From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 10:47:30 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A180837B401; Sun, 6 Apr 2003 10:47:30 -0700 (PDT) Received: from out001.verizon.net (out001pub.verizon.net [206.46.170.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id A2BF943FBD; Sun, 6 Apr 2003 10:47:29 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.43.88]) by out001.verizon.net (InterMail vM.5.01.05.27 201-253-122-126-127-20021220) with ESMTP id <20030406174726.LQJG19613.out001.verizon.net@mac.com>; Sun, 6 Apr 2003 12:47:26 -0500 Message-ID: <3E906828.8060001@mac.com> Date: Sun, 06 Apr 2003 13:47:20 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20030406120112.I11095-100000@netmint.com> In-Reply-To: <20030406120112.I11095-100000@netmint.com> X-Enigmail-Version: 0.74.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out001.verizon.net from [129.44.43.88] at Sun, 6 Apr 2003 12:47:25 -0500 cc: Support cc: freebsd-stable@freebsd.org Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 17:47:31 -0000 Support wrote: [ ... ] > Now my question. I am trying to stress test a new Dell PowerEdge server > and find the limits of its hardware and my tuning. Here are the server > stats: > > * 2x Xeon 2.8 with SMP compiled, hyperthreading NOT compiled in kernel > * 4 GB of RAM, 8 GB of swap on Raid 1 (15K RPM drives) for speed > * User Data is on Raid 5 in a detached PowerVault Given your planned usage, and the type of hardware you've got, I'd like to redirect this thread to freebsd-isp as being more appropriate. Also, your configuration is suited for where the users will be doing mostly reads and not a lot of writes. If the users might be doing a lot of writes, you should use RAID-1,0 instead of RAID-5. > Contents of /boot/loader.conf: > > kern.ipc.maxsockets=32768 > kern.ipc.nmbclusters=32768 > kern.ipc.nmbufs=131072 > kern.ipc.nsfbufs=6656 > kern.ipc.shm_use_phys=1 > kern.maxfiles=32768 > kern.maxproc=8192 > kern.maxswzone=33554432 > kern.nbuf=16384 > kern.ncallout=32768 > kern.vm.kmem.size=268435456 > kern.vm.pmap.shpgperproc=2048 > net.inet.tcp.tcbhashsize=16384 > > Contents of /etc/sysctl.conf: > > kern.ip.somaxconn=4096 > vm.v_free_min=131072 > vm.v_free_target=262144 > vm.f_free_reserved=32768 > vm.v_free_severe=65536 > kern.ps_showallprocs=0 Given the amount of memory you have, things like ipc.shm_use_phys and vfs.vmiodirenable are a good idea. If this machine is primarily using the network for web traffic, see the section in "man tuning" about net.inet.tcp.sendspace and net.inet.tcp.recvspace in particular. However, I wouldn't change the vm sysctl settings blindly-- the VM system in FreeBSD does a really good job of self-tuning. > Some info from kernel config: > > maxusers 0 > options KVA_PAGES=512 > options NSWAPDEV=1 > (the rest is pretty much my hardware, firewall and other irrelevant stuff) However, possibly with a degree of self-contradictory advice :-), I'd set maxusers to a specific value like 256 or so. The notion of tuning kernel variables to the amount of memory on the _build_ system-- which is not always the same as the system which will be running the kernel-- doesn't strike me as the right thing to do, so I tend to set this to 64 or so by default, and then change it on a case-by-case basis as the need arises. Also, increase NSWAPDEV to at least two, so you at least have a possibility of adding more swap to a running system or for adding some in order to take down the primary swap area for some reason. [ ... ] > Any ideas? Comments? Is my tuning decent, or would you change anything > else? This server is to be a very loaded web/database server. How many simultaneous users do you expect? WWW hits per day, or pageviews (if you can distinguish)? Are you going to be using SSL, lots of virtual domains, any special apache modules? Logfile analysis needs? Also, what are you doing with the database; that is to say, which DB software are you going to use, and what is the DB to be used for? Is the data sensitive or important? If so, having a seperate DB server which is not Internet accessible but on a small local subnet (talking to a second NIC in the WWW server) would significantly improve the security aspects, and would also help balance site load in several regards. Specificly, disk I/O contention is likely to happen if the DB is expected to see any significant usage while the drives are busy serving up user files. That's aside from the fact that you really don't want to keep database files on RAID-5 storage in the first place, either-- keep the DB on RAID-1 or RAID-1,0 if you can: use some of that 15K swapspace if you need to. -- -Chuck From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 11:08:47 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6C6FB37B401 for ; Sun, 6 Apr 2003 11:08:47 -0700 (PDT) Received: from mandala-designs.com (rinpoche.mandala-designs.com [216.237.97.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9829143F75 for ; Sun, 6 Apr 2003 11:08:45 -0700 (PDT) (envelope-from lj@mandala-designs.com) Date: Sun, 6 Apr 2003 14:08:44 -0400 Message-Id: <200304061408.AA81592870@mandala-designs.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii From: "ljacobs " X-Sender: To: X-Mailer: Subject: FreeBSD as a firewall X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: lj@mandala-designs.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 18:08:47 -0000 Folks -- If you are using IPFW or IPFilter or PF as a packet filer/firewall on your FreeBSD system I am interested in hearing about your configuration and satisfaction with your setup. How did you make your dwecision? What type of hardware are you running this on? Do you have anything else running on that computer besides the firewall? Have you had any breakins in spite of this protection? Would you consider OpenBSD as an alternative for a firewall because of its security and ease of using and managing PF? Thanks for any comments. ________________________________________________________________ Sent via the WebMessaging system at mandala-designs.com From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:17:54 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3436637B401 for ; Sun, 6 Apr 2003 12:17:54 -0700 (PDT) Received: from netmint.com (netmint.com [207.106.21.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6A23443F85 for ; Sun, 6 Apr 2003 12:17:53 -0700 (PDT) (envelope-from support@netmint.com) Received: from netmint.com (localhost.netmint.com [127.0.0.1]) by netmint.com (8.12.6/8.12.5) with ESMTP id h36JHqp7019478 for ; Sun, 6 Apr 2003 15:17:52 -0400 (EDT) (envelope-from support@netmint.com) Received: from localhost (support@localhost) by netmint.com (8.12.6/8.12.3/Submit) with ESMTP id h36JHqDG019475 for ; Sun, 6 Apr 2003 15:17:52 -0400 (EDT) Date: Sun, 6 Apr 2003 15:17:52 -0400 (EDT) From: Support To: freebsd-isp@freebsd.org In-Reply-To: <3E906828.8060001@mac.com> Message-ID: <20030406145845.R18790-100000@netmint.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:17:54 -0000 [..clip..] > However, possibly with a degree of self-contradictory advice :-), I'd > set maxusers to a specific value like 256 or so. I will set it to 384 that the system already auto-defaults it to, unless someone can suggest why I should leave it at 0. Perhaps you guys should make it very clear in the manuals or LINT that autotuning only happens at boot time because there possibly is a perception that it auto-tunes on a running system. Even after I read all threads regarding this that I can find, I am still not sure what sysctl vars will be able to auto-tune at RUNTIME while the load creeps up. I am sure the important ones like nmbclusters and n/mbuf variables can't. So which can? > Also, increase NSWAPDEV to at least two, so you at least have a > possibility of adding more swap to a running system or for adding some > in order to take down the primary swap area for some reason. I probably will never need to increase swap without rebooting because there is no available disk space to do it. Is there a reason to make it 2 at the expense of losing KVA memory if you know that adding swap will entail a reboot (i.e. you can recompile kernel first)? > How many simultaneous users do you expect? WWW hits per day, or At the lower end 1500 to 2000 and possibly as high as 4000 established web connections at peak times at any given moment. And as little as 500 at off-peak times. The web traffic will split 25-30% dynamic PHP/Perl (75% of which will require DB interaction) and 70-75% pure file downloads. This will amount to millions of connections per day, so I think looking at it from the constant load point of view allowing for X many connections established is a better idea. > pageviews (if you can distinguish)? Are you going to be using SSL, lots > of virtual domains, any special apache modules? Logfile analysis needs? Yes to SSL (openssl, mod_ssl), yes to SSL virtual domains with their own IPs, yes to normal virtual domains with with their own IPs. I am thinking of running Apache modules for Perl and PHP but the problem is I can't maintain security and wrap the executed code with modules. Wrapcgi allows me to do that. I heard Apache 2 modules can be assigned user/group permissions which will essentiall make wrapcgi unnecessary, but I just don't know yet. Any advice with that? > Also, what are you doing with the database; that is to say, which DB MySQL for 90-95% and PostgreSQL for 5-10% of usage. The reason for going with 1 server instead of 2 is to create chunks of users per server and allow them to use unix sockets. As soon as load is too high, we just get another web/db server. Not sure what kind of usage the databases will see, most likely 80-85% reads and 15-20% writes. [...clip...] > up user files. That's aside from the fact that you really don't want to > keep database files on RAID-5 storage in the first place, either-- keep > the DB on RAID-1 or RAID-1,0 if you can: use some of that 15K swapspace > if you need to. Chuck, I understand what you're saying. Unfortunately, the decision to go with RAID 5 is financial. Is there concrete evidence that RAID 5 is absolutely terible for read/write access? It's been holding up pretty well in tests. Thanks, and please cc: me on replies. Andrew From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:21:29 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7731837B401 for ; Sun, 6 Apr 2003 12:21:29 -0700 (PDT) Received: from netmint.com (netmint.com [207.106.21.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id C0FAA43F85 for ; Sun, 6 Apr 2003 12:21:28 -0700 (PDT) (envelope-from support@netmint.com) Received: from netmint.com (localhost.netmint.com [127.0.0.1]) by netmint.com (8.12.6/8.12.5) with ESMTP id h36JLSp7019607 for ; Sun, 6 Apr 2003 15:21:28 -0400 (EDT) (envelope-from support@netmint.com) Received: from localhost (support@localhost) by netmint.com (8.12.6/8.12.3/Submit) with ESMTP id h36JLSOr019604 for ; Sun, 6 Apr 2003 15:21:28 -0400 (EDT) Date: Sun, 6 Apr 2003 15:21:28 -0400 (EDT) From: Support To: freebsd-isp@freebsd.org In-Reply-To: <20030406145845.R18790-100000@netmint.com> Message-ID: <20030406152046.X18790-100000@netmint.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:21:29 -0000 Small correction. > I am thinking of running Apache modules for Perl and PHP but the problem > is I can't maintain security and wrap the executed code with modules. > Wrapcgi allows me to do that. I heard Apache 2 modules can be assigned > user/group permissions which will essentiall make wrapcgi unnecessary, but I really meant to say suexec!!! Long day. :) > Thanks, and please cc: me on replies. Andrew From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:30:44 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 182F037B401 for ; Sun, 6 Apr 2003 12:30:44 -0700 (PDT) Received: from blue.centerone.com (blue.centerone.com [204.133.183.111]) by mx1.FreeBSD.org (Postfix) with ESMTP id 657B743F93 for ; Sun, 6 Apr 2003 12:30:43 -0700 (PDT) (envelope-from rf-list@centerone.com) Received: from DELIVERANCE-XP.centerone.com (ppp-168-253-13-120.den1.ip.ricochet.net [168.253.13.120]) by blue.centerone.com (8.9.3/8.9.3) with ESMTP id NAA04142 for ; Sun, 6 Apr 2003 13:53:35 -0600 Message-Id: <5.1.0.14.2.20030406125326.02edd078@mail.centerone.com> X-Sender: rf-list@mail.centerone.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 06 Apr 2003 13:28:05 -0600 To: From: Ralph Forsythe In-Reply-To: <200304061408.AA81592870@mandala-designs.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Subject: Re: FreeBSD as a firewall X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:30:44 -0000 I am using OpenBSD as my firewall, currently on 3.2, and will be 3.3 after it comes out and seems stable. I have been using it for a couple of years now and love it; and yes, the security of the system is a primary consideration, that and the fact that I can get a complete system up and configured in less time than it takes to get a pizza delivered. Performance is great as well, I've never seen the load go past 95% idle. One guy on the OBSD list tested it with I believe about 50,000 open states with a lot of bandwidth and it never went below 85% idle. That says something... Currently I have it on a P3-600 (overkill, but it's the only spare rackmount system I had) with one on-board ethernet and a 4-port Znyx 100-mbit card. Works great! FreeBSD will likely work well for a firewall, I just found PF on OpenBSD to be about the damn coolest thing I've used for it in a while (note: I have never used FBSD as a firewall, just for servers/workstations). - Ralph At 02:08 PM 4/6/2003 -0400, ljacobs wrote: >Folks -- > >If you are using IPFW or IPFilter or PF as a packet filer/firewall on your >FreeBSD system I am interested in hearing about your configuration and >satisfaction with your setup. How did you make your dwecision? What type >of hardware are you running this on? Do you have anything else running on >that computer besides the firewall? Have you had any breakins in spite of >this protection? Would you consider OpenBSD as an alternative for a >firewall because of its security and ease of using and managing PF? > >Thanks for any comments. > > >________________________________________________________________ >Sent via the WebMessaging system at mandala-designs.com > > > > >_______________________________________________ >freebsd-isp@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-isp >To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:40:46 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 21E9037B401 for ; Sun, 6 Apr 2003 12:40:46 -0700 (PDT) Received: from blue.centerone.com (blue.centerone.com [204.133.183.111]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6DAA843F93 for ; Sun, 6 Apr 2003 12:40:45 -0700 (PDT) (envelope-from rf-list@centerone.com) Received: from DELIVERANCE-XP.centerone.com (ppp-168-253-13-120.den1.ip.ricochet.net [168.253.13.120]) by blue.centerone.com (8.9.3/8.9.3) with ESMTP id OAA04590 for ; Sun, 6 Apr 2003 14:03:35 -0600 Message-Id: <5.1.0.14.2.20030406125652.015cbb10@mail.centerone.com> X-Sender: rf-list@mail.centerone.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 06 Apr 2003 13:35:54 -0600 To: freebsd-isp@freebsd.org From: Ralph Forsythe In-Reply-To: <3E906828.8060001@mac.com> References: <20030406120112.I11095-100000@netmint.com> <20030406120112.I11095-100000@netmint.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Subject: DB server config (was Re: load testing and tuning a 4GB RAM server) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:40:46 -0000 At 01:47 PM 4/6/2003 -0400, Chuck Swiger wrote: >Also, your configuration is suited for where the users will be doing >mostly reads and not a lot of writes. If the users might be doing a lot >of writes, you should use RAID-1,0 instead of RAID-5. ..... >Specificly, disk I/O contention is likely to happen if the DB is expected >to see any significant usage while the drives are busy serving up user >files. That's aside from the fact that you really don't want to keep >database files on RAID-5 storage in the first place, either-- keep the DB >on RAID-1 or RAID-1,0 if you can: use some of that 15K swapspace if you >need to. Well, this brings up some interesting points WRT a project I'm working on right now. As-is, the system will bring in about 2-4 gigs a day in raw data, which will get parsed out and stored in a database with various other information as to how it's sorted, etc. From there, a PHP site will access the database, figure out the sorting information, and present it to the user on request. Pretty simple so far... However in about a year, I expect the daily data input to exceed 35 gigs, with that extra data representing a lot of different things, but being presented to the user with basically the same interface. So... Writing to the database is probably best suited for Raid 0/1, but reading from it is best done on Raid 5, correct? The database will be MySQL, DB server will be FreeBSD. The system which takes in the data will be Linux (not my choice, it's a software issue) which will then push to the database over a dedicated 100mbit interface. Then there is the web server ... this will be FreeBSD as well, running Apache with PHP. Let's assume the web server and DB server are not having issues with RAM, have been tuned, etc. All web pages will be dynamic with PHP (all content is determined from the database), except for the style sheets and a few static graphics like logos and such. Initially the load will be low, but in peak times down the road I expect connections in the thousands potentially. There will be SSL on some parts, but it will be a tiny fraction of the normal traffic (i.e. commerce and registration stuff only). So what would be a better drive configuration for a system like this? My instinct is telling me a Raid0/1, since the majority of the traffic will be writes with the incoming data. A lot of that data might not be used for a given time period, but the idea is that it's all available 24/7, and archived for a period of time (yes I know, this also means a ridiculous amount of disk space, at least half a terabyte just for 2 weeks). The data pruning activities to remove old information could involve a lot of reads, but if I index it properly I think that will be minimal and will be spread out. I just had a thought about a master R/W DB server with Raid0/1 and a read-only slave on Raid5 that replicates for web access, but I'm not sure I'm gaining anything. The slave will still have to push just as much data to the drives, though replication might have benefits over normal database writes I'm not aware of... (MySQL tuning perhaps?) Anyone have any suggestions or expertise to share here? How would YOU build something like this? Thanks! -Ralph From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:43:39 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E989737B401; Sun, 6 Apr 2003 12:43:39 -0700 (PDT) Received: from mother.ludd.luth.se (mother.ludd.luth.se [130.240.16.