Re: natd in a jail
On 22 November 2012 04:00, Morgan Reed wrote: > Hi All, > > I've a bit of an odd query which I hope somebody may be able to > assist with. > > I'm looking to set up several OpenVPN tunnels on a single machine > (each residing in its own jail) and route data to different > destinations over different tunnels by selectively routing the traffic > via a particular jail. > > I have three jails set up with OpenVPN tunnels terminated in each, > they all work as expected from the "local" machine. > > I can't do a straight forward route over the VPN tunnel as I don't > control the other end of the tunnel, I need to treat it as a > point-to-point connection as a result, hence I need to use NAT. > > I've tested this setup with a single tunnel running off a "real" > machine with natd providing NAT, it works like a charm, however, when > I move the config into a jail I run into issues, natd doesn't seem to > be able to see the incoming traffic, nothing shows up in the logs at > all. > > I'm not even sure if this is actually possible, I'm starting to > suspect that natd can't hook in low enough from the jails to access > the incoming traffic. > > Traffic gets into the jail by way of an epair interface between the > host and the jail, bridged to the ethernet adapter by way of a bridge > device, I can see the traffic attempting to route over the tun > interface in the jail (but obviously it's not being NATted so nothing > comes back) so the traffic is making it in and through the routing > engine, just not via natd. > > Any suggestions here? > > The host is FreeBSD-8.3. > I've not used it myself, but this sound like something VIMAGE may be good for, basically it's a virtual tcp stack per jail, there's some docs at http://wiki.freebsd.org/Image but I seem to remember a more up to date one elsewhere but can't find it at the moment! ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Re: Problem with link aggregation + sshd
We've had similar problems with lagg at work, each lagg is made up of one igb and one em port, sometimes for no apparent reason they seem to stop passing through traffic. The easiest way we've found to get it working again is ifconfig down and up on one of the physical interfaces. This is on 8.1 On 3 September 2012 19:25, Giulio Ferro wrote: > No idea anybody why this bug happens? Patches? > > > > On 08/29/2012 10:22 PM, Giulio Ferro wrote: >> >> On 08/28/2012 11:12 AM, Damien Fleuriot wrote: >>> >>> Hi Giulio, >>> >>> >>> >>> Just to clear things up: >>> igb0: 192.168.9.60/24 >>> lagg0: 192.168.12.21/24 >>> >> >> Yes. >> Actually I notice now that the lagg0 address is different from what >> I wrote below in my rc.conf (192.168.12.7). I've just made many test >> with different configuration, but no matter, it just doesn't work... >> >> >>> >>> What's the IP of the host you're trying ssh connections from ? >> >> >> I'm just trying to connect to and from management interface igb0 >> (192.168.9.60). >> From external pc I do : ssh myuser@192.168.9.60 >> From that server I do : ssh myuser@pcaddress >> >> Just to be more precise, the consequences are: >> 1) daemon sshd on the server gets stuck and becomes unkillable >> 2) the first connection may work, but then the program ssh on the >> server becomes unresponsive and unkillable >> >> If I don't create a lagg0 interface and just connect (say) igb1 to >> the data switch, I've no problem and everything works. >> >> Just to answer others' question, I connect igb1, igb2 and igb3 to the >> same data switch in ports configured for aggregation. >> I connect igb0 to another management switch (of course not configured >> for aggregation) >> >> >>> >>> Also, just in case, did you enable any firewall ? (PF, ipfw) >> >> >> As I already said, no. Nothing is working/active on this server, just >> sshd. >> >> Thank you. >> >> >>> >>> >>> >>> On 27 August 2012 21:22, Giulio Ferro wrote: Hi, thanks for the answer Here is what you asked for: # ifconfig igb0 igb0: flags=8843 metric 0 mtu 1500 options=4401bb ether ... inet 192.168.9.60 netmask 0xff00 broadcast 192.168.9.255 inet6 prefixlen 64 scopeid 0x1 nd6 options=29 media: Ethernet autoselect (1000baseT ) status: active # netstat -rn Routing tables Internet: DestinationGatewayFlagsRefs Use Netif Expire default192.168.9.1UGS 00 igb0 127.0.0.1 link#12UH 00lo0 192.168.9.0/24 link#1 U 0 