From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 05:50:03 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A3D491065680 for ; Sun, 1 Mar 2009 05:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 916088FC1F for ; Sun, 1 Mar 2009 05:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n215o3V6041735 for ; Sun, 1 Mar 2009 05:50:03 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n215o3Oq041734; Sun, 1 Mar 2009 05:50:03 GMT (envelope-from gnats) Date: Sun, 1 Mar 2009 05:50:03 GMT Message-Id: <200903010550.n215o3Oq041734@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: Takahiro Kurosawa Cc: Subject: Re: kern/116837: [tun] [panic] [patch] ifconfig tunX destroy: panic X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Takahiro Kurosawa List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 05:50:03 -0000 The following reply was made to PR kern/116837; it has been noted by GNATS. From: Takahiro Kurosawa To: Lucius Windschuh Cc: bug-followup@freebsd.org Subject: Re: kern/116837: [tun] [panic] [patch] ifconfig tunX destroy: panic Date: Sun, 1 Mar 2009 14:46:44 +0900 2009/2/21 Lucius Windschuh : > =A0This is a follow-up to PR kern/116837. The described issue is solved, > =A0but now we have this issue. > =A0The following simple steps lead to a kernel panic on my system (i386, > =A0SMP, 8-CURRENT from Feb. 18th): > > =A0-->8-- > =A0cat < /dev/tun0 > /dev/tun0 & > =A0ifconfig tun0 up > =A0ifconfig tun0 destroy & ifconfig tun0 destroy > =A0--8<-- > > =A0Panic string: Bad link elm 0xc6437c00 prev->next !=3D elm > > =A0Responsible backtraces: > > =A0Tracing pid 1610 tid 100114 td 0xc686f240 > =A0kdb_enter(c090abd7,c090abd7,c08e2418,eaefeb6c,0,...) at kdb_enter+0x3a > =A0panic(c08e2418,c6437c00,c091867f,d3,2d,...) at panic+0x136 > =A0if_clone_destroyif(c0976300,c6437c00,c091867f,bf,0,...) at > =A0if_clone_destroyif+0x8a > =A0if_clone_destroy(c724f320,19c,eaefebd4,c0604976,c1494788,...) at > =A0if_clone_destroy+0xa2 if_clone_destroyif() should check that ifp is on ifc->ifc_iflist but it doesn't. Probably the following patch may fix this problem, but I fear that there might be another race between a thread accessing the ifp members and a thread calling if_clone_destroy(). # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # if_clone.c.diff # echo x - if_clone.c.diff sed 's/^X//' >if_clone.c.diff << 'fa5d2f08d96bc39865fb972ff194104f' X=3D=3D=3D sys/net/if_clone.c X=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D X--- sys/net/if_clone.c (revision 189132) X+++ sys/net/if_clone.c (local) X@@ -201,6 +201,7 @@ X int X if_clone_destroyif(struct if_clone *ifc, struct ifnet *ifp) X { X+ struct ifnet *tmp; X int err; X X if (ifc->ifc_destroy =3D=3D NULL) { X@@ -209,8 +210,15 @@ X } X X IF_CLONE_LOCK(ifc); X- IFC_IFLIST_REMOVE(ifc, ifp); X+ LIST_FOREACH(tmp, &ifc->ifc_iflist, if_clones) { X+ if (tmp =3D=3D ifp) { X+ IFC_IFLIST_REMOVE(ifc, ifp); X+ break; X+ } X+ } X IF_CLONE_UNLOCK(ifc); X+ if (tmp =3D=3D NULL) X+ return (ENXIO); /* ifp is not on the list. */ X X if_delgroup(ifp, ifc->ifc_name); X fa5d2f08d96bc39865fb972ff194104f exit From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 07:32:41 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A2126106564A for ; Sun, 1 Mar 2009 07:32:41 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: from ti-out-0910.google.com (ti-out-0910.google.com [209.85.142.189]) by mx1.freebsd.org (Postfix) with ESMTP id 3F1CE8FC13 for ; Sun, 1 Mar 2009 07:32:41 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: by ti-out-0910.google.com with SMTP id a1so2454168tib.3 for ; Sat, 28 Feb 2009 23:32:40 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:content-type :content-transfer-encoding; bh=r4IgqBCApSvIybDf4xDbc+hfUyzY5Iq+q/qgGIWBrlY=; b=c48ml9pzCIMO2sMzqlNLRkR96tZJfC+cOYoh4Qs09q/VcK24NmKNVdFz/P3yobV8Py QUbcA1BxYpY5Wu6HxCtIlqn4iRhCRNdFlcOSQ1THjW3r1rDeWBLxccPvRFPSv2lbO9IH V9rPmUHcwAX18lE0FP1sJG6u0gr4dlIkrpR8c= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; b=ipTgbFcBEHkE3kaciMAZ5lgqSIMRffd19oLSDXg9zRxo6Yi6nyS+VqwdP89dBEHFOG eF4HCiTIdv6+VR7BCXiHppkE8NkQwZzFmEpjTTCZG32zuKDZmu9/BvdWk6PYsU773pd6 LiVOmgoECUcM6SNA2QxkV/1sKxev9GafM32no= Received: by 10.110.73.19 with SMTP id v19mr6716143tia.40.1235891508553; Sat, 28 Feb 2009 23:11:48 -0800 (PST) Received: from ?192.168.25.72? ([218.107.55.254]) by mx.google.com with ESMTPS id d7sm8101472tib.2.2009.02.28.23.11.47 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 28 Feb 2009 23:11:47 -0800 (PST) Message-ID: <49AA352E.5060803@gmail.com> Date: Sun, 01 Mar 2009 15:11:42 +0800 From: stutiredboy User-Agent: Mozilla-Thunderbird 2.0.0.19 (X11/20090103) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=GB2312 Content-Transfer-Encoding: 8bit Subject: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 07:32:41 -0000 hi,all: recently , we found a problem that , some server which with FreeBSD 6.2 may stop networking after days of services, it is so difficulty express this status, e, such as sleep? i can not ping this server, tracert is also failure, and other services ,network/server seems to be down... but while i insert the keyboard/mouse/crt in , everything is ok, such as a ring to call the system to wake-up... no errors found in dmesg or /var/log/messages, such as nothing happened...orz£¬our unlimit args as follow: cputime unlimited filesize unlimited datasize 2088152 kbytes stacksize 65536 kbytes coredumpsize unlimited memoryuse unlimited vmemoryuse unlimited descriptors 655000 memorylocked unlimited maxproc 5547 sbsize unlimited plz give me some suggestion to trace the problem or solve it . thanks a lot ! Best wishes ! From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 11:01:18 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D65E31065672 for ; Sun, 1 Mar 2009 11:01:18 +0000 (UTC) (envelope-from ady@ady.ro) Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.27]) by mx1.freebsd.org (Postfix) with ESMTP id 5FE568FC0C for ; Sun, 1 Mar 2009 11:01:18 +0000 (UTC) (envelope-from ady@ady.ro) Received: by ey-out-2122.google.com with SMTP id d26so349041eyd.7 for ; Sun, 01 Mar 2009 03:01:17 -0800 (PST) MIME-Version: 1.0 Received: by 10.210.66.1 with SMTP id o1mr3729387eba.19.1235905277191; Sun, 01 Mar 2009 03:01:17 -0800 (PST) In-Reply-To: <49AA352E.5060803@gmail.com> References: <49AA352E.5060803@gmail.com> Date: Sun, 1 Mar 2009 12:01:17 +0100 Message-ID: <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> From: Adrian Penisoara To: stutiredboy Content-Type: text/plain; charset=GB2312 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 11:01:19 -0000 Hi, 2009/3/1 stutiredboy > hi,all: > > recently , we found a problem that , some server which with FreeB= SD > 6.2 may stop networking after > days of services, it is so difficulty express this status, e, such as > sleep? i can not ping this server, tracert is also > failure, and other services ,network/server seems to be down... but > while i insert the keyboard/mouse/crt in , > everything is ok, such as a ring to call the system to wake-up... no > errors found in dmesg or /var/log/messages, > such as nothing happened...orz=A3=ACour unlimit args as follow: > > cputime unlimited > filesize unlimited > datasize 2088152 kbytes > stacksize 65536 kbytes > coredumpsize unlimited > memoryuse unlimited > vmemoryuse unlimited > descriptors 655000 > memorylocked unlimited > maxproc 5547 > sbsize unlimited > > plz give me some suggestion to trace the problem or solve it . thanks a > lot ! > First you need to check whether packets are reaching the system and whether the response packets are leaving it with tcpdump(8) on the appropriate interface. If you see the packets coming but not coming out then you need to check the status of your TCP/IP stack -- e.g. post the output of "netstat -m" and "netstat -s". Also check dmesg output for any errors. If you are using firewall(s) (ipfw/ipfilter/pf) then check the rules and the firewall states status; try temporarily disabling the firewall (ipfw disable firewall / ipf -D / pfctl -d) and check whether your system becomes reachable. Check CPU load, interrupts, packet stats (systat -vmstat / systat -ifstat). Regards, Adrian Penisoara EnterpriseBSD From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 11:41:06 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 50AA210656E7 for ; Sun, 1 Mar 2009 11:41:06 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: from ti-out-0910.google.com (ti-out-0910.google.com [209.85.142.191]) by mx1.freebsd.org (Postfix) with ESMTP id DE4058FC13 for ; Sun, 1 Mar 2009 11:41:05 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: by ti-out-0910.google.com with SMTP id a1so2493370tib.3 for ; Sun, 01 Mar 2009 03:41:04 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=rgm8d43b3DiwC/7BAS9wNKtU/Yoq7HWPXKxlL5tgLmA=; b=Tl/OFKm9CN9J8dWQNHI6ghMJyee8+yQ4tp2jon7on/12Wd6QFFqlmd7UzX2FPkQww9 8KV1ifl5cPeL+uoXN46XysJTLZa7LDWA6AWUn26y8jxQcxxg7ykvzVULv3Zm/cVMHqMs ScD5sDfqXY4X/X7VIXIbDd5bOl8mPpI3IU2p0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=xrpqKqI84PMN+8E/03ajDOcIxUCpHZ//FJtBcZnFUysyTRQhCfiNC0sBX5qpLmIjax xokUz+ZJMUNhhet5pmnKfi5R6kO53bVGuK+KA2eWIyu5mO71lzg4pMfMnvxq/0ZRPgca wb3+RX5L8ieoZfcuMEeHoHNtoSyACaW6QkMHQ= Received: by 10.110.7.18 with SMTP id 18mr364121tig.46.1235907664800; Sun, 01 Mar 2009 03:41:04 -0800 (PST) Received: from ?192.168.1.203? ([58.62.99.98]) by mx.google.com with ESMTPS id 25sm7178107tif.32.2009.03.01.03.41.03 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 01 Mar 2009 03:41:03 -0800 (PST) Message-ID: <49AA744D.8060407@gmail.com> Date: Sun, 01 Mar 2009 19:41:01 +0800 From: stutiredboy User-Agent: Mozilla-Thunderbird 2.0.0.19 (X11/20090103) MIME-Version: 1.0 To: Adrian Penisoara References: <49AA352E.5060803@gmail.com> <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> In-Reply-To: <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> Content-Type: text/plain; charset=GB2312 Content-Transfer-Encoding: 8bit Cc: freebsd-net@freebsd.org Subject: Re: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 11:41:06 -0000 Adrian Penisoara дµÀ: > Hi, > > 2009/3/1 stutiredboy > > > hi,all: > > recently , we found a problem that , some server which with FreeBSD > 6.2 may stop networking after > days of services, it is so difficulty express this status, e, such as > sleep? i can not ping this server, tracert is also > failure, and other services ,network/server seems to be down... but > while i insert the keyboard/mouse/crt in , > everything is ok, such as a ring to call the system to wake-up... no > errors found in dmesg or /var/log/messages, > such as nothing happened...orz£¬our unlimit args as follow: > > cputime unlimited > filesize unlimited > datasize 2088152 kbytes > stacksize 65536 kbytes > coredumpsize unlimited > memoryuse unlimited > vmemoryuse unlimited > descriptors 655000 > memorylocked unlimited > maxproc 5547 > sbsize unlimited > > plz give me some suggestion to trace the problem or solve it . > thanks a > lot ! > > > First you need to check whether packets are reaching the system and > whether the response packets are leaving it with tcpdump(8) on the > appropriate interface. > > If you see the packets coming but not coming out then you need to > check the status of your TCP/IP stack -- e.g. post the output of > "netstat -m" and "netstat -s". Also check dmesg output for any errors. > > If you are using firewall(s) (ipfw/ipfilter/pf) then check the rules > and the firewall states status; try temporarily disabling the firewall > (ipfw disable firewall / ipf -D / pfctl -d) and check whether your > system becomes reachable. > > Check CPU load, interrupts, packet stats (systat -vmstat / systat > -ifstat). > > Regards, > Adrian Penisoara > EnterpriseBSD hi, thank you for your help, i can only ssh to the system, so while the network is down, i can not login in yes, we have ipfw on , these rules have used a long time, and many other severs do not have this problem, this sistutation happened scarce, in different machine rooms, different isps, different servers, such as hp\dell. while the network usable, the cpu and system load is normal, i have checked dmesg and syslog, nothing special found , where our colleague in machine room insert the keyboard or mouse in ,then the network recover , it is so difficult to catch the ouput of tcpdump or other messages form netstat , the moment you have the keyboard connected , the network recover... thanks very much ! From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 15:41:33 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AC8A7106566C for ; Sun, 1 Mar 2009 15:41:33 +0000 (UTC) (envelope-from luigi@onelab2.iet.unipi.it) Received: from onelab2.iet.unipi.it (onelab2.iet.unipi.it [131.114.9.129]) by mx1.freebsd.org (Postfix) with ESMTP id 7594D8FC14 for ; Sun, 1 Mar 2009 15:41:33 +0000 (UTC) (envelope-from luigi@onelab2.iet.unipi.it) Received: by onelab2.iet.unipi.it (Postfix, from userid 275) id 656FC73098; Sun, 1 Mar 2009 16:30:10 +0100 (CET) Date: Sun, 1 Mar 2009 16:30:10 +0100 From: Luigi Rizzo To: net@freebsd.org Message-ID: <20090301153010.GA58942@onelab2.iet.unipi.it> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i Cc: arch@freebsd.org Subject: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 15:41:33 -0000 Hi, I am planning to split netinet/ip_fw2.c in a number of smaller files to make it more manageable, and while i do this I would also like to move the files related to ipfw2 (namely ip_fw*c) to a better place. Any objection to moving them to sys/netinet/ipfw2 ? Also, I can't help noticing that sys/netinet/ contains 36 files related to sctp -- wouldn't it be the case to move them (perhaps with the exception of the userland headers) to a separate subdirectory ? (I know the same reasoning would apply to tcp, which has 23 files, but the issue here is that there is 25 years of userland code expecting the tcp headers in netinet/ and moving them would be a nightmare for ports...) cheers luigi From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 16:18:30 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 04DEB1065693 for ; Sun, 1 Mar 2009 16:18:30 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: from palm.hoeg.nl (mx0.hoeg.nl [IPv6:2001:7b8:613:100::211]) by mx1.freebsd.org (Postfix) with ESMTP id 993418FC08 for ; Sun, 1 Mar 2009 16:18:29 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: by palm.hoeg.nl (Postfix, from userid 1000) id E07901CCED; Sun, 1 Mar 2009 17:18:27 +0100 (CET) Date: Sun, 1 Mar 2009 17:18:27 +0100 From: Ed Schouten To: net@FreeBSD.org Message-ID: <20090301161827.GR19161@hoeg.nl> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="rfCqmLcWnxF2yz6F" Content-Disposition: inline User-Agent: Mutt/1.5.19 (2009-01-05) Cc: Subject: Making Netgraph compile with LLVM X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 16:18:30 -0000 --rfCqmLcWnxF2yz6F Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello all, It turns out Netgraph uses a language construct that is only allowed with GCC, but not with LLVM. According to the specs, LLVM's behaviour is correct. It is not allowed to do this: struct a { struct { int i; char j[]; } b; char k[20]; }; error: variable sized type 'b' must be at end of struct or class Diane Bruce and I thought this patch should solve this issue: http://80386.nl/pub/ng.diff Yes, I know, the solution isn't really elegant, but I think this is the only way to do this safely. Diane and I also compared the output of objdump and they seem to be equivalent, except for some reordering. Objections before I commit this to SVN? --=20 Ed Schouten WWW: http://80386.nl/ --rfCqmLcWnxF2yz6F Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEUEARECAAYFAkmqtVMACgkQ52SDGA2eCwUXrgCeKX/bFUEP/k9paOHIgvxZzAzf 7PUAmKI4TJo4XEvffV3oqoIDbpQIl5E= =Tp28 -----END PGP SIGNATURE----- --rfCqmLcWnxF2yz6F-- From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 18:15:45 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7810110656DE; Sun, 1 Mar 2009 18:15:45 +0000 (UTC) (envelope-from sam@freebsd.org) Received: from ebb.errno.com (ebb.errno.com [69.12.149.25]) by mx1.freebsd.org (Postfix) with ESMTP id 4988C8FC17; Sun, 1 Mar 2009 18:15:45 +0000 (UTC) (envelope-from sam@freebsd.org) Received: from trouble.errno.com (trouble.errno.com [10.0.0.248]) (authenticated bits=0) by ebb.errno.com (8.13.6/8.12.6) with ESMTP id n21HdLfK062972 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Sun, 1 Mar 2009 09:39:23 -0800 (PST) (envelope-from sam@freebsd.org) Message-ID: <49AAC849.9060105@freebsd.org> Date: Sun, 01 Mar 2009 09:39:21 -0800 From: Sam Leffler Organization: FreeBSD Project User-Agent: Thunderbird 2.0.0.18 (X11/20081209) MIME-Version: 1.0 To: Luigi Rizzo References: <20090301153010.GA58942@onelab2.iet.unipi.it> In-Reply-To: <20090301153010.GA58942@onelab2.iet.unipi.it> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-DCC-x.dcc-servers-Metrics: ebb.errno.com; whitelist Cc: arch@freebsd.org, net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 18:15:46 -0000 Luigi Rizzo wrote: > Hi, > I am planning to split netinet/ip_fw2.c in a number of smaller files > to make it more manageable, and while i do this I would also like > to move the files related to ipfw2 (namely ip_fw*c) to a better place. > Any objection to moving them to sys/netinet/ipfw2 ? > > Also, I can't help noticing that sys/netinet/ contains 36 files > related to sctp -- wouldn't it be the case to move them > (perhaps with the exception of the userland headers) > to a separate subdirectory ? > > (I know the same reasoning would apply to tcp, which has 23 files, > but the issue here is that there is 25 years of userland code expecting > the tcp headers in netinet/ and moving them would be a > nightmare for ports...) > I think sctp belongs in it's own directory. I'd vote for just ipfw; the "2" was an artifact of previous code. Sam From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 19:10:12 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5425C10656EE for ; Sun, 1 Mar 2009 19:10:12 +0000 (UTC) (envelope-from ady@ady.ro) Received: from mail-ew0-f166.google.com (mail-ew0-f166.google.com [209.85.219.166]) by mx1.freebsd.org (Postfix) with ESMTP id A6F648FC29 for ; Sun, 1 Mar 2009 19:10:10 +0000 (UTC) (envelope-from ady@ady.ro) Received: by ewy10 with SMTP id 10so1662001ewy.43 for ; Sun, 01 Mar 2009 11:10:10 -0800 (PST) MIME-Version: 1.0 Received: by 10.210.76.4 with SMTP id y4mr2739151eba.56.1235934610123; Sun, 01 Mar 2009 11:10:10 -0800 (PST) In-Reply-To: <49AA744D.8060407@gmail.com> References: <49AA352E.5060803@gmail.com> <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> <49AA744D.8060407@gmail.com> Date: Sun, 1 Mar 2009 20:10:10 +0100 Message-ID: <78cb3d3f0903011110nb13791dk5aa5e1d174c1e063@mail.gmail.com> From: Adrian Penisoara To: stutiredboy Content-Type: text/plain; charset=GB2312 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 19:10:13 -0000 Hi, 2009/3/1 stutiredboy > Adrian Penisoara =D0=B4=B5=C0: > > Hi, > > > > 2009/3/1 stutiredboy > > > > > > hi,all: > > > > recently , we found a problem that , some server which with FreeBSD > > 6.2 may stop networking after > > days of services, it is so difficulty express this status, e, such = as > > sleep? i can not ping this server, tracert is also > > failure, and other services ,network/server seems to be down... but > > while i insert the keyboard/mouse/crt in , > > everything is ok, such as a ring to call the system to wake-up... n= o > > errors found in dmesg or /var/log/messages, > > such as nothing happened...orz=A3=ACour unlimit args as follow: > > > > cputime unlimited > > filesize unlimited > > datasize 2088152 kbytes > > stacksize 65536 kbytes > > coredumpsize unlimited > > memoryuse unlimited > > vmemoryuse unlimited > > descriptors 655000 > > memorylocked unlimited > > maxproc 5547 > > sbsize unlimited > > > > plz give me some suggestion to trace the problem or solve it . > > thanks a > > lot ! > > > > > > First you need to check whether packets are reaching the system and > > whether the response packets are leaving it with tcpdump(8) on the > > appropriate interface. > > > > If you see the packets coming but not coming out then you need to > > check the status of your TCP/IP stack -- e.g. post the output of > > "netstat -m" and "netstat -s". Also check dmesg output for any errors. > > > > If you are using firewall(s) (ipfw/ipfilter/pf) then check the rules > > and the firewall states status; try temporarily disabling the firewall > > (ipfw disable firewall / ipf -D / pfctl -d) and check whether your > > system becomes reachable. > > > > Check CPU load, interrupts, packet stats (systat -vmstat / systat > > -ifstat). > > > > Regards, > > Adrian Penisoara > > EnterpriseBSD > hi, thank you for your help, i can only ssh to the system, so while the > network is down, i can not login in > > yes, we have ipfw on , these rules have used a long time, and many other > severs do not have this problem, > > this sistutation happened scarce, in different machine rooms, different > isps, different servers, such as hp\dell. > > while the network usable, the cpu and system load is normal, i have > checked dmesg and syslog, nothing > > special found , where our colleague in machine room insert the keyboard > or mouse in ,then the network > > recover , it is so difficult to catch the ouput of tcpdump or other > messages form netstat , the moment you > > have the keyboard connected , the network recover... thanks very much ! You mean that once you plugin a keyboard the machine recovers ? That's weird. What if you leave the keyboard connected all the time ? Try to attach one of the machines which reproduces the problem to a KVM switch (Keyboard/Video/Mouse switcher). If you are able to reproduce again the problem then you might have more chances to catch it. Regards, Adrian. From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 21:40:56 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EB1E51065670 for ; Sun, 1 Mar 2009 21:40:56 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outX.internet-mail-service.net (outx.internet-mail-service.net [216.240.47.247]) by mx1.freebsd.org (Postfix) with ESMTP id D1E8C8FC18 for ; Sun, 1 Mar 2009 21:40:56 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id A44ECB4E3; Sun, 1 Mar 2009 13:26:43 -0800 (PST) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id 312252D601E; Sun, 1 Mar 2009 13:26:43 -0800 (PST) Message-ID: <49AAFD92.105@elischer.org> Date: Sun, 01 Mar 2009 13:26:42 -0800 From: Julian Elischer User-Agent: Thunderbird 2.0.0.19 (Macintosh/20081209) MIME-Version: 1.0 To: Luigi Rizzo References: <20090301153010.GA58942@onelab2.iet.unipi.it> In-Reply-To: <20090301153010.GA58942@onelab2.iet.unipi.it> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: arch@freebsd.org, net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 21:40:57 -0000 Luigi Rizzo wrote: > Hi, > I am planning to split netinet/ip_fw2.c in a number of smaller files > to make it more manageable, and while i do this I would also like > to move the files related to ipfw2 (namely ip_fw*c) to a better place. > Any objection to moving them to sys/netinet/ipfw2 ? > > Also, I can't help noticing that sys/netinet/ contains 36 files > related to sctp -- wouldn't it be the case to move them > (perhaps with the exception of the userland headers) > to a separate subdirectory ? for that matter it would be nice to put ALL teh protocols in their own subdirectories. tcp related files are also multiplying, with things like syncookies etc. > > (I know the same reasoning would apply to tcp, which has 23 files, > but the issue here is that there is 25 years of userland code expecting > the tcp headers in netinet/ and moving them would be a > nightmare for ports...) > > cheers > luigi > _______________________________________________ > freebsd-arch@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-arch > To unsubscribe, send any mail to "freebsd-arch-unsubscribe@freebsd.org" From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 21:45:58 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 29926106566B for ; Sun, 1 Mar 2009 21:45:58 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outT.internet-mail-service.net (outt.internet-mail-service.net [216.240.47.243]) by mx1.freebsd.org (Postfix) with ESMTP id BE3258FC14 for ; Sun, 1 Mar 2009 21:45:56 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id C1BF8B4E5; Sun, 1 Mar 2009 13:34:07 -0800 (PST) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id 8EDBD2D600D; Sun, 1 Mar 2009 13:34:07 -0800 (PST) Message-ID: <49AAFF4F.6010400@elischer.org> Date: Sun, 01 Mar 2009 13:34:07 -0800 From: Julian Elischer User-Agent: Thunderbird 2.0.0.19 (Macintosh/20081209) MIME-Version: 1.0 To: Ed Schouten References: <20090301161827.GR19161@hoeg.nl> In-Reply-To: <20090301161827.GR19161@hoeg.nl> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: net@FreeBSD.org Subject: Re: Making Netgraph compile with LLVM X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 21:45:58 -0000 Ed Schouten wrote: > Hello all, > > It turns out Netgraph uses a language construct that is only allowed > with GCC, but not with LLVM. According to the specs, LLVM's behaviour is > correct. It is not allowed to do this: > > struct a { > struct { > int i; > char j[]; > } b; > char k[20]; > }; > > error: variable sized type 'b' must be at end of struct or class not sure wher eyou are seeing this. the examples you fix don't seem to be nested structs.. what is the outer struct? > > Diane Bruce and I thought this patch should solve this issue: > > http://80386.nl/pub/ng.diff > > Yes, I know, the solution isn't really elegant, but I think this is the > only way to do this safely. Diane and I also compared the output of > objdump and they seem to be equivalent, except for some reordering. > > Objections before I commit this to SVN? > From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 21:57:54 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AAFB41065673 for ; Sun, 1 Mar 2009 21:57:54 +0000 (UTC) (envelope-from barney_cordoba@yahoo.com) Received: from web63901.mail.re1.yahoo.com (web63901.mail.re1.yahoo.com [69.147.97.116]) by mx1.freebsd.org (Postfix) with SMTP id 571B68FC22 for ; Sun, 1 Mar 2009 21:57:53 +0000 (UTC) (envelope-from barney_cordoba@yahoo.com) Received: (qmail 38408 invoked by uid 60001); 1 Mar 2009 21:31:12 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1235943072; bh=W/uuTkSCZw5GGjPNA7FQopXupejPYb+C9mTa3j+C2Ec=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=emO6KBW+/HJ5NsR5ZS2CPK0V8bL7dZ59yRyu+lS+r2TrXehoJFMCQa0V4cKHFKBGid7qdOxLPqgATy+PHYDhruz4LJH1fYQm8WCGcGaeGMUpEP0fHhS9lS5Zmm+Hd24Th3iBUUXCBFr9QUW26e78puTY8d/edCoInotcY5n6zsM= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=ohTEavgW40CRkznQ1QPhaRp3j3T2kMJHGE3T7xqotZPRoPnaxwwKLhGftgURTF7VzawYhMo7TiZ4/XEqg186pwdYH5+LeEALalLFZetsCorGt7n0Sz+1fB60mHmTbCvApeUcywDIgCs2o17glS4z38kp7HTMEGEbjTNTWrfHfBE=; Message-ID: <407473.34181.qm@web63901.mail.re1.yahoo.com> X-YMail-OSG: cw92zw4VM1mIQh8Xl4xWv8Hu6TGeDEd1.F2taiyQ27KDP3ytwg3dQZ0vnjRV8KtsKJMymgitberNe4O_y8um1heSMb5s2X8gfC4dkIyi3pXDj9Zjt.nR55y5e6AaDot.zq_jPL4qOSGvHU.oNLhefj5A2rOHGH1fgft1fYKj04pf.XV4PWvvLMSlldjc_g-- Received: from [98.242.222.229] by web63901.mail.re1.yahoo.com via HTTP; Sun, 01 Mar 2009 13:31:07 PST X-Mailer: YahooMailWebService/0.7.289.1 Date: Sun, 1 Mar 2009 13:31:07 -0800 (PST) From: Barney Cordoba To: Mark E Doner In-Reply-To: <49A38202.7010506@amplex.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: net@freebsd.org Subject: Re: rate limiting mail server X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: barney_cordoba@yahoo.com List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 21:57:54 -0000 --- On Tue, 2/24/09, Mark E Doner wrote: > From: Mark E Doner > Subject: rate limiting mail server > To: freebsd-isp@freebsd.org > Date: Tuesday, February 24, 2009, 12:13 AM > Greetings, > I am running a fairly large mail server, FreeBSD, of > course. It is predominantly for residential customers, so > educating the end users to not fall for the scams is never > going to happen. Whenever we have a customer actually hand > over their login credentials, we quickly see a huge flood of > inbound connections from a small handful of IP addresses on > ports 25 and 587, all authenticate as whatever customer fell > for the scam du jour, and of course, load goes through the > roof as I get a few thousand extra junk messages to process > in a matter of minutes. > > Thinking about using PF to rate limit inbound connections, > stuff the hog wild connection rates into a table and drop > them quickly. My question is, I know how to do this, PF > syntax is easy, but has anyone ever tried this? How many new > connections per minute from a single source are acceptable, > and what is blatantly malicious? And, once I have determined > that, how long should I leave the offenders in the > blocklist? > > Any thoughts appreciated, > Mark A better strategy is to identify the spam source and just block it. The way we do it is that we look for unusual domain traffic from a single source and then block the source. I haven't figured out a way to automate it yet but it works very well. You don't really want to rate limit mail spammers. They go on for many hours . BC From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 22:00:25 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E642A1065679 for ; Sun, 1 Mar 2009 22:00:25 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: from palm.hoeg.nl (mx0.hoeg.nl [IPv6:2001:7b8:613:100::211]) by mx1.freebsd.org (Postfix) with ESMTP id 8372B8FC08 for ; Sun, 1 Mar 2009 22:00:25 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: by palm.hoeg.nl (Postfix, from userid 1000) id 7AFCB1CCED; Sun, 1 Mar 2009 23:00:24 +0100 (CET) Date: Sun, 1 Mar 2009 23:00:24 +0100 From: Ed Schouten To: Julian Elischer Message-ID: <20090301220024.GU19161@hoeg.nl> References: <20090301161827.GR19161@hoeg.nl> <49AAFF4F.6010400@elischer.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="BxNWZcw0TMazIwHZ" Content-Disposition: inline In-Reply-To: <49AAFF4F.6010400@elischer.org> User-Agent: Mutt/1.5.19 (2009-01-05) Cc: net@FreeBSD.org Subject: Re: Making Netgraph compile with LLVM X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 22:00:26 -0000 --BxNWZcw0TMazIwHZ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable * Julian Elischer wrote: > Ed Schouten wrote: >> Hello all, >> >> It turns out Netgraph uses a language construct that is only allowed >> with GCC, but not with LLVM. According to the specs, LLVM's behaviour is >> correct. It is not allowed to do this: >> >> struct a { >> struct { >> int i; >> char j[]; >> } b; >> char k[20]; >> }; >> >> error: variable sized type 'b' must be at end of struct or class > > not sure wher eyou are seeing this. > > the examples you fix don't seem to be nested structs.. what is the =20 > outer struct? In the Netgraph code, this isn't done in a single declaration, but there are several structs that (indirectly) nest pppoe_tags. An example is ng_pppoe.c, line 1179: struct { struct pppoe_tag hdr; union uniq data; } __packed uniqtag; It turns out that this is not valid: http://llvm.org/bugs/show_bug.cgi?id=3D3671 --=20 Ed Schouten WWW: http://80386.nl/ --BxNWZcw0TMazIwHZ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEYEARECAAYFAkmrBXgACgkQ52SDGA2eCwWvTwCfT9S4ZedrmC8o8/6UZCz1yClU DcUAn3o+LBuh1fZaW6ZYw6VlBb44+BA9 =MuBd -----END PGP SIGNATURE----- --BxNWZcw0TMazIwHZ-- From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 22:10:19 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DFDA110656D7 for ; Sun, 1 Mar 2009 22:10:19 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outQ.internet-mail-service.net (outq.internet-mail-service.net [216.240.47.240]) by mx1.freebsd.org (Postfix) with ESMTP id C41A58FC24 for ; Sun, 1 Mar 2009 22:10:19 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id A03F0B4E6; Sun, 1 Mar 2009 14:10:19 -0800 (PST) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id 0510A2D600D; Sun, 1 Mar 2009 14:10:18 -0800 (PST) Message-ID: <49AB07CA.4070607@elischer.org> Date: Sun, 01 Mar 2009 14:10:18 -0800 From: Julian Elischer User-Agent: Thunderbird 2.0.0.19 (Macintosh/20081209) MIME-Version: 1.0 To: Ed Schouten References: <20090301161827.GR19161@hoeg.nl> <49AAFF4F.6010400@elischer.org> <20090301220024.GU19161@hoeg.nl> In-Reply-To: <20090301220024.GU19161@hoeg.nl> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: net@FreeBSD.org Subject: Re: Making Netgraph compile with LLVM X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 22:10:20 -0000 Ed Schouten wrote: > * Julian Elischer wrote: >> Ed Schouten wrote: >>> Hello all, >>> >>> It turns out Netgraph uses a language construct that is only allowed >>> with GCC, but not with LLVM. According to the specs, LLVM's behaviour is >>> correct. It is not allowed to do this: >>> >>> struct a { >>> struct { >>> int i; >>> char j[]; >>> } b; >>> char k[20]; >>> }; >>> >>> error: variable sized type 'b' must be at end of struct or class >> not sure wher eyou are seeing this. >> >> the examples you fix don't seem to be nested structs.. what is the >> outer struct? > > In the Netgraph code, this isn't done in a single declaration, but there > are several structs that (indirectly) nest pppoe_tags. An example is > ng_pppoe.c, line 1179: > > struct { > struct pppoe_tag hdr; > union uniq data; > } __packed uniqtag; > > It turns out that this is not valid: > > http://llvm.org/bugs/show_bug.cgi?id=3671 then the answer is to create a separate structure 'tag header' that can be used in both places. I think.... > From owner-freebsd-net@FreeBSD.ORG Sun Mar 1 22:15:01 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DAEBD106566B for ; Sun, 1 Mar 2009 22:15:01 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: from palm.hoeg.nl (mx0.hoeg.nl [IPv6:2001:7b8:613:100::211]) by mx1.freebsd.org (Postfix) with ESMTP id 9F22D8FC0C for ; Sun, 1 Mar 2009 22:15:01 +0000 (UTC) (envelope-from ed@hoeg.nl) Received: by palm.hoeg.nl (Postfix, from userid 1000) id 08B571CCED; Sun, 1 Mar 2009 23:15:01 +0100 (CET) Date: Sun, 1 Mar 2009 23:15:00 +0100 From: Ed Schouten To: Julian Elischer Message-ID: <20090301221500.GV19161@hoeg.nl> References: <20090301161827.GR19161@hoeg.nl> <49AAFF4F.6010400@elischer.org> <20090301220024.GU19161@hoeg.nl> <49AB07CA.4070607@elischer.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="w2olyN7lJGFjUUv/" Content-Disposition: inline In-Reply-To: <49AB07CA.4070607@elischer.org> User-Agent: Mutt/1.5.19 (2009-01-05) Cc: net@FreeBSD.org Subject: Re: Making Netgraph compile with LLVM X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Mar 2009 22:15:02 -0000 --w2olyN7lJGFjUUv/ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable * Julian Elischer wrote: > then the answer is to create a separate structure 'tag header' > that can be used in both places. I think.... I don't know that much about Netgraph. Would you be willing to work on this? I don't use ng_pppoe, so I was only able to validate its correctness by looking at objdump. --=20 Ed Schouten WWW: http://80386.nl/ --w2olyN7lJGFjUUv/ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEYEARECAAYFAkmrCOQACgkQ52SDGA2eCwUbAgCfStQuLgx2RT/aqbZgHWjf/E46 CgoAn0O6H5F9TIJoORk6m4axrkdBT9nq =sC5N -----END PGP SIGNATURE----- --w2olyN7lJGFjUUv/-- From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 00:44:16 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F2F5D1065678 for ; Mon, 2 Mar 2009 00:44:15 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.24]) by mx1.freebsd.org (Postfix) with ESMTP id 791608FC20 for ; Mon, 2 Mar 2009 00:44:15 +0000 (UTC) (envelope-from rpaulo@gmail.com) Received: by ey-out-2122.google.com with SMTP id d26so369046eyd.7 for ; Sun, 01 Mar 2009 16:44:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:cc:message-id:from:to :in-reply-to:content-type:content-transfer-encoding:mime-version :subject:date:references:x-pgp-agent:x-mailer; bh=Wx2XbqRvk7TbsfSy8XLPtzeRwOj/oyMn1u2eKfLoJlc=; b=pvAu2w2XlP0sJRwEkFsxX7tYlMPhqhPlK/HLZLf54jppYmEgiNFl//r+jEyZbZVju2 f7lC1U355kj7S84dQinlDJ5nZWuTaaOkpAm3gptVnrlgXIDz+ZL0QtqQ1Sfht6Kgkj3B dBX7xI3L9zRzkBB4WuEfp1i9u+Owz7H0Tj2b8= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=cc:message-id:from:to:in-reply-to:content-type :content-transfer-encoding:mime-version:subject:date:references :x-pgp-agent:x-mailer; b=XTIOKp481bp7BHfCCPf3LiykCRqsUtMStNhgnw60R3U2WhOYssTyktTEtUFDxTwYiF Yn4LDNgl4nybHSdKhN2KJC61lbFtbZ0fKzppth0gOpkOhDl3ELCl8jq3U9t2YDvoQqZX p9hpp7jg0bP/V4UVWhzdTMNZEtuTaSvefVH3I= Received: by 10.210.92.11 with SMTP id p11mr4257150ebb.2.1235953120026; Sun, 01 Mar 2009 16:18:40 -0800 (PST) Received: from epsilon.lan (bl6-147-236.dsl.telepac.pt [82.155.147.236]) by mx.google.com with ESMTPS id 34sm4812260nfu.77.2009.03.01.16.18.38 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 01 Mar 2009 16:18:39 -0800 (PST) Message-Id: <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> From: Rui Paulo To: Julian Elischer In-Reply-To: <49AAFD92.105@elischer.org> Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Apple-Mail-5--52127531" Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Date: Mon, 2 Mar 2009 00:18:30 +0000 References: <20090301153010.GA58942@onelab2.iet.unipi.it> <49AAFD92.105@elischer.org> X-Pgp-Agent: GPGMail 1.2.0 (v56) X-Mailer: Apple Mail (2.930.3) Cc: arch@freebsd.org, Luigi Rizzo , net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 00:44:16 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --Apple-Mail-5--52127531 Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit On 1 Mar 2009, at 21:26, Julian Elischer wrote: > Luigi Rizzo wrote: >> Hi, >> I am planning to split netinet/ip_fw2.c in a number of smaller files >> to make it more manageable, and while i do this I would also like >> to move the files related to ipfw2 (namely ip_fw*c) to a better >> place. >> Any objection to moving them to sys/netinet/ipfw2 ? >> Also, I can't help noticing that sys/netinet/ contains 36 files >> related to sctp -- wouldn't it be the case to move them >> (perhaps with the exception of the userland headers) >> to a separate subdirectory ? > > for that matter it would be nice to put ALL teh protocols in their > own subdirectories. Yes, that would be the perfect scenario, but I don't think that's doable. SCTP can be moved because it hasn't matured