From owner-freebsd-net@FreeBSD.ORG Sun Apr 16 15:02:06 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C134F16A401 for ; Sun, 16 Apr 2006 15:02:06 +0000 (UTC) (envelope-from det_re@yahoo.com) Received: from web60113.mail.yahoo.com (web60113.mail.yahoo.com [209.73.178.96]) by mx1.FreeBSD.org (Postfix) with SMTP id D498E43D46 for ; Sun, 16 Apr 2006 15:02:05 +0000 (GMT) (envelope-from det_re@yahoo.com) Received: (qmail 58744 invoked by uid 60001); 16 Apr 2006 15:02:05 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=6DWa/K8/J1yHaUG7c1y/wVJWWO1y3TpFkSEt22P5WzFxayHn0x9r07HuS4O4ZWt/n8VzHTk7lvLbNffvQygnvLLT0nhkhhgTFHLQaiOQvVvfM8T1487qhFFrFaCcj/VcZuI0qg4E8wJZYBUICjvhID+9JATOz2jwAA/eNhUP8hk= ; Message-ID: <20060416150205.58742.qmail@web60113.mail.yahoo.com> Received: from [60.48.72.166] by web60113.mail.yahoo.com via HTTP; Sun, 16 Apr 2006 08:02:04 PDT Date: Sun, 16 Apr 2006 08:02:04 -0700 (PDT) From: "Yeow C.H." To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Libpcap based: packet generator + capture file editor + bridge for IEEE802.3 on FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Apr 2006 15:02:06 -0000 For those who are interested with this libpcap based networking suite, please do check out Bit-Twist 0.7, development release here: 1. http://bittwist.sourceforge.net/ (Bit-Twist homepage) 2. http://sourceforge.net/projects/bittwist/ (SF.net project page) Bit-Twist is a simple and powerful libpcap-based Ethernet II (IEEE 802.3) packet generator that comes complete with a comprehensive pcap capture file editor and a multiport link speed capability Ethernet bridge! It is designed to compliment tcpdump, which by itself has done a great job in capturing network traffic. With Bit-Twist, you can now regenerate the captured traffic onto a live network. Packets are generated from saved tcpdump capture file (trace file). Bit-Twist also comes with a comprehensive trace file editor to allow you to change the contents of a trace file. You can also append your own payload to each packet in the trace file (IP/TCP/UDP/ICMP header checksum is corrected automatically). Although packet generator is generally useful for simulating networking traffic, testing firewall/IDS/IPS, or troubleshooting various network problems, Bit-Twist (together with tcpdump) has also proven itself to be useful for educational purposes especially in Computer Network classes. As with most of the existing packet generators, this is not immediately trivial (e.g. many times, they are complex, huge, and overloaded with features). Bit-Twist prevails here with its simplicity in its implementation, usage, and deployment which helps cut the learning curve of students' and general users alike. Currently, Bit-Twist compiles on *BSD and Linux and it works under Ethernet II (802.3) network with a MTU of up to 1500 bytes on 10Mbps (10Base-T Ethernet) or 100Mbps (Fast Ethernet) link speed. --------------------------------- New Yahoo! Messenger with Voice. Call regular phones from your PC and save big. From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 02:02:44 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C601716A406 for ; Mon, 17 Apr 2006 02:02:44 +0000 (UTC) (envelope-from kan.cai@gmail.com) Received: from pproxy.gmail.com (pproxy.gmail.com [64.233.166.176]) by mx1.FreeBSD.org (Postfix) with ESMTP id E599843D5A for ; Mon, 17 Apr 2006 02:02:40 +0000 (GMT) (envelope-from kan.cai@gmail.com) Received: by pproxy.gmail.com with SMTP id t32so496542pyc for ; Sun, 16 Apr 2006 19:02:40 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=fD/2nkVSBBdXgs0VVu4PHzDuHRlE5Wmb6N8eNHVw94QyTfFZLWsHCCkpGaMS13E/2UiYmu3LU/OJYc1nS01NZQa4HJr8AO1P+RJ032em/oqcC0/H00SMj9Arwx3g77GwgBpPDxJpA5/If/6Ld3YoZonXp8bqtdmYNAo91/P2rls= Received: by 10.35.96.11 with SMTP id y11mr400826pyl; Sun, 16 Apr 2006 19:02:40 -0700 (PDT) Received: by 10.35.49.16 with HTTP; Sun, 16 Apr 2006 19:02:40 -0700 (PDT) Message-ID: <5365ea660604161902n57fb16d6n32295c61b0c0be4b@mail.gmail.com> Date: Sun, 16 Apr 2006 19:02:40 -0700 From: "Kan Cai" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: TCP Westwood implemented? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 02:02:44 -0000 Greetings all: Just wondering if Westwood has been incorporated into TCP stack at this point, or if there is a plan to do so? As far as I know, its has been part of linux kernel for about 1 year or so. Thanks in advance for any information. cheers, --ken From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 02:41:56 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2165C16A400 for ; Mon, 17 Apr 2006 02:41:56 +0000 (UTC) (envelope-from kcai@cs.ubc.ca) Received: from mail-relay1.cs.ubc.ca (mail-relay1.cs.ubc.ca [142.103.6.79]) by mx1.FreeBSD.org (Postfix) with ESMTP id B431F43D46 for ; Mon, 17 Apr 2006 02:41:55 +0000 (GMT) (envelope-from kcai@cs.ubc.ca) Received: from smtp.cs.ubc.ca (smtp.cs.ubc.ca [142.103.6.52]) by mail-relay1.cs.ubc.ca (8.13.6/8.13.6) with ESMTP id k3H2ftcb012623 for ; Sun, 16 Apr 2006 19:41:55 -0700 Received: from lore.cs.ubc.ca (lore.cs.ubc.ca [142.103.14.160]) by smtp.cs.ubc.ca (8.13.6/8.13.6) with ESMTP id k3H2ftVG016933 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Sun, 16 Apr 2006 19:41:55 -0700 Date: Sun, 16 Apr 2006 19:16:08 -0700 (PDT) From: Kan Cai To: freebsd-net@freebsd.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-PMX-Version: 5.0.3.165339, Antispam-Engine: 2.1.0.0, Antispam-Data: 2006.4.16.192103 X-UBCCS-SpamTag: Gauge=IIIIIII, Probability=7%, Report='__CT 0, __CT_TEXT_PLAIN 0, __HAS_MSGID 0, __MIME_TEXT_ONLY 0, __MIME_VERSION 0, __SANE_MSGID 0' Subject: TCP Westwood implemented? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 02:41:56 -0000 Greetings all: Sorry if this is double-posting; it seems that my first email didn't get through. I am ust wondering if Westwood has been incorporated into TCP stack at this point, or if there is a plan to do so? As far as I know, its has been part of linux kernel for about 1 year or so. Thanks in advance for any information on this. cheers, --ken From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 12:43:44 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EC0EC16A400 for ; Mon, 17 Apr 2006 12:43:44 +0000 (UTC) (envelope-from b.candler@pobox.com) Received: from proof.pobox.com (proof.pobox.com [207.106.133.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 937D843D45 for ; Mon, 17 Apr 2006 12:43:44 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from proof (localhost [127.0.0.1]) by proof.pobox.com (Postfix) with ESMTP id 7C2A4EE588; Mon, 17 Apr 2006 08:43:43 -0400 (EDT) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by proof.sasl.smtp.pobox.com (Postfix) with ESMTP id 4D4043DD17; Mon, 17 Apr 2006 08:43:42 -0400 (EDT) Received: from lists by mappit.local.linnet.org with local (Exim 4.60 (FreeBSD)) (envelope-from ) id 1FVT4v-000Q0l-1C; Mon, 17 Apr 2006 13:43:41 +0100 Date: Mon, 17 Apr 2006 13:43:40 +0100 From: Brian Candler To: "Yeow C.H." Message-ID: <20060417124340.GA99978@uk.tiscali.com> References: <20060416150205.58742.qmail@web60113.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060416150205.58742.qmail@web60113.mail.yahoo.com> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org Subject: Re: Libpcap based: packet generator + capture file editor + bridge for IEEE802.3 on FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 12:43:45 -0000 On Sun, Apr 16, 2006 at 08:02:04AM -0700, Yeow C.H. wrote: > It is designed to compliment tcpdump, which by itself has done a great job > in capturing network traffic. With Bit-Twist, you can now regenerate the > captured traffic onto a live network. Packets are generated from saved tcpdump > capture file (trace file). Interesting - how does it differ from /usr/ports/net-mgmt/tcpreplay ? Regards, Brian. From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 13:34:13 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A57F616A40A for ; Mon, 17 Apr 2006 13:34:13 +0000 (UTC) (envelope-from det_re@yahoo.com) Received: from web60120.mail.yahoo.com (web60120.mail.yahoo.com [209.73.178.88]) by mx1.FreeBSD.org (Postfix) with SMTP id 2C63143D49 for ; Mon, 17 Apr 2006 13:34:13 +0000 (GMT) (envelope-from det_re@yahoo.com) Received: (qmail 36081 invoked by uid 60001); 17 Apr 2006 13:34:12 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=POZ3gCf87+AoEbP8Ctj9Pk4iqc5EIwe37+KJbgyVWCWR7EF+8VgnuxyYvHz33jy2cxX8mbPmvFQm8pylSf//kq80/lpMZPXPWai6nrS4StYOQ7eb7nQ9KeIjvmDTEnGYYzFh+GSRJEvNcOBGZyN/w74J6hyL3uro5WWr8kgbpRk= ; Message-ID: <20060417133412.36079.qmail@web60120.mail.yahoo.com> Received: from [60.50.193.220] by web60120.mail.yahoo.com via HTTP; Mon, 17 Apr 2006 06:34:12 PDT Date: Mon, 17 Apr 2006 06:34:12 -0700 (PDT) From: "Yeow C.H." To: freebsd-net@freebsd.org In-Reply-To: <20060417124340.GA99978@uk.tiscali.com> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: Libpcap based: packet generator + capture file editor + bridge for IEEE802.3 on FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 13:34:14 -0000 Thanks Brian. Simply put Bit-Twist is smaller, do more, medium specific (Ethernet II - IEEE 802.3) suite. Bittwist (packet generator) does not differs much from tcpreplay program. I would admit if you say tcpreplay can do everything that bittwist can do. But bittwist implementation is much simpler and it uses only libpcap library without libnet dependency. Its capture file editor, bittwiste, allow you to change most fields in Ethernet, ARP, IP, ICMP, TCP, and UDP headers and you can specify your own payload. It is possible for the payload to cover the ICMP, TCP, or UDP header itself (checksum is corrected automatically). Tcprewrite (part of Tcpreplay suite) allows you to change src/dst MAC/IP/port only, but, it supports VLAN frames (Bit-Twist does not). Bittwistb (bridge) aids the injection of packets from an end host which get forwarded across different LAN segments. It supports multiple ports (up to 8, or more if you want it to). Tcpbridge supports only 2. Simply put, Bit-Twist is created not to compete with any existing similar projects, i.e. Tcpreplay, but it is here in favor of freedom of choice :) and also, Bit-Twist is currently being used as a practical teaching material in Computer Network classes. Brian Candler wrote: On Sun, Apr 16, 2006 at 08:02:04AM -0700, Yeow C.H. wrote: > It is designed to compliment tcpdump, which by itself has done a great job > in capturing network traffic. With Bit-Twist, you can now regenerate the > captured traffic onto a live network. Packets are generated from saved tcpdump > capture file (trace file). Interesting - how does it differ from /usr/ports/net-mgmt/tcpreplay ? Regards, Brian. --------------------------------- Love cheap thrills? Enjoy PC-to-Phone calls to 30+ countries for just 2¢/min with Yahoo! Messenger with Voice. From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 19:35:10 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0761216A401 for ; Mon, 17 Apr 2006 19:35:10 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6870C43D46 for ; Mon, 17 Apr 2006 19:35:09 +0000 (GMT) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from transport.cksoft.de (localhost [127.0.0.1]) by transport.cksoft.de (Postfix) with ESMTP id 65DF620013F; Mon, 17 Apr 2006 21:35:08 +0200 (CEST) Received: by transport.cksoft.de (Postfix, from userid 66) id A16A0200116; Mon, 17 Apr 2006 21:35:05 +0200 (CEST) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id EDA19444F41; Mon, 17 Apr 2006 19:34:11 +0000 (UTC) Date: Mon, 17 Apr 2006 19:34:11 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: Kelly Yancey In-Reply-To: <20060413155210.R73176@gateway.posi.net> Message-ID: <20060417192638.U13011@maildrop.int.zabbadoz.net> References: <442D8E98.6050903@vineyard.net> <20060331222813.GA29047@zen.inc> <20060331223613.GD80492@spc.org> <20060402130227.G99958@atlantis.atlantis.dp.ua> <20060402113516.D76259@maildrop.int.zabbadoz.net> <20060402151039.R51461@atlantis.atlantis.dp.ua> <20060411153224.L55107@gateway.posi.net> <20060411213528.F13011@maildrop.int.zabbadoz.net> <20060413155210.R73176@gateway.posi.