Re: Will rfc2734 be supported?

2004-02-03 Thread Doug Rabson 
On Mon, 2004-02-02 at 05:50, Hidetoshi Shimokawa wrote:
> At Sat, 31 Jan 2004 15:27:03 +0100,
> Dario Freni wrote:
> > 
> > [1  ]
> > Hi guys,
> > I was wondering if the standard implementation of IPoFW is planning to
> > be implemented. I'm not expert on device writing, I was also looking for
> > some workarounds, like attach the fwe0:lower netgraph hook to a virtual
> > interface, but reading the rfc I realized that the normal IP packet
> > needs an encapsulation before it's sent on the wire.
> 
> I have no plan to implement rfc2734 by myself near future.
> IEEE1394 is somewhat complicated, compared with Ethernet.
> Because there are some types of packets, fwe and IPoFW uses very
> different packet type and formats, so you don't have an easy
> workaround using netgraph.
> 
> If you are interested in implementing rfc2734, you need several steps.
> 
> - Implement rfc2734 encapsulation as /sys/net/if_ethersubr.c for
> ethernt. rfc2734 uses very different packet format from ethernet.
> 
> - Implement generic GASP receive routin in the firewire driver.
> You need this service for multicast/broadcast packet such as an arp
> packet.
> 
> - Implement if_fw.c for the interface device.
> 
> Though I'm not sure it actually worked, the firewire driver for
> FreeBSD-4.0 seems to have a support for IPoFW
> See ftp://ftp.uec.ac.jp/pub/firewire/ for the patch.

I spent a little time recently thinking about what would be needed for
this and came to similar conclusions. The most interesting part is
implementing generic GASP receive. I think the nicest way of doing that
would be to implement a new network protocol for firewire, allowing
userland programs to do something like:

struct sockaddr_firewire a;
s = socket(PF_FIREWIRE, SOCK_DGRAM, 0);
a.sof_address = 0x12345000;
...;
bind(s, &a, sizeof a);
...;
len = recv(s, buf, sizeof buf, 0);

Internally, this probably means arranging for all asynchronous packets
to be DMA'd directly into mbufs and would probably change the firewire
code a great deal. Still, it might be worth it to gain a familiar
socket-based user api.



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Will rfc2734 be supported?

2004-02-03 Thread Bruce M Simpson 
On Sat, Jan 31, 2004 at 03:27:03PM +0100, Dario Freni wrote:
> I was wondering if the standard implementation of IPoFW is planning to
> be implemented. I'm not expert on device writing, I was also looking for

I've already asked Jordan about a code drop from Apple; he's trying to get
an answer from the appropriate people.

BMS


pgp0.pgp
Description: PGP signature

Obtaining Syslog message from a Cisco Router

2004-02-03 Thread Edward Butler 
Hi,

I am new to this distribution list but wanted to find out if any one has
come across this issue before and could offer some pointers on getting
this started.

I am looking to dump the log files from various Cisco routers on to one
of various FreeBSD boxes we are running ( mainly FreeBSD 4.4 ) once the
logs have been dumped to then rotate these in a similar way that other
system logs files are rotated - dns, www and mail etc...

My question is - do I need to compile a specific syslog collector or
will syslog on its own be able to handle these messages? Also how can I
reconfigure logrotate to include these log files?

Many thanks, apologies if my questions are a little niave! 

Cheers
Ed

[EMAIL PROTECTED] 
If at first you don't succeed, don't try skydiving
--
This message has been scanned for viruses by the Trinite' SMTP Firewall.
For information please visit http://www.trinite.co.uk
(www.trinite.co.uk)---



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: defect onboard broadcom causing boot hang

2004-02-03 Thread Jonathan Chappelow 
Bjorn Eikeland wrote:

Thanks for your reply Jon!

I've checked the driver cd and it had the drivers under Drivers\LAN\4401\
and I seem to remeber thats what windows once called it. The unidentified
chip id isnt a supprise, the card worked, and suddenly turned into a
unknown device in windows, so it must have changed somehow.
So if the chip stil works then adding/changing the device id sounds like
a plan. Having casted a underskilled eye at the sources I'm not sure what
file to edit, but is this it?:
/usr/src/sys/dev/bfe/if_bfereg.h
ln 396: #define BCOM_DEVICEID_BCM4401   0x4401
No problem, I had to take a look at this previously too.

