Date: Wed, 4 Aug 2004 08:15:16 -0700 (PDT) From: DK <asdzxc111@yahoo.com> To: Giorgos Keramidas <keramida@ceid.upatras.gr> Cc: freebsd-questions@freebsd.org Subject: Re: firewalls, connecting, config & apachetoolbox (was: Re: BigApache [..]) Message-ID: <20040804151516.41150.qmail@web41007.mail.yahoo.com> In-Reply-To: <20040802093414.GA39066@orion.daedalusnetworks.priv>
next in thread | previous in thread | raw e-mail | index | archive | help
--0-1392659796-1091632516=:39064 Content-Type: text/plain; charset=us-ascii Content-Id: Content-Disposition: inline Hi Giorgos et al, thanks for your patience. I have enclosed the output of dsmeg, ps, XF86Config if it helps in understanding why my system runs slower than W2000 & why I cannot connect to the net via my broadband connection. --- Giorgos Keramidas <keramida@ceid.upatras.gr> wrote: > Bearing this in mind you might, of course, find it a bit more reassuring to > run a firewall like IPFW. But this doesn't *require* a kernel recompile. > You can simply load the ipfw.ko module with kldload(8) and immediatelly > start setting up the rules of your firewall ruleset. As root, you can load > the ipfw module by: # kldload ipfw Thanks for that. I have ipfw loaded okay(I hope). After reading 14.8.3 from the handbook regarding IPFW, I was a little worried. "14.8.3 Enabling IPFW on FreeBSD As the main part of the IPFW system lives in the kernel, you will need to add one or more options to your kernel configuration file, depending on what facilities you want, and RECOMPILE your kernel." > The default set of firewall packet inspection rules that ipfw loads will > block *EVERYTHING* so you might want to do a bit of research on the > available rulesets by reading about rc.firewall, rc.conf and/or browse the > contents of the /etc/defaults/rc.conf file: If I understand it correctly after reading the handbook, if I add 'firewall_type=open' in my '/etc/rc.conf' file, will it make all incoming/outgoing ports open so I can connect to the net with sysinstall to download packages ??? > The "bad intepreter" error means that the `install.sh' script (most likely) > starts with a line like this: > Edit `install.sh' and replace `/bin/bash' with `/usr/local/bin/bash' if you > have bash installed. Legend. Got this script working now :)) ...Except...All modules seem to install okay Except for "mod_perl". I get the error: ----------------------- [-] 16) -Mod Perl 1.29 Choice [?] 16 LWP::UserAgent not installed! HTML::HeadParser not installed! Type "perl -MCPAN -e shell" to start the perl CPAN shell, then "install LWP::UserAgent" to install the LWP::UserAgent module! Substitute LWP::UserAgent for any perl module. ------------------------------ I don't understand what I am supposed to "substitute" (above) ??? Other problems(Doh!): 1) For automount, I edited /etc/fstab. It was easier & more logical than the editing amd(/etc/amd.conf & /etc/amd.map) Problem: There has to be a CD in the CD drive & a floppy in the floppy drive otherwise the drives don't automount & the bootup faulters !! - This is annoying. Is there a way around this so I can automount at bootup without a disk being in the drive ??? 