enough to cause a "moving nightmare". I vote for "ipfw" like Sam, BTW. -- Rui Paulo --Apple-Mail-5--52127531 content-type: application/pgp-signature; x-mac-type=70674453; name=PGP.sig content-description: This is a digitally signed message part content-disposition: inline; filename=PGP.sig content-transfer-encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) iEYEARECAAYFAkmrJdYACgkQfD8M/ASTygLouQCgivm7VKOGxz443T3q8L6k7lLR XQQAoNkm7fhzghvLZnDVHarrna/ANxGA =Qbs8 -----END PGP SIGNATURE----- --Apple-Mail-5--52127531-- From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 01:14:52 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 696C0106566C for ; Mon, 2 Mar 2009 01:14:52 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: from ti-out-0910.google.com (ti-out-0910.google.com [209.85.142.184]) by mx1.freebsd.org (Postfix) with ESMTP id 0126E8FC08 for ; Mon, 2 Mar 2009 01:14:51 +0000 (UTC) (envelope-from stutiredboy@gmail.com) Received: by ti-out-0910.google.com with SMTP id a1so2585943tib.3 for ; Sun, 01 Mar 2009 17:14:51 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=AgvX/oeuz4/VxWj9idS+46Xsezvi2DGbZw+cY1bA0+w=; b=wtk9mR35idlXs/zUM3W79t4JBEDDQTY+SMlefodRbM27SZT1f6Lxn3zfb7GS7Y6JMc l3xKMXP8koMOjMaXlnaMhHnFScddpNYr1mcy6S4WN6daHkxm0iBgAy0GqeGDh452NmpR 8+bupTgrSi8xe40yyCntOIHJCPtm/SRa0TI+U= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=vdCxchwph3HoA37EpaDDeW8V8Z+yzkrvUq5t79k9cK6/fykLbnH+VXSdJyFcO2taPl rMzhF5LvaItUK6e2dQxR/DPz2+oOw+yb10Y4Fe+afHSYc5OdnLdnyJ20r5gGQejsbi9I iSF+SEpMn53QbSDUsfPCECPy++t0EpddNlSIA= Received: by 10.110.46.3 with SMTP id t3mr746714tit.31.1235956490483; Sun, 01 Mar 2009 17:14:50 -0800 (PST) Received: from ?192.168.25.72? ([218.107.55.254]) by mx.google.com with ESMTPS id a14sm8857401tia.7.2009.03.01.17.14.49 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sun, 01 Mar 2009 17:14:49 -0800 (PST) Message-ID: <49AB3307.5070900@gmail.com> Date: Mon, 02 Mar 2009 09:14:47 +0800 From: stutiredboy User-Agent: Mozilla-Thunderbird 2.0.0.19 (X11/20090103) MIME-Version: 1.0 To: Adrian Penisoara References: <49AA352E.5060803@gmail.com> <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> <49AA744D.8060407@gmail.com> <78cb3d3f0903011110nb13791dk5aa5e1d174c1e063@mail.gmail.com> In-Reply-To: <78cb3d3f0903011110nb13791dk5aa5e1d174c1e063@mail.gmail.com> Content-Type: text/plain; charset=GB2312 Content-Transfer-Encoding: 8bit Cc: freebsd-net@freebsd.org Subject: Re: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 01:14:52 -0000 Adrian Penisoara дµÀ: > Hi, > > 2009/3/1 stutiredboy > > > Adrian Penisoara дµÀ: > > Hi, > > > > 2009/3/1 stutiredboy > > >> > > > > hi,all: > > > > recently , we found a problem that , some server which with FreeBSD > > 6.2 may stop networking after > > days of services, it is so difficulty express this status, e, > such as > > sleep? i can not ping this server, tracert is also > > failure, and other services ,network/server seems to be down... but > > while i insert the keyboard/mouse/crt in , > > everything is ok, such as a ring to call the system to wake-up... no > > errors found in dmesg or /var/log/messages, > > such as nothing happened...orz£¬our unlimit args as follow: > > > > cputime unlimited > > filesize unlimited > > datasize 2088152 kbytes > > stacksize 65536 kbytes > > coredumpsize unlimited > > memoryuse unlimited > > vmemoryuse unlimited > > descriptors 655000 > > memorylocked unlimited > > maxproc 5547 > > sbsize unlimited > > > > plz give me some suggestion to trace the problem or solve it . > > thanks a > > lot ! > > > > > > First you need to check whether packets are reaching the system and > > whether the response packets are leaving it with tcpdump(8) on the > > appropriate interface. > > > > If you see the packets coming but not coming out then you need to > > check the status of your TCP/IP stack -- e.g. post the output of > > "netstat -m" and "netstat -s". Also check dmesg output for any > errors. > > > > If you are using firewall(s) (ipfw/ipfilter/pf) then check the rules > > and the firewall states status; try temporarily disabling the > firewall > > (ipfw disable firewall / ipf -D / pfctl -d) and check whether your > > system becomes reachable. > > > > Check CPU load, interrupts, packet stats (systat -vmstat / systat > > -ifstat). > > > > Regards, > > Adrian Penisoara > > EnterpriseBSD > hi, thank you for your help, i can only ssh to the system, so > while the > network is down, i can not login in > > yes, we have ipfw on , these rules have used a long time, and many > other > severs do not have this problem, > > this sistutation happened scarce, in different machine rooms, > different > isps, different servers, such as hp\dell. > > while the network usable, the cpu and system load is normal, i have > checked dmesg and syslog, nothing > > special found , where our colleague in machine room insert the > keyboard > or mouse in ,then the network > > recover , it is so difficult to catch the ouput of tcpdump or other > messages form netstat , the moment you > > have the keyboard connected , the network recover... thanks very > much ! > > > You mean that once you plugin a keyboard the machine recovers ? That's > weird. What if you leave the keyboard connected all the time ? > > Try to attach one of the machines which reproduces the problem to a > KVM switch (Keyboard/Video/Mouse switcher). If you are able to > reproduce again the problem then you might have more chances to catch it. > > Regards, > Adrian. > hi, thanks Adrian. yes,it is weird and thanks for your opinion, it's a good a idea , but it is a pity that i do not know which machine will run into this problem again, we have thousands of machines in different machine rooms, i will try this , hope i have the chances to catch the useful info. :-) From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 02:54:48 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 550A5106566B; Mon, 2 Mar 2009 02:54:48 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (agora.rdrop.com [199.26.172.34]) by mx1.freebsd.org (Postfix) with ESMTP id 2281C8FC0C; Mon, 2 Mar 2009 02:54:48 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (66@localhost [127.0.0.1]) by agora.rdrop.com (8.13.1/8.12.7) with ESMTP id n222QQMD091705 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 1 Mar 2009 18:26:26 -0800 (PST) (envelope-from perryh@pluto.rain.com) Received: (from uucp@localhost) by agora.rdrop.com (8.13.1/8.12.9/Submit) with UUCP id n222QQrK091700; Sun, 1 Mar 2009 18:26:26 -0800 (PST) Received: from fbsd61 by pluto.rain.com (4.1/SMI-4.1-pluto-M2060407) id AA15727; Sun, 1 Mar 09 18:22:22 PST Date: Sun, 01 Mar 2009 18:22:02 -0800 From: perryh@pluto.rain.com To: rpaulo@gmail.com, julian@elischer.org Message-Id: <49ab42ca.YZ1mfcCDO0pvdDhv%perryh@pluto.rain.com> References: <20090301153010.GA58942@onelab2.iet.unipi.it> <49AAFD92.105@elischer.org> <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> In-Reply-To: <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> User-Agent: nail 11.25 7/29/05 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: arch@freebsd.org, rizzo@iet.unipi.it, net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 02:54:48 -0000 Rui Paulo wrote: > On 1 Mar 2009, at 21:26, Julian Elischer wrote: > > Luigi Rizzo wrote: > >> Hi, > >> I am planning to split netinet/ip_fw2.c in a number of smaller > >> files to make it more manageable, and while i do this I would > >> also like to move the files related to ipfw2 (namely ip_fw*c) > >> to a better place. > >> Any objection to moving them to sys/netinet/ipfw2 ? > >> Also, I can't help noticing that sys/netinet/ contains 36 > >> files related to sctp -- wouldn't it be the case to move > >> them (perhaps with the exception of the userland headers) > >> to a separate subdirectory ? > > > > for that matter it would be nice to put ALL teh protocols in > > their own subdirectories. > > Yes, that would be the perfect scenario, but I don't think that's > doable. > > SCTP can be moved because it hasn't matured enough to cause a > "moving nightmare". Perhaps everything can be moved, if hardlinks or symlinks are left in sys/netinet for those parts (mostly .h files, presumably) which have too much legacy to be moved outright. From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 08:23:31 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A5D7106564A for ; Mon, 2 Mar 2009 08:23:31 +0000 (UTC) (envelope-from ady@ady.ro) Received: from mail-ew0-f166.google.com (mail-ew0-f166.google.com [209.85.219.166]) by mx1.freebsd.org (Postfix) with ESMTP id E2FA18FC27 for ; Mon, 2 Mar 2009 08:23:30 +0000 (UTC) (envelope-from ady@ady.ro) Received: by ewy10 with SMTP id 10so1738117ewy.43 for ; Mon, 02 Mar 2009 00:23:29 -0800 (PST) MIME-Version: 1.0 Received: by 10.210.82.2 with SMTP id f2mr3038150ebb.55.1235982209359; Mon, 02 Mar 2009 00:23:29 -0800 (PST) In-Reply-To: <49AB3307.5070900@gmail.com> References: <49AA352E.5060803@gmail.com> <78cb3d3f0903010301y5d8bbaf9r4a285653688d74ca@mail.gmail.com> <49AA744D.8060407@gmail.com> <78cb3d3f0903011110nb13791dk5aa5e1d174c1e063@mail.gmail.com> <49AB3307.5070900@gmail.com> Date: Mon, 2 Mar 2009 09:23:29 +0100 Message-ID: <78cb3d3f0903020023u98c88fch6dfeaf25db79fc79@mail.gmail.com> From: Adrian Penisoara To: stutiredboy Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: crazy network problem -- sleep? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 08:23:31 -0000 Hi, 2009/3/2 stutiredboy [...] > > > > > > You mean that once you plugin a keyboard the machine recovers ? That's > > weird. What if you leave the keyboard connected all the time ? > > > > Try to attach one of the machines which reproduces the problem to a > > KVM switch (Keyboard/Video/Mouse switcher). If you are able to > > reproduce again the problem then you might have more chances to catch it. > > > > Regards, > > Adrian. > > > hi, thanks Adrian. yes,it is weird and thanks for your opinion, it's a > good a idea , but it is a pity that i do not know which machine will run > into this problem again, we have thousands of machines in different > machine rooms, i will try this , hope i have the chances to catch the > useful info. :-) > Please keep in mind hat having a predictable reproduction method for the issue would greatly help resolving the problem, so try to keep tabs on what triggers producing it. Regards, Adrian. From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 11:07:06 2009 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CC3E01065688 for ; Mon, 2 Mar 2009 11:07:06 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 01A808FCB1 for ; Mon, 2 Mar 2009 11:06:57 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n22B6ueG057385 for ; Mon, 2 Mar 2009 11:06:56 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n22B6urR057381 for freebsd-net@FreeBSD.org; Mon, 2 Mar 2009 11:06:56 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 2 Mar 2009 11:06:56 GMT Message-Id: <200903021106.n22B6urR057381@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-net@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-net@FreeBSD.org X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 11:07:38 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/132179 net [patch] /etc/network.subr: ipv6 rtsol on incorrect wla o kern/132107 net [carp] carp(4) advskew setting ignored when carp IP us o kern/131781 net [ndis] ndis keeps dropping the link o kern/131776 net [wi] driver fails to init o kern/131753 net [altq] [panic] kernel panic in hfsc_dequeue o bin/131567 net [socket] [patch] Update for regression/sockets/unix_cm o kern/131549 net ifconfig(8) can't clear 'monitor' mode on the wireless o kern/131536 net [netinet] [patch] kernel does allow manipulation of su o bin/131365 net route(8): route add changes interpretation of network o kern/131310 net [panic] 7.1 panics with mpd netgraph interface changes o kern/131162 net [ath] Atheros driver bugginess and kernel crashes o kern/131153 net [iwi] iwi doesn't see a wireless network f kern/131087 net [ipw] [panic] ipw / iwi - no sent/received packets; iw o kern/130846 net [vge] vge0 not autonegotiating to 1000baseTX full dupl o kern/130820 net [ndis] wpa_supplicant(8) returns 'no space on device' o kern/130628 net [nfs] NFS / rpc.lockd deadlock on 7.1-R f kern/130605 net [tcp] Certain hardware produces "Network is unreachabl o conf/130555 net [rc.d] [patch] No good way to set ipfilter variables a o kern/130525 net [ndis] [panic] 64 bit ar5008 ndisgen-erated driver cau o kern/130311 net [wlan_xauth] [panic] hostapd restart causing kernel pa o bin/130159 net [patch] ppp(8) fails to correctly set routes o kern/130109 net [ipfw] Can not set fib for packets originated from loc f kern/130059 net [panic] Leaking 50k mbufs/hour o kern/129846 net [panic] /usr/sbin/ppp causes panic "Sleeping thread ow o kern/129750 net [ath] Atheros AR5006 exits on "cannot map register spa f kern/129719 net [nfs] [panic] Panic during shutdown, tcp_ctloutput: in o kern/129580 net [ndis] Netgear WG311v3 (ndis) causes kenel trap at boo o kern/129517 net [ipsec] [panic] double fault / stack overflow o kern/129508 net [panic] Kernel panic with EtherIP (may be related to S o kern/129352 net [xl] [patch] xl0 watchdog timeout o kern/129219 net [ppp] Kernel panic when using kernel mode ppp o kern/129135 net [vge] vge driver on a VIA mini-ITX not working o bin/128954 net ifconfig(8) deletes valid routes o kern/128917 net [wpi] [panic] if_wpi and wpa+tkip causing kernel panic o kern/128884 net [msk] if_msk page fault while in kernel mode o kern/128840 net [igb] page fault under load with igb/LRO o bin/128602 net [an] wpa_supplicant(8) crashes with an(4) o kern/128598 net [bluetooth] WARNING: attempt to net_add_domain(bluetoo o kern/128448 net [nfs] 6.4-RC1 Boot Fails if NFS Hostname cannot be res o conf/128334 net [request] use wpa_cli in the "WPA DHCP" situation o bin/128295 net [patch] ifconfig(8) does not print TOE4 or TOE6 capabi o bin/128001 net wpa_supplicant(8), wlan(4), and wi(4) issues o kern/127928 net [tcp] [patch] TCP bandwidth gets squeezed every time t o kern/127834 net [ixgbe] [patch] wrong error counting o kern/127826 net [iwi] iwi0 driver has reduced performance and connecti o kern/127815 net [gif] [patch] if_gif does not set vlan attributes from o kern/127724 net [rtalloc] rtfree: 0xc5a8f870 has 1 refs f bin/127719 net arp: Segmentation fault (core dumped) s kern/127587 net [bge] [request] if_bge(4) doesn't support BCM576X fami f kern/127528 net [icmp]: icmp socket receives icmp replies not owned by o bin/127192 net routed(8) removes the secondary alias IP of interface f kern/127145 net [wi]: prism (wi) driver crash at bigger traffic o kern/127102 net [wpi] Intel 3945ABG low throughput o kern/127057 net [udp] Unable to send UDP packet via IPv6 socket to IPv o kern/127050 net [carp] ipv6 does not work on carp interfaces [regressi o kern/126945 net [carp] CARP interface destruction with ifconfig destro o kern/126924 net [an] [patch] printf -> device_printf and simplify prob o kern/126895 net [patch] [ral] Add antenna selection (marked as TBD) o kern/126874 net [vlan]: Zebra problem if ifconfig vlanX destroy o bin/126822 net wpa_supplicant(8): WPA PSK does not work in adhoc mode o kern/126714 net [carp] CARP interface renaming makes system no longer o kern/126695 net rtfree messages and network disruption upon use of if_ o kern/126688 net [ixgbe] [patch] 1.4.7 ixgbe driver panic with 4GB and o kern/126475 net [ath] [panic] ath pcmcia card inevitably panics under o kern/126469 net [fxp] [panic] fxp(4) related kernel panic o kern/126339 net [ipw] ipw driver drops the connection o kern/126214 net [ath] txpower problem with Atheros wifi card o kern/126075 net [inet] [patch] internet control accesses beyond end of o bin/125922 net [patch] Deadlock in arp(8) o kern/125920 net [arp] Kernel Routing Table loses Ethernet Link status o kern/125845 net [netinet] [patch] tcp_lro_rx() should make use of hard o kern/125816 net [carp] [if_bridge] carp stuck in init when using bridg f kern/125502 net [ral] ifconfig ral0 scan produces no output unless in o kern/125258 net [socket] socket's SO_REUSEADDR option does not work o kern/125239 net [gre] kernel crash when using gre f kern/125195 net [fxp] fxp(4) driver failed to initialize device Intel o kern/124904 net [fxp] EEPROM corruption with Compaq NC3163 NIC o kern/124767 net [iwi] Wireless connection using iwi0 driver (Intel 220 o kern/124753 net [ieee80211] net80211 discards power-save queue packets o kern/124341 net [ral] promiscuous mode for wireless device ral0 looses o kern/124160 net [libc] connect(2) function loops indefinitely o kern/124127 net [msk] watchdog timeout (missed Tx interrupts) -- recov o kern/124021 net [ip6] [panic] page fault in nd6_output() o kern/123968 net [rum] [panic] rum driver causes kernel panic with WPA. p kern/123961 net [vr] [patch] Allow vr interface to handle vlans o kern/123892 net [tap] [patch] No buffer space available o kern/123858 net [stf] [patch] stf not usable behind a NAT o kern/123796 net [ipf] FreeBSD 6.1+VPN+ipnat+ipf: port mapping does not o bin/123633 net ifconfig(8) doesn't set inet and ether address in one f kern/123617 net [tcp] breaking connection when client downloading file o kern/123603 net [tcp] tcp_do_segment and Received duplicate SYN o kern/123559 net [iwi] iwi periodically disassociates/associates [regre o bin/123465 net [ip6] route(8): route add -inet6 -interfac o kern/123463 net [ipsec] [panic] repeatable crash related to ipsec-tool o kern/123429 net [nfe] [hang] "ifconfig nfe up" causes a hard system lo o kern/123347 net [bge] bge1: watchdog timeout -- linkstate changed to D o conf/123330 net [nsswitch.conf] Enabling samba wins in nsswitch.conf c o kern/123256 net [wpi] panic: blockable sleep lock with wpi(4) f kern/123172 net [bce] Watchdog timeout problems with if_bce o kern/123160 net [ip] Panic and reboot at sysctl kern.polling.enable=0 o kern/122989 net [swi] [panic] 6.3 kernel panic in swi1: net o kern/122954 net [lagg] IPv6 EUI64 incorrectly chosen for lagg devices o kern/122928 net [em] interface watchdog timeouts and stops receiving p f kern/122839 net [multicast] FreeBSD 7 multicast routing problem p kern/122794 net [lagg] Kernel panic after brings lagg(8) up if NICs ar o kern/122780 net [lagg] tcpdump on lagg interface during high pps wedge o kern/122772 net [em] em0 taskq panic, tcp reassembly bug causes radix o kern/122743 net [panic] vm_page_unwire: invalid wire count: 0 o kern/122697 net [ath] Atheros card is not well supported o kern/122685 net It is not visible passing packets in tcpdump(1) o kern/122551 net [bge] Broadcom 5715S no carrier on HP BL460c blade usi o kern/122427 net [apm] [panic] apm and mDNSResponder cause panic during o kern/122319 net [wi] imposible to enable ad-hoc demo mode with Orinoco o kern/122290 net [netgraph] [panic] Netgraph related "kmem_map too smal f kern/122252 net [ipmi] [bge] IPMI problem with BCM5704 (does not work o kern/122195 net [ed] Alignment problems in if_ed o kern/122058 net [em] [panic] Panic on em1: taskq o kern/122033 net [ral] [lor] Lock order reversal in ral0 at bootup [reg o kern/121983 net [fxp] fxp0 MBUF and