I think you could change that line all together, or you could possible 
add a
new device by editing both if_bfe.c and if_bfereg.h.  Maybe something like:

--- /usr/src/sys/dev/bfe/if_bfe.c   Fri Nov 14 14:00:30 2003
+++ ./if_bfe.c  Tue Feb  3 10:30:42 2004
@@ -82,6 +82,8 @@
static struct bfe_type bfe_devs[] = {
   { BCOM_VENDORID, BCOM_DEVICEID_BCM4401,
   "Broadcom BCM4401 Fast Ethernet" },
+{ BCOM_VENDORID, BCOM_DEVICEID_BCM4401_1,
+"Broadcom BCM4401 Fast Ethernet - A7V8X integrated" },
   { 0, 0, NULL }
};
--- /usr/src/sys/dev/bfe/if_bfereg.hTue Sep  9 14:17:22 2003
+++ ./if_bfereg.h   Tue Feb  3 10:28:09 2004
@@ -394,6 +394,7 @@
#define BCOM_VENDORID   0x14E4
#define BCOM_DEVICEID_BCM4401   0x4401
+#define BCOM_DEVICEID_BCM4401_1 0x8000
#define PCI_SETBIT(dev, reg, x, s)  \
pci_write_config(dev, reg, (pci_read_config(dev, reg, s) | (x)), s)
I've never done this before, but It would be fun to see if this is all you
need to do.  Best of luck.
Jon


Bjorn Eikeland wrote:

I've just changed to using freebsd on my desktop pc, my Asus A7V8X
motherboad has a onboard Broadcom chip - this just stopped working 
under
windows and turned into a unknown device. Asus or vendor's support 
never
replied so I just picked up a new fxp card.


Depending on the options, this board either has BCM4401 or BCM5702.  
Note "(optional)" written on the box next to Gigabit LAN.  My old 
Asus P4PE had the BCM4401 and I had a lot of trouble with buggy 
drivers (*bfe*).  The gigabit chip (BCM5702) uses bge.  Try adding 
both to the kernel with mii to see if either works.  Also, their 
might be a more detailed part number on a sticker somewhere.

pciconf shows this device to be a:
[EMAIL PROTECTED]:9:0: class=0x008000 card=0x80008000 chip=0x800014e4 
rev=0x01 hdr=0x00
vendor   = 'Broadcom Corporation'
class= old


According to pciids.sourceforge.net and www.pcidatabase.com, 
chip=0x800014e4 is unidentified.  vendor 14e4 is Broadcom, but device 
id 8000 is a mystery.  Although, this is close: 
http://pciids.sourceforge.net/iii/?i=14e44401.  Good luck with that.  
You may just need to edit the code and add a device id?

Jon



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Obtaining Syslog message from a Cisco Router

2004-02-03 Thread Bruce M Simpson 
On Tue, Feb 03, 2004 at 03:38:19PM -, Edward Butler wrote:
> I am looking to dump the log files from various Cisco routers on to one
> of various FreeBSD boxes we are running ( mainly FreeBSD 4.4 ) once the
> logs have been dumped to then rotate these in a similar way that other
> system logs files are rotated - dns, www and mail etc...
> 
> My question is - do I need to compile a specific syslog collector or
> will syslog on its own be able to handle these messages? Also how can I
> reconfigure logrotate to include these log files?

1) Tell Cisco routers to use a specific facility/priority for their messages.
2) Tell syslog.conf to place the messages using this facility/priority into
their own log file.
3) Tell newsyslog.conf to rotate these logs according to the desired policy.

No need to install logrotate. newsyslog is the default FreeBSD log file
rotation tool.

BMS
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Obtaining Syslog message from a Cisco Router

2004-02-03 Thread Colin Whittaker 
Edward Butler stated the following on Tue, Feb 03, 2004 at 03:38:19PM - :
> I am looking to dump the log files from various Cisco routers on to one
> of various FreeBSD boxes we are running ( mainly FreeBSD 4.4 ) once the
> logs have been dumped to then rotate these in a similar way that other
> system logs files are rotated - dns, www and mail etc...
> 
> My question is - do I need to compile a specific syslog collector or
> will syslog on its own be able to handle these messages? Also how can I
> reconfigure logrotate to include these log files?

I use syslog-ng for this because it has some nice filtering options. 
One of which is source hostname/ip address. This means each router gets its
own logfile along with a messages file for all the routers messages.

