I’m switching this server from pkgsrc to dports. No post while I fight with old, stale configs and etc.
I have a pf question for anyone who is interested. I have this setup in my /etc/pf.conf, to prioritize my VoIP link. (this system also does NAT.)
extif="em0" intif="nfe0" ipphone = "192.168.0.101"
altq on $extif cbq bandwidth 768Kb queue { std, voip }
queue voip bandwidth 168Kb priority 7 cbq(borrow)
queue std bandwidth 600Kb priority 1 cbq(default)
nat on $extif from $intif:network to any -> ($extif)
pass in quick on $intif proto udp from $ipphone to any tag VOIP_OUT keep state
pass in on $intif from $intif:network to any keep state
pass out on $intif from any to $intif:network keep state
pass out on $extif tagged VOIP_OUT keep state queue(voip)
pass out on $extif inet proto tcp all modulate state flags S/SA queue(std)
pass out on $extif inet proto { udp, icmp, gre } all keep state
When I run this, ‘pfctl -s queue’ shows most of the data getting run through the ‘voip’ queue. I unplug the ATA, I still see the number of packets going up. It seems packets are getting tagged that shouldn’t be, but I’m not sure why. Anyone else have a similar – but working – setup?
Update: it was the underscore character in the tag. Everything matched it, it seems. Removing that made it work as expected.
I have reports from some people not being able to connect to the Digest, and others who can. If you can’t, please mail me a traceroute. I thought it was from me messing with pf, but perhaps not…
If you have a DragonFly 3.3 system with DPorts, can you install xorg, then ssh -Y from another machine to there, and see if you can remotely run an X program like xterm with local display? I’ve done this twice on two different machines with DPorts and it won’t work. xorg won’t write the security info to ~/.Xauthority, with ssh or xhost or whatever. It’s driving me crazy.
(Yeah, slow news day.)
Hope your presents are interesting this year…
The Digest was down over the last 12 hours or so – sorry! Upgrading this system took a bit longer than planned. I upgraded to Apache 2.4, and had to figure out all the config changes, and several packages didn’t like upgrading.
I’ve resisted upgrading for a long time, mostly because I think I could recreate the entire Apache 1.3 config file layout from memory. For the benefit of anyone else, this checklist of Apache errors and corresponding modules helped tremendously. Also, pkg_leaves is a great, if minimal, way to find packages you don’t need.
I lost Internet access because of Hurricane Sandy, and couldn’t get my machine to recover until I power cycled. I think it’s because my external IP changed, and pf doesn’t seem to handle that well for NAT or just in general. The recommended fix, putting the interface name in parentheses, doesn’t seem to work. Anyone have advice?
Whoops – shiningsilence.com may have been down for a while there; I was on the road for work and pf was confused by an IP change. Sorry! I’ll have more posts as soon as I get through the backlog.
If you’re involved in application development or BSD development in any way, and you write about it somewhere on a personal blog or page or publication, please let me know. (justin@shiningsilence.com)
My goal is to point out as much interesting development as possible, and I find that getting notes right from the people that make them is the best way. Trade publications and magazines will skip over that stuff and go to the press releases, but that doesn’t work for BSD. I’ve found better, more interesting writing watching Peter Hansteen’s blog or Trivium. If you have someplace you write about technology, and especially BSD-related development, please point me at your RSS feed.
This is my 5,000th published post. This Digest has been running for approximately 9 years, so that’s an average of a post and a half per day, for around 3200 days. Yeesh!
I have one trouble report. I need more, especially if you’re in Australia.
I’m going to have at least 1 book review up next week, 2 if I can make it. I’ve done this several times now, so I’ve added a ‘Book review’ category so that they all can be found together.
I added a Google “+1” button to the site, over on the right. Not that the site really needs it, but it tickles me that they’re using an old (but still in use) meme for this idea. I’d link to places it was used on our own DragonFly mailing lists, but searching for “+1” isn’t working too well.
I removed the Google ad off the sidebar; it was making me enough cash to buy a sandwich on a yearly basis.
I’ve replaced it with a link to my Amazon wishlist. If you’re feeling generous, you can buy me a book! If you aren’t, you can just keep reading, and I’ll keep posting.
If you can see this, the RSS switch worked. Here’s hoping.
I’m moving the RSS feeds for the site to go through Feedburner, so I can see how actively they are used. I’m putting in a redirect, so it should not (I hope) affect reading it for anyone, but this note is here just in case.
The new location for the RSS feed will be: http://feeds.feedburner.com/dragonflybsddigest
Samuel J. Greear has been posting news while I was off somewhere in Lake Huron. I didn’t fix it to show proper credits, for which I apologize. He’s done a wonderful job, however, and his name is now shown correctly on his posts.
I now get to actually read the past week’s Digest for recent news, for the first time ever.
For some reason, the direct links to recent Digest articles wasn’t working on the DragonFly site’s main page. I’ve disabled it for now, but there’s always the feed here, or Twitter, or Tumblr.
I did some cleanup on the various BSD links I have on the sidebar of this site; are there any sites I’m missing? I’d like to be as complete as possible. Please supply URLs.
(Be warned that some messages may not show up immediately because links in comments will rarely trigger the spamfilter – I’ll check for them.)
This technically is the 4,001st post. The Twitter feed is read far more than I expected, too.
I’ll update the layout to celebrate.