PAE o kern/121872 net [wpi] driver fails to attach on a fujitsu-siemens s711 s kern/121774 net [swi] [panic] 6.3 kernel panic in swi1: net o kern/121706 net [netinet] [patch] "rtfree: 0xc4383870 has 1 refs" emit o kern/121624 net [em] [regression] Intel em WOL fails after upgrade to o kern/121555 net [panic] Fatal trap 12: current process = 12 (swi1: net o kern/121443 net [gif] [lor] icmp6_input/nd6_lookup o kern/121437 net [vlan] Routing to layer-2 address does not work on VLA o kern/121298 net [em] [panic] Fatal trap 12: page fault while in kernel o kern/121257 net [tcp] TSO + natd -> slow outgoing tcp traffic o kern/121181 net [panic] Fatal trap 3: breakpoint instruction fault whi o kern/121080 net [bge] IPv6 NUD problem on multi address config on bge0 o kern/120966 net [rum] kernel panic with if_rum and WPA encryption p docs/120945 net [patch] ip6(4) man page lacks documentation for TCLASS o kern/120566 net [request]: ifconfig(8) make order of arguments more fr o kern/120304 net [netgraph] [patch] netgraph source assumes 32-bit time o kern/120266 net [panic] gnugk causes kernel panic when closing UDP soc o kern/120232 net [nfe] [patch] Bring in nfe(4) to RELENG_6 o kern/120130 net [carp] [panic] carp causes kernel panics in any conste o bin/120060 net routed(8) deletes link-level routes in the presence of o kern/119945 net [rum] [panic] rum device in hostap mode, cause kernel o kern/119791 net [nfs] UDP NFS mount of aliased IP addresses from a Sol o kern/119617 net [nfs] nfs error on wpa network when reseting/shutdown f kern/119516 net [ip6] [panic] _mtx_lock_sleep: recursed on non-recursi o kern/119432 net [arp] route add -host -iface causes arp e o kern/119361 net [bge] bge(4) transmit performance problem o kern/119225 net [wi] 7.0-RC1 no carrier with Prism 2.5 wifi card [regr a bin/118987 net ifconfig(8): ifconfig -l (address_family) does not wor a kern/118879 net [bge] [patch] bge has checksum problems on the 5703 ch o kern/118727 net [netgraph] [patch] [request] add new ng_pf module s kern/117717 net [panic] Kernel panic with Bittorrent client. o kern/117448 net [carp] 6.2 kernel crash [regression] o kern/117423 net [vlan] Duplicate IP on different interfaces o bin/117339 net [patch] route(8): loading routing management commands o kern/117271 net [tap] OpenVPN TAP uses 99% CPU on releng_6 when if_tap o kern/117043 net [em] Intel PWLA8492MT Dual-Port Network adapter EEPROM o kern/116837 net [tun] [panic] [patch] ifconfig tunX destroy: panic o kern/116747 net [ndis] FreeBSD 7.0-CURRENT crash with Dell TrueMobile o bin/116643 net [patch] [request] fstat(1): add INET/INET6 socket deta o kern/116328 net [bge]: Solid hang with bge interface o kern/116185 net [iwi] if_iwi driver leads system to reboot o kern/115239 net [ipnat] panic with 'kmem_map too small' using ipnat o kern/115019 net [netgraph] ng_ether upper hook packet flow stops on ad o kern/115002 net [wi] if_wi timeout. failed allocation (busy bit). ifco o kern/114915 net [patch] [pcn] pcn (sys/pci/if_pcn.c) ethernet driver f f kern/114899 net [bge] bge0: watchdog timeout -- resetting o kern/114839 net [fxp] fxp looses ability to speak with traffic o kern/114714 net [gre] [patch] gre(4) is not MPSAFE and does not suppor o kern/113895 net [xl] xl0 fails on 6.2-RELEASE but worked fine on 5.5-R o kern/112722 net [ipsec] [udp] IP v4 udp fragmented packet reject o kern/112686 net [patm] patm driver freezes System (FreeBSD 6.2-p4) i38 o kern/112570 net [bge] packet loss with bge driver on BCM5704 chipset o bin/112557 net [patch] ppp(8) lock file should not use symlink name o kern/112528 net [nfs] NFS over TCP under load hangs with "impossible p o kern/111457 net [ral] ral(4) freeze o kern/110140 net [ipw] ipw fails under load o kern/109733 net [bge] bge link state issues [regression] o kern/109470 net [wi] Orinoco Classic Gold PC Card Can't Channel Hop o kern/109308 net [pppd] [panic] Multiple panics kernel ppp suspected [r o kern/109251 net [re] [patch] if_re cardbus card won't attach o bin/108895 net pppd(8): PPPoE dead connections on 6.2 [regression] o kern/108542 net [bce] Huge network latencies with 6.2-RELEASE / STABLE o kern/107944 net [wi] [patch] Forget to unlock mutex-locks o kern/107850 net [bce] bce driver link negotiation is faulty o conf/107035 net [patch] bridge interface given in rc.conf not taking a o kern/106438 net [ipf] ipfilter: keep state does not seem to allow repl o kern/106316 net [dummynet] dummynet with multipass ipfw drops packets o kern/106243 net [nve] double fault panic in if_nve.c on high loads o kern/105945 net Address can disappear from network interface s kern/105943 net Network stack may modify read-only mbuf chain copies o bin/105925 net problems with ifconfig(8) and vlan(4) [regression] o kern/105348 net [ath] ath device stopps TX o kern/104851 net [inet6] [patch] On link routes not configured when usi o kern/104751 net [netgraph] kernel panic, when getting info about my tr o kern/104485 net [bge] Broadcom BCM5704C: Intermittent on newer chip ve o kern/103191 net Unpredictable reboot o kern/103135 net [ipsec] ipsec with ipfw divert (not NAT) encodes a pac o conf/102502 net [patch] ifconfig name does't rename netgraph node in n o kern/102035 net [plip] plip networking disables parallel port printing o kern/101948 net [ipf] [panic] Kernel Panic Trap No 12 Page Fault - cau o kern/100839 net [txp] txp driver inconsistently stops working when the o kern/100519 net [netisr] suggestion to fix suboptimal network polling o kern/98978 net [ipf] [patch] ipfilter drops OOW packets under 6.1-Rel o bin/98218 net wpa_supplicant(8) blacklist not working f bin/97392 net ppp(8) hangs instead terminating o kern/97306 net [netgraph] NG_L2TP locks after connection with failed f kern/96268 net [socket] TCP socket performance drops by 3000% if pack o kern/96030 net [bfe] [patch] Install hangs with Broadcomm 440x NIC in o kern/95519 net [ral] ral0 could not map mbuf o kern/95288 net [pppd] [tty] [panic] if_ppp panic in sys/kern/tty_subr o kern/95277 net [netinet] [patch] IP Encapsulation mask_match() return o kern/95267 net packet drops periodically appear s kern/94863 net [bge] [patch] hack to get bge(4) working on IBM e326m o kern/94162 net [bge] 6.x kenel stale with bge(4) o kern/93886 net [ath] Atheros/D-Link DWL-G650 long delay to associate f kern/93378 net [tcp] Slow data transfer in Postfix and Cyrus IMAP (wo o kern/93019 net [ppp] ppp and tunX problems: no traffic after restarti f kern/92552 net A serious bug in most network drivers from 5.X to 6.X s kern/92279 net [dc] Core faults everytime I reboot, possible NIC issu o kern/92090 net [bge] bge0: watchdog timeout -- resetting o kern/91859 net [ndis] if_ndis does not work with Asus WL-138 s kern/91777 net [ipf] [patch] wrong behaviour with skip rule inside an o kern/91594 net [em] FreeBSD > 5.4 w/ACPI fails to detect Intel Pro/10 o kern/91364 net [ral] [wep] WF-511 RT2500 Card PCI and WEP o kern/91311 net [aue] aue interface hanging o kern/90890 net [vr] Problems with network: vr0: tx shutdown timeout s kern/90086 net [hang] 5.4p8 on supermicro P8SCT hangs during boot if f kern/88082 net [ath] [panic] cts protection for ath0 causes panic o kern/87521 net [ipf] [panic] using ipfilter "auth" keyword leads to k o kern/87506 net [vr] [patch] Fix alias support on vr interfaces o kern/87194 net [fxp] fxp(4) promiscuous mode seems to corrupt hw-csum s kern/86920 net [ndis] ifconfig: SIOCS80211: Invalid argument [regress o kern/86103 net [ipf] Illegal NAT Traversal in IPFilter o bin/85445 net ifconfig(8): deprecated keyword to ifconfig inoperativ o kern/85266 net [xe] [patch] xe(4) driver does not recognise Xircom XE o kern/84202 net [ed] [patch] Holtek HT80232 PCI NIC recognition on Fre o bin/82975 net route change does not parse classfull network as given o kern/82497 net [vge] vge(4) on AMD64 only works when loaded late, not f kern/81644 net [vge] vge(4) does not work properly when loaded as a K s kern/81147 net [net] [patch] em0 reinitialization while adding aliase o kern/80853 net [ed] [patch] add support for Compex RL2000/ISA in PnP o kern/79895 net [ipf] 5.4-RC2 breaks ipfilter NAT when using netgraph f kern/79262 net [dc] Adaptec ANA-6922 not fully supported o bin/79228 net [patch] extend arp(8) to be able to create blackhole r o kern/78090 net [ipf] ipf filtering on bridged packets doesn't work if p kern/77913 net [wi] [patch] Add the APDL-325 WLAN pccard to wi(4) o kern/77273 net [ipf] ipfilter breaks ipv6 statefull filtering on 5.3 s kern/77195 net [ipf] [patch] ipfilter ioctl SIOCGNATL does not match s kern/75407 net [an] an(4): no carrier after short time f kern/73538 net [bge] problem with the Broadcom BCM5788 Gigabit Ethern o kern/71469 net default route to internet magically disappears with mu o kern/70904 net [ipf] ipfilter ipnat problem with h323 proxy support o kern/64556 net [sis] if_sis short cable fix problems with NetGear FA3 s kern/60293 net [patch] FreeBSD arp poison patch o kern/54383 net [nfs] [patch] NFS root configurations without dynamic f i386/45773 net [bge] Softboot causes autoconf failure on Broadcom 570 s bin/41647 net ifconfig(8) doesn't accept lladdr along with inet addr s kern/39937 net ipstealth issue a kern/38554 net [patch] changing interface ipaddress doesn't seem to w o kern/35442 net [sis] [patch] Problem transmitting runts in if_sis dri o kern/34665 net [ipf] [hang] ipfilter rcmd proxy "hangs". o kern/27474 net [ipf] [ppp] Interactive use of user PPP and ipfilter c o conf/23063 net [patch] for static ARP tables in rc.network 261 problems total. From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 11:30:05 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D1B191065680 for ; Mon, 2 Mar 2009 11:30:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id BDC108FC0A for ; Mon, 2 Mar 2009 11:30:05 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n22BU5Te076056 for ; Mon, 2 Mar 2009 11:30:05 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n22BU5Jr076050; Mon, 2 Mar 2009 11:30:05 GMT (envelope-from gnats) Date: Mon, 2 Mar 2009 11:30:05 GMT Message-Id: <200903021130.n22BU5Jr076050@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: Jason Chambers Cc: Subject: Re: kern/130605: [tcp] Certain hardware produces "Network is unreachable" errors for scanning tools X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Jason Chambers List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 11:30:07 -0000 The following reply was made to PR kern/130605; it has been noted by GNATS. From: Jason Chambers To: bug-followup@FreeBSD.org, jchambers@ucla.edu Cc: Subject: Re: kern/130605: [tcp] Certain hardware produces "Network is unreachable" errors for scanning tools Date: Mon, 02 Mar 2009 03:26:43 -0800 Hello all. The Nessus problem was finally identified to be caused by incompatible ABI system calls. As for the general "Network is unreachable" error I assume this to be due to the condition described or incorrect implementation of said security tools on FreeBSD. Thanks for the help, this PR can be closed. --Jason From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 13:12:05 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D95831065743 for ; Mon, 2 Mar 2009 13:12:05 +0000 (UTC) (envelope-from eksffa@freebsdbrasil.com.br) Received: from capeta.freebsdbrasil.com.br (capeta.freebsdbrasil.com.br [201.48.151.3]) by mx1.freebsd.org (Postfix) with SMTP id 283918FC23 for ; Mon, 2 Mar 2009 13:12:04 +0000 (UTC) (envelope-from eksffa@freebsdbrasil.com.br) Received: (qmail 39618 invoked from network); 2 Mar 2009 09:45:21 -0300 Received: from unknown (HELO claire.bh.freebsdbrasil.com.br) (201.48.151.226) by capeta.freebsdbrasil.com.br with SMTP; 2 Mar 2009 09:45:21 -0300 Message-ID: <49ABD4D0.7070100@freebsdbrasil.com.br> Date: Mon, 02 Mar 2009 09:45:04 -0300 From: Patrick Tracanelli Organization: FreeBSD Brasil LTDA User-Agent: Thunderbird 2.0.0.0 (X11/20070612) MIME-Version: 1.0 To: barney_cordoba@yahoo.com References: <407473.34181.qm@web63901.mail.re1.yahoo.com> In-Reply-To: <407473.34181.qm@web63901.mail.re1.yahoo.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Mark E Doner , net@freebsd.org Subject: Re: rate limiting mail server X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 13:12:06 -0000 Barney Cordoba escreveu: > > > > --- On Tue, 2/24/09, Mark E Doner wrote: > >> From: Mark E Doner >> Subject: rate limiting mail server >> To: freebsd-isp@freebsd.org >> Date: Tuesday, February 24, 2009, 12:13 AM >> Greetings, >> I am running a fairly large mail server, FreeBSD, of >> course. It is predominantly for residential customers, so >> educating the end users to not fall for the scams is never >> going to happen. Whenever we have a customer actually hand >> over their login credentials, we quickly see a huge flood of >> inbound connections from a small handful of IP addresses on >> ports 25 and 587, all authenticate as whatever customer fell >> for the scam du jour, and of course, load goes through the >> roof as I get a few thousand extra junk messages to process >> in a matter of minutes. >> >> Thinking about using PF to rate limit inbound connections, >> stuff the hog wild connection rates into a table and drop >> them quickly. My question is, I know how to do this, PF >> syntax is easy, but has anyone ever tried this? How many new >> connections per minute from a single source are acceptable, >> and what is blatantly malicious? And, once I have determined >> that, how long should I leave the offenders in the >> blocklist? >> >> Any thoughts appreciated, >> Mark > > A better strategy is to identify the spam source and just block it. The > way we do it is that we look for unusual domain traffic from a single > source and then block the source. I haven't figured out a way to automate > it yet but it works very well. > > You don't really want to rate limit mail spammers. They go on for many hours . > > BC IMHO, what you could potentially do is adding maximum recipients' limit per SMTP session, for your customers (relay access IPs), combining it with tarpiting, while on the firewall side, all you do (my suggestion) is just limiting the simultaneous access per source IP. Remember that you might have NATed customers so limiting per IP dont do it way too limited (2 to 5 simultaneous sessions is probably enough due to your "residential" usage profile). Finally, you didnt mention your MTA. If its Qmail there is a great plugins framework called qmail-spp and it already has a rate control plugin to be used. While qmail-spp is not (yet) available in the Ports Collection I have working patches for qmail-ldap and qmail-spamassassin, which can both be applied from Ports directly (will send-pr(1) to garga@ in the near future...). Those are usually my own approaches to slow down my users' message floods. If you mention your MTA maybe we can be of further assistance. -- Patrick Tracanelli FreeBSD Brasil LTDA. Tel.: (31) 3516-0800 316601@sip.freebsdbrasil.com.br http://www.freebsdbrasil.com.br "Long live Hanin Elias, Kim Deal!" From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 17:18:35 2009 Return-Path: Delivered-To: net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 295771065676 for ; Mon, 2 Mar 2009 17:18:35 +0000 (UTC) (envelope-from gnn@neville-neil.com) Received: from proxy.meer.net (proxy.meer.net [64.13.141.13]) by mx1.freebsd.org (Postfix) with ESMTP id DC4C08FC2B for ; Mon, 2 Mar 2009 17:18:34 +0000 (UTC) (envelope-from gnn@neville-neil.com) Received: from mail.meer.net (mail.meer.net [64.13.141.3]) by proxy.meer.net (8.14.3/8.14.3) with ESMTP id n22Go1Js049248; Mon, 2 Mar 2009 08:50:01 -0800 (PST) (envelope-from gnn@neville-neil.com) Received: from mail2.meer.net (mail2.meer.net [64.13.141.16]) by mail.meer.net (8.13.3/8.13.3/meer) with ESMTP id n22GngaW022220; Mon, 2 Mar 2009 08:49:42 -0800 (PST) (envelope-from gnn@neville-neil.com) Received: from gnnmac.hudson-trading.com.neville-neil.com (209.249.190.8.available.above.net [209.249.190.8] (may be forged)) (authenticated bits=0) by mail2.meer.net (8.14.1/8.14.3) with ESMTP id n22Gnfol004421; Mon, 2 Mar 2009 08:49:41 -0800 (PST) (envelope-from gnn@neville-neil.com) Date: Mon, 02 Mar 2009 11:49:41 -0500 Message-ID: From: "George V. Neville-Neil" To: perryh@pluto.rain.com In-Reply-To: <49ab42ca.YZ1mfcCDO0pvdDhv%perryh@pluto.rain.com> References: <20090301153010.GA58942@onelab2.iet.unipi.it> <49AAFD92.105@elischer.org> <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> <49ab42ca.YZ1mfcCDO0pvdDhv%perryh@pluto.rain.com> User-Agent: Wanderlust/2.15.6 (Almost Unreal) SEMI/1.14.6 (Maruoka) FLIM/1.14.9 (=?ISO-8859-4?Q?Goj=F2?