Re: Device polling performance
In a message dated 9/25/04 4:12:52 PM Eastern Daylight Time, [EMAIL PROTECTED] writes: FreeBSD team for developing a stack that uses no resources. For the record, what I was saying was that a decent machine (e.g. 2.4 PIV) should be able to push 200,000 packets per second with decent NICs (em, or fxp) and with a median packet size (see www.caida.org) of about 540 bytes, that works out to ~ 100Mb/s. No you didn't, you said that 200Kpps would show almost no cpu usage, which is utterly ridiculous. Mike at sentex.net previously wrote: Given a decent CPU, you wont see very much of a load average at all in the 200Kpps / 100Mb range. Note that load average and CPU usage are two intirely different things. You could have a huge amount of CPU usage with a load average hovering around zero and somewhat vice versa too - eg high load average without a great deal of CPU usage - though that would be less common. jerry ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
serial port config
Hello- I am trying to configure the serial ports on a bunch of machines to be hooked up to a terminal server...baynetworks Annex to be exact. I am running FreeBSD 5.2.1 on an i386 machine with an Inter n440bx board. These motherboards are pretty common and found on early VA linux boxen. I followed the handbook but I am a little confused where it is talking about: 4. Make sure the configuration file of your kernel has appropriate flags set for COM1 (sio0). where I should be seeing or adding a line such as : device sio0 at isa? port IO_COM1 flags 0x10 irq 4 I have not done this and do not know where I am supposed to do this. I have made the other changes stated in the handbook and also done this on a machine at a time before and got it to work this way. My dmeg output for sio0 looks like this: sio0 port 0x3f8-0x3ff irq 4 on acpi0 sio0: type 16550A, console Isn't this telling me that it is configured? Any help would be apperciated. thanks, Bob ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Device polling performance
In a message dated 9/25/04 4:24:07 PM Eastern Daylight Time, [EMAIL PROTECTED] writes: The EVIDENCE is to the contrary, since it seems that a 2.4Ghz system will be saturated when bridging ~250Kpps with device-polling enabled, based on polling stats and userland benchmarking, even though the system claims to be 100% idle. Interestingly, its about the same with interrupt enabled. The POINT is that since there is no way to measure the performance, you've got a bunch of guys who think they've figured something out touting device-polling without having a clue what the performance advantages (or consequences) are, so it might as well be black magic, or snake oil, since you are as blind as a bat in your assessments. Hello, Please post your polling stats and userland benchmarking results. I would be very interested seeing them as I was thinking of moving to NICs that would benefit from polling. However, because you have EVIDENCE ... to the contrary, I may hold off. On the other hand, you do go on to say there is no way to measure the performance and you are as blind as a bat in your assessments, so also please post your test methodology. I need to make my decision on reliable, repeatable facts. Also, when you post, would you please wrap your lines to a shorter length? Not everyone on the list uses AOL Reader, like you. -- --- The evidence is a bit circumstantial in the absence of working tools, but here are some observations. There's also an assumption that the knobs associated with polling work as expected. Test machine is a 2.4Ghz celeron box with dual Intel NICs (em driver) on a 32bit, 33Mhz bus, running FreeBSD 4.9. Now I realize that a 133Mhz, 64bit bus is 8x faster and you certainly wouldnt use these NICs on a real network, but for the purpose of a control it doesnt matter, since both tests are on the same MB. Settings: HZ=1000 each_burst=512 max_burst=1000 user_frac=variable RXdescriptors (receive ring size) = 512 (Note that the burst never exceeded 100 at any time) I'm firing a controlled stream of 100K pps through the box (bridging). With only normal userland (idle) usage, the box happily goes about its way. Top shows 0-1.5% usage. I started a cpu intensive userland task (buildworld or something of the sort). The system started to lose packets with a user_frac setting of 78, which implies that the system requires about 22% of the cpu to successfully manage the task, assuming the knob works (it appears to). The same machine, with interrupts enabled, uses about 26%, according to top. HOWEVER, setting hz back to 100, with interrupts enabled the usage went down under 25%. Given that, it can be argued that there is less than a 5% bonus for polling, which makes a lot more sense than what some of the kooks have been saying. Of course the point here wasn't to prove the difference, which Im still not sure of, but the evidence certainly is that top doesn't properly account for CPU usage in device_polling mode.. I'd expect a small bonus, but nothing earth-shattering, as the machine still has to do the same amount of work. Its not like the machine is really servicing an interrupt for every packet, since controllers have hold offs so they don't generate interrupts on top of each other, and multiple events are regularly handled with a single interrupt. Polling gives the appearance of a machine happily going about its business no matter how much traffic you throw at it, but what happens is that you lose packets when it becomes overmatched, which never happens on a system with interrupts enabled before it goes into livelock. While livelock isn't a good thing, if it only happens occasionally, at least you aren't losing packets. Additionally, with a HZ setting of 1000 you're also introducing quite a bit of latency: additional_latency = up to 1ms in receive ring + transmit time for burst-1 frames. Increasing HZ further would reduce the latency, but adds more overhead, which slims the advantages and defeats the purpose of polling in the first place. The bottom line is that there isn't so much difference as to think that polling is going to save the day, but if you don't care about latency or losing packets it can be useful in allocating cpu cycles to user space, if thats your priority. TM ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bind 9.3.0 on FreeBSD 5.2.1
