On 11/08/2010 9:09, Randal L. Schwartz wrote:
fbsd8 man 8 ifconfig
Yup, and using that, I can give a private 10.x address to my jail.
How do I get it to face the public without a firewall rule?
you need natd and firewall divert rule on jail host. Everything that
involve outside jail need
Where does ZFS keeps its data *on disk* for created/exported/imported
vdevs?
Is /etc/zfs the only place or are there other places?
Thanks.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To
I'm trying to build a kernel for a pair of firewalls which will be using
CARP and pfsync for redundancy. Since I'm new to FreeBSD the config is
based on the GENERIC config, thus:
include GENERIC
ident NEW_FIREWALL
device carp
##device pfsync
and issuing the build like this:
# cd
On 11/08/2010 01:55, Randal L. Schwartz wrote:
Fbsd8 == Fbsd8 fb...@a1poweruser.com writes:
Fbsd8 2. Using the hosts firewall to drive traffic to a jail is a sign
Fbsd8 you have your jail incorrectly configured or do not understand
Fbsd8 how jails are intended to work.
OK, I'll bite. I
On Wed, Aug 11, 2010 at 12:20 AM, Cameron Simpson c...@zip.com.au wrote:
I'm trying to build a kernel for a pair of firewalls which will be using
CARP and pfsync for redundancy. Since I'm new to FreeBSD the config is
based on the GENERIC config, thus:
include GENERIC
ident NEW_FIREWALL
Randal L. Schwartz wrote:
Fbsd8 == Fbsd8 fb...@a1poweruser.com writes:
Fbsd8 No. Your jail is assigned it's ip address when you create it. The
Fbsd8 alias gives the jail network access when you start the jail. Both
Fbsd8 ip address must match.
Yup, and if that's a 10.x address, I'm not on
On 11Aug2010 01:36, Rob Farmer rfar...@predatorlabs.net wrote:
| On Wed, Aug 11, 2010 at 12:20 AM, Cameron Simpson c...@zip.com.au wrote:
| I'm trying to build a kernel for a pair of firewalls which will be using
| CARP and pfsync for redundancy. Since I'm new to FreeBSD the config is
| based
On Wednesday 11 August 2010 03:07:32 Rocky Borg wrote:
You should probably preface this by saying you're the author of Qjail
and have been actively promoting it in a few places including the fbsd
forums.
That's interesting, given that you're replying to Fbsd8
fb...@a1poweruser.com. The
On 11Aug2010 19:30, I wrote:
| On 11Aug2010 01:36, Rob Farmer rfar...@predatorlabs.net wrote:
| | On Wed, Aug 11, 2010 at 12:20 AM, Cameron Simpson c...@zip.com.au wrote:
| | I'm trying to build a kernel for a pair of firewalls which will be using
| | CARP and pfsync for redundancy. Since I'm
On Tue Aug 10 10, ill...@gmail.com wrote:
On 9 August 2010 14:00, Alexander Best arun...@freebsd.org wrote:
hi there,
chflags(1) mentions that a few utilities including pax(1) aren't chflags
aware yet. is there a list of all those utilties available somewhere?
also: i don't quite
Hello?
Is anyone using skype on freebsd 8 and can tell me how to do the setup?
Seem to be that there is no port and on the website i find no package
for freebsd.
THX
Alex
___
freebsd-questions@freebsd.org mailing list
On Wed, 11 Aug 2010 14:40:06 +0200
Alex Huth a.h...@tmr.net wrote:
Hello?
Is anyone using skype on freebsd 8 and can tell me how to do the
setup? Seem to be that there is no port
cd /usr/ports make search name=skype
___
Matthew == Matthew Seaman m.sea...@infracaninophile.co.uk writes:
Matthew Yes, you can achieve the same effect using firewall rules, but
Matthew as I have occasionally said before, firewalls should be
Matthew optional -- ideally your system should be secure even if you
Matthew turn the firewall
Thomas == Thomas Wahyudi tho...@sanbe-farma.com writes:
Thomas On 11/08/2010 9:09, Randal L. Schwartz wrote:
fbsd8 man 8 ifconfig
Yup, and using that, I can give a private 10.x address to my jail.
How do I get it to face the public without a firewall rule?
Thomas you need natd and
Hi Alex,
In that case you can make maintainer and write an e-mail to that person.
Of course, you can even lend a hand or take-over the port maintenance if the
current maintainer has no time for it. Contributors are always welcomed.
