firewalls, connecting, config & apachetoolbox (was: Re:
BigApache [..])
DK
asdzxc111 at yahoo.com
Wed Aug 4 08:15:17 PDT 2004
Hi Giorgos et al,
thanks for your patience.
I have enclosed the output of dsmeg, ps, XF86Config if it helps in
understanding why my system runs slower than W2000 & why I cannot connect to
the net via my broadband connection.
--- Giorgos Keramidas <keramida at ceid.upatras.gr> wrote:
> Bearing this in mind you might, of course, find it a bit more reassuring to
> run a firewall like IPFW. But this doesn't *require* a kernel recompile.
> You can simply load the ipfw.ko module with kldload(8) and immediatelly
> start setting up the rules of your firewall ruleset. As root, you can load
> the ipfw module by: # kldload ipfw
Thanks for that. I have ipfw loaded okay(I hope). After reading 14.8.3 from the
handbook regarding IPFW, I was a little worried.
"14.8.3 Enabling IPFW on FreeBSD
As the main part of the IPFW system lives in the kernel, you will need to add
one or more options to your kernel configuration file, depending on what
facilities you want, and RECOMPILE your kernel."
> The default set of firewall packet inspection rules that ipfw loads will
> block *EVERYTHING* so you might want to do a bit of research on the
> available rulesets by reading about rc.firewall, rc.conf and/or browse the
> contents of the /etc/defaults/rc.conf file:
If I understand it correctly after reading the handbook, if I add
'firewall_type=open' in my '/etc/rc.conf' file, will it make all
incoming/outgoing ports open so I can connect to the net with sysinstall to
download packages ???
> The "bad intepreter" error means that the `install.sh' script (most likely)
> starts with a line like this:
> Edit `install.sh' and replace `/bin/bash' with `/usr/local/bin/bash' if you
> have bash installed.
Legend. Got this script working now :))
...Except...All modules seem to install okay Except for "mod_perl".
I get the error:
-----------------------
[-] 16) -Mod Perl 1.29
Choice [?] 16
LWP::UserAgent not installed!
HTML::HeadParser not installed!
Type "perl -MCPAN -e shell" to start the perl CPAN
shell, then "install LWP::UserAgent" to install the LWP::UserAgent module!
Substitute LWP::UserAgent for any perl module.
------------------------------
I don't understand what I am supposed to "substitute" (above) ???
Other problems(Doh!):
1) For automount, I edited /etc/fstab.
It was easier & more logical than the editing amd(/etc/amd.conf & /etc/amd.map)
Problem: There has to be a CD in the CD drive & a floppy in the floppy drive
otherwise the drives don't automount & the bootup faulters !!
- This is annoying. Is there a way around this so I can automount at bootup
without a disk being in the drive ???
2) I ran xf86config & generated a new config file. It broke X & I was not able
to log in. Thankfully I saved a working one to floppy.
Any suggestions as to what I can change in my XF86Config file(attached) so that
all the hardware is being utilised & that the screen is being used fully
instead of only 80% ???
-------------------------
My Monitor Specs(If this helps):
viewsonic pf775
1600x1200 @ 77Hz
1280x1024 @ 90Hz
1024x768 @ 118Hz
800x600 @ 149Hz
Frequency f h: 30~97kHz; f v: 50~180Hz
---------------------------
3) I tried to intstall the login client for my broadband connection so I can
use sysinstall to download & install packages.
The program fails on make & make install!
Screen Output
-------------------
127# make install
Makefile error: there is no COMMENT variable defined
for this port. Please, rectify this.
*** Error code 1
Stop in /usr/ports/distfiles/login.
-------------------
Makefile
-----------------------------
PORTNAME= login
PORTVERSION= 2.0
CATEGORIES= net
MASTER_SITES= http://
DISTNAME= login
EXTRACT_SUFX= -2.0-unix-src.tar.gz
GNU_CONFIGURE= yes
USE_GMAKE= yes
post-extract:
$(CP) $(FILESDIR)/login.sh $(WRKSRC)
.include <bsd.port.mk>
-----------------------
Any suggestions as to what "COMMENT variable" it wants defined ???