Try using rndc -s server ip status In Bind9 all controls have been turned over to the r/ndc system. On Thu, 23 Sep 2004 02:04:30 -0500, Kyle S. Allender [EMAIL PROTECTED] wrote: Hello. This is potentially a stupid question, but is there a known issue with the rc script which controls named under FreeBSD 5.2.1? Running on an internal-only network where queries are received from machines I control on a home network, I get spurios errors such as: bsd# ./named status named is not running. bsd# ps x | grep named 11342 ?? SLs0:00.51 /usr/sbin/named -c /etc/namedb/named.conf 11596 p0 RL+0:00.00 grep named bsd# and bsd# ./named start [: /usr/sbin/named: unexpected operator Starting named. bsd# ps x | grep named 11603 ?? SLs0:00.05 /usr/sbin/named -c /etc/namedb/named.conf 11605 p0 RL+0:00.00 grep named bsd# I had originally set up this system with the Linux compatibility layer enabled which also resulted in complaints about ELF processing. These errors occur with bind 9.3.0rc4 (source install) and with 9.2.3 (ports install). I'm very confused and have stepped through /etc/defaults/rc.conf /etc/rc.d/named trying to trace the error to no avail. Any assistance would be greatly appreciated. This is not running in a chroot. Kyle ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Device polling performance
In a message dated 9/27/04 3:04:22 PM Eastern Daylight Time, [EMAIL PROTECTED] writes: Mike at sentex.net previously wrote: Given a decent CPU, you wont see very much of a load average at all in the 200Kpps / 100Mb range. Note that load average and CPU usage are two intirely different things. You could have a huge amount of CPU usage with a load average hovering around zero and somewhat vice versa too - eg high load average without a great deal of CPU usage - though that would be less common. jerry Since device polling is entirely a kernel process (and userland load average has nothing to do with it), his statement would have been completely irrelevent if he were, in fact, talking about userland load average. Load average is virtually useless and shouldn't be part of any conversation originating after 1990. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Backup Mail Server Questions
On Sep 27, 2004, at 11:39, Nico Meijer wrote: Regular folks don't understand how mail works. They have no clue whatsoever. They don't _want_ to have a clue either. They are just behaving like consumers, again. Do you *really* want to know what's on your plate at dinner? ;-) I do, maybe you too, but most people don't. If I had a dime for every time I have had to discuss how mail delivery actually works to Joe Average or his Windows NT/2000 systems administrator... boy. Again, I have many _very_ strong opinions on how email should be managed, this is one of them. I happen to have a very strong opinion on the grim state of humanity in general and regular, everyday, Joe Average computer users in particular. I am therefore strongly biased. ;-) When Joe Average computer user sends an order to Jane Trader to sell his stock in xxx because its the highest its ever been and that email sits in your secondary MX until after xxx falls to penny stock status, then Joe Average computer user will have plenty of world class lawyers on his doorstep with big dollar signs in their eyes. They will have no problem convincing Joe Sub-Average juror (of which there will be more than enough to go around) that you were the cause of Joe Average computer users' loss of his entire retirement savings. After all, you accepted the email and acknowledged it and failed to deliver it to Jane in a timely fashion. Any technical arguments you make about the server down etc., will not faze the judge (who couldn't care less - he gets paid the same no matter who wins) or Joe Sub-Average juror who is only interested in who is putting on the better entertainment (you or the soap opera he is missing at home). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
regex replacement wizard advice needed
Hi Gang, I have a document with numbered paragraphs, the numbers to the far left of each paragraph. Is there a perl s/NNN/BNNN//BBR/g means I can use from the CL or as a script to make this doc more easy (for me) to read. The document is formatted like this: 1 Paragraph1. 2 Paragraph2. ... 29 Paragraph29. ... 747 Paragraph747. I would like it to be like this: B1/BBR Paragraph1. B2/BBR Paragraph2. ... B29/BBR Paragraph29. ... B747/BBR Paragraph747. I've used perls subsitiution as a simple command line script dozens of times, but this one (yes, I'm using HTML) is a bit over my head. Can anybody clue me in? thanks in advance, gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public service Unix ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 4.7-5.0, ran out of space on /
