Netgear GA511 Cardbus Ethernet Problem
I have a Netgear GA511 cardbus gigabit ethernet adapter based on a supported chipset (Realtek RTL8169) that is not getting detected by FreeBSD 8 for some reason. Here is the message that appears in dmesg whenever I insert the card: cbb0: Warning: Bus reset timeout The laptop I am trying to use this card with is an Acer Travelmate 2423WXCi with a 1.6GHz Celeron M processor and 1GB of RAM. I have Googled this problem and the only results I found were for older versions of FreeBSD (6.x) where it did not have a problem actually seeing the card. In my situation, the card does not show in pciconf -l. Any help is appreciated! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: apt of freebsd
prad ?: It's probably used for the Linux emulation in FreeBSD, you can't use it with FreeBSD native packages. so what does this mean? if you have linux emulation, you can install .debs from the debian repository? hmm... etch (linux) or lenny (linux), or lenny (kfreebsd) packages? -- With best regards, Alexander Wolf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
apt of freebsd
I'm find into /usr/ports/sysutils/apt porting from Debian APT. How to using this on FreeBSD? -- With best regards, Alexander Wolf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: apt of freebsd
Ivan Voras пишет: It's probably used for the Linux emulation in FreeBSD, you can't use it with FreeBSD native packages. Hmm... I'm maybe can use it for web-applications? Or not? -- With best regards, Alexander Wolf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
[Fwd: Suhosin Segmentation Fault]
Not much return on freebsd-isp. I try again here on freebsd-questions. Original-Nachricht Betreff: Suhosin Segmentation Fault Datum: Mon, 13 Oct 2008 09:49:09 +0200 Von: Alain Wolf [EMAIL PROTECTED] An: [EMAIL PROTECTED] Newsgruppen: gmane.os.freebsd.isp After upgrading FreeBSD from 6.3-p3 to 6.3-p5 on our server, all websites just display a blank page and every HTTP request created a line as follows in the logs: child pid 80326 exit signal Segmentation fault (11) This same problem happened on another server a few months ago after the upgrade from 6.3-p3 to 6.3-p4, but after a rebuild of all FreeBSD ports all went back to normal. However several rebuilds of all ports did not solve the problem on this one. To narrow down the problem: After disabling the PHP module in Apache the problem disappears. Re-enabling PHP, but disabling the Suhosin extension also works fine. The trick found in this forum, to load the Suhosin extension before all other PHP extensions in /usr/local/etc/php/extensions.ini does not help. In fact not loading any extension at all except Suhosin creates the segfault errors. Commenting out our Suhosin settings in php.ini to load it with default values did not help. FreeBSD 6.3-RELEASE-p5 Apache 2.2.9 (DAV/2 mod_python/3.3.1 Python/2.5.2 SVN/1.5.2) PHP Version 5.2.6 Suhosin Patch 0.9.6.2 Suhosin PHP extension 0.9.27 All installed from the ports. PHP (cli) seems to run fine at all times when called from the command-line. Any suggestions? Thanks Alain Wolf, Zurich, Switzerland ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [Fwd: Suhosin Segmentation Fault]
On 15.10.2008 20:55, Jeremy Chadwick wrote: On Wed, Oct 15, 2008 at 07:25:08PM +0200, Alain Wolf wrote: Not much return on freebsd-isp. I try again here on freebsd-questions. Original-Nachricht Betreff: Suhosin Segmentation Fault Datum: Mon, 13 Oct 2008 09:49:09 +0200 Von: Alain Wolf [EMAIL PROTECTED] An: [EMAIL PROTECTED] Newsgruppen: gmane.os.freebsd.isp After upgrading FreeBSD from 6.3-p3 to 6.3-p5 on our server, all websites just display a blank page and every HTTP request created a line as follows in the logs: child pid 80326 exit signal Segmentation fault (11) This same problem happened on another server a few months ago after the upgrade from 6.3-p3 to 6.3-p4, but after a rebuild of all FreeBSD ports all went back to normal. However several rebuilds of all ports did not solve the problem on this one. To narrow down the problem: After disabling the PHP module in Apache the problem disappears. Re-enabling PHP, but disabling the Suhosin extension also works fine. The trick found in this forum, to load the Suhosin extension before all other PHP extensions in /usr/local/etc/php/extensions.ini does not help. In fact not loading any extension at all except Suhosin creates the segfault errors. Suhosin is not an extension you load in extensions.ini; it's a patch applied to the core of PHP. Suhosin is *both*. A patch for php and a extension module for PHP. From http://www.hardened-php.net/suhosin/index.html: Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections. The suhosin patch works fine on our servers. But the extension does not. The extension ordering problem, however, has been thoroughly discussed on -ports in the past. It happens to some and not others. There is no guaranteed way to determine what works and what doesn't. You have to literally enable line-by-line until you figure out which one is causing the problem. I tried enabling and disabling extensions. All of them work, as long as suhosin.so is not loaded. Regardless of the order. If I disable all other extensions and load only suhosin.so in /usr/local/etc/php/extensions.ini the apache processes are still crashing. You can also try building lang/php5 with DEBUG enabled and then when PHP segfaults, run gdb on the coredump and see if you can get a coherent backtrace (sometimes difficult with Apache in the way) to see what sort of functions are causing the crash; often each extension has its own function names, so that might give you some clues. Hard for me, as this disrupts customer services. We are running without the extensions for now. PHP (cli) seems to run fine at all times when called from the command-line. Now that's very interesting, given as the CLI version also loads all the extensions listed in extensions.ini. Can you post your /usr/local/etc/php/extensions.ini? You didn't list off what extensions you have installed. cat /usr/local/etc/php/extensions.ini extension=gd.so extension=ctype.so extension=pcre.so extension=session.so extension=bz2.so extension=openssl.so extension=zlib.so extension=mbstring.so extension=mysql.so extension=pdf.so extension=mcrypt.so extension=simplexml.so extension=spl.so extension=mysqli.so extension=xml.so extension=iconv.so extension=hash.so extension=tokenizer.so extension=calendar.so extension=ftp.so extension=xmlrpc.so extension=xmlwriter.so extension=zip.so extension=filter.so ;extension=suhosin.so extension=wddx.so extension=mhash.so extension=json.so extension=dom.so extension=xmlreader.so extension=exif.so extension=ncurses.so extension=gettext.so extension=ldap.so extension=pdo.so extension=soap.so extension=tidy.so extension=pdo_sqlite.so extension=apc.so extension=readline.so extension=xsl.so extension=curl.so ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Cant boot instalation media.