2) I ran xf86config & generated a new config file. It broke X & I was not able to log in. Thankfully I saved a working one to floppy. Any suggestions as to what I can change in my XF86Config file(attached) so that all the hardware is being utilised & that the screen is being used fully instead of only 80% ??? ------------------------- My Monitor Specs(If this helps): viewsonic pf775 1600x1200 @ 77Hz 1280x1024 @ 90Hz 1024x768 @ 118Hz 800x600 @ 149Hz Frequency f h: 30~97kHz; f v: 50~180Hz --------------------------- 3) I tried to intstall the login client for my broadband connection so I can use sysinstall to download & install packages. The program fails on make & make install! Screen Output ------------------- 127# make install Makefile error: there is no COMMENT variable defined for this port. Please, rectify this. *** Error code 1 Stop in /usr/ports/distfiles/login. ------------------- Makefile ----------------------------- PORTNAME= login PORTVERSION= 2.0 CATEGORIES= net MASTER_SITES= http:// DISTNAME= login EXTRACT_SUFX= -2.0-unix-src.tar.gz GNU_CONFIGURE= yes USE_GMAKE= yes post-extract: $(CP) $(FILESDIR)/login.sh $(WRKSRC) .include <bsd.port.mk> ----------------------- Any suggestions as to what "COMMENT variable" it wants defined ??? 4) I am taking your advice & am trying to connect to the net with sysinstall so I can download packages/ports & hopefully find an easier way to install apps. However when I go through the steps to install a package & select a freebsd ftp site, at the end, a prompt comes up saying something like "cannot resolve ftp... name server, network needs to be configured..) ... or something like that Q: Do I need to get my broadband login client working to connect to the net OR can I login to my ISP from a terminal within BSD ??? Q: Do I need to login to my broadband ISP via my login client to enable "sysinstall" to be able to download packages etc ... ??? Q: Like tracert on W2000, is their a command I can use in BSD to see when I am connected to the net ??? Kind Regards, DK __________________________________ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail --0-1392659796-1091632516=:39064 Content-Type: text/plain; name="XF86Config.new" Content-Description: XF86Config.new Content-Disposition: inline; filename="XF86Config.new" Section "ServerLayout" Identifier "XFree86 Configured" Screen 0 "Screen0" 0 0 InputDevice "Mouse0" "CorePointer" InputDevice "Keyboard0" "CoreKeyboard" EndSection Section "Files" RgbPath "/usr/X11R6/lib/X11/rgb" ModulePath "/usr/X11R6/lib/modules" FontPath "/usr/X11R6/lib/X11/fonts/misc/" FontPath "/usr/X11R6/lib/X11/fonts/Speedo/" FontPath "/usr/X11R6/lib/X11/fonts/Type1/" FontPath "/usr/X11R6/lib/X11/fonts/75dpi/" FontPath "/usr/X11R6/lib/X11/fonts/100dpi/" EndSection Section "Module" Load "dbe" Load "dri" Load "extmod" Load "glx" Load "record" Load "xtrap" Load "speedo" Load "type1" EndSection Section "InputDevice" Identifier "Keyboard0" Driver "keyboard" EndSection Section "InputDevice" Identifier "Mouse0" Driver "mouse" Option "Protocol" "auto" Option "Device" "/dev/sysmouse" EndSection Section "Monitor" Identifier "Monitor0" VendorName "VSC" ModelName "PF775" HorizSync 30-107 VertRefresh 50.0-100.0 Option "DPMS" EndSection Section "Device" ### Available Driver options are:- ### Values: <i>: integer, <f>: float, <bool>: "True"/"False", ### <string>: "String", <freq>: "<f> Hz/kHz/MHz" ### [arg]: arg optional #Option "SWcursor" # [<bool>] #Option "HWcursor" # [<bool>] #Option "NoAccel" # [<bool>] #Option "ShowCache" # [<bool>] #Option "ShadowFB" # [<bool>] #Option "UseFBDev" # [<bool>] #Option "Rotate" # [<str>] #Option "VideoKey" # <i> #Option "FlatPanel" # [<bool>] #Option "FPDither" # [<bool>] #Option "CrtcNumber" # <i> Identifier "Card0" Driver "nv" VendorName "nVidia Corporation" BoardName "NV4 [RIVA TNT]" BusID "PCI:0:20:0" EndSection Section "Screen" Identifier "Screen0" Device "Card0" Monitor "Monitor0" DefaultDepth 24 SubSection "Display" Depth 16 Modes "1024x768" EndSubSection SubSection "Display" Depth 24 Modes "1024x768" EndSubSection EndSection --0-1392659796-1091632516=:39064 Content-Type: text/plain; name="dmesg.txt" Content-Description: dmesg.txt Content-Disposition: inline; filename="dmesg.txt" Copyright (c) 1992-2004 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 4.10-RELEASE #0: Tue May 25 22:47:12 GMT 2004 root@perseus.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC Timecounter "i8254" frequency 1193182 Hz CPU: Pentium/P54C (179.63-MHz 586-class CPU) Origin = "GenuineIntel" Id = 0x52c Stepping = 12 Features=0x1bf<FPU,VME,DE,PSE,TSC,MSR,MCE,CX8> real memory = 134217728 (131072K bytes) avail memory = 125165568 (122232K bytes) Preloaded elf kernel "kernel" at 0xc0551000. Intel Pentium detected, installing workaround for F00F bug md0: Malloc disk npx0: <math processor> on motherboard npx0: INT 16 interface pcib0: <Host to PCI bridge> on motherboard pci0: <PCI bus> on pcib0 isab0: <Intel 82371SB PCI to ISA bridge> at device 7.0 on pci0 isa0: <ISA bus> on isab0 atapci0: <Intel PIIX3 ATA controller> port 0xf000-0xf00f at device 7.1 on pci0 ata0: at 0x1f0 irq 14 on atapci0 ata1: at 0x170 irq 15 on atapci0 rl0: <Accton MPX 5030/5038 10/100BaseTX> port 0x6000-0x60ff mem 0xe2000000-0xe20000ff irq 11 at device 17.0 on pci0 rl0: Ethernet address: 00:e0:29:65:bb:23 miibus0: <MII bus> on rl0 rlphy0: <RealTek internal media interface> on miibus0 rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto ahc0: <Adaptec 2940A Ultra SCSI adapter> port 0x6100-0x61ff mem 0xe2001000-0xe2001fff irq 9 at device 19.0 on pci0 aic7860: Ultra Single Channel A, SCSI Id=7, 3/253 SCBs pci0: <NVidia Riva TNT graphics accelerator> at 20.0 irq 9 orm0: <Option ROM> at iomem 0xc0000-0xc7fff on isa0 pmtimer0 on isa0 fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0 fdc0: FIFO enabled, 8 bytes threshold fd0: <1440-KB 3.5" drive> on fdc0 drive 0 atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0 atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0 kbd0 at atkbd0 psm0: <PS/2 Mouse> irq 12 on atkbdc0 psm0: model IntelliMouse Explorer, device ID 4 vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0 sc0: <System console> at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1 at port 0x2f8-0x2ff irq 3 on isa0 sio1: type 16550A ppc0: <Parallel port> at port 0x378-0x37f irq 7 on isa0 ppc0: SMC-like chipset (ECP/EPP/PS2/NIBBLE) in COMPATIBLE mode plip0: <PLIP network interface> on ppbus0 lpt0: <Printer> on ppbus0 lpt0: Interrupt-driven port ppi0: <Parallel I/O> on ppbus0 ata4: <Generic ESDI/IDE/ATA controller> at port 0x168-0x16f,0x36e-0x36f irq 10 on isa0 ad0: 4892MB <QUANTUM FIREBALL EL5.1A> [10602/15/63] at ata0-master WDMA2 ad2: 1222MB <QUANTUM FIREBALL1280A> [2484/16/63] at ata1-master WDMA2 acd0: CDROM <CRD-8400B> at ata1-slave PIO4 Waiting 15 seconds for SCSI devices to settle Mounting root from ufs:/dev/ad0s2a IP packet filtering initialized, divert disabled, rule-based forwarding enabled, default to deny, logging disabled nfs send error 13 for server pid85@127:/host nfs send error 13 for server pid1@127:/net cd9660: RockRidge Extension fd0c: hard error reading fsbn 0 of 0-3 (No status) --0-1392659796-1091632516=:39064 Content-Type: text/plain; name="ps.txt" Content-Description: ps.txt Content-Disposition: inline; filename="ps.txt" UID PID PPID CPU PRI NI VSZ RSS WCHAN STAT TT TIME COMMAND 0 0 0 0 -18 0 0 0 sched DLs ?? 