On Wed, 22 Jan 2003 10:11:02 -1000 (HST), Vincent Poy [EMAIL PROTECTED] wrote: On Wed, 22 Jan 2003, Kirk R. Wythers wrote: I just ran into a problem trying to install the 5.0 world. I thought I checked and had 30M free on / before I started this. However, after building, the world, building the kernel, installing the kernel, running mergemaster -p, I went to install the world and got the error 'out of space on /' I need to find some room, but I'm a little nervous about what I can rm. Here is what I'm looking at: 1) / partition is 79M, 64M are used (I was almost sure there was more room than that on / before I satarted). 2) /tmp is on it's own partition 3) du -h on subdirectories breakdown like this. a. 18M /boot b. 1.4M /etc c. 3.7M /kernel d. 3.9M /kern.GENERIC e. 6M /modules f. 21M /sbin g. 2.1M /stand as you can see that pretty much accounts for it. The rest of the stuff is pretty small. I need to know if I can delete any of this stuff and still successfully do a 'make installworld'? /modules can all be deleted since these are now in /boot /sbin /stand should stay You could also remove /stand, as most of it's functionality has been moved to the the /rescue directory. Also, make sure that Soft-Updates is turned off on your root directory. Because Soft-Updates doesn't immediately free the space on the drive. Scot ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Backup Mail Server Questions
Nico Meijer [EMAIL PROTECTED] wrote: Hey Bill, Black mode is on, here. ;-) I'm not familiar with that metaphor. Are you saying that it's better for users not to know that their mail has been delayed? Unfortunately, yes. That is what I am saying. On a technical level, I totally disagree with myself. On a practical, day-to-day operations level I have to admit I'd rather not handle the calls. Don't know what to tell you there. My major concern is that: a) When other servers reply with could not deliver after x hours messages, they'll still run around like idiots, and you'll have to explain anyway. b) You're punishing educated people by having their mail disappear into the ether with no warning. When I have a choice of punishing idiots or smart people, I punish idiots. snip If folks run around in a panic, then it's a training issue, not an excuse for you to quell useful informational messages. As much as I hate to admit it: regular people don't want their mailservers to bitch at them *no matter what happens*, unless they are down (in which case they don't bitch either ;-) ). You know, the same people that shut their brain off when turning their computers on. My point is that we're obligated to force these people to turn their brains back on, before they ruin the world with their screwed up politics and other nonsense. Look at the vehicle situation. If people would force stupid drivers to wise up, instead of trying to cover up their stupidity with airbags, we'd have a lot less deaths due to vehicle accidents. Regular folks don't understand how mail works. They have no clue whatsoever. They don't _want_ to have a clue either. They are just behaving like consumers, again. Do you *really* want to know what's on your plate at dinner? ;-) I do, maybe you too, but most people don't. I disagree just a _little_. I don't _want_ to know, but I feel obligated that I _have_ to know. Others would rather just have their doctor prescribe something when thier shitty diet makes them sick. Then I have to pay the elevated health insurance costs ... now they want to turn the US into a socialized medicin country, so every citizen is _forced_ to pay for all the people who don't take care of themselves. If I had a dime for every time I have had to discuss how mail delivery actually works to Joe Average or his Windows NT/2000 systems administrator... boy. Write up a web page and point people to it. Sometimes I think that if people enjoyed answering the same question over and over, there would be no FreeBSD handbook! Again, I have many _very_ strong opinions on how email should be managed, this is one of them. I happen to have a very strong opinion on the grim state of humanity in general and regular, everyday, Joe Average computer users in particular. I am therefore strongly biased. ;-) I disagree with you on the secondary DNS part (but I'm leaving that, I have work to do ;-) ), I technically agree with you on the MX part. I'll try to get out of black mode now :-) ... Nico I still don't know what that means, but I guess _I_ was in rant mode. I'll turn that off now. -- Bill Moran Potential Technologies http://www.potentialtech.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[OT] Re: Backup Mail Server Questions
Hi Doug, Point taken. Wrong example, imho, but point taken. ;-) They will have no problem convincing Joe Sub-Average juror (of which there will be more than enough to go around) that you were the cause of Joe Average computer users' loss of his entire retirement savings. I have just enough faith in even the American legal system that the judge will rule that Joe Average should not have put his entire retirement savings on an email line, but rather some real time (or as close as can be), secured communication channel. I may be wrong though, who knows. If what you say were real life, what about the standard 4 hour delay in the default 'deferred' message to Joe Average? Don't answer that. This is turning OT way too fast (my bad). Bye... Nico ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: serial port config
At 12:58 PM 9/27/2004 -0700, you wrote: 4. Make sure the configuration file of your kernel has appropriate flags set for COM1 (sio0). where I should be seeing or adding a line such as : device sio0 at isa? port IO_COM1 flags 0x10 irq 4 You should add that to the kernel configuration file. Please, refer to http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig.html So, let me get this straightI am going to add: device sio0 at isa? port IO_COM1 flags 0x10 irq 4 to the kernel configuration, aka the GENERIC file in /usr/src/sys/i386/conf if the system is not customized at all? -Bob ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: serial port config
