Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.
One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.
FreeBSD
266
Solutions
414
Contributors
FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.
Related Topics
Share tech news, updates, or what's on your mind.
Sign up to Post
Load Recent Content
Yesterday I installed FreeBSD on a virtual machine with some web tools to use as a hobby webserver.
My project includes perl scripts, but when I try to run them in my browser a get the whole script shown as a text, instead of getting executed as a program.
So I did some digging and found that I had to do some CGI configuration. So I added the line AddHandler cgi-script .pl to /usr/local/etc/apache24/ht
I am using a web interface for the server called webmin, if that could be of importance.
Thank you for helping!
My project includes perl scripts, but when I try to run them in my browser a get the whole script shown as a text, instead of getting executed as a program.
So I did some digging and found that I had to do some CGI configuration. So I added the line AddHandler cgi-script .pl to /usr/local/etc/apache24/ht
I am using a web interface for the server called webmin, if that could be of importance.
Thank you for helping!
Free Tool: SSL Checker
How to create a md (memory disk) file in freeBSD,
basically I want to keep / ( root ) in memory and hence I want to use memory disk ( md ). Also I want to ensure that it's like that boot over boot
basically I want to keep / ( root ) in memory and hence I want to use memory disk ( md ). Also I want to ensure that it's like that boot over boot
Hello,
I use FreeBSD ipfw, I want to measure current speed in bytes per second and packets per second for monitoring.
If I have a pipe and two queues in it, ipfw doesn't give current speed when executing 'show'. If I try to measure speed by counters (ipfw rules), I don't get real speed because counters measure queue input, some packets can be dropped in queue or pipe.
Please, help.
I use FreeBSD ipfw, I want to measure current speed in bytes per second and packets per second for monitoring.
If I have a pipe and two queues in it, ipfw doesn't give current speed when executing 'show'. If I try to measure speed by counters (ipfw rules), I don't get real speed because counters measure queue input, some packets can be dropped in queue or pipe.
Please, help.
Hi,
I created a few different zpool configs on ZFS using FreeNAS and I'm trying to figure out a way to reliably benchmark the performance.
I first tried it from a remote host connecting to an SMB share. In Windows I can't get any higher than 60 MBps. Both using a normal file copy (big file) and using various benchmarking tools. On linux I tried filling up a file using
to a smb mapped drive using a simple dd if=/dev/zero of=/mnt/cifs-share1/test1.
On to the host itself: So far I tried the default way using iozone which ships with FreeNAS. But the results seem to be high to be true so the question is how do I do it reliably and how to interpete the results?
The result I'm getting is:
sudo iozone -i 0 -R -l 5 -u 5 -r 4k -s 10G | tee -a /tmp/iozone_results.txt
I created a few different zpool configs on ZFS using FreeNAS and I'm trying to figure out a way to reliably benchmark the performance.
I first tried it from a remote host connecting to an SMB share. In Windows I can't get any higher than 60 MBps. Both using a normal file copy (big file) and using various benchmarking tools. On linux I tried filling up a file using
to a smb mapped drive using a simple dd if=/dev/zero of=/mnt/cifs-share1/test1.
On to the host itself: So far I tried the default way using iozone which ships with FreeNAS. But the results seem to be high to be true so the question is how do I do it reliably and how to interpete the results?
The result I'm getting is:
sudo iozone -i 0 -R -l 5 -u 5 -r 4k -s 10G | tee -a /tmp/iozone_results.txt
Excel chart generation enabled
Record Size 4 kB
File size set to 10485760 kB
Command line used: iozone -i 0 -R -l 5 -u 5 -r 4k -s 10G
Output is in kBytes/sec
Time Resolution = 0.000001 seconds.
Processor cache size set to 1024 kBytes.
Processor cache line size set to 32 bytes.
File stride size set to 17 * record size.
Min process = 5
Max process = 5
Throughput test with 5 processes
Each process writes a 10485760 kByte file in 4 kByte records
Children see throughput
Hello ,
We are building an IDS/IPS/Waf system that reads the packets from PF_Ring and apply rules to IPTables / Netfilter / Ntuple .
That software needs to access to userspace for iptables and kernelspace for netfilter. So we already pipe the both side.
