From owner-freebsd-net Mon Sep 13 16:12:46 1999 Delivered-To: freebsd-net@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 758) id 35DDC15070; Mon, 13 Sep 1999 16:12:45 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by hub.freebsd.org (Postfix) with ESMTP id 2C8D11CD438; Mon, 13 Sep 1999 16:12:45 -0700 (PDT) (envelope-from kris@hub.freebsd.org) Date: Mon, 13 Sep 1999 16:12:45 -0700 (PDT) From: Kris Kennaway To: Grzegorz Malinka Cc: freebsd-net@FreeBSD.org Subject: Re: pppd+tacacs In-Reply-To: <018901befb69$444960b0$fadbf4d4@shaker.demo.pl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Fri, 10 Sep 1999, Grzegorz Malinka wrote: > Where can I find a pppd deamon with tacacs support for BSD? I don't really know what tacacs does, but I've seen it referenced as a PAM module. pppd will (theoretically) work with PAM, although possibly not the version currently in the base tree. I've got some mostly-finished patches to update our in-tree pppd to 2.3.9 (which was the latest version at the time), but it compiles out-of-the box if you grab the code yourself. You can probably get something working with PAM and a tacacs PAM module (look on www.us.kernel.org, I couldn't find the exact URL of the page with all the modules listed). Good luck! Kris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Sep 13 22: 3:57 1999 Delivered-To: freebsd-net@freebsd.org Received: from ritchie.wplus.net (relay.wplus.net [195.131.52.179]) by hub.freebsd.org (Postfix) with ESMTP id 9A696151A9; Mon, 13 Sep 1999 22:03:48 -0700 (PDT) (envelope-from dms@woland.wplus.net) Received: from woland.wplus.net (woland.wplus.net [195.131.0.39]) by ritchie.wplus.net (8.9.1/8.9.1/wplus.2) with ESMTP id JAA20210; Tue, 14 Sep 1999 09:03:43 +0400 (MSK/MSD) X-Real-To: maliniak@demo.pl Received: (from dms@localhost) by woland.wplus.net (8.9.2/8.9.1/wplus.2) id JAA20222; Tue, 14 Sep 1999 09:03:41 +0400 (MSD) Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: Date: Tue, 14 Sep 1999 09:03:41 +0400 (MSD) From: Dmitry Samersoff To: Kris Kennaway Subject: Re: pppd+tacacs Cc: freebsd-net@FreeBSD.ORG, Grzegorz Malinka Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On 13-Sep-99 Kris Kennaway wrote: > On Fri, 10 Sep 1999, Grzegorz Malinka wrote: > >> Where can I find a pppd deamon with tacacs support for BSD? > > I don't really know what tacacs does, but I've seen it referenced as a PAM > module. pppd will (theoretically) work with PAM, although possibly not the > version currently in the base tree. Tacacs is authorisation server(protocol) with MD5 encription, well supported by CISCO's and others hardware, another kind of such software is Radius. It's good idea to add better (native) support of remote authorization by ether Tacacs or Radius or both protocol to FreeBSD. --- Dmitry Samersoff, dms@wplus.net, ICQ:3161705 http://devnull.wplus.net * There will come soft rains ... To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Sep 14 11:42:38 1999 Delivered-To: freebsd-net@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 758) id 8CE4F155F4; Tue, 14 Sep 1999 11:42:02 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by hub.freebsd.org (Postfix) with ESMTP id 751011CD48A; Tue, 14 Sep 1999 11:42:02 -0700 (PDT) (envelope-from kris@hub.freebsd.org) Date: Tue, 14 Sep 1999 11:42:02 -0700 (PDT) From: Kris Kennaway To: Dmitry Samersoff Cc: freebsd-net@FreeBSD.ORG, Grzegorz Malinka Subject: Re: pppd+tacacs In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 14 Sep 1999, Dmitry Samersoff wrote: > Tacacs is authorisation server(protocol) with MD5 encription, well > supported by CISCO's and others hardware, another kind of such > software is Radius. Yep, I knew this much from reading cisco documentation :) > It's good idea to add better (native) support of remote authorization > by ether Tacacs or Radius or both protocol to FreeBSD. We already have native support, by means of the appropriate PAM module. pam_radius is in the base tree, I don't think pam_tacacs is, but it should just be a matter of compiling the module referenced on the linux-pam homepage. Kris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Sep 14 20:11: 3 1999 Delivered-To: freebsd-net@freebsd.org Received: from buk.planetary.org (CBL-jehamby.hs.earthlink.net [207.217.174.211]) by hub.freebsd.org (Postfix) with ESMTP id 86ED514DBF; Tue, 14 Sep 1999 20:10:52 -0700 (PDT) (envelope-from jehamby@anobject.com) Received: from laptop ([10.0.0.110]) by buk.buk.org (8.9.3/8.8.8) with SMTP id UAA07481; Tue, 14 Sep 1999 20:09:19 -0700 (PDT) (envelope-from jehamby@anobject.com) Message-ID: <000501beff27$a3aec560$6e00000a@buk.org> From: "Jake Hamby" To: , , Cc: Subject: Dell Inspiron 3500 with 3CCFE575-BT running Win98 SE won't talk to FreeBSD on LAN Date: Tue, 14 Sep 1999 20:08:52 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I just got a new Dell Inspiron 3500 laptop (running Windows 98 SE and the latest drivers from the Dell site) and have been having a very strange problem getting it to talk to our FreeBSD gateway on our apartment's 100Base-TX LAN. If the only computers on the LAN are the FreeBSD server (originally running 3.2-STABLE, now upgraded to 3.3-RC with the same problem), then I can't ping or connect to the FreeBSD box. Sometimes after many minutes, the connection mysteriously comes up, but this is rare. However, if there's another machine on the LAN (in particular, if I boot up my Linux desktop), everything starts working immediately. I've tried to run a packet sniffer to see what's going on, but I can't run anything on the FreeBSD box (I tried sniffit, but it dumped core immediately, perhaps an incompatibility with natd, dhcpd, or the DE21140 chipset Ethernet card?). If I run sniffit on Linux, then everything seems normal, but as I've mentioned, the mere presence of Linux on the LAN causes everything to work anyway. I've looked for info on the Dell site, the 3Com site, and the Microsoft site, but to no avail. If this is a bug on the laptop end, then it only seems to affect FreeBSD. Any info you can give on how to fix this, or how to produce more debugging info, would be greatly appreciated. TIA! Here's some more info on the hardware in use: Laptop: Dell Inspiron 3500 3Com 3CCFE575-BT card Windows 98 SE Hub: ETHER-DH8S (got at the computer show, don't know the brand, "Made in Taiwan") PC: generic Pentium-166 FreeBSD 3.3-RC Intel EtherExpress Pro connected to cable modem NetGear (Digital 21140A chipset) connected to hub -Jake Hamby To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 15 5:57:23 1999 Delivered-To: freebsd-net@freebsd.org Received: from dent.axion.bt.co.uk (dent.axion.bt.co.uk [132.146.16.161]) by hub.freebsd.org (Postfix) with ESMTP id DBE8715164; Wed, 15 Sep 1999 05:57:02 -0700 (PDT) (envelope-from antonio.herrera-alcantara@bt.com) Received: from cbtlipnt01.btlabs.bt.co.uk by dent (local) with ESMTP; Wed, 15 Sep 1999 13:55:02 +0100 Received: by cbtlipnt01.btlabs.bt.co.uk with Internet Mail Service (5.5.2448.0) id ; Wed, 15 Sep 1999 13:55:01 +0100 Message-ID: <97E01B170FC1D211B8EB0000F8FE9E07711651@mbtlipnt03.btlabs.bt.co.uk> From: antonio.herrera-alcantara@bt.com To: bt-freebsd-net@gideon.bt.co.uk, freebsd-questions@freebsd.org, freebsd-net@freebsd.org Subject: PCI devices missing in Gateway PCs. Date: Wed, 15 Sep 1999 13:54:45 +0100 Importance: high X-Priority: 1 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2448.0) Content-Type: text/plain Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dear all, I've just bought three Gateway GP7-500 PCs and I'm having problems to use FreeBSD with these machines because the OS doesn't seem to find the Network cards intalled in the PCI bus, neither the 3Com Etherlink 10/100 3C905c-TX (xl0) shipped with the PC nor the Intel EtherExpress 10/100+ (fxp0) that I have added myself. Has anyone come across the same problem?, any ideas to fix it?. I've pasted below the output of Dmesg. Thank you in advance. Antonio. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Sep 15 17: 3:42 1999 Delivered-To: freebsd-net@freebsd.org Received: from grafica.co.nz (prometheus.grafica.co.nz [203.96.151.13]) by hub.freebsd.org (Postfix) with ESMTP id BA12B153AA for ; Wed, 15 Sep 1999 17:03:39 -0700 (PDT) (envelope-from keith@grafica.co.nz) Received: from jfk (jfk.grafica.co.nz [192.168.2.189]) by grafica.co.nz (8.9.3/8.9.3) with SMTP id MAA21885 for ; Thu, 16 Sep 1999 12:06:14 +1200 (NZST) From: "Keith Newton" To: Subject: DEC 21143 and FreeBSD not the best of friends Date: Thu, 16 Sep 1999 12:03:20 +1200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I have a NEC Versa Note notebook which happens to have a built in ethernet card, a nice feature I thought. The ethernet card is a DEC 21143 card, I am quiet happy with the performance of this card under various other OS's and due to the inbuilt nature I am not really in a position to replace it, otherwise I would. So far I have tried FreeBSD versions 2.2.5, 2.2.8 3.0, 3.2 and 3.3 RC 19990909, no luck as of yet. I install FreeBSD and the installation goes fine, the card is recognized in the boot up and I even get the apparent autosense working. On my home network it autosense's 10baseT, this is correct. On my work network it autosense's 10baseT, this is way wrong. At work I am direct connected to a 10/100 switch, under other OS's I get 100M full duplex. I am sure that the card itself is fine as it works under Win9x, WinNT4 and Win2K. Here is a portion of my kernel boot sequence. Sep 16 09:36:27 jfk /kernel: Copyright (c) 1992-1999 FreeBSD Inc. Sep 16 09:36:27 jfk /kernel: Copyright (c) 1982, 1986, 1989, 1991, 1993 Sep 16 09:36:27 jfk /kernel: The Regents of the University of California. All rights reserved. Sep 16 09:36:27 jfk /kernel: FreeBSD 3.3-19990909-RC #0: Wed Sep 15 22:57:57 NZST 1999 Sep 16 09:36:27 jfk /kernel: root@jfk.grafica.co.nz:/usr/src/sys/compile/JFK Sep 16 09:36:27 jfk /kernel: Timecounter "i8254" frequency 1193182 Hz Sep 16 09:36:27 jfk /kernel: CPU: Celeron (331.58-MHz 686-class CPU) Sep 16 09:36:27 jfk /kernel: Origin = "GenuineIntel" Id = 0x66a Stepping = 10 Sep 16 09:36:27 jfk /kernel: Features=0x183f9ff Sep 16 09:36:27 jfk /kernel: real memory = 134217728 (131072K bytes) Sep 16 09:36:27 jfk /kernel: avail memory = 127766528 (124772K bytes) Sep 16 09:36:27 jfk /kernel: Preloaded elf kernel "kernel" at 0xc02ac000. Sep 16 09:36:27 jfk /kernel: Pentium Pro MTRR support enabled Sep 16 09:36:27 jfk /kernel: Probing for devices on PCI bus 0: Sep 16 09:36:27 jfk /kernel: chip0: rev 0x03 on pci0.0.0 Sep 16 09:36:27 jfk /kernel: vga0: rev 0x01 int a irq 5 on pci0.2.0 Sep 16 09:36:27 jfk /kernel: de0: rev 0x41 int a irq 10 on pci0.6.0 Sep 16 09:36:27 jfk /kernel: de0: 21143 [10-100Mb/s] pass 4.1 (invalid EESPROM checksum) Sep 16 09:36:27 jfk /kernel: de0: address 00:00:4c:ed:75:4a I have checked the mac address and it is being reported correctly so their is some talking between FreeBSD and the net card, also if I unplug the cable, I get a report of the cable being unplugged, then if I plug it in it gets picked up again, always as 10baseT though. The catch is though if I ping another valid ip address when at home or work on the same network I get ping: sendto: host down as the message. Here is the output of ifconfig -a if it's any help. de0: flags=8c43 mtu 1500 inet 192.168.2.189 netmask 0xffffff00 broadcast 192.168.2.255 ether 00:00:4c:ed:75:4a media: autoselect (10baseT/UTP) status: active supported media: autoselect 100baseTX 100baseTX 10baseT/UTP 10baseT/UTP tun0: flags=8010 mtu 1500 sl0: flags=c010 mtu 552 ppp0: flags=8010 mtu 1500 lo0: flags=8008 mtu 16384 Any suggestions would be much appreciated, I have tried to leave bothering you people as a last resort. Thanks in advance, Keith Newton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 16 7:35:25 1999 Delivered-To: freebsd-net@freebsd.org Received: from news.lucky.net (news.lucky.net [193.193.193.102]) by hub.freebsd.org (Postfix) with ESMTP id 5934814EB1 for ; Thu, 16 Sep 1999 07:35:19 -0700 (PDT) (envelope-from vovik@burka.carrier.kiev.ua) Received: (from mail@localhost) by news.lucky.net (8.Who.Cares/8.Who.Cares) id RAA04418; Thu, 16 Sep 1999 17:35:00 +0300 (envelope-from vovik@burka.carrier.kiev.ua) From: "Vladimir A. Jakovenko" To: freebsd-net@freebsd.org Subject: Re: pppd+tacacs Date: 14 Sep 1999 13:13:10 GMT Organization: Unknown Message-ID: <7rlhl6$jiu$1@news.lucky.net> References: X-Trace: news.lucky.net 937314790 20062 193.193.193.107 (14 Sep 1999 13:13:10 GMT) X-Complaints-To: usenet@news.lucky.net User-Agent: tin/pre-1.4-980226 (UNIX) (FreeBSD/2.2.6-RELEASE (i386)) Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Lines: 34 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Dmitry Samersoff wrote: > On 13-Sep-99 Kris Kennaway wrote: >> On Fri, 10 Sep 1999, Grzegorz Malinka wrote: >> >>> Where can I find a pppd deamon with tacacs support for BSD? >> >> I don't really know what tacacs does, but I've seen it referenced as a PAM >> module. pppd will (theoretically) work with PAM, although possibly not the >> version currently in the base tree. > Tacacs is authorisation server(protocol) with MD5 encription, well supported by > CISCO's and others hardware, another kind of such software is Radius. > It's good idea to add better (native) support of remote authorization by ether > Tacacs or Radius or both protocol to FreeBSD. FreeBSD as for 3.x (3.0 or 3.1) contains PAM modules for Tacacs+ and Radius. And at least Tacacs+ PAM module support only authentication (and doesn't support authorization and accounting). Standart pppd from FreeBSD 3.x can be compiled to use PAM (-DUSE_PAM), but I havn't tested how it work. If someone interested to extend FreeBSD libtacplus and Tacacs+ PAM module to support authorization and acounting pls mail me. > --- > Dmitry Samersoff, dms@wplus.net, ICQ:3161705 > http://devnull.wplus.net > * There will come soft rains ... -- Regards, Vladimir. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Sep 16 8:29:45 1999 Delivered-To: freebsd-net@freebsd.org Received: from ferao.jungle.bt.co.uk (ferao.jungle.bt.co.uk [132.146.107.45]) by hub.freebsd.org (Postfix) with ESMTP id 4945D15781 for ; Thu, 16 Sep 1999 08:28:53 -0700 (PDT) (envelope-from jtorrico@jungle.bt.co.uk) Received: from jungle.bt.co.uk ([132.146.112.7]) by ferao.jungle.bt.co.uk (8.9.1b+Sun/Jungle-8.9.1-03) with ESMTP id QAA11865 for ; Thu, 16 Sep 1999 16:24:54 +0100 (BST) Message-ID: <37E10DFF.BFC45665@jungle.bt.co.uk> Date: Thu, 16 Sep 1999 16:34:23 +0100 From: Jaime Gil X-Mailer: Mozilla 4.61 [en] (X11; I; FreeBSD 3.2-RELEASE i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: Re: pppd+tacacs References: <7rlhl6$jiu$1@news.lucky.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, I have tested RADIUS authentication in ppp successfully. They have a patch which deals with this kind of authentication protocol. It can be found in http://www.freebsd.org /~brian/ It uses a default library in freebsd (libradius) which can be used to build your own requests to a RADIUS server very easily. As for tacacs, no idea.... "Vladimir A. Jakovenko" wrote: > Dmitry Samersoff wrote: > > > On 13-Sep-99 Kris Kennaway wrote: > >> On Fri, 10 Sep 1999, Grzegorz Malinka wrote: > >> > >>> Where can I find a pppd deamon with tacacs support for BSD? > >> > >> I don't really know what tacacs does, but I've seen it referenced as a PAM > >> module. pppd will (theoretically) work with PAM, although possibly not the > >> version currently in the base tree. > > > Tacacs is authorisation server(protocol) with MD5 encription, well supported by > > CISCO's and others hardware, another kind of such software is Radius. > > > It's good idea to add better (native) support of remote authorization by ether > > Tacacs or Radius or both protocol to FreeBSD. > > FreeBSD as for 3.x (3.0 or 3.1) contains PAM modules for Tacacs+ and Radius. > And at least Tacacs+ PAM module support only authentication (and doesn't > support authorization and accounting). Standart pppd from FreeBSD 3.x can > be compiled to use PAM (-DUSE_PAM), but I havn't tested how it work. > > If someone interested to extend FreeBSD libtacplus and Tacacs+ PAM module to > support authorization and acounting pls mail me. > > > --- > > Dmitry Samersoff, dms@wplus.net, ICQ:3161705 > > http://devnull.wplus.net > > * There will come soft rains ... > > -- > Regards, > Vladimir. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message -- Jaime Gil work tel. (01473) 648635 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 17 7:52:34 1999 Delivered-To: freebsd-net@freebsd.org Received: from bingnet2.cc.binghamton.edu (bingnet2.cc.binghamton.edu [128.226.1.18]) by hub.freebsd.org (Postfix) with ESMTP id E2F6715168; Fri, 17 Sep 1999 07:52:29 -0700 (PDT) (envelope-from zzhang@cs.binghamton.edu) Received: from sol.cs.binghamton.edu (cs1-gw.cs.binghamton.edu [128.226.171.72]) by bingnet2.cc.binghamton.edu (8.9.3/8.9.3) with SMTP id KAA11222; Fri, 17 Sep 1999 10:52:29 -0400 (EDT) Date: Fri, 17 Sep 1999 10:38:24 -0400 (EDT) From: Zhihui Zhang To: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org Subject: Multiple routes to the same destination Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org As said by the 4.4 BSD book (page 423), 4.4 BSD does not support multiple routes to the same destination (identical key and mask). Does the radix tree code in FreeBSD - 4.0 has the same limitation? I am wondering if there is already a solution for this? Any help is appreciated. -------------------------------------------------- Zhihui Zhang. Please visit http://www.freebsd.org -------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Sep 17 14:43:58 1999 Delivered-To: freebsd-net@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 6B1DB15625 for ; Fri, 17 Sep 1999 14:43:49 -0700 (PDT) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id RAA53693; Fri, 17 Sep 1999 17:43:48 -0400 (EDT) (envelope-from wollman) Date: Fri, 17 Sep 1999 17:43:48 -0400 (EDT) From: Garrett Wollman Message-Id: <199909172143.RAA53693@khavrinen.lcs.mit.edu> To: net@freebsd.org Subject: RFC 1323 isn't broken Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Well, we finally figured out what the problem was with RFC 1323. As it turned out, the problem with the Tigon driver recently fixed by Bill Paul was the actual culprit. Because RFC 1323 options are sent in every packet, they caused some packets to be just large enough to trigger the ti driver bug which would not have been that size without the options. (For those of you using cvsup3.freebsd.org your connections should now stop hanging. Hopefully ftp5.freebsd.org will be completely updated by the end of the evening as well.) -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 18 22:20:19 1999 Delivered-To: freebsd-net@freebsd.org Received: from cs.rice.edu (cs.rice.edu [128.42.1.30]) by hub.freebsd.org (Postfix) with ESMTP id C736915049; Sat, 18 Sep 1999 22:20:13 -0700 (PDT) (envelope-from aron@cs.rice.edu) Received: (from aron@localhost) by cs.rice.edu (8.9.0/8.9.0) id AAA20766; Sun, 19 Sep 1999 00:20:12 -0500 (CDT) Date: Sun, 19 Sep 1999 00:20:12 -0500 (CDT) From: Mohit Aron Message-Id: <199909190520.AAA20766@cs.rice.edu> To: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org Subject: limit on number of sockets by zone allocator Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I was recently doing some throughput tests with the Apache webserver on FreeBSD-4.0. It seems that the recently introduced (after FreeBSD-2) zone allocator limits the maximum number of socket structures to about 8000 (I configured my kernel with 256 MAXUSERS). A busy webserver can have about 50000 connections primarily due to TCP's TIME-WAIT state (see http://cs-tr.cs.rice.edu/Dienst/UI/2.0/Describe/ncstrl.rice_cs/TR99-335/). A limit of 8000 on socket descriptors would thus prevent a webserver from achieving full throughput. Perhaps the maxsockets variable defined in sys/uipc_socket2.c should be increased. - Mohit To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Sep 18 22:44:35 1999 Delivered-To: freebsd-net@freebsd.org Received: from twilight.tpgi.com.au (twilight.tpgi.com.au [203.29.147.17]) by hub.freebsd.org (Postfix) with SMTP id 3616A14F9A for ; Sat, 18 Sep 1999 22:44:26 -0700 (PDT) (envelope-from chris@twilight.tpgi.com.au) Received: (qmail 5099 invoked by uid 1002); 19 Sep 1999 05:44:22 -0000 Message-ID: X-Mailer: XFMail 1.3 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 Date: Sun, 19 Sep 1999 15:44:22 +1000 (EST) Reply-To: chrisk@tpgi.com.au From: Chris Keladis To: freebsd-net@freebsd.org Subject: IPsec support in FreeBSD. Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi all, Was wondering what IPSec implementations are available for 3.[23]-STABLE ? I noticed KAME, but from what i read i didnt see anything about IPv4 support. Does anyone have any URLs? Thanks, Chris. ---------------------------------- Chris Keladis TPG Internet System Administrator E-Mail: Chris Keladis Local Date: 19-Sep-99 Local Time: 15:39:27 ---------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message