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Virus-Scanned: by AMaViS cksoft-s20020300-20031204bz on transport.cksoft.de Cc: freebsd-net@freebsd.org Subject: Re: tcpdump and ipsec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 19:35:11 -0000 On Thu, 13 Apr 2006, Kelly Yancey wrote: > I'm curious: how are you performing NAT on your tunnelled traffic? the answer is simple: do not NAT on the ipsec interface though it's not fully correct because I do even NAT traffic that goes like: A ---- lan1(ipsec only) --- gw(NAT) --- lan2(ipsec only) ---- B [ipsec only == esp and ike allowed] so the better explanation perhaps is: do not nat on the ipsec interface of the outgoing direction. -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT From owner-freebsd-net@FreeBSD.ORG Mon Apr 17 23:42:53 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ED79F16A40A for ; Mon, 17 Apr 2006 23:42:53 +0000 (UTC) (envelope-from kbyanc@posi.net) Received: from ylpvm15.prodigy.net (ylpvm15-ext.prodigy.net [207.115.57.46]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3D22143D45 for ; Mon, 17 Apr 2006 23:42:53 +0000 (GMT) (envelope-from kbyanc@posi.net) Received: from pimout5-ext.prodigy.net (pimout5-int.prodigy.net [207.115.4.21]) by ylpvm15.prodigy.net (8.12.10 outbound/8.12.10) with ESMTP id k3HNh2YA026352 for ; Mon, 17 Apr 2006 19:43:02 -0400 X-ORBL: [70.231.172.112] Received: from gateway.posi.net (adsl-70-231-172-112.dsl.snfc21.sbcglobal.net [70.231.172.112]) by pimout5-ext.prodigy.net (8.13.6 out.dk/8.13.6) with ESMTP id k3HNggQt069984; Mon, 17 Apr 2006 19:42:43 -0400 Received: from localhost (localhost [127.0.0.1]) by gateway.posi.net (Postfix) with ESMTP id 5F44A75E05F; Mon, 17 Apr 2006 17:50:39 -0700 (PDT) Date: Mon, 17 Apr 2006 17:50:39 -0700 (PDT) From: Kelly Yancey To: "Bjoern A. Zeeb" In-Reply-To: <20060417192638.U13011@maildrop.int.zabbadoz.net> Message-ID: <20060417173122.V293@gateway.posi.net> References: <442D8E98.6050903@vineyard.net> <20060331222813.GA29047@zen.inc> <20060331223613.GD80492@spc.org> <20060402130227.G99958@atlantis.atlantis.dp.ua> <20060402113516.D76259@maildrop.int.zabbadoz.net> <20060402151039.R51461@atlantis.atlantis.dp.ua> <20060411153224.L55107@gateway.posi.net> <20060411213528.F13011@maildrop.int.zabbadoz.net> <20060413155210.R73176@gateway.posi.net> <20060417192638.U13011@maildrop.int.zabbadoz.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Cc: freebsd-net@freebsd.org Subject: Re: tcpdump and ipsec X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Apr 2006 23:42:54 -0000 On Mon, 17 Apr 2006, Bjoern A. Zeeb wrote: > On Thu, 13 Apr 2006, Kelly Yancey wrote: > > > I'm curious: how are you performing NAT on your tunnelled traffic? > > the answer is simple: do not NAT on the ipsec interface though it's > not fully correct because I do even NAT traffic that goes like: > > A ---- lan1(ipsec only) --- gw(NAT) --- lan2(ipsec only) ---- B > > [ipsec only == esp and ike allowed] > > so the better explanation perhaps is: > do not nat on the ipsec interface of the outgoing direction. > "When all you have is a hammer, everything looks like a nail" :) In our case, we couldn't use that hack because we have multiple interfaces, each with its own NAT config. We have to run natd on the interface that the traffic is traversing. With the enc interface, we can handle packets inside the tunnel separate from the tunnel traffic itself without resorting to gymnastics. If I had time I'd integrate PR 94829 myself, but it looks like I'm going to have my hands full for a couple of months. :| We'll see if anyone else picks it up in the meantime... Kelly -- Kelly Yancey - kbyanc@{posi.net,FreeBSD.org} - kelly@nttmcl.com From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 01:06:30 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DF9F116A400 for ; Tue, 18 Apr 2006 01:06:30 +0000 (UTC) (envelope-from chengjin@cs.caltech.edu) Received: from blizzard.cs.caltech.edu (blizzard.cs.caltech.edu [131.215.44.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 871EC43D48 for ; Tue, 18 Apr 2006 01:06:30 +0000 (GMT) (envelope-from chengjin@cs.caltech.edu) Received: from localhost (flood.cs.caltech.edu [131.215.44.31]) by blizzard.cs.caltech.edu (Postfix) with ESMTP id 45DB14022F0 for ; Mon, 17 Apr 2006 18:06:30 -0700 (PDT) Received: from blizzard.cs.caltech.edu ([131.215.44.2]) by localhost (flood.cs.caltech.edu [131.215.44.31]) (amavisd-new, port 10024) with ESMTP id 18374-01 for ; Mon, 17 Apr 2006 18:06:30 -0700 (PDT) Received: from orchestra.cs.caltech.edu (orchestra.cs.caltech.edu [131.215.44.20]) by blizzard.cs.caltech.edu (Postfix) with ESMTP id 17F874022BA for ; Mon, 17 Apr 2006 18:06:30 -0700 (PDT) Received: by orchestra.cs.caltech.edu (Postfix, from userid 20269) id 68041103C72; Mon, 17 Apr 2006 18:06:27 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by orchestra.cs.caltech.edu (Postfix) with ESMTP id CC0D2103C6D for ; Mon, 17 Apr 2006 18:06:27 -0700 (PDT) Date: Mon, 17 Apr 2006 18:06:27 -0700 (PDT) From: Cheng Jin To: freebsd-net@FreeBSD.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: Subject: em in 6.0 missing rx interrupts? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 01:06:31 -0000 Hi, I am running into a problem with em driver possibly missing rx interrupts. I have the following setup Linux NFS server -- FreeBSD 6.0 ethernet bridge -- Linux NFS client and I run a test on the NFS client that repeatedly mounts an NFS directory, retrieves a file, and unmounts the dir. The FreeBSD 6.0 runs on a machine with SuperMicro 5015M-MF motherboard with dual-port onboard Intel 82573v controller. The ethernet bridging was setup using bridge.ko with em0 connected to the NFS server, and em1 connected to the client. The problem is that after a while, the test freezes when the NFS client sends a SYN (NFS over TCP) and never receives the SYNACK for it, and neither are the subsequent retransmitted SYNACKs (some of them triggered by retransmitted SYNs from the client) ever received. I have verified that the NFS server indeed puts the SYNACKs on the wire, by putting an additional bridge with Broadcom ethernet ports (bge) in between the FreeBSD 6.0 bridge and the NFS server. This new bridge can see the SYNACK packets fine and forwards them on, but the bridge with em ports just can't see the SYNACKs. If I replace the bridge with em ports by the one with bge ports, the problem goes away. The test can eventually recover when the client uses a different port to contact the server. Also, this problem occurs for different src/dst port pairs, and once the first SYNACK goes missing, none of the subsequent SYNACKs will go through either. I have gotten the latest em driver code for RELENG_6 off the web cvs and instrumented the em_process_receive_interrupts function. I don't see this function called when this missing SYNACK situation occurs. I am not sure whether the interrupts themselves never occurred, or somehow the processing didn't reach this particular function due to something else. I could continue to add printfs to the em functions to see where things go wrong, but I would like to hear some suggestions from people on what might be going wrong here. Many thanks! Cheng P.S. I had an IPMI card in the machine that was generating gratuitous arps last week, and I suspected that it was swallowing the pkts, but I still have this problem after removing it. From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 02:44:41 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 35D9D16A400 for ; Tue, 18 Apr 2006 02:44:41 +0000 (UTC) (envelope-from dave@dogwood.com) Received: from ms-smtp-02-eri0.socal.rr.com (ms-smtp-02-qfe0.socal.rr.com [66.75.162.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id D871243D45 for ; Tue, 18 Apr 2006 02:44:40 +0000 (GMT) (envelope-from dave@dogwood.com) Received: from white.dogwood.com (white.dogwood.com [66.91.140.178]) by ms-smtp-02-eri0.socal.rr.com (8.13.4/8.13.4) with ESMTP id k3I2id7Y006047 for ; Mon, 17 Apr 2006 19:44:39 -0700 (PDT) Received: from white.dogwood.com (localhost.dogwood.com [127.0.0.1]) by white.dogwood.com (8.13.4/8.13.4) with ESMTP id k3I2icYJ076601 for ; Mon, 17 Apr 2006 16:44:38 -1000 (HST) (envelope-from dave@white.dogwood.com) Received: (from dave@localhost) by white.dogwood.com (8.13.4/8.13.1/Submit) id k3I2icZj076600 for freebsd-net@freebsd.org; Mon, 17 Apr 2006 16:44:38 -1000 (HST) (envelope-from dave) From: Dave Cornejo Message-Id: <200604180244.k3I2icZj076600@white.dogwood.com> To: freebsd-net@freebsd.org Date: Mon, 17 Apr 2006 16:44:38 -1000 (HST) X-Mailer: ELM [version 2.4ME+ PL121h (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (white.dogwood.com [127.0.0.1]); Mon, 17 Apr 2006 16:44:38 -1000 (HST) X-Virus-Scanned: Symantec AntiVirus Scan Engine Subject: crypto accelerators X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 02:44:41 -0000 I've read here before (or maybe some other freebsd list) that cards like the Soekris 1401 don't gain as much as you'd expect due to moving packets to/from the card over the PCI bus. But the context is usually one of trying to encrypt packets to increase throughput. So the question is whether these cards, regardless of their affect on throughput, increase usable CPU cycles? I have several Soekris 1401 cards and am wondering if there would be any point to putting them into some machines that provide logins over ssh. These machines are generally pretty good spec, 2.4GHz+, 1GB RAM, Intel MBs, mostly on-board peripherals. dave c From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 04:37:59 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 02FAA16A400 for ; Tue, 18 Apr 2006 04:37:59 +0000 (UTC) (envelope-from roisoleil14@gmail.com) Received: from pproxy.gmail.com (pproxy.gmail.com [64.233.166.180]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8974B43D48 for ; Tue, 18 Apr 2006 04:37:58 +0000 (GMT) (envelope-from roisoleil14@gmail.com) Received: by pproxy.gmail.com with SMTP id t32so790958pyc for ; Mon, 17 Apr 2006 21:37:58 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:user-agent:mime-version:to:subject:content-type:content-transfer-encoding:from; b=BlsyIE78+FeY4sylZDsEOuh/cBEyGwuYPM7PaGh5YcngsS6b1SUJLKS7GMyLqIeYyubAqoJcGsaZZs4V0MtlUVALPPGh1cTeQHF/zT4NhwxxC5EAAbQBHzODbVQ9YJtRyFRCNdPeUqhgZEIdM8Sq8tBw8hFER7oSTTXEU7U0Q/o= Received: by 10.35.77.18 with SMTP id