14 igb0 192.168.9.60 link#1 UHS 00lo0 192.168.12.0/24link#13U 0 109 lagg0 192.168.12.21 link#13UHS 00lo0 Internet6: Destination Gateway Flags Netif Expire ::/96 ::1 UGRS lo0 ::1 link#12 UH lo0 :::0.0.0.0/96 ::1 UGRS lo0 fe80::/10 ::1 UGRS lo0 fe80::%igb0/64link#1U igb0 fe80::ea39:35ff:feb6:a0d4%igb0link#1 UHS lo0 fe80::%igb1/64link#2U igb1 fe80::ea39:35ff:feb6:a0d5%igb1link#2 UHS lo0 fe80::%igb2/64link#3U igb2 fe80::ea39:35ff:feb6:a0d6%igb2link#3 UHS lo0 fe80::%igb3/64link#4U igb3 fe80::ea39:35ff:feb6:a0d7%igb3link#4 UHS lo0 fe80::%lo0/64 link#12 U lo0 fe80::1%lo0 link#12 UHS lo0 fe80::%lagg0/64 link#13 U lagg0 fe80::ea39:35ff:feb6:a0d5%lagg0 link#13 UHS lo0 ff01::%igb0/32fe80::ea39:35ff:feb6:a0d4%igb0 U igb0 ff01::%igb1/32fe80::ea39:35ff:feb6:a0d5%igb1 U igb1 ff01::%igb2/32fe80::ea39:35ff:feb6:a0d6%igb2 U igb2 ff01::%igb3/32fe80::ea39:35ff:feb6:a0d7%igb3 U igb3 ff01::%lo0/32 ::1 U lo0 ff01::%lagg0/32 fe80::ea39:35ff:feb6:a0d5%lagg0 U lagg0 ff02::/16 ::1 UGRS lo0 ff02::%igb0/32fe80::ea39:35ff:feb6:a0d4%igb0 U igb0 ff02::%igb1/32fe80::ea39:35ff:feb6:a0d5%igb1 U igb1 ff02::%igb2/32fe80::ea39:35ff:feb
RE: mydns-mysql starts before mysql has finished starting
I'll see if I'm still maintainer and see if there's a better way of doing things. -Original Message- From: Mikael Bak Sent: 17 January 2009 19:20 To: freebsd-stable@freebsd.org Subject: mydns-mysql starts before mysql has finished starting Hi list, This is my first post to this list. I'm not exactly new to freebsd but I have used GNU/Linux more. Last week I installed my first FreeBSD 7.1 machine. A base system with only mc, mysql and mydns-mysql packages. I installed all from pre compiled packages, not from ports. When I reboot the machine the mysql server is not finished starting before mydns tries to start, so it fails leaving me with a not working DNS server. I have to manually start mydns-mysql. As a very ugly fix I have edited the startup script for mydns-mysql and added a 10 sec delay. I wonder what else I can do. Should I perhaps contact the port maintainer? How do I reach him/her? TIA, Mikael Bak Budapest, Hungary ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org" ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
Re: Newbie Sempron/ISO question
On Fri, 2007-02-02 at 21:05 +1030, Daniel O'Connor wrote: > On Friday 02 February 2007 20:52, Simon Dick wrote: > > On Fri, 2007-02-02 at 19:55 +1030, Daniel O'Connor wrote: > > > On Friday 02 February 2007 15:46, Thomas Roberts wrote: > > > > While searching through bsdforums.org a poster said > > > > the k8-class CPU is an Athlon64 locked in 32-bit mode > > > > and if anyone has this CPU they should be using the > > > > i386 ISO. > > > > > > I believe you can get 64 bit Semprons but they are AM2 or AM3 only. > > > > I have a S754 64 bit sempron so they exist even if they're not really in > > that common use :) > > Ah well there you go then :) > > I guess they got too good at making the 64 bit version before S754 expired.. > > Any idea if it's possible to tell from dmesg what sort you have? Hmm, I run the amd64 version of FreeBSD on mine, but here's what it says: CPU: AMD Sempron(tm) Processor 2800+ (1603.65-MHz K8-class CPU) Origin = "AuthenticAMD" Id = 0x20fc2 Stepping = 2 Features=0x78bfbff Features2=0x1 AMD Features=0xe2500800 AMD Features2=0x1 If that helps :) ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Newbie Sempron/ISO question
On Fri, 2007-02-02 at 19:55 +1030, Daniel O'Connor wrote: > On Friday 02 February 2007 15:46, Thomas Roberts wrote: > > While searching through bsdforums.org a poster said > > the k8-class CPU is an Athlon64 locked in 32-bit mode > > and if anyone has this CPU they should be using the > > i386 ISO. > > I believe you can get 64 bit Semprons but they are AM2 or AM3 only. I have a S754 64 bit sempron so they exist even if they're not really in that common use :) ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: portupgrade missing key: categories: Cannot read the portsdb!
On Thu, 2007-02-01 at 11:42 +0200, Dominik Zalewski wrote: > Hi All, > > I've just updated my portstree and I'm trying to run portupgrade , which > gives > me following error: I had the same this morning, try upgrading to the latest portupgrade which got it working for me ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Xen-Support built-in in FreeBSD 6.1 ?
