system one) to process such
requests?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
other
question, and it is much more windows-related.
MR> I don't think LLMNR could interoperate with BIND at all.
:(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-n
) With wlan plugin daemon complains "unknown regdomain (0x8a)", and
I have "regdomain ROW country DE" on my WiFi card.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listi
HB> many cases.
Could you send this patch to me for test?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
t NAT nightmare to void. I hope, IPv6 prefix translation
will not be possible never ever!
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
ll be useful for sure, but it is another story,
not IPv6<->IPv6 translation.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
maybe, for bad-designed, but widely-deployed application level
protocols, but not address translations!
I, personally, don't see any problems to enable all outbound
connections for dedicated FTP server, though.
--
// Black Lion AKA Lev Serebryakov
__
f connections to 21 port, without any
address translation. And if FTP server uses non-standard control
port, yes, here is a problem, but it cannot be solved with NAT too
(or your NAT/firewall should expect each and every connection for FTP
commands, which is heavy and error-prone task).
--
//
uter, but my hardware is not
"decent" (Atom D2500) :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
mes" in account).
Nothing was changed in settings for long time.
How could I determine, which connections (listen port, at least) cause
these messages?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.
is still
valid for them. Or we should store lists of sockets in routing and ARP
tables... I don't know, what is worse.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebs
these two segments and/or
requires managed switches.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
gments (via VLANs), so there WAS NO routing at all, and now it
is two segments, which needs routing between them. But, maybe, I
understood John-Mark Gurney wrong, and they had two broadcast domains on
one network (and double-addressed interface in router).
--
// Black Lion AKA Lev Serebryakov
g like
this), and even now ASUS often uses Realtek chips, and before this, Realtek
was installed on 95% of desktop, office and home (low- and mid-range) MoBos
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freeb
6 address goes to this interface) that is required by the default
XL> route.
It is why I need patch network.subr after each upgrade on all my Hetzner
servers: they use IPv6 default route pointed to static route (not link-local
one)...
--
// Black Lion
with amd-mounted share (and NFS client complains on
timeouts after that).
Is it known problem? Does somebody use amd(8) these days?
Does new "automound(8)", which "compatible with its counterparts in OS X,
Solaris, and Linu
nderstand, removable storage (USB sticks, all
assortment of cards and cardreaders, optical discs, external USB HDD
enclosures and things like this) is much more frequent than NFS in these
days :)
--
// Black Lion AKA Lev Serebryakov
___
f
/tcp_ledbat.c),
but it uses much more "callbacks" from TCP/SCTP core to CC module, that
FreeBSD has.
Does somebody evaluate, is it possible to bring LEDBAT to FreeBSD?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org ma
FreeBSD?
hp> I'd guess there is nothing wrong in having this as a cc module.
hp> Someone has to do the necessary legwork :-)
The problem is it seems that "someone" needs to extend set of hooks in
mod_cc substantially. It is more than "write one more mod
understand why it should be faster than "normal" way,
as it is essentially same (ipfw + dummynet) code + some additional
context switches for netmap (to userland and back).
What does netmap shave off from packet processing in this particular
case, to compensate context switches? I
--
// Bla
AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
e generator is probably simpler
> to write (perhaps reusing sys/i386/i386/bpf_jit_machdep.c and its
> amd64 counterpart)
Yep, as we have BPF JIT, it could be simpler.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing
ous version had 5.5).
P.S. Adding net@ and mav@ to CC, original posting with all data is in
current@
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscrib
-72- 0K 112K WAIT17:26 3.96% intr{swi1: netisr 0}
11 root -92- 0K 112K WAIT 0:21 0.20% intr{irq15: ath0 ata
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebs
10 lines before. Interrupts? For
sure. Soft interurpts (netisr)? Yes. ng_queue? Never.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
our and I could not spend 9 hours in row on this
task.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
em (not only kernel), update build box, rebuild ports, build
image for router. It is about 5 hours per version. More than 512
revisions to search, about 10 iterations. FML.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
htt
outer. It takes about 5 hours per iteration and here is more than
512 revisions, so it is about 10 iterations :(
I could provide any debug information from old and new systems.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing
b694bf12157b
15678c15678
< MD5 (./var/log/userlog) = a827af82c1f780687706b19c7d94b29e
---
> MD5 (./var/log/userlog) = fc289b66ae6cb23f9b24b694bf12157b
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mai
U,'' there is only
The CPU with The Core :)
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
ith
protocols like L2TP), but, IMHO, it is good idea to warn user when it
COULD be avoided.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail
Hello, Lev.
