Shuttle XH61V - FreeBSD
Hardware info on main page.
This machine runs the amd64 version of FreeBSD.
The first sata device (ada0 - Intel 330 Series SSD, 120GB) is partitioned up like this:
root@xh61v:~ # gpart show -p ada0 => 40 234441568 ada0 GPT (112G) 40 1024 ada0p1 freebsd-boot (512K) 1064 20971520 ada0p2 freebsd-swap (10G) 20972584 104857600 ada0p3 freebsd-ufs (50G) 125830184 108611424 - free - (52G)
Old device info The first sata device (ada0 / ad4 - Intel 330 Series SSD, 120GB) is partitioned up like this:
root@kg-t4:/root # gpart show -p ada0 => 34 234441581 ada0 GPT (111G) 34 128 ada0p1 freebsd-boot (64k) 162 104857472 ada0p2 freebsd-ufs (50G) RELENG_8, currently FreeBSD 8.4-stable 104857634 20971520 ada0p3 freebsd-swap (10G) 125829154 106954752 ada0p4 freebsd-ufs [bootme] (51G) RELENG_9, currently FreeBSD 9.3-stable 232783906 1657709 - free - (809M)
the second sata device (ada1 / ad6 - Kingston HyperX 3K SSD, 120 GB) is partitioned like this:
root@kg-t4# gpart show -p ada1 => 34 234441581 ada1 GPT (112G) 34 6 - free - (3.0K) 40 1024 ada1p1 freebsd-boot (512K) 1064 104857600 ada1p2 freebsd-ufs (50G) RELENG_10.1, currently FreeBSD 10.1-stable 104858664 23068672 ada1p3 freebsd-swap (11G) 127927336 106514279 - free - (51G)
local links
Worklog
2022-12-17: ada0p3 - pkg - upgrade
Dec 17 20:39:19 kg-pod530 pkg[3297]: pkg upgraded: 1.18.3 -> 1.18.4 Dec 17 20:47:03 kg-pod530 pkg[3314]: freetype2 upgraded: 2.12.1 -> 2.12.1_2 Dec 17 20:47:03 kg-pod530 pkg[3314]: libiconv upgraded: 1.16 -> 1.17 Dec 17 20:47:03 kg-pod530 pkg[3314]: libxml2 upgraded: 2.9.13_2 -> 2.10.3 Dec 17 20:47:03 kg-pod530 pkg[3314]: liblz4 upgraded: 1.9.3,1 -> 1.9.4,1 Dec 17 20:47:11 kg-pod530 pkg[3314]: python39 upgraded: 3.9.13 -> 3.9.15 Dec 17 20:47:12 kg-pod530 pkg[3314]: expat upgraded: 2.4.8 -> 2.4.9 Dec 17 20:47:12 kg-pod530 pkg[3314]: libepoll-shim upgraded: 0.0.20210418 -> 0.0.20220703 Dec 17 20:47:12 kg-pod530 pkg[3314]: zstd upgraded: 1.5.2 -> 1.5.2_1 Dec 17 20:47:12 kg-pod530 pkg[3314]: jpeg-turbo upgraded: 2.1.3 -> 2.1.4 Dec 17 20:47:12 kg-pod530 pkg[3314]: libdeflate-1.14 installed Dec 17 20:47:12 kg-pod530 pkg[3314]: ca_root_nss upgraded: 3.78 -> 3.83 Dec 17 20:47:12 kg-pod530 pkg[3314]: fontconfig upgraded: 2.13.94_2,1 -> 2.14.0,1 Dec 17 20:47:14 kg-pod530 pkg[3314]: glib upgraded: 2.72.2,2 -> 2.74.3,2 Dec 17 20:47:14 kg-pod530 pkg[3314]: pixman upgraded: 0.40.0_1 -> 0.42.2 Dec 17 20:47:14 kg-pod530 pkg[3314]: libidn2 upgraded: 2.3.2 -> 2.3.3 Dec 17 20:47:15 kg-pod530 pkg[3314]: nettle upgraded: 3.8 -> 3.8.1 Dec 17 20:47:15 kg-pod530 pkg[3314]: dbus upgraded: 1.14.0,1 -> 1.14.4,1 Dec 17 20:47:16 kg-pod530 pkg[3314]: tiff upgraded: 4.3.0 -> 4.4.0_1 Dec 17 20:47:16 kg-pod530 pkg[3314]: cairo upgraded: 1.17.4_1,3 -> 1.17.4_2,3 Dec 17 20:47:16 kg-pod530 pkg[3314]: gdk-pixbuf2 upgraded: 2.40.0_4 -> 2.42.9 Dec 17 20:47:17 kg-pod530 pkg[3314]: harfbuzz upgraded: 4.4.1 -> 5.2.0 Dec 17 20:47:19 kg-pod530 pkg[3314]: gnutls upgraded: 3.7.6 -> 3.7.7 Dec 17 20:47:19 kg-pod530 pkg[3314]: libXft upgraded: 2.3.4 -> 2.3.6 Dec 17 20:47:19 kg-pod530 pkg[3314]: py39-setuptools upgraded: 62.1.0_1 -> 63.1.0 Dec 17 20:47:20 kg-pod530 pkg[3314]: gobject-introspection upgraded: 1.72.0_1,1 -> 1.74.0,1 Dec 17 20:47:20 kg-pod530 pkg[3314]: avahi-app upgraded: 0.8 -> 0.8_1 Dec 17 20:47:26 kg-pod530 pkg[3314]: perl5 upgraded: 5.32.1_1 -> 5.32.1_3 Dec 17 20:47:26 kg-pod530 pkg[3314]: sqlite3 upgraded: 3.38.5,1 -> 3.39.3,1 Dec 17 20:47:27 kg-pod530 pkg[3314]: at-spi2-core upgraded: 2.36.0 -> 2.44.1 Dec 17 20:47:27 kg-pod530 pkg[3314]: glib-networking upgraded: 2.72.0 -> 2.74.0 Dec 17 20:47:27 kg-pod530 pkg[3314]: orc upgraded: 0.4.31 -> 0.4.32 Dec 17 20:47:28 kg-pod530 pkg[3314]: pango upgraded: 1.50.7 -> 1.50.9 Dec 17 20:47:29 kg-pod530 pkg[3314]: atk upgraded: 2.36.0 -> 2.38.0 Dec 17 20:47:29 kg-pod530 pkg[3314]: libsoup upgraded: 2.74.2 -> 2.74.2_1 Dec 17 20:47:29 kg-pod530 pkg[3314]: py39-pycparser-2.21 installed Dec 17 20:47:29 kg-pod530 pkg[3314]: libnotify upgraded: 0.7.12 -> 0.8.1 Dec 17 20:47:35 kg-pod530 pkg[3314]: binutils upgraded: 2.37_2,1 -> 2.37_4,1 Dec 17 20:47:35 kg-pod530 pkg[3314]: hunspell upgraded: 1.7.0_2 -> 1.7.1 Dec 17 20:47:36 kg-pod530 pkg[3314]: gstreamer1-plugins upgraded: 1.16.2_5 -> 1.16.2_7 Dec 17 20:47:36 kg-pod530 pkg[3314]: double-conversion upgraded: 3.2.0 -> 3.2.1 Dec 17 20:47:36 kg-pod530 pkg[3314]: at-spi2-atk upgraded: 2.34.2 -> 2.38.0 Dec 17 20:47:36 kg-pod530 pkg[3314]: librsvg2-rust upgraded: 2.54.1_2 -> 2.54.5 Dec 17 20:47:36 kg-pod530 pkg[3314]: libdrm upgraded: 2.4.112_1,1 -> 2.4.113,1 Dec 17 20:47:36 kg-pod530 pkg[3314]: nspr upgraded: 4.34 -> 4.35 Dec 17 20:47:36 kg-pod530 pkg[3314]: Imath upgraded: 3.1.5_1 -> 3.1.6 Dec 17 20:47:37 kg-pod530 pkg[3314]: harfbuzz-icu upgraded: 4.4.1_1 -> 5.2.0 Dec 17 20:47:37 kg-pod530 pkg[3314]: openjpeg reinstalled: 2.5.0 -> 2.5.0 Dec 17 20:47:44 kg-pod530 pkg[3314]: gcc11 upgraded: 11.3.0 -> 11.3.0_1 Dec 17 20:47:44 kg-pod530 pkg[3314]: py39-cffi-1.15.1 installed Dec 17 20:47:44 kg-pod530 pkg[3314]: libxslt upgraded: 1.1.35_3 -> 1.1.37 Dec 17 20:47:46 kg-pod530 pkg[3314]: gtk3 upgraded: 3.24.33 -> 3.24.34 Dec 17 20:47:46 kg-pod530 pkg[3314]: webp upgraded: 1.2.2 -> 1.2.4 Dec 17 20:47:46 kg-pod530 pkg[3314]: suitesparse-config upgraded: 5.12.0 -> 5.13.0 Dec 17 20:47:47 kg-pod530 pkg[3314]: nss upgraded: 3.80 -> 3.85 Dec 17 20:47:47 kg-pod530 pkg[3314]: py39-cryptography-3.4.8 installed Dec 17 20:47:47 kg-pod530 pkg[3314]: flac upgraded: 1.3.4 -> 1.4.1_1 Dec 17 20:47:47 kg-pod530 pkg[3314]: xdg-utils upgraded: 1.1.3_1 -> 1.1.3_2 Dec 17 20:47:47 kg-pod530 pkg[3314]: highway upgraded: 0.17.0 -> 1.0.1 Dec 17 20:47:48 kg-pod530 pkg[3314]: curl upgraded: 7.84.0 -> 7.86.0 Dec 17 20:47:48 kg-pod530 pkg[3314]: openldap24-client-2.4.59_4 deinstalled Dec 17 20:47:48 kg-pod530 pkg[3314]: xorg-server-1.20.14,1 deinstalled Dec 17 20:47:48 kg-pod530 pkg[3314]: talloc upgraded: 2.3.1 -> 2.3.4 Dec 17 20:47:49 kg-pod530 pkg[3314]: cyrus-sasl reinstalled: 2.1.28 -> 2.1.28 Dec 17 20:47:49 kg-pod530 pkg[3314]: poppler upgraded: 22.06.0 -> 22.09.0 Dec 17 20:47:49 kg-pod530 pkg[3314]: py39-openssl-20.0.1,1 installed Dec 17 20:47:49 kg-pod530 pkg[3314]: jasper upgraded: 3.0.4 -> 3.0.6 Dec 17 20:47:50 kg-pod530 pkg[3314]: libjxl upgraded: 0.6.1_5 -> 0.7.0 Dec 17 20:47:50 kg-pod530 pkg[3314]: libgsf upgraded: 1.14.49 -> 1.14.50 Dec 17 20:47:50 kg-pod530 pkg[3314]: libsndfile upgraded: 1.0.31_1 -> 1.0.31_2 Dec 17 20:47:50 kg-pod530 pkg[3314]: py39-pysocks-1.7.1 installed Dec 17 20:47:50 kg-pod530 pkg[3314]: py39-idna-3.3 installed Dec 17 20:48:09 kg-pod530 pkg[3314]: boost-libs upgraded: 1.79.0_1 -> 1.80.0 Dec 17 20:48:09 kg-pod530 pkg[3314]: librevenge upgraded: 0.0.4_13 -> 0.0.4_14 Dec 17 20:48:09 kg-pod530 pkg[3314]: raptor2 upgraded: 2.0.15_22 -> 2.0.15_23 Dec 17 20:48:09 kg-pod530 pkg[3314]: py39-certifi-2022.6.15 installed Dec 17 20:48:10 kg-pod530 pkg[3314]: drm-fbsd13-kmod-5.4.191.g20220604_1 deinstalled Dec 17 20:48:10 kg-pod530 pkg[3314]: py39-dnspython upgraded: 2.2.1,1 -> 2.2.1_1,1 Dec 17 20:48:10 kg-pod530 pkg[3314]: tdb upgraded: 1.4.3,1 -> 1.4.7,1 Dec 17 20:48:10 kg-pod530 pkg[3314]: openldap24-client-2.4.59_4 installed Dec 17 21:14:27 kg-pod530 pkg[4247]: py39-cairo upgraded: 1.18.1_2,1 -> 1.21.0,1 Dec 17 21:14:27 kg-pod530 pkg[4247]: pygobject3-common upgraded: 3.38.0_1 -> 3.42.2 Dec 17 21:14:27 kg-pod530 pkg[4247]: pciids upgraded: 20220518 -> 20220807 Dec 17 21:14:27 kg-pod530 pkg[4247]: spidermonkey91 upgraded: 91.8.0_3 -> 91.13.0 Dec 17 21:14:28 kg-pod530 pkg[4247]: py39-gobject3 upgraded: 3.38.0_1 -> 3.42.2 Dec 17 21:14:28 kg-pod530 pkg[4247]: openldap24-client-2.4.59_4 deinstalled Dec 17 21:14:28 kg-pod530 pkg[4247]: pinentry-curses upgraded: 1.2.0 -> 1.2.1 Dec 17 21:14:28 kg-pod530 pkg[4247]: gstreamer1-plugins-bad upgraded: 1.16.2_2 -> 1.16.2_3 Dec 17 21:14:28 kg-pod530 pkg[4247]: libgtop upgraded: 2.40.0 -> 2.40.0_1 Dec 17 21:14:28 kg-pod530 pkg[4247]: py39-evdev upgraded: 1.4.0 -> 1.6.0 Dec 17 21:14:28 kg-pod530 pkg[4247]: p5-URI upgraded: 5.10 -> 5.12 Dec 17 21:14:28 kg-pod530 pkg[4247]: vulkan-headers upgraded: 1.3.219 -> 1.3.230 Dec 17 21:14:28 kg-pod530 pkg[4247]: pinentry upgraded: 1.2.0_1 -> 1.2.1 Dec 17 21:14:29 kg-pod530 pkg[4247]: openldap26-client-2.6.3 installed Dec 17 21:14:29 kg-pod530 pkg[4247]: tevent upgraded: 0.10.2_1 -> 0.13.0 Dec 17 21:14:29 kg-pod530 pkg[4247]: lsof-4.96.4,8 installed Dec 17 21:14:29 kg-pod530 pkg[4247]: libbluray upgraded: 1.3.1,1 -> 1.3.3,1 Dec 17 21:14:29 kg-pod530 pkg[4247]: libnfs upgraded: 5.0.1 -> 5.0.2 Dec 17 21:14:29 kg-pod530 