From owner-freebsd-isp Sun Dec 22 2:14:28 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7FD1237B401 for ; Sun, 22 Dec 2002 02:14:27 -0800 (PST) Received: from alpha.kibernet.si (alpha.kibernet.si [213.161.12.132]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4E6BA43EE6 for ; Sun, 22 Dec 2002 02:14:26 -0800 (PST) (envelope-from maddave@suxx.eu.org) Received: from spider.suxx.eu.org (unknown [194.249.141.2]) by alpha.kibernet.si (Postfix) with ESMTP id A08975D007 for ; Sun, 22 Dec 2002 11:15:52 +0100 (CET) Received: by spider.suxx.eu.org (Postfix, from userid 1000) id 7D1733262C; Sun, 22 Dec 2002 11:22:20 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by spider.suxx.eu.org (Postfix) with ESMTP id 4DABD32618; Sun, 22 Dec 2002 11:22:20 +0100 (CET) Date: Sun, 22 Dec 2002 11:22:19 +0100 (CET) From: David Delibasic To: Evren Yurtesen Cc: Walter Hop , Subject: Re: wi0 pppoe client In-Reply-To: Message-ID: <20021222111050.Y67266-100000@spider.suxx.eu.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, 22 Dec 2002, Evren Yurtesen wrote: > 800kbytes/s? it is impossible, the cards are full duplex 11mbit, you can > only use 5.5mbit/s in one way. Or at least thats what the people told me > when I said why I can only ue 5mbit/s OK, maybe it was just a peak. The speed would probably drop down later. > I got better results when I put the cards closer, I had about 590kbytes/s > But 800?! how can that be possible? Did you have any kind of compression? No. First i had WEP crypto turned on, and results were not very good. Then i turned WEP off and used IPSEC. The results you are getting are normal. I tested it with 2 YAGI antennas at distance of 100-150 meters and it worked just...great :) > I dont have encryption on the link. It is kind of funny though that > closing some compression stuff actually improved the link quality > although compression was not in use I think that cards aren't really capable of doing WEP at full speed, and i was really suprised when i turned WEP off. If you want encrypted link, try setting up IPSEC. It worked for me. You can also setup some kind of compression with IPSEC. David To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sun Dec 22 16:36:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3DABC37B401 for ; Sun, 22 Dec 2002 16:36:30 -0800 (PST) Received: from pendragon.tacni.net (radius.tacni.net [64.247.218.2]) by mx1.FreeBSD.org (Postfix) with SMTP id A9EBC43EE5 for ; Sun, 22 Dec 2002 16:36:29 -0800 (PST) (envelope-from tom.oneil@tacni.com) Received: (qmail 3900 invoked by alias); 23 Dec 2002 00:36:18 -0000 Received: from unknown (HELO tacni.com) (66.190.75.60) by pendragon.tacni.net with SMTP; 23 Dec 2002 00:36:18 -0000 Message-ID: <3E065A9E.2050301@tacni.com> Date: Sun, 22 Dec 2002 18:36:46 -0600 From: Tom ONeil User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.2.1) Gecko/20021130 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Free Subject: ipnat Cisco VPN problem Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Greetings all and happy holidays; I have a 4.5-STABLE FreeBSD box using ipfilter and ipnat as a firewall/NAT box. It only allows one Cisco VPN client at a time to connect unless external IP's are mapped one-to-one. It will attempt to make the port 500 connection but does not seem to be assigning/allowing variable port after the first one connects using port 10000. I suspect this is because of the ipnat rule map fxp0 192.168.1.0/24 -> xxx.xxx.xxx.xxx/32 that is sending all the traffic through one IP. I opened up the rules completely to eliminate that as a possibility. I confess much of this I am regurgitating from the Cisco docs, but (of course) the firewall guy is on vacation........ Using trafshow I can see the attempted connections on port 500. Directions, FAQ's, requests for more info, etc. all welcome. These are the VPN rulesets in place now; # Inbound pass in quick on fxp0 proto tcp from any to any port = 1723 flags S keep state pass out quick on fxp0 proto tcp from any to any port = 1723 flags S keep state pass in quick on fxp0 proto 47 from any to any pass out quick on fxp0 proto 47 from any to any pass in quick on fxp0 proto 50 from any to any pass out quick on fxp0 proto 50 from any to any pass in quick on fxp0 proto 51 from any to any pass out quick on fxp0 proto 51 from any to any pass in quick on fxp0 proto udp from any port = 500 to any port = 500 pass out quick on fxp0 proto udp from any port = 500 to any port = 500 ## Outgoing VPN Rules pass in quick on fxp1 proto tcp from any to any port = 1723 flags S keep state pass out quick on fxp1 proto tcp from any to any port = 1723 flags S keep state pass in quick on fxp1 proto 47 from any to any pass out quick on fxp1 proto 47 from any to any pass in quick on fxp1 proto esp from any to any pass out quick on fxp1 proto esp from any to any pass in quick on fxp1 proto ah from any to any pass out quick on fxp1 proto ah from any to any pass in quick on fxp1 proto ipencap from any to any pass out quick on fxp1 proto ipencap from any to any pass in quick on fxp1 proto udp from any port = 500 to any port = 500 pass out quick on fxp1 proto udp from any port = 500 to any port = 500 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Dec 26 14:36:41 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B005737B401; Thu, 26 Dec 2002 14:36:40 -0800 (PST) Received: from fragma.wildcardinternet.co.uk (fragma.wildcardinternet.co.uk [195.82.114.