You wrote 12 января 2012 г., 15:00:20:
>> But what mav says makes sense.
> It is it -- stack size. Setting KSTACK_PAGES=6 fixes situation.
OOOPS. Not. After another 5 minutes ng_queue again consumes 100% CPU
:(
--
// Black Lion AKA Lev Se
it Ethernet Adapter (82566DM)'
class = network
subclass = ethernet
--
// Black Lion AKA Lev Serebryakov dev.em.0.%desc: Intel(R) PRO/1000 Network Connection 7.2.3
dev.em.0.%driver: em
dev.em.0.%location: slot=25 function=0 handle=\_SB_.PCI0.GBEC
dev.em.0.%pnpinfo: vendor=0x8
ully it will be MFC'd soon :)
I'm afraid, that "MFC'd" means "to 9-STABLE" now :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ne
Everything works, but it is ugly hack -- to change system startup
script, and I don't like it (for FreeBSD 8 I needed to change
/etc/network.subr in similar way).
Is here any good way to configure such routing without changes in
scripts, only with /etc/rc.conf?
--
// Black Lion AKA Lev Ser
but how it could be fixed?
Also, Youtube doesn't work over IPv6 with same symptoms, so it is not
only my servers' problem, it looks like my local network (and tunnel)
problem.
How should it work? Maybe, I'm filtering out something mandatory on firewall?
--
size 1420 to my local network many times and doesn't
LS> get any answer, so it is MTU problem for sure, but how it could be fixed?
But
server# ping6 -D -s 1420
Works!
I don't understand, what happens here :(
--
// Black
e, as
MTU 1280 assumes outer MTU is 1500?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
nnel?
Should sources of if_gif be fixed? Or man page?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
to my
IPv4 provider), and gif0 doesn't allow me to set mtu 1240 on it.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
ay be, it could be done on this level, but I don't
know any open-source drivers, which support this feature.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsu
data, as 1.5-9K
datagrams?!
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
t;nat 1 ip
from any to any"?
ipfw(8) says, that "all" is synonym to "ip" but means "Matches any
packet.". Does it mean really _any_ packer and all PPPoE traffic goes
through NAT (useless) and "check-state&
. The packets will be
MS> seen first by the firewall, then passed to whatever is handling PPPoE
But there is no rule for it, and default policy is "deny"... But it
works.
MS> on the local box, then re-injected into the IP stack, etc. for
MS> processing b
Hello, Michael.
You wrote 29 августа 2012 г., 19:01:50:
>> ip from any to any in recv vr0
MS> "any" here is also not appropriate...
Additional checks (for correct addresses, etc) are performed at rules
11xxx :)
--
// Black Lion
ithout wired traffic), userland freezes under load (very bad with
ULE, better with 4BSD), and inability to pass through 40Mbit in both
directions simultaneously.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://list
irections simultaneously, and downstream has priority. When
there is no much of downstream, it upload at 40-45Mibt/s, and when
downstream is 40-45Mibt/s upstream could be only about 20Mbit/s.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
s noticeable.
Really, this is not truth. Or, to be more specific, it is not
complete truth. Now if_vr copies data only for some chips (quirk
VR_Q_NEEDALIGN in sources). My chips (VT6105M) don't need it, and
driver doesn't copy data for them.
s for SCHED with 4BSD and ULE under load on same
Geode with same vr(4) adapters, but I don't understand how to read
them. Yes, I could look at (very slow, small and bad looking) graphs
with Python/Tk script, but I don't understand, what does it all mean.
--
, may
be 8, with POLLING)! Oh my! :)
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
n't
understand how to interpret these data by myself.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Hello, Adrian.
You wrote 6 сентября 2012 г., 22:12:04:
AC> On 6 September 2012 11:11, Lev Serebryakov wrote:
>> Hello, Adrian.
>> You wrote 6 сентября 2012 г., 22:07:08:
>>
>> AC> Oh don't worry about polling just yet. I just want to see what
>> AC>
such situation: about 60% of CPU
is occuped by "ketnel" and 35-40% occuped bu "smbd" accroding to "top
-S" ouput.
Is it normal, that 2.2GHz core is needed to saturate 1Gib link with
only one client (and one TCP connction), or I have something
misconfigur
ith
> only one client (and one TCP connction), or I have something
> misconfigured?
