From owner-freebsd-isp@FreeBSD.ORG Mon Sep 10 15:37:55 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9985E16A418 for ; Mon, 10 Sep 2007 15:37:55 +0000 (UTC) (envelope-from carisasanders@olh-1.com) Received: from olh-1.com (mail11.olh-1.com [64.254.132.13]) by mx1.freebsd.org (Postfix) with ESMTP id 4C02413C461 for ; Mon, 10 Sep 2007 15:37:54 +0000 (UTC) (envelope-from carisasanders@olh-1.com) Received: from mail pickup service by olh-1.com with Microsoft SMTPSVC; Mon, 10 Sep 2007 14:55:47 +0000 From: "U.S." To: "freebsd-isp@freebsd.org" Date: Mon, 10 Sep 2007 14:55:47 +0000 MIME-Version: 1.0 X-Mailer: aspNetEmail ver 2.5.0.0 X-RCPT-TO: X-UEmailID: MTUwNTgxNzU0 Message-ID: X-OriginalArrivalTime: 10 Sep 2007 14:55:47.0390 (UTC) FILETIME=[ABB9DDE0:01C7F3BA] Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Appointments & Leads by Telemarketers X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Sep 2007 15:37:55 -0000 PROFESSIONAL TELEMARKETERS Let us make your Telemarketing calls for you! WE GENERATE SALES & IN PERSON APPOINTMENTS FOR YOU!!! FRESH QUALIFIED PROSPECTS FROM THE FIRST DAY OF CALLING!!! 1-800-601-8192 Email to: telemarketing@the-callers=2Ecom WWW=2ECSMCALLCENTER=2ECOM 10 FREE Telemarketing hours all new clients! NO per minute charges!=20 NO per caller fees!=20 NO Overseas all U=2ES=2E!=20 NO Bilingual fees!=20 NO contract 20-Hour Min NO Set Up Fee=20 FREE B2B List Included!! FREE Script Production!! FREE Caller Training BY YOU!! FREE Database Administration!! FREE reports DAILY!! FREE Real Time Email Delivery DAILY OF YOUR LEADS!! FREE 24 hr Support!! FREE Bilingual Available!! FREE caller communication (actually speak with your callers) FREE email advertisement sent to your prospects FREE 24 hour ONLINE account access! To unsubscribe from future mailings click here http://www=2Eolh-1=2Ecom/U= nsubscribe=2Easpx?emailid=3DMTUwNTgxNzU0&content=3D2 From owner-freebsd-isp@FreeBSD.ORG Tue Sep 11 11:51:47 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CD38D16A418 for ; Tue, 11 Sep 2007 11:51:47 +0000 (UTC) (envelope-from mamun@freebsdmovement.org) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.188]) by mx1.freebsd.org (Postfix) with ESMTP id C0C5F13C4A5 for ; Tue, 11 Sep 2007 11:51:47 +0000 (UTC) (envelope-from mamun@freebsdmovement.org) Received: by rv-out-0910.google.com with SMTP id l15so1215394rvb for ; Tue, 11 Sep 2007 04:51:47 -0700 (PDT) Received: by 10.141.35.21 with SMTP id n21mr2291706rvj.1189509808079; Tue, 11 Sep 2007 04:23:28 -0700 (PDT) Received: by 10.141.88.8 with HTTP; Tue, 11 Sep 2007 04:23:28 -0700 (PDT) Message-ID: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> Date: Tue, 11 Sep 2007 17:23:28 +0600 From: "Anwarul Mamun" To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Squid proxy 2.6 with FreeBSD 6.2 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Sep 2007 11:51:47 -0000 Hi All! I have a linux gateway server (using iptables on this) where my client hit first. I want to direct the http traffic to the proxy server based on FreeBSD ( i mean transparent proxy). I am using FreeBSD 6.2 and Squid proxy 2.6. I have directed the http traffic from my linux gateway server to the proxy server on FreeBSD as below. But the transparent proxying does not work. Is there anyone worked with the issues on transparent proxy with FreeBSD 6.2. who may suggest in this case? /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 80 -j DNAT --to 172.16.3.1:8080 /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 8080 -j DNAT --to 172.16.3.1:8080 Regards, M From owner-freebsd-isp@FreeBSD.ORG Tue Sep 11 18:55:29 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 59A2016A419 for ; Tue, 11 Sep 2007 18:55:29 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from heka.cenkes.org (heka.cenkes.org [208.79.80.110]) by mx1.freebsd.org (Postfix) with ESMTP id 46D5F13C48D for ; Tue, 11 Sep 2007 18:55:29 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from localhost (ppp91-76-104-230.pppoe.mtu-net.ru [91.76.104.230]) (Authenticated sender: sat) by heka.cenkes.org (Postfix) with ESMTP id 1859A2E959B8; Tue, 11 Sep 2007 22:31:01 +0400 (MSD) Date: Tue, 11 Sep 2007 22:30:45 +0400 From: Andrew Pantyukhin To: Anwarul Mamun Message-ID: <20070911183044.GC83726@amilo.cenkes.org> References: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> X-OS: FreeBSD amilo.cenkes.org 7.0-CURRENT FreeBSD 7.0-CURRENT User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-isp@freebsd.org Subject: Re: Squid proxy 2.6 with FreeBSD 6.2 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Sep 2007 18:55:29 -0000 On Tue, Sep 11, 2007 at 05:23:28PM +0600, Anwarul Mamun wrote: > Hi All! > > I have a linux gateway server (using iptables on this) where my client hit > first. I want to direct the http traffic to the proxy server based on > FreeBSD ( i mean transparent proxy). I am using FreeBSD 6.2 and Squid proxy > 2.6. I have directed the http traffic from my linux gateway server to the > proxy server on FreeBSD as below. But the transparent proxying does not > work. Is there anyone worked with the issues on transparent proxy with > FreeBSD 6.2. who may suggest in this case? > > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 80 -j > DNAT --to 172.16.3.1:8080 > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 8080 > -j DNAT --to 172.16.3.1:8080 Assuming your squid config is right, you should stop modifying packets (with little knowledge of iptables, I think -j DNAT --to ... does that). If you manage to reroute unmodified packets to the FreeBSD box, you'll need something like this to set up its ipfw: $cmd add 100 fwd 127.0.0.1,3128\ proto tcp src-ip $lan_local not src-ip me not dst-ip me\ dst-port $http_ports $cmd add 200 allow via lo0 $cmd add 500 deny dst-ip me dst-port 3128 not src-ip $lan_local From owner-freebsd-isp@FreeBSD.ORG Wed Sep 12 04:50:39 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4414316A41A for ; Wed, 12 Sep 2007 04:50:39 +0000 (UTC) (envelope-from mamun@freebsdmovement.org) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.185]) by mx1.freebsd.org (Postfix) with ESMTP id 02D6A13C46B for ; Wed, 12 Sep 2007 04:50:38 +0000 (UTC) (envelope-from mamun@freebsdmovement.org) Received: by rv-out-0910.google.com with SMTP id l15so69911rvb for ; Tue, 11 Sep 2007 21:50:38 -0700 (PDT) Received: by 10.141.27.18 with SMTP id e18mr24603rvj.1189572638362; Tue, 11 Sep 2007 21:50:38 -0700 (PDT) Received: by 10.141.88.8 with HTTP; Tue, 11 Sep 2007 21:50:38 -0700 (PDT) Message-ID: <4857c35e0709112150y2cb082dcgb707f8fbdfbd934b@mail.gmail.com> Date: Wed, 12 Sep 2007 10:50:38 +0600 From: "Anwarul Mamun" To: "Andrew Pantyukhin" In-Reply-To: <20070911183044.GC83726@amilo.cenkes.org> MIME-Version: 1.0 References: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> <20070911183044.GC83726@amilo.cenkes.