Search results

Hello Basically I'm trying to add my custom cipher (it's a dummy cipher called Panther) to be used with IKE/ESP to encrypt traffic using strongswan. I know how to do this in linux, but this is quite different on FreeBSD. I understand this is a complicated process esp that strongswan is not...

Hi, I have a system with jails. The jails are started on system bootup and everything is configured in rc.conf. Whenever the system boots up, the jails are first created, the virtual interfaces are created and placed in the jails (with VIMAGE), everything is given IP addresses and routes of...

After four and half hours, this is now Solved. jexec 1 sysctl net.inet.ip.forwarding=1 jexec 2 sysctl net.inet.ip.forwarding=1 oh and save it in /etc/sysctl.conf, typing it onetime within the jail does not make it persistent.

In fact, I am using VIMAGE. I tampered around with it, and now I get TTL Time exceeded. The traffic is now reachable on 3 and 6. it does not reach 7 (does not read the default route)

Hello, I have a problem and it's giving me a huuuge headache. Been trying to solve it for two hours and half now I don't seem to see the problem. I have two freeBSD machines, each running a number of jails. I only have one physical interface per machine, which is directly connected using a...

I'm trying to do netperf tests with IPFW active. My firewall denies everything by default unless I specifically define something to pass. Therefore, I must specifically define netperf traffic to pass. So far I did the following in my rules: $cmd 0022 allow tcp from any to any 12865 in $cmd...

I fixed it as follows: Remove everything I've added for in /etc/services and /etc/inetd.conf for netperf. Then on jail machine, start netserver with this command: netserver -L 192.168.1.2 -p 12865 -4 on host machine, start netperf normally netperf -H 192.168.1.2 192.168.1.2 is the...

I can't do netstat within the jail. I get kvm device not available. I played around with it, not really sure what I changed really but now, when I stop inetd and start it again, I get the following message: TCP STREAM TEST from 0.0.0.0 (0.0.0.0) port 0 AF_INET to localhost (::1) port 0...

I have stopped inetd on the other jails and the host and only kept inetd -a jailip on the jail in question. I still get the same message.

I'm not sure if this is the correct way of doing it but inside the jail I did: /etc/rc.d/inetd stop inetd -a 192.168.1.2 netperf it gave me the same message about establish control. 192.168.1.2 is the jail IP address.

I am trying to perform efficiency and performance tests on a network scheme I have. The network scheme has jails with dedicated services and protected by firewalls. I have installed netperf on my host machine. But I'm trying to do netperf from host to jail or from jail to host. So from the...

I am trying to install netperf in order to run tests on my network (at least that is what I'm hoping this port does, really just wanted to see what it can do) I got this error: Vulnerability check disabled, database not found A little google search revealed that I needed portaudit. I did...

I added this route and when I ping 10.0.0.1 from 2.2.2.2 or 2.2.2.3, it says Host is down.

Hello I have a freeBSD box acting as a router with many interfaces. I want separate the networks so that they don't "directly" reach other unless I specify this using a firewall. So, I want to force all traffic going the any host in the subnet 2.0.0.0/8 to use the em0 interface and...

I am really surprised that you say this. Because adding ipfw rules to the jail have actually allowed me to solve the problem. So I'm very surprised. I am now able to ping between one of the jail's interfaces to the other jail's interface and to the bridge. Basically, the following pings...

Hello, I have a FreeBSD box with two jails in it. Each jail has two interfaces. I also have a bridge residing on the main machine to connect one of the two interfaces of the jails together. Jail 1 has interface A: 192.168.1.2 and Interface B: 10.0.0.1 Jail 2 has interface C: 192.168.1.3...

Um, when I installed base system (after make installkernel.. reboot to choose single user mode) i was able to mount system normally with mount -a -t ufs I did not have to run fsck nor was I getting file system errors. I then just installed the configuration files with mergemaster. I'm...

Yes, I have done installkernel after I have recompiled my kernel with added options (IPSec, VIMAGE, pf, pflog) I have five network cards, four are Intel PRO/1000 network connection. One I'm not sure but dmesg reads Marvell Yukon. I use msk and em drivers, em for the intel and msk for the...

I'm not sure how to check whether or not they're in sync but I have upgraded my freebsd base system and updated my source tree, i've also done a recent buildworld to build the base system with my new kernel options, i've the installed and updated FreeBSD applications with portsnap, portversion...

I'm not sure how to check if my RAMs/Disks are good, they're supposed to be since they're very recently purchased for this exact project. I did some searching and according to this, pf_enable="YES" could be the reason why I'm getting this error. So I booted to super user mode, couldn't...