Re: Bandwidth limiting
Hi, I am running into the same problem and would like to know if you could provide a reference URL to some documentation on the various uses of 'tc' (or iproute in general). On Wed, Feb 13, 2002 at 07:33:29PM -0500, Guillaume wrote: > > Thank you all, > iproute was what I was looking for so long. > > just with this I reduce a little my outgoing bandwidth, but > interactivity is greatly increased as well as my ping and DL bandwidth ! > > # tc qdisc add dev ppp0 root tbf rate 240kbit latency 30ms burst 1700 > > Raising the burst (=bucket) increases the outgoing bandwidth to the > depends of interactivity. Also possible to do this by increasing the > priority of the small packets. > > Guillaume > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: Bandwidth limiting
Hi, I am running into the same problem and would like to know if you could provide a reference URL to some documentation on the various uses of 'tc' (or iproute in general). On Wed, Feb 13, 2002 at 07:33:29PM -0500, Guillaume wrote: > > Thank you all, > iproute was what I was looking for so long. > > just with this I reduce a little my outgoing bandwidth, but > interactivity is greatly increased as well as my ping and DL bandwidth ! > > # tc qdisc add dev ppp0 root tbf rate 240kbit latency 30ms burst 1700 > > Raising the burst (=bucket) increases the outgoing bandwidth to the > depends of interactivity. Also possible to do this by increasing the > priority of the small packets. > > Guillaume > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Building custom kernel based off stock debian kernel
On Sun, Feb 10, 2002 at 11:19:17AM -0500, Theodore Knab wrote: > If you fully understand how to compile the kernel and know all the devices > your system needs, it might be easier to get the source from kernel.org. > This way you only need to deal with one package. > > linux-2.4.17.tar.gz > > I don't understand what the advantage of using the kernel-source from > the Debian Source is. For me, it simply adds in an extra unneeded layer > of complication. > > -Ted > Well. I was under the assumption that the debian kernel source has several patches applied. Like other distributions kernels. So using debian's /boot/config* file, I figured it'd be wise to also be using the same source tarball that was used for the debian kernel. -- Nick Jennings
Re: Building custom kernel based off stock debian kernel
On Sun, Feb 10, 2002 at 11:19:17AM -0500, Theodore Knab wrote: > If you fully understand how to compile the kernel and know all the devices > your system needs, it might be easier to get the source from kernel.org. > This way you only need to deal with one package. > > linux-2.4.17.tar.gz > > I don't understand what the advantage of using the kernel-source from > the Debian Source is. For me, it simply adds in an extra unneeded layer > of complication. > > -Ted > Well. I was under the assumption that the debian kernel source has several patches applied. Like other distributions kernels. So using debian's /boot/config* file, I figured it'd be wise to also be using the same source tarball that was used for the debian kernel. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Building custom kernel based off stock debian kernel
Hello. I'd like to make a slight customization to the debian kernel. I do not understand the debian packing scheme for getting the complete source to the DEBIAN linux kernel (i.e. all patches applied and the .config that is used for the debian kernel-images). I grabbed the kernel-source: gateway:/usr/src/# apt-get install kernel-source-2.4.17 After examining the source tree from this, I have found that it does not have a .config at all, and I do not this any of the debian patches have been applied. This looks like kernel.org source. So I tried: gateway:/usr/src/deb-src# apt-get source kernel-image-2.4.17 This created the following: gateway:/usr/src/deb-src# ls kernel-source-2.4.17-2.4.17kernel-source-2.4.17_2.4.17-1.dsc kernel-source-2.4.17_2.4.17-1.diff.gz kernel-source-2.4.17_2.4.17.orig.tar.gz gateway:/usr/src/deb-src# The directory 'kernel-source-2.4.17-2.4.17' is quite a strange name? I am confused by this behaviour and am not sure how I can use this source package to build a custom debian kernel. Why is it called 2.4.17-2.4.17? Is the 'source kernel-image-2.4.17' what I am supposed to be building from? If so, why is there no '.config' in there? Where do I get the '.config' from? Now assuming I get answers to these questions, can someone please verify the the following would be how I build this source into a kernel package? patch kernel && 'make menuconfig' to customize kernel configuration. gateway:/usr/src/linux# make-kpkg --revision=gateway.1 --initrd buildpackage -- Nick Jennings
Building custom kernel based off stock debian kernel
Hello. I'd like to make a slight customization to the debian kernel. I do not understand the debian packing scheme for getting the complete source to the DEBIAN linux kernel (i.e. all patches applied and the .config that is used for the debian kernel-images). I grabbed the kernel-source: gateway:/usr/src/# apt-get install kernel-source-2.4.17 After examining the source tree from this, I have found that it does not have a .config at all, and I do not this any of the debian patches have been applied. This looks like kernel.org source. So I tried: gateway:/usr/src/deb-src# apt-get source kernel-image-2.4.17 This created the following: gateway:/usr/src/deb-src# ls kernel-source-2.4.17-2.4.17kernel-source-2.4.17_2.4.17-1.dsc kernel-source-2.4.17_2.4.17-1.diff.gz kernel-source-2.4.17_2.4.17.orig.tar.gz gateway:/usr/src/deb-src# The directory 'kernel-source-2.4.17-2.4.17' is quite a strange name? I am confused by this behaviour and am not sure how I can use this source package to build a custom debian kernel. Why is it called 2.4.17-2.4.17? Is the 'source kernel-image-2.4.17' what I am supposed to be building from? If so, why is there no '.config' in there? Where do I get the '.config' from? Now assuming I get answers to these questions, can someone please verify the the following would be how I build this source into a kernel package? patch kernel && 'make menuconfig' to customize kernel configuration. gateway:/usr/src/linux# make-kpkg --revision=gateway.1 --initrd buildpackage -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Problems building FreeSWAN kernel package.
On Wed, Feb 06, 2002 at 04:36:38PM -0500, [EMAIL PROTECTED] wrote: > > You don't really say what you did. Did you run make menuconfig or equiv? > Missing autoconf is probably not freeswan related unless the patcher got > mangled. Well, the documentation in the README.Debian (for kernel-patch-freeswan) states: <-snip-> If you want to use the freeswan utilities, you will need a patched kernel. When you install the kernel-patch-freeswan package and use make-kpkg to build your kernel, it should be patched automatically when you set the environment variable PATCH_THE_KERNEL=YES Usually you can then create a kernel package with make-kpkg --config=menuconfig --revision= kernel_image The "--config=menuconfig" parameter forces make-kpkg to call "make menuconfig" after patching the kernel source, so that you have the possibility to configure compile-time options for freeswan. <-snip-> So I assumed menuconfig would pop up, (which it never did). > make-kpkg built freeswan flawlessly on several i86 machines here in > past couple of weeks. All running current unstable. Maybe a month > ago I did have to tweak it but recent freeswan package fixed that. Well, below I describe my failed attempt at trying to apply the kernel-patch-freeswan manually. Maybe you can provide some suggestions to either the above, or below attempts. > > The documentation (README.Debian) is pretty sparse, and I don't know where > > else to go to get info on doing this. Any comments or suggestions greatly > > appreciated. Thanks in advance. > > Try applying patches by hand to see what happens. Then just build kernel > as usual. Ok, this is how the documentation describes applying the patch manually. <-snip-> If you really want to compile your kernel without the help of kernel-package, you can patch it by going to your kernel source tree directory and entering 'make -C /usr/src/kernel-patches/all/freeswan -f Makefile insert KERNELSRC= PATCHER=/usr/src/kernel-patches/all/freeswan/patcher' <-snip-> gateway:/usr/src/linux# make -C /usr/src/kernel-patches/all/freeswan/ -f Makefile insert KERNELSRV=/usr/src/kernel-source-2.4.17 PATCHER=/usr/src/kernel-patches/all/freeswan/patcher make: Entering directory `/usr/src/kernel-patches/all/freeswan' echo "===" === echo "`date` `cd /usr/src/linux ; pwd`" Wed Feb 6 06:56:52 PST 2002 /usr/src/linux make _patches2.3 BINDIR=/usr/local/lib/ipsec PUBDIR=/usr/local/sbin PRIVDIR=/usr/local/lib/ipsec REALPRIVDIR=/usr/local/lib/ipsec MANTREE=/usr/local/man DESTDIR= INSTALL="install" make[1]: Entering directory `/usr/src/kernel-patches/all/freeswan' * applying klips/patches2.2/Documentation.Configure.help to /usr/src/linux/Documentation/Configure.help... patching file ./Documentation/Configure.help Hunk #1 FAILED at 3530. 1 out of 1 hunk FAILED -- saving rejects to file ./Documentation/Configure.help.rej * /usr/src/linux/Documentation/Configure.help patch failed, restoring original /usr/src/kernel-patches/all/freeswan/patcher: patch on /usr/src/linux/Documentation/Configure.help failed! /usr/src/kernel-patches/all/freeswan/patcher: restoring original /usr/src/linux/Documentation/Configure.help, /usr/src/kernel-patches/all/freeswan/patcher: leaving patch attempt in /usr/src/linux/Documentation/Configure.help.mangled make[1]: *** [_patches2.3] Error 1 make[1]: Leaving directory `/usr/src/kernel-patches/all/freeswan' make: *** [patches] Error 2 make: Leaving directory `/usr/src/kernel-patches/all/freeswan' gateway:/usr/src/linux# That's as far as I get. Any suggestions? I really want to avoid building a stock kernel because I am trying to do this the "debian way" and get a debian kernel package out of it. (which I can use on other systems, or at least learn what I need to do to make custom ones for other architectures). -- Nick Jennings
Problems building FreeSWAN kernel package.
