Fwd: Unknown IP address shows FreeBSD server MAC in arp cache
Well I managed to find the answer!! Scanning through /etc/defaults/rc.conf I noticed this: dhclient_program="/sbin/dhclient" # Path to dhcp client program. dhclient_flags="" # Extra flags to pass to dhcp client. Then I went back to check my DHCP server's log files and indeed a DHCP request came through from the server even though the IP's are all statically configured on it. Now all I have to do is tell the system not to use the "dhclient" program and then all will be sorted :-) Few. Regards, Kaya Original Message Subject:Unknown IP address shows FreeBSD server MAC in arp cache Date: Thu, 25 Apr 2013 02:52:21 +0100 From: Kaya Saman To: freebsd-questions@freebsd.org Hi, I'm experiencing a weird problem and I have no idea where to begin with this one! Basically what's happening is that I did a host scan from my NetBSD box running Cacti in order to 'Auto Discover' machines on my network; a php script on the Cacti server added an IP address xxx.xxx.1.52. Seeing this as odd since I haven't configured any machine with this IP as it's in the DHCP range on my network and there aren't any machines running on DHCP on the particular VLAN either as everything is statically configured; I proceeded to check the arp cache of my NetBSD box which pointed to the MAC address of my FreeBSD server? Having a look round my network and servers each ping attempt to xxx.xxx.1.52 gives me a response and in the arp cache of each machine/device shows the FreeBSD server. Long ago I may have had this machine on xxx.xxx.1.52 but I can't recall and all settings in /etc/rc.conf for interfaces and Jails are fine and consistent with my Network Spec. My network has also had a massive overhaul since then as I've changed switches and router in the meantime too I have thought about arp poisoning but then again no other machine is connected to my network that I don't know about and since it's a home network there's really only me connected to it. Also I'm running OpenBSD as a firewall/router gateway which I've also checked thoroughly including Packet Filter and haven't found any issues. I also thought about RARP and bootparamd since I'm running a bunch of Sun SPARC systems in which I NetBooted but nothing on that front either showed any result. I additionally have checked the /etc/hosts files of all my systems and even my local DNS db files but nothing shows xxx.xxx.1.52 at all. The BSD version that I'm running on my FreeBSD server is 8.2 x64. Would anyone be able to help me out with this one? Basically why is a rogue or unknown IP address pointing to my FreeBSD box's NIC? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Unknown IP address shows FreeBSD server MAC in arp cache
Hi, I'm experiencing a weird problem and I have no idea where to begin with this one! Basically what's happening is that I did a host scan from my NetBSD box running Cacti in order to 'Auto Discover' machines on my network; a php script on the Cacti server added an IP address xxx.xxx.1.52. Seeing this as odd since I haven't configured any machine with this IP as it's in the DHCP range on my network and there aren't any machines running on DHCP on the particular VLAN either as everything is statically configured; I proceeded to check the arp cache of my NetBSD box which pointed to the MAC address of my FreeBSD server? Having a look round my network and servers each ping attempt to xxx.xxx.1.52 gives me a response and in the arp cache of each machine/device shows the FreeBSD server. Long ago I may have had this machine on xxx.xxx.1.52 but I can't recall and all settings in /etc/rc.conf for interfaces and Jails are fine and consistent with my Network Spec. My network has also had a massive overhaul since then as I've changed switches and router in the meantime too I have thought about arp poisoning but then again no other machine is connected to my network that I don't know about and since it's a home network there's really only me connected to it. Also I'm running OpenBSD as a firewall/router gateway which I've also checked thoroughly including Packet Filter and haven't found any issues. I also thought about RARP and bootparamd since I'm running a bunch of Sun SPARC systems in which I NetBooted but nothing on that front either showed any result. I additionally have checked the /etc/hosts files of all my systems and even my local DNS db files but nothing shows xxx.xxx.1.52 at all. The BSD version that I'm running on my FreeBSD server is 8.2 x64. Would anyone be able to help me out with this one? Basically why is a rogue or unknown IP address pointing to my FreeBSD box's NIC? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: FreeBSD in finance sector
On 09/07/2012 07:17 PM, Polytropon wrote: On Fri, 07 Sep 2012 18:55:49 +0100, Kaya Saman wrote: Hi, Does anyone know of any financial firms or banks that run FreeBSD? I have been instructed to research this for the firm I work at as I am trying to get the senior management to switch over from Linux as our current network is in shambles. There is a good chance that networking equipment they use (e. g. firewalls, routers, gateways, encryption appliances) run FreeBSD internally, or a system derived from it and turned into closed source (which the BSD license explicitely allows). Probably you won't have a chance to verify this. For running actual services (not sure _what_ you are running), FreeBSD might be as good as Linux, maybe even better. It can also serve as storage solution or networking subsystem for various kinds of "client OSes". Probably banks won't tell you what they run. Some run IBM mainframe systems (which you can "recognize" when looking at screens you're not supposed to look at). Any information more precise than just my assumptions can only be provided by insiders or service contractors who know the actual infrastructures. Banks and financial firms tend to _not_ publish what they run. Thanks for the response! I agree and understand this, hence I am not allowed to give away details of where I work etc but I can state that we are using an aging Linux (CentOS) based architecture for our systems and as the new boy in town have made a big campaign to run a mixture of FreeBSD and Sun SPARC systems as AIX seems to be a big pain in the assets to admin. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
FreeBSD in finance sector
Hi, Does anyone know of any financial firms or banks that run FreeBSD? I have been instructed to research this for the firm I work at as I am trying to get the senior management to switch over from Linux as our current network is in shambles. Thanks for any responses. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On 07/12/2012 09:46 PM, Matthew Seaman wrote: On 12/07/2012 21:26, Kaya Saman wrote: My issues start coming into play when building the actual port itself. Ie. fetching the distfile, as you suggested above. As soon as I start running portmaster -a or a 'make install clean' on certain ports, the progress just bombs out totally. It would be really cool if I could find a way to centrally manage all of this. So perhaps in conjunction with CVSup. Something like a Linux repo server if you will - though I mention the term very loosely. Have you played with pkgng at all? It's a bit new to use in production just yet, although reports from testers have been pretty positive so far, and it's perfectly fine for evaluation purposes. It will solve your main problem of not being allowed FTP traffic, as you can select a package repository accessible through HTTP -- like the main test repository http://pkgbeta.freebsd.org/freebsd-9-amd64/latest See http://wiki.freebsd.org/pkgng Cheers, Matthew Thanks Matthew I will give this a go, although currently I have 2x FreeBSD machines in 'almost' full production as testing will cease quite shortly. It might actually be quite useful in conjunction with Puppet and Cobbler (not sure if is for FreeBSD too). Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On 07/12/2012 08:13 PM, kpn...@pobox.com wrote: On Thu, Jul 12, 2012 at 06:44:56PM +0100, Kaya Saman wrote: I do infact work for this company and additionally I am one of the administrators of the company. The information comes straight down from the IT director who will **not** change his mind on this as I have asked several times in the past. Basically without getting too distracted and off-topic: I open the ports on the firewall - tomorrow I am not employed anymore So called "active" ftp requires having the server open a connection back to the client. This will be blocked by a firewall unless the firewall has special support for it. I can see having a firewall not allow those connections into your network. With "passive" ftp with or without a proxy all connections are opened from your end. No opening up of the firewall is required. Plus, if you don't touch your filewall then attempted use of active ftp will just result in a hung network connection. I believe active ftp was the default and perhaps only option for a number of years. Does your IT director understand the active/passive distinction? If not then perhaps you could explain it in a way that acknowledges that his concerns have some merit but those concerns are not relevant to passive ftp. Yes, this is very easy for me to suggest since I don't know any of the relevant people and my paycheck is not on the line. And my suggestion may be worth what you paid for it. ;) Hi, of course everything is known but still it is preferred to keep a total lock-down on outbound ports. We handle a lot of highly sensitive information and that's the need for the severe lock-down. Even the web-proxy is restricted to the sites accessible meaning that we need to request access if we need to go somewhere not governed by that proxy. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On 07/12/2012 07:54 PM, Peter Vereshagin wrote: Hello. Why don't you use a portsnap? it's over http... 2012/07/12 19:01:15 +0100 Kaya Saman => To Peter Vereshagin : KS> I will check it out however and see if that method is best, however KS> CVSup would be the best way for us and I'm already looking at this: KS> KS> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html 1. cvsup is not about comparison to ftp. cvsup is a way to obtain fresh port for the program distribution, ie set of patches, list of package's files, sample configuration files for the particular program(s) those are not the part of the base system but supplied with taking the OS specs in mind. ftp is a way to obtain a distfile, ie what the 3rd party software developer use to distribute. For FreeBSD ports cvsup and ftp are not competent in the daiy use as they have different purposes. Some 3rd party software is released and published authoritatively on ftp only. And that is the only problem possible for you on ftp usage by freebsd ports. But I believe there is only a few of them you need if any at all. I guess you may want to download the initial ports tree tarball, the ports.tgz, via the ftp. But it's certainly a) available over there via the http and b) is outdated and is needed to be updated via the portsnap and/or cvsup. 2. Use csup from the base system, don't use cvsup from ports if you use its protocol. And, portsnap seems to be even more recommended since some days. KS> which should be enough to get a demo up and running. A Demo? Am I invited for the show? ;-) -- Peter Vereshagin (http://vereshagin.org) pgp: A0E26627 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Hi Peter, portsnap works fine :-) My issues start coming into play when building the actual port itself. Ie. fetching the distfile, as you suggested above. As soon as I start running portmaster -a or a 'make install clean' on certain ports, the progress just bombs out totally. It would be really cool if I could find a way to centrally manage all of this. So perhaps in conjunction with CVSup. Something like a Linux repo server if you will - though I mention the term very loosely. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On Thu, Jul 12, 2012 at 6:41 PM, Peter Vereshagin wrote: > Hello. > > 2012/07/12 13:19:56 -0400 Lowell Gilbert > => To Kaya Saman : > LG> URLs as well as FTP. For ones that aren't, (and assuming the rather > LG> silly security policies won't allow for an external web-based FTP proxy) > LG> you may need to bring them in by offline media. > > I believe there should be the way of using the passive ftp (and any other > protocol) via the HTTP CONNECT method to the ftp (or any other port needed for > other protocol/app) port and then handling the both control and data > connections through the consequent copmmands and data exhange. > > As far as I remember this can be done at least via the http://delegate.org > software, certainly available in the ports collection. > > Kaya, if your http proxy handles HTTP CONNECT to the port 21/ftp this can be > the workaround for you about the freebsd ports requiring ftp download ability. > > Most surprise for me is why no one is interested about what kind of a danger > the ftp protocol can ever be? i. e. skype is much more vicious in comparison > to > ftp and s much harder to be restricted by a packet filter if even possoible. > > -- > Peter Vereshagin (http://vereshagin.org) pgp: A0E26627 > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks Peter for the advise. Our system is totally locked down with hardly any ports open on our NAT, only the necessary ones. I'm not sure if the Proxy would support the HTTP CONNECT as it's an appliance which my superior has control over. I will check it out however and see if that method is best, however CVSup would be the best way for us and I'm already looking at this: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html which should be enough to get a demo up and running. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On Thu, Jul 12, 2012 at 6:41 PM, Wojciech Puchar wrote: >> I am trying to introduce FreeBSD into my office and it's been looked >> at with quite a bit of enthusiasm however, what makes it look bad is >> our companies 'security' policy to block FTP. > > > do you work FOR that company. Ask administrator to unblock if for you as you > need it for work. > > Do you do your private things at worktime? Then stop it. I do infact work for this company and additionally I am one of the administrators of the company. The information comes straight down from the IT director who will **not** change his mind on this as I have asked several times in the past. Basically without getting too distracted and off-topic: I open the ports on the firewall - tomorrow I am not employed anymore ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On Thu, Jul 12, 2012 at 6:15 PM, Devin Teske wrote: > > On Jul 12, 2012, at 9:42 AM, Kaya Saman wrote: > >> On Thu, Jul 12, 2012 at 5:33 PM, Devin Teske >> wrote: >>> >>> On Jul 12, 2012, at 9:23 AM, Kaya Saman wrote: >>> >>>> Hi, >>>> >>>> I am trying to introduce FreeBSD into my office and it's been looked >>>> at with quite a bit of enthusiasm however, what makes it look bad is >>>> our companies 'security' policy to block FTP. >>>> >>>> At present they are running a whole bunch of CentOS based boxes and >>>> VM's which of course can be run through port 80 when using YUM. >>>> >>>> >>>> How does one get round this issue as my superiors are telling me that >>>> opening up FTP is a security risk and therefor don't want to proceed? >>>> >>>> >>>> I would like to use ports specifically and not the pkg_add tool to get >>>> software. >>>> >>>> >>>> Can anyone sugget anything? >>>> >>> >>> env ftp_proxy=host:port >>> >>> where is your normal command, such as "fetch". >>> >>> For a full list of environment variables you can use,… >>> >>> $ ldd -f '%p\n' `which fetch` | xargs grep -alr ftp_proxy | xargs strings >>> -n 7 | grep _proxy >>> fetch_no_proxy_match >>> fetch_default_proxy_port >>> http_proxy >>> ftp_proxy >>> no_proxy >>> >>> -- >>> Devin >>> >>> _ >>> The information contained in this message is proprietary and/or >>> confidential. If you are not the intended recipient, please: (i) delete the >>> message and all copies; (ii) do not disclose, distribute or use the message >>> in any manner; and (iii) notify the sender immediately. In addition, please >>> be aware that any message addressed to our domain is subject to archiving >>> and review by persons other than the intended recipient. Thank you. >> >> Thanks Devin for this however, >> >> setenv ftp_proxy ftp://: indicates that FTP is being proxied out. >> >> We simply have it banned on a Juniper firewall. So http is being >> proxied by a web appliance but that's it... nothing else. >> >> > > Yep. It's up to your proxy server whether it's going to handle FTP or only > HTTP (and/or HTTPS). > > I use squid a lot and it handles FTP great. > -- > Devin > > _ > The information contained in this message is proprietary and/or confidential. > If you are not the intended recipient, please: (i) delete the message and all > copies; (ii) do not disclose, distribute or use the message in any manner; > and (iii) notify the sender immediately. In addition, please be aware that > any message addressed to our domain is subject to archiving and review by > persons other than the intended recipient. Thank you. We have an 'appliance' based proxy and as company policy FTP should be restricted, ie. not active on this as it's a security risk. Thats my major issue. I will try the suggested method of: MASTER_SORT_REGEX = ^http for the time being to see if that helps before setting up our own repository. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On Thu, Jul 12, 2012 at 5:47 PM, Mark Felder wrote: > On Thu, 12 Jul 2012 11:23:29 -0500, Kaya Saman wrote: > >> >> I would like to use ports specifically and not the pkg_add tool to get >> software. > > > Getting the ports tree with csup/cvsup wouldn't use ftp. You could run your > own local mirror (net/cvsup-mirror) as well. > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Yeah, this is a good idea I was actually thinking about this. I've never done it so I'd need to google around a bit and do some testing but it is probably what we would want to do! Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is there a way to run FreeBSD ports through port 80?
On Thu, Jul 12, 2012 at 5:33 PM, Devin Teske wrote: > > On Jul 12, 2012, at 9:23 AM, Kaya Saman wrote: > >> Hi, >> >> I am trying to introduce FreeBSD into my office and it's been looked >> at with quite a bit of enthusiasm however, what makes it look bad is >> our companies 'security' policy to block FTP. >> >> At present they are running a whole bunch of CentOS based boxes and >> VM's which of course can be run through port 80 when using YUM. >> >> >> How does one get round this issue as my superiors are telling me that >> opening up FTP is a security risk and therefor don't want to proceed? >> >> >> I would like to use ports specifically and not the pkg_add tool to get >> software. >> >> >> Can anyone sugget anything? >> > > env ftp_proxy=host:port > > where is your normal command, such as "fetch". > > For a full list of environment variables you can use,… > > $ ldd -f '%p\n' `which fetch` | xargs grep -alr ftp_proxy | xargs strings -n > 7 | grep _proxy > fetch_no_proxy_match > fetch_default_proxy_port > http_proxy > ftp_proxy > no_proxy > > -- > Devin > > _ > The information contained in this message is proprietary and/or confidential. > If you are not the intended recipient, please: (i) delete the message and all > copies; (ii) do not disclose, distribute or use the message in any manner; > and (iii) notify the sender immediately. In addition, please be aware that > any message addressed to our domain is subject to archiving and review by > persons other than the intended recipient. Thank you. Thanks Devin for this however, setenv ftp_proxy ftp://: indicates that FTP is being proxied out. We simply have it banned on a Juniper firewall. So http is being proxied by a web appliance but that's it... nothing else. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Is there a way to run FreeBSD ports through port 80?
Hi, I am trying to introduce FreeBSD into my office and it's been looked at with quite a bit of enthusiasm however, what makes it look bad is our companies 'security' policy to block FTP. At present they are running a whole bunch of CentOS based boxes and VM's which of course can be run through port 80 when using YUM. How does one get round this issue as my superiors are telling me that opening up FTP is a security risk and therefor don't want to proceed? I would like to use ports specifically and not the pkg_add tool to get software. Can anyone sugget anything? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: How to mirror the FreeBSD OS on two disks
On Wed, Jul 11, 2012 at 10:18 AM, miles kuo wrote: > Hi all, > > I have two SAS disks for the FreeBSD install. I want to install the freeBSD > on one disk and mirror to another disk. Just like the AIX Mirror. > > Any changes will sync between the two disks. And if one disk crashed or > disconnected, the OS could continue running on another disk. > > Does the FreeBSD support the disk mirror? How to implement it? > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" I am no expert at this however a quick Google search comes up with: http://www.freebsd.org/doc/handbook/geom-mirror.html http://people.freebsd.org/~rse/mirror/ Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Omega Zip Drives on FreeBSD 8.*
On Mon, Jun 25, 2012 at 12:17 PM, Jakub Lach wrote: > In the next episode: > > Modern home video with Betamax and LaserDisc ;) > > -- > View this message in context: > http://freebsd.1045724.n5.nabble.com/Omega-Zip-Drives-on-FreeBSD-8-tp5721532p5721678.html > Sent from the freebsd-questions mailing list archive at Nabble.com. > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" What's wrong with VHS and Cassette Tape? VHS has superior resolution to HD because it's analog!! :-P :-P :-P ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Could someone help me with Dovecot AD integration PAM setup?
Hi,
I'm trying to authenticate Dovecot to Active Directory using the
SAMBA/Winbind method and so far my setup seems that everything is
working apart from the Dovecot authentication which I believe I have
traced to PAM.
I can login using an AD account using:
wbinfo -K
# wbinfo -K
Enter 's password:
plaintext kerberos password authentication for [] succeeded
(requesting cctype: FILE)
This is the current Dovecot config:
# cat dovecot.conf
# v1.1:
#auth_ntlm_use_winbind = yes
# v1.2+:
auth_use_winbind = yes
auth_winbind_helper_path = /usr/local/bin/ntlm_auth
protocols = imap
# It's nice to have separate log files for Dovecot. You could do this
# by changing syslog configuration also, but this is easier.
log_path = /var/log/dovecot.log
info_log_path = /var/log/dovecot-info.log
# Disable SSL for now.
ssl = no
disable_plaintext_auth = no
# We're using Maildir format
#mail_location = maildir:~/Maildir
mail_location = mbox:/mail:INBOX=/mail/%u
# If you're using POP3, you'll need this:
#pop3_uidl_format = %g
# Authentication configuration:
auth_verbose = yes
auth_debug = yes
auth_username_format = %n
auth_mechanisms = plain ntlm login
userdb {
driver = static
args = uid=501 gid=501 home=/mail/%u
driver = static
}
passdb {
driver = pam
}
Here is a "test" login attempt:
# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE AUTH=PLAIN AUTH=NTLM AUTH=LOGIN] Dovecot ready.
a login
a NO [AUTHENTICATIONFAILED] Authentication failed.
b logout
* BYE Logging out
b OK Logout completed.
- of course the proper credentials were put in.
Here is the details of pam.d/imap:
# cat imap
#
# $FreeBSD: src/etc/pam.d/imap,v 1.7.10.1.6.1 2010/12/21 17:09:25 kensmith Exp $
#
# PAM configuration for the "imap" service
#
# auth
authsufficient pam_winbind.so no_warn
try_first_pass debug
#auth sufficient pam_ssh.so no_warn try_first_pass
authrequiredpam_unix.so no_warn try_first_pass
# account
#accountrequiredpam_nologin.so
account requiredpam_unix.so
#accountrequiredpam_winbind.so
I also attempted a change in pam.d/system:
# cat system
#
# $FreeBSD: src/etc/pam.d/system,v 1.1.32.1.6.1 2010/12/21 17:09:25
kensmith Exp $
#
# System-wide defaults
#
# auth
authsufficient pam_opie.so no_warn no_fake_prompts
authrequisite pam_opieaccess.so no_warn allow_local
authsufficient pam_krb5.so no_warn try_first_pass
#auth sufficient pam_ssh.so no_warn try_first_pass
authrequiredpam_unix.so no_warn
try_first_pass nullok
# account
account requiredpam_krb5.so
account requiredpam_login_access.so
account requiredpam_unix.so
# session
#sessionoptionalpam_ssh.so
session requiredpam_lastlog.so no_fail
# password
passwordsufficient pam_krb5.so no_warn try_first_pass
passwordrequiredpam_unix.so no_warn try_first_pass
Which don't let me login to the Dovecot service :-(
The dovecot.log file shows this:
Jun 20 11:30:40 master: Warning: Killed with signal 15 (by pid=4149
uid=0 code=kill)
Jun 20 11:30:48 auth: Fatal: No passdbs specified in configuration
file. LOGIN mechanism needs one
Jun 20 11:30:48 master: Error: service(auth): command startup failed,
throttling for 2 secs
Jun 20 11:30:59 master: Warning: Killed with signal 15 (by pid=4182
uid=0 code=kill)
Jun 20 11:31:13 auth: Fatal: No passdbs specified in configuration
file. LOGIN mechanism needs one
Jun 20 11:31:13 master: Error: service(auth): command startup failed,
throttling for 2 secs
Jun 20 11:32:38 master: Warning: Killed with signal 15 (by pid=4245
uid=0 code=kill)
Jun 20 11:32:58 imap-login: Warning: Auth connection closed with 1
pending requests (max 0 secs, pid=4265, EOF)
Jun 20 11:32:58 auth: Fatal: master: service(auth): child 4266 killed
with signal 11 (core not dumped - set service auth {
drop_priv_before_exec=yes })
Jun 20 11:46:21 master: Warning: Killed with signal 15 (by pid=4318
uid=0 code=kill)
Jun 20 11:46:42 auth-worker(4340): Error: pam(,127.0.0.1):
pam_authenticate() failed: authentication error (/etc/pam.d/dovecot
missing?)