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id E728943F85; Sun, 6 Apr 2003 12:43:37 -0700 (PDT) (envelope-from pantzer@ludd.luth.se) Received: from ludd.luth.se (skalman.campus.luth.se [130.240.197.52]) by mother.ludd.luth.se (8.11.6+Sun/8.9.3) with ESMTP id h36JhR817723; Sun, 6 Apr 2003 21:43:27 +0200 (MEST) Message-ID: <3E90835F.9020104@ludd.luth.se> Date: Sun, 06 Apr 2003 21:43:27 +0200 From: Mattias Pantzare User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.2.1) Gecko/20030217 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Chuck Swiger References: <20030406120112.I11095-100000@netmint.com> <3E906828.8060001@mac.com> In-Reply-To: <3E906828.8060001@mac.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org cc: Support cc: freebsd-stable@freebsd.org Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:43:40 -0000 > The notion of tuning kernel variables to the amount of memory on the > _build_ system-- which is not always the same as the system which will > be running the kernel-- doesn't strike me as the right thing to do, so I > tend to set this to 64 or so by default, and then change it on a > case-by-case basis as the need arises. That is why maxusers 0 will auto-size when the kernel _boots_. Not at buildtime. From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 12:53:58 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E2FA737B401 for ; Sun, 6 Apr 2003 12:53:58 -0700 (PDT) Received: from mother.ludd.luth.se (mother.ludd.luth.se [130.240.16.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id 72C0443F85 for ; Sun, 6 Apr 2003 12:53:57 -0700 (PDT) (envelope-from pantzer@ludd.luth.se) Received: from ludd.luth.se (skalman.campus.luth.se [130.240.197.52]) by mother.ludd.luth.se (8.11.6+Sun/8.9.3) with ESMTP id h36Jrs818816; Sun, 6 Apr 2003 21:53:54 +0200 (MEST) Message-ID: <3E9085D2.4020403@ludd.luth.se> Date: Sun, 06 Apr 2003 21:53:54 +0200 From: Mattias Pantzare User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.2.1) Gecko/20030217 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Support References: <20030406145845.R18790-100000@netmint.com> In-Reply-To: <20030406145845.R18790-100000@netmint.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: freebsd-isp@freebsd.org Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 19:53:59 -0000 Support wrote: > [..clip..] > > >>However, possibly with a degree of self-contradictory advice :-), I'd >>set maxusers to a specific value like 256 or so. > > > I will set it to 384 that the system already auto-defaults it to, unless > someone can suggest why I should leave it at 0. Perhaps you guys should > make it very clear in the manuals or LINT that autotuning only happens at > boot time because there possibly is a perception that it auto-tunes on a > running system. Even after I read all threads regarding this that I can > find, I am still not sure what sysctl vars will be able to auto-tune at > RUNTIME while the load creeps up. I am sure the important ones like > nmbclusters and n/mbuf variables can't. So which can? The sysctl vars that you can set will not auto-tune, that would be bad as that would destroy you setting. If a resource is auto-tuing then you set the limit with the sysctl. The autotuing of maxusers is based on your amount of RAM, that will not change while the system is running. From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 13:52:37 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7045037B401 for ; Sun, 6 Apr 2003 13:52:37 -0700 (PDT) Received: from pop018.verizon.net (pop018pub.verizon.net [206.46.170.212]) by mx1.FreeBSD.org (Postfix) with ESMTP id 85FCD43F75 for ; Sun, 6 Apr 2003 13:52:36 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.43.88]) by pop018.verizon.net (InterMail vM.5.01.05.27 201-253-122-126-127-20021220) with ESMTP id <20030406205235.KJQV1699.pop018.verizon.net@mac.com>; Sun, 6 Apr 2003 15:52:35 -0500 Message-ID: <3E90938D.2050307@mac.com> Date: Sun, 06 Apr 2003 16:52:29 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Support References: <20030406145845.R18790-100000@netmint.com> In-Reply-To: <20030406145845.R18790-100000@netmint.com> X-Enigmail-Version: 0.74.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at pop018.verizon.net from [129.44.43.88] at Sun, 6 Apr 2003 15:52:35 -0500 cc: freebsd-isp@freebsd.org Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 20:52:37 -0000 Support wrote: [ ... ] >> Also, increase NSWAPDEV to at least two, so you at least have a >> possibility of adding more swap to a running system or for adding some >> in order to take down the primary swap area for some reason. > > I probably will never need to increase swap without rebooting because > there is no available disk space to do it. Is there a reason to make it 2 > at the expense of losing KVA memory if you know that adding swap will > entail a reboot (i.e. you can recompile kernel first)? Aren't you using a Dell PowerEdge and hot-swappable drives? I also thought you mentioned you were using 15K drives for swap, which implies SCSI...probably 80-pin SCA form-factor, right? If you knew that the difference in KVA memory would be significant to your usage, then you could evaluate whether saving a couple of swap device slots is worth the loss of flexibility. Configuring a system without any tolerance for change is a little like Procrustes being too precise in measuring his own bed. :-) [ ... ] > At the lower end 1500 to 2000 and possibly as high as 4000 established web > connections at peak times at any given moment. And as little as 500 at > off-peak times. The web traffic will split 25-30% dynamic PHP/Perl (75% of > which will require DB interaction) and 70-75% pure file downloads. This > will amount to millions of connections per day, so I think looking at it > from the constant load point of view allowing for X many connections > established is a better idea. I'm not sure you measure "established" the same way I do. Do you mean you expect there to be 500 to 4000 active apache children all processing transactions 24-7, or do you mean you expect to see anywhere up to 4000 people using the site(s) at a time, clicking at whatever rate they'd use the site(s) during normal transactions? >> pageviews (if you can distinguish)? Are you going to be using SSL, lots >> of virtual domains, any special apache modules? Logfile analysis needs? > > Yes to SSL (openssl, mod_ssl), yes to SSL virtual domains with their own > IPs, yes to normal virtual domains with with their own IPs. As you noted, one can't do name-based virtual domains over SSL: each SSL site has to have it's own unique IP. How much of your traffic is going to be over SSL? You might want to look into getting a HI/FN crypto-accelerator card, particularly if you have lots of small/short SSL sessions rather than few longer ones. [ ... ] >> Also, what are you doing with the database; that is to say, which DB > > MySQL for 90-95% and PostgreSQL for 5-10% of usage. The reason for going > with 1 server instead of 2 is to create chunks of users per server and > allow them to use unix sockets. As soon as load is too high, we just get > another web/db server. Not sure what kind of usage the databases will see, > most likely 80-85% reads and 15-20% writes. You really want to run only one type of production database per machine; you're risking VM thrashing otherwise. > [...clip...] >> up user files. That's aside from the fact that you really don't want to >> keep database files on RAID-5 storage in the first place, either-- keep >> the DB on RAID-1 or RAID-1,0 if you can: use some of that 15K swapspace >> if you need to. > > Chuck, I understand what you're saying. Unfortunately, the decision to go > with RAID 5 is financial. Is there concrete evidence that RAID 5 is > absolutely terible for read/write access? Sure. Recent thread about iozone or bonnie on -stable, where someone was surprised to discover that writes to a normal (un-RAIDed) drive are considerably faster than writes to a RAID-5 array. Or check what your databases recommend in terms of disk layout for the DB files; they should discuss interactions/tuning with RAID. Besides, it's not clear that you need to spend more money: with the amount of RAM you've got, you should be able to avoid swapping often. Having really fast swapspace access for VM probably isn't as valuable as having really fast I/O for the databases. > It's been holding up pretty well in tests. You might have something like a Dell/Adaptec PERC? RAID controller with 128MB or so of I/O buffer memory which can also do the RAID-5 XOR calculations? That will help, but even so RAID-5 write performance goes from adequate to poor as the I/O load increases. Also, have you been testing I/O while also hitting a database (or two) at the same time? -- -Chuck From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 14:26:36 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0E54B37B401 for ; Sun, 6 Apr 2003 14:26:36 -0700 (PDT) Received: from netmint.com (netmint.com [207.106.21.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5F73D43F93 for ; Sun, 6 Apr 2003 14:26:35 -0700 (PDT) (envelope-from support@netmint.com) Received: from netmint.com (localhost.netmint.com [127.0.0.1]) by netmint.com (8.12.6/8.12.5) with ESMTP id h36LQYp7022917 for ; Sun, 6 Apr 2003 17:26:34 -0400 (EDT) (envelope-from support@netmint.com) Received: from localhost (support@localhost) by netmint.com (8.12.6/8.12.3/Submit) with ESMTP id h36LQYQv022913 for ; Sun, 6 Apr 2003 17:26:34 -0400 (EDT) Date: Sun, 6 Apr 2003 17:26:34 -0400 (EDT) From: Support To: freebsd-isp@freebsd.org In-Reply-To: <3E90938D.2050307@mac.com> Message-ID: <20030406165741.K22348-100000@netmint.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 21:26:36 -0000 [ ... ] > Aren't you using a Dell PowerEdge and hot-swappable drives? I also > thought you mentioned you were using 15K drives for swap, which implies Yes, PowerEdge with PERC3-DI (128MB) for Raid 1 with 2x36GB 15KRPM drives and with PERC3-DC (128MB) for Raid 5 with 4x146GB 10KRPM drives. > SCSI...probably 80-pin SCA form-factor, right? The drives are hot-swappable in themselves, but I can't add a Raid array on the fly, nor can I add to the capacity of a Raid array. I am sure that even if the Raid card allowed me to do that, FreeBSD wouldn't support a new Raid array that just popped up without a reboot. I am not even sure if Windows can do that. Now you know the hardware, please correct me if I am wrong about this. > If you knew that the difference in KVA memory would be significant to > your usage, then you could evaluate whether saving a couple of swap > device slots is worth the loss of flexibility. Configuring a system > without any tolerance for change is a little like Procrustes being too > precise in measuring his own bed. :-) But if what I said about Raid is correct, how is having an extra slot in RAM for swap more flexible? :) Of course, if I _could_ add drives without rebooting, or better yet add Raid arrays, I would be a very happy camper, and no question about it, would up the NSWAPDEV. > I'm not sure you measure "established" the same way I do. Do you mean > you expect there to be 500 to 4000 active apache children all processing > transactions 24-7, or do you mean you expect to see anywhere up to 4000 > people using the site(s) at a time, clicking at whatever rate they'd use > the site(s) during normal transactions? Sorry, let me rephrase this a bit. I mean network connections to the server that are marked "ESTABLISHED" in netstat -an output, if you grep for the webserver. In other words, if my understanding is correct, these are connections currently active that the webserver is serving with information and have running PHP/Perl sessions or are otherwise downloading files. I could have 1500-2000 to as high as 4000 of those. > How much of your traffic is going to be over SSL? You might want to > look into getting a HI/FN crypto-accelerator card, particularly if you > have lots of small/short SSL sessions rather than few longer ones. Not sure as to the exact break-down, but estimate 5-15%. Is that large in the context of total connections? Perhaps. I will look into a crypto card. > You really want to run only one type of production database per machine; > you're risking VM thrashing otherwise. Even if the load on the second one is _much_ less? Please explain why this is so, if possible. > You might have something like a Dell/Adaptec PERC? RAID controller with > 128MB or so of I/O buffer memory which can also do the RAID-5 XOR > calculations? That will help, but even so RAID-5 write performance goes > from adequate to poor as the I/O load increases. Also, have you been > testing I/O while also hitting a database (or two) at the same time? Right. I suppose I _could_ get another 146GB drive, and reconfigure the 4-drive Raid 5 array to be a 2-drive Raid 1 and 3-drive Raid 5. Or, I could wait until enough users hit the server and as load creeps, invest into two new drives and add a Raid 1 array at that point. I think I will choose the latter approach. As far as my testing, it's been very raw and no, I haven't done any DB testing yet. I was mostly testing for stability under heavy heavy memory usage, i.e. a bahzillion lynx'es and -j500 makeworld. How would you do this? :) Thanks for your help, Andrew From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 15:12:42 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3071737B401 for ; Sun, 6 Apr 2003 15:12:42 -0700 (PDT) Received: from out003.verizon.net (out003pub.verizon.net [206.46.170.103]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5515043F75 for ; Sun, 6 Apr 2003 15:12:41 -0700 (PDT) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.43.88]) by out003.verizon.net (InterMail vM.5.01.05.27 201-253-122-126-127-20021220) with ESMTP id <20030406221240.LCRZ28543.out003.verizon.net@mac.com>; Sun, 6 Apr 2003 17:12:40 -0500 Message-ID: <3E90A651.4070200@mac.com> Date: Sun, 06 Apr 2003 18:12:33 -0400 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <20030406165741.K22348-100000@netmint.com> In-Reply-To: <20030406165741.K22348-100000@netmint.com> X-Enigmail-Version: 0.74.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out003.verizon.net from [129.44.43.88] at Sun, 6 Apr 2003 17:12:40 -0500 cc: Support Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Apr 2003 22:12:42 -0000 Support wrote: [ ... ] > The drives are hot-swappable in themselves, but I can't add a Raid array > on the fly, nor can I add to the capacity of a Raid array. I am sure that > even if the Raid card allowed me to do that, FreeBSD wouldn't support a > new Raid array that just popped up without a reboot. I am not even sure if > Windows can do that. Now you know the hardware, please correct me if I am > wrong about this. "man aac" seems to have more info, which suggests that a Linux-based management app might do exactly what you're looking for. Also, camcontrol rescan _target_ ...lets you rescan the SCSI bus, which at least allows you to attach additional drives if you needed to. Not a long-term solution, sure, but in an emergency, you do what you need to. I don't know for certain about adding RAID volumes dynamicly; that probably depends on the BIOS and other things that you could ask Dell about. Anyway, it's at least possible that you can convince the system to rebuild a RAID-5 or RAID-1 mirror if you replace a failed drive with a working one, without rebooting. [ ... ] > Sorry, let me rephrase this a bit. I mean network connections to the > server that are marked "ESTABLISHED" in netstat -an output, if you grep OK re: the definition; that's the number of active children. [ ... ] >> How much of your traffic is going to be over SSL? You might want to >> look into getting a HI/FN crypto-accelerator card, particularly if you >> have lots of small/short SSL sessions rather than few longer ones. > > Not sure as to the exact break-down, but estimate 5-15%. Is that large in > the context of total connections? The connection between those factors isn't very direct. SSL session startup involves creating 1024-bit keys, which takes a long time, and even the normal 40/56/128-bit session encryption will eat up half of your CPU power if you're pushing more than 10 MB/s of encrypted data. >> You really want to run only one type of production database per machine; >> you're risking VM thrashing otherwise. > > Even if the load on the second one is _much_ less? > Please explain why this is so, if possible. If you're running multiple schemas (or databases under a DB server, depending on which parlance you like) within one vendors' product, the multiple DBs will cooperate and work from the same pool of memory. If you run two different products, they'll each want to have their own pool of memory and may fight over who gets what. Basicly, if the database's caching mechanism for its DB files and the VM sub-system disagree on whether a page should be swapped in or swapped out, performance is crippled...and this effect gets worse when you have more than one DB potentially fighting for the memory. If the databases are small enough to fit entirely in RAM without swapping, you'll probably be okay. Otherwise, you're going to have to tune the SGA size (# of DB buffers, database memory cache, whatever your DB calls it) & SysV shmem carefully. And if you want to get really detailed, you could look up something like Belady's anomaly, or why things like databases with sequential and striding memory access patterns tend to be challenging to the VM sub-system. [ ... ] > Right. I suppose I _could_ get another 146GB drive, and reconfigure the > 4-drive Raid 5 array to be a 2-drive Raid 1 and 3-drive Raid 5. Why not reconfigure the four-drive RAID-5 to be a four-drive RAID-1,0? [ ... ] > As far as my testing, it's been very raw and no, I haven't done any DB > testing yet. I was mostly testing for stability under heavy heavy memory > usage, i.e. a bahzillion lynx'es and -j500 makeworld. How would you do > this? :) Apache comes with something called "ab". No doubt you could use that to hit a bunch of test pages from PHP examples, or whatever, which will generate DB accesses. Then look in /usr/ports/benchmarks for something like iozone or bonnie for I/O benchmarks to run at the same time. -- -Chuck From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 17:42:34 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C596337B4A1 for ; Sun, 6 Apr 2003 17:42:33 -0700 (PDT) Received: from web40403.mail.yahoo.com (web40403.mail.yahoo.com [66.218.78.100]) by mx1.FreeBSD.org (Postfix) with SMTP id 66ECE43FA3 for ; Sun, 6 Apr 2003 17:42:33 -0700 (PDT) (envelope-from ekgermann@yahoo.com) Message-ID: <20030407004233.58271.qmail@web40403.mail.yahoo.com> Received: from [209.45.128.102] by web40403.mail.yahoo.com via HTTP; Sun, 06 Apr 2003 17:42:33 PDT Date: Sun, 6 Apr 2003 17:42:33 -0700 (PDT) From: Eric Germann To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: UFS2 Limits X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: ekgermann@cctec.