Go Premium for a chance to win a PS4. Enter to Win

x

FreeBSD

264

Solutions

411

Contributors

FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi,

I created a few different zpool configs on ZFS using FreeNAS and I'm trying to figure out a way to reliably benchmark the performance.

I first tried it from a remote host connecting to an SMB share. In Windows I can't get any higher than 60 MBps. Both using a normal file copy (big file) and using various benchmarking tools. On linux I tried filling up a file using
to a smb mapped drive using a simple dd if=/dev/zero of=/mnt/cifs-share1/test1.img bs=1G count=5 There I get up to 106 MBps and then I guess I'm hitting the 1 Gbps Ethernet connection speed limit.

On to the host itself: So far I tried the default way using iozone which ships with FreeNAS. But the results seem to be high to be true so the question is how do I do it reliably and how to interpete the results?

The result I'm getting is:

    sudo iozone -i 0 -R -l 5 -u 5 -r 4k -s 10G | tee -a /tmp/iozone_results.txt
         
Excel chart generation enabled
        Record Size 4 kB
        File size set to 10485760 kB
        Command line used: iozone -i 0 -R -l 5 -u 5 -r 4k -s 10G
        Output is in kBytes/sec
        Time Resolution = 0.000001 seconds.
        Processor cache size set to 1024 kBytes.
        Processor cache line size set to 32 bytes.
        File stride size set to 17 * record size.
        Min process = 5
        Max process = 5
        Throughput test with 5 processes
        Each process writes a 10485760 kByte file in 4 kByte records

        Children see throughput 

Open in new window

0
Free Tool: ZipGrep
LVL 11
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Hello ,

We are building an IDS/IPS/Waf system that reads the packets from PF_Ring and apply rules to IPTables / Netfilter / Ntuple .
That software needs to access to userspace for iptables and kernelspace for netfilter. So we already pipe the both side.
But our main concern is about the performace issue. Time is our biggest enemy and need to solve the problem in mikro / mili seconds.
So where is the best place working area for our  main core of software for performance ? kernel area or user area ? and why .

Thanks for information
0
Hello ,

We need to install eth-tool on freebsd. As far as i searched on the net it is not possible but i am very suprised to see this on free bsd man's page

https://www.freebsd.org/cgi/man.cgi?query=ethtool&apropos=0&sektion=0&manpath=Red+Hat+Linux%2Fi386+9&format=html


I try to install from the given link below but i am facing with an issue .
Does any body know how to over come this issue ?





root@fw:~/Driver/rng-tools-5 # ./config
./config: Command not found.
root@fw:~/Driver/rng-tools-5 # ./configure 
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for a thread-safe mkdir -p... ./install-sh -c -d
checking for gawk... no
checking for mawk... no
checking for nawk... nawk
checking whether make sets $(MAKE)... yes
checking whether make supports nested variables... yes
checking whether to enable maintainer-specific portions of Makefiles... no
checking for gcc... gcc
checking whether the C compiler works... yes
checking for C compiler default output file name... a.out
checking for suffix of executables... 
checking whether we are cross compiling... no
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ISO C89... none needed
checking for style of include used by make... GNU
checking dependency style of gcc... gcc3
checking for ranlib... ranlib
checking how to run 

Open in new window

0
Hello ,


I have 2 interfaces on my free bsd

1. 10.10.10.2/30 ip assigned
2. 10.10.10.6/30 ip assigned

i want to route 192.168.0.0/21 traffic to 10.10.10.5 ip (second interface's gateway) that comes from the router to first interface

router ---- (1st interface) FreeBSD (2nd interface) ---- router


thanks
0
Hello ,

I am using intel X550 fiber interface but it has unsupported SFP+ modules so i need to apply this command on freebsd   :
modprobe ixgbe allow_unsupported_sfp=1,1