Most of the engineers in the NOC tend to just leave this being tail'd in a
terminal as a handy way on watching for issues.

syslog-ng really is the way to go.

Colin

-- 
Colin Whittaker  +353 (0)86 8211 965
 [EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Changing TOS of forwarded packets?

2004-02-03 Thread Andriy Korud 


Hi, my question is simple - is it possible to set TOS value of forwarded packets
using ipfw, ipfilter or other magic on FreeBSD 4-STABLE?

Tnanks in advance,
Andriy Korud
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: defect onboard broadcom causing boot hang

2004-02-03 Thread Bjorn Eikeland 
Descided to stick with the easy way, as its not a change needing adding
to the tree and I dont have any other bfe devices..
And surely the kernel says it's found a 4401 card when it boots, but:
bfe0:  mem 0xeb00-0xeb001fff at device 
9.0 on pci0
bfe0: Ethernet address: 80:00:80:00:80:00
bfe0: PHY Reset would not complete.
bfe0: MII without any PHY!
device_probe_and_attach: bfe0 attach returned 6

Thinking the chip is beyond "medical" help as even the MAC address is all
funny - ofcourse I could change that with ifconfig bfe0 ether xx:xx, but 
not
still of litte use without the phy :)

So I think I'll ask the hardware list how to avoid probing the thing at 
all.

Thanks for trying though!!
(I've sure learned a bit from it!)
Bjorn Eikeland wrote:

Thanks for your reply Jon!

I've checked the driver cd and it had the drivers under 
Drivers\LAN\4401\
and I seem to remeber thats what windows once called it. The 
unidentified
chip id isnt a supprise, the card worked, and suddenly turned into a
unknown device in windows, so it must have changed somehow.

So if the chip stil works then adding/changing the device id sounds like
a plan. Having casted a underskilled eye at the sources I'm not sure 
what
file to edit, but is this it?:

/usr/src/sys/dev/bfe/if_bfereg.h
ln 396: #define BCOM_DEVICEID_BCM4401   0x4401
No problem, I had to take a look at this previously too.

I think you could change that line all together, or you could possible 
add a
new device by editing both if_bfe.c and if_bfereg.h.  Maybe something 
like:

--- /usr/src/sys/dev/bfe/if_bfe.c   Fri Nov 14 14:00:30 2003
+++ ./if_bfe.c  Tue Feb  3 10:30:42 2004
@@ -82,6 +82,8 @@
 static struct bfe_type bfe_devs[] = {
{ BCOM_VENDORID, BCOM_DEVICEID_BCM4401,
"Broadcom BCM4401 Fast Ethernet" },
+{ BCOM_VENDORID, BCOM_DEVICEID_BCM4401_1,
+"Broadcom BCM4401 Fast Ethernet - A7V8X integrated" },
{ 0, 0, NULL }
 };
 --- /usr/src/sys/dev/bfe/if_bfereg.hTue Sep  9 14:17:22 2003
+++ ./if_bfereg.h   Tue Feb  3 10:28:09 2004
@@ -394,6 +394,7 @@
  #define BCOM_VENDORID   0x14E4
 #define BCOM_DEVICEID_BCM4401   0x4401
+#define BCOM_DEVICEID_BCM4401_1 0x8000
  #define PCI_SETBIT(dev, reg, x, s)  \
 pci_write_config(dev, reg, (pci_read_config(dev, reg, s) | (x)), s)
I've never done this before, but It would be fun to see if this is all 
you
need to do.  Best of luck.

Jon


Bjorn Eikeland wrote:

I've just changed to using freebsd on my desktop pc, my Asus A7V8X
motherboad has a onboard Broadcom chip - this just stopped working 
under
windows and turned into a unknown device. Asus or vendor's support 
never
replied so I just picked up a new fxp card.


Depending on the options, this board either has BCM4401 or BCM5702.  
Note "(optional)" written on the box next to Gigabit LAN.  My old Asus 
P4PE had the BCM4401 and I had a lot of trouble with buggy drivers 
(*bfe*).  The gigabit chip (BCM5702) uses bge.  Try adding both to the 
kernel with mii to see if either works.  Also, their might be a more 
detailed part number on a sticker somewhere.

pciconf shows this device to be a:
[EMAIL PROTECTED]:9:0: class=0x008000 card=0x80008000 chip=0x800014e4 
rev=0x01 hdr=0x00
vendor   = 'Broadcom Corporation'
class= old


According to pciids.sourceforge.net and www.pcidatabase.com, 
chip=0x800014e4 is unidentified.  vendor 14e4 is Broadcom, but device 
id 8000 is a mystery.  Although, this is close: 
http://pciids.sourceforge.net/iii/?i=14e44401.  Good luck with that.  
You may just need to edit the code and add a device id?

