RE: hdd error

2004-11-29 Thread LiQuiD


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Matthias F. Brandstetter
> Sent: November 29, 2004 12:34 PM
> To: [EMAIL PROTECTED]
> Subject: Re: hdd error
>
> -- quoting LiQuiD --
> > I've installed 5.3 on the same machine (an IBM Aptiva k6-2 450) but
> > using two different hard drives, both times giving me the same
> error.
> > In both cases, I was able to install 4.10-STABLE without any
> problems.
> > I've seen several people complain about this problem on 5.3
> machines,
> > with the only solution thus far using a sysctl variable to disable
> udma
> > for the hard drive.  For some reason it seems no one (that would
> know
> > how to fix it) is acknowledging the problem, which makes finding a
> > solution even more difficult.
>
> I hava a similar problem with 5.3 and two SATA disks. I am getting:
>
> ad4: TIMEOUT - WRITE_DMA retrying (2 retries left) LBA=145402687
> ad4: FAILURE - ATA_IDENTIFY timed out
> ad4: FAILURE - ATA_IDENTIFY timed out
> ar0: WARNING - mirror lost
> ad4: deleted from ar0 disk
> ad4: WARNING - removed from configuration
> ata2-master: FAILURE - WRITE_DMA timed out
>
> How did you disable udma for your disks?

http://lists.freebsd.org/mailman/htdig/freebsd-questions/2004-November/0
63807.html

That's where I found it..

> Greetings and TIA, Matthias
>
> --
> You know, some of these stories are pretty good.  I never knew mice
> lived such interesting lives.
>
>   -- Homer Simpson
>  Itchy & Scratchy & Marge
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"




___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: hdd error

2004-11-28 Thread LiQuiD
After trying what Chuck suggested, if you're using 5.3 and it still
doesn't work don't sweat it.

I've installed 5.3 on the same machine (an IBM Aptiva k6-2 450) but
using two different hard drives, both times giving me the same error.
In both cases, I was able to install 4.10-STABLE without any problems.
I've seen several people complain about this problem on 5.3 machines,
with the only solution thus far using a sysctl variable to disable udma
for the hard drive.  For some reason it seems no one (that would know
how to fix it) is acknowledging the problem, which makes finding a
solution even more difficult.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Chuck Swiger
Sent: November 28, 2004 7:36 PM
To: Marta Resende
Cc: [EMAIL PROTECTED]
Subject: Re: hdd error

Marta Resende wrote:
> everytime i compile any program, or make world, it gives me that:
>
> ad0: WARNING - WRITE_DMA ICRC error (retrying request) LBA=74623
>
> anyone knows what's that ?thx

I'd try replacing your IDE cable.  Possibly something else is wrong,
perhaps
with your master/slave/CS jumper settings on your drive and other ATA
devices,
so double-check those too.

--
-Chuck

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"[EMAIL PROTECTED]"




___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


Soekris engineering "routers"

2004-10-30 Thread LiQuiD
Hi all,

I've noticed a few people mention this company, http://www.soekris.com
in the list now.  Their website claims they can be used with a compact
flash card.  I'm curious regarding their usage with a flash card as a
hard drive.  Has anyone successfully been able to install FreeBSD on one
of those boxes using a compact flash card?

If this were possible, I could replace my router with that, and a couple
clients' machines with something far smaller and with much less power
consumption.

Thanks,
Sandro M




___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: minor gcc 3.4 issue

2004-09-04 Thread LiQuiD
Please forgive me if there was an easy way to find this out and I'm
retarded, but uhm... how can I know if the issue brought forward in the
post last month by the person below applies to the 4.x or 5.x branch?

I have a FreeBSD system that was cvsup'd to -STABLE on jul. 24th and I'd
like to do so again in the next few weeks.  However, I'm reluctant to do
so if this new compiler is an issue as this machine is a mail server and
dns server for my network.

Thank you,
Sandro

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Robert Huff
> Sent: Friday, August 20, 2004 7:04 PM
> To: [EMAIL PROTECTED]
> Subject: minor gcc 3.4 issue
> 
> 
>   According to UPDATING:
> 
> 20040728:
> System compiler has been upgraded to GCC 3.4.2-pre. As with
> any major compiler upgrade, there are several issues to be
> aware of. GCC 3.4.x has broken C++ ABI compatibility with
> previous releases yet again and users will have to rebuild
> all their C++ programs with the new compiler.
> 
>   Is there any way to determine which programs those would be,
> short of running them and watching them break?  (I'm thinking
> something which looks at the source code or makefiles )
> 
> 
> 
>   Robert Huff
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: installed ATA RAID, now cannot boot - get mountroot prompt

2004-08-25 Thread LiQuiD
I'm by no means an expert, and thus the reason for my "crude and
unscientific" solution that I'm proposing

Seeing as you now know what it'll turn into upon adding this RAID card
to your system, why don't you try the "crude" method of undoing
everything, booting successfully, and then editing /etc/fstab
accordingly just prior to shutting it back down to allow for a
successful boot once you put the new hardware back in?

The link to the FAQ mentioned below won't work for this scenario IMO
because his /etc/fstab is currently inaccurate.  Merely typing mount /
would still generate an error.  You could however type mount /dev/da0s1e
/ perhaps to get what you want though.

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Lowell Gilbert
> Sent: Wednesday, August 25, 2004 12:15 PM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: installed ATA RAID, now cannot boot - get mountroot
prompt
> 
> "DA Forsyth" <[EMAIL PROTECTED]> writes:
> 
> > I'm searching the web for answers on this too, but so far nothing
> > useful.  hard to know what question to ask the search engines!
> 
> "I made a mistake in rc.conf, or another startup file, and now I
> cannot edit it because the filesystem is read-only. What should I do?"
>
http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/admin.html#RCCONF-
> READONLY
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: NIS on a school network - need some clarifications

2004-08-25 Thread LiQuiD
Hi Hugo,

Look to NFS to do that for you.  Here's a link to a page in the online
handbook.  NFS can do exactly what you want

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-nfs.ht
ml

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Hugo Silva
> Sent: Wednesday, August 25, 2004 10:36 AM
> To: [EMAIL PROTECTED]
> Subject: NIS on a school network - need some clarifications
> 
> Hi,
> 
> I'm working on a project to change the network on my school to open
source
> software only (FreeBSD/Linux workstations only).
> 
> I knew about NIS from readings of the handbook years ago, so I
revisited
> it today, but there' is something that's missing. I understand the NIS
> accounts reside on the master server and I have to add users on the
master
> server. But then, users on workstations will have their home
directories
> etc referring only to the local machine.
> 
> I want to have users get their home directories from a central
location
> too. Is there any 'official' process to make this work, with NIS if
> possible ?
> 
> I plan to have a 'student-shared-area' that will be NFS mounted on
every
> workstation on boot, but I want each user to have their files
available,
> wherever they login from.
> 
> Also, I assume there is no problem in using NIS accounts with X. From
the
> logic of it, there shouldn't be any problems.
> 
> A few last questions,
> 
> Since I plan to switch the whole network from windows to FreeBSD /
Linux
> (only adding linux because other people want it :-P), I'll need to
> substitute the following applications:
> 
> - Visual C++ (anjuta)
> - MS Access  (?)
> 
> I don't know much about access, but I believe it's possible to have a
> ms-access database server.. if that's the case, is there a open source
> client with a similiar GUI to ms access available ? (note: mysql/etc
won't
> do, the school program says ms access, so we need something similiar)
> 
> 
> Any insight on these issues is most welcome
> 
> Regards,
> 
> Hugo
> 
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


problem with portupgrade.. or so it seems

2004-08-24 Thread LiQuiD
Hi all,

I have a machine running 4.10 stable that has a "problem" whenever I try
to run portsdb -Uu.  The message the scrolls down the screen is as
follows:

 /usr/ports/INDEX:11586:Port info line must consist of 10 fields.

