I dont want to start a flame/war here...but was *just* wondering...
I currently use OpenBSD-3.8 for my router (T-1 with many statics) and
then use FreeBSD-6.0 for my servers (web/mail/DNS...)
I am debating on just standardizing to all FreeBSD.
It seems the security is quite the same - but I d
At 09:01 AM 11/24/2005, Nathan Vidican wrote:
Not to start any flames of my own, know one can do a custom install
and have the same result with FreeBSD - just pointing out the
'simple' default install does enable things you'll probably want to
disable if just using the machine as a router and/o
Does anyone have a simple shell/perl script that can take
/var/log/pflog and parse it into a simple txt or html?
I would like to cron a script that can clean up the output of pflog
and put it into something more readable...
Basically something that looks like:
Time - SourceIP - Destination Por
I am using 6.2 as a DSL (PPPoE) router and also run my own internal DNS
on the same machine. I would like to APPEND my ISP's dished out DNS
servers to my current resolv.conf but anytime I enable dns in my
ppp.conf it nukes my entire resolv.conf!
I am looking to end up with this:
% cat /et
At 01:12 PM 5/6/2007 -0400, Bob wrote:
Be sure you have this statement in your ppp.conf
enable dns
# Gets the ISP's DNS IP address & places them
# in resolv.conf for reference by FBSD.
But this overwrites my resolv.conf doesnt it?
thats what I am trying to avoid
-JD
__
Can this be configured?
What I need is a way to go from one LAN machine to the WAN and
loopback to the other LAN machine.
LAN->WAN->LAN
simple pf.conf:
binat on $bge1 from 192.168.82.170 to any -> 67.x.x.1
binat on $bge1 from 192.168.82.171 to any -> 67.x.x.2
binat on $bge1 from 192.168.82.172
At 12:19 PM 5/19/2007 -0400, Dantavious wrote:
Hi.
It seems to me (From the limited knowledge that I have!) that my machine is
not hyperthreading. I have done the following.
maybe /etc/sysctl.conf:
machdep.hyperthreading_allowed=1
?
-JD
__
At 09:41 AM 6/3/2007 +1000, Alex R wrote:
Hi All,
Just wondering about something here.
First of all, I am running FreeBSD 6.2-STABLE
and the CPU stats (parts of dmesg)
CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz (2992.52-MHz 686-class CPU)
Origin = "GenuineIntel" Id = 0xf49 Stepping = 9
Featu
At 07:21 PM 6/24/2007 +0200, Olivier Regnier wrote:
I have two questions about floppy disk with FreeBSD.
How add a UFS filesystem to use the diskette for transfering files ?
I think with this command but i'm not sure because, i can't check
for the moment.
# newfs /dev/fd0
To mount a floppy d
Anyone using device polling on 6.2stable (i386) ?
I have been reading up on this and seen some good and some bad but
nothing definitive.
I have bge NICs in these machines and they are running as routers,
and running pf.
When I enabled it in the kernel and then via rc.conf (since sysctl
use
Can someone tell me the correct tag to follow
7.0 and not 7.0 STABLE?
I am presuming 7.0 has been frozen and I am only interested
in following the 7.0-standard (bug fixes only) and not 7.0-stable.
I think this results in 7.0-stable?
*default release=cvs tag=RELENG_7
Thanks in advance..
-JD
_
At 04:54 PM 10/31/2007 +0100, Erik Trulsson wrote:
On Wed, Oct 31, 2007 at 06:38:19AM -0600, JD Bronson wrote:
> Can someone tell me the correct tag to follow
> 7.0 and not 7.0 STABLE?
>
> I am presuming 7.0 has been frozen and I am only interested
> in following the 7.0-standard
At 10:34 PM 11/24/2007 +0800, Zhang Weiwu wrote:
Dear all
I run a ftp site which is being attacked by someone who issue some 1000
concurrent connection for downloading as anonymous. How can I fight back?
how about controlling access via pf?
you can limit the number of connections from the SAME
thanks for the update on this. I had forgot about it since I just
stopped using modulate state (is it really needed anymore?).
Then, the beginning of this month I moved my firewall/router back
over to OpenBSD 4.1 to stay more current with pf instead of running
-CURRENT within FreebSD.
This f
At 02:08 PM 7/21/2007 +0100, RW wrote:
On Sat, 21 Jul 2007 07:29:53 -0500
JD Bronson <[EMAIL PROTECTED]> wrote:
> thanks for the update on this. I had forgot about it since I just
> stopped using modulate state (is it really needed anymore?).
>
> Then, the beginning of thi
At 01:58 AM 7/26/2007 +0200, Max Laier wrote:
Well, in RELENG_6 we can't (pf update breaks ABI = no go in a RELENG
branch). In HEAD we have 4.1 since a couple of weeks.
thanks Max. I appreciate the response.
___
freebsd-questions@freebsd.org maili
At 08:55 PM 7/25/2007 +0200, Max Laier wrote:
On Saturday 21 July 2007, Jordan Gordeev wrote:
> I'm replying to an old and long-forgotten thread to report my recent
> findings.
> There's a bug in PF with modulate/synproxy state. Modulate/synproxy
> state modulate sequence numbers, but don't modu
At 08:19 PM 7/27/2007 +1200, Jonathan Chen wrote:
On Thu, Jul 26, 2007 at 11:12:26AM -0500, J.D. Bronson wrote:
> so I deleted /usr/src
> redownloaded from a different mirror and tried
> make buildworld again...
>
> It still failed -but this time at a different point:
Standard behaviour of faili
I recently moved my PPPoE onto my 4100 modem.
Tt is capable of passing my public IP into the freebsd box
and then when I reboot, since the modem keeps my connection alive I
dont change IPs as often...This works very well...but, however, this
has caused a new twist:
My modem appears to be at I
Is there any rule in pf to dump this crap?
tcpdump just shows streams of this stuff!!
11:10:06.810287 arp who-has CPE-65-27-48-161.wi.res.rr.com tell
CPE-65-27-48-1.wi.res.rr.com
11:10:06.864875 arp who-has CPE-65-27-48-74.wi.res.rr.com tell
CPE-65-27-48-1.wi.res.rr.com
11:10:06.931964 arp wh
Has this been removed or is it still supported?
It does not appear in the man page or examples...
NO_BIND=true
-JD
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any m
At 03:03 PM 7/27/2008 +0300, Reko Turja wrote:
make.conf has been split into two, the actual make.conf which has
variables for the make process and generic make environment and
src.conf which controls the building of "add-on" software. Check
src.conf for details.
-Reko
so something like thi
22 matches
Mail list logo