Jon



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

ipsec ipcomp between FreeS/WAN 2.04 and FreeBSD 5.2

2004-02-03 Thread Marco Berizzi 
Hello everybody.

I'm running an interop issue with IPSec tunnels
between FreeS/WAN and FreeBSD 5.2
Without IPComp tunnel are successfully established.
With IPComp enabled tunnel are again successfully
established but there is no traffic flow.

This is my setkey init (FreeBSD box side):

/usr/local/sbin/setkey -c

Re: Will rfc2734 be supported?

2004-02-03 Thread Jordan K. Hubbard 
It's up on the web site now, according to Kevin on the CC line (who was 
supposed to contact you but evidently did not :-).

- Jordan

On Feb 3, 2004, at 5:32 AM, Bruce M Simpson wrote:

On Sat, Jan 31, 2004 at 03:27:03PM +0100, Dario Freni wrote:
I was wondering if the standard implementation of IPoFW is planning to
be implemented. I'm not expert on device writing, I was also looking 
for
I've already asked Jordan about a code drop from Apple; he's trying to 
get
an answer from the appropriate people.

BMS

--
Jordan K. Hubbard
Engineering Manager, BSD technology group
Apple Computer
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

removing if_withname()

2004-02-03 Thread Brooks Davis 
Bruce pointed out that if_withname is inconsistent about IFNAMSIZ.  I
was looking at it and cleaned it up, but then I realized that it is a
really inefficient implementation of ifnet_byindex(sdl->sdl_index).  It
turns out that it's also completely unused so I'd like to remove it
entirely rather then fixing it since it's both broken and pointless.  Is
there any reason not to do so?

I used glimpse and rwatson's fxr to verify that it's unused:

http://fxr.watson.org/fxr/ident?i=if_withname

-- Brooks

-- 
Any statement of the form "X is the one, true Y" is FALSE.
PGP fingerprint 655D 519C 26A7 82E7 2529  9BF0 5D8E 8BE9 F238 1AD4


pgp0.pgp
Description: PGP signature

Re: Will rfc2734 be supported?

2004-02-03 Thread Kevin Van Vechten 
The source code of the Mac OS X 10.3 (Panther) implementation is  
available from Apple's open source web site (APSL registration  
required):



There is also a mirror at OpenDarwin.org:



- Kevin

On Tuesday, February 3, 2004, at 09:19 AM, Jordan K. Hubbard wrote:

It's up on the web site now, according to Kevin on the CC line (who  
was supposed to contact you but evidently did not :-).

- Jordan

On Feb 3, 2004, at 5:32 AM, Bruce M Simpson wrote:

On Sat, Jan 31, 2004 at 03:27:03PM +0100, Dario Freni wrote:
I was wondering if the standard implementation of IPoFW is planning  
to
be implemented. I'm not expert on device writing, I was also looking  
for
I've already asked Jordan about a code drop from Apple; he's trying  
to get
an answer from the appropriate people.

BMS

--
Jordan K. Hubbard
Engineering Manager, BSD technology group
Apple Computer
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

rl interface drops out occasionally

2004-02-03 Thread Sumit Shah 
FreeBSD hackers,

I have a FreeBSD 4.9 server with Abit AT7 Max motherboard which 
includes a built-in rl network interface.  I've noticed that every now 
and then the network interface drops out.  I can ifconfig destroy and 
then create it again and the network interface comes back.  This 
machine serves nfs/smb/rsync exclusively and nothing more (2-3 gigs of 
traffic is moved per day).  Any ideas on how to track down what the 
problem is?  dmesg does not show anything unusual.

Thanks,
Sumit
PS Here is what ifconfig rl shows:

rl0: flags=8843 mtu 1500
inet  x.x.x.74 netmask 0xff00 broadcast x.x.x.255
ether 00:50:8d:a6:2a:34
media: Ethernet autoselect (100baseTX )
status: active
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Changing TOS of forwarded packets?

2004-02-03 Thread Julian Elischer 
check out the "tcpmssd" port.

it changes soem tcp parameters during forwarding..
you could modify it to do what you want I am sure..