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 00:42:35 -0000 Working on a project to stream MP3's via Zina and also add massive disk to the web server for storage of same. On a FBSD5.0R server, whats the limit on a UFS/UFS2 "disk"? We're looking at some of the external IDE->SCSI RAID chassis units with 200GB HDD's. One can handle 16 drives. Can UFS/UFS2 handle a 3TB partition? If so, are there certain requirements in terms of memory, etc to mount the partition. I haven't been able to find anything on the limits with new high capacity solutions. Thanks for any input. Eric __________________________________________________ Do you Yahoo!? Yahoo! Tax Center - File online, calculators, forms, and more http://tax.yahoo.com From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 18:05:21 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EFEA337B401 for ; Sun, 6 Apr 2003 18:05:21 -0700 (PDT) Received: from misery.sdf.com (misery.sdf.com [207.200.153.226]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6F39643FBF for ; Sun, 6 Apr 2003 18:05:20 -0700 (PDT) (envelope-from tom@sdf.com) Received: from tom (helo=localhost) by misery.sdf.com with local-esmtp (Exim 2.12 #1) id 192JUl-0002jp-00; Sun, 6 Apr 2003 16:24:15 -0700 Date: Sun, 6 Apr 2003 16:24:14 -0700 (PDT) From: Tom Samplonius To: ekgermann@cctec.com In-Reply-To: <20030407004233.58271.qmail@web40403.mail.yahoo.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: UFS2 Limits X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 01:05:22 -0000 On Sun, 6 Apr 2003, Eric Germann wrote: > Working on a project to stream MP3's via Zina and also > add massive disk to the web server for storage of > same. On a FBSD5.0R server, whats the limit on a > UFS/UFS2 "disk"? We're looking at some of the > external IDE->SCSI RAID chassis units with 200GB > HDD's. One can handle 16 drives. Can UFS/UFS2 handle > a 3TB partition? If so, are there certain There is some stuff on the website about this. With UFS1, the practical filesystem limit is 1TB, but if you fool with block sizes, you could get much more. UFS2 supports much more than that. And there is nothing to prevent you from creating multiple filesystems. You might want to do that anyhow. > requirements in terms of memory, etc to mount the > partition. I haven't been able to find anything on > the limits with new high capacity solutions. I don't think there are special memory requirements. FreeBSD doesn't need to allocate a lot of memory to mount a filesystem. I know that some OSes allocate an amount of memory proportional to the size of the filesystem, but FreeBSD does not do that. > Thanks for any input. > > Eric Tom From owner-freebsd-isp@FreeBSD.ORG Sun Apr 6 23:47:56 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A262E37B413; Sun, 6 Apr 2003 23:47:55 -0700 (PDT) Received: from carver.gumbysoft.com (carver.gumbysoft.com [66.220.23.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 97BEC43FB1; Sun, 6 Apr 2003 23:47:54 -0700 (PDT) (envelope-from dwhite@gumbysoft.com) Received: by carver.gumbysoft.com (Postfix, from userid 1000) id 8371672E7C; Sun, 6 Apr 2003 23:47:54 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by carver.gumbysoft.com (Postfix) with ESMTP id 8201672E74; Sun, 6 Apr 2003 23:47:54 -0700 (PDT) Date: Sun, 6 Apr 2003 23:47:54 -0700 (PDT) From: Doug White To: Mattias Pantzare In-Reply-To: <3E90835F.9020104@ludd.luth.se> Message-ID: <20030406234549.C54715@carver.gumbysoft.com> References: <20030406120112.I11095-100000@netmint.com> <3E906828.8060001@mac.com> <3E90835F.9020104@ludd.luth.se> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org cc: Support cc: freebsd-stable@freebsd.org Subject: Re: load testing and tuning a 4GB RAM server X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 06:47:56 -0000 On Sun, 6 Apr 2003, Mattias Pantzare wrote: > > > The notion of tuning kernel variables to the amount of memory on the > > _build_ system-- which is not always the same as the system which will > > be running the kernel-- doesn't strike me as the right thing to do, so I > > tend to set this to 64 or so by default, and then change it on a > > case-by-case basis as the need arises. > > That is why maxusers 0 will auto-size when the kernel _boots_. Not at > buildtime. .. unfortunately 'maxusers 0' on >2GB systems causes the tables to get *too* big, and you can easily deplete KVM in this instance. Check the archives for the discussion-of-the-month about this. I'd suggest maxusers 128 and tune other items as needed, particuarly the tunables kern.ipc.nmbclusters and kern.ipc.nmbufs. -- Doug White | FreeBSD: The Power to Serve dwhite@gumbysoft.com | www.FreeBSD.org From owner-freebsd-isp@FreeBSD.ORG Mon Apr 7 08:22:45 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DFA2337B404 for ; Mon, 7 Apr 2003 08:22:45 -0700 (PDT) Received: from accounts.amigo.net (mail.amigo.net [209.94.64.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id B447843F75 for ; Mon, 7 Apr 2003 08:22:44 -0700 (PDT) (envelope-from randys@amigo.net) Received: from stalker.amigo.net (billing.amigo.net [209.94.67.250]) by accounts.amigo.net with esmtp; Mon, 07 Apr 2003 09:22:42 -0600 Date: Mon, 7 Apr 2003 09:23:34 -0600 (MDT) From: Randy Smith X-X-Sender: randy@stalker.amigo.net To: ljacobs In-Reply-To: <200304061408.AA81592870@mandala-designs.com> Message-ID: <20030407090718.B203-100000@stalker.amigo.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: "freebsd-isp@freebsd.org" Subject: Re: FreeBSD as a firewall X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 15:22:46 -0000 On Sun, 6 Apr 2003, ljacobs wrote: > Date: Sun, 6 Apr 2003 14:08:44 -0400 > From: ljacobs > To: "freebsd-isp@freebsd.org" > Subject: FreeBSD as a firewall > > Folks -- > > If you are using IPFW or IPFilter or PF as a packet filer/firewall on > your FreeBSD system I am interested in hearing about your configuration > and satisfaction with your setup. How did you make your dwecision? I like FreeBSD and didn't feel the need to use a different OS in this case. I choose IPFW because the benchmarks I saw (I don't remember where now) showed that it perfomed slightly better than IPF for the forwarding I needed for the transparent prxoes. Those same benchamrks showed IPF was a bit faster doing nat. PF didn't exist at the time. I haven't used IPFW2 which is supposed to be much faster than IPFW. > What type of hardware are you running this on? It varies. Most of my firewalls are also proxies or doing other things. My "worst" box is a pentium-200MHz job with 32 MB of RAM. My "best" box is a dual PIII-500MHz with 1GB RAM. > Do you have anything else running on that computer besides the firewall? Generally, my firewalls are also transparent proxies. One of them is also the gateway for my mail server cluster and is doing quite a bit. (It is also an emergency node for the cluster and handles web mail duties.) > Have you had any breakins in spite of this protection? Not that I can tell. > Would you consider OpenBSD as an alternative for a firewall because of > its security and ease of using and managing PF? I've heard that OpenBSD is a good solution but I have never tried it so I can't comment further. > > Thanks for any comments. > > > ________________________________________________________________ > Sent via the WebMessaging system at mandala-designs.com > > > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > -- Randy Smith Amigo.Net Systems Administrator 1-719-589-6100 x 4185 http://www.amigo.net/ From owner-freebsd-isp@FreeBSD.ORG Mon Apr 7 09:18:29 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 361FC37B404 for ; Mon, 7 Apr 2003 09:18:29 -0700 (PDT) Received: from bill.infodev.ca (bill.infodev.ca [216.191.3.69]) by mx1.FreeBSD.org (Postfix) with ESMTP id 10CC943F85 for ; Mon, 7 Apr 2003 09:18:26 -0700 (PDT) (envelope-from dpageau@infodev.ca) Received: from localhost (localhost.infodev.ca [127.0.0.1]) by bill.infodev.ca (Postfix) with ESMTP id BEEAF2EB31 for ; Mon, 7 Apr 2003 12:25:31 -0400 (EDT) Received: from bill.infodev.ca ([127.0.0.1]) by localhost (bill.infodev.ca [127.0.0.1:10024]) (amavisd-new) with ESMTP id 06150-08 for ; Mon, 7 Apr 2003 12:25:31 -0400 (EDT) Received: from infodev.ca (rd-03.lan [192.168.42.127]) by bill.infodev.ca (Postfix) with ESMTP id 47C592EB2E for ; Mon, 7 Apr 2003 12:25:31 -0400 (EDT) Message-ID: <3E91A651.2010603@infodev.ca> Date: Mon, 07 Apr 2003 12:24:49 -0400 From: "D.Pageau" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3) Gecko/20030312 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by amavisd-new Subject: DMZ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 16:18:29 -0000 I have the following setup. IP: 216.1.1.0/28 (14 usable IP) Internet | | --------- |cisco 827| --------- | 216.1.1.1 (GW) | | 216.1.1.2/? --------- | rl0 | 216.1.1.?/? | rl1 |-------------------- DMZ | rl2 | 216.1.1.x/? --------- (remaining IP of 216.1.1/28) | 192.168.1.1/24 | | 192.168.1.2-254 NAT If I subnet rl0 = 216.1.1.2/30 and rl1 = 216.1.1.4/30 + 216.1.1.8/29 4 IPs will be wasted. What should I do to have the maximum usable IP with this setup. Thanks -- Dominic Pageau From owner-freebsd-isp@FreeBSD.ORG Mon Apr 7 10:58:16 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4684237B401 for ; Mon, 7 Apr 2003 10:58:16 -0700 (PDT) Received: from webmail.emre.de (webmail.emre.de [194.8.203.50]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1A9B543FA3 for ; Mon, 7 Apr 2003 10:58:15 -0700 (PDT) (envelope-from info@emre.de) Received: by webmail.emre.de (Postfix, from userid 80) id 326413A23C; Mon, 7 Apr 2003 19:58:19 +0200 (CEST) Received: from 192.168.2.2 ( [192.168.2.2]) as user emre@webmail.emre.de by webmail.emre.de with HTTP; Mon, 7 Apr 2003 19:58:18 +0200 Message-ID: <1049738298.3e91bc3a9a4ca@webmail.emre.de> Date: Mon, 7 Apr 2003 19:58:18 +0200 From: Emre Bastuz To: freebsd-isp@freebsd.org References: <3E91A651.2010603@infodev.ca> In-Reply-To: <3E91A651.2010603@infodev.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.0 X-Originating-IP: 192.168.2.2 Subject: Re: DMZ X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2003 17:58:16 -0000 Hi Dominic, Zitat von "D.Pageau" : [...] I believe the best way would be asking your ISP for another /30 subnet and a static routing entry for 216.1.1.0/28 to the firewall side of the new point-to-point link. You could then use the full /28 on your DMZ and the additional IP on rl0 for NATing your RFC1918 address space on rl2. If it´s not possible to get another /30 you might configure the 828 to have a point-to-point link using also private address space (say 172.16.0.0/30) and still having a static routing entry to the IP of rl0 on the 828. Using private address space on PTP links sometimes leads to confusion though, as this part of your connectivity will not show up on an external (i.e. another ISP) traceroute. It´s a question of taste i believe. I´d prefer the first choice if possible (depends much on the "quality" of your ISP). Regards, Emre -- Emre Bastuz info@emre.de http://www.emre.de UIN: 561260 PGP Key ID: 0xAFAC77FD From owner-freebsd-isp@FreeBSD.ORG Tue Apr 8 06:41:38 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EE64A37B404 for ; Tue, 8 Apr 2003 06:41:38 -0700 (PDT) Received: from bill.infodev.ca (bill.infodev.ca [216.191.3.69]) by mx1.FreeBSD.org (Postfix) with ESMTP id E8A1543FB1 for ; Tue, 8 Apr 2003 06:41:37 -0700 (PDT) (envelope-from dpageau@infodev.ca) Received: from localhost (localhost.infodev.ca [127.0.0.1]) by bill.infodev.ca (Postfix) with ESMTP id 3C7AD2EB31 for ; Tue, 8 Apr 2003 09:48:44 -0400 (EDT) Received: from bill.infodev.ca ([127.0.0.1]) by localhost (bill.infodev.ca [127.0.0.1:10024]) (amavisd-new) with ESMTP id 79057-04 for ; Tue, 8 Apr 2003 09:48:43 -0400 (EDT) Received: from infodev.ca (rd-03.lan [192.168.42.127]) by bill.infodev.ca (Postfix) with ESMTP id C21082EB2E for ; Tue, 8 Apr 2003 09:48:43 -0400 (EDT) Message-ID: <3E92D313.5080108@infodev.ca> Date: Tue, 08 Apr 2003 09:48:03 -0400 From: "D.Pageau" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3) Gecko/20030312 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by amavisd-new Subject: Can't bind IP to my bridge at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Apr 2003 13:41:39 -0000 This as been post to freebsd-isp without success, I'm sorry for the cross post but I need help. If I uncomment #net.link.ether.bridge=1 in sysctl.conf my IP is not bind to rl1 but if I leave it commented and type "sysctl net.link.ether.bridge=1" at command prompt everything work fine. Need help! Thanks $cat /etc/rc.conf ... ifconfig_rl0="inet 192.168.42.2 netmask 255.255.255.0" ifconfig_rl1="inet 216.1.1.2 netmask 255.255.255.240" #ifconfig_rl2 Bridge to rl1 ... $cat /etc/sysctl.conf net.link.ether.bridge_cfg=rl1,rl2 net.link.ether.bridge_ipfw=1 #net.link.ether.bridge=1 $uname -a FreeBSD x.x.x 5.0-RELEASE FreeBSD 5.0-RELEASE #7: Mon Apr 7 13:35:54 EDT 2003 -- Dominic Pageau From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 06:28:39 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CC8B137B401; Wed, 9 Apr 2003 06:28:39 -0700 (PDT) Received: from likya.bimel.com.tr (likya.bimel.com.tr [212.175.96.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id 344D343FBD; Wed, 9 Apr 2003 06:28:36 -0700 (PDT) (envelope-from ustuntas@bimel.com.tr) Received: (from root@localhost) by likya.bimel.com.tr (8.12.6p2/8.12.7) id h39DSkrm073084; Wed, 9 Apr 2003 16:28:46 +0300 (EEST) (envelope-from ustuntas@bimel.com.tr) Received: from bimel.com.tr (zeugma.bimel.com.tr [212.175.96.11]) h39DSjxW073074; Wed, 9 Apr 2003 16:28:45 +0300 (EEST) (envelope-from ustuntas@bimel.com.tr) Message-ID: <3E9422FC.2030801@bimel.com.tr> Date: Wed, 09 Apr 2003 16:41:16 +0300 From: Murat USTUNTAS User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2) Gecko/20021202 X-Accept-Language: tr, en-us, en To: freebsd-isp@freebsd.org Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS perl-11 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Content-Filtered-By: Mailman/MimeDel 2.1.1 cc: freebsd-stable@freebsd.org Subject: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 13:28:40 -0000 Hello Folks, I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg has shown as the lines; pid 9229 (httpd), uid 80: exited on signal 11 pid 10106 (httpd), uid 80: exited on signal 11 pid 9842 (httpd), uid 80: exited on signal 11 pid 35708 (httpd), uid 80: exited on signal 11 pid 9371 (httpd), uid 80: exited on signal 11 pid 10337 (httpd), uid 80: exited on signal 11 pid 9757 (httpd), uid 80: exited on signal 11 pid 10338 (httpd), uid 80: exited on signal 11 pid 10352 (httpd), uid 80: exited on signal 11 pid 10105 (httpd), uid 80: exited on signal 11 pid 10675 (httpd), uid 80: exited on signal 11 pid 16254 (httpd), uid 80: exited on signal 11 pid 10257 (httpd), uid 80: exited on signal 11 I have used apache with about 200 Vhosts. What is the problem ? What can I do about the problem (?) . Bilgilerinize, Murat Ustuntas mustuntas@bimel.com.tr From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 06:32:04 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 35A0F37B401; Wed, 9 Apr 2003 06:32:04 -0700 (PDT) Received: from freebsd.org.ru (freebsd.org.ru [194.84.67.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9574243FCB; Wed, 9 Apr 2003 06:32:03 -0700 (PDT) (envelope-from osa@freebsd.org.ru) Received: by freebsd.org.ru (Postfix, from userid 1000) id A7F3B5D; Wed, 9 Apr 2003 17:32:01 +0400 (MSD) Date: Wed, 9 Apr 2003 17:32:01 +0400 From: "Sergey A. Osokin" To: Murat USTUNTAS Message-ID: <20030409133201.GU37669@freebsd.org.ru> References: <3E9422FC.2030801@bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3E9422FC.2030801@bimel.com.tr> User-Agent: Mutt/1.5.4i cc: freebsd-isp@freebsd.org cc: freebsd-stable@freebsd.org Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: osa@FreeBSD.org.ru List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 13:32:04 -0000 On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: > > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 > pid 10106 (httpd), uid 80: exited on signal 11 > pid 9842 (httpd), uid 80: exited on signal 11 > pid 35708 (httpd), uid 80: exited on signal 11 > pid 9371 (httpd), uid 80: exited on signal 11 > pid 10337 (httpd), uid 80: exited on signal 11 > pid 9757 (httpd), uid 80: exited on signal 11 > pid 10338 (httpd), uid 80: exited on signal 11 > pid 10352 (httpd), uid 80: exited on signal 11 > pid 10105 (httpd), uid 80: exited on signal 11 > pid 10675 (httpd), uid 80: exited on signal 11 > pid 16254 (httpd), uid 80: exited on signal 11 > pid 10257 (httpd), uid 80: exited on signal 11 > I have used apache with about 200 Vhosts. What is the problem ? What > can I do about the problem (?) . Tell me more about your apache version or upgrade your apache to the latest release 1.3.27 :-) -- Rgdz, /"\ ASCII RIBBON CAMPAIGN Sergey Osokin aka oZZ, \ / AGAINST HTML MAIL http://ozz.pp.ru/ X AND NEWS / \ From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 06:41:01 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0759837B401; Wed, 9 Apr 2003 06:41:01 -0700 (PDT) Received: from likya.bimel.com.tr (likya.bimel.com.tr [212.175.96.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id 24A7643F3F; Wed, 9 Apr 2003 06:40:58 -0700 (PDT) (envelope-from ustuntas@bimel.com.tr) Received: (from root@localhost) by likya.bimel.com.tr (8.12.6p2/8.12.7) id h39DfFun073981; Wed, 9 Apr 2003 16:41:15 +0300 (EEST) (envelope-from ustuntas@bimel.com.tr) Received: from bimel.com.tr (zeugma.bimel.com.tr [212.175.96.11]) h39DfDxW073972; Wed, 9 Apr 2003 16:41:13 +0300 (EEST) (envelope-from ustuntas@bimel.com.tr) Message-ID: <3E9425E8.5020706@bimel.com.tr> Date: Wed, 09 Apr 2003 16:53:44 +0300 From: Murat USTUNTAS User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2) Gecko/20021202 X-Accept-Language: tr, en-us, en To: osa@freebsd.org.ru References: <3E9422FC.2030801@bimel.com.tr> <20030409133201.GU37669@freebsd.org.ru> In-Reply-To: <20030409133201.GU37669@freebsd.org.ru> Content-Transfer-Encoding: 7bit X-Virus-Scanned: by AMaViS perl-11 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Content-Filtered-By: Mailman/MimeDel 2.1.1 cc: freebsd-isp@freebsd.org cc: freebsd-stable@freebsd.org Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 13:41:01 -0000 My Apache version is 1.3.27 same as the latest. Sergey A. Osokin wrote: On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg has shown as the lines; pid 9229 (httpd), uid 80: exited on signal 11 pid 10106 (httpd), uid 80: exited on signal 11 pid 9842 (httpd), uid 80: exited on signal 11 pid 35708 (httpd), uid 80: exited on signal 11 pid 9371 (httpd), uid 80: exited on signal 11 pid 10337 (httpd), uid 80: exited on signal 11 pid 9757 (httpd), uid 80: exited on signal 11 pid 10338 (httpd), uid 80: exited on signal 11 pid 10352 (httpd), uid 80: exited on signal 11 pid 10105 (httpd), uid 80: exited on signal 11 pid 10675 (httpd), uid 80: exited on signal 11 pid 16254 (httpd), uid 80: exited on signal 11 pid 10257 (httpd), uid 80: exited on signal 11 I have used apache with about 200 Vhosts. What is the problem ? What can I do about the problem (?) . Tell me more about your apache version or upgrade your apache to the latest release 1.3.27 :-) From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 06:54:01 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D0BA37B401 for ; Wed, 9 Apr 2003 06:54:01 -0700 (PDT) Received: from bill.infodev.ca (bill.infodev.ca [216.191.3.69]) by mx1.FreeBSD.org (Postfix) with ESMTP id 85A8A43FA3 for ; Wed, 9 Apr 2003 06:53:58 -0700 (PDT) (envelope-from dpageau@infodev.ca) Received: from localhost (localhost.infodev.ca [127.0.0.1]) by bill.infodev.ca (Postfix) with ESMTP id 39D942EB33 for ; Wed, 9 Apr 2003 10:01:06 -0400 (EDT) Received: from bill.infodev.ca ([127.0.0.1]) by localhost (bill.infodev.ca [127.0.0.1:10024]) (amavisd-new) with ESMTP id 43299-09 for ; Wed, 9 Apr 2003 10:01:05 -0400 (EDT) Received: from infodev.ca (rd-03.lan [192.168.42.127]) by bill.infodev.ca (Postfix) with ESMTP id 40D292EB2E for ; Wed, 9 Apr 2003 10:01:05 -0400 (EDT) Message-ID: <3E94277A.5010402@infodev.ca> Date: Wed, 09 Apr 2003 10:00:26 -0400 From: "D.Pageau" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3) Gecko/20030312 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by amavisd-new Subject: Re: Can't bind IP to my bridge at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 13:54:01 -0000 Yes it make sense. In fact it's my workaround for now. But it's a workaround not a fix. Where should I report that "bug"? #!