Pfsense : 1.2 Release Candidate 3 released!

Pfsense 1.2-RC3 has been released! Here are just a few of the new improvements and features that have made their way into this new version:

  • IPSEC Carp rules cleanup
  • IPSEC stability worksarounds for > 150 tunnels
  • Only reload webConfiguration from System -> Advanced when cert changes
  • Increase net.inet.ip.intr_queue_maxlen to 1000 which is the IP input queue.
  • Do not allow sticky connection bit to be set if pppoe is enabled. Ticket #1319
  • Disable firmware upgrade for embedded and cdrom and suggest using the console option to upgrade. Ticket #1433
  • Recompile MPD with MSS/dial-on-demand patches (also fixes idle timeout bug) Obtained-from: http://svn.m0n0.ch/wall/tags/release-1.3b3/build/patches/packages/mpd.patch
  • Fix CP not sending Acct-Session-Time to Radius during accounting update Ticket #1434
  • Work around heavy network activity issues. [20070116, update 20070212] Systems with very heavy network activity have been observed to have some problems with the kernel memory allocator. Symptoms are processes that get stuck in zonelimit state, or system livelocks. One partial workaround for this problem is to add the following line to /boot/loader.conf and reboot: kern.ipc.nmbclusters=”0″
  • Bump lighttpd to 1.4.18
  • Show wireless nodes regardless if we can deterimine BSS value.
  • IPSEC tunnel endpoint highlighting in system logs
  • Show the IPSEC interface as a option for the traffic graph.
  • Add RRD Settings page.
  • Make it possible to disable RRD graphs. Bump config so it’s on by default if it wasn’t already.
  • Correctly set reflection timeout for all protocols.
  • Restart snmp services after LAN IP changes Ticket #1453
  • Bump miniupnpd version to RC9 -add multiple interface support
  • Speedup ARP page by using diag_dhcp_leases.php page code for parsing the dhcpd.leases file
  • Relax the ip address check and allow duplicate ip address entries which allows fr example a wireless card and a ethernet card on a laptop to share the same ip address
  • Do not allow DHCP server to be enabled when DHCP relay is enabled, and vice versa Ticket #1488
  • IPSEC keep alive pinger using the wrong source IP address Ticket #1482
  • Failover DHCP Server in 10 seconds as opposed to 60 seconds

1.2-RC3 will appear at a mirror near you very soon. Please let us know what you think on the forum or mailing list.

Update: more than half of the mirrors have these files now, if you try one that doesn’t have the files, try another. They’ll all be updated within 24 hours.

Location for download : Loquefaltaba

in Unix | 412 Words

ClamAV-clamd av-scanner FAILED

Recent electric failure result make my mail server down. After reboot, doing fsck -y and so on. Restart again email still down.

After see the log, action taken to make mail server up as fast as I can.

mail# tail -f /var/log/maillog

Nov  7 08:01:18 mail postfix/smtpd[6714]: lost connection after RCPT from 125-26-188-139.adsl.totbb.net[125.26.188.139]
Nov  7 08:01:18 mail postfix/smtpd[6714]: disconnect from 125-26-188-139.adsl.totbb.net[125.26.188.139]

Nov  7 08:01:19 mail postfix/smtpd[6693]: disconnect from mx42.publicitycountry.com[66.90.82.42]
Nov  7 08:01:20 mail amavis[6519]: (06519-02) ClamAV-clamd av-scanner FAILED: Too many retries to talk to