That number changes... it basically goes from 0 to that (for all I know)
as I can only go as far back as about 11300

I tried deleting the INDEX, INDEX.db files and such from /usr/ports and
running make index to generate a new one, and I keep getting this error.
I have even tried using a new tool I recently learned of here on this
list called portindex, and I get the same error, except I don't have to
wait 2 hours to see it.

I even went as far as to delete /var/db/pkg/pkgdb.db and even rm -rf
/usr/ports/* and using sysinstall to "reinstall" the ports.  I can't
avoid getting that error, and the result is portinstall simply doesn't
work because it can't find any packages.  The odd thing is that another
box had freebsd installed and upgraded to -STABLE at about the same
time, and while it at first had the same error, forcing portsdb to
reconstruct the database worked for that machine, as was suggested on
the man page.  Why on earth wouldn't it work for this other machine?

Thanks in advance for any insight into this


Sandro M. 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


Re: routing, was: Re:

2003-12-07 Thread liquid
Charles Swiger <[EMAIL PROTECTED]> said:

> Hi, Liquid--
> 
> On Dec 6, 2003, at 3:06 AM, [EMAIL PROTECTED] wrote:
> > I'm going to have a static IP - say xx.xx.yy.zz - and a subnet as 
> > follows:
> > xx.xx.xx.zz/28
> 
> Do you mean, "I am switching from a single static IP to a 16-address 
> subnet", or are you going to have both a static IP on one connection 
> AND a /28 subnet over a second connection?

Sorry I wasn't clearer on that.  I have one corporate DSL connection with a 
static IP.  Along with the static IP, I'll get an additional /28

> 
> > 1.  Do I need to inform the ISP of my intentions so that people can 
> > actually
> > connect to an IP which is part of my subnet, but behind this router I 
> > intend
> > to build? (I didn't think it was necessary until I read 19.2.5 in the
> > handbook - it doesn't seem like it's necessary based on that alone, 
> > but it
> > has placed some doubt in my mind).
> 
> No, your ISP will route IP traffic for the subnet to you.  On the other 
> hand, certainly you should talk to your ISP about your network topology 
> if you have any specific issues or questions for them.
> 
> > 2.  I currently run my FreeBSD router on a cable connection while 
> > waiting
> > for the new ISP to get setup.  I use NAT to translate the EXT. IP to 
> > the
> > internal ones of my lan.  I don't need to run nat for the setup I plan 
> > to
> > have do I?
> 
> No, you don't need NAT for IPs on your new subnet: they are "directly 
> Internet routable" if you want a buzzword.  :-)  However, you should 
> spend some time considering security and setting up a firewall.

That's what I thought.  Again I just needed someone else to say so too for 
me to be 100% certain.  The whole reason for this is in fact security.  I 
plan to do some webhosting, and also, to generate some additional revenue, 
give out a few accounts for irc bots.  You KNOW that can be alot of 
trouble ;)
I'm actually using an openbsd bridged firewall right now, have been for a 
couple of years and I like it.  Firewalling on the FreeBSD box I intend to 
use as a router will only increase the security.  Are there "tricks" 
regarding running ipf on the router that I should look into?

> 
> Sometime later, you might want to consider how to have machines on your 
> new network be able to fail-over to your single-IP connection; and one 
> way of doing so would be to use a NAT gateway of your public IPs from 
> the /28 subnet via your original connection.  [The inverse of 
> -unregistered_only.]
> 
> > 3.  Finally, I've read (briefly thus far) about routed on FreeBSD.  
> > Would
> > this daemon be used in such a way that I don't even need to add static
> > routes for LAN?
> 
> Yes, but routed is really intended for dynamic routing within an 
> intranet, and is overkill for your situation.  Specificly, you would 
> accomplish more by configuring DHCP on your FreeBSD machine and 
> broadcasting the correct default router IP than you would gain by using 
> routed.
> 
> Ping all of your machines (or use the subnet broadcast address), and do 
> an "arp -a" to get MAC addrs, then set up host sections to allocate 
> static IPs via DHCP, so your machines can all be network 
> auto-configured even if you rebuild/reinstall the OS on a particular 
> box.
> 

I think I'll just add the static routes for now.  Sounds much simpler.  
Besides, with all these IP's, I still only have 6 machines behind this 
router...

route add default gw my.isp.gateway
route add net my./28.sub.net

Those appear to be the only two route commands needed.  Of course, I can 
only know for sure once I get my connection (sometime next week) and set it 
all up.  In the future I may toy with routed just so I can know how it 
works.  each of my machines will have wireless NIC's so they can 
interconnect using non-routable addresses and so I can connect to them from 
my desktop machine locally.  Obviously I'm quite a routing nubile... my goal 
would be to setup routing so that from one machine who's address is in my 
subnet, I can connect to another machine within my subnet but ensure it's 
all done locally without going out beyond the router for two reasons: A) My 
monthly bandwidth is capped, B) It would only go at my internet connection 
speed, and not the full 10/100mbit of the LAN.

> > Again, this address is not subscribed, so please answer by putting my
> > address in the cc: field.
> 
> Done.

Thanks, and thanks also for the responses.  Very helpful :)

> 
> -- 
> -Chuck
> 
> 



-- 



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


[no subject]

2003-12-06 Thread liquid
Hi all,

(My mailserver is currently offline and this address is not subscribed, 
please cc me in all replies, thanks)

I'm waiting for my new internet connection to be setup here, and in the 
meantime I'm starting to configure my network accordingly.

I'm going to have a static IP - say xx.xx.yy.zz - and a subnet as follows: 
xx.xx.xx.zz/28

My plan is to run a FreeBSD router to have the subnet routed through the 
static IP.  I've already got the static routes I need to add figured out.  I 
still have some questions at this point (this setup is new to me):

1.  Do I need to inform the ISP of my intentions so that people can actually 
connect to an IP which is part of my subnet, but behind this router I intend 
to build? (I didn't think it was necessary until I read 19.2.5 in the 
handbook - it doesn't seem like it's necessary based on that alone, but it 
has placed some doubt in my mind).

2.  I currently run my FreeBSD router on a cable connection while waiting 
for the new ISP to get setup.  I use NAT to translate the EXT. IP to the 
internal ones of my lan.  I don't need to run nat for the setup I plan to 
have do I?

3.  Finally, I've read (briefly thus far) about routed on FreeBSD.  Would 
this daemon be used in such a way that I don't even need to add static 
routes for LAN?

Again, this address is not subscribed, so please answer by putting my 
address in the cc: field.

Thanks
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


How do I get my NIC going again using ifconfig?