Jun 20 11:46:55 auth: Error: Got NTLMSSP neg_flags=0xa2088207
Jun 20 11:46:55 auth: Error: Got user=[] domain=[]
workstation=[WKS-42] len1=24 len2=270
Jun 20 11:46:55 auth: Error: Login for user []\[]@[WKS-42]
failed due to [Reading winbind reply failed!]
Jun 20 11:49:47 master: Warning: Killed with signal 15 (by pid=4400
uid=0 code=kill)
Jun 20 11:49:53 auth: Fatal: passdb imap: Missing host parameter
Jun 20 11:49:53 master: Error: service(auth): command startup failed,
t
Re: Is ZFS production ready?
[...] My one note to the above would be to advise against using it for swap - unless you have enough RAM to make sure you never swap. It doesn't do well in that role, in my experience. (Though that was under a slightly earlier version.) I remember on SXCE running on my test Sun E420r server that ZFS (can't remember if this was in the spec file or not??) would use **any** usable or unpartitioned file system as swap. I maybe totally off-base with this as I was too knew to investigate the issue and was still learning Solaris at the time but all of a sudden a remote mounted external drive would start getting zapped by I/O usage. Of course it couldn't be any user as the only user for those machines was me and I wasn't doing anything on either system. That was quite a weird thing, but happened many years ago so my memory is quite hazy on the specifics of the issue too I do recall running top to see swap usage at a few tens of gigs which was quite funny, of course unmounting the drive dropped the swap back to whatever got allocated by SXCE default. Daniel T. Staal Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Is ZFS production ready?
Hi, I think it is stable enough on FreeBSD. Someone actually posted quite a similar thread not a while ago.. Here'e a quick summary: For my various OpenSource projects, I have deployed a 36TB file system which is fine and stable running 24/7. Additionally at home I use 4TB (2x 2TB) + 8TB (2x 4TB) on a machine with 4GB RAM this has been up for 3 years with minimum reboot! - this system gets pretty hammered as lot's of front ends for my OpenSource stuff run off there plus I transfer large amounts of data 10's of GB's often between systems. For web stuff I get round 20,000-30,000 hits from various places on that particular box and it handles perfectly unlike my crappy Cisco 857 router - will redeploy a uni-socket server running OpenBSD for this one. Good luck! Regards, Kaya On Thu, Jun 21, 2012 at 8:33 AM, Hooman Fazaeli wrote: > Dear community > > In the past, I built a 8TB ZFS log server on freebsd 7.4. > However, the system experienced instablility after long up times. > My main motive to use ZFS was UFS inability to support large > file systems. > > Now, I want to the same thing on 8.3 and wanted to know > your opinion on ZFS stability. Is there any success story using > ZFS in 24x7, large volume, heavy duty servers? Is there any > other option other than ZFS to build larger than 2TB file systems? > > > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/05/2012 01:09 AM, Polytropon wrote: On Tue, 05 Jun 2012 01:03:59 +0100, Kaya Saman wrote: I had a small issue at the bootloader> prompt, my USB keyboard didn't work as in it seems the kernel modules weren't loaded in order for the keys to function. Not sure how to get round that one :-) Check the BIOS settings: Sometimes you can enable "USB keyboard legacy" so it will also work at the "lower levels" of interactivity. Did that! Enabled USB legacy support - didn't work. At the time was Google'ing the issue too however nobody really had an answer all that was suggested was the load the keyboard modules, but how can one do that with access to system. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/05/2012 12:50 AM, Zane C. B-H. wrote: On Mon, 04 Jun 2012 12:20:13 +0100 Kaya Saman wrote: On 06/04/2012 04:42 AM, Zane C. B-H. wrote: On Mon, 04 Jun 2012 02:06:57 +0100 Kaya Saman wrote: I've just tried this and lost my whole system. My boot disk is not labeled to work with ahci as it just has standard formatting on there. Need to remove the ahci_load="YES" from /boot/loader.conf file now. Ack, my apologies. Forgot about that. Yeah, you will need to do it from the loader prompt if you want to test it. Unless you are booting off of gmirror or have /etc/fstab configured with something else that will automatically be found, you will have a problem. But from the loader prompt it should be... load /boot/kernel/ahci.kp show rootdev If rootdev shows any thing other than shows boot device as ad, rewrite it as ada, using the set command. See loader(8). This will get it to boot, although it will error and drop to single user mode as /etc/fstab contains the old stuff. Just manually mount everything and continue. At this point it should be up and running and able to test it out. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks for the information! I had a small issue at the bootloader> prompt, my USB keyboard didn't work as in it seems the kernel modules weren't loaded in order for the keys to function. Not sure how to get round that one :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/04/2012 06:26 PM, Wojciech Puchar wrote: I just "offlined" the system and took a look at the BIOS. The hard disk controller was set to "ATA NATIVE", I attempted changing to AHCI and the system failed to boot thereafter. do you have ahci and ada drivers compiled in? Booting into my rescue CD of FreeSBIE, with AHCI enabled only showed "ad4" (the troubled disk) to be registering. showing up some, but not all disks after rebooting is quite common to the problem i described. POWERING OFF (by disconnecting electricity, not by power button), waiting a minute, and powering on "fixes" the problem for some time. Thanks Wojciech for the responses! It could be the motherboard; it's an Intel Core2Quad machine! I am looking at alternatives like Portwell: http://www.portwell.nl/products/WADE-8011.html http://www.portwell.nl/products/WADE-8012.html which are Xeon and i7 based system boards respectively and also industrial meaning that they are better designed then consumer desktop style boards. It will be interesting to test once my new rackmount chassis comes along with a 400Watt PSU where the system will then go and see what happens from there.. This system has been up for 3+ years before running 3x disks; one SSD and 2x 2TB drives in a ZFS pool. I only have 4GB RAM in here which may be an issue since I am also using round 5x Jails and 2x Apache Tomcat and 2x Postgresql databases inside to host separate instances of Xwiki - yep Java eats RAM for breakfast, lunch, and dinner :-) - will soon be migrating this stuff off the box but not for now as need some ca$h first ;-) Will wait for my new chassis then see what happens! Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/04/2012 08:34 AM, Gary Aitken wrote: On 06/03/12 20:59, Kaya Saman wrote: this is a very strange issue but I guess will either be related to 2 things, PSU not being powerful enough or disk controller simply being crap. Here's what's going on. I have a little Chenbro 4 disk mini-ITX NAS server with 2x 2TB disks and 2x4TB disks as storage - all spread out over 2 ZFS storage pools. Additionally I am running the root file system on a 40GB SSD. [...] ___ One thing I can think of is to disconnect the questionable disk from the RAID controller card and connect it directly to the motherboard. Then you'd know whether the fault is with the hard drive or the RAID controller. PSU = power supply unit? 180 watts seems very little, I didn't know any modern system could run on so little. I thought the minimum would be around 400 watts, and this would not allow for a powerful gaming graphics card. Maybe you need to replace the power supply with something having more watts, but make sure it will physically fit. Tom Thanks for the response! Here's some more info that I managed to dig up: Jun 4 02:39:19 Zeta-Ray root: ZFS: vdev I/O failure, zpool=ZFS_POOL_2 path=/dev/ad4 offset=270336 size=8192 error=6 Jun 4 02:39:19 Zeta-Ray kernel: ata2: port is not ready (timeout 15000ms) tfd = 00ff Jun 4 02:39:19 Zeta-Ray kernel: ata2: hardware reset timeout Jun 4 02:39:19 Zeta-Ray kernel: unknown: TIMEOUT - WRITE_DMA48 retrying (1 retry left) LBA=269091394 Yeah, 180 Watts is what comes with the chassis as it's an external power supply. Additionally the system is a Mini-ITX so that would account for less power usage however, in this case I think it might be the PSU that's simply not providing enough power. I will definitely try sticking the "downed" disk into the motherboard controller directly as that will tell me if the disk is the issue or not. If the problem is actually insufficient power, this won't tell you a thing. You'll have to isolate the power supply as not being a problem before anything else will be relevant. If you swap the two new disks, and the one now on the card fails, it's probably not a disk problem. But you still can't tell if its the card or insufficient power. If you can sideline the two original disks and run, it's probably power. But I'd guess you're oversubscribed in that department. It should be relatively easy to estimate as mfg specs for cpu + mobo + disks is readily available. Gary More digging yields this: zpool iostat -v -- - - - - - - ZFS_POOL_2 527G 6.74T 0 0 3.18K 1.39K ad4431G 3.20T 0 0 1.55K678 ad14 95.6G 3.53T 0 0 1.63K740 -- - - - - - - There is not much bandwidth being used. the disk is fine! The bandwidth gets a little more and the disk starts timing out: -- - - - - - - ZFS_POOL_2 527G 6.74T 0 0 19.0K 12.8K ad4431G 3.20T 0 0 17.3K 5.97K ad14 95.6G 3.53T 0 0 1.72K 6.81K -- - - - - - - I'm pretty sure it's the Strartech.com controller in the system!! Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/04/2012 08:34 AM, Gary Aitken wrote: On 06/03/12 20:59, Kaya Saman wrote: this is a very strange issue but I guess will either be related to 2 things, PSU not being powerful enough or disk controller simply being crap. Here's what's going on. I have a little Chenbro 4 disk mini-ITX NAS server with 2x 2TB disks and 2x4TB disks as storage - all spread out over 2 ZFS storage pools. Additionally I am running the root file system on a 40GB SSD. [...] ___ One thing I can think of is to disconnect the questionable disk from the RAID controller card and connect it directly to the motherboard. Then you'd know whether the fault is with the hard drive or the RAID controller. PSU = power supply unit? 180 watts seems very little, I didn't know any modern system could run on so little. I thought the minimum would be around 400 watts, and this would not allow for a powerful gaming graphics card. Maybe you need to replace the power supply with something having more watts, but make sure it will physically fit. Tom Thanks for the response! Here's some more info that I managed to dig up: Jun 4 02:39:19 Zeta-Ray root: ZFS: vdev I/O failure, zpool=ZFS_POOL_2 path=/dev/ad4 offset=270336 size=8192 error=6 Jun 4 02:39:19 Zeta-Ray kernel: ata2: port is not ready (timeout 15000ms) tfd = 00ff Jun 4 02:39:19 Zeta-Ray kernel: ata2: hardware reset timeout Jun 4 02:39:19 Zeta-Ray kernel: unknown: TIMEOUT - WRITE_DMA48 retrying (1 retry left) LBA=269091394 Yeah, 180 Watts is what comes with the chassis as it's an external power supply. Additionally the system is a Mini-ITX so that would account for less power usage however, in this case I think it might be the PSU that's simply not providing enough power. I will definitely try sticking the "downed" disk into the motherboard controller directly as that will tell me if the disk is the issue or not. If the problem is actually insufficient power, this won't tell you a thing. You'll have to isolate the power supply as not being a problem before anything else will be relevant. If you swap the two new disks, and the one now on the card fails, it's probably not a disk problem. But you still can't tell if its the card or insufficient power. If you can sideline the two original disks and run, it's probably power. But I'd guess you're oversubscribed in that department. It should be relatively easy to estimate as mfg specs for cpu + mobo + disks is readily available. Gary Yeah, this is really odd! I just "offlined" the system and took a look at the BIOS. The hard disk controller was set to "ATA NATIVE", I attempted changing to AHCI and the system failed to boot thereafter. Booting into my rescue CD of FreeSBIE, with AHCI enabled only showed "ad4" (the troubled disk) to be registering. Switching the setting back I managed to see all disk including ad4 from SBIE. I fixed the /boot/loader.conf file by commenting out "ahci_load="YES"" and vuala done! The system booted and the ZPOOL jumped back into life: # zpool status pool: ZFS_POOL_1 state: ONLINE scrub: none requested config: NAMESTATE READ WRITE CKSUM ZFS_POOL_1 ONLINE 0 0 0 ad13 ONLINE 0 0 0 ad15 ONLINE 0 0 0 errors: No known data errors pool: ZFS_POOL_2 state: ONLINE scrub: scrub stopped after 307445734561825857h27m with 0 errors on Mon Jun 4 16:24:10 2012 config: NAMESTATE READ WRITE CKSUM ZFS_POOL_2 ONLINE 0 0 0 ad14 ONLINE 0 0 0 ad4 ONLINE 0 0 0 errors: No known data errors Here's the weird part now; I had to stop the SCRUB as the READ_DMA retrying errors came up again?? I have just swapped disks infact and ad4 seems to be playing up again :-( ad4 of course being assigned any disk that's on the controller. I am not sure of what to make of this? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
On 06/04/2012 04:42 AM, Zane C. B-H. wrote: On Mon, 04 Jun 2012 02:06:57 +0100 Kaya Saman wrote: Hi, this is a very strange issue but I guess will either be related to 2 things, PSU not being powerful enough or disk controller simply being crap. Here's what's going on. I have a little Chenbro 4 disk mini-ITX NAS server with 2x 2TB disks and 2x4TB disks as storage - all spread out over 2 ZFS storage pools. Additionally I am running the root file system on a 40GB SSD. The strange thing with this is that I recently installed the 4TB disks and they're brand new. One disk connected to the system board works fine and shows up as online and on one of the channels using atacontrol list. The other disk is connected to a Startech.com Jmicron based 2x SATA RAID controller card. The disk connected to the controller card is having issues. At first the drive wouldn't be seen by the system then after a while all of a sudden it was there. No reboots, no io scans nothing it just appeared. After blasting it with IO for a few days the disk has now vanished again. I had this error in dmesg for a while: ad4: TIMEOUT - READ_DMA retrying (1 retry left) LBA=113337535 I have tried to use pciconf -lbvv to show the connected interfaces and the JMICRON comes up fine: atapci0@pci0:2:0:0:class=0x010400 card=0x2366197b chip=0x2366197b rev=0x02 hdr=0x00 vendor = 'JMicron Technology Corp.' device = 'JMicron JMB366 AHCI/IDE Controller (JMB36X)' class = mass storage subclass = RAID bar [10] = type I/O Port, range 32, base 0xd040, size 8, enabled bar [14] = type I/O Port, range 32, base 0xd030, size 4, enabled bar [18] = type I/O Port, range 32, base 0xd020, size 8, enabled bar [1c] = type I/O Port, range 32, base 0xd010, size 4, enabled bar [20] = type I/O Port, range 32, base 0xd000, size 16, enabled bar [24] = type Memory, range 32, base 0xd051, size 8192, enabled So why isn't the disk? I reckon as stated at the beginning that either the 180Watt PSU inside the system isn't enough or the controller is just really poor?? Could anyone suggest anything to look into, I'm sure I've covered all the bases but just incase there is something else I can do with this one?? Greetings, It looks like you are using the default ATA drive with that. I would suggest trying the AHCI driver and see if that works better. kldload ahci ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" I've just tried this and lost my whole system. My boot disk is not labeled to work with ahci as it just has standard formatting on there. Need to remove the ahci_load="YES" from /boot/loader.conf file now. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange case of vanishing disk
this is a very strange issue but I guess will either be related to 2 things, PSU not being powerful enough or disk controller simply being crap. Here's what's going on. I have a little Chenbro 4 disk mini-ITX NAS server with 2x 2TB disks and 2x4TB disks as storage - all spread out over 2 ZFS storage pools. Additionally I am running the root file system on a 40GB SSD. [...] ___ One thing I can think of is to disconnect the questionable disk from the RAID controller card and connect it directly to the motherboard. Then you'd know whether the fault is with the hard drive or the RAID controller. PSU = power supply unit? 180 watts seems very little, I didn't know any modern system could run on so little. I thought the minimum would be around 400 watts, and this would not allow for a powerful gaming graphics card. Maybe you need to replace the power supply with something having more watts, but make sure it will physically fit. Tom Thanks for the response! Here's some more info that I managed to dig up: Jun 4 02:39:19 Zeta-Ray root: ZFS: vdev I/O failure, zpool=ZFS_POOL_2 path=/dev/ad4 offset=270336 size=8192 error=6 Jun 4 02:39:19 Zeta-Ray kernel: ata2: port is not ready (timeout 15000ms) tfd = 00ff Jun 4 02:39:19 Zeta-Ray kernel: ata2: hardware reset timeout Jun 4 02:39:19 Zeta-Ray kernel: unknown: TIMEOUT - WRITE_DMA48 retrying (1 retry left) LBA=269091394 Yeah, 180 Watts is what comes with the chassis as it's an external power supply. Additionally the system is a Mini-ITX so that would account for less power usage however, in this case I think it might be the PSU that's simply not providing enough power. I will definitely try sticking the "downed" disk into the motherboard controller directly as that will tell me if the disk is the issue or not. I'm also thinking to eliminate the issue of using external controller to just get a new system board that 6x SATA connectors on it instead of 4 as per my board. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Strange case of vanishing disk
Hi, this is a very strange issue but I guess will either be related to 2 things, PSU not being powerful enough or disk controller simply being crap. Here's what's going on. I have a little Chenbro 4 disk mini-ITX NAS server with 2x 2TB disks and 2x4TB disks as storage - all spread out over 2 ZFS storage pools. Additionally I am running the root file system on a 40GB SSD. The strange thing with this is that I recently installed the 4TB disks and they're brand new. One disk connected to the system board works fine and shows up as online and on one of the channels using atacontrol list. The other disk is connected to a Startech.com Jmicron based 2x SATA RAID controller card. The disk connected to the controller card is having issues. At first the drive wouldn't be seen by the system then after a while all of a sudden it was there. No reboots, no io scans nothing it just appeared. After blasting it with IO for a few days the disk has now vanished again. I had this error in dmesg for a while: ad4: TIMEOUT - READ_DMA retrying (1 retry left) LBA=113337535 I have tried to use pciconf -lbvv to show the connected interfaces and the JMICRON comes up fine: atapci0@pci0:2:0:0:class=0x010400 card=0x2366197b chip=0x2366197b rev=0x02 hdr=0x00 vendor = 'JMicron Technology Corp.' device = 'JMicron JMB366 AHCI/IDE Controller (JMB36X)' class = mass storage subclass = RAID bar [10] = type I/O Port, range 32, base 0xd040, size 8, enabled bar [14] = type I/O Port, range 32, base 0xd030, size 4, enabled bar [18] = type I/O Port, range 32, base 0xd020, size 8, enabled bar [1c] = type I/O Port, range 32, base 0xd010, size 4, enabled bar [20] = type I/O Port, range 32, base 0xd000, size 16, enabled bar [24] = type Memory, range 32, base 0xd051, size 8192, enabled So why isn't the disk? I reckon as stated at the beginning that either the 180Watt PSU inside the system isn't enough or the controller is just really poor?? Could anyone suggest anything to look into, I'm sure I've covered all the bases but just incase there is something else I can do with this one?? Thanks. Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Anyone using freebsd ZFS for large storage servers?
> >> Additionally ZFS works directly at the block level of the HD meaning >> that it is slightly different to the 'normal' file systems in storing >> information and is also "self healing".. > > > doesn't other filesystem work on block level too? if no - then at what > level? > > It was my impression that ZFS doesn't actually format the disk as stores data as raw information on the hard disk directly rather then using an actual "file system" structure as such. That's what I was trying to get at by that statement. This is really what made ZFS standout over other types of file systems. In doing that according to everything I have read, it actually means faster I/O and ease of portability incase the disks need to be removed from their current location and added elsewhere but not loosing information. Unlike clunky hardware RAID systems ZFS adds much more versitility too which of course being at this depth of knowledge you are aware of and may even have a means to compare, however I personally prefer it over RAID as RAID is rubbish dealing with it everyday I am fed up of creating non-dynamic arrays. I cannot compre directly to the more advanced UFS2 techniques but my money would be with ZFS over RAID and LVM any day and don't even give me M$ systems they would be out the window before being booted for the first time.. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Anyone using freebsd ZFS for large storage servers?
> > and definitely do not use it if you will not have regular backups of all > data, as in case of failures (yes they do happen) you will just have no > chance to repair it. > > There is NO fsck_zfs! And ZFS is promoted as it "doesn't need" it. > > Assuming that filesystem doesn't need offline filesystem check utility > because it "never crash" is funny. > zfs scrub...??? Additionally ZFS works directly at the block level of the HD meaning that it is slightly different to the 'normal' file systems in storing information and is also "self healing".. Though I'm sure that you knew all this and have found otherwise. I mean I haven't found any problem with it even after power failures and such and my machine has been up for nearly 3 years. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Anyone using freebsd ZFS for large storage servers?
On Thu, May 31, 2012 at 6:28 PM, Damien Fleuriot wrote: > As a side note and in case you were considering, I strongly advise against > Linux + fuse ZFS. > Yes I agree; as far as I understand ZFS in Linux is still in testing and in any case not part of the Linux kernel which means dramatic performance degredation, like trying to use Firewire (IEEE1394) on any thing other then a Mac, Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Anyone using freebsd ZFS for large storage servers?