So, let me get this straightI am going to add: device sio0 at isa? port IO_COM1 flags 0x10 irq 4 to the kernel configuration, aka the GENERIC file in /usr/src/sys/i386/conf if the system is not customized at all? What you are doing is to tell the kernel what he needs to do to configure that device. If by not customized at all you mean you don't have the hardware in the computer yet, there is no problem, when you will boot the kernel it will give up if there is no hardware. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: serial port config
At 01:24 PM 9/27/2004 -0700, David Rio Deiros wrote: So, let me get this straightI am going to add: device sio0 at isa? port IO_COM1 flags 0x10 irq 4 to the kernel configuration, aka the GENERIC file in /usr/src/sys/i386/conf if the system is not customized at all? What you are doing is to tell the kernel what he needs to do to configure that device. If by not customized at all you mean you don't have the hardware in the computer yet, there is no problem, when you will boot the kernel it will give up if there is no hardware. By not customized, I mean that the file will be the GENERIC kernel config file. This doesn't seem to be the correct way as I get this error message: config: /usr/src/sys/i386/conf/GENERIC:279: devices with zero units are not likely to be correct What file do I add this line to?: device sio0 at isa? port IO_COM1 flags 0x10 irq 4 -Bob ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
3ddesktop
ive installed 3ddesktop 0.2.7 from ports im running x.org 6.7 on a 386 box with a voodoo 3 2000 box.. I have tdfx.ko loaded and dmesg reports info: [drm] Initialized tdfx 1.0.0 20010216 on minor 0 but when I run 3ddesk, I get [EMAIL PROTECTED] 3ddesk Attempting to start 3ddesktop server. Daemon started. Run 3ddesk to activate. 3ddeskd: glXIsDirect failed, no Direct Rendering possible! 3ddeskd: Please configure hardware acceleration. Exiting. any ideas? regards, Jason ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Apache upgrads thrashing certs; index.html.* crud
Hey Fellas, Whenever I do an apache upgrade - whether it be apache 1.3 or apache 2, it always spews all these index.html.language files in my web root that I have to go in and remove - but more annoyingly it overwrites my certs in /usr/local/etc/apache[2]/ssl.*. What gives? There a command line option I should be usign to prevent such madness? Dan ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is it safe to run a webserver on 5.x ?
On Mon, Sep 27, 2004 at 01:56:27AM -0400, bsdfsse wrote: I started running FreeBSD because a friend of mine is going to run a website on 4.10-STABLE. Someone had told him that 4.x was safer to run than 5.x. Recently I had a hardware problems on one of my machines that is forcing me to run 5.x on it, instead of 4.x. Should I lobby my friend to also run 5.x ? His webserver will be behind a hardware firewall. I would let him leaf his server on 4.x and wait untill 5.3 or untill there are no more 4 releases plus fixes. But would go with 5.2.1 if I had to do a fresh install. And would do a fresh install if I switched to 5 because of UFS2. Its my understanding servers on the web often run the security release, which is RELEASE+fixes. That way, no new features in STABLE introduce more exploitable bugs. Other people run web servers on STABLE (they must feel confident that nothing new is going to break). This is true for every release stable or not. I run 5.2 plus fixes. -- Alex Articles based on solutions that I use: http://www.kruijff.org/alex/FreeBSD/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: serial port config
config: /usr/src/sys/i386/conf/GENERIC:279: devices with zero units are not likely to be correct What file do I add this line to?: device sio0 at isa? port IO_COM1 flags 0x10 irq 4 Check out this thread: http://www.webservertalk.com/archive77-2004-1-50488.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Backup Mail Server Questions
On Mon, Sep 27, 2004 at 01:38:15PM -0600, Bill Moran wrote:
snip
When I have a choice of punishing idiots or smart people, I punish
idiots.
This is excellent. It should be on a bumper sticker or something.
snip
Look at the vehicle situation. If people would force stupid drivers
to wise up, instead of trying to cover up their stupidity with airbags,
we'd have a lot less deaths due to vehicle accidents.
Another bumper sticker: Airbags: The Backup Mail Exchangers of the
Automobile Industry You could probably add a couple of {fnord}s in
there for good measure.
snip
Others would rather just have their doctor prescribe something when thier
shitty diet makes them sick. Then I have to pay the elevated health
insurance costs ... now they want to turn the US into a socialized
medicin country, so every citizen is _forced_ to pay for all the people
who don't take care of themselves.
Speaking as a citizen of a country that has socialized medicine (Canada),
I can say that the expense probably does not nearly approach what you
think. I compared notes with an American friend just the other day. She
pays in a month what I pay in a year. I think our health care is
subdisized by our income tax (we pay much more than you Americans as I
understand it) but even that probably doesn't make up the difference.
That having been said, I do agree with your point as it relates to
user education, simply because by adopting a policy of misinforming users
you are committing yourself to maintaining a more and more elaborate
structure of, essentially, lies. Reductio ad absurdum c. Better to let
them know off the bat what the limitations are.