On Tue, 3 Feb 2004, Andriy Korud wrote:

> 
> 
> Hi, my question is simple - is it possible to set TOS value of forwarded packets
> using ipfw, ipfilter or other magic on FreeBSD 4-STABLE?
> 
> Tnanks in advance,
> Andriy Korud
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
> 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

RE: rl interface drops out occasionally

2004-02-03 Thread Bob DeBolt 
Greets

> I've noticed that 
> every now 
> and then the network interface drops out.  I can ifconfig destroy and 
> then create it again and the network interface comes back.  This 
> machine serves nfs/smb/rsync exclusively and nothing more 
> (2-3 gigs of 
> traffic is moved per day).  

I had the same description of problem. I shut off the onboard
NIC and installed a new rl and problem was solved. I spent several
weeks testing different things. For the 5 or ten bucks for a new
rl card, it is worth spending it.


Sincerely

Bob DeBolt
Pres / CTO
Starblanket Research
1-877-280-3695
Calgary 280-3695
[EMAIL PROTECTED]
0x44E4A96B  

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Changing TOS of forwarded packets?

2004-02-03 Thread Andriy Korud 
Thanks, but I'm looking for some solution that'd allow me to modify TOS of the
packets that match some filter rule, so I think I have to modify ipfilter
code.

Andriy

> On Tue, Feb 03, 2004 at 06:46:18PM +0200, Andriy Korud wrote:
>  
> Hello,
> 
> > Hi, my question is simple - is it possible to set TOS value of forwarded
> packets
> > using ipfw, ipfilter or other magic on FreeBSD 4-STABLE?
> 
>   As far as I know there is nothing official for this purposes (hope someone
>   will correct me if I am wrong). This is why I started to design something 
>   on my own. My little goodie is a netgraph node for packet mangling in its
>   early stage. I *just* got it to work and it is tested now. Seems to work
>   properly for me. However, it was written and used only on FreeBSD-5.2-R
> and
>   I'am not sure about diffrences in netgraph implementation in STABLE.
> 
>   Nevertheless, if noone suggests better sollution you may want to give it a
>   try. Bear in mind it's early stage, though. There you can reach it:
>   
> http://venus.wsb-nlu.edu.pl/~dlupinsk/ng_mangle/
> 
> regards,
>   Dominik Lupinski
> 
> 
> Ps. Any feedback appreciated.
> -- 
> "...they build you up only to tear you down."
> 



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

IPDIVERT

2004-02-03 Thread Max Khon 
hi, there!

I would like to add IPDIVERT option to GENERIC kernels on all
platforms and to CFLAGS for ipfw module.
This will allow using natd out of box.
I'll commit this change by the end of this week if there will be no objections.

Regards,

/fjoe

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Changing TOS of forwarded packets?

2004-02-03 Thread Andriy Korud 
Цитую Julian Elischer <[EMAIL PROTECTED]>:

> check out the "tcpmssd" port.
> 
> it changes soem tcp parameters during forwarding..
> you could modify it to do what you want I am sure..
> 
> 
Thanks, but I think at the packet rate I'm interested in (~30Mbit/s and more)
divert solution will have poor performance.

Andriy
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

SACK implementation for 4.9?

2004-02-03 Thread CHOI Junho 

Hi,

Is there any patches of SACK for 4.9? I found patches against 4.3 but
it is very hard to apply.

--
CHOI Junho  KFUG 
FreeBSD Project Web Data Bank 
Key fingerprint = 1369 7374 A45F F41A F3C0  07E3 4A01 C020 E602 60F5
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Changing TOS of forwarded packets?

2004-02-03 Thread Julian Elischer 

here's a suggestion..
I have not done this but it might work:

use ipfw to send sessions that match to a divert socket at port X.

use netgraph ng_ksocket to connect to the divert port you selected
above.

Use a variant of the node given to hack the TOC value..
(he's looking at ethernet packets where you would be looking at IP
packets so it won't work directly).  Hmmm having fiddled the packets
we'd need to reinject them to a socket..  we could reinject them to teh
same socket (we'd need to use a 'tee' node as follows:


[divert]<--->[ksocket]<>[tee]>[hack]\
  ^ |
   \|
/


OR 
you could open another divert ksocket

[divert]<--->[ksocket]<>[tee]>[hack]>[ksocket]-->[divert]

(the divert socket will always feed back into the IP stack.)