=) APEL/10.7 Emacs/22.3 (i386-apple-darwin9.6.0) MULE/5.0 (SAKAKI) MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka") Content-Type: text/plain; charset=US-ASCII X-Spam-Score: undef - spam scanning disabled X-CanIt-Geo: No geolocation information available for 64.13.141.3 X-CanItPRO-Stream: default X-Canit-Stats-ID: Bayes signature not available X-Scanned-By: CanIt (www . roaringpenguin . com) on 64.13.141.13 Cc: rpaulo@gmail.com, rrs@lakerest.net, arch@FreeBSD.org, julian@elischer.org, net@FreeBSD.org, rizzo@iet.unipi.it Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 17:18:35 -0000 At Sun, 01 Mar 2009 18:22:02 -0800, perryh@pluto.rain.com wrote: > > Rui Paulo wrote: > > On 1 Mar 2009, at 21:26, Julian Elischer wrote: > > > Luigi Rizzo wrote: > > >> Hi, > > >> I am planning to split netinet/ip_fw2.c in a number of smaller > > >> files to make it more manageable, and while i do this I would > > >> also like to move the files related to ipfw2 (namely ip_fw*c) > > >> to a better place. > > >> Any objection to moving them to sys/netinet/ipfw2 ? > > >> Also, I can't help noticing that sys/netinet/ contains 36 > > >> files related to sctp -- wouldn't it be the case to move > > >> them (perhaps with the exception of the userland headers) > > >> to a separate subdirectory ? > > > > > > for that matter it would be nice to put ALL teh protocols in > > > their own subdirectories. > > > > Yes, that would be the perfect scenario, but I don't think that's > > doable. > > > > SCTP can be moved because it hasn't matured enough to cause a > > "moving nightmare". > > Perhaps everything can be moved, if hardlinks or symlinks are > left in sys/netinet for those parts (mostly .h files, presumably) > which have too much legacy to be moved outright. I do not believe we want to go down the path of doing links. I do think that moving protocols is OK, and SCTP is a good candidate. I have cc'd the maintainer in case he's not on arch@. As to the original question about ipfw, if it can e done cleanly then yes that's fine. Best, George From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 18:30:28 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 14F351065735; Mon, 2 Mar 2009 18:30:28 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from cyrus.watson.org (cyrus.watson.org [65.122.17.42]) by mx1.freebsd.org (Postfix) with ESMTP id E2A5B8FC23; Mon, 2 Mar 2009 18:30:27 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from fledge.watson.org (fledge.watson.org [65.122.17.41]) by cyrus.watson.org (Postfix) with ESMTPS id 5F74B46B3C; Mon, 2 Mar 2009 13:30:27 -0500 (EST) Date: Mon, 2 Mar 2009 18:30:27 +0000 (GMT) From: Robert Watson X-X-Sender: robert@fledge.watson.org To: Rui Paulo In-Reply-To: <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> Message-ID: References: <20090301153010.GA58942@onelab2.iet.unipi.it> <49AAFD92.105@elischer.org> <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: arch@freebsd.org, Julian Elischer , net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 18:30:28 -0000 On Mon, 2 Mar 2009, Rui Paulo wrote: > On 1 Mar 2009, at 21:26, Julian Elischer wrote: > >> Luigi Rizzo wrote: >>> Hi, I am planning to split netinet/ip_fw2.c in a number of smaller files >>> to make it more manageable, and while i do this I would also like to move >>> the files related to ipfw2 (namely ip_fw*c) to a better place. Any >>> objection to moving them to sys/netinet/ipfw2 ? Also, I can't help >>> noticing that sys/netinet/ contains 36 files related to sctp -- wouldn't >>> it be the case to move them (perhaps with the exception of the userland >>> headers) to a separate subdirectory ? >> >> for that matter it would be nice to put ALL teh protocols in their own >> subdirectories. > > Yes, that would be the perfect scenario, but I don't think that's doable. > > SCTP can be moved because it hasn't matured enough to cause a "moving > nightmare". > > I vote for "ipfw" like Sam, BTW. I think massively rearranging things doesn't by us much in terms of beauty, but does give us a lot in terms of hassle, given current assumptions of alignment between the layout of /usr/include and the layout of /usr/src/sys. We'd need to introduce new explicit mappings to install include files in their old locations (which are required by applications), etc. For a change with such a minor benefit, the hassle will be huge. I'm fine with renaming the ipfw .c files and leaving in netinet, but let's not get carried away. Robert N M Watson Computer Laboratory University of Cambridge From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 18:57:00 2009 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0C7DF1065C84; Mon, 2 Mar 2009 18:57:00 +0000 (UTC) (envelope-from luigi@onelab2.iet.unipi.it) Received: from onelab2.iet.unipi.it (onelab2.iet.unipi.it [131.114.9.129]) by mx1.freebsd.org (Postfix) with ESMTP id B78938FC1C; Mon, 2 Mar 2009 18:56:59 +0000 (UTC) (envelope-from luigi@onelab2.iet.unipi.it) Received: by onelab2.iet.unipi.it (Postfix, from userid 275) id 0817D73098; Mon, 2 Mar 2009 20:01:57 +0100 (CET) Date: Mon, 2 Mar 2009 20:01:57 +0100 From: Luigi Rizzo To: Robert Watson Message-ID: <20090302190157.GA33704@onelab2.iet.unipi.it> References: <20090301153010.GA58942@onelab2.iet.unipi.it> <49AAFD92.105@elischer.org> <8EBEEE24-6473-411D-AE3F-C4D1D3897E51@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.3i Cc: Rui Paulo , arch@freebsd.org, Julian Elischer , net@freebsd.org Subject: Re: spliting kernel ipfw source ? (also involves sctp) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 18:57:04 -0000 On Mon, Mar 02, 2009 at 06:30:27PM +0000, Robert Watson wrote: .. > >>Luigi Rizzo wrote: > >>>Hi, I am planning to split netinet/ip_fw2.c in a number of smaller files > >>>to make it more manageable, and while i do this I would also like to > >>>move the files related to ipfw2 (namely ip_fw*c) to a better place. Any > >>>objection to moving them to sys/netinet/ipfw2 ? Also, I can't help > >>>noticing that sys/netinet/ contains 36 files related to sctp -- wouldn't > >>>it be the case to move them (perhaps with the exception of the userland > >>>headers) to a separate subdirectory ? ... > I think massively rearranging things doesn't by us much in terms of beauty, > but does give us a lot in terms of hassle, given current assumptions of > alignment between the layout of /usr/include and the layout of > /usr/src/sys. We'd need to introduce new explicit mappings to install > include files in their old locations (which are required by applications), > etc. For a change with such a minor benefit, the hassle will be huge. I'm > fine with renaming the ipfw .c files and leaving in netinet, but let's not > get carried away. I suspect that the mention of symlinks (which is not mine and absolutely not what I want to do) triggered some alarms :) I have very clear the potential nightmare with careless moving of files, so I tried to make it clear that public headers are excluded: as you see i wrote "ip_fw*c" and "exception of the userland headers". To further clarify, my plan is the following: - leave ip_fw.h and ip_dummynet.h in /sys/netinet in case userland code is dependent on their location; - create /sys/netinet/ipfw/ to hold the kernel .c files related to ipfw and possibly dummynet (and also their private headers if any); I am not going to touch other people's stuff, though I repeat that sctp would clearly deserve a cleanup -- i doubt userland needs more than one or possibly two headers (one for the basic stuff, one for the fancy and possibly non-portable stuff). Tcp has similar issues especially for recent additions. More than the number of files in /sys/netinet/, i am worried by the amount of private headers that are exposed to userland for no good reason. In fact, some of them are contain: #ifndef _KERNEL #error "no user-serviceable parts inside" #endif Part of this is for historical reasons, but we should try to move to a better structure. Take e.g. tcp_var.h contains the stats (that some userland program may want to have) but also a ton of internal structures (e.g. those for SACK support) that have appeared very recently and have no reason to be there. cheers luigi From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 19:58:47 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4796D106573C for ; Mon, 2 Mar 2009 19:58:47 +0000 (UTC) (envelope-from csjp@freebsd.org) Received: from mx-01mtaout02.mts.net (mx-01mtaout02.mts.net [142.161.3.4]) by mx1.freebsd.org (Postfix) with ESMTP id E9F0E8FC0C for ; Mon, 2 Mar 2009 19:58:46 +0000 (UTC) (envelope-from csjp@freebsd.org) Received: from wnpgmb013qw-sp03.mts.net ([10.205.128.23]) by mx-01mtaout02.mts.net with ESMTP id <20090302195846.NCLL12442.mx-01mtaout02.mts.net@wnpgmb013qw-sp03.mts.net> for ; Mon, 2 Mar 2009 13:58:46 -0600 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AhIFANvIq0mOoTRU/2dsb2JhbACBWdQ8hBoG X-IronPort-AV: E=Sophos;i="4.38,291,1233554400"; d="scan'208";a="64819783" Received: from wnpgmb1308w-ad04-52-84.dynamic.mts.net (HELO jnz.my.domain) ([142.161.52.84]) by wnpgmb013qw-sp03.mts.net with ESMTP; 02 Mar 2009 13:58:46 -0600 Received: from jnz.my.domain (localhost [127.0.0.1]) by jnz.my.domain (8.14.3/8.14.2) with ESMTP id n22JwjqC094023 for ; Mon, 2 Mar 2009 13:58:45 -0600 (CST) (envelope-from csjp@jnz.my.domain) Received: (from csjp@localhost) by jnz.my.domain (8.14.3/8.14.2/Submit) id n22JwjjA094022 for freebsd-net@freebsd.org; Mon, 2 Mar 2009 13:58:45 -0600 (CST) (envelope-from csjp) Date: Mon, 2 Mar 2009 13:58:45 -0600 From: Christian Peron To: freebsd-net@freebsd.org Message-ID: <20090302195845.GA93970@jnz.sqrt.ca> References: <20090302194606.GA93824@jnz.sqrt.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20090302194606.GA93824@jnz.sqrt.ca> User-Agent: Mutt/1.4.2.3i Subject: Re: [heads-up] zero-copy bpf enabled by default X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 19:58:48 -0000 I probably should have mentioned: To disable zero-copy: sysctl net.bpf.zerocopy_enable=0 Also, it is only enabled for processes which use libpcap. On Mon, Mar 02, 2009 at 01:46:06PM -0600, Christian Peron wrote: > This is a heads up that we have flipped the switch to enable > zerocopy bpf by default in head. If there are any issues let > myself or rwatson@ know. > > Cheers! From owner-freebsd-net@FreeBSD.ORG Mon Mar 2 20:07:29 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 00F9F1065673 for ; Mon, 2 Mar 2009 20:07:29 +0000 (UTC) (envelope-from csjp@freebsd.org) Received: from mx-02queue01.mts.net (mx-02queue01.mts.net [142.161.131.10]) by mx1.freebsd.org (Postfix) with ESMTP id 8A2418FC08 for ; Mon, 2 Mar 2009 20:07:28 +0000 (UTC) (envelope-from csjp@freebsd.org) Received: from wnpgmb021pw-sp03.mts.net ([10.204.128.23]) by mx-02mtaout01.mts.net with ESMTP id <20090302194607.MFTA3921.mx-02mtaout01.mts.net@wnpgmb021pw-sp03.mts.net> for ; Mon, 2 Mar 2009 13:46:07 -0600 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AhIFAAvGq0mOoTRU/2dsb2JhbACBWdQ2hBoG X-IronPort-AV: E=Sophos;i="4.38,291,1233554400"; d="scan'208";a="65421890" Received: from wnpgmb1308w-ad04-52-84.dynamic.mts.net (HELO jnz.my.domain) ([142.161.52.84]) by wnpgmb021pw-sp03.mts.net with ESMTP; 02 Mar 2009 13:46:07 -0600 Received: from jnz.my.domain (localhost [127.0.0.1]) by jnz.my.domain (8.14.3/8.14.2) with ESMTP id n22Jk6IE093925 for ; Mon, 2 Mar 2009 13:46:07 -0600 (CST) (envelope-from csjp@jnz.my.domain) Received: (from csjp@localhost) by jnz.my.domain (8.14.3/8.14.2/Submit) id n22Jk6WS093924 for freebsd-net@freebsd.org; Mon, 2 Mar 2009 13:46:06 -0600 (CST) (envelope-from csjp) Date: Mon, 2 Mar 2009 13:46:06 -0600 From: Christian Peron To: freebsd-net@freebsd.org Message-ID: <20090302194606.GA93824@jnz.sqrt.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.3i Subject: [heads-up] zero-copy bpf enabled by default X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Mar 2009 20:07:29 -0000 This is a heads up that we have flipped the switch to enable zerocopy bpf by default in head. If there are any issues let myself or rwatson@ know. Cheers! From owner-freebsd-net@FreeBSD.ORG Tue Mar 3 14:07:21 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B89B01065674; Tue, 3 Mar 2009 14:07:21 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 8D1288FC20; Tue, 3 Mar 2009 14:07:21 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n23E7LnJ017415; Tue, 3 Mar 2009 14:07:21 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n23E7LPj017411; Tue, 3 Mar 2009 14:07:21 GMT (envelope-from linimon) Date: Tue, 3 Mar 2009 14:07:21 GMT Message-Id: <200903031407.n23E7LPj017411@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/132277: [crypto] [ipsec] poor performance using cryptodevice for IPSEC X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Mar 2009 14:07:23 -0000 Old Synopsis: poor performance using criptodevice for IPSEC New Synopsis: [crypto] [ipsec] poor performance using cryptodevice for IPSEC Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Tue Mar 3 14:06:44 UTC 2009 Responsible-Changed-Why: Over to -net on the theory that the problem might be there. http://www.freebsd.org/cgi/query-pr.cgi?pr=132277 From owner-freebsd-net@FreeBSD.ORG Tue Mar 3 16:12:35 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C422A1065676; Tue, 3 Mar 2009 16:12:35 +0000 (UTC) (envelope-from gavin@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 9A38E8FC1E; Tue, 3 Mar 2009 16:12:35 +0000 (UTC) (envelope-from gavin@FreeBSD.org) Received: from freefall.freebsd.org (gavin@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n23GCZst014330; Tue, 3 Mar 2009 16:12:35 GMT (envelope-from gavin@freefall.freebsd.org) Received: (from gavin@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n23GCZVM014326; Tue, 3 Mar 2009 16:12:35 GMT (envelope-from gavin) Date: Tue, 3 Mar 2009 16:12:35 GMT Message-Id: <200903031612.n23GCZVM014326@freefall.freebsd.org> To: gavin@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: gavin@FreeBSD.org Cc: Subject: Re: kern/132285: [carp] alias gives incorrect hash in dmesg X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Mar 2009 16:12:36 -0000 Old Synopsis: CARP alias gives incorrect hash in dmesg New Synopsis: [carp] alias gives incorrect hash in dmesg Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: gavin Responsible-Changed-When: Tue Mar 3 16:11:56 UTC 2009 Responsible-Changed-Why: Over to maintainer(s) http://www.freebsd.org/cgi/query-pr.cgi?pr=132285 From owner-freebsd-net@FreeBSD.ORG Tue Mar 3 17:51:38 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 361C3106564A for ; Tue, 3 Mar 2009 17:51:38 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.freebsd.org (Postfix) with ESMTP id E66308FC12 for ; Tue, 3 Mar 2009 17:51:37 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1LeYmE-0005fU-BX for freebsd-net@freebsd.org; Tue, 03 Mar 2009 17:51:34 +0000 Received: from firewall.andxor.it ([195.223.2.2]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Tue, 03 Mar 2009 17:51:34 +0000 Received: from lapo by firewall.andxor.it with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Tue, 03 Mar 2009 17:51:34 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-net@freebsd.org From: Lapo Luchini Date: Tue, 03 Mar 2009 18:51:22 +0100 Lines: 23 Message-ID: Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: firewall.andxor.it User-Agent: Thunderbird 2.0.0.19 (X11/20090114) X-Enigmail-Version: 0.95.7 OpenPGP: id=C8F252FB Sender: news Subject: using 6to4 on two different IPv4 addresses (alias on stf0 or stf1?) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Mar 2009 17:51:38 -0000 I'm renumbering a server of mine in order to ease migration and am setting most its services to listen to both the "old" and the "new" IPv4 address. I have a little more problems with the 6to4-serviced IPv6 address: adding an alias to stf0 doesn't seem to work, probably because the internal sanity checks use only the first address and don't know about the alias I added (thus this could probably be solved closing kern/123858 but I didn't yet try that); I then tried (unsuccesfully) to have two different 6to4 interfaces, which should IMHO work: % sudo ifconfig stf1 create ifconfig: SIOCIFCREATE: Invalid argument I guess the kernel is hardwired to support only one stf interface? BTW: that server is a 6-STABLE. "man stf" states: Each stf interface is created at runtime using interface cloning. This is most easily done with the ifconfig(8) create command or using the cloned_interfaces variable in rc.conf(5). -- Lapo Luchini - http://lapo.it/ From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 00:42:22 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 46B4D106566C for ; Wed, 4 Mar 2009 00:42:22 +0000 (UTC) (envelope-from shawn@tandac.com) Received: from alder.hosix.com (alder.hosix.com [207.58.168.98]) by mx1.freebsd.org (Postfix) with ESMTP id 1A99B8FC08 for ; Wed, 4 Mar 2009 00:42:21 +0000 (UTC) (envelope-from shawn@tandac.com) Received: from localhost ([127.0.0.1] helo=alder.hosix.com) by alder.hosix.com with esmtpa (Exim 4.69) (envelope-from ) id 1LefBl-0006Ce-1v for freebsd-net@freebsd.org; Tue, 03 Mar 2009 19:42:21 -0500 Received: from 206.108.16.89 ([206.108.16.89]) (SquirrelMail authenticated user shawn@tandac.com) by alder.hosix.com with HTTP; Tue, 3 Mar 2009 16:42:21 -0800 (PST) Message-ID: <1354.206.108.16.89.1236127341.squirrel@alder.hosix.com> Date: Tue, 3 Mar 2009 16:42:21 -0800 (PST) From: "Shawn Everett" To: freebsd-net@freebsd.org User-Agent: SquirrelMail/1.4.13 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - alder.hosix.com X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - tandac.com X-Source: X-Source-Args: X-Source-Dir: Subject: Force certain websites to use certain connections X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 00:42:22 -0000 Hi All, I've set up a load balanced FreeBSD router using outbound load balancing as configured here: http://www.openbsd.org/faq/pf/pools.html#outgoing There are one or two sites that this is causing problems with. Can anyone suggest a rule that would force certain websites to go through certain interfaces/connections? Shawn From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 02:06:20 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7F2451065670 for ; Wed, 4 Mar 2009 02:06:20 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from out1.smtp.messagingengine.com (out1.smtp.messagingengine.com [66.111.4.25]) by mx1.freebsd.org (Postfix) with ESMTP id 4153C8FC0A for ; Wed, 4 Mar 2009 02:06:20 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from compute2.internal (compute2.internal [10.202.2.42]) by out1.messagingengine.com (Postfix) with ESMTP id D3C5B2D4E95; Tue, 3 Mar 2009 20:48:00 -0500 (EST) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by compute2.internal (MEProxy); Tue, 03 Mar 2009 20:48:00 -0500 X-Sasl-enc: wq0/9PbCNVRqyu9xOPgp+UYpRjZ+Z2GjxwNzzcN2UlYl 1236131280 Received: from [192.168.123.18] (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTPSA id 4075E36102; Tue, 3 Mar 2009 20:48:00 -0500 (EST) Message-ID: <49ADDDCE.5000203@incunabulum.net> Date: Wed, 04 Mar 2009 01:47:58 +0000 From: Bruce Simpson User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: freebsd-net@freebsd.org, freebsd-current@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: HEADS UP: IGMPv3/SSM: alpha code drop. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 02:06:20 -0000 Hi all, I am making patches available against 8-CURRENT to do IGMPv3 and Source Specific Multicast in the IP stack: http://people.freebsd.org/~bms/stage/igmpv3/ At the moment, the patches are extracted from Perforce, so may need some rejigging of patch's -p option. I would hope to post step-by-step instructions as time permits, however, others are welcome to join in and contribute how-tos like this. This is considered alpha quality code at the moment. It has seen some testing in a QEMU environment. Things which are known not to be tested, although believed correct, include response to a Group-Source query, and backwards compatibility mode for IGMPv1/v2 multicast routers. Whilst there have been similar efforts from KAME and others, it wasn't possible to incorporate them in FreeBSD due to divergence in SMP implementation. Most of the work involved in this project was to do with fine grained locking, and layering the state machines in such a way that the locks could be untangled and taken in the right order. The code is also believed to do the right thing with respect to VIMAGE. From an architectural standpoint, the most important wide-ranging change that this makes to the IPv4 stack in FreeBSD, is the change which takes the IN_MULTI_LOCK() out of the ip_output() and ip_input() paths. Filtering of inbound multicast traffic is pushed up to the transport protocol layers (RAW, and UDP; SCTP and TCP drop multicast traffic.) The rationale is that if you are running an up-to-date multicast capable network, IGMPv3 will ensure that you only receive the traffic your hosts requested anyway, and bottom half IP has no business taking socket-layer locks. The other win for IGMPv3 from a user standpoint is the retransmission of the control traffic. Whilst multicasting over lossy and wireless networks has issues of its own, retransmissions of the control traffic insulate the routers and endpoints somewhat from such loss. Also, IGMPv3 plays nicer with switched networks and smart switches -- it's easier for switches to snoop IGMPv3, as only one multicast group address is now used for IGMPv3 control plane traffic -- and it is easier for administrators to spot what's going on, as they need only sniff one group address. From the kernel point of view, one major assumption made by this code is that kernel consumers will never request source-specific memberships. If this functionality is required, it's easy enough to add it, as 'struct in_mfilter' is used to represent the SSM filter sets using RB-trees as a disjoint-set data structure. in_addmulti() and in_delmulti() are implemented as compatibility shims only to the new KPIs. Currently the carp(4) code relies on them. I'll be pushing some of the userland changes in shortly. My intention would be to merge this to HEAD sometime within the next week or so, this is long overdue, and needs to go in, as it brings us up to date with Windows and Linux on the implementation. Unfortunately, whilst I have an automated regression testing suite in existence for the on-the-wire IGMPv3 protocol behaviour, I can't run it in simulation due to a strange issue where getty doesn't seem to work on QEMU's emulated uart interface. Any help to debug that would be greatly appreciated. This work is being funded by a 3rd party, and is the culmination of a long development cycle. Feedback is very welcome. thanks, BMS From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 03:51:24 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 53D22106564A; Wed, 4 Mar 2009 03:51:24 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from out1.smtp.messagingengine.com (out1.smtp.messagingengine.com [66.111.4.25]) by mx1.freebsd.org (Postfix) with ESMTP id 299188FC1D; Wed, 4 Mar 2009 03:51:24 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from compute1.internal (compute1.internal [10.202.2.41]) by out1.messagingengine.com (Postfix) with ESMTP id AD8762D4FCD; Tue, 3 Mar 2009 22:51:23 -0500 (EST) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by compute1.internal (MEProxy); Tue, 03 Mar 2009 22:51:23 -0500 X-Sasl-enc: Pk5TS4JJE7SiI+TKXKUAnOYB2pb+BnqhYiwYtAQ/RdGx 1236138683 Received: from [192.168.123.18] (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTPSA id 05C8F6AA5; Tue, 3 Mar 2009 22:51:22 -0500 (EST) Message-ID: <49ADFAB7.1040408@incunabulum.net> Date: Wed, 04 Mar 2009 03:51:19 +0000 From: Bruce Simpson User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: freebsd-net@freebsd.org, freebsd-current@freebsd.org References: <49ADDDCE.5000203@incunabulum.net> In-Reply-To: <49ADDDCE.5000203@incunabulum.