e18mr475599pyl; Mon, 17 Apr 2006 21:37:57 -0700 (PDT) Received: from ?192.168.1.105? ( [69.134.230.201]) by mx.gmail.com with ESMTP id n62sm514999pyf.2006.04.17.21.37.57; Mon, 17 Apr 2006 21:37:57 -0700 (PDT) Message-ID: <44446CFA.1040606@aol.com> Date: Tue, 18 Apr 2006 00:37:14 -0400 User-Agent: Thunderbird 1.5 (X11/20060415) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit From: Olivier Wouters Subject: Ural0 Connectivity Issues X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 04:37:59 -0000 Hi, I am relatively new to FreeBSD (I use 6.0-RELEASE-p6) having only used it for approximately 2 months, and have run into a little bit of a problem with my wireless setup. I am currently using a WUSB54G ver. 4 (Linksys Wireless-G USB network adapter: http://www.linksys.com/servlet/Satellite?c=L_Product_C2&childpagename=US%2FLayout&cid=1115416827517&pagename=Linksys%2FCommon%2FVisitorWrapper) with the router ( a Linksys WRT54G Wireless-G Broadband Router) being downstairs. My particular network adapter uses the Ralink RT2500 chipset, and the Ural driver, which was ported over from OpenBSD, supports this particular chipset. I have gotten ural to work on boot by adding the following into /etc/rc.conf: ifconfig_ural0="DHCP netmask 255.255.255.0 ssid holo wepmode on wepkey 0x[wep key] weptxkey 1". However, my connection is rather poor to my router, with my connection strength staying at 7%, intermittently jumping up to 85% every now and then. I can't quite understand why my connection is so bad, and it is irritating me as I often lose connection entirely and am forced to as root run the the ifconfig line and then dhclient ural0 to regain connection. Here is the output of dmesg for my nic and usb: $ dmesg | grep usb usb0: on uhci0 usb0: USB revision 1.0 usb1: on uhci1 usb1: USB revision 1.0 usb2: on uhci2 usb2: USB revision 1.0 usb3: EHCI version 1.0 usb3: companion controllers, 2 ports each: usb0 usb1 usb2 usb3: on ehci0 usb3: USB revision 2.0 $ dmesg | grep ural0 ural0: Cisco-Linksys Wireless-G USB Network Adapter, rev 2.00/0.04, addr 2 ural0: MAC/BBP RT2570 (rev 0x05), RF RT2526 ural0: Ethernet address: 00:12:17:75:c8:a8 ural0: if_start running deferred for Giant $ Has anyone encountered similar difficulties or happen to know what may be the cause of this problem. I had no problems with connection or connection loss in Windows XP, so i am quite clueless for this strange connection loss and low connectivity. Thanks in advance for any aid. Olivier W. From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 11:14:32 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9121716A401; Tue, 18 Apr 2006 11:14:32 +0000 (UTC) (envelope-from lists@wm-access.no) Received: from lakepoint.domeneshop.no (lakepoint.domeneshop.no [194.63.248.54]) by mx1.FreeBSD.org (Postfix) with ESMTP id F0BF443D69; Tue, 18 Apr 2006 11:14:31 +0000 (GMT) (envelope-from lists@wm-access.no) Received: from [192.168.9.8] (gw1.arcticwireless.no [80.203.184.14]) (authenticated bits=0) by lakepoint.domeneshop.no (8.13.6/8.13.6) with ESMTP id k3IBERRu026098 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 18 Apr 2006 13:14:28 +0200 Message-ID: <4444CA13.8000405@wm-access.no> Date: Tue, 18 Apr 2006 13:14:27 +0200 From: =?ISO-8859-1?Q?Sten_Daniel_S=F8rsdal?= User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: Fabian Keil References: <200604142048.20189.doconnor@gsoft.com.au> <20060414140709.20c51ebc@localhost> <200604151053.25089.doconnor@gsoft.com.au> <20060415115352.1ef82bb1@localhost> <20060415195147.GA54638@heff.fud.org.nz> <20060415232801.0dbbc8f4@localhost> In-Reply-To: <20060415232801.0dbbc8f4@localhost> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org, Andrew Thompson Subject: Re: How to use if_bridge X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 11:14:32 -0000 Fabian Keil wrote: > The example section has the following sentence "Such a con- > figuration could be used to implement a simple 802.11-to-Ethernet bridg= e > (assuming the 802.11 interface is in ad-hoc mode)." >=20 > I don't get the meaning of the ad-hoc mode part. In my tests if_bridge > worked in hostap mode as well, but failed in infrastructure mode. Could= > you clarify if (or why not) bridging in infrastructure mode should work= ? hostap should work, ad-hoc should work. by infrastructure you mean that the card operates as a 'station'? then it shouldn't work (correctly) as defined by the standard. commercial products tend to implement "mac-nat" or just simple dumb passthrough (which requires support on the ap side and is very much like ad-hoc mode). you would want to look into WDS for a standard way of dealing with bridging on 802.11 --=20 Sten Daniel S=F8rsdal From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 14:42:33 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9692F16A40B for ; Tue, 18 Apr 2006 14:42:33 +0000 (UTC) (envelope-from freebsd-listen@fabiankeil.de) Received: from smtprelay01.ispgateway.de (smtprelay01.ispgateway.de [80.67.18.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id EA0E443D8A for ; Tue, 18 Apr 2006 14:41:53 +0000 (GMT) (envelope-from freebsd-listen@fabiankeil.de) Received: (qmail 11903 invoked from network); 18 Apr 2006 14:41:51 -0000 Received: from unknown (HELO localhost) ([pbs]775067@[217.50.145.154]) (envelope-sender ) by smtprelay01.ispgateway.de (qmail-ldap-1.03) with SMTP for ; 18 Apr 2006 14:41:51 -0000 Date: Tue, 18 Apr 2006 16:41:42 +0200 From: Fabian Keil To: Sten Daniel =?ISO-8859-1?Q?S=F8rsdal?= Message-ID: <20060418164142.0831e7db@localhost> In-Reply-To: <4444CA13.8000405@wm-access.no> References: <200604142048.20189.doconnor@gsoft.com.au> <20060414140709.20c51ebc@localhost> <200604151053.25089.doconnor@gsoft.com.au> <20060415115352.1ef82bb1@localhost> <20060415195147.GA54638@heff.fud.org.nz> <20060415232801.0dbbc8f4@localhost> <4444CA13.8000405@wm-access.no> X-Mailer: Sylpheed-Claws 2.0.0 (GTK+ 2.8.6; i386-portbld-freebsd6.0) X-PGP-KEY-URL: http://www.fabiankeil.de/gpg-keys/freebsd-listen-2006-08-19.asc Mime-Version: 1.0 Content-Type: multipart/signed; boundary=Sig_.J2Zfov2oaksi4Eg5ES.nqc; protocol="application/pgp-signature"; micalg=PGP-SHA1 Cc: freebsd-net@freebsd.org, Andrew Thompson Subject: Re: How to use if_bridge X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 14:42:33 -0000 --Sig_.J2Zfov2oaksi4Eg5ES.nqc Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Sten Daniel S=F8rsdal wrote: > Fabian Keil wrote: >=20 > > The example section has the following sentence "Such a con- > > figuration could be used to implement a simple 802.11-to-Ethernet bridge > > (assuming the 802.11 interface is in ad-hoc mode)." > >=20 > > I don't get the meaning of the ad-hoc mode part. In my tests if_bridge > > worked in hostap mode as well, but failed in infrastructure mode. Could > > you clarify if (or why not) bridging in infrastructure mode should work? >=20 > hostap should work, ad-hoc should work. by infrastructure you mean that > the card operates as a 'station'? then it shouldn't work (correctly) as > defined by the standard. commercial products tend to implement "mac-nat" > or just simple dumb passthrough (which requires support on the ap side > and is very much like ad-hoc mode). By infrastructure mode I mean the card is connected to an access point, in other words the default mode.=20 =20 > you would want to look into WDS for a standard way of dealing with > bridging on 802.11 Thanks for the tip, but I'm not sure if it would help in my case. Wikipedia says WDS "enables the interconnection of access points", which is not what I wanted. I tried if_bridge to let QEMU on my laptop talk to the wireless network. It worked if the Laptop's NIC was in ad-hoc or hostap mode, but failed if the NIC was connected to an access point. NAT solved the problem, but I still don't understand why if_bridge didn't work. If it was expected to fail I think it should be mentioned in the man page. Fabian --=20 http://www.fabiankeil.de/ --Sig_.J2Zfov2oaksi4Eg5ES.nqc Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFERPqsjV8GA4rMKUQRArc5AKCRVc4wth2mcJudj9JYXb+QShsEtgCg53Ne 1LqlIjKhedUdv9DpsewoQb8= =tqoe -----END PGP SIGNATURE----- --Sig_.J2Zfov2oaksi4Eg5ES.nqc-- From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 14:54:26 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3FF1E16A402 for ; Tue, 18 Apr 2006 14:54:26 +0000 (UTC) (envelope-from erikt@owl.midgard.homeip.net) Received: from pne-smtpout1-sn1.fre.skanova.net (pne-smtpout1-sn1.fre.skanova.net [81.228.11.98]) by mx1.FreeBSD.org (Postfix) with ESMTP id E3FE543D55 for ; Tue, 18 Apr 2006 14:54:22 +0000 (GMT) (envelope-from erikt@owl.midgard.homeip.net) Received: from falcon.midgard.homeip.net (83.253.29.241) by pne-smtpout1-sn1.fre.skanova.net (7.2.070) id 443D092800106D05 for freebsd-net@freebsd.org; Tue, 18 Apr 2006 16:54:21 +0200 Received: (qmail 68411 invoked from network); 18 Apr 2006 16:54:21 +0200 Received: from owl.midgard.homeip.net (10.1.5.7) by falcon.midgard.homeip.net with SMTP; 18 Apr 2006 16:54:21 +0200 Received: (qmail 61212 invoked by uid 1001); 18 Apr 2006 16:54:21 +0200 Date: Tue, 18 Apr 2006 16:54:21 +0200 From: Erik Trulsson To: Fabian Keil Message-ID: <20060418145421.GA61197@owl.midgard.homeip.net> Mail-Followup-To: Fabian Keil , Sten Daniel =?iso-8859-1?Q?S=F8rsdal?= , freebsd-net@freebsd.org, Andrew Thompson References: <200604142048.20189.doconnor@gsoft.com.au> <20060414140709.20c51ebc@localhost> <200604151053.25089.doconnor@gsoft.com.au> <20060415115352.1ef82bb1@localhost> <20060415195147.GA54638@heff.fud.org.nz> <20060415232801.0dbbc8f4@localhost> <4444CA13.8000405@wm-access.no> <20060418164142.0831e7db@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable In-Reply-To: <20060418164142.0831e7db@localhost> User-Agent: Mutt/1.5.11 Cc: freebsd-net@freebsd.org, Sten Daniel =?iso-8859-1?Q?S=F8rsdal?= , Andrew Thompson Subject: Re: How to use if_bridge X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 14:54:26 -0000 On Tue, Apr 18, 2006 at 04:41:42PM +0200, Fabian Keil wrote: > Sten Daniel S=F8rsdal wrote: >=20 > > Fabian Keil wrote: > >=20 > > > The example section has the following sentence "Such a con- > > > figuration could be used to implement a simple 802.11-to-Ethernet bri= dge > > > (assuming the 802.11 interface is in ad-hoc mode)." > > >=20 > > > I don't get the meaning of the ad-hoc mode part. In my tests if_bridge > > > worked in hostap mode as well, but failed in infrastructure mode. Cou= ld > > > you clarify if (or why not) bridging in infrastructure mode should wo= rk? > >=20 > > hostap should work, ad-hoc should work. by infrastructure you mean that > > the card operates as a 'station'? then it shouldn't work (correctly) as > > defined by the standard. commercial products tend to implement "mac-nat" > > or just simple dumb passthrough (which requires support on the ap side > > and is very much like ad-hoc mode). >=20 > By infrastructure mode I mean the card is connected to an access > point, in other words the default mode.