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-isp@freebsd.org Subject: Re: Squid proxy 2.6 with FreeBSD 6.2 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Sep 2007 04:50:39 -0000 I am using two different server. One is running under linux and using iptables from which i want to forward http traffic to the FreeBSD box where i am running Squid proxy and want to make it run as transparent proxy. The problem is that the FreeBSD box is not working as a transparent proxy in this scenario. It seems that the Squid proxy server at FreeBSD box doesn't see the packet forwarded to it through the linux server. Any suggestion? On 9/12/07, Andrew Pantyukhin wrote: > > On Tue, Sep 11, 2007 at 05:23:28PM +0600, Anwarul Mamun wrote: > > Hi All! > > > > I have a linux gateway server (using iptables on this) where my client > hit > > first. I want to direct the http traffic to the proxy server based on > > FreeBSD ( i mean transparent proxy). I am using FreeBSD 6.2 and Squid > proxy > > 2.6. I have directed the http traffic from my linux gateway server to > the > > proxy server on FreeBSD as below. But the transparent proxying does not > > work. Is there anyone worked with the issues on transparent proxy with > > FreeBSD 6.2. who may suggest in this case? > > > > > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 80 > -j > > DNAT --to 172.16.3.1:8080 > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport > 8080 > > -j DNAT --to 172.16.3.1:8080 > > Assuming your squid config is right, you should stop modifying > packets (with little knowledge of iptables, I think -j DNAT --to > ... does that). If you manage to reroute unmodified packets to > the FreeBSD box, you'll need something like this to set up its > ipfw: > > $cmd add 100 fwd 127.0.0.1,3128\ > proto tcp src-ip $lan_local not src-ip me not dst-ip me\ > dst-port $http_ports > $cmd add 200 allow via lo0 > $cmd add 500 deny dst-ip me dst-port 3128 not src-ip $lan_local > From owner-freebsd-isp@FreeBSD.ORG Wed Sep 12 08:40:36 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8530816A50A for ; Wed, 12 Sep 2007 08:40:36 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from heka.cenkes.org (heka.cenkes.org [208.79.80.110]) by mx1.freebsd.org (Postfix) with ESMTP id 5A9E813C4D5 for ; Wed, 12 Sep 2007 08:40:36 +0000 (UTC) (envelope-from infofarmer@FreeBSD.org) Received: from localhost (ppp91-76-104-230.pppoe.mtu-net.ru [91.76.104.230]) (Authenticated sender: sat) by heka.cenkes.org (Postfix) with ESMTP id 1B1DB2E959BF; Wed, 12 Sep 2007 12:40:48 +0400 (MSD) Date: Wed, 12 Sep 2007 12:40:33 +0400 From: Andrew Pantyukhin To: Anwarul Mamun Message-ID: <20070912084032.GF82150@amilo.cenkes.org> References: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> <20070911183044.GC83726@amilo.cenkes.org> <4857c35e0709112150y2cb082dcgb707f8fbdfbd934b@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4857c35e0709112150y2cb082dcgb707f8fbdfbd934b@mail.gmail.com> X-OS: FreeBSD amilo.cenkes.org 7.0-CURRENT FreeBSD 7.0-CURRENT User-Agent: Mutt/1.5.16 (2007-06-09) Cc: freebsd-isp@freebsd.org Subject: Re: Squid proxy 2.6 with FreeBSD 6.2 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: infofarmer@FreeBSD.org List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Sep 2007 08:40:36 -0000 On Wed, Sep 12, 2007 at 10:50:38AM +0600, Anwarul Mamun wrote: > On 9/12/07, Andrew Pantyukhin wrote: > > On Tue, Sep 11, 2007 at 05:23:28PM +0600, Anwarul Mamun wrote: > > > Hi All! > > > > > > I have a linux gateway server (using iptables on this) where my client > > hit > > > first. I want to direct the http traffic to the proxy server based on > > > FreeBSD ( i mean transparent proxy). I am using FreeBSD 6.2 and Squid > > proxy > > > 2.6. I have directed the http traffic from my linux gateway server to > > the > > > proxy server on FreeBSD as below. But the transparent proxying does not > > > work. Is there anyone worked with the issues on transparent proxy with > > > FreeBSD 6.2. who may suggest in this case? > > > > > > > > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 80 > > -j > > > DNAT --to 172.16.3.1:8080 > > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport > > 8080 > > > -j DNAT --to 172.16.3.1:8080 > > > > Assuming your squid config is right, you should stop modifying > > packets (with little knowledge of iptables, I think -j DNAT --to > > ... does that). If you manage to reroute unmodified packets to > > the FreeBSD box, you'll need something like this to set up its > > ipfw: > > > > $cmd add 100 fwd 127.0.0.1,3128\ > > proto tcp src-ip $lan_local not src-ip me not dst-ip me\ > > dst-port $http_ports > > $cmd add 200 allow via lo0 > > $cmd add 500 deny dst-ip me dst-port 3128 not src-ip $lan_local > > I am using two different server. One is running under linux and using > iptables from which i want to forward http traffic to the FreeBSD box where > i am running Squid proxy and want to make it run as transparent proxy. The > problem is that the FreeBSD box is not working as a transparent proxy in > this scenario. It seems that the Squid proxy server at FreeBSD box doesn't > see the packet forwarded to it through the linux server. > > Any suggestion? Eh, did you read what I posted? (a) you need to deliver packets from the linux box to the FreeBSD box unmodified, (b) inside the FreeBSD box you've got to use those ipfw rules to get the packets to squid. From owner-freebsd-isp@FreeBSD.ORG Wed Sep 12 14:15:11 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4619F16A417 for ; Wed, 12 Sep 2007 14:15:11 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: from smtp5.wlink.com.np (smtp5.wlink.com.np [202.79.32.52]) by mx1.freebsd.org (Postfix) with SMTP id 687F313C46B for ; Wed, 12 Sep 2007 14:15:08 +0000 (UTC) (envelope-from teklimbu@wlink.com.np) Received: (qmail 9161 invoked from network); 12 Sep 2007 13:56:20 -0000 Received: from unknown (HELO smtp0.wlink.com.np) (202.79.32.96) by 0 with SMTP; 12 Sep 2007 13:56:20 -0000 Received: (qmail 47240 invoked by uid 98); 12 Sep 2007 13:56:20 -0000 Received: from 202.79.36.216 by smtp0.wlink.com.np (envelope-from , uid 1009) with qmail-scanner-1.25 (clamdscan: 0.90.3/4243. Clear:RC:1(202.79.36.216):. Processed in 0.042712 secs); 12 Sep 2007 13:56:20 -0000 X-Qmail-Scanner-Mail-From: teklimbu@wlink.com.np via smtp0.wlink.com.np X-Qmail-Scanner: 1.25 (Clear:RC:1(202.79.36.216):. Processed in 0.042712 secs) Received: from teklimbu.wlink.com.np (HELO teklimbu.wlink.com.np) by smtp0.wlink.com.np (qmail-smtpd) with SMTP; 12 Sep 2007 13:56:14 -0000 (Wed, 12 Sep 2007 19:41:14 +0545) Date: Wed, 12 Sep 2007 19:41:09 +0545 From: Tek Bahadur Limbu To: "Anwarul Mamun" Message-Id: <20070912194109.97f8cd41.teklimbu@wlink.com.np> In-Reply-To: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> References: <4857c35e0709110423w77c5217fs81a1f014d0a48adf@mail.gmail.com> Organization: Worldlink Communications Pvt. Ltd. X-Mailer: Sylpheed 2.4.3 (GTK+ 2.10.13; i386-portbld-freebsd6.