Thank you
0
I want to activate ntuple support on my interface but i do not know how to do it on freebsd actually it is easy with eth-tool

ethtool -K p6p2 tso off
ethtool -K p6p1 tso off
ethtool -K p6p2 gso off
ethtool -K p6p1 gso off
ethtool -N p6p2 rx-flow-hash udp4 sdfn  
ethtool -N p6p1 rx-flow-hash udp4 sdfn 
ethtool -K p6p2 ntuple on
/sbin/ifconfig p6p2 txqueuelen 10000
ethtool -G p6p1 rx 2048 tx 2048
ethtool -G p6p2 rx 2048 tx 2048

Open in new window


but i could not find how to do it
0
I am sorry , i am very new on freebsd but i need help to convert this rules to pf rules. Should some one help me ?

iptables -t raw -D PREROUTING -p tcp   -m tcpmss --mss 1460  -m ttl --ttl-eq=118 -m length --length 48  -d 178.20.227.138   -m u32 --u32 '32&0x0000FFFF=0x2000'  -j DROP 

iptables -I FORWARD 1 -i p4p2 -m ttl --ttl-eq=252 -m length --length 1048 -d 185.9.157.211 --match string --algo kmp --hex-string |000000000000000000000000000000000000000000000000000000000000| -j DROP

Open in new window



Also is there any command like on centos to watch pf dropped / rule hitted packets like watch iptables -nvL

Thanks
0
I am testing a free bsd nic performance. But i could not activate the irq balancer . Any body know how ?


Screen-Shot-2017-08-04-at-15.09.35.png
0
I have a mail server on a FreeBSD box. Can you tell me how to tell what kind of email server is running on this FreeBSD?
0
Hi
I am trying to make Squid working on FreeBSD 11
I have two NIC's internal INT_IF and external EXT_IF.

My NAT is working but I am not sure if this is redirection issue or squid.conf

--- /etc/pf.conf
nat on $EXT_IF from !($EXT_IF)->($EXT_IF:0)
rdr on $INT_IF inet proto tcp from any to any port www -> 127.0.0.1 port 3128

pass in  on $INT_IF inet proto tcp from any to 127.0.0.1 port 3128 keep state
pass out on $EXT_IF inet proto tcp from any to any port www keep state


pass in quick on { lo0 $INT_IF } all
pass out quick on $EXT_IF inet proto {tcp,udp} from any to any keep state

pass out quick on $EXT_IF inet proto { tcp,udp,icmp} all

Open in new window



-- squid.conf---
maximum_object_size 30000 KB
maximum_object_size_in_memory 40 KB

acl localnet src 10.1.0.0/24
acl localnet src 172.16.15.0/24

acl SSL_ports port 443
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443         # https
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT


http_access deny !Safe_ports

http_access deny CONNECT !SSL_ports

http_access allow localhost manager
http_access deny manager


http_access allow localnet
http_access allow localhost

Open in new window

0
Free Tool: IP Lookup
LVL 11
Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

I'm trying to configure my server firewall to only accept connections that are coming from an Xfinity user.  I don't have a static IP, but was wondering if Xfinity owned a block, or something like that.

I'm setting this up on a FreeBSD server.
0
Just got word that there has been "suspicious activity" on my server.  It has something to do with the file mysite.com/.mail

Can someone help me lock things up?

I've changed my root password so far.

System is FreeBSD
0
I'm wondering if a NUC of type DCCP847DYE would be easily expandable for storage (NAS) purposes. 'Unboxing' shows a SATA socket (see attached)
nuc.pdf
0

FreeBSD

264

Solutions

411

Contributors

FreeBSD is a free Unix-like operating system that is a direct descendant of BSD. FreeBSD contains a significant collection of server-related software in the base system and the ports collection, it is possible to configure and use FreeBSD as a mail server, web server, Firewall, FTP server, DNS server and a router, among other applications. Although FreeBSD does not install the X Window System by default, it is available in the FreeBSD ports collection. A number of Desktop environments such as GNOME, KDE and Xfce, and lightweight window managers such as Openbox, Fluxbox and dwm are also available to FreeBSD.

Top Experts In
FreeBSD
<
Monthly
>

No Top Experts for this time period. Answer questions to earn the title!