On Thu, May 31, 2012 at 5:05 PM, Oscar Hodgson wrote: > That helps. Thank you. > > This is an academic departmental instructional / research environment. > We had a great relationship with Sun, they provided great > opportunities to put Solaris in front of students. Oracle, not so > much, and the Oracle single-tier support model simply isn't affordable > for this "business" (there's no ROI at the departmental level ). > Solaris is not a viable option. We found Oracle to be the cheapest out of all the solutions we looked at: Netapp, MSI, et el. > > FreeBSD looks like the next best available option at the moment, > particularly considering the use of the storage heads as compute > machines. OpenIndiana shows promise. Nexenta has a great product, > but the user community expects more flexibility in software options. FreeBSD is better then Linux in my opinion though lacking some software and multimedia functionality that Linux has and not for the Desktop as it's not as "bleeding edge" as say Fedora 16, however, if FreeBSD offered Gnome3 and supported my wireless NIC I'd be all over it like a "bad rash" :-) > > Is there anything like a list of "supported" (known good) SAS HBA's? LSI HBA's are really good! For my DIY solution at home I used a SuperMicro system board with non-RAID LSI HBA... It is a similar solution that we will use for our test NAS at work though we already have a Dell R700 series server. For this setup however I will need to use an LSI HBA with both internal and external Mini-SAS ports. Instead of Promise we will use NetStor JBOD solutions as they work with 6Gbps drives and overall give better performance. > > Oscar Regards, Kaya > > On Thu, May 31, 2012 at 11:38 AM, Kaya Saman wrote: >> If this is any consellation I run a 36TB cluster using a self built >> server with a Promise DAS (VessJBOD 1840) using ZFS at home! to >> support my OpenSource projects and personal files. >> >> As for OS take your pick: NexentaStor, FreeBSD, Solaris 11 >> >> >> All capable, of course Solaris has latest version of ZFS but still. >> >> >> At work we're looking into getting a StorEdge appliance wich will >> handle up to 140+ TB. >> >> >> I am also in charge of redesigning one of our virtual SAN's to a >> FreeBSD ZFS storage system which will run well how many JBOD's can >> you fit on the system?? Probably round ~100TB or so. >> >> >> Regards, >> >> >> Kaya >> >> >> On Thu, May 31, 2012 at 4:32 PM, Oscar Hodgson >> wrote: >>> The subject is pretty much the question. Perhaps there's a better >>> place to be asking this question ... >>> >>> We have (very briefly) discussed the possibility of using FreeBSD >>> pizza boxes as a storage heads direct attached to external JBOD arrays >>> with ZFS. In perusing the list, I haven't stumbled across indications >>> of people actually doing this. External JBODs would be running 24 to >>> 48TB each, roughly. There would be a couple of units. The pizza >>> boxes would be used for computational tasks, and nominally would have >>> 8 cores and 96G+ RAM. >>> >>> Obvious questions are hardware compatibility and stability. I've set >>> up small FreeBSD 9 machines with ZFS roots and simple mirrors for >>> other tasks here, and those have been successful so far. >>> >>> Observations would be appreciated. >>> >>> Oscar. >>> ___ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Anyone using freebsd ZFS for large storage servers?
If this is any consellation I run a 36TB cluster using a self built server with a Promise DAS (VessJBOD 1840) using ZFS at home! to support my OpenSource projects and personal files. As for OS take your pick: NexentaStor, FreeBSD, Solaris 11 All capable, of course Solaris has latest version of ZFS but still. At work we're looking into getting a StorEdge appliance wich will handle up to 140+ TB. I am also in charge of redesigning one of our virtual SAN's to a FreeBSD ZFS storage system which will run well how many JBOD's can you fit on the system?? Probably round ~100TB or so. Regards, Kaya On Thu, May 31, 2012 at 4:32 PM, Oscar Hodgson wrote: > The subject is pretty much the question. Perhaps there's a better > place to be asking this question ... > > We have (very briefly) discussed the possibility of using FreeBSD > pizza boxes as a storage heads direct attached to external JBOD arrays > with ZFS. In perusing the list, I haven't stumbled across indications > of people actually doing this. External JBODs would be running 24 to > 48TB each, roughly. There would be a couple of units. The pizza > boxes would be used for computational tasks, and nominally would have > 8 cores and 96G+ RAM. > > Obvious questions are hardware compatibility and stability. I've set > up small FreeBSD 9 machines with ZFS roots and simple mirrors for > other tasks here, and those have been successful so far. > > Observations would be appreciated. > > Oscar. > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Hardware compatability question
Hi, it's not really about the machines but more the hardware. FreeBSD is quite diverse in what it can run on so best bet check the HCL's off the www.freebsd.org website as that would give you the best idea! Otherwise just install and see what works and doesn't. FreeBSD is pretty comprehensive of H/W support. I would say if you were moving away from MS, FreeBSD is a great choice and probably the best out there providing you don't need something specific - you will need to get used to the CLI environment but once that's worked out it's a sinch. I am now introducing *BSD to my company too and trying to move them away from Linux which has it's own caveats. Good luck with the move, I'd love to give you a full-blown sales pitch but unfortunatley don't have time right now. - though it would be kinda useless as FreeBSD really sells itself if you know what it can do for you! Regards, Kaya On Thu, May 31, 2012 at 3:23 PM, wrote: > > Hello, > I am moving away from MS products due to security and stability > concerns. Below are the machines I use and would like to know which > version of FreeBSD will work best with each. The compu ters are used > at home and away, for e-mail, preparing documents, databases , and > spredsheets, as well as, web browsing and some begining programing > (Perl, C, HTML, and Assembely I think). > Here are the notes on my machines: > HP Compaq CQ5300Y > MOBO M2N68-LA (Narra5) > AMD Sempron LE-1300 2.30GHz > Vidio Card NVIDIA GeForce 6150SE nForce 430 > RAM: PC2-6400 MB/sec 2 Gigs RAM > HD: WDC WD32 00AAJS-65M0A SCSI 320 Gig HD > Toshiba Satel lite A205-S5880 > Intel Pentium Dual CPU T2390 @ 1.86 GH > Vidio Card: Mobile Intel 965 Express Chipset > RAM: 3 Gigs > HD: Toshiba MK2046GSX ATA > Both where bought new and are stock off the shelf models. > Thank you for your fine efforts and your time in this, > Phnxcs_rep > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Integrating FreeBSD with MS Active Directory in order to be able to Authenticate Dovecot IMAP server
Hi,
I'm attempting to authenticate Dovecot to Active Directory, however,
I'm failing quite badly.
So far I have gone through the FreeBSD handbook on Kerberos authentication:
http://www.freebsd.org/doc/handbook/kerberos5.html
Additionally I have been through the Dovecot config:
http://wiki2.dovecot.org/Authentication/Mechanisms/Winbind
http://wiki2.dovecot.org/HowTo/ActiveDirectoryNtlm
I am running FreeBSD 8.2 x64 RELEASE edition with the Dovecot2 port
installed, SAMBA 3.6, and the Heimdal version of Kerberos.
I pulled the krb5.conf and smb.conf files from one of our production
Linux boxes..
This is my dovecot.conf file:
# v1.1:
#auth_ntlm_use_winbind = yes
# v1.2+:
auth_use_winbind = yes
auth_winbind_helper_path = /usr/local/bin/ntlm_auth
protocols = imap
# It's nice to have separate log files for Dovecot. You could do this
# by changing syslog configuration also, but this is easier.
log_path = /var/log/dovecot.log
info_log_path = /var/log/dovecot-info.log
# Disable SSL for now.
ssl = no
disable_plaintext_auth = no
# We're using Maildir format
#mail_location = maildir:~/Maildir
mail_location = mbox:/mail:INBOX=/mail/%u
# If you're using POP3, you'll need this:
#pop3_uidl_format = %g
# Authentication configuration:
auth_verbose = yes
auth_username_format = %n
#auth_mechanisms = plain
auth_mechanisms = plain ntlm login
#passdb {
# driver = passwd-file
# args = /usr/local/etc/dovecot/passwd
#}
#userdb {
# driver = static
# args = uid=root gid=root home=/root/
# driver = static
# args = uid=500 gid=500 home=/ZPOOL_1/%u
#}
#userdb static {
# args= uid=501 gid=501 home=/mail/%1Ln/%Ln
# mail=maildir:/mail/%d/%1Ln/%Ln:INBOX=/mail/%d/%1Ln/%Ln
# allow_all_users=yes
#}
passdb {
driver = static
}
userdb {
driver = static
args= uid=501 gid=501 home=/mail/%1Ln/%Ln
}
This is ther krb5.conf file:
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = DOMAIN.COM
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
forwardable = yes
[realms]
DOMAIN.COM = {
kdc = :88
kdc = :88
admin_server = :749
kdc = DC.DOMAIN.COM
}
[domain_realm]
domain.com = DOMAIN.COM
.domain.com = DOMAIN.COM
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
This is the smb.conf file:
[global]
#--authconfig--start-line--
# Generated by authconfig on 2011/04/11 15:41:02
# DO NOT EDIT THIS SECTION (delimited by --start-line--/--end-line--)
# Any modification may be deleted or altered by authconfig in future
workgroup = DOMAIN
password server = DC.DOMAIN.COM
realm = DOMAIN.COM
security = ads
idmap uid = 16777216-33554431
idmap gid = 16777216-33554431
template shell = /bin/bash
winbind use default domain = true
winbind offline logon = false
winbind separator = +
#--authconfig--end-line--
preferred master = no
server string = FreeBSD IMAP Server
encrypt passwords = yes
log level = 3
log file = /var/log/samba/%m
max log size = 50
printcap name = cups
printing = cups
unix extensions = no
winbind enum users = Yes
winbind enum groups = Yes
winbind nested groups = Yes
winbind cache time = 5
Running the command klist does give an output however, I am totally
stuck as to why the Dovecot authentication isn't working
This is the output from the dovecot.log:
May 20 13:16:32 auth: Error: could not obtain winbind domain name!
May 20 13:16:32 auth: Error: could not obtain winbind netbios name!
May 20 13:16:32 auth: Error: could not obtain winbind domain name!
May 20 13:16:42 auth: Fatal: master: service(auth): child 15253 killed
with signal 11 (core not dumped - set service auth {
drop_priv_before_exec=yes })
May 20 13:16:42 imap-login: Warning: Auth connection closed with 1
pending requests (max 8 secs, pid=15254, EOF)
May 20 13:16:51 auth: Error: Ignoring unknown parameter "use kerberos keytab"
May 20 13:16:51 auth: Error: could not obtain winbind domain name!
May 20 13:16:51 auth: Error: could not obtain winbind netbios name!
May 20 13:16:51 auth: Error: could not obtain winbind domain name!
May 20 13:17:08 auth: Fatal: master: service(auth): child 15256 killed
with signal 11 (core not dumped - set service auth {
drop_priv_before_exec=yes })
May 20 13:17:08 imap-login: Warning: Auth connection closed with 1
pending requests (max 15 secs, pid=15257, EOF)
May 23 12:18:31 imap-login: Warning: Auth connection closed with 1
pending requests (max 0 secs, pid=25437, EOF)
May 23 12:18:31 auth: Fatal: master: service(auth): child 25439 killed
with signal 11 (core not dumped - set service auth {
drop_priv_before_exec=yes })
May 23 12:19:00 imap-login: Warning: Auth connection closed with 1
pending requests (max 0 secs, pid=25437, EOF)
May 23 12:19:00 auth: Fatal: master: service(auth): chil
Re: RIP routing protocol implementation is FreeBSD?
I'd try routed_enable = "YES" instead. Regards Éric Masson I have now setup a virtual instance of FreeBSD and another machine running Bind9 on OpenBSD. I can tell that the system is receiving RIP updates as netstat -r shows the routes advertised by my router however, it seems that RIP isn't being advertised by FreeBSD. My /etc/rc.conf file looks as such: router_enable="YES" router_flags="-P ripv2 ripv2_out" From the manual I wasn't quite sure if I needed to put the above 'router_flags' syntax or if: ripv2 ripv2_out should be put in the /etc/gateways file. I tried Google'ing around but found almost no information on how to use the service. However, on bootup the system claims: "switch to trace file ripv2_out". Running: sh ip route in the IOS only shows the C (connected routers) or S* (the gateway of last resort) but no dynamic RIP updates R. Ok got something wrong here??? Can anyone assist. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: RIP routing protocol implementation is FreeBSD?
On 01/30/2012 07:11 PM, Eric Masson wrote: Eric Masson writes: Sorry, Followup to myself. I'd try routed_enable = "YES" instead. router_enable = "YES" as Michael stated in another post. Regards Éric Masson The generic syntax of rc.conf is like so (using mine as example): zfs_enable="YES" nfs_server_flags="-a -t -n 4" nfs_server_enable="YES" rpc_statd_enable="YES" rpc_lockd_enable="YES" rpcbind_enable="YES" mountd_enable="YES" mountd_flags="-r" munin_node_enable="NO" zabbix_server_enable="NO" zabbix_agentd_enable="NO" icecast_enable="NO" darkice_enable="NO" fail2ban_enable="YES" implying: routerd_enable="YES" :-) :-) :-) Best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: RIP routing protocol implementation is FreeBSD?
On 01/30/2012 06:53 PM, Eric Masson wrote: Kaya Saman writes: Hi, does anyone know if there's an implementation of the RIP version 2 routing protocol in FreeBSD??? man 8 routed I did check out the handbook for the enable_routerd="YES" I'd try routed_enable = "YES" instead. Regards Éric Masson Syntax blooper. It's sometimes hard to remember 'EVERYTHING' but once I see the /etc/rc.conf file I will know what is needed and how it's used :-) Thanks for the correction though. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: RIP routing protocol implementation is FreeBSD?
On 01/30/2012 06:47 PM, Michael Sierchio wrote: On Mon, Jan 30, 2012 at 10:33 AM, Kaya Saman wrote: Hi there, does anyone know if there's an implementation of the RIP version 2 routing protocol in FreeBSD??? man routed The routed utility is a daemon invoked at boot time to manage the network routing tables. It uses Routing Information Protocol, RIPv1 (RFC 1058), RIPv2 (RFC 1723), and Internet Router Discovery Protocol (RFC 1256) to maintain the kernel routing table. router_enable="YES" in /etc/rc.conf this has nothing to do with NAT, btw. Thanks for the response. sorry I think I wasn't getting my point through clearly enough. Am Cisco Engineer so know the difference between NAT, PAT, Static routing and dynamic routing ;-) Yep I read about it in the handbook and yes I have used it before but not for dynamic routing. The NAT'ing is what I did previously and was just mentioning what I 'had' used before. which was everything but dynamic routing on FreeBSD 8.0 :-) P.s. sorry if what I'm trying to say isn't getting out clearly enough :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
RIP routing protocol implementation is FreeBSD?
Hi there, does anyone know if there's an implementation of the RIP version 2 routing protocol in FreeBSD??? I would like to use it to exchange routes with my Cisco 857W router as the BSD machine will provide routing for a virtual test network in VBox. I did check out the handbook for the enable_routerd="YES" and have used that before as default gateway of 'last-resort' with NAT but never RIP as don't wana use NAT in this case. OpenBSD definitely has it but since am more familiar with FreeBSD I thought let's try here first :-) Can anyone help me out? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Dual Booting Linux with FreeBSD 9.0 - Grub in MBR
On 01/28/2012 08:54 AM, Bas Smeelen wrote:
On Fri, 27 Jan 2012 21:32:10 +
Kaya Saman wrote:
Hi,
am just wondering if anyone has successfully managed to boot FreeBSD
9.0 and Linux.
I run Fedora 16 x64 with Grub installed in my MBR.
FBSD9 installed as the new disk scheme GPT. I think (I manually
partitioned as my disk is quite crowded).
Anyway I found this:
http://lists.freebsd.org/pipermail/freebsd-questions/2011-October/234858.html
and at the moment I have this in my Grub config:
menuentry 'FreeBSD 9.0' {
set root=(ada0,1,a)
kfreebsd /boot/loader
boot
}
But unfortunately no boot :-(
I have tried using (hd0,0), (hd0,1,a), (hd0,0,a), and (hd0,a) but
unfortunately nothing is working.
The Grub version is 2.
Can anyone help me?
Hi
I have the following partition layout
P1 linux swap
P2 FreeBSD
P3 linux
P4 extended which holds 2 more linux partitions
FreeBSD 9 installed on P2 and the FreeBSD bootloader on P2
In /etc/grub.d/40_custom I have put the following:
menuentry "FreeBSD" {
set root=(hd0,2)
chainloader +1
}
Then run update-grub as root.
The (hd0,2) entry means first harddisk (this laptop only has one) and
the second partition, which holds the FreeBSD bootloader that gets
loaded with the enry chainloader +1.
This works for me. Hope it helps.
I think with the way you have the setup now, a module must be loaded
first in the grub config. Insmod ufs or similair.
Disclaimer: http://www.ose.nl/email
Thanks for the response!!
Actually I got this working but eventually was up for nearly 24 hours
which meant I was too tired to post back here :-)
My Grub is just weird! Which is why I couldn't work things out. For
anyone running Fedora 16 or alike this may help; I have this partition
layout:
1. FreeBSD UFS2
4. Extended Partition
5. Linux / Ext4
2 Linux Swap
3 Linux JFS
Don't ask why 4,5 partitions but Fedora installer took over and left me
with no control otherwise Fedora should have been on 2.
Now the Grub entry is as follows:
menuentry 'FreeBSD 9.0' {
insmod part_msdos
set root='(hd0,msdos1)'
chainloader +1
}
I have no idea why my version of grub is sooo different from everyone
elses as finding many dualboot bsd/linux combos with Grub entries being
more like yours, Bas, this is certainly puzzling.
Anyhow the situation is solved :-)
Regards,
Kaya
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Dual Booting Linux with FreeBSD 9.0 - Grub in MBR
Hi,
am just wondering if anyone has successfully managed to boot FreeBSD 9.0
and Linux.
I run Fedora 16 x64 with Grub installed in my MBR.
FBSD9 installed as the new disk scheme GPT. I think (I manually
partitioned as my disk is quite crowded).
Anyway I found this:
http://lists.freebsd.org/pipermail/freebsd-questions/2011-October/234858.html
and at the moment I have this in my Grub config:
menuentry 'FreeBSD 9.0' {
set root=(ada0,1,a)
kfreebsd /boot/loader
boot
}
But unfortunately no boot :-(
I have tried using (hd0,0), (hd0,1,a), (hd0,0,a), and (hd0,a) but
unfortunately nothing is working.
The Grub version is 2.
Can anyone help me?
Thanks
Kaya
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: FTP server for install link broken?
On 01/27/2012 07:22 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: On 01/27/2012 04:16 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html Oh ok. Anyway as I'm familiar with BSD 8.x I did the install without reading!! My issue was really to find the .img file for USB booting. All done now but can't seem to get Fedora 16's GRUB to boot BSD 9.0 I guess it's time to consult the documentation after all; even though Google'ing provided results that didn't yield answers as the Linux GRUB can't find the partition/slice combo??? The default install of FreeBSD 9 uses GPT, so there are no slices or FreeBSD (bsdlabel) partitions. Instead of ad0s1a, it would just be ada0p2. Don't know what Linux calls these partitions, though. Tried chainloading but that didn't work either probably as no boot-loader got loaded into the PBR by default. If you want multiboot on a GPT drive, grub2 seems to be the solution. (But I haven't tested it Thanks Warren for the assistance! I will create a new Subject for my multiboot issue :-) Am just currently trying to get my 'old' Fedora instance from an old HD up and running by booting off USB drive meaning have to re-build initrd.img with USB modules in it. So updating that in order to get the kernel headers since the old kernel is no longer supported. Best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: FTP server for install link broken?
On 01/27/2012 04:16 PM, Warren Block wrote: On Fri, 27 Jan 2012, Kaya Saman wrote: am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html See the header at the top of that page. There is a new chapter for installing 9.0 and later. The equivalent section is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bsdinstall-pre.html Oh ok. Anyway as I'm familiar with BSD 8.x I did the install without reading!! My issue was really to find the .img file for USB booting. All done now but can't seem to get Fedora 16's GRUB to boot BSD 9.0 I guess it's time to consult the documentation after all; even though Google'ing provided results that didn't yield answers as the Linux GRUB can't find the partition/slice combo??? Tried chainloading but that didn't work either probably as no boot-loader got loaded into the PBR by default. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
FTP server for install link broken?
Hi, am currently trying to install FreeBSD 9 on my Lenovo X220 and noticed that the link on this page in the FreeBSD Handbook is broken: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/install-pre.html with link provided here: ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/ISO-IMAGES/9.0/FreeBSD-9.0-RELEASE-i386-memstick.img Now unless I've missed something I don't see FreeBSD 9.0 here at all: ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/ISO-IMAGES/ Everything upto 8.2 is there but no 9.0 Any news in mean time I found it here: ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/ISO-IMAGES/9.0/ I know am using AMD64 but swap that with i386 and comes down to same result Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: FreeBSD 9 on Lenovo X200 what works?
On 01/26/2012 01:57 AM, Da Rock wrote: Despite having similar hardware, you're only real best bet is to "suck it and see". Try installing and seeing what you can get to work (dmesg, pciconf -lv, usbconfig, kldload modules, questions here, etc). I've had mixed success with laptops (they're just about all I have as a desktop), and about my only problems have been with wifi- though that has mostly disappeared with Adrian's excellent work. I will have a go as Salix (which is on there now isn't cutting it and spent all night trying to get things in order but didn't :( Tested the live FBSD9 disk in the meantime and the wireless gets detected out of the box. As long as I get wifi and HD video and sound coming out of the headphone socket I will be fine I'm running 8.2 on an X200. For the most part everything works. My main complaint is that the sound is very quiet, and I haven't found the setting to fix that. Video and wifi work fine. The kernel sees the camera and the thumb reader but I haven't looked for applications that use them. Ok this sounds promising - for wifi see above! App for camera is Googletalk if supported on Firefox 9, and PAM for the figureprint reader. Just thinkin about WWAN now but there was a post floating around about 3G modems so I might just be in luck not that I've ever used WiMax before. Thanks for the replies guys :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
FreeBSD 9 on Lenovo X200 what works?
