproduced with the express permission of Proximity London. Proximity London does not accept responsibility for any changes made to this email by unauthorised parties after it was sent. Whilst Proximity London runs antivirus software on all Internet emails it is not liable for any loss or damage caused by an infected email. The recipient is advised to run their own antivirus software. All information contained in this email has been prepared using information believed by the author to be reliable and accurate, but Proximity London makes no warranty as to accuracy and completeness. Any opinions expressed in this email are those of the author and do not necessarily reflect the opinions of Proximity London or its affiliates. ========================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 14:57:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from arnold.neland.dk (0x3ef312f8.albnxx2.adsl.tele.dk [62.243.18.248]) by hub.freebsd.org (Postfix) with ESMTP id 00A3037C04C for ; Mon, 22 Apr 2002 14:52:29 -0700 (PDT) Received: from gina ([192.168.5.109]) by arnold.neland.dk (8.12.2/8.12.2) with SMTP id g3MLqENN017847; Mon, 22 Apr 2002 23:52:15 +0200 (CEST) (envelope-from leifn@neland.dk) Message-ID: <040c01c1ea47$fa8ff300$6d05a8c0@neland.dk> From: "Leif Neland" To: "Taylor Dondich" , References: <000f01c1ea2a$5c832870$6401a8c0@penguin> <03af01c1ea41$b1a46780$6d05a8c0@neland.dk> <002101c1ea44$399d4b50$6401a8c0@penguin> Subject: Re: What's a good name server daemon for virtual hosting? Date: Mon, 22 Apr 2002 23:51:58 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: base64 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org PiA+IEJpbmQgd29ya3Mgd2l0aG91dCBwcm9ibGVtcyBmb3IgdXMuDQo+ID4NCj4gPiBXaGF0IGFy ZSB5b3VyIHByb2JsZW1zPw0KDQoNCj4gWWVzLCBidXQgY2FuIHlvdXIgc3lzdGVtIGF1dG9tYXRp Y2FsbHkgYWRkL2RlbGV0ZS9tb2RpZnkgem9uZSBmaWxlcyBhbmQNCj4gcmVsb2FkIHRoZSBuYW1l IHNlcnZlcj8gIEkgZG9uJ3Qga25vdyBvZiBhIHN5c3RlbSB0aGF0IGNhbiBkbyB0aGlzIHByb3Bl cmx5Lg0KPiBBbnkgaWRlYXM/DQo+IA0KSG9wZWZ1bGx5IG5vIHN5c3RlbSBkb2VzIHRoYXQgYXV0 b21hdGljYWxseS4NCg0KSSBob3BlIHlvdSBzdGlsbCBuZWVkIHNhbGVzcGVvcGxlIGFuZCBvcGVy YXRvcnMgdG8ga25vdyB3aGF0IGlzIHRvIGJlIGNoYW5nZWQgOi0pDQoNCldoYXQgZXZlciBuYW1l c2VydmVyIHlvdSBhcmUgdXNpbmcsIGNvbmZpZ2ZpbGVzIHN0aWxsIG5lZWQgdG8gYmUgY2hhbmdl ZC4NCllvdSBhbHNvIG5lZWQgdG8gbW9kaWZ5IHRoZSBjb25maWdmaWxlcyBmb3IgdGhlIHdlYnNl cnZlciBhbmQvb3IgbWFpbHNlcnZlciwgc28gaXQgaXMgdXAgdG8geW91IGlmIHlvdSB3YW50IHRv IGRvIHRoYXQgbWFudWFsbHkgb3Igd3JpdGUgc2NyaXB0cyB0byBhdXRvbWF0ZSB0aGUgdXBkYXRl cy4NClNvIHdoaWxlIHlvdSBhcmUgd3JpdGluZyBzY3JpcHRzIHRvIGRvIHdlYnNlcnZlci9tYWls c2VydmVyIHVwZGF0ZXMsIGRvaW5nIG5hbWVzZXJ2ZXJ1cGRhdGVzIHRvbyBhcmUgbm8gYmlnIGRl YWwuDQoNCkxlaWYNCg0K To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 15:17:16 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web14806.mail.yahoo.com (web14806.mail.yahoo.com [216.136.224.222]) by hub.freebsd.org (Postfix) with SMTP id 8064737C73C for ; Mon, 22 Apr 2002 15:07:47 -0700 (PDT) Message-ID: <20020422203149.15934.qmail@web14806.mail.yahoo.com> Received: from [213.19.151.12] by web14806.mail.yahoo.com via HTTP; Mon, 22 Apr 2002 13:31:49 PDT Date: Mon, 22 Apr 2002 13:31:49 -0700 (PDT) From: ali nasseh Subject: subscription To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hi, pleasz subscribe me for freebsd-isp list a. nasseh __________________________________________________ Do You Yahoo!? Yahoo! Games - play chess, backgammon, pool and more http://games.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 15:39:57 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web1.nexusinternetsolutions.net (web1.nexusinternetsolutions.net [206.47.131.12]) by hub.freebsd.org (Postfix) with SMTP id 36AA437C33D for ; Mon, 22 Apr 2002 15:26:50 -0700 (PDT) Received: (qmail 92543 invoked from network); 22 Apr 2002 22:38:26 -0000 Received: from unknown (HELO ws1) (24.102.18.54) by web1.nexusinternetsolutions.net with SMTP; 22 Apr 2002 22:38:26 -0000 From: "Dave" To: "Taylor Dondich" , "Leif Neland" Cc: Subject: RE: What's a good name server daemon for virtual hosting? Date: Mon, 22 Apr 2002 18:30:49 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <002101c1ea44$399d4b50$6401a8c0@penguin> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org unless you have an aversion to Dan... check the djbdns package. arguably more efficient to use and maintain than bind, easy to integrate into database, export and reload without affecting uptime... Dave >-----Original Message----- >From: owner-freebsd-isp@FreeBSD.ORG >[mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Taylor Dondich >Sent: Monday, April 22, 2002 5:25 PM >To: Leif Neland; isp@freebsd.org >Subject: Re: What's a good name server daemon for virtual hosting? > > >Yes, but can your system automatically add/delete/modify zone files and >reload the name server? I don't know of a system that can do this properly. >Any ideas? > >Taylor Dondich > > >----- Original Message ----- >From: "Leif Neland" >To: "Taylor Dondich" ; >Sent: Monday, April 22, 2002 2:07 PM >Subject: Re: What's a good name server daemon for virtual hosting? > > >> Bind works without problems for us. >> >> What are your problems? >> >> ----- Original Message ----- >> From: "Taylor Dondich" >> To: >> Sent: Monday, April 22, 2002 8:20 PM >> Subject: What's a good name server daemon for virtual hosting? >> >> >> > I understand that bind out of the box isn't very good for virtual >hosting >> > because of the complexity of the zone files and how you can't do dynamic >> > look ups well. I would think that a database implementation would make >this >> > easier. >> > >> > What is everyone's name server daemon of choice and what would be good >for a >> > virtual hosting scenario where I'm hosting multiple domains that are >> > added/removed/edited each day? >> > >> > Taylor Dondich >> > >> > >> > To Unsubscribe: send mail to majordomo@FreeBSD.org >> > with "unsubscribe freebsd-isp" in the body of the message >> > >> N…'²æìr¸›zǧvf¢–Ú&j:+v‰¨·ž è® "¶§²æìr¸›yúÞy»ŠÊbžØ^n‡r¡ûazg¬±¨ > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 16: 4:10 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.imach.com (barbwire.iMach.com [206.127.77.82]) by hub.freebsd.org (Postfix) with ESMTP id 4FFD937B4F0 for ; Mon, 22 Apr 2002 15:47:20 -0700 (PDT) Received: from localhost (forrestc@localhost) by workhorse.imach.com (8.11.6/8.11.6) with ESMTP id g3MGh8f75963; Mon, 22 Apr 2002 16:43:08 GMT (envelope-from forrestc@imach.com) Date: Mon, 22 Apr 2002 16:43:08 +0000 (GMT) From: "Forrest W. Christian" To: Leif Neland Cc: Taylor Dondich , Subject: Re: What's a good name server daemon for virtual hosting? In-Reply-To: <040c01c1ea47$fa8ff300$6d05a8c0@neland.dk> Message-ID: <20020422164016.C75626-100000@workhorse.imach.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 22 Apr 2002, Leif Neland wrote: > > Yes, but can your system automatically add/delete/modify zone files and > > reload the name server? I don't know of a system that can do this properly. I run a secondary DNS service at http://www.backupdns.com 100% bind. We generate the config files automagically via perl being driven from a mysql server. The customers can add/remove their domains through a web interface, and all the changes take place automatically. No system admin intervention required. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Mon Apr 22 16:42: 8 2002 Delivered-To: freebsd-isp@freebsd.org Received: from tuxcom.net.mx (ns.tuxcom.net.mx [148.223.149.177]) by hub.freebsd.org (Postfix) with SMTP id 0787D37B64B for ; Mon, 22 Apr 2002 16:41:32 -0700 (PDT) Received: (qmail 90756 invoked from network); 22 Apr 2002 18:41:09 -0500 Received: from home.tuxcom.net.mx (HELO tuxcom.net.mx) (10.0.0.253) by tux-33.tuxcom.net.mx with SMTP; 22 Apr 2002 18:41:09 -0500 Message-ID: <3CC49F9D.A7E356C3@tuxcom.net.mx> Date: Mon, 22 Apr 2002 18:41:17 -0500 From: Michael =?iso-8859-1?Q?Sch=F6nsee?= X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: Dave Cc: Taylor Dondich , Leif Neland , isp@freebsd.org Subject: Re: What's a good name server daemon for virtual hosting? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dave wrote: > > unless you have an aversion to Dan... check the djbdns package. arguably more > efficient to use and maintain than bind, easy to integrate into database, export > and reload without affecting uptime... > > Dave There is on freshmeat an web admin package: dns2sql for tinydns You can even create macros for simplifying tasks. Saludos To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 5: 8:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from thoth.sbs.de (thoth.sbs.de [192.35.17.2]) by hub.freebsd.org (Postfix) with ESMTP id 3F99337B400 for ; Tue, 23 Apr 2002 05:08:52 -0700 (PDT) Received: from mail1.siemens.de (mail1.siemens.de [139.23.33.14]) by thoth.sbs.de (8.11.6/8.11.6) with ESMTP id g3NC8ov15541; Tue, 23 Apr 2002 14:08:50 +0200 (MEST) Received: from curry.mchp.siemens.de (curry.mchp.siemens.de [139.25.42.7]) by mail1.siemens.de (8.11.6/8.11.6) with ESMTP id g3NC8nW18446; Tue, 23 Apr 2002 14:08:50 +0200 (MEST) Received: (from localhost) by curry.mchp.siemens.de (8.12.2/8.12.2) id g3NC8nRl052937; Date: Tue, 23 Apr 2002 14:08:49 +0200 From: Andre Albsmeier To: "Patrick O. Fish" Cc: freebsd-isp@FreeBSD.ORG Subject: Re: sendmail virus scanning Message-ID: <20020423140849.A92390@curry.mchp.siemens.de> References: <012f01c1e8b5$d56b2ce0$0300a8c0@zeus> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <012f01c1e8b5$d56b2ce0$0300a8c0@zeus>; from patrick@pwhsnet.com on Sat, Apr 20, 2002 at 02:53:40PM -0700 X-Echelon: BND CIA NSA Mossad KGB MI6 IRA detonator nuclear assault strike X-RAVMilter-Version: 8.3.1(snapshot 20020109) (curry.mchp.siemens.de) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sat, 20-Apr-2002 at 14:53:40 -0700, Patrick O. Fish wrote: > I'm looking for a sendmail addon to scan each e-mail (at least incoming, but > incoming and outgoing preferred) for virii's. I've heard that they don't > work well on FreeBSD? any ideas welcome. I love RAV's native version for FreeBSD using the sendmail milter interface. http://www.ravantivirus.com/ -Andre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 7:11:48 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by hub.freebsd.org (Postfix) with ESMTP id B5B4837B416 for ; Tue, 23 Apr 2002 07:11:31 -0700 (PDT) Received: from wash by ns2.wananchi.com with local (Exim 3.36 #1 (FreeBSD)) id 1700zZ-000EHD-00 for ; Tue, 23 Apr 2002 17:10:01 +0300 Date: Tue, 23 Apr 2002 17:10:01 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Subject: All-in-one mail solution, maybe?? Message-ID: <20020423141001.GA53552@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.25i X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Perfect day for scrubbing the floor and other exciting things. X-Operating-System: FreeBSD 4.5-STABLE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt http://www.mutt.org/ X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 5:08PM up 45 days, 59 mins, 4 users, load averages: 0.47, 0.33, 0.27 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is anyone on this list using the combination of applications listed in http://www.limacute.org/index.php ??? I'd be interested in tapping on your experience with the setup process, esp the LDAP part ;-) -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: 254 2 313985-9 Fax: 254 2 313922 so I installed FreeBSD." GSM: 254 72 743 223 GSM: 254 733 744 121 This sig is McQ! :-) A jury consists of 12 persons chosen to decide who has the better lawyer. -- Robert Frost To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 10:45:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail4.cableaz.com (mail4.cableaz.com [66.218.238.20]) by hub.freebsd.org (Postfix) with ESMTP id 2A92C37B41C for ; Tue, 23 Apr 2002 10:45:56 -0700 (PDT) Received: from caz ([66.218.238.73]) by mail4.cableaz.com (8.11.3/8.11.3) with SMTP id g3NHcsF58479 for ; Tue, 23 Apr 2002 10:38:55 -0700 (MST) (envelope-from jeremy@cableaz.com) Message-ID: <001b01c1eaee$43946800$49eeda42@caz> From: "Jeremy Buckner" To: Subject: Backup Solution/Help Date: Tue, 23 Apr 2002 10:42:39 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have been assigned to implement a backup solution for my company. Most of our servers are FreeBSD 4.3 and higher. The problem is that there are also some WIN 2000 and NT servers. Can anyone recommend a solution that would allow me to backup across this multi-platform environment? I've heard Veritas can do this but I haven't looked into it yet. I don't care if I have to back it to tape or SCSI drive arrays...whatever. I just need to know what some of my options are and to try to make it as automated and dummy proof as possible, as I will not always be the one doing it. Thanks in advance. Jeremy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 11:16: 7 2002 Delivered-To: freebsd-isp@freebsd.org Received: from catalyst.sasknow.net (catalyst.sasknow.net [207.195.92.130]) by hub.freebsd.org (Postfix) with ESMTP id 9451A37B404 for ; Tue, 23 Apr 2002 11:16:02 -0700 (PDT) Received: from localhost (ryan@localhost) by catalyst.sasknow.net (8.11.6/8.11.6) with ESMTP id g3NIFxd07999; Tue, 23 Apr 2002 12:15:59 -0600 (CST) (envelope-from ryan@sasknow.com) X-Authentication-Warning: catalyst.sasknow.net: ryan owned process doing -bs Date: Tue, 23 Apr 2002 12:15:59 -0600 (CST) From: Ryan Thompson To: Taylor Dondich Cc: isp@FreeBSD.ORG Subject: Re: What's a good name server daemon for virtual hosting? In-Reply-To: <000f01c1ea2a$5c832870$6401a8c0@penguin> Message-ID: <20020423114546.J4042-100000@catalyst.sasknow.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Taylor Dondich wrote to isp@FreeBSD.ORG: > I understand that bind out of the box isn't very good for virtual > hosting because of the complexity of the zone files and how you > can't do dynamic look ups well. I would think that a database > implementation would make this easier. > > What is everyone's name server daemon of choice and what would be > good for a virtual hosting scenario where I'm hosting multiple > domains that are added/removed/edited each day? Reading this thread, I see a lot of good suggestions with respect to BIND. If you just need to do quick virtual hosting for a bunch of www.domain.com sites on a small number of IPs (i.e., name based virtual hosting), you can just use something as braindead as: echo 'zone \"$dom\" { type master; file \"s/template12\"; }' >> /etc/named.conf ndc reload $dom (Needless to say, you'll certainly want appropriate error checking :-) Where s/template12 is something like: $TTL 43600 @ IN SOA primary.yourdomain.com. host.yourdomain.com. ( 1 ; Serial 3600 ; Refresh 43600 ; Retry 604800 ; Expire 43600 ) ; Minimum TTL ; Nameservers ----------------------------------------------------------------- IN NS primary.yourdomain.com. IN NS secondary.yourdomain.com. ; Host addresses -------------------------------------------------------------- IN A 192.168.0.12 IN MX 10 mx1.yourdomain.com. IN MX 20 mx2.yourdomain.com. www IN A 192.168.0.12 ftp IN CNAME ftp.yourdomain.com. That way, you don't have to edit any zone files. yourdomain.com is YOUR (hosting company's) zone. By virtue of the @ SOA, this template automatically picks up the customers' zone from the $dom inserted in named.conf. So, www.