Example: Users already have a completely unjustified perception of
email as being a reliable and immediate transmission medium, which it
clearly is not. Since users are the ones who will have to bear the cost
when reality pays them a wake-up call, it serves everyone to disabuse them
of this notion as quickly as possible. Gently if you have to, rudely if
you can. :)
snip
--
Bill Moran
Potential Technologies
http://www.potentialtech.com
--
Danny
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Very very slow
Kris Kennaway wrote: On Mon, Sep 27, 2004 at 10:16:38AM +0200, Albert Shih wrote: 32 sec to do cd /usr/src time find . -type f -print /dev/null and on other computer I just need 0.8 sec to do that. I don't believe that, unless you already have all of /usr/src in cache. 32 seconds seems quite normal for searching and reading ~55000 directory entries (on the machine I just tried it took 42 seconds). Kris Hmm. Didn't take that long here. Celeron 2.4, 768MB DDR, full src (enough to buildworld on 5.2.1-p3, anyway): [EMAIL PROTECTED] [/usr/src] [19:10] % sudo time find . -type f -print /dev/null 3.60 real 0.34 user 1.86 sys KDK ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: regex replacement wizard advice needed
How about something like (assuming space between numbering and paragraph is a tab): perl -pi -e 's,^(\d)\t,B$1/BBR,' filename Atle - Flying Crocodile Inc, Unix Systems Administrator ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problems with USB Detach
I have a USB Sony Clie PEG-SJ20 which I have gotten to Sync with jpilot. However the processes that are run when the Clie is attached continue to run even after the Clie is detached. The processes are spawned from usbd.conf with the attach option and should be killed by the detach options. None of the processes are killed though. I'm running FreeBSD 5.2.1 Any thoughts? Following is the usbd.conf and other pertinent files. # Sony Clie (PDA) device Sony Clie devname ucom0 vendor 0x054c product 0x0066 release 0x0100 # pilot-link attach /usr/sbin/ppp -auto palm; /usr/local/bin/pi-csd -H tmm324 -a 66.71.101.5 -n 255.255.255.0 detach /usr/local/bin/pi-detach pi-detach is a shell script containing: #!/bin/sh /usr/bin/killall ppp /usr/bin/killall pi-csd Thomas Moyer [EMAIL PROTECTED] DracoYung ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IP address conflicts
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Matthew Seaman Sent: Monday, September 27, 2004 2:22 AM To: Tim Aslat Cc: [EMAIL PROTECTED] Subject: Re: IP address conflicts On Mon, Sep 27, 2004 at 08:51:47AM +0930, Tim Aslat wrote: I have an annoying situation in a school I do casual work in their IT department. There are a number of individuals within the system who think it's funny to allocate an IP address on a workstation identical to the network's proxy/web/mail servers. What I'd like to know is, would there be any way of preventing this short of spending quite a lot of money on managed switches an the like? Well, you could move all of the servers onto a separate network to any of the individual client machines (and make sure that the server network isn't accessible from any of the network ports your clients have access to, clearly). That way, even if one of your pet idiots decides to 'borrow' a server IP address, the network routing means that all they are going to do is hurt themselves. You must want to HELP the little shits then. Think of this for a second. Right now he has maybe 4-5 different servers that people are putting the IP numbers on. Once you move all those servers onto a separate subnet, now all the little twits have to do is put the IP number of the gateway router onto their systems, then the entire subnet that ALL the servers are on becomes inaccessible. Ted ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problems with USB Detach
Thomas Moyer writes: #!/bin/sh /usr/bin/killall ppp This may not be the correct tool - see man pppctl. Robert Huff ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Very very slow
On Mon, Sep 27, 2004 at 07:14:57PM -0500, Kevin D. Kinsey, DaleCo, S.P. wrote: Kris Kennaway wrote: On Mon, Sep 27, 2004 at 10:16:38AM +0200, Albert Shih wrote: 32 sec to do cd /usr/src time find . -type f -print /dev/null and on other computer I just need 0.8 sec to do that. I don't believe that, unless you already have all of /usr/src in cache. 32 seconds seems quite normal for searching and reading ~55000 directory entries (on the machine I just tried it took 42 seconds). Kris Hmm. Didn't take that long here. Celeron 2.4, 768MB DDR, full src (enough to buildworld on 5.2.1-p3, anyway): [EMAIL PROTECTED] [/usr/src] [19:10] % sudo time find . -type f -print /dev/null 3.60 real 0.34 user 1.86 sys I can only reproduce those kind of numbers when everything is already cached: /usr/bin/time find /usr/src/ -type f -print /dev/null 45.28 real 0.30 user 1.51 sys /usr/bin/time find /usr/src/ -type f -print /dev/null 1.34 real 0.26 user 1.07 sys If your system is quiet, /usr/src may still be cached from the last nightly run of locate.updatedb. Try running the test from single-user mode after the system has just been rebooted. Kris pgputX4nAnkg8.pgp Description: PGP signature
RE: IP address conflicts
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of russell Sent: Sunday, September 26, 2004 10:36 PM To: bsdfsse Cc: [EMAIL PROTECTED] Subject: Re: IP address conflicts or use a tool like arpwatch that is specifically designed to let you know when MAC/IP relationships change on your network. You don't even need to do that - any router on the network is going to log the MAC address because they will see the arp change, as will the other servers. you log the MAC addresses of all the fixed workstations in the school, then when one of them starts doing the wrong thing you know *exactly* where to go to nab the culprit. How, exactly? Do you think that he has a list of all MAC addresses on the network and who is using them? Getting the MAC address is not the problem. Finding it on what is essentially a completely flat network is. You need managed switches for this so you can see what port the offending MAC address is on. If it's not one of the fixed workstations then you've got a bit more work to find the kiddie, but it's nothing insurmountable. Unless of course the kiddies are using made up MAC addresses like BADBEEF, DEADBEEF, CO1DCOED, and such. Ted ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How can I route through a pc that is also using a router??