2003-10-11 Thread liquid
Hi everyone,

Last night I was helping a guy out trying to install FreeBSD for the
first time.  His cable connection is DHCP and I have very little
knowledge of how to set that up since it's been so long since I've had
to do so.  The result is I went to /stand/sysinstall and "pretended" to
setup my interface through there so I'd be able to see what he was
seeing.  I chose no to IPV6, yes to DHCP.. As it's searching for a dhcp
server, I wind up getting disconnected because my interface that has the
public IP suddenly loses that IP.  Somehow, from this point forward the
inet6 IP (which is bogus, I have ipv6 installed for ipv6-ipv4 tunneling
only) takes precedence.  As such, despite all my efforts, and 3-4
re-reads of the ifconfig and route man pages, I was unable to get online
without rebooting.

Is there any other way around this in case this happens another time?  I
recall that many months ago I was tinkering with ifconfig and the same
scenario reproduced itself. I had to reboot in order to get back online.
Also, inconfig rl0 destroy doesn't appear to work.  When I'd try to
remove the inet6 address it would give me an error, something about
PROTO.localhost-v6.rev.  Sorry I can't remember more - by this time it
was already 4 AM, and it didn't appear to log anywhere unfortunately.

If anyone has any tips on how to avoid this for next time it would be
greatly appreciated.

TIA,
Sandro

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: ADSL modem & ip addresses

2003-10-10 Thread liquid


*snipped*
> 
> Actually quite a few of the SOHO DSL routers I've seen do include
> simple
> firewalling but often enough they are only configurable via a browser
> and have a kind of all or nothing stance. For fine granular control
> over
> the firewall it is hard to beat FBSD and IPFilter / IPFW for the price
> -
> it just doesn't come with a pretty web interface ( not that you
> couldn't
> build one if you had the time or the energy I suppose.
> 

You don't have to build one.  Someone already did.

I remember accidentally running into it a few months back while googling
other stuff.  I personally have no need now that I have a ruleset that I
like, I just use the same one over and over wherever I need it changing
the IP addresses where necessary
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: ADSL modem & ip addresses

2003-10-10 Thread liquid


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Ian Moore
> Sent: October 10, 2003 9:59 AM
> To: freebsd-questions
> Subject: ADSL modem & ip addresses
> 
> Hi,
> I'm organising an ADSL connection and I'm a bit confused about our
> options.
> 
> We need to provide web, ssh and mail access to our network for users
> from home
> across the Internet with an ADSL connection.
> I figure the best way to do this is to setup a new machine to act as a
> firewall and run a web server & sendmail on this box. (or I have seen
> something about using socket to divert these services to our existing
> server
> which has a private address).

It's not a wise move to run the services on the same machine as your
firewall.  You can setup an openbsd machine to serve as your firewall on
a very inexpensive old machine, running it as a gateway as well.  You
can then forward specific ports (80, 25, 110 in your case) to your
services machine running either in a DMZ or behind the firewall.
Regarding the whole diverting issue, I encourage you to google "dual
homed hosts"  I had some pretty favourites on my windows machine but I
lost them all when a hard drive died or I'd have some good ones for you.

> The firewall would have a NIC with a private IP address to connect to
> the rest
> of our network.
> 
> What's the best way then to connect it to the ADSL line?
> Do we have a second NIC in the firewall machine with a real IP address
> connected to an ADSL modem and use ppp -natd on that interface? Does
> that
> mean we'd need 2 static IP addresses - one for the firewall & one for
> the
> modem? (We really don't want to pay for 2 addresses)

If you use pppoe, you can run ppp -ddial -quiet on startup by including
that in rc.conf.  Checkout /etc/defaults/rc.conf.  I setup a machine to
act as a gateway/firewall for 5 PC's on a 3mbit dsl line once... on a
P120 and it ran flawlessly.

You don't need two IP's.  Your modem *shouldn't* have to have an IP.  If
it does, it's because it also acts as a router and hence does the pppoe
auth.  I suppose you can use that as a router instead.. it's your
network ;)  I like the flexibility my router provides me however.  It's
remarkably easy to setup as well.  Again I don't have any links right
now off-hand, but if you search for pppoe + freebsd + ipnat or something
you'll find some very good tutorials.  There was this one for a cable
connection I used as a guide the first time, and just followed the steps
from other sources for setting up PPPoE.
> 
> Or can we use a USB connection instead - are there FBSD drivers for
> ADSL
> modems? I can't see any in the supported hardware list.

AFAIK, there is no support (yet?) for a usb modem.  I don't like them
anyway - I keep my apples with my apples, my oranges with... you guessed
it, the oranges.  ADSL = network related stuff = runs on Ethernet.
> 
> Or do we use a combined modem/router device to do the nat &
> firewalling and
> have it redirect mail, web & ssh access to our main server? (is that
> possible
> or do such devices not allow access into the network from the 'net?)
> 
by default they will not.  As I said they work, but I'm not sure the
devices that are a modem + router built-in will also include
firewalling.

HTH,
Sandro

> Cheers,
> Ian
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: FreeBSD,Linux and any other os besides Microsoft.

2003-09-22 Thread liquid



> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Ajax Munroe
> Sent: September 22, 2003 10:52 PM
> To: [EMAIL PROTECTED]
> Subject: FreeBSD,Linux and any other os besides Microsoft.
> 
>   Hello,
*snipped*
> 
> Your Friend;
> 
> 
> AJAX


Don't let familiarity blur your judgement.  FreeBSD's installation is
probably one of the easiest in the *nix world.  I've setup a few linux
machines, openbsd machines and freebsd machines so I've personally dealt
with them all.  I don't find it to be much more complicated than the
windows 2000 install at all.  The issue here is that you're so used to
the windows 2000 installation, and the way it goes about doing things
that anything else seems odd, and "wrong."  I know - I felt the same way
the first time I tried to install FreeBSD.  We're creatures of habit you
know.

All the other arguments brought forth by other list members I am
absolutely in agreement with.  User-friendliness comes at a price.

*mumbles something about RPC on Windows machines*

You said, " I made a bootable CD (the best I could, It's not as easy as
making a bootable windows CD) put the cd in my rom and found that BSD is
not for me. Look, Im not trying to put BSD down or anything, I would
love to have it on my computer fully working so that I could use
something other than Windows! Im by no means bored with Windows, I find
new and exciting things out with it all the time."

I sincerely doubt you'd make a statement like this not wanting to put
down FreeBSD right where you'll find its most loyal followers, but I
won't engage in that sort of argument - I don't like giving people that
satisfaction.  I'm confused about the statement regarding the ease of
making a bootable windows CD.  Quite honestly, I think you are too.
Legally you can't "make" a windows installation CD.  You have to buy
one.  Creating a disc from an iso (or bin/cue - for an illegal windows
disc) is a pretty brain-dead type of function.

Lastly, where's the fun in putting in a CD and walking away for coffee,
and having a system that works when you return?  Knowing how to do that
doesn't necessarily mean you are computer literate.  The beauty of
open-source is the fact that you feel this sense of accomplishment after
setting something up because it's more hands-on.  An analogy would be
the guy who buys a Ferrari, but has no idea about the internals - and
probably doesn't know how to drive it fast anyway Vs the guy who buys a
cheap little hatchback (say a golf) and modifies things here and there,
gets a "hands-on" feeling about it and turns it into a machine that can
do laps (likely) faster than someone who doesn't drive as well in a
Ferrari.  I prefer to be the latter of the two.  Others prefer the
approach of the former.