Another option would be to get the source from the skype
On 11/08/2010 14:29, Randal L. Schwartz wrote:
Matthew == Matthew Seaman m.sea...@infracaninophile.co.uk writes:
Matthew Yes, you can achieve the same effect using firewall rules, but
Matthew as I have occasionally said before, firewalls should be
Matthew optional -- ideally your system
I meant that you could block access to private servers which need to
listen on public network ports by just using firewall rules, as opposed
to making the whole jail hang off a private interface and just
forwarding selected traffic to it.
For the second case, you would need pf to do the
Matthew Seaman writes:
# pkg_create -b pkg-config-0.23_1
pkg-config is an indirect dependency for bind -- it's required by
security/openssl and textproc/libxml2 either of which bind are optional
dependencies for dns/bind97.
Thank you. This put me on the right track. When I used
In the last episode (Aug 10), Chris Maness said:
On Tue, Aug 10, 2010 at 4:08 PM, Roland Smith rsm...@xs4all.nl wrote:
On Tue, Aug 10, 2010 at 03:38:03PM -0700, Chris Maness wrote:
I have had two spontaneous reboots since I have began using virtualbox.
I have never had the issue before.
In the last episode (Aug 11), Dick Hoogendijk said:
Where does ZFS keeps its data *on disk* for created/exported/imported
vdevs?
Is /etc/zfs the only place or are there other places?
Thanks.
I don't think there's anything in /etc/zfs apart from the NFS exports file.
The list of
On Wed, Aug 11, 2010 at 7:22 AM, Dan Nelson dnel...@allantgroup.com wrote:
In the last episode (Aug 10), Chris Maness said:
On Tue, Aug 10, 2010 at 4:08 PM, Roland Smith rsm...@xs4all.nl wrote:
On Tue, Aug 10, 2010 at 03:38:03PM -0700, Chris Maness wrote:
I have had two spontaneous reboots
On Wed, Aug 11, 2010 at 9:52 AM, Chris Maness ch...@chrismaness.com wrote:
Were you running it on 8.0? I am wondering if the issue was fixed in
8.1. I have commented out the modules for now. I am a little nervous
about file system corruption from hard crash/reboots.
I can set up a jail
On Wed, Aug 11, 2010 at 7:58 AM, Adam Vande More amvandem...@gmail.com wrote:
On Wed, Aug 11, 2010 at 9:52 AM, Chris Maness ch...@chrismaness.com wrote:
Were you running it on 8.0? I am wondering if the issue was fixed in
8.1. I have commented out the modules for now. I am a little nervous
On Wed, Aug 11, 2010 at 10:22 AM, Chris Maness ch...@chrismaness.comwrote:
I am running 3.2.6 and it was crashing.
On the = 3.2.4 stuff, only time is crashed was with multiple cpu vm's.
Doesn't happen any longer and my systems are up for months running vm's.
I'd try to find the root cause of
I tried all of this without any result. But I won't give up.
What I want is a jail with an Apache http server running inside. So, the jail
must have a public IPv4 and access to the web.
What I'd understood of the jails' role (but I must have misunderstood) is that
it will have a different
On Wed, Aug 11, 2010 at 8:31 AM, Adam Vande More amvandem...@gmail.com wrote:
On Wed, Aug 11, 2010 at 10:22 AM, Chris Maness ch...@chrismaness.com
wrote:
I am running 3.2.6 and it was crashing.
On the = 3.2.4 stuff, only time is crashed was with multiple cpu vm's.
Doesn't happen any longer
I know that APC's website states this load on this unit results in this runtime.
However I do not trust these figures, typically, when coming from smaller
manufacturers than APC.
I am looking at a 1400VA / 980W UPS to run a single server with a usually not
on monitor, a DSL modem and a simple
Hi, Ryan--
On Aug 11, 2010, at 8:51 AM, Ryan Coleman wrote:
Total: 495W
According to a calculator if I enter all that information:
http://www.csgnetwork.com/upssizecalc.html
It says that it will use 693VA.
That sounds reasonable. The better PSUs have 80 Plus certification for
efficiency,
Brice ERRANDONEA berrando...@yahoo.fr wrote:
I tried all of this without any result. But I won't give up.
What I want is a jail with an Apache http server running inside.
So, the jail must have a public IPv4 and access to the web.