But our main concern is about the performace issue. Time is our biggest enemy and need to solve the problem in mikro / mili seconds.
So where is the best place working area for our main core of software for performance ? kernel area or user area ? and why .
Thanks for information
We are building an IDS/IPS/Waf system that reads the packets from PF_Ring and apply rules to IPTables / Netfilter / Ntuple .
That software needs to access to userspace for iptables and kernelspace for netfilter. So we already pipe the both side.
But our main concern is about the performace issue. Time is our biggest enemy and need to solve the problem in mikro / mili seconds.
So where is the best place working area for our main core of software for performance ? kernel area or user area ? and why .
Thanks for information
Hello ,
We need to install eth-tool on freebsd. As far as i searched on the net it is not possible but i am very suprised to see this on free bsd man's page
https://www.freebsd.org/cgi/man.cgi?query=ethtool&apropos=0&sektion=0&manpath=Red+Hat+Linux%2Fi386+9&format=html
I try to install from the given link below but i am facing with an issue .
Does any body know how to over come this issue ?
We need to install eth-tool on freebsd. As far as i searched on the net it is not possible but i am very suprised to see this on free bsd man's page
https://www.freebsd.org/cgi/man.cgi?query=ethtool&apropos=0&sektion=0&manpath=Red+Hat+Linux%2Fi386+9&format=html
I try to install from the given link below but i am facing with an issue .
Does any body know how to over come this issue ?
root@fw:~/Driver/rng-tools-5 # ./config
./config: Command not found.
root@fw:~/Driver/rng-tools-5 # ./configure
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for a thread-safe mkdir -p... ./install-sh -c -d
checking for gawk... no
checking for mawk... no
checking for nawk... nawk
checking whether make sets $(MAKE)... yes
checking whether make supports nested variables... yes
checking whether to enable maintainer-specific portions of Makefiles... no
checking for gcc... gcc
checking whether the C compiler works... yes
checking for C compiler default output file name... a.out
checking for suffix of executables...
checking whether we are cross compiling... no
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ISO C89... none needed
checking for style of include used by make... GNU
checking dependency style of gcc... gcc3
checking for ranlib... ranlib
checking how to run
Hello ,
I have 2 interfaces on my free bsd
1. 10.10.10.2/30 ip assigned
2. 10.10.10.6/30 ip assigned
i want to route 192.168.0.0/21 traffic to 10.10.10.5 ip (second interface's gateway) that comes from the router to first interface
router ---- (1st interface) FreeBSD (2nd interface) ---- router
thanks
I have 2 interfaces on my free bsd
1. 10.10.10.2/30 ip assigned
2. 10.10.10.6/30 ip assigned
i want to route 192.168.0.0/21 traffic to 10.10.10.5 ip (second interface's gateway) that comes from the router to first interface
router ---- (1st interface) FreeBSD (2nd interface) ---- router
thanks
Hello ,
I am using intel X550 fiber interface but it has unsupported SFP+ modules so i need to apply this command on freebsd :
modprobe ixgbe allow_unsupported_sfp=1,1
Thank you
I am using intel X550 fiber interface but it has unsupported SFP+ modules so i need to apply this command on freebsd :
modprobe ixgbe allow_unsupported_sfp=1,1
Thank you
I want to activate ntuple support on my interface but i do not know how to do it on freebsd actually it is easy with eth-tool
but i could not find how to do it
ethtool -K p6p2 tso off
ethtool -K p6p1 tso off
ethtool -K p6p2 gso off
ethtool -K p6p1 gso off
ethtool -N p6p2 rx-flow-hash udp4 sdfn
ethtool -N p6p1 rx-flow-hash udp4 sdfn
ethtool -K p6p2 ntuple on
/sbin/ifconfig p6p2 txqueuelen 10000
ethtool -G p6p1 rx 2048 tx 2048
ethtool -G p6p2 rx 2048 tx 2048
but i could not find how to do it
I am sorry , i am very new on freebsd but i need help to convert this rules to pf rules. Should some one help me ?