Hello, Getting a VPN set up on my gateway machine. Running woody (2.4.17). Installed the packages: freeswan, kernel-patch-freeswan, kernel-package, gawk After reading /usr/share/doc/kerne-package-freeswan/README.Debian I also installed: kernel-source-2.4.17, kernel-headers-2.4.17 gateway:/# /usr/src/kernel-source-2.4.17/ gateway:/usr/src/kernel-source-2.4.17# make-kpkg --config=menuconfig --revision=gateway.ipsec.1 buildpackage <-snip-> <** goes on for a while, then errors out: **> <-snip-> /usr/bin/make _sfdep_kernel _sfdep_drivers _sfdep_mm _sfdep_fs _sfdep_net _sfdep_ipc _sfdep_lib _sfdep_arch/i386/kernel _sfdep_arch/i386/mm _sfdep_arch/i386/lib _sfdep_arch/i386/math-emu _FASTDEP_ALL_SUB_DIRS="kernel drivers mm fs net ipc lib arch/i386/kernel arch/i386/mm arch/i386/lib arch/i386/math-emu" make[3]: Entering directory `/usr/src/kernel-source-2.4.17' /usr/bin/make -C kernel fastdep make[4]: Entering directory `/usr/src/kernel-source-2.4.17/kernel' make[4]: *** No rule to make target `/usr/src/kernel-source-2.4.17/include/linux/autoconf.h', needed by `/usr/src/kernel-source-2.4.17/include/linux/modules/signal.ver'. Stop. make[4]: Leaving directory `/usr/src/kernel-source-2.4.17/kernel' make[3]: *** [_sfdep_kernel] Error 2 make[3]: Leaving directory `/usr/src/kernel-source-2.4.17' make[2]: *** [dep-files] Error 2 make[2]: Leaving directory `/usr/src/kernel-source-2.4.17' make[1]: *** [stamp-build] Error 2 make[1]: Leaving directory `/usr/src/kernel-source-2.4.17' make: *** [stamp-buildpackage] Error 2 gateway:/usr/src/kernel-source-2.4.17# The documentation (README.Debian) is pretty sparse, and I don't know where else to go to get info on doing this. Any comments or suggestions greatly appreciated. Thanks in advance. -- Nick Jennings
Re: Problems building FreeSWAN kernel package.
On Wed, Feb 06, 2002 at 04:36:38PM -0500, [EMAIL PROTECTED] wrote: > > You don't really say what you did. Did you run make menuconfig or equiv? > Missing autoconf is probably not freeswan related unless the patcher got > mangled. Well, the documentation in the README.Debian (for kernel-patch-freeswan) states: <-snip-> If you want to use the freeswan utilities, you will need a patched kernel. When you install the kernel-patch-freeswan package and use make-kpkg to build your kernel, it should be patched automatically when you set the environment variable PATCH_THE_KERNEL=YES Usually you can then create a kernel package with make-kpkg --config=menuconfig --revision= kernel_image The "--config=menuconfig" parameter forces make-kpkg to call "make menuconfig" after patching the kernel source, so that you have the possibility to configure compile-time options for freeswan. <-snip-> So I assumed menuconfig would pop up, (which it never did). > make-kpkg built freeswan flawlessly on several i86 machines here in > past couple of weeks. All running current unstable. Maybe a month > ago I did have to tweak it but recent freeswan package fixed that. Well, below I describe my failed attempt at trying to apply the kernel-patch-freeswan manually. Maybe you can provide some suggestions to either the above, or below attempts. > > The documentation (README.Debian) is pretty sparse, and I don't know where > > else to go to get info on doing this. Any comments or suggestions greatly > > appreciated. Thanks in advance. > > Try applying patches by hand to see what happens. Then just build kernel > as usual. Ok, this is how the documentation describes applying the patch manually. <-snip-> If you really want to compile your kernel without the help of kernel-package, you can patch it by going to your kernel source tree directory and entering 'make -C /usr/src/kernel-patches/all/freeswan -f Makefile insert KERNELSRC= PATCHER=/usr/src/kernel-patches/all/freeswan/patcher' <-snip-> gateway:/usr/src/linux# make -C /usr/src/kernel-patches/all/freeswan/ -f Makefile insert KERNELSRV=/usr/src/kernel-source-2.4.17 PATCHER=/usr/src/kernel-patches/all/freeswan/patcher make: Entering directory `/usr/src/kernel-patches/all/freeswan' echo "===" === echo "`date` `cd /usr/src/linux ; pwd`" Wed Feb 6 06:56:52 PST 2002 /usr/src/linux make _patches2.3 BINDIR=/usr/local/lib/ipsec PUBDIR=/usr/local/sbin PRIVDIR=/usr/local/lib/ipsec REALPRIVDIR=/usr/local/lib/ipsec MANTREE=/usr/local/man DESTDIR= INSTALL="install" make[1]: Entering directory `/usr/src/kernel-patches/all/freeswan' * applying klips/patches2.2/Documentation.Configure.help to /usr/src/linux/Documentation/Configure.help... patching file ./Documentation/Configure.help Hunk #1 FAILED at 3530. 1 out of 1 hunk FAILED -- saving rejects to file ./Documentation/Configure.help.rej * /usr/src/linux/Documentation/Configure.help patch failed, restoring original /usr/src/kernel-patches/all/freeswan/patcher: patch on /usr/src/linux/Documentation/Configure.help failed! /usr/src/kernel-patches/all/freeswan/patcher: restoring original /usr/src/linux/Documentation/Configure.help, /usr/src/kernel-patches/all/freeswan/patcher: leaving patch attempt in /usr/src/linux/Documentation/Configure.help.mangled make[1]: *** [_patches2.3] Error 1 make[1]: Leaving directory `/usr/src/kernel-patches/all/freeswan' make: *** [patches] Error 2 make: Leaving directory `/usr/src/kernel-patches/all/freeswan' gateway:/usr/src/linux# That's as far as I get. Any suggestions? I really want to avoid building a stock kernel because I am trying to do this the "debian way" and get a debian kernel package out of it. (which I can use on other systems, or at least learn what I need to do to make custom ones for other architectures). -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Problems building FreeSWAN kernel package.