/bin/sh case $1 in start) /sbin/sysctl net.link.ether.bridge=1 exit 0 ;; stop) /sbin/sysctl net.link.ether.bridge=0 exit 0 ;; *) echo "usage: `basename $0` {start|stop}" >&2 exit 64 ;; esac Noah K Sematimba wrote: > probably sysctl gets initialised too early pn in the boot process. How > about simply writing a small shell script call it sysctl.sh and it has > this command in it. Put it in /usr/local/etc/rc.d and see if it works. > > I do not have 5.0 but I hope what i am saying actually makes sense. > > Noah. > > On Tue, 8 Apr 2003, D.Pageau wrote: -- Dominic Pageau From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 07:42:05 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 36AB837B401 for ; Wed, 9 Apr 2003 07:42:05 -0700 (PDT) Received: from kira.skynet.be (kira.skynet.be [195.238.2.125]) by mx1.FreeBSD.org (Postfix) with ESMTP id F306F43FA3 for ; Wed, 9 Apr 2003 07:42:03 -0700 (PDT) (envelope-from geraerts.jo@skynet.be) Received: from ernie.lan.net (128.49-200-80.adsl.skynet.be [80.200.49.128]) id h39EWTn3028738 for ; Wed, 9 Apr 2003 16:32:29 +0200 (envelope-from ) Received: from jgeraert by ernie.lan.net with local (Exim 3.36 #1 (Debian)) id 193Gcn-0000X0-00 for ; Wed, 09 Apr 2003 16:32:29 +0200 Date: Wed, 9 Apr 2003 16:32:29 +0200 From: Jo Geraerts To: freebsd-isp@freebsd.org Message-ID: <20030409143229.GA30631@ernie.lan.net> References: <3E9422FC.2030801@bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3E9422FC.2030801@bimel.com.tr> User-Agent: Mutt/1.5.4i Sender: Jo Geraerts Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 14:42:05 -0000 On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: > > Hello Folks, > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 sig11 is mostly the result of buggie hardware, so check your cpu, motherboard and memory. Greetz, Jo -- /****************************************************************** * Geraerts Jo * Politics: * * geraerts.jo@skynet.be * Poly: many * * http://users.skynet.be/ernie * Ticks: blood sucking parasites * ******************************************************************/ From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 08:01:47 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E313537B40D for ; Wed, 9 Apr 2003 08:01:46 -0700 (PDT) Received: from boreas.primus.ca (mail.tor.primus.ca [216.254.136.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id E9C1C43FCB for ; Wed, 9 Apr 2003 08:01:44 -0700 (PDT) (envelope-from dukemaster@shellfusion.net) Received: from dialin-135-229.hamilton.primus.ca ([209.90.135.229] helo=BirdOfPrey) by boreas.primus.ca with esmtp (Exim 3.36 #3) id 193H53-0002k8-0A for freebsd-isp@freebsd.org; Wed, 09 Apr 2003 11:01:42 -0400 From: "Allan Jude - ShellFusion.net Administrator" To: Date: Wed, 9 Apr 2003 11:01:46 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <20030409143229.GA30631@ernie.lan.net> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Subject: RE: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 15:01:47 -0000 Make sure your log files are writable, and not full (crashes on linux when the log file reaches 2gb limit) Also, check your Apache Error log, it may have clues, probably in /usr/local/apache/logs/error_log or /var/log/httpd.log or some such place, check your apache config. -----Original Message----- From: owner-freebsd-isp@freebsd.org [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Jo Geraerts Sent: Wednesday, April 09, 2003 10:32 AM To: freebsd-isp@freebsd.org Subject: Re: httpd exited on signal 11 On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: > > Hello Folks, > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 sig11 is mostly the result of buggie hardware, so check your cpu, motherboard and memory. Greetz, Jo -- /****************************************************************** * Geraerts Jo * Politics: * * geraerts.jo@skynet.be * Poly: many * * http://users.skynet.be/ernie * Ticks: blood sucking parasites * ******************************************************************/ _______________________________________________ freebsd-isp@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-isp To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 09:50:02 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1A42737B401 for ; Wed, 9 Apr 2003 09:50:02 -0700 (PDT) Received: from insourcery.net (ns1.insourcery.net [198.93.171.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4B1F043F75 for ; Wed, 9 Apr 2003 09:50:01 -0700 (PDT) (envelope-from eculp@encontacto.net) Received: from localhost (localhost [127.0.0.1]) (uid 80) by insourcery.net with local; Wed, 09 Apr 2003 09:50:00 -0700 Received: from adsl-64-173-182-155.dsl.mtry01.pacbell.net (adsl-64-173-182-155.dsl.mtry01.pacbell.net [64.173.182.155]) by mail.encontacto.net (Horde) with HTTP for ; Wed, 9 Apr 2003 09:50:00 -0700 Message-ID: <1049907000.a2ab31741250c@mail.encontacto.net> X-Priority: 3 (Normal) Date: Wed, 9 Apr 2003 09:50:00 -0700 From: eculp@encontacto.net To: freebsd-isp@freebsd.org References: <3E9422FC.2030801@bimel.com.tr> <20030409143229.GA30631@ernie.lan.net> In-Reply-To: <20030409143229.GA30631@ernie.lan.net> MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) 4.0-cvs X-Originating-IP: 64.173.182.155 Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 16:50:02 -0000 Quoting Jo Geraerts : | On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: | > | > Hello Folks, | > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg | > has shown as the lines; | > pid 9229 (httpd), uid 80: exited on signal 11 | | sig11 is mostly the result of buggie hardware, so check | your cpu, motherboard and memory. I've always thought the same but I've seen this a little too often with certain versions of mod_php4 and apache. I've never been able to determine which version works well with which because I always seem to be upgrading one or the other. ed ------------------------------------------------- From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 10:12:07 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 373D637B401 for ; Wed, 9 Apr 2003 10:12:07 -0700 (PDT) Received: from mx01.africaonline.com.na (relay01.africaonline.com.na [196.44.140.166]) by mx1.FreeBSD.org (Postfix) with ESMTP id 44B8643F75 for ; Wed, 9 Apr 2003 10:12:02 -0700 (PDT) (envelope-from rolf@digitaldivide.org.za) Received: from [196.44.132.186] (helo=null) by mx01.africaonline.com.na with esmtp (Exim 3.35 #1) id 193Iyl-00023F-00 for freebsd-isp@freebsd.org; Wed, 09 Apr 2003 18:03:19 +0100 From: "Rolf Mendelsohn" To: freebsd-isp@freebsd.org Date: Wed, 09 Apr 2003 18:11:37 +0200 MIME-Version: 1.0 Message-ID: <3E946259.31080.219BF4D@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.02a) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Subject: ISP radius & mail user/aliase management - Web based? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 17:12:07 -0000 Hi Everyone, Do either of you have any suggestions on any open source userdatabase management programs. Which I could use to add users to a radius database (radiusd - cleartext passwds :>( ). Also add them to a pop user file per domain & add aliases - also per domain. I'd be willing to migrate from radiusd if there is a more scalable all- in-one soloution or one which requirte minimal midifications. I know there is a program called Webmin for servers, which provides a gui to add users, modify many daemon options etc. Runs on Linux & FreeBSD. Something similar to that. Currently I'm using exim for smtp, vm-pop3d for pop aliases/usernames. The domains are in the flat text files which are structured like this: /virtual/domain/passwd (htpasswd format) /virtual/domain/aliases (user: forward@address.xyz) Radius users are in a users files which contains entries like these: Xyz Password cleartextpasswd, NAS-Port-Type If the all the programs which do this nicely are geared towards Mysql, then I'd spend the time getting that going to handle the various databases which are currently flat files. Any suggestions are very welcome. Regards, Rolf From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 10:27:17 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 63AFE37B401 for ; Wed, 9 Apr 2003 10:27:17 -0700 (PDT) Received: from users.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4D25D43F3F for ; Wed, 9 Apr 2003 10:27:16 -0700 (PDT) (envelope-from munk@users.munk.nu) Received: from users.munk.nu (munk@localhost [127.0.0.1]) by users.munk.nu (8.12.9/8.12.8) with ESMTP id h39HSp3U049533 for ; Wed, 9 Apr 2003 18:28:51 +0100 (BST) (envelope-from munk@users.munk.nu) Received: (from munk@localhost) by users.munk.nu (8.12.9/8.12.8/Submit) id h39HSp3A049532 for freebsd-isp@freebsd.org; Wed, 9 Apr 2003 18:28:51 +0100 (BST) Date: Wed, 9 Apr 2003 18:28:51 +0100 From: Jez Hancock To: freebsd-isp@freebsd.org Message-ID: <20030409172850.GA49485@users.munk.nu> Mail-Followup-To: freebsd-isp@freebsd.org References: <3E9422FC.2030801@bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3E9422FC.2030801@bimel.com.tr> User-Agent: Mutt/1.4.1i Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 17:27:17 -0000 On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 See here for details about increasing the LogLevel: http://www.apache.org/docs/mod/core.html#loglevel setting 'LogLevel debug' should give you plenty of clues. Good luck, Jez From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 10:29:11 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 97C4437B407 for ; Wed, 9 Apr 2003 10:29:11 -0700 (PDT) Received: from web1.nexusinternetsolutions.net (web1.nexusinternetsolutions.net [206.47.131.12]) by mx1.FreeBSD.org (Postfix) with SMTP id 9D46143FBD for ; Wed, 9 Apr 2003 10:29:10 -0700 (PDT) (envelope-from dave@hawk-systems.com) Received: (qmail 70394 invoked from network); 9 Apr 2003 17:29:09 -0000 Received: from unknown (HELO ws1) (24.157.103.51) by web1.nexusinternetsolutions.net with SMTP; 9 Apr 2003 17:29:09 -0000 From: "Dave [Hawk-Systems]" To: "Rolf Mendelsohn" , Date: Wed, 9 Apr 2003 13:29:08 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal In-Reply-To: <3E946259.31080.219BF4D@localhost> Subject: RE: ISP radius & mail user/aliase management - Web based? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 17:29:12 -0000 >Do either of you have any suggestions on any open source >userdatabase management programs. Which I could use to add >users to a radius database (radiusd - cleartext passwds :>( ). Also >add them to a pop user file per domain & add aliases - also per >domain. we currently use XTRadius http://xtradius.sourceforge.net/ with a PostgreSQL hack of the MySQL example provided via perl dbi for authentication, documentation is pretty thin, but extensibility is a good feature for us. For mail we use a variety of applications all encompased in a toaster like script(in recent versions) by Matt Simerson http://matt.simerson.net/computing/mail/toaster/ which in short runs qmail with non system accounts from a mysql database, which you could hack to port to PostgreSQL or whatever. Managing user information via web interfaces once you are using MySQL, PostgreSQL or another db is rudimentary. Dave From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 11:03:56 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 147B237B401 for ; Wed, 9 Apr 2003 11:03:56 -0700 (PDT) Received: from accounts.amigo.net (smtp.amigo.net [209.94.64.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id 24B7343FA3 for ; Wed, 9 Apr 2003 11:03:55 -0700 (PDT) (envelope-from randys@amigo.net) Received: from stalker.amigo.net (billing.amigo.net [209.94.67.250]) by accounts.amigo.net with esmtp; Wed, 09 Apr 2003 12:03:54 -0600 Date: Wed, 9 Apr 2003 12:04:55 -0600 (MDT) From: Randy Smith X-X-Sender: randy@stalker.amigo.net To: Rolf Mendelsohn In-Reply-To: <3E946259.31080.219BF4D@localhost> Message-ID: <20030409115809.R203-100000@stalker.amigo.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit cc: "freebsd-isp@freebsd.org" Subject: Re: ISP radius & mail user/aliase management - Web based? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 18:03:56 -0000 On Wed, 9 Apr 2003, Rolf Mendelsohn wrote: > Date: Wed, 09 Apr 2003 18:11:37 +0200 > From: Rolf Mendelsohn > To: "freebsd-isp@freebsd.org" > Subject: ISP radius & mail user/aliase management - Web based? > > Hi Everyone, > > Do either of you have any suggestions on any open source > userdatabase management programs. Which I could use to add > users to a radius database (radiusd - cleartext passwds :>( ). Also > add them to a pop user file per domain & add aliases - also per > domain. > > I'd be willing to migrate from radiusd if there is a more scalable all- > in-one soloution or one which requirte minimal midifications. > > I know there is a program called Webmin for servers, which provides > a gui to add users, modify many daemon options etc. Runs on Linux > & FreeBSD. Something similar to that. > > Currently I'm using exim for smtp, vm-pop3d for pop > aliases/usernames. I have a couple of scripts to handle users for gnu-radius and courier both talking to a mysql DB. I know it's not quite what you want but I thought I would offer anyway. Radius: http://perlstalker.amigo.net/gnu-radius/ruser Courier: http://perlstalker.amigo.net/courier/vuser [snip: data formats, etc] -- Randy Smith Amigo.Net Systems Administrator 1-719-589-6100 x 4185 http://www.amigo.net/ From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 11:16:48 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 493DD37B401 for ; Wed, 9 Apr 2003 11:16:48 -0700 (PDT) Received: from mail.tiscali.it (mail-5.tiscali.it [195.130.225.151]) by mx1.FreeBSD.org (Postfix) with ESMTP id 06F6343FA3 for ; Wed, 9 Apr 2003 11:16:47 -0700 (PDT) (envelope-from fcasadei@inwind.it) Received: from goku.kasby (217.133.211.13) by mail.tiscali.it (6.5.032) id 3E886DD7005779F5 for freebsd-isp@freebsd.org; Wed, 9 Apr 2003 20:16:45 +0200 Received: (qmail 8613 invoked by uid 1000); 9 Apr 2003 18:16:33 -0000 Date: Wed, 9 Apr 2003 20:16:33 +0200 From: Francesco Casadei To: Murat USTUNTAS Message-ID: <20030409181633.GA8594@goku.kasby> Mail-Followup-To: Murat USTUNTAS , freebsd-isp@freebsd.org, freebsd-stable@freebsd.org References: <3E9422FC.2030801@bimel.com.tr> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="tThc/1wpZn/ma/RB" Content-Disposition: inline In-Reply-To: <3E9422FC.2030801@bimel.com.tr> User-Agent: Mutt/1.4i X-Operating-System: FreeBSD 4.8-STABLE i386 cc: freebsd-isp@freebsd.org cc: freebsd-stable@freebsd.org Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 18:16:48 -0000 --tThc/1wpZn/ma/RB Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: >=20 > Hello Folks, > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 > pid 10106 (httpd), uid 80: exited on signal 11 > pid 9842 (httpd), uid 80: exited on signal 11 > pid 35708 (httpd), uid 80: exited on signal 11 > pid 9371 (httpd), uid 80: exited on signal 11 > pid 10337 (httpd), uid 80: exited on signal 11 > pid 9757 (httpd), uid 80: exited on signal 11 > pid 10338 (httpd), uid 80: exited on signal 11 > pid 10352 (httpd), uid 80: exited on signal 11 > pid 10105 (httpd), uid 80: exited on signal 11 > pid 10675 (httpd), uid 80: exited on signal 11 > pid 16254 (httpd), uid 80: exited on signal 11 > pid 10257 (httpd), uid 80: exited on signal 11 > I have used apache with about 200 Vhosts. What is the problem ? What > can I do about the problem (?) . > Bilgilerinize, > Murat Ustuntas > mustuntas@bimel.com.tr > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > end of the original message Signal 11 may be hardware problem, like someone has already pointed out, bu= t I had the same sig11 problem few months ago and that was caused by a bug in a php script I wrote to store sessions into a PostgreSQL database. I don't re= mber exactly what was the bug, sorry. May be you have a problem like this. Francesco Casadei --=20 You can download my public key from http://digilander.libero.it/fcasadei/ or retrieve it from a keyserver (pgpkeys.mit.edu, wwwkeys.pgp.net, ...) Key fingerprint is: 1671 9A23 ACB4 520A E7EE 00B0 7EC3 375F 164E B17B --tThc/1wpZn/ma/RB Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+lGOBfsM3XxZOsXsRApXQAKCVGO75BC425Vmr7+dWEwfogB82vgCdGk91 mdnG9mCHnwtCLC0Sgf/Q+5I= =ZzMz -----END PGP SIGNATURE----- --tThc/1wpZn/ma/RB-- From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 11:20:25 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6B89037B401; Wed, 9 Apr 2003 11:20:25 -0700 (PDT) Received: from lava.sentex.ca (pyroxene.sentex.ca [199.212.134.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id B291F43F75; Wed, 9 Apr 2003 11:20:24 -0700 (PDT) (envelope-from mike@sentex.net) Received: from simian.sentex.net (simeon.sentex.ca [192.168.43.27]) by lava.sentex.ca (8.12.9/8.12.8) with ESMTP id h39IKEMF048558; Wed, 9 Apr 2003 14:20:14 -0400 (EDT) (envelope-from mike@sentex.net) Message-Id: <5.2.0.9.0.20030409142455.05c934a0@marble.sentex.ca> X-Sender: mdtpop@marble.sentex.ca (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Wed, 09 Apr 2003 14:26:16 -0400 To: Murat USTUNTAS , freebsd-isp@freebsd.org From: Mike Tancsa In-Reply-To: <3E9422FC.2030801@bimel.com.tr> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Virus-Scanned: By Sentex Communications (lava/20020517) cc: freebsd-stable@freebsd.org Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Apr 2003 18:20:25 -0000 I take it you are running a non vulnerable version of apache ? There are still however ways to crash the server with buggy scripts / programs. e.g. on an onlder version of php, will cause the httpd process to terminate with a sig 11. ---Mike At 04:41 PM 09/04/2003 +0300, Murat USTUNTAS wrote: > Hello Folks, > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 > pid 10106 (httpd), uid 80: exited on signal 11 > pid 9842 (httpd), uid 80: exited on signal 11 > pid 35708 (httpd), uid 80: exited on signal 11 > pid 9371 (httpd), uid 80: exited on signal 11 > pid 10337 (httpd), uid 80: exited on signal 11 > pid 9757 (httpd), uid 80: exited on signal 11 > pid 10338 (httpd), uid 80: exited on signal 11 > pid 10352 (httpd), uid 80: exited on signal 11 > pid 10105 (httpd), uid 80: exited on signal 11 > pid 10675 (httpd), uid 80: exited on signal 11 > pid 16254 (httpd), uid 80: exited on signal 11 > pid 10257 (httpd), uid 80: exited on signal 11 > I have used apache with about 200 Vhosts. What is the problem ? What > can I do about the problem (?) . > Bilgilerinize, > Murat Ustuntas > mustuntas@bimel.com.tr >_______________________________________________ >freebsd-stable@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-stable >To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 20:38:27 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E555037B401 for ; Wed, 9 Apr 2003 20:38:27 -0700 (PDT) Received: from kurdistan.ath.cx (adsl-64-169-155-173.dsl.chic01.pacbell.net [64.169.155.