Hi, I discovered this thread: http://forums.freebsd.org/showthread.php?t=25539 and am wondering what will and won't work on my Lenovo X220 I'm currently in the process in deciding between FreeBSD 9 and Fedora 15/16. I love FreeBSD on servers but unfortunately I haven't had much luck with it on client side systems. Mainly I want to use the system for running a tier 2 hypervisor - VirtualBox (not OSE version). i also want to be able to use HD graphics capabilities and wireless and the WWAN modem that comes with the system. Currently I have something called Salix on here which is Slackware based but unfortunately the hardware isn't being detected properly and that's my major concern regarding FreeBSD! Can anyone provide me with any success stories or advice in what I will be missing if I whack FreeBSD on here?? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Having problems running shell script from crontab
On 01/07/2012 04:30 PM, Matthew Seaman wrote: On 07/01/2012 13:57, RW wrote: On Sat, 07 Jan 2012 15:37:49 +0200 Kaya Saman wrote: n terms of paths this is what I'm doing: I'm in a FreeBSD jail logged in by - #jexec tcsh which gets me in as root. Crontab is being run as root so paths should be the same no? No -- you can't assume that. The correct thing to do is to set $PATH within your script, then it should stand a much improved chance of running correctly irrespective of how it gets started. Add a line like this near the top of the script: export PATH=/bin:/usr/bin:/sbin:/usr/sbin:/usr/local/bin:/usr/local/sbin That should be good enough for most purposes, but feel free to modify if needed. Another debugging tip: add set -x or set -v -x towards the top of the script and you'll get a trace of what the script does e-mailed to you. (Well, e-mailed to root, but I assume yould've been reading root's mailbox anyhow, or redirected the root e-mails to somewhere more useful.) PATH is set at the top of /etc/crontab Well, yes. However that only helps for the scripts run out of /etc/crontab. If the OP has done the right thing and left /etc/crontab alone, but instead set up a root crontab by running # crontab -u root -e then that wouldn't help at all. Cheers, Matthew Thanks Matthew!!! :-) Exporting the PATH variable was the key, although I did add the debugging tip in for good measure. So luckily all is solved now. Thanks everyone for all the help and advice! Best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Having problems running shell script from crontab
On 01/07/2012 03:57 PM, RW wrote: On Sat, 07 Jan 2012 15:37:49 +0200 Kaya Saman wrote: n terms of paths this is what I'm doing: I'm in a FreeBSD jail logged in by - #jexec tcsh which gets me in as root. Crontab is being run as root so paths should be the same no? PATH is set at the top of /etc/crontab ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Ok, sorry for being slow but I still don't understand how the PATH variable is connected to restarting tomcat? This is the default PATH in /etc/crontab: PATH=/etc:/bin:/sbin:/usr/bin:/usr/sbin but where my script seems to not work well when run is at this point: /usr/local/etc/rc.d/tomcat6 restart Does this mean that putting :/usr/local/etc to the PATH statement will enable crontab to understand the .../etc/rc.d/ script variables? I think where I'm getting confused is that I'm using 'absolute' paths and my knowledge of the PATH is when one wants to run a command specifically from a shell; as in 'top'. so you wouldn't need to run /usr/bin/top. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Having problems running shell script from crontab
On 01/07/2012 03:22 PM, RW wrote: On Sat, 07 Jan 2012 14:21:51 +0200 Kaya Saman wrote: The strange thing is that if I run this script manually /root/java_restart/java_restart.sh it works fine and does what it's supposed to do. The commonest reason for scripts that that work from a terminal failing under cron is that the environment isn't set-up correctly. Usually it's PATH that's missing or incomplete. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Would it be possible to elaborate? I just fixed my script by altering some parts to Yuri's suggestions: #!/usr/local/bin/bash ntstat=`netstat -ap tcp | grep 8180 | sed -n '1p'` port="8180" #echo $ntstat #echo $port if [[ $ntstat =~ $port ]]; then echo "Output of Netstat command $ntstat port number $port" > /root/java_restart/java_restart.log; else sleep 60; /usr/local/etc/rc.d/tomcat6 restart; fi with crontab now looking like so: 0,30 * * * * /usr/local/bin/bash /root/java_restart/java_restart.sh Sleep works fine but tomcat still isn't getting restarted.. In terms of paths this is what I'm doing: I'm in a FreeBSD jail logged in by - #jexec tcsh which gets me in as root. Crontab is being run as root so paths should be the same no? Hmm. am puzzled! Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Having problems running shell script from crontab
On 01/07/2012 03:05 PM, Yuri Pankov wrote: On Sat, Jan 07, 2012 at 02:21:51PM +0200, Kaya Saman wrote: Hi, I wrote a shell script to detect if the port of tomcat was in use or not then restart if the port wasn't online; due to tomcat segfaulting as my system hasn't got enough memory for it. This is the shell script: #!/usr/local/bin/bash ntstat=`netstat -ap tcp | grep 8180 | sed -n '1p'` sockstat would be more useful here. So if I adapted to: ntstat=`sockstat | grep java` port="java" (keeping the same variables in order to limit change - even though minimal) then compared in my IF statement below that would have the same result? I've never used sockstat although just peeked at the manual quickly now: http://www.freebsd.org/cgi/man.cgi?query=sockstat&sektion=1 port="8180" #echo $ntstat #echo $port if [[ $ntstat =~ $port ]]; then echo "Output of Netstat command $ntstat port number $port"> /root/java_restart/java_restart.log; else wait 60; /usr/local/etc/rc.d/tomcat6 restart; Are you sure you want 'wait' here (or should it be 'sleep')? It was sleep that I wanted - thanks! :-) Sorry my shell scripting skills are really iffy at best. fi Here in /var/log/cron - it can be seen that the script has been executed: Jan 7 10:30:00 wiki /usr/sbin/cron[19509]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 11:00:00 wiki /usr/sbin/cron[20418]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 11:30:00 wiki /usr/sbin/cron[21356]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 12:00:00 wiki /usr/sbin/cron[22455]: (root) CMD (/root/java_restart/java_restart.sh) The strange thing is that if I run this script manually /root/java_restart/java_restart.sh it works fine and does what it's supposed to do. Cron however seems to execute the IF statement but not get as far as else??? - it seems as tomcat doesn't restart. Here is my little log file that tells the port is active: -rw-r--r-- 1 root wheel 116 Jan 7 11:30 java_restart.log If I stop tomcat just before the xx:00 or xx:30 time designations tomcat will not be restarted by the script and I don't understand why? This is the crontab: 0,30 * * * * /root/java_restart/java_restart.sh Try changing it to /usr/local/bin/bash /root/java_restart/java_restart.sh. Ok adapted the crontab let's see what happens now. which is being run as root user. Can anyone suggest anything that might be a possible cause for tomcat not getting restarted automatically when the proper conditions are met? Yuri Thanks Yuri :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Having problems running shell script from crontab
Hi, I wrote a shell script to detect if the port of tomcat was in use or not then restart if the port wasn't online; due to tomcat segfaulting as my system hasn't got enough memory for it. This is the shell script: #!/usr/local/bin/bash ntstat=`netstat -ap tcp | grep 8180 | sed -n '1p'` port="8180" #echo $ntstat #echo $port if [[ $ntstat =~ $port ]]; then echo "Output of Netstat command $ntstat port number $port" > /root/java_restart/java_restart.log; else wait 60; /usr/local/etc/rc.d/tomcat6 restart; fi Here in /var/log/cron - it can be seen that the script has been executed: Jan 7 10:30:00 wiki /usr/sbin/cron[19509]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 11:00:00 wiki /usr/sbin/cron[20418]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 11:30:00 wiki /usr/sbin/cron[21356]: (root) CMD (/root/java_restart/java_restart.sh) Jan 7 12:00:00 wiki /usr/sbin/cron[22455]: (root) CMD (/root/java_restart/java_restart.sh) The strange thing is that if I run this script manually /root/java_restart/java_restart.sh it works fine and does what it's supposed to do. Cron however seems to execute the IF statement but not get as far as else??? - it seems as tomcat doesn't restart. Here is my little log file that tells the port is active: -rw-r--r-- 1 root wheel 116 Jan 7 11:30 java_restart.log If I stop tomcat just before the xx:00 or xx:30 time designations tomcat will not be restarted by the script and I don't understand why? This is the crontab: 0,30 * * * * /root/java_restart/java_restart.sh which is being run as root user. Can anyone suggest anything that might be a possible cause for tomcat not getting restarted automatically when the proper conditions are met? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Alternative to syslogd that actually writes external logs to files?
On 11/29/2011 12:29 PM, Matthew Seaman wrote: On 29/11/2011 01:28, Kaya Saman wrote: As you know rsyslog works over udp and telnet is a tcp protocol so I enabled tcp on port 514 within rsyslog and telnet'ed from my router to the syslog server. Use netcat to test UDP connectivity -- it's in the base system as nc(1): % nc -v -u 192.0.2.1 514 Cheers, Matthew I get this result: nc -v -u 192.168.1.120 514 Connection to 192.168.1.120 514 port [udp/syslog] succeeded! I'm not sure though if I should be getting any of the syslog messages that my router is sending to the rsyslog daemon though? I have tried but nothing displays on the server tty. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Alternative to syslogd that actually writes external logs to files?
On 11/29/2011 04:18 AM, Fbsd8 wrote:
Kaya Saman wrote:
[...snip...]
Properly configured, syslogd will log remotely. However something
like sysutils/rsyslog may fit your requirements better.
--
Adam Vande More
Thanks for that. I have tested rsyslog which is backwards compatible
with syslog but again something failed with that in order to write to
the created logfile???
Here is my config just incase something hinky can be seen; although
have already posted it (with minimal responses) in a heading: Syslog
server not logging remote machines to file? {basically please don't
lynch me for double posting!!}
/etc/rc.conf
syslogd_enable="YES"
syslog_flags=""
syslogd_flags="-b 192.168.1.120 -a 192.168.1.1/24:* -C"
#syslogd_flags="-d -b 192.168.1.120 -a 192.168.1.1/24:* -vv -C"
#syslogd_flags="-c"
#rsyslogd_enable="YES"
#rsyslogd_pidfile="/var/run/syslog.pid"
#rsyslogd_config="/etc/syslog.conf"
#rsyslogd_klog_enable="YES"
#rsyslogd_flags="-d"
The extra addition to /etc/syslog.conf under the ppp statement
!*
+192.168.1.1
*.*/var/log/cisco857w.log
Debug from tcpdump:
# tcpdump -tlnvv -i em0 port 514
tcpdump: listening on em0, link-type EN10MB (Ethernet), capture size
96 bytes
IP (tos 0x0, ttl 255, id 337, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10040: 010027: Nov 19 10:28:04.322: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 338, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10041: 010028: Nov 19 10:28:04.326: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 339, offset 0, flags [none], proto UDP (17),
length 142)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 114
Facility local7 (23), Severity notice (5)
Msg: 10042: 010029: Nov 19 10:28:04.770: %SYS-5-CONFIG[|syslog]
IP (tos 0x0, ttl 255, id 340, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10043: 010030: Nov 19 10:30:30.672: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 341, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10044: 010031: Nov 19 10:30:30.672: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 342, offset 0, flags [none], proto UDP (17),
length 189)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 161
Facility local7 (23), Severity info (6)
Msg: 10045: 010032: Nov 19 10:30:36.455: %DOT11-6-ASSO[|syslog]
IP (tos 0x0, ttl 255, id 343, offset 0, flags [none], proto UDP (17),
length 203)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 175
Facility local7 (23), Severity info (6)
Msg: 10046: 010033: Nov 19 10:30:47.643: %DOT11-6-DISA[|syslog]
Debug from syslogd:
# /etc/rc.d/syslogd restart
syslogd not running? (check /var/run/syslog.pid).
Starting syslogd.
allowaddr: rule 0: numeric, addr = 192.168.1.0, mask = 255.255.255.0;
port = 0
listening on inet and/or inet6 socket
sending on inet and/or inet6 socket
off & running
init
cfline("*.err;kern.warning;auth.notice;mail.crit
/dev/console", f, "*", "+Server.domain")
cfline("*.notice;local7.none;authpriv.none;kern.debug;lpr.info;mail.crit;news.err
/var/log/messages", f, "*", "+Server.domain")
cfline("security.*/var/log/security", f, "*",
"+Server.domain")
cfline("auth.info;authpriv.info/var/log/auth.log", f,
"*", "+Server.domain")
cfline("mail.info/var/log/maillog", f, "*",
"+Server.domain")
cfline("lpr.info/var/log/lpd-errs", f, "*",
"+Server.domain")
cfline("ftp.info/var/log/xferlog", f, "*",
"+Server.domain")
cfline("cron.*/var/log/cron", f, "*",
"+Server.domain")
cfline("*.=debug/var/log/debug.log", f, "*",
"+Server.domain")
cfline("*.emerg*", f, "*", "+Server.domain")
cfline("*.*/var/log/ppp.log", f, "ppp",
"+Server.domain")
cfline("*.*/var/log/cisco857w.log", f, "*",
"+192.168.1.1")
4 3 2 3 5 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X CONSOLE: /dev/console
7 5 2 5 5 5 6 3 5 5 X
Re: Alternative to syslogd that actually writes external logs to files?
On 11/29/2011 03:13 AM, Adam Vande More wrote: On Mon, Nov 28, 2011 at 6:08 PM, Kaya Saman <mailto:kayasa...@gmail.com>> wrote: Yep! I don't actually run any rules on the firewall even though PF is enabled. it's just meant for fail2ban though. However, disabled PF but still not working :-( Can you at least make a connection from the sending to receiving host/port via telnet? -- Adam Vande More As you know rsyslog works over udp and telnet is a tcp protocol so I enabled tcp on port 514 within rsyslog and telnet'ed from my router to the syslog server. No problems!!! It works. Also netstat -anp tcp/udp | grep 514 shows the server listening on the em0 interface with correct IP which isn't a problem additionally. ??? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Alternative to syslogd that actually writes external logs to files?
On 11/29/2011 01:50 AM, Jon Radel wrote: On 11/28/11 6:42 PM, Kaya Saman wrote: However, when using tcpdump it shows that rsyslog is infact receiving information but still unfortunately not logging to file??? # tcpdump -tlnvv -i em0 port 514 tcpdump: listening on em0, link-type EN10MB (Ethernet), capture size 96 bytes IP (tos 0x0, ttl 255, id 1875, offset 0, flags [none], proto UDP (17), length 142) 192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 114 Facility local7 (23), Severity notice (5) Msg: 11578: 011565: Nov 28 23:34:19.475: %SYS-5-CONFIG[|syslog] File permissions are correct as I got rsyslog to create the file from scratch... What am I missing here? Have you tried with all firewalling on the machine turned off? [My apologies if this has been covered earlier in the thread and I missed it.] --Jon Radel j...@radel.com Yep! I don't actually run any rules on the firewall even though PF is enabled. it's just meant for fail2ban though. However, disabled PF but still not working :-( ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Alternative to syslogd that actually writes external logs to files?
On 11/28/2011 08:58 PM, Damien Fleuriot wrote: On 11/28/11 7:09 PM, Kaya Saman wrote: [...snip...] Properly configured, syslogd will log remotely. However something like sysutils/rsyslog may fit your requirements better. -- Adam Vande More Thanks for that. I have tested rsyslog which is backwards compatible with syslog but again something failed with that in order to write to the created logfile??? We have absolutely no problems whatsoever with rsyslogd here. It runs on our FreeBSD firewall boxes and logs both to local files and a remote server running rsyslogd on debian. Additionally and in reply to your need to track what happens on your network, I very highly recommend Observium which we have been running for over 18 months now and which I use on an almost daily basis. http://www.observium.org/wiki/Main_Page The icing on the cake is that you'll be able to export your logs to Observium directly. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks for the vote of confidence! I have set syslogd to run on the loopback and rsyslogd to run on the local IP address. Here is my config file for rsyslog: $ModLoad immark.so # provides --MARK-- message capability $ModLoad imuxsock.so # provides support for local system logging $ModLoad imklog.so # kernel logging $ModLoad imudp $UDPServerAddress 192.168.1.120 $UDPServerRun 514 $RuleSet Cisco857w #:msg, contains, "192.168.1.1"/var/log/cisco857w.log :fromhost-ip, isequal, "192.168.1.1"/var/log/cisco857w.log According to the rule anything coming in from 192.168.1.1 should be logged to /var/log/cisco857.log From rsyslog debug mode I was able to find that the rule was in place and should be performing properly: 0302.998028819:800c041c0: ruleset 0x800c2b0a0: rsyslog ruleset Cisco857w: 0302.998046140:800c041c0: rule 0x800c14d80: rsyslog rule: 0302.998058991:800c041c0: PROPERTY-BASED Filter: 0302.998070165:800c041c0: Property.: 'fromhost-ip' 0302.998080781:800c041c0: Operation: 'isequal' 0302.998099499:800c041c0: Value: '192.168.1.1' 0302.998109835:800c041c0: Action...: Actions: 0302.998127435:800c041c0: builtin-file: /var/log/cisco857w.log 0302.998143918:800c041c0: template='/var/log/cisco857w.log' 0302.998153696:800c041c0: use async writer=0 0302.998165150:800c041c0: flush on TX end=1 0302.998175766:800c041c0: flush interval=1 0302.998186661:800c041c0: file cache size=10 0302.998198115:800c041c0: create directories: yes 0302.998208451:800c041c0: file owner 0, group 0 0302.998218788:800c041c0: force chown() for all files: no 0302.998229683:800c041c0: directory owner 0, group 0 0302.998240020:800c041c0: dir create mode 0700, file create mode 0644 0302.998254267:800c041c0: fail if owner/group can not be set: no However, when using tcpdump it shows that rsyslog is infact receiving information but still unfortunately not logging to file??? # tcpdump -tlnvv -i em0 port 514 tcpdump: listening on em0, link-type EN10MB (Ethernet), capture size 96 bytes IP (tos 0x0, ttl 255, id 1875, offset 0, flags [none], proto UDP (17), length 142) 192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 114 Facility local7 (23), Severity notice (5) Msg: 11578: 011565: Nov 28 23:34:19.475: %SYS-5-CONFIG[|syslog] File permissions are correct as I got rsyslog to create the file from scratch... What am I missing here? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Alternative to syslogd that actually writes external logs to files?
[...snip...]
Properly configured, syslogd will log remotely. However something
like sysutils/rsyslog may fit your requirements better.
--
Adam Vande More
Thanks for that. I have tested rsyslog which is backwards compatible
with syslog but again something failed with that in order to write to
the created logfile???
Here is my config just incase something hinky can be seen; although have
already posted it (with minimal responses) in a heading: Syslog server
not logging remote machines to file? {basically please don't lynch me
for double posting!!}
/etc/rc.conf
syslogd_enable="YES"
syslog_flags=""
syslogd_flags="-b 192.168.1.120 -a 192.168.1.1/24:* -C"
#syslogd_flags="-d -b 192.168.1.120 -a 192.168.1.1/24:* -vv -C"
#syslogd_flags="-c"
#rsyslogd_enable="YES"
#rsyslogd_pidfile="/var/run/syslog.pid"
#rsyslogd_config="/etc/syslog.conf"
#rsyslogd_klog_enable="YES"
#rsyslogd_flags="-d"
The extra addition to /etc/syslog.conf under the ppp statement
!*
+192.168.1.1
*.*/var/log/cisco857w.log
Debug from tcpdump:
# tcpdump -tlnvv -i em0 port 514
tcpdump: listening on em0, link-type EN10MB (Ethernet), capture size 96
bytes
IP (tos 0x0, ttl 255, id 337, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10040: 010027: Nov 19 10:28:04.322: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 338, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10041: 010028: Nov 19 10:28:04.326: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 339, offset 0, flags [none], proto UDP (17),
length 142)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 114
Facility local7 (23), Severity notice (5)
Msg: 10042: 010029: Nov 19 10:28:04.770: %SYS-5-CONFIG[|syslog]
IP (tos 0x0, ttl 255, id 340, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10043: 010030: Nov 19 10:30:30.672: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 341, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10044: 010031: Nov 19 10:30:30.672: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 342, offset 0, flags [none], proto UDP (17),
length 189)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 161
Facility local7 (23), Severity info (6)
Msg: 10045: 010032: Nov 19 10:30:36.455: %DOT11-6-ASSO[|syslog]
IP (tos 0x0, ttl 255, id 343, offset 0, flags [none], proto UDP (17),
length 203)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 175
Facility local7 (23), Severity info (6)
Msg: 10046: 010033: Nov 19 10:30:47.643: %DOT11-6-DISA[|syslog]
Debug from syslogd:
# /etc/rc.d/syslogd restart
syslogd not running? (check /var/run/syslog.pid).
Starting syslogd.
allowaddr: rule 0: numeric, addr = 192.168.1.0, mask = 255.255.255.0;
port = 0
listening on inet and/or inet6 socket
sending on inet and/or inet6 socket
off & running
init
cfline("*.err;kern.warning;auth.notice;mail.crit/dev/console",
f, "*", "+Server.domain")
cfline("*.notice;local7.none;authpriv.none;kern.debug;lpr.info;mail.crit;news.err
/var/log/messages", f, "*", "+Server.domain")
cfline("security.*/var/log/security", f, "*",
"+Server.domain")
cfline("auth.info;authpriv.info/var/log/auth.log", f,
"*", "+Server.domain")
cfline("mail.info/var/log/maillog", f, "*",
"+Server.domain")
cfline("lpr.info/var/log/lpd-errs", f, "*",
"+Server.domain")
cfline("ftp.info/var/log/xferlog", f, "*",
"+Server.domain")
cfline("cron.*/var/log/cron", f, "*",
"+Server.domain")
cfline("*.=debug/var/log/debug.log", f, "*",
"+Server.domain")
cfline("*.emerg*", f, "*", "+Server.domain")
cfline("*.*/var/log/ppp.log", f, "ppp",
"+Server.domain")
cfline("*.*/var/log/cisco857w.log", f, "*",
"+192.168.1.1")
4 3 2 3 5 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 3 X CONSOLE: /dev/console
7 5 2 5 5 5 6 3 5 5 X 5 5 5 5 5 5 5 5 5 5 5 5 X X FILE: /var/log/messages
X X X X X X X X X X X X X 7 X X X X X X X X X X X FILE: /var/log/security
X X X X 6 X X X X X 6 X X X X X X X X X X X X X X FILE: /var/log/auth.log
X X 6 X X X X X X X X X X X X X X X X X X X X X X FILE: /var/log/maillog
X X X X X X 6 X X X X X X X X X X X X X X X X X X FILE: /var/log/lpd-errs
X X X X X X X X X X X 6 X X X X X X X X X X X X X FILE: /var/log/xferlog
X X X X X X X X X 7 X X X X X X X X X X X X X X X FILE: /var/log/cron
7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 X FILE: /var/l
Alternative to syslogd that actually writes external logs to files?