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Re: HEADS UP: IGMPv3/SSM: alpha code drop. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 03:51:24 -0000 Bruce Simpson wrote: > > From an architectural standpoint, the most important wide-ranging > change that this makes to the IPv4 stack in FreeBSD, is the change > which takes the IN_MULTI_LOCK() out of the ip_output() and ip_input() > paths. Filtering of inbound multicast traffic is pushed up to the > transport protocol layers (RAW, and UDP; SCTP and TCP drop multicast > traffic.) The first part of this particular change has now been merged to HEAD. All other non-invasive changes have been merged to HEAD; the diff set for IGMPv3 has now been minimized. This SHOULD increase multicast send performance when loopback is explicitly disabled, and is one half of the changes needed to the bottom half of IPv4 to make it possible to designate in_multi_mtx as a non-recursive mutex. Please let me know if there are any problems. thanks, BMS From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 10:10:44 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E9649106566C for ; Wed, 4 Mar 2009 10:10:44 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id 97F708FC3E for ; Wed, 4 Mar 2009 10:10:44 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (pD9E2E957.dip.t-dialin.net [217.226.233.87]) by redbull.bpaserver.net (Postfix) with ESMTP id 3CE7F2E267; Wed, 4 Mar 2009 10:55:31 +0100 (CET) Received: from webmail.leidinger.net (webmail.leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id D40141CB26E; Wed, 4 Mar 2009 10:55:27 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=Leidinger.net; s=outgoing-alex; t=1236160528; bh=nVw0waRMxSuMDVRUuVRr6iaNQY0Y/huJF Hro3V4MPME=; h=Message-ID:Date:From:To:Cc:Subject:References: In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=tgH4xxqYLGEe57uF2ijBUtM3mSYdLIC7zZ8ohLYTFf3Nfv7SzeTOIaIb7xRtRtU0p YDG+iTNng8g+cX11CuVpPPPsJQrY8S6q9RhJCY128ELhdH01PN2FxqBzTUiGWTIVvAW pvHnt4fLt8d8VzAOLQ8OX8Itw4zolEIKeyqQrTAaXrEvVFQsIwdTrlIPlB3OZVCNTRs b9sWkVxZcZF6yzxArYN/R41BhcnT45yO+6k5btysaYLPAmerQ27dK9xwWDKCOPyW0St 0tYzgwOCzXbQ6cOoTXj/VMWANplzw5H/7rBj42dUV7g26nKCuanGE0bSM3saL5ZN03u qfdfawFTw== Received: (from www@localhost) by webmail.leidinger.net (8.14.3/8.13.8/Submit) id n249tQFL018483; Wed, 4 Mar 2009 10:55:26 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde Framework) with HTTP; Wed, 04 Mar 2009 10:55:25 +0100 Message-ID: <20090304105525.90665tgxalwo19ss@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Wed, 04 Mar 2009 10:55:25 +0100 From: Alexander Leidinger To: Bruce Simpson References: <49ADDDCE.5000203@incunabulum.net> In-Reply-To: <49ADDDCE.5000203@incunabulum.net> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.3) / FreeBSD-8.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-MailScanner-ID: 3CE7F2E267.5167B X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, ORDB-RBL, SpamAssassin (not cached, score=-14.9, required 6, BAYES_00 -15.00, DKIM_SIGNED 0.00, DKIM_VERIFIED -0.00, RDNS_DYNAMIC 0.10) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org Subject: Re: HEADS UP: IGMPv3/SSM: alpha code drop. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 10:10:45 -0000 Quoting Bruce Simpson (from Wed, 04 Mar 2009 01:47:58 +0000): > Hi all, > > I am making patches available against 8-CURRENT to do IGMPv3 and > Source Specific Multicast in the IP stack: > http://people.freebsd.org/~bms/stage/igmpv3/ Is this supposed to make multicast work in a jail? In the past I tried some simple tests (e.g. mtest(8)), but I wasn't able to receive anything in a jail (this test was triggered by the fact, that some avahi-tools from the avahi port didn't showed an expected result). Bye, Alexander. -- Memory fault -- core...uh...um...core... Oh dammit, I forget! http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137 From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 10:20:04 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A7811065678 for ; Wed, 4 Mar 2009 10:20:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 4DCF68FC1D for ; Wed, 4 Mar 2009 10:20:04 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n24AK4BI060552 for ; Wed, 4 Mar 2009 10:20:04 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n24AK4cY060551; Wed, 4 Mar 2009 10:20:04 GMT (envelope-from gnats) Date: Wed, 4 Mar 2009 10:20:04 GMT Message-Id: <200903041020.n24AK4cY060551@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: "Vasile Marii" Cc: Subject: Re: kern/132277: [crypto] [ipsec] poor performance using cryptodevice for IPSEC X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Vasile Marii List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 10:20:04 -0000 The following reply was made to PR kern/132277; it has been noted by GNATS. From: "Vasile Marii" To: , Cc: Subject: Re: kern/132277: [crypto] [ipsec] poor performance using cryptodevice for IPSEC Date: Wed, 4 Mar 2009 11:41:47 +0200 This is a multipart message in MIME format. ------=_NextPart_000_0001_01C99CBE.34A8B240 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit http://forum.pfsense.org/index.php/topic,14581.msg77206.html#msg77206 ------=_NextPart_000_0001_01C99CBE.34A8B240 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

http://forum.pfsense.org/index.php/topic,14581.msg77206= .html#msg77206

------=_NextPart_000_0001_01C99CBE.34A8B240-- From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 11:49:06 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C03BA106564A; Wed, 4 Mar 2009 11:49:06 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by mx1.freebsd.org (Postfix) with ESMTP id 94C388FC29; Wed, 4 Mar 2009 11:49:06 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from compute1.internal (compute1.internal [10.202.2.41]) by out1.messagingengine.com (Postfix) with ESMTP id B42DA2D733C; Wed, 4 Mar 2009 06:49:05 -0500 (EST) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by compute1.internal (MEProxy); Wed, 04 Mar 2009 06:49:05 -0500 X-Sasl-enc: oLGrdBABY9cxm3Oo8wZKAX9GWBMFi9plIgzVUz8iG4mX 1236167345 Received: from [192.168.123.18] (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTPSA id 0907C361D9; Wed, 4 Mar 2009 06:49:04 -0500 (EST) Message-ID: <49AE6AAF.5090905@incunabulum.net> Date: Wed, 04 Mar 2009 11:49:03 +0000 From: Bruce Simpson User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: Alexander Leidinger References: <49ADDDCE.5000203@incunabulum.net> <20090304105525.90665tgxalwo19ss@webmail.leidinger.net> In-Reply-To: <20090304105525.90665tgxalwo19ss@webmail.leidinger.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org Subject: Re: HEADS UP: IGMPv3/SSM: alpha code drop. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 11:49:07 -0000 Alexander Leidinger wrote: > ... > Is this supposed to make multicast work in a jail? In the past I tried > some simple tests (e.g. mtest(8)), but I wasn't able to receive > anything in a jail (this test was triggered by the fact, that some > avahi-tools from the avahi port didn't showed an expected result). Not really, no, I have just been making my best guess here. I would hope bz would join in once it's checked in -- as I understand it, jails are a difficult case for multicast (and broadcast) sockets because of how they change how address lookup works. Other than that I have done no testing with jails. I believe the code will continue to work as-is, however others are welcome to test and contribute once it's in. thanks, BMS From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 12:27:36 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 973A5106566B; Wed, 4 Mar 2009 12:27:36 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.freebsd.org (Postfix) with ESMTP id 42C878FC16; Wed, 4 Mar 2009 12:27:36 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (pD9E2E957.dip.t-dialin.net [217.226.233.87]) by redbull.bpaserver.net (Postfix) with ESMTP id 2DB0C2E2E6; Wed, 4 Mar 2009 13:27:28 +0100 (CET) Received: from webmail.leidinger.net (webmail.leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id B1DCBB6CEF; Wed, 4 Mar 2009 13:27:24 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=Leidinger.net; s=outgoing-alex; t=1236169644; bh=NQd7t7tNVU/PnBCw0RKYIc2mtymgJgvT/ VDQ65w6FF8=; h=Message-ID:Date:From:To:Cc:Subject:References: In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=qsSIMtOqMLkCYSTrm66g0GaDvv7jyNA3wQhKmpznb4p7hye6i9D7wEwweqtRaryja 4LFcJyevStyUtpgmwKHU8eSDgfiLzUtSZlKN9RQSu5dZOaEp5dtd4NYGCcEC1HtCrJM B26xCOKxVFxfieq1Yo++QGGBQzw7yK1RphQCeBMNC1xBuyMa2n4FjYtDUwyWuhJD8sn /+aHvQmmijjUxytDZ02z1sSrYk1qocjyagqF3f+lYmNmqMqI7+NxC7FxQGqFdBzewXq JaYbR15W80ULzb0ftvAuaqdAeXQJJlD++hu09sIFexbQderqhTS+sAJr9veJZ7TeA1Q CyuLcO3tQ== Received: (from www@localhost) by webmail.leidinger.net (8.14.3/8.13.8/Submit) id n24CRNb1045462; Wed, 4 Mar 2009 13:27:23 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde Framework) with HTTP; Wed, 04 Mar 2009 13:27:22 +0100 Message-ID: <20090304132722.11537bwxtk2oys8w@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Wed, 04 Mar 2009 13:27:22 +0100 From: Alexander Leidinger To: Bruce Simpson References: <49ADDDCE.5000203@incunabulum.net> <20090304105525.90665tgxalwo19ss@webmail.leidinger.net> <49AE6AAF.5090905@incunabulum.net> In-Reply-To: <49AE6AAF.5090905@incunabulum.net> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.3) / FreeBSD-8.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-MailScanner-ID: 2DB0C2E2E6.44DDD X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, ORDB-RBL, SpamAssassin (not cached, score=-14.9, required 6, BAYES_00 -15.00, DKIM_SIGNED 0.00, DKIM_VERIFIED -0.00, RDNS_DYNAMIC 0.10) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No Cc: freebsd-net@freebsd.org, freebsd-current@freebsd.org Subject: Re: HEADS UP: IGMPv3/SSM: alpha code drop. X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 12:27:37 -0000 Quoting Bruce Simpson (from Wed, 04 Mar 2009 =20 11:49:03 +0000): > Alexander Leidinger wrote: >> ... >> Is this supposed to make multicast work in a jail? In the past I =20 >> tried some simple tests (e.g. mtest(8)), but I wasn't able to =20 >> receive anything in a jail (this test was triggered by the fact, =20 >> that some avahi-tools from the avahi port didn't showed an expected =20 >> result). > > Not really, no, I have just been making my best guess here. I would =20 > hope bz would join in once it's checked in -- as I understand it, =20 > jails are a difficult case for multicast (and broadcast) sockets =20 > because of how they change how address lookup works. Other than that =20 > I have done no testing with jails. > > I believe the code will continue to work as-is, however others are =20 > welcome to test and contribute once it's in. Thanks for the info. I hope the vimage stuff will change this =20 situation regardless of the fact if someone jumps in and makes the =20 current stuff work or not. Bye, Alexander. --=20 For every action, there is an equal and opposite criticism. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137 From owner-freebsd-net@FreeBSD.ORG Wed Mar 4 19:26:29 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4A87D1065670 for ; Wed, 4 Mar 2009 19:26:29 +0000 (UTC) (envelope-from dhorn2000@gmail.com) Received: from yw-out-2324.google.com (yw-out-2324.google.com [74.125.46.30]) by mx1.freebsd.org (Postfix) with ESMTP id 078158FC13 for ; Wed, 4 Mar 2009 19:26:28 +0000 (UTC) (envelope-from dhorn2000@gmail.com) Received: by yw-out-2324.google.com with SMTP id 2so1887575ywt.13 for ; Wed, 04 Mar 2009 11:26:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=5OQiXKz5IF+D7QeC2ya+0RWToWjG/MW0R8r8S1S4MPw=; b=Uq+0IMdXbliii5wy76uhV0sGp8WTj+zig1W7yvFu8g7DqDC/Z4LzUwvyMN3vbQvQB6 7N28sNZL1I4zdjSlOhZS3ktK2u/3kv135b1gmvhaLHoMqYo12dMRe1ALQ8JzXv4pTasn flJ17orddIw58yMpux+rzpAeSP40Nnq5VBYKI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=Q2eTPlX9Gw65aH425/QQMYYiYfDaygtbJ+LvtU1umeAHpK57te0IR6KucyTPhsB++V pr98KYOGcayaEL8fsbl7qwp1dV3tORiBQYMm1LjPoXpkjNoiV/wA8diHL7LSc8tnDbNu XzZC39X18rHr23OcnY6+NXPPuE8DH2168jIMs= MIME-Version: 1.0 Received: by 10.231.15.74 with SMTP id j10mr60260iba.48.1236193063011; Wed, 04 Mar 2009 10:57:43 -0800 (PST) Date: Wed, 4 Mar 2009 13:57:42 -0500 Message-ID: <25ff90d60903041057k2e8a469ej43734effd30fd3ff@mail.gmail.com> From: David Horn To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Proposal: Rework ipv6 rtsol initialization in rc.d X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Mar 2009 19:26:29 -0000 Proposal: Rework ipv6 rtsol initialization in rc.d Why: on multihomed or transient (e.g. laptops) connections, ipv6 autoconfiguration can be slow, causing ipv6 initialization delays while waiting for unsolicited router advertisements What: add devd.conf entries, create /etc/rc.d/rtsol script (ala dhclient script), modify network.subr, update man 5 rtsol Discussion point: There is a comment in network.subr, and in man 5 rtsol about multihomed connections not being appropriate for rtsol I read through RFC 2461 and 2462, and while it does list multihomed issues in appendix A of RFC 2461, it does not have any "MUST NOT" or "SHOULD NOT" language around router solicitations with respect to multihomed ipv6 systems. (Someone, please correct me if I am wrong here, or if there is some other RFC that applies) The multihomed issue is more around IPv6 autoconfiguration in general, not specific to soliciting for a router. Since FreeBSD already allows for IPv6 autoconfiguration on multihomed ipv6 systems (just without calling rtsol on multiple interfaces), I would think that this is really a non-issue for rtsol. Comments ? Please let me know if I am way off base here. I will gladly submit a patch for review if no one has any objections to multihomed ipv6 rtsol. --Thanks! ---_Dave Horn Non quia difficilia sunt non audemus, sed quia non audemus, difficilia sunt. From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 01:43:56 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE736106566C; Thu, 5 Mar 2009 01:43:56 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id A42808FC0C; Thu, 5 Mar 2009 01:43:56 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n251hucL060469; Thu, 5 Mar 2009 01:43:56 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n251htES060465; Thu, 5 Mar 2009 01:43:55 GMT (envelope-from linimon) Date: Thu, 5 Mar 2009 01:43:55 GMT Message-Id: <200903050143.n251htES060465@freefall.freebsd.org> To: feh@fehcom.de, linimon@FreeBSD.org, freebsd-net@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 01:43:57 -0000 Synopsis: [ndis] wpa_supplicant(8) returns 'no space on device' State-Changed-From-To: open->feedback State-Changed-By: linimon State-Changed-When: Thu Mar 5 01:43:20 UTC 2009 State-Changed-Why: To submitter: did the suggestion from Paul B. Mahol fix this problem? http://www.freebsd.org/cgi/query-pr.cgi?pr=130820 From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 01:50:03 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 76A861065670 for ; Thu, 5 Mar 2009 01:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 4B7458FC08 for ; Thu, 5 Mar 2009 01:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n251o3Tw060666 for ; Thu, 5 Mar 2009 01:50:03 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n251o3gk060665; Thu, 5 Mar 2009 01:50:03 GMT (envelope-from gnats) Date: Thu, 5 Mar 2009 01:50:03 GMT Message-Id: <200903050150.n251o3gk060665@freefall.freebsd.org> To: freebsd-net@FreeBSD.org From: Mark Linimon Cc: Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Mark Linimon List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 01:50:03 -0000 The following reply was made to PR kern/130820; it has been noted by GNATS. From: Mark Linimon To: bug-followup@FreeBSD.org Cc: Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' Date: Wed, 4 Mar 2009 19:44:31 -0600 ----- Forwarded message from "Paul B. Mahol" ----- From: "Paul B. Mahol" To: linimon@freebsd.org Cc: freebsd-net@freebsd.org, freebsd-bugs@freebsd.org Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' Yet another invalid bug report. OP should use -Dndis and not -Dbsd -- Paul ----- End forwarded message ----- From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 08:13:25 2009 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3694E106566B for ; Thu, 5 Mar 2009 08:13:25 +0000 (UTC) (envelope-from feh@fehcom.de) Received: from mail.fehcom.net (hamburg134.server4you.de [217.172.188.134]) by mx1.freebsd.org (Postfix) with ESMTP id 964048FC1B for ; Thu, 5 Mar 2009 08:13:24 +0000 (UTC) (envelope-from feh@fehcom.de) Received: (qmail 22198 invoked from network); 5 Mar 2009 08:13:22 -0000 Received: from static-87-79-92-176.netcologne.de (HELO fehnet.fehcom.de) (feh@fehcom.de@87.79.92.176) by mail.fehcom.net with ESMTPA; 5 Mar 2009 08:13:22 -0000 Received: (qmail 12668 invoked from network); 5 Mar 2009 08:14:07 -0000 Received: from dhcp-108.fehnet.de (HELO ?192.168.192.108?) (192.168.192.108) by artigo.fehnet.de with ESMTP; 5 Mar 2009 08:14:07 -0000 Date: Thu, 05 Mar 2009 09:12:23 +0100 From: Erwin Hoffmann To: linimon@FreeBSD.org, freebsd-net@FreeBSD.org Message-ID: <55CF3225C5C074DD9DCB1564@[192.168.192.108]> In-Reply-To: <200903050143.n251htES060465@freefall.freebsd.org> References: <200903050143.n251htES060465@freefall.freebsd.org> X-Mailer: Mulberry/4.0.8 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Cc: Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 08:13:25 -0000 Hi thanks for following my bug-report: --On Donnerstag, 5. M=C3=A4rz 2009 01:43 +0000 linimon@FreeBSD.org wrote: > http://www.freebsd.org/cgi/query-pr.cgi?pr=3D130820 From: "Paul B. Mahol" To: linimon@freebsd.org Cc: freebsd-net@freebsd.org, freebsd-bugs@freebsd.org Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' Yet another invalid bug report. OP should use -Dndis and not -Dbsd -- I did not reply to the comment, because of it's obvious stupidness: If you go thru the code source for the wpasuplicant (what I did trying to=20 fix the bug), you can see that (at least that's true for FreeBSD 6.3) the=20 wpasupplicant *only* supports the BSD driver for wlan cards and no other. That is ok, if the documentation clearly would mention that. However, it is completely misleading (and shows the ignorance on that=20 subject by Paul) even pretending FreeBSD's wpasuplicant can be used with=20 the driver option. In fact, FreeBSD's wpasupplicant implementation is at best half baked. It turned out, that one has to consider at least two different ndis = drivers: 1. The generic one, which works for unencrypted and WEP connections (using=20 the chipset's internal de/encryption facilities). 