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Check-By: smtp0.wlink.com.np Spam: No ; 0.4 / 7.0 X-Spam-Status-WL: No, hits=0.4 required=7.0 Cc: freebsd-isp@freebsd.org Subject: Re: Squid proxy 2.6 with FreeBSD 6.2 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Sep 2007 14:15:11 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Anwarul, Have you read what Andrew had said and tried the rules? On Tue, 11 Sep 2007 17:23:28 +0600 "Anwarul Mamun" wrote: > Hi All! > > I have a linux gateway server (using iptables on this) where my client hit > first. I want to direct the http traffic to the proxy server based on > FreeBSD ( i mean transparent proxy). I am using FreeBSD 6.2 and Squid proxy > 2.6. I have directed the http traffic from my linux gateway server to the > proxy server on FreeBSD as below. But the transparent proxying does not > work. Is there anyone worked with the issues on transparent proxy with > FreeBSD 6.2. who may suggest in this case? If you had directed the http traffic from your Linux Gw box to your FreeBSD Squid box, do you actually see any kind of http traffic on the FreeBSD box? Have you verified with tcpdump? > > > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 80 -j > DNAT --to 172.16.3.1:8080 > /sbin/iptables -t nat -A PREROUTING -s 192.168.40.0/24 -p tcp --dport 8080 > -j DNAT --to 172.16.3.1:8080 You can try the following: On the Linux box: iptables -t nat -A PREROUTING -i eth0 -s ! squid-box -p tcp --dport 80 \ - -j DNAT --to squid-box:8080 iptables -t nat -A POSTROUTING -o eth0 -s local-network -d squid-box \ - -j SNAT --to iptables-box iptables -A FORWARD -s local-network -d squid-box -i eth0 -o eth0 -p \ tcp --dport 8080 -j ACCEPT By the way, what's the output of "squid -v" on your FreeBSD box and the relevant transproxy config in your squid.conf? On the FreeBSD Squid box: IPFW add fwd 127.0.0.1,3128 tcp from any to any 80 in IPFW add allow tcp from local-network to any 3128 in via $NET_IF IPFW add 65533 deny log all from any to any If everything goes fine, then it should work!!! In my opinion, running squid in the Linux gateway would be the easiest solution!:) Hope it helps. Thanking you.... > > Regards, > > M > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > - -- With best regards and good wishes, Yours sincerely, Tek Bahadur Limbu System Administrator (TAG/TDG Group) Jwl Systems Department Worldlink Communications Pvt. Ltd. Jawalakhel, Nepal http://wlink.com.np/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iD8DBQFG5+/2fpE0pz+xqQQRAkBAAJ43D4slIqP6SgkNW2310CHej2ibnACfWNyr gLvulC9kMmZQklgC/3vs+1A= =QfO7 -----END PGP SIGNATURE----- From owner-freebsd-isp@FreeBSD.ORG Fri Sep 14 07:31:29 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 840C616A420 for ; Fri, 14 Sep 2007 07:31:29 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210]) by mx1.freebsd.org (Postfix) with ESMTP id 20D9213C45D for ; Fri, 14 Sep 2007 07:31:28 +0000 (UTC) (envelope-from iaccounts@ibctech.ca) Received: (qmail 54833 invoked by uid 1002); 14 Sep 2007 07:31:28 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (spamassassin: 2.64. Clear:RC:1(208.70.104.100):. Processed in 11.249794 secs); 14 Sep 2007 07:31:28 -0000 Received: from unknown (HELO ?192.168.30.110?) (steve@ibctech.ca@208.70.104.100) by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP; 14 Sep 2007 07:31:16 -0000 Message-ID: <46EA38CC.8050803@ibctech.ca> Date: Fri, 14 Sep 2007 03:31:24 -0400 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: freebsd-questions@freebsd.org X-Enigmail-Version: 0.95.3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-isp@freebsd.org Subject: Service providers using Quagga X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2007 07:31:29 -0000 First off, sorry to cross-post, but *isp@ does not see much traffic. I'm wondering if there are any network service providers here that run any of their routing infrastructure within Quagga running on FreeBSD. I'd like to know what software alternatives are deployed out in the field, and how large a shop utilizes such software methods instead/combined with standard hardware router offerings. If this is a relatively common practice out there, what size environment do you run it in, and at what level within your network? Cheers, Steve From owner-freebsd-isp@FreeBSD.ORG Fri Sep 14 09:00:56 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2C63116A418 for ; Fri, 14 Sep 2007 09:00:56 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from s200aog14.obsmtp.com (s200aog14.obsmtp.com [207.126.144.128]) by mx1.freebsd.org (Postfix) with SMTP id CFCC113C45A for ; Fri, 14 Sep 2007 09:00:53 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from source ([213.206.147.173]) by eu1sys200aob014.postini.com ([207.126.147.11]) with SMTP; Fri, 14 Sep 2007 09:00:52 UTC Received: from [10.0.0.89] (bill.mintel.co.uk [10.0.0.89]) by rodney.mintel.co.uk (Postfix) with ESMTP id D05D6181425; Fri, 14 Sep 2007 10:00:51 +0100 (BST) Message-ID: <46EA4DC3.7060208@tomjudge.com> Date: Fri, 14 Sep 2007 10:00:51 +0100 From: Tom Judge User-Agent: Thunderbird 1.5.0.12 (X11/20070604) MIME-Version: 1.0 To: Steve Bertrand References: <46EA38CC.8050803@ibctech.ca> In-Reply-To: <46EA38CC.8050803@ibctech.ca> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: Re: Service providers using Quagga X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2007 09:00:56 -0000 Steve Bertrand wrote: > First off, sorry to cross-post, but *isp@ does not see much traffic. > > I'm wondering if there are any network service providers here that run > any of their routing infrastructure within Quagga running on FreeBSD. > > I'd like to know what software alternatives are deployed out in the > field, and how large a shop utilizes such software methods > instead/combined with standard hardware router offerings. > > If this is a relatively common practice out there, what size environment > do you run it in, and at what level within your network? > > Cheers, > > Steve Hi, We are not strictly an ISP but we are using FreeBSD+Quagga on our VPN routers. We currently only use the OSPF protocol in Quagga to manage redundant fault tollerant VPN links (Currently there are 40 tunnels in the backbone managed by quagga+ospf) between 6 sites across the globe. We will be testing the interoperability of quagga shortly when we deploy Dell layer 3 switches (Running OSPF) as the core switches of our 2 largest sites. Tom From owner-freebsd-isp@FreeBSD.ORG Fri Sep 14 18:33:25 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 94B9A16A49A for ; Fri, 14 Sep 2007 18:33:25 +0000 (UTC) (envelope-from netsecuredata@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.186]) by mx1.freebsd.org (Postfix) with ESMTP id 826F613C442 for ; Fri, 14 Sep 2007 18:33:25 +0000 (UTC) (envelope-from netsecuredata@gmail.com) Received: by rv-out-0910.google.com with SMTP id l15so701535rvb for ; Fri, 14 Sep 2007 11:33:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=ZrgI7olHfYFxKTRtShIO4nOknw2+SOvNxyoiq+U/B2o=; b=QFQChIkc1i71BVQtaq1XLKdKpkaWx83xN2h7peAwFTtgxKceqtuBE3hOq/lfFWqmJUjx8C+lSn4CFLFdjN8xVTc8rb+Uvx17FchKQ9TI+K09ZmbWI1IXeJpkB58FNSwbPiYvT28jWnVXneI/BGZcD9TLOp9eCxfmMeis++xs5uU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=sJm7N55mxj5H7ima/18aJe/Amz3kya50wfOZUs2vudTcuvcBgmUqj/p22ruUa5idSxs/YGBj8UwKTfkLOSdBOqQ7hgLOVOP4V3dpuaUa0ELxSYrZ4otNNdsqPY5MwEXCSoTi1fUuXn5s8Nyrtfm4au2rAorF3ZBv3VLxigcGF1U= Received: by 10.114.94.1 with SMTP id r1mr732193wab.1189794804548; Fri, 14 Sep 2007 11:33:24 -0700 (PDT) Received: by 10.114.108.6 with HTTP; Fri, 14 Sep 2007 11:33:24 -0700 (PDT) Message-ID: Date: Fri, 14 Sep 2007 13:33:24 -0500 From: "Jorge Evangelista" To: freebsd-isp@freebsd.org In-Reply-To: <46EA4DC3.7060208@tomjudge.