I tryed to install FreeBSD on my laptop (compaq nx6105), but it crashes and returns: HPTTR :no controller found. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is my hard ware sufficient?
It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. Please correct me if I'm wrong: GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed by default, but it can be installed during installation process if I want to. If I'm wrong, does this mean that I have to connect to Internet during FreeBSD installation? Thanks. Jerry McAllister [EMAIL PROTECTED] wrote: On Tue, Feb 19, 2008 at 01:19:51AM -0800, Lone Wolf wrote: I'm not going to serve any one, I just want to take a small test drive with FreeBSD . Regarding my graphic card, it is 32 MB, is it ok? I suppose it depends on the graphics card model, but probably. Check that hardware compatibility list. In this case it would be compatibility with Xorg since that is the display/graphics system. Does FreeBSD come bundled with GNOME? It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. Thanks demons! That is daemon, not demon. There is a big difference. jerry Olivier Nicole wrote: I'm thinking to install FreeBSD on my old PC. --- Processor: Intel Celeron 1.3 GH RAM: 192 MB --- Is my hard ware sufficient? Sufficient to do what? Until not so long ago, my DNS server was a PIII 550 MHz, with something like 120 MB RAM, serving about 150 clients. I changed the hardware mostly because I had bigger machines available. Olivier Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Looking for last minute shopping deals? Find them fast with Yahoo! Search. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is my hard ware sufficient?
Thank you for explanation :) So, if GNOME/KDE can be installed on FreeBSD, what are the advantages of BSD-based desktop systems like DesktopBSD/PC-BSD over FreeBSD? just the graphical installer? Erich Dollansky [EMAIL PROTECTED] wrote: Hi, Lone Wolf wrote: It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. it is an option depending on your installation menthod. Please correct me if I'm wrong: GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed by default, but it can be installed during installation process if I want to. If I'm wrong, does this mean that I have to connect to Internet during FreeBSD installation? Thanks. There are several ways to install FreeBSD. The simplest would be the download of an ISO image of for the first CD, burn it and boot the machine with it. You can then install all packages from the CD without an Internet connection. Normally, all the things needed to have a decent computer are on this CD. GNOME was earlier always included. After FreeBSD is up and running, you can install the ports system and install any program from the ports collection via an Internet connection. Erich Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is my hard ware sufficient?
I'm not going to serve any one, I just want to take a small test drive with FreeBSD . Regarding my graphic card, it is 32 MB, is it ok? Does FreeBSD come bundled with GNOME? Thanks demons! Olivier Nicole [EMAIL PROTECTED] wrote: I'm thinking to install FreeBSD on my old PC. --- Processor: Intel Celeron 1.3 GH RAM: 192 MB --- Is my hard ware sufficient? Sufficient to do what? Until not so long ago, my DNS server was a PIII 550 MHz, with something like 120 MB RAM, serving about 150 clients. I changed the hardware mostly because I had bigger machines available. Olivier Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD Linux distro
Hi. How FreeBSD differ from any Linx distro like Ubuntu? Thanks. Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Is my hard ware sufficient?