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2AECD43F93 for ; Wed, 9 Apr 2003 20:38:27 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: from kurdistan.ath.cx (ns1 [127.0.0.1]) by kurdistan.ath.cx (8.12.8/8.12.6) with ESMTP id h3A3cY04017277 for ; Wed, 9 Apr 2003 20:38:34 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: (from sereciya@localhost) by kurdistan.ath.cx (8.12.8/8.12.6/Submit) id h3A3cYCr017276 for freebsd-isp@freebsd.org; Wed, 9 Apr 2003 20:38:34 -0700 (PDT) Date: Wed, 9 Apr 2003 20:38:34 -0700 From: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= To: freebsd-isp@freebsd.org Message-ID: <20030410033834.GA15292@kurdistan.ath.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.4i Subject: MRTG :: SELECT suggestions,recommendations,configurations FROM %expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 03:38:28 -0000 Hello, I'm looking into running mrtg and cricket. Question: 1) On my FreeBSD router, do I need to install any snmp tools, ie ucd-snmp-4.2.6, net-snmp-5.0.6 etc in order to use mrtg and/or cricket? Suggestions/Recommendations: Look outs, pitfalls etc... please let me know ;) Thanks in advance to anyone and everyone who may reply/post useful comments & suggestions..., thank you! -- +--------------------------------------------------------------+ | Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî | | Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me | | nêzîk e. | | | | Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin | | Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan | | kesên xwînperest, ne jî ji yên din. | | | | -Sêrêciya Kurdistanî | +--------------------------------------------------------------+ translation provided on request: sereciya@kurdistan.ath.cx From owner-freebsd-isp@FreeBSD.ORG Wed Apr 9 21:01:32 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 10F2437B401 for ; Wed, 9 Apr 2003 21:01:32 -0700 (PDT) Received: from mail.lambertfam.org (www.lambertfam.org [216.223.196.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4F68043FBF for ; Wed, 9 Apr 2003 21:01:31 -0700 (PDT) (envelope-from lambert@lambertfam.org) Received: from laptop.lambertfam.org (laptop.int.lambertfam.org [10.1.0.2]) by mail.lambertfam.org (Postfix) with ESMTP id 718E035207 for ; Thu, 10 Apr 2003 00:01:29 -0400 (EDT) Received: by laptop.lambertfam.org (Postfix, from userid 1000) id B0C808696; Thu, 10 Apr 2003 00:01:23 -0400 (EDT) Date: Thu, 10 Apr 2003 00:01:23 -0400 From: Scott Lambert To: freebsd-isp@freebsd.org Message-ID: <20030410040123.GA72698@laptop.lambertfam.org> Mail-Followup-To: freebsd-isp@freebsd.org References: <20030410033834.GA15292@kurdistan.ath.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030410033834.GA15292@kurdistan.ath.cx> User-Agent: Mutt/1.4.1i Subject: Re: MRTG :: SELECT suggestions,recommendations,configurations FROM %expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 04:01:32 -0000 On Wed, Apr 09, 2003 at 08:38:34PM -0700, Srciya Kurdistan wrote: > > Hello, > > I'm looking into running mrtg and cricket. > > Question: > > 1) On my FreeBSD router, do I need to install any snmp tools, > ie ucd-snmp-4.2.6, net-snmp-5.0.6 etc in order to use > mrtg and/or cricket? Yes. MRTG uses SNMP to query the device be it your FreeBSD box or a cisco router. -- Scott Lambert KC5MLE Unix SysAdmin lambert@lambertfam.org From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 01:26:13 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B085237B401 for ; Thu, 10 Apr 2003 01:26:13 -0700 (PDT) Received: from ksemat.co.ug (ping.mtn.co.ug [212.88.97.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8021143F3F for ; Thu, 10 Apr 2003 01:26:08 -0700 (PDT) (envelope-from ksemat@ksemat.co.ug) Received: from sematin.mtn.co.ug (localhost.mtn.co.ug [127.0.0.1]) by sematin.mtn.co.ug (8.12.9/8.12.3) with ESMTP id h39EAVik011862; Wed, 9 Apr 2003 17:10:33 +0300 (EAT) (envelope-from ksemat@ksemat.co.ug) Received: from localhost (ksemat@localhost)h39EASd0011859; Wed, 9 Apr 2003 17:10:31 +0300 (EAT) X-Authentication-Warning: sematin.mtn.co.ug: ksemat owned process doing -bs Date: Wed, 9 Apr 2003 17:10:28 +0300 (EAT) From: Noah K Sematimba X-X-Sender: ksemat@sematin.mtn.co.ug To: "D.Pageau" In-Reply-To: <3E942710.9020908@infodev.ca> Message-ID: <20030409170443.T11815@sematin.mtn.co.ug> References: <3E92D313.5080108@infodev.ca> <20030409131417.A531@sematin.mtn.co.ug> <3E942710.9020908@infodev.ca> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: Can't bind IP to my bridge at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 08:26:14 -0000 My guess is that the sysctl file gets called sometime by /etc/rc and thus if you can place the section that calls /etc/rc.sysctl at another section in that file then you would be ok. According to http://www.freebsd.org/send-pr.html you can use the send-pr program to submit a bug report. Noah. On Wed, 9 Apr 2003, D.Pageau wrote: > Yes it make sense. In fact it's my workaround for now. But it's a > workaround not a fix. Where should I report that "bug"? > > #!/bin/sh > > case $1 in > > start) > /sbin/sysctl net.link.ether.bridge=1 > exit 0 > ;; > > stop) > /sbin/sysctl net.link.ether.bridge=0 > exit 0 > ;; > > *) > echo "usage: `basename $0` {start|stop}" >&2 > exit 64 > ;; > esac > > > Noah K Sematimba wrote: > > probably sysctl gets initialised too early pn in the boot process. How > > about simply writing a small shell script call it sysctl.sh and it has > > this command in it. Put it in /usr/local/etc/rc.d and see if it works. > > > > I do not have 5.0 but I hope what i am saying actually makes sense. > > > > Noah. > > > > On Tue, 8 Apr 2003, D.Pageau wrote: > > > -- > Dominic Pageau > > > From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 01:26:20 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C3EC737B401; Thu, 10 Apr 2003 01:26:20 -0700 (PDT) Received: from ksemat.co.ug (ping.mtn.co.ug [212.88.97.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id 003A343F3F; Thu, 10 Apr 2003 01:26:14 -0700 (PDT) (envelope-from ksemat@ksemat.co.ug) Received: from sematin.mtn.co.ug (localhost.mtn.co.ug [127.0.0.1]) by sematin.mtn.co.ug (8.12.9/8.12.3) with ESMTP id h39ECaik011868; Wed, 9 Apr 2003 17:12:39 +0300 (EAT) (envelope-from ksemat@ksemat.co.ug) Received: from localhost (ksemat@localhost)h39ECVln011865; Wed, 9 Apr 2003 17:12:36 +0300 (EAT) X-Authentication-Warning: sematin.mtn.co.ug: ksemat owned process doing -bs Date: Wed, 9 Apr 2003 17:12:31 +0300 (EAT) From: Noah K Sematimba X-X-Sender: ksemat@sematin.mtn.co.ug To: Murat USTUNTAS In-Reply-To: <3E9425E8.5020706@bimel.com.tr> Message-ID: <20030409171142.B11815@sematin.mtn.co.ug> References: <3E9422FC.2030801@bimel.com.tr> <20030409133201.GU37669@freebsd.org.ru> <3E9425E8.5020706@bimel.com.tr> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org cc: osa@freebsd.org.ru cc: freebsd-stable@freebsd.org Subject: Re: httpd exited on signal 11 X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 08:26:21 -0000 signal 11 is usually a sign of hardware problems on the machine. Check your RAM and verify that ALL of it is working properly. Noah. On Wed, 9 Apr 2003, Murat USTUNTAS wrote: > > My Apache version is 1.3.27 same as the latest. > Sergey A. Osokin wrote: > > On Wed, Apr 09, 2003 at 04:41:16PM +0300, Murat USTUNTAS wrote: > > > I have used FreeBSD-4.8-RC and apache 1.3.2x. In some days,my dmesg > has shown as the lines; > pid 9229 (httpd), uid 80: exited on signal 11 > pid 10106 (httpd), uid 80: exited on signal 11 > pid 9842 (httpd), uid 80: exited on signal 11 > pid 35708 (httpd), uid 80: exited on signal 11 > pid 9371 (httpd), uid 80: exited on signal 11 > pid 10337 (httpd), uid 80: exited on signal 11 > pid 9757 (httpd), uid 80: exited on signal 11 > pid 10338 (httpd), uid 80: exited on signal 11 > pid 10352 (httpd), uid 80: exited on signal 11 > pid 10105 (httpd), uid 80: exited on signal 11 > pid 10675 (httpd), uid 80: exited on signal 11 > pid 16254 (httpd), uid 80: exited on signal 11 > pid 10257 (httpd), uid 80: exited on signal 11 > I have used apache with about 200 Vhosts. What is the problem ? What > can I do about the problem (?) . > > > Tell me more about your apache version or upgrade your apache to the > latest release 1.3.27 :-) > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 01:26:28 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 27E0837B407 for ; Thu, 10 Apr 2003 01:26:28 -0700 (PDT) Received: from ksemat.co.ug (ping.mtn.co.ug [212.88.97.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id DA03D43F3F for ; Thu, 10 Apr 2003 01:26:21 -0700 (PDT) (envelope-from ksemat@ksemat.co.ug) Received: from sematin.mtn.co.ug (localhost.mtn.co.ug [127.0.0.1]) by sematin.mtn.co.ug (8.12.9/8.12.3) with ESMTP id h39AGHik000589; Wed, 9 Apr 2003 13:16:20 +0300 (EAT) (envelope-from ksemat@ksemat.co.ug) Received: from localhost (ksemat@localhost)h39AGFJ1000586; Wed, 9 Apr 2003 13:16:17 +0300 (EAT) X-Authentication-Warning: sematin.mtn.co.ug: ksemat owned process doing -bs Date: Wed, 9 Apr 2003 13:16:15 +0300 (EAT) From: Noah K Sematimba X-X-Sender: ksemat@sematin.mtn.co.ug To: "D.Pageau" In-Reply-To: <3E92D313.5080108@infodev.ca> Message-ID: <20030409131417.A531@sematin.mtn.co.ug> References: <3E92D313.5080108@infodev.ca> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: freebsd-isp@freebsd.org Subject: Re: Can't bind IP to my bridge at boot time X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 08:26:28 -0000 probably sysctl gets initialised too early pn in the boot process. How about simply writing a small shell script call it sysctl.sh and it has this command in it. Put it in /usr/local/etc/rc.d and see if it works. I do not have 5.0 but I hope what i am saying actually makes sense. Noah. On Tue, 8 Apr 2003, D.Pageau wrote: > This as been post to freebsd-isp without success, I'm sorry for the > cross post but I need help. > > If I uncomment #net.link.ether.bridge=1 in sysctl.conf my IP is not bind > to rl1 but if I leave it commented and type "sysctl > net.link.ether.bridge=1" at command prompt everything work fine. > > Need help! > > Thanks > > $cat /etc/rc.conf > ... > ifconfig_rl0="inet 192.168.42.2 netmask 255.255.255.0" > ifconfig_rl1="inet 216.1.1.2 netmask 255.255.255.240" > #ifconfig_rl2 Bridge to rl1 > ... > > $cat /etc/sysctl.conf > net.link.ether.bridge_cfg=rl1,rl2 > net.link.ether.bridge_ipfw=1 > #net.link.ether.bridge=1 > > $uname -a > FreeBSD x.x.x 5.0-RELEASE FreeBSD 5.0-RELEASE #7: Mon Apr 7 13:35:54 > EDT 2003 > > -- > Dominic Pageau > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 07:16:31 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0A69B37B401 for ; Thu, 10 Apr 2003 07:16:31 -0700 (PDT) Received: from skyweb.ca (smtp-2.vancouver.ipapp.com [216.152.192.208]) by mx1.FreeBSD.org (Postfix) with ESMTP id 48EF743F85 for ; Thu, 10 Apr 2003 07:16:30 -0700 (PDT) (envelope-from mjohnston@skyweb.ca) Received: from mjohnston ([209.5.243.50]) by smtp-2.vancouver.ipapp.com ; Thu, 10 Apr 2003 07:16:29 -0700 From: "Mark Johnston" To: =?iso-8859-1?Q?'S=EAr=EAciya_Kurdistan=EE'?= Date: Thu, 10 Apr 2003 09:21:50 -0500 Message-ID: <002401c2ff6c$87978440$be0fa8c0@MJOHNSTON> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 In-Reply-To: <20030410033834.GA15292@kurdistan.ath.cx> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal cc: freebsd-isp@freebsd.org Subject: Re: (long) MRTG :: SELECT suggestions,recommendations,configurations FROM%expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 14:16:31 -0000 S=EAr=EAciya Kurdistan=EE wrote: > > 1) On my FreeBSD router, do I need to install any snmp tools, > ie ucd-snmp-4.2.6, net-snmp-5.0.6 etc in order to use > mrtg and/or cricket?=20 > > Suggestions/Recommendations: > > Look outs, pitfalls etc... please let me know ;) >=20 Well, maybe. MRTG, in its regular configuration, uses SNMP to pull data from routers, so to use it in the standard way you'll need an SNMP daemon on your router. However. If you want to get away without SNMP, it's also possible to run MRTG with arbitrary data. (q.v. RRDTool, a program from the MRTG author that's much more flexible for this kind of situation.) You can use a periodic script to take data from ipfw show/netstat/whatever and put it into your MRTG/RRD database on the same host, then generate your graphs from that. As a bonus, you can graph other useful things like load averages, mbufs, or vmstat. To add a bit of complication, you probably don't want to install a bunch of graphing software and store your data right on your routers. Here's what I'd do: Add a user account to each router. Set the password so the user can't log in, but make a .ssh/authorized_keys file in the home directory, and in that file specify 'command=3D"stats_collect.pl"' before the key (see sshd(8) for more info.) That way, the user can log in only with the key, and can only execute the stats_collect.pl command. You may also want to use 'no-port-forwarding', 'no-X11-forwarding', and the like for better security. Then, from your centralized host, use a periodic process to ssh into your routers with your key and collect the output from stats_collect.pl. You can then insert it into MRTG or RRDTool. Keep in mind that if you want to use ipfw in your data collection script, you'll need to do some suid tricks (perhaps mode 4750 and a special ipfw group.) You can probably get all the data you're looking for from netstat if you don't want to do that. I like this setup because you can collect data more flexibly than you can with SNMP, you get all the security of ssh, and you don't have to run another daemon on your routers. Bear in mind, though, that it's a significantly heavier load on your network (a full TCP connection instead of a couple of UDP packets) and CPU (SSH negotiation isn't cheap) than using SNMP. HTH, Mark From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 07:51:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5AB2C37B401 for ; Thu, 10 Apr 2003 07:51:52 -0700 (PDT) Received: from kurdistan.ath.cx (adsl-64-169-155-173.dsl.chic01.pacbell.net [64.169.155.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id 85FCE43FDD for ; Thu, 10 Apr 2003 07:51:51 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: from kurdistan.ath.cx (ns1 [127.0.0.1]) by kurdistan.ath.cx (8.12.8/8.12.6) with ESMTP id h3AEpo04031970; Thu, 10 Apr 2003 07:51:50 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: (from sereciya@localhost) by kurdistan.ath.cx (8.12.8/8.12.6/Submit) id h3AEpogs031969; Thu, 10 Apr 2003 07:51:50 -0700 (PDT) Date: Thu, 10 Apr 2003 07:51:50 -0700 From: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= To: freebsd-isp@freebsd.org Message-ID: <20030410145150.GA30369@kurdistan.ath.cx> References: <20030410033834.GA15292@kurdistan.ath.cx> <002401c2ff6c$87978440$be0fa8c0@MJOHNSTON> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <002401c2ff6c$87978440$be0fa8c0@MJOHNSTON> User-Agent: Mutt/1.4i Subject: Re: (long) MRTG :: SELECT suggestions,recommendations,configurations FROM%expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 14:51:52 -0000 Hello Mark, Thank you very much for the information on MRTG! It's the best and most detailed advice yet, greatly appreciated. I love the one-liner reply from somebody else that said "ports net/mrtg" or something, yeah great; What I was asking was for *practical* advice, not where to find the documentation; that, I am quite capable of doing... and besides, that wasn't even a real URL or anything, I'm surprized that person even though that such a lame comment could ever possibly be usefull to anybody! -- +--------------------------------------------------------------+ | Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî | | Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me | | nêzîk e. | | | | Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin | | Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan | | kesên xwînperest, ne jî ji yên din. | | | | -Sêrêciya Kurdistanî | +--------------------------------------------------------------+ translation provided on request: sereciya@kurdistan.ath.cx From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 11:44:53 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B875137B401 for ; Thu, 10 Apr 2003 11:44:53 -0700 (PDT) Received: from mail.tcworks.net (mail.tcworks.net [216.61.218.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 092FE43F85 for ; Thu, 10 Apr 2003 11:44:53 -0700 (PDT) (envelope-from ccook@tcworks.net) Received: from tcworks.net (stp.tcworks.net [216.61.218.6]) by mail.tcworks.net (8.12.6/8.12.6) with ESMTP id h3AIdtwj095961; Thu, 10 Apr 2003 13:39:55 -0500 (CDT) Sender: xcess@mail.tcworks.net Message-ID: <3E95BC0E.FBC847D8@tcworks.net> Date: Thu, 10 Apr 2003 13:46:38 -0500 From: Chris Cook X-Mailer: Mozilla 4.78 [en] (X11; U; Linux 2.4.2 i386) X-Accept-Language: en MIME-Version: 1.0 To: =?iso-8859-1?Q?S=EAr=EAciya=20Kurdistan=EE?= , freebsd-isp@freebsd.org References: <20030410033834.GA15292@kurdistan.ath.cx> <20030410145150.GA30369@kurdistan.ath.cx> Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-RAVMilter-Version: 8.4.1(snapshot 20020920) (mail.tcworks.net) X-Spam-Status: No, hits=-113.1 required=7.5 tests=EMAIL_ATTRIBUTION,REFERENCES,USER_IN_WHITELIST version=2.50 X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp) Subject: Re: (long) MRTG :: SELECTsuggestions,recommendations,configurations FROM%expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 18:44:54 -0000 It really is not very polite to bark at somebody who was giving you free help. ports net/mrtg means to look in the ports collection in the net directory and you will find mrtg there to install. Please read the handbook @ www.freebsd.org if you are not familiar with the FreeBSD ports collection. /Chris Sêrêciya Kurdistanî wrote: > > Hello Mark, > > Thank you very much for the information on MRTG! > It's the best and most detailed advice yet, greatly > appreciated. > > I love the one-liner reply from somebody else that > said "ports net/mrtg" or something, yeah great; > What I was asking was for *practical* advice, not > where to find the documentation; that, I am quite > capable of doing... and besides, that wasn't even > a real URL or anything, I'm surprized that person > even though that such a lame comment could ever > possibly be usefull to anybody! From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 12:31:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 567C037B401 for ; Thu, 10 Apr 2003 12:31:00 -0700 (PDT) Received: from swisseasy.net (dns1.swisseasy.net [195.134.144.