2. A specific ndis driver different from (1.) used to talk to the wlan=20 adapter while encryption and authentication is done by wpasupplicant. Since (2.) is missing, wpasupplicant tries to use the build-in BSD driver,=20 which of course fails with the error message mentioned in my bug report. In order to follow up this subject, I would recommend to change the=20 category of the bug into something like 'documentation bug' straighten up=20 the docs and close it. I'm inclined to set up a wpa reference page with a detailed description of=20 this issue and perhaps include some additional patches (wpasupplicant=20 latest version for FreeBSD and others). However, currently I'm busy with=20 other projects; so it is likely that this will we postponed after the=20 summer term. Further, it would be great (and maybe I ask one of my students) to get the=20 ndis driver working for FreeBSD. But again: This will not happen until the=20 winter term. regards. --eh. From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 11:30:54 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5BBA91065670 for ; Thu, 5 Mar 2009 11:30:54 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.freebsd.org (Postfix) with ESMTP id 14A668FC19 for ; Thu, 5 Mar 2009 11:30:53 +0000 (UTC) (envelope-from freebsd-net@m.gmane.org) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1LfBmu-0007Pa-OY for freebsd-net@freebsd.org; Thu, 05 Mar 2009 11:30:52 +0000 Received: from lara.cc.fer.hr ([161.53.72.113]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 05 Mar 2009 11:30:52 +0000 Received: from ivoras by lara.cc.fer.hr with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Thu, 05 Mar 2009 11:30:52 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-net@freebsd.org From: Ivan Voras Date: Thu, 05 Mar 2009 12:30:30 +0100 Lines: 32 Message-ID: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enigCB8AA5F03180B3F3846100BB" X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: lara.cc.fer.hr User-Agent: Thunderbird 2.0.0.19 (X11/20090105) X-Enigmail-Version: 0.95.0 Sender: news Subject: IPFW and IPv6 TCP timeout problem X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 11:30:54 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigCB8AA5F03180B3F3846100BB Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hi, It appears that IPFW drops dynamic (state-keeping) rules for idle IPv6 TCP connections after a short (60 seconds by default) timeout. This of course creates problems for services like SSH and NFS. I've contacted Luigi Rizzo about it but he cannot help with the IPv6 part of the ipfw. His guess is that the part that should send keepalive ACK packets like ipfw does for IPv4 is broken or nonexistent for IPv6. Any takers? Should I file a PR? --------------enigCB8AA5F03180B3F3846100BB Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFJr7fWldnAQVacBcgRArDOAJ9hD+4d2K0HlDqVZv6C1f6VSpmlvACg+GY9 pDlGJQYGSeGy781OezKmMsU= =rKR+ -----END PGP SIGNATURE----- --------------enigCB8AA5F03180B3F3846100BB-- From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 13:21:05 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5A4121065673; Thu, 5 Mar 2009 13:21:05 +0000 (UTC) (envelope-from joost@jodocus.org) Received: from viefep28-int.chello.at (viefep28-int.chello.at [62.179.121.48]) by mx1.freebsd.org (Postfix) with ESMTP id 7D3018FC12; Thu, 5 Mar 2009 13:21:04 +0000 (UTC) (envelope-from joost@jodocus.org) Received: from edge02.upc.biz ([192.168.13.237]) by viefep14-int.chello.at (InterMail vM.7.09.01.00 201-2219-108-20080618) with ESMTP id <20090305130430.HVIT7428.viefep14-int.chello.at@edge02.upc.biz>; Thu, 5 Mar 2009 14:04:30 +0100 Received: from bps.jodocus.org ([77.248.200.61]) by edge02.upc.biz with edge id PR4V1b01X1Kyz9102R4Wqu; Thu, 05 Mar 2009 14:04:30 +0100 X-SourceIP: 77.248.200.61 Received: from jodocus.org (localhost [IPv6:::1]) by bps.jodocus.org (8.14.2/8.14.2) with ESMTP id n25D4SJf059233; Thu, 5 Mar 2009 14:04:28 +0100 (CET) (envelope-from joost@jodocus.org) Received: from 62.12.14.25 (SquirrelMail authenticated user joost) by jodocus.org with HTTP; Thu, 5 Mar 2009 14:04:29 +0100 (CET) Message-ID: <29230.62.12.14.25.1236258269.squirrel@jodocus.org> In-Reply-To: References: Date: Thu, 5 Mar 2009 14:04:29 +0100 (CET) From: "Joost Bekkers" To: "Ivan Voras" User-Agent: SquirrelMail/1.4.13 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (bps.jodocus.org [IPv6:::1]); Thu, 05 Mar 2009 14:04:29 +0100 (CET) X-Virus-Scanned: ClamAV 0.94.2/9072/Thu Mar 5 11:45:26 2009 on bps.jodocus.org X-Virus-Status: Clean Cc: freebsd-net@freebsd.org Subject: Re: IPFW and IPv6 TCP timeout problem X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 13:21:05 -0000 On Thu, March 5, 2009 12:30, Ivan Voras wrote: > Hi, > > It appears that IPFW drops dynamic (state-keeping) rules for idle IPv6 > TCP connections after a short (60 seconds by default) timeout. This of > course creates problems for services like SSH and NFS. I've contacted > Luigi Rizzo about it but he cannot help with the IPv6 part of the ipfw. > His guess is that the part that should send keepalive ACK packets like > ipfw does for IPv4 is broken or nonexistent for IPv6. > > Any takers? Should I file a PR? > > You might want to check if kern/117234 is relevant here. I've got a feeling this is the problem you're seeing. The PR includes a patch, it just needs somebody to commit it. good luck. Joost. From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 17:35:38 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7D13C106566C for ; Thu, 5 Mar 2009 17:35:38 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: from ibctech.ca (unknown [IPv6:2607:f118::b6]) by mx1.freebsd.org (Postfix) with SMTP id 3F8038FC18 for ; Thu, 5 Mar 2009 17:35:38 +0000 (UTC) (envelope-from steve@ibctech.ca) Received: (qmail 59997 invoked by uid 89); 5 Mar 2009 17:38:58 -0000 Received: from unknown (HELO ?192.168.1.114?) (steve@ibctech.ca@::ffff:208.70.104.100) by pearl.ibctech.ca with ESMTPA; 5 Mar 2009 17:38:58 -0000 Message-ID: <49B00D5F.80304@ibctech.ca> Date: Thu, 05 Mar 2009 12:35:27 -0500 From: Steve Bertrand User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: FreeBSD Net X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: HP Procurve, FreeBSD and LACP X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 17:35:39 -0000 Hi everyone, I'm attempting to configure a lagg interface between a FreeBSD box and an HP Procurve 2848, but can't seem to get it right. The lagg interface consists of an re and an age device, both connected to the switch at 1000/full. FreeBSD claims that lagg is up, but only one of the physical interfaces is set to 'ACTIVE'. The switch is 208.70.104.2/25, and the lagg interface is 208.70.104.110/25. I can ping the FreeBSD box from the switch (and vice-versa), but traffic traversing the switch to the FBSD box fails. When I ping from FBSD to another host connected to the switch, I see ARP who-has and replies travelling in both directions, on both devices in question. However, any Layer-3 (ICMP) doesn't cross the switch. The switch claims things are ok: # sh lacp PORT LACP TRUNK PORT LACP LACP NUMB ENABLED GROUP STATUS PARTNER STATUS ---- ------- ------- ------- ------- ------- 11 Active Trk1 Up Yes Success 12 Active Trk1 Up Yes Success # sh mac MAC Address Located on Port ------------- --------------- 001a70-14563d Trk1 001d60-0d7b63 Trk1 # sh arp IP Address MAC Address Type Port --------------- ----------------- ------- ---- 208.70.104.110 001a70-14563d dynamic Trk1 # sh trunk Port | Name Type | Group Type ---- + -------------------------------- --------- + ----- ----- 11 | amanda.eagle.ca (LACP link #1) 11 | Trk1 LACP 12 | amanda.eagle.ca (LACP link #2) 12 | Trk1 LACP # sh run vlan 10 name "cat10" untagged 1-10,13-22,29-44,Trk1 ip address 208.70.104.2 255.255.255.128 exit I know that the host's setup is ok, as I can connect the lagg interface directly into a second FreeBSD box with lagg, and things just work. Is this a case where I am doing something wrong, or do I just need to replace the HP with a Cisco? ;) Steve From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 18:30:00 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0AB75106564A for ; Thu, 5 Mar 2009 18:30:00 +0000 (UTC) (envelope-from onemda@gmail.com) Received: from mail-fx0-f158.google.com (mail-fx0-f158.google.com [209.85.220.158]) by mx1.freebsd.org (Postfix) with ESMTP id 39FBC8FC21 for ; Thu, 5 Mar 2009 18:29:59 +0000 (UTC) (envelope-from onemda@gmail.com) Received: by fxm2 with SMTP id 2so51433fxm.43 for ; Thu, 05 Mar 2009 10:29:58 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=f5v3kqCbhAGPNR7Mn+bJ32Q3Rq0RLa1ApnwQ2nOAMdo=; b=L4tMWoPqT3uCSjuo5syyAyUCvR/N6lFPsHACHIyL8Tlzr5B60fNCgeyJOtXdvE1nxl SnYmXW+APMbWnWReLyxavVbkyTkHyne4Qrtg93q01OSA4P4VjxJCnclXLb5xW+njYOQn E8Z3gteHT/mhAWiaT1pEEJohVOTjIFhYz90x4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=jAE0glrXlgAmBUs7PyO6gcBS2XJoXN/Ed+BUNi+jDexzDx9B0XHY/bvieIxV6tziAV /TXobypVodr+R/ELdZJJoMhJ0UyAbKj+13o/NO5lddJk0RrXkNckyvc+ok5pLVjt7ZRD RX8esUNIelNVPPuCDjXt2F6ZGvKg9AO+U1NfY= MIME-Version: 1.0 Received: by 10.223.108.15 with SMTP id d15mr1211482fap.62.1236277798312; Thu, 05 Mar 2009 10:29:58 -0800 (PST) In-Reply-To: <55CF3225C5C074DD9DCB1564@192.168.192.108> References: <200903050143.n251htES060465@freefall.freebsd.org> <55CF3225C5C074DD9DCB1564@192.168.192.108> Date: Thu, 5 Mar 2009 19:29:58 +0100 Message-ID: <3a142e750903051029h37839d28l5e07ead6b616c73b@mail.gmail.com> From: "Paul B. Mahol" To: Erwin Hoffmann Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, linimon@freebsd.org Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on device' X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 18:30:00 -0000 On 3/5/09, Erwin Hoffmann wrote: > Hi > > thanks for following my bug-report: > > --On Donnerstag, 5. Maerz 2009 01:43 +0000 linimon@FreeBSD.org wrote: > >> http://www.freebsd.org/cgi/query-pr.cgi?pr=130820 > > From: "Paul B. Mahol" > To: linimon@freebsd.org > Cc: freebsd-net@freebsd.org, freebsd-bugs@freebsd.org > Subject: Re: kern/130820: [ndis] wpa_supplicant(8) returns 'no space on > device' > > Yet another invalid bug report. > OP should use -Dndis and not -Dbsd > > -- > > I did not reply to the comment, because of it's obvious stupidness: > > If you go thru the code source for the wpasuplicant (what I did trying to > fix the bug), you can see that (at least that's true for FreeBSD 6.3) the > wpasupplicant *only* supports the BSD driver for wlan cards and no other. > > That is ok, if the documentation clearly would mention that. > > However, it is completely misleading (and shows the ignorance on that > subject by Paul) even pretending FreeBSD's wpasuplicant can be used with > the driver option. > > In fact, FreeBSD's wpasupplicant implementation is at best half baked. > It turned out, that one has to consider at least two different ndis drivers: > > 1. The generic one, which works for unencrypted and WEP connections (using > the chipset's internal de/encryption facilities). > 2. A specific ndis driver different from (1.) used to talk to the wlan > adapter while encryption and authentication is done by wpasupplicant. > > Since (2.) is missing, wpasupplicant tries to use the build-in BSD driver, > which of course fails with the error message mentioned in my bug report. > > In order to follow up this subject, I would recommend to change the > category of the bug into something like 'documentation bug' straighten up > the docs and close it. > > I'm inclined to set up a wpa reference page with a detailed description of > this issue and perhaps include some additional patches (wpasupplicant > latest version for FreeBSD and others). However, currently I'm busy with > other projects; so it is likely that this will we postponed after the > summer term. > > Further, it would be great (and maybe I ask one of my students) to get the > ndis driver working for FreeBSD. But again: This will not happen until the > winter term. Patches are always welcome but note that mayor development is going in 8.0 CURRENT and there ndisulator + wpa_supplicant work for me. wpa_supplicant on 6.3 RELEASE does support ndis driver interface, I come up to that conclusion looking in cvs but I can not be sure because I never used wpa_supplicant with 6.3 RELEASE http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/wpa/wpa_supplicant/?only_with_tag=RELENG_6_3_0_RELEASE -- Paul From owner-freebsd-net@FreeBSD.ORG Thu Mar 5 20:23:27 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 92BB4106567A; Thu, 5 Mar 2009 20:23:27 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 680B98FC1C; Thu, 5 Mar 2009 20:23:27 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n25KNR4K049725; Thu, 5 Mar 2009 20:23:27 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n25KNRB6049721; Thu, 5 Mar 2009 20:23:27 GMT (envelope-from linimon) Date: Thu, 5 Mar 2009 20:23:27 GMT Message-Id: <200903052023.n25KNRB6049721@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/132342: [ndis] [patch] incorrect number used in for loop; fix TXPMGT reporting X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Mar 2009 20:23:28 -0000 Old Synopsis: incorrect number used in for loop; fix TXPMGT reporting New Synopsis: [ndis] [patch] incorrect number used in for loop; fix TXPMGT reporting Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Thu Mar 5 20:23:01 UTC 2009 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=132342 From owner-freebsd-net@FreeBSD.ORG Fri Mar 6 03:27:36 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 77CD11065672 for ; Fri, 6 Mar 2009 03:27:36 +0000 (UTC) (envelope-from php_webmaster@kvetinywaniek.cz) Received: from mailadmin.rpsnet.cz (mail.rpsnet.cz [88.103.228.10]) by mx1.freebsd.org (Postfix) with ESMTP id 1CEA48FC1D for ; Fri, 6 Mar 2009 03:27:34 +0000 (UTC) (envelope-from php_webmaster@kvetinywaniek.cz) Received: from localhost (localhost [127.0.0.1]) by mailadmin.rpsnet.cz (Postfix) with ESMTP id 0DEDC9C3F4 for ; Fri, 6 Mar 2009 04:27:11 +0100 (CET) Received: from mailadmin.rpsnet.cz ([127.0.0.1]) by localhost ( [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 17730-03-6 for ; Fri, 6 Mar 2009 04:27:10 +0100 (CET) Received: by mailadmin.rpsnet.cz (Postfix, from userid 1005) id AAC149C1B2; Fri, 6 Mar 2009 04:23:10 +0100 (CET) To: freebsd-net@freebsd.org From: ING Vysya Bank <"ingonline."@ingvysyabank.com> Content-Transfer-Encoding: 8bit Message-Id: <20090306032310.AAC149C1B2@mailadmin.rpsnet.cz> Date: Fri, 6 Mar 2009 04:23:10 +0100 (CET) X-Virus-Scanned: amavisd-new at X-Amavis-Alert: BAD HEADER Improper use of control character (char 0D hex) in message header 'Reply-To': Reply-To: \r\n MIME-Version: 1.0 Content-Type: text/plain X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: ING Update X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Mar 2009 03:27:37 -0000 [1][banklogo.gif] [mibanklogo2.gif] Dear Customer We are currently running a system update and maintenance. However, we have encountered some error on some [2]mi-b@nk account. For this reason, we require all our customers to login to their [3]mi-b@ank account and confirm their account status. If your account is in order, please disregard further instructions. If an error is being encountered in your account, please be advised to login to your [4]mi-b@ank account and update your data correctly. Errors will be immediately corrected in effect. Please click on the link below to proceed; [5]https://online.ingvysyabank.com/ Thanks for your co-operattion. Sincerely, Online Banking Customer Service © 2008.ING Vysya Bank Limited. All rights reserved References 1. http://www.ingvysyabank.com/index.aspx 2. mailto:mi-b@nk 3. mailto:mi-b@ank 4. mailto:mi-B@ank 5. http://www.qdealers.com/Auto-Dealer-Website-Design/FancyZoom%201.1/internetbanking.htm From owner-freebsd-net@FreeBSD.ORG Fri Mar 6 08:07:38 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 542881065674 for ; Fri, 6 Mar 2009 08:07:38 +0000 (UTC) (envelope-from siraj.sailor@ymail.com) Received: from n65.bullet.mail.sp1.yahoo.com (n65.bullet.mail.sp1.yahoo.com [98.136.44.190]) by mx1.freebsd.org (Postfix) with SMTP id 33F1B8FC08 for ; Fri, 6 Mar 2009 08:07:38 +0000 (UTC) (envelope-from siraj.sailor@ymail.com) Received: from [216.252.122.218] by n65.bullet.mail.sp1.yahoo.com with NNFMP; 06 Mar 2009 07:54:05 -0000 Received: from [69.147.65.153] by t3.bullet.sp1.yahoo.com with NNFMP; 06 Mar 2009 07:54:05 -0000 Received: from [127.0.0.1] by omp401.mail.sp1.yahoo.com with NNFMP; 06 Mar 2009 07:54:05 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 237537.6938.bm@omp401.mail.sp1.yahoo.com Received: (qmail 22739 invoked by uid 60001); 6 Mar 2009 07:54:05 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ymail.com; s=s1024; t=1236326045; bh=yUftlmY+sUHXecTOzLmGf6gG+p6qCE/SKV5CCEaOnM8=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=BoQ2OhD0qR96nSm72vRQKHnX8hRTITyQlYSdN8t3OUzvft6sM0xJjZGAezHgpBNqqQ+ohXFHNqaDEeU7UiqwaPN6S7IfKMNrec8scmoUpeBNvFcSOPNLPBEcFiARDav9UJr9vWO3laVlqlO03rkTi8azZbQsDET7Tt/1iM1mZC4= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=ymail.