pkg[4247]: libsoup3-3.2.0 installed Dec 17 21:14:29 kg-pod530 pkg[4247]: libudisks upgraded: 2.9.2 -> 2.9.4 Dec 17 21:14:31 kg-pod530 pkg[4247]: samba412 reinstalled: 4.12.15_4 -> 4.12.15_4 Dec 17 21:14:31 kg-pod530 pkg[4247]: poppler-glib upgraded: 22.06.0 -> 22.09.0_1 Dec 17 21:14:31 kg-pod530 pkg[4247]: bsdisks upgraded: 0.27 -> 0.28 Dec 17 21:14:31 kg-pod530 pkg[4247]: libx264 upgraded: 0.163.3060 -> 0.164.3095 Dec 17 21:14:32 kg-pod530 pkg[4247]: libixion upgraded: 0.17.0_1 -> 0.17.0_2 Dec 17 21:14:32 kg-pod530 pkg[4247]: xfce4-tumbler upgraded: 4.16.0_18 -> 4.16.1_1 Dec 17 21:14:32 kg-pod530 pkg[4247]: gvfs upgraded: 1.46.2_2 -> 1.50.2_1 Dec 17 21:14:32 kg-pod530 pkg[4247]: libva upgraded: 2.15.0 -> 2.16.0 Dec 17 21:14:32 kg-pod530 pkg[4247]: py39-urllib3-1.26.12,1 installed Dec 17 21:14:34 kg-pod530 pkg[4247]: ghostscript9-agpl-base upgraded: 9.56.1_1 -> 9.56.1_4 Dec 17 21:14:34 kg-pod530 pkg[4247]: graphviz upgraded: 2.50.0_5 -> 2.50.0_12 Dec 17 21:14:34 kg-pod530 pkg[4247]: gpu-firmware-amd-kmod-sienna-cichlid-20220511 installed Dec 17 21:14:34 kg-pod530 pkg[4247]: svt-av1 upgraded: 1.1.0 -> 1.2.1 Dec 17 21:14:35 kg-pod530 pkg[4247]: gpu-firmware-amd-kmod-green-sardine-20220511 installed Dec 17 21:14:35 kg-pod530 pkg[4247]: sdl2 upgraded: 2.0.22 -> 2.24.0_1 Dec 17 21:14:35 kg-pod530 pkg[4247]: py39-charset-normalizer-2.1.1 installed Dec 17 21:14:35 kg-pod530 pkg[4247]: xfce4-panel upgraded: 4.16.4 -> 4.16.5 Dec 17 21:14:35 kg-pod530 pkg[4247]: libebml upgraded: 1.4.2 -> 1.4.4 Dec 17 21:14:35 kg-pod530 pkg[4247]: dav1d upgraded: 1.0.0_1 -> 1.0.0_2 Dec 17 21:14:35 kg-pod530 pkg[4247]: libxcvt-0.1.2_1 installed Dec 17 21:14:36 kg-pod530 pkg[4247]: aom upgraded: 3.4.0 -> 3.5.0 Dec 17 21:14:36 kg-pod530 pkg[4247]: libwpd010 upgraded: 0.10.3_6 -> 0.10.3_7 Dec 17 21:14:36 kg-pod530 pkg[4247]: liblangtag upgraded: 0.6.3_2 -> 0.6.4 Dec 17 21:14:36 kg-pod530 pkg[4247]: gpgme upgraded: 1.17.1 -> 1.18.0 Dec 17 21:14:36 kg-pod530 pkg[4247]: babl upgraded: 0.1.92_1 -> 0.1.96 Dec 17 21:14:36 kg-pod530 pkg[4247]: libetonyek01 upgraded: 0.1.10_4,1 -> 0.1.10_5,1 Dec 17 21:14:36 kg-pod530 pkg[4247]: lib2geom upgraded: 1.1_2 -> 1.1_3 Dec 17 21:14:37 kg-pod530 pkg[4247]: py39-lxml upgraded: 4.9.0 -> 4.9.1 Dec 17 21:14:37 kg-pod530 pkg[4247]: libftdi1 upgraded: 1.5_3 -> 1.5_4 Dec 17 21:14:37 kg-pod530 pkg[4247]: py39-cssselect-1.1.0 installed Dec 17 21:14:37 kg-pod530 pkg[4247]: libqxp upgraded: 0.0.0_20 -> 0.0.0_21 Dec 17 21:14:37 kg-pod530 pkg[4247]: gpgme-cpp upgraded: 1.17.1 -> 1.18.0 Dec 17 21:14:38 kg-pod530 pkg[4247]: libe-book upgraded: 0.1.3_24 -> 0.1.3_25 Dec 17 21:14:38 kg-pod530 pkg[4247]: libmatroska upgraded: 1.6.3 -> 1.7.1 Dec 17 21:14:38 kg-pod530 pkg[4247]: xmlsec1 upgraded: 1.2.34 -> 1.2.34_1 Dec 17 21:14:41 kg-pod530 pkg[4247]: py39-numpy upgraded: 1.22.4_1,1 -> 1.23.3,1 Dec 17 21:14:41 kg-pod530 pkg[4247]: poppler-utils upgraded: 22.06.0 -> 22.09.0_1 Dec 17 21:14:41 kg-pod530 pkg[4247]: py39-requests-2.28.1 installed Dec 17 21:14:41 kg-pod530 pkg[4247]: upnp upgraded: 1.14.12,1 -> 1.14.13,1 Dec 17 21:14:41 kg-pod530 pkg[4247]: liborcus upgraded: 0.17.2_1 -> 0.17.2_2 Dec 17 21:14:42 kg-pod530 pkg[4247]: bash upgraded: 5.1.16 -> 5.2_3 Dec 17 21:14:42 kg-pod530 pkg[4247]: drm-510-kmod-5.10.113_7 installed Dec 17 21:14:42 kg-pod530 pkg[4247]: libepubgen upgraded: 0.1.1 -> 0.1.1_1 Dec 17 21:14:43 kg-pod530 pkg[4247]: abseil upgraded: 20211102.0 -> 20220623.0 Dec 17 21:14:43 kg-pod530 pkg[4247]: libstaroffice upgraded: 0.0.7 -> 0.0.7_1 Dec 17 21:14:47 kg-pod530 pkg[4247]: suitesparse-graphblas upgraded: 7.0.3 -> 7.2.0 Dec 17 21:14:47 kg-pod530 pkg[4247]: boehm-gc upgraded: 8.0.6 -> 8.2.2 Dec 17 21:14:47 kg-pod530 pkg[4247]: libabw upgraded: 0.1.3_2 -> 0.1.3_3 Dec 17 21:14:47 kg-pod530 pkg[4247]: zxing-cpp upgraded: 1.3.0 -> 1.4.0_1 Dec 17 21:14:47 kg-pod530 pkg[4247]: libheif upgraded: 1.12.0.62_1 -> 1.13.0_1 Dec 17 21:14:48 kg-pod530 pkg[4247]: groff reinstalled: 1.22.4_4 -> 1.22.4_4 Dec 17 21:14:48 kg-pod530 pkg[4247]: libcdr01 upgraded: 0.1.7_2 -> 0.1.7_3 Dec 17 21:14:49 kg-pod530 pkg[4247]: GraphicsMagick upgraded: 1.3.38_2,1 -> 1.3.38_3,1 Dec 17 21:14:49 kg-pod530 pkg[4247]: twolame upgraded: 0.4.0_1 -> 0.4.0_2 Dec 17 21:14:50 kg-pod530 pkg[4247]: ffmpeg upgraded: 4.4.2_5,1 -> 4.4.3,1 Dec 17 21:14:51 kg-pod530 pkg[4247]: gegl upgraded: 0.4.36 -> 0.4.38_2 Dec 17 21:14:51 kg-pod530 pkg[4247]: gpu-firmware-kmod reinstalled: 20220511,1 -> 20220511,1 Dec 17 21:14:51 kg-pod530 pkg[4247]: py39-appdirs-1.4.4 installed Dec 17 21:14:51 kg-pod530 pkg[4247]: libpagemaker upgraded: 0.0.4_10 -> 0.0.4_11 Dec 17 21:14:51 kg-pod530 pkg[4247]: libcmis upgraded: 0.5.2_5 -> 0.5.2_6 Dec 17 21:15:00 kg-pod530 pkg[4247]: python37 upgraded: 3.7.13_2 -> 3.7.16 Dec 17 21:15:00 kg-pod530 pkg[4247]: libzmf upgraded: 0.0.2_25 -> 0.0.2_26 Dec 17 21:15:00 kg-pod530 pkg[4247]: clucene upgraded: 2.3.3.4_19 -> 2.3.3.4_20 Dec 17 21:15:01 kg-pod530 pkg[4247]: libmspub01 upgraded: 0.1.4_20 -> 0.1.4_21 Dec 17 21:15:01 kg-pod530 pkg[4247]: xorg-server-21.1.4_1,1 installed Dec 17 21:15:13 kg-pod530 pkg[4247]: openjdk11 upgraded: 11.0.15+10.1 -> 11.0.16+8.1_2 Dec 17 21:15:13 kg-pod530 pkg[4247]: libfreehand upgraded: 0.1.2_22 -> 0.1.2_23 Dec 17 21:15:13 kg-pod530 pkg[4247]: libvisio01 upgraded: 0.1.7_8 -> 0.1.7_9 Dec 17 21:15:34 kg-pod530 pkg[4247]: libreoffice upgraded: 7.3.5.2 -> 7.4.2.3 Dec 17 21:15:34 kg-pod530 pkg[4247]: drm-kmod upgraded: 20220501 -> 20220907_1 Dec 17 21:15:34 kg-pod530 pkg[4247]: suitesparse upgraded: 5.12.0 -> 5.13.0 Dec 17 21:15:34 kg-pod530 pkg[4247]: xfce4-pulseaudio-plugin upgraded: 0.4.3_1 -> 0.4.5 Dec 17 21:15:34 kg-pod530 pkg[4247]: fusefs-libs3 upgraded: 3.11.0 -> 3.12.0 Dec 17 21:15:34 kg-pod530 pkg[4247]: xfce4-notifyd upgraded: 0.6.3 -> 0.6.4 Dec 17 21:15:34 kg-pod530 pkg[4247]: mysql57-client upgraded: 5.7.38 -> 5.7.39 Dec 17 21:15:34 kg-pod530 pkg[4247]: upower upgraded: 0.99.19 -> 1.90.0 Dec 17 21:15:35 kg-pod530 pkg[4247]: sudo upgraded: 1.9.11p3 -> 1.9.12p1 Dec 17 21:15:35 kg-pod530 pkg[4247]: greybird-theme upgraded: 3.23.1 -> 3.23.2 Dec 17 21:15:35 kg-pod530 pkg[4247]: libgltf upgraded: 0.1.0 -> 0.1.0_1 Dec 17 21:15:36 kg-pod530 pkg[4247]: urjtag upgraded: 2021.03 -> 2021.03_1 Dec 17 21:15:36 kg-pod530 pkg[4247]: xf86-video-vesa upgraded: 2.5.0 -> 2.5.0_1 Dec 17 21:15:36 kg-pod530 pkg[4247]: libftdi upgraded: 0.20_17 -> 0.20_18 Dec 17 21:15:42 kg-pod530 pkg[4247]: gimp-app upgraded: 2.10.32_2,1 -> 2.10.32_6,1 Dec 17 21:15:42 kg-pod530 pkg[4247]: mousepad upgraded: 0.5.9_1 -> 0.5.10 Dec 17 21:15:44 kg-pod530 pkg[4247]: vlc upgraded: 3.0.17.4_2,4 -> 3.0.18,4 Dec 17 21:15:44 kg-pod530 pkg[4247]: xf86-input-libinput upgraded: 1.2.0 -> 1.2.0_1 Dec 17 21:15:45 kg-pod530 pkg[4247]: py37-setuptools upgraded: 62.1.0_1 -> 63.1.0 Dec 17 21:15:45 kg-pod530 pkg[4247]: xfce4-screenshooter-plugin upgraded: 1.9.10_2 -> 1.9.11 Dec 17 21:15:46 kg-pod530 pkg[4247]: spidermonkey78 upgraded: 78.15.0_2 -> 78.15.0_4 Dec 17 21:15:46 kg-pod530 pkg[4247]: xterm upgraded: 372 -> 373 Dec 17 21:15:46 kg-pod530 pkg[4247]: xfce4-settings upgraded: 4.16.2 -> 4.16.5 Dec 17 21:15:53 kg-pod530 pkg[4247]: inkscape upgraded: 1.2_1 -> 1.2.1_7 Dec 17 21:15:53 kg-pod530 pkg[4247]: pkgconf upgraded: 1.8.0,1 -> 1.8.0_1,1 Dec 17 21:15:53 kg-pod530 pkg[4247]: vm-bhyve upgraded: 1.4.2 -> 1.5.0 Dec 17 21:15:53 kg-pod530 pkg[4247]: tmux upgraded: 3.2a -> 3.3a Dec 17 21:15:59 kg-pod530 pkg[4247]: firefox upgraded: 103.0.1,2 -> 108.0_1,2 Dec 17 21:15:59 kg-pod530 pkg[4247]: xfce4-datetime-plugin upgraded: 0.8.1_1 -> 0.8.2 Dec 17 21:15:59 kg-pod530 pkg[4247]: xfce4-desktop upgraded: 4.16.0 -> 4.16.1 Dec 17 21:15:59 kg-pod530 pkg[4247]: cups-filters upgraded: 1.28.15_2 -> 1.28.15_5
2022-12-17: ada0p3 - reboot, FreeBSD 13.1-release-p5 is in:
root@xh61v:~ # freebsd-version -ku 13.1-RELEASE-p3 13.1-RELEASE-p5
kernel
root@xh61v:~ # uname -a FreeBSD xh61v.kg4.no 13.1-RELEASE-p3 FreeBSD 13.1-RELEASE-p3 GENERIC amd64
2022-12-17: ada0p3 - freebsd-update fetch
root@xh61v:~ # freebsd-update fetch [..] The following files will be removed as part of updating to 13.1-RELEASE-p5: /usr/share/zoneinfo/SystemV The following files will be updated as part of updating to 13.1-RELEASE-p5: [..] /var/db/etcupdate/current/etc/mtree/BSD.usr.dist /var/db/etcupdate/log /var/db/mergemaster.mtree
install
root@xh61v:~ # freebsd-update install src component not installed, skipped Installing updates...Scanning //usr/share/certs/blacklisted for certificates... Scanning //usr/share/certs/trusted for certificates... Scanning //usr/local/share/certs for certificates... done.