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1144F43ED8; Thu, 26 Dec 2002 14:36:36 -0800 (PST) (envelope-from j.a.mcguire@i-benefit.co.uk) Received: from pam80-1-23-92.man.dial.ntli.net ([80.1.23.92] helo=i-benefit.co.uk) by fragma.wildcardinternet.co.uk with esmtp (Exim 3.35 #1) id 18RgcF-0005SB-00; Thu, 26 Dec 2002 22:36:35 +0000 Message-ID: <3E0B8479.5000907@i-benefit.co.uk> Date: Thu, 26 Dec 2002 22:36:41 +0000 From: James McGuire User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org, freebsd-isp@freebsd.org Subject: linking nss_ldap against bind irs Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Has anyone managed to get LDAP authentication working on FreeBSD with the pam_ldap and nss_ldap modules? pam_ldap is no problem, but I've heard that nss_ldap will run using a libc linked against the BIND IRS.. Has anyone managed to do this? If so how did you go about it? Any info much appreciated. Thanks in advance James To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Thu Dec 26 14:51: 8 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A223A37B401 for ; Thu, 26 Dec 2002 14:51:06 -0800 (PST) Received: from mx01.britesite.net (mx01.britesite.net [63.175.65.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 04B9143F60 for ; Thu, 26 Dec 2002 14:51:05 -0800 (PST) (envelope-from lanshark@bsinet.net) Received: (qmail 60460 invoked from network); 26 Dec 2002 22:50:55 -0000 Received: from unknown (HELO station9) ([63.175.65.23]) (envelope-sender ) by mx01.britesite.net (qmail-ldap-1.03) with SMTP for ; 26 Dec 2002 22:50:55 -0000 Message-ID: <009401c2ad31$e1f27040$1701a8c0@britesite.net> From: "Edward Shabotinsky" To: References: <3E0B8479.5000907@i-benefit.co.uk> Subject: Re: linking nss_ldap against bind irs Date: Thu, 26 Dec 2002 16:55:27 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Just my 5 cents look under /compat/linux/libs there is some libs for nss, may be you can use that if you compile nss_ldap under linux compat. ------------------------------------- Edward Shabotinsky eshabot@bsinet.net Systems Engineer BsiNet Inc. www.bsinet.net 773-772-7300 ------------------------------------- ----- Original Message ----- From: "James McGuire" To: ; Sent: Thursday, December 26, 2002 4:36 PM Subject: linking nss_ldap against bind irs > Has anyone managed to get LDAP authentication working on FreeBSD with the > pam_ldap and nss_ldap modules? > > pam_ldap is no problem, but I've heard that nss_ldap will run using a libc > linked against the BIND IRS.. Has anyone managed to do this? If so how did you go about it? Any info much appreciated. > > Thanks in advance > > James > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Dec 27 9: 4:57 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 49CF337B401 for ; Fri, 27 Dec 2002 09:04:56 -0800 (PST) Received: from usenet.isot.com (usenet.isot.com [63.161.224.13]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9C08643ED1 for ; Fri, 27 Dec 2002 09:04:55 -0800 (PST) (envelope-from freebsd@isot.com) Received: (from www@localhost) by usenet.isot.com (8.11.6/8.11.6) id gBRH9eH99421 for freebsd-isp@freebsd.org; Fri, 27 Dec 2002 11:09:40 -0600 (CST) (envelope-from freebsd@isot.com) X-Authentication-Warning: usenet.isot.com: www set sender to freebsd@isot.com using -f Received: from 64.123.132.32 ( [64.123.132.32]) as user freebsd@isot.com by webmail.isot.com with HTTP; Fri, 27 Dec 2002 11:09:40 -0600 Message-ID: <1041008980.3e0c895485a0b@webmail.isot.com> Date: Fri, 27 Dec 2002 11:09:40 -0600 From: itchibahn To: freebsd-isp@freebsd.org Subject: user quota MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1-cvs X-Originating-IP: 64.123.132.32 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I am running Freebsd4.7 and sendmail. I want to setup user's mail box quota. Anybody know how, please let me know. Thank you, Amy ------------------------------------------------- This mail sent through ISOT. To find out more about ISOT, visit http://isot.