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <46EA38CC.8050803@ibctech.ca> <46EA4DC3.7060208@tomjudge.com> Subject: Re: Service providers using Quagga X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2007 18:33:25 -0000 Quagga is running on Fubra Network. They have a hosting network and their total traffic is at 42Mbps. They make Peering in the London INternet eXchange (LINX) with several ISP. http://www.fubra.com/blog/archive/2007_04_01_archive.html I heard that some ISPs from the Czech Republic is running quagga in the backbone. http://lists.quagga.net/mailman/listinfo/quagga-users On 9/14/07, Tom Judge wrote: > Steve Bertrand wrote: > > First off, sorry to cross-post, but *isp@ does not see much traffic. > > > > I'm wondering if there are any network service providers here that run > > any of their routing infrastructure within Quagga running on FreeBSD. > > > > I'd like to know what software alternatives are deployed out in the > > field, and how large a shop utilizes such software methods > > instead/combined with standard hardware router offerings. > > > > If this is a relatively common practice out there, what size environment > > do you run it in, and at what level within your network? > > > > Cheers, > > > > Steve > > Hi, > > We are not strictly an ISP but we are using FreeBSD+Quagga on our VPN > routers. We currently only use the OSPF protocol in Quagga to manage > redundant fault tollerant VPN links (Currently there are 40 tunnels in > the backbone managed by quagga+ospf) between 6 sites across the globe. > We will be testing the interoperability of quagga shortly when we deploy > Dell layer 3 switches (Running OSPF) as the core switches of our 2 > largest sites. > > Tom > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > -- "The network is the computer" From owner-freebsd-isp@FreeBSD.ORG Fri Sep 14 19:09:05 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2107A16A419 for ; Fri, 14 Sep 2007 19:09:05 +0000 (UTC) (envelope-from njt@ayvali.org) Received: from starfish.geekisp.com (mail.geekisp.com [216.168.135.169]) by mx1.freebsd.org (Postfix) with ESMTP id B979413C442 for ; Fri, 14 Sep 2007 19:09:04 +0000 (UTC) (envelope-from njt@ayvali.org) Received: (qmail 22818 invoked by uid 1003); 14 Sep 2007 18:42:24 -0000 Received: from clam.int.geekisp.com (HELO clam.geekisp.com) (192.168.4.38) by mail.geekisp.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 14 Sep 2007 18:42:24 -0000 Received: from clam.geekisp.com (njt@localhost.geekisp.com [127.0.0.1]) by clam.geekisp.com (8.14.0/8.14.0) with ESMTP id l8EIgNDX011447; Fri, 14 Sep 2007 14:42:23 -0400 (EDT) Received: (from njt@localhost) by clam.geekisp.com (8.14.0/8.14.0/Submit) id l8EIgM5l029641; Fri, 14 Sep 2007 14:42:22 -0400 (EDT) X-Authentication-Warning: clam.geekisp.com: njt set sender to njt@ayvali.org using -f Date: Fri, 14 Sep 2007 14:42:22 -0400 From: "N.J. Thomas" To: Steve Bertrand Message-ID: <20070914184222.GP698@ayvali.org> References: <46EA38CC.8050803@ibctech.