$dom resolves to 192.168.0.12. We have scads of these domains. Less than 1% of our domains require their own zone file. If, once in a blue moon, the IP of the web server changes, tell your boss it'll take half an hour to update the DNS for 100,000 zones. Just update the one zone file, bump the serial, call ndc reload, and spend the next 25 minutes making yourself a nice loose meat sandwich. :-) We use something more complicated, as we have multiple servers, and a few different templates based on different customer types... but it's still based on this, and there aren't many permutations. This approach can later be augmented with MySQL, a web interface, etc, etc... :-) And you don't end up having 100,000 mostly identical zone files laying around that all need to be updated the next time you add a new MX, or renumber your server(s). :-) Hope this helps, - Ryan -- Ryan Thompson SaskNow Technologies - http://www.sasknow.com 901 1st Avenue North - Saskatoon, SK - S7K 1Y4 Tel: 306-664-3600 Fax: 306-664-3630 Saskatoon Toll-Free: 877-727-5669 (877-SASKNOW) North America To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 14:47:41 2002 Delivered-To: freebsd-isp@freebsd.org Received: from h38n2fls34o1000.telia.com (h38n2fls34o1000.telia.com [213.64.210.38]) by hub.freebsd.org (Postfix) with ESMTP id 7D0B437B41C for ; Tue, 23 Apr 2002 14:47:36 -0700 (PDT) Received: from veidit.net (Laptop [192.168.1.96]) (authenticated bits=0) by h38n2fls34o1000.telia.com (8.12.2/8.12.2) with ESMTP id g3NLlTq5027452 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NO) for ; Tue, 23 Apr 2002 23:47:33 +0200 (CEST) Message-ID: <3CC5D671.8000804@veidit.net> Date: Tue, 23 Apr 2002 23:47:29 +0200 From: John Angelmo User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0rc1) Gecko/20020417 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: bandwithlimiting in apache Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello I wonder if any one here has worked with limiting bandwith in namedbased virtualhosting in apache? What programs do you use and what would you recomend? /John To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 15:21: 4 2002 Delivered-To: freebsd-isp@freebsd.org Received: from joshua.site-fx.net (ajhm54hby52pi.bc.hsia.telus.net [66.183.21.192]) by hub.freebsd.org (Postfix) with ESMTP id 2FFF737B41B for ; Tue, 23 Apr 2002 15:21:00 -0700 (PDT) Received: from comp3.int.site-fx.net (comp254.int.site-fx.net [192.168.1.254]) by joshua.site-fx.net (8.12.2/8.12.1) with ESMTP id g3NMIhPv021068; Tue, 23 Apr 2002 15:18:45 -0700 (PDT) Subject: Re: bandwithlimiting in apache From: "James A. Peltier" To: John Angelmo Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <3CC5D671.8000804@veidit.net> References: <3CC5D671.8000804@veidit.net> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2-5mdk Date: 23 Apr 2002 15:20:50 -0700 Message-Id: <1019600453.2103.28.camel@agent-orange.int.site-fx.net> Mime-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org check out mod_bandwidth - James On Tue, 2002-04-23 at 14:47, John Angelmo wrote: > Hello > > I wonder if any one here has worked with limiting bandwith in namedbased > virtualhosting in apache? > What programs do you use and what would you recomend? > > /John > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 15:21:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mailout04.sul.t-online.com (mailout04.sul.t-online.com [194.25.134.18]) by hub.freebsd.org (Postfix) with ESMTP id 4A88D37B43C for ; Tue, 23 Apr 2002 15:21:31 -0700 (PDT) Received: from fwd08.sul.t-online.de by mailout04.sul.t-online.com with smtp id 1708Zp-0001LF-0D; Wed, 24 Apr 2002 00:15:57 +0200 Received: from Turing.picht.org (320017162287-0001@[80.133.189.244]) by fmrl08.sul.t-online.com with esmtp id 1708Zi-0jzZAWC; Wed, 24 Apr 2002 00:15:50 +0200 Received: from Turing.picht.org (localhost.picht.org [127.0.0.1]) by Turing.picht.org (8.12.3/8.12.3/Debian -5) with ESMTP id g3NMFgGX002570 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=OK); Wed, 24 Apr 2002 00:15:42 +0200 Received: (from hans@localhost) by Turing.picht.org (8.12.3/8.12.3/Debian -5) id g3NMFf2b002568; Wed, 24 Apr 2002 00:15:41 +0200 Date: Wed, 24 Apr 2002 00:15:41 +0200 From: Hans-Joachim Picht To: John Angelmo Cc: freebsd-isp@FreeBSD.ORG Subject: Re: bandwithlimiting in apache Message-ID: <20020423221541.GB2474@lnxce.net> References: <3CC5D671.8000804@veidit.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3CC5D671.8000804@veidit.net> Organisation: LNXCE Linux-Consulting-Europe GbR X-Sender: 320017162287-0001@t-dialin.net Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Apr 23, 2002 at 11:47:29PM +0200, John Angelmo wrote: Hello, > I wonder if any one here has worked with limiting bandwith in namedbased > virtualhosting in apache? > What programs do you use and what would you recomend? have a look at http://www.cohprog.com/v3/bandwidth/doc-en.html With best regards Hans -- Work: Consultant with Linux Consulting Europe http://www.lnxce.net Vogelhecke 2 D - 35447 Reiskirchen Tel: +491751629201 Fax: +49640862649 Germany Private: hans@picht.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Tue Apr 23 17:58:38 2002 Delivered-To: freebsd-isp@freebsd.org Received: from dns1.digitalglobe.com (dns1.digitalglobe.com [205.166.175.34]) by hub.freebsd.org (Postfix) with ESMTP id DCEBC37B404; Tue, 23 Apr 2002 17:58:30 -0700 (PDT) Received: from lohr.digitalglobe.com (lohr.digitalglobe.com [10.10.11.18]) by dns1.digitalglobe.com (8.11.6/8.11.4) with ESMTP id g3O0wI833642; Tue, 23 Apr 2002 18:58:19 -0600 (MDT) Subject: Re: Secure Shell/FTP Questions From: John-David Childs To: Scott Pilz Cc: freebsd-questions@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG In-Reply-To: <20020417192702.P43790-100000@mail.tznet.com> References: <20020417192702.P43790-100000@mail.tznet.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 23 Apr 2002 18:58:18 -0600 Message-Id: <1019609899.26506.124.camel@lohr.digitalglobe.com> Mime-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 2002-04-17 at 18:32, Scott Pilz wrote: > > I have two questions that no one seems to be able to answer for me > - nor can I find any straight forward answers over the internet. This is > my last hope . . . > > #1: sshd is enabled, and works - however, to my understanding you > cannot have secure ftp connections chrooted directly to the users home > directory like you can on normal FTP by putting the username in > /etc/ftpchroot. Correct. > Can this be done? Yes. The easiest way to do it is to install the SSH Software from the official SSH Communications Security Corp (SSH.COM, not OpenSSH.COM) package (/usr/ports/security/ssh2 in a recent ports build). This will install a program called ssh-dummy-shell, which should be the shell for all users on your system. You must be able to quality for the non-commercial version license. From the license: To qualify for a Non-Commercial Version License, You must: (1) use the Software solely on a system under the Linux, FreeBSD, NetBSD, or OpenBSD operating system (whether for commercial or non-commercial use), or (2) use the Software for non-commercial purposes as defined herein and be a Non-Commercial Entity as defined herein, or (3) be an University User as defined herein, or (4) be an Excluded Contractor as defined herein. Here's a link to a FAQ on the subject of CHROOTing sftp on Linux... http://www.ssh.com/faq/index.cfm?id=687 In essence, you must build a static SSHd, put your sftp-users (or all users) in the same group, and add that group to the sshd2_config file (ChRootGroup ) ============================ If you want to do this with OpenSSH, then you probably need to build your own ssh-dummy-shell (or something equivalent). All it really needs to do is call chroot and exec sftp-server (so sftp-server has to be available in the chrooted environment, and has to be a statically-linked binary). A google search will come up with at least one example of this (I was researching this very issue a few weeks ago). Is there another freeware program for > BSD that supports SSH/FTP that can do this? > > Lastly, what are most ISP's doing as far as secure shells and what > not? Is this the popular way of doing it, or is there a better way out > there? > Currently, shells on the systems I admin are set to either /bin/false or /usr/bin/passwd. I'm looking at doing sftp-dummy-shell myself though on a new machine used for S/FTP. > thanks in advance, > > Scott > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 1:19:59 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.voljatel.si (mail.voljatel.si [217.72.64.15]) by hub.freebsd.org (Postfix) with ESMTP id A7A4537B420 for ; Wed, 24 Apr 2002 01:19:55 -0700 (PDT) Received: from pxna.hide.voljatel.si (pehta.voljatel.si [217.72.64.8]) by mail.voljatel.si (Postfix) with SMTP id 0BA0053503 for ; Wed, 24 Apr 2002 10:19:41 +0200 (CEST) Date: Wed, 24 Apr 2002 10:22:49 +0200 From: Damir Horvat To: freebsd-isp@freebsd.org Subject: Coda filesystem Message-Id: <20020424102249.4d6c6f34.damir@voljatel.si> Organization: Voljatel telekomunikacije d.d. X-Mailer: Sylpheed version 0.7.2 (GTK+ 1.2.10; i386-portbld-freebsd4.4) X-Operating-System: home brewed unix Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello! I've been reading about Coda filesystem (http://www.coda.cs.cmu.edu/). It sound great what they're wrote there. And it also says, it works with FreeBSD. So, has someone tryed this peace of software? Opinions? Problems? Is it stable enough for production? Regards, Damir Horvat -- ................................. Damir Horvat System administrator VOLJATEL telekomunikacije d.d. Smartinska 106 SI-1000 Ljubljana Slovenia . Tel. +386.(0)1.5875 832 Fax. +386.(0)1.5875 899 www.voljatel.si E-mail: damir.horvat@voljatel.si ................................. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 4:21:11 2002 Delivered-To: freebsd-isp@freebsd.org Received: from astra.bignet.ru (mail.bignet.ru [80.82.160.5]) by hub.freebsd.org (Postfix) with SMTP id BDB6A37B421 for ; Wed, 24 Apr 2002 04:21:07 -0700 (PDT) Received: (qmail 3396 invoked from network); 24 Apr 2002 11:19:34 -0000 Received: from hq.bignet.ru (HELO 192.168.14.13) (80.82.160.13) by astra.bignet.ru with SMTP; 24 Apr 2002 11:19:34 -0000 Date: Wed, 24 Apr 2002 15:18:11 +0400 From: Michael X-Mailer: The Bat! (v1.60) X-Priority: 3 (Normal) Message-ID: <6522687082.20020424151811@bignet.ru> To: freebsd-isp@freebsd.org Subject: Apache & suexec MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello freebsd-isp, After installing Apache from ports and configuring virtual hosts to use different User/Group IDs, it shows at startup: Warning: User directive in requires SUEXEC wrapper. Warning: Group directive in requires SUEXEC wrapper. for eash virtual host. What's wrong? Or, what i miss when configuring Apache from /usr/ports/www/apache13 ? -- Best regards, Michael To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 5:32:17 2002 Delivered-To: freebsd-isp@freebsd.org Received: from netra.netcologne.de (netra.netcologne.de [194.8.194.106]) by hub.freebsd.org (Postfix) with ESMTP id 545CB37B41F for ; Wed, 24 Apr 2002 05:32:09 -0700 (PDT) Received: from emre.de (sys-125.netcologne.de [194.8.193.125]) by netra.netcologne.de (8.9.1/8.9.1) with ESMTP id OAA00869 for ; Wed, 24 Apr 2002 14:30:57 +0200 (MET DST) X-Ncc-Regid: de.netcologne Message-ID: <3CC6A5D2.3070701@emre.de> Date: Wed, 24 Apr 2002 14:32:18 +0200 From: Emre Bastuz User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; de-DE; rv:0.9.2) Gecko/20010726 Netscape6/6.1 X-Accept-Language: de-DE MIME-Version: 1.0 To: freebsd-isp@freebsd.org Subject: HTTP Load Balancing and Availability Solutions Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I´m looking for a software that does the job of accepting HTTP request as a webserver and then distributes these to other servers - depending on which one is currently up. We have a customer who wants some kind of failsafe solution. Load balacncing is not the main issue - instead we want to configure one main webserver, in case this one fails the software is supposed to switch over to the other webserver for HTML file retrieval. After some quick and dirty lookup in Google I found this software called "FreeQualizer" (http://www.coyotepoint.com), which sounds nice but is not free. If it´s remarkably good, it might be worth giving a try. Anyone got any experience with this one ? Before chosing this one though, I´d like to know if there are other well known and reliable solutions out there. Apache with mod_proxy/mod_rewrite also seems like an alternative (I found this interesting article on http://www.devshed.com/Talk/Books/ProApache/page6.html) - I´m not sure if the mod_proxy/mod_rewrite stuff only works for load balancing or also can handle outages of the 'backend' servers. Any suggestions ? Ideas ? URL´s ? :) Thanks, Emre -- Emre Bastuz info@emre.de http://www.emre.de UIN: 561260 PGP Key ID: 0xEA0E2CA1 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 5:49:56 2002 Delivered-To: freebsd-isp@freebsd.org Received: from xyzzy.intranet.snsonline.net (dsl-210-15-243-74.Melbourne.netspace.net.au [210.15.243.74]) by hub.freebsd.org (Postfix) with ESMTP id EEBA837B419 for ; Wed, 24 Apr 2002 05:49:44 -0700 (PDT) Received: from xyzzy.intranet.snsonline.net (localhost [127.0.0.1]) by xyzzy.intranet.snsonline.net (8.12.3/8.12.3) with ESMTP id g3OCm8kS038295; Wed, 24 Apr 2002 22:48:08 +1000 (EST) (envelope-from msergeant@looksmart.net) Received: (from sarge@localhost) by xyzzy.intranet.snsonline.net (8.12.3/8.12.3/Submit) id g3OCm2g5038294; Wed, 24 Apr 2002 22:48:02 +1000 (EST) X-Authentication-Warning: xyzzy.intranet.snsonline.net: sarge set sender to msergeant@looksmart.net using -f Subject: Re: HTTP Load Balancing and Availability Solutions From: Mark Sergeant To: Emre Bastuz Cc: freebsd-isp@freebsd.org In-Reply-To: <3CC6A5D2.3070701@emre.de> References: <3CC6A5D2.3070701@emre.de> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Mailer: Ximian Evolution 1.0.3 Date: 24 Apr 2002 22:48:02 +1000 Message-Id: <1019652482.38204.4.camel@xyzzy.intranet.snsonline.net> Mime-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Depending on the nature of the project and the availability required I would only recommend a software based solution for a project that didn't have a requirement of more than 95% uptime, even with things like mod_proxy running on 1 web server you are still vulnerable if that one web server dies, as far as round robin dns goes this is a hack and should never be used in a production environment as due to the many broken clients around many will cache the first reply only and as such 1 web server will see a lot higher load than any others. My recommendation would be should it absolutely have to be done with software then go with the mod_proxy and a 1 hour ttl for your www address (anything less than an hour is usually ignored), this way a replacement box can take over the proxying server inside of an hour should there be any issues. Cheers, Mark On Wed, 2002-04-24 at 22:32, Emre Bastuz wrote: > Hi, >=20 > I=B4m looking for a software that does the job of accepting > HTTP request as a webserver and then distributes these > to other servers - depending on which one is currently up. >=20 > We have a customer who wants some kind of failsafe solution. > Load balacncing is not the main issue - instead we want to > configure one main webserver, in case this one fails the > software is supposed to switch over to the other webserver > for HTML file retrieval. >=20 > After some quick and dirty lookup in Google I found this > software called "FreeQualizer" (http://www.coyotepoint.com), > which sounds nice but is not free. >=20 > If it=B4s remarkably good, it might be worth giving a try. > Anyone got any experience with this one ? >=20 > Before chosing this one though, I=B4d like to know if there > are other well known and reliable solutions out there. >=20 > Apache with mod_proxy/mod_rewrite also seems like an alternative > (I found this interesting article on > http://www.devshed.com/Talk/Books/ProApache/page6.html) - I=B4m > not sure if the mod_proxy/mod_rewrite stuff only works for load > balancing or also can handle outages of the 'backend' servers. >=20 > Any suggestions ? Ideas ? URL=B4s ? :) >=20 > Thanks, >=20 > Emre >=20 >=20 > --=20 > Emre Bastuz > info@emre.de=20 > http://www.emre.de > UIN: 561260 PGP Key ID: 0xEA0E2CA1 >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message >=20 --=20 Mark Sergeant Senior Unix Systems Administrator =20 L=F4=F4kSmart International Pty. Ltd. Level 5/388 Lonsdale Street Melbourne, VIC, 3000 Australia=20 P. (03) 9648 2201=20 F. (03) 9648 2244=20 http://www.looksmart.com.au The referring document contains privileged and confidential information. If you are not the intended recipient you must not copy, distribute or take action with regards to the content, we request that you notify LookSmart International Pty. Ltd. immediately and remove all traces of this document.