2022-10-08: ada0p3 - reboot, FreeBSD 13.1-release-p2 is in
root@xh61v:~ # freebsd-version -ku 13.1-RELEASE-p2 13.1-RELEASE-p2
kernel
root@xh61v:~ # uname -a FreeBSD xh61v.kg4.no 13.1-RELEASE-p2 FreeBSD 13.1-RELEASE-p2 GENERIC amd64
2022-10-08: ada0p3 - freebsd-update upgrade to 13.1-RLEEASE
root@xh61v:~ # freebsd-update -r 13.1-RELEASE upgrade src component not installed, skipped Looking up update.FreeBSD.org mirrors... 2 mirrors found. Fetching metadata signature for 13.0-RELEASE from update2.freebsd.org... done. Fetching metadata index... done. Fetching 1 metadata patches. done. Applying metadata patches... done. Fetching 1 metadata files... done. Inspecting system... done. The following components of FreeBSD seem to be installed: kernel/generic kernel/generic-dbg world/base world/lib32 The following components of FreeBSD do not seem to be installed: world/base-dbg world/lib32-dbg Does this look reasonable (y/n)? y [..] The following files will be removed as part of updating to 13.1-RELEASE-p2: The following files will be added as part of updating to 13.1-RELEASE-p2: The following files will be updated as part of updating to 13.1-RELEASE-p2: [..] /var/db/etcupdate/log /var/db/mergemaster.mtree To install the downloaded upgrades, run "/usr/sbin/freebsd-update install".
install
root@xh61v:~ # freebsd-update install src component not installed, skipped Installing updates... Kernel updates have been installed. Please reboot and run "/usr/sbin/freebsd-update install" again to finish installing updates.
reboot, then
root@xh61v:~ # freebsd-update install src component not installed, skipped Installing updates...Scanning //usr/share/certs/blacklisted for certificates... Scanning //usr/share/certs/trusted for certificates... Scanning //usr/local/share/certs for certificates... done.
2022-04-12: ada0p3 - rebooted, see main page for details.
2022-03-20: ada0p3 - reboot, FreeBSD 13.0-release-p8 is in
root@xh61v:~ # freebsd-version -ku 13.0-RELEASE-p8 13.0-RELEASE-p8
kernel
root@xh61v:~ # uname -a FreeBSD xh61v.kg4.no 13.0-RELEASE-p8 FreeBSD 13.0-RELEASE-p8 #0: Tue Mar 15 09:36:28 UTC 2022 root@amd64-builder.daemonology.net:/usr/obj/usr/src/amd64.amd64/sys/GENERIC amd64
2022-03-20: ada0p3 - freebsd-update fetch
root@xh61v:~ # freebsd-update fetch [..] The following files will be removed as part of updating to 13.0-RELEASE-p8: The following files will be updated as part of updating to 13.0-RELEASE-p8: [..] /usr/share/zoneinfo/Pacific/Fiji
install
root@xh61v:~ # freebsd-update install src component not installed, skipped Installing updates...Scanning //usr/share/certs/blacklisted for certificates... Scanning //usr/share/certs/trusted for certificates... Scanning //usr/local/share/certs for certificates... done.
2021-10-16: ada0p3 - pkg install pkg, ca_root_nss, bind916, darkstat, ddclient, isc-dhcp44-server, logcheck, lynis, nginx-lite, postfix, smartmontools
Oct 16 23:12:40 xh61v pkg-static[1156]: pkg-1.17.2 installed Oct 16 23:13:50 xh61v pkg[1187]: ca_root_nss-3.69_1 installed Oct 16 23:15:54 xh61v pkg[1198]: indexinfo-0.3.1 installed Oct 16 23:15:55 xh61v pkg[1198]: mpdecimal-2.5.1 installed Oct 16 23:15:55 xh61v pkg[1198]: readline-8.1.1 installed Oct 16 23:15:55 xh61v pkg[1198]: libffi-3.3_1 installed Oct 16 23:15:55 xh61v pkg[1198]: gettext-runtime-0.21 installed Oct 16 23:16:00 xh61v pkg[1198]: python38-3.8.12 installed Oct 16 23:16:00 xh61v pkg[1198]: libunistring-0.9.10_1 installed Oct 16 23:16:01 xh61v pkg[1198]: py38-setuptools-57.0.0 installed Oct 16 23:16:01 xh61v pkg[1198]: libxml2-2.9.12 installed Oct 16 23:16:01 xh61v pkg[1198]: libidn2-2.3.2 installed Oct 16 23:16:01 xh61v pkg[1198]: py38-ply-3.11 installed Oct 16 23:16:01 xh61v pkg[1198]: libuv-1.42.0 installed Oct 16 23:16:01 xh61v pkg[1198]: libedit-3.1.20210216,1 installed Oct 16 23:16:01 xh61v pkg[1198]: json-c-0.15_1 installed Oct 16 23:16:01 xh61v pkg[1198]: protobuf-3.17.3,1 installed Oct 16 23:16:01 xh61v pkg[1198]: libevent-2.1.12 installed Oct 16 23:16:02 xh61v pkg[1198]: bind-tools-9.16.21 installed Oct 16 23:16:02 xh61v pkg[1198]: protobuf-c-1.4.0_1 installed Oct 16 23:16:02 xh61v pkg[1198]: fstrm-0.6.1 installed Oct 16 23:16:02 xh61v pkg[1198]: lmdb-0.9.29,1 installed Oct 16 23:16:03 xh61v pkg[1198]: bind916-9.16.21 installed Oct 16 23:16:44 xh61v pkg[1416]: darkstat-3.0.719 installed Oct 16 23:17:15 xh61v pkg[1418]: perl5-5.32.1_1 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-Socket6-0.29 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-Mozilla-CA-20200520 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-Net-SSLeay-1.90 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-IO-Socket-INET6-2.72_1 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-NetAddr-IP-4.079 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-IO-Socket-SSL-2.072 installed Oct 16 23:17:15 xh61v pkg[1418]: p5-Data-Validate-IP-0.27 installed Oct 16 23:17:15 xh61v pkg[1418]: ddclient-3.9.1 installed Oct 16 23:17:59 xh61v pkg[1437]: isc-dhcp44-server-4.4.2P1_1 installed Oct 16 23:18:55 xh61v pkg[1447]: p5-IPC-Signal-1.00_1 installed Oct 16 23:18:55 xh61v pkg[1447]: liblockfile-1.17 installed Oct 16 23:18:55 xh61v pkg[1447]: p5-MIME-Types-2.21 installed Oct 16 23:18:55 xh61v pkg[1447]: p5-Proc-WaitStat-1.00_1 installed Oct 16 23:18:55 xh61v pkg[1447]: lockfile-progs-0.1.19 installed Oct 16 23:18:56 xh61v pkg[1447]: bash-5.1.8 installed Oct 16 23:18:56 xh61v pkg[1447]: mime-construct-1.11_2 installed Oct 16 23:18:57 xh61v pkg[1447]: logcheck-1.3.23_2 installed Oct 16 23:19:58 xh61v pkg[1487]: lsof-4.94.0,8 installed Oct 16 23:19:58 xh61v pkg[1487]: lynis-3.0.3 installed Oct 16 23:20:53 xh61v pkg[1494]: pcre-8.45 installed Oct 16 23:20:53 xh61v pkg[1494]: nginx-lite-1.20.1_3,2 installed Oct 16 23:21:56 xh61v pkg[1519]: icu-69.1,1 installed Oct 16 23:21:57 xh61v pkg[1519]: postfix-3.6.2_1,1 installed Oct 16 23:23:40 xh61v pkg[2322]: smartmontools-7.2_1 installed
2021-10-16: ada0p3 - reboot, FreeBSD 13.0-release-p4 is in
root@xh61v:~ # freebsd-version -ku 13.0-RELEASE-p4 13.0-RELEASE-p4
kernel
root@xh61v:~ # uname -a FreeBSD xh61v.kg4.no 13.0-RELEASE-p4 FreeBSD 13.0-RELEASE-p4 #0: Tue Aug 24 07:33:27 UTC 2021 root@amd64-builder.daemonology.net:/usr/obj/usr/src/amd64.amd64/sys/GENERIC amd64```
2021-10-16: ada0p3 - freebd-update fetch
root@xh61v:~ # freebsd-update fetch [..] The following files will be added as part of updating to 13.0-RELEASE-p4: /usr/include/c++/v1/barrier /usr/include/c++/v1/concepts /usr/include/c++/v1/execution /usr/include/c++/v1/latch /usr/include/c++/v1/numbers /usr/include/c++/v1/semaphore /usr/include/c++/v1/tr1/barrier /usr/include/c++/v1/tr1/concepts /usr/include/c++/v1/tr1/execution /usr/include/c++/v1/tr1/latch /usr/include/c++/v1/tr1/numbers /usr/include/c++/v1/tr1/semaphore The following files will be updated as part of updating to 13.0-RELEASE-p4: [..] /usr/sbin/wpa_cli /usr/sbin/wpa_supplicant
install
root@xh61v:~ # freebsd-update install src component not installed, skipped Installing updates...Scanning //usr/share/certs/blacklisted for certificates... Scanning //usr/share/certs/trusted for certificates... done.
2021-10-16: ada0p3 - I installed FreeBSD 13.0-release on the Intel 120G ssd (ada0):
Password for tingo@xh61v.kg4.no: Last login: Sat Oct 16 19:33:35 2021 from kg-core2.kg4.no FreeBSD 13.0-RELEASE (GENERIC) #0 releng/13.0-n244733-ea31abc261f: Fri Apr 9 04:24:09 UTC 2021 Welcome to FreeBSD! ************************************************************************* * * * xh61v Note: new firewall mode * * kg4.no * * * ************************************************************************* Want to know how many words, lines, or bytes are contained in a file? Type "wc filename". -- Dru <genesis@istar.ca> tingo@xh61v:~ $
2021-10-16: c2 - I used my workstation to create a backup of the filesystems on the ada0 ssd before clearing it for a new install. dumping the old filesystems from the SSD used in my Shuttle XH61V. First info about the SSD
tingo@kg-core2$ sudo smartctl -i /dev/da5 smartctl 7.2 2020-12-30 r5155 [FreeBSD 11.4-RELEASE-p9 amd64] (local build) Copyright (C) 2002-20, Bruce Allen, Christian Franke, www.smartmontools.org === START OF INFORMATION SECTION === Model Family: Intel 330/335 Series SSDs Device Model: INTEL SSDSC2CT120A3 Serial Number: CVMP232504H8120BGN LU WWN Device Id: 5 001517 bb2a019d6 Firmware Version: 300i User Capacity: 120,034,123,776 bytes [120 GB] Sector Size: 512 bytes logical/physical Rotation Rate: Solid State Device TRIM Command: Available, deterministic Device is: In smartctl database [for details use: -P show] ATA Version is: ACS-2 T13/2015-D revision 3 SATA Version is: SATA 3.0, 3.0 Gb/s (current: 1.5 Gb/s) Local Time is: Sat Oct 16 20:27:34 2021 CEST SMART support is: Available - device has SMART capability. SMART support is: Enabled tingo@kg-core2$ gpart show -p da5 => 34 234441581 da5 GPT (112G) 34 128 da5p1 freebsd-boot (64K) 162 104857472 da5p2 freebsd-ufs (50G) 104857634 20971520 da5p3 freebsd-swap (10G) 125829154 106954752 da5p4 freebsd-ufs [bootme] (51G) 232783906 1657709 - free - (809M)
dump the p2 partition, I'm naming it ada0p2 because ithe ssd shows up as ada0 in the XH61V.
tingo@kg-core2$ dump -C16 -0af ./da0p2-8.4-stable_dump.file /dev/da5p2 DUMP: Date of this level 0 dump: Sat Oct 16 20:31:06 2021 DUMP: Date of last level 0 dump: the epoch DUMP: Dumping /dev/da5p2 to ./da0p2-8.4-stable_dump.file DUMP: mapping (Pass I) [regular files] DUMP: Cache 16 MB, blocksize = 65536 DUMP: mapping (Pass II) [directories] DUMP: estimated 5461776 tape blocks. DUMP: dumping (Pass III) [directories] DUMP: dumping (Pass IV) [regular files] DUMP: 40.68% done, finished in 0:07 at Sat Oct 16 20:43:27 2021 DUMP: 97.48% done, finished in 0:00 at Sat Oct 16 20:41:25 2021 DUMP: DUMP: 5465779 tape blocks on 1 volume DUMP: finished in 612 seconds, throughput 8931 KBytes/sec DUMP: Closing ./da0p2-8.4-stable_dump.file DUMP: DUMP IS DONE
next, dump the p4 partition (this one contains the actual config for the firewall)
tingo@kg-core2$ dump -C16 -0af ./da0p4-9.3-stable_dump.file /dev/da5p4 DUMP: Date of this level 0 dump: Sat Oct 16 20:46:23 2021 DUMP: Date of last level 0 dump: the epoch DUMP: Dumping /dev/da5p4 to ./da0p4-9.3-stable_dump.file DUMP: mapping (Pass I) [regular files] DUMP: Cache 16 MB, blocksize = 65536 DUMP: mapping (Pass II) [directories] DUMP: estimated 7611025 tape blocks. DUMP: dumping (Pass III) [directories] DUMP: dumping (Pass IV) [regular files] DUMP: 25.81% done, finished in 0:14 at Sat Oct 16 21:05:50 2021 DUMP: 53.95% done, finished in 0:08 at Sat Oct 16 21:05:00 2021 DUMP: 98.66% done, finished in 0:00 at Sat Oct 16 21:01:40 2021 DUMP: DUMP: 7616456 tape blocks on 1 volume DUMP: finished in 909 seconds, throughput 8378 KBytes/sec DUMP: Closing ./da0p4-9.3-stable_dump.file DUMP: DUMP IS DONE
backup files
tingo@kg-core2$ ls -lh total 13085572 -rw-r--r-- 1 tingo tingo 2.9K Oct 16 21:02 20211016_backup_old_fw_ssd_info.txt -rw-r--r-- 1 tingo tingo 5.2G Oct 16 20:41 da0p2-8.4-stable_dump.file -rw-r--r-- 1 tingo tingo 7.3G Oct 16 21:01 da0p4-9.3-stable_dump.file
2020-06-27: temporary rules for bittorrent / torrodle on quiet:
05520 5418 281032 allow tcp from any to 10.1.150.8 dst-port 10000-60000 05530 4811 288660 allow tcp from 10.1.150.8 to any dst-port 10000-60000 05540 248996 94196682 allow udp from any to 10.1.150.8 dst-port 10000-60000 05550 778599 73755818 allow udp from 10.1.150.8 to any dst-port 10000-60000 05560 2448 126688 allow tcp from any to 10.1.150.8 dst-port 9999 05570 1336712 1707942554 allow udp from any to 10.1.150.8 dst-port 9999
ok
2020-06-25: add some rules to /etc/natd.conf
# 2020-06-25: trebler traffic on quiet (10.1.150.8 quiet.kg4.no)
redirect_port tcp 10.1.150.8:7759 7759
redirect_port tcp 10.1.150.8:7760 7760
redirect_port udp 10.1.150.8:7759 7759
redirect_port udp 10.1.150.8:7760 7760
and restart the natd service. Added some rules to my firewall script
05200 1 60 allow tcp from 10.1.150.8 to any dst-port 7759-7760 05300 0 0 allow tcp from any to 10.1.150.8 dst-port 7759-7760 05400 10179 3779303 allow udp from 10.1.150.8 to any dst-port 7759-7760 05500 50174 13721082 allow udp from any to 10.1.150.8 dst-port 7759-7760
and reloaded the firewall
2019-08-21: there was a power outage in my area late last night. After powering on the firewall, the link for named in /etc was broken, I had to fix it manually. This is how it should look
root@kg-omni1# ll /etc/nam* lrwxr-xr-x 1 root wheel 21 Aug 21 08:16 /etc/namedb@ -> /var/named/etc/namedb
(for future reference)
2018-04-18: I set up a new main (core) switch and cleaned up around a bit. As a result, there are lots of up and downs on the internal interface in the logs.
