Re: [gentoo-user] dkim and dmark, how to set up

2023-09-25 Thread John Covici 
On Mon, 25 Sep 2023 09:09:34 -0400,
Michael wrote:
> 
> [1  ]
> On Monday, 25 September 2023 12:43:36 BST John Covici wrote:
> > Hi.  I have my mail server and I want to finally set up dkim and dmark
> > as appropriate, but I am not sure which packages to use and where
> > there is some documentation exists, so I can figure out hhow to do
> > it.  My mta is sendmail.
> > 
> > Thanks in advance for any suggestions.
> 
> You'll need mail-filter/opendkim if you're sending mail directly to 
> recipients 
> from your mailserver, but if your sendmail is configured to relay messages 
> via 
> an ISP's mail server then the ISP will be using such a package instead.  
> You'll also have to add your dkim public key to your DNS record, while the 
> private key will stay on your mailserver.  Again, if you're relaying via an 
> ISP, they will store the private key on their server.
> 
> Some ideas explained here, but more detailed instructions may be available in 
> the interwebs:
> 
> https://wiki.gentoo.org/wiki/OpenDKIM
> 
> https://www.vttoth.com/CMS/technical-notes/356-setting-up-dkim-with-sendmail
> 
> https://wiki.gentoo.org/wiki/Postfix/DMARC

OK, thanks, I will check those out.

-- 
Your life is like a penny.  You're going to lose it.  The question is:
How do
you spend it?

 John Covici wb2una
 cov...@ccs.covici.com

Re: [gentoo-user] dkim and dmark, how to set up

2023-09-25 Thread Michael 
On Monday, 25 September 2023 12:43:36 BST John Covici wrote:
> Hi.  I have my mail server and I want to finally set up dkim and dmark
> as appropriate, but I am not sure which packages to use and where
> there is some documentation exists, so I can figure out hhow to do
> it.  My mta is sendmail.
> 
> Thanks in advance for any suggestions.

You'll need mail-filter/opendkim if you're sending mail directly to recipients 
from your mailserver, but if your sendmail is configured to relay messages via 
an ISP's mail server then the ISP will be using such a package instead.  
You'll also have to add your dkim public key to your DNS record, while the 
private key will stay on your mailserver.  Again, if you're relaying via an 
ISP, they will store the private key on their server.

Some ideas explained here, but more detailed instructions may be available in 
the interwebs:

https://wiki.gentoo.org/wiki/OpenDKIM

https://www.vttoth.com/CMS/technical-notes/356-setting-up-dkim-with-sendmail

https://wiki.gentoo.org/wiki/Postfix/DMARC

signature.asc
Description: This is a digitally signed message part.

[gentoo-user] dkim and dmark, how to set up

2023-09-25 Thread John Covici 
Hi.  I have my mail server and I want to finally set up dkim and dmark
as appropriate, but I am not sure which packages to use and where
there is some documentation exists, so I can figure out hhow to do
it.  My mta is sendmail.

Thanks in advance for any suggestions.

-- 
Your life is like a penny.  You're going to lose it.  The question is:
How do
you spend it?

 John Covici wb2una
 cov...@ccs.covici.com

Re: [gentoo-user] Network throughput from main Gentoo rig to NAS box.

2023-09-25 Thread Dale 
Mark Knecht wrote:
>
>
> On Sat, Sep 23, 2023 at 9:22 AM Rich Freeman  > wrote:
> >
> > On Sat, Sep 23, 2023 at 8:04 AM Dale  > wrote:
> > >
> > > I'm expecting more of a consistent throughput instead of all the
> > > idle time.  The final throughput is only around 29.32MB/s according to
> > > info from rsync.  If it was not stopping all the time and passing data
> > > through all the time, I think that would improve.  Might even double.
> >
> > Is anything else reading data from the NAS at the same time?  The
> > performance is going to depend on a lot of details you haven't
> > provided, but anything that reads from a hard disk is going to
> > significantly drop throughput - probably to levels around what you're
> > seeing.
> >
> > That seems like the most likely explanation, assuming you don't have
> > some older CPU or a 100Mbps network port, or something else like WiFi
> > in the mix.  The bursty behavior is likely due to caching.
> >
> > --
> > Rich
>
> Let's not forget that Dale also likes to put layers of things on his
> drives, LVM & encryption at a minimum. We also don't know anything
> about his block sizes at either end of this pipe.
>
> I would think maybe running iotop AND btop on both ends would give some 
> clues on timing. Is the time when gkrellm is idle due to the host disk
> not 
> responding or the target getting flooded with too much data?
>
> - Mark


This is true.  I have LVM on the bottom layer with dm-crypt, cryptsetup,
above that and then the file system.  It's the only way I can have more
than one drive and encrypt it.  Well, there's ZFS but I already been
down that path.  ;-) 

I posted in another reply a picture that shows this same thing happening
even when the copy process is on the same rig and even on the same LV. 
That should rule out network issues.  I think as was pointed out, it is
transferring the data until the cache fills up and then it has to wait
for it to catch up then repeat.  It could be encryption slows that
process down a good bit, it could be LVM, or both.  I do know when I did
a test copy to the NAS box when the drives on the NAS box were not
encrypted, it was a good bit faster, about double or more.  Once I got
LVM and the encryption set up, it was slow again.  Also just like when
using Truenas. 

Anyway, I think the network is ruled out at least.  I'm not sure what
can be done at this point.  If it is a cache or drive can't keep up
issue, we can't fix that.  At least it does work, even if it takes a
while to get there.  :-D  Only took almost two weeks to copy over to my
backups.  ROFL 

Thanks to all for the ideas, help, suggestions etc etc.

Dale

:-)  :-)