=20 Any views expressed in this message are those of the individual sender, except where they are specifically stated to be the views of LookSmart=20 International Pty. Ltd. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 6: 9:56 2002 Delivered-To: freebsd-isp@freebsd.org Received: from relay2.agava.net.ru (ofc.agava.net [195.161.118.6]) by hub.freebsd.org (Postfix) with ESMTP id 5B83C37B404 for ; Wed, 24 Apr 2002 06:09:50 -0700 (PDT) Received: from hellbell.domain (hellbell.domain [192.168.1.12]) by relay2.agava.net.ru (Postfix) with ESMTP id 1820266C08; Wed, 24 Apr 2002 16:39:30 +0400 (MSD) Received: from localhost (localhost [127.0.0.1]) by hellbell.domain (Postfix) with ESMTP id DA071CD63; Wed, 24 Apr 2002 16:39:29 +0400 (MSD) Date: Wed, 24 Apr 2002 16:39:29 +0400 (MSD) From: Alexey Zakirov X-X-Sender: To: Emre Bastuz Cc: Subject: Re: HTTP Load Balancing and Availability Solutions In-Reply-To: <3CC6A5D2.3070701@emre.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=KOI8-R Content-Transfer-Encoding: 8BIT Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 24 Apr 2002, Emre Bastuz wrote: > (I found this interesting article on > http://www.devshed.com/Talk/Books/ProApache/page6.html) - I´m > not sure if the mod_proxy/mod_rewrite stuff only works for load > balancing or also can handle outages of the 'backend' servers. > > Any suggestions ? Ideas ? URL´s ? :) /usr/ports/www/mod_backhand|/usr/local|Apache module that allows seamless redirection and load balancing of HTTP requests /usr/ports/www/eddie|/usr/local|Tool for building fault-tolerant redundant WWW servers *** WBR, Alexey Zakirov (frank@agava.com) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 6:22:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id D0B2337B41F for ; Wed, 24 Apr 2002 06:22:40 -0700 (PDT) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g3ODLQS86527 for freebsd-isp@freebsd.org; Wed, 24 Apr 2002 09:21:26 -0400 (EDT) (envelope-from bv) Date: Wed, 24 Apr 2002 09:21:25 -0400 From: Bill Vermillion To: freebsd-isp@freebsd.org Subject: Re: HTTP Load Balancing and Availability Solutions Message-ID: <20020424132125.GE85736@wjv.com> Reply-To: bv@wjv.com References: <3CC6A5D2.3070701@emre.de> <1019652482.38204.4.camel@xyzzy.intranet.snsonline.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1019652482.38204.4.camel@xyzzy.intranet.snsonline.net> User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Apr 24, 2002 at 22:48 , while impersonating an expert on the internet, Mark Sergeant sent this to stdout: > Depending on the nature of the project and the availability > required I would only recommend a software based solution for a > project that didn't have a requirement of more than 95% uptime, 95% UPTIME. That is only 51 out of 52 weeks/year. Even 99.999% is 8 hours down time per year. Five 9' is usually achievable with just good hw/sw design. My web server - though not heavily stressed is a 498 days 16:44 as I type this. > My recommendation would be should it absolutely have to be done with > software then go with the mod_proxy and a 1 hour ttl for your www > address (anything less than an hour is usually ignored), this way a > replacement box can take over the proxying server inside of an hour > should there be any issues. Would it not make sense to monitor the target machine and if/when it fails then just re-write the IP on the standby machine to achieve a fail-over scenario. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 6:27:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from kpax.icsmx.com (kpax.icsmx.com [200.33.246.13]) by hub.freebsd.org (Postfix) with ESMTP id C7A5B37B417 for ; Wed, 24 Apr 2002 06:27:47 -0700 (PDT) Received: from mipc.intranet.com.mx ([200.33.246.33]) by kpax.icsmx.com (8.11.6/8.11.6) with ESMTP id g3ODKdQ36714 for ; Wed, 24 Apr 2002 08:20:40 -0500 (CDT) (envelope-from jbiquez@icsmx.com) Message-Id: <5.1.0.14.2.20020424082236.03af0e40@icsmx.com> X-Sender: jbiquez@icsmx.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 24 Apr 2002 08:24:38 -0500 To: freebsd-isp@freebsd.org From: Jorge Biquez Subject: Re: HTTP Load Balancing and Availability Solutions In-Reply-To: <1019652482.38204.4.camel@xyzzy.intranet.snsonline.net> References: <3CC6A5D2.3070701@emre.de> <3CC6A5D2.3070701@emre.de> Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello. I'm doing a simple but effective load balancing on the DNS side but the=20 solution runs on Mac. I'm using QuickDNS from Men & Mice. Works nice and=20 you can have all the servers you want on the balance registers... btw, the= =20 version is the version that runs on Mac OS 9.x , they took out that feature= =20 on the Mac OS X version. Give it a try... JB At 22:48 24/04/02 +1000, you wrote: >Depending on the nature of the project and the availability required I >would only recommend a software based solution for a project that didn't >have a requirement of more than 95% uptime, even with things like >mod_proxy running on 1 web server you are still vulnerable if that one >web server dies, as far as round robin dns goes this is a hack and >should never be used in a production environment as due to the many >broken clients around many will cache the first reply only and as such 1 >web server will see a lot higher load than any others. > >My recommendation would be should it absolutely have to be done with >software then go with the mod_proxy and a 1 hour ttl for your www >address (anything less than an hour is usually ignored), this way a >replacement box can take over the proxying server inside of an hour >should there be any issues. > >Cheers, > >Mark > >On Wed, 2002-04-24 at 22:32, Emre Bastuz wrote: > > Hi, > > > > I=B4m looking for a software that does the job of accepting > > HTTP request as a webserver and then distributes these > > to other servers - depending on which one is currently up. > > > > We have a customer who wants some kind of failsafe solution. > > Load balacncing is not the main issue - instead we want to > > configure one main webserver, in case this one fails the > > software is supposed to switch over to the other webserver > > for HTML file retrieval. > > > > After some quick and dirty lookup in Google I found this > > software called "FreeQualizer" (http://www.coyotepoint.com), > > which sounds nice but is not free. > > > > If it=B4s remarkably good, it might be worth giving a try. > > Anyone got any experience with this one ? > > > > Before chosing this one though, I=B4d like to know if there > > are other well known and reliable solutions out there. > > > > Apache with mod_proxy/mod_rewrite also seems like an alternative > > (I found this interesting article on > > http://www.devshed.com/Talk/Books/ProApache/page6.html) - I=B4m > > not sure if the mod_proxy/mod_rewrite stuff only works for load > > balancing or also can handle outages of the 'backend' servers. > > > > Any suggestions ? Ideas ? URL=B4s ? :) > > > > Thanks, > > > > Emre > > > > > > -- > > Emre Bastuz > > info@emre.de > > http://www.emre.de > > UIN: 561260 PGP Key ID: 0xEA0E2CA1 > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > > >-- >Mark Sergeant >Senior Unix Systems Administrator > >L=F4=F4kSmart International Pty. Ltd. >Level 5/388 Lonsdale Street >Melbourne, VIC, 3000 >Australia >P. (03) 9648 2201 >F. (03) 9648 2244 >http://www.looksmart.com.au > >The referring document contains privileged and confidential information. >If >you are not the intended recipient you must not copy, distribute or take >action with regards to the content, we request that you notify LookSmart >International Pty. Ltd. immediately and remove all traces of this >document. >Any views expressed in this message are those of the individual sender, >except where they are specifically stated to be the views of LookSmart >International Pty. Ltd. > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 7: 1:26 2002 Delivered-To: freebsd-isp@freebsd.org Received: from xyzzy.intranet.snsonline.net (dsl-210-15-243-74.Melbourne.netspace.net.au [210.15.243.74]) by hub.freebsd.org (Postfix) with ESMTP id 6E4FC37B417 for ; Wed, 24 Apr 2002 07:01:20 -0700 (PDT) Received: from xyzzy.intranet.snsonline.net (localhost [127.0.0.1]) by xyzzy.intranet.snsonline.net (8.12.3/8.12.3) with ESMTP id g3ODxikS038672; Wed, 24 Apr 2002 23:59:44 +1000 (EST) (envelope-from msergeant@looksmart.net) Received: (from sarge@localhost) by xyzzy.intranet.snsonline.net (8.12.3/8.12.3/Submit) id g3ODxaRg038671; Wed, 24 Apr 2002 23:59:36 +1000 (EST) X-Authentication-Warning: xyzzy.intranet.snsonline.net: sarge set sender to msergeant@looksmart.net using -f Subject: Re: HTTP Load Balancing and Availability Solutions From: Mark Sergeant To: bv@wjv.com Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <20020424132125.GE85736@wjv.com> References: <3CC6A5D2.3070701@emre.de> <1019652482.38204.4.camel@xyzzy.intranet.snsonline.net> <20020424132125.GE85736@wjv.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Mailer: Ximian Evolution 1.0.3 Date: 24 Apr 2002 23:59:36 +1000 Message-Id: <1019656776.38204.17.camel@xyzzy.intranet.snsonline.net> Mime-Version: 1.0 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org 99.999 is less than an hours down time per year which running off one web server is easily achievable, even with monitoring, replacement hardware etc on hand it will still take a while @ 3am when something goes wrong for a person to be paged, getup, ascertain problem, pull in redundant hardware to do the web serving etc. This also doesn't take into account a monthly patch schedule for whichever OS running whichever software. Other things to take into account are network outages, mis-configurations / patches going wrong etc. When running a production environment with aggressive uptime requirements and also having things rolled out and changed on a daily basis the only true way to achieve the required uptime is via hardware load balancing and redundant links / redundant hardware. I run a web hosting company which guarantees 95% uptime to its clients for normal everyday web hosting which is plenty for most companies and enables me to take machines down every month for patches, upgrades and also covers for the other unfortunate times as I don't have access to the noc 24/7 without paying ridiculous call out fees. I also in my day job manage 3 web farms on 2 continents providing a 99.999% uptime guarantee and the only thing that lets me sleep at night is the fact hardware load balancing and redundant machines / load balancers are in place. Just my 0.02 cents :) On Wed, 2002-04-24 at 23:21, Bill Vermillion wrote: > On Wed, Apr 24, 2002 at 22:48 , while impersonating an expert on=20 > the internet, Mark Sergeant sent this to stdout: >=20 > > Depending on the nature of the project and the availability > > required I would only recommend a software based solution for a > > project that didn't have a requirement of more than 95% uptime, >=20 > 95% UPTIME. That is only 51 out of 52 weeks/year. Even 99.999% > is 8 hours down time per year. Five 9' is usually achievable with > just good hw/sw design. My web server - though not heavily > stressed is a 498 days 16:44 as I type this. >=20 > > My recommendation would be should it absolutely have to be done with > > software then go with the mod_proxy and a 1 hour ttl for your www > > address (anything less than an hour is usually ignored), this way a > > replacement box can take over the proxying server inside of an hour > > should there be any issues. >=20 > Would it not make sense to monitor the target machine and if/when > it fails then just re-write the IP on the standby machine to > achieve a fail-over scenario. >=20 > Bill > --=20 > Bill Vermillion - bv @ wjv . com >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message >=20 --=20 Mark Sergeant Senior Unix Systems Administrator =20 L=F4=F4kSmart International Pty. Ltd. Level 5/388 Lonsdale Street Melbourne, VIC, 3000 Australia=20 P. (03) 9648 2201=20 F. (03) 9648 2244=20 http://www.looksmart.com.au The referring document contains privileged and confidential information. If you are not the intended recipient you must not copy, distribute or take action with regards to the content, we request that you notify LookSmart International Pty. Ltd. immediately and remove all traces of this document.=20 Any views expressed in this message are those of the individual sender, except where they are specifically stated to be the views of LookSmart=20 International Pty. Ltd. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 7:27:55 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mimas.gigguardian.com (mimas.gigguardian.com [216.52.21.48]) by hub.freebsd.org (Postfix) with ESMTP id 5FB3037B41E for ; Wed, 24 Apr 2002 07:27:33 -0700 (PDT) Received: from hades.gigguardian.com ([24.219.11.216]) by mimas.gigguardian.com (8.11.6/8.11.6) with ESMTP id g3OEPnn07014 for ; Wed, 24 Apr 2002 07:25:50 -0700 (PDT) (envelope-from vhm3@hades.gigguardian.com) Received: from localhost (vhm3@localhost) by hades.gigguardian.com (8.11.6/8.11.6) with ESMTP id g3OEOMI92412; Wed, 24 Apr 2002 07:24:22 -0700 (PDT) (envelope-from vhm3@hades.gigguardian.com) Date: Wed, 24 Apr 2002 07:24:19 -0700 (PDT) From: Chip McClure To: Emre Bastuz Cc: freebsd-isp@FreeBSD.ORG Subject: Re: HTTP Load Balancing and Availability Solutions In-Reply-To: <3CC6A5D2.3070701@emre.de> Message-ID: <20020424072154.W83922-100000@hades.gigguardian.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=KOI8-R Content-Transfer-Encoding: 8BIT Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello Emre, I use one, in the ports collection, called "pen". It does a very good job at load balancing, and has the features that you'll need. Great little app. :) Chip - ----- Chip McClure Sr. Unix Administrator GigGuardian, Inc. http://www.gigguardian.com/ - ----- On Wed, 24 Apr 2002, Emre Bastuz wrote: > Hi, > > I´m looking for a software that does the job of accepting > HTTP request as a webserver and then distributes these > to other servers - depending on which one is currently up. > > We have a customer who wants some kind of failsafe solution. > Load balacncing is not the main issue - instead we want to > configure one main webserver, in case this one fails the > software is supposed to switch over to the other webserver > for HTML file retrieval. > > After some quick and dirty lookup in Google I found this > software called "FreeQualizer" (http://www.coyotepoint.com), > which sounds nice but is not free. > > If it´s remarkably good, it might be worth giving a try. > Anyone got any experience with this one ? > > Before chosing this one though, I´d like to know if there > are other well known and reliable solutions out there. > > Apache with mod_proxy/mod_rewrite also seems like an alternative > (I found this interesting article on > http://www.devshed.com/Talk/Books/ProApache/page6.html) - I´m > not sure if the mod_proxy/mod_rewrite stuff only works for load > balancing or also can handle outages of the 'backend' servers. > > Any suggestions ? Ideas ? URL´s ? :) > > Thanks, > > Emre > > > -- > Emre Bastuz > info@emre.de > http://www.emre.de > UIN: 561260 PGP Key ID: 0xEA0E2CA1 > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 Comment: Made with pgp4pine 1.76 iQA/AwUBPMbAFpuKtP8CSC69EQIqRwCfTWClmxkcJFBl5gpIktgjkOrtU/MAoLlY Sx1a6o2mzpP2iZ2NzzHt9CNF =ijGh -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 9: 5:52 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.ut.caldera.com (mail.ut.caldera.com [216.250.130.2]) by hub.freebsd.org (Postfix) with ESMTP id 0C84937B48A for ; Wed, 24 Apr 2002 09:05:39 -0700 (PDT) Received: (qmail 12433 invoked by uid 84); 24 Apr 2002 16:04:56 -0000 Received: from aris@caldera.com by clavin.ut.caldera.com with qmail-scanner-1.00 (uvscan: v4.1.40/v4155. . Clean. Processed in 0.586744 secs); 24 Apr 2002 16:04:56 -0000 Received: from severn.uk.caldera.com (10.126.20.2) by mail.ut.caldera.com with SMTP; 24 Apr 2002 16:04:55 -0000 Received: from uradoos.uk.caldera.com by severn.uk.caldera.com with smtp id aa17736; Wed, 24 Apr 2002 17:04:23 +0100 (BST) Message-ID: <3CC6D787.6080504@caldera.com> Date: Wed, 24 Apr 2002 17:04:23 +0100 From: Aris Stathakis Organization: Caldera International User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9+) Gecko/20020416 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Emre Bastuz Cc: freebsd-isp@freebsd.org Subject: Re: HTTP Load Balancing and Availability Solutions References: <3CC6A5D2.3070701@emre.de> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org http://www.backhand.org/ Supposed to work on FreeBSD Aris Emre Bastuz wrote: > Hi, > > I4m looking for a software that does the job of accepting > HTTP request as a webserver and then distributes these > to other servers - depending on which one is currently up. > > We have a customer who wants some kind of failsafe solution. > Load balacncing is not the main issue - instead we want to > configure one main webserver, in case this one fails the > software is supposed to switch over to the other webserver > for HTML file retrieval. > > After some quick and dirty lookup in Google I found this > software called "FreeQualizer" (http://www.coyotepoint.com), > which sounds nice but is not free. > > If it4s remarkably good, it might be worth giving a try. > Anyone got any experience with this one ? > > Before chosing this one though, I4d like to know if there > are other well known and reliable solutions out there. > > Apache with mod_proxy/mod_rewrite also seems like an alternative > (I found this interesting article on > http://www.devshed.com/Talk/Books/ProApache/page6.html) - I4m > not sure if the mod_proxy/mod_rewrite stuff only works for load > balancing or also can handle outages of the 'backend' servers. > > Any suggestions ? Ideas ? URL4s ? :) > > Thanks, > > Emre > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 9:10:19 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mail.ut.caldera.com (mail.ut.caldera.com [216.250.130.2]) by hub.freebsd.org (Postfix) with ESMTP id 5009C37B496 for ; Wed, 24 Apr 2002 09:09:16 -0700 (PDT) Received: (qmail 14004 invoked by uid 84); 24 Apr 2002 16:09:10 -0000 Received: from aris@caldera.com by clavin.ut.caldera.com with qmail-scanner-1.00 (uvscan: v4.1.40/v4155. . Clean. Processed in 0.63465 secs); 24 Apr 2002 16:09:10 -0000 Received: from severn.uk.caldera.com (10.126.20.2) by mail.ut.caldera.com with SMTP; 24 Apr 2002 16:09:09 -0000 Received: from uradoos.uk.caldera.com by severn.uk.caldera.com with smtp id aa17904; Wed, 24 Apr 2002 17:08:36 +0100 (BST) Message-ID: <3CC6D884.7070100@caldera.com> Date: Wed, 24 Apr 2002 17:08:36 +0100 From: Aris Stathakis Organization: Caldera International User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9+) Gecko/20020416 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Aris Stathakis Cc: Emre Bastuz , freebsd-isp@freebsd.org Subject: Re: HTTP Load Balancing and Availability Solutions References: <3CC6A5D2.3070701@emre.de> <3CC6D787.6080504@caldera.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org More specifically, the Wackamole portion of backhand: http://www.backhand.org/wackamole/ Aris Aris Stathakis wrote: > http://www.backhand.org/ > > Supposed to work on FreeBSD > > Aris > > Emre Bastuz wrote: > >> Hi, >> >> I4m looking for a software that does the job of accepting >> HTTP request as a webserver and then distributes these >> to other servers - depending on which one is currently up. >> >> We have a customer who wants some kind of failsafe solution. >> Load balacncing is not the main issue - instead we want to >> configure one main webserver, in case this one fails the >> software is supposed to switch over to the other webserver >> for HTML file retrieval. >> >> After some quick and dirty lookup in Google I found this >> software called "FreeQualizer" (http://www.coyotepoint.com), >> which sounds nice but is not free. >> >> If it4s remarkably good, it might be worth giving a try. >> Anyone got any experience with this one ? >> >> Before chosing this one though, I4d like to know if there >> are other well known and reliable solutions out there. >> >> Apache with mod_proxy/mod_rewrite also seems like an alternative >> (I found this interesting article on >> http://www.devshed.com/Talk/Books/ProApache/page6.html) - I4m >> not sure if the mod_proxy/mod_rewrite stuff only works for load >> balancing or also can handle outages of the 'backend' servers. >> >> Any suggestions ? Ideas ? URL4s ? :) >> >> Thanks, >> >> Emre >> >> > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 9:12:46 2002 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by hub.freebsd.org (Postfix) with ESMTP id 38BEF37B496 for ; Wed, 24 Apr 2002 09:12:34 -0700 (PDT) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 170OYD-0004Hp-00; Wed, 24 Apr 2002 08:19:21 -0700 Date: Wed, 24 Apr 2002 08:19:06 -0700 (PDT) From: Tom Samplonius To: Michael Cc: freebsd-isp@freebsd.org Subject: Re: Apache & suexec In-Reply-To: <6522687082.20020424151811@bignet.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org You need SUEXEC in order to have different virtual hosts use differernet user ids. Is the port built with SUEXEC support? SUEXEC does not build, unless you turn it on. Tom On Wed, 24 Apr 2002, Michael wrote: > Hello freebsd-isp, > > After installing Apache from ports and configuring virtual hosts to > use different User/Group IDs, it shows at startup: > > Warning: User directive in requires SUEXEC wrapper. > Warning: Group directive in requires SUEXEC wrapper. > > for eash virtual host. What's wrong? Or, what i miss when configuring > Apache from /usr/ports/www/apache13 ? > > -- > Best regards, > Michael > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 9:25:39 2002 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by hub.freebsd.org (Postfix) with ESMTP id A4D7E37B41B for ; Wed, 24 Apr 2002 09:25:22 -0700 (PDT) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 170Ojz-0004LY-00; Wed, 24 Apr 2002 08:31:31 -0700 Date: Wed, 24 Apr 2002 08:31:08 -0700 (PDT) From: Tom Samplonius To: Mark Sergeant Cc: bv@wjv.com, freebsd-isp@FreeBSD.ORG Subject: Re: HTTP Load Balancing and Availability Solutions In-Reply-To: <1019656776.38204.17.camel@xyzzy.intranet.snsonline.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 24 Apr 2002, Mark Sergeant wrote: > 99.999 is less than an hours down time per year which running off one ... I don't get that: 365 days per year x 24 hours per day x 60 minutes per hour = 525,600 minutes per year 525,600 minutes per year x 0.001 percent down = 525.6 minutes per year down I think you might be thinking of 99.9999% reliability, which would be 52.5 minutes per year. Usually, when I hear people talk about 4 nine reliability, they are talking about the decimal portion. I believe banks and telephone companies operate on a 4 nines reliability basis. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 9:28:37 2002 Delivered-To: freebsd-isp@freebsd.org Received: from smtp.kka.com (smtp.kka.com [63.141.65.2]) by hub.freebsd.org (Postfix) with ESMTP id 4635637B429; Wed, 24 Apr 2002 09:28:28 -0700 (PDT) Subject: Re: HTTP Load Balancing and Availability Solutions To: Tom Samplonius Cc: bv@wjv.com, freebsd-isp@FreeBSD.ORG, msergeant@looksmart.net, owner-freebsd-isp@FreeBSD.ORG X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: Eric_Stanfield@kenokozie.com Date: Wed, 24 Apr 2002 11:23:28 -0500 X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 04/24/2002 11:23:56 AM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org .001% = .00001 not .001 in your calculations. 10% is .10 in decimal. 1% is .01. etc etc -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Eric Stanfield, K2Access Keno Kozie Associates 222 N LaSalle #1500 Chicago, IL 60606 (312) 332-3000 Tom Samplonius To: Mark Sergeant Sent by: cc: bv@wjv.com, freebsd-isp@FreeBSD.ORG owner-freebsd-isp@F Subject: Re: HTTP Load Balancing and reeBSD.ORG Availability Solutions 04/24/2002 10:31 AM On 24 Apr 2002, Mark Sergeant wrote: > 99.999 is less than an hours down time per year which running off one ... I don't get that: 365 days per year x 24 hours per day x 60 minutes per hour = 525,600 minutes per year 525,600 minutes per year x 0.001 percent down = 525.6 minutes per year down I think you might be thinking of 99.9999% reliability, which would be 52.5 minutes per year. Usually, when I hear people talk about 4 nine reliability, they are talking about the decimal portion. I believe banks and telephone companies operate on a 4 nines reliability basis. Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 10:49:31 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mailout03.sul.t-online.com (mailout03.sul.t-online.com [194.25.134.81]) by hub.freebsd.org (Postfix) with ESMTP id EEF1937B404 for ; Wed, 24 Apr 2002 10:49:24 -0700 (PDT) Received: from fwd03.sul.t-online.de by mailout03.sul.t-online.com with smtp id 170PqZ-0000N4-0B; Wed, 24 Apr 2002 18:42:23 +0200 Received: from Magelan.Leidinger.net (520065502893-0001@[80.131.120.203]) by fmrl03.sul.t-online.com with esmtp id 170PqS-1IBxIGC; Wed, 24 Apr 2002 18:42:16 +0200 Received: from Leidinger.net (netchild@localhost [127.0.0.1]) by Magelan.Leidinger.net (8.12.3/8.12.3) with ESMTP id g3OGgfNA000631; Wed, 24 Apr 2002 18:42:45 +0200 (CEST) (envelope-from netchild@Leidinger.net) Message-Id: <200204241642.g3OGgfNA000631@Magelan.Leidinger.net> Date: Wed, 24 Apr 2002 18:42:41 +0200 (CEST) From: Alexander Leidinger Subject: Re: HTTP Load Balancing and Availability Solutions To: info@emre.de Cc: freebsd-isp@FreeBSD.ORG In-Reply-To: <3CC6A5D2.3070701@emre.de> MIME-Version: 1.0 Content-Type: TEXT/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8BIT X-Sender: 520065502893-0001@t-dialin.net Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 24 Apr, Emre Bastuz wrote: > Any suggestions ? Ideas ? URL´s ? :) I've some links at http://www.leidinger.net/cgi-bin/search.pl?q=cluster&num=10 Bye, Alexander. -- Reboot America. http://www.Leidinger.net Alexander @ Leidinger.net GPG fingerprint = C518 BC70 E67F 143F BE91 3365 79E2 9C60 B006 3FE7 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 11: 3:49 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ann.skypoint.net (ann.skypoint.net [199.86.32.19]) by hub.freebsd.org (Postfix) with ESMTP id DAC5537B41B for ; Wed, 24 Apr 2002 11:03:20 -0700 (PDT) Received: from localhost (jason@localhost) by ann.skypoint.net (8.9.3/8.9.3) with ESMTP id SAA52500 for ; Wed, 24 Apr 2002 18:03:19 GMT Date: Wed, 24 Apr 2002 18:03:19 +0000 (GMT) From: X-Sender: jason@ann.skypoint.net To: freebsd-isp@FreeBSD.ORG Subject: Strange delays.. Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello all I'm lead tech at a mid-sized ISP running various versions of FreeBSD on our network, and basically we have one main server acting as "master" and then two radius/dns servers and a mail/uucp server. We keep all of our mail, radius, and UUCP configs on our master server and then run a script that rdists the files to the various servers when we have made changes. Up until (far too) recently, these rdists have all been done with RSH. I have gone through and updated them all to SSH, but now the rdists take very long (upwards of a minute) when run from the script. can anyone tell me why it would be fast with rsh but slow with ssh, and what to fix/change? Will provide more details to anyone in need.. thanks /|\ Jason Woyak - Skypoint Lead Technician /|\ HomePage: http://www.skypoint.com/~jason Phone: (763) 548-2615 | Cell: (612) 701-6610 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 11: 7:50 2002 Delivered-To: freebsd-isp@freebsd.org Received: from ext-nj2gw-1.online-age.net (ext-nj2gw-1.online-age.net [216.35.73.163]) by hub.freebsd.org (Postfix) with ESMTP id 15AA737B428 for ; Wed, 24 Apr 2002 11:07:36 -0700 (PDT) Received: from int-nj2gw-4.online-age.net (int-nj2gw-4.online-age.net [3.159.236.68]) by ext-nj2gw-1.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id OAA16339; Wed, 24 Apr 2002 14:06:56 -0400 (EDT) Received: from crdns.crd.ge.com (localhost [127.0.0.1]) by int-nj2gw-4.online-age.net (8.9.3+Sun/8.9.1/990426-RLH) with ESMTP id OAA17580; Wed, 24 Apr 2002 14:06:55 -0400 (EDT) Received: from exc01crdge.crd.ge.com (exc01crdge.crd.ge.com [3.1.116.47]) by crdns.crd.ge.com (8.11.6/8.11.6) with ESMTP id g3OI6st22989; Wed, 24 Apr 2002 14:06:54 -0400 (EDT) Received: by exc01crdge.crd.ge.com with Internet Mail Service (5.5.2653.19) id ; Wed, 24 Apr 2002 14:06:53 -0400 Message-ID: From: "Lapinski, Michael (Research)" To: "'jason@skypoint.com'" , freebsd-isp@FreeBSD.ORG Subject: RE: Strange delays.. Date: Wed, 24 Apr 2002 14:06:53 -0400 X-Mailer: Internet Mail Service (5.5.2653.19) Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org does normal interactive ssh take a long time to login etc? if so is your dns setup properly? (ive seen sshd be very slow to respond when dns is borked) -mtl -------------------------------------------------- Michael Lapinski Computer Scientist GE Corporate Research & Development "I think there is a world market for maybe five computers." - IBM Chairman Thomas Watson, 1943 -----Original Message----- From: jason@skypoint.com [mailto:jason@skypoint.com] Sent: Wednesday, April 24, 2002 2:03 PM To: freebsd-isp@FreeBSD.ORG Subject: Strange delays.. Hello all I'm lead tech at a mid-sized ISP running various versions of FreeBSD on our network, and basically we have one main server acting as "master" and then two radius/dns servers and a mail/uucp server. We keep all of our mail, radius, and UUCP configs on our master server and then run a script that rdists the files to the various servers when we have made changes. Up until (far too) recently, these rdists have all been done with RSH. I have gone through and updated them all to SSH, but now the rdists take very long (upwards of a minute) when run from the script. can anyone tell me why it would be fast with rsh but slow with ssh, and what to fix/change? Will provide more details to anyone in need.. thanks /|\ Jason Woyak - Skypoint Lead Technician /|\ HomePage: http://www.skypoint.com/~jason Phone: (763) 548-2615 | Cell: (612) 701-6610 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Wed Apr 24 13: 8:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id 53A2A37B41E for ; Wed, 24 Apr 2002 13:08:12 -0700 (PDT) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g3OK7q390228 for freebsd-isp@freebsd.org; Wed, 24 Apr 2002 16:07:52 -0400 (EDT) (envelope-from bv) Date: Wed, 24 Apr 2002 16:07:52 -0400 From: Bill Vermillion To: freebsd-isp@freebsd.org Subject: Re: HTTP Load Balancing and Availability Solutions Message-ID: <20020424200752.GF89347@wjv.com> Reply-To: bv@wjv.com References: <1019656776.38204.17.camel@xyzzy.intranet.snsonline.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org -segmentation fault- press any key to reboot Damn damn damn Tom Samplonius said, after restarting his PC and mailer on Wed, Apr 24, 2002 at 08:31 . > > On 24 Apr 2002, Mark Sergeant wrote: > > > 99.999 is less than an hours down time per year which running off one > ... > > I don't get that: > > 365 days per year x 24 hours per day x 60 minutes per hour = 525,600 > minutes per year > > 525,600 minutes per year x 0.001 percent down = 525.6 minutes per year > down > > > I think you might be thinking of 99.9999% reliability, which would be > 52.5 minutes per year. > Usually, when I hear people talk about 4 nine reliability, they are > talking about the decimal portion. I believe banks and telephone > companies operate on a 4 nines reliability basis. Five nines. 