2018-04-11:speedtest (from my wired workstation)
tingo@kg-core1$ speedtest-cli --simple Ping: 3.728 ms Download: 315.52 Mbit/s Upload: 55.09 Mbit/s tingo@kg-core1$ tingo@kg-core1$ speedtest-cli --simple Ping: 2.278 ms Download: 141.08 Mbit/s Upload: 57.03 Mbit/s tingo@kg-core1$ speedtest-cli --simple Ping: 2.172 ms Download: 215.06 Mbit/s Upload: 41.12 Mbit/s
not sure why I get so low speeds.
2018-04-11: today, after switching to HomeNet (new ISP), I noticed that the internal interface is back to 100 Mbps again:
root@kg-omni1# ifconfig int0 int0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0c inet 10.1.10.1 netmask 0xffff0000 broadcast 10.1.255.255 inet6 fe80::82ee:73ff:fe60:610c%int0 prefixlen 64 scopeid 0x2 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (100baseTX <full-duplex>) status: active
not sure when that happened. Anyway, it was fixed by disconnecting and reconnecting the network cable to the int0 interface:
root@kg-omni1# ifconfig int0 int0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0c inet 10.1.10.1 netmask 0xffff0000 broadcast 10.1.255.255 inet6 fe80::82ee:73ff:fe60:610c%int0 prefixlen 64 scopeid 0x2 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active
the wan interface is all ok, and has been the whole time
root@kg-omni1# ifconfig ext0 ext0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0d inet 192.168.1.77 netmask 0xffffff00 broadcast 192.168.1.255 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active
ok
2018-04-07: dns - bind. I removed OpenDNS nameservers from my forwarders list, and added Cloudflare nameservers instead. Relevsnt part of named.conf:
// GET dns: 84.208.20.110, 84.208.20.111 // OpenDNS (www.opendns.com): 208.67.222.222, 208.67.220.220 // Google Public DNS: 8.8.8.8, 8.8.4.4 // 2018-04-07: Cloudflare DNS: 1.1.1.1 and 1.0.0.1 forwarders { 84.208.20.110; 84.208.20.111; 8.8.8.8; 8.8.4.4; 1.1.1.1; 1.0.0.1; };
then I did 'service named reload'.
2016-12-26: ada0p4 - on my firewall, add a (temporary) rule for Steam client udp traffic:
root@kg-omni1# ipfw add 3150 pass udp from any to any 27015-27030 via int0 keep-state 03150 allow udp from any to any dst-port 27015-27030 via int0 keep-state
now, check if this improves login. It works, so add it permanent.
2016-08-25: ada0p4 - uptime status:
root@kg-omni1# date;uptime Thu Aug 25 22:39:00 CEST 2016 10:39PM up 209 days, 8:22, 2 users, load averages: 0.02, 0.01, 0.00
ok.
2016-02-06: ada0p4 - firewall - add a (temporary) rule to allow broadcasts from Logitech Squeezebox clients to the server:
root@kg-omni1# ipfw add 5250 allow udp from any 3483 to 255.255.255.255 3483 via int0 05250 allow udp from any 3483 to 255.255.255.255 dst-port 3483 via int0
looks like it gets used too:
05250 2 88 allow udp from any 3483 to 255.255.255.255 dst-port 3483 via int0
ok.
2016-02-06: ada0p4 - firewall - I forgot to add the temporary DNS rule when I booted the firewall: before (from ipfw show)
02700 461215 28460940 allow udp from any to me dst-port 53 02800 460841 154066717 allow udp from me 53 to any 02900 382415 76562292 allow udp from me to any dst-port 53 keep-state 03000 0 0 allow udp from any to any dst-port 53 setup 03100 0 0 allow udp from me to any dst-port 53 via int0 keep-state
add it
root@kg-omni1# ipfw add 3050 allow udp from any to any 53 via int0 keep-state 03050 allow udp from any to any dst-port 53 via int0 keep-state
ipfw show after
02700 461730 28492442 allow udp from any to me dst-port 53 02800 461355 154223545 allow udp from me 53 to any 02900 382817 76641994 allow udp from me to any dst-port 53 keep-state 03000 0 0 allow udp from any to any dst-port 53 setup 03050 54 14673 allow udp from any to 224.0.0.0/4 via int0 03050 6 800 allow udp from any to any dst-port 53 via int0 keep-state 03100 0 0 allow udp from me to any dst-port 53 via int0 keep-state
ok. Also add the rule for internal multicast traffic:
root@kg-omni1# ipfw add 3950 allow udp from any to 224.0.0.0/4 via int0 03950 allow udp from any to 224.0.0.0/4 via int0
ok.
2016-01-29: ada0p4 - firewall - when the machine powered on and booted (after powerout) I noticed two items: a) darkstat didn't start. From /var/log/messages:
Jan 29 13:17:25 kg-omni1 root: /etc/rc: WARNING: failed to start darkstat
b) int0 connected only at 100 Mbps, disconnecting the cable and connecting it again fixed that:
root@kg-omni1# ifconfig int0 int0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0c inet 10.1.10.1 netmask 0xffff0000 broadcast 10.1.255.255 inet6 fe80::82ee:73ff:fe60:610c%int0 prefixlen 64 scopeid 0x2 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active
not sure if I need to take action here.
2016-01-24: ada0p4 - firewall - upgraded bash (needed by logcheck):
Jan 24 20:46:41 kg-omni1 pkg: bash-4.3.42 deinstalled Jan 24 20:46:42 kg-omni1 pkg-static: bash-4.3.42_1 installed
and fixed /etc/fstab as described in pkg-message:
====================================================================== bash requires fdescfs(5) mounted on /dev/fd If you have not done it yet, please do the following: mount -t fdescfs fdesc /dev/fd To make it permanent, you need the following lines in /etc/fstab: fdesc /dev/fd fdescfs rw 0 0 ======================================================================
ok.
2016-01-24: ada0p4 - firewall - upgraded postfix:
Jan 24 20:40:46 kg-omni1 pkg: postfix-2.11.6,1 deinstalled Jan 24 20:40:49 kg-omni1 pkg-static: postfix-2.11.7_1,1 installed
and restarted it:
root@kg-omni1# service postfix restart postfix/postfix-script: stopping the Postfix mail system postfix/postfix-script: starting the Postfix mail system
ok.
2016-01-24: ada0p4 - firewall - upgraded isc-dhcp43-server:
Jan 24 20:34:24 kg-omni1 pkg: isc-dhcp43-server-4.3.2_1 deinstalled Jan 24 20:34:25 kg-omni1 pkg-static: isc-dhcp43-server-4.3.3P1_1 installed
afterwards I restarted the dhcp server:
root@kg-omni1# service isc-dhcpd restart Stopping dhcpd. Waiting for PIDS: 68868. Starting dhcpd. Internet Systems Consortium DHCP Server 4.3.3-P1 Copyright 2004-2016 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/ WARNING: Host declarations are global. They are not limited to the scope you declared them in. Config file: /usr/local/etc/dhcpd.conf Database file: /var/db/dhcpd/dhcpd.leases PID file: /var/run/dhcpd/dhcpd.pid Wrote 0 deleted host decls to leases file. Wrote 0 new dynamic host decls to leases file. Wrote 42 leases to leases file. Listening on BPF/int0/80:ee:73:60:61:0c/10.1.0.0/16 Sending on BPF/int0/80:ee:73:60:61:0c/10.1.0.0/16 Sending on Socket/fallback/fallback-net root@kg-omni1# service isc-dhcpd status dhcpd is running as pid 9524.
ok.
2016-01-24: ada0p4 - firewall - upgraded a bunch of ports:
Jan 24 19:51:37 kg-omni1 pkg: pkg-1.6.0 deinstalled Jan 24 19:51:38 kg-omni1 pkg-static: pkg-1.6.2 installed Jan 24 19:52:33 kg-omni1 pkg: pkgconf-0.9.12 deinstalled Jan 24 19:52:34 kg-omni1 pkg-static: pkgconf-0.9.12_1 installed Jan 24 19:53:32 kg-omni1 pkg: p5-MIME-Types-2.11 deinstalled Jan 24 19:53:33 kg-omni1 pkg-static: p5-MIME-Types-2.12 installed Jan 24 19:53:39 kg-omni1 pkg: p5-Socket-2.020 deinstalled Jan 24 19:53:40 kg-omni1 pkg-static: p5-Socket-2.021 installed Jan 24 19:53:47 kg-omni1 pkg: p5-IO-Socket-SSL-2.016 deinstalled Jan 24 19:53:48 kg-omni1 pkg-static: p5-IO-Socket-SSL-2.022 installed Jan 24 19:55:13 kg-omni1 pkg: sqlite3-3.8.11.1 deinstalled Jan 24 19:55:15 kg-omni1 pkg-static: sqlite3-3.10.2_1 installed Jan 24 19:56:04 kg-omni1 pkg: dmidecode-2.12 deinstalled Jan 24 19:56:05 kg-omni1 pkg-static: dmidecode-3.0 installed Jan 24 19:56:29 kg-omni1 pkg: libiconv-1.14_8 deinstalled Jan 24 19:56:30 kg-omni1 pkg-static: libiconv-1.14_9 installed Jan 24 19:56:51 kg-omni1 pkg: ca_root_nss-3.20 deinstalled Jan 24 19:56:52 kg-omni1 pkg-static: ca_root_nss-3.21 installed Jan 24 19:57:14 kg-omni1 pkg: cyrus-sasl-2.1.26_9 deinstalled Jan 24 19:57:15 kg-omni1 pkg-static: cyrus-sasl-2.1.26_12 installed Jan 24 19:57:20 kg-omni1 pkg: indexinfo-0.2.3 deinstalled Jan 24 19:57:21 kg-omni1 pkg-static: indexinfo-0.2.4 installed Jan 24 19:57:42 kg-omni1 pkg: gettext-runtime-0.19.5.1 deinstalled Jan 24 19:57:43 kg-omni1 pkg-static: gettext-runtime-0.19.6 installed Jan 24 19:59:38 kg-omni1 pkg: gettext-tools-0.19.5.1 deinstalled Jan 24 19:59:39 kg-omni1 pkg-static: gettext-tools-0.19.6 installed Jan 24 20:01:20 kg-omni1 pkg: db5-5.3.28_2 deinstalled Jan 24 20:01:22 kg-omni1 pkg-static: db5-5.3.28_3 installed Jan 24 20:02:16 kg-omni1 pkg-static: automake-wrapper-20131203 installed Jan 24 20:02:17 kg-omni1 pkg-static: automake-1.15_1 installed Jan 24 20:06:59 kg-omni1 pkg: ruby-2.1.7,1 deinstalled Jan 24 20:07:04 kg-omni1 pkg-static: ruby-2.1.8,1 installed Jan 24 20:10:15 kg-omni1 pkg: python27-2.7.10 deinstalled Jan 24 20:10:18 kg-omni1 pkg-static: python27-2.7.11_1 installed Jan 24 20:11:02 kg-omni1 pkg: py27-setuptools27-17.0 deinstalled Jan 24 20:11:03 kg-omni1 pkg-static: py27-setuptools27-19.2 installed Jan 24 20:11:15 kg-omni1 pkg: serf-1.3.8 deinstalled Jan 24 20:11:17 kg-omni1 pkg-static: serf-1.3.8_1 installed Jan 24 20:13:59 kg-omni1 pkg: subversion-static-1.8.14_2 deinstalled Jan 24 20:14:01 kg-omni1 pkg-static: subversion-static-1.9.3_1 installed Jan 24 20:22:28 kg-omni1 pkg: ruby20-2.0.0.647,1 deinstalled Jan 24 20:22:33 kg-omni1 pkg-static: ruby20-2.0.0.648,1 installed Jan 24 20:23:19 kg-omni1 pkg: lynis-1.6.4 deinstalled Jan 24 20:23:20 kg-omni1 pkg-static: lynis-2.1.1 installed
ok.
2016-01-24: ada0p4 - firewall - update ports tree via portsnap fetch; portsnap update.
2016-01-20: ada0p4 - firewall - I disconnected the cable from int0 and reconnected it again. Now the interface shows 1 Gbps:
root@kg-omni1# ifconfig int0 int0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0c inet 10.1.10.1 netmask 0xffff0000 broadcast 10.1.255.255 inet6 fe80::82ee:73ff:fe60:610c%int0 prefixlen 64 scopeid 0x2 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active
as does ext0:
root@kg-omni1# ifconfig ext0 ext0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0d inet 84.215.226.9 netmask 0xfffff000 broadcast 255.255.255.255 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active
good.
2016-01-08: ada0p4 - firewall - interesting from /var/log/messages today:
Jan 8 07:50:58 kg-omni1 named[9785]: client 10.1.161.16#51237 (accounts.google.com): error sending response: host unreachable Jan 8 08:20:50 kg-omni1 named[9785]: clients-per-query increased to 15 Jan 8 08:40:50 kg-omni1 named[9785]: clients-per-query decreased to 14 Jan 8 09:00:50 kg-omni1 named[9785]: clients-per-query decreased to 13 Jan 8 09:20:50 kg-omni1 named[9785]: clients-per-query decreased to 12 Jan 8 09:40:50 kg-omni1 named[9785]: clients-per-query decreased to 11 Jan 8 10:00:50 kg-omni1 named[9785]: clients-per-query decreased to 10
since the first line might not be related (based on timestamp) I'm not sure what the query was for. Funny that the devices on my net generate that much DNS traffic.
2015-11-21: ada0p4 - firewall - add a temporary rule for multicast traffic from internal net:
root@kg-omni1# ipfw add 3950 allow udp from any to 224.0.0.0/4 via int0 03950 allow udp from any to 224.0.0.0/4 via int0
ok.