=20 > =20 > > you would want to look into WDS for a standard way of dealing with > > bridging on 802.11 >=20 > Thanks for the tip, but I'm not sure if it would help in my case. > Wikipedia says WDS "enables the interconnection of access points", > which is not what I wanted. >=20 > I tried if_bridge to let QEMU on my laptop talk to the wireless > network. It worked if the Laptop's NIC was in ad-hoc or hostap mode, > but failed if the NIC was connected to an access point. >=20 > NAT solved the problem, but I still don't understand why if_bridge > didn't work. If it was expected to fail I think it should be mentioned > in the man page. Because when a station sends a packet to an AP the source ethernet address must be that of the station. =20 A bridge should not modify the packets passed through it so then the source address should be that of the originating computer instead of that of the station and then things will not work correctly. This can be solved with "4-address" frames that add a 'station' field to the transmitted frames. This requires that both station and AP support 4-address frames, which few do. The wireless code in FreeBSD does not have such support yet. (4-address frames is a necessary component for WDS, but WDS needs a bit more than that. 4-address frames can be used with a normal AP-station connection if both sides support it, but as I said few devices support it currently.) (The four addresses involved are: source, dest, station, AP; as compared to the three addresses used in normal 802.11 frames: source, dest, AP.) --=20 Erik Trulsson ertr1013@student.uu.se From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 15:16:23 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BF3BB16A402 for ; Tue, 18 Apr 2006 15:16:23 +0000 (UTC) (envelope-from freebsd-listen@fabiankeil.de) Received: from smtprelay01.ispgateway.de (smtprelay01.ispgateway.de [80.67.18.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id DA23543D46 for ; Tue, 18 Apr 2006 15:16:22 +0000 (GMT) (envelope-from freebsd-listen@fabiankeil.de) Received: (qmail 24466 invoked from network); 18 Apr 2006 15:16:21 -0000 Received: from unknown (HELO localhost) ([pbs]775067@[217.50.145.154]) (envelope-sender ) by smtprelay01.ispgateway.de (qmail-ldap-1.03) with SMTP for ; 18 Apr 2006 15:16:21 -0000 Date: Tue, 18 Apr 2006 17:16:18 +0200 From: Fabian Keil To: Erik Trulsson Message-ID: <20060418171618.4b5afc28@localhost> In-Reply-To: <20060418145421.GA61197@owl.midgard.homeip.net> References: <200604142048.20189.doconnor@gsoft.com.au> <20060414140709.20c51ebc@localhost> <200604151053.25089.doconnor@gsoft.com.au> <20060415115352.1ef82bb1@localhost> <20060415195147.GA54638@heff.fud.org.nz> <20060415232801.0dbbc8f4@localhost> <4444CA13.8000405@wm-access.no> <20060418164142.0831e7db@localhost> <20060418145421.GA61197@owl.midgard.homeip.net> X-Mailer: Sylpheed-Claws 2.0.0 (GTK+ 2.8.6; i386-portbld-freebsd6.0) X-PGP-KEY-URL: http://www.fabiankeil.de/gpg-keys/freebsd-listen-2006-08-19.asc Mime-Version: 1.0 Content-Type: multipart/signed; boundary="Sig_MQV9KXMnl3byXq2=hl0OxrZ"; protocol="application/pgp-signature"; micalg=PGP-SHA1 Cc: freebsd-net@freebsd.org Subject: Re: How to use if_bridge X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 15:16:23 -0000 --Sig_MQV9KXMnl3byXq2=hl0OxrZ Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable Erik Trulsson wrote: > On Tue, Apr 18, 2006 at 04:41:42PM +0200, Fabian Keil wrote: > > I tried if_bridge to let QEMU on my laptop talk to the wireless > > network. It worked if the Laptop's NIC was in ad-hoc or hostap mode, > > but failed if the NIC was connected to an access point. > >=20 > > NAT solved the problem, but I still don't understand why if_bridge > > didn't work. If it was expected to fail I think it should be mentioned > > in the man page. >=20 > Because when a station sends a packet to an AP the source ethernet address > must be that of the station. =20 > A bridge should not modify the packets passed through it so then the sour= ce > address should be that of the originating computer instead of that of the > station and then things will not work correctly. Thanks for the explanation. Fabian --=20 http://www.fabiankeil.de/ --Sig_MQV9KXMnl3byXq2=hl0OxrZ Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFERQLDjV8GA4rMKUQRAmjOAKCOBK+/+i3dqwnYXQ1DRgV+oQwGHwCfaEka NCqxIb0Z5Ytur9FrJt5lK2w= =hE8d -----END PGP SIGNATURE----- --Sig_MQV9KXMnl3byXq2=hl0OxrZ-- From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 18:54:36 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0852F16A494 for ; Tue, 18 Apr 2006 18:54:36 +0000 (UTC) (envelope-from wxs@syn.csh.rit.edu) Received: from syn.csh.rit.edu (syn.csh.rit.edu [129.21.60.158]) by mx1.FreeBSD.org (Postfix) with ESMTP id 923AB43D46 for ; Tue, 18 Apr 2006 18:54:35 +0000 (GMT) (envelope-from wxs@syn.csh.rit.edu) Received: from syn.csh.rit.edu (localhost [127.0.0.1]) by syn.csh.rit.edu (8.13.4/8.13.4) with ESMTP id k3IJvQRD036873; Tue, 18 Apr 2006 14:57:26 -0500 (EST) (envelope-from wxs@syn.csh.rit.edu) Received: (from wxs@localhost) by syn.csh.rit.edu (8.13.4/8.13.4/Submit) id k3IJvQMD036872; Tue, 18 Apr 2006 14:57:26 -0500 (EST) (envelope-from wxs) Date: Tue, 18 Apr 2006 14:57:25 -0500 From: Wesley Shields To: "Yeow C.H." Message-ID: <20060418195725.GA30928@csh.rit.edu> References: <20060417124340.GA99978@uk.tiscali.com> <20060417133412.36079.qmail@web60120.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060417133412.36079.qmail@web60120.mail.yahoo.com> User-Agent: Mutt/1.5.11 Cc: freebsd-net@freebsd.org Subject: Re: Libpcap based: packet generator + capture file editor + bridge for IEEE802.3 on FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 18:54:36 -0000 On Mon, Apr 17, 2006 at 06:34:12AM -0700, Yeow C.H. wrote: > Thanks Brian. > > Simply put Bit-Twist is smaller, do more, medium specific (Ethernet > II - IEEE 802.3) suite. > > Bittwist (packet generator) does not differs much from tcpreplay > program. I would admit if you say tcpreplay can do everything that > bittwist can do. But bittwist implementation is much simpler and it > uses only libpcap library without libnet dependency. > > Its capture file editor, bittwiste, allow you to change most fields > in Ethernet, ARP, IP, ICMP, TCP, and UDP headers and you can > specify your own payload. It is possible for the payload to cover > the ICMP, TCP, or UDP header itself (checksum is corrected > automatically). Tcprewrite (part of Tcpreplay suite) allows you to > change src/dst MAC/IP/port only, but, it supports VLAN frames > (Bit-Twist does not). > > Bittwistb (bridge) aids the injection of packets from an end host > which get forwarded across different LAN segments. It supports > multiple ports (up to 8, or more if you want it to). Tcpbridge > supports only 2. > > Simply put, Bit-Twist is created not to compete with any existing > similar projects, i.e. Tcpreplay, but it is here in favor of freedom > of choice :) and also, Bit-Twist is currently being used as a > practical teaching material in Computer Network classes. There is now a port for this available at net/bittwist if anyone is interested in playing with it further. It doesn't build under 4.x due to a redefinition of in_addr_t and a lack of round(), but it builds under more recent versions. :) -- WXS From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 19:10:19 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D7FFC16A400 for ; Tue, 18 Apr 2006 19:10:19 +0000 (UTC) (envelope-from bms@spc.org) Received: from mindfull.spc.org (mindfull.spc.org [83.167.185.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id 73E1043D46 for ; Tue, 18 Apr 2006 19:10:18 +0000 (GMT) (envelope-from bms@spc.org) Received: from arginine.spc.org ([83.167.185.2]) by mindfull.spc.org with esmtps (TLSv1:AES256-SHA:256) (Exim 4.52) id 1FVvaW-0004u0-9j; Tue, 18 Apr 2006 20:10:12 +0100 Received: from localhost (localhost [127.0.0.1]) by arginine.spc.org (Postfix) with ESMTP id 55CAB6538B; Tue, 18 Apr 2006 20:10:16 +0100 (BST) Received: from arginine.spc.org ([127.0.0.1]) by localhost (arginine.spc.org [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 70738-05; Tue, 18 Apr 2006 20:10:15 +0100 (BST) Received: by arginine.spc.org (Postfix, from userid 1078) id 5C16665499; Tue, 18 Apr 2006 20:10:15 +0100 (BST) Date: Tue, 18 Apr 2006 20:10:15 +0100 From: Bruce M Simpson To: Dave Cornejo Message-ID: <20060418191015.GE28496@spc.org> Mail-Followup-To: Bruce M Simpson , Dave Cornejo , freebsd-net@freebsd.org References: <200604180244.k3I2icZj076600@white.dogwood.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200604180244.k3I2icZj076600@white.dogwood.com> User-Agent: Mutt/1.4.1i Organization: Incunabulum X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - mindfull.spc.org X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - spc.org X-Source: X-Source-Args: X-Source-Dir: Cc: freebsd-net@freebsd.org Subject: Re: crypto accelerators X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 19:10:19 -0000 On Mon, Apr 17, 2006 at 04:44:38PM -1000, Dave Cornejo wrote: > So the question is whether these cards, regardless of their affect on > throughput, increase usable CPU cycles? I have several Soekris 1401 > cards and am wondering if there would be any point to putting them > into some machines that provide logins over ssh. These machines are > generally pretty good spec, 2.4GHz+, 1GB RAM, Intel MBs, mostly > on-board peripherals. Given that spec of machine, I don't see that a hardware cipher would offer much improvement -- and some of the available crypto accelerators don't perform Diffie-Helmann or AES, some do. I myself have a ubsec(4) card, and even when I hacked OpenSSH to use OpenSSL engine support by default (with someone else's patch), I didn't see that much improvement (even when I forced the use of MD5, RSA and 3DES). I could be wrong though - the above is qualitative not quantitative. Regards, BMS From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 21:32:41 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A0DC916A400; Tue, 18 Apr 2006 21:32:41 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.188]) by mx1.FreeBSD.org (Postfix) with ESMTP id 07A7743D46; Tue, 18 Apr 2006 21:32:40 +0000 (GMT) (envelope-from max@love2party.net) Received: from [88.64.188.179] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu6) with ESMTP (Nemesis), id 0ML29c-1FVxoG3ZJ7-0007Ny; Tue, 18 Apr 2006 23:32:34 +0200 From: Max Laier Organization: FreeBSD To: Hajimu UMEMOTO Date: Tue, 18 Apr 2006 23:29:36 +0200 User-Agent: KMail/1.9.1 References: <200604091956.42378.max@love2party.net> In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1993735.AngDvI1yAc"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200604182329.49054.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de login:61c499deaeeba3ba5be80f48ecc83056 Cc: dima <_pppp@mail.ru>, freebsd-net@freebsd.org, Darren Pilgrim Subject: Re: New version of iwi(4) - Call for testers [regression!] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 21:32:41 -0000 --nextPart1993735.AngDvI1yAc Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Monday 10 April 2006 14:32, Hajimu UMEMOTO wrote: > >>>>> On Sun, 9 Apr 2006 19:56:34 +0200 > >>>>> Max Laier said: > max> Updated version here: > max> http://people.freebsd.org/~mlaier/new_iwi/20060409.both_nofw.tgz Latest version: http://people.freebsd.org/~mlaier/new_iwi/20060418.both_nofw.tgz Thanks to Sam, this should work in IBSS (adhoc) mode now. > It seems working fine, again. Thank you! > I forgot to mention one problem which I didn't see with stock iwi > driver on RELENG_6: > > iwi0: unknown notification type 40 flags 0xa0 len 40 This seems to be harmless and I will turn it off before commit. The Linux= =20 driver doesn't have any name for that notification type either, so I have n= o=20 idea what it is supposed to mean. It might be related to WMA as I only get= =20 it with WMA enabled, but that's about it. For now the message stays to=20 identify other (possibly required) notification types that might be seen. > Why don't you commit it into HEAD, yet? :) Will do that after this *LAST* iteration of testing. Please test now - you= =20 have been warned. One thing I just discovered is, that "sysctl dev.iwi.0.antenna=3D0" instead= of=20 the current default of 2 improves scanning performance a lot. If you have= =20 trouble to find your AP (esp. 11a ones) please try setting it to 0 and let = me=20 know. Linux now has 0 as default so this might be the save thing to do. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1993735.AngDvI1yAc Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBERVpNXyyEoT62BG0RAm7BAJ0RvbDKew60jtF4+nNuZohYBU6ZFACcDEzR qZDypdYEiTVPyiEAlqH7/pE= =03+Z -----END PGP SIGNATURE----- --nextPart1993735.AngDvI1yAc-- From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 23:48:59 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B279C16A402 for ; Tue, 18 Apr 2006 23:48:59 +0000 (UTC) (envelope-from mike@sentex.net) Received: from smarthost2.sentex.ca (smarthost2.sentex.ca [205.211.164.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5A5BA43D48 for ; Tue, 18 Apr 2006 23:48:59 +0000 (GMT) (envelope-from mike@sentex.net) Received: from BLUELAPIS.sentex.ca (cage.simianscience.com [64.7.134.1]) by smarthost2.sentex.ca (8.13.4P/8.13.4) with SMTP id k3INmrF5012500; Tue, 18 Apr 2006 19:48:54 -0400 (EDT) (envelope-from mike@sentex.net) From: Mike Tancsa To: Dave Cornejo Date: Tue, 18 Apr 2006 19:48:58 -0400 Message-ID: References: <200604180244.k3I2icZj076600@white.dogwood.com> In-Reply-To: <200604180244.k3I2icZj076600@white.dogwood.com> X-Mailer: Forte Agent 1.93/32.576 English (American) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org Subject: Re: crypto accelerators X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 23:48:59 -0000 On Mon, 17 Apr 2006 16:44:38 -1000 (HST), in sentex.lists.freebsd.net you wrote: >I've read here before (or maybe some other freebsd list) that cards >like the Soekris 1401 don't gain as much as you'd expect due to moving >packets to/from the card over the PCI bus. But the context is usually >one of trying to encrypt packets to increase throughput. > >So the question is whether these cards, regardless of their affect on >throughput, increase usable CPU cycles? I have several Soekris 1401 >cards and am wondering if there would be any point to putting them >into some machines that provide logins over ssh. These machines are >generally pretty good spec, 2.4GHz+, 1GB RAM, Intel MBs, mostly >on-board peripherals. The only place I found it really helpful for ssh connections was on our backup server where we had multiple inbound ssh connections (e.g. 10+ at once sending dump piped through ssh) it kept the CPU utilization down. If you have just one or two, it doesnt really matter ---Mike -------------------------------------------------------- Mike Tancsa, Sentex communications http://www.sentex.net Providing Internet Access since 1994 mike@sentex.net, (http://www.tancsa.com) From owner-freebsd-net@FreeBSD.ORG Tue Apr 18 23:50:11 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B869B16A40B for ; Tue, 18 Apr 2006 23:50:11 +0000 (UTC) (envelope-from dave@dogwood.com) Received: from ms-smtp-02-eri0.socal.rr.com (ms-smtp-02-qfe0.socal.rr.com [66.75.162.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2B89D43D45 for ; Tue, 18 Apr 2006 23:45:41 +0000 (GMT) (envelope-from dave@dogwood.com) Received: from white.dogwood.com (white.dogwood.com [66.91.140.178]) by ms-smtp-02-eri0.socal.rr.com (8.13.4/8.13.4) with ESMTP id k3INjdV6027511 for ; Tue, 18 Apr 2006 16:45:40 -0700 (PDT) Received: from white.dogwood.com (localhost.dogwood.com [127.0.0.1]) by white.dogwood.com (8.13.4/8.13.4) with ESMTP id k3INglEc085875; Tue, 18 Apr 2006 13:42:47 -1000 (HST) (envelope-from dave@white.dogwood.com) Received: (from dave@localhost) by white.dogwood.com (8.13.4/8.13.1/Submit) id k3INe2Ep085862; Tue, 18 Apr 2006 13:40:02 -1000 (HST) (envelope-from dave) From: Dave Cornejo Message-Id: <200604182340.k3INe2Ep085862@white.dogwood.com> In-Reply-To: <20060418191015.GE28496@spc.org> To: Bruce M Simpson Date: Tue, 18 Apr 2006 13:40:02 -1000 (HST) X-Mailer: ELM [version 2.4ME+ PL121h (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.0.2 (white.dogwood.com [127.0.0.1]); Tue, 18 Apr 2006 13:42:47 -1000 (HST) X-Virus-Scanned: Symantec AntiVirus Scan Engine Cc: freebsd-net@freebsd.org Subject: Re: crypto accelerators X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2006 23:50:11 -0000 > On Mon, Apr 17, 2006 at 04:44:38PM -1000, Dave Cornejo wrote: > > So the question is whether these cards, regardless of their affect on > > throughput, increase usable CPU cycles? I have several Soekris 1401 > > cards and am wondering if there would be any point to putting them > > into some machines that provide logins over ssh. These machines are > > generally pretty good spec, 2.4GHz+, 1GB RAM, Intel MBs, mostly > > on-board peripherals. > > Given that spec of machine, I don't see that a hardware cipher would > offer much improvement -- and some of the available crypto accelerators > don't perform Diffie-Helmann or AES, some do. > > I myself have a ubsec(4) card, and even when I hacked OpenSSH to use > OpenSSL engine support by default (with someone else's patch), I didn't > see that much improvement (even when I forced the use of MD5, RSA and > 3DES). > > I could be wrong though - the above is qualitative not quantitative. > > Regards, > BMS it sounds like you're thinking in terms of throughput and speed of the encrypted connections, which i agree probably won't see much of an improvement. but it would seem to me that doing the heavy math off-CPU reduces the amount of work the CPU does. are these saved CPU cycles available to someone who might be doing a compilation on this machine? Doug Ambriskos answer (thanks!) implies that maybe they are. thanks, dave c From owner-freebsd-net@FreeBSD.ORG Wed Apr 19 00:00:58 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0B9D116A400 for ; Wed, 19 Apr 2006 00:00:58 +0000 (UTC) (envelope-from sam@errno.com) Received: from ebb.errno.com (ebb.errno.com [69.12.149.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id A237E43D45 for ; Wed, 19 Apr 2006 00:00:57 +0000 (GMT) (envelope-from sam@errno.com) Received: from [10.0.0.248] (trouble.errno.com [10.0.0.248]) (authenticated bits=0) by ebb.errno.com (8.13.6/8.12.6) with ESMTP id k3J00qEL081629 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 18 Apr 2006 17:00:53 -0700 (PDT) (envelope-from sam@errno.com) Message-ID: <44457DB4.4030601@errno.com> Date: Tue, 18 Apr 2006 17:00:52 -0700 From: Sam Leffler User-Agent: Thunderbird 1.5 (X11/20060210) MIME-Version: 1.0 To: Mike Tancsa References: <200604180244.k3I2icZj076600@white.dogwood.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: crypto accelerators X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 00:00:58 -0000 Mike Tancsa wrote: > On Mon, 17 Apr 2006 16:44:38 -1000 (HST), in sentex.lists.freebsd.net > you wrote: > >> I've read here before (or maybe some other freebsd list) that cards >> like the Soekris 1401 don't gain as much as you'd expect due to moving >> packets to/from the card over the PCI bus. But the context is usually >> one of trying to encrypt packets to increase throughput. >> >> So the question is whether these cards, regardless of their affect on >> throughput, increase usable CPU cycles? I have several Soekris 1401 >> cards and am wondering if there would be any point to putting them >> into some machines that provide logins over ssh. These machines are >> generally pretty good spec, 2.4GHz+, 1GB RAM, Intel MBs, mostly >> on-board peripherals. > > > The only place I found it really helpful for ssh connections was on > our backup server where we had multiple inbound ssh connections (e.g. > 10+ at once sending dump piped through ssh) it kept the CPU > utilization down. If you have just one or two, it doesnt really > matter Unless you're doing lots of scp's it's unlikely ssh traffic is going to generate large packets so offloading the crypto won't be worthwhile (cost to setup the h/w op probably is higher than doing the op in s/w). This has been discussed previously; see for example my BSDCan 2003 paper. Sam From owner-freebsd-net@FreeBSD.ORG Wed Apr 19 04:41:35 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2B16716A402 for ; Wed, 19 Apr 2006 04:41:35 +0000 (UTC) (envelope-from affanzbasalamah@gmail.com) Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.195]) by mx1.FreeBSD.org (Postfix) with ESMTP id BCDED43D46 for ; Wed, 19 Apr 2006 04:41:34 +0000 (GMT) (envelope-from affanzbasalamah@gmail.com) Received: by xproxy.gmail.com with SMTP id s9so637936wxc for ; Tue, 18 Apr 2006 21:41:34 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=ovUFM//aqUsoWkrJhzvO4IAURLVf+OJCWueOE9G8idOIFJnTkkqVxW3AhwmAspookzJbQjewQf6OqnNZDuFPbDDxXe+pxqDw53xJV/3XisESFSLZeAIzOADYFJoNy2Uj3y6yzU7D6RnjU1Yg3zFONl6XbIjo3du89m0agGJY5uc= Received: by 10.70.87.18 with SMTP id k18mr510393wxb; Tue, 18 Apr 2006 21:41:34 -0700 (PDT) Received: by 10.70.12.3 with HTTP; Tue, 18 Apr 2006 21:41:34 -0700 (PDT) Message-ID: Date: Wed, 19 Apr 2006 11:41:34 +0700 From: "Affan Basalamah" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Subject: GRE over IPv6 configuration X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 04:41:35 -0000 Hi all, I checked at 7.0-CURRENT release notes, that gre(4) is support IPv6 encapsulation. Could you tell me how I can tunnel IPv6 through gre(4) ? Is anybody ever configure this new thing ? Referring to man 4 gre : (1)=09 route add default B (2)=09 ifconfig greN create (3)=09 ifconfig greN A D netmask 0xffffffff linkX up (4)=09 ifconfig greN tunnel A D (5)=09 route add E D I only have to configure IPv6 gre address in line (3), am I correct ? Regards, -affan From owner-freebsd-net@FreeBSD.ORG Wed Apr 19 11:21:36 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 20E9C16A400; Wed, 19 Apr 2006 11:21:36 +0000 (UTC) (envelope-from b.candler@pobox.com) Received: from proof.pobox.com (proof.pobox.com [207.106.133.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id AE52043D45; Wed, 19 Apr 2006 11:21:35 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from proof (localhost [127.0.0.1]) by proof.pobox.com (Postfix) with ESMTP id E0F07F2E0A; Wed, 19 Apr 2006 07:21:34 -0400 (EDT) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by proof.sasl.smtp.pobox.com (Postfix) with ESMTP id 886453E1E8; Wed, 19 Apr 2006 07:21:31 -0400 (EDT) Received: from lists by mappit.local.linnet.org with local (Exim 4.60 (FreeBSD)) (envelope-from ) id 1FWAkU-0001zE-1J; Wed, 19 Apr 2006 12:21:30 +0100 Date: Wed, 19 Apr 2006 12:21:30 +0100 From: Brian Candler To: Sten Daniel =?iso-8859-1?Q?S=F8rsdal?