Hi, I would like to know if there's a syslog alternative out there that will actually write my network equipments' logs to files. After having major issues with syslogd and attempting a thorough debug of which I posted to this mailing list and wasn't able to fix even with more experienced peoples help I am now looking for an alternative! My issue with syslogd was the fact that the logging information would be sent to my system and that could evidently be seen, however, the software didn't write to the log file specified for whatever reason :-( During debug I started syslogd using the -d and -vv options, checked the log file in question was created and had correct permission. Everything seemed fine but nothing even tried to write to file. Basically I am looking for just something that will write all my external logs to file and can keep syslogd for the system specific logs as that's no problem. Since at the time I was using FreeBSD 8.0 CURRENT x64, I upgraded to 8.2 on the basis that my system and hence ports collection was out-of-date; but unfortunately the update didn't solve my issues regarding syslog. - which is way odd considering I had FreeBSD 8.1 or 8.2 x86 edition running on an old (now packed-up) PIV which did my logging without any issues. - The current setup is the same except for the fact that am running Jails and am on a 64bit platform. Can anybody suggest anything? Thanks! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Syslog server not logging remote machines to file?
cvthname(192.168.1.1)
validate: dgram from IP 192.168.1.1, port 59189, name router.domain;
accepted in rule 0.
logmsg: pri 275, flags 0, from cisco857w, msg 10048: 010035: Nov 19
10:33:48.037: %SYS-5-CONFIG_I: Configured from console by admin on vty0
(192.168.1.120)
If we take the 'priority' of that message at face value,
it is a facility value of 34
and a logging priority of 3
On the machines I have access to, facility values stop at _24_.
The message may be being discarded because of a 'nonsense' priority.
I changed the 'facility' value within the IOS itself to kernel:
(config)#logging facility kern
- and now the generated message shows this:
accepted in rule 0.
logmsg: pri 15, flags 0, from cisco857w, msg 10146: 010133: Nov 19
23:05:54.538: %SYS-5-CONFIG_I: Configured from console by admin on vty0
(192.168.0.53
still not logging to file though :-( ??
The file is mentioned in syslogd config and seems to be loaded within
the configuration:
{
cfline("*.*/var/log/cisco857w.log", f, "*",
"+192.168.1.1")
7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 X FILE:
/var/log/cisco857w.log
_THAT_ lookks like only _24_ known 'facility' values.
# ls -l /var/log | grep cisco857
-rw--- 1 root wheel 0 Nov 18 16:32 cisco857w.log
And, I presume that when you are invoking syslogd in 'debug' mode, you
are running as superuser.
Yep, that is correct! Am using: su -
So after all this looks {**perfect**} what can this mysterious problem be??
I'm _guessing_ that the apparent 'facility' value of 34 is a good candidate.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Syslog server not logging remote machines to file?
On 11/19/2011 06:52 PM, Robert Bonomi wrote:
From kayasa...@gmail.com Sat Nov 19 09:33:08 2011
Date: Sat, 19 Nov 2011 17:31:50 +0200
From: Kaya Saman
To: Robert Bonomi
CC: freebsd-questions@freebsd.org
Subject: Re: Syslog server not logging remote machines to file?
On 11/19/2011 05:21 PM, Robert Bonomi wrote:
Kaya Saman wrote:
Hi,
I've got a really strange problem which seems to either be a bug with
the syslog server service or perhaps because I'm running jails on my
system.
I can log my router syslog information but somehow the syslog server
doesn't put the information into the designated file; which should be
/var/log/cisco857w.log???
The -usual- 'gotcha' for this situation is that you have to _create_ the
file FIRST, and then tell syslogd to reload it's configuration. (i.e.
'kill -HUP' the PID for syslogd)
That's ok, however due to me running syslogd in debug mode anyway - ctrl
+ c should do that anyway. I performed a: ps aux | grep syslog with
no result other then my 'grepping' displayed.
Meaning that the syslog daemon should have reloaded right? - I mean it's
standard for everything else which works in that way!
Well if ps -aux doesn't show any syslogd entry, then syslogd is -not-
running -- which would explain why it's not logging anything to the file :)
If you're stopping and restarting syslogd, then, yes, that causes it to
re-read the configuration.
This begs the question, however, *DOES* that file exist? syslog does _not_
_create_ a missing logfile, just because it is mentioned in the syslog.conf
file.
g
Robert,
I can assure that syslogd is running, hence the logging posted within my
first email to the list. When run with the -d and -vv flags set in
/etc/rc.conf I need to use ctrl +c to break out of it as it logs
directly to the tty.
Just to go over it again, output from syslogd with -d and -vv flags set
running in debug mode shows:
{
logmsg: pri 56, flags 4, from Server, msg syslogd: restart
syslogd: restarted
logmsg: pri 6, flags 4, from Server, msg syslogd: kernel boot file is
/boot/kernel/kernel
Logging to FILE /var/log/messages
syslogd: kernel boot file is /boot/kernel/kernel
logmsg: pri 166, flags 17, from Server, msg Nov 19 12:33:34
Server syslogd: exiting on signal 2
cvthname(192.168.1.1)
validate: dgram from IP 192.168.1.1, port 59189, name router.domain;
accepted in rule 0.
logmsg: pri 275, flags 0, from cisco857w, msg 10048: 010035: Nov 19
10:33:48.037: %SYS-5-CONFIG_I: Configured from console by admin on vty0
(192.168.1.120)
}
The file is mentioned in syslogd config and seems to be loaded within
the configuration:
{
cfline("*.*/var/log/cisco857w.log", f, "*",
"+192.168.1.1")
7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 7 X FILE:
/var/log/cisco857w.log
}
The file *has* been created also under /var/log/ dir however self
creation is possible using the -C flag within /etc/rc.conf file; and
give 'appropriate' permission 600:
{
# ls -l /var/log | grep cisco857
-rw--- 1 root wheel 0 Nov 18 16:32 cisco857w.log
}
So after all this looks {**perfect**} what can this mysterious problem be??
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Syslog server not logging remote machines to file?
On 11/19/2011 05:21 PM, Robert Bonomi wrote: Kaya Saman wrote: Hi, I've got a really strange problem which seems to either be a bug with the syslog server service or perhaps because I'm running jails on my system. I can log my router syslog information but somehow the syslog server doesn't put the information into the designated file; which should be /var/log/cisco857w.log??? The -usual- 'gotcha' for this situation is that you have to _create_ the file FIRST, and then tell syslogd to reload it's configuration. (i.e. 'kill -HUP' the PID for syslogd) That's ok, however due to me running syslogd in debug mode anyway - ctrl + c should do that anyway. I performed a: ps aux | grep syslog with no result other then my 'grepping' displayed. Meaning that the syslog daemon should have reloaded right? - I mean it's standard for everything else which works in that way! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Syslog server not logging remote machines to file?
Hi,
I've got a really strange problem which seems to either be a bug with
the syslog server service or perhaps because I'm running jails on my
system.
I can log my router syslog information but somehow the syslog server
doesn't put the information into the designated file; which should be
/var/log/cisco857w.log???
This is the syslog definition in my /etc/rc.conf file:
{
syslogd_enable="YES"
#syslog_flags=""
syslogd_flags="-d -b 192.168.1.120 -a 192.168.1.1/24:* -vv -C"
}
Additionally here is my /etc/syslog.conf file:
{
# $FreeBSD: src/etc/syslog.conf,v 1.30.2.1.2.1 2009/10/25 01:10:29
kensmith Exp $
#
#Spaces ARE valid field separators in this file. However,
#other *nix-like systems still insist on using tabs as field
#separators. If you are sharing this file between systems, you
#may want to use only tabs as field separators here.
#Consult the syslog.conf(5) manpage.
#+server.domain
*.err;kern.warning;auth.notice;mail.crit/dev/console
*.notice;local7.none;authpriv.none;kern.debug;lpr.info;mail.crit;news.err
/var/log/messages
security.*/var/log/security
auth.info;authpriv.info/var/log/auth.log
mail.info/var/log/maillog
lpr.info/var/log/lpd-errs
ftp.info/var/log/xferlog
cron.*/var/log/cron
*.=debug/var/log/debug.log
*.emerg*
# uncomment this to log all writes to /dev/console to /var/log/console.log
#console.info/var/log/console.log
# uncomment this to enable logging of all log messages to /var/log/all.log
# touch /var/log/all.log and chmod it to mode 600 before it will work
#*.*/var/log/all.log
# uncomment this to enable logging to a remote loghost named loghost
#*.*@loghost
# uncomment these if you're running inn
# news.crit/var/log/news/news.crit
# news.err/var/log/news/news.err
# news.notice/var/log/news/news.notice
!ppp
*.*/var/log/ppp.log
!*
+192.168.1.1
*.*/var/log/cisco857w.log
#local7.* /var/log/cisco857w.log
#!*
#+172.16.0.1
#*.*
}
uname -a shows this:
{
# uname -a
FreeBSD server.domain 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21
15:02:08 UTC 2009
r...@mason.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64
}
The odd thing about this is that I did the same thing on a non-jailed
32bit machine running FreeBSD 8.x and the system worked fine.
In my research for the problem I have covered this material:
{
http://www.freebsd.org/doc/handbook/network-syslogd.html
http://forums.devshed.com/bsd-help-31/remote-syslog-question-router-to-freebsd-118652.html
http://www.freebsd.org/doc/handbook/network-syslogd.html
http://www.daemonforums.org/showthread.php?t=2968
http://bsd.dischaos.com/2009/02/25/logging-cisco-ios-messages-to-external-freebsd-syslog/
http://unix.derkeiler.com/Mailing-Lists/FreeBSD/questions/2007-02/msg00384.html
http://plone.lucidsolutions.co.nz/networking/cisco/ios/logging-to-a-syslog-or-rsyslog-host-from-cisco-ios
http://lists.nycbug.org/pipermail/talk/2007-April/010091.html
http://www.freebsdonline.com/content/view/527/506/
}
They all seem to say more or less the same thing that either putting the:
{
+192.168.1.1
*.*/var/log/cisco857w.log
or
local7.* /var/log/cisco857w.log
}
statements either at the top of the file or changing the syntax slightly
using a + between machines should do the trick; however, non of the
things I tried have worked from any of the material mentioned above!
Here is my debug information:
{
# tcpdump -tlnvv -i em0 port 514
tcpdump: listening on em0, link-type EN10MB (Ethernet), capture size 96
bytes
IP (tos 0x0, ttl 255, id 337, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10040: 010027: Nov 19 10:28:04.322: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 338, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10041: 010028: Nov 19 10:28:04.326: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 339, offset 0, flags [none], proto UDP (17),
length 142)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 114
Facility local7 (23), Severity notice (5)
Msg: 10042: 010029: Nov 19 10:28:04.770: %SYS-5-CONFIG[|syslog]
IP (tos 0x0, ttl 255, id 340, offset 0, flags [none], proto UDP (17),
length 122)
192.168.1.1.59189 > 192.168.1.120.514: SYSLOG, length: 94
Facility local7 (23), Severity debug (7)
Msg: 10043: 010030: Nov 19 10:30:30.672: ISAKMP:(0): S[|syslog]
IP (tos 0x0, ttl 255, id 341, offset 0, flags [none], proto
Re: Sorry. Numpty alert! FreeBSD Jails... Help?
Hi guys, just as I've been helping out already I did actually have this lot in my Wiki: http://wiki.optiplex-networks.com/xwiki/bin/view/FreeBSD/Installing_FreeBSD [quote] Please take note however that the *Buildworld* environment needs to have *all sources* installed into the system in order to compile and build. This however should really only affect people who wish to use *FreeBSD Jails* as standard non-Jail configured systems will run fine with the default selection above. [/quote Which is exactly the same as Andy has just mentioned below. The rest of the procedure then is pretty trivial I think Dave is getting confused about how to use the sysintall software which I did at first too a few years back when I started with FreeBSD but now that I am used to it, I don't suffer any more. The next release of FreeBSD won't have that any more from what I recall reading and will change to something else? - Correct me if wrong... Regards, --K On 06/08/2011 12:05 AM, a.sm...@ukgrid.net wrote: Hi Dave, I didn't find it total plain sailing myself when I did this for the first time a few months back. Ok, so I think you are sitting in "/usr/src" trying to run the make buildworld right? If you are getting the error you mentioned then I think it means you are missing the Makefile? Ie if you do an ls there is no file called "Makefile". In that case you need to install it, which if via sysinstall you need to go: Configure Distributions src base (this has the Makefile) then select ok, and choose FTP etc etc, If you have the other sources already then you should be good to go, cheers Andy. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange system lockups - kernel saying disk error
[...] PS: I don't suppose anyone knows a real good simple blow by blow total newby dialog, as to how to realiably and correctly create and setup Jails on FreeBSD 8.0? All the man pages I've found so far, are way over my head. Good "Reference" material admittedly, but no good as an instructional if you dont already know "How To"... I don't understand ezjail either... Something to do with the faded grey cell and too many years etc... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" http://wiki.optiplex-networks.com/xwiki/bin/view/FreeBSD/Jails Still a work in progress and running from a VM in a laptop on an ADSL line but it does the job :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: [direct] Re: Strange system lockups - kernel saying disk error
copy. I think I'm indirectly responsible for at least 4 extra sales, not that I get any commission, sadly... Just like the Linux based recovery and self contained AV disks, and also Memtest86, I carry a copy of Spinrite arround with me too. I just wish I could come up with something as successful, and able to continue selling over and over... As for changing mobo caps, it's not dificult, but it sure takes a lot of time and care. Cap's in PSU's too go bad (Usually the Low Voltage ones) again, not dificult to change, but take care. There's often considerable High Voltage stored in some places, that can bite you, and it hurts! Lastly, large slow running fans last the longest, and are nice and quiet too. Just regularly blow the "dust bunnies" out of the systems (two or three time a year?) and keep things like the CPU cooler and PSU clean, and your hardware will work for many years just fine. Oh.. CPU coolers. If your system has the ability to monitor the CPU temperature, get to know how that behaves depending on the software you use. If it starts to slowly rise, but the room temperature is not correspondinlgy warmer, also cleaning the dust from the cooler doenst seem to help. It may need the cooler removing, the old heat transfer compound removing and cleaning, and fresh compound using when you refit the cooler. This issues seems worse with the earlier single core P4's, that had a very small contact area to the cooler. At least Intel chips just slow down as they get hotter (cycle skipping) so as not to burn out. Some AMD's will destroy themselves if the cooler fails!...There is a YouTube video somewhere, showing a PC with an Intel CPU with no cooler getting slower and slower till it almost stops. I hope you get things sorted out, one way or another. Life is so much nicer if you don't have to keep messing with the blessed things! I have a sick Land Rover to fix too. Gearbox rear oil seal, also rear drive shaft UJ's. At least I can use big hammers on that sometimes... (Therapy!) Oh, the grass needs cutting, and I'm now also under instruction to change the bed, when the cat's finished sleeping on it!!! Best Regards. Dave B. On 4 Jun 2011 at 21:35, Kaya Saman wrote: Subject:Re: Strange system lockups - kernel saying disk error [...] Hmmm Hard drives do not like heat! Check the PSU voltages with a meter, for accuracy and ripple. Failing SMPS's can do all sorts of odd things. Capacitor problems. Been there done that. They can be changed for very low cost, other than your time. DaveB You might guess by know, I know far more about hardware than I do about software, but for the latter to run well, the former must be good. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Many thanks Dave for all the suggestions!!! To be honest I think the drives are fine but the system is just s old including the IDE drives. I mean if I get a SATA/IDE USB adapter I should be able to backup the drives to the new DAS system I will have in place shortly since I am much more in favor of running Nexenta Core 3 OS with ZFS spanning the 16x drives meaning a total of 36TB with 2 internal drives used for logging and caching. Then this system will be obsolete. However, I will keep your suggestion of using spinwrite in mind next time I encounter issues! BTW I respect your H/W knowledge that's quite in deep :-) thank you for your insight. Best regards, Kaya __ NOD32 6175 (20110602) Information __ This message was checked by NOD32 antivirus system. http://www.eset.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks Dave for this very graphic and insightful story :-) It was a pleasure to read and a nice display of how experience really does prevail over things!!! I liked the radio chart on the site provided :-) - what exactly is it measuring? Background noise? I think not having a UPS for over a year killed me with the power cutting out almost every weekend for 10 - 20 minutes/night. Now I have UPS, 2x 1500KVA APC systems... nice but need the network and temp monitoring cards. Need plenty of £££ for that! Plus the new server I am intending to build as the DAS box already cost $2000. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange system lockups - kernel saying disk error
On 06/05/2011 03:48 AM, per...@pluto.rain.com wrote: Kaya Saman wrote: Did you apply any updates shortly before it started to fail? No updates! I did however, install unrar through ports. Intuitively, that seems unlikely to have triggered the problem. This doesn't sound like an issue to me either as it wouldn't touch the kernel or any modules. I remember on other boards that went on me in the past with capacitor issues, a bunch of orange stuff starts leaking out of them when they blow up. A leaking capacitor has surely gone bad, but the syndrome I'm thinking of is more subtle. The top of the can, which should be flat, bulges upward a little bit. Whether replacing bad capacitors qualifies as "quick" depends on how comfortable you are using a soldering iron. It does generally require taking the board out of the case, which may or may not be "quick" or "easy" depending on the case design. I have a degree in Electronic Engineering :-) - though no soldering iron :-( Also the chassis doesn't have any cooling fans either since it was bought extremely cheaply by the family member but not sure that's the culprit neither power problems as the system has run in high outside ambient temps in the past with no A/C in the room and also was working fine on the PSU installed with the 4 disks. Fans that were never there can't have suddenly failed :) Odd that isn't it :-P Power supplies do fail occasionally, and not always in obvious ways such as failing to turn on at all. The output voltages may be a little too high or too low, or they may be correct but with excessive ripple or electrical noise; or the supply may be just fine until a disk draws a current spike to move the arm rapidly. This needs either a voltmeter or oscilloscope to check out the voltages, fluctuations, and ripple. None of those at home :-( It might be worth checking the fan mounted on the CPU heatsink if there is one, and the fan in the power supply (which ventilates the case as well as the power supply itself). CPU fan works - at least it spins, fan in PSU not checked as I'd need to open it as it's a PS/2 design if not mistaken! But all these tips would be useful for a system that was given more value then mine. If I had actually paid for the system and it been quite advanced it would definitely be worth taking everything into account. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange system lockups - kernel saying disk error
[...] Hmmm Hard drives do not like heat! Check the PSU voltages with a meter, for accuracy and ripple. Failing SMPS's can do all sorts of odd things. Capacitor problems. Been there done that. They can be changed for very low cost, other than your time. DaveB You might guess by know, I know far more about hardware than I do about software, but for the latter to run well, the former must be good. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Many thanks Dave for all the suggestions!!! To be honest I think the drives are fine but the system is just s old including the IDE drives. I mean if I get a SATA/IDE USB adapter I should be able to backup the drives to the new DAS system I will have in place shortly since I am much more in favor of running Nexenta Core 3 OS with ZFS spanning the 16x drives meaning a total of 36TB with 2 internal drives used for logging and caching. Then this system will be obsolete. However, I will keep your suggestion of using *spinwrite* in mind next time I encounter issues! BTW I respect your H/W knowledge that's quite in deep :-) thank you for your insight. with Pipex which is now bust, then I moved out of the UK and now everything is roasting hot> Best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Strange system lockups - kernel saying disk error