2015-11-21: ada0p4 - firewall - current rules for DNS traffic (from ipfw show):
02600 90 5200 allow tcp from any to me dst-port 53 setup 02700 733423 42840511 allow udp from any to me dst-port 53 02800 732880 136899444 allow udp from me 53 to any 02900 367885 74691033 allow udp from me to any dst-port 53 keep-state 03000 0 0 allow udp from any to any dst-port 53 setup
clearly, rule 3000 is not working. Let me try with a temporary rule:
root@kg-omni1# ipfw add 3050 allow udp from any to any 53 via int0 keep-state 03050 allow udp from any to any dst-port 53 via int0 keep-state
and I'll see how that works out, and add it permannently if it does.
2015-11-21: ada0p4 - firewall - a dip on the internal interface:
root@kg-omni1# egrep UP\|DOWN\|dhclient /var/log/messages Nov 21 02:17:53 kg-omni1 kernel: int0: link state changed to DOWN Nov 21 02:18:05 kg-omni1 kernel: int0: link state changed to UP
I wonder why?
2015-11-16: ada0p4 - firewall - I change size for /var/log/messages and /var/log/security in /etc/newsyslog.conf from default 100 (k) to 500 (k). New file:
root@kg-omni1# more /etc/newsyslog.conf # configuration file for newsyslog # $FreeBSD: stable/9/etc/newsyslog.conf 267114 2014-06-05 15:33:09Z bdrewery $ # # Entries which do not specify the '/pid_file' field will cause the # syslogd process to be signalled when that log file is rotated. This # action is only appropriate for log files which are written to by the # syslogd process (ie, files listed in /etc/syslog.conf). If there # is no process which needs to be signalled when a given log file is # rotated, then the entry for that file should include the 'N' flag. # # The 'flags' field is one or more of the letters: BCDGJNUXZ or a '-'. # # Note: some sites will want to select more restrictive protections than the # defaults. In particular, it may be desirable to switch many of the 644 # entries to 640 or 600. For example, some sites will consider the # contents of maillog, messages, and lpd-errs to be confidential. In the # future, these defaults may change to more conservative ones. # # logfilename [owner:group] mode count size when flags [/pid_file] [sig_num] /var/log/all.log 600 7 * @T00 J /var/log/amd.log 644 7 100 * J /var/log/auth.log 600 7 100 @0101T JC /var/log/console.log 600 5 100 * J /var/log/cron 600 3 100 * JC /var/log/daily.log 640 7 * @T00 JN /var/log/debug.log 600 7 100 * JC /var/log/kerberos.log 600 7 100 * J /var/log/lpd-errs 644 7 100 * JC /var/log/maillog 640 7 * @T00 JC /var/log/messages 644 5 500 @0101T JC /var/log/monthly.log 640 12 * $M1D0 JN /var/log/pflog 600 3 100 * JB /var/run/pflogd.pid /var/log/ppp.log root:network 640 3 100 * JC /var/log/security 600 10 500 * JC /var/log/sendmail.st 640 10 * 168 BN /var/log/utx.log 644 3 * @01T05 B /var/log/weekly.log 640 5 * $W6D0 JN /var/log/xferlog 600 7 100 * JC <include> /etc/newsyslog.conf.d/* <include> /usr/local/etc/newsyslog.conf.d/*
other files are:
root@kg-omni1# l /etc/newsyslog.conf.d ./ ../ nginx.conf root@kg-omni1# l /usr/local/etc/newsyslog.conf.d ls: /usr/local/etc/newsyslog.conf.d: No such file or directory
nginx file:
root@kg-omni1# more /etc/newsyslog.conf.d/nginx.conf # logfilename [owner:group] mode count size when flags [/pid_file] [sig_num] /var/log/nginx-access.log 644 9 1000 * JC /var/run/nginx.pid /var/log/nginx-error.log 644 9 1000 * JC /var/run/nginx.pid
ok.
2015-11-14: ada0p4 - firewall - named config. I added to /etc/namedb/named.conf options:
listen-on { 10.1.10.1; };
then I reload the service:
root@kg-omni1# service named reload rndc: connection to remote host closed This may indicate that * the remote server is using an older version of the command protocol, * this host is not authorized to connect, * the clocks are not synchronized, or * the key is invalid.
ok, so probably a problem with the key.
Fix:
root@kg-omni1# rndc-confgen -a wrote key file "/etc/namedb/rndc.key"
unfortunately, that didn't help. I commented out both the "key" and "controls" statement block in named.conf and did:
root@kg-omni1# service named start Starting named. root@kg-omni1# service named reload server reload successful
looks better. rndc works too:
root@kg-omni1# rndc status version: 9.9.7-P2 <id:> CPUs found: 2 worker threads: 2 UDP listeners per interface: 2 number of zones: 165 debug level: 0 xfers running: 0 xfers deferred: 0 soa queries in progress: 0 query logging is OFF recursive clients: 0/0/1000 tcp clients: 0/100 server is up and running
good.
2015-11-14: ada0p4 - firewall - network interfaces:
root@kg-omni1# ifconfig int0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0c inet 10.1.10.1 netmask 0xffff0000 broadcast 10.1.255.255 inet6 fe80::82ee:73ff:fe60:610c%int0 prefixlen 64 scopeid 0x2 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (100baseTX <full-duplex>) status: active ext0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 options=8209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE> ether 80:ee:73:60:61:0d inet 84.215.226.9 netmask 0xfffff000 broadcast 255.255.255.255 nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL> media: Ethernet autoselect (1000baseT <full-duplex>) status: active lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6> inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6 inet 127.0.0.1 netmask 0xff000000 nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL> ipfw0: flags=8801<UP,SIMPLEX,MULTICAST> metric 0 mtu 65536 nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
ok. I'm not really sure why int0 only is connected at 100 Mbps. Perhaps I need to replace that ethernet cable.
2015-11-14: ada0p4 - firewall - logcheck runs from it's own crontab:
root@kg-omni1# more /var/cron/tabs/logcheck # DO NOT EDIT THIS FILE - edit the master and reinstall. # (/usr/local/share/examples/logcheck/crontab.in installed on Sat Jan 17 14:38:04 2015) # (Cron version -- $FreeBSD: stable/9/usr.sbin/cron/crontab/crontab.c 239876 2012-08-29 19:17:29Z jhb $) # crontab entries for the logcheck package PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin MAILTO=root @reboot if [ -x /usr/local/sbin/logcheck ]; then nice -n10 /usr/local/sbin/logcheck -R; fi 2 * * * * if [ -x /usr/local/sbin/logcheck ]; then nice -n10 /usr/local/sbin/logcheck; fi
It runs every other minute, ok.
2015-11-14: ada0p4 - firewall - add the coretemp module:
root@kg-omni1# more /boot/loader.conf coretemp_load="YES"
that way I get temps:
root@kg-omni1# temp dev.cpu.0.temperature: 46.0C dev.cpu.1.temperature: 50.0C
good.
2015-11-14: ada0p4 - firewall live test. I powered down the machine, change cables and started it again. One cable didn't work (I didn't get a link on the new firewall machine), so I changed it.Next up, natd would not start, that was user error (I had written natd_enterface instead of natd_interface in /etc/rc.conf). Fixed, now natd starts. Other than that, it seems like everything works. Test continues.
2015-11-14: ada0p4 - fix the link to go to firewall mode:
root@kg-t4# cd / root@kg-t4# ls -ld et* lrwxr-xr-x 1 root wheel 7 Jan 17 2015 etc -> etc_org drwxr-xr-x 22 root wheel 2560 Nov 14 12:42 etc_firewall drwxr-xr-x 21 root wheel 2560 Nov 13 22:06 etc_org
change it
root@kg-t4# ln -s /etc_firewall /etc
verify
root@kg-t4# ls -ld et* lrwxr-xr-x 1 root wheel 13 Nov 14 13:41 etc -> /etc_firewall drwxr-xr-x 22 root wheel 2560 Nov 14 12:42 etc_firewall drwxr-xr-x 21 root wheel 2560 Nov 13 22:06 etc_org
ok.
2015-11-14: ada0p4 - postfix - I updated the configuration. After updating the transport file, do
root@kg-t4# postmap /usr/local/etc/postfix/transport
I also checked that the aliases file (/etc/mail/aliases) and database was updated.
2015-11-14: ada0p4 - firewall - copy my firewall script over, and change it to match the new world:
root@kg-t4# cd /etc_firewall/fw
I copied to tmp, and moved it from there. Modifying was easy - change interface names and remove / comment out old rules.
2015-11-14: ada0p4 - create a directory for my firewall script:
root@kg-t4# mkdir /etc_firewall/fw root@kg-t4# chmod go-rx /etc_firewall/fw
verify
root@kg-t4# ls -ld /etc_firewall/fw drwx------ 2 root wheel 512 Nov 14 12:42 /etc_firewall/fw
ok.
2015-11-14: I used dymoprint on my workstation (c1) to print labels fro the network interfaces:
tingo@kg-core1$ dymoprint "re0 int0" [96, 0, 2, 100, 14, 2, 0, 0] tingo@kg-core1$ dymoprint "re1 ext0" [96, 0, 2, 100, 14, 5, 0, 0]
there are four spaces between the names.
2015-11-14: I connected a HDMI display (my HDMIPi actually) to the HDMI input. I had to reboot the machine to get output on the HDMI display. Using the HDMIPi was easy: power it with a microUSB plug from a usb charger, connect the HDMI cable, and then use the "source" button (top left, when "seen" from the front of the display) to switch from HDMI1 to HDMI2 (note: it switches HDMI1 -> HDMI2 -> VGA and back, even if the VGA connector isn't there).
2015-11-14: ada0p4 - connecting a usb keyboard (Deltaco TB-603) results in these lines in /var/log/messages:
Nov 14 11:37:28 kg-t4 kernel: ugen2.3: <vendor 0x04f3> at usbus2 Nov 14 11:37:28 kg-t4 kernel: ukbd0: <vendor 0x04f3 product 0x0103, class 0/0, rev 2.00/1.07, addr 3> on usbus2 Nov 14 11:37:28 kg-t4 kernel: kbd0 at ukbd0 Nov 14 11:37:28 kg-t4 kernel: uhid0: <vendor 0x04f3 product 0x0103, class 0/0, rev 2.00/1.07, addr 3> on usbus2
ok.
2015-11-13: ada0p4 - updated natd.conf from master:
root@kg-t4# scp tingo@kg-omni1:/etc/natd.conf /etc_firewall/ Password: natd.conf 100% 1513 1.5KB/s 00:00 root@kg-t4# ll /etc_firewall/natd.conf -rw-r--r-- 1 root wheel 1513 Nov 13 22:31 /etc_firewall/natd.conf
ok. ntp.conf is verified - ok. nginx configuration (in /usr/local/etc/nginx/nginx.conf) is updated. darkstat doesn't have any files, all parameters are set in /etc/rc.conf.
2015-11-13: ada0p4 - testing bind. We have bind 9.9.7:
root@kg-t4# named -V BIND 9.9.7-P2 (Extended Support Version) <id:> built by make with '--prefix=/usr' '--infodir=/usr/share/info' '--mandir=/usr/share/man' '--enable-threads' '--enable-getifaddrs' '--disable-linux-caps' '--with-openssl=/usr' '--with-randomdev=/dev/random' '--without-idn' '--without-libxml2' compiled by GCC 4.2.1 20070831 patched [FreeBSD] compiled with OpenSSL version: OpenSSL 0.9.8zg-freebsd 11 Jun 2015 linked to OpenSSL version: OpenSSL 0.9.8zg-freebsd 11 Jun 2015
very good.
Get root zone key / trust anchor:
root@kg-t4# pwd /etc/namedb root@kg-t4# dig +multi +noall +answer DNSKEY . > root.dnskey
convert to verify format:
root@kg-t4# dnssec-dsfromkey -f root.dnskey . > root.ds root@kg-t4# more root.ds . IN DS 19036 8 1 B256BD09DC8DD59F0E0F0D8541B8328DD986DF6E . IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5 the second digest is identical to the one in https://data.iana.org/root-anchors/root-anchors.xml.The key is verified.
After fixing up named.conf and the zone files (in ./master/..) start BIND:
root@kg-t4# service named onestart wrote key file "/var/named/etc/namedb/rndc.key" Starting named. root@kg-t4# service named onestatus named is running as pid 19413.
cool, it started. However, I get these in /var/log/messages:
Nov 13 20:53:22 kg-t4 named[19413]: starting BIND 9.9.7-P2 -t /var/named -u bind Nov 13 20:53:22 kg-t4 named[19413]: built with '--prefix=/usr' '--infodir=/usr/share/info' '--mandir=/usr/share/man' '--enable-threads' '--enable-getifaddrs' '--disable-linux-caps' '--with-openssl=/usr' '--with-randomdev=/dev/random' '--without-idn' '--without-libxml2' Nov 13 20:53:22 kg-t4 named[19413]: ---------------------------------------------------- Nov 13 20:53:22 kg-t4 named[19413]: BIND 9 is maintained by Internet Systems Consortium, Nov 13 20:53:22 kg-t4 named[19413]: Inc. (ISC), a non-profit 501(c)(3) public-benefit Nov 13 20:53:22 kg-t4 named[19413]: corporation. Support and training for BIND 9 are Nov 13 20:53:22 kg-t4 named[19413]: available at https://www.isc.org/support Nov 13 20:53:22 kg-t4 named[19413]: ---------------------------------------------------- Nov 13 20:53:22 kg-t4 named[19413]: command channel listening on 127.0.0.1#953 Nov 13 20:53:22 kg-t4 named[19413]: zone 0.0.10.in-addr.arpa/IN: loading from master file master/db.10.0.0 failed: file not found Nov 13 20:53:22 kg-t4 named[19413]: zone 10.1.10.in-addr.arpa/IN: loading from master file master/db.10.1.10 failed: file not found Nov 13 20:53:22 kg-t4 named[19413]: zone 10.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 20:53:22 kg-t4 named[19413]: zone 0.0.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 20:53:22 kg-t4 named[19413]: zone 150.1.10.in-addr.arpa/IN: loading from master file master/db.10.1.150 failed: file not found Nov 13 20:53:22 kg-t4 named[19413]: zone 150.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 20:53:22 kg-t4 named[19413]: zone kg4.no/IN: loading from master file master/db.kg4.no failed: file not found Nov 13 20:53:22 kg-t4 named[19413]: zone kg4.no/IN: not loaded due to errors. Nov 13 20:53:22 kg-t4 named[19413]: all zones loaded Nov 13 20:53:22 kg-t4 named[19413]: running Nov 13 20:53:32 kg-t4 named[19413]: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Hmm, what now?