Hi. I'm thinking to install FreeBSD on my old PC. --- Processor: Intel Celeron 1.3 GH RAM: 192 MB --- Is my hard ware sufficient? Thanks. Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD Linux distro
But according to Wikipedia, FreeBSD is able to run Linux compatible software without any problems (exception for Linux Kernel 2.6) I can't run Linux software on FreeBSD? Wojciech Puchar [EMAIL PROTECTED] wrote: Hi. How FreeBSD differ from any Linx distro like Ubuntu? by not being linux at all. NTG Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
jails and mount
Hello I would like to mount and unmount storage devices for backups from inside a jail. I asked this already in October but got no answer. Since I use 6.2 now I even have more questions. Q1)If I unhide a device (i.e external drive) by rule for a jail and I can see it from inside the jail, why can't I mount it from inside the jail? What I tried from inside the jail ... # ls /dev/da0* /dev/da0/dev/da0s1 /dev/da0s1c /dev/da0s1d # mount -t ufs /dev/da0s1d /media/usbdisk /dev/da0s1d: Operation not permitted Q2) By reading man rc.conf(5) ... There are new options like jail_jname_fstab and jail_jname_mount_enable, I tried to use them for a one of my jails, but I don't see any effect. What I tried from outside the jail # cat /etc/fstab.backup /dev/da0s1d /mnt/usbdisk ufs rw,noauto 2 2 # cat /etc/rc.conf | grep jail.backup jail_backup_rootdir=/jails/backup jail_backup_hostname=backup.example.com jail_backup_ip=192.168.0.2 jail_backup_mount_enable=YES Anybody on this list knows more about jails then what manpage and handbook tells? Thanks for any information Alain Wolf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Very Annoying PHP Errors
On 14.02.2007 12:38, * Peter Pluta wrote: I recently upgraded to 5.2.1_1. After upgrading (or before not exactly sure) I began getting errors ALERT - canary mismatch on efree() - heap overflow detected in my Apache logs. Also, certain parts of one of my database (mysql) driven sites stopped working. Certain pages just stopped working, they return a blank white page. I'm absolutely stumped on what it could be. I have tried recompiling php 4-5x with different options and re-installing apache etc... Nothing is working. I looked for php bug reports, and found this one http://bugs.php.net/bug.php?id=40119 but it does not really pertain to me. Can anyone give some pointers or tips on what to do? Right now I am thinking of just downgrading to PHP 5.2.0 because that's what worked last. Is there an easy way to downgrade ports? Any feedback, tips, or help would be greatly appreciated. Thanks, Peter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] My php installations have also several and repeating errors, but its difficult to analyze, because they keep changing. While updating ports using portmanager or portmaster sometimes installation of databases/php5-mysql or databases/php5-mysqli fails or sometimes both but also sometimes both install without errors. When errors occur, it has to do with missing mysql-client libraries, a mysql-client port-installation is attempted and fails because mysql-client is in fact already installed. By manually deinstalling and reinstalling mysql-client port just before the php-mysql port and php-mysqli port installation works, but maybe the next days already same errors occur. Sometimes all ports installe correctly but afterwards php fails to load an installed extension (error message refers to missing functions). This happened once with mysqli-extension, but not mysql and once with sqlite-extension. Some others too, but I don't recall which ones. Usually deinstalling and reinstalling the affected extension fixes it. But there again, I may get the difficulties mentioned above. So in summary, as a non programming observator, i think somehow libraries which where successfully installed get lost at some point on my systems. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: jail question
On 11.02.2007 12:54, * Dino Vliet wrote: Hi folks, I'm installing a nice system to use as my multimedia box and already succeeded with geom-mirror. I want to use a jail to isolate the p2p applications like amule/emule and want to make sure that they only write to an encrypted disk (currently RTFM on geli and gbde) However, I was wondering what happens with a jail if I update the host system due to a security issue or something else (recompile kernel and install world). Do I need to define the jail again? If not, won't the files in the jail stay at their previous versions although the host system has been updated to a new version? Or should I just RTFM on jails and come back a few Unfortunately there is not much to read for end-users, like us. weeks from now:-) Thanks in advanced. Hi, Its never been a problem for my systems. Two machines running 19 jails. Done around a dozen system updates and also changing release from 6.0 to 6.2 using the same method was no problem at all. First proceed as the handbook describes for the host-system. After everything completes and your system and jails are up again rebuild you jails with as follows: # make -j4 buildworld # mergemaster -p -D /jails/example # make installworld DESTDIR=/jails/example # mergemaster -D /jails/example After that restart Jail. Done. In my case I work with different make.conf files for jails and host system, thats the reason why I rebuild world for the jails, If not you can just make installworld without rebuilding. If you have multiple jails, you can skip buildworld after first one. Hope this helps. Greetings Alain ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: php5-mysql?