4) I am taking your advice & am trying to connect to the net with sysinstall so
I can download packages/ports & hopefully find an easier way to install apps.
However when I go through the steps to install a package & select a freebsd ftp
site, at the end, a prompt comes up saying something like "cannot resolve
ftp... name server, network needs to be configured..) ... or something like
that
Q: Do I need to get my broadband login client working to connect to the net OR
can I login to my ISP from a terminal within BSD ???
Q: Do I need to login to my broadband ISP via my login client to enable
"sysinstall" to be able to download packages etc ... ???
Q: Like tracert on W2000, is their a command I can use in BSD to see when I am
connected to the net ???
Kind Regards,
DK
__________________________________
Do you Yahoo!?
Yahoo! Mail Address AutoComplete - You start. We finish.
http://promotions.yahoo.com/new_mail
-------------- next part --------------
Section "ServerLayout"
Identifier "XFree86 Configured"
Screen 0 "Screen0" 0 0
InputDevice "Mouse0" "CorePointer"
InputDevice "Keyboard0" "CoreKeyboard"
EndSection
Section "Files"
RgbPath "/usr/X11R6/lib/X11/rgb"
ModulePath "/usr/X11R6/lib/modules"
FontPath "/usr/X11R6/lib/X11/fonts/misc/"
FontPath "/usr/X11R6/lib/X11/fonts/Speedo/"
FontPath "/usr/X11R6/lib/X11/fonts/Type1/"
FontPath "/usr/X11R6/lib/X11/fonts/75dpi/"
FontPath "/usr/X11R6/lib/X11/fonts/100dpi/"
EndSection
Section "Module"
Load "dbe"
Load "dri"
Load "extmod"
Load "glx"
Load "record"
Load "xtrap"
Load "speedo"
Load "type1"
EndSection
Section "InputDevice"
Identifier "Keyboard0"
Driver "keyboard"
EndSection
Section "InputDevice"
Identifier "Mouse0"
Driver "mouse"
Option "Protocol" "auto"
Option "Device" "/dev/sysmouse"
EndSection
Section "Monitor"
Identifier "Monitor0"
VendorName "VSC"
ModelName "PF775"
HorizSync 30-107
VertRefresh 50.0-100.0
Option "DPMS"
EndSection
Section "Device"
### Available Driver options are:-
### Values: <i>: integer, <f>: float, <bool>: "True"/"False",
### <string>: "String", <freq>: "<f> Hz/kHz/MHz"
### [arg]: arg optional
#Option "SWcursor" # [<bool>]
#Option "HWcursor" # [<bool>]
#Option "NoAccel" # [<bool>]
#Option "ShowCache" # [<bool>]
#Option "ShadowFB" # [<bool>]
#Option "UseFBDev" # [<bool>]
#Option "Rotate" # [<str>]
#Option "VideoKey" # <i>
#Option "FlatPanel" # [<bool>]
#Option "FPDither" # [<bool>]
#Option "CrtcNumber" # <i>
Identifier "Card0"
Driver "nv"
VendorName "nVidia Corporation"
BoardName "NV4 [RIVA TNT]"
BusID "PCI:0:20:0"
EndSection
Section "Screen"
Identifier "Screen0"
Device "Card0"
Monitor "Monitor0"
DefaultDepth 24
SubSection "Display"
Depth 16
Modes "1024x768"
EndSubSection
SubSection "Display"
Depth 24
Modes "1024x768"
EndSubSection
EndSection
-------------- next part --------------
Copyright (c) 1992-2004 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD 4.10-RELEASE #0: Tue May 25 22:47:12 GMT 2004
root at perseus.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC
Timecounter "i8254" frequency 1193182 Hz
CPU: Pentium/P54C (179.63-MHz 586-class CPU)
Origin = "GenuineIntel" Id = 0x52c Stepping = 12
Features=0x1bf<FPU,VME,DE,PSE,TSC,MSR,MCE,CX8>
real memory = 134217728 (131072K bytes)
avail memory = 125165568 (122232K bytes)
Preloaded elf kernel "kernel" at 0xc0551000.