Ok, pressing "H" in "top" shows, that all this CPU goes to "{em0
tasq}" thread.
And, yes, I have all rxd/trd and other tunables set to recommended
high values.
--
//
imple "iperf" shows almost same load (slightly less, but it shows
slightly less speed, about 800Mbit).
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
T
hat uses sendfile() kernel function.
system ftpd twice slower (or I can not find good FTP client for
Windowsn -- I've tried FAR, wget/cygwin and "native" ftp), but load
is significally less.
On the other hand, when I rebuilt kernelk wit DEVICE_POLLING and
turned p
k Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
y, when a SETUP request is sent by a client, or a 200 reply
>is sent by a server, it is intercepted and modified. The address is
>changed to the gateway machine and an aliasing port is used.
>
RTSP is different from SIP :(
--
// Black
roblems, I'm not sure now, as I need FreeBSD), and all this
information is collected in communication with people who HAVE servers
with FreeBSD installed.
Again, I know, that Realtek NICs are crap, but "everybody says" that
Linux doesn't have THIS problem with THESE bo
these
problems and found different solutions, but all non-technical ones:
order gigabit connectivity, or pay for moving servers to other (old)
DCs...
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.
e note, that when port is in 1Gib mode (which can be buyed
for additional money, which I can not afford) FreeBSD works fine.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Hello, Brian.
You wrote 11 января 2011 г., 22:29:13:
> basic mode: 100 Mbit, full duplex
> link partner: 100baseTx-HD
It looks VERY strange. How could id be?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing lis
And, please note very strange output from Linux's mii-tool and
ethtool in previous my message to list: mismatch between "basic mode"
and "link partner".
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org maili
fails?..
Or disabled... And it works -- very strange. And FreeBSD uses
half-duplex even with given "media-opt" and network is dramatically
slow -- NFS from DC-local server is about 150KiB/s (from FreeBSD
installer).
--
// Black Lion AKA Lev Serebryakov
___
, they didn't answer, because I already have
answer that FreeBSD is not supported :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail
get a agreed link duplex.
Maybe, adding new mediaopt is not very hard? Or is it?
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to &qu
s it might be interesting to know the
> exact network device and debug why hard setting is broken.
As far as I understand, again, it is not broken, but disabled,
because cause problems on some devices...
--
// Black Lion AKA Lev Serebryakov
_
. With
this media option result is the same because refphy(4) ignores user
requests, if I understand right.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsub
erver itself :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
local NFS with it.
Without this patch FreeBSD is unusable on Hetzner dedicated servers
in newer DCs (DC 13 and DC 14).
Patch is attached. I think, it worths to include it to base system,
as it allows use FreeBSD at least on one very large and popular
hosting provider without additional costs :
Mbps/full-duplex/no-autonegotiation and it is not under my control!
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
case, when remote end SUPPORTS autonegotiation ;-)
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
onditionally use auto-negotiation so I
> think it's better not to use auto-negotiation at all during manual
> media configuration and provides a way to use auto-negotiation in
> manual media configuration if administrator want to do that.
So, invert meaning (and name)
implementation works, doesn't notice any difference -- rgephy
works exactly the same way as usual untill you set option.
And, yes, I think, that additional media option will be better, but
it looks like major feature and not small patch :)
--
// Black Lion AKA Lev Serebryakov
_
:a7:bb:37
inet 46.4.40.135 netmask 0xffc0 broadcast 46.4.40.191
media: Ethernet 100baseTX (100baseTX )
status: active
onlyone#
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.f
it works for me.
Only one note: I think, it is good idea to document this flag in
re(4).
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send a
thus will be in the corresponding RC3 and
> RELEASE versions.
Great! I hope, Hetzner upgrade their Rescue mfsBSD system & put
8.2-RELEASE on NFS, to allow easy and fast installation of FreeBSD on
their servers again.
--
// Black Lion AKA Lev Serebryakov
___
g em0 down
&& ifconfig em0 up" solves problem.
Output of different diagnostic tools (vmstat, netstat, ifconfig,
sysctl of dev.em.0 tree, top -S) are attached in one file.
Early (about half year ago) this sytem works without any problems
with net.
--
// Black Lion AKA
Hello, Eugene.
You wrote 7 февраля 2011 г., 10:14:22:
> Have you read thread "em driver, 82574L chip, and possibly ASPM" in net@ ?
Partially. Now I return to it and found some patch to if_em.c, I'll
give it a try.
