Search results

The parameter in /etc/sysctl.conf has to be the same as the sysctl one. Change kernel.shmmax to kern.ipc.shmmax.

There's also the FAQ as well.

It might be a good idea to start *reading* some documentation yourself.

I haven't had much experience with other firewalls such as IPFW and iptables, but PF is really easier to understand and learn than all the other firewalls I've seen. It might be worth giving it a try.

This is a dependencies problem. Usually this appears when you mix ports and packages. It can be fixed by running portmaster --check-depends or pkgdb -F after adding the package. You'll need to install ports-mgmt/portmaster or ports-mgmt/portupgrade to use the programs mentioned above.

Not sure about the recommend limit, but you should be able to increase it without rebooting. Usually these are set by adding the parameters into /etc/sysctl.conf. For example (recommended values for multimedia/totem): kern.ipc.shmmax=67108864 kern.ipc.shmall=32768 If your system works fine...

Alex also mentioned that support for PHP 5.2 will be dropped soon: http://lists.freebsd.org/pipermail/freebsd-ports/2010-January/059169.html

Use the ports tree. It'll save you a lot of time and energy, and you won't shoot yourself in the foot. Just: # cd /usr/ports/www/squid # make config install clean For Squid 3.0, switch to www/squid30 instead. Remember to select the correct options for transparent proxy.

For traffic shaping, there's altq for PF, and dummynet for IPFW. You can just load the module for pf (kldload pf). No need to compile a custom kernel unless ALTQ is in use. Transparent proxy has been asked quite a few times already. A quick search should produce some promising results...

Both IPFW and PF are able to block IPs. They can also be used to setup transparent proxies. However, you won't be able to block MACs with PF though. Blocking MACs isn't really useful since MACs can be changed easily. Just block everyone, and then let authenticated users through. Take a...

You're trying to mount DVDs with a format that CDs use (cd9660). Try doing mount /dev/acd0 /mnt.

They don't really "develop". It's mostly bug fixes and other features merged from newer branches (-CURRENT and -STABLE). Most of the development is done on HEAD.

If you have access to the Internet, just use ntpdate: ntpdate -b 0.pool.ntp.org

Although ezjails might provide a bit of convenience, sometimes custom scripts are preferred because they're much more flexible. Downside is that you have to write a lot of code yourself. Try out ezjails and see if it fits your needs. If it doesn't, there's always time to write some custom scripts.

You might be limited by disk IO. Try running benchmarks/netperf or a similar benchmark.

The Handbook is always useful: Upgrading Ports.

What do your end users need? If it's just network settings, then plain HTML will do fine.

I'd suggest actually reading some documentation first. Then you should be able to do all the debugging and experimentation. For starters: PF FAQ pf.conf pfctl The links listed above provide a complete description of PF and should be more than enough to get you going. It should only take 3 or...

I might be wrong, but I remember that scrub only drops problematic packets, so packets that don't have problems shouldn't be affected.

What about the AllowOverride directive? Did you enable .htaccess files? Since you have access to the main configuration, why not ditch .htaccess and put it in the config file? Performance would be better. Some modifications are necessary though: <Directory /path/to/www> RewriteEngine On...