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7FB5643FAF for ; Thu, 10 Apr 2003 12:30:58 -0700 (PDT) (envelope-from arie@gerszt.ch) Received: (qmail 39843 invoked by uid 85); 10 Apr 2003 18:46:12 -0000 Received: from arie@gerszt.ch by caramba.gerszt.ch by uid 82 with qmail-scanner-1.16 (sweep: 2.14/3.66 NSV. spamassassin: 2.44. Clear:. Processed in 1.119342 secs); 10 Apr 2003 18:46:12 -0000 Received: from unknown (HELO DELLARIE) (212.41.86.110) by mail.swisseasy.net with SMTP; 10 Apr 2003 18:46:11 -0000 From: "Arie J. Gerszt" To: Date: Thu, 10 Apr 2003 21:30:53 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Importance: Normal Subject: serial oob (modem management) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 19:31:00 -0000 hi i want to add a serial console with a cellular mobile phone to my freebsd boxes. i am trying to connect a nokia 6310 with a rs232 data cable to the comconsole, because i am experiencing quite difficulties in making this work, i wanted to ask you, how you are doing such things. thanks, and regards arie From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 12:50:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD1B837B401 for ; Thu, 10 Apr 2003 12:50:52 -0700 (PDT) Received: from kurdistan.ath.cx (adsl-64-169-155-173.dsl.chic01.pacbell.net [64.169.155.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id C2F0943FA3 for ; Thu, 10 Apr 2003 12:50:51 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: from kurdistan.ath.cx (ns1 [127.0.0.1]) by kurdistan.ath.cx (8.12.8/8.12.6) with ESMTP id h3AJop04038453; Thu, 10 Apr 2003 12:50:51 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: (from sereciya@localhost) by kurdistan.ath.cx (8.12.8/8.12.6/Submit) id h3AJooPY038452; Thu, 10 Apr 2003 12:50:50 -0700 (PDT) Date: Thu, 10 Apr 2003 12:50:50 -0700 From: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= To: freebsd-isp@freebsd.org Message-ID: <20030410195050.GB35609@kurdistan.ath.cx> References: <20030410033834.GA15292@kurdistan.ath.cx> <20030410145150.GA30369@kurdistan.ath.cx> <3E95BC0E.FBC847D8@tcworks.net> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <3E95BC0E.FBC847D8@tcworks.net> User-Agent: Mutt/1.4i Subject: Re: (long) MRTG :: SELECTsuggestions,recommendations,configurations FROM%expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 19:50:53 -0000 On Thu, Apr 10, 2003 at 01:46:38PM -0500, Chris Cook wrote: > It really is not very polite to bark at somebody who was giving you free > help. I believe that most people would agree that free help does not constitute of writing a one liner like "ports net/mrtg". First of all that is neither a valid answer nor suggestion ; it is called *mocking* and it is not well recieved. I believe that this kind of a response, or "help" if you see it as such, is not in the spirit of the net, and especiall not of users trying to help each other out solving problems. I, just as everybody else greatly appreciate all *sincere* intents for help and make it known in no uncertain terms. Thank you. -Sêrêciya Kurdistanî PS My appologies to all those who have unnecessarily had to bear witness to this, sorry. -- +--------------------------------------------------------------+ | Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî | | Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me | | nêzîk e. | | | | Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin | | Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan | | kesên xwînperest, ne jî ji yên din. | | | | -Sêrêciya Kurdistanî | +--------------------------------------------------------------+ translation provided on request: sereciya@kurdistan.ath.cx From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 13:09:49 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7F18C37B404 for ; Thu, 10 Apr 2003 13:09:49 -0700 (PDT) Received: from sccrmhc03.attbi.com (sccrmhc03.attbi.com [204.127.202.63]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8366A43FBF for ; Thu, 10 Apr 2003 13:09:48 -0700 (PDT) (envelope-from DougB@freebsd.org) Received: from 12-234-22-23.client.attbi.com ([12.234.22.23]) by sccrmhc03.attbi.com (sccrmhc03) with SMTP id <2003041020094700300fc48se>; Thu, 10 Apr 2003 20:09:47 +0000 Date: Thu, 10 Apr 2003 13:09:46 -0700 (PDT) From: Doug Barton To: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= In-Reply-To: <20030410195050.GB35609@kurdistan.ath.cx> Message-ID: <20030410130844.L91788@12-234-22-23.pyvrag.nggov.pbz> References: <20030410033834.GA15292@kurdistan.ath.cx> <20030410145150.GA30369@kurdistan.ath.cx> <20030410195050.GB35609@kurdistan.ath.cx> Organization: http://www.FreeBSD.org/ X-message-flag: Outlook -- Not just for spreading viruses anymore! MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=unknown-8bit Content-Transfer-Encoding: 8BIT cc: freebsd-isp@freebsd.org Subject: Re: (long) MRTG :: SELECTsuggestions,recommendations,configurations FROM%expert_users X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Apr 2003 20:09:49 -0000 On Thu, 10 Apr 2003, [unknown-8bit] Sêrêciya Kurdistanî wrote: > I believe that most people would agree that free help does not > constitute of writing a one liner like "ports net/mrtg". That really depends on what was asked, but in any case, if you don't like the help you get, remember that it's worth every penny you paid for it. > My appologies to all those who have unnecessarily had to bear > witness to this, sorry. Don't apologize, just stop perpetuating it. -- This .signature sanitized for your protection From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 18:43:43 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 959B937B401 for ; Thu, 10 Apr 2003 18:43:43 -0700 (PDT) Received: from smtp23.singnet.com.sg (smtp23.singnet.com.sg [165.21.101.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3BC6A43FB1 for ; Thu, 10 Apr 2003 18:43:42 -0700 (PDT) (envelope-from bennyc@magix.com.sg) Received: from zehn.mine.nu (ad202.166.1.178.magix.com.sg [202.166.1.178]) by smtp23.singnet.com.sg (8.12.9/8.12.9) with ESMTP id h3B1hfLO005281 for ; Fri, 11 Apr 2003 09:43:41 +0800 Received: (from bennyc@localhost) by zehn.mine.nu (8.12.9/8.12.9/Submit) id h3B1heuJ086898 for freebsd-isp@freebsd.org; Fri, 11 Apr 2003 09:43:40 +0800 (SGT) Date: Fri, 11 Apr 2003 09:43:39 +0800 From: Benny Chee To: freebsd-isp@freebsd.org Message-ID: <20030411014339.GA86404@magix.com.sg> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i Organization: Singapore Telecommunications Ltd Subject: html->ps->fax gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 01:43:43 -0000 hi, i m trying to setup a fax gateway (using hylafax), we will convert from html to ps and then pass it on to hylafax to process. the issue is, i have problems converting html to ps. i tried most of the html2ps convertors, eg htmldoc, html2ps. They dont give me proper formatting (tables, forms, frames, fonts, etc) as i wanted. I had to resort to manual intervention, open my html in netscape/mozilla/opera and print to ps then pass it on to hylafax. Q: is it possible to call netscape/mozilla/opera/others to print to ps without doing it manually? benny From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 20:50:20 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3CCD037B401 for ; Thu, 10 Apr 2003 20:50:20 -0700 (PDT) Received: from smtp13.singnet.com.sg (smtp13.singnet.com.sg [165.21.6.33]) by mx1.FreeBSD.org (Postfix) with ESMTP id EE41A43F3F for ; Thu, 10 Apr 2003 20:50:18 -0700 (PDT) (envelope-from bennyc@magix.com.sg) Received: from zehn.mine.nu (ad202.166.1.178.magix.com.sg [202.166.1.178]) by smtp13.singnet.com.sg (8.12.9/8.12.9) with ESMTP id h3B3oEfM019552; Fri, 11 Apr 2003 11:50:14 +0800 Received: (from bennyc@localhost) by zehn.mine.nu (8.12.9/8.12.9/Submit) id h3B3oAVh087912; Fri, 11 Apr 2003 11:50:10 +0800 (SGT) Date: Fri, 11 Apr 2003 11:50:09 +0800 From: Benny Chee To: Dale Walker Message-ID: <20030411035009.GA86904@magix.com.sg> References: <20030411014339.GA86404@magix.com.sg> <200304111152.h3BBqoh3001696@taz.secure.icr.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200304111152.h3BBqoh3001696@taz.secure.icr.com.au> User-Agent: Mutt/1.4.1i Organization: Singapore Telecommunications Ltd cc: freebsd-isp@freebsd.org cc: dale@taz.secure.icr.com.au Subject: Re: html->ps->fax gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 03:50:20 -0000 tried that, but i got some images to display and some secific fonts which i like it to be displayed... benny On Fri, Apr 11, 2003 at 11:52:50AM +0000, Dale Walker wrote: | I think you can get lynx to do it without to much trouble... I used to use | lynx in a script to run some offsite php stuff and mangle the results for me... | | | -- | -- | Dale Walker < dale@icr.com.au > | Independent Computer Retailers (ICR) Pty Ltd | http://www.icr.com.au/ | From owner-freebsd-isp@FreeBSD.ORG Thu Apr 10 23:08:19 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6DF2937B401 for ; Thu, 10 Apr 2003 23:08:19 -0700 (PDT) Received: from seven.Alameda.net (seven.Alameda.net [64.81.63.137]) by mx1.FreeBSD.org (Postfix) with ESMTP id E213A43F3F for ; Thu, 10 Apr 2003 23:08:18 -0700 (PDT) (envelope-from ulf@Alameda.net) Received: by seven.Alameda.net (Postfix, from userid 1000) id A3C6C3A203; Thu, 10 Apr 2003 23:08:18 -0700 (PDT) Date: Thu, 10 Apr 2003 23:08:18 -0700 From: Ulf Zimmermann To: Benny Chee Message-ID: <20030410230818.A92807@seven.alameda.net> References: <20030411014339.GA86404@magix.com.sg> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20030411014339.GA86404@magix.com.sg>; from bennyc@magix.com.sg on Fri, Apr 11, 2003 at 09:43:39AM +0800 Organization: Alameda Networks, Inc. X-Operating-System: FreeBSD 4.7-RELEASE-p2 cc: freebsd-isp@freebsd.org Subject: Re: html->ps->fax gateway X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: ulf@Alameda.net List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 06:08:19 -0000 On Fri, Apr 11, 2003 at 09:43:39AM +0800, Benny Chee wrote: > hi, > > i m trying to setup a fax gateway (using hylafax), we will convert from html to ps and then pass it on to hylafax to process. > > the issue is, i have problems converting html to ps. i tried most of the html2ps convertors, eg htmldoc, html2ps. They dont give me proper formatting (tables, forms, frames, fonts, etc) as i wanted. I had to resort to manual intervention, open my html in netscape/mozilla/opera and print to ps then pass it on to hylafax. > > Q: is it possible to call netscape/mozilla/opera/others to print to ps without doing it manually? > We are using htmldoc in a production system to send out fax notifications about won auctions and transportation orders. Works well for us and as far I know we are using tables. -- Regards, Ulf. --------------------------------------------------------------------- Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://seven.Alameda.net/~ulf/resume.html From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 01:23:43 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4395037B401 for ; Fri, 11 Apr 2003 01:23:43 -0700 (PDT) Received: from exchange.wan.no (exchange.wan.no [80.86.128.88]) by mx1.FreeBSD.org (Postfix) with ESMTP id EFB9143FAF for ; Fri, 11 Apr 2003 01:23:41 -0700 (PDT) (envelope-from sten.daniel.sorsdal@wan.no) X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Date: Fri, 11 Apr 2003 10:23:32 +0200 Message-ID: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: RADIUS/Active Directory and Mailserver. Thread-Index: AcMAA6hv5V2c519QSUqYXguwuU9/MA== From: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= To: Subject: RADIUS/Active Directory and Mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 08:23:43 -0000 I work for a small ISP and we're about to install a mailserver for our = customers. We have all our usernames/passwords in an Active Directory database = with a RADIUS=20 frontend to dialup and VPN. We hoped that it would somehow be possible = to setup a FreeBSD box that authenticates the users from either AD or RADIUS. It = would be utopia if said mail server could also find it's userbase in the AD server - = which would eliminate having to add usernames on the mailserver. Any thoughts or suggestions? Anything relevant (including which = mailserver) is welcome. If anyone knows of or are using a commercial mailservere (even on ... = Windows) that can do this, then that is also welcome! Thank you! From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 01:40:38 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1BD0837B404 for ; Fri, 11 Apr 2003 01:40:37 -0700 (PDT) Received: from softservecom.com (mail-uarnet.softservecom.com [194.44.102.252]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0E90243F93 for ; Fri, 11 Apr 2003 01:40:35 -0700 (PDT) (envelope-from pam@polynet.lviv.ua) Received: from mail.softservecom.com (root@localhost) by softservecom.com (8.11.6/8.11.6) with SMTP id h3B8eeY23276 for ; Fri, 11 Apr 2003 11:40:40 +0300 Received: from polynet.lviv.ua (digger.softservecom.com [192.168.17.2]) by softservecom.com (8.11.6/8.11.6) with ESMTP id h3B8eeK23266 for ; Fri, 11 Apr 2003 11:40:40 +0300 Message-ID: <3E967F79.8060200@polynet.lviv.ua> Date: Fri, 11 Apr 2003 11:40:25 +0300 From: Adrian Pavlykevych User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; uk-UA; rv:1.3) Gecko/20030312 X-Accept-Language: uk, en-us, en, pl, ru, de, de-at, de-de, de-li, de-lu, de-ch MIME-Version: 1.0 To: freebsd-isp@freebsd.org References: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> In-Reply-To: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> X-Enigmail-Version: 0.73.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Subject: Re: RADIUS/Active Directory and Mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 08:40:38 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sten Daniel Sørsdal wrote: | I work for a small ISP and we're about to install a mailserver for our customers. | We have all our usernames/passwords in an Active Directory database with a RADIUS | frontend to dialup and VPN. We hoped that it would somehow be possible to setup a | FreeBSD box that authenticates the users from either AD or RADIUS. It would be utopia | if said mail server could also find it's userbase in the AD server - which would eliminate | having to add usernames on the mailserver. qmail-ldap http://www.nrg4u.com Courier-MTA http://www.courier-mta.org Both can use LDAP to get information about virtual users, so you can query AD for it. You'll probably need to extend AD schema to fit all necessary attributes though. Sendmail does LDAP too, but I'm not sure about its feature-completeness. Qmail-LDAP is more feature rich in area of controlling mail server from LDAP. Courier has more advanced features as MTA. Regards, - -- Adrian Pavlykevych -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2rc1-nr1 (Windows 2000) iD8DBQE+ln95dWQndLibxtARAjnnAJ42/bwSmNy1BoiclbgpJ0kV2O/fggCdEc4I +Kh5FzvTlN/U3Xr9RddVNGg= =JBZ9 -----END PGP SIGNATURE----- From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 01:58:59 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0E64E37B401 for ; Fri, 11 Apr 2003 01:58:59 -0700 (PDT) Received: from ksemat.co.ug (ping.mtn.co.ug [212.88.97.58]) by mx1.FreeBSD.org (Postfix) with ESMTP id AC91843F93 for ; Fri, 11 Apr 2003 01:58:55 -0700 (PDT) (envelope-from ksemat@ksemat.co.ug) Received: by ksemat.co.ug (Postfix, from userid 1000) id 31042FFA3; Fri, 11 Apr 2003 12:01:00 +0300 (EAT) Received: from localhost (localhost [127.0.0.1]) by ksemat.co.ug (Postfix) with ESMTP id DB3D2FF9F; Fri, 11 Apr 2003 12:01:00 +0300 (EAT) Date: Fri, 11 Apr 2003 12:01:00 +0300 (EAT) From: Noah K Sematimba To: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= In-Reply-To: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> Message-ID: <20030411115924.B780@ksemat.co.ug> References: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: QUOTED-PRINTABLE cc: freebsd-isp@freebsd.org Subject: Re: RADIUS/Active Directory and Mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 08:58:59 -0000 well imho, the most flexible MTA in terms of any added configuration you can add to it etc is exim. With support for perl expressions etc in any part of its configuration, you can pretty much make it do anything you want. Please this is ot an MTA war...:-) Noah. On Fri, 11 Apr 2003, [iso-8859-1] Sten Daniel S=F8rsdal wrote: > > I work for a small ISP and we're about to install a mailserver for our c= ustomers. > We have all our usernames/passwords in an Active Directory database with= a RADIUS > frontend to dialup and VPN. We hoped that it would somehow be possible t= o setup a > FreeBSD box that authenticates the users from either AD or RADIUS. It wo= uld be utopia > if said mail server could also find it's userbase in the AD server - whi= ch would eliminate > having to add usernames on the mailserver. > > Any thoughts or suggestions? Anything relevant (including which mailserv= er) is welcome. > If anyone knows of or are using a commercial mailservere (even on ... Wi= ndows) that can do > this, then that is also welcome! > > Thank you! > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 03:01:27 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 801D937B401 for ; Fri, 11 Apr 2003 03:01:27 -0700 (PDT) Received: from mail.one2netmail.co.ug (mail.one2netmail.co.ug [216.250.215.80]) by mx1.FreeBSD.org (Postfix) with ESMTP id E513943FBF for ; Fri, 11 Apr 2003 03:01:22 -0700 (PDT) (envelope-from pokui@one2net.co.ug) Received: from localhost (localhost [127.0.0.1]) by mail.one2netmail.co.ug (Postfix) with ESMTP id 82C2B68D75; Fri, 11 Apr 2003 13:11:52 +0300 (EAT) Received: from mail.one2netmail.co.ug ([127.0.0.1]) by localhost (mail.one2netmail.co.ug [127.0.0.1:10024]) (amavisd-new) with ESMTP id 42563-06; Fri, 11 Apr 2003 13:11:48 +0300 (EAT) Received: from delight.one2net.co.ug (g-class.sanyutel.com [216.250.215.27]) by mail.one2netmail.co.ug (Postfix) with ESMTP id DCB5468D56; Fri, 11 Apr 2003 13:11:47 +0300 (EAT) From: Patrick Okui To: "Arie J. Gerszt" , Date: Fri, 11 Apr 2003 13:03:36 +0000 User-Agent: KMail/1.5 References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200304111303.36147.pokui@one2net.co.ug> X-Virus-Scanned: by amavisd-new Subject: Re: serial oob (modem management) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 10:01:27 -0000 On Thursday 10 April 2003 20:30, Arie J. Gerszt wrote: > hi > > i want to add a serial console with a cellular mobile phone to my freebsd > boxes. > i am trying to connect a nokia 6310 with a rs232 data cable to the > comconsole, > because i am experiencing quite difficulties in making this work, i wanted > to > ask you, how you are doing such things. Not so sure about what you are after, but I *THINK* you will need to build ports/comms/gnokii and then run gnokiid. That should give you a "normal" serial /modem interface to the phone. See www.gnokii.org for further details. > > thanks, and regards > arie > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" -- Patrick J Okui Systems Administrator One2Net (U) Ltd From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 03:07:27 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BAC9B37B401 for ; Fri, 11 Apr 2003 03:07:27 -0700 (PDT) Received: from complx.LF.net (complx.LF.net [212.9.190.63]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2DB4D43FB1 for ; Fri, 11 Apr 2003 03:07:25 -0700 (PDT) (envelope-from lists@complx.LF.net) Received: from lists by complx.LF.net with local (Exim 4.10) id 193vRL-000J0N-00 for freebsd-isp@freebsd.org; Fri, 11 Apr 2003 12:07:23 +0200 Date: Fri, 11 Apr 2003 12:07:23 +0200 From: Kurt Jaeger To: freebsd-isp@freebsd.org Message-ID: <20030411100723.GK929@complx.LF.net> References: <200304111303.36147.pokui@one2net.co.ug> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200304111303.36147.pokui@one2net.co.ug> Subject: Re: serial oob (modem management) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 10:07:28 -0000 Hi! > > i want to add a serial console with a cellular mobile phone to my freebsd > > boxes. [...] > Not so sure about what you are after, but I *THINK* you will need to build > ports/comms/gnokii > and then run gnokiid. That should give you a "normal" serial /modem interface > to the phone. The problem is probably the other way round ? How does one call the mobile phone in such a way that it accepts the call and acts like a serial modem to the computer ? A normal serial line on a nokia can be used as an outdial modem. The problem is: How to use it for a dial*in* ? -- MfG/Best regards, Kurt Jaeger 17 years to go ! LF.net GmbH fon +49 711 90074-23 pi@LF.net Ruppmannstr. 