Intel Pentium detected, installing workaround for F00F bug
md0: Malloc disk
npx0: <math processor> on motherboard
npx0: INT 16 interface
pcib0: <Host to PCI bridge> on motherboard
pci0: <PCI bus> on pcib0
isab0: <Intel 82371SB PCI to ISA bridge> at device 7.0 on pci0
isa0: <ISA bus> on isab0
atapci0: <Intel PIIX3 ATA controller> port 0xf000-0xf00f at device 7.1 on pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
rl0: <Accton MPX 5030/5038 10/100BaseTX> port 0x6000-0x60ff mem 0xe2000000-0xe20000ff irq 11 at device 17.0 on pci0
rl0: Ethernet address: 00:e0:29:65:bb:23
miibus0: <MII bus> on rl0
rlphy0: <RealTek internal media interface> on miibus0
rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
ahc0: <Adaptec 2940A Ultra SCSI adapter> port 0x6100-0x61ff mem 0xe2001000-0xe2001fff irq 9 at device 19.0 on pci0
aic7860: Ultra Single Channel A, SCSI Id=7, 3/253 SCBs
pci0: <NVidia Riva TNT graphics accelerator> at 20.0 irq 9
orm0: <Option ROM> at iomem 0xc0000-0xc7fff on isa0
pmtimer0 on isa0
fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0
fdc0: FIFO enabled, 8 bytes threshold
fd0: <1440-KB 3.5" drive> on fdc0 drive 0
atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0
atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
kbd0 at atkbd0
psm0: <PS/2 Mouse> irq 12 on atkbdc0
psm0: model IntelliMouse Explorer, device ID 4
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=0x300>
sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
sio0: type 16550A
sio1 at port 0x2f8-0x2ff irq 3 on isa0
sio1: type 16550A
ppc0: <Parallel port> at port 0x378-0x37f irq 7 on isa0
ppc0: SMC-like chipset (ECP/EPP/PS2/NIBBLE) in COMPATIBLE mode
plip0: <PLIP network interface> on ppbus0
lpt0: <Printer> on ppbus0
lpt0: Interrupt-driven port
ppi0: <Parallel I/O> on ppbus0
ata4: <Generic ESDI/IDE/ATA controller> at port 0x168-0x16f,0x36e-0x36f irq 10 on isa0
ad0: 4892MB <QUANTUM FIREBALL EL5.1A> [10602/15/63] at ata0-master WDMA2
ad2: 1222MB <QUANTUM FIREBALL1280A> [2484/16/63] at ata1-master WDMA2
acd0: CDROM <CRD-8400B> at ata1-slave PIO4
Waiting 15 seconds for SCSI devices to settle
Mounting root from ufs:/dev/ad0s2a
IP packet filtering initialized, divert disabled, rule-based forwarding enabled, default to deny, logging disabled
nfs send error 13 for server pid85 at 127:/host
nfs send error 13 for server pid1 at 127:/net
cd9660: RockRidge Extension
fd0c: hard error reading fsbn 0 of 0-3 (No status)
-------------- next part --------------
UID PID PPID CPU PRI NI VSZ RSS WCHAN STAT TT TIME COMMAND
0 0 0 0 -18 0 0 0 sched DLs ?? 0:00.00 swapper
0 1 0 0 10 0 552 204 wait ILs ?? 0:00.04 init
0 2 0 0 10 0 0 0 tqthr DL ?? 0:00.00 taskqueue
0 3 0 0 28 0 0 0 idle DL ?? 0:00.00 aic_recovery0
0 4 0 0 28 0 0 0 idle DL ?? 0:00.00 aic_recovery0