Hello, Getting a VPN set up on my gateway machine. Running woody (2.4.17). Installed the packages: freeswan, kernel-patch-freeswan, kernel-package, gawk After reading /usr/share/doc/kerne-package-freeswan/README.Debian I also installed: kernel-source-2.4.17, kernel-headers-2.4.17 gateway:/# /usr/src/kernel-source-2.4.17/ gateway:/usr/src/kernel-source-2.4.17# make-kpkg --config=menuconfig --revision=gateway.ipsec.1 buildpackage <-snip-> <** goes on for a while, then errors out: **> <-snip-> /usr/bin/make _sfdep_kernel _sfdep_drivers _sfdep_mm _sfdep_fs _sfdep_net _sfdep_ipc _sfdep_lib _sfdep_arch/i386/kernel _sfdep_arch/i386/mm _sfdep_arch/i386/lib _sfdep_arch/i386/math-emu _FASTDEP_ALL_SUB_DIRS="kernel drivers mm fs net ipc lib arch/i386/kernel arch/i386/mm arch/i386/lib arch/i386/math-emu" make[3]: Entering directory `/usr/src/kernel-source-2.4.17' /usr/bin/make -C kernel fastdep make[4]: Entering directory `/usr/src/kernel-source-2.4.17/kernel' make[4]: *** No rule to make target `/usr/src/kernel-source-2.4.17/include/linux/autoconf.h', needed by `/usr/src/kernel-source-2.4.17/include/linux/modules/signal.ver'. Stop. make[4]: Leaving directory `/usr/src/kernel-source-2.4.17/kernel' make[3]: *** [_sfdep_kernel] Error 2 make[3]: Leaving directory `/usr/src/kernel-source-2.4.17' make[2]: *** [dep-files] Error 2 make[2]: Leaving directory `/usr/src/kernel-source-2.4.17' make[1]: *** [stamp-build] Error 2 make[1]: Leaving directory `/usr/src/kernel-source-2.4.17' make: *** [stamp-buildpackage] Error 2 gateway:/usr/src/kernel-source-2.4.17# The documentation (README.Debian) is pretty sparse, and I don't know where else to go to get info on doing this. Any comments or suggestions greatly appreciated. Thanks in advance. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Best way to duplicate HDs
On Tue, Jan 01, 2002 at 02:28:28PM +0800, Jason Lim wrote: > Hi all, > > What do you think would be the best way to duplicate a HD to another > (similar sized) HD? > I've been using tar on my system. Works excellent. no downtime, and all permissions are maintained. -- Nick Jennings
Re: Best way to duplicate HDs
On Tue, Jan 01, 2002 at 02:28:28PM +0800, Jason Lim wrote: > Hi all, > > What do you think would be the best way to duplicate a HD to another > (similar sized) HD? > I've been using tar on my system. Works excellent. no downtime, and all permissions are maintained. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: LinkWalker
On Sun, Dec 23, 2001 at 09:17:54PM +0100, Russell Coker wrote: > > I wasn't aware that there was any format to robots.txt, I thought that the > mere presense of such a file would prevent robots from visiting. Here is an example of my robots.txt User-agent: * Disallow: /webalizer/ Disallow: contacts.txt Disallow: /dl/ > As for rule-abiding spiders, such programs will not download files ending in > .wav, .mp3, .gz, .tgz, or .zip so I won't even see them. > > That's why I usually don't even notice responsible web spiders such as google > when browsing my web logs! Hmm, I have had spiders grab .tgz's from me before, but not anymore. User-agent can be set to a specific spider agent-name, or * for all spiders. -- Nick Jennings
Re: LinkWalker
Why don't you just update your robots.txt to explicitly specify which files you don't or do, allow spiders access to. If it's a rule-obiding spider, that will be the end of it. On Sun, Dec 23, 2001 at 05:41:47PM +0100, Russell Coker wrote: > I have a nasty web spider with an agent name of "LinkWalker" downloading > everything on my site (including .tgz files). Does anyone know anything > about it? > > I've added the following to my firewall setup to stop further attacks... > > # crappy LinkWalker - evil spider that downloads every file including .tgz on > # the site > iptables -A INPUT -j logitrej -p tcp -s 209.167.50.25 -d 0.0.0.0/0 --dport www > > -- > http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark > http://www.coker.com.au/postal/ Postal SMTP/POP benchmark > http://www.coker.com.au/projects.html Projects I am working on > http://www.coker.com.au/~russell/ My home page > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: LinkWalker
On Sun, Dec 23, 2001 at 09:17:54PM +0100, Russell Coker wrote: > > I wasn't aware that there was any format to robots.txt, I thought that the > mere presense of such a file would prevent robots from visiting. Here is an example of my robots.txt User-agent: * Disallow: /webalizer/ Disallow: contacts.txt Disallow: /dl/ > As for rule-abiding spiders, such programs will not download files ending in > .wav, .mp3, .gz, .tgz, or .zip so I won't even see them. > > That's why I usually don't even notice responsible web spiders such as google > when browsing my web logs! Hmm, I have had spiders grab .tgz's from me before, but not anymore. User-agent can be set to a specific spider agent-name, or * for all spiders. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: LinkWalker
Why don't you just update your robots.txt to explicitly specify which files you don't or do, allow spiders access to. If it's a rule-obiding spider, that will be the end of it. On Sun, Dec 23, 2001 at 05:41:47PM +0100, Russell Coker wrote: > I have a nasty web spider with an agent name of "LinkWalker" downloading > everything on my site (including .tgz files). Does anyone know anything > about it? > > I've added the following to my firewall setup to stop further attacks... > > # crappy LinkWalker - evil spider that downloads every file including .tgz on > # the site > iptables -A INPUT -j logitrej -p tcp -s 209.167.50.25 -d 0.0.0.0/0 --dport www > > -- > http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark > http://www.coker.com.au/postal/ Postal SMTP/POP benchmark > http://www.coker.com.au/projects.html Projects I am working on > http://www.coker.com.au/~russell/ My home page > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: 2 ip`s on one interface
On Mon, Dec 10, 2001 at 05:47:48PM +0100, Marcin Sochacki wrote: > On Mon, Dec 10, 2001 at 02:11:54PM -0200, Consultoria de Informatica > Cathedral wrote: > > How do i put 2 ip`s on a singlenet board > > ARGHHH, this is debian-isp list, not debian-newbie. > I think people subscribed here are expected to know such things by default :) > This is debian-isp, puttin 2 ip's on a single interface is something that a small ISP might run into somewhere along the line. If I was this admin, and had never done it before, then I would ask here as well. YOUR post is the only off-topic post in this thread. In response to the original post: You can you "ip aliases" to assign multiple IPs to the same network interface. For example: # ifconfig eth0 192.168.1.5 # ifconfig eth0:1 192.168.1.6 # ifconfig eth0 Link encap:Ethernet HWaddr 00:20:78:16:D5:D6 inet addr:192.168.1.5 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:20875 errors:0 dropped:0 overruns:0 frame:0 TX packets:13365 errors:0 dropped:0 overruns:0 carrier:0 collisions:3109 txqueuelen:100 RX bytes:24011076 (22.8 MiB) TX bytes:1056273 (1.0 MiB) Interrupt:5 Base address:0x9800 eth0:1Link encap:Ethernet HWaddr 00:20:78:16:D5:D6 inet addr:192.168.1.6 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:5 Base address:0x9800 -- Nick Jennings
Re: 2 ip`s on one interface
On Mon, Dec 10, 2001 at 05:47:48PM +0100, Marcin Sochacki wrote: > On Mon, Dec 10, 2001 at 02:11:54PM -0200, Consultoria de Informatica Cathedral wrote: > > How do i put 2 ip`s on a singlenet board > > ARGHHH, this is debian-isp list, not debian-newbie. > I think people subscribed here are expected to know such things by default :) > This is debian-isp, puttin 2 ip's on a single interface is something that a small ISP might run into somewhere along the line. If I was this admin, and had never done it before, then I would ask here as well. YOUR post is the only off-topic post in this thread. In response to the original post: You can you "ip aliases" to assign multiple IPs to the same network interface. For example: # ifconfig eth0 192.168.1.5 # ifconfig eth0:1 192.168.1.6 # ifconfig eth0 Link encap:Ethernet HWaddr 00:20:78:16:D5:D6 inet addr:192.168.1.5 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:20875 errors:0 dropped:0 overruns:0 frame:0 TX packets:13365 errors:0 dropped:0 overruns:0 carrier:0 collisions:3109 txqueuelen:100 RX bytes:24011076 (22.8 MiB) TX bytes:1056273 (1.0 MiB) Interrupt:5 Base address:0x9800 eth0:1Link encap:Ethernet HWaddr 00:20:78:16:D5:D6 inet addr:192.168.1.6 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:5 Base address:0x9800 -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: trouble ticket system
On Mon, Dec 03, 2001 at 11:40:08PM -0600, Matt Fair wrote: > Would would be the best trouble ticket system to use? > I took a rt, but it doesn't look as good people say it is (at least the > one in the stable release). > Thanks, > Matt PerlDesk, http://perldesk.org looks pretty cool. Haven't had the opportunity to incorporate it into existing systems yet though. > > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: trouble ticket system
On Mon, Dec 03, 2001 at 11:40:08PM -0600, Matt Fair wrote: > Would would be the best trouble ticket system to use? > I took a rt, but it doesn't look as good people say it is (at least the > one in the stable release). > Thanks, > Matt PerlDesk, http://perldesk.org looks pretty cool. Haven't had the opportunity to incorporate it into existing systems yet though. > > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: System Time Problems.
On Tue, Nov 27, 2001 at 06:59:01PM -0500, Bulent Murtezaoglu wrote: > > But anyway, why not have the battery backed clock set to UTC? > Because I am a simple man. -- Nick Jennings
System Time Problems.
Hello, For some reason our Debain server thinks the BIOS clock is set to UTC, when it is really set to local time (PST). So when I set the timezone to Pacific/US, it offsets, based on the BIOS time, -8, making the system 8 hours behind. How do I change the settings that tell the system what the BIOS clock is set to. The only time i remember this question being asked is during the install process. All help appreciated. -- Nick Jennings
Re: System Time Problems.
On Tue, Nov 27, 2001 at 06:59:01PM -0500, Bulent Murtezaoglu wrote: > > But anyway, why not have the battery backed clock set to UTC? > Because I am a simple man. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
System Time Problems.