Also is there any command like on centos to watch pf dropped / rule hitted packets like watch iptables -nvL
Thanks
iptables -t raw -D PREROUTING -p tcp -m tcpmss --mss 1460 -m ttl --ttl-eq=118 -m length --length 48 -d 178.20.227.138 -m u32 --u32 '32&0x0000FFFF=0x2000' -j DROP
iptables -I FORWARD 1 -i p4p2 -m ttl --ttl-eq=252 -m length --length 1048 -d 185.9.157.211 --match string --algo kmp --hex-string |000000000000000000000000000000000000000000000000000000000000| -j DROP
Also is there any command like on centos to watch pf dropped / rule hitted packets like watch iptables -nvL
Thanks
Upgrade your Question Security!
Your question, your audience. Choose who sees your identity—and your question—with question security.
Interestingly enough I have no problem using let's encrypt on Windows platform and figured it was going to be a breeze on *nix... Running into a slew of issues. For one I am trying to use certbot to facilitate this. When I issue the correct commands and webroot I see it builds the .well-known folder but it does not build the acme-challenge folder. If I try to manually create the acme-challenge folder it deletes it after the sudo certbot certonly --webroot -w /var/www/example -d example.com -d www.example.com command (with my domain info substituted of course) with the following error:
Detail: Invalid response from
http://<mysite>/.well-known/acme-
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Super frustrated as everything in *nix is always easier, right? Well not this time LOL. Any suggestions would be appreciated!
-J
Detail: Invalid response from
http://<mysite>/.well-known/acme-
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Super frustrated as everything in *nix is always easier, right? Well not this time LOL. Any suggestions would be appreciated!
-J
Hello,
I would like to know if there is a way to create a Symlink-like file but with the difference that the file it points to gets executed when the link is read and the output is what I get from reading it.
It should work on freebsd/linux.
Thanks
Best regards
I would like to know if there is a way to create a Symlink-like file but with the difference that the file it points to gets executed when the link is read and the output is what I get from reading it.
It should work on freebsd/linux.
Thanks
Best regards
I heard iOS is tailored from FreeBSD so I'm hoping to be able to do something like
"ps -ef |grep email_client_process"
if it's not there, then restart it.
Reason is our MobileIron email+ client kept getting killed by iOS as iOS sees it
as a 3rd party/foreign process.
any chance of doing this on an MDM controlled device?
"ps -ef |grep email_client_process"
if it's not there, then restart it.
Reason is our MobileIron email+ client kept getting killed by iOS as iOS sees it
as a 3rd party/foreign process.
any chance of doing this on an MDM controlled device?
I inherited a FreeBSD box that is forwarding email using Postfix through various JLS (jails).
Two days ago I switched the MX record(s) to point to a third party service that is going to replace this FreeBSD server.
When I log into the FreeBSD machine and look at the logs (specifically to see if mail is flowing), I see two or three messages in a handful of jails.
A week ago before the MX record change there would have been 20 emails every few minutes, so something obviously changed, which was expected.
What was NOT expected was to see ANY mail flow through the FreeBSD machine.
My question is: Should I expect to see some mail for an extended amount of time? I'm asking because I thought that once I changed the MX record - with a TTL of 300 for all 5 priorities - that it would handle all the mail.
Thanks for your help!
Two days ago I switched the MX record(s) to point to a third party service that is going to replace this FreeBSD server.
When I log into the FreeBSD machine and look at the logs (specifically to see if mail is flowing), I see two or three messages in a handful of jails.
A week ago before the MX record change there would have been 20 emails every few minutes, so something obviously changed, which was expected.
What was NOT expected was to see ANY mail flow through the FreeBSD machine.
My question is: Should I expect to see some mail for an extended amount of time? I'm asking because I thought that once I changed the MX record - with a TTL of 300 for all 5 priorities - that it would handle all the mail.
Thanks for your help!
I have a mail server on a FreeBSD box. Can you tell me how to tell what kind of email server is running on this FreeBSD?
Hi
I am trying to make Squid working on FreeBSD 11
I have two NIC's internal INT_IF and external EXT_IF.
My NAT is working but I am not sure if this is redirection issue or squid.conf
--- /etc/pf.conf
-- squid.conf---
I am trying to make Squid working on FreeBSD 11
I have two NIC's internal INT_IF and external EXT_IF.