Do a check on the zones:
root@kg-t4# named-checkzone kg4.no ./db.kg4.no zone kg4.no/IN: loaded serial 2015102301 OK root@kg-t4# named-checkzone 0.0.10.in-addr.arpa ./db.10.0.0 zone 0.0.10.in-addr.arpa/IN: loaded serial 2001111601 OK root@kg-t4# named-checkzone 10.1.10.in-addr.arpa ./db.10.1.10 zone 10.1.10.in-addr.arpa/IN: loaded serial 2014122301 OK root@kg-t4# named-checkzone 150.1.10.in-addr.arpa ./db.10.1.150 zone 150.1.10.in-addr.arpa/IN: loaded serial 2015102301 OK
ok? after a bit of thinking - I'm missing origins for my zone files. Adding the correct $ORIGIN line to each (remember the trailing dot), and I'm ready for try 2.
stop named:
root@kg-t4# service named onestop Stopping named. rndc failed, trying kill: Waiting for PIDS: 19413. root@kg-t4# service named onestatus named is not running.
start it again:
root@kg-t4# service named onestart Starting named. root@kg-t4# service named onestatus named is running as pid 20706.
and check /var/log/messages:
Nov 13 21:46:40 kg-t4 named[20706]: built with '--prefix=/usr' '--infodir=/usr/share/info' '--mandir=/usr/share/man' '--enable-threads' '--enable-getifaddrs' '--disable-linux-caps' '--with-openssl=/usr' '--with-randomdev=/dev/random' '--without-idn' '--without-libxml2' Nov 13 21:46:40 kg-t4 named[20706]: ---------------------------------------------------- Nov 13 21:46:40 kg-t4 named[20706]: BIND 9 is maintained by Internet Systems Consortium, Nov 13 21:46:40 kg-t4 named[20706]: Inc. (ISC), a non-profit 501(c)(3) public-benefit Nov 13 21:46:40 kg-t4 named[20706]: corporation. Support and training for BIND 9 are Nov 13 21:46:40 kg-t4 named[20706]: available at https://www.isc.org/support Nov 13 21:46:40 kg-t4 named[20706]: ---------------------------------------------------- Nov 13 21:46:40 kg-t4 named[20706]: command channel listening on 127.0.0.1#953 Nov 13 21:46:40 kg-t4 named[20706]: zone 10.1.10.in-addr.arpa/IN: loading from master file master/db.10.1.10 failed: file not found Nov 13 21:46:40 kg-t4 named[20706]: zone 10.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:46:40 kg-t4 named[20706]: zone 150.1.10.in-addr.arpa/IN: loading from master file master/db.10.1.150 failed: file not found Nov 13 21:46:40 kg-t4 named[20706]: zone 0.0.10.in-addr.arpa/IN: loading from master file master/db.10.0.0 failed: file not found Nov 13 21:46:40 kg-t4 named[20706]: zone 0.0.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:46:40 kg-t4 named[20706]: zone 150.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:46:40 kg-t4 named[20706]: zone kg4.no/IN: loading from master file master/db.kg4.no failed: file not found Nov 13 21:46:40 kg-t4 named[20706]: zone kg4.no/IN: not loaded due to errors. Nov 13 21:46:40 kg-t4 named[20706]: all zones loaded Nov 13 21:46:40 kg-t4 named[20706]: running
Nope. Why does it complain that it can't find the files?
Aha, my zones in named.conf looks like this:
// -- my zones -- zone "kg4.no" { type master; file "master/db.kg4.no"; allow-query { internal; }; allow-transfer { i nternal; }; }; zone "0.0.10.in-addr.arpa" { type master; file "master/db.10.0.0"; }; zone "10.1.10.in-addr.arpa" { type master; file "master/db.10.1.10"; }; zone "150.1.10.in-addr.arpa" { type master; file "master/db.10.1.150"; };
and named requires fully qualified paths. Change it to this:
zone "kg4.no" { type master; file "/etc/namedb/master/db.kg4.no"; allow-query { internal; }; allow- transfer { internal; }; }; zone "0.0.10.in-addr.arpa" { type master; file "/etc/namedb/master/db.10.0.0"; }; zone "10.1.10.in-addr.arpa" { type master; file "/etc/namedb/master/db.10.1.10"; }; zone "150.1.10.in-addr.arpa" { type master; file "/etc/namedb/master/db.10.1.150"; };
and try again. stop named:
root@kg-t4# service named onestop Stopping named. rndc failed, trying kill: Waiting for PIDS: 20706.
and start:
root@kg-t4# service named onestart Starting named.
now check /var/log/messages:
Nov 13 21:56:09 kg-t4 named[20844]: starting BIND 9.9.7-P2 -t /var/named -u bind Nov 13 21:56:09 kg-t4 named[20844]: built with '--prefix=/usr' '--infodir=/usr/share/info' '--mandir=/usr/share/man' '--enable-threads' '--enable-getifaddrs' '--disable-linux-caps' '--with-openssl=/usr' '--with-randomdev=/dev/random' '--without-idn' '--without-libxml2' Nov 13 21:56:09 kg-t4 named[20844]: ---------------------------------------------------- Nov 13 21:56:09 kg-t4 named[20844]: BIND 9 is maintained by Internet Systems Consortium, Nov 13 21:56:09 kg-t4 named[20844]: Inc. (ISC), a non-profit 501(c)(3) public-benefit Nov 13 21:56:09 kg-t4 named[20844]: corporation. Support and training for BIND 9 are Nov 13 21:56:09 kg-t4 named[20844]: available at https://www.isc.org/support Nov 13 21:56:09 kg-t4 named[20844]: ---------------------------------------------------- Nov 13 21:56:09 kg-t4 named[20844]: command channel listening on 127.0.0.1#953 Nov 13 21:56:09 kg-t4 named[20844]: zone 0.0.10.in-addr.arpa/IN: loading from master file /etc/namedb/master/db.10.0.0 failed: permission denied Nov 13 21:56:09 kg-t4 named[20844]: zone 0.0.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:56:09 kg-t4 named[20844]: zone 10.1.10.in-addr.arpa/IN: loading from master file /etc/namedb/master/db.10.1.10 failed: permission denied Nov 13 21:56:09 kg-t4 named[20844]: zone 10.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:56:09 kg-t4 named[20844]: zone 150.1.10.in-addr.arpa/IN: loading from master file /etc/namedb/master/db.10.1.150 failed: permission denied Nov 13 21:56:09 kg-t4 named[20844]: zone 150.1.10.in-addr.arpa/IN: not loaded due to errors. Nov 13 21:56:09 kg-t4 named[20844]: zone kg4.no/IN: loading from master file /etc/namedb/master/db.kg4.no failed: permission denied Nov 13 21:56:09 kg-t4 named[20844]: zone kg4.no/IN: not loaded due to errors. Nov 13 21:56:09 kg-t4 named[20844]: all zones loaded Nov 13 21:56:09 kg-t4 named[20844]: running Nov 13 21:56:19 kg-t4 named[20844]: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
ok, now I got permission problems. Sigh. Ok, I changed permissions on my zone files, like this:
root@kg-t4# pwd /etc/namedb/master root@kg-t4# ll total 40 drwxr-xr-x 2 root wheel 512 Nov 13 20:05 ./ drwxr-xr-x 6 root wheel 512 Nov 13 20:53 ../ -rw-r----- 1 root bind 590 Nov 13 21:43 db.10.0.0 -rw-r----- 1 root bind 1159 Nov 13 21:43 db.10.1.10 -rw-r----- 1 root bind 1612 Nov 13 21:43 db.10.1.150 -rw-r----- 1 root bind 4113 Nov 13 21:42 db.kg4.no -rw-r--r-- 1 root wheel 234 Jan 2 2015 empty.db -rw-r--r-- 1 root wheel 256 Jan 2 2015 localhost-forward.db -rw-r--r-- 1 root wheel 324 Jan 2 2015 localhost-reverse.db
and after starting bind again, /var/log/messages says:
Nov 13 22:06:41 kg-t4 named[21930]: starting BIND 9.9.7-P2 -t /var/named -u bind Nov 13 22:06:41 kg-t4 named[21930]: built with '--prefix=/usr' '--infodir=/usr/share/info' '--mandir=/usr/share/man' '--enable-threads' '--enable-getifaddrs' '--disable-linux-caps' '--with-openssl=/usr' '--with-randomdev=/dev/random' '--without-idn' '--without-libxml2' Nov 13 22:06:41 kg-t4 named[21930]: ---------------------------------------------------- Nov 13 22:06:41 kg-t4 named[21930]: BIND 9 is maintained by Internet Systems Consortium, Nov 13 22:06:41 kg-t4 named[21930]: Inc. (ISC), a non-profit 501(c)(3) public-benefit Nov 13 22:06:41 kg-t4 named[21930]: corporation. Support and training for BIND 9 are Nov 13 22:06:41 kg-t4 named[21930]: available at https://www.isc.org/support Nov 13 22:06:41 kg-t4 named[21930]: ---------------------------------------------------- Nov 13 22:06:41 kg-t4 named[21930]: command channel listening on 127.0.0.1#953 Nov 13 22:06:41 kg-t4 named[21930]: all zones loaded Nov 13 22:06:41 kg-t4 named[21930]: running
nice. Now test it. A few rounds with dig
root@kg-t4# dig @10.1.150.100 -x 10.1.150.50 root@kg-t4# dig @10.1.150.100 c1.kg4.no
and so on says that BIND works. Good.
2015-11-13: ada0p4 - testing dhcpd. updating /usr/local/etc/dhcpd.conf from the master:
root@kg-t4# scp tingo@kg-omni1:/usr/local/etc/dhcpd.conf /usr/local/etc/ [...] dhcpd.conf 100% 5323 5.2KB/s 00:00
move away the original dhcpd6 file:
root@kg-t4# mv /usr/local/etc/dhcpd6.conf /usr/local/etc/dhcpd6.conf_org
ok. Test isc-dhcpd:
root@kg-t4# service isc-dhcpd rcvar # dhcpd # dhcpd_enable="NO" # (default: "") root@kg-t4# service isc-dhcpd onestatus dhcpd is not running.
start
root@kg-t4# service isc-dhcpd onestart Starting dhcpd. Internet Systems Consortium DHCP Server 4.3.2 Copyright 2004-2015 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/ WARNING: Host declarations are global. They are not limited to the scope you declared them in. Config file: /usr/local/etc/dhcpd.conf Database file: /var/db/dhcpd/dhcpd.leases PID file: /var/run/dhcpd/dhcpd.pid Wrote 0 deleted host decls to leases file. Wrote 0 new dynamic host decls to leases file. Wrote 0 leases to leases file. Listening on BPF/re0/80:ee:73:60:61:0c/10.1.0.0/16 Sending on BPF/re0/80:ee:73:60:61:0c/10.1.0.0/16 Sending on Socket/fallback/fallback-net
status
root@kg-t4# service isc-dhcpd onestatus dhcpd is running as pid 18165.
appears to work:
root@kg-t4# ll /var/db/dhcpd total 12 drwxr-xr-x 2 dhcpd dhcpd 512 Nov 13 19:27 ./ drwxr-xr-x 11 root wheel 512 Nov 13 19:27 ../ -rw-r--r-- 1 root dhcpd 189 Nov 13 19:27 dhcpd.leases -rw-r--r-- 1 dhcpd dhcpd 0 Nov 13 19:27 dhcpd.leases~ root@kg-t4# more /var/db/dhcpd/dhcpd.leases # The format of this file is documented in the dhcpd.leases(5) manual page. # This lease file was written by isc-dhcp-4.3.2 server-duid "\000\001\000\001\035\330\350\017\200\356s`a\014";
stop it
root@kg-t4# service isc-dhcpd onestop Stopping dhcpd. Waiting for PIDS: 18165. root@kg-t4# service isc-dhcpd onestatus dhcpd is not running.
ok.
2015-09-26: ada0p4 - upgraded some few ports. I had to follow UPDATING (20150513, 20150510).