/var/run/clamav/clamd (Can’t connect to UNIX socket

/var/run/clamav/clamd: Permission denied) at (eval 56) line 257.
Nov  7 08:01:20 mail amavis[6519]: (06519-02) WARN: all primary virus scanners failed,

considering backups
Nov  7 08:01:20 mail postfix/smtpd[6647]: connect from

mx42.publicitycountry.com[66.90.82.42]
Nov  7 08:01:21 mail postfix/smtpd[6711]: warning: 133.23.189.81.list.dsbl.org: RBL lookup

error: Host or domain name not found. Name service error for

name=133.23.189.81.list.dsbl.org type=A: Host not found, try again
Nov  7 08:01:21 mail amavis[6544]: (06544-02) ClamAV-clamd av-scanner FAILED: Too many

retries to talk to /var/run/clamav/clamd (Can’t connect to UNIX socket

/var/run/clamav/clamd: Permission denied) at (eval 56) line 257.
Nov  7 08:01:21 mail amavis[6544]: (06544-02) WARN: all primary virus scanners failed,

considering backups
Nov  7 08:01:22 mail postfix/smtpd[6711]: DC0E24112DF:

client=dsl-23-133.utaonline.at[ 81.189.23.133]
Nov  7 08:01:22 mail postfix/smtpd[6711]: lost connection after RCPT from

dsl-23-133.utaonline.at[81.189.23.133]
Nov  7 08:01:22 mail postfix/smtpd[6711]: disconnect from

dsl-23-133.utaonline.at[81.189.23.133]

try to start manually.

mail# /usr/local/etc/rc.d/clamav-clamd restart

clamav_clamd not running? (check /var/run/clamav/clamd.pid).
Starting clamav_clamd.

mail# /usr/local/etc/rc.d/clamav-clamd restart
clamav_clamd not running? (check /var/run/clamav/clamd.pid).
Starting clamav_clamd.

Change ownership of clamav to vscan

mail# chown vscan:vscan clamav
mail# ls -l
total 36
-rw——-  1 root   wheel       0 Nov  7 04:11 accept.lock.967
drwxr-x—  2 vscan  vscan     512 Nov  7 07:59 clamav

mail# /usr/local/etc/rc.d/clamav-clamd restart

clamav_clamd not running? (check /var/run/clamav/clamd.pid).
Starting clamav_clamd.

testing

mail# /usr/local/etc/rc.d/clamav-clamd restart
Stopping clamav_clamd.
Waiting for PIDS: 7074.
Starting clamav_clamd.

mail# chown vscan:vscan /var/log/clamav/clamd.log
mail# chown vscan:vscan /var/log/clamav/freshclam.log
mail# /usr/local/etc/rc.d/clamav
-clamd restart
Stopping clamav_clamd.
Waiting for PIDS: 7092.
Starting clamav_clamd.
mail# /usr/local/etc/rc.d/clamav-freshclam restart
clamav_freshclam not running? (check /var/run/clamav/freshclam.pid).
Starting clamav_freshclam.

mail# /usr/local/sbin/amavisd start

Done, permission error.

Once again in server 🙂

Log is your friend.

in Unix | 427 Words

FreeBSD 7.0 beta2 and 6.3 Beta1

The 7.0-BETA2 builds have completed and are on many of the FreeBSD
mirror sites. If you want to update an existing machine using cvsup use
RELENG_7 as the branch tag. Instructions on using FreeBSD Update to
perform a binary upgrade from FreeBSD 6.x to 7.0-BETA2 will be provided
via the freebsd-stable list when available.
Download for i386 :

7.0 Beta2

in Unix | 54 Words

Create Paging with PHP : Link collection

Soon or later everyone who learn php will face this thing : ‘paging

blog, guest book, search result are using paging for displaying data. Make it easy to read and more friendly

some picture of paging implementation :

 php paging

php paging

php paging

 Good paging code will survive when record in database or file system getting bigger.

many url in internet exist for such purpose, teach how to create paging with php.

I start to collect them in this page that might be useful for someone who like to implement paging in his guestbook, search result etc.

Some urls : 

 

Maybe you have found useful url that might help others?

I’ll update the list if I have other link.

Tell me please 🙂

in PHP | 170 Words

Install FreeProxy for your lan

 What software do I need for creating simple proxy server for my lan?

Is it simple? good for handling connection for around 5 or 9 user ?

Dunno, coz I use ICS in my windows xp for that work 🙂

Recent walk to snapfiles lead me FreeProxy.

Download this software and install it in screen by screen mode 🙂 :

1.  Double click to start install


Continue reading