To each his own.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: question on cvsup

2003-09-21 Thread liquid

To be completely honest, I don't think it's good "practise" to use cvsup
to go from freebsd 4-series to freebsd 5.

I use cvsup all the time to stick to the latest -STABLE branch.  Others
use the -CURRENT branch.  If I were to setup a machine and then decide I
wanted to use the new 5.1 I'd probably tarball /etc, /usr/local/,
/usr/home and /var/qmail and throw them on CD or something and just
start from scratch.  Of course this is my own opinion, and everyone will
share with you different thoughts on this.  I don't know for a fact that
using cvsup will break anything, I just go by the fact that it's
entirely a new release from the ground up and has many different things.

HTH,
Sandro

> 
> ALIAS wrote:
> >
> > i read the manual that came with my freebsd4 package. and i see on
> the
> > website that there's a freebsd5, i want to use cvsup to update my
> system to
> > version 5, and i don't know how to do that, the manual doesn't
> explain it
> > well. can someone help me?
> 
> In the supfile that you use with cvsup, there's a line similar to
> "*default release=cvs tag=RELENG_4_8".  This specifies which version
> of
> the sources you want to sync to.  The handbook has a list of all the
> tags at
>  tags.html>
> 
> But you should also be aware that 5.x (aka CURRENT) is not for
> everyone,
> you should read the handbook section at
>  stable.html>
> that discusses who should use STABLE and who should use CURRENT.
> 
> Brian
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


Migrating to BIND 9 (WAS: RE: BIND fix for VeriSign's unregistered domain redirections?)

2003-09-20 Thread liquid


> > Also, anyone know of a workaround for BIND 8 at this time?  If I
> were to
> > simply install bind9 on my system from the ports, does it in fact
> simply
> > overwrite the "default" installation included with FreeBSD?
> 
> No.  It installs it under /usr/local.
> 

Ok, Stupid question now.  I'm just really concerned about breaking my
dns server because it means I'll stop receiving mail to 3 domains.  I
also don't have a spare machine right now I can "toy" with.  If I go
ahead and portinstall bind9 - will I still be able to start bind up
using rc.conf (by changing "named_program=..") or does some .sh script
get placed into /usr/local/etc/rc.d ?  

Also, the existing named.conf I've written... will it work if I make it
really simplified(for now - I know that bind 9 adds new functionality so
eventually I'd find myself tweaking that a little)?

Thanks in advance for any insight.


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: BIND fix for VeriSign's unregistered domain redirections?

2003-09-18 Thread liquid
Any fix for BIND 8 in the near future?

Also, anyone know of a workaround for BIND 8 at this time?  If I were to
simply install bind9 on my system from the ports, does it in fact simply
overwrite the "default" installation included with FreeBSD?

Right now, I've blocked off verisign's IP.  I don't know how effective
that is though.

Thanks,
Sandro M

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Eugene Lee
> Sent: September 18, 2003 9:42 PM
> To: [EMAIL PROTECTED]
> Subject: BIND fix for VeriSign's unregistered domain redirections?
> 
> The problem:
> 
>   http://news.com.com/2100-1032_3-5077530.html
> 
> The fix:
> 
>   http://www.isc.org/products/BIND/delegation-only.html
> 
> The question:
> 
>   How soon can we expect the fix in CVS?
> 
> Thanks in advance!
> 
> 
> --
> Eugene Lee
> eugene at fsck dot net
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: FreeBSD 5.1 i386 not allowing incoming ftp connects?

2003-09-02 Thread liquid
It is turned on *IF* you say so during the install.  What does or does
not run by default is actually determined by /etc/defaults/rc.conf.
/etc/rc.conf is an override file, if you will.

My guess here is that if you choose not to use the "internet super
server" during the installation, it alters the rc.conf located in
/etc/defaults rather than adding a line in /etc/rc.conf to disable
inetd.

Sandro


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Peter Ulrich Kruppa
> Sent: September 2, 2003 12:35 AM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED];
> [EMAIL PROTECTED]
> Subject: Re: FreeBSD 5.1 i386 not allowing incoming ftp connects?
> 
> On Tue, 2 Sep 2003 [EMAIL PROTECTED] wrote:
> 
> > Hmm... funny, i have thought that inetd_enabled="YES" was default
> regardless
> > if it's in rc.conf or not. Because even it it's not in rc.conf, you
> can
> > still see it running when you ps -ax  (/usr/sbin/inetd -wW). I have
> my pop3
> > (which requires editing the inetd.conf) working even if that line is
> not in
> > my rc.conf.
> 
> THE Handbook -
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/inetd.html
> - says:
>   inetd is initialized through the /etc/rc.conf system. The
>   inetd_enable option is set to ``NO'' by default, but is often
>   times turned on by sysinstall with the medium security profile.
>   Placing:
> 
>   inetd_enable="YES"
> 
>   or
> 
>   inetd_enable="NO"
> 
>   into /etc/rc.conf can enable or disable inetd starting at boot
>   time.
> 
> But you are right, I could swear it was always turned by default.
> Regards,
> 
> Uli.
> 
> 
> >
> >
> > - Original Message -
> > From: <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Cc: <[EMAIL PROTECTED]>
> > Sent: Tuesday, September 02, 2003 9:29 AM
> > Subject: Re: FreeBSD 5.1 i386 not allowing incoming ftp connects?
> >
> >
> > > As it turns out, a one liner:   inetd_enabled="YES"
> > > added to rc.conf caused it to come up correctly.
> > >
> > > Now it is running fine!  Thanks all
> > >
> > > Bob Keys
> > > ___
> > > [EMAIL PROTECTED] mailing list
> > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > > To unsubscribe, send any mail to
> > "[EMAIL PROTECTED]"
> > >
> > >
> >
> > ___
> > [EMAIL PROTECTED] mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"
> >
> 
>   +---+
>   |Peter Ulrich Kruppa|
> | Wuppertal |
> |  Germany  |
> +---+
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: Approved

2003-08-23 Thread liquid
LOL!

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Barbara Griffin
> Sent: August 23, 2003 2:59 AM
> To: [EMAIL PROTECTED]
> Subject: Re: Approved
> 
> You have a virus.
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: how to install on fbsd 4.8 new version of KDE?