Good day! I have two workstations at work, 1 my personal, and the other, a test machine. My boss told me to configure a pcrouter, that is, the testmachine and let my personal pc connect through the internet through the testmachine: Here's the scenario: The testmachine already knows how to connect through the outside world but, also through a gateway testmachine(10.10.8.111)---gateway(10.10.8.254)[proxy][DNS]internet And to let my pc connect to the internet through the testmachine, I've set its default gateway to the ip of the test machine. But it doesn't seem to work. When I tried to lauch my browser, the error indicates that it cannot seem to find its way to the proxy server. I've tried adding another line in my routing table like this: Destination Gateway proxy(202.90.128.14) testmachine(10.10.8.111) But it still won't work. Do you know what i've been missing here? I'm thinking perhaps the test machine should connect to the internet directly without using a gateway anymore.. Any idea? ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IP address conflicts
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Tim Aslat Sent: Sunday, September 26, 2004 9:50 PM I agree, and this is what we are trying to do. However a school with 20+ buildings, and 1000+ network points and a considerable number of switches makes it a little more difficult. And, let me guess, most switches purchased at different times, different models, different number of ports, etc. And all of them on a single network, not broken up into small subnets - that is the first mistake. Probably many of the predicessors didn't understand you can use cheap servers as routers. What a nightmare. I actually think it's more than 1 culprit, and I couldn't be 100% certain whether they are using their own notebooks or school machines until I catch them in the act. Well, as these things go when you do finally catch one it's going to be the slowest and stupidest one of the lot. When he gets expelled the rest of them are going to call an all-out war and get a lot more sophisticated a lot faster. Please bear in mind that I have over 50 switches kicking around in various parts of the school, and only 4 of them are managed. This could be a very expensive exercise. It's not the number of switches that matter it's the number of active ports. 50 what, 8 port switches? or 24 port switches? Of course, there are some other ways of handling this too. Oppps, looks like another switch died, we are just having a rash of these failures lately! Must be bad power. And amazing - it's the switch that the head of the Engineering department and his staff are using! Guess they will just have to go without since we don't have the money for new switches It's amazing how money will appear out of thin air if certain oxen get gored. Also, if you are a bona-fied school, contact some of the switch vendors, they may make a deal with you under the table. This isn't a bad idea. Might be well worth looking into, especially with the number we are going to need. If you do go this route then screw the desktop switches, get yourself some decent slotted hubs. You want a much higher port density than the crummy 24 in a typical rack mounted switch. Besides that, the switch vendor is gonna want to use your school as an example of how to do things right. Remember, if your going to go begging then you need to beg for the best stuff they have. I appreciate the sentiment :) however if a quick hack can cover my butt until I get budget clearance to get real switches in place, then I'm all for it. Like you, I don't like quick hacks, but it they do the job until I can put something better in place, it's better than nothing. One question though. Would it be enough to get some half decent switches just on the servers, or would I need to replace every single switch in the network? You need to replace every single switch. When one of these bozos assumes a server IP number, he's going to most likely use a different MAC address. You need to be able to query the mac table in the switch to see what port that address is coming in from. Later on, when you have expelled a few of them, they are going to cop wise and start using the SAME mac address of your server, either with the same IP number or a different IP number. At that point, your going to need to use the filters provided in good switches so that the switches will only allow the MAC addresses of your servers to come in to the physical port that is plugged into those servers. (or the physical port that is plugged into the uplink port) What you merely do is go around to ALL of the machines on the network that need to get to the proxy/web/mailservers and put in static ARP entries for the MAC addresses of the legitimate servers. Then when your little friends try their trick, nobody is going to notice it, except of course for the machine that they make their modification to. This sounds like more trouble than it's worth, but maybe there's a way I can distribute the settings somehow at logon. If the logon server is being interfered with by the kiddies, then nobody can logon and get the settings. And, until you get the decent switches online, as soon as the kiddies realize you are on to them, they are going to start coming all over themselves with excitement to play the Let's see if I'm smarter than the admin game. It's like the original Star Wars movie. They had to break the tractor beam at it's source, not at the central computer where someone could just lock it back on. You can maybe distribute the initial batch file with the static arp in it one time - that of course will let the kiddies know that something's up. They won't give you a second chance so you better have a whole collection of arp entries in that batch file. Eventually your going to be forced into getting more intelligent switches. What your going to have to do is put 1 of them at each uplink point - such as at the