Hello, For some reason our Debain server thinks the BIOS clock is set to UTC, when it is really set to local time (PST). So when I set the timezone to Pacific/US, it offsets, based on the BIOS time, -8, making the system 8 hours behind. How do I change the settings that tell the system what the BIOS clock is set to. The only time i remember this question being asked is during the install process. All help appreciated. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Mail
I use exim, which has ample documentation on how to do this. Basically, I have a passwd. for several different domains, theres no need for a matching shadow (unless I plan to have "real" accounts for the people). Exim justmakes sure the user exists in the appropriate passwd file, and we have a different spool dir for each domain. The term is "Virtual Domains" I believe, here a link to the exim docs: http://www.exim.org/exim-html-3.30/doc/html/spec.html Check out section 43. Hope this helps. On Mon, Nov 19, 2001 at 08:31:20PM -0600, Asher Densmore-Lynn wrote: > Does anyone have the slightest clue how to host mail for multiple domains > such that every domain has a unique namespace? Thinking about the matter, I > realized I don't quite know how to accomplish this. > > The smallest pointer will be appreciated -- I can figure it out, I think, > once I know where to look. > > -- > Asher Densmore-Lynn <[EMAIL PROTECTED]> > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: Mail
I use exim, which has ample documentation on how to do this. Basically, I have a passwd. for several different domains, theres no need for a matching shadow (unless I plan to have "real" accounts for the people). Exim justmakes sure the user exists in the appropriate passwd file, and we have a different spool dir for each domain. The term is "Virtual Domains" I believe, here a link to the exim docs: http://www.exim.org/exim-html-3.30/doc/html/spec.html Check out section 43. Hope this helps. On Mon, Nov 19, 2001 at 08:31:20PM -0600, Asher Densmore-Lynn wrote: > Does anyone have the slightest clue how to host mail for multiple domains > such that every domain has a unique namespace? Thinking about the matter, I > realized I don't quite know how to accomplish this. > > The smallest pointer will be appreciated -- I can figure it out, I think, > once I know where to look. > > -- > Asher Densmore-Lynn <[EMAIL PROTECTED]> > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
PPPOE setup problems
Hello, I'm using testing, and have installed the pppoe package. I have followed the debian specific instructions in: /usr/share/doc/pppoe/README.Debain.gz I tried a: # pon dsl-provider This was the output from plog: # plog Nov 19 09:18:49 gateway pppd[402]: Serial connection established. Nov 19 09:18:49 gateway pppd[402]: Using interface ppp0 Nov 19 09:18:49 gateway pppd[402]: Connect: ppp0 <--> /dev/pts/0 In the docs, it says a succesfull connection should be: ppp0 <--> eth0 (not /dev/pst/0) It doesn't seem to make a difference whether I load the pppoe module or not. Also, I'm not sure what I should have defined in my /etc/networking/interfaces file for eth0 (the interface for the DSL), so I commented out it's entry so it does not come up otherwise. Is this correct? Any input will be appreciated, and let me know if I can provide any other information to help diagnosis. Thanks. -- Nick Jennings
PPPOE setup problems
Hello, I'm using testing, and have installed the pppoe package. I have followed the debian specific instructions in: /usr/share/doc/pppoe/README.Debain.gz I tried a: # pon dsl-provider This was the output from plog: # plog Nov 19 09:18:49 gateway pppd[402]: Serial connection established. Nov 19 09:18:49 gateway pppd[402]: Using interface ppp0 Nov 19 09:18:49 gateway pppd[402]: Connect: ppp0 <--> /dev/pts/0 In the docs, it says a succesfull connection should be: ppp0 <--> eth0 (not /dev/pst/0) It doesn't seem to make a difference whether I load the pppoe module or not. Also, I'm not sure what I should have defined in my /etc/networking/interfaces file for eth0 (the interface for the DSL), so I commented out it's entry so it does not come up otherwise. Is this correct? Any input will be appreciated, and let me know if I can provide any other information to help diagnosis. Thanks. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: stable vs testing
This brings up a question I have. Isn't testing technically the *last* of stable/testing/unstable to get security fixes? security fixes for stable are packported immediately, and the fixes are also incorporated into unstable asap. Now for testing, there would be at least a delay of a week for it to pass through unstable correct? This is annoying, because testing is acutally in most cases in a pretty stable state, and would be good for many production environments except for the fact that security fixes take the longest to get incorporated. Can anyone verify this? On Thu, Nov 08, 2001 at 11:37:08PM +1100, Glenn Hocking wrote: > Hi All > > I have a need for glibc2.2 so I may have to use the testing/unstable > distribution. This will be in a ISP environment but not as a public > host. > > My question is what other experiences have others have running > testing/unstable in a live environment with regards to both security and > stability. > > Thanks in advance. > > Kind regards > Glenn Hocking > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: stable vs testing
This brings up a question I have. Isn't testing technically the *last* of stable/testing/unstable to get security fixes? security fixes for stable are packported immediately, and the fixes are also incorporated into unstable asap. Now for testing, there would be at least a delay of a week for it to pass through unstable correct? This is annoying, because testing is acutally in most cases in a pretty stable state, and would be good for many production environments except for the fact that security fixes take the longest to get incorporated. Can anyone verify this? On Thu, Nov 08, 2001 at 11:37:08PM +1100, Glenn Hocking wrote: > Hi All > > I have a need for glibc2.2 so I may have to use the testing/unstable > distribution. This will be in a ISP environment but not as a public > host. > > My question is what other experiences have others have running > testing/unstable in a live environment with regards to both security and > stability. > > Thanks in advance. > > Kind regards > Glenn Hocking > > > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Journaling FS for Production Systems
On Wed, Nov 07, 2001 at 10:53:46AM +0200, I. Forbes wrote: > > - It seems, that at this point in time, xfs is more stable than > reiserfs. However I am not sure if that is because fewer people > have tried it, and hence fewer people have experienced problems. > Are there many xfs users our there? Is the development active? > If not is it because the xfs is stable, or has the xfs initiative > lost momentum? Although XFS is cool in many ways, the port for linux is pretty much a hack. I work for a company that is doing alot of development with XFS on Linux, although we are forced to use it, because it works with LVM growing filesystems etc. ReiserFS supports fs growth, but not over an LVM. I suggest ext3, it's the most solid codebase, and provides the best overall performance. We use it (ext3) for all other products except for this one that uses LVM (Can't really talk about the product, since it's still in development). -- Nick Jennings
Re: nameservers open to world - with test output
Well, it is a problem if your DNS server has zone files for lots of internal network servers. You could have two seperate instances of BIND (if you need an external dns server to be answering for your domain name etc). bind each to theiir applicable interface. On Sat, Nov 03, 2001 at 05:02:07PM -0500, James wrote: > Well, if your company runs the DNS for your website on those servers and > you block outside IPs from querying from, no one on the internet will be > able to go to your website. :) > > Overall, I do not think it is a big problem, unless someone is pointing > massive amounts of traffic to your DNS servers. DNS traffic is usually > very small UDP packets (I think like less than 512 bytes). If it goes > over that, it uses TCP. > > But generally, I think to go over 512 bytes in one request would mean a > zone transfer attempt (bad). > > So, IMO: Leave it open and monitor traffic. Potentially block TCP to > prevent zone transfers. > > - James > > -Original Message- > From: Ted Knab [mailto:[EMAIL PROTECTED] On Behalf Of Thedore > Knab > Sent: Saturday, November 03, 2001 1:57 PM > To: debian-isp@lists.debian.org > Subject: nameservers open to world - with test output > > It has recently came to my attention that anyone can use our company's > nameservers. > > I recently setup my home machine to use the company's nameserver to > confirm this. > > I was wondering if there was anyway to prevent people from using our > company's NS for their personal servers ? > > Would the extra traffic generated cause any problems on our network that > I may not be aware of ? > > > Test Confirmation that our NS is open to world: | > > > --- > Step one: lookup name | > --- > > mylinux machine$ whois ourdomain.com > Whois Server Version 1.3 > > Domain names in the .com, .net, and .org domains can now be registered > with many different competing registrars. Go to http://www.internic.net > for detailed information. > > Domain Name: ournameserver.com > Registrar: NETWORK SOLUTIONS, INC. > Whois Server: whois.networksolutions.com > Referral URL: http://www.networksolutions.com > Name Server: NS1.ournameserver.net > Name Server: NS2.ournameserver.net > Updated Date: 27-oct-2001 > > > Step two: change /etc/resolv.conf to the following | > > > search ournameserver.com > nameserver 123.123.123.123 # nameserver1 > nameserver 123.123.123.134 # nameserver2 > > - > Step three: sample run | > - > > mylinux machine$ nslookup www.debian.org > > Server: ournameserver.com > Address: 123.123.123.123 > > Non-authoritative answer: > Name: www.debian.org > Address: 198.186.203.20 > > mylinux machine$ > > -- > GNU PGP public key > http://www.annapolislinux.org/docs/public_key/GnuPG.txt > - > Ted Knab > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: nameservers open to world - with test output
