FreeBSD

264

Solutions

410

Contributors

FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello ,

We are building an IDS/IPS/Waf system that reads the packets from PF_Ring and apply rules to IPTables / Netfilter / Ntuple .
That software needs to access to userspace for iptables and kernelspace for netfilter. So we already pipe the both side.
But our main concern is about the performace issue. Time is our biggest enemy and need to solve the problem in mikro / mili seconds.
So where is the best place working area for our  main core of software for performance ? kernel area or user area ? and why .

Thanks for information
0
Independent Software Vendors: We Want Your Opinion
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Hello ,

We need to install eth-tool on freebsd. As far as i searched on the net it is not possible but i am very suprised to see this on free bsd man's page

https://www.freebsd.org/cgi/man.cgi?query=ethtool&apropos=0&sektion=0&manpath=Red+Hat+Linux%2Fi386+9&format=html


I try to install from the given link below but i am facing with an issue .
Does any body know how to over come this issue ?





root@fw:~/Driver/rng-tools-5 # ./config
./config: Command not found.
root@fw:~/Driver/rng-tools-5 # ./configure 
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for a thread-safe mkdir -p... ./install-sh -c -d
checking for gawk... no
checking for mawk... no
checking for nawk... nawk
checking whether make sets $(MAKE)... yes
checking whether make supports nested variables... yes
checking whether to enable maintainer-specific portions of Makefiles... no
checking for gcc... gcc
checking whether the C compiler works... yes
checking for C compiler default output file name... a.out
checking for suffix of executables... 
checking whether we are cross compiling... no
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ISO C89... none needed
checking for style of include used by make... GNU
checking dependency style of gcc... gcc3
checking for ranlib... ranlib
checking how to run 

Open in new window

0
Hello ,


I have 2 interfaces on my free bsd

1. 10.10.10.2/30 ip assigned
2. 10.10.10.6/30 ip assigned

i want to route 192.168.0.0/21 traffic to 10.10.10.5 ip (second interface's gateway) that comes from the router to first interface

router ---- (1st interface) FreeBSD (2nd interface) ---- router


thanks
0
Hello ,

I am using intel X550 fiber interface but it has unsupported SFP+ modules so i need to apply this command on freebsd   :
modprobe ixgbe allow_unsupported_sfp=1,1


Thank you
0
I want to activate ntuple support on my interface but i do not know how to do it on freebsd actually it is easy with eth-tool

ethtool -K p6p2 tso off
ethtool -K p6p1 tso off
ethtool -K p6p2 gso off
ethtool -K p6p1 gso off
ethtool -N p6p2 rx-flow-hash udp4 sdfn  
ethtool -N p6p1 rx-flow-hash udp4 sdfn 
ethtool -K p6p2 ntuple on
/sbin/ifconfig p6p2 txqueuelen 10000
ethtool -G p6p1 rx 2048 tx 2048
ethtool -G p6p2 rx 2048 tx 2048

Open in new window


but i could not find how to do it
0
I am sorry , i am very new on freebsd but i need help to convert this rules to pf rules. Should some one help me ?

iptables -t raw -D PREROUTING -p tcp   -m tcpmss --mss 1460  -m ttl --ttl-eq=118 -m length --length 48  -d 178.20.227.138   -m u32 --u32 '32&0x0000FFFF=0x2000'  -j DROP 

iptables -I FORWARD 1 -i p4p2 -m ttl --ttl-eq=252 -m length --length 1048 -d 185.9.157.211 --match string --algo kmp --hex-string |000000000000000000000000000000000000000000000000000000000000| -j DROP

Open in new window



Also is there any command like on centos to watch pf dropped / rule hitted packets like watch iptables -nvL

Thanks
0
I am testing a free bsd nic performance. But i could not activate the irq balancer . Any body know how ?


Screen-Shot-2017-08-04-at-15.09.35.png
0
Interestingly enough I have no problem using let's encrypt on Windows platform and figured it was going to be a breeze on *nix... Running into a slew of issues.  For one I am trying to use certbot to facilitate this.  When I issue the correct commands and webroot I see it builds the .well-known folder but it does not build the acme-challenge folder.  If I try to manually create the acme-challenge folder it deletes it after the sudo certbot certonly --webroot -w /var/www/example -d example.com -d www.example.com command (with my domain info substituted of course) with the following error:

Detail: Invalid response from
   http://<mysite>/.well-known/acme-challenge/bM6ijKNrbr6Dcf3nzJdyhssFHrySeeLk-2VWQgAlWnQ:
   "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
   <html><head>
   <title>403 Forbidden</title>
   </head><body>
   <h1>Forbidden</h1>
   <p"
Super frustrated as everything in *nix is always easier, right?  Well not this time LOL.   Any suggestions would be appreciated!

-J
0
Hello,

  I would like to know if there is a way to create a Symlink-like file but with the difference that the file it points to gets executed when the link is read and the output is what I get from reading it.
  It should work on freebsd/linux.

Thanks

Best regards
0
I heard iOS is tailored from FreeBSD so I'm hoping to be able to do something like
"ps -ef |grep email_client_process"
if it's not there, then restart it.

Reason is our MobileIron email+ client kept getting killed by iOS as iOS sees it
as a 3rd party/foreign process.

any chance of doing this on an MDM controlled device?
0
Technology Partners: We Want Your Opinion!
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

I inherited a FreeBSD box that is forwarding email using Postfix through various JLS (jails).

Two days ago I switched the MX record(s) to point to a third party service that is going to replace this FreeBSD server.