Sep 26 14:36:00 kg-t4 pkg: pkg-1.4.4 deinstalled Sep 26 14:36:01 kg-t4 pkg-static: pkg-1.6.0 installed Sep 26 14:36:54 kg-t4 pkg: pkgconf-0.9.7 deinstalled Sep 26 14:36:55 kg-t4 pkg-static: pkgconf-0.9.12 installed Sep 26 14:38:17 kg-t4 pkg: libiconv-1.14_6 deinstalled Sep 26 14:38:18 kg-t4 pkg-static: libiconv-1.14_8 installed Sep 26 14:38:34 kg-t4 pkg: libyaml-0.1.6_1 deinstalled Sep 26 14:38:35 kg-t4 pkg-static: libyaml-0.1.6_2 installed Sep 26 14:38:44 kg-t4 pkg: indexinfo-0.2.2 deinstalled Sep 26 14:38:45 kg-t4 pkg-static: indexinfo-0.2.3 installed Sep 26 14:39:00 kg-t4 pkg: expat-2.1.0_2 deinstalled Sep 26 14:39:01 kg-t4 pkg-static: expat-2.1.0_3 installed Sep 26 14:39:26 kg-t4 pkg: gettext-runtime-0.19.3 deinstalled Sep 26 14:39:28 kg-t4 pkg-static: gettext-runtime-0.19.5.1 installed Sep 26 14:45:30 kg-t4 pkg: gettext-tools-0.19.3 deinstalled Sep 26 14:45:31 kg-t4 pkg-static: gettext-tools-0.19.5.1 installed Sep 26 14:45:48 kg-t4 pkg: gmake-4.1_1 deinstalled Sep 26 14:45:49 kg-t4 pkg-static: gmake-4.1_2 installed Sep 26 14:49:47 kg-t4 pkg: perl5-5.18.4_11 deinstalled Sep 26 14:49:50 kg-t4 pkg-static: perl5.18-5.18.4_17 installed Sep 26 14:53:23 kg-t4 pkg: libffi-3.0.13_3 deinstalled Sep 26 14:53:24 kg-t4 pkg-static: libffi-3.2.1 installed Sep 26 14:54:39 kg-t4 pkg-static: libedit-3.1.20150325_1 installed Sep 26 15:12:47 kg-t4 pkg: ruby-2.0.0.598_1,1 deinstalled Sep 26 15:12:56 kg-t4 pkg-static: ruby20-2.0.0.647,1 installed Sep 26 15:24:38 kg-t4 pkg-static: ruby-2.1.7,1 installed Sep 26 15:25:13 kg-t4 pkg-static: ruby21-bdb-0.6.6_4 installed Sep 26 15:25:16 kg-t4 pkg: portupgrade-2.4.13_1,2 deinstalled Sep 26 15:25:17 kg-t4 pkg-static: portupgrade-2.4.14,2 installed Sep 26 15:39:14 kg-t4 pkg: perl5.18-5.18.4_17 deinstalled Sep 26 15:39:17 kg-t4 pkg-static: perl5-5.20.3_8 installed Sep 26 15:39:44 kg-t4 pkg: p5-MIME-Base64-3.14_1 deinstalled Sep 26 15:39:45 kg-t4 pkg-static: p5-MIME-Base64-3.15 installed Sep 26 15:40:11 kg-t4 pkg: p5-Net-SSLeay-1.66_1 deinstalled Sep 26 15:40:12 kg-t4 pkg-static: p5-Net-SSLeay-1.72 installed Sep 26 15:40:27 kg-t4 pkg: p5-Socket-2.016_1 deinstalled Sep 26 15:40:28 kg-t4 pkg-static: p5-Socket-2.020 installed Sep 26 15:40:42 kg-t4 pkg: p5-Locale-gettext-1.05_4 deinstalled Sep 26 15:40:44 kg-t4 pkg-static: p5-Locale-gettext-1.06 installed Sep 26 15:41:45 kg-t4 pkg: p5-MIME-Types-2.09_1 deinstalled Sep 26 15:41:47 kg-t4 pkg-static: p5-MIME-Types-2.11 installed Sep 26 15:42:00 kg-t4 pkg: p5-Mozilla-CA-20130114_1 deinstalled Sep 26 15:42:02 kg-t4 pkg-static: p5-Mozilla-CA-20141217 installed Sep 26 15:42:16 kg-t4 pkg: p5-IO-Socket-IP-0.35 deinstalled Sep 26 15:42:17 kg-t4 pkg-static: p5-IO-Socket-IP-0.37 installed Sep 26 15:42:32 kg-t4 pkg: p5-IO-Socket-SSL-2.008 deinstalled Sep 26 15:42:33 kg-t4 pkg-static: p5-IO-Socket-SSL-2.016 installed
ok. More ports upgraded
Sep 26 15:57:39 kg-t4 pkg: darkstat-3.0.718 deinstalled Sep 26 15:57:40 kg-t4 pkg-static: darkstat-3.0.719 installed Sep 26 16:01:37 kg-t4 pkg: isc-dhcp43-server-4.3.1 deinstalled Sep 26 16:01:39 kg-t4 pkg-static: isc-dhcp43-server-4.3.2_1 installed Sep 26 16:01:54 kg-t4 pkg: ca_root_nss-3.17.3_1 deinstalled Sep 26 16:01:55 kg-t4 pkg-static: ca_root_nss-3.20 installed Sep 26 16:02:09 kg-t4 pkg: mime-construct-1.11_1 deinstalled Sep 26 16:02:11 kg-t4 pkg-static: mime-construct-1.11_2 installed Sep 26 16:03:16 kg-t4 pkg: ossec-hids-local-2.8.1 deinstalled Sep 26 16:03:17 kg-t4 pkg-static: ossec-hids-local-2.8.2 installed Sep 26 16:04:07 kg-t4 pkg: apr-1.5.1.1.5.4 deinstalled Sep 26 16:04:08 kg-t4 pkg-static: apr-1.5.2.1.5.4 installed Sep 26 16:04:51 kg-t4 pkg: bash-4.3.30_1 deinstalled Sep 26 16:04:52 kg-t4 pkg-static: bash-4.3.42 installed Sep 26 16:07:05 kg-t4 pkg: python27-2.7.9 deinstalled Sep 26 16:07:08 kg-t4 pkg-static: python27-2.7.10 installed Sep 26 16:07:26 kg-t4 pkg: py27-setuptools27-5.5.1 deinstalled Sep 26 16:07:28 kg-t4 pkg-static: py27-setuptools27-17.0 installed Sep 26 16:11:24 kg-t4 pkg: pcre-8.35_2 deinstalled Sep 26 16:11:26 kg-t4 pkg-static: pcre-8.37_4 installed Sep 26 16:12:41 kg-t4 pkg: sqlite3-3.8.7.4 deinstalled Sep 26 16:12:43 kg-t4 pkg-static: sqlite3-3.8.11.1 installed Sep 26 16:15:11 kg-t4 pkg: subversion-static-1.8.11 deinstalled Sep 26 16:15:13 kg-t4 pkg-static: subversion-static-1.8.14_2 installed Sep 26 16:23:31 kg-t4 pkg: smartmontools-6.3 deinstalled Sep 26 16:23:32 kg-t4 pkg-static: smartmontools-6.4_1 installed Sep 26 16:25:41 kg-t4 pkg: nginx-1.6.2_1,2 deinstalled Sep 26 16:25:43 kg-t4 pkg-static: nginx-1.8.0_3,2 installed Sep 26 16:31:51 kg-t4 pkg: postfix-2.11.3_3,1 deinstalled Sep 26 16:31:53 kg-t4 pkg-static: postfix-2.11.6,1 installed
done.
2015-09-26: ada0p4 - updated ports via portsnap fetch; portsnap update. Then check if HAL must be disabled:
root@kg-t4# ls -ld /usr/ports/sysutils/hal* drwxr-xr-x 3 root wheel 512 Sep 26 14:28 /usr/ports/sysutils/hal drwxr-xr-x 3 root wheel 512 Sep 26 14:28 /usr/ports/sysutils/hal-info
yes - disable it:
root@kg-t4# mv /usr/ports/sysutils/hal /usr/ports/sysutils/hal_
ok.
2015-09-25: ada0p4 - after a reboot, the machine now runs latest FreeBSD 9.3-stable. dmesg output: [normal], [verbose].
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 9.3-STABLE FreeBSD 9.3-STABLE #2 r288220: Fri Sep 25 22:48:51 CEST 2015 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
that's all.
2015-09-25: ada0p4 - build latest -stable via make world.
root@kg-t4# pwd /usr/src root@kg-t4# make -j4 buildworld [...] -------------------------------------------------------------- >>> World build completed on Fri Sep 25 21:15:17 CEST 2015 -------------------------------------------------------------- root@kg-t4# make kernel [...] ===> zlib (install) install -o root -g wheel -m 555 zlib.ko /boot/kernel install -o root -g wheel
I run the rest in multiuser too.
root@kg-t4# mergemaster -p *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot *** Beginning comparison *** The installed file /etc has the type "symbolic link" but the new version has the type "directory" How would you like to handle this? Use 'r' to remove /etc You will be able to install it as a "directory" Use 'i' to ignore this How to proceed? [i] *** See the man page about adding /etc to the list of IGNORE_FILES *** Press the [Enter] or [Return] key to continue *** Temp ./etc/group and installed have the same Id, deleting *** Temp ./etc/master.passwd and installed have the same Id, deleting *** Comparison complete *** /var/tmp/temproot is empty, deleting
install
root@kg-t4# make installworld [...] install -s -o root -g wheel -m 555 ldd32 /usr/bin/ldd32
next is remove old stuff
root@kg-t4# make delete-old >>> Removing old files (only deletes safe to delete libs) >>> Old files removed >>> Removing old directories /usr/include/c++/v1/experimental /usr/include/c++/v1/ext rmdir: /usr/include/c++/v1: Directory not empty >>> Old directories removed To remove old libraries run '/usr/obj/usr/src/make.amd64/make delete-old-libs'. root@kg-t4# make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. >>> Old libraries removed root@kg-t4# /usr/obj/usr/src/make.amd64/make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. >>> Old libraries removed
thats ... interesting.
mergemaster
root@kg-t4# mergemaster -iUP *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot *** Beginning comparison *** Checking /etc/rc.d for stale files *** No stale files found *** The installed file /etc has the type "symbolic link" but the new version has the type "directory" How would you like to handle this? Use 'r' to remove /etc You will be able to install it as a "directory" Use 'i' to ignore this How to proceed? [i] [...] *** You chose the automatic upgrade option for files that you did not alter on your system. The following were upgraded for you: /etc/defaults/rc.conf /etc/inetd.conf /etc/mail/freebsd.cf /etc/mail/freebsd.mc /etc/mail/freebsd.submit.cf /etc/mail/freebsd.submit.mc /etc/mail/sendmail.cf /etc/mail/submit.cf /etc/portsnap.conf /etc/services /etc/ssh/moduli *** You installed a services file, so make sure that you run '/usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services' to rebuild your services database Would you like to run it now? y or n [n] y Running /usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services *** Reinstalling Europe/Oslo as /etc/localtime
only a reboot remains.
2015-09-25: ada0p4 - upgrade source to latest -stable via svn:
root@kg-t4# cd /usr/src root@kg-t4# svn up Updating '.': U secure/usr.bin/openssl/man/pkcs8.1 U secure/usr.bin/openssl/man/dsaparam.1 [...] U crypto/openssl/util/mkerr.pl U crypto/openssl/e_os2.h U crypto/openssl U . Updated to revision 288220.
ok.
2015-06-07: ada0p4 - the machine now runs latest FreeBSD 9.3-stable. dmesg output: [normal], [verbose].
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 9.3-STABLE FreeBSD 9.3-STABLE #1 r284061: Sat Jun 6 23:52:14 CEST 2015 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
that is all.
2015-06-06: ada0p4 - update to latest FreeBSD 9.3-stable via make world:
root@kg-t4# pwd /usr/src root@kg-t4# make -j4 buildworld [...] -------------------------------------------------------------- >>> World build completed on Sat Jun 6 15:26:08 CEST 2015 --------------------------------------------------------------
kernel
root@kg-t4# make kernel [...] ===> zlib (install) install -o root -g wheel -m 555 zlib.ko /boot/kernel install -o root -g wheel -m 555 zlib.ko.symbols /boot/kernel kldxref /boot/kernel
I run the rest of the steps in multiuser too. mergemaster before install
root@kg-t4# mergemaster -p *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot *** Beginning comparison *** The installed file /etc has the type "symbolic link" but the new version has the type "directory" How would you like to handle this? Use 'r' to remove /etc You will be able to install it as a "directory" Use 'i' to ignore this How to proceed? [i] i *** See the man page about adding /etc to the list of IGNORE_FILES *** Press the [Enter] or [Return] key to continue *** Temp ./etc/group and installed have the same Id, deleting *** Temp ./etc/master.passwd and installed have the same Id, deleting *** Comparison complete *** /var/tmp/temproot is empty, deleting
install world
root@kg-t4# make installworld [...] install -s -o root -g wheel -m 555 -C -b -fschg -S ld-elf32.so.1 /libexec/ld-elf32.so.1 /usr/libexec/ld-elf32.so.1 -> /libexec/ld-elf32.so.1 cd /usr/src/usr.bin/ldd; PROG=ldd32 MACHINE=i386 MACHINE_ARCH=i386 MACHINE_CPU="i686 mmx sse sse2" MAKEOBJDIRPREFIX=/usr/obj/lib32 _SHLIBDIRPREFIX=/usr/obj/usr/src/lib32 VERSION="FreeBSD 9.3-STABLE amd64 903508" PATH=/usr/obj/usr/src/tmp/legacy/usr/sbin:/usr/obj/usr/src/tmp/legacy/usr/bin:/usr/obj/usr/src/tmp/legacy/usr/games:/usr/obj/usr/src/tmp/legacy/bin:/usr/obj/usr/src/tmp/usr/sbin:/usr/obj/usr/src/tmp/usr/bin:/usr/obj/usr/src/tmp/usr/games:/usr/obj/usr/src/tmp/legacy/usr/sbin:/usr/obj/usr/src/tmp/legacy/usr/bin:/usr/obj/usr/src/tmp/legacy/usr/games:/usr/obj/usr/src/tmp/legacy/bin:/usr/obj/usr/src/tmp/usr/sbin:/usr/obj/usr/src/tmp/usr/bin:/usr/obj/usr/src/tmp/usr/games:/tmp/install.Ke7HGwH7 LIBDIR=/usr/lib32 SHLIBDIR=/usr/lib32 LIBPRIVATEDIR=/usr/lib32/private COMPILER_TYPE=gcc /usr/obj/usr/src/make.amd64/make AS="as --32" LD="ld -m elf_i386_fbsd -Y P,/usr/obj/usr/src/lib32/usr/lib32" CC="cc -m32 -march=i686 -mmmx -msse -msse2 -DCOMPAT_32BIT -isystem /usr/obj/usr/src/lib32/usr/include/ -L/usr/obj/usr/src/lib32/usr/lib32 -B/usr/obj/usr/src/lib32/usr/lib32" CXX="c++ -m32 -march=i686 -mmmx -msse -msse2 -DCOMPAT_32BIT -isystem /usr/obj/usr/src/lib32/usr/include/ -L/usr/obj/usr/src/lib32/usr/lib32 -B/usr/obj/usr/src/lib32/usr/lib32" -DCOMPAT_32BIT -DLIBRARIES_ONLY -DNO_CPU_CFLAGS -DNO_CTF -DNO_LINT -DWITHOUT_BIND -DWITHOUT_MAN -DWITHOUT_INFO -DWITHOUT_HTML -DNO_INCS install install -s -o root -g wheel -m 555 ldd32 /usr/bin/ldd32
delete old stuff
root@kg-t4# make delete-old >>> Removing old files (only deletes safe to delete libs) >>> Old files removed >>> Removing old directories /usr/include/c++/v1/experimental /usr/include/c++/v1/ext rmdir: /usr/include/c++/v1: Directory not empty >>> Old directories removed To remove old libraries run '/usr/obj/usr/src/make.amd64/make delete-old-libs'. root@kg-t4# make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. >>> Old libraries removed
mergemaster after:
root@kg-t4# mergemaster -iUP *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot *** Beginning comparison *** Checking /etc/rc.d for stale files *** No stale files found *** The installed file /etc has the type "symbolic link" but the new version has the type "directory" How would you like to handle this? Use 'r' to remove /etc You will be able to install it as a "directory" Use 'i' to ignore this How to proceed? [i] i *** See the man page about adding /etc to the list of IGNORE_FILES *** Press the [Enter] or [Return] key to continue [...] *** You chose the automatic install option for files that did not exist on your system. The following were installed for you: /etc/periodic/daily/510.status-world-kernel *** You chose the automatic upgrade option for files that you did not alter on your system. The following were upgraded for you: /boot/device.hints /etc/defaults/periodic.conf /etc/mtree/BSD.include.dist /etc/mtree/BSD.usr.dist /etc/periodic/daily/420.status-network /etc/rc.d/syslogd /etc/rc.subr /etc/services *** You installed a services file, so make sure that you run '/usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services' to rebuild your services database Would you like to run it now? y or n [n] y Running /usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services *** Reinstalling Europe/Oslo as /etc/localtime
done. shutdown and reboot.
2015-06-06: ada0p4 - update source:
root@kg-t4# cd /usr/src root@kg-t4# svn up [...] U secure/usr.bin/openssl/man/version.1 U . Updated to revision 284061.
ok.
root@kg-t4# egrep "^BRANCH|^REVISION" /usr/src/sys/conf/newvers.sh REVISION="9.3" BRANCH="STABLE"
ok too.