My NAT is working but I am not sure if this is redirection issue or squid.conf
--- /etc/pf.conf
nat on $EXT_IF from !($EXT_IF)->($EXT_IF:0)
rdr on $INT_IF inet proto tcp from any to any port www -> 127.0.0.1 port 3128
pass in on $INT_IF inet proto tcp from any to 127.0.0.1 port 3128 keep state
pass out on $EXT_IF inet proto tcp from any to any port www keep state
pass in quick on { lo0 $INT_IF } all
pass out quick on $EXT_IF inet proto {tcp,udp} from any to any keep state
pass out quick on $EXT_IF inet proto { tcp,udp,icmp} all
-- squid.conf---
maximum_object_size 30000 KB
maximum_object_size_in_memory 40 KB
acl localnet src 10.1.0.0/24
acl localnet src 172.16.15.0/24
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost manager
http_access deny manager
http_access allow localnet
http_access allow localhost
No matter what NTP server address i put in it says "server could not be reached". I tried setting it to force and rebooting it but that didnt do anything either. I'm not understanding why this wont work because i can clearly ping from FreeNAS to my other servers that i want to use as a reference.
I also tried doing it through shell but I don't know if I have the commands correct...
I also tried doing it through shell but I don't know if I have the commands correct...
Hi everyone. I'm going crazy trying to join my FREENAS server to windows 2008 AD service. I've tried almost everything with no luck. I always get this message:
PS.
My local domain is: innovateperu.local
ad_conf.png
cifs_conf.png
network_conf.png
config.png
krb5.png
resolv.png
smb4.png
Unable to find domain controllers for innovateperu.local.and the log shows:
FreeNAS_ActiveDirectory_BaI have attached some screenshots of my FREENAS configurationse.get_SRV _records: no SRV records for _ldap._tcp.dc._msdcs.innov ateperu.lo cal found, fail!
PS.
My local domain is: innovateperu.local
ad_conf.png
cifs_conf.png
network_conf.png
config.png
krb5.png
resolv.png
smb4.png
I know that I can organize a single directory listing with:
How would I look for all .php files on the whole drive, with the latest being at the bottom?
Any ideas?
LS -LTR
How would I look for all .php files on the whole drive, with the latest being at the bottom?
Any ideas?
Get expert help—faster!
Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.
I'm trying to configure my server firewall to only accept connections that are coming from an Xfinity user. I don't have a static IP, but was wondering if Xfinity owned a block, or something like that.
I'm setting this up on a FreeBSD server.
I'm setting this up on a FreeBSD server.
I'm trying to figure out what the very top (dot) directory is, and why it shows that it was created today.
Just got word that there has been "suspicious activity" on my server. It has something to do with the file mysite.com/.mail
Can someone help me lock things up?
I've changed my root password so far.
System is FreeBSD
Can someone help me lock things up?
I've changed my root password so far.
System is FreeBSD
I'm having trouble getting FTP to work on our server.
When I check auth.log it contains:
Jul 5 13:06:29 216-55-xxx-xxx sshd[57421]: Accepted password for ftpuser from 67.177.xxx.xxx port 58996 ssh2
Jul 5 13:06:29 216-55-xxx-xxx sshd[57423]: subsystem request for sftp by user ftpuser failed, subsystem not found
Any ideas? It's been a LONG time since I configured this server.
When I check auth.log it contains:
Jul 5 13:06:29 216-55-xxx-xxx sshd[57421]: Accepted password for ftpuser from 67.177.xxx.xxx port 58996 ssh2
Jul 5 13:06:29 216-55-xxx-xxx sshd[57423]: subsystem request for sftp by user ftpuser failed, subsystem not found
Any ideas? It's been a LONG time since I configured this server.
We have a FreeBSD Pfsense appliance on a physical Dell PE1950 in a remote office. It becomes essential for the appliance to send out an alert if its hard drive(s) got bad. How to accomplish that?
FreeBSD
266
Solutions
414
Contributors
FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.
Related Topics
© 1996-2018 Experts Exchange, LLC. All rights reserved. Covered by US Patent.