27 fax +49 711 90074-33 D-70565 Stuttgart mob +49 171 3101372 From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 12:32:30 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 53D8137B401 for ; Fri, 11 Apr 2003 12:32:30 -0700 (PDT) Received: from mta9.srv.hcvlny.cv.net (mta9.srv.hcvlny.cv.net [167.206.5.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 461B643FA3 for ; Fri, 11 Apr 2003 12:32:29 -0700 (PDT) (envelope-from george@galis.org) Received: from asv6.srv.hcvlny.cv.net (asv6.srv.hcvlny.cv.net [167.206.5.61]) by mta9.srv.hcvlny.cv.net (iPlanet Messaging Server 5.2 HotFix 1.14 (built Mar 18 2003)) with ESMTP id <0HD700D6C25LZY@mta9.srv.hcvlny.cv.net> for freebsd-isp@FreeBSD.ORG; Fri, 11 Apr 2003 15:29:46 -0400 (EDT) Received: from dynamic.galis.orgasv6.srv.hcvlny.cv.net ; Fri, 11 Apr 2003 15:30:03 -0400 (EDT) Received: (qmail 21246 invoked by uid 1010); Fri, 11 Apr 2003 19:29:59 +0000 Received: (qmail 20511 invoked from network); Fri, 11 Apr 2003 18:13:02 +0000 Received: from gw2000.local (192.168.80.10) by trot.local with SMTP; Fri, 11 Apr 2003 18:13:02 +0000 Received: (qmail 22142 invoked from network); Fri, 11 Apr 2003 18:13:01 +0000 Received: from cyberhenge.net (65.84.93.67) by dynamic.galis.org with SMTP; Fri, 11 Apr 2003 18:13:01 +0000 Received: (qmail 24666 invoked by uid 501); Fri, 11 Apr 2003 18:13:16 +0000 Received: (qmail 24662 invoked from network); Fri, 11 Apr 2003 18:13:16 +0000 Received: from ool-435012f0.dyn.optonline.net (HELO dynamic.galis.org) (67.80.18.240) by us04.cyberhenge.net with SMTP; Fri, 11 Apr 2003 18:13:16 +0000 Received: (qmail 20507 invoked by uid 1010); Fri, 11 Apr 2003 18:13:01 +0000 Resent-date: Fri, 11 Apr 2003 14:13:00 -0400 Resent-date: Fri, 11 Apr 2003 15:29:59 -0400 Date: Fri, 11 Apr 2003 14:07:33 -0400 Resent-From: geo@trot.local Resent-From: geo@trot.local From: George Georgalis In-reply-to: <001801c2e3df$28a02030$fc5807ca@mosm1> Resent-To: george@cyberhenge.net Resent-To: freebsd-isp@FreeBSD.ORG To: Jan Mikkelsen Resent-message-id: <20030411181300.20505.qmail@trot.local> Message-id: <20030411180733.GA20256@trot.local> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: Mutt/1.3.28i References: <5.2.0.9.0.20030305230242.00a18200@mail.hub.org> <001801c2e3df$28a02030$fc5807ca@mosm1> cc: freebsd-isp@FreeBSD.ORG Subject: Re: multiple SSL key's on one IP several Vhosts... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 19:32:30 -0000 Hi - I'm facing a similar situation, and planned to resolve it running multiple apache-ssl invocations that specify their own IP/domain/etc Then this was presented to me, suggesting that one apache-ssl invocation could use IP based vhosting with multiple certs for the same effect but less resources. It's from May 1999, but looks possible since different certs are bing used for different IP/domains; however I have the feeling apache will choke on the second ssl IP. Has anyone used a similar setup or have comments? http://www.apache-ssl.org/httpd.conf.example from the following thread: http://www.lists.aldigital.co.uk/apache-ssl/msg02648.html // George On Thu, Mar 06, 2003 at 11:51:51PM +1100, Jan Mikkelsen wrote: >As someone else wrote, the problem is that the SSL handshake happens >before the HTTP host header is sent by the client saying what it is >after. Because the server DNS name is embedded in the certificate used >in the SSL handshake you are forced into a one to one mapping of virtual >hosts and IP addresses. > >There is a solution: Include the host name in the initial SSL (now TLS) >handshake so the server can choose the right certificate to use during >the TLS negotiation. There is a standards track RFC covering this >(along with a generalised extension mechanism and other stuff) in the >RFC editor's queue. This means that the limitation will be less of an >issue once some portion of the browser population implements the RFC, >which is probably not the timeframe you are after. > >Regards, > >Jan Mikkelsen > > >> -----Original Message----- >> From: owner-freebsd-isp@FreeBSD.ORG >> [mailto:owner-freebsd-isp@FreeBSD.ORG] On Behalf Of Chris Bowlby >> Sent: Thursday, 6 March 2003 2:05 PM >> To: freebsd-isp@freebsd.org >> Subject: multiple SSL key's on one IP several Vhosts... >> >> >> Hi All, >> >> Googling for a result of an issue where I've got more then one SSL >> key I want to enable on a site (one that is certified and one that >> is self signed) I ran across and issue where Multiple key's appear >> to not work on the same IP, is this still the case? even after two >> years? Who's bright Idea was it to tie the SSL key to the IP address >> and domain, and not just the domain? >> >> If anyone has a work around for the this, it would be very useful >> to know (other then more then one IP assigned to the VH, not an >> option as a limitation of jails...) >> >> thanks in advance.. >> -- GEORGE GEORGALIS, System Admin/Architect cell: 347-451-8229 Security Services, Web, Mail, mailto:george@galis.org Multimedia, DB, DNS and Metrics. http://www.galis.org/george From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 13:20:16 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5965537B401 for ; Fri, 11 Apr 2003 13:20:16 -0700 (PDT) Received: from srv1.cosmo-project.de (srv1.cosmo-project.de [213.83.6.106]) by mx1.FreeBSD.org (Postfix) with ESMTP id CF24B43FB1 for ; Fri, 11 Apr 2003 13:20:14 -0700 (PDT) (envelope-from andreas@klemm.apsfilter.org) Received: from srv1.cosmo-project.de (localhost [IPv6:::1]) by srv1.cosmo-project.de (8.12.9/8.12.9) with ESMTP id h3BKKAcx012892 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO); Fri, 11 Apr 2003 22:20:12 +0200 (CEST) (envelope-from andreas@klemm.apsfilter.org) Received: (from uucp@localhost)h3BKK9xk012891; Fri, 11 Apr 2003 22:20:09 +0200 (CEST) (envelope-from andreas@klemm.apsfilter.org) Received: from titan.klemm.apsfilter.org (localhost.klemm.apsfilter.org [127.0.0.1]) by klemm.apsfilter.org (8.12.9/8.12.8) with ESMTP id h3BKGv48006938; Fri, 11 Apr 2003 22:17:02 +0200 (CEST) (envelope-from andreas@titan.klemm.apsfilter.org) Received: (from andreas@localhost) by titan.klemm.apsfilter.org (8.12.9/8.12.8/Submit) id h3BKGova006937; Fri, 11 Apr 2003 22:16:50 +0200 (CEST) Date: Fri, 11 Apr 2003 22:16:50 +0200 From: Andreas Klemm To: Adrian Pavlykevych Message-ID: <20030411201650.GA6771@titan.klemm.apsfilter.org> References: <0AF1BBDF1218F14E9B4CCE414744E70F07DE8D@exchange.wanglobal.net> <3E967F79.8060200@polynet.lviv.ua> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="wac7ysb48OaltWcw" Content-Disposition: inline In-Reply-To: <3E967F79.8060200@polynet.lviv.ua> X-Operating-System: FreeBSD 4.8-STABLE X-Disclaimer: A free society is one where it is safe to be unpopular User-Agent: Mutt/1.5.3i cc: freebsd-isp@freebsd.org Subject: Re: RADIUS/Active Directory and Mailserver. X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 11 Apr 2003 20:20:16 -0000 --wac7ysb48OaltWcw Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Apr 11, 2003 at 11:40:25AM +0300, Adrian Pavlykevych wrote: > Courier-MTA http://www.courier-mta.org too sad, the mail/courier port is flagged broken :-/ Just wanted to give it a try. Andreas /// --=20 Andreas Klemm - Powered by FreeBSD 4.7 Need a magic printfilter today ? -> http://www.apsfilter.org/ --wac7ysb48OaltWcw Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+lyKyd3o+lGxvbLoRAg6rAJ4/HvTRMIpHvqhIWejeHYZR2dCcmgCcCJDg OTTSY5X+Tmy0h3YBJb6y4h0= =1dFg -----END PGP SIGNATURE----- --wac7ysb48OaltWcw-- From owner-freebsd-isp@FreeBSD.ORG Fri Apr 11 17:29:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0B34D37B401 for ; Fri, 11 Apr 2003 17:29:00 -0700 (PDT) Received: from doc.metva.com.au (c16477.brasd1.vic.optusnet.com.au [210.49.152.96]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8523043F75 for ; Fri, 11 Apr 2003 17:28:58 -0700 (PDT) (envelope-from enno@doc.metva.com.au) Received: by doc.metva.com.au (Postfix, from userid 1003) id 56FFBD78CAF; Sat, 12 Apr 2003 10:28:57 +1000 (EST) Date: Sat, 12 Apr 2003 10:28:56 +1000 From: Enno Davids To: George Georgalis Message-ID: <20030412002856.GT33010@doc.metva.com.au> References: <5.2.0.9.0.20030305230242.00a18200@mail.hub.org> <001801c2e3df$28a02030$fc5807ca@mosm1> <20030411180733.GA20256@trot.local> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030411180733.GA20256@trot.local> User-Agent: Mutt/1.4i cc: freebsd-isp@freebsd.org Subject: Re: multiple SSL key's on one IP several Vhosts... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 00:29:00 -0000 On Fri, Apr 11, 2003 at 02:07:33PM -0400, George Georgalis wrote: |Then this was presented to me, suggesting that one apache-ssl invocation |could use IP based vhosting with multiple certs for the same effect but |less resources. | |It's from May 1999, but looks possible since different certs are bing |used for different IP/domains; however I have the feeling apache will |choke on the second ssl IP. Has anyone used a similar setup or have |comments? Works fine. Had it running this way for years now. Enno. From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 00:36:56 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B71B937B401 for ; Sat, 12 Apr 2003 00:36:56 -0700 (PDT) Received: from pop3.psconsult.nl (ps227.psconsult.nl [213.222.19.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4014843FB1 for ; Sat, 12 Apr 2003 00:36:55 -0700 (PDT) (envelope-from paul@pop3.psconsult.nl) Received: (from paul@localhost) by pop3.psconsult.nl (8.9.2/8.9.2) id JAA85464; Sat, 12 Apr 2003 09:35:38 +0200 (CEST) (envelope-from paul) Date: Sat, 12 Apr 2003 09:35:37 +0200 From: Paul Schenkeveld To: Kurt Jaeger Message-ID: <20030412093537.A85374@psconsult.nl> References: <200304111303.36147.pokui@one2net.co.ug> <20030411100723.GK929@complx.LF.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0i In-Reply-To: <20030411100723.GK929@complx.LF.net>; from lists@complx.LF.net on Fri, Apr 11, 2003 at 12:07:23PM +0200 cc: freebsd-isp@freebsd.org Subject: Re: serial oob (modem management) X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 07:36:57 -0000 Hi All, On Fri, Apr 11, 2003 at 12:07:23PM +0200, Kurt Jaeger wrote: > Hi! > > > > i want to add a serial console with a cellular mobile phone to my freebsd > > > boxes. > > [...] > > Not so sure about what you are after, but I *THINK* you will need to build > > ports/comms/gnokii > > and then run gnokiid. That should give you a "normal" serial /modem interface > > to the phone. > > The problem is probably the other way round ? > > How does one call the mobile phone in such a way that it accepts the > call and acts like a serial modem to the computer ? > > A normal serial line on a nokia can be used as an outdial modem. > The problem is: How to use it for a dial*in* ? First see if the Nokia allows setting up the modem to auto answer the call. In Hayes lingo one would send ATs0=2 where 2 is the number of rings after which the modem auto answers, 0 meaning don't answer automatically. If this doesn't work, see if the modem tells you when a call comes in, usually with the message RING (you can tell this by using tip or cu to get an interactive session to the modem and then dial the number of the Nokia from another line). If the Nokia shows the RING message you can still have your auto-answer by using the mgetty+sendfax port. > -- > MfG/Best regards, Kurt Jaeger 17 years to go ! > LF.net GmbH fon +49 711 90074-23 pi@LF.net > Ruppmannstr. 27 fax +49 711 90074-33 > D-70565 Stuttgart mob +49 171 3101372 Good luck! Paul Schenkeveld, Consultant PSconsult ICT Services BV From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 06:36:42 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DA67037B401 for ; Sat, 12 Apr 2003 06:36:42 -0700 (PDT) Received: from users.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 842E043F75 for ; Sat, 12 Apr 2003 06:36:39 -0700 (PDT) (envelope-from munk@users.munk.nu) Received: from users.munk.nu (munk@localhost [127.0.0.1]) by users.munk.nu (8.12.9/8.12.8) with ESMTP id h3CDccJ0052135 for ; Sat, 12 Apr 2003 14:38:38 +0100 (BST) (envelope-from munk@users.munk.nu) Received: (from munk@localhost) by users.munk.nu (8.12.9/8.12.8/Submit) id h3CDcbvL052134 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 14:38:37 +0100 (BST) Date: Sat, 12 Apr 2003 14:38:37 +0100 From: Jez Hancock To: FreeBSD ISP List Message-ID: <20030412133836.GA52054@users.munk.nu> Mail-Followup-To: FreeBSD ISP List Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i Subject: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 13:36:43 -0000 Hi all, I have two colocated servers in the US and I'm in the UK. I need to install FreeBSD 4.8 from scratch across a serial connection that exists between the two servers. The current OS are FreeBSD 4.6.2 and as such I am unable to adequately make world to the latest STABLE release. Further I do not have the option of installing from a CDROM installed on the server. Has anyone been in a similar situation and if so how did you resolve the problem? Thanks in advance, Jez From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 07:13:20 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5D07037B404 for ; Sat, 12 Apr 2003 07:13:20 -0700 (PDT) Received: from bilver.wjv.com (user38.net339.fl.sprint-hsd.net [65.40.24.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4573B43FBF for ; Sat, 12 Apr 2003 07:13:19 -0700 (PDT) (envelope-from bv@wjv.com) Received: from bilver.wjv.com (localhost.wjv.com [127.0.0.1]) by bilver.wjv.com (8.12.9/8.12.9) with ESMTP id h3CEDExc068720 for ; Sat, 12 Apr 2003 10:13:15 -0400 (EDT) (envelope-from bv@wjv.com) Received: (from bv@localhost) by bilver.wjv.com (8.12.9/8.12.9/Submit) id h3CEDDbe068701 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 10:13:14 -0400 (EDT) Date: Sat, 12 Apr 2003 10:13:13 -0400 From: Bill Vermillion To: freebsd-isp@freebsd.org Message-ID: <20030412141313.GB58220@wjv.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: W.J.Vermillion / Orlando - Winter Park ReplyTo: bv@wjv.com User-Agent: Mutt/1.5.1i X-Spam-Status: No, hits=-1.8 required=5.0 tests=NOSPAM_INC,QUOTED_EMAIL_TEXT,SPAM_PHRASE_01_02, TO_BE_REMOVED_REPLY,USER_AGENT,USER_AGENT_MUTT version=2.43 Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: bv@wjv.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 14:13:20 -0000 Subject: Re: Serial line fbsd installation with no CD Earlier in the linear time track, approximately Sat, Apr 12, 2003 at 14:38 , &Jez Hancockdivulged this public information: > I have two colocated servers in the US and I'm in the UK. > I need to install FreeBSD 4.8 from scratch across a serial > connection that exists between the two servers. The current OS > are FreeBSD 4.6.2 and as such I am unable to adequately make > world to the latest STABLE release. > Further I do not have the option of installing from a CDROM > installed on the server. Has anyone been in a similar situation > and if so how did you resolve the problem? What is ther problem with the makeworld you are having? And are you really performing 'make world' and not 'make buildworld' ? I have several colocated servers and I perform OS upgrades via a cvsup of the sources. What are the problems with the makeing the system. Since these are production servers I'd almost be inclined to say to go with the 4.7 pathched release. I've not moved any to the 4.8 RELEASE yet as it still is a bit 'young' in my opinion. I do have then on the 4.7's with the lastest patch level > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" Bill -- Bill Vermillion - bv @ wjv . com -- Bill Vermillion - bv @ wjv . com From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 08:35:38 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B767C37B401 for ; Sat, 12 Apr 2003 08:35:38 -0700 (PDT) Received: from users.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id AB7D043F75 for ; Sat, 12 Apr 2003 08:35:37 -0700 (PDT) (envelope-from munk@users.munk.nu) Received: from users.munk.nu (munk@localhost [127.0.0.1]) by users.munk.nu (8.12.9/8.12.8) with ESMTP id h3CFbbJ0053548 for ; Sat, 12 Apr 2003 16:37:37 +0100 (BST) (envelope-from munk@users.munk.nu) Received: (from munk@localhost) by users.munk.nu (8.12.9/8.12.8/Submit) id h3CFbaIe053547 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 16:37:36 +0100 (BST) Date: Sat, 12 Apr 2003 16:37:36 +0100 From: Jez Hancock To: freebsd-isp@freebsd.org Message-ID: <20030412153736.GA53356@users.munk.nu> Mail-Followup-To: freebsd-isp@freebsd.org References: <20030412141313.GB58220@wjv.