99.99999 is the standard for telcos, etc. The highend bank machines such as Tandem are often speced to six 9's. Now THAT is serious. -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 10: 9:47 2002 Delivered-To: freebsd-isp@freebsd.org Received: from dns.unimayab.edu.mx (dns.unimayab.edu.mx [148.230.236.5]) by hub.freebsd.org (Postfix) with ESMTP id EC48A37B422 for ; Thu, 25 Apr 2002 10:09:41 -0700 (PDT) Received: from exchange.unimayab.edu.mx ([172.21.14.24]) by dns.unimayab.edu.mx (8.11.3/8.11.3) with ESMTP id g3PH9lY25343; Thu, 25 Apr 2002 12:10:03 -0500 (CDT) (envelope-from dperez@unimayab.edu.mx) Received: by EXCHANGE with Internet Mail Service (5.5.2653.19) id <2VQCT20P>; Thu, 25 Apr 2002 12:08:50 -0500 Message-ID: <81C8CA3C286FD511A959000102C9B2CE760E98@EXCHANGE> From: dperez@unimayab.edu.mx To: admin@bignet.ru Cc: freebsd-isp@FreeBSD.ORG Subject: RE: Apache & suexec Date: Thu, 25 Apr 2002 12:08:41 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, the suexec is disable by defualt in the port=20 you must=20 do something like make install --enable-suexec --others-argv Regards David Perez Mensaje Original> -----Mensaje original----- Mensaje Original> De: Michael [mailto:admin@bignet.ru] Mensaje Original> Enviado el: Mi=E9rcoles, 24 de Abril de 2002 06:18 = a.m. Mensaje Original> Para: freebsd-isp@FreeBSD.ORG Mensaje Original> Asunto: Apache & suexec Mensaje Original>=20 Mensaje Original>=20 Mensaje Original> Hello freebsd-isp, Mensaje Original>=20 Mensaje Original> After installing Apache from ports and=20 Mensaje Original> configuring virtual hosts to Mensaje Original> use different User/Group IDs, it shows at startup: Mensaje Original>=20 Mensaje Original> Warning: User directive in =20 Mensaje Original> requires SUEXEC wrapper. Mensaje Original> Warning: Group directive in =20 Mensaje Original> requires SUEXEC wrapper. Mensaje Original>=20 Mensaje Original> for eash virtual host. What's wrong? Or, what=20 Mensaje Original> i miss when configuring Mensaje Original> Apache from /usr/ports/www/apache13 ? Mensaje Original>=20 Mensaje Original> --=20 Mensaje Original> Best regards, Mensaje Original> Michael Mensaje Original>=20 Mensaje Original>=20 Mensaje Original> To Unsubscribe: send mail to majordomo@FreeBSD.org Mensaje Original> with "unsubscribe freebsd-isp" in the body of=20 Mensaje Original> the message Mensaje Original>=20 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 10:38:17 2002 Delivered-To: freebsd-isp@freebsd.org Received: from seven.Alameda.net (seven.Alameda.net [64.81.63.137]) by hub.freebsd.org (Postfix) with ESMTP id B7E0437B416 for ; Thu, 25 Apr 2002 10:38:10 -0700 (PDT) Received: by seven.Alameda.net (Postfix, from userid 1000) id 7B1553A34D; Thu, 25 Apr 2002 10:38:10 -0700 (PDT) Date: Thu, 25 Apr 2002 10:38:10 -0700 From: Ulf Zimmermann To: dperez@unimayab.edu.mx Cc: admin@bignet.ru, freebsd-isp@FreeBSD.ORG Subject: Re: Apache & suexec Message-ID: <20020425103810.B71550@seven.alameda.net> Reply-To: ulf@Alameda.net References: <81C8CA3C286FD511A959000102C9B2CE760E98@EXCHANGE> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: <81C8CA3C286FD511A959000102C9B2CE760E98@EXCHANGE>; from dperez@unimayab.edu.mx on Thu, Apr 25, 2002 at 12:08:41PM -0500 Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 4.4-STABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Apr 25, 2002 at 12:08:41PM -0500, dperez@unimayab.edu.mx wrote: > Hi, > the suexec is disable by defualt in the port > you must > do something like > make install --enable-suexec --others-argv More like: make WITH_SUEXEC=yes make install WITH_SUEXEC=yes > > Regards > David Perez > Mensaje Original> -----Mensaje original----- > Mensaje Original> De: Michael [mailto:admin@bignet.ru] > Mensaje Original> Enviado el: Miércoles, 24 de Abril de 2002 06:18 a.m. > Mensaje Original> Para: freebsd-isp@FreeBSD.ORG > Mensaje Original> Asunto: Apache & suexec > Mensaje Original> > Mensaje Original> > Mensaje Original> Hello freebsd-isp, > Mensaje Original> > Mensaje Original> After installing Apache from ports and > Mensaje Original> configuring virtual hosts to > Mensaje Original> use different User/Group IDs, it shows at startup: > Mensaje Original> > Mensaje Original> Warning: User directive in > Mensaje Original> requires SUEXEC wrapper. > Mensaje Original> Warning: Group directive in > Mensaje Original> requires SUEXEC wrapper. > Mensaje Original> > Mensaje Original> for eash virtual host. What's wrong? Or, what > Mensaje Original> i miss when configuring > Mensaje Original> Apache from /usr/ports/www/apache13 ? > Mensaje Original> > Mensaje Original> -- > Mensaje Original> Best regards, > Mensaje Original> Michael > Mensaje Original> > Mensaje Original> > Mensaje Original> To Unsubscribe: send mail to majordomo@FreeBSD.org > Mensaje Original> with "unsubscribe freebsd-isp" in the body of > Mensaje Original> the message > Mensaje Original> > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > -- Regards, Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://seven.Alameda.net/~ulf/resume.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 15:36:35 2002 Delivered-To: freebsd-isp@freebsd.org Received: from inet03.citec.qld.gov.au (inet03.citec.qld.gov.au [203.5.10.10]) by hub.freebsd.org (Postfix) with ESMTP id 0FD6C37B417 for ; Thu, 25 Apr 2002 15:36:29 -0700 (PDT) Received: by inet03.citec.qld.gov.au; id IAA06998; Fri, 26 Apr 2002 08:36:21 +1000 (EST) Received: from citecub.citec.qld.gov.au( 131.242.4.98) by inet03.citec.qld.gov.au via smap (V2.0) id xma006678; Fri, 26 Apr 02 08:36:11 +1000 Received: from guru.citec.qld.gov.au by citecub.citec.qld.gov.au (SMI-8.6/SMI-SVR4) id IAA29381; Fri, 26 Apr 2002 08:36:11 +1000 Received: from localhost (sgcccdc@localhost) by guru.citec.qld.gov.au (8.9.3/8.9.3) with ESMTP id IAA20993; Fri, 26 Apr 2002 08:36:09 +1000 (EST) (envelope-from sgcccdc@citec.qld.gov.au) X-Authentication-Warning: guru.citec.qld.gov.au: sgcccdc owned process doing -bs Date: Fri, 26 Apr 2002 08:36:08 +1000 (EST) From: Colin Campbell To: Emre Bastuz Cc: Subject: Re: HTTP Load Balancing and Availability Solutions In-Reply-To: <3CC6A5D2.3070701@emre.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, On Wed, 24 Apr 2002, Emre Bastuz wrote: > Hi, > > I=B4m looking for a software that does the job of accepting > HTTP request as a webserver and then distributes these > to other servers - depending on which one is currently up. Here's one way. The "real" IP address of each web server is configured as a loopback alias on every host. Use dynamic routing (eg OSPF) to allow the router to deicde which host to send the packets to. When a host dires, it might take 10-15s for the routes to change but it all happens automatically. Example: 2 x host 4 x httpd each with own IP On both hosts, create 4 IP aliases on loopback, =09ifconfig lo www.a.com alias =09ifconfig lo www.b.com alias =09ifconfig lo www.c.com alias =09ifconfig lo www.d.com alias Let's say that under normal circumstances we want host-1 to serve www.a and www.b and host-2 to serve the other two. On the router configure the dynamic routing as follows: =09destination www.a.com via host-1 cost 1 =09destination www.b.com via host-1 cost 1 =09destination www.c.com via host-1 cost 2 =09destination www.d.com via host-1 cost 2 destination www.a.com via host-2 cost 2 destination www.b.com via host-2 cost 2 destination www.c.com via host-2 cost 1 destination www.d.com via host-2 cost 1 By default the router will send all traffic to www. and ww.b to host-1 and the other two servers to host-2. If host-1 goes down, the link-state information (eg in OSPF) will tell the router to go via host-2 to www.a and www.b since the link via host-1 is no longer available. This way you don't need a lot of extra hardware (the web servers might need to be a bit bigger than normal), it's scalable, provides some (manual) load balancing and can fail over automatically and very quickly. Colin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 20:19:39 2002 Delivered-To: freebsd-isp@freebsd.org Received: from figg.isecure.com.au (ns2.isecure.com.au [202.125.4.72]) by hub.freebsd.org (Postfix) with ESMTP id 8B03B37B400 for ; Thu, 25 Apr 2002 20:19:29 -0700 (PDT) Received: from iron.isentry.net.au (iron.isecure.com.au [202.125.4.94] (may be forged)) by figg.isecure.com.au (8.11.3/8.11.3) with ESMTP id g3Q3JSL26996 for ; Fri, 26 Apr 2002 13:19:28 +1000 Received: (from smap@localhost) by iron.isentry.net.au (8.11.2/8.10.2) id g3Q3JRA21041 for ; Fri, 26 Apr 2002 13:19:27 +1000 (EST) X-Authentication-Warning: iron.isentry.net.au: smap set sender to using -f Received: from nodnsquery(10.11.3.10) by iron via smap (V5.5) id xma021032; Fri, 26 Apr 02 13:19:18 +1000 Received: from vmail.aipo.gov.au (localhost [127.0.0.1]) by gibbons.isecure.com.au (8.11.3/8.10.2) with ESMTP id g3Q3JIW23227 for ; Fri, 26 Apr 2002 13:19:18 +1000 Received: from pc09011.aipo.gov.au (PC09011.aipo.gov.au [10.0.3.110]) by vmail.aipo.gov.au (8.11.6/8.11.6) with ESMTP id g3Q3JIi31569 for ; Fri, 26 Apr 2002 13:19:18 +1000 (EST) (envelope-from Stanley.Hopcroft@IPAustralia.gov.au) Received: (from anwsmh@localhost) by pc09011.aipo.gov.au (8.11.6/8.11.6) id g3Q3JH409988 for FreeBSD-ISP@FreeBSD.ORG; Fri, 26 Apr 2002 13:19:17 +1000 (EST) (envelope-from anwsmh) Date: Fri, 26 Apr 2002 13:19:17 +1000 From: Stanley Hopcroft To: FreeBSD-ISP@FreeBSD.ORG Subject: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8.2.4/FreeBSD 4.5-RELEASE-p3) Message-ID: <20020426131917.C9401@IPAustralia.Gov.AU> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear Ladies and Gentlemen, I am writing to ask your help with a DNS problem. I am writing here rather than questions because this list has shown a lot of interest and help for DNS operational problems like this. After an upgrade from an old 4.3-STABLE to 4.5-RELEASE-p3, bind can no longer set the number of open files to the system limit. Instead on the problem boxes, I see the following after restarting bind. Apr 26 12:38:00 wins named[22746]: reloading nameserver Apr 26 12:38:00 wins named[22746]: setrlimit(max number of open files): Operation not permitted Apr 26 12:38:00 wins named[22746]: Ready to answer queries. On other words, it seems highly unlikely that replication will work. I have added an entry for BIND to login.conf and remade the login database (with cap_mkdb /etc/login.conf ) bind:\ :tc=default: without any success. BIND is running in a sandbox (started with named -u bind -g bind) Do I need to explicity add the bind class to the password file ? Your advice is very welcome. Thank you, Yours sincerely. -- ------------------------------------------------------------------------ Stanley Hopcroft Network Specialist ------------------------------------------------------------------------ '...No man is an island, entire of itself; every man is a piece of the continent, a part of the main. If a clod be washed away by the sea, Europe is the less, as well as if a promontory were, as well as if a manor of thy friend's or of thine own were. Any man's death diminishes me, because I am involved in mankind; and therefore never send to know for whom the bell tolls; it tolls for thee...' from Meditation 17, J Donne. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 20:39:33 2002 Delivered-To: freebsd-isp@freebsd.org Received: from 12-234-22-238.client.attbi.com (12-234-90-219.client.attbi.com [12.234.90.219]) by hub.freebsd.org (Postfix) with ESMTP id 09DCB37B445 for ; Thu, 25 Apr 2002 20:39:21 -0700 (PDT) Received: from Master.gorean.org (master.gorean.org [10.0.0.2]) by 12-234-22-238.client.attbi.com (8.12.2/8.12.2) with ESMTP id g3Q3dJHt093659; Thu, 25 Apr 2002 20:39:19 -0700 (PDT) (envelope-from DougB@FreeBSD.org) Received: from Master.gorean.org (zoot [127.0.0.1]) by Master.gorean.org (8.12.2/8.12.2) with ESMTP id g3Q3dLLr070860; Thu, 25 Apr 2002 20:39:21 -0700 (PDT) (envelope-from DougB@FreeBSD.org) Received: from localhost (doug@localhost) by Master.gorean.org (8.12.2/8.12.2/Submit) with ESMTP id g3Q3dL9u070857; Thu, 25 Apr 2002 20:39:21 -0700 (PDT) X-Authentication-Warning: Master.gorean.org: doug owned process doing -bs Date: Thu, 25 Apr 2002 20:39:21 -0700 (PDT) From: Doug Barton X-X-Sender: doug@master.gorean.org Reply-To: freebsd-stable@FreeBSD.org To: Stanley Hopcroft Cc: FreeBSD-ISP@FreeBSD.org Subject: Re: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8.2.4/FreeBSD 4.5-RELEASE-p3) In-Reply-To: <20020426131917.C9401@IPAustralia.Gov.AU> Message-ID: <20020425203452.T69694-100000@master.gorean.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This would actually be better on freebsd-stable, for future reference. On Fri, 26 Apr 2002, Stanley Hopcroft wrote: > After an upgrade from an old 4.3-STABLE to 4.5-RELEASE-p3, bind can no > longer set the number of open files to the system limit. > > Instead on the problem boxes, I see the following after restarting bind. > > > Apr 26 12:38:00 wins named[22746]: reloading nameserver > Apr 26 12:38:00 wins named[22746]: setrlimit(max number of open files): > Operation not permitted > Apr 26 12:38:00 wins named[22746]: Ready to answer queries. > > On other words, it seems highly unlikely that replication will work. What do you mean by replication? In any case, does this still happen if you start named as root? That should give you an indication of whether it's a login.conf problem. Also, did you run cap_mkdb after editing login.conf? If the problem persists when starting the server as root, post your login.conf file in your response. -- "We have known freedom's price. We have shown freedom's power. And in this great conflict, ... we will see freedom's victory." - George W. Bush, President of the United States State of the Union, January 28, 2002 Do YOU Yahoo!? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 20:58:30 2002 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by hub.freebsd.org (Postfix) with ESMTP id E324537B404 for ; Thu, 25 Apr 2002 20:58:25 -0700 (PDT) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 170w33-0002TZ-00; Thu, 25 Apr 2002 20:05:25 -0700 Date: Thu, 25 Apr 2002 20:05:13 -0700 (PDT) From: Tom Samplonius To: Stanley Hopcroft Cc: FreeBSD-ISP@FreeBSD.ORG Subject: Re: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8.2.4/FreeBSD 4.5-RELEASE-p3) In-Reply-To: <20020426131917.C9401@IPAustralia.Gov.AU> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 26 Apr 2002, Stanley Hopcroft wrote: ... > Apr 26 12:38:00 wins named[22746]: reloading nameserver > Apr 26 12:38:00 wins named[22746]: setrlimit(max number of open files): > Operation not permitted > Apr 26 12:38:00 wins named[22746]: Ready to answer queries. Only root can use setrlimit() to raise the maximum (hard) limit. Do you know how high named is trying to set the limit? > On other words, it seems highly unlikely that replication will work. > > I have added an entry for BIND to login.conf and remade the > login database (with cap_mkdb /etc/login.conf ) ... Quite likely this all you need to do. named will not have to setrlimit() to a higher limit, if the existing limit is ok, right? Tom To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 21: 0:39 2002 Delivered-To: freebsd-isp@freebsd.org Received: from figg.isecure.com.au (ns2.isecure.com.au [202.125.4.72]) by hub.freebsd.org (Postfix) with ESMTP id E3B7437B417; Thu, 25 Apr 2002 21:00:17 -0700 (PDT) Received: from iron.isentry.net.au (iron.isecure.com.au [202.125.4.94] (may be forged)) by figg.isecure.com.au (8.11.3/8.11.3) with ESMTP id g3Q40FL29590; Fri, 26 Apr 2002 14:00:16 +1000 Received: (from smap@localhost) by iron.isentry.net.au (8.11.2/8.10.2) id g3Q40EM25588; Fri, 26 Apr 2002 14:00:14 +1000 (EST) X-Authentication-Warning: iron.isentry.net.au: smap set sender to using -f Received: from nodnsquery(10.11.3.10) by iron via smap (V5.5) id xma025473; Fri, 26 Apr 02 14:00:08 +1000 Received: from vmail.aipo.gov.au (localhost [127.0.0.1]) by gibbons.isecure.com.au (8.11.3/8.10.2) with ESMTP id g3Q408H30621; Fri, 26 Apr 2002 14:00:08 +1000 Received: from pc09011.aipo.gov.au (PC09011.aipo.gov.au [10.0.3.110]) by vmail.aipo.gov.au (8.11.6/8.11.6) with ESMTP id g3Q407i32694; Fri, 26 Apr 2002 14:00:07 +1000 (EST) (envelope-from Stanley.Hopcroft@IPAustralia.gov.au) Received: (from anwsmh@localhost) by pc09011.aipo.gov.au (8.11.6/8.11.6) id g3Q407e10006; Fri, 26 Apr 2002 14:00:07 +1000 (EST) (envelope-from anwsmh) Date: Fri, 26 Apr 2002 14:00:07 +1000 From: Stanley Hopcroft To: freebsd-stable@FreeBSD.org Cc: FreeBSD-ISP@FreeBSD.org Subject: Re: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8.2.4/FreeBSD 4.5-RELEASE-p3) Message-ID: <20020426140006.D9401@IPAustralia.Gov.AU> References: <20020426131917.C9401@IPAustralia.Gov.AU> <20020425203452.T69694-100000@master.gorean.