On 12.02.2007 11:52, * Roger Olofsson wrote: Dear Mailing List, As usual I would like to thank the replies I go to my earlier questions and I will try and step up and answer the ones I can. Now for my question, After a recent buildworld/portupgrade everything seems to be up to date except a few and among those are php5-extensions and to be more precise php5-mysql. php5-mysql and php5-extensions reports configure: error: mysql configure failed. Please check config.log for more information. === Script configure failed unexpectedly. Please report the problem to [EMAIL PROTECTED] The requisites are met, all the following are ok: Requires: autoconf-2.59_2, libiconv-1.9.2_2, libxml2-2.6.27, m4-1.4.8_1, mysql-client-5.0.33, perl-5.8.8, php5-5.2.1, pkg-config-0.21 autoconf reports autoconf-2.13.000227_5 as well as 2.59_2, could this be the problem? I tried make deinstall ; make install of php5 and of mysql (both client and server) but no luck so far. What can I do? Grateful for any answers! Greetings /Roger I am not really sure if its the same issue, but I had the same problems on two of my systems. After I deinstalled and reinstalled mysql-client-5.0.33 it went fine again. # cd /usr/ports/databases/mysql50-client/ make deinstall make reinstall Hope this helps Alain ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Can't get make buildworld to work with recent cvsup. - Addl
On 09.02.2007 03:03, * Nicole Harrington wrote: --- Garrett Cooper [EMAIL PROTECTED] wrote: Nicole Harrington wrote: Something setup wrong some place?? cd /usr/src/lib ; make . c -pg -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libftpio -Wall -DINET6 -c /usr/src/lib/libftpio/ftpio.c -o ftpio.po cc -pg -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libftpio -Wall -DINET6 -c ftperr.c -o ftperr.po building profiled ftpio library ranlib libftpio_p.a cc -fpic -DPIC -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libftpio -Wall -DINET6 -c /usr/src/lib/libftpio/ftpio.c -o ftpio.So cc -fpic -DPIC -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libftpio -Wall -DINET6 -c ftperr.c -o ftperr.So building shared library libftpio.so.6 gzip -cn /usr/src/lib/libftpio/ftpio.3 ftpio.3.gz === libgeom (all) cc -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libgeom -Wsystem-headers -Werror -Wall -Wno-format-y2k -W -Wno-unused-parameter -Wstrict-prototypes -Wmissing-prototypes -Wpointer-arith -Wno-uninitialized -c /usr/src/lib/libgeom/geom_getxml.c cc -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libgeom -Wsystem-headers -Werror -Wall -Wno-format-y2k -W -Wno-unused-parameter -Wstrict-prototypes -Wmissing-prototypes -Wpointer-arith -Wno-uninitialized -c /usr/src/lib/libgeom/geom_stats.c cc -O2 -fno-strict-aliasing -pipe -march=opteron -I/usr/src/lib/libgeom -Wsystem-headers -Werror -Wall -Wno-format-y2k -W -Wno-unused-parameter -Wstrict-prototypes -Wmissing-prototypes -Wpointer-arith -Wno-uninitialized -c /usr/src/lib/libgeom/geom_xml2tree.c /usr/src/lib/libgeom/geom_xml2tree.c:255: error: syntax error before '*' token /usr/src/lib/libgeom/geom_xml2tree.c:256: warning: type qualifiers ignored on function return type /usr/src/lib/libgeom/geom_xml2tree.c:256: warning: return type defaults to `int' /usr/src/lib/libgeom/geom_xml2tree.c:256: warning: function declaration isn't a prototype /usr/src/lib/libgeom/geom_xml2tree.c: In function `CharData': /usr/src/lib/libgeom/geom_xml2tree.c:260: error: `userData' undeclared (first use in this function) /usr/src/lib/libgeom/geom_xml2tree.c:260: error: (Each undeclared identifier is reported only once /usr/src/lib/libgeom/geom_xml2tree.c:260: error: for each function it appears in.) /usr/src/lib/libgeom/geom_xml2tree.c:262: error: `s' undeclared (first use in this function) /usr/src/lib/libgeom/geom_xml2tree.c:263: error: `len' undeclared (first use in this function) /usr/src/lib/libgeom/geom_xml2tree.c: In function `geom_xml2tree': /usr/src/lib/libgeom/geom_xml2tree.c:286: error: syntax error before parser /usr/src/lib/libgeom/geom_xml2tree.c:296: error: `parser' undeclared (first use in this function) /usr/src/lib/libgeom/geom_xml2tree.c:296: warning: implicit declaration of function `XML_ParserCreate' /usr/src/lib/libgeom/geom_xml2tree.c:301: warning: implicit declaration of function `XML_SetUserData' /usr/src/lib/libgeom/geom_xml2tree.c:302: warning: implicit declaration of function `XML_SetElementHandler' /usr/src/lib/libgeom/geom_xml2tree.c:303: warning: implicit declaration of function `XML_SetCharacterDataHandler' /usr/src/lib/libgeom/geom_xml2tree.c:304: warning: implicit declaration of function `XML_Parse' /usr/src/lib/libgeom/geom_xml2tree.c:307: warning: implicit declaration of function `XML_ParserFree' *** Error code 1 Stop in /usr/src/lib/libgeom. *** Error code 1 Stop in /usr/src/lib. ARGG!! Nicole Doesn't look like it's compiling libgeom or geom related dependencies. What's your /etc/make.conf look like and what version are you trying to compile with buildworld? Actually.. That seems to be happening with even no /etc/make.conf I even copied the /usr/src from another older server that built fine to this server (same server type) and it fails in the same way. It's just driving me crazy. Nicole Nicole -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] According to the Handbook 21.4.7.2 Compile the Base System You must be in the /usr/src directory: # cd /usr/src # make -j4 buildworld ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mount inside jails
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello dear list, My FreeBSD 6.0 has several Jails, all running fine. One of the Jails has installed Bacula Backup Software. And for its File Deamon (the backup storage server) I would like to mount and unmount the backup device (an external USB disk) inside the jails /mnt/ directory. But somehow ... # mount /dev/da0s1d /mnt .. keeps telling me mount: /dev/da0s1d: Operation not permitted There is no problem mounting and using the disk from outside the jail. If understood things right this has to do with /etc/devfs.rules so my settings ther are: ... # # Devices usually found in a jail. # [devfsrules_jail=4] add include $devfsrules_hide_all add include $devfsrules_unhide_basic add include $devfsrules_unhide_login # # Devices for backup storage jail. # [devfsrules_backup_jail=5] add include $devfsrules_jail add path 'da*s*' unhide and my jail deifintion in /etc/rc.conf looks like this: ... # Backup Storage Server jail_backup_rootdir=/jails/backup jail_backup_hostname=backup.k18.ch jail_backup_ip=192.168.30.46 jail_backup_exec=/bin/sh /etc/rc jail_backup_devfs_enable=YES jail_backup_devfs_ruleset=devfsrules_backup_jail ... Any suggestions? Or is *mount* not possible at all in Jails? Or I am completly lost? Greetings. Alain -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFQ81TV5MZZmyxvGgRAiybAJ4zItY64Kq+7CUpfAFhbTEQBHY0GACg1P25 twNSOImWFfhSCUC7+0PHCMA= =nT0j -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: port php5 - what I am supposed to do here?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 06.10.2006 11:26, * Alex Zbyslaw wrote:
Matt Emmerton wrote:
Hello List,
Portuadit telles my about the open_basedir Race Condition
Vulnerability, OK.