Many thanks for the response! On 06/04/2011 02:00 AM, per...@pluto.rain.com wrote: Kaya Saman wrote: I have an ancient pre-HT PIV machine with<500MB RAM. ... Everything was running fine until round about 2 days ago when the system started locking up on me? ... is there anyway to fix the kernel error quickly? Did you apply any updates shortly before it started to fail? No updates! I did however, install unrar through ports. If not, this is likely to be a hardware problem. I'd suggest checking the power supply and the fans, running memtest86, and taking a close look at the electrolytic filter capacitors on the system board -- the last because it sounds as if this system may be about the right age to have been built with some bad ones. (If any of the capacitors are bulging, either those caps, or the entire board, need to be replaced.) Power and heat problems can cause all sorts of strange symptoms. I guess, I mean I did mention that the system was old and also I've been running in 24/7 online for the past year and half as this box got passed down to me by a family member. It has a Gigabyte system board. Not sure about the capacitors; I'll check. I remember on other boards that went on me in the past with capacitor issues, a bunch of orange stuff starts leaking out of them when they blow up. Also the chassis doesn't have any cooling fans either since it was bought extremely cheaply by the family member but not sure that's the culprit neither power problems as the system has run in high outside ambient temps in the past with no A/C in the room and also was working fine on the PSU installed with the 4 disks. I guess it's hardware related somehow as something's blown up, either the PSU, system board or so.. As I explained in the beginning if there's no clear way to fix the problem easily then I'll wait a bit. - I have a 16 disk Promise DAS on the way and will build a server using a Chenbro industrial rack chassis and Supermicro AMD based 8-12 core system board. These systems will fit better in the 2 racks I have in my living room. This should be a bit more stable and also give me higher capacity too! Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Strange system lockups - kernel saying disk error
Hi, I have an ancient pre-HT PIV machine with <500MB RAM. The system has an extra PCI->SATA card installed so I can make use of modern high capacity drives. Everything was running fine until round about 2 days ago when the system started locking up on me? Current drive configuration for the system is: 40GB IDE drive as root (ad2) - UFS2 500GB IDE drive for storage (ad3) - EXT3 1TB SATA drive for storage (ad4) - UFS2 750GB SATA drive for storage (ad8) - EXT3 I had an issue with the 750GB drive which the file system seemed to have got corrupted so I powered down and backed the information up to a 2TB SATA drive using ddrescue and the Gentoo Linux based System Rescue CD. I put the 2TB drive in place of the 1TB ad4 drive physically. Once backed up I powered down again and re-installed the 1TB SATA drive into ad4 position on system and completely removed the 2TB backup. When booted back into FreeBSD upon boot I received this error: WARNING: Kernel Errors Present ad4: FAILURE - WRITE_DMA48 status=51 error=4 LBA=1 ...: 1 Time(s) g_vfs_done():ad4e[WRITE(offset=97691456, length=16384)]error = 5 ...: 1 Time(s) The current status of the disks seemed to be ok though: 1 Time(s): ad2: 38166MB at ata1-master UDMA33 1 Time(s): ad2: DMA limited to UDMA33, controller found non-ATA66 cable 1 Time(s): ad3: 476940MB at ata1-slave UDMA33 1 Time(s): ad3: DMA limited to UDMA33, controller found non-ATA66 cable 1 Time(s): ad4: 953869MB at ata2-master SATA150 1 Time(s): ad8: 715404MB at ata4-master SATA150 1 Time(s): agp0: on hostb0 1 Time(s): ata0: on atapci0 1 Time(s): ata0: [ITHREAD] 1 Time(s): ata1: on atapci0 1 Time(s): ata1: [ITHREAD] 1 Time(s): ata2: on atapci1 1 Time(s): ata2: [ITHREAD] 1 Time(s): ata3: on atapci1 1 Time(s): ata3: [ITHREAD] 1 Time(s): ata4: on atapci1 1 Time(s): ata4: [ITHREAD] 1 Time(s): ata5: on atapci1 In order to test if the error was due to disk failure I powered down and disconnected the ad4 and ad3 disks and powered back up. The system still seems to be locking on me and I can't understand why? Through Google'ing a discovered a post by Jeremy Chadwick about these kinds of errors: http://wiki.freebsd.org/JeremyChadwick/ATA_issues_and_troubleshooting however since the system board is pre-SATA is doesn't even have S.M.A.R.T. so I'm totally lost on how to fix this. I mean the best remedy would be to get a new computer and migrate the stored information (something like this is on the way) but currently I don't have access to any of the disks at all and to make matters worse no NTP or DNS server as I was running these services on the same machine or TFTP boot server for my IP phones. - I do run multiboot UNIX on my notebook so Bind9 is naturally installed hence me writing this but I only activate in emergencies. I mean one way I thought of for fixing this would be to grab a USB -> ATA/SATA adapter: http://www.startech.com/product/USB2SATAIDE-USB-20-to-IDE-or-SATA-Adapter-Cable and hook the drives up to both Linux and FreeBSD in my notebook and copy the information across to the new system when it arrives in a few months. Aside from that is there anyway to fix the kernel error quickly? Thanks, Kaya 1 Time(s): ata5: [ITHREAD] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Setting up a a route in FreeBSD with NAT issues
Eventually I got this thing to work by adding the following syntax into the config files: /etc/rc.conf: gateway_enable="YES" hostname="ROUTER.test.org <http://ROUTER.test.org>" ifconfig_em0="inet 172.16.7.136 netmask 255.255.240.0" em0_nat="NO" ifconfig_em1="inet 10.100.100.1 netmask 255.255.255.192" em1_nat="YES" inetd_enable="YES" keymap="uk.iso" sshd_enable="YES" defaultrouter="172.16.0.1" ipnat_enable="YES" ipnat_rules="/etc/ipnat.rules" named_enable="YES" #static_routes="em0 em1" #route_em1="-net 10.100.100.0/26 <http://10.100.100.0/26> 172.16.0.0/20 <http://172.16.0.0/20>" #route_em0="-net 172.16.0.0 0.0.0.0/0 <http://0.0.0.0/0>" /etc/ipnat.rules #map em0 0.0.0.0/0 <http://0.0.0.0/0> -> 0/32 proxy port 8080 htto/tcp #map em0 0.0.0.0/0 <http://0.0.0.0/0> -> 0/32 portmap tcp/udp 1:65000 #map em0 0.0.0.0/0 <http://0.0.0.0/0> -> 0/32 #map em0 0.0.0.0/0 <http://0.0.0.0/0> -> 0/32 auto #map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 proxy port 8080 http/tcp #map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 portmap tcp/udp 1:65000 #map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 #map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 auto map em0 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 proxy port 8080 http/tcp map em0 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 portmap tcp/udp 1:65000 map em0 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 map em0 10.100.100.0/26 <http://10.100.100.0/26> -> 0/32 auto The trick was in fact to utilize the external interface within the NAT map file then direct the internal network via the 'gateway of last resort' - default route. The config can be easily adapted and modified from here if anyone is interested in doing something similar or adding extra networks in the middle such as a firewall or proxy Many thanks, Kaya On 03/11/2011 12:34 PM, Kaya Saman wrote: Ok I've managed to make some headway however it still isn't working properly: /etc/ipnat.rules #map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0.0.0.0/32 <http://0.0.0.0/32> portmap tcp/udp 1:65000 map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0.0.0.0/32 <http://0.0.0.0/32> map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0.0.0.0/32 <http://0.0.0.0/32> auto I then added this addition to the end of the /etc/rc.conf file: static_routes="em0 em1" route_em1="-net 10.100.100.0/26 <http://10.100.100.0/26> 172.16.0.0/20 <http://172.16.0.0/20>" route_em0="-net 172.16.0.0 0.0.0.0/0 <http://0.0.0.0/0>" when I run traceroute on my host now I can see it going through the system however I'm still not sure it's being NAT'd or routed?? ROUTER# ipnat -l List of active MAP/Redirect filters: map em1 10.100.100.0/26 <http://10.100.100.0/26> -> 0.0.0.0/32 <http://0.0.0.0/32> List of active sessions: MAP 10.100.100.153 <- -> 10.100.100.153[10.100.100.2 32772] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Setting up a a route in FreeBSD with NAT issues
Ok I've managed to make some headway however it still isn't working properly: /etc/ipnat.rules #map em1 10.100.100.0/26 -> 0.0.0.0/32 portmap tcp/udp 1:65000 map em1 10.100.100.0/26 -> 0.0.0.0/32 map em1 10.100.100.0/26 -> 0.0.0.0/32 auto I then added this addition to the end of the /etc/rc.conf file: static_routes="em0 em1" route_em1="-net 10.100.100.0/26 172.16.0.0/20" route_em0="-net 172.16.0.0 0.0.0.0/0" when I run traceroute on my host now I can see it going through the system however I'm still not sure it's being NAT'd or routed?? ROUTER# ipnat -l List of active MAP/Redirect filters: map em1 10.100.100.0/26 -> 0.0.0.0/32 List of active sessions: MAP 10.100.100.153<- -> 10.100.100.153[10.100.100.2 32772] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Setting up a a route in FreeBSD with NAT issues
Hi all, I'm trying to setup a gateway between an internal network using Vbox test machines of which one is a FreeBSD router/gateway. Being familiar with Cisco I know how easy this is to do but I think that I'm struggling a bit with the syntax. My setup is as so: Damn Small Linux (virtual machine) -> (em1) FreeBSD 8.2 (virtual gateway) (em0) ->internal network 10.100.100.2 10.100.100.1 172.16.7.136 172.16.0.0/20 My current configuration within the FreeBSD router looks like so: /etc/rc.conf: gateway_enable="YES" hostname="ROUTER.test.org" ifconfig_em0="inet 172.16.7.136 netmask 255.255.240.0" #em0_nat="NO" ifconfig_em1="inet 10.100.100.1 netmask 255.255.255.192" #em1_nat="YES" inetd_enable="YES" keymap="uk.iso" sshd_enable="YES" defaultrouter="172.16.0.1" ipnat_enable="YES" ipnat_rules="/etc/ipnat.rules" named_enable="YES" static_routes="net1" route_net1="-net 10.100.100.0/26 0.0.0.0/0" /etc/ipnat.rules: map tun0 10.100.100.0/26 -> 0/0 portmap tcp/udp 1:65000 map tun0 10.100.100.0/26 -> 0/0 The router from DSL is set as 10.100.100.1 and it hits it without any problem... running a traceroute however gives this: ROUTER# ipnat -l List of active MAP/Redirect filters: map tun0 10.100.100.0/26 -> 0.0.0.0/0 portmap tcp/udp 1:65000 map tun0 10.100.100.0/26 -> 0.0.0.0/0 List of active sessions: Something here isn't working and I'm not sure quite what it is :-( Can anyone help??? Thanks Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
syslogd not writing to file?
Hi, I've got a weird problem that might be a bug with the 64bit RELEASE edition of FreeBSD 8.0. The issue is this: I provisioned 2 servers on two separate networks; one a 32bit system and the other a 64bit in order to log information coming from Cisco network equipment. The 32bit build works perfectly using the config below, however the 64bit version won't write the files as needed??? The /etc/syslog.conf file looks as such: # $FreeBSD: src/etc/syslog.conf,v 1.30.2.1.2.1 2009/10/25 01:10:29 kensmith Exp $ # #Spaces ARE valid field separators in this file. However, #other *nix-like systems still insist on using tabs as field #separators. If you are sharing this file between systems, you #may want to use only tabs as field separators here. #Consult the syslog.conf(5) manpage. +Zeta-Ray.optiplex-networks.com *.err;kern.warning;auth.notice;mail.crit/dev/console *.notice;authpriv.none;kern.debug;lpr.info;mail.crit;news.err /var/log/messages security.*/var/log/security auth.info;authpriv.info/var/log/auth.log mail.info/var/log/maillog lpr.info/var/log/lpd-errs ftp.info/var/log/xferlog cron.*/var/log/cron *.=debug/var/log/debug.log *.emerg* # uncomment this to log all writes to /dev/console to /var/log/console.log #console.info/var/log/console.log # uncomment this to enable logging of all log messages to /var/log/all.log # touch /var/log/all.log and chmod it to mode 600 before it will work #*.*/var/log/all.log # uncomment this to enable logging to a remote loghost named loghost #*.*@loghost # uncomment these if you're running inn # news.crit/var/log/news/news.crit # news.err/var/log/news/news.err # news.notice/var/log/news/news.notice !ppp *.*/var/log/ppp.log !* +192.168.1.1 *.*/var/log/cisco857w.log !* +172.16.0.1 *.*/var/log/cisco1801w.log With the files having these permissions: -rw-r--r-- 1 root wheel0 Dec 5 17:02 cisco1801w.log -rw-r--r-- 1 root wheel0 Dec 5 19:32 cisco857w.log I also added these lines to the /etc/rc.conf file: syslogd_enable="YES" #syslogd_flags="-d -b 192.168.1.120 -a 192.168.1.1/32:* -a 172.16.0.1/32:* -vv" syslogd_flags="" Using debugging by putting -d -vv within the comments of the last line I was able to see information get transferred to my server from the devices in question, however the FILE parameter was never specified meaning that nothing was getting written to the files created. The 32bit build works perfectly on a different network with the same config just different device IP's. The system hasn't had any packages updated though unlike the 64bit edition which might interfere with the build somehow. I also run BSD Jails on the 64bit server too so I don't know if something from that part is affecting things? It's a very odd problem and I don't know if anyone can give me any insight into this? I mean information is getting to the server as I can see it while running the debug with the -d -vv flags set in place, however nothing is being written! Can anyone help or suggest anything? Thanks, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Mother board compatibility and CF card usage as main storage device for small DNS server
Many thanks for the responses! On 01/10/2010 02:52, Paul Wootton wrote: On 09/30/10 14:54, Kaya Saman wrote: On 30/09/2010 17:54, Brent Bloxam wrote: Kaya Saman wrote: From what you mention it sounds like a bad idea as the system disk will have many R/W's going through it it seems as /tmp and Swap get written to all the time. You can skip swap altogether and use MFS (memory filesystem) like Brian mentioned for other high write partitions that don't need to be persistent (/tmp, /var/log). See the following article on the freebsd.org website about using solid state storage: http://www.freebsd.org/doc/en/articles/solid-state/article.html Keep in mind though that Brian's setup was for slave nameservers that would be caching from another master. If your nameserver is acting as master, you'll be storing your records on flash since you need persistent storage, but I don't imagine those files will be write intensive. Also, if you make /var/log MFS, you'll want to have an external syslog server set up ;) Thanks a lot so it should be ok then! :-) Yeah sounds like a good setup, and also a syslog server :- this is exactly what I need in order to check my IOS logs coming from my Cisco boxes. I had previously imagined it to be a simple tftpboot server but sounds like it's standalone. That's cool! I mean I really like having logwatch mailing me all necessary information anyway so that coupled with a syslog server should be pretty good :-) Nice ideas need to do some Google'ing now as I don't know what MFS is yet but I will :-D Cheers and best regards, Kaya I have been using a Soekris Net5501-70 box since June 2008 with a CF card running FreeBSD 7. This is being used for DNS, DHCP, NNTP, network firewall and a small asterisk server I have turned off writing messages to logs, and in June this year, I started using an MD for /var/db/dhcpd (as that was getting written to a fair amount) Im still on my original CF card, and as of yet, have not seen any problems (touch wood)... Its not the fastest box in the world, but it certainly does what I want it to do. Just takes a long time compiling a world and kernel Just another option for you... Paul I checked out the Soekris and looks more like a firewall style design with multiple LAN ports and kinda a bit more then what I need! Perhaps I'll just stick to my original SSD idea even though I'll pay a bit more but a 40GB Intel X.25 SSD should do the trick. - Am currently using this in another design for DNS where I'm using 2 BSD Jails for primary and secondary and is ultra fast :-) Just a bit more expensive but that's ok I guess Best Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Mother board compatibility and CF card usage as main storage device for small DNS server
On 30/09/2010 17:54, Brent Bloxam wrote: Kaya Saman wrote: From what you mention it sounds like a bad idea as the system disk will have many R/W's going through it it seems as /tmp and Swap get written to all the time. You can skip swap altogether and use MFS (memory filesystem) like Brian mentioned for other high write partitions that don't need to be persistent (/tmp, /var/log). See the following article on the freebsd.org website about using solid state storage: http://www.freebsd.org/doc/en/articles/solid-state/article.html Keep in mind though that Brian's setup was for slave nameservers that would be caching from another master. If your nameserver is acting as master, you'll be storing your records on flash since you need persistent storage, but I don't imagine those files will be write intensive. Also, if you make /var/log MFS, you'll want to have an external syslog server set up ;) Thanks a lot so it should be ok then! :-) Yeah sounds like a good setup, and also a syslog server :- this is exactly what I need in order to check my IOS logs coming from my Cisco boxes. I had previously imagined it to be a simple tftpboot server but sounds like it's standalone. That's cool! I mean I really like having logwatch mailing me all necessary information anyway so that coupled with a syslog server should be pretty good :-) Nice ideas need to do some Google'ing now as I don't know what MFS is yet but I will :-D Cheers and best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Mother board compatibility and CF card usage as main storage device for small DNS server
Thanks very much Brian: On 30/09/2010 17:02, Brian A. Seklecki (CFI NOC) wrote: On 9/30/2010 4:11 AM, Kaya Saman wrote: I mean for a DNS server (all be it a small one) is it wise to use compact flash as storage?? For our GSLB DNS Slaves, we boot embedded/low power (or even VMs these days) systems with CF images off of flash, keep a shadow copy of /etc around, and program all file systems with R/W activity (/var/chroot/named/cache, where all zone files are fetched from Master NS) on MFS partitions, eliminating almost all write operations to the CF card. No swap, and RD / (/var, etc.) and MFS /usr extracted from a tarball via modified rc(8). /shadow is mounted noatime. Are you saying that you custom compiled the kernel here?? I'm not that advanced with FreeBSD yet as I've only been using it for a few months even though I have other UNIX based experience. [...] Where it gets risky is if you just plain install a live functional FreeBSD on CF. A million inodes for /usr/src and CF is about as fast as an ESDI hard drive in an IBM XT. I was planning to go Standard Minimal Install then build Bind9 from ports and of course use SSH as login system and perhaps hack out the Serial port to give me some SPARC/POWER/Cisco style RS232c login. From what you mention it sounds like a bad idea as the system disk will have many R/W's going through it it seems as /tmp and Swap get written to all the time. I mean this would have been a cheaper alternative to buying an SSD drive or SAS 2.5" drive but now I'm a bit worried. ~BAS Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Mother board compatibility and CF card usage as main storage device for small DNS server
Hi, I'm planning on using FreeBSD 8.0 x64 RELEASE edition for a small primary/secondary DNS server setup. The system will run Bind9 and have some zone files and views for the few people I host for. I am considering using a dual Atom system board with 2GB RAM and for storage was thinking of going for 16GB compact flash card instead of a normal hard disk.. This is a bit radical for me as I have never used this kind of setup before so I'm not sure how suited it will be??? These are the system boards: http://www.commell.com.tw/product/SBC/LV-67E.HTM# or http://www.globalamericaninc.com/p2808245/2808245_-_Mini-ITX_Motherboard_with_the_choice_of_Embedded_Intel_Atom_D510,_D410_or_Fanless_N450_Processor/product_info.html I mean for a DNS server (all be it a small one) is it wise to use compact flash as storage?? Thanks and regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Upgrading packages - portupgrade confusion
Thanks Warren and Michael! :-)
On Sun, 12 Sep 2010, Kaya Saman wrote:
The thing I don't quite understand though is that if the ports tree
gets refreshed, do the packages get upgraded or will I need to rebuild
them??
The ports tree is just build instructions, so updating it doesn't update
any installed applications. It does let you use a program to see which
installed applications need to be updated, like pkg_version or
portversion.
Here's a document I've been working on lately about upgrading ports.
I'm not sure it's really there yet, but it covers the basics:
http://www.wonkity.com/~wblock/docs/html/portupgrade.html
Yep I kinda figured that before even posting and also I knew the
difference between packages built by pkg_add and compiling fresh from
ports since I've done a few BSD builds now but the really iffy thing was
a: communication - which let me down not explaining myself properly and
b: confusion of how to update
On 09/12/2010 05:36 PM, Michael Powell wrote:
[...]
Yes. A package is just a port that someone has compiled into a pre-built
binary package for use with pkg_add. These binary packages are placed on ftp
servers where pkg_add may download from and install.
A port is just you doing the compiling locally yourself using the ports
system. The installed result is the same, except for one thing. When a
package is built some build options may have been selected as defaults while
others were excluded. When you build the port locally you have complete
control over all options.
Ditto :-)
"portupgrade -a" or "portmanager -u" depending on what application you
are using. Switching between multiple port maintenance applications is
not the worse thing you could do; however, I would not recommend it as
an everyday occurrence.
Ok so "portupgrade -a" upgrades all ports according to the manual.
[snip]
Ok, so if I understand correctly now is that the csup command refreshes
the ports tree while portupgrade upgrades the actual port itself
Update the ports tree first! csup -L 2 ports<- this file "ports" is a
supfile. An example of a supfile was included in a previous mail. More
detailed info in the Handbook.
This clarifies, I can't believe what's wrong with me today as I seem to
not be thinking :-(
I picked this up the first time round on a really good production build
that I made and now I lost all that knowledge oh well working with
MS can do that to you I guess??
[...]
Another tip: Whenever there are situations which can get sticky most of the
time notes are placed into a file containing instructions on how to deal
with the problem. Get into the habit of always reading the UPDATING file
located in /usr/ports so you will know about these *before* updating.
[snip]
This is really great advise as I'm kinda in the process of developing
documentation myself similar to Warren:
http://wiki.optiplex-networks.com/xwiki/bin/view/FreeBSD/
Luckily I build all my systems in jails so is easily managed and doesn't
blow up the whole system, however I do share the ports tree throughout
all jails and the base install meaning that things get simplified
although it can have its own problems such as version inconsistencies etc...