Re: Single Board Computers for FreeBSD
Am Montag, 27. September 2004 13:42 schrieb Omer Faruk Sen: Hi, I need some suggestions (and maybe URL if you send) for Single Board Computers that runs FreeBSD without any problem. I am sure there are lots of people here that use FreeBSD on a SBC for different purposes. Can you point me where to start for Single Board Computers.(To learn conceptual terms that I have to be carefull on) I want to know what should I be carefull on if I want to use Single Board Computers as the FreeBSD will run on it. REGARDS PS: I have heard about Soekris. But I want to know about other producers. Soekris was my first advise, alternatively there is nexcom, I have been very satisfied in the past with (but they have lots of new products I don't know). http://www.nexcom.com/0330/NexWeb/WebEN/WebGrp.aspx?GrpIDX=5227 They also sell their boards alone, without the chassis and power supply. If you can cope with a highly contrained (no USB, no IDE connector, no PCI-Slot, only one serial port) SBC have a look at http://www.pcengines.ch/wrap.htm These are the absolutely cheapest boards I know but compared to the soekris 4801 like mentioned very contraind regarding extension. Then there is http://www.routerboard.com/, also GEODE based and very promising but I have absolutely no experience nor any report from others about their products. Best regards, -Harry --- Omer Faruk Sen http://www.EnderUNIX.ORG Software Development Team @ Turkey http://www.Faruk.NET For Public key: http://www.enderunix.org/ofsen/ofsen.asc First Turkish FreeBSD book is out! Go check it. Duydunuz mu! Turkiye'nin ilk FreeBSD kitabi cikti. http://www.acikkod.com/freebsd.php ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] pgpaNI72i3ur2.pgp Description: PGP signature
Re: IP address conflicts
In the immortal words of Ted Mittelstaedt [EMAIL PROTECTED]... And, let me guess, most switches purchased at different times, different models, different number of ports, etc. Very much so. And all of them on a single network, not broken up into small subnets - that is the first mistake. Again, this is a legacy network that I am trying (within budgetary constraints) to make it a little more functional. Probably many of the predicessors didn't understand you can use cheap servers as routers. I'm about the 4th or 5th successor to this network. At least I've managed to get rid of the last of the 10 base 2 stuff. What a nightmare. You said it. Well, as these things go when you do finally catch one it's going to be the slowest and stupidest one of the lot. When he gets expelled the rest of them are going to call an all-out war and get a lot more sophisticated a lot faster. That's what I'm afraid of. It's not the number of switches that matter it's the number of active ports. 50 what, 8 port switches? or 24 port switches? Approximately 30 24 port switches, and a mix 'n' match of 8 - 48 port units. Being a legacy network, it's not what you would call standardised. Of course, there are some other ways of handling this too. Oppps, looks like another switch died, we are just having a rash of these failures lately! Must be bad power. And amazing - it's the switch that the head of the Engineering department and his staff are using! Guess they will just have to go without since we don't have the money for new switches It's amazing how money will appear out of thin air if certain oxen get gored. I'm tempted to try it. However, the bureaucracy in this place is incredible. They would rather cannibalise a smaller part of the network than just buy a new router/switch/whatever. If you do go this route then screw the desktop switches, get yourself some decent slotted hubs. You want a much higher port density than the crummy 24 in a typical rack mounted switch. Besides that, the switch vendor is gonna want to use your school as an example of how to do things right. Remember, if your going to go begging then you need to beg for the best stuff they have. Anything in particular that you would recommend? You need to replace every single switch. When one of these bozos assumes a server IP number, he's going to most likely use a different MAC address. You need to be able to query the mac table in the switch to see what port that address is coming in from. There are some parts of the network that are completely under my control (staff areas and such) so I could probably get away without changing those ones for the time being and get the managed switches for the areas that it's more likely to come from. Later on, when you have expelled a few of them, they are going to cop wise and start using the SAME mac address of your server, either with the same IP number or a different IP number. At that point, your going to need to use the filters provided in good switches so that the switches will only allow the MAC addresses of your servers to come in to the physical port that is plugged into those servers. (or the physical port that is plugged into the uplink port) Looks like I'm going to be caught between a rock and a hard place for a while til I can swing the budget in my favour. Maybe I can blame someone else for it and get some cash shuffled back to IT where it belongs If the logon server is being interfered with by the kiddies, then nobody can logon and get the settings. Good point. And, until you get the decent switches online, as soon as the kiddies realize you are on to them, they are going to start coming all over themselves with excitement to play the Let's see if I'm smarter than the admin game. I'll just have to be smarter than them, or faster. That's why I'm asking for help here. At least I'm finally moving away from the NT servers that were here, and replacing them with FreeBSD. Only 2 more to go and I'm MS Free, at least as far as the servers are concerned, which should make my job a bit easier. It's like the original Star Wars movie. They had to break the tractor beam at it's source, not at the central computer where someone could just lock it back on. Very good point. You can maybe distribute the initial batch file with the static arp in it one time - that of course will let the kiddies know that something's up. They won't give you a second chance so you better have a whole collection of arp entries in that batch file. True, however it's only 1% or less of the kids I have to watch out for, the rest haven't got enough clue to be a real problem. Eventually your going to be forced into getting more intelligent switches. What your going to have to do is put 1 of them at each uplink point - such as at the entry point of each building, if that is how your laid out - and then put MAC filters into them. None of this