By reading the advisory on
http://www.hardened-php.net/advisory_082006.132.html I can safely say
this does not apply to our environment, we don't use open_basedir or
safe_mode and Suhosin is planned anyway (after test).
[...]
So what to do now?
You've established that the security issue doesn't apply to your
environment.
1) Add DISABLE_VULNERABILITIES=yes to /etc/make.conf
2) Run portupgrade -u or make install clean
By doing this you have disabled vulnerability checking for *all* ports
which seems a little extreme. Either add the flag to pkgtools.conf (for
portupgrade (and portmanager?)) or use it from the command line with make.
--Alex
Thanks for the advice, as matter of fact this came to my mind too, so I
actually did in make.conf was:
...
# PHP 5 Port installation options
.if${.CURDIR:M*/lang/php5*}
DISABLE_VULNERABILITIES=yes
.endif
...
Greetings
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFFJwQmV5MZZmyxvGgRAsdoAKDdHsfC89K70PjrIYFMT7aUiLH2RgCgktA5
1DP/pLzWaI35xOtzc0RwVd0=
=RqSa
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
port php5 - what I am supposed to do here?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello List, Portuadit telles my about the open_basedir Race Condition Vulnerability, OK. By reading the advisory on http://www.hardened-php.net/advisory_082006.132.html I can safely say this does not apply to our environment, we don't use open_basedir or safe_mode and Suhosin is planned anyway (after test). With a portsnap fetch update I get a new version php5-5.1.6_1 in my portstree, OK. But portmanager -u or even manually with make install clean everything fails with the following message: === php5-5.1.6_1 has known vulnerabilities: = php -- open_basedir Race Condition Vulnerability. Reference: http://www.FreeBSD.org/ports/portaudit/edabe438-542f-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 So what to do now? There are quite a lot if dependencies which i can't update too now. Also installing/enabling Suhosin seems not possible anymore now. Any suggestions are welcome. Greetings fomr Switzerland Alain Wolf -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFJcsDV5MZZmyxvGgRAn4oAKDBqaGjcOflahgH4XRp6WCg0T6qLQCg3uni vk77USw9+yElWvFCJBcDHxs= =4wj4 -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: port php5 - what I am supposed to do here?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 06.10.2006 05:53, * Matt Emmerton wrote: You've established that the security issue doesn't apply to your environment. 1) Add DISABLE_VULNERABILITIES=yes to /etc/make.conf 2) Run portupgrade -u or make install clean Regards, -- Matt Emmerton Thanks Matt, that did it. I knew it there was a way. :-) But then ... As everything was in sync again, I wanted to install the suhosin-patch And see what happens: === Patching for php5-5.1.6_1 === Applying distribution patches for php5-5.1.6_1 === Applying FreeBSD patches for php5-5.1.6_1 1 out of 1 hunks failed--saving rejects to Zend/zend_alloc.c.rej = Patch patch-Zend_zend_alloc.c failed to apply cleanly. = Patch(es) patch-TSRM_threads.m4 patch-Zend::zend.h applied cleanly. *** Error code 1 Stop in /usr/ports/lang/php5. :-( I found this stange as I read just before about the neweset patch in the cvs.ports list : On 05.10.2006 22:59, * Alex Dupre wrote: ale 2006-10-05 20:59:17 UTC FreeBSD ports repository Modified files: lang/php5Makefile Added files: lang/php5/files patch-Zend_zend_alloc.c Log: Added safety checks against integer overflow. Bump PORTREVISION. While I'm here, I suggest all php users to use the suhosin patch and suhosin extension to harden the php installation. Submitted by: simon Obtained from: PHP CVS repo. Revision ChangesPath 1.102 +1 -1 ports/lang/php5/Makefile 1.1 +21 -0 ports/lang/php5/files/patch-Zend_zend_alloc.c (new) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/cvs-ports He suggests the suhosin patch but in my expirience it only builds without it. Anybody else got this kind of problems? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFJe7oV5MZZmyxvGgRAjZoAJ0SyNSh/fcW9lK276dEEEDwRhqK3gCgnQof mYeAV7bs8vFG4r8Cf3NxEU0= =WUVL -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Vsftpd not chown'ing uploads
Did you get an answer to this question? I want to know how to set privs to allow dir list, upload, but not delete. Vsftpd not chown'ing uploads http://lists.freebsd.org/pipermail/freebsd-questions/2003-October/021270 .html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Turning off submission (587) port
Gregory Neil Shapiro [EMAIL PROTECTED] schrieb: AFAIK, it is sufficient to edit /etc/mail/sendmail.cf and comment or delete the follwoing line: O DaemonPortOptions=Port=587, Name=MSA, M=E and restart sendmail afterwards. Hand editing the sendmail.cf is a bad idea. You're right. Bad habit. Sorry for advising this. Thomas -- Thomas Wolf Wiener Software Fabrik Dubas u. Wolf GMBH 1050 Wien, Mittersteig 4 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Turning off submission (587) port
Chris [EMAIL PROTECTED] schrieb: Folks, I would prefer to shut this port down if I can. I'm unsure if and how it can/do it. Other then that, would there be an effective ipfw rule that would block this? If the above needs recompiling sendmail, then I would certainly prefer the latter. AFAIK, it is sufficient to edit /etc/mail/sendmail.cf and comment or delete the follwoing line: O DaemonPortOptions=Port=587, Name=MSA, M=E and restart sendmail afterwards. regarding ipfw, reject tcp from any to me 587 would be an appropriate rule. Thomas -- Thomas Wolf Wiener Software Fabrik Dubas u. Wolf GMBH 1050 Wien, Mittersteig 4 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: does NATd _prevent_ use of stateful ipfw rules w/ keep-state?