2015-06-06: ada0p4 - and we're back in FreeBSD 9.3-stable:
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 9.3-STABLE FreeBSD 9.3-STABLE #0 r276559: Fri Jan 2 21:50:15 CET 2015 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64 root@kg-t4# df -h Filesystem Size Used Avail Capacity Mounted on /dev/ada0p4 49G 7.3G 38G 16% / devfs 1.0k 1.0k 0B 100% /dev
ok.
2015-06-06: ada0p2 - I booted the machine, it has been off a few months now. It seems like I set it to boot from ada0p2.
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 8.4-STABLE FreeBSD 8.4-STABLE #1 r272311: Tue Sep 30 19:38:02 CEST 2014 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64 root@kg-t4# gpart show -p ada0 => 34 234441581 ada0 GPT (111G) 34 128 ada0p1 freebsd-boot (64k) 162 104857472 ada0p2 freebsd-ufs [bootme] (50G) 104857634 20971520 ada0p3 freebsd-swap (10G) 125829154 106954752 ada0p4 freebsd-ufs (51G) 232783906 1657709 - free - (809M)
easily fixed
root@kg-t4# gpart set -a bootme -i 4 ada0 bootme set on ada0p4 root@kg-t4# gpart unset -a bootme -i 2 ada0 bootme unset on ada0p2
verify:
root@kg-t4# gpart show -p ada0 => 34 234441581 ada0 GPT (111G) 34 128 ada0p1 freebsd-boot (64k) 162 104857472 ada0p2 freebsd-ufs (50G) 104857634 20971520 ada0p3 freebsd-swap (10G) 125829154 106954752 ada0p4 freebsd-ufs [bootme] (51G) 232783906 1657709 - free - (809M)
and reboot.
2015-01-23: ada0p4 - I'm getting these in the daily status email since I enabled postfix:
Removing stale entries from sendmail host status cache: mailwrapper: no mapping in /etc/mail/mailer.conf
the reason being that
/etc/periodic/daily/150.clean-hoststat
runs every day. To disable, I set
# disable sendmail host status cleaning
daily_clean_hoststat_enable="NO"
in /etc/periodic.conf.
2015-01-17: ada0p4 - ddclient.conf:
root@kg-t4# cd /usr/local/etc root@kg-t4# cp -v ddclient.conf.sample ddclient.conf ddclient.conf.sample -> ddclient.conf
and edit to suit. the dhcp server needs a config file:
root@kg-t4# ls -l /usr/local/etc/dhcpd.conf -rw-r--r-- 1 root wheel 5592 Jan 17 18:08 /usr/local/etc/dhcpd.conf
and smartd too
root@kg-t4# cp -v smartd.conf.sample smartd.conf smartd.conf.sample -> smartd.conf
2015-01-17: ada0p4 - fix it so that the dhcp client don't overwrite /etc/resolv.conf:
root@kg-t4# more /etc_firewall/dhclient-enter-hooks # avoid overwriting /etc/resolv.conf add_new_resolv_conf() { # We don't want /etc/resolv.conf changed # So this is an empty function return 0 }
also set up a resolv.conf file:
root@kg-t4# more /etc_firewall/resolv.conf # Generated by human hands search kg4.no nameserver 10.1.10.1
other stuff needed: update other config files: natd.conf, ntp.conf,
root@kg-t4# more /etc_firewall/newsyslog.conf.d/nginx.conf # logfilename [owner:group] mode count size when flags [/pid_file] [sig_num] /var/log/nginx-access.log 644 9 1000 * JC /var/run/nginx.pid /var/log/nginx-error.log 644 9 1000 * JC /var/run/nginx.pid root@kg-t4# more /etc_firewall/periodic.conf # ntpd daily_status_ntpd_enable="YES" # bsdstats monthly_statistics_enable="YES" monthly_statistics_report_devices="YES" monthly_statistics_report_ports="YES" # rkhunter daily_rkhunter_update_enable="YES" daily_rkhunter_check_enable="YES" # disable sendmail host status cleaning daily_clean_hoststat_enable="NO"
ok.
2015-01-17: ada0p4 - create a separate directory for "firewall mode":
root@kg-t4# cd / root@kg-t4# mkdir etc_firewall
verify permissions
root@kg-t4# ls -ld etc* lrwxr-xr-x 1 root wheel 7 Jan 17 13:06 etc -> etc_org drwxr-xr-x 2 root wheel 512 Jan 17 15:30 etc_firewall drwxr-xr-x 21 root wheel 2048 Jan 17 15:07 etc_org
looks good. copy everything from etc_org to etc_firewall as a starting point:
root@kg-t4# cp -Rpv etc_org/ ./etc_firewall/ etc_org/ -> ./etc_firewall etc_org/ssh -> ./etc_firewall/ssh [...] etc_org/libalias.conf -> ./etc_firewall/libalias.conf etc_org/login.access -> ./etc_firewall/login.access etc_org/login.conf -> ./etc_firewall/login.conf
done.
2015-01-17: ada0p4 - install needed ports: darkstat 3.0.718, ddclient 3.8.2, isc-dhcp43-server 4.3.1, logcheck 1.3.17, nginx 1.6.2_1,2, ossec-hids-local 2.8.1, postfix 2.11.3_3,1 setting SASL2 and TLS to "ON",
2015-01-17: ada0p2 - fixing the /etc directory on ada0p4:
root@kg-t4# mount /dev/ada0p4 /mnt root@kg-t4# cd /mnt root@kg-t4# mv etc etc_org root@kg-t4# ln -s etc_org etc root@kg-t4# cd root@kg-t4# umount /mnt
set bootonce so I can verify that it works:
root@kg-t4# gpart set -a bootonce -i 4 ada0 bootonce set on ada0p4
after booting - yes, it works.
2015-01-17: ada0p4 - fixing the /etc directory on ada0p2:
root@kg-t4# mount /dev/ada0p2 /mnt root@kg-t4# cd /mnt root@kg-t4# mv etc etc_org root@kg-t4# ln -s etc_org etc root@kg-t4# cd root@kg-t4# umount /mnt
done.
2015-01-11: ada1p2 - with latest FreeBSD 10.1-stable. dmesg output: [normal], [verbose].
tingo@kg-t4$ uname -a FreeBSD kg-t4.kg4.no 10.1-STABLE FreeBSD 10.1-STABLE #0: Sun Jan 11 22:00:57 CET 2015 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
that's all.
2015-01-11: ada1p2 - building latest FreeBSD 10-stable via make world.
root@kg-t4# cd /usr/src root@kg-t4# make -j4 buildworld [...] --- buildworld_epilogue --- -------------------------------------------------------------- >>> World build completed on Sun Jan 11 21:47:16 CET 2015 -------------------------------------------------------------- root@kg-t4# make kernel [...] ===> zlib (install) install -o root -g wheel -m 555 zlib.ko /boot/kernel install -o root -g wheel -m 555 zlib.ko.symbols /boot/kernel kldxref /boot/kernel I run the next steps multiuser too. root@kg-t4# mergemaster -p [...] *** Comparison complete *** /var/tmp/temproot is empty, deleting root@kg-t4# make installworld [...] install -s -o root -g wheel -m 555 ldd32 /usr/bin/ldd32 root@kg-t4# make delete-old >>> Removing old files (only deletes safe to delete libs) remove /usr/share/man/man9/sleepq_calc_signal_retval.9.gz? y remove /usr/share/man/man9/sleepq_catch_signals.9.gz? y >>> Old files removed >>> Removing old directories >>> Old directories removed To remove old libraries run 'make delete-old-libs'. root@kg-t4# make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. >>> Old libraries removed root@kg-t4# mergemaster -iUP [...] *** Reinstalling Europe/Oslo as /etc/localtime
and we're ready to reboot.
2015-01-11: ada1p2 - getting updated source (latest 10-stable) onto the machine:
root@kg-t4# l /usr/src ./ ../ root@kg-t4# svn checkout svn://svn0.eu.FreeBSD.org/base/stable/10 /usr/src [...] A /usr/src/sbin/clri/clri.c U /usr/src Checked out revision 277016.
what did we get?
root@kg-t4# egrep "^BRANCH|^REVISION" /usr/src/sys/conf/newvers.sh REVISION="10.1" BRANCH="STABLE"
looks ok.
2015-01-11: ada1p2 - ports - installed portupgrade,
2015-01-11: ada1p2 - getting a ports tree with portsnap fetch; portsnap extract. ports installed - subversion-static, after the installation I have these ports
installed:
root@kg-t4# pkg info apr-1.5.1.1.5.4 Apache Portability Library db5-5.3.28_2 The Oracle Berkeley DB, revision 5.3 dialog4ports-0.1.5_2 Console Interface to configure ports expat-2.1.0_2 XML 1.0 parser written in C gdbm-1.11_2 GNU database manager gettext-runtime-0.19.3 GNU gettext runtime libraries and programs gettext-tools-0.19.3 GNU gettext development and translation tools gmake-4.1_1 GNU version of 'make' utility indexinfo-0.2.2 Utility to regenerate the GNU info page index libffi-3.2.1 Foreign Function Interface m4-1.4.17_1,1 GNU m4 pkg-1.4.4 Package manager pkgconf-0.9.7 Utility to help to configure compiler and linker flags py27-setuptools27-5.5.1 Python packages installer python2-2_3 The "meta-port" for version 2 of the Python interpreter python27-2.7.9 Interpreted object-oriented programming language scons-2.3.0_1 Build tool alternative to make serf-1.3.8 Serf HTTP client library sqlite3-3.8.7.4 SQL database engine in a C library subversion-static-1.8.11 Version control system
nothing more to say.
2015-01-10: ada1p2 - FreeBSD 10.1-release installed. dmesg output: [normal], [verbose].
$ uname -a FreeBSD kg-t4.kg4.no 10.1-RELEASE FreeBSD 10.1-RELEASE #0 r274401: Tue Nov 11 21:02:49 UTC 2014 root@releng1.nyi.freebsd.org:/usr/obj/usr/src/sys/GENERIC amd64
after fixing a few things it is on. Rename a group:
root@kg-t4# pw groupshow tingo tingo:*:1001: root@kg-t4# pw groupmod tingo -l users pw: group disappeared during update root@kg-t4# pw groupshow tingo pw: unknown group `tingo' root@kg-t4# pw groupshow users users:*:1001:
done.
2015-01-10: ada0p2 - after installing FreeBSD 10.1-release on ada1 it wouldn't boot. So I'm back here checking:
root@kg-t4# gpart show -p ada1 => 34 234441581 ada1 GPT (111G) 34 6 - free - (3.0k) 40 1024 ada1p1 freebsd-boot (512k) 1064 104857600 ada1p2 freebsd-ufs (50G) 104858664 23068672 ada1p3 freebsd-swap (11G) 127927336 106514279 - free - (50G)
looks ok. Let's write the bootcode again:
root@kg-t4# mount /dev/ada1p2 /mnt root@kg-t4# gpart bootcode -b /mnt/boot/pmbr -p /mnt/boot/gptboot -i 1 ada1 bootcode written to ada1
done. Now reboot and see if it works. It didn't. Looks like this is a BIOS issue - I had to change BBS priorities in BIOS.
2015-01-10: ada0p2 - Kingston SSD after the firmware upgrade:
root@kg-t4# smartctl -i /dev/ada1 smartctl 6.3 2014-07-26 r3976 [FreeBSD 8.4-STABLE amd64] (local build) Copyright (C) 2002-14, Bruce Allen, Christian Franke, www.smartmontools.org === START OF INFORMATION SECTION === Model Family: SandForce Driven SSDs Device Model: KINGSTON SH103S3120G Serial Number: 50026B7238019B0F LU WWN Device Id: 5 0026b7 238019b0f Firmware Version: 526ABBF0 User Capacity: 120,034,123,776 bytes [120 GB] Sector Size: 512 bytes logical/physical Rotation Rate: Solid State Device Device is: In smartctl database [for details use: -P show] ATA Version is: ATA8-ACS, ACS-2 T13/2015-D revision 3 SATA Version is: SATA 3.0, 6.0 Gb/s (current: 3.0 Gb/s) Local Time is: Sat Jan 10 20:14:09 2015 CET SMART support is: Available - device has SMART capability. SMART support is: Enabled
that's all.
2015-01-10: ada0p2 - the new Kingston SSD looks like this:
root@kg-t4# dmesg | grep ada1 ada1 at ahcich5 bus 0 scbus1 target 0 lun 0 ada1: <KINGSTON SH103S3120G 506ABBF0> ATA-8 SATA 3.x device ada1: 300.000MB/s transfers (SATA 2.x, UDMA6, PIO 8192bytes) ada1: Command Queueing enabled ada1: 114473MB (234441648 512 byte sectors: 16H 63S/T 16383C) ada1: quirks=0x1<4K>
camcontrol
root@kg-t4# camcontrol devlist <INTEL SSDSC2CT120A3 300i> at scbus0 target 0 lun 0 (ada0,pass0) <KINGSTON SH103S3120G 506ABBF0> at scbus1 target 0 lun 0 (ada1,pass1)
smartctl
root@kg-t4# smartctl -i /dev/ada1 smartctl 6.3 2014-07-26 r3976 [FreeBSD 8.4-STABLE amd64] (local build) Copyright (C) 2002-14, Bruce Allen, Christian Franke, www.smartmontools.org === START OF INFORMATION SECTION === Model Family: SandForce Driven SSDs Device Model: KINGSTON SH103S3120G Serial Number: 50026B7238019B0F LU WWN Device Id: 5 0026b7 238019b0f Firmware Version: 506ABBF0 User Capacity: 120,034,123,776 bytes [120 GB] Sector Size: 512 bytes logical/physical Rotation Rate: Solid State Device Device is: In smartctl database [for details use: -P show] ATA Version is: ATA8-ACS, ACS-2 T13/2015-D revision 3 SATA Version is: SATA 3.0, 6.0 Gb/s (current: 3.0 Gb/s) Local Time is: Sat Jan 10 16:43:39 2015 CET SMART support is: Available - device has SMART capability. SMART support is: Enabled
good. Kingston has a new firmware available: 526ABBF0. It requires Windows or Mac OSX to use apparently. After reading the instructions, the Mac one creates a bootable usb stick, perhaps I can use my Mac mini to create the stick? After creating the fimware usb bootable stick, I insert it into my FreeBSD workstation to see what it looks like:
tingo@kg-core1$ uname -a FreeBSD kg-core1.kg4.no 9.3-STABLE FreeBSD 9.3-STABLE #0 r273918: Fri Oct 31 22:52:44 CET 2014 root@kg-core1.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64 root@kg-core1# gpart show -p da1 => 63 15116673 da1 MBR (7.2G) 63 15116661 da1s1 fat32 (7.2G) 15116724 12 - free - (6.0k) root@kg-core1# disktype /dev/da1 --- /dev/da1 Character device, size 7.208 GiB (7