On Thu, 2006-04-06 at 10:08 +0200, Roger Grosswiler wrote: > Hey, > > i wanted to ask, if support for Xen3 as DomU is built-in in FreeBSD 6.0 or > 6.1. Unfortunately it doesn't sound like it'll make 6.1 which is a pain for us as we wanted to use it ourselves where I work, now we seem to be going towards debian :/ -- Simon Dick <[EMAIL PROTECTED]> ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Problem with 16-in-1 card reader
.. Original Message ... On Sat, 11 Mar 2006 16:24:21 -0700 (MST) "M. Warner Losh" <[EMAIL PROTECTED]> wrote: >In message: <[EMAIL PROTECTED]> >Robert Marella <[EMAIL PROTECTED]> writes: >: On Sat, 11 Mar 2006 13:51:30 +0100 >: Alex Dupre <[EMAIL PROTECTED]> wrote: >: >: > My new PC has an internal 16-in-1 card reader connected via USB 2.0. >: > The device is the Techsolo TCR-1640 >: > (http://www.techsolo.de/product/cardreader/tcr_1640/index.php). >: > I boot from a compact flash inserted in it and I can mount and unmount >: > the same CF once the system has booted and has mounted the root >: > partition from my graid3 array. >: > The problem arise when I replace the inserted CF with another one >: > (with different size and filesystem) and try to mount it. Fdisk can >: > correctly sees the new partition table, but devfs is not updated and >: > I cannot mount the new media. >: >: >: >: Hello Alex >: >: This problem has been discussed many times on the lists. In order to >: update devfs you can use: >: >: cat /dev/null > /dev/daX >: >: I seem to remember another method using dd. > >dd if=/dev/null of=/dev/daX count=0 true >/dev/daX is my favourite due to typing length. ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Atheros Wireless Card
On Tue, 2004-10-26 at 14:04, Talbot Neil wrote: > Hi All, > > I am having troubles compiling the atheros card into the kernel. > I am getting compilation errors as follows: Try adding: device ath_hal to your kernel config file ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: cdburning in 4.7
On Fri, 2002-12-13 at 17:57, Rob wrote: > Eriq Lamar wrote: > > > > I tryed to burn a cd w/ new msi dragonwriter and this is what I got > > > > #burncd -f /dev/acd1c data .tcshrc fixate > > next writeable lba 0 > > writing from file .tcshrc size 0 KB > > written this track 2 KB total 2 KB > > burncd: ioctl(CDRIOCFLUSH):Input/output error > > > > I am a newbie and have little idea what this means please help. > > > > To Unsubscribe: send mail to [EMAIL PROTECTED] > > with "unsubscribe freebsd-stable" in the body of the message > > Could be bad media, or like me, a CD burner that was acting as the exit > for the fan backpressure in my cabinet :) > Don't want to be blowing dust through the tray. Sometimes I have also > fixed error messages by simply reinserting the CD. Or it could be that you need to generate an ISO before you can use burncd AFAIR using sysutils/mkisofs :) -- Simon Dick <[EMAIL PROTECTED]> To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-stable" in the body of the message
Re: cdrom can't be mounted under freeBSD 4.5-stable
On Sat, Apr 27, 2002 at 04:32:18PM -0400, Scott M. Nolde wrote: > Ian Dowse([EMAIL PROTECTED])@2002.04.27 21:28:11 +: > > >Interesting, because in the /dev/MAKEDEV script is this concerning the > > >minor number: > > ... > > >... which is exactly what I have. What's in your MAKEDEV? When/why did > > >the "+ 2" get in there if it's incorrect? > > > > You have a stale MAKEDEV. You need at least revision 1.243.2.45 > > (March 18th) to pick up the changes that occurred with the big ATA > > merge from -current. Maybe you forgot to run mergemaster after > > updating? > > > > Ian > > Nope, I ran mergemaster and I was not promted to. Interesting you mention > the version. I have 1.243.2.44 2002/03/11 after running a cvsup this > morning and rebuilding everything. 1.243.2.45 was commited to RELENG_4 on the 18th March going by the logs, and it's now up to 1.243.2.47 :) -- Simon Dick [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-stable" in the body of the message
Re: "J" type log in newsyslog
On Wed, Feb 13, 2002 at 11:45:35AM -0600, [EMAIL PROTECTED] wrote: > Upgraded to 4.5-STABLE from 4.4 > > I must have missed the change notice, but was wondering what the new > "J"-type log is in "newsyslog.conf". Used to be just (ZB), now (ZJB)...?? J means bzip2 the logs, have a look through newsyslog(8) :) -- Simon Dick [EMAIL PROTECTED] "Why do I get this urge to go bowling everytime I see Tux?" To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-stable" in the body of the message