2003-08-17 Thread liquid
You can always install portinstall from the ports.  Then cvsup your
ports tree regularly and run ports db -Uu (or something similar, I can't
recall right now - it's in the portinstall man page) and simply type:

Portupgrade kde

And it'll go through the whole thing.  Be warned, it can take a LONG
time to compile and stuff.  On my athlon 800 it took something like 12
hours to go from 3.1.1 to 3.1.2

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Adam McLaurin
> Sent: August 17, 2003 10:57 AM
> To: [EMAIL PROTECTED]
> Subject: Re: how to install on fbsd 4.8 new version of KDE?
> 
> On Sun, 2003-08-17 at 10:28, Denis wrote:
> >   Does anybody know how can i to install on fbsd 4.8 new version of
> >   KDE, such as in fbsd 5.1
> >   Or it's impossible?
> 
> You'll need to first cvsup your ports tree, then install the KDE
> meta-port (x11/kde3).
> 
> Here's how I update my ports:
> #!/bin/sh
> 
> CVSUP_MIRROR=cvsup16.FreeBSD.org
> OUTDATED_LOG=/home/eskimo/logs/outdated.ports.txt
> CVSUP_SUPFILE=/usr/share/examples/cvsup/ports-supfile
> 
> /usr/local/bin/cvsup -h $CVSUP_MIRROR -P - -g -L 2 $CVSUP_SUPFILE
> /usr/local/sbin/pkgdb -aF
> cd /usr/ports
> /usr/bin/make -v index
> /usr/local/sbin/portsdb -u
> /usr/local/sbin/portsclean -C
> /usr/local/sbin/pkgdb -u
> /usr/local/sbin/portversion -v |/usr/bin/fgrep "needs" >$OUTDATED_LOG
> 
> 
> Note that you'll need net/cvsup-without-gui and sysutils/portupgrade
> to
> run my script.
> 
> Read the Handbook for more information about updating your ports tree
> 
> --
> Adam McLaurin <[EMAIL PROTECTED]>

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: ipfilter - port forward question

2003-08-14 Thread liquid

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Darryl Hoar
> Sent: August 8, 2003 2:38 PM
> To: 'Mike Maltese'
> Cc: [EMAIL PROTECTED]
> Subject: RE: ipfilter - port forward question
> 
> Well,
> it does in fact use udp.  Here is what I have done.
> 
> Added to /etc/ipfilter.rules
> 
> pass in quick on ep0 proto tcp from any to any port = 31240 keep state

you *did* infact mean to say "pass in quick on ep0 proto udp from (etc)

> 
> Added to /etc/ipnat.rules
> 
> rdr ep0 0/0 port 31240 -> 192.168.1.35 port 31240 udp

This appears to be OK.

>
 
> 
> first question.
> I can reload the ipfilter rules with the
>   ipf -Fa -f /etc/ipfilter.rules

you certainly can

> 
> how do I reload the ipnat rules ?
> 
> I tried ipnat -F then
> ipnat -f /etc/ipnat.rules.

Try ipnat -Cf -f /etc/ipnat.rules

> 
> But when I did a ipnat -l  it showed that it
> just added the new rdr (so I had two listed).
> 
> I rebooted.
> 
> External users still couldn't connect.  So, I create a new
> ipfilter.rules file with:
>   pass in quick on ep0 all keep state
>   pass out quick on ep0 all keep state.
> 
> reloaded the filewall rules.  Users tried to connect but couldn't.
> I looked at the nat table I saw:
> 
> map 192.168.1.35 1256 <- -> 24.225.33.88 1256 [24.225.17.163 5101]
> rdr 192.168.1.35 31240 <- -> 24.225.33.88 31240 [24.225.17.163 1131]
> 
> 
> 
> I feel I'm close.  What am I missing/screwing up ?
> 
> thanks,
> Darryl
> Freebsd 4.7S

OK, you must be close.  I'm not entirely sure why that wouldn't be
working using the firewall rules you mentioned after rebooting.  I've
never forwarded anything other than tcp though for basic stuff like www,
smtp etc... so I'm unsure if ipnat is picky about udp traffic.  I know
that on my ipnat.rules I have this line, unclear though if this would
make a difference:

map dc0 192.168.0.0/24  -> xx.xx.xx.xx/32  portmap tcp/udp 3:5

I strongly suggest you look at this site... I like to think I'm quite
good with ipf/ipnat, and it's solely because of the knowledge of it I
got out of the whitepaper located there.

www.obfuscation.org/ipf

HTH,
Sandro

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: Problems with Apache+ssl

2003-07-29 Thread liquid
You aren't running any sort of httpd.

What do you do to start it?

Try apachectl startssl.

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of Daryl Hunt
> Sent: July 29, 2003 11:55 PM
> To: William Knechtel
> Cc: [EMAIL PROTECTED]
> Subject: Re: Problems with Apache+ssl
> 
> 
> - Original Message -
> From: "William Knechtel" <[EMAIL PROTECTED]>
> To: "Daryl Hunt" <[EMAIL PROTECTED]>
> Sent: Tuesday, July 29, 2003 9:34 PM
> Subject: RE: Problems with Apache+ssl
> 
> 
> > When you run a ps ax|grep http what are the results?
> 
>  6598  p0  S+ 0:00.01 grep http
> 
> 
> >
> > Do you get ANY page (i.e. the default "it worked" page), and if not,
> what
> is
> > the error your browser gives you?
> 
> No page whatsoever.  It's the standard DNS (can't find nothun) page.
> 
> 
> >
> > what happens when you try telnetting to localost port 80 and port
> 443?
> 
> Same thing.  It just does the "Can't find it" page.
> 
> 
> >
> > > -Original Message-
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED] Behalf Of Daryl
> Hunt
> > > Sent: Tuesday, July 29, 2003 9:25 PM
> > > To: [EMAIL PROTECTED]
> > > Subject: Problems with Apache+ssl
> > >
> > >
> > >  am having a bear of a time getting apache+ssl to run on the
> system.  It
> > > installs fine but I can't seem to get a page to display using
> > > localhost, the
> > > ipnumber or the Domain name.
> > >
> > > I come from the Windows World where it works right out of the box
> so
> bare
> > > with me.
> > >
> > > I run httpsd and it seems to load.  I edited the httpd.conf with
> > > the correct
> > > entries as far as I can see.
> > >
> > > But it still will not run a page in the browser.
> > >
> > >
> > >
> > >
> > > ___
> > > [EMAIL PROTECTED] mailing list
> > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > > To unsubscribe, send any mail to
> > > "[EMAIL PROTECTED]"
> > >
> >
> >
> 
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: named.conf et al and home network segments

2003-07-29 Thread liquid
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED] On Behalf Of David S. Jackson
> Sent: July 29, 2003 6:10 PM
> To: [EMAIL PROTECTED]
> Subject: named.conf et al and home network segments
> 
> Hi,
> 
> I'm trying to setup dns for my two home network segments,
> 192.168.0/24 and 192.168.1/24.  I just need internal dns access,
> no outside access.
> 
> It sounds like a relatively simple problem, but I'm just not sure
> how to go about it.  Do I just set up 2 reverse zones,
> 0.168.192.in-addr.arpa and 1.168.192.in-addr.arpa in named.conf?
> Then put all the A records for both segments in the db.dsj.net
> zone file?
> 
> Or should I create a separate name server for each segment?
> 
> I'd like the internal (192.168.1/24) segment to be able to access
> all servers on the external segment (192.168.0/24), but not allow
> any of the external services to query the internal.  Does that
> mean I need two dns servers?
> 


You don't need to setup two servers.  You can simply create two reverse
zones for each of those networks.  Something like this (I just did a
quick copy paste, so most of this will not apply to you, be warned!)

zone "0.168.192.in-addr.arpa" in {
type master;
file "db.192.168.0";
allow-query { 192.168.0.1/16; };
};

followed by...

zone "1.168.192.in-addr.arpa" in {
type master;
file "db.192.168.1";
allow-query { 192.168.0.1/16; };
};

Of course, replace db.192.168.x with whatever you named your files. 