0:00.00 swapper 0 1 0 0 10 0 552 204 wait ILs ?? 0:00.04 init 0 2 0 0 10 0 0 0 tqthr DL ?? 0:00.00 taskqueue 0 3 0 0 28 0 0 0 idle DL ?? 0:00.00 aic_recovery0 0 4 0 0 28 0 0 0 idle DL ?? 0:00.00 aic_recovery0 0 5 0 0 -18 0 0 0 psleep DL ?? 0:00.08 pagedaemon 0 6 0 0 18 0 0 0 psleep DL ?? 0:00.00 vmdaemon 0 7 0 0 -18 0 0 0 psleep DL ?? 0:00.06 bufdaemon 0 8 0 0 -2 0 0 0 vlruwt DL ?? 0:00.67 vnlru 0 9 0 0 18 0 0 0 syncer DL ?? 0:02.12 syncer 0 71 1 0 2 0 988 644 select Ss ?? 0:00.27 syslogd 1 74 1 157 2 0 944 452 select Is ?? 0:00.00 portmap 0 79 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod 0 80 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod 0 81 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod 0 82 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod 0 86 1 0 2 0 1140 656 sbwait D ?? 0:00.02 amd 0 87 1 0 2 0 1140 656 sbwait D ?? 0:00.02 amd 0 92 1 157 2 0 1060 612 select Is ?? 0:00.00 inetd 0 94 1 0 10 0 1028 680 nanslp Is ?? 0:00.07 cron 0 96 1 99 2 0 2596 1360 select Is ?? 0:03.19 sshd 0 99 1 0 2 0 3036 1672 select Ss ?? 0:00.62 sendmail 25 102 1 3 18 0 2936 1580 pause Is ?? 0:00.02 sendmail 0 128 1 0 2 0 920 484 select Is ?? 0:31.25 moused 88 182 145 0 2 0 51288 18608 poll S ?? 0:19.62 mysqld 0 200 199 1 2 0 47468 46344 select S ?? 2:21.69 XFree86 0 1874 1 0 2 0 936 644 select Ss ?? 0:00.03 dhclient 0 4799 4798 0 18 0 1352 864 pause Ss p0 0:00.47 csh 0 4864 4799 1 28 0 456 252 - R+ p0 0:00.00 ps 0 4636 4612 0 18 0 1356 856 pause Is p1 0:00.19 csh 0 4807 4636 0 10 0 1128 616 wait I+ p1 0:00.02 man 0 4808 4807 0 10 0 628 416 wait I+ p1 0:00.01 sh 0 4809 4808 0 -6 0 604 204 pipdwt I+ p1 0:00.01 zcat 0 4810 4808 0 3 0 1268 868 ttyin I+ p1 0:00.17 more 0 738 737 0 3 0 1340 844 ttyin Is+ p2 0:00.16 csh 0 1476 1469 70 3 0 1336 840 ttyin Is+ p3 0:00.16 csh 0 4781 4780 0 2 0 1984 1160 select Ss+ p4 0:02.90 top 0 164 1 3 10 0 1272 872 wait Is v0 0:00.11 login 0 183 164 13 18 0 1332 832 pause I v0 0:00.13 csh 0 185 183 175 10 0 636 240 wait I+ v0 0:00.03 sh 0 199 185 0 10 0 2168 1140 wait I+ v0 0:00.04 xinit 0 205 199 0 2 0 5280 3080 select S v0 0:39.93 wmaker 0 208 205 0 2 0 2796 1792 poll S v0 0:00.72 xload 0 209 205 0 2 0 2796 1792 poll S v0 0:00.69 xload 0 737 205 0 2 0 4332 2724 select I v0 0:00.99 xterm 0 1469 1 0 2 0 4380 2836 select I v0 0:01.18 xterm 0 2748 205 0 2 0 7616 4656 select S v0 0:27.42 xfe 0 4612 1 0 2 0 4456 3024 select I v0 0:02.80 xterm 0 4762 205 0 2 0 6880 4684 poll I v0 0:03.25 nedit 0 4780 205 0 2 0 4332 2956 select S v0 0:01.27 xterm 0 4798 205 0 28 0 4436 3060 - R v0 0:01.73 xterm 0 165 1 1 3 0 956 588 ttyin Is+ v1 0:00.02 getty 0 166 1 1 3 0 956 588 ttyin Is+ v2 0:00.02 getty 0 167 1 3 3 0 956 588 ttyin Is+ v3 0:00.02 getty 0 168 1 2 3 0 956 588 ttyin Is+ v4 0:00.03 getty 0 169 1 1 3 0 956 588 ttyin Is+ v5 0:00.02 getty 0 170 1 3 3 0 956 588 ttyin Is+ v6 0:00.02 getty 0 171 1 3 3 0 956 588 ttyin Is+ v7 0:00.02 getty 0 145 1 180 10 0 648 256 wait I+ con- 0:00.06 sh --0-1392659796-1091632516=:39064--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040804151516.41150.qmail>