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030412141313.GB58220@wjv.com> User-Agent: Mutt/1.4.1i Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 15:35:39 -0000 Hi Bill, On Sat, Apr 12, 2003 at 10:13:13AM -0400, Bill Vermillion wrote: > Subject: Re: Serial line fbsd installation with no CD > > Earlier in the linear time track, approximately Sat, Apr 12, 2003 at 14:38 , > &Jez Hancockdivulged this public information: > > > > I have two colocated servers in the US and I'm in the UK. > > I need to install FreeBSD 4.8 from scratch across a serial > > connection that exists between the two servers. The current OS > > are FreeBSD 4.6.2 and as such I am unable to adequately make > > world to the latest STABLE release. > > > Further I do not have the option of installing from a CDROM > > installed on the server. Has anyone been in a similar situation > > and if so how did you resolve the problem? > > What is ther problem with the makeworld you are having? The problem was with ipfw2 and in general it's just the fact this is currently not a production server and we'd rather have a fresh install of 4.8 (the NOC currently installs 4.6.2 for some reason and it might become the case that they'll start installing 4.8 by default when they answer us - negating the need for a solution to the subject question:). > And are you really performing 'make world' and not 'make > buildworld' ? I followed /usr/src/Makefile: # 1. `cd /usr/src' (or to the directory containing your source tree). # 2. `make buildworld' # 3. `make buildkernel KERNCONF=YOUR_KERNEL_HERE' (default is GENERIC). # 4. `make installkernel KERNCONF=YOUR_KERNEL_HERE' (default is GENERIC). # 5. `reboot' (in single user mode: boot -s from the loader prompt). # 6. `mergemaster -p' # 7. `make installworld' # 8. `mergemaster' # 9. `reboot' with the exception of using 'make update' in between steps 1 and 2. /etc/make.conf setup as: SUP_UPDATE= yes SUP= /usr/local/bin/cvsup SUPFLAGS= -g -L 2 SUPHOST= cvsup.uk.FreeBSD.org SUPFILE= /etc/supfile-src-stable PORTSSUPFILE= /etc/supfile-ports-all DOCSUPFILE= /etc/supfile-doc-all SENDMAIL_CFLAGS+=-I/usr/local/include/sasl1 -DSASL SENDMAIL_LDFLAGS+=-L/usr/local/lib SENDMAIL_LDADD+=-lsasl SENDMAIL_MC=/etc/mail/munk.nu.mc IPFW2=TRUE /etc/supfile-src-stable setup as: *default host=cvsup.uk.FreeBSD.org *default base=/usr/local/etc/cvsup *default prefix=/usr *default release=cvs tag=RELENG_4 *default delete use-rel-suffix *default compress src-all > I have several colocated servers and I perform OS upgrades > via a cvsup of the sources. What are the problems with the > makeing the system. Sorry I should have mentioned one is production and one is dev (this is the one we're rebuilding and migrating to). > Since these are production servers I'd almost be > inclined to say to go with the 4.7 pathched release. > > I've not moved any to the 4.8 RELEASE yet as it still is a bit > 'young' in my opinion. I do have then on the 4.7's with the > lastest patch level My plan was to install a stock 4.8 system and immediately cvsup to STABLE. Perhaps as you mention it would be better to stay with 4.7-RELEASE until 4.8 is out of it's infancy. Hopefully the NOC support will get moving on providing at least a 4.7 CD for installation. This all brings to mind another question I had regarding partitioning, will start another thread for that :) Many thanks again, Jez From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 09:39:23 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C580C37B404 for ; Sat, 12 Apr 2003 09:39:23 -0700 (PDT) Received: from kurdistan.ath.cx (adsl-64-169-155-173.dsl.chic01.pacbell.net [64.169.155.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id 816BB43FD7 for ; Sat, 12 Apr 2003 09:39:22 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: from kurdistan.ath.cx (ns1 [127.0.0.1]) by kurdistan.ath.cx (8.12.8/8.12.6) with ESMTP id h3CGdM04098923; Sat, 12 Apr 2003 09:39:22 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: (from sereciya@localhost) by kurdistan.ath.cx (8.12.8/8.12.6/Submit) id h3CGdLgW098922; Sat, 12 Apr 2003 09:39:21 -0700 (PDT) Date: Sat, 12 Apr 2003 09:39:21 -0700 From: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= To: freebsd-isp@freebsd.org Message-ID: <20030412163921.GC77466@kurdistan.ath.cx> References: <20030412133836.GA52054@users.munk.nu> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20030412133836.GA52054@users.munk.nu> User-Agent: Mutt/1.4i cc: jez.hancock@munk.nu Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 16:39:24 -0000 Hello, > I have two colocated servers in the US and I'm in the UK. I need to install > FreeBSD 4.8 from scratch across a serial connection that exists between the > two servers. Two questions: 1) do you already have the serial connection set up between the two servers? (if not, i'm attaching an example ppp config below) 2) do you have a floppy drive on the server that you want to do the install on? > The current OS are FreeBSD 4.6.2 and as such I am unable to > adequately make world to the latest STABLE release. Please explain. The connection is set up? What are you using? NFS? > Further I do not have the option of installing from a CDROM installed on > the server. Has anyone been in a similar situation and if so how did you > resolve the problem? Yes. One way to do it is to set up a ppp connection between the servers so that the machine you want to install on has access to the internet through the other server. Please elaborate further so that we may help you out. -- +--------------------------------------------------------------+ | Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî | | Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me | | nêzîk e. | | | | Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin | | Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan | | kesên xwînperest, ne jî ji yên din. | | | | -Sêrêciya Kurdistanî | +--------------------------------------------------------------+ translation provided on request: sereciya@kurdistan.ath.cx PS Sample ppp setup below: thanks to "will@unfoldings.net" ----------------------------------------------------------------------- Why use mpd for this? pppd(8) will do just fine. Here's a quick example, all needed is a pppd on both ends, end for the cable to be plugged in: #/etc/ppp/options on pc1 cuaa0 #FreeBSD: COM1 in DOS 115200 crtscts lock local #Use nullmodem mode instead of modem lines deflate #Compression # IP address for this end : IP address for other end 192.168.254.1:192.168.254.1 netmask 255.255.255.255 #/etc/ppp/options on pc2 #Same as above, except 192.168.254.2:192.168.254.1 #If the other machine is Linux, cuaa0 is ttyS0. Now just start pppd on both ends and once it syncs, you will be able to have the machines talk IP to each other. To start pppd automatically and have it restarted if it dies, add this to /etc/ttys: cuaa0 "/usr/sbin/pppd cuaa0 -detach" unknown on ----------------------------------------------------------------------- Original posting by: Willie Viljoen Freelance IT Consultant 214 Paul Kruger Avenue, Universitas Bloemfontein 9321 South Africa +27 51 522 15 60 +27 51 522 44 36 (after hours) +27 82 404 03 27 (mobile) will@unfoldings.net From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 10:24:01 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 10FC237B401 for ; Sat, 12 Apr 2003 10:24:01 -0700 (PDT) Received: from users.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id E0E0343FA3 for ; Sat, 12 Apr 2003 10:23:59 -0700 (PDT) (envelope-from munk@users.munk.nu) Received: from users.munk.nu (munk@localhost [127.0.0.1]) by users.munk.nu (8.12.9/8.12.8) with ESMTP id h3CHQ0J0054964 for ; Sat, 12 Apr 2003 18:26:00 +0100 (BST) (envelope-from munk@users.munk.nu) Received: (from munk@localhost) by users.munk.nu (8.12.9/8.12.8/Submit) id h3CHQ0GF054963 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 18:26:00 +0100 (BST) Date: Sat, 12 Apr 2003 18:26:00 +0100 From: Jez Hancock To: freebsd-isp@freebsd.org Message-ID: <20030412172600.GA54836@users.munk.nu> Mail-Followup-To: freebsd-isp@freebsd.org References: <20030412133836.GA52054@users.munk.nu> <20030412163921.GC77466@kurdistan.ath.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20030412163921.GC77466@kurdistan.ath.cx> User-Agent: Mutt/1.4.1i Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 17:24:01 -0000 Hi Sêrêciya, On Sat, Apr 12, 2003 at 09:39:21AM -0700, Sêrêciya Kurdistanî wrote: > Two questions: > > 1) do you already have the serial connection set up between the two servers? > (if not, i'm attaching an example ppp config below) Yes a serial connection can be established between the two servers. As I mentioned in my last post one box is production and one is 'dev' (which we're migrating to). > 2) do you have a floppy drive on the server that you want to do the install > on? Part of the problem is lame NOC support, hence the desire to do all of this remotely without external support (ie no external peripherals at all). > > The current OS are FreeBSD 4.6.2 and as such I am unable to > > adequately make world to the latest STABLE release. > > Please explain. The connection is set up? What are you using? NFS? Ok I hope you got my last mail to the list in which I explained how I upgraded to 4.8-STABLE :) Essentially I connected from the production server to the dev server via serial connex (minicom) and upgraded that way. I have a feeling the process of updating the source might have been flawed and also I have a sneaking suspicion that I left out IPFW2 from make.conf at the time. (IPFW2 was is currently the main problem which we want to be using for traffic shaping and prioritizing). Many thanks for your response and your PPP script - much obliged :) Kind regards, Jez From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 10:42:41 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3C55C37B418 for ; Sat, 12 Apr 2003 10:42:41 -0700 (PDT) Received: from kurdistan.ath.cx (adsl-64-169-155-173.dsl.chic01.pacbell.net [64.169.155.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5787043FAF for ; Sat, 12 Apr 2003 10:42:40 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: from kurdistan.ath.cx (ns1 [127.0.0.1]) by kurdistan.ath.cx (8.12.8/8.12.6) with ESMTP id h3CHge04000453; Sat, 12 Apr 2003 10:42:40 -0700 (PDT) (envelope-from sereciya@kurdistan.ath.cx) Received: (from sereciya@localhost) by kurdistan.ath.cx (8.12.8/8.12.6/Submit) id h3CHgdEN000452; Sat, 12 Apr 2003 10:42:39 -0700 (PDT) Date: Sat, 12 Apr 2003 10:42:39 -0700 From: =?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?= To: freebsd-isp@freebsd.org Message-ID: <20030412174239.GB99027@kurdistan.ath.cx> References: <20030412133836.GA52054@users.munk.nu> <20030412163921.GC77466@kurdistan.ath.cx> <20030412172600.GA54836@users.munk.nu> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20030412172600.GA54836@users.munk.nu> User-Agent: Mutt/1.4i cc: jez.hancock@munk.nu Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 17:42:41 -0000 Hello Jez, > Yes a serial connection can be established between the two servers. As I mentioned > in my last post one box is production and one is 'dev' (which we're migrating to). Ok great ;) the ppp script will make it easier than using minicom for that too. > Part of the problem is lame NOC support, hence the desire to do all of this > remotely without external support (ie no external peripherals at all). I understand. > > > The current OS are FreeBSD 4.6.2 and as such I am unable to > > > adequately make world to the latest STABLE release. I may have missunderstood. So you already have FreeBSD set up on the installation machine, but you have trouble making "world"? I usualy just update & build world on my fastest machine, then install world having mounted /usr/src via NFS. Here are some good articles (with examples) on this topic: http://www.freebsddiary.org/makeworld-2boxes.php http://www.onlamp.com/pub/a/bsd/2002/02/14/Big_Scary_Daemons.html?page=2 Aside from that, let us know where exactly make world is giving you trouble. Does the compile hang at certain place? Copy & Paste some output ;) > I have a feeling the process of updating the source might have been flawed and > also I have a sneaking suspicion that I left out IPFW2 from make.conf at the time. > (IPFW2 was is currently the main problem which we want to be using for traffic > shaping and prioritizing). If you're wanting to use IPFW2, don't forget to have "options IPFW2" in the kernel config and "IPFW2=true" in your /etc/make.conf Good luck! > Many thanks for your response and your PPP script - much obliged :) You are very welcome, I only re-posted an existing message, don't forget to thank the original author ;) > Kind regards, ;) -- +--------------------------------------------------------------+ | Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî | | Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me | | nêzîk e. | | | | Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin | | Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan | | kesên xwînperest, ne jî ji yên din. | | | | -Sêrêciya Kurdistanî | +--------------------------------------------------------------+ translation provided on request: sereciya@kurdistan.ath.cx From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 11:47:49 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C3D5237B404 for ; Sat, 12 Apr 2003 11:47:49 -0700 (PDT) Received: from users.munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 48D4343F3F for ; Sat, 12 Apr 2003 11:47:48 -0700 (PDT) (envelope-from munk@users.munk.nu) Received: from users.munk.nu (munk@localhost [127.0.0.1]) by users.munk.nu (8.12.9/8.12.8) with ESMTP id h3CInnJ0055971 for ; Sat, 12 Apr 2003 19:49:49 +0100 (BST) (envelope-from munk@users.munk.nu) Received: (from munk@localhost) by users.munk.nu (8.12.9/8.12.8/Submit) id h3CInmpp055970 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 19:49:48 +0100 (BST) Date: Sat, 12 Apr 2003 19:49:48 +0100 From: Jez Hancock To: FreeBSD ISP List Message-ID: <20030412184948.GA55944@users.munk.nu> Mail-Followup-To: FreeBSD ISP List References: <20030412133836.GA52054@users.munk.nu> <20030412163921.GC77466@kurdistan.ath.cx> <20030412172600.GA54836@users.munk.nu> <20030412174239.GB99027@kurdistan.ath.cx> Mime-Version: 1.0 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20030412174239.GB99027@kurdistan.ath.cx> User-Agent: Mutt/1.4.1i Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 18:47:50 -0000 Hi again, On Sat, Apr 12, 2003 at 10:42:39AM -0700, Sêrêciya Kurdistanî wrote: > > I have a feeling the process of updating the source might have been flawed and > > also I have a sneaking suspicion that I left out IPFW2 from make.conf at the time. > > (IPFW2 was is currently the main problem which we want to be using for traffic > > shaping and prioritizing). > > If you're wanting to use IPFW2, don't forget to have "options IPFW2" in the > kernel config and "IPFW2=true" in your /etc/make.conf Good luck! Ack - it looks like this is the problem after all I'd missed out IPFW=true from /etc/make.conf :( I'll rebuild with this and see how it goes. Thanks! Jez From owner-freebsd-isp@FreeBSD.ORG Sat Apr 12 11:48:26 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0F53437B401 for ; Sat, 12 Apr 2003 11:48:26 -0700 (PDT) Received: from bilver.wjv.com (user38.net339.fl.sprint-hsd.net [65.40.24.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id F1E4B43FAF for ; Sat, 12 Apr 2003 11:48:24 -0700 (PDT) (envelope-from bv@wjv.com) Received: from bilver.wjv.com (localhost.wjv.com [127.0.0.1]) by bilver.wjv.com (8.12.9/8.12.9) with ESMTP id h3CIloab058929 for ; Sat, 12 Apr 2003 14:47:57 -0400 (EDT) (envelope-from bv@wjv.com) Received: (from bv@localhost) by bilver.wjv.com (8.12.9/8.12.9/Submit) id h3CIljAC058926 for freebsd-isp@freebsd.org; Sat, 12 Apr 2003 14:47:45 -0400 (EDT) Date: Sat, 12 Apr 2003 14:47:39 -0400 From: Bill Vermillion To: freebsd-isp@freebsd.org Message-ID: <20030412184738.GA52650@wjv.com> References: <20030412141313.GB58220@wjv.com> <20030412153736.GA53356@users.munk.nu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030412153736.GA53356@users.munk.nu> Organization: W.J.Vermillion / Orlando - Winter Park ReplyTo: bv@wjv.com User-Agent: Mutt/1.5.1i X-Spam-Status: No, hits=-3.2 required=5.0 tests=IN_REP_TO,NOSPAM_INC,QUOTED_EMAIL_TEXT,REFERENCES, SPAM_PHRASE_02_03,USER_AGENT,USER_AGENT_MUTT version=2.43 Subject: Re: Serial line fbsd installation with no CD X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: bv@wjv.com List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Apr 2003 18:48:26 -0000 On Sat, Apr 12, 2003 at 16:37 , Jez Hancock moved his mouse, rebooted for the change to take effect, and then said: > Hi Bill, > On Sat, Apr 12, 2003 at 10:13:13AM -0400, Bill Vermillion wrote: > > Subject: Re: Serial line fbsd installation with no CD > > Earlier in the linear time track, approximately Sat, Apr 12, 2003 at 14:38 , > > &Jez Hancockdivulged this public information: > > > I have two colocated servers in the US and I'm in the UK. > > > I need to install FreeBSD 4.8 from scratch across a serial > > > connection that exists between the two servers. The current OS > > > are FreeBSD 4.6.2 and as such I am unable to adequately make > > > world to the latest STABLE release. > > > Further I do not have the option of installing from a CDROM > > > installed on the server. Has anyone been in a similar situation > > > and if so how did you resolve the problem? > > What is ther problem with the makeworld you are having? > The problem was with ipfw2 and in general it's just the fact > this is currently not a production server and we'd rather have > a fresh install of 4.8 (the NOC currently installs 4.6.2 for > some reason and it might become the case that they'll start > installing 4.8 by default when they answer us - negating the > need for a solution to the subject question:). Ah - so it's a company that does more than just put the server in place and does install too. I'm not used to that as about the only help I'd get in the colo is a 'helping hands' if needed - but I'm only 1/2 hour away. It's basically a top-tier tranport provider who provides facilities for anyting you'd want - but is not a colo of the 'we provide everything you need'. We have our own racks and do all our own work - the only thing the NOC does is give us connectivity. Different perception on my part. If I have a problem one of us [small company] goes and changes the machines ourselves, or accompanies one our clients while they change their own machine. Security is strict so we have to arrange for anyone else to get into the building. > > I have several colocated servers and I perform OS upgrades > > via a cvsup of the sources. What are the problems with the > > makeing the system. > Sorry I should have mentioned one is production and one is dev > (this is the one we're rebuilding and migrating to). OK. > > Since these are production servers I'd almost be > > inclined to say to go with the 4.7 pathched release. > > I've not moved any to the 4.8 RELEASE yet as it still is a bit > > 'young' in my opinion. I do have then on the 4.7's with the > > lastest patch level > My plan was to install a stock 4.8 system and immediately cvsup > to STABLE. Perhaps as you mention it would be better to stay > with 4.7-RELEASE until 4.8 is out of it's infancy. I run stable on my personal machine and a backup machine but never going beyond a patch-level release for production units. > Hopefully the NOC support will get moving on providing at least a 4.7 > CD for installation. With our totally local appoach we've pullled a couple of systems from 'national' providers who just didn't understand small custom individual attention. I think we might actually qualify as one of the smallest ISPs in existance :-) We're small but we've seen others in the same facility disappear. But having machine with connections not less that 100Mbs running for a few hundred feet before it gets onto a global 10Gbs backbone does have it's advantages. Bill -- Bill Vermillion - bv @ wjv . com