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020425203452.T69694-100000@master.gorean.org>; from DougB@FreeBSD.org on Thu, Apr 25, 2002 at 08:39:21PM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear Sir, Thank you for your reply. On Thu, Apr 25, 2002 at 08:39:21PM -0700, Doug Barton wrote: > This would actually be better on freebsd-stable, for future > reference. > > > What do you mean by replication? Copying zone files from the master to the secondary; the problem servers are secondaries. > In any case, does this still > happen if you start named as root? That should give you an indication of > whether it's a login.conf problem. There is no problem when running named as root. However, I would like to run it as bind. > Also, did you run cap_mkdb after > editing login.conf? Yes. A couple of times: I tried again when it failed. >If the problem persists when starting the server as > root, post your login.conf file in your response. > > Thank you, Yours sincerely. -- ------------------------------------------------------------------------ Stanley Hopcroft Network Specialist ------------------------------------------------------------------------ '...No man is an island, entire of itself; every man is a piece of the continent, a part of the main. If a clod be washed away by the sea, Europe is the less, as well as if a promontory were, as well as if a manor of thy friend's or of thine own were. Any man's death diminishes me, because I am involved in mankind; and therefore never send to know for whom the bell tolls; it tolls for thee...' from Meditation 17, J Donne. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 21: 5:25 2002 Delivered-To: freebsd-isp@freebsd.org Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by hub.freebsd.org (Postfix) with ESMTP id D5EBE37B419 for ; Thu, 25 Apr 2002 21:04:39 -0700 (PDT) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 170w9B-0002Ur-00 for freebsd-isp@freebsd.org; Thu, 25 Apr 2002 20:11:45 -0700 Date: Thu, 25 Apr 2002 20:11:45 -0700 (PDT) From: Tom Samplonius To: freebsd-isp@freebsd.org Subject: Ugh... Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Can someone boot this guy off the freebsd-isp list? I have contacted the list owner already, with no response. I hate the standards breaking mail software that some domains use. Bounces are supposed to go the envelope sender, not the header sender. milton.edu and sable.com should be blocked from even getting on the list until they upgrade to standards compliant MTAs. Tom ---------- Forwarded message ---------- Date: Thu, 25 Apr 2002 23:58:56 -0400 From: Mailer-Daemon To: tom@sdf.com Subject: NDN: Re: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8 Sorry. Your message could not be delivered to: James Brim (Mailbox or Conference is full.) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Apr 25 21:17:42 2002 Delivered-To: freebsd-isp@freebsd.org Received: from flora.isecure.com.au (ns1.isecure.com.au [202.125.0.72]) by hub.freebsd.org (Postfix) with ESMTP id 5CE8037B416 for ; Thu, 25 Apr 2002 21:17:35 -0700 (PDT) Received: from leal.isentry.net.au (leal.isecure.com.au [202.125.0.94] (may be forged)) by flora.isecure.com.au (8.11.3/8.11.3) with ESMTP id g3Q4HXE01642; Fri, 26 Apr 2002 14:17:33 +1000 Received: (from smap@localhost) by leal.isentry.net.au (8.12.1/8.12.1) id g3Q4HXgg016103; Fri, 26 Apr 2002 14:17:33 +1000 (EST) Received: from nodnsquery(10.11.3.10) by leal via smap (V5.5) id xma016058; Fri, 26 Apr 02 14:17:22 +1000 Received: from vmail.aipo.gov.au (localhost [127.0.0.1]) by gibbons.isecure.com.au (8.11.3/8.10.2) with ESMTP id g3Q4HL601284; Fri, 26 Apr 2002 14:17:22 +1000 Received: from pc09011.aipo.gov.au (PC09011.aipo.gov.au [10.0.3.110]) by vmail.aipo.gov.au (8.11.6/8.11.6) with ESMTP id g3Q4HIi33169; Fri, 26 Apr 2002 14:17:18 +1000 (EST) (envelope-from Stanley.Hopcroft@IPAustralia.gov.au) Received: (from anwsmh@localhost) by pc09011.aipo.gov.au (8.11.6/8.11.6) id g3Q4HHe10049; Fri, 26 Apr 2002 14:17:17 +1000 (EST) (envelope-from anwsmh) Date: Fri, 26 Apr 2002 14:17:17 +1000 From: Stanley Hopcroft To: Tom Samplonius Cc: FreeBSD-ISP@FreeBSD.ORG Subject: Re: Lame DNS question (can't set maxfiles to default after upgrade to Bind 8.2.4/FreeBSD 4.5-RELEASE-p3) Message-ID: <20020426141717.F9401@IPAustralia.Gov.AU> References: <20020426131917.C9401@IPAustralia.Gov.AU> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from tom@sdf.com on Thu, Apr 25, 2002 at 08:05:13PM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Dear Sir, Thanks for your reply. On Thu, Apr 25, 2002 at 08:05:13PM -0700, Tom Samplonius wrote: > > On Fri, 26 Apr 2002, Stanley Hopcroft wrote: > > ... > > Apr 26 12:38:00 wins named[22746]: reloading nameserver > > Apr 26 12:38:00 wins named[22746]: setrlimit(max number of open files): > > Operation not permitted > > Apr 26 12:38:00 wins named[22746]: Ready to answer queries. > > Only root can use setrlimit() to raise the maximum (hard) limit. Do you > know how high named is trying to set the limit? > From the files section of man 5 named.conf, 'The maximum number of files the server may have open concurrently. The default value is unlimited.' > > On other words, it seems highly unlikely that replication will work. > > > > I have added an entry for BIND to login.conf and remade the > > login database (with cap_mkdb /etc/login.conf ) Here is the new entry. bind:\ :tc=default: # # Root can always login # It seems to be in the database. tsitc2> strings /etc/login.conf.db | grep bind bind: : :passwd_format=md5: :copyright=/etc/COPYRIGHT: :welcome=/etc/motd: :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES: :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/X11R6/bin ~/bin: :nologin=/var/run/nologin: :cputime=unlimited: :datasize=unlimited: :stacksize=unlimited: :memorylocked=unlimited: :memoryuse=unlimited: :filesize=unlimited: :coredumpsize=unlimited: :openfiles=unlimited: :maxproc=unlimited: :sbsize=unlimited: :priority=0: :ignoretime@: :umask=022: bind tsitc2> > Quite likely this all you need to do. named will not have to > setrlimit() to a higher limit, if the existing limit is ok, right? > > Tom > Unfortunately this is what I have done but it doesn't help. Yours sincerely. -- ------------------------------------------------------------------------ Stanley Hopcroft Network Specialist ------------------------------------------------------------------------ '...No man is an island, entire of itself; every man is a piece of the continent, a part of the main. If a clod be washed away by the sea, Europe is the less, as well as if a promontory were, as well as if a manor of thy friend's or of thine own were. Any man's death diminishes me, because I am involved in mankind; and therefore never send to know for whom the bell tolls; it tolls for thee...' from Meditation 17, J Donne. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 2:17: 0 2002 Delivered-To: freebsd-isp@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 71AB037B41C; Fri, 26 Apr 2002 02:16:45 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3Q9GKD24216; Fri, 26 Apr 2002 12:16:20 +0300 (EEST) (envelope-from ru) Date: Fri, 26 Apr 2002 12:16:20 +0300 From: Ruslan Ermilov To: Igor M Podlesny Cc: net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: patch -- An ingress filter (RFC2827) Message-ID: <20020426091620.GA18917@sunbay.com> References: <20020414180447.A93954@mars-gw.morning.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="d6Gm4EdcadzBjdND" Content-Disposition: inline In-Reply-To: <20020414180447.A93954@mars-gw.morning.ru> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --d6Gm4EdcadzBjdND Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote: >=20 > Hello! >=20 > I'd like to know your opinion about this patch >=20 > http://www.morning.ru/~poige/patchzone/ingressfiltering.patch >=20 > which is mine attempt to implement an ingress filter being inspired by > RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attacks > which employ IP Source Address Spoofing". >=20 > (http://www.ietf.org/rfc/rfc2827.txt) >=20 > It should be mentioned IMHO that this code makes another one in ip_input.= c a > kind of redundant -- I mean code checking/blocking the 127/8 network "on > wire". BTW, I suggest if not removing it completely then adding (sys)logg= ing > into, -- 127/8-spoofing certainly should be logged. :) >=20 > Another thing to pay an attention to: I deem it'd be better if a such fil= ter > was built-in into ip_fw.c, allowing such syntax for ipfw(8): >=20 > deny log ip from any to any in via fxp0 spoofed >=20 > But AFAIS in ip_fw.h: >=20 > #define IP_FW_F_IN 0x00000100 > ... > #define IP_FW_F_DME 0x40000000 /* destination =3D me */ >=20 > #define IP_FW_F_MASK 0x7FFFFFFF /* All possible flag bits mask */ >=20 > and u_int32_t fw_flg; >=20 > there is no free space for any additional flags... >=20 > So, I was a bit unsure whether should I expand fw_flg to u_int64_t, and do > any other extensions. For now I decided just to wrote something like a > draft, test it (it seems to be working ;), and asking you, people, for yo= ur > comments/ideas on it. >=20 > P.S. A bit more info on this patch is at http://www.morning.ru/~poige/pat= chzone/ >=20 Style comments: 1. There are many unnecessary whitespace changes. 2. Don't use the `register' keyword. 3. Double `const' doesn't do any good. (I was once confused about this to= o.) 4. ip_fw.c part of the patch has some cruft in it. Functional comments: 1. The use and externalization of ipfw_report() wasn't a good idea. Your patch makes ingressfilter dependent on `options IPFIREWALL' because ip_fw.c is only compiled if this option is present. 2. Comment for ipf_rtaddr() is bogus -- the function returns the pointer to an interface not address. 3. Function name is not good either, the more natural name would be ip_rtifp(). I would also suggest reimplementing the already existing ip_rtaddr() into ip_rtifp(), and implementing ip_rtaddr() in terms of ip_rtifp(). General notes: Ingress filtering in unacceptable in many cases. For example, our site is connected to two ISPs, ISP-A and ISP-B. Each ISP has allocated a network (NET-A and NET-B). Both channels are connected to a single gateway box, and are reachable through interfaces IF-A and IF-B, respectively. The `default' route on this box point to ISP-A through IF-A. Now imagine that you want to ping(8) one of our addresses in NET-B. This packet will appear on our gateway box through IF-B, but ingress filter would discard it because ip_rtifp() lookup would return the IF-A interface for your address (ip_src in the packet). We solve the problem with multiple default routes with `ipfw fwd'. All outgoing packets with the source IP address in NET-B we forward through the IF-B interface. Cheers, --=20 Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age --d6Gm4EdcadzBjdND Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8yRrkUkv4P6juNwoRAo5oAJ9OJmLOs6m5DZUF7RqLj3O6eIPUEwCeLb3T aSYkgbQ/xKRgDWrNBwF6oTo= =Ovu3 -----END PGP SIGNATURE----- --d6Gm4EdcadzBjdND-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 6:37:20 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mars-gw.morning.ru (ns.morning.ru [195.161.98.5]) by hub.freebsd.org (Postfix) with ESMTP id DFB6C37B405; Fri, 26 Apr 2002 06:37:00 -0700 (PDT) Received: (from root@localhost) by mars-gw.morning.ru (8.11.5/8.11.5) id g3QDavK70582; Fri, 26 Apr 2002 21:36:57 +0800 (KRAST) Date: Fri, 26 Apr 2002 21:36:57 +0800 From: Igor M Podlesny To: Ruslan Ermilov Cc: Igor M Podlesny , net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: patch -- An ingress filter (RFC2827) Message-ID: <20020426213657.D85230@mars-gw.morning.ru> References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020426091620.GA18917@sunbay.com>; from ru@FreeBSD.ORG on Fri, Apr 26, 2002 at 12:16:20PM +0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, Apr 26, 2002 at 12:16:20PM +0300, Ruslan Ermilov wrote: > On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote: > > > > Hello! > > > > I'd like to know your opinion about this patch > > > > http://www.morning.ru/~poige/patchzone/ingressfiltering.patch > > > > which is mine attempt to implement an ingress filter being inspired by > > RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attacks > > which employ IP Source Address Spoofing". > > > > (http://www.ietf.org/rfc/rfc2827.txt) > > > > It should be mentioned IMHO that this code makes another one in ip_input.c a > > kind of redundant -- I mean code checking/blocking the 127/8 network "on > > wire". BTW, I suggest if not removing it completely then adding (sys)logging > > into, -- 127/8-spoofing certainly should be logged. :) > > > > Another thing to pay an attention to: I deem it'd be better if a such filter > > was built-in into ip_fw.c, allowing such syntax for ipfw(8): > > > > deny log ip from any to any in via fxp0 spoofed > > > > But AFAIS in ip_fw.h: > > > > #define IP_FW_F_IN 0x00000100 > > ... > > #define IP_FW_F_DME 0x40000000 /* destination = me */ > > > > #define IP_FW_F_MASK 0x7FFFFFFF /* All possible flag bits mask */ > > > > and u_int32_t fw_flg; > > > > there is no free space for any additional flags... > > > > So, I was a bit unsure whether should I expand fw_flg to u_int64_t, and do > > any other extensions. For now I decided just to wrote something like a > > draft, test it (it seems to be working ;), and asking you, people, for your > > comments/ideas on it. > > > > P.S. A bit more info on this patch is at http://www.morning.ru/~poige/patchzone/ > > At first, thank you, Ruslan for your answer, it's quite fertile! > Style comments: I should had read the manual or just had known it by heart before writing out the patch in case I was a commiter going to commit it into the repository. But I'm not. Moreover, I don't suggest using _this_ code AS IS in FreeBSD. I said before -- this is a draft. Other people also agree this should be better done (ingress filtering I mean) at ip_fw.c not ip_input.c. So yeah, it works someway, but again -- it's a draft. ;) Well, thank you for time you spent telling me (us all, reading that) about style, but I think that was done in a wrong time. And just one question to you (if we're anyway have been talking about the style) as to a really knowledgeable person: is the whole FreeBSD's kernel code is style(9)d from A to Z?... :) > 1. There are many unnecessary whitespace changes. (I consider using whitespaces similar to commenting, BTW. It's a good C-style I heard. ;)) > 2. Don't use the `register' keyword. (Haven't found anything bout it in style(9)...) > 3. Double `const' doesn't do any good. (I was once confused about this too.) (const char *const ptr? Why? I deem `const' can't make a code worse, only better, cause it makes an additional description of variables/functions/code/algo...) > 4. ip_fw.c part of the patch has some cruft in it. Namely what/where? > Functional comments: > > 1. The use and externalization of ipfw_report() wasn't a good > idea. Your patch makes ingressfilter dependent on `options > IPFIREWALL' because ip_fw.c is only compiled if this option > is present. Not such a big deal cause this can be easily solved in various ways dependent on what we want... (yeah, that's again about `draft'-approach :) > 2. Comment for ipf_rtaddr() is bogus -- the function returns > the pointer to an interface not address. (A pointer is a value keeping an address. Am I wrong?) > 3. Function name is not good either, the more natural name > would be ip_rtifp(). I would also suggest reimplementing > the already existing ip_rtaddr() into ip_rtifp(), and > implementing ip_rtaddr() in terms of ip_rtifp(). (This'd be a good thing, I also thought about it, but this wasn't the main point of the patch -- the main idea stills be the same and it is ingress filtering. :)) > General notes: > > Ingress filtering in unacceptable in many cases. And is acceptable in many others :) Don't you agree with that? > For example, > our site is connected to two ISPs, ISP-A and ISP-B. Each ISP > has allocated a network (NET-A and NET-B). Both channels are > connected to a single gateway box, and are reachable through > interfaces IF-A and IF-B, respectively. The `default' route > on this box point to ISP-A through IF-A. > > Now imagine that you want to ping(8) one of our addresses in > NET-B. This packet will appear on our gateway box through > IF-B, but ingress filter would discard it because ip_rtifp() > lookup would return the IF-A interface for your address > (ip_src in the packet). > We solve the problem with multiple default routes with `ipfw > fwd'. All outgoing packets with the source IP address in > NET-B we forward through the IF-B interface. 