On Tue, 3 Feb 2004, Andriy Korud wrote:

> Thanks, but I'm looking for some solution that'd allow me to modify TOS of the
> packets that match some filter rule, so I think I have to modify ipfilter
> code.
> 
> Andriy
> 
> > On Tue, Feb 03, 2004 at 06:46:18PM +0200, Andriy Korud wrote:
> >  
> > Hello,
> > 
> > > Hi, my question is simple - is it possible to set TOS value of forwarded
> > packets
> > > using ipfw, ipfilter or other magic on FreeBSD 4-STABLE?
> > 
> >   As far as I know there is nothing official for this purposes (hope someone
> >   will correct me if I am wrong). This is why I started to design something 
> >   on my own. My little goodie is a netgraph node for packet mangling in its
> >   early stage. I *just* got it to work and it is tested now. Seems to work
> >   properly for me. However, it was written and used only on FreeBSD-5.2-R
> > and
> >   I'am not sure about diffrences in netgraph implementation in STABLE.
> > 
> >   Nevertheless, if noone suggests better sollution you may want to give it a
> >   try. Bear in mind it's early stage, though. There you can reach it:
> >   
> >   http://venus.wsb-nlu.edu.pl/~dlupinsk/ng_mangle/
> > 
> > regards,
> > Dominik Lupinski
> > 
> > 
> > Ps. Any feedback appreciated.
> > -- 
> > "...they build you up only to tear you down."
> > 
> 
> 
> 
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
> 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Changing TOS of forwarded packets?

2004-02-03 Thread Julian Elischer 


On Tue, 3 Feb 2004, Andriy Korud wrote:

> ãÉÔÕÀ Julian Elischer <[EMAIL PROTECTED]>:
> 
> > check out the "tcpmssd" port.
> > 
> > it changes soem tcp parameters during forwarding..
> > you could modify it to do what you want I am sure..
> > 
> > 
> Thanks, but I think at the packet rate I'm interested in (~30Mbit/s and more)
> divert solution will have poor performance.
> 

I wouldn't count on it..
especially if run at rtprio.

> Andriy
> 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Obtaining Syslog message from a Cisco Router

2004-02-03 Thread Mike Tancsa 

And you might need to restart syslogd with a different start up param
so that it does not ignore messages from outside sources.

---Mike

On Tue, 3 Feb 2004 15:54:30 +, in sentex.lists.freebsd.net you
wrote:

>On Tue, Feb 03, 2004 at 03:38:19PM -, Edward Butler wrote:
>> I am looking to dump the log files from various Cisco routers on to one
>> of various FreeBSD boxes we are running ( mainly FreeBSD 4.4 ) once the
>> logs have been dumped to then rotate these in a similar way that other
>> system logs files are rotated - dns, www and mail etc...
>> 
>> My question is - do I need to compile a specific syslog collector or
>> will syslog on its own be able to handle these messages? Also how can I
>> reconfigure logrotate to include these log files?
>
>1) Tell Cisco routers to use a specific facility/priority for their messages.
>2) Tell syslog.conf to place the messages using this facility/priority into
>their own log file.
>3) Tell newsyslog.conf to rotate these logs according to the desired policy.
>
>No need to install logrotate. newsyslog is the default FreeBSD log file
>rotation tool.
>
>BMS
>___
>[EMAIL PROTECTED] mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-net
>To unsubscribe, send any mail to "[EMAIL PROTECTED]"

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: rl interface drops out occasionally

2004-02-03 Thread Sumit Shah 
Thanks for the reply, it's good to hear I'm not the only one 
experiencing this.  At least there is a simple workaround and we were 
going to upgrade the NIC anyway.

thanks,
sumit
On Feb 3, 2004, at 12:38 PM, Bob DeBolt wrote:

Greets

I've noticed that
every now
and then the network interface drops out.  I can ifconfig destroy and
then create it again and the network interface comes back.  This
machine serves nfs/smb/rsync exclusively and nothing more
(2-3 gigs of
traffic is moved per day).
I had the same description of problem. I shut off the onboard
NIC and installed a new rl and problem was solved. I spent several
weeks testing different things. For the 5 or ten bucks for a new
rl card, it is worth spending it.
Sincerely

Bob DeBolt
Pres / CTO
Starblanket Research
1-877-280-3695
Calgary 280-3695
[EMAIL PROTECTED]
0x44E4A96B
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "[EMAIL PROTECTED]"