{{PS. this is also due to the fact that I only one available production
system and can't afford to get more although soon I hope to one day}}
Thanks so much guys and sorry for being so noobish these last 2 days,
just sorry you all had to put up with it!! :-)
Anyway best regards to all and hopefully mail along side you guys
helping out others some sunny day in the future :-D
Kaya
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Upgrading packages - portupgrade confusion
Hi Jerry and Michael, thanks for all the advise and information!! I think I was confusing terminologies a little I was trying to imply that I have been building from ports all this time and *not* using pkg_add to obtain pre-built packages. I think mainly it's just that I've been using package managers too much with Linux and OpenSolaris distros that it got burned into my brain. not to mention that yesterday was a 14 hour shift without break which didn't help. The thing I don't quite understand though is that if the ports tree gets refreshed, do the packages get upgraded or will I need to rebuild them?? You have to rebuild them. Does this apply to ports too?? "portupgrade -a" or "portmanager -u" depending on what application you are using. Switching between multiple port maintenance applications is not the worse thing you could do; however, I would not recommend it as an everyday occurrence. Ok so "portupgrade -a" upgrades all ports according to the manual. On 09/12/2010 03:52 PM, Michael Powell wrote: [...] To elaborate a little. csup -L 2 ports is what refreshes the ports tree. Portupgrade is a third party app you can install to assist in automating the updating process. Once you've installed portupgrade there are man pages for portsdb, pkgdb, and portversion to see what the switches described above do. The commands above are just strung together to prepare a system for updating. portupgrade -a is actually what does the actual updating. There are other tools as well, I'm just not as familiar with them. I think the other one is called portmaster. It may even be better, I don't know as I tend to stick with what I know as long as it keeps doing the job. [ Ok, so if I understand correctly now is that the csup command refreshes the ports tree while portupgrade upgrades the actual port itself eg: cd /usr/ports/*/nano make install clean although not the case but say if this was to build version 1.8 of the Nano text editor, running: csup -L 2 portupgrade nano would upgrade the installed version to 1.9?? Of course the current version of Nano is totally different I am just trying to understand here!! [...] I don't know if I can properly explain well enough, but I'll take a stab at it anyways. But I believe the first answer here would be no. Refreshing the ports tree does not install or update any installed software. I kind of keyed in on your mentioning of portupgrade. Portupgrade is a tool for automating the upgrading of installed software. While I believe it, and possibly portmaster can operate on pre-built packages I myself stopped using packages a long time ago. I compile everything. Ok I think this practically explains what I've just been trying to say above. [...] Hope this helps. I'm not the best at explaining things, but the Handbook is a most excellent resource to be studied extensively. It is written much better than anything I can manage. And while much of it may seem cryptic at first glance, most of what you need to know is in there. Yep I think this helps a lot!!! :-) -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Many thanks and best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Upgrading packages - portupgrade confusion
[...] Have you refreshed the ports tree(s) with csup using the same supfile to ensure the ports trees are up to date ( and therefore identical)? Since you are using portugrade, as I do, this is what I do to see what needs to be done: I cd to /usr/sup which is where I keep my supfiles and the housekeeping. Then using this command sequence will refresh the ports tree, the ports index database, and ensure the package database is clean and synced. Portversion then just tells you with a "<" symbol any that are old and in need of an update. csup -L 2 ports&& portsdb -uF&& pkgdb -u&& portversion where "ports" above is my supfile for ports refresh and looks like this: *default host=cvsup.nl.freebsd.org *default base=/usr *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix compress ports-all Then a portupgrade -a as required. If all symbols in the right column are "=" everything is up to date and nothing is required. Adjust server location for mirror near you (or one that works best). -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks alot Mike for the response!! I didn't actually refresh the ports tree so I'm gona have to do that. The thing I don't quite understand though is that if the ports tree gets refreshed, do the packages get upgraded or will I need to rebuild them?? I slightly recall the csup commnad, however I've never actually performed an inplace upgrade of a package in BSD. Only done this kind of thing in Linux - Debian/Ubuntu, CentOS and Solaris - OpenSolaris, Belenix where they have package managers. What's the process for upgrading a package? make reinstall clean?? Many Thanks Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Upgrading packages - portupgrade confusion
Hi, I have 2 servers one production and another test. The test machine's packages however, seem to be older then the production machines one's even though I built the production system a few months ago. I used the: portupgrade command in order to try to upgrade the ports nad re-install the packages only the same versions seem to be compiling??? I ran: portupgrade -ai on the base system as the system where these packages are installed into is a FreeBSD jail. The ports in question are these: tomcat-6.0.29 Open-source Java web server by Apache, 6.x branch postgresql-client-8.2.17_1 PostgreSQL database (client) postgresql-server-8.2.17_1 The most advanced open-source database available anywhere Which on my newer test system show up as such: postgresql-client-8.2.13 PostgreSQL database (client) postgresql-server-8.2.13 The most advanced open-source database available anywhere tomcat-6.0.20_1 Open-source Java web server by Apache, 6.x branch I don't understand this 100%??? I would like the versions to be the same as the production system since I have a postgres-Tomcat connector which doesn't work on the test setup as my Tomcat webapp isn't being displayed!! Can I do anything about this?? I don't even know why it is like this although I must admit that it has been an exceptionally long day and am really suffering from fatigue now which might be a contributor but I can't tell. Can anyone give me any advise?? Many thanks and best regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: system is under attack (what can I do more?)
On 06/18/2010 06:59 PM, Greg Larkin wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Kaya Saman wrote: On 18/06/2010 18:48, Glen Barber wrote: Hi, On 6/18/10 11:29 AM, Kaya Saman wrote: [...] Look at ports/security/sshguard and ports/security/bruteblock. I use sshguard with ipfilter, but it works with pf and ipfw as well. It is very simple to set up and gets the job done. Hi just wanted to say thanks for stating this as I'm also looking for a BSD version of fail2ban which I couldn't find in the FreeBSD ports collection.. security/py-fail2ban Regards, Ah.. Thanks!! :-) Regards, Kaya The "make search" target is useful for finding ports when you only have a keyword or name to go on: # cd /usr/ports/ # make search The search target requires a keyword parameter or name parameter, e.g.: "make search key=somekeyword" or"make search name=somekeyword" # make name=fail2ban search Port: py26-fail2ban-0.8.4 Path: /usr/ports/security/py-fail2ban Info: scans log files and bans IP that makes too many password failures. Maint: t...@pc-tony.com B-deps: python26-2.6.5 R-deps: python26-2.6.5 WWW:http://www.fail2ban.org/wiki/index.php/Main_Page Hope that helps, Greg - -- Greg Larkin http://www.FreeBSD.org/ - The Power To Serve http://www.sourcehosting.net/ - Ready. Set. Code. http://twitter.com/sourcehosting/ - Follow me, follow you -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFMG5fT0sRouByUApARArz0AJ9cAxdoR9jAXdmliiEECguLYDrDbgCeJjCP /2niys4x+eXgooHg3uOf1gw= =GycM -END PGP SIGNATURE- Thanks Greg!! That is useful and will probably save me a lot of digging in the future when attempting to get other things migrated over from Linux and/or Solaris etc :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: system is under attack (what can I do more?)
On 18/06/2010 18:48, Glen Barber wrote: Hi, On 6/18/10 11:29 AM, Kaya Saman wrote: [...] Look at ports/security/sshguard and ports/security/bruteblock. I use sshguard with ipfilter, but it works with pf and ipfw as well. It is very simple to set up and gets the job done. Hi just wanted to say thanks for stating this as I'm also looking for a BSD version of fail2ban which I couldn't find in the FreeBSD ports collection.. security/py-fail2ban Regards, Ah.. Thanks!! :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: system is under attack (what can I do more?)
[...] Look at ports/security/sshguard and ports/security/bruteblock. I use sshguard with ipfilter, but it works with pf and ipfw as well. It is very simple to set up and gets the job done. Jerry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Hi just wanted to say thanks for stating this as I'm also looking for a BSD version of fail2ban which I couldn't find in the FreeBSD ports collection.. A real problem with this kind of attack is that even though brute force in nature it can also work like a DoS if the server is having to handle X amount of break-ins per second and also if multiple people are trying to hack the system at the same time, it can steal bandwidth too as let's face it not everyone has high powered enterprise grade MetroEthernet or OC12+ Trunks WAN connectivity. A lot of people are still on ADSL or even Dial-Up. Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Squid not starting from rc in Jail, however works when run from root as command??
Kaya Saman wrote: Hi guys, I've just built a new BSD server running on a Mini-ITX NAS chassis and it's working beautifully :-) I also took the time to learn how to build jails too as this is only my second BSD build so am still really new to it although not to UNIX as I use Solaris and Linux frequently. Anyhow I'm trying to migrate config which was on an old SPARC server running Solaris 9 with a version of Squid got from the Blastwave repos and currently I'm having major issues with it. Basically I think I've worked through to figure out that running as user Squid or Proxy doesn't give me access to ports <1024, basically the 'well known' ports. Here is the error message I get from Squid when trying to start it using the rc.d file: May 31 17:47:11 proxy squid[4360]: Cannot open HTTP Port May 31 17:47:11 proxy squid[4358]: Squid Parent: child process 4360 exited due to signal 6 May 31 17:47:14 proxy squid[4358]: Squid Parent: child process 4364 started May 31 17:47:15 proxy squid[4364]: Cannot open HTTP Port May 31 17:47:15 proxy squid[4358]: Squid Parent: child process 4364 exited due to signal 6 May 31 17:47:18 proxy squid[4358]: Squid Parent: child process 4367 started May 31 17:47:18 proxy squid[4367]: Cannot open HTTP Port May 31 17:47:18 proxy squid[4358]: Squid Parent: child process 4367 exited due to signal 6 May 31 17:47:21 proxy squid[4358]: Squid Parent: child process 4370 started May 31 17:47:21 proxy squid[4370]: Cannot open HTTP Port May 31 17:47:21 proxy squid[4358]: Squid Parent: child process 4370 exited due to signal 6 If however I start Squid using /usr/local/sbin/squid -NCd1 as root I get this and Squid works: proxy# /usr/local/sbin/squid -NCd1 2010/05/31 17:55:54| Starting Squid Cache version 2.7.STABLE7 for amd64-portbld-freebsd8.0... 2010/05/31 17:55:54| Process ID 4484 2010/05/31 17:55:54| With 11095 file descriptors available 2010/05/31 17:55:54| Using kqueue for the IO loop 2010/05/31 17:55:54| Performing DNS Tests... 2010/05/31 17:55:54| Successful DNS name lookup tests... 2010/05/31 17:55:54| DNS Socket created at 0.0.0.0, port 39116, FD 6 2010/05/31 17:55:54| Adding nameserver 192.168.1.100 from /etc/resolv.conf 2010/05/31 17:55:54| Adding nameserver 192.168.1.101 from /etc/resolv.conf 2010/05/31 17:55:54| logfileOpen: opening log /var/log/squid/access.log 2010/05/31 17:55:54| Unlinkd pipe opened on FD 11 2010/05/31 17:55:54| Swap maxSize 102400 + 8192 KB, estimated 8507 objects 2010/05/31 17:55:54| Target number of buckets: 425 2010/05/31 17:55:54| Using 8192 Store buckets 2010/05/31 17:55:54| Max Mem size: 8192 KB 2010/05/31 17:55:54| Max Swap size: 102400 KB 2010/05/31 17:55:54| logfileOpen: opening log /var/log/squid/store.log 2010/05/31 17:55:54| Rebuilding storage in /usr/local/squid/cache (DIRTY) 2010/05/31 17:55:54| Using Least Load store dir selection 2010/05/31 17:55:54| Set Current Directory to /var/spool/squid 2010/05/31 17:55:54| Loaded Icons. 2010/05/31 17:55:54| Accepting accelerated HTTP connections at 192.168.1.110, port 80, FD 13. 2010/05/31 17:55:54| Accepting ICP messages at 0.0.0.0, port 3130, FD 14. 2010/05/31 17:55:54| Accepting SNMP messages on port 3401, FD 15. 2010/05/31 17:55:54| WCCP Disabled. 2010/05/31 17:55:54| Configuring x-ray Parent x-ray/80/0 2010/05/31 17:55:54| Configuring zeta-ray Parent zeta-ray/80/0 2010/05/31 17:55:54| Configuring delta-ray Parent delta-ray/80/0 2010/05/31 17:55:54| Configuring g-stat-1 Parent g-stat-1/80/0 2010/05/31 17:55:54| Ready to serve requests. 2010/05/31 17:55:54| Done reading /usr/local/squid/cache swaplog (0 entries) 2010/05/31 17:55:54| Finished rebuilding storage from disk. 2010/05/31 17:55:54| 0 Entries scanned 2010/05/31 17:55:54| 0 Invalid entries. 2010/05/31 17:55:54| 0 With invalid flags. 2010/05/31 17:55:54| 0 Objects loaded. 2010/05/31 17:55:54| 0 Objects expired. 2010/05/31 17:55:54| 0 Objects cancelled. 2010/05/31 17:55:54| 0 Duplicate URLs purged. 2010/05/31 17:55:54| 0 Swapfile clashes avoided. 2010/05/31 17:55:54| Took 0.4 seconds ( 0.0 objects/sec). 2010/05/31 17:55:54| Beginning Validation Procedure 2010/05/31 17:55:54| Completed Validation Procedure 2010/05/31 17:55:54| Validated 0 Entries 2010/05/31 17:55:54| store_swap_size = 0k 2010/05/31 17:55:55| storeLateRelease: released 0 objects Running uname -a gives me this: FreeBSD Zeta-Ray.optiplex-networks.com 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:02:08 UTC 2009 r...@mason.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 and also Squid was built from ports too!! Because I built the system in a Jail I am using this syntax to bind the port to the IP address: http_port 192.168.1.110:80 accel defaultsite=domain.com vhost When I mean Jail I am talking about FreeBDS Jails and not chroot syntax :-) Can anybody offer me any advice or anywhere else to t
Re: Postfix bad command startup??
On 31/05/2010 22:07, Tim Judd wrote: On 5/31/10, Kaya Saman wrote: Hi, similar like I wrote before, to do with my migration from Solaris 9 to FreeBSD 8.0 x64 RELEASE. Postfix is being run in a BSD Jail and so far I have disabled as much as I could of sendmail which I did this to rc.conf within the jail: postfix_enable="YES" sendmail_enable="NONE" sendmail_submit_enable="NO" sendmail_outbound_enable="NO" sendmail_msp_queue_enable="NO" However upon startup Postfix gives me this problem: May 31 18:03:18 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling May 31 18:04:18 relay postfix/smtpd[4606]: fatal: open database /etc/aliases.db: No such file or directory May 31 18:04:19 relay postfix/master[4280]: warning: process /usr/local/libexec/postfix/smtpd pid 4606 exit status 1 May 31 18:04:19 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling May 31 18:05:19 relay postfix/smtpd[4629]: fatal: open database /etc/aliases.db: No such file or directory May 31 18:05:20 relay postfix/master[4280]: warning: process /usr/local/libexec/postfix/smtpd pid 4629 exit status 1 May 31 18:05:20 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling I can tell that it's listening as netstat -ap tcp reveals this: netstat: kvm not available: /dev/mem: No such file or directory Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) tcp4 0 0 relay.smtp 110.52.7.217.2140 ESTABLISHED tcp4 0 0 relay.smtp web112111.mail.g.33920 ESTABLISHED tcp4 0 0 relay.smtp 110.52.6.29.4643 ESTABLISHED tcp4 0 0 relay.smtp 78-61-12-207.sta.28507 CLOSED tcp4 0 0 relay.smtp 78-61-12-207.sta.27646 CLOSE_WAIT tcp4 0 0 relay.smtp 78-61-12-207.sta.26479 CLOSE_WAIT tcp4 0 0 relay.smtp 110.52.6.35.2109 ESTABLISHED tcp4 0 0 relay.smtp 78-61-12-207.sta.23305 CLOSED tcp4 0 0 relay.smtp 78-61-12-207.sta.22314 CLOSE_WAIT tcp4 0 0 relay.smtp 78-61-12-207.sta.21323 CLOSE_WAIT tcp4 0 0 relay.ssh *.*LISTEN tcp4 0 0 relay.smtp *.*LISTEN /var/log/messages gives me this: May 31 18:10:24 relay postfix/smtpd[4662]: fatal: open database /etc/aliases.db: No such file or directory however I did run the command newaliases which did create the aliases file under /etc/mail/aliases with the aliases.db file being under there as well as under /etc. Currently no mail is being relayed throughout the domain so I can tell that it's not working as even the /var/log/maillog file is telling me that messages are queued but not sent if I use: mail -s test em...@address.com test ^D Can someone please help me work out what is causing Postfix to fail as I've managed to migrate my config from Linux to Solaris with not as many issues and problems as this so it really beats me... Many thanks, Kaya Kaya, You may need to edit the following alias_maps = hash:/etc/aliases alias_database = hash:/etc/aliases and run BOTH 'newaliases' and 'postalias /etc/aliases' depending on your setup. restart postfix for good measure if you telnet to your postfix IP and get the 220 banner, postfix is happy with the config and should work as config'd. if after establishing a telnet session, you don't get any banner, postfix is still having problems with something. start looking at logs again. Thanks so much Tim!!! :-) I hadn't used the 'postalias /etc/aliases' command at all so running it now actually made the system work pretty well.. At least I haven't restarted the Jail yet but so far everything works! I just hope this stays permanently as I find Jails a bit less stable then Solaris Zones which is what I'm trying to mimic with them; however, it might just be because I don't know how to use them yet as I've only just learned about how to create them and run simple services in them. Meaning that my statement is probably wy premature!! Now if I could just figure out how to start Squid through the rc.d scripts rather then running manually as root user as per my other posting that would be really cool... Best Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Postfix bad command startup??
Hi, similar like I wrote before, to do with my migration from Solaris 9 to FreeBSD 8.0 x64 RELEASE. Postfix is being run in a BSD Jail and so far I have disabled as much as I could of sendmail which I did this to rc.conf within the jail: postfix_enable="YES" sendmail_enable="NONE" sendmail_submit_enable="NO" sendmail_outbound_enable="NO" sendmail_msp_queue_enable="NO" However upon startup Postfix gives me this problem: May 31 18:03:18 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling May 31 18:04:18 relay postfix/smtpd[4606]: fatal: open database /etc/aliases.db: No such file or directory May 31 18:04:19 relay postfix/master[4280]: warning: process /usr/local/libexec/postfix/smtpd pid 4606 exit status 1 May 31 18:04:19 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling May 31 18:05:19 relay postfix/smtpd[4629]: fatal: open database /etc/aliases.db: No such file or directory May 31 18:05:20 relay postfix/master[4280]: warning: process /usr/local/libexec/postfix/smtpd pid 4629 exit status 1 May 31 18:05:20 relay postfix/master[4280]: warning: /usr/local/libexec/postfix/smtpd: bad command startup -- throttling I can tell that it's listening as netstat -ap tcp reveals this: netstat: kvm not available: /dev/mem: No such file or directory Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) tcp4 0 0 relay.smtp 110.52.7.217.2140 ESTABLISHED tcp4 0 0 relay.smtp web112111.mail.g.33920 ESTABLISHED tcp4 0 0 relay.smtp 110.52.6.29.4643 ESTABLISHED tcp4 0 0 relay.smtp 78-61-12-207.sta.28507 CLOSED tcp4 0 0 relay.smtp 78-61-12-207.sta.27646 CLOSE_WAIT tcp4 0 0 relay.smtp 78-61-12-207.sta.26479 CLOSE_WAIT tcp4 0 0 relay.smtp 110.52.6.35.2109 ESTABLISHED tcp4 0 0 relay.smtp 78-61-12-207.sta.23305 CLOSED tcp4 0 0 relay.smtp 78-61-12-207.sta.22314 CLOSE_WAIT tcp4 0 0 relay.smtp 78-61-12-207.sta.21323 CLOSE_WAIT tcp4 0 0 relay.ssh *.*LISTEN tcp4 0 0 relay.smtp *.*LISTEN /var/log/messages gives me this: May 31 18:10:24 relay postfix/smtpd[4662]: fatal: open database /etc/aliases.db: No such file or directory however I did run the command newaliases which did create the aliases file under /etc/mail/aliases with the aliases.db file being under there as well as under /etc. Currently no mail is being relayed throughout the domain so I can tell that it's not working as even the /var/log/maillog file is telling me that messages are queued but not sent if I use: mail -s test em...@address.com test ^D Can someone please help me work out what is causing Postfix to fail as I've managed to migrate my config from Linux to Solaris with not as many issues and problems as this so it really beats me... Many thanks, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Squid not starting from rc in Jail, however works when run from root as command??