= Message-ID: <20060419112130.GE7542@uk.tiscali.com> References: <200604142048.20189.doconnor@gsoft.com.au> <20060414140709.20c51ebc@localhost> <200604151053.25089.doconnor@gsoft.com.au> <20060415115352.1ef82bb1@localhost> <20060415195147.GA54638@heff.fud.org.nz> <20060415232801.0dbbc8f4@localhost> <4444CA13.8000405@wm-access.no> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4444CA13.8000405@wm-access.no> User-Agent: Mutt/1.4.2.1i Cc: freebsd-net@freebsd.org, Andrew Thompson , Fabian Keil Subject: Re: How to use if_bridge X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 11:21:36 -0000 On Tue, Apr 18, 2006 at 01:14:27PM +0200, Sten Daniel Srsdal wrote: > hostap should work, ad-hoc should work. by infrastructure you mean that > the card operates as a 'station'? then it shouldn't work (correctly) as > defined by the standard. commercial products tend to implement "mac-nat" I've seen this; a 'wireless bridge' is actually a masquerading router. See http://forum.openwrt.org/viewtopic.php?id=5105 for some ARP and tcpdump capture which shows the device actually mangling the ARP responses. It does seem to work though (as long as you only want to bridge IP datagrams) From owner-freebsd-net@FreeBSD.ORG Wed Apr 19 12:54:52 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB20C16A405 for ; Wed, 19 Apr 2006 12:54:52 +0000 (UTC) (envelope-from freebsd-listen@fabiankeil.de) Received: from smtprelay01.ispgateway.de (smtprelay01.ispgateway.de [80.67.18.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id 068C843D49 for ; Wed, 19 Apr 2006 12:54:51 +0000 (GMT) (envelope-from freebsd-listen@fabiankeil.de) Received: (qmail 886 invoked from network); 19 Apr 2006 12:54:50 -0000 Received: from unknown (HELO localhost) ([pbs]775067@[217.50.145.180]) (envelope-sender ) by smtprelay01.ispgateway.de (qmail-ldap-1.03) with SMTP for ; 19 Apr 2006 12:54:50 -0000 Date: Wed, 19 Apr 2006 14:54:10 +0200 From: Fabian Keil To: Max Laier Message-ID: <20060419145410.189797ea@localhost> In-Reply-To: <200604182329.49054.max@love2party.net> References: <200604091956.42378.max@love2party.net> <200604182329.49054.max@love2party.net> X-Mailer: Sylpheed-Claws 2.0.0 (GTK+ 2.8.6; i386-portbld-freebsd6.0) X-PGP-KEY-URL: http://www.fabiankeil.de/gpg-keys/freebsd-listen-2006-08-19.asc Mime-Version: 1.0 Content-Type: multipart/signed; boundary=Sig_lT48aseDv5Odpvy_552BOVQ; protocol="application/pgp-signature"; micalg=PGP-SHA1 Cc: freebsd-net@freebsd.org Subject: Re: New version of iwi(4) - Call for testers [regression!] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 12:54:52 -0000 --Sig_lT48aseDv5Odpvy_552BOVQ Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable Max Laier wrote: > On Monday 10 April 2006 14:32, Hajimu UMEMOTO wrote: > > >>>>> On Sun, 9 Apr 2006 19:56:34 +0200 > > >>>>> Max Laier said: > > max> Updated version here: > > max> http://people.freebsd.org/~mlaier/new_iwi/20060409.both_nofw.tgz >=20 > Latest version: > http://people.freebsd.org/~mlaier/new_iwi/20060418.both_nofw.tgz > > Why don't you commit it into HEAD, yet? :) >=20 > Will do that after this *LAST* iteration of testing. Please test now > - you have been warned. Not a serious problem, but for me "ifconfig iwi0 ether $NEWMACADDRESS"=20 brings down the interface because of: Apr 19 14:44:13 TP51 kernel: firmware_get: failed to load firmware image iw= i_bss Apr 19 14:44:13 TP51 kernel: iwi0: could not load firmware I assume loading iwi_bss fails because it was already loaded. Sometimes "ifconfig iwi0 up" is enough to bring iwi0 back, but most of the times I get "status: no carrier" (even though "ifconfig iwi0 scan" shows the AP) until I reload iwiNG. If I change the ethernet address before bringing the interface up, I don't get any problems.=20 Fabian --=20 http://www.fabiankeil.de/ --Sig_lT48aseDv5Odpvy_552BOVQ Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFERjMXjV8GA4rMKUQRAmLoAJ4qbSHI+izDrHAoi1fnOywHKbbzwQCgyKhC rc44sqlOZK2nM3icd8fc4Tw= =CRD2 -----END PGP SIGNATURE----- --Sig_lT48aseDv5Odpvy_552BOVQ-- From owner-freebsd-net@FreeBSD.ORG Wed Apr 19 16:12:31 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4BC516A41F for ; Wed, 19 Apr 2006 16:12:31 +0000 (UTC) (envelope-from tbyte@otel.net) Received: from mail.otel.net (gw3.OTEL.net [212.36.8.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id BDFDA43D48 for ; Wed, 19 Apr 2006 16:12:29 +0000 (GMT) (envelope-from tbyte@otel.net) Received: from dragon.otel.net ([212.36.8.135]) by mail.otel.net with esmtp (Exim 4.60 (FreeBSD)) (envelope-from ) id 1FWFI2-000FHC-JV for freebsd-net@freebsd.org; Wed, 19 Apr 2006 19:12:27 +0300 From: Iasen Kostov To: FreeBSD Net Content-Type: text/plain Date: Wed, 19 Apr 2006 19:12:25 +0300 Message-Id: <1145463145.8789.15.camel@DraGoN.OTEL.net> Mime-Version: 1.0 X-Mailer: Evolution 2.4.2.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit Subject: ndis wrapper missing some functions. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Apr 2006 16:12:32 -0000 Hello A friend of mine has Compaq nx6125 with onboard wireless BCM9 4318 MPG. (pciconf -lv : none3@pci2:2:0: class=0x028000 card=0x1356103c chip=0x431814e4 rev=0x02 hdr=0x00 vendor = 'Broadcom Corporation' class = network ) When I create KLD with ndisgen (everything works perfect there) I get this upon loading : no match for strrchr no match for MmFreeContiguousMemorySpecifyCache no match for MmAllocateContiguousMemorySpecifyCache no match for MmGetPhysicalAddress ndis0: mem 0xd0010000-0xd0011fff irq 22 at device 2.0 on pci2 ndis0: NDIS API version: 5.1 ntoskrnl dummy called... Fatal trap 12: page fault while in kernel mode fault virtual address = 0x1a fault code = supervisor read, page not present instruction pointer = 0x20:0xc6f01179 stack pointer = 0x28:0xe5453720 frame pointer = 0x28:0xe5453734 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 855 (kldload) trap number = 12 panic: page fault Uptime: 29m3s It looks like ndiswrapper does not implement the 3 funcs strrchr(), MmFreeContiguousMemorySpecifyCache(), MmAllocateContiguousMemorySpecifyCache() and MmGetPhysicalAddress() and I can assume that "ntoskrnl dummy called..." means that they are substituted with a stub funcs. But memory allocation functions don't like stubs and that's probably the reason for the panic. I thinks it will be easy to implement strrchr() but other 3 are out of my experties :). From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 09:58:06 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A92A416A402; Thu, 20 Apr 2006 09:58:06 +0000 (UTC) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (ns.live555.com [66.80.62.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 98A9243D46; Thu, 20 Apr 2006 09:58:05 +0000 (GMT) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (localhost.live555.com [127.0.0.1]) by ns.live555.com (8.13.4/8.13.4) with ESMTP id k3K9w3kS058072; Thu, 20 Apr 2006 02:58:03 -0700 (PDT) (envelope-from rsf@ns.live555.com) Received: (from rsf@localhost) by ns.live555.com (8.13.4/8.13.4/Submit) id k3K9w2B7058059; Thu, 20 Apr 2006 02:58:02 -0700 (PDT) (envelope-from rsf) Message-Id: <7.0.1.0.1.20060420025507.02043008@live555.com> Message-Id: <7.0.1.0.1.20060407222718.01f2ccd0@live555.com> X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0 Date: Thu, 20 Apr 2006 02:57:34 -0700 To: freebsd-net@freebsd.org, freebsd-mobile@freebsd.org From: Ross Finlayson Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: Subject: Support for the Xterasys XG-600 wireless mini PCI card? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 09:58:06 -0000 According to this card's specs at http://www.xterasys.com/xg600.htm it is using a "PRISM GT" chipset, and so should be supported by the "wi" driver, right?? However, on 6.0-STABLE (GENERIC), at least, it does not seem to be recognized at all. Ross. From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 11:27:30 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 215C716A401 for ; Thu, 20 Apr 2006 11:27:30 +0000 (UTC) (envelope-from mallman@icir.org) Received: from wyvern.icir.org (wyvern.icir.org [192.150.187.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id CA49443D46 for ; Thu, 20 Apr 2006 11:27:29 +0000 (GMT) (envelope-from mallman@icir.org) Received: from guns.icir.org (adsl-69-222-35-58.dsl.bcvloh.ameritech.net [69.222.35.58]) by wyvern.icir.org (8.12.11/8.12.11) with ESMTP id k3KBRSTl066860; Thu, 20 Apr 2006 04:27:28 -0700 (PDT) (envelope-from mallman@icir.org) Received: from lawyers.icir.org (guns.icir.org [69.222.35.58]) by guns.icir.org (Postfix) with ESMTP id 1718377AA40; Thu, 20 Apr 2006 07:27:28 -0400 (EDT) Received: from lawyers.icir.org (localhost [127.0.0.1]) by lawyers.icir.org (Postfix) with ESMTP id 1988E3F7E2B; Thu, 20 Apr 2006 07:26:36 -0400 (EDT) To: "Yeow C.H." From: Mark Allman In-Reply-To: <20060417133412.36079.qmail@web60120.mail.yahoo.com> Organization: ICSI Center for Internet Research (ICIR) Song-of-the-Day: Love Stinks MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=_bOundary"; micalg=pgp-sha1; protocol="application/pgp-signature" Date: Thu, 20 Apr 2006 07:26:35 -0400 Sender: mallman@icir.org Message-Id: <20060420112636.1988E3F7E2B@lawyers.icir.org> Cc: freebsd-net@freebsd.org Subject: Re: Libpcap based: packet generator + capture file editor + bridge for IEEE802.3 on FreeBSD X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: mallman@icir.org List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 11:27:30 -0000 --=_bOundary Content-Type: text/plain Content-Disposition: inline > Its capture file editor, bittwiste, allow you to change most fields > in Ethernet, ARP, IP, ICMP, TCP, and UDP headers and you can specify > your own payload. It is possible for the payload to cover the ICMP, > TCP, or UDP header itself (checksum is corrected > automatically). Tcprewrite (part of Tcpreplay suite) allows you to > change src/dst MAC/IP/port only, but, it supports VLAN frames > (Bit-Twist does not). I haven't tried either one of these, but will note that my favorite program in this space - if one wants to hack interactively - is "netdude", which is available from sourceforge. FWIW. allman --=_bOundary Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (Darwin) iD8DBQFER2/rWyrrWs4yIs4RAjQvAJ4z1Tm2KiSl2ATs6xgNN8ItPad1GwCfa36W ZVZ2GfkaE43QA/9Es43HUu4= =1TpJ -----END PGP SIGNATURE----- --=_bOundary-- From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 14:52:21 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EC81416A401; Thu, 20 Apr 2006 14:52:21 +0000 (UTC) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (ns.live555.com [66.80.62.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id BBF4943D49; Thu, 20 Apr 2006 14:52:20 +0000 (GMT) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (localhost.live555.com [127.0.0.1]) by ns.live555.com (8.13.4/8.13.4) with ESMTP id k3KEqKbU087263; Thu, 20 Apr 2006 07:52:20 -0700 (PDT) (envelope-from rsf@ns.live555.com) Received: (from rsf@localhost) by ns.live555.com (8.13.4/8.13.4/Submit) id k3KEqJxX087262; Thu, 20 Apr 2006 07:52:19 -0700 (PDT) (envelope-from rsf) Message-Id: <7.0.1.0.1.20060420074922.01f98ee0@live555.com> Message-Id: <7.0.1.0.1.20060420025507.02043008@live555.com> X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0 Date: Thu, 20 Apr 2006 07:52:14 -0700 To: freebsd-net@freebsd.org, freebsd-mobile@freebsd.org From: Ross Finlayson Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: Subject: Any miniPCI wireless LAN cards support "wi" in "hostap" mode? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 14:52:22 -0000 Does anyone know of any miniPCI wireless LAN cards that support "wi" in "hostap" mode? I thought I had struck gold with the Xterasys XG-600 card, because it uses a "PRISM GT" chipset, but it appears that "wi" doesn't support that particular PRISM chipset at all. Any other candidates? Ross. From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 15:00:13 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0410B16A402; Thu, 20 Apr 2006 15:00:12 +0000 (UTC) (envelope-from oberman@es.net) Received: from postal4.es.net (postal4.es.net [198.124.252.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 62C8043D48; Thu, 20 Apr 2006 15:00:10 +0000 (GMT) (envelope-from oberman@es.net) Received: from ptavv.es.net ([198.128.4.29]) by postal4.es.net (Postal Node 4) with ESMTP (SSL) id IBA74465; Thu, 20 Apr 2006 08:00:09 -0700 Received: from ptavv.es.net (localhost [127.0.0.1]) by ptavv.es.net (Tachyon Server) with ESMTP id CE72145042; Thu, 20 Apr 2006 08:00:07 -0700 (PDT) To: Ross Finlayson In-reply-to: Your message of "Thu, 20 Apr 2006 07:52:14 PDT." <7.0.1.0.1.20060420074922.01f98ee0@live555.com> <7.0.1.0.1.20060420025507.02043008@live555.com> Date: Thu, 20 Apr 2006 08:00:07 -0700 From: "Kevin Oberman" Message-Id: <20060420150007.CE72145042@ptavv.es.net> Cc: freebsd-net@freebsd.org, freebsd-mobile@freebsd.org Subject: Re: Any miniPCI wireless LAN cards support "wi" in "hostap" mode? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 15:00:13 -0000 > Date: Thu, 20 Apr 2006 07:52:14 -0700 > From: Ross Finlayson > Sender: owner-freebsd-mobile@freebsd.org > > Does anyone know of any miniPCI wireless LAN cards that support "wi" > in "hostap" mode? > > I thought I had struck gold with the Xterasys XG-600 card, because it > uses a "PRISM GT" chipset, but it appears that "wi" doesn't support > that particular PRISM chipset at all. > > Any other candidates? Ross, There are Prism 2.5 based mini-PCI cards out there. I have one (with an Intel label on it) in my ThinkPad T30. But they are 802.11b only and have not been made in at least two years, so they won't be easy to find. Is there a reason wi support is required? There are several mini-PCI cards out there with Atheros chip-sets. I was thinking that the Prism GT was an example of one, but I may be incorrect on that. The ath driver seems to work much better than the wi for many things and I'm pretty sure that hostap is supported on it. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: oberman@es.net Phone: +1 510 486-8634 From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 17:05:17 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8C0D716A406; Thu, 20 Apr 2006 17:05:17 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from mail.ciam.ru (ns.ciam.ru [213.247.195.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id C630543D5A; Thu, 20 Apr 2006 17:05:14 +0000 (GMT) (envelope-from sem@FreeBSD.org) Received: from [87.240.16.199] (helo=[192.168.0.4]) by mail.ciam.ru with esmtpa (Exim 4.x) id 1FWcac-0005a5-7K; Thu, 20 Apr 2006 21:05:10 +0400 Message-ID: <4447BF42.7010903@FreeBSD.org> Date: Thu, 20 Apr 2006 21:05:06 +0400 From: Sergey Matveychuk User-Agent: Thunderbird 1.5 (X11/20060116) MIME-Version: 1.0 To: Max Laier References: <200604091956.42378.max@love2party.net> <200604182329.49054.max@love2party.net> In-Reply-To: <200604182329.49054.max@love2party.net> X-Enigmail-Version: 0.94.0.0 Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 7bit Cc: dima <_pppp@mail.ru>, freebsd-net@freebsd.org, Hajimu UMEMOTO , Darren Pilgrim Subject: Re: New version of iwi(4) - Call for testers [regression!] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 17:05:17 -0000 Max Laier wrote: > Latest version: > http://people.freebsd.org/~mlaier/new_iwi/20060418.both_nofw.tgz Max, I don't understand, is it a full version? 20060315.both was much longer. -- Dixi. Sem. From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 17:14:58 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 50D8016A40F; Thu, 20 Apr 2006 17:14:58 +0000 (UTC) (envelope-from ume@mahoroba.org) Received: from ameno.mahoroba.org (gw4.mahoroba.org [218.45.22.175]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8AB5F43D6E; Thu, 20 Apr 2006 17:14:46 +0000 (GMT) (envelope-from ume@mahoroba.org) Received: from kasuga.mahoroba.org (IDENT:Hm//TsYNCWXuIp1evEs7xXqvIiYELoclguwyIfCKrW9X7jGUKcxtG2317+WOM7fa@kasuga-iwi.mahoroba.org [IPv6:3ffe:501:185b:8010:212:f0ff:fe52:6ac]) (user=ume mech=CRAM-MD5 bits=0) by ameno.mahoroba.org (8.13.6/8.13.6) with ESMTP/inet6 id k3KHEPa0072384 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 21 Apr 2006 02:14:30 +0900 (JST) (envelope-from ume@mahoroba.org) Date: Fri, 21 Apr 2006 02:14:25 +0900 Message-ID: From: Hajimu UMEMOTO To: Max Laier In-Reply-To: <200604182329.49054.max@love2party.net> References: <200604091956.42378.max@love2party.net> <200604182329.49054.max@love2party.net> User-Agent: xcite1.38> Wanderlust/2.14.0 (Africa) SEMI/1.14.6 (Maruoka) FLIM/1.14.8 (=?ISO-8859-4?Q?Shij=F2?=) APEL/10.6 Emacs/22.0.50 (i386-unknown-freebsd6.1) MULE/5.0 (SAKAKI) X-Operating-System: FreeBSD 6.1-RC X-PGP-Key: http://www.imasy.or.jp/~ume/publickey.asc X-PGP-Fingerprint: 1F00 0B9E 2164 70FC 6DC5 BF5F 04E9 F086 BF90 71FE Organization: Internet Mutual Aid Society, YOKOHAMA MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka") Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-2.1.4 (ameno.mahoroba.org [IPv6:3ffe:501:185b:8010::1]); Fri, 21 Apr 2006 02:14:34 +0900 (JST) X-Virus-Scanned: by amavisd-new X-Virus-Status: Clean X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.1.1 X-Spam-Checker-Version: SpamAssassin 3.1.1 (2006-03-10) on ameno.mahoroba.org Cc: dima <_pppp@mail.ru>, freebsd-net@freebsd.org, Hajimu UMEMOTO , Darren Pilgrim Subject: Re: New version of iwi(4) - Call for testers [regression!] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 17:14:58 -0000 Hi, >>>>> On Tue, 18 Apr 2006 23:29:36 +0200 >>>>> Max Laier said: max> Latest version: max> http://people.freebsd.org/~mlaier/new_iwi/20060418.both_nofw.tgz > I forgot to mention one problem which I didn't see with stock iwi > driver on RELENG_6: > > iwi0: unknown notification type 40 flags 0xa0 len 40 max> This seems to be harmless and I will turn it off before commit. The Linux max> driver doesn't have any name for that notification type either, so I have no max> idea what it is supposed to mean. It might be related to WMA as I only get max> it with WMA enabled, but that's about it. For now the message stays to max> identify other (possibly required) notification types that might be seen. Okay, thank you. max> Will do that after this *LAST* iteration of testing. Please test now - you max> have been warned. It seems working fine here on my RELENG_6 box. Sincerely, -- Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan ume@mahoroba.org ume@{,jp.}FreeBSD.org http://www.imasy.org/~ume/ From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 17:41:49 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4C92216A401; Thu, 20 Apr 2006 17:41:49 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.186]) by mx1.FreeBSD.org (Postfix) with ESMTP id A764043D45; Thu, 20 Apr 2006 17:41:48 +0000 (GMT) (envelope-from max@love2party.net) Received: from [88.64.176.130] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu10) with ESMTP (Nemesis), id 0ML31I-1FWdA30Nh9-00069M; Thu, 20 Apr 2006 19:41:47 +0200 From: Max Laier Organization: FreeBSD To: Sergey Matveychuk Date: Thu, 20 Apr 2006 19:38:38 +0200 User-Agent: KMail/1.9.1 References: <200604182329.49054.max@love2party.net> <4447BF42.7010903@FreeBSD.org> In-Reply-To: <4447BF42.7010903@FreeBSD.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1240313.qniA63gCbz"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200604201938.45890.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de login:61c499deaeeba3ba5be80f48ecc83056 Cc: dima <_pppp@mail.ru>, freebsd-net@freebsd.org, Hajimu UMEMOTO , Darren Pilgrim Subject: Re: New version of iwi(4) - Call for testers [regression!] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 17:41:49 -0000 --nextPart1240313.qniA63gCbz Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 20 April 2006 19:05, Sergey Matveychuk wrote: > Max Laier wrote: > > Latest version: > > http://people.freebsd.org/~mlaier/new_iwi/20060418.both_nofw.tgz > > Max, I don't understand, is it a full version? 20060315.both was much > longer. It doesn't have the firmware as these can be installed via=20 net/iwi-firmware-kmod now. =2D-=20 /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --nextPart1240313.qniA63gCbz Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBER8clXyyEoT62BG0RAkY2AJ4p9Tplq+Bmi3MeavY2QqDscTkumQCfeuy7 /8V8ZG8y2awocFQYrvMkQN8= =6fIm -----END PGP SIGNATURE----- --nextPart1240313.qniA63gCbz-- From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 19:46:37 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B27A116A402 for ; Thu, 20 Apr 2006 19:46:37 +0000 (UTC) (envelope-from Stephen.Clark@seclark.us) Received: from smtpout07-04.prod.mesa1.secureserver.net (smtpout07-01.prod.mesa1.secureserver.net [64.202.165.230]) by mx1.FreeBSD.org (Postfix) with SMTP id 4506943D45 for ; Thu, 20 Apr 2006 19:46:37 +0000 (GMT) (envelope-from Stephen.Clark@seclark.us) Received: (qmail 10509 invoked from network); 20 Apr 2006 19:46:25 -0000 Received: from unknown (24.144.77.138) by smtpout07-04.prod.mesa1.secureserver.net (64.202.165.233) with ESMTP; 20 Apr 2006 19:46:25 -0000 Message-ID: <4447E50E.40107@seclark.us> Date: Thu, 20 Apr 2006 15:46:22 -0400 From: Stephen Clark User-Agent: Mozilla/5.0 (X11; U; Linux 2.2.16-22smp i686; en-US; m18) Gecko/20010110 Netscape6/6.5 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: 4.9 losing mbuf with multicast traffic X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Stephen.Clark@seclark.us List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 19:46:37 -0000 Hi, I am experiencing a problem on FreeBSD 4.9, yes I know this is ancient history but I am stuck with it for the time being, that exhibits itself as the ipintrq.ifq_len slowly growing until it finally reaches ipintrq.ifq_maxlen and the network stop responding because there is no place to put the incomming packets. If I console into the box and use sysctl and increase the maxlen things will again work until the new maxlen is reached. I know this is happening because I added a sysctl that would allow me to peak at the value of ipintrq.ifq_len. This only happens when I am running ospf and increase with activity. If someone could point towards where the multicast logic is I would appreciate or any other thoughts would be greatly appreciated. I have also posted this problem to the quagga devel mailing list and the fbsd-stable mailing list. If there is any other information that would be helpful I would be willing to supply it. Thanks in advance, Steve -- "They that give up essential liberty to obtain temporary safety, deserve neither liberty nor safety." (Ben Franklin) "The course of history shows that as a government grows, liberty decreases." (Thomas Jefferson) From owner-freebsd-net@FreeBSD.ORG Thu Apr 20 21:35:00 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 342B216A404; Thu, 20 Apr 2006 21:35:00 +0000 (UTC) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (ns.live555.com [66.80.62.