1) in case of ip_fw.c integrated version you could easily specify not using ingress filtering on such NICs. 2) this patch _AS_ _IS_ is already useful for both back bone routers making up an internal network infrastructure and border gateways with single _default_ route. I wrote about asymmetric routing incompatible with the patch, and this point is quite similar to the situation, represented by you. > Cheers, P.S. I'd be very grateful if you could point out reasonable ways of integration ingress filter with ip_fw.c... Or you consider this is not worth doing at all?... -- Igor M Podlesny a.k.a. Poige http://WwW.MorninG.RU/~poige To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 9:45:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id A6FFB37B420; Fri, 26 Apr 2002 09:44:53 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3QGiR785283; Fri, 26 Apr 2002 19:44:27 +0300 (EEST) (envelope-from ru) Date: Fri, 26 Apr 2002 19:44:27 +0300 From: Ruslan Ermilov To: Igor M Podlesny Cc: net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: patch -- An ingress filter (RFC2827) Message-ID: <20020426164427.GA82505@sunbay.com> References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="EeQfGwPcQSOJBaQU" Content-Disposition: inline In-Reply-To: <20020426213657.D85230@mars-gw.morning.ru> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --EeQfGwPcQSOJBaQU Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Apr 26, 2002 at 09:36:57PM +0800, Igor M Podlesny wrote: > On Fri, Apr 26, 2002 at 12:16:20PM +0300, Ruslan Ermilov wrote: > > On Sun, Apr 14, 2002 at 06:04:47PM +0800, Igor M Podlesny wrote: > > >=20 > > > Hello! > > >=20 > > > I'd like to know your opinion about this patch > > >=20 > > > http://www.morning.ru/~poige/patchzone/ingressfiltering.patch > > >=20 > > > which is mine attempt to implement an ingress filter being inspired by > > > RFC2827 "Network Ingress Filtering: Defeating Denial of Service Attac= ks > > > which employ IP Source Address Spoofing". > > >=20 > > > (http://www.ietf.org/rfc/rfc2827.txt) > > >=20 > > > It should be mentioned IMHO that this code makes another one in ip_in= put.c a > > > kind of redundant -- I mean code checking/blocking the 127/8 network = "on > > > wire". BTW, I suggest if not removing it completely then adding (sys)= logging > > > into, -- 127/8-spoofing certainly should be logged. :) > > >=20 > > > Another thing to pay an attention to: I deem it'd be better if a such= filter > > > was built-in into ip_fw.c, allowing such syntax for ipfw(8): > > >=20 > > > deny log ip from any to any in via fxp0 spoofed > > >=20 > > > But AFAIS in ip_fw.h: > > >=20 > > > #define IP_FW_F_IN 0x00000100 > > > ... > > > #define IP_FW_F_DME 0x40000000 /* destination =3D me */ > > >=20 > > > #define IP_FW_F_MASK 0x7FFFFFFF /* All possible flag bits mas= k */ > > >=20 > > > and u_int32_t fw_flg; > > >=20 > > > there is no free space for any additional flags... > > >=20 > > > So, I was a bit unsure whether should I expand fw_flg to u_int64_t, a= nd do > > > any other extensions. For now I decided just to wrote something like a > > > draft, test it (it seems to be working ;), and asking you, people, fo= r your > > > comments/ideas on it. > > >=20 > > > P.S. A bit more info on this patch is at http://www.morning.ru/~poige= /patchzone/ > > >=20 >=20 > At first, thank you, Ruslan for your answer, it's quite fertile! >=20 > > Style comments: >=20 > I should had read the manual or just had known it by heart before writing > out the patch in case I was a commiter going to commit it into the > repository. But I'm not. Moreover, I don't suggest using _this_ code AS IS > in FreeBSD. I said before -- this is a draft. Other people also agree this > should be better done (ingress filtering I mean) at ip_fw.c not ip_input.= c. >=20 > So yeah, it works someway, but again -- it's a draft. ;) >=20 > Well, thank you for time you spent telling me (us all, reading that) about > style, but I think that was done in a wrong time. And just one question > to you (if we're anyway have been talking about the style) as to a really > knowledgeable person: is the whole FreeBSD's kernel code is style(9)d fro= m A > to Z?... :) >=20 Just tell me next time you don't want to hear about style, it's okay with m= e. > > 1. There are many unnecessary whitespace changes. >=20 > (I consider using whitespaces similar to commenting, BTW. It's a good > C-style I heard. ;)) >=20 This makes patches very hard to read as there are many unrelated to the functionality changes. > > 2. Don't use the `register' keyword. >=20 > (Haven't found anything bout it in style(9)...) >=20 There was a huge sweep in -CURRENT that "removed 'register' keyword". This comment was inspired by this. > > 3. Double `const' doesn't do any good. (I was once confused about thi= s too.) >=20 > (const char *const ptr? >=20 > Why? I deem `const' can't make a code worse, only better, cause it makes = an > additional description of variables/functions/code/algo...) >=20 Because this is merely equivalent to "const char *ptr". > > 4. ip_fw.c part of the patch has some cruft in it. >=20 > Namely what/where? >=20 I misread the diffs, in the part that const'ified some variables in ipfw_report(). The change also included the bogus whitespace change, after "int len;". These are whitespace changes that make patches unreadable. > > Functional comments: > >=20 > > 1. The use and externalization of ipfw_report() wasn't a good > > idea. Your patch makes ingressfilter dependent on `options > > IPFIREWALL' because ip_fw.c is only compiled if this option > > is present. >=20 > Not such a big deal cause this can be easily solved in various ways > dependent on what we want... (yeah, that's again about `draft'-approach :) >=20 Well, you were pushy in asking me to comment on your patch, here they go. What's up? > > 2. Comment for ipf_rtaddr() is bogus -- the function returns > > the pointer to an interface not address. >=20 > (A pointer is a value keeping an address. Am I wrong?) >=20 "addr" =3D=3D (AF_INET family address), "ifp" =3D=3D (pointer to "struct if= "). > > 3. Function name is not good either, the more natural name > > would be ip_rtifp(). I would also suggest reimplementing > > the already existing ip_rtaddr() into ip_rtifp(), and > > implementing ip_rtaddr() in terms of ip_rtifp(). >=20 > (This'd be a good thing, I also thought about it, but this wasn't the ma= in > point of the patch -- the main idea stills be the same and it is ingress > filtering. :)) >=20 Well, again, you asked for a feedback, and I just tried to do my best. > > General notes: > >=20 > > Ingress filtering in unacceptable in many cases. >=20 > And is acceptable in many others :) >=20 > Don't you agree with that? >=20 "In many cases" does not of couse mean "never acceptable". Just wanted to point this out. And of course this patch doesn't replace the 127/8 check which should also occur in ip_output(). > > For example, > > our site is connected to two ISPs, ISP-A and ISP-B. Each ISP > > has allocated a network (NET-A and NET-B). Both channels are > > connected to a single gateway box, and are reachable through > > interfaces IF-A and IF-B, respectively. The `default' route > > on this box point to ISP-A through IF-A. > >=20 > > Now imagine that you want to ping(8) one of our addresses in > > NET-B. This packet will appear on our gateway box through > > IF-B, but ingress filter would discard it because ip_rtifp() > > lookup would return the IF-A interface for your address > > (ip_src in the packet). > > We solve the problem with multiple default routes with `ipfw > > fwd'. All outgoing packets with the source IP address in > > NET-B we forward through the IF-B interface. >=20 > 1) in case of ip_fw.c integrated version you could easily specify > not using ingress filtering on such NICs. >=20 That's true. > 2) this patch _AS_ _IS_ is already useful for both back bone routers maki= ng > up an internal network infrastructure and border gateways with single > _default_ route. I wrote about asymmetric routing incompatible with the p= atch, > and this point is quite similar to the situation, represented by you. >=20 I haven't seen this in your original mail to which I replied, perhaps I just missed it. > > Cheers, >=20 > P.S. I'd be very grateful if you could point out reasonable ways of > integration ingress filter with ip_fw.c... Or you consider this is not wo= rth > doing at all?... >=20 Maybe introducing the new "non-routable" keyword. That would filter all matching incoming packets. Specifying "deny ip from any to any non-routable" would mean "ingress filter on all interfaces". The keyword should only be accepted for "in" or "in out" rules. It is meaningless for "out" rules. Cheers, --=20 Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age --EeQfGwPcQSOJBaQU Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8yYPrUkv4P6juNwoRAqBtAKCC94QAqr9hSFs98Vcg7pYq5XYT7QCcC5JX 73B6uA3XwqWPxeQ2vYLw4e4= =Q+wx -----END PGP SIGNATURE----- --EeQfGwPcQSOJBaQU-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 10: 1:48 2002 Delivered-To: freebsd-isp@freebsd.org Received: from tp.databus.com (p72-186.acedsl.com [66.114.72.186]) by hub.freebsd.org (Postfix) with ESMTP id 1C54B37B404; Fri, 26 Apr 2002 10:01:41 -0700 (PDT) Received: from databus.com (localhost.databus.com [127.0.0.1]) by tp.databus.com (8.12.3/8.12.2) with ESMTP id g3QH1dp7035132; Fri, 26 Apr 2002 13:01:39 -0400 (EDT) (envelope-from barney@databus.com) Received: (from barney@localhost) by databus.com (8.12.3/8.12.3/Submit) id g3QH1dfn035131; Fri, 26 Apr 2002 13:01:39 -0400 (EDT) Date: Fri, 26 Apr 2002 13:01:39 -0400 From: Barney Wolff To: Ruslan Ermilov Cc: Igor M Podlesny , net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: patch -- An ingress filter (RFC2827) Message-ID: <20020426130139.A34980@tp.databus.com> References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru> <20020426164427.GA82505@sunbay.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020426164427.GA82505@sunbay.com>; from ru@FreeBSD.ORG on Fri, Apr 26, 2002 at 07:44:27PM +0300 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org When did this change? "const char *ptr" used to mean that the thing pointed to cannot be changed, but the pointer itself can be. So far as I know, it still does. Educate me, please, if that's no longer so. On Fri, Apr 26, 2002 at 07:44:27PM +0300, Ruslan Ermilov wrote: > > > 3. Double `const' doesn't do any good. (I was once confused about this too.) > > > > (const char *const ptr? > > > > Why? I deem `const' can't make a code worse, only better, cause it makes an > > additional description of variables/functions/code/algo...) > > > Because this is merely equivalent to "const char *ptr". -- Barney Wolff I never met a computer I didn't like. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 10: 7:45 2002 Delivered-To: freebsd-isp@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id F114C37B405; Fri, 26 Apr 2002 10:07:36 -0700 (PDT) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g3QH77L87605; Fri, 26 Apr 2002 20:07:07 +0300 (EEST) (envelope-from ru) Date: Fri, 26 Apr 2002 20:07:07 +0300 From: Ruslan Ermilov To: Barney Wolff Cc: Igor M Podlesny , net@FreeBSD.ORG, freebsd-isp@FreeBSD.ORG Subject: Re: patch -- An ingress filter (RFC2827) Message-ID: <20020426170707.GA87482@sunbay.com> References: <20020414180447.A93954@mars-gw.morning.ru> <20020426091620.GA18917@sunbay.com> <20020426213657.D85230@mars-gw.morning.ru> <20020426164427.GA82505@sunbay.com> <20020426130139.A34980@tp.databus.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="GvXjxJ+pjyke8COw" Content-Disposition: inline In-Reply-To: <20020426130139.A34980@tp.databus.com> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --GvXjxJ+pjyke8COw Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Apr 26, 2002 at 01:01:39PM -0400, Barney Wolff wrote: > When did this change? "const char *ptr" used to mean that the thing > pointed to cannot be changed, but the pointer itself can be. So far > as I know, it still does. Educate me, please, if that's no longer so. >=20 > On Fri, Apr 26, 2002 at 07:44:27PM +0300, Ruslan Ermilov wrote: > > > > 3. Double `const' doesn't do any good. (I was once confused about= this too.) > > >=20 > > > (const char *const ptr? > > >=20 > > > Why? I deem `const' can't make a code worse, only better, cause it ma= kes an > > > additional description of variables/functions/code/algo...) > > >=20 > > Because this is merely equivalent to "const char *ptr". >=20 Someone already pointed that out. Me stands corrected. :-) There's a single example of this in n869.txt ISO C-99 draft I have. Cheers, --=20 Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age --GvXjxJ+pjyke8COw Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8yYk7Ukv4P6juNwoRAiI/AJ0QrS3+DTBase+Ail5ef0sD4kTimQCeI7Bn kjZVAbQWiTOa70+bRPhuG2g= =h1dW -----END PGP SIGNATURE----- --GvXjxJ+pjyke8COw-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 15:44: 6 2002 Delivered-To: freebsd-isp@freebsd.org Received: from web13107.mail.yahoo.com (web13107.mail.yahoo.com [216.136.174.152]) by hub.freebsd.org (Postfix) with SMTP id BBA8337B41C for ; Fri, 26 Apr 2002 15:44:04 -0700 (PDT) Message-ID: <20020426224404.55853.qmail@web13107.mail.yahoo.com> Received: from [64.174.53.42] by web13107.mail.yahoo.com via HTTP; Fri, 26 Apr 2002 15:44:04 PDT Date: Fri, 26 Apr 2002 15:44:04 -0700 (PDT) From: Will Evans Subject: Did the FBI contact you? To: freebsd-isp@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Did the FBI contact you? We at the Center for Investigative Reporting (www.muckraker.org), in San Francisco, are looking for cases where ISPs have been called or visited by the FBI after September 11. We’d like to find out concrete examples of ISPs that were contacted and if they are installing or being asked to install Carnivore. If this has happened to you, or you know of any such incident, please contact me with the information- and I’ll keep your identity confidential, if you wish. Thanks, Will Evans 415-543-1200 x314 wje80@yahoo.com __________________________________________________ Do You Yahoo!? Yahoo! Games - play chess, backgammon, pool and more http://games.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 15:47:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from I-Sphere.COM (shell.i-sphere.com [209.249.146.70]) by hub.freebsd.org (Postfix) with ESMTP id A119C37B41B for ; Fri, 26 Apr 2002 15:47:12 -0700 (PDT) Received: (from fasty@localhost) by I-Sphere.COM (8.11.6/8.11.6) id g3QMlHK11144; Fri, 26 Apr 2002 15:47:17 -0700 (PDT) (envelope-from fasty) Date: Fri, 26 Apr 2002 15:47:16 -0700 From: faSty To: Will Evans Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Did the FBI contact you? Message-ID: <20020426154716.A11136@i-sphere.com> References: <20020426224404.55853.qmail@web13107.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020426224404.55853.qmail@web13107.mail.yahoo.com>; from wje80@yahoo.com on Fri, Apr 26, 2002 at 03:44:04PM -0700 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nope, FBI didnt contact my business as internet provider. -trev On Fri, Apr 26, 2002 at 03:44:04PM -0700, Will Evans wrote: > Did the FBI contact you? > We at the Center for Investigative Reporting > (www.muckraker.org), in San Francisco, are looking for > cases where ISPs have been called or visited by the > FBI after September 11. We’d like to find out concrete > examples of ISPs that were contacted and if they are > installing or being asked to install Carnivore. If > this has happened to you, or you know of any such > incident, please contact me with the information- and > I’ll keep your identity confidential, if you wish. > Thanks, > Will Evans > 415-543-1200 x314 > wje80@yahoo.com > > __________________________________________________ > Do You Yahoo!? > Yahoo! Games - play chess, backgammon, pool and more > http://games.yahoo.com/ > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message -- Honk if you love peace and quiet. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 20:26:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cagelink.com (dsl94213.dyndsl.nettally.com [199.44.94.213]) by hub.freebsd.org (Postfix) with ESMTP id 0D45937B400 for ; Fri, 26 Apr 2002 20:26:49 -0700 (PDT) Received: by cagelink.com (Postfix, from userid 1001) id 5CCB7176; Fri, 26 Apr 2002 23:32:19 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by cagelink.com (Postfix) with ESMTP id 598A982 for ; Fri, 26 Apr 2002 23:32:19 -0400 (EDT) Date: Fri, 26 Apr 2002 23:32:19 -0400 (EDT) From: Tyler To: Subject: Problem with large hard drive Message-ID: <20020426232937.N4779-100000@cagelink.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Im installing FreeBSD on a server going into an ISP but im running into problems with drive geometry. The first time I tryed it said it was incorrect, set it to 9732/255/63 and installed. Didn't work. Then I tryed 16383/16/63, thats what Maxtor's Documents said. Didn't work. Then I went into the BIOS and set the HDD to manual and played around with the C/H/S and matching those with how I installed FreeBSD. Didn't work. I need to get this server up ASAP but im running into these problems. Any help will be greatly appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 20:35:54 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id 0994437B404 for ; Fri, 26 Apr 2002 20:35:51 -0700 (PDT) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g3R3Zml04412; Fri, 26 Apr 2002 23:35:48 -0400 (EDT) (envelope-from bv) Date: Fri, 26 Apr 2002 23:35:48 -0400 From: Bill Vermillion To: Tyler Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Problem with large hard drive Message-ID: <20020427033548.GB4251@wjv.com> References: <20020426232937.N4779-100000@cagelink.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020426232937.N4779-100000@cagelink.com> User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org When asked his whereabouts on Fri, Apr 26, 2002 at 23:32 , Tyler took the fifth, drank it, and then slurred: > Im installing FreeBSD on a server going into an ISP but im > running into problems with drive geometry. The first time I > tryed it said it was incorrect, set it to 9732/255/63 and > installed. Didn't work. Then I tryed 16383/16/63, thats what > Maxtor's Documents said. Didn't work. Then I went into the BIOS > and set the HDD to manual and played around with the C/H/S > and matching those with how I installed FreeBSD. Didn't work. > I need to get this server up ASAP but im running into these > problems. Any help will be greatly appreciated. You neglected to say anything about motherboards, processors, and in particular the BIOS on the Mboard. I had one 1RU unit that I upgraded and in the end I had to put on the jumper that Maxtor indicates in the printed docs that come with the HD so that I only got 30MB from a 40MB HD. I would need to upgrade the BIOS on the mboard to handle more. I tried all variants known to man and many variants that other sentient species may have tried, and all to no avail. Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 20:46:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cagelink.com (dsl94213.dyndsl.nettally.com [199.44.94.213]) by hub.freebsd.org (Postfix) with ESMTP id BA66337B41B for ; Fri, 26 Apr 2002 20:46:29 -0700 (PDT) Received: by cagelink.com (Postfix, from userid 1001) id E29DB176; Fri, 26 Apr 2002 23:52:03 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by cagelink.com (Postfix) with ESMTP id DF51082; Fri, 26 Apr 2002 23:52:03 -0400 (EDT) Date: Fri, 26 Apr 2002 23:52:03 -0400 (EDT) From: Tyler To: Bill Vermillion Cc: Subject: Re: Problem with large hard drive In-Reply-To: <20020427033548.GB4251@wjv.com> Message-ID: <20020426234414.N4836-100000@cagelink.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Its a ASUS P4S333-VM, 1.6Ghz P4, HDD is Maxtor 6L080J4, with AwardBIOS REVISION 1004. On Fri, 26 Apr 2002, Bill Vermillion wrote: > When asked his whereabouts on Fri, Apr 26, 2002 at 23:32 , > Tyler took the fifth, drank it, and then slurred: > > > Im installing FreeBSD on a server going into an ISP but im > > running into problems with drive geometry. The first time I > > tryed it said it was incorrect, set it to 9732/255/63 and > > installed. Didn't work. Then I tryed 16383/16/63, thats what > > Maxtor's Documents said. Didn't work. Then I went into the BIOS > > and set the HDD to manual and played around with the C/H/S > > and matching those with how I installed FreeBSD. Didn't work. > > I need to get this server up ASAP but im running into these > > problems. Any help will be greatly appreciated. > > You neglected to say anything about motherboards, processors, and > in particular the BIOS on the Mboard. I had one 1RU unit that I > upgraded and in the end I had to put on the jumper that Maxtor > indicates in the printed docs that come with the HD so that I only > got 30MB from a 40MB HD. I would need to upgrade the BIOS on the > mboard to handle more. > > I tried all variants known to man and many variants that other > sentient species may have tried, and all to no avail. > > Bill > -- > Bill Vermillion - bv @ wjv . com > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 20:57:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from bilver.wjv.com (spdsl-033.wanlogistics.net [63.209.115.33]) by hub.freebsd.org (Postfix) with ESMTP id 3E2ED37B416 for ; Fri, 26 Apr 2002 20:57:31 -0700 (PDT) Received: (from bv@localhost) by bilver.wjv.com (8.11.6/8.11.6) id g3R3vTe04680; Fri, 26 Apr 2002 23:57:29 -0400 (EDT) (envelope-from bv) Date: Fri, 26 Apr 2002 23:57:28 -0400 From: Bill Vermillion To: Tyler Cc: freebsd-isp@freebsd.org Subject: Re: Problem with large hard drive Message-ID: <20020427035728.GE4251@wjv.com> References: <20020427033548.GB4251@wjv.com> <20020426234414.N4836-100000@cagelink.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020426234414.N4836-100000@cagelink.com> User-Agent: Mutt/1.3.25i Organization: W.J.Vermillion / Orlando - Winter Park Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, Apr 26, 2002 at 23:52 , Tyler moved his mouse, rebooted for the change to take effect, and then said: > Its a ASUS P4S333-VM, 1.6Ghz P4, HDD is Maxtor 6L080J4, with AwardBIOS > REVISION 1004. Have you check the ASUS or Award page for BIOS information? > > On Fri, 26 Apr 2002, Bill Vermillion wrote: > > > When asked his whereabouts on Fri, Apr 26, 2002 at 23:32 , > > Tyler took the fifth, drank it, and then slurred: > > > > > Im installing FreeBSD on a server going into an ISP but im > > > running into problems with drive geometry. ... > > You neglected to say anything about motherboards, processors, and > > in particular the BIOS on the Mboard. .... > Bill -- Bill Vermillion - bv @ wjv . com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 21:27:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cagelink.com (dsl94213.dyndsl.nettally.com [199.44.94.213]) by hub.freebsd.org (Postfix) with ESMTP id 8F25F37B41A for ; Fri, 26 Apr 2002 21:27:39 -0700 (PDT) Received: by cagelink.com (Postfix, from userid 1001) id 29475178; Sat, 27 Apr 2002 00:33:14 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by cagelink.com (Postfix) with ESMTP id 27E21176; Sat, 27 Apr 2002 00:33:14 -0400 (EDT) Date: Sat, 27 Apr 2002 00:33:14 -0400 (EDT) From: Tyler To: Bill Vermillion Cc: Subject: Re: Problem with large hard drive In-Reply-To: <20020427035728.GE4251@wjv.com> Message-ID: <20020427003056.Q5009-100000@cagelink.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I can't get the thing to boot a windows boot disk to upgrade the BIOS, the only thing I can get to boot is the FBSD boot disks. It might be something todo with the hardware and not the software knowing that another server I purchased from them is DOA but I emailed them and asked what they thought the drive geometry was, I mean...whats one more install of FreeBSD? Whats that gonna make? 7 or 8 now? On Fri, 26 Apr 2002, Bill Vermillion wrote: > On Fri, Apr 26, 2002 at 23:52 , Tyler moved his mouse, > rebooted for the change to take effect, and then said: > > > Its a ASUS P4S333-VM, 1.6Ghz P4, HDD is Maxtor 6L080J4, with AwardBIOS > > REVISION 1004. > > Have you check the ASUS or Award page for BIOS information? > > > > On Fri, 26 Apr 2002, Bill Vermillion wrote: > > > > > When asked his whereabouts on Fri, Apr 26, 2002 at 23:32 , > > > Tyler took the fifth, drank it, and then slurred: > > > > > > > Im installing FreeBSD on a server going into an ISP but im > > > > running into problems with drive geometry. ... > > > > You neglected to say anything about motherboards, processors, and > > > in particular the BIOS on the Mboard. .... > > > Bill > > -- > Bill Vermillion - bv @ wjv . com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Apr 26 21:31:36 2002 Delivered-To: freebsd-isp@freebsd.org Received: from workhorse.imach.com (barbwire.iMach.com [206.127.77.82]) by hub.freebsd.org (Postfix) with ESMTP id 6FAB637B405 for ; Fri, 26 Apr 2002 21:31:31 -0700 (PDT) Received: from localhost (forrestc@localhost) by workhorse.imach.com (8.11.6/8.11.6) with ESMTP id g3R4VSj17135; Fri, 26 Apr 2002 22:31:28 -0600 (MDT) (envelope-from forrestc@imach.com) Date: Fri, 26 Apr 2002 22:31:28 -0600 (MDT) From: "Forrest W. Christian" To: Tyler Cc: freebsd-isp@FreeBSD.ORG Subject: Re: Problem with large hard drive In-Reply-To: <20020426232937.N4779-100000@cagelink.com> Message-ID: <20020426222842.K16057-100000@workhorse.imach.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 26 Apr 2002, Tyler wrote: > Im installing FreeBSD on a server going into an ISP but im running into > problems with drive geometry. The first time I tryed it said it was > incorrect, set it to 9732/255/63 and installed. Didn't work. Then I > tryed 16383/16/63, thats what Maxtor's Documents said. Didn't work. Then > I went into the BIOS and set the HDD to manual and played around with the > C/H/S and matching those with how I installed FreeBSD. Didn't work. I > need to get this server up ASAP but im running into these problems. Any > help will be greatly appreciated. There are any one of hundreds of things which could cause this. The bottom line is that: 1) CHS settings in bios must match freebsd settings. I'd autodetect the drive with bios, and then when I install in freebsd make sure that you enter the bios settings into the partitioner so it knows what the bios thinks. 2) LBA/non-lba matters. 3) You didn't tell us where the boot fails (I'm assuming it's a boot problem). 4) Does it work if you boot the kernel off a floppy, with root set to the hard drive. (details on how to do this left as exercise to reader) 5) Some bioses won't boot the kernel off of anything beyond cyl 1024. And so on. - Forrest W. Christian (forrestc@imach.com) AC7DE ---------------------------------------------------------------------- The Innovation Machine Ltd. P.O. Box 5749 http://www.imach.com/ Helena, MT 59604 Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 ---------------------------------------------------------------------- Protect your personal freedoms - visit http://www.lp.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 27 0:24:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from webmail.emre.de (webmail.emre.de [194.8.203.50]) by hub.freebsd.org (Postfix) with ESMTP id 6148C37B405 for ; Sat, 27 Apr 2002 00:24:34 -0700 (PDT) Received: (from www@localhost) by webmail.emre.de (8.11.6/8.11.6) id g3R7OUo30447 for freebsd-isp@freebsd.org; Sat, 27 Apr 2002 09:24:31 +0200 (CEST) (envelope-from info@emre.de) X-Authentication-Warning: webmail.emre.de: www set sender to info@emre.de using -f Received: from 192.168.2.65 ( [192.168.2.65]) as user emre@webmail.emre.de by webmail.emre.de with HTTP; Sat, 27 Apr 2002 09:24:28 +0200 Message-ID: <1019892268.3cca522cc1c21@webmail.emre.de> Date: Sat, 27 Apr 2002 09:24:28 +0200 From: Emre Bastuz To: freebsd-isp@freebsd.org Subject: Re: Problem with large hard drive References: <20020426232937.N4779-100000@cagelink.com> In-Reply-To: <20020426232937.N4779-100000@cagelink.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.0 X-Originating-IP: 192.168.2.65 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi Tyler, sounds like the same problem I had about a week ago (see http://docs.freebsd.org/cgi/getmsg.cgi?fetch=10398+0+archive/2002/freebsd-isp/20020421.freebsd-isp ). I know it sounds strange, but I got the system up and running by setting the server´s Bios to the "Failsafe Defaults". After that I could boot normaly and the FreeBSD installation tool did not complain about wrong drive geometry etc. Hope this helps. Regards, Emre -- Emre Bastuz info@emre.de http://www.emre.de UIN: 561260 PGP Key ID: 0xAFAC77FD ------------------------------------------------- This mail sent through IMP: http://horde.org/imp/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Apr 27 5: 7:44 2002 Delivered-To: freebsd-isp@freebsd.org Received: from cagelink.com (dsl94213.dyndsl.nettally.com [199.44.94.213]) by hub.freebsd.org (Postfix) with ESMTP id 3700B37B400 for ; Sat, 27 Apr 2002 05:07:38 -0700 (PDT) Received: by cagelink.com (Postfix, from userid 1001) id 6C4F8171; Sat, 27 Apr 2002 08:13:10 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by cagelink.com (Postfix) with ESMTP id 68BB5CD; Sat, 27 Apr 2002 08:13:10 -0400 (EDT) Date: Sat, 27 Apr 2002 08:13:10 -0400 (EDT) From: Tyler To: "Forrest W. Christian" Cc: Subject: Re: Problem with large hard drive In-Reply-To: <20020426222842.K16057-100000@workhorse.imach.com> Message-ID: <20020427081020.Q8700-100000@cagelink.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org 1) I've matched all my geometry settings in installation with the BIOS but it dosen't seem to make a difference. 2) Where do I set this in the install? 3) Where it should go into the "Booting Kernel in..." I get a blinking underscore and about after 5 minutes of the HDD running it just says DISK FAILURE, ENTER A DISK or something along those lines, as if there was a bad boot disk in the floppy drive. 4) No, haven't tryed that. I'll try now. On Fri, 26 Apr 2002, Forrest W. Christian wrote: > On Fri, 26 Apr 2002, Tyler wrote: > > > Im installing FreeBSD on a server going into an ISP but im running into > > problems with drive geometry. The first time I tryed it said it was > > incorrect, set it to 9732/255/63 and installed. Didn't work. Then I > > tryed 16383/16/63, thats what Maxtor's Documents said. Didn't work. Then > > I went into the BIOS and set the HDD to manual and played around with the > > C/H/S and matching those with how I installed FreeBSD. Didn't work. I > > need to get this server up ASAP but im running into these problems. Any > > help will be greatly appreciated. > > There are any one of hundreds of things which could cause this. > > The bottom line is that: > > 1) CHS settings in bios must match freebsd settings. I'd autodetect the > drive with bios, and then when I install in freebsd make sure that you > enter the bios settings into the partitioner so it knows what the bios > thinks. > > 2) LBA/non-lba matters. > > 3) You didn't tell us where the boot fails (I'm assuming it's a boot > problem). > > 4) Does it work if you boot the kernel off a floppy, with root set to the > hard drive. (details on how to do this left as exercise to reader) > > 5) Some bioses won't boot the kernel off of anything beyond cyl 1024. > > And so on. > > - Forrest W. Christian (forrestc@imach.com) AC7DE > ---------------------------------------------------------------------- > The Innovation Machine Ltd. P.O. Box 5749 > http://www.imach.com/ Helena, MT 59604 > Home of PacketFlux Technogies and BackupDNS.com (406)-442-6648 > ---------------------------------------------------------------------- > Protect your personal freedoms - visit http://www.lp.org/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message