--
// Black Lion A
ev.em.0.rx_processing_limit=4096
I'm trying to run with patch from "em driver, 82574L chip, and
possibly ASPM" thread now under heavy network load.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
ht
s without
any messages like "Watchdog timeout", only down/up reset it.")...
Codebase for em and igb is somewhat common...
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/ma
s:
em0: Watchdog timeout -- resetting
em0: Queue(0) tdh = 1302, hw tdt = 1265
em0: TX(0) desc avail = 31,Next TX to Clean = 1296
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/f
irq: 0
dev.em.0.queue0.rx_nxt_refresh: 896
dev.em.0.queue0.rx_nxt_check: 896
--
// Black Lion AKA Lev Serebryakov
em0.log
Description: Binary data
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
ed
> in that thread.
Yes, as it doesn't help, I've reverted to "stock" one.
> If you want to try 7.1.9-test, you can download it at
> http://www.tancsa.com/if_em-8.c for releng_8.
I've tried it. It has worked without hangs for 7-8 days, and after
that hangs 2
Hello, Mike.
You wrote 1 марта 2011 г., 17:20:49:
> I have been running with 7.2.2 and so far so good. However, its hard to
> say in my case as the box I would only periodically see the issue.
As I wrote to Jack, my NIC hangs today with 7.2.2
--
// Black Lion AKA Lev Sereb
y detailed error ? What the output of sysctl "dev.em.X"
> where X is the index of the hung interface ?
One more hang. Two logs are attached.
--
// Black Lion AKA Lev Serebryakov
em0.7.2.2.hang1.log
Description: Binary data
em0.
ing the problem?
It is only machine with Intel NIC in my network. I'll try to replace
patchcord...
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscrib
.9 on my hardware :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
) of memtest86+ -- no problems...
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
0 allow tcp from any to me dst-port 22,80 setup
keep-state
30010 20824 allow tcp from any to me dst-port 53 setup keep-state
30020 26 1632 allow udp from any to me dst-port 53 keep-state
39000 18 1152 allow icmp from any to
Hello, Lev.
You wrote 17 апреля 2011 г., 18:30:34:
> Added "allowed" rules for icmpv6 input/output to my ipfw firewall.
Ok, I need to allow tunneling protocol for external (outer)
interface with "allow ip from HE-ENDPOINT to me proto ipv6".
Sorry.
--
// Black L
s, but not
link-local automatic ones, and it seems, that rtadvd doesn't announce
anything.
As far as I understand, rtadvd can not work without link-local
addresses, am I right? Why these addresses doesn't appear on
interfaces?
--
// Black Lion AKA Lev Serebryakov
___
e.
ifconfig shows only one "inet6" address for each (manually
configured), and these nd6 flags:
nd6 options=3
But
sysctl net.inet6.ip6.accept_rtadv: 0
sysctl net.inet6.ip6.auto_linklocal: 1
And
gateway# ifconfig em0 -accept_rtadv
ifconfig: ioctl(SIOCGIFINFO_IN6): Invalid argu
t AES-CCM 3:128-bit
txpower 30 scanvalid 60 protmode CTS wme burst dtimperiod 1 -dfs
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Hello, J..
You wrote 19 апреля 2011 г., 23:20:16:
> PS: If you sysctl net.inet6.ip6.auto_linklocal=1 and bring the interface
> down and back up you will end up with a link-local address on the
> interface.
Oh, it is what I need. Thank you.
--
// Black Lion AKA Lev Se
k, but "deny ... NOT IPv6,IPv6,..." is hard to
emulate (with multiple skipto rules).
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any
multiple
interfaces, but it doesn't look very convenient.
I need only distribute IPv6 DNS server addresses to clients, but not
prefixes or address information.
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
that
> point, stateless autoconfiguration worked and the clients did a DHCP
> request to determine their name servers only.
Hm... It is never mentioned in documentation. I've looking for
"stateless" word in different forms without any success. I'll try this
one,
problem, as after these 5 minutes
"deny" counters of my firewall are almost all zeroes -- only my ISP
local network (IPv4) protection shows dropped packets (it has many
script kiddies and zombie systems in local network, so it is not
surprise me).
FreeBSD
ooks like very valuable addition to FreeBSD, but,
unfortunately, it doesn't help client Windows machines in any way :(
--
// Black Lion AKA Lev Serebryakov
___
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
T
1 - 100 of 217 matches
Mail list logo