Re: Single Board Computers for FreeBSD
On Mon, Sep 27, 2004 at 02:42:37PM +0300, Omer Faruk Sen wrote: Hi, I need some suggestions (and maybe URL if you send) for Single Board Computers that runs FreeBSD without any problem. I am sure there are lots of people here that use FreeBSD on a SBC for different purposes. Can you point me where to start for Single Board Computers.(To learn conceptual terms that I have to be carefull on) I want to know what should I be carefull on if I want to use Single Board Computers as the FreeBSD will run on it. I run FreeBSD on http://www.compulab.co.il/586core.htm. The Compulab support people are responsive. -- John Birrell ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IP address conflicts
On 28/09/2004, at 1:25 PM, Ted Mittelstaedt wrote: or use a tool like arpwatch that is specifically designed to let you know when MAC/IP relationships change on your network. You don't even need to do that - any router on the network is going to log the MAC address because they will see the arp change, as will the other servers. yeah, of course they'll see the change. but what will they do about it? update their internal ARP table and that's about it, unless they're smart enough (and correctly configured) to do more. arpwatch is simple to install and will notify you straight away when things happen that might need your attention. you log the MAC addresses of all the fixed workstations in the school, then when one of them starts doing the wrong thing you know *exactly* where to go to nab the culprit. How, exactly? Do you think that he has a list of all MAC addresses on the network and who is using them? the educational institutions I've worked in tend to be pretty anal about having a database of what computers they own and where they're located - something to do with stopping people from walking off with their assets. if your vendor is good they'll provide the machine MAC address along with the serial number and amount of installed RAM. if not then there's some walking to do. spend half a day and document the fixed machines on the network. Getting the MAC address is not the problem. Finding it on what is essentially a completely flat network is. You need managed switches for this so you can see what port the offending MAC address is on. now you're assuming that there's documentation as to what ports come out at what wall points, and that there's not still a lab full of dead-ass old machines sitting on 10Base2. If it's not one of the fixed workstations then you've got a bit more work to find the kiddie, but it's nothing insurmountable. Unless of course the kiddies are using made up MAC addresses like BADBEEF, DEADBEEF, CO1DCOED, and such. I'm assuming here, having worked in uni computer labs and seen this sort of crud being done, that what's happening is someone is changing the network settings on a PC... I don't recall seeing a text field next to the enter your IP address box that says enter your MAC address... ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Dell Remote Access Card 5.2.1
Heya Folks; I have multiple machines with Dell Remote Access Card's in them running FreeBSD 5.2.1-RELEASE-p#. I cannot for the life of me, find a way to get the keyboard to work once the machine has booted into FreeBSD. I know on 4.9-X you can set a kernel option that forces the machine to think it has a ps/2 keyboard plugged in. Although, that same option in 5.2.1 (it looks like) is for auto probing for a keyboard on the ps2 port... Any ideas how to get this to work? I would love to get it working. dmesg show's at-keyboard controller, but no atkb device directly. Any help at all, please let me know! If you need more specific details, like DRAC model# or anything, just ask. -Jason L. Schwab [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: booting beta3 on A7N8X
On Monday 13 September 2004 05:54 pm, Joshua Tinnin [EMAIL PROTECTED] wrote: On Monday 13 September 2004 07:09 am, John DeStefano [EMAIL PROTECTED] wrote: You might also try disabling ACPI; I have the same board and this worked for me. Of course, getting the other onboard stuff to work properly has been a whole different challenge ~John Speaking of which, do you know which specific sound driver should be enabled in the kernel? I have: device sound device snd_sbc Which doesn't work. However, in 5.2.1 this worked (which is no longer applicable in 5.3): device pcm I know this board uses MCP-T, but am not sure what it needs as far as driver support. I finally got it to work with the snd_ich driver, which is loaded at boot with: snd_ich_load=YES in /boot/loader.conf, and: device sound in the kernel. Just in case anyone else is trying to get sound to work with the same board ... currently using 5.3beta6. Here it is in dmesg: # dmesg | grep pcm pcm0: Nvidia nForce2 port 0xd000-0xd07f,0xe400-0xe4ff mem 0xed08-0xed080fff irq 5 at device 6.0 on pci0 pcm0: [GIANT-LOCKED] pcm0: Avance Logic ALC650 AC97 Codec - jt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