Also look at
http://www.freebsd.org/cgi/man.cgi?query=named.conf&apropos=0&sektion=0&;
manpath=FreeBSD+4.8-RELEASE&format=html#ADDRESS+MATCH for more on
"allow-query"

Hope this helps you,

Sandro

> David S. Jackson[EMAIL PROTECTED]
> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> I don't deserve this award, but I have arthritis and
> I don't deserve that either.
>   -- Jack Benny
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> [EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: named.conf et al and home network segments

2003-07-29 Thread liquid
You don't need to setup two servers.  You can simply create two reverse
zones for each of those networks.  Something like this (I just did a
quick copy paste, so most of this will not apply to you, be warned!)

zone "0.168.192.in-addr.arpa" in {
type master;
file "db.192.168.0";
allow-query { 192.168.0.1/16; };
};

followed by...

zone "1.168.192.in-addr.arpa" in {
type master;
file "db.192.168.1";
allow-query { 192.168.0.1/16; };
};

Of course, replace db.192.168.x with whatever you named your files. 

Also look at
http://www.freebsd.org/cgi/man.cgi?query=named.conf&apropos=0&sektion=0&;
manpath=FreeBSD+4.8-RELEASE&format=html#ADDRESS+MATCH for more on
"allow-query"

Hope this helps you,

Sandro

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of David S.
Jackson
Sent: July 29, 2003 6:10 PM
To: [EMAIL PROTECTED]
Subject: named.conf et al and home network segments

Hi,

I'm trying to setup dns for my two home network segments,
192.168.0/24 and 192.168.1/24.  I just need internal dns access,
no outside access.

It sounds like a relatively simple problem, but I'm just not sure
how to go about it.  Do I just set up 2 reverse zones,
0.168.192.in-addr.arpa and 1.168.192.in-addr.arpa in named.conf?
Then put all the A records for both segments in the db.dsj.net
zone file?

Or should I create a separate name server for each segment?

I'd like the internal (192.168.1/24) segment to be able to access
all servers on the external segment (192.168.0/24), but not allow
any of the external services to query the internal.  Does that
mean I need two dns servers?  

-- 
David S. Jackson[EMAIL PROTECTED]
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
I don't deserve this award, but I have arthritis and
I don't deserve that either.
-- Jack Benny
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"[EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: hi

2003-07-29 Thread liquid
Don't be afraid to use the very good documentation you have at your
disposal before making people on the mailing list think for you...

There's a very clear and concise description of how to use cvsup at
freebsddictionary.org.  Look at it and modify to suit your preferences.

Thanks.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of marlon
corleone
Sent: July 23, 2003 9:49 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: hi

*default host=cvsup.sk.freebsd.org
*default base=/usr prefix=/usr
*default release=cvs tag=RELENG_5
*default delete use-rel-suffix compress

src-all
ports-alltag=.


Akira# uname -a
FreeBSD Akira.Kurosawa.jp 5.1-RELEASE FreeBSD
5.1-RELEASE #2: Tue Jul 22 19:12:00 PHT 2003
[EMAIL PROTECTED]:/usr/src/sys/i386/compile/MARLON
 i386


this is my ports-supfile, is this config file correct?
is this entry applicable also to other supfiles, like
cvs-supfile, standard-supfile, stable-supfile.

thanks

__
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"[EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


RE: Is there any way to disable passive mode on ftpd?

2002-12-03 Thread Liquid
Now I don't know if that's a result of using a certain NAT setup vs
another, but I'm using ipnat + ipfilter, and I had ftp forwarded to a
windows box, and it worked fine for ftp, setting ports 10010-1030 for
passive mode.  I then decided to play with ncftpd on a linux box a while
back, and it too worked, using the same ports and such.  When the NAT
does its "thing", if I'm to understand this correctly, the ftp will
think that anything coming in is coming from the gateway anyway... so
its ok if it's the LAN IP's.. or something like that.  I'm going to read
through the ipfilter whitepaper again and find exactly what was said
there.  (If you're using ipf already, you really must look at
www.obfuscation.org/ipf )


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED]] On Behalf Of Alvaro Gil
> Sent: December 3, 2002 11:46 AM
> To: [EMAIL PROTECTED]
> Subject: RE: Is there any way to disable passive mode on ftpd?
> 
> >If that's not possible, I guess I need to know the same thing as
> Alvaro
> >here was asking...
> 
> The other problem is that when it goes into passive mode, the ip
> changes form a global one to the local ip the machine is on!  So it
> really only works well on the local network
> --
> 
> Alvaro Gil
> http://www.AlvaroGil.com
> '84 Volvo 242 Turbo (Silver) 15 psi
> '97 Leopard Gecko (White, Yellow, Black)
> NJIT Mechanical Engineering Student
> 
> 
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: Is there any way to disable passive mode on ftpd?

2002-12-03 Thread Liquid
Sorry Alvaro, I forgot to send this to the list... oops.

> -Original Message-
> From: Liquid [mailto:[EMAIL PROTECTED]]
> Sent: December 3, 2002 11:39 AM
> To: 'Alvaro Gil'
> Subject: RE: Is there any way to disable passive mode on ftpd?
> 
> I have a better question perhaps...
> 
> Is it possible to set specific ports for passive mode on the ftpd?
> Though it is possible to simply rdr the ports to the machine running
> this anonymous ftp, I don't think it would be wise to redirect ports
> in that range as they are often used by other services aren't they?
> 
> If that's not possible, I guess I need to know the same thing as
> Alvaro here was asking...
> 
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> > [EMAIL PROTECTED]] On Behalf Of Alvaro Gil
> > Sent: December 3, 2002 10:36 AM
> > To: [EMAIL PROTECTED]
> > Subject: Is there any way to disable passive mode on ftpd?
> >
> > My server is behind a NAT firewall until I have time to put it in
> > front of it.  People are having trouble downloading from the
> > anonymous FTP server.
> >
> > I understand that normal the ftp sever goes into passive mode and
> > opens a new port in the high 1000-5000 ranges.  How can i force it
> to
> > use port 21 for all connections?  Even though I urged everyone to
> set
> > their clients correctly, some people cannot do so.
> >
> > Some people are having trouble with this movie.  I cannot assume
> > everyone knows what they are doing, I would like to set up a
> > fail-safe downloading point.
> > ftp://alvarogil.com/pub/muni/TourneMuniS3MPG4.mov
> >
> > Thanks.!
> > --
> > 
> > Alvaro Gil
> > http://www.AlvaroGil.com
> > '84 Volvo 242 Turbo (Silver) 15 psi
> > '97 Leopard Gecko (White, Yellow, Black)
> > NJIT Mechanical Engineering Student
> > 
> >
> > To Unsubscribe: send mail to [EMAIL PROTECTED]
> > with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: ARP flood = Firewall locks up???

2002-11-27 Thread Liquid
That 10.0.whatever crap is from your modem.  When I had a box running on
cable, I'd see a horrific amount of that crap in my logs.  It never
caused my firewall to stop working mind you.  Mine, for instance was
10.0.80.31 - which, it appears, was my modem's "IP address" although I
do not recall seeing it in traceroutes (this was several years ago, so
don't take my word for it - best thing to do is to check your traceroute
to say... yahoo.com and see what comes up as first gateway).  Why this
is so? I can't answer that.  My present adsl modem has a fixed IP,
specifically to telnet to in the event I want to use it as a router - I
haven't logged the interface because I know firewall tun0, but I'd bet
I'd see a lot of junk on the NIC interface acting as the pppoe transport
if I'd log it...