0 5 0 0 -18 0 0 0 psleep DL ?? 0:00.08 pagedaemon
0 6 0 0 18 0 0 0 psleep DL ?? 0:00.00 vmdaemon
0 7 0 0 -18 0 0 0 psleep DL ?? 0:00.06 bufdaemon
0 8 0 0 -2 0 0 0 vlruwt DL ?? 0:00.67 vnlru
0 9 0 0 18 0 0 0 syncer DL ?? 0:02.12 syncer
0 71 1 0 2 0 988 644 select Ss ?? 0:00.27 syslogd
1 74 1 157 2 0 944 452 select Is ?? 0:00.00 portmap
0 79 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod
0 80 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod
0 81 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod
0 82 1 157 10 0 212 28 nfsidl I ?? 0:00.00 nfsiod
0 86 1 0 2 0 1140 656 sbwait D ?? 0:00.02 amd
0 87 1 0 2 0 1140 656 sbwait D ?? 0:00.02 amd
0 92 1 157 2 0 1060 612 select Is ?? 0:00.00 inetd
0 94 1 0 10 0 1028 680 nanslp Is ?? 0:00.07 cron
0 96 1 99 2 0 2596 1360 select Is ?? 0:03.19 sshd
0 99 1 0 2 0 3036 1672 select Ss ?? 0:00.62 sendmail
25 102 1 3 18 0 2936 1580 pause Is ?? 0:00.02 sendmail
0 128 1 0 2 0 920 484 select Is ?? 0:31.25 moused
88 182 145 0 2 0 51288 18608 poll S ?? 0:19.62 mysqld
0 200 199 1 2 0 47468 46344 select S ?? 2:21.69 XFree86
0 1874 1 0 2 0 936 644 select Ss ?? 0:00.03 dhclient
0 4799 4798 0 18 0 1352 864 pause Ss p0 0:00.47 csh
0 4864 4799 1 28 0 456 252 - R+ p0 0:00.00 ps
0 4636 4612 0 18 0 1356 856 pause Is p1 0:00.19 csh
0 4807 4636 0 10 0 1128 616 wait I+ p1 0:00.02 man
0 4808 4807 0 10 0 628 416 wait I+ p1 0:00.01 sh
0 4809 4808 0 -6 0 604 204 pipdwt I+ p1 0:00.01 zcat
0 4810 4808 0 3 0 1268 868 ttyin I+ p1 0:00.17 more
0 738 737 0 3 0 1340 844 ttyin Is+ p2 0:00.16 csh
0 1476 1469 70 3 0 1336 840 ttyin Is+ p3 0:00.16 csh
0 4781 4780 0 2 0 1984 1160 select Ss+ p4 0:02.90 top
0 164 1 3 10 0 1272 872 wait Is v0 0:00.11 login
0 183 164 13 18 0 1332 832 pause I v0 0:00.13 csh
0 185 183 175 10 0 636 240 wait I+ v0 0:00.03 sh
0 199 185 0 10 0 2168 1140 wait I+ v0 0:00.04 xinit
0 205 199 0 2 0 5280 3080 select S v0 0:39.93 wmaker
0 208 205 0 2 0 2796 1792 poll S v0 0:00.72 xload
0 209 205 0 2 0 2796 1792 poll S v0 0:00.69 xload
0 737 205 0 2 0 4332 2724 select I v0 0:00.99 xterm
0 1469 1 0 2 0 4380 2836 select I v0 0:01.18 xterm
0 2748 205 0 2 0 7616 4656 select S v0 0:27.42 xfe
0 4612 1 0 2 0 4456 3024 select I v0 0:02.80 xterm
0 4762 205 0 2 0 6880 4684 poll I v0 0:03.25 nedit
0 4780 205 0 2 0 4332 2956 select S v0 0:01.27 xterm
0 4798 205 0 28 0 4436 3060 - R v0 0:01.73 xterm
0 165 1 1 3 0 956 588 ttyin Is+ v1 0:00.02 getty
0 166 1 1 3 0 956 588 ttyin Is+ v2 0:00.02 getty
0 167 1 3 3 0 956 588 ttyin Is+ v3 0:00.02 getty
0 168 1 2 3 0 956 588 ttyin Is+ v4 0:00.03 getty
0 169 1 1 3 0 956 588 ttyin Is+ v5 0:00.02 getty
0 170 1 3 3 0 956 588 ttyin Is+ v6 0:00.02 getty
0 171 1 3 3 0 956 588 ttyin Is+ v7 0:00.02 getty
0 145 1 180 10 0 648 256 wait I+ con- 0:00.06 sh
More information about the freebsd-questions
mailing list