JJB [EMAIL PROTECTED] schrieb: Thanks for your example. I have finally had time to study it and I see the flaw in it. The example works fine for creating the entry in the dynamic table for setup of keep-state inbound and outbound session start requests. It even handles inbound packets that are part of an established session conversations, But for established outbound session conversations the check-state rule releases the packet before it has been nated. No. 'check-state' does not unconditionally release a packet but performs the 'action'-part of the rule that installed the dynamic rule - in our case 'skipto 1' where it gets nat'ed. There lies in the flaw. Do you have any suggestions on how to correct this? Have you tried the script and it really failed? I just double-checked and it works fine on my system. Thomas -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Thomas Wolf Sent: Thursday, June 03, 2004 3:00 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: does NATd _prevent_ use of stateful ipfw rules w/ keep-state? JJB [EMAIL PROTECTED] schrieb: Where do you get off calling my questioning of Luigi Rizzo's answer as an attack. I have heard that party line statement all to often over that last 4 years, with no backup proof. That party line canned answer may be sufficient for the original thread poster who has not invested the time yet to come to the realization that it doe's not work. My post to the tread was meant to bring this problem out so the experts can look into it and take corrective actions. This should work although some features are missing (loopback, anti-spoofing, identd..): #!/bin/sh log=log cmd=ipfw add allow=skipto 1 oif=rl0 good_tcp=22,25,53,80,443,110 good_udp=53 good_icmp=icmptypes 0,3,8,11,12 ipfw -f flush $cmd 100 divert natd ip from any to any in via $oif $cmd 105 check-state $cmd 110 $allow icmp from any to any $good_icmp $cmd 120 $allow udp from any to any $good_udp out keep-state $cmd 130 $allow tcp from any to any $good_tcp out setup keep-state $cmd 140 deny $log ip from any to any $cmd 1 divert natd ip from any to any out via $oif $cmd 10010 allow ip from any to any $cmd 10020 deny ip from any to any Thomas -- Thomas Wolf Wiener Software Fabrik Dubas u. Wolf GMBH 1050 Wien, Mittersteig 4 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw To unsubscribe, send any mail to [EMAIL PROTECTED] -- Thomas Wolf Wiener Software Fabrik Dubas u. Wolf GMBH 1050 Wien, Mittersteig 4 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: what's up with /var/empty?
chflags Chip Wiegand wrote: I just finished installing 4.7 and want to move /var to /usr/var and symlink it, but there is an empty subdirectory called empty (/var/empty). It is not going away when I try to delete the /var directory after moving it to /usr/var. It has permissions like this: dr-xr-xr-x root wheel Seems like I had to do something about a sticky bit, but don't recall and can't find anything in the list archives about this. Can someone remind me? And this time I'll write it down in my notebook. -- Chip W To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Stray IRQ 7 problem.
that is what is causing your stray irq 7 the kernel is detecting irq 7 activity from your lpt but doesn't have a device attached to the irq 7 try turning the lpt stuff back on in your kernel: # Parallel port device ppc0 at isa? irq 7 device ppbus # Parallel port bus (required) device lpt # Printer Daemon wrote: It's commented out in the kernel config. # Parallel port #device ppc0 at isa? irq 7 #device ppbus # Parallel port bus (required) #device lpt # Printer #device plip # TCP/IP over parallel #device ppi # Parallel port interface device #device vpo # Requires scbus and da as well as, #device ulpt # Printer What should I check for in the bios? Thanks, Mark On Mon, 21 Oct 2002 00:42:04 -0400 wolf [EMAIL PROTECTED] wrote: Erm, check you lpt0 config in your kernel AND bios. -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: authentication server with group permissions?