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Dec 27 9:12:40 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2A39437B401 for ; Fri, 27 Dec 2002 09:12:40 -0800 (PST) Received: from mtiwmhc12.worldnet.att.net (mtiwmhc12.worldnet.att.net [204.127.131.116]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6236C43EB2 for ; Fri, 27 Dec 2002 09:12:39 -0800 (PST) (envelope-from cswiger@mac.com) Received: from sec.local ([12.88.92.197]) by mtiwmhc12.worldnet.att.net (InterMail vM.5.01.05.12 201-253-122-126-112-20020820) with ESMTP id <20021227171238.QPZR12483.mtiwmhc12.worldnet.att.net@sec.local> for ; Fri, 27 Dec 2002 17:12:38 +0000 Received: from mac.com (prime.local [192.168.1.3]) by sec.local (8.12.6/8.12.6) with ESMTP id gBRHCQJX000247 for ; Fri, 27 Dec 2002 12:12:27 -0500 (EST) (envelope-from cswiger@mac.com) Message-ID: <3E0C8A05.7060805@mac.com> Date: Fri, 27 Dec 2002 12:12:37 -0500 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01 X-Accept-Language: en-us, en MIME-Version: 1.0 Cc: freebsd-isp@FreeBSD.ORG Subject: Re: user quota References: <1041008980.3e0c895485a0b@webmail.isot.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org itchibahn wrote: > I am running Freebsd4.7 and sendmail. I want to setup user's mail box quota. > Anybody know how, please let me know. Yes: set up filesystem quotas via quotactl for /var, which can limit the size of each user's INBOX (in /var/mail/$user). -Chuck To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Fri Dec 27 19:11:18 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E806137B401 for ; Fri, 27 Dec 2002 19:11:17 -0800 (PST) Received: from fragma.wildcardinternet.co.uk (fragma.wildcardinternet.co.uk [195.82.114.65]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1195743ED1 for ; Fri, 27 Dec 2002 19:11:17 -0800 (PST) (envelope-from lee@wildcardinternet.co.uk) Received: from ded.internal.wildcardinternet.co.uk ([194.222.162.198] helo=wildcardinternet.co.uk) by fragma.wildcardinternet.co.uk with esmtp (Exim 3.35 #1) id 18S7Nc-0007qV-00 for freebsd-isp@freebsd.org; Sat, 28 Dec 2002 03:11:16 +0000 Received: from [10.0.0.3] (helo=gate) by wildcardinternet.co.uk with smtp (Exim 3.36 #1) id 18S7NW-0000HD-00 for freebsd-isp@freebsd.org; Sat, 28 Dec 2002 03:11:10 +0000 From: "Lee Johnston" To: Subject: LDAP+FreeBSD+BIND IRS Date: Sat, 28 Dec 2002 03:11:16 -0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi there, I'm currently in the progress of setting up a box to authenticate users against an LDAP database using pam_ldap and also use nss_ldap for session management. Just wondering if anyone has successfully done this, the suggested way seems to be by using BIND IRS. But has anyone managed to even get BIND IRS working correctly in FreeBSD? Thanks, Lee. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message From owner-freebsd-isp Sat Dec 28 1:38:53 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1791B37B401 for ; Sat, 28 Dec 2002 01:38:52 -0800 (PST) Received: from flash.mipk-kspu.kharkov.ua (flash.mipk-kspu.kharkov.ua [194.44.157.113]) by mx1.FreeBSD.org (Postfix) with ESMTP id 780B843ED1 for ; Sat, 28 Dec 2002 01:38:48 -0800 (PST) (envelope-from artem@mipk-kspu.kharkov.ua) Received: from mipk-kspu.kharkov.ua (rainbow.mipk-kspu.kharkov.ua [192.168.9.241]) by flash.mipk-kspu.kharkov.ua (8.12.6/8.12.6) with ESMTP id gBS9aL61020876 for ; Sat, 28 Dec 2002 11:36:48 +0200 (EET) (envelope-from artem@mipk-kspu.kharkov.ua) Message-ID: <3E0D7094.7070404@mipk-kspu.kharkov.ua> Date: Sat, 28 Dec 2002 11:36:20 +0200 From: "Artyom V. Viklenko" Organization: IIAT NTU "KhPI" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: ru, uk, en MIME-Version: 1.0 Cc: freebsd-isp@FreeBSD.ORG Subject: Re: user quota References: <1041008980.3e0c895485a0b@webmail.isot.com> <3E0C8A05.7060805@mac.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Chuck Swiger wrote: > itchibahn wrote: > >> I am running Freebsd4.7 and sendmail. I want to setup user's mail box >> quota. Anybody know how, please let me know. > > > Yes: set up filesystem quotas via quotactl for /var, which can limit the > size of each user's INBOX (in /var/mail/$user). > > -Chuck If you use sendmail, add something like this to your .mc file: define(`LOCAL_MAILER_ARGS',`mail.local -l -b')dnl If user's mailbox under disk quota, sendmail will return error to sender. Without option -b this error is nonfatal and sendmail will try to deliver message to user up to 5 days (or what configured in you config). -- Sincerely yours, Artyom V. Viklenko. ====================================================== System Administrator artem@mipk-kspu.kharkov.ua ------------------------------------------------------ IIAT NTU "KhPI" 21, Frunze Str., Kharkov Ukraine 61002 Phone: +380 (572) 400026 Fax: +380 (572) 474062 ====================================================== To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message