Hi guys, I've just built a new BSD server running on a Mini-ITX NAS chassis and it's working beautifully :-) I also took the time to learn how to build jails too as this is only my second BSD build so am still really new to it although not to UNIX as I use Solaris and Linux frequently. Anyhow I'm trying to migrate config which was on an old SPARC server running Solaris 9 with a version of Squid got from the Blastwave repos and currently I'm having major issues with it. Basically I think I've worked through to figure out that running as user Squid or Proxy doesn't give me access to ports <1024, basically the 'well known' ports. Here is the error message I get from Squid when trying to start it using the rc.d file: May 31 17:47:11 proxy squid[4360]: Cannot open HTTP Port May 31 17:47:11 proxy squid[4358]: Squid Parent: child process 4360 exited due to signal 6 May 31 17:47:14 proxy squid[4358]: Squid Parent: child process 4364 started May 31 17:47:15 proxy squid[4364]: Cannot open HTTP Port May 31 17:47:15 proxy squid[4358]: Squid Parent: child process 4364 exited due to signal 6 May 31 17:47:18 proxy squid[4358]: Squid Parent: child process 4367 started May 31 17:47:18 proxy squid[4367]: Cannot open HTTP Port May 31 17:47:18 proxy squid[4358]: Squid Parent: child process 4367 exited due to signal 6 May 31 17:47:21 proxy squid[4358]: Squid Parent: child process 4370 started May 31 17:47:21 proxy squid[4370]: Cannot open HTTP Port May 31 17:47:21 proxy squid[4358]: Squid Parent: child process 4370 exited due to signal 6 If however I start Squid using /usr/local/sbin/squid -NCd1 as root I get this and Squid works: proxy# /usr/local/sbin/squid -NCd1 2010/05/31 17:55:54| Starting Squid Cache version 2.7.STABLE7 for amd64-portbld-freebsd8.0... 2010/05/31 17:55:54| Process ID 4484 2010/05/31 17:55:54| With 11095 file descriptors available 2010/05/31 17:55:54| Using kqueue for the IO loop 2010/05/31 17:55:54| Performing DNS Tests... 2010/05/31 17:55:54| Successful DNS name lookup tests... 2010/05/31 17:55:54| DNS Socket created at 0.0.0.0, port 39116, FD 6 2010/05/31 17:55:54| Adding nameserver 192.168.1.100 from /etc/resolv.conf 2010/05/31 17:55:54| Adding nameserver 192.168.1.101 from /etc/resolv.conf 2010/05/31 17:55:54| logfileOpen: opening log /var/log/squid/access.log 2010/05/31 17:55:54| Unlinkd pipe opened on FD 11 2010/05/31 17:55:54| Swap maxSize 102400 + 8192 KB, estimated 8507 objects 2010/05/31 17:55:54| Target number of buckets: 425 2010/05/31 17:55:54| Using 8192 Store buckets 2010/05/31 17:55:54| Max Mem size: 8192 KB 2010/05/31 17:55:54| Max Swap size: 102400 KB 2010/05/31 17:55:54| logfileOpen: opening log /var/log/squid/store.log 2010/05/31 17:55:54| Rebuilding storage in /usr/local/squid/cache (DIRTY) 2010/05/31 17:55:54| Using Least Load store dir selection 2010/05/31 17:55:54| Set Current Directory to /var/spool/squid 2010/05/31 17:55:54| Loaded Icons. 2010/05/31 17:55:54| Accepting accelerated HTTP connections at 192.168.1.110, port 80, FD 13. 2010/05/31 17:55:54| Accepting ICP messages at 0.0.0.0, port 3130, FD 14. 2010/05/31 17:55:54| Accepting SNMP messages on port 3401, FD 15. 2010/05/31 17:55:54| WCCP Disabled. 2010/05/31 17:55:54| Configuring x-ray Parent x-ray/80/0 2010/05/31 17:55:54| Configuring zeta-ray Parent zeta-ray/80/0 2010/05/31 17:55:54| Configuring delta-ray Parent delta-ray/80/0 2010/05/31 17:55:54| Configuring g-stat-1 Parent g-stat-1/80/0 2010/05/31 17:55:54| Ready to serve requests. 2010/05/31 17:55:54| Done reading /usr/local/squid/cache swaplog (0 entries) 2010/05/31 17:55:54| Finished rebuilding storage from disk. 2010/05/31 17:55:54| 0 Entries scanned 2010/05/31 17:55:54| 0 Invalid entries. 2010/05/31 17:55:54| 0 With invalid flags. 2010/05/31 17:55:54| 0 Objects loaded. 2010/05/31 17:55:54| 0 Objects expired. 2010/05/31 17:55:54| 0 Objects cancelled. 2010/05/31 17:55:54| 0 Duplicate URLs purged. 2010/05/31 17:55:54| 0 Swapfile clashes avoided. 2010/05/31 17:55:54| Took 0.4 seconds ( 0.0 objects/sec). 2010/05/31 17:55:54| Beginning Validation Procedure 2010/05/31 17:55:54| Completed Validation Procedure 2010/05/31 17:55:54| Validated 0 Entries 2010/05/31 17:55:54| store_swap_size = 0k 2010/05/31 17:55:55| storeLateRelease: released 0 objects Running uname -a gives me this: FreeBSD Zeta-Ray.optiplex-networks.com 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:02:08 UTC 2009 r...@mason.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64 and also Squid was built from ports too!! Because I built the system in a Jail I am using this syntax to bind the port to the IP address: http_port 192.168.1.110:80 accel defaultsite=domain.com vhost When I mean Jail I am talking about FreeBDS Jails and not chroot syntax :-) Can anybody offer me any advice or anywhere else to turn as I really don't know what's going on Many thanks! Kaya ___
Re: Upgrading default Apache1.3 to Apache22 port??
On 30/05/2010 02:01, Michael Powell wrote: Kaya Saman wrote: [snip] It seems to have worked I just go into the config and check it; only that part seems missing?? Maybe it's in a different place then /etc in FreeBSD and I haven't worked it out yet. Even apache22 daemon is not in /etc/rc.d. Oh well am sure will all be fine more Google'ing I think for me :-) FreeBSD has a slightly different layout than Linux or Solaris. The configs and startup scripts belong in /usr/local/etc and /usr/local/etc/rc.d respectively. To invoke the startup script on boot up, simply place apache22_enable="YES" into the /etc/rc.conf file. The manual method using apachectl will still work at a command prompt. This is very general and you will find most things you install will operate this way. -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Thanks Mike!! :-D Yeah I can see what your saying now as I'm SSH'd into my server. It's really similar to the extra repos I have on my Solaris boxes as they're totally odd places which is normal for them but perhaps not so normal for the newcomer or unsuspecting! This is cool now, all I need to do is sort out the MySQL database and Cronjob for Cacti then get that working. Thanks so much, Best regards Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Upgrading default Apache1.3 to Apache22 port??
On 29/05/2010 23:52, Jerry wrote: On Sat, 29 May 2010 23:23:10 +0300 Kaya Saman articulated: Hi guys, after Google'ing around a bit I managed to stumble across this: http://www.freebsd.org/doc/en/books/handbook/ports-using.html http://www.freebsddiary.org/portupgrade.php what I am trying to achieve is to upgrade the currently install Apache 1.3.x port over to the Apache22 port. The Apach1x got installed through some ports which I built which if am not mistaken was either Cacti or Munin. Anyhow, previously when running these guys and more on Linux I've always used Apache2x so it would be great to do the same here If I attempt to deinstall Apach1x the system tells me that I have to do the same for all the dependencies too, which is not what I want. Is there a way to upgrade cleanly and smoothly?? If it was me, I would use 'pkg_delete' to remove the existing 'apache' port. "pkg_delete -dfv apache*" Make sure to update your ports tree, then cd to the www/apache22 port and run "make config" to insure you have it configured correctly. Then, "portmanager www/apache22 -l -f" to install the new version and insure that all dependencies are properly updated. I have done similar before and its worked well. Thanks Jerry!! It seems to have worked I just go into the config and check it; only that part seems missing?? Maybe it's in a different place then /etc in FreeBSD and I haven't worked it out yet. Even apache22 daemon is not in /etc/rc.d. Oh well am sure will all be fine more Google'ing I think for me :-) Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Upgrading default Apache1.3 to Apache22 port??
Hi guys, after Google'ing around a bit I managed to stumble across this: http://www.freebsd.org/doc/en/books/handbook/ports-using.html http://www.freebsddiary.org/portupgrade.php what I am trying to achieve is to upgrade the currently install Apache 1.3.x port over to the Apache22 port. The Apach1x got installed through some ports which I built which if am not mistaken was either Cacti or Munin. Anyhow, previously when running these guys and more on Linux I've always used Apache2x so it would be great to do the same here If I attempt to deinstall Apach1x the system tells me that I have to do the same for all the dependencies too, which is not what I want. Is there a way to upgrade cleanly and smoothly?? Many thanks, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: NFS Emergency - RPC and NFSD online but no connection??
Ok :-) All is well... That was fast and quick thinking by myself I do say :-P Now to limit Darkice's load on the system?? On 05/24/2010 12:54 AM, Kaya Saman wrote: Actually a bit more scanning shows Darkice is using 100% of the CPU for some reason? I've commented it out in /etc/rc.conf and initiated a restart so I hope that, the lower load average will make the system start accepting connections again which is a plausible cause for my issue. After testing I will have more information to share, hopefully it will work. If that's the case I will look at limiting CPU horsepower per application so that my lowly system has some room left to compute other things too. On 05/24/2010 12:33 AM, Kaya Saman wrote: Hi guys, this is a really interesting yet annoying issue I'm having. I had a fully working NFS setup until earlier today when I had a failed attempt at recovering an external hard disk that I fitted into my system internally. Now this disk has nothing to do with the system and is used with Linux hence it runs the ext3 filesystem but since the BSD machine is the only desktop I have I thought it a good idea to recover from there. Anyhow, I removed the drive and in the mean time compiled Transmission bit torrent client from ports and a failed attempt to compile Amule2 with a dependency failing to compile; if memory serves me well I think it was cryptopp or something with pp at the end anyway. Sorry for lack of stating on here if it necessary I will find this out and post it immediately. Well just to say now that I can't mount what I used to be able to mount before. I built a little shell script so that I didn't need to use fstab from my Linux box and all I get as response is this: :~# ./BSD2.sh mount.nfs: mount system call failed Syntax in shell script is: mount -t nfs -o rw 172.16.0.200:/mnt/SATA /mnt/BSD2 I have checked the logs on the server /var/log/messages only there isn't any information at all being given?? From BSD if I try to restart or stop nfsd or mountd I get this: rd1# /etc/rc.d/nfsd stop Stopping nfsd. ^C rd1# /etc/rc.d/mountd restart which has held there for a while now meaning that it's probably crashed or something? Netstat claims everything is online: rd1# netstat -ap udp Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) udp4 0 0 *.**.* udp4 0 0 *.tftp *.* udp4 0 0 localhost.ntp *.* udp6 0 0 localhost.ntp *.* udp6 0 0 fe80:3::1.ntp *.* udp4 0 0 rd1.ntp*.* udp6 0 0 *.ntp *.* udp4 0 0 *.ntp *.* udp6 0 0 *.nfsd *.* udp4 0 0 *.nfsd *.* udp4 0 0 *.836 *.* udp6 0 0 *.836 *.* udp6 0 0 *.**.* udp4 0 0 *.653 *.* udp4 0 0 *.sunrpc *.* udp6 0 0 *.760 *.* udp6 0 0 *.sunrpc *.* udp4 0 0 localhost.domain *.* udp4 0 0 rd1.domain *.* udp4 0 0 *.syslog *.* udp6 0 0 *.syslog *.* and I don't have any firewall in place at all!! Output of uname -a: rd1# uname -a FreeBSD rd1.optiplex-networks.com 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:48:17 UTC 2009 r...@almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 The system is a 32bit PIV running at 2.4GHz with 480MB of RAM. Really I'm not sure what to do if I need to upgrade NFS as one of it's dependencies has been upgraded or something else as it's just not working?? Actually I've just typed in exit after su - 'ing to root from an SSH session and the session looks like it's hung on me...?? Also I've had the system running into kernel panic and restarting a lot earlier as the load average went up is what logwatch seems to show. Can anyone help me out of this dilemma?? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: NFS Emergency - RPC and NFSD online but no connection??
Actually a bit more scanning shows Darkice is using 100% of the CPU for some reason? I've commented it out in /etc/rc.conf and initiated a restart so I hope that, the lower load average will make the system start accepting connections again which is a plausible cause for my issue. After testing I will have more information to share, hopefully it will work. If that's the case I will look at limiting CPU horsepower per application so that my lowly system has some room left to compute other things too. On 05/24/2010 12:33 AM, Kaya Saman wrote: Hi guys, this is a really interesting yet annoying issue I'm having. I had a fully working NFS setup until earlier today when I had a failed attempt at recovering an external hard disk that I fitted into my system internally. Now this disk has nothing to do with the system and is used with Linux hence it runs the ext3 filesystem but since the BSD machine is the only desktop I have I thought it a good idea to recover from there. Anyhow, I removed the drive and in the mean time compiled Transmission bit torrent client from ports and a failed attempt to compile Amule2 with a dependency failing to compile; if memory serves me well I think it was cryptopp or something with pp at the end anyway. Sorry for lack of stating on here if it necessary I will find this out and post it immediately. Well just to say now that I can't mount what I used to be able to mount before. I built a little shell script so that I didn't need to use fstab from my Linux box and all I get as response is this: :~# ./BSD2.sh mount.nfs: mount system call failed Syntax in shell script is: mount -t nfs -o rw 172.16.0.200:/mnt/SATA /mnt/BSD2 I have checked the logs on the server /var/log/messages only there isn't any information at all being given?? From BSD if I try to restart or stop nfsd or mountd I get this: rd1# /etc/rc.d/nfsd stop Stopping nfsd. ^C rd1# /etc/rc.d/mountd restart which has held there for a while now meaning that it's probably crashed or something? Netstat claims everything is online: rd1# netstat -ap udp Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) udp4 0 0 *.**.* udp4 0 0 *.tftp *.* udp4 0 0 localhost.ntp *.* udp6 0 0 localhost.ntp *.* udp6 0 0 fe80:3::1.ntp *.* udp4 0 0 rd1.ntp*.* udp6 0 0 *.ntp *.* udp4 0 0 *.ntp *.* udp6 0 0 *.nfsd *.* udp4 0 0 *.nfsd *.* udp4 0 0 *.836 *.* udp6 0 0 *.836 *.* udp6 0 0 *.**.* udp4 0 0 *.653 *.* udp4 0 0 *.sunrpc *.* udp6 0 0 *.760 *.* udp6 0 0 *.sunrpc *.* udp4 0 0 localhost.domain *.* udp4 0 0 rd1.domain *.* udp4 0 0 *.syslog *.* udp6 0 0 *.syslog *.* and I don't have any firewall in place at all!! Output of uname -a: rd1# uname -a FreeBSD rd1.optiplex-networks.com 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:48:17 UTC 2009 r...@almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 The system is a 32bit PIV running at 2.4GHz with 480MB of RAM. Really I'm not sure what to do if I need to upgrade NFS as one of it's dependencies has been upgraded or something else as it's just not working?? Actually I've just typed in exit after su - 'ing to root from an SSH session and the session looks like it's hung on me...?? Also I've had the system running into kernel panic and restarting a lot earlier as the load average went up is what logwatch seems to show. Can anyone help me out of this dilemma?? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
NFS Emergency - RPC and NFSD online but no connection??
Hi guys, this is a really interesting yet annoying issue I'm having. I had a fully working NFS setup until earlier today when I had a failed attempt at recovering an external hard disk that I fitted into my system internally. Now this disk has nothing to do with the system and is used with Linux hence it runs the ext3 filesystem but since the BSD machine is the only desktop I have I thought it a good idea to recover from there. Anyhow, I removed the drive and in the mean time compiled Transmission bit torrent client from ports and a failed attempt to compile Amule2 with a dependency failing to compile; if memory serves me well I think it was cryptopp or something with pp at the end anyway. Sorry for lack of stating on here if it necessary I will find this out and post it immediately. Well just to say now that I can't mount what I used to be able to mount before. I built a little shell script so that I didn't need to use fstab from my Linux box and all I get as response is this: :~# ./BSD2.sh mount.nfs: mount system call failed Syntax in shell script is: mount -t nfs -o rw 172.16.0.200:/mnt/SATA /mnt/BSD2 I have checked the logs on the server /var/log/messages only there isn't any information at all being given?? From BSD if I try to restart or stop nfsd or mountd I get this: rd1# /etc/rc.d/nfsd stop Stopping nfsd. ^C rd1# /etc/rc.d/mountd restart which has held there for a while now meaning that it's probably crashed or something? Netstat claims everything is online: rd1# netstat -ap udp Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) udp4 0 0 *.**.* udp4 0 0 *.tftp *.* udp4 0 0 localhost.ntp *.* udp6 0 0 localhost.ntp *.* udp6 0 0 fe80:3::1.ntp *.* udp4 0 0 rd1.ntp*.* udp6 0 0 *.ntp *.* udp4 0 0 *.ntp *.* udp6 0 0 *.nfsd *.* udp4 0 0 *.nfsd *.* udp4 0 0 *.836 *.* udp6 0 0 *.836 *.* udp6 0 0 *.**.* udp4 0 0 *.653 *.* udp4 0 0 *.sunrpc *.* udp6 0 0 *.760 *.* udp6 0 0 *.sunrpc *.* udp4 0 0 localhost.domain *.* udp4 0 0 rd1.domain *.* udp4 0 0 *.syslog *.* udp6 0 0 *.syslog *.* and I don't have any firewall in place at all!! Output of uname -a: rd1# uname -a FreeBSD rd1.optiplex-networks.com 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21 15:48:17 UTC 2009 r...@almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 The system is a 32bit PIV running at 2.4GHz with 480MB of RAM. Really I'm not sure what to do if I need to upgrade NFS as one of it's dependencies has been upgraded or something else as it's just not working?? Actually I've just typed in exit after su - 'ing to root from an SSH session and the session looks like it's hung on me...?? Also I've had the system running into kernel panic and restarting a lot earlier as the load average went up is what logwatch seems to show. Can anyone help me out of this dilemma?? Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Intel DG45FC Fly Creek LGA 775 Mini-ITX system board compatibility?
Hi, I'd just like to know if the Intel DG45FC Fly Creek LGA 775 Mini-ITX system board is compatible with FreeBSD and also if there is a PCIe SATA card recommendation too as I need more SATA ports?? I plan on building a Mini-ITX based NAS/Server using a Chenbro hot-swap chassis with FreeBSD 8.0 x64 at the heart of the system so I just want to make sure that everything I buy is going to work and won't cause me any problems and make me revert to Linux which would be a drag as there's no ZFS file system and I just squared all the ZFS stuff on the FreeBSD-FS portion of the mailing list. If anyone can give me any hints, tips, or advice it would be very much appreciated!! Many thanks, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Marvell Yukon Driver for Hp notebook??
What is needed is the line just before the Vendor, with the card and chip IDs. Then compare it against the list of cards the FreeBSD msk driver supports: http://www.freebsd.org/cgi/man.cgi?query=msk&apropos=0&sektion=0&manpath=FreeBSD+8.0-RELEASE&format=html Line goes as follows: none2:pci0:133:0:0: class=0x02 card=0x30e8103c chip=0x45711ab rev=0x00 hdr=0x00 Wait, the (binary|proprietary?) driver for FreeBSD 7.0 is almost certainly not going to work on FreeBSD 8.0. Yeah I messed the system up completely now and attempted to recover it with FreeSBIE based on BSD 6.0 which doesn't even start for some strange reason. Can't mount the CD it says?? Any other system I've tried manages. I just performed a re-install.. nothing lost so is ok. Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Marvell Yukon Driver for Hp notebook??
On 03/29/2010 10:05 PM, Warren Block wrote: On Mon, 29 Mar 2010, Kaya Saman wrote: On 03/29/2010 07:20 AM, Kaya Saman wrote: Thanks for the response Warren!! Does the card show up in ifconfig? No. If not, do a 'pciconf -lv' to find out which particular hardware you have. pciconf -lv says Vendor: Marvell Semiconductor (Was Galileo Technology LTD) Class: Network Subclass: Ethernet [please don't top-post, it makes responding more work] Sorry! When you mean 'top post' do you mean writing something after replying or posting at the 'top' of the original information??? Apologies am unfamiliar with the term! What is needed is the line just before the Vendor, with the card and chip IDs. Then compare it against the list of cards the FreeBSD msk driver supports: http://www.freebsd.org/cgi/man.cgi?query=msk&apropos=0&sektion=0&manpath=FreeBSD+8.0-RELEASE&format=html I will try to obtain this tomorrow as I left the CD at work :-( Well I managed to go to Marvell and get the FreeBSD 7.0 x64 driver and use my USB key to get the driver into the machine: Wait, the (binary|proprietary?) driver for FreeBSD 7.0 is almost certainly not going to work on FreeBSD 8.0. Yeah I messed the system up completely now and attempted to recover it with FreeSBIE based on BSD 6.0 which doesn't even start for some strange reason. Can't mount the CD it says?? Any other system I've tried manages. I then installed it using the instructions provided in the README.txt file and now I can't even boot BSD any more :-( I get total kernel panic with a complete system lockup. I'm not sure if I will be able to recover from this or if I will need a total re-install but so far BSD seems completely hosed on my machine :-( You may be able to unload that kernel module before booting. If it's a kernel module; don't know. The one Marvell card I have in a notebook is supported by the open FreeBSD msk driver thanks to Pyun YongHyeon. -Warren Block * Rapid City, South Dakota USA If I could just mount the hard drive I could remove the statement in /boot/modules.conf Unfortunately all I have available to me is Linux and Windows 7 which I don't think will be much use! Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Marvell Yukon Driver for Hp notebook??
Well I managed to go to Marvell and get the FreeBSD 7.0 x64 driver and use my USB key to get the driver into the machine: mount_msdosfs /dev/da0s1 /mnt/usb I then installed it using the instructions provided in the README.txt file and now I can't even boot BSD any more :-( I get total kernel panic with a complete system lockup. I'm not sure if I will be able to recover from this or if I will need a total re-install but so far BSD seems completely hosed on my machine :-( Regards, Kaya On 03/29/2010 07:20 AM, Kaya Saman wrote: Thanks for the response Warren!! Does the card show up in ifconfig? No. If not, do a 'pciconf -lv' to find out which particular hardware you have. pciconf -lv says Vendor: Marvell Semiconductor (Was Galileo Technology LTD) Class: Network Subclass: Ethernet -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Marvell Yukon Driver for Hp notebook??
Thanks for the response Warren!! Does the card show up in ifconfig? No. If not, do a 'pciconf -lv' to find out which particular hardware you have. pciconf -lv says Vendor: Marvell Semiconductor (Was Galileo Technology LTD) Class: Network Subclass: Ethernet -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Marvell Yukon Driver for Hp notebook??
Hi guys, I've just performed a clean install of FreeBSD 8.0 on my system which is a triple boot with Win 7 and Ubuntu Linux. I did a bit of Google'ing on this subject and found various people asking the same question only for much older versions of BSD. What I have found out so far is that the driver is called msk0 I am guessing as on my other fairly similar Hp in Solaris the driver is named myk0 by the official Marvell driver. Ok different OS different name - possible and more then likely! :-) Anyhow, I just would like to know since so far my system is blind deaf and dumb, as I have no network access at all and as result no GUI as I will build it from ports; which driver I'd need and also how to install it in the machine??? With my other system and Solaris the trick was to use a USB key, of which of course the GUI was in full operation making my life a little easier then having to use the CLI to discover then mount the drive. Has anyone got any suggestions?? I have the CD1 x86_64 edition of media :-) Many thanks, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: Server set up
Hi Kaya, Firstly, just for clarity, I do know all of that, and the original poster of this thread is the one you CC'ed. Secondly (also just for clarity, I guess), most of your post is OT, as it is basically a reply to my post, and my post was OT as it was simply a reaction to the original poster's mistake of saying Linux and meaning FreeBSD. Cheers, Rolf Nielsen P.S. No, I'm not trying to be a smart arse. ;) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org" Hi Rolf, it's cool :-) I know you knew all that but just wanted to take it a bit further that's all... Please don't worry about who I sent or cc'd to as for me it was just about sending the message out. Thanks for the OTT warning was just trying to clarify and extend. Sorry it's been a while since I've been on the front foot in mailing lists and forums for a while as I personally have taken a back seat while trying to learn many new things. I really wasn't trying to get in the way but just build on. Anyway, call it a simple miscommunication on my behalf - as long as it helps the OP as that was what it was designed and intended to do!!! Regards, Kaya ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