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 76A9043D46; Thu, 20 Apr 2006 21:34:59 +0000 (GMT) (envelope-from rsf@ns.live555.com) Received: from ns.live555.com (localhost.live555.com [127.0.0.1]) by ns.live555.com (8.13.4/8.13.4) with ESMTP id k3KLYaAf099337; Thu, 20 Apr 2006 14:34:36 -0700 (PDT) (envelope-from rsf@ns.live555.com) Received: (from rsf@localhost) by ns.live555.com (8.13.4/8.13.4/Submit) id k3KLYZKF099335; Thu, 20 Apr 2006 14:34:35 -0700 (PDT) (envelope-from rsf) Message-Id: <7.0.1.0.1.20060420111938.0201b080@live555.com> X-Mailer: QUALCOMM Windows Eudora Version 7.0.1.0 Date: Thu, 20 Apr 2006 14:34:29 -0700 To: "Kevin Oberman" From: Ross Finlayson In-Reply-To: <20060420150007.CE72145042@ptavv.es.net> References: <20060420150007.CE72145042@ptavv.es.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: freebsd-net@freebsd.org, freebsd-mobile@freebsd.org Subject: Re: Any miniPCI wireless LAN cards support "wi" in "hostap" mode? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 20 Apr 2006 21:35:00 -0000 >Is there a reason wi support is required? There are several mini-PCI >cards out there with Atheros chip-sets. No, "wi" is not necessary. I did not realize before that "hostap" was also supported on the "ath" driver, so I'll try a card with an Atheros chip set next. > I was thinking that the Prism GT >was an example of one, but I may be incorrect on that. No, the PRISM GT chipset is not Atheros. Ross. From owner-freebsd-net@FreeBSD.ORG Fri Apr 21 05:44:17 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8F8DC16A400 for ; Fri, 21 Apr 2006 05:44:17 +0000 (UTC) (envelope-from amit.freebsd@gmail.com) Received: from pproxy.gmail.com (pproxy.gmail.com [64.233.166.181]) by mx1.FreeBSD.org (Postfix) with ESMTP id E071D43D46 for ; Fri, 21 Apr 2006 05:44:16 +0000 (GMT) (envelope-from amit.freebsd@gmail.com) Received: by pproxy.gmail.com with SMTP id t32so359005pyc for ; Thu, 20 Apr 2006 22:44:16 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type; b=h5wZ/RHyNKNozgm7vpgRKQUrqoBfLNjVR6gd/6aDMw298IHV/Ez7Bn3XEI4vLXjs8qnFgAca8x8WW8AKJG4pKx/NEuEEPZXrQQcyreHdARNZs/ecKE19nYOdbrs1KD7F94Xw5TZrM6KZBaeUbUkOx9lKyrsTxoymNdJwVVivQEQ= Received: by 10.35.87.8 with SMTP id p8mr2069213pyl; Thu, 20 Apr 2006 22:44:16 -0700 (PDT) Received: by 10.35.122.10 with HTTP; Thu, 20 Apr 2006 22:44:16 -0700 (PDT) Message-ID: Date: Fri, 21 Apr 2006 00:44:16 -0500 From: "Amit Mondal" To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: freeBSD /ipfw/ divert socket X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Apr 2006 05:44:17 -0000 Hi All, I need a little help with FreeBSD Kernel stuff. I wanna use Divert Socket t= o sniff IP packet in FreeBSD. For that I have compiled the kernel with options IPDIVERT and everything is ok. Now, when I am not really sniffing and re-injecting the packet back to the network stack, it is basically dropping all the packets. But I want it pass-through it, when no application is reading at divert socket. My question is, HOW CAN I MAKE IT PASS-THROUGH? IF NO APPLICATION IS READING FROM DIVERT SOCKET, IT SHOULD WORK AS IF THERE IS NO DIVERT SOCKET. Thanks in adavnce Rgds Amit On 4/6/06, Amit Mondal wrote: > > Hi All, > I am a newbie to freeBSD. I am trying to modify freeBSD tcp for some > security ehancement. Could anyone pls point me to how/where to start or a= ny > suitable material/tutorial to start with. > > Thanks in advance > Amit > From owner-freebsd-net@FreeBSD.ORG Fri Apr 21 05:48:29 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B81C216A40F for ; Fri, 21 Apr 2006 05:48:29 +0000 (UTC) (envelope-from symao@juniper.net) Received: from kremlin.juniper.net (kremlin.juniper.net [207.17.137.120]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3472A43D60 for ; Fri, 21 Apr 2006 05:48:26 +0000 (GMT) (envelope-from symao@juniper.net) Received: from unknown (HELO beta.jnpr.net) ([172.24.18.109]) by kremlin.juniper.net with ESMTP; 20 Apr 2006 22:48:26 -0700 X-BrightmailFiltered: true X-Brightmail-Tracker: AAAAAA== X-IronPort-AV: i="4.04,143,1144047600"; d="scan'208"; a="541373998:sNHT32598048" Received: from emailcnrd1.jnpr.net ([10.208.0.15]) by beta.jnpr.net with Microsoft SMTPSVC(6.0.3790.1830); Thu, 20 Apr 2006 22:48:25 -0700 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: quoted-printable Date: Fri, 21 Apr 2006 13:48:22 +0800 Message-ID: <322CBDC9307AE449B2BBDA9BF40792EF02DD8B@emailcnrd1.jnpr.net> X-MimeOLE: Produced By Microsoft Exchange V6.5.7226.0 X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: freeBSD /ipfw/ divert socket Thread-Index: AcZlBrFEyuVVDW5IRTihx8r6cgpO4QAAHgrQ From: "ShouYan Mao" To: "Amit Mondal" , X-OriginalArrivalTime: 21 Apr 2006 05:48:25.0615 (UTC) FILETIME=[351171F0:01C66507] Cc: Subject: RE: freeBSD /ipfw/ divert socket X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Apr 2006 05:48:31 -0000 No, if no application is reading from divert socket, kernel will drop = it! A divert socket is like a hole in the net system. Best Regards Shouyan -----Original Message----- From: owner-freebsd-net@freebsd.org = [mailto:owner-freebsd-net@freebsd.org] On Behalf Of Amit Mondal Sent: 2006=C4=EA4=D4=C221=C8=D5 13:44 To: freebsd-net@freebsd.org Subject: freeBSD /ipfw/ divert socket Hi All, I need a little help with FreeBSD Kernel stuff. I wanna use Divert = Socket to sniff IP packet in FreeBSD. For that I have compiled the kernel with options IPDIVERT and everything = is ok. Now, when I am not really sniffing and re-injecting the packet back to = the network stack, it is basically dropping all the packets. But I want it pass-through it, when no application is reading at divert socket. My question is, HOW CAN I MAKE IT PASS-THROUGH? IF NO APPLICATION IS = READING FROM DIVERT SOCKET, IT SHOULD WORK AS IF THERE IS NO DIVERT SOCKET. Thanks in adavnce Rgds Amit On 4/6/06, Amit Mondal wrote: > > Hi All, > I am a newbie to freeBSD. I am trying to modify freeBSD tcp for some > security ehancement. Could anyone pls point me to how/where to start = or any > suitable material/tutorial to start with. > > Thanks in advance > Amit > _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Fri Apr 21 06:11:23 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DEA6316A403 for ; Fri, 21 Apr 2006 06:11:23 +0000 (UTC) (envelope-from jmg@hydrogen.funkthat.com) Received: from hydrogen.funkthat.com (gate.funkthat.com [69.17.45.168]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7ED4B43D45 for ; Fri, 21 Apr 2006 06:11:23 +0000 (GMT) (envelope-from jmg@hydrogen.funkthat.com) Received: from hydrogen.funkthat.com (3exfwm8um14p64ty@localhost.funkthat.com [127.0.0.1]) by hydrogen.funkthat.com (8.13.4/8.13.3) with ESMTP id k3L6BM94035934; Thu, 20 Apr 2006 23:11:22 -0700 (PDT) (envelope-from jmg@hydrogen.funkthat.com) Received: (from jmg@localhost) by hydrogen.funkthat.com (8.13.4/8.13.3/Submit) id k3L6BMm0035933; Thu, 20 Apr 2006 23:11:22 -0700 (PDT) (envelope-from jmg) Date: Thu, 20 Apr 2006 23:11:21 -0700 From: John-Mark Gurney To: Amit Mondal Message-ID: <20060421061121.GT38619@funkthat.com> Mail-Followup-To: Amit Mondal , freebsd-net@freebsd.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.1i X-Operating-System: FreeBSD 5.4-RELEASE-p6 i386 X-PGP-Fingerprint: B7 EC EF F8 AE ED A7 31 96 7A 22 B3 D8 56 36 F4 X-Files: The truth is out there X-URL: http://resnet.uoregon.edu/~gurney_j/ X-Resume: http://resnet.uoregon.edu/~gurney_j/resume.html Cc: freebsd-net@freebsd.org Subject: Re: freeBSD /ipfw/ divert socket X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: John-Mark Gurney List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Apr 2006 06:11:24 -0000 Amit Mondal wrote this message on Fri, Apr 21, 2006 at 00:44 -0500: > Now, when I am not really sniffing and re-injecting the packet back to the > network stack, it is basically dropping all the packets. But I want it > pass-through it, when no application is reading at divert socket. My Are there issues w/ tee that prevent that from happening? tee port Send a copy of packets matching this rule to the divert(4) socket bound to port port. The search continues with the next rule. -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." From owner-freebsd-net@FreeBSD.ORG Fri Apr 21 14:14:47 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 406E116A412 for ; Fri, 21 Apr 2006 14:14:47 +0000 (UTC) (envelope-from ghelmer@palisadesys.com) Received: from magellan.palisadesys.com (magellan.palisadesys.com [192.188.162.211]) by mx1.FreeBSD.org (Postfix) with ESMTP id 869D843DB1 for ; Fri, 21 Apr 2006 14:14:23 +0000 (GMT) (envelope-from ghelmer@palisadesys.com) Received: from [172.16.1.108] (cetus.palisadesys.com [192.188.162.7]) (authenticated bits=0) by magellan.palisadesys.com (8.13.4/8.13.4) with ESMTP id k3LEEJqF087730 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 21 Apr 2006 09:14:20 -0500 (CDT) (envelope-from ghelmer@palisadesys.com) Message-ID: <4448E8BB.2070609@palisadesys.com> Date: Fri, 21 Apr 2006 09:14:19 -0500 From: Guy Helmer User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: Amit Mondal References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Palisade-MailScanner-Information: Please contact the ISP for more information X-Palisade-MailScanner: Found to be clean X-Palisade-MailScanner-From: ghelmer@palisadesys.com Cc: freebsd-net@freebsd.org Subject: Re: freeBSD /ipfw/ divert socket X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Apr 2006 14:14:47 -0000 Amit Mondal wrote: > Hi All, > > I need a little help with FreeBSD Kernel stuff. I wanna use Divert Socket to > sniff IP packet in FreeBSD. > For that I have compiled the kernel with options IPDIVERT and everything is > ok. > > Now, when I am not really sniffing and re-injecting the packet back to the > network stack, it is basically dropping all the packets. But I want it > pass-through it, when no application is reading at divert socket. My > question is, HOW CAN I MAKE IT PASS-THROUGH? IF NO APPLICATION IS READING > FROM DIVERT SOCKET, IT SHOULD WORK AS IF THERE IS NO DIVERT SOCKET. > > Thanks in adavnce > > Rgds > Amit > > Speaking from experience, it would be trivial to borrow sys/netgraph/ng_tee.c and modify it to pass packets through the left2right and right2left hooks when the hooks are connected, and pass packets directly right or left when the left2right and right2left hooks aren't connected. Then netgraph sockets can be constructed from userland programs to connect to the left2right and right2left hook. Packets will be passed to your program when your sockets are connected, and otherwise packets will skip right through the modified netgraph tee when the sockets aren't connected. Hope this helps, Guy -- Guy Helmer, Ph.D. Principal System Architect Palisade Systems, Inc.