*BSD News Article 91104


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.rmit.EDU.AU!goanna.cs.rmit.edu.au!news.apana.org.au!cantor.edge.net.au!news.teragen.com.au!news.access.net.au!news.mel.connect.com.au!munnari.OZ.AU!news.ecn.uoknor.edu!feed1.news.erols.com!cpk-news-hub1.bbnplanet.com!news.bbnplanet.com!rill.news.pipex.net!pipex!tank.news.pipex.net!pipex!news.pir.net!peterra
From: pir@grumblesmurf.net (Peter Radcliffe)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Burden on a Pentium running FreeBSD and connected to the Internet
Date: 14 Mar 1997 12:36:39 GMT
Organization: involved in moving 4000 miles: lots.
Lines: 86
Distribution: world
Message-ID: <5gbgon$eo2$1@moek.pir.net>
References: <3328F8F7.2781E494@silas.cc.monash.edu.au>
NNTP-Posting-Host: pur.uunet.pipex.com
X-no-archive: yes
X-Comment: Boycott Internet Spam!  See http://www.vix.com/spam/
X-Spam: <go.away@stupid.fscking.spammers.com>
X-Newsreader: Nope, its ASCII based.
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:37095

Chooka  <dhenshaw@silas.cc.monash.edu.au> probably said:
>I have two questions..
>I'm considering creating a LAN at home with 2+ machines connected to it.

We have a network of about 10 machines, using 10BaseT and 10Base2.

>One will be a dedicated FreeBSD box (I'm using 2.1.5 at the moment - but
>am considering upgrading - someone have a list of the flaws found in
>each release ?) 

My modem server is a 486dx33 8Mb running FreeBSD 2.1.7.
If you are running anything less than 2.1.7 _upgrade_ ASAP.

There is a major security hole, see:
ftp://freefall.freebsd.org/pub/CERT/advisories/FreeBSD-SA-97_01.setlocale

>The other(s) will be Win95 boxes (maybe dual OSed with FreeBSD). 
>Primarily these machines will be used for work and possibly internet
>access.  It is likely that they will spend a large portion of time
>switched off.  Therefore, they shouldn't perform any critical network
>services.....

One of the machines on our network is a Win95 box, the rest are a mixture
of Solaris x86, FreeBSD and Linux.

For the Lose95 boxes to read mail remotely you can use a POP server, yes.

>My intention would be to use a leased line to an ISP who would allocate
>me a static IP address (or range of ?).  This would probably run at
>28.8k.  

We have a range of IPs, and a 33.6k modem.

>I'd like to set the FreeBSD box up to connect permenantly over this line
>and act as a router allowing access to the Internet through it (i.e. as
>a gateway ?).  Given that the machine is performing routing duties can
>someone clarify whether running it as a mail server for the other
>machines and as a WWW server would impose to much of a burden on the
>system ?

I've had a machine (P90/40Mb) running 2.1.7 that was the modem, mail, web,
news, NFS, user server, etc, with no problems in the slightest.

I moved the modem server off to a seperate machine because I had a spare
machine and so I could reboot the other machine without losing the
connection.

>	Apache
>	POP Server
>	Router
>	Gateway etc...
>
>And to add to the burden I'd like to use the FreeBSD box to do news to a
>narrow (less than 10) set of news groups....
>
>Am I expecting to much ?

No, basicly. I've done all this already.

I've got the P90 doing all of this (I carry about 25 newsgroups, 4 of them
are reasonable traffic. I'm posting from it now :) apart from the modem
serving, and thats strictly convenience. Its also my main machine.

It does have all SCSI disk on a PCI SCSI controller, which helps speed
things up, though.

>I'd like to run some kind of process to log a total of the number of
>packets and the number of bytes received on each interface 
>i.e. the ppp0 interface which is receiving internet traffic and sending
>it and the network (ethernet or whatever) interface which should only be
>receiving local traffic....
>
>I'd like to produce accurate and concise logs so that I can monitor my
>usage and if necessary restrict it based upon these statistics.
>i.e. I I've received more than 10Meg of traffic then I'd disable access
>from my network to the Internet or shutdown the WWW server etc.
>
>Does anyone know how I could do this ?
>I've heard of SNMP and the like but they just confuse me!!!

This, I can't help you on, I'm afraid, other than point you at netstat.

Peter.
--
pir          pir@darkwave.org.uk    pir@pir.net     pir@pipex.net