Well, it is a problem if your DNS server has zone files for lots of internal network servers. You could have two seperate instances of BIND (if you need an external dns server to be answering for your domain name etc). bind each to theiir applicable interface. On Sat, Nov 03, 2001 at 05:02:07PM -0500, James wrote: > Well, if your company runs the DNS for your website on those servers and > you block outside IPs from querying from, no one on the internet will be > able to go to your website. :) > > Overall, I do not think it is a big problem, unless someone is pointing > massive amounts of traffic to your DNS servers. DNS traffic is usually > very small UDP packets (I think like less than 512 bytes). If it goes > over that, it uses TCP. > > But generally, I think to go over 512 bytes in one request would mean a > zone transfer attempt (bad). > > So, IMO: Leave it open and monitor traffic. Potentially block TCP to > prevent zone transfers. > > - James > > -Original Message- > From: Ted Knab [mailto:[EMAIL PROTECTED]] On Behalf Of Thedore > Knab > Sent: Saturday, November 03, 2001 1:57 PM > To: [EMAIL PROTECTED] > Subject: nameservers open to world - with test output > > It has recently came to my attention that anyone can use our company's > nameservers. > > I recently setup my home machine to use the company's nameserver to > confirm this. > > I was wondering if there was anyway to prevent people from using our > company's NS for their personal servers ? > > Would the extra traffic generated cause any problems on our network that > I may not be aware of ? > > > Test Confirmation that our NS is open to world: | > > > --- > Step one: lookup name | > --- > > mylinux machine$ whois ourdomain.com > Whois Server Version 1.3 > > Domain names in the .com, .net, and .org domains can now be registered > with many different competing registrars. Go to http://www.internic.net > for detailed information. > > Domain Name: ournameserver.com > Registrar: NETWORK SOLUTIONS, INC. > Whois Server: whois.networksolutions.com > Referral URL: http://www.networksolutions.com > Name Server: NS1.ournameserver.net > Name Server: NS2.ournameserver.net > Updated Date: 27-oct-2001 > > > Step two: change /etc/resolv.conf to the following | > > > search ournameserver.com > nameserver 123.123.123.123 # nameserver1 > nameserver 123.123.123.134 # nameserver2 > > - > Step three: sample run | > - > > mylinux machine$ nslookup www.debian.org > > Server: ournameserver.com > Address: 123.123.123.123 > > Non-authoritative answer: > Name: www.debian.org > Address: 198.186.203.20 > > mylinux machine$ > > -- > GNU PGP public key > http://www.annapolislinux.org/docs/public_key/GnuPG.txt > - > Ted Knab > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: nameservers open to world - with test output
You could always firewall out port 53 on your external interface. On Sat, Nov 03, 2001 at 01:56:34PM -0500, Thedore Knab wrote: > It has recently came to my attention that anyone can use our company's > nameservers. > > I recently setup my home machine to use the company's nameserver to confirm > this. > > I was wondering if there was anyway to prevent people from using our > company's NS for their personal servers ? > > Would the extra traffic generated cause any problems on our network that I > may not be aware of ? > > > Test Confirmation that our NS is open to world: | > > > --- > Step one: lookup name | > --- > > mylinux machine$ whois ourdomain.com > Whois Server Version 1.3 > > Domain names in the .com, .net, and .org domains can now be registered > with many different competing registrars. Go to http://www.internic.net > for detailed information. > > Domain Name: ournameserver.com > Registrar: NETWORK SOLUTIONS, INC. > Whois Server: whois.networksolutions.com > Referral URL: http://www.networksolutions.com > Name Server: NS1.ournameserver.net > Name Server: NS2.ournameserver.net > Updated Date: 27-oct-2001 > > > Step two: change /etc/resolv.conf to the following | > > > search ournameserver.com > nameserver 123.123.123.123 # nameserver1 > nameserver 123.123.123.134 # nameserver2 > > - > Step three: sample run | > - > > mylinux machine$ nslookup www.debian.org > > Server: ournameserver.com > Address: 123.123.123.123 > > Non-authoritative answer: > Name: www.debian.org > Address: 198.186.203.20 > > mylinux machine$ > > -- > GNU PGP public key > http://www.annapolislinux.org/docs/public_key/GnuPG.txt > - > Ted Knab > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings
Re: nameservers open to world - with test output
You could always firewall out port 53 on your external interface. On Sat, Nov 03, 2001 at 01:56:34PM -0500, Thedore Knab wrote: > It has recently came to my attention that anyone can use our company's nameservers. > > I recently setup my home machine to use the company's nameserver to confirm this. > > I was wondering if there was anyway to prevent people from using our company's NS >for their personal servers ? > > Would the extra traffic generated cause any problems on our network that I may not >be aware of ? > > > Test Confirmation that our NS is open to world: | > > > --- > Step one: lookup name | > --- > > mylinux machine$ whois ourdomain.com > Whois Server Version 1.3 > > Domain names in the .com, .net, and .org domains can now be registered > with many different competing registrars. Go to http://www.internic.net > for detailed information. > > Domain Name: ournameserver.com > Registrar: NETWORK SOLUTIONS, INC. > Whois Server: whois.networksolutions.com > Referral URL: http://www.networksolutions.com > Name Server: NS1.ournameserver.net > Name Server: NS2.ournameserver.net > Updated Date: 27-oct-2001 > > > Step two: change /etc/resolv.conf to the following | > > > search ournameserver.com > nameserver 123.123.123.123 # nameserver1 > nameserver 123.123.123.134 # nameserver2 > > - > Step three: sample run | > - > > mylinux machine$ nslookup www.debian.org > > Server: ournameserver.com > Address: 123.123.123.123 > > Non-authoritative answer: > Name: www.debian.org > Address: 198.186.203.20 > > mylinux machine$ > > -- > GNU PGP public key > http://www.annapolislinux.org/docs/public_key/GnuPG.txt > - > Ted Knab > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Project 2000 on Debian (under Wine) ?
On Wed, Oct 24, 2001 at 03:14:07PM -0400, Thedore Knab wrote: > > I am looking for a Linux based tool that is designed to help manage a > variety of projects. This tool needs to be able to schedule and track > tasks, and interface with Outlook clients. Anybody know one? > I don't know of any linux based (and open source) program that interfaces with outlook. -- Nick Jennings
Re: Project 2000 on Debian (under Wine) ?
On Wed, Oct 24, 2001 at 03:14:07PM -0400, Thedore Knab wrote: > > I am looking for a Linux based tool that is designed to help manage a > variety of projects. This tool needs to be able to schedule and track > tasks, and interface with Outlook clients. Anybody know one? > I don't know of any linux based (and open source) program that interfaces with outlook. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
C questions
Hello, Sorry if this may seem off topic, I always appreciate the help I get on this (and other) debian lists. However since there doesn't appear to be any lists around C programming specifically, I wonder if anyone has any suggestions on a very good high quality c programming mailing list around? -- Nick Jennings
C questions
Hello, Sorry if this may seem off topic, I always appreciate the help I get on this (and other) debian lists. However since there doesn't appear to be any lists around C programming specifically, I wonder if anyone has any suggestions on a very good high quality c programming mailing list around? -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
building custom kernel package
Hello, I've successfully built a kernel image, however the initrd image is not installed with it, and I have to make one after installing the kernel on every system. How do I get the kernel deb package to create and install it's own initrd image automatically, like the debian packages do? -- Nick Jennings
building custom kernel package
Hello, I've successfully built a kernel image, however the initrd image is not installed with it, and I have to make one after installing the kernel on every system. How do I get the kernel deb package to create and install it's own initrd image automatically, like the debian packages do? -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Problems building custom kernel with make-kpkg