Are you assigned a static IP or is it dhcp?  I used to get an arp msg
and stuff when someone was mistakenly typing my IP as his static IP, a
typo caused both of us to share the IP - except that obviously didn't
work out quite nicely.  I was being assigned the IP via DHCP - and their
dhcp server kept giving me xx.yy.ab.ab and the guy's static IP was
xx.yy.ab.ba... u can see where he made his typo

Just something to think about...

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED]] On Behalf Of Kevin D. Kinsey, DaleCo, S.P.
> Sent: November 27, 2002 4:07 PM
> To: Mark; [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: ARP flood = Firewall locks up???
> 
> From: "Mark" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: ARP flood = Firewall locks up???
> 
> 
> > Hi!
> >
> >Not being a terribly monstrous expert with FreeBSD firewalls, I
> was
> > quite relieved when I managed to get my FreeBSD 4.3 machine up and
> > running with a "simple" firewall and NAT for my subnet to my local
> cable
> > modem provider.
> >
> >The firewall configuration was, indeed, the pure 'simple', with
> a
> > couple of extra rules to allow DNS (udp to and from 53).
> >
> >Now, the problem is, about three weeks ago, I started seeing a
> FLOOD
> > of ARP messages on xl0, my interface to the internet over the cable
> > modem.  They are mostly of the nature:
> >
> 
> 
> >Questions:
> >
> >1. Any ideas what this ARP flood is?  Is it some tool the ISP is
> > using or something?
> >
> Looks like common DNS traffic, up to a point.  It is quite a bit,
> I suppose, since your log excerpt is just a few seconds worth.
> 
> Is this a firewall log we're looking at, or a tcpdump?  If you use
> 'tcpdump' on the WAN if, you're getting your neighbors packets
> also, right?  You mention not being able to get more infocheck
> most of the
> files in /var/log...anything showing up on the console, or it that
> directed to a text log.?
> 
> What services are you running on your own subnet...I don't
> find a DNS server there
> 
> I wonder about the 10.x.x.x addysomething wrong
> in someone's config, perhaps...
> 
> >2. Any idea what's up with the firewall?  Why would it be
> locking
> > up?  I must confess to being a bit of a firewall newbie, so i'm not
> 100%
> > sure how to go about getting it to give me more information,
> logging,
> > etc ...  I might just upgrade to 4.7 and see what happens, but I'd
> > rather understand this first 
> >
> I'm newb also, but are we sure it's just the firewall?  If you're
> rebooting to fix the problem, you're resetting more than just
> the FW.
> 
> 
> >Any suggestions would be appreciated...
> >
> >Thanks,
> >mark.
> 
> That's about all I've done, suggested...
> 
> G'luck, Kevin Kinsey
> 
> 
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: Find abandoned packages

2002-11-21 Thread Liquid
If you check out /var/db/pkg it lists what ports are installed
essentially.  I don't know how to tell whether or not it’s a dependency
though, so maybe someone else can answer that.  I'd like to know that
too come to think of it.

-SM

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:owner-freebsd-
> [EMAIL PROTECTED]] On Behalf Of Pascal Giannakakis
> Sent: November 21, 2002 8:00 AM
> To: [EMAIL PROTECTED]
> Subject: Find abandoned packages
> 
> Lo folks,
> 
> how do you find installed ports / packages on your system, that are
> not
> required by
> others?
> 
> Thanx.
> 
> 
> --
> +++ GMX - Mail, Messaging & more  http://www.gmx.net +++
> NEU: Mit GMX ins Internet. Rund um die Uhr für 1 ct/ Min. surfen!
> 
> 
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-questions" in the body of the message


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: Your experiences using PPPoE

2002-11-14 Thread Liquid
Ah, something like this should work.  I've tried so many different
things but in the end, the problem remains that the system itself does
not know that tun0 no longer works and I have to manually restart ppp.
This essentially does it.  The other guy who replied also had good
ideas, but all those are on the assumption that FreeBSD notices the link
is down... I'm guessing it's the only reason it hasn't worked for me.

I've tried using "set reconnect x x" in ppp.conf - if that doesn't work
there's a serious problem as its sole purpose is to redial/reconnect
(whatever) as soon as the link is down - which it has failed to do,
given the link is never "down" according to ifconfig anyway.

Thanks a lot Tim,

Sandro

> -Original Message-
> From: Timothy L. Robertson [mailto:timothyr@;timothyr.com]
> Sent: November 14, 2002 1:55 PM
> To: Liquid; FreeBSD Questions
> Subject: Re: Your experiences using PPPoE
> 
> Sandro,
> 
> Attached are a set of shell scripts I use to ping a number of sites
> occasionally, and restart the PPPoE connection if they all fail.
> (This is
> on Mindspring DSL over Covad.)  This has run for months unattended on
> a low
> volume machine, keeping my connection up whenever Mindspring has its
> act
> together.
> 
> There's probably a more elegant way to do this, but the idea is that
> ppp.linkup.sh calls nettest.sh, which calls pingsites.sh.  Pingsites
> tries
> to reach a number of high reliability sites, and only fails if all the
> sites
> are down.  If pingsites fails, it calls reconnect.sh, which kills the
> old
> ppp and nettest processes, and tries to get new ones running.  I think
> it
> should all just work if you put it in /etc/ppp, but no guarantees.
> Also, at
> any time you can reset your ppp connection by typing
> /etc/ppp/reconnect.sh &
> as root.
> 
> -Tim
> 
> On 11/14/02 9:20 AM, "Liquid" <[EMAIL PROTECTED]> wrote:
> 
> > I'm just looking to see how others connect their FreeBSD machine to
> the
> > internet around here if they have a PPPoE connection.  I thought
> mine
> > was ok, as I never would be offline with one ISP (up to 5 weeks),
> but
> > now I've changed ISP and my machine is no longer able to realize
> that
> > the ppp link is down and needs to be renegotiated.  I'm especially
> > interested in knowing what 3rd party programs people use.  For the
> > networking guru's: I know for a fact my former ISP did not go 5
> weeks
> > straight without dropping my connection, they sent mail regarding
> > downtime for repairs twice in that period.  Is there something about
> one
> > isp vs another one that can keep my machine from noticing when the
> > connection is lost?
> >
> > Here is my ppp.conf:
> >
> > FIREWALL# ee /etc/ppp/ppp.conf
> >
> > default:
> > ident user-ppp VERSION (built COMPILATIONDATE)
> > set device PPPoe:rl0
> > set mru 1492
> > set mtu 1492
> > set timeout 0
> > set log Phase Chat Connect LCP IPCP CCP tun command
> > set ifaddr 1.1.1.1/0 1.1.1.2/0 255.255.255.0 0.0.0.0
> > set cd 5
> > set crtscts on
> > enable dns
> >
> > pppoe:
> > # set mode dedicated
> > set authname **@magma.ca
> > set authkey *
> > set dial
> > set login
> >
> > in my rc.conf, I've set it to connect on startup, in dedicated mode,
> and
> > tried ddial today as well, running the process as root.  I also have
> a
> > ppp.linkup:
> >
> > MYADDR:
> > Add 0 0 HISADDR
> >
> > If anyone sees room for improvement, or knows where I can inform
> myself
> > on creating a neat hangup script that can kill the ppp process and
> fire
> > up a new one, by all means let me know
> >
> > Thanks,
> >
> > Sandro M.
> >
> >
> > To Unsubscribe: send mail to [EMAIL PROTECTED]
> > with "unsubscribe freebsd-questions" in the body of the message
> >
> >



To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



Your experiences using PPPoE

2002-11-14 Thread Liquid
I'm just looking to see how others connect their FreeBSD machine to the
internet around here if they have a PPPoE connection.  I thought mine
was ok, as I never would be offline with one ISP (up to 5 weeks), but
now I've changed ISP and my machine is no longer able to realize that
the ppp link is down and needs to be renegotiated.  I'm especially
interested in knowing what 3rd party programs people use.  For the
networking guru's: I know for a fact my former ISP did not go 5 weeks
straight without dropping my connection, they sent mail regarding
downtime for repairs twice in that period.  Is there something about one
isp vs another one that can keep my machine from noticing when the
connection is lost?