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <46EA38CC.8050803@ibctech.ca> User-Agent: Mutt/1.5.9i Cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: Re: Service providers using Quagga X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2007 19:09:05 -0000 * Steve Bertrand [2007-09-14 03:31:24 -0400]: > I'm wondering if there are any network service providers here that run > any of their routing infrastructure within Quagga running on FreeBSD. [...] > If this is a relatively common practice out there, what size environment > do you run it in, and at what level within your network? At last years NYCBSDCON Russell Sutherland gave a talked entitled "BSD on the Edge of the Enterprise", and talked about how they used Quagga on FreeBSD servers at the University of Toronto. It was one of the better talks there. I searched th web, and found slides that he gave for the same talk at BSDCan here: http://www.bsdcan.org/2006/papers/BackToTheFuture.pdf It contains info that you may find useful. Thomas -- N.J. Thomas njt@ayvali.org Etiamsi occiderit me, in ipso sperabo From owner-freebsd-isp@FreeBSD.ORG Fri Sep 14 19:55:07 2007 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E9A8916A417 for ; Fri, 14 Sep 2007 19:55:07 +0000 (UTC) (envelope-from brdbrd@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.246]) by mx1.freebsd.org (Postfix) with ESMTP id B8B7D13C457 for ; Fri, 14 Sep 2007 19:55:07 +0000 (UTC) (envelope-from brdbrd@gmail.com) Received: by an-out-0708.google.com with SMTP id c14so207373anc for ; Fri, 14 Sep 2007 12:55:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; bh=27ffyngKDfqTfVP8jr2wHC7wPrCYL6FBDvJVRmW0JNk=; b=r4yD6oIC1S96PUnr8qhl9JbQyQ6Ef0cFAkmuEGckI0XhUZTUtE1P/IP6pjGsGFNFCMi24Z4eJ7f1Q0I7DlaW8SRhRDQ92CD1VJV7LJO8FDRrSlKxdH/5Bbajc+DN8kFzx4jEoPw7/+AuvOqibVgExsM/9DY3Zot12pqpIGomqrw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=AGpELK49gsi2kIgzSZrEwDOIZ2hHYfP45zC/dQY6RqgR6qWMnzw0pSNZ7DsjgiGe6v/cBcHjMgK3Xq4xq1udn/bSlz4NZjpwMcwNWu5ucin2s6fSh0O2JegMGN14e1Pq1JxSop6J5OMRtV0FDHC/PWf78mEH+qmwiZHg/IQFlOA= Received: by 10.100.91.6 with SMTP id o6mr3291487anb.1189799706236; Fri, 14 Sep 2007 12:55:06 -0700 (PDT) Received: by 10.140.202.3 with HTTP; Fri, 14 Sep 2007 12:55:06 -0700 (PDT) Message-ID: <35ffa5710709141255l3669049bge2dc9756d9bceb1e@mail.gmail.com> Date: Fri, 14 Sep 2007 13:55:06 -0600 From: "Brad Davis" Sender: brdbrd@gmail.com To: "Steve Bertrand" In-Reply-To: <46EA38CC.8050803@ibctech.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <46EA38CC.8050803@ibctech.ca> X-Google-Sender-Auth: 272c5e271e78d8cc Cc: freebsd-isp@freebsd.org, freebsd-questions@freebsd.org Subject: Re: Service providers using Quagga X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2007 19:55:08 -0000 On 9/14/07, Steve Bertrand wrote: > First off, sorry to cross-post, but *isp@ does not see much traffic. > > I'm wondering if there are any network service providers here that run > any of their routing infrastructure within Quagga running on FreeBSD. > > I'd like to know what software alternatives are deployed out in the > field, and how large a shop utilizes such software methods > instead/combined with standard hardware router offerings. > > If this is a relatively common practice out there, what size environment > do you run it in, and at what level within your network? Hi Steve, I know a lot of people that are switching away form Quagga to the OpenBSD tools, such as OpenBGPd and OpenOSPFd. I prefer these tools since they seem to be more lightweight than Quagga and are pretty easy to setup. Regards, Brad Davis