On Wed, Oct 10, 2001 at 06:41:41PM +0200, Dirk Niemeyer wrote: > Dirk Niemeyer wrote: > > > > > > apt-get install mkinitrd > > > > Sorry. It must read > > apt-get install initrd-tools > Thanks for your help, I will give your instructions a shot when I get the chance. Now, in the future how can I get the initrd image to install from within the custom kernel package, like the debian kernel packages do? -- Nick Jennings
Re: Problems building custom kernel with make-kpkg
On Wed, Oct 10, 2001 at 06:41:41PM +0200, Dirk Niemeyer wrote: > Dirk Niemeyer wrote: > > > > > > apt-get install mkinitrd > > > > Sorry. It must read > > apt-get install initrd-tools > Thanks for your help, I will give your instructions a shot when I get the chance. Now, in the future how can I get the initrd image to install from within the custom kernel package, like the debian kernel packages do? -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Problems building custom kernel with make-kpkg
Sorry about that subject! (Changing) -- Nick Jennings
[Mailer-Daemon@lists.sourceforge.net: Mail delivery failed: returning message to sender]
Hello, I am trying to build my customized kernel package integrating the FreeSwan source. I am running Debian 2.2 (potato) with the 2.4.9 kernel (using bunk's updates). I am having trouble with (I believe) initrd (which I have limited knowledge of. The 2.4.9 kernel package that I am running, uses an initrd image, and I grabbed the kernel source, and the .config for the debian kernel. (from apt-get source ). I patched in the freeswan code, and did the following: [wolf: /usr/src/linux]# make-kpkg kernel_image Everything went fine, the package was dropped in /usr/src, the problem is when I installed it (using dpkg -i), it did not put an initrd image in /boot/ but the System.map config and vmlinuz image were all there. Crossing my fingers, I made an entry for my new image in the lilo.conf (removing the initrd reference) and rebooted, but no luck: heres the last few lines from my kernel panic: Linux IP multicast router 0.06 plus PIM-SM klips_info: ipsec_init: KLIPS startup, FreeS/WAN IPSec version: snap2001oct9b request_module[block-major-3]: Root fs not mounted vfs: Cannot open root device "301" or 03:01 Please append a correct "root=" boot option kernel panic: VFS: Unable to mount root fs on 03:01 Any help on what I might be doing wrong, My hunch is that it has to do with no initrd image (since that's what I noticed missing). But I guess it could also be the freeswan source, since it's a snapshot, the latest stable source (1.91) could not compile with my 2.4.9 kernel, and the freeswan people told me to grab a snapshot (apparently there are known issues with 2.4.9 <-> 1.91. -- Nick Jennings
Problems building custom kernel with make-kpkg
Sorry about that subject! (Changing) -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
[Mailer-Daemon@lists.sourceforge.net: Mail delivery failed: returning message to sender]
Hello, I am trying to build my customized kernel package integrating the FreeSwan source. I am running Debian 2.2 (potato) with the 2.4.9 kernel (using bunk's updates). I am having trouble with (I believe) initrd (which I have limited knowledge of. The 2.4.9 kernel package that I am running, uses an initrd image, and I grabbed the kernel source, and the .config for the debian kernel. (from apt-get source ). I patched in the freeswan code, and did the following: [wolf: /usr/src/linux]# make-kpkg kernel_image Everything went fine, the package was dropped in /usr/src, the problem is when I installed it (using dpkg -i), it did not put an initrd image in /boot/ but the System.map config and vmlinuz image were all there. Crossing my fingers, I made an entry for my new image in the lilo.conf (removing the initrd reference) and rebooted, but no luck: heres the last few lines from my kernel panic: Linux IP multicast router 0.06 plus PIM-SM klips_info: ipsec_init: KLIPS startup, FreeS/WAN IPSec version: snap2001oct9b request_module[block-major-3]: Root fs not mounted vfs: Cannot open root device "301" or 03:01 Please append a correct "root=" boot option kernel panic: VFS: Unable to mount root fs on 03:01 Any help on what I might be doing wrong, My hunch is that it has to do with no initrd image (since that's what I noticed missing). But I guess it could also be the freeswan source, since it's a snapshot, the latest stable source (1.91) could not compile with my 2.4.9 kernel, and the freeswan people told me to grab a snapshot (apparently there are known issues with 2.4.9 <-> 1.91. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
IPSec
Hello, I am new to IPSec and VPN's and I am trying to set up a VPN between my house, and my work. They already have a VPN in place (using FreeSwan). So I wanted to use my debian router and am wondering if there is a deb package for freeswan? I am using potato with 2.4 kernel updates (from bunk). I see the package pipsecd when searching for ipsec in dselect, but this does not appear to be freeswan, correct? Any help would be usefull, as I have been trying to build a freeswan kernel and am having trouble with compilation. -- Nick Jennings
IPSec
Hello, I am new to IPSec and VPN's and I am trying to set up a VPN between my house, and my work. They already have a VPN in place (using FreeSwan). So I wanted to use my debian router and am wondering if there is a deb package for freeswan? I am using potato with 2.4 kernel updates (from bunk). I see the package pipsecd when searching for ipsec in dselect, but this does not appear to be freeswan, correct? Any help would be usefull, as I have been trying to build a freeswan kernel and am having trouble with compilation. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: ISP status monitoring.
I suggest penemo, http://www.penemo.org On Thu, Aug 02, 2001 at 01:08:55PM -0400, Robb Kidd wrote: > I'm giving this a whirl on debian-isp as I figure its subscribers have > the most experience with this. I'm looking into setuping up network > monitoring on one of my home boxes to keep my cable ISP (Cox/Road > Runner) honest. I'd like to check basic connectivity and DNS service > up/down/speed at a minimum and bandwidth if possible. > I've read a bit about Big Brother and Spong. I was wondering if any of > you have recommendations for either or others I'm not aware of. Also, > some advice on configuring this to monitor nicely. > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
mutt (! ssl)
Hey. Just wondering my mutt doesn't come packaged with SSL support? I don't see why there is any reason NOT to compile this in when making the package. Does it have to do with non-US? If so, why isn't there a mutt-ssl package in non-US? How do I go about making a mutt-ssl deb package for my mail server? # apt-get source mutt then what? can;t I just rebuild it with an additional compiler option, andhave it auotmatically build into a deb named say: mutt-ssl ? -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: disk partition schemes
On Wed, Jul 04, 2001 at 12:26:46AM +0200, Christian Hammers wrote: > I use 2.4.6-pre7 and use LVM,reiserfs and ext3 without problems. > (maybe my kernel is just too recent...) > ext3 has just recently been ported over to kernel 2.4, and you have no problems you say? (when I say recent, I mean the task began about 4 weeks ago). From what I've heard It does run. but there are still many problems. -- Nick Jennings
Re: disk partition schemes
On Wed, Jul 04, 2001 at 12:26:46AM +0200, Christian Hammers wrote: > I use 2.4.6-pre7 and use LVM,reiserfs and ext3 without problems. > (maybe my kernel is just too recent...) > ext3 has just recently been ported over to kernel 2.4, and you have no problems you say? (when I say recent, I mean the task began about 4 weeks ago). From what I've heard It does run. but there are still many problems. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Sendmail vs. ?
On Wed, Jun 27, 2001 at 01:18:41PM -0400, Richard A Nelson wrote: > > I guess my thoughts are: > 1) Let me know what sendmail can do to help > 2) If you want to switch, check to see if you've got anything tricky > in your rules - you *WILL* loose functionality with any other MTA > (turing complete control language). If you've a fairly genereric > sendmail.mc - you're probably ok This is not true, Exim allows much more flexibility with configuration, sendmail cannot handle seperate virtual domains (i.e. [EMAIL PROTECTED] is not the same as [EMAIL PROTECTED]) which is very usefull when running, for instance, web-based email services, and you don't want the usernames for it to conflict with your shell accounts on another domain, same server. > 3) I've heard (no experience) that Postfix is probably the easiest migration > It seems that you've had little experience with anything but sendmail, so you're opinion may be rather biased. I have used sendmail, exim, postfix and qmail and I think that exim and postfix are very good, high performance yet easily configurable and maintainable mail servers. Qmail I here gives better performance, but it's a hassle to maintain. I migrated from sendmail to exim and it was extremely easy (thanks to exim's amble documentation). -- Nick Jennings
Re: Sendmail vs. ?