When I log into the FreeBSD machine and look at the logs (specifically to see if mail is flowing), I see two or three messages in a handful of jails.

A week ago before the MX record change there would have been 20 emails every few minutes, so something obviously changed, which was expected.

What was NOT expected was to see ANY mail flow through the FreeBSD machine.

My question is: Should I expect to see some mail for an extended amount of time? I'm asking because I thought that once I changed the MX record - with a TTL of 300 for all 5 priorities - that it would handle all the mail.

Thanks for your help!
0
I have a mail server on a FreeBSD box. Can you tell me how to tell what kind of email server is running on this FreeBSD?
0
Hi
I am trying to make Squid working on FreeBSD 11
I have two NIC's internal INT_IF and external EXT_IF.

My NAT is working but I am not sure if this is redirection issue or squid.conf

--- /etc/pf.conf
nat on $EXT_IF from !($EXT_IF)->($EXT_IF:0)
rdr on $INT_IF inet proto tcp from any to any port www -> 127.0.0.1 port 3128

pass in  on $INT_IF inet proto tcp from any to 127.0.0.1 port 3128 keep state
pass out on $EXT_IF inet proto tcp from any to any port www keep state


pass in quick on { lo0 $INT_IF } all
pass out quick on $EXT_IF inet proto {tcp,udp} from any to any keep state

pass out quick on $EXT_IF inet proto { tcp,udp,icmp} all

Open in new window



-- squid.conf---
maximum_object_size 30000 KB
maximum_object_size_in_memory 40 KB

acl localnet src 10.1.0.0/24
acl localnet src 172.16.15.0/24

acl SSL_ports port 443
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443         # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT


http_access deny !Safe_ports

http_access deny CONNECT !SSL_ports

http_access allow localhost manager
http_access deny manager


http_access allow localnet
http_access allow localhost

Open in new window

0
No matter what NTP server address i put in it says "server could not be reached". I tried setting it to force and rebooting it but that didnt do anything either. I'm not understanding why this wont work because i can clearly ping from FreeNAS to my other servers that i want to use as a reference.

I also tried doing it through shell but I don't know if I have the commands correct...
0
Hi everyone. I'm going crazy trying to join my FREENAS server to windows 2008 AD service. I've tried almost everything with no luck. I always get this message:
Unable to find domain controllers for innovateperu.local.
and the log shows:  
FreeNAS_ActiveDirectory_Base.get_SRV_records: no SRV records for _ldap._tcp.dc._msdcs.innovateperu.local found, fail!
I have attached some screenshots of my FREENAS configuration

PS.
My local domain is: innovateperu.local
ad_conf.png
cifs_conf.png
network_conf.png
config.png
krb5.png
resolv.png
smb4.png
0
I know that I can organize a single directory listing with:

LS -LTR

Open in new window


How would I look for all .php files on the whole drive, with the latest being at the bottom?

Any ideas?
0
I'm trying to configure my server firewall to only accept connections that are coming from an Xfinity user.  I don't have a static IP, but was wondering if Xfinity owned a block, or something like that.

I'm setting this up on a FreeBSD server.
0
Can I delete /root/authorized_keys in FreeBSD.  I've had some break-ins and want to cover all bases.
0
I'm trying to figure out what the very top (dot) directory is, and why it shows that it was created today.

dot directory
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE
LVL 4
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Just got word that there has been "suspicious activity" on my server.  It has something to do with the file mysite.com/.mail

Can someone help me lock things up?

I've changed my root password so far.

System is FreeBSD
0
I'm having trouble getting FTP to work on our server.

When I check auth.log it contains:

Jul  5 13:06:29 216-55-xxx-xxx sshd[57421]: Accepted password for ftpuser from 67.177.xxx.xxx port 58996 ssh2
Jul  5 13:06:29 216-55-xxx-xxx sshd[57423]: subsystem request for sftp by user ftpuser failed, subsystem not found

Any ideas?  It's been a LONG time since I configured this server.
0
We have a FreeBSD Pfsense appliance on a physical Dell PE1950 in a remote office. It becomes essential for the appliance to send out an alert if its hard drive(s) got bad. How to accomplish that?
0
I'm wondering if a NUC of type DCCP847DYE would be easily expandable for storage (NAS) purposes. 'Unboxing' shows a SATA socket (see attached)
nuc.pdf
0
I'm wondering if a NUC of type DCCP847DYE would be a good basis for a home-made NAS and basic web server? I would like to run FreeBSD on it with ZFS for expanding storage. And how would i be able to add more storage, physically, as i went along?
0
Hi there, i need to extract from a FreeBSD server running Qmail the list of all domains and mailboxes, and for each mailbox in the domain the space used.

Example format needed:
Domain1   user1  120MB
Domain1   user2  200MB

Domain2  user1  50MB
Domain2  user2  30MB

and so on...


I wrote the following script that does a partial job:

du -h /usr/local/vpopmail/domains/ |sort -n|grep Maildir$ |tail -15000 |awk -F'/' '{print "Space Used: "$1"\t Domain: "$6,"\t\t\tMailbox:"$7}'

Open in new window


This mainly works, however the main problem is that in the /usr/local/vpopmail/domains/ folder there are also folders "0", "1", "2" containing domains inside (something like postfix does i guess) that i cannot count. So the above command counts correctly only the domains inside /usr/local/vpopmail/domains/$domain_name but not the /usr/local/vpopmail/domains/0/$domain_name.

Anyone can help me please?

Thank you all in advance
0

FreeBSD

264

Solutions

410

Contributors

FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.

Top Experts In
FreeBSD
<
Monthly
>