Not necessarily. Of course, the jail _can_ have a public
On 10/08/10 05.13, Matt Emmerton wrote:
I'm in the middle of dealing with a SSH brute force attack that is
relentless. I'm working on getting sshguard+ipfw in place to deal with
it,
but in the meantime, my box is getting pegged because sshd is accepting
some
connections which are getting
I tried to burn some DVD with this command: growisofs -dvd-compat
-speed=4 -Z /dev/cd0=image.iso
It failed for some reason, but I can't eject the disk now. Button
doesn't work, and eject-1.5_4 errors out too:
$ /usr/local/sbin/eject /dev/cd0
eject: Invalid argument
Running this command under
in message 20100811124006.ga2...@borusse.ewmr.base,
wrote Alex Huth thusly...
Is anyone using skype on freebsd 8 and can tell me how to do the
setup? Seem to be that there is no port and on the website i find
no package for freebsd.
Well, version 1.x does not work at all as in I was not able
Thank you very much for your answer. It helped me understand some elements. But
portsnap still doesn't work.
So, I can't contact DNS servers able to translate www.freebsd.org to
its ip. Since I know this ip, I tried : ping 69.147.83.33. This
time, the error message is :
ping: socket:
It seems that you have DNS problems.
Login in your jail
go to /etc
Make a file called resolv.conf
which contains:
domainyour_jail_domain
nameserveryour_namerserver
and it will work...
Jack
PS sorry for the top posting.
I'm using outlook express :-(
- Original Message -
Thank you very much for your answer. It helped me understand some elements. But
portsnap still doesn't work.
So, I can't contact DNS servers able to translate www.freebsd.org to
its ip. Since I know this ip, I tried : ping 69.147.83.33. This
time, the error message is :
ping: socket:
Thanks, Chuck.
I talked with a former colleague that has a lot of experience in specing out
UPS requirements (between battery-ready and generator-ready backups at the
office they have up to 5 minutes of battery backup before the gas generator is
needed with a 128-hour recharge time just to
List,
Is anyone running the HPT RR 2320 controller? What's the Motherboard that
you're running on?
My ABIT AB9 QuadGT's ethernet support has failed, in fact it did it months ago.
I've been limping along with a Firewire 400 ethernet connection to another
server (with an EVGA 790i Ultra SLI
On 8/11/2010 8:35 AM, Brice ERRANDONEA wrote:
I tried all of this without any result. But I won't give up.
What I want is a jail with an Apache http server running inside. So, the jail
must have a public IPv4 and access to the web.
I've been in the same boat as you and there isn't a lot of
On Wed, August 11, 2010 12:25 pm, Ryan Coleman wrote:
He thinks that at 500W needed it would give me about 12 minutes on a
1400VA. My consideration is, then, give the server 2 minutes on battery.
If full power has not been returned, shut down the server but leave the
modem (w/ wireless) and
On Aug 11, 2010, at 3:06 PM, David Brodbeck wrote:
On Wed, August 11, 2010 12:25 pm, Ryan Coleman wrote:
He thinks that at 500W needed it would give me about 12 minutes on a
1400VA. My consideration is, then, give the server 2 minutes on battery.
If full power has not been returned, shut down
On 11/08/2010 15:10:06, David Allen wrote:
I meant that you could block access to private servers which need to
listen on public network ports by just using firewall rules, as opposed
to making the whole jail hang off a private interface and just
forwarding selected traffic to it.
For the
Brice ERRANDONEA berrando...@yahoo.fr wrote:
Oliver Fromme wrote:
sysctl security.jail.allow_raw_sockets=1
I did it but ping still doesn't work.
Which IP address are you using for the jail now?
If you're using 127.0.0.1, you can only ping the host's
own IP addresses, because packets
Is it possible to create a jail from a dump/restore of a real system.
If so, would I just restore the dump to the jail tld?
Regards,
Chris Maness
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
-Original Message-
From: Ryan Coleman [mailto:ryan.cole...@cwis.biz]
Sent: 11 August 2010 20:30
To: User Questions
Subject: HPT RocketRaid 2320 mobo support
List,
Is anyone running the HPT RR 2320 controller? What's the Motherboard
that you're running on?
My ABIT AB9 QuadGT's
Ryan Coleman ryan.cole...@cwis.biz wrote:
He thinks that at 500W needed it would give me about 12 minutes on
a 1400VA.
That W and VA numbers of the UPS are pretty much irrelevant,
because they tell nothing about the capacity of the battery.
Those numbers only give an upper limit on the power
Graeme:
The PCI NIC I bought worked for 2 hours after a boot and then failed, the same
thing the onboard NIC did.
--
Ryan
On Aug 11, 2010, at 4:11 PM, Graeme Dargie wrote:
-Original Message-
From: Ryan Coleman [mailto:ryan.cole...@cwis.biz]
Sent: 11 August 2010 20:30
To:
46 matches
Mail list logo