On Wed, Jun 27, 2001 at 01:18:41PM -0400, Richard A Nelson wrote: > > I guess my thoughts are: > 1) Let me know what sendmail can do to help > 2) If you want to switch, check to see if you've got anything tricky > in your rules - you *WILL* loose functionality with any other MTA > (turing complete control language). If you've a fairly genereric > sendmail.mc - you're probably ok This is not true, Exim allows much more flexibility with configuration, sendmail cannot handle seperate virtual domains (i.e. [EMAIL PROTECTED] is not the same as [EMAIL PROTECTED]) which is very usefull when running, for instance, web-based email services, and you don't want the usernames for it to conflict with your shell accounts on another domain, same server. > 3) I've heard (no experience) that Postfix is probably the easiest migration > It seems that you've had little experience with anything but sendmail, so you're opinion may be rather biased. I have used sendmail, exim, postfix and qmail and I think that exim and postfix are very good, high performance yet easily configurable and maintainable mail servers. Qmail I here gives better performance, but it's a hassle to maintain. I migrated from sendmail to exim and it was extremely easy (thanks to exim's amble documentation). -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: disk partition schemes
On Sat, Jun 23, 2001 at 10:19:31AM +0200, Russell Coker wrote: > On Friday 22 June 2001 17:46, Duane Powers wrote: > > on /. I _always_ use a seprarate /home, so I can keep data in case I > > have to reinstall the OS, (successful intrustion attempt, etc.) and > > Of course the re-installation could start with: > rm -rf /etc /sbin /bin /var /usr /boot /lib > Well, generally if you're doing an install and have a partition you don't wan't the installer to mess with, not specifiying it as /home and just let it do the install with home on the / partition will ensure taht your data isn't damaged. Then afterward just edit the fstab and remount /home onto your old home partition. -- Nick Jennings
Re: disk partition schemes
On Sat, Jun 23, 2001 at 09:34:59AM +0200, Russell Coker wrote: > On Saturday 23 June 2001 04:10, Nick Jennings wrote: > > > > The main performance benefit to having directories reside on their own > > partition relates to file write/read access. It's very important to > > have var on it's own seperate partition, specifically because it's > > probably the most actively written to directory. > > OK. If you have a single physical hard drive or RAID array, the how will > having /var on a separate partition give any benefit? Disk access still > goes to the same hardware and is still limited by head seek times and > rotational delays of the hardware. Having two seeks on the same > partition or two seeks on separate partitions should not perform any > differently. I guess I was going by the same logic of the swap partition, having your partitions ordered by most usage. I also added into this having your system partitioned into logical segments to increase maintnence ease. > > However if you have a single large partition then when you are writing > data the FS drivers can optimise things. I always thought that this was a performance hit, I know I've read it in places before, but I can't seem to find them as I look right now. > > > Another little performance gain is the order in which you partition > > your disks (the closer to the 0'th cylinder the faster the access time. > > This depends on the type of device. This is a general rule that doesn't > always apply. But when it does apply it's not so small. 50% extra > performance at the start of the disk is not uncommon. > > AFAIK I'm the only person to publish a benchmark program to measure > this... > > > For instance, this is the order in which I usually go about > > partitioning my drive (note: it varies depending on it i'm setting up a > > workstation or a server, but they are similar). > > > >size: totalmem*2 (64mb = 128mb partition) > > / > > /tmp > > > > /usr > > /var > > /home > > Swap is often the most used partition. Root is probably the least. /tmp > and /home are both candidates for the most used partition. Having things > separate like this means that in many common usage situations you'll have > the heads seeking across the entire disk all the time. Having a single > partition could increase performance... Good point, I've put / at the beginning just out of habit, put I think that, especially on a server, /var is much more used than home is. and /usr is where every application is executed from, that's gotta count for something. I would venture to say that, on a server thats not offering lots of shell accounts, /home is the least used. > > > If I run out of room on /var/www or /var/cvs or something, I can stick > > another disk in and mount that in its place instead. I used to get > > worried about wasted space, but if you just over estimate a bit, you > > should be fine with most of the partitions that don't grow (like /, > > /tmp, /usr). And you just give the most space the the ones that can > > grow. Now I find a nice partitioning scheme to be much more manageable > > and the performance is very noticable. > > If sticking another disk in is so easy then why not just install lots of > disks in a RAID array from the start? That'll get the best performance... > Well because a hardware RAID is more expensive than a scsi or ide drive. Also because I'm thinking of one disk, with the possible expansion onto another one, or two. not starting out with several. -- Nick Jennings
Re: disk partition schemes
On Sat, Jun 23, 2001 at 10:19:31AM +0200, Russell Coker wrote: > On Friday 22 June 2001 17:46, Duane Powers wrote: > > on /. I _always_ use a seprarate /home, so I can keep data in case I > > have to reinstall the OS, (successful intrustion attempt, etc.) and > > Of course the re-installation could start with: > rm -rf /etc /sbin /bin /var /usr /boot /lib > Well, generally if you're doing an install and have a partition you don't wan't the installer to mess with, not specifiying it as /home and just let it do the install with home on the / partition will ensure taht your data isn't damaged. Then afterward just edit the fstab and remount /home onto your old home partition. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: disk partition schemes
On Sat, Jun 23, 2001 at 09:34:59AM +0200, Russell Coker wrote: > On Saturday 23 June 2001 04:10, Nick Jennings wrote: > > > > The main performance benefit to having directories reside on their own > > partition relates to file write/read access. It's very important to > > have var on it's own seperate partition, specifically because it's > > probably the most actively written to directory. > > OK. If you have a single physical hard drive or RAID array, the how will > having /var on a separate partition give any benefit? Disk access still > goes to the same hardware and is still limited by head seek times and > rotational delays of the hardware. Having two seeks on the same > partition or two seeks on separate partitions should not perform any > differently. I guess I was going by the same logic of the swap partition, having your partitions ordered by most usage. I also added into this having your system partitioned into logical segments to increase maintnence ease. > > However if you have a single large partition then when you are writing > data the FS drivers can optimise things. I always thought that this was a performance hit, I know I've read it in places before, but I can't seem to find them as I look right now. > > > Another little performance gain is the order in which you partition > > your disks (the closer to the 0'th cylinder the faster the access time. > > This depends on the type of device. This is a general rule that doesn't > always apply. But when it does apply it's not so small. 50% extra > performance at the start of the disk is not uncommon. > > AFAIK I'm the only person to publish a benchmark program to measure > this... > > > For instance, this is the order in which I usually go about > > partitioning my drive (note: it varies depending on it i'm setting up a > > workstation or a server, but they are similar). > > > >size: totalmem*2 (64mb = 128mb partition) > > / > > /tmp > > > > /usr > > /var > > /home > > Swap is often the most used partition. Root is probably the least. /tmp > and /home are both candidates for the most used partition. Having things > separate like this means that in many common usage situations you'll have > the heads seeking across the entire disk all the time. Having a single > partition could increase performance... Good point, I've put / at the beginning just out of habit, put I think that, especially on a server, /var is much more used than home is. and /usr is where every application is executed from, that's gotta count for something. I would venture to say that, on a server thats not offering lots of shell accounts, /home is the least used. > > > If I run out of room on /var/www or /var/cvs or something, I can stick > > another disk in and mount that in its place instead. I used to get > > worried about wasted space, but if you just over estimate a bit, you > > should be fine with most of the partitions that don't grow (like /, > > /tmp, /usr). And you just give the most space the the ones that can > > grow. Now I find a nice partitioning scheme to be much more manageable > > and the performance is very noticable. > > If sticking another disk in is so easy then why not just install lots of > disks in a RAID array from the start? That'll get the best performance... > Well because a hardware RAID is more expensive than a scsi or ide drive. Also because I'm thinking of one disk, with the possible expansion onto another one, or two. not starting out with several. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: disk partition schemes
On Fri, Jun 22, 2001 at 03:17:12PM +0200, Russell Coker wrote: > > > looking for help, it will be used as an IMAP/SMTP machine. So, should > > I create a separate /var partition? I'm hesitant because I don't want > > to a) not create a large enough partition, or b) create too large of > > I suggest having your email stored on the same file system as /home. > Then you have all of your customer data on the same file system for easy > backup. Also it saves juggling space. > > > one and waste space. Do the performance gains outweigh this? (I'm not > > terribly worried about the redundancy with the RAID 10 and all). > > What performance gains are you referring to? > The main performance benefit to having directories reside on their own partition relates to file write/read access. It's very important to have var on it's own seperate partition, specifically because it's probably the most actively written to directory. Another little performance gain is the order in which you partition your disks (the closer to the 0'th cylinder the faster the access time. For instance, this is the order in which I usually go about partitioning my drive (note: it varies depending on it i'm setting up a workstation or a server, but they are similar). size: totalmem*2 (64mb = 128mb partition) / /tmp /usr /var /home If i'm setting up a webserver i'll usualy make a /var/www, and if i'm setting up a mailserver, i'll add a /var/spool/mail, and for development servers i'll even throw in a /var/cvs Sometimes, with a server I like to make /usr just 1gig or so, and make a /usr/local/ for custom scripts & stuff I compile from source. If I run out of room on /var/www or /var/cvs or something, I can stick another disk in and mount that in its place instead. I used to get worried about wasted space, but if you just over estimate a bit, you should be fine with most of the partitions that don't grow (like /, /tmp, /usr). And you just give the most space the the ones that can grow. Now I find a nice partitioning scheme to be much more manageable and the performance is very noticable. -- Nick Jennings
Re: disk partition schemes