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=AbIBPRFtWYTM2nYt5byCzw5VhSs0sJS97K/zS2NECxH4nb8N5FJG16SHzvWvLqD2txEMib1c6o5/Kzk+7mK2fuzrl9bRvO0Ysfsx58CIIGGFFThN5+BTjnf0qb2VHA48Du+IfG4hl/Id0fE0MGC74c7i+CC0GNW6DQKUXIDcPTk=; Message-ID: <41055.21272.qm@web43407.mail.sp1.yahoo.com> X-YMail-OSG: vROMmfwVM1l8uGswiEpuMEElyNfRv4RHUJYD2mPhsZgLSnpXdF0ZEHBIDuK9oNkWkXp6vbDE52ZiDBqIP7PSwOHASSjrH5htWxzP0JxpXXWGFVhLAYGqFBg3SSeNwfA.RJlRSHjADENy7V9iwJ5q4klfuJG1apzcgE33iI8jICmG_GtAG5GtzdP2p6osJIxSaJ.r_RBDFOaHW5dnpHk7J1737ReF8Q-- Received: from [144.36.135.206] by web43407.mail.sp1.yahoo.com via HTTP; Thu, 05 Mar 2009 23:54:04 PST X-Mailer: YahooMailRC/1155.45 YahooMailWebService/0.7.289.1 Date: Thu, 5 Mar 2009 23:54:04 -0800 (PST) From: Sailor Siraj To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailman-Approved-At: Fri, 06 Mar 2009 12:11:27 +0000 Subject: implementation of mDNS X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Mar 2009 08:07:38 -0000 Hello everyone, I , Sailor Siraj - a computer science student from India, am quite interested to implement mDNS in FreeBSD as my gsoc project. I have done quite study in this field. Before submiting my project idea I needed to confirm if there is any previous or ongoing work being done on this field. Thanking all and waiting for a reply.. Sailor Siraj From owner-freebsd-net@FreeBSD.ORG Fri Mar 6 14:02:27 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EC26A106566B for ; Fri, 6 Mar 2009 14:02:27 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from out1.smtp.messagingengine.com (out1.smtp.messagingengine.com [66.111.4.25]) by mx1.freebsd.org (Postfix) with ESMTP id 8D25E8FC20 for ; Fri, 6 Mar 2009 14:02:27 +0000 (UTC) (envelope-from bms@incunabulum.net) Received: from compute2.internal (compute2.internal [10.202.2.42]) by out1.messagingengine.com (Postfix) with ESMTP id C1B622E77CE; Fri, 6 Mar 2009 09:02:26 -0500 (EST) Received: from heartbeat1.messagingengine.com ([10.202.2.160]) by compute2.internal (MEProxy); Fri, 06 Mar 2009 09:02:26 -0500 X-Sasl-enc: xdt8TV1lxMBxqKah5HpHG8uwrjQF0tTfvCuxUUhXQSl+ 1236348146 Received: from [192.168.123.18] (82-35-112-254.cable.ubr07.dals.blueyonder.co.uk [82.35.112.254]) by mail.messagingengine.com (Postfix) with ESMTPSA id 0647080B6; Fri, 6 Mar 2009 09:02:25 -0500 (EST) Message-ID: <49B12CF0.8050500@incunabulum.net> Date: Fri, 06 Mar 2009 14:02:24 +0000 From: Bruce Simpson User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: Sailor Siraj References: <41055.21272.qm@web43407.mail.sp1.yahoo.com> In-Reply-To: <41055.21272.qm@web43407.mail.sp1.yahoo.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: implementation of mDNS X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Mar 2009 14:02:28 -0000 Sailor Siraj wrote: > Hello everyone, > > I , Sailor Siraj - a computer science student from India, am quite interested to implement mDNS in FreeBSD as my gsoc project. I have done quite study in this field. Before submiting my project idea I needed to confirm if there is any previous or ongoing work being done on this field. > I'm afraid that project's already been sponsored, and somework has taken place, although it hasn't made its way into FreeBSD for the moment. You might want to contact Fredrik Lindberg as he was the student who worked on the BSD-licensed mDNS stack. thanks, BMS From owner-freebsd-net@FreeBSD.ORG Fri Mar 6 16:11:12 2009 Return-Path: Delivered-To: freebsd-net@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D2A561065673; Fri, 6 Mar 2009 16:11:12 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id A72DC8FC14; Fri, 6 Mar 2009 16:11:12 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (linimon@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.3/8.14.3) with ESMTP id n26GBCte049170; Fri, 6 Mar 2009 16:11:12 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.3/8.14.3/Submit) id n26GBCOf049160; Fri, 6 Mar 2009 16:11:12 GMT (envelope-from linimon) Date: Fri, 6 Mar 2009 16:11:12 GMT Message-Id: <200903061611.n26GBCOf049160@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-net@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/132354: [nat] Getting some packages to ipnat(8) causes crash X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Mar 2009 16:11:14 -0000 Old Synopsis: Getting some packages to the ipnat causes crash New Synopsis: [nat] Getting some packages to ipnat(8) causes crash Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Fri Mar 6 16:10:27 UTC 2009 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=132354 From owner-freebsd-net@FreeBSD.ORG Fri Mar 6 23:47:10 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3C460106566C for ; Fri, 6 Mar 2009 23:47:10 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from mail2.fluidhosting.com (mx22.fluidhosting.com [204.14.89.5]) by mx1.freebsd.org (Postfix) with ESMTP id DC1588FC12 for ; Fri, 6 Mar 2009 23:47:09 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: (qmail 3022 invoked by uid 399); 6 Mar 2009 23:17:40 -0000 Received: from localhost (HELO ?192.168.0.24?) (dougb@dougbarton.us@127.0.0.1) by localhost with ESMTPAM; 6 Mar 2009 23:17:40 -0000 X-Originating-IP: 127.0.0.1 X-Sender: dougb@dougbarton.us Message-ID: <49B1AF12.2010302@FreeBSD.org> Date: Fri, 06 Mar 2009 15:17:38 -0800 From: Doug Barton Organization: http://www.FreeBSD.org/ User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: David Horn References: <25ff90d60903041057k2e8a469ej43734effd30fd3ff@mail.gmail.com> In-Reply-To: <25ff90d60903041057k2e8a469ej43734effd30fd3ff@mail.gmail.com> X-Enigmail-Version: 0.95.7 X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org Subject: Re: Proposal: Rework ipv6 rtsol initialization in rc.d X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Mar 2009 23:47:10 -0000 David Horn wrote: > Proposal: Rework ipv6 rtsol initialization in rc.d > Why: on multihomed or transient (e.g. laptops) connections, ipv6 > autoconfiguration can be slow, causing ipv6 initialization delays > while waiting for unsolicited router advertisements I don't quite understand this problem statement. Can you flesh it out a bit? > What: add devd.conf entries, create /etc/rc.d/rtsol script (ala > dhclient script), modify network.subr, update man 5 rtsol This sounds like a significant change so I would like to see a thorough justification for it before it goes in, and it will need thorough testing to make sure that there are no regressions. > Discussion point: There is a comment in network.subr, and in man 5 > rtsol about multihomed connections not being appropriate for rtsol > > I read through RFC 2461 and 2462, and while it does list multihomed > issues in appendix A of RFC 2461, it does not have any "MUST NOT" or > "SHOULD NOT" language around router solicitations with respect to > multihomed ipv6 systems. (Someone, please correct me if I am wrong > here, or if there is some other RFC that applies) The multihomed > issue is more around IPv6 autoconfiguration in general, not specific > to soliciting for a router. Since FreeBSD already allows for IPv6 > autoconfiguration on multihomed ipv6 systems (just without calling > rtsol on multiple interfaces), I would think that this is really a > non-issue for rtsol. My main concern would be making sure that the routing issues (particularly default routes for the various interfaces) don't end up with regressions. In general I agree with the concern that RA isn't really designed for use in a multihomed environment. That said, there aren't really any good multihome solutions in any case, so as long as this doesn't break anything I'm not opposed to giving it a go. hth, Doug -- This .signature sanitized for your protection From owner-freebsd-net@FreeBSD.ORG Sat Mar 7 15:15:28 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C3B4B1065672 for ; Sat, 7 Mar 2009 15:15:28 +0000 (UTC) (envelope-from dhorn2000@gmail.com) Received: from yw-out-2324.google.com (yw-out-2324.google.com [74.125.46.30]) by mx1.freebsd.org (Postfix) with ESMTP id 808ED8FC1B for ; Sat, 7 Mar 2009 15:15:28 +0000 (UTC) (envelope-from dhorn2000@gmail.com) Received: by yw-out-2324.google.com with SMTP id 2so433980ywt.13 for ; Sat, 07 Mar 2009 07:15:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=bRJuGNpN0HdfcJgjNBajWYtBAG3Gonvodx2POZ8xvIw=; b=QZgRF0BMddQmg2eSSU+8D1G0bRIPCZJRKYDYWI6n44fQiBSoSk9WhUImVJBk3Y3MWH iq2YsqBeGhljl97gjR2yXwqgRL3/7uJ5p8dHyxoHu0NpuT2C5Zphii1FtVyIAWWpOSY9 dSpr+DHpEqCglHNAUQ1pSvuI/rnqCacySoJ3g= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=qzJPJBFhS5QRtTseFUtjCG/SA95z3K328paNmeTyGx0Yu6gaCaXbkZDxuVVHSBMcMv ctJmw2mg8FdnsGjgSrSG6S8sAgqqw0i28iNuj+JbjqXbET4Nf6rY9Uqrp0EuD5LXzim6 xSYp3G7j9f3f/MVrFQkoUmlrbw0OIqqg//Lpc= MIME-Version: 1.0 Received: by 10.231.10.140 with SMTP id p12mr1011159ibp.50.1236438927620; Sat, 07 Mar 2009 07:15:27 -0800 (PST) In-Reply-To: <49B1AF12.2010302@FreeBSD.org> References: <25ff90d60903041057k2e8a469ej43734effd30fd3ff@mail.gmail.com> <49B1AF12.2010302@FreeBSD.org> Date: Sat, 7 Mar 2009 10:15:27 -0500 Message-ID: <25ff90d60903070715h72f00241v6e20c44e1769453@mail.gmail.com> From: David Horn To: Doug Barton Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net@freebsd.org Subject: Re: Proposal: Rework ipv6 rtsol initialization in rc.d X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Mar 2009 15:15:29 -0000 On Fri, Mar 6, 2009 at 6:17 PM, Doug Barton wrote: > David Horn wrote: >> Proposal: =A0 Rework ipv6 rtsol initialization in rc.d > >> Why: =A0on multihomed or transient (e.g. laptops) connections, ipv6 >> autoconfiguration can be slow, causing ipv6 initialization delays >> while waiting for unsolicited router advertisements > > I don't quite understand this problem statement. Can you flesh it out > a bit? > Apologies, I was a bit too brief. Here is a better set of descriptions for the two issues: - (1) Slow ipv6 initialization after link state changes - (2) Multihomed ipv6 rtsol initialization at boot Issue (1) IPv6 can be slow to initialize if link changes state in a single interface environment, and is not UP during boot. Example (1) Boot laptop, but no net interface UP during boot. (e.g. wifi out of range, Ethernet cable unplugged, etc.) and ipv6_enable rcvar is "YES". When link state does go UP, IPv4 initializes immediately due to dhclient being called from devd (in either 802.11 or Ethernet situations) e.g. /etc/devd.conf relevant lines: media-type "ethernet"; action "/etc/rc.d/dhclient start $subsystem"; media-type "802.11"; action "/etc/rc.d/dhclient start $subsystem"; IPv6 RA may be received either immediately (if you are lucky), or after upto a 10 minute wait depending on timing. The leaves the link in an indeterminate state for a random (0 seconds to 600 seconds) period of time for IPv6 connectivity. The solution is clearly spelled out in RFC 2461 (6.3.7): 6.3.7. Sending Router Solicitations When an interface becomes enabled, a host may be unwilling to wait for the next unsolicited Router Advertisement to locate default routers or learn prefixes. To obtain Router Advertisements quickly, a host SHOULD transmit up to MAX_RTR_SOLICITATIONS Router Solicitation messages each separated by at least RTR_SOLICITATION_INTERVAL seconds. Router Solicitations may be sent after any of the following events: - The interface is initialized at system startup time. - The interface is reinitialized after a temporary interface failure or after being temporarily disabled by system management. - The system changes from being a router to being a host, by having its IP forwarding capability turned off by system management. - The host attaches to a link for the first time. - The host re-attaches to a link after being detached for some time. Proposal (1) - Try to get IPv6 initialization timing to ~ parity with IPv4 initialization by calling rtsol at same or similar times as dhclient is being called. - Create /etc/rc.d/rtsol script that checks for disabled ipv6, and other rc.conf vars then calls /sbin/rtsol e.g. ipv6_enabled rcvar and ipv6_network_interfaces rcvar, rtsol_fl= ags - Add devd.conf action lines for new /etc/rc.d/rtsol script for both Ethernet and 802.11 types - I *think* devd.conf entries are preferable to running rtsold in the background having it watch for link-up events. - This also applies to situations like roaming wi-fi, and devd should do nicely here, and should allow seemlessly moving from one ipv6 prefix to another (in the case where one 802.11 AP is on one /64 prefix, and a different 802.11 AP may be on another /64 prefix) =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Issue (2): In a multihomed network interface environment, rtsol will only be called on the first interface in the list during boot sequence due to a perception that there *may* be problems. See network.subr in network6_interface_setup(), specifically "rtsol $1" and comments rather than "rtsol $rtsol_interfaces" Example (2): Laptop has both Ethernet and WiFi network interfaces, and appropriate rc.conf entries to make them both attempt to start at boot, and ipv6_enable rcvar is "YES". In my case, this would be bfe0 and iwn0 (realy wlan0 in -current, as iwn0 can not be used). Ethernet cable is disconnected, but wifi does succeed in connecting. ifconfig -l returns bfe0 in the list before wlan0, so rtsol is called on the non-connected interface, but never called on wlan0. dhclient is called on wlan0 properly however, so ipv4 initializes quickly, and ipv6 can take some time (0 - 600 seconds). Proposal (2): Investigate in what cases it would be acceptable and prudent to initialize all potential ipv6 interface (e.g. $rtsol_interfaces). /sbin/rtsol already works properly if called with multiple interfaces. >> What: add devd.conf entries, create /etc/rc.d/rtsol script (ala >> dhclient script), modify network.subr, update man 5 rtsol > > This sounds like a significant change so I would like to see a > thorough justification for it before it goes in, and it will need > thorough testing to make sure that there are no regressions. > I absolutely agree. This will need to be thoroughly tested. >> Discussion point: =A0There is a comment in network.subr, and in man 5 >> rtsol about multihomed connections not being appropriate for rtsol >> >> I read through RFC 2461 and 2462, and while it does list multihomed >> issues in appendix A of RFC 2461, it does not have any "MUST NOT" or >> "SHOULD NOT" language around router solicitations with respect to >> multihomed ipv6 systems. =A0(Someone, please correct me if I am wrong >> here, or if there is some other RFC that applies) =A0The multihomed >> issue is more around IPv6 autoconfiguration in general, not specific >> to soliciting for a router. =A0Since FreeBSD already allows for IPv6 >> autoconfiguration on multihomed ipv6 systems (just without calling >> rtsol on multiple interfaces), I would think that this is really a >> non-issue for rtsol. > > My main concern would be making sure that the routing issues > (particularly default routes for the various interfaces) don't end up > with regressions. In general I agree with the concern that RA isn't > really designed for use in a multihomed environment. That said, there > aren't really any good multihome solutions in any case, so as long as > this doesn't break anything I'm not opposed to giving it a go. > > I need to do some more investigation, but from what I can tell FreeBSD alre= ady works in multihomed IPv6 RA environment, there is just the issue of waiting= for an RA, or soliciting via rtsol. I also need to look at this on 7.1-STABLE just to make sure that some of the things I am seeing are not -CURRENT spec= ific. -Thanks in advance. -_Dave > hth, > > Doug From owner-freebsd-net@FreeBSD.ORG Sat Mar 7 18:36:19 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6B6C6106566C for ; Sat, 7 Mar 2009 18:36:19 +0000 (UTC) (envelope-from bounces@apoteelia.net) Received: from mail.apoteelia.net (mail.apoteelia.net [91.184.56.170]) by mx1.freebsd.org (Postfix) with ESMTP id 3613E8FC14 for ; Sat, 7 Mar 2009 18:36:19 +0000 (UTC) (envelope-from bounces@apoteelia.net) Received: by mail.apoteelia.net (Postfix, from userid 0) id 4866E1ECFC70; Sat, 7 Mar 2009 19:10:23 +0100 (CET) To: freebsd-net@freebsd.org Recieved: Date: Sat, 7 Mar 2009 19:10:23 +0100 From: Bettina Schmidtberger Message-ID: <21e0a27848ad0c3f7923bfc3c9001c68@localhost.localdomain> X-Priority: 3 X-MessageID: 5 X-ListMember: freebsd-net@freebsd.org Errors-To: bounces@apoteelia.net MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" Subject: RE: Der versprochene Geheimtipp X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Mar 2009 18:36:19 -0000 Hi Du! Wie ich es Dir versprochen habe, wollte ich Dir ja noch die Adresse sagen wo wir die Dinger bestellt haben. Gibt ja viele Seiten wo man echt nur übers Ohr gehauen wird. Aber bei der Adresse bekommen wir immer nur Originalware und das innheralb kürzester Zeit zugeschickt. Mit dem Zoll hatten wir da auch nie Probleme, da der Versand direkt aus Europa erfolgt. Klasse oder? Also hier nun die Adresse: http://www.apoteelia.net Viel Spass wünsch ich Dir und das es gut funktioniert! Gruß, Deine Bettina . . - . . . . . . . . . . : . Gib Acht! Man hatte dir eingeredet, du hättest es schwer, dein Leben sei verpfuscht, das Leben sei eine Schuld, sei schlecht, ohne Sinn, ohne Wert; man wollte dich ducken, dich in die große Armee der Leidenden schmuggeln, du solltest bemitleidenswert werden und bemitleiden: und du glaubtest ihnen – wie ungern! – und wieder nicht – wie gern! Denn du bist stark, aber warst krank – wo? wie? was weiß ich. Und deine Sehnsucht war, herauszukommen aus allen diesen müden Verneinungen, diesen törichten Formeln, die im Nein ihr Ja haben, diesen tönenden Wissenschaften, diesen Worten –. Deswegen sprangst du von Buch zu Buch, spieltest mit ihren Formeln und ließest sie wieder fallen, die Neins und Wenns, um selber eine zu finden, aber ein Ja! sollte sie klingen – denn du wolltest leben! Aber nicht wie der Pöbel lebt – einen Grund, ein Ziel, eine Lebensformel suchtest du. Nun, hier ist sie: Weißt du: das Himmelsweinglas, das du ausschlürfen wolltest – – nun niete dir die Formel: Die Welt schaffst du. Du vergeistigst das Chaos zur Welt; das Andere, das Noch-nicht-Du, das alte Ding an sich, ist nur das, was von dir noch nicht geschaffen, vermenschlicht, noch nicht dein Eigentum geworden ist. – Du schaffst die Welt: nun lebe, lebe! – Die kleine blaue Blume läutete so froh und stark – warum soll ich ihr nicht glauben? Und dann bin ich baden gegangen – – – und habe stundenlang im Grase gelegen; und während die weißen Wolken durch den Himmel segelten und der Fluß geruhig durch Schilfduft und Ried und schwatzendes Vogelvolk hinströmte, habe ich das Ding an sich, den Intellekt und den Willen verlacht und mir ein Ich-weiß-nicht-was? gewünscht. Gegen Abend entstiegen Schwärme von Eintagsfliegen dem Fluß, an den Gräsern, Halmen und Pfosten kletterten sie hoch und warfen aus der Hülle sich in die Luft zum kurzen Hochzeitsleben. Die Luft war weiß über den Wassern von den auf und nieder tanzenden Massen – und die sinkende Sonne in dem Höhenrauch, den der Nordwind gebracht hatte, rot wie ein Rubin: das hätte mich fast bezwungen, daß ich schon begann, die stundenkurze Existenz der Imago zu beklagen und daran sentimentale Folgerungen zu knüpfen – aber da hörte ich den Enzian läuten und ich lachte: Das Tier freut sich jahrelang seines Räuberlebens, und dieser Liebesflug ist sein taumelnder Höhepunkt. Es lebe das Leben und seine ewige Brücke: Venus genetrix! Vor acht Tagen hätte ich ihr geflucht und geklagt: Was ist das Leben? So ist das Leben: es fließt dahin wie Wellenschaum, kommt u