If you internal LAN is relatively secure you probably want to use NIS to give out the maps for master.passwd and group. To be extra safe, I would setup the maps so that all the passwords in the NIS master.passwd are '*' and use pam_smb or some such critter against your Samba PDC if you need UNIX login capabilities. (This presumes you are using windows workstations). You an also use other pam_* modules for the actual authentication, allowing you to keep the NIS passwords as '*'s so that if someone ever sniffs your lan traffic, etc, the NIS maps don't contain passwords. David Loszewski wrote: basically what we are trying to accomplish is that I'm in an office with may employees. Say we have 5 different servers, and I have files on the servers that I want all the employees in a specific group have read access to those files, or write access depending on permissions for that group. So when an employee logs into a server I want it to go to some internal authentication server and tell the server that it's k for that person to access that file. I want to do this without copying to passwd file to each server. Dave wolf wrote: could you be more specific? sharing files via NFS? transparent logging to other servers? other? What you are trying to do in particular affects how you accomplish your goal. [EMAIL PROTECTED] wrote: Could someone point me in the right direction to find information on creating an authentication server in such a way that if some user logs in on a particular machine, as long as he is in a certain group he will have read access to all/or certain files as well on other servers depending on the group and rules set for that group? Dave To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
vmware3
Is anyone working on getting vmware3 working on FreeBSD ? I upgraded by system to a Duron and now I can't run anything under vmware2 that wants the SIMD(?) instructions used. (i.e. Windows 2000/XP, RedHat 7.3/8.0 etc.) -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IDE Tape Drive on FreeBSD
I have a similar problem w/ a machien for a client of mine. I had to stick the tape drive ALONE on the cable as master. no slave devices. Ronnie Schwartz wrote: I made the tape master and cd slave using jumpers. Still doesn't work. Tar writes some stuff and it hangs midway. The drive activity light is now on until I restart the machine. Any ideas? -- Ronnie Schwartz RustyBrick [EMAIL PROTECTED] www.rustybrick.com 845.352.3707 From: [EMAIL PROTECTED] Date: Tue, 15 Oct 2002 13:03:38 -0500 To: [EMAIL PROTECTED] Subject: RE: IDE Tape Drive on FreeBSD We have had problems with this in the past with linux and the cable select. -Original Message- From: Ronnie Schwartz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 15, 2002 1:00 PM To: [EMAIL PROTECTED] Subject: Re: IDE Tape Drive on FreeBSD Hi, It worked fine under dos. Would that still be the issue? In addition, I tried making the tape drive master and unplugging the cd drive (although I didn't do the jumpers.. My tweezers were not strong enough). Thanks for your help. -- Ronnie Schwartz RustyBrick [EMAIL PROTECTED] www.rustybrick.com 845.352.3707 From: [EMAIL PROTECTED] Date: Tue, 15 Oct 2002 12:33:39 -0500 To: [EMAIL PROTECTED] Subject: RE: IDE Tape Drive on FreeBSD Make sure the tape drive is set to master and cdrom is set to slave on the jumpers and not cable select. Steve -Original Message- From: Ronnie Schwartz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 15, 2002 12:28 PM To: [EMAIL PROTECTED] Subject: IDE Tape Drive on FreeBSD Hi, I have a PowerVault 100T IDE Tape Drive installed in a server running FreeBSD. FreeBSD seems to recognize the drive. However, when I try to write to the drive or rewind it, I get an I/O error. Any ideas? Thanks for your help. # dmesg | grep TAPE ast0: TAPE Seagate STT2A at ata1-slave PIO4 # mt -f /dev/ast0 status Mode Density Blocksize bpi Compression Current: 0x01:X3.22-1983 512 bytes 800 none -available modes- 0:default variable 0none 1:default variable 0none 2:default variable 0none 3:default variable 0none - File Number: 0 Record Number: 0Residual Count 0 # mt -f /dev/ast0 rewind mt: /dev/ast0: rewind: Input/output error In addition, it seems that instead of getting errors now, it just hangs, not sure why. I need to restart the server to kill the process. Any help will be greatly appreciated. Thanks. -- Ronnie Schwartz RustyBrick [EMAIL PROTECTED] www.rustybrick.com 845.352.3707 ___ Linux-PowerEdge mailing list [EMAIL PROTECTED] http://lists.us.dell.com/mailman/listinfo/linux-poweredge Please read the FAQ at http://lists.us.dell.com/faq or search the list archives at http://lists.us.dell.com/htdig/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ports/graphics/ffmpeg compile issue
try updating your ports dir then doing a make clean install I am using the latest version here, just trying to figure how to make it work with my bktr card Kris Kennaway wrote: On Mon, Oct 14, 2002 at 02:17:16PM -0500, Christopher Schulte wrote: ffmpeg doesn't want to compile for me Anyone compiled this? There is a PR about the distfile changing, but notes indicate the port's Makefile still works with it. TIA for any ideas. Port problems should usually be discussed with the maintainer. cc -Wl,--warn-common -o ffmpeg_g ffmpeg.o -L./libavcodec -L./libav \ -lavformat -lavcodec -L/usr/local/lib -lz It should be linking with libm, and in fact the old version does so for me (the package compiles successfully and is available on the ftp site). Perhaps the new version is broken. You can either fetch the package, or a copy of the correct distfile, from ftp.freebsd.org or a mirror. kris -- Michael Joyner FreeBSD System Administrator http://manhattan.hq.dyns.cx/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Phone messaging system
Try looking on www.zend.com and/or www.freshmeat.net for 'job tracking' 'issue tracking' 'bug tracking' etc. Jonas Fornander wrote: Yeah, something like that. Doesn't have to be web-based but it's probably the simplest. Something running on mySQL I guess. I checked out (on Windows platform) Goldmine, Office Logic and Act. All of them are to big, to bloaty and to expensive. Jonas Fornander - System Administrator Netwood Communications, LLC - www.netwood.net Find out why we're better - 310-442-1530 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of wolf Sent: Friday, October 11, 2002 7:37 PM To: Jonas Fornander Cc: 'FreeBSD LIST' Subject: Re: Phone messaging system a web based job tracking system perhaps? which each phone call a job, or job followup? Jonas Fornander wrote: Is there a good messaging system for interoffice usage that runs on fbsd? Specifically we need one for organizing phone messages. Jonas Fornander - System Administrator Netwood Communications, LLC - www.netwood.net Find out why we're better - 310-442-1530 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ipfw and natd during internal to internal access ...
The request never hits the firewall rule for it to get diverted into nat. (via INTERFACE, it never goes into that interface). While I know the cause, I am not sure as to the fix. Though I am sure an additional firewall rule would probably work to fix it. Maybe something like divert 8668 ip from 192.168/16 to 24.70.100.100 divert 8668 ip from 24.70.100.100 to 192.168/16 Eat this with lots of salt and make sure your at the console. Marc Hunter wrote: Hi, We have just implemented an ipfw and natd firewall and generally it works great. We are using natd for traffic going out and to redirect outside traffic on port 80 to a particular webserver. However, when a machine within the network attempts to access the web server through its external address (using the domain name for instance) it doesn't work. Is there some special trick to deal with this? An example to summarize: Firewall - External IP: 24.70.100.100 - Internal IP: 192.168.0.64 Webserver - IP: 192.168.0.128 User machine - IP: 192.168.0.200 We have a domain mapped to 24.70.100.100, and when the web request is initiated from outside the network, it all works fine, from inside, it fails. Inside access to the rest of the web works fine (so natd is working going out and the redirect_port is working for those coming in). Any tips? Thanks! Marc To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: ipfw and natd during internal to internal access ...
You might try freebsd-hackers or freebsd-stable mailing lists. They are more technically oriented for things like this. Nick Rogness wrote: On Thu, 10 Oct 2002, Marc Hunter wrote: Hi, We have just implemented an ipfw and natd firewall and generally it works great. We are using natd for traffic going out and to redirect outside traffic on port 80 to a particular webserver. However, when a machine within the network attempts to access the web server through its external address (using the domain name for instance) it doesn't work. Is there some special trick to deal with this? Yeh, run an internal DNS server which resolves the site differently on the inside of your network to the internal address. Any other workaround is considered shitty by most people, like: ipfw divert natd all from any to any via $outside_int ipfw divert natd all from any to any via $inside_int However, this would probably work [not sure]. Nick Rogness [EMAIL PROTECTED] - WARNING TO ALL PERSONNEL: Firings will continue until morale improves. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: fatal trap 12 kernel panic
Try freebsd-hackers and/or freebsd-stable mailing lists, they are more technically oriented for stuff like this. abe wrote: Hi, I've written to the list recently with regard to a panic that keeps occuring and perhaps my message was not formatted as well as it could have been. In more testing it seems that the minute the ipfw rules are loaded (which previously worked without issue), the machine panics. Any network connectivity attempted afterwards results in a panic. This includes ping, telnet, smtp, etc. When the machine panics, it drops into the debugger and displays the following: Stopped atadd_dyn_rule+0172: movl 0(%edx,%ebx,4)x%eax I am including the entire 'trace' output from the debugger, but have also tried to produce a core to get a backtrace via gdb however it doesn't seem to be dumping a core. savecore=YES as well as dumpdir and dumpdev are set properly in rc.conf, yet nothing is produced and the system claims no dumpdev is set. If anyone has any experience with this issue, as I believe it to be with ipfw due to lengthy testing on 4 different machines now (was 3 before), please feel free to email me and clue me in. Thanks a lot. Regards, Abe add_dyn_rule(c0424894,0,c1258e00) at add_dyn_rule+0x172 install_state(c1258e00) at install_state+0x179 ip_fw_chk(cc88cda4,14,c1153000,cc88cdaa,cc88cdac) at ip_fw_chk+0x8d8 ip_output(c0e63800,0,cbafad7c,0,0) at ip_output+0x530 udp_output(cbafad40,c0e63800,0,0,cb69ba40) at udp_output+0x238 udp_send(cbac8980,0,c0e63800,0,0) at udp_send+0x20 sosend(cbac8980,0,cc88cecc,c0e63800,0) at sosend+0x5df sendit(cb69ba40,5,cc88cf0c,0,bfbfeb2b) at sendit+0x253 sendto(cb69ba40,cc88cf80,1b,bfbff400,0) at sendto+0x4e syscall2(2f,2f,2f,0,bfbff400) at syscall2+0x1f5 Xint0x80_syscall() at Xint0x80_syscall+0x25 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: UDP Port 53 Log In Vain Messages
Any settings I can change to reduce the number of timeouts? Ceri Davies wrote: On Wed, Oct 09, 2002 at 01:21:25PM -0400, Wolfieee wrote: Ok, what causes the following events to ocurr and what do I do to fix whatever is wrong? DNS lookups timing out. Ceri To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