On Fri, Jun 22, 2001 at 03:17:12PM +0200, Russell Coker wrote: > > > looking for help, it will be used as an IMAP/SMTP machine. So, should > > I create a separate /var partition? I'm hesitant because I don't want > > to a) not create a large enough partition, or b) create too large of > > I suggest having your email stored on the same file system as /home. > Then you have all of your customer data on the same file system for easy > backup. Also it saves juggling space. > > > one and waste space. Do the performance gains outweigh this? (I'm not > > terribly worried about the redundancy with the RAID 10 and all). > > What performance gains are you referring to? > The main performance benefit to having directories reside on their own partition relates to file write/read access. It's very important to have var on it's own seperate partition, specifically because it's probably the most actively written to directory. Another little performance gain is the order in which you partition your disks (the closer to the 0'th cylinder the faster the access time. For instance, this is the order in which I usually go about partitioning my drive (note: it varies depending on it i'm setting up a workstation or a server, but they are similar). size: totalmem*2 (64mb = 128mb partition) / /tmp /usr /var /home If i'm setting up a webserver i'll usualy make a /var/www, and if i'm setting up a mailserver, i'll add a /var/spool/mail, and for development servers i'll even throw in a /var/cvs Sometimes, with a server I like to make /usr just 1gig or so, and make a /usr/local/ for custom scripts & stuff I compile from source. If I run out of room on /var/www or /var/cvs or something, I can stick another disk in and mount that in its place instead. I used to get worried about wasted space, but if you just over estimate a bit, you should be fine with most of the partitions that don't grow (like /, /tmp, /usr). And you just give the most space the the ones that can grow. Now I find a nice partitioning scheme to be much more manageable and the performance is very noticable. -- Nick Jennings -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Hardware RAID
I know its been some time since this post, im primarily responding for the archives, maybe someone will find the info usefulll.. i was looking for the exact same thing, an inexpensive hardware RAID controller. (something in the hundreds of dollars as apposed to the thousands). What i wfound was the AAA-13x card, its an adaptec hardware raid. and i looked on the hardware compatability list and it was listed etc. however... I got the card working, booted up off its cmos disk to flash the cards rom with the settings, and set it up as a RAID-1 ( i had 2 26 gig drives and just wanted mirroring). and the card was detected and all i had no problems as far as that was concerned and I even saw as i was installing debian both drives were active when it was installing to just the first drive "great" i thought. but the more i read the manual and stuff the more it seemed like in order to restore the secondary drive to use as a primary (if the original primary failed) was to use their proprietary windows software to rebuild the array. the disk they provide to setup the array (that you boot off) didnt have any rebuild features. so when it came down to it... i realized i could not use the hardware raid without the software program utilities. the cost was about the price of two adaptec 2940's and in the end. i ended up removing the array completely, and using the controller as just a scsi controller and wasting the RAID features. so now i have two drives. and i dd'd the contents of th first to the second.. and run a script that diffs the specified files that i want to back up and overwrites the newer file onto the second hard drive whenever its been updated. so if there is a problem with the first drive, i can just put the secondary in the primary slot and boot right up on it no problem. kind of a hacked raid-1 i guess. it works good and i dont have to worry about rebuilding arrays or whatever. hope this helps someone about to make the same mistake, or maybe someone has had bette rluck with the same card, if so please tell me all about it! On Sat, Apr 08, 2000 at 08:15:13AM -0600, elyograg wrote: > I've been looking through kernel readme files, and trying to find a > hardware RAID solution that will run under Debian. It seems that all of > the RAID hardware that is supported in the 2.2 kernel is either very very > expensive, or impossible to find. The controllers that are affordable, > aren't supported. I did briefly look at the 2.3 kernel, but there didn't > seem to be any additional support. > > We're planning to go with 5-7 U2W drives in a level 5 array, probably > sticking with 7200 RPM. The 160Mb standard on 10,000 RPM drives would be > very nice, but the price increases are staggering. We'll try to find the > current pricing sweet spot and purchase drives at that capacity. We don't > need the full redundant power, hot swappable setup - our concern is speed > and reliability. If we have to take it down because of a hardware failure, > we're OK with that. :) > > Does anyone have any recommendations for a hardware RAID controller with a > good combination of price and Linux support, and at least one supplier who > carries it? > > I know I can do software RAID, and this idea hasn't been completely > discounted, but I'm very interested in the potential for just letting the > hardware take care of it. The only case I know of with software RAID > (level 1) was difficult to work with, as it was extremely slow to > fsck/rebuild if there were any problems. Anyone have any other horror or > success stories with either hardware or software RAID to share? > > If we go the software route, would there be any issue with simply getting > something like the Adaptec 2940U2W? Any other solid recommendations, and > reasoning to support the choice? > > Thanks, > Shawn > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- - Nick Jennings Email: [EMAIL PROTECTED] Web : http://nick.namodn.com -
Re: Hardware RAID
I know its been some time since this post, im primarily responding for the archives, maybe someone will find the info usefulll.. i was looking for the exact same thing, an inexpensive hardware RAID controller. (something in the hundreds of dollars as apposed to the thousands). What i wfound was the AAA-13x card, its an adaptec hardware raid. and i looked on the hardware compatability list and it was listed etc. however... I got the card working, booted up off its cmos disk to flash the cards rom with the settings, and set it up as a RAID-1 ( i had 2 26 gig drives and just wanted mirroring). and the card was detected and all i had no problems as far as that was concerned and I even saw as i was installing debian both drives were active when it was installing to just the first drive "great" i thought. but the more i read the manual and stuff the more it seemed like in order to restore the secondary drive to use as a primary (if the original primary failed) was to use their proprietary windows software to rebuild the array. the disk they provide to setup the array (that you boot off) didnt have any rebuild features. so when it came down to it... i realized i could not use the hardware raid without the software program utilities. the cost was about the price of two adaptec 2940's and in the end. i ended up removing the array completely, and using the controller as just a scsi controller and wasting the RAID features. so now i have two drives. and i dd'd the contents of th first to the second.. and run a script that diffs the specified files that i want to back up and overwrites the newer file onto the second hard drive whenever its been updated. so if there is a problem with the first drive, i can just put the secondary in the primary slot and boot right up on it no problem. kind of a hacked raid-1 i guess. it works good and i dont have to worry about rebuilding arrays or whatever. hope this helps someone about to make the same mistake, or maybe someone has had bette rluck with the same card, if so please tell me all about it! On Sat, Apr 08, 2000 at 08:15:13AM -0600, elyograg wrote: > I've been looking through kernel readme files, and trying to find a > hardware RAID solution that will run under Debian. It seems that all of > the RAID hardware that is supported in the 2.2 kernel is either very very > expensive, or impossible to find. The controllers that are affordable, > aren't supported. I did briefly look at the 2.3 kernel, but there didn't > seem to be any additional support. > > We're planning to go with 5-7 U2W drives in a level 5 array, probably > sticking with 7200 RPM. The 160Mb standard on 10,000 RPM drives would be > very nice, but the price increases are staggering. We'll try to find the > current pricing sweet spot and purchase drives at that capacity. We don't > need the full redundant power, hot swappable setup - our concern is speed > and reliability. If we have to take it down because of a hardware failure, > we're OK with that. :) > > Does anyone have any recommendations for a hardware RAID controller with a > good combination of price and Linux support, and at least one supplier who > carries it? > > I know I can do software RAID, and this idea hasn't been completely > discounted, but I'm very interested in the potential for just letting the > hardware take care of it. The only case I know of with software RAID > (level 1) was difficult to work with, as it was extremely slow to > fsck/rebuild if there were any problems. Anyone have any other horror or > success stories with either hardware or software RAID to share? > > If we go the software route, would there be any issue with simply getting > something like the Adaptec 2940U2W? Any other solid recommendations, and > reasoning to support the choice? > > Thanks, > Shawn > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- - Nick Jennings Email: [EMAIL PROTECTED] Web : http://nick.namodn.com - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
1 LAN, 2 IPs (Routing Problems)
Hello,
I have a DSL connection with 2 IP's for example sake lets call them
1.1.1.20 and
1.1.1.21
I have 1 router, 1 HUB, and 4 linux workstations (Not including the router).
The DSL plugs into the router, which, on another NIC plugs into a HUB,
connected to all the workstations.
I want the network to be set up so that, requests to 1.1.1.20 go to the
router, and reuqests for 1.1.1.21 go to my primary workstation (suffix).
so that requests to the outside world from all workstations except suffix,
appear to be coming from 1.1.1.20, but requests to the outside world from
suffix, appear to come from 1.1.1.21 so that my primary workstation gets its
own IP, and all the others are sharing one (Masqueraded).
Is there a way to masquerade only a certain subnet, and with another ip,
just send all incoming and outgoing traffic through, only doing security
filtering but not blocking anything as if it was masqueraded and not a
direct link to suffix from its IP address..
let me know if im not making myself clear or if you need anymore
information.
thanks for any help.
--
- Nick Jennings
Email: [EMAIL PROTECTED]
Web : http://nick.namodn.com
-
Re: Idle Time (ssh, or telnet)
On Mon, Feb 14, 2000 at 08:34:52PM -0600, Security wrote: > > I believe that the /sbin/ipfwadm -M -s 10 10 10 is the > pertinent line. > > Note: this machine is a 2.0.37 kernel on Debian 2.1. I am not sure of the > equivalent ipchains incantation. Maybe someone else on the list can toss > it out here. It would be great if someone could post the ipchains equiv. to this ipfwadm rule. -- - Nick Jennings Email: [EMAIL PROTECTED] Web : http://nick.namodn.com -
Re: Idle Time (ssh, or telnet)
On Sat, Feb 12, 2000 at 08:33:24AM -0600, Security wrote: > > Are you using masquerading somewhere in the route for the box that drops > the connections? If so that could be the cause. I disremember the details > but I had this for awhile and that was fixed by tweaking the the ipmasq (or > chains) script on my gateway macine. I can leave idle sessions open for > literally months when set up this way. Before I got that figured out I > would always run a ping or something to make the shell appear active which > was a terrible hack but actually worked occasionally. > > If you think this might be the cause send me an e and I'll dig out the info > and get it to the list. > > Tom That sounds very possible, the network at home is masqueraded by a little 486 router I have setup, (ipchains). and the workstation at work has a real IP. It'd be great if you could dig out that info and let me know. -- - Nick Jennings Email: [EMAIL PROTECTED] Web : http://nick.namodn.com -