Here is my ppp.conf:

FIREWALL# ee /etc/ppp/ppp.conf

default:
 ident user-ppp VERSION (built COMPILATIONDATE)
 set device PPPoe:rl0
 set mru 1492
 set mtu 1492
 set timeout 0
 set log Phase Chat Connect LCP IPCP CCP tun command
 set ifaddr 1.1.1.1/0 1.1.1.2/0 255.255.255.0 0.0.0.0
 set cd 5
 set crtscts on
 enable dns

pppoe:
 # set mode dedicated
 set authname **@magma.ca
 set authkey *
 set dial
 set login

in my rc.conf, I've set it to connect on startup, in dedicated mode, and
tried ddial today as well, running the process as root.  I also have a
ppp.linkup:

MYADDR:
 Add 0 0 HISADDR

If anyone sees room for improvement, or knows where I can inform myself
on creating a neat hangup script that can kill the ppp process and fire
up a new one, by all means let me know

Thanks,

Sandro M.


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



resent - in txt format - using PPP to establish a PPPoE connection - won't renew if connection is dropped

2002-11-14 Thread Liquid
Sorry everyone, forgot to convert to txt before sending this, so I'll
resend

I'm having this huge problem:  I have adsl, and I connect using that
PPPoE garbage.  I also just changed ISP for a less expensive one, and
I'm beginning to realize why its less expensive.  I'm running a machine
with FreeBSD 4.7 stable on it and whenever it gets disconnected (about
twice daily, believe it or not) it can't seem to "realize" that such is
the case and thus never reconnects to get a new IP.  Does anyone have
any idea what I can do to fix this?  Whenever I'm not around, and this
happens, I have to go out of my way to drive to where this box is
located to reboot it.  It's the only way I'm able to force it to
reconnect.

TIA



To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: Bare minimum requirements for FreeBSD installation

2002-10-01 Thread Liquid

Actually I am waiting on an auction to end.  For some reason I never
thought of looking on ebay, and I hit the jackpot there... 64mb of 30pin
simms!

Where can I get more info on this picobsd though?

>-Original Message-
>From: Gary W. Swearingen [mailto:[EMAIL PROTECTED]]
>Sent: October 1, 2002 10:31 PM
>To: Doug Poland
>Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
>Subject: Re: Bare minimum requirements for FreeBSD installation
>
>"Doug Poland" <[EMAIL PROTECTED]> writes:
>
>> sshd, ipfw, and natd on a RoadRunner cable modem.  My only problem
>> is the disk is so small I can't do an installworld to keep up with
>> -STABLE.
>
>Consider running picoBSD off a floppy with or without a hard disk
>(eg, for log files).  It was quite easy/fast to get going and you can
>easily keep it as current as the system you build it on (which is
>not the systemn you would run it on).
>
>
>I suspect that picoBSD would run on an 8 MB computer, but I don't know.
>
>I hope the original poster has considered just finding an old computer
>with 16 MB; I've bought them for 5 $US from local government surplus.


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



RE: Bare minimum requirements for FreeBSD installation

2002-10-01 Thread Liquid

Thanks everyone for your input.  Hopefully my cousin will take some
interest in the box and he'll start messing with it until it breaks, so
I can start learning again.  My machine hasn't "broken" in months, its
nearly boring now ;)

>-Original Message-
>From: Fernando Gleiser [mailto:[EMAIL PROTECTED]]
>Sent: October 1, 2002 9:53 PM
>To: Liquid
>Cc: [EMAIL PROTECTED]
>Subject: Re: Bare minimum requirements for FreeBSD installation
>
>On Tue, 1 Oct 2002, Liquid wrote:
>
>> Hey everyone.  A family member asked me to setup a gateway in his
>house
>> so that the internet can be shared between a couple of tenants.  I
>> realize it can be very easily done using a router, but I have this
>> 486dx2 50mhz at home with 8mb ram.  It has a 300mb and 640mb hd in it
>> too.  If I only wish to run a simple router setup using ipfilter and
>> ipnat, will it run FreeBSD? The only other services running being ssh
>> and perhaps ftp and I couldn't care less about how fast it runs, as
>long
>> as it "does its job" adequately.  One other thing, seeing as it'll be
>> sharing PPPoE adsl, I'll have PPP running in dedicated mode at all
>> times.
>
>My home firewall is an old 486DX 50 MHz with 16 MB RAM. It runs
>ipf/ipnat/
>ipmon and uses DHCP to get its IP addr.
>
>>
>> The reason I'm asking is because it only has 30-pin simm ram slots,
>and
>> I haven't even seen any for sale anywhere, nevermind whether or not
>its
>> close to reasonable.  I realize that if it would have 16 MHz it would
>> probably run just fine.
>
>I think you need at least 12 MB RAM to install FreeBSD, but it runs
>with
>8. You can try searching EBay, or getting more RAM for other discarded
>PCs :)
>
>
>   Fer
>>
>> That brings the list of stuff running to
>> ppp -d
>> ftpd (maybe, I might just use the old burn a cdrom and drive over
>method
>> instead)0
>> openssh
>> ipnat
>> ipfilter
>>
>> Any comments more than welcome.
>>
>>
>> Thanks,
>> Sandro M.
>>
>>
>> To Unsubscribe: send mail to [EMAIL PROTECTED]
>> with "unsubscribe freebsd-questions" in the body of the message
>>


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message



Bare minimum requirements for FreeBSD installation

2002-10-01 Thread Liquid

Hey everyone.  A family member asked me to setup a gateway in his house
so that the internet can be shared between a couple of tenants.  I
realize it can be very easily done using a router, but I have this
486dx2 50mhz at home with 8mb ram.  It has a 300mb and 640mb hd in it
too.  If I only wish to run a simple router setup using ipfilter and
ipnat, will it run FreeBSD? The only other services running being ssh
and perhaps ftp and I couldn't care less about how fast it runs, as long
as it "does its job" adequately.  One other thing, seeing as it'll be
sharing PPPoE adsl, I'll have PPP running in dedicated mode at all
times.

The reason I'm asking is because it only has 30-pin simm ram slots, and
I haven't even seen any for sale anywhere, nevermind whether or not its
close to reasonable.  I realize that if it would have 16 MHz it would
probably run just fine.

That brings the list of stuff running to
ppp -d
ftpd (maybe, I might just use the old burn a cdrom and drive over method
instead)0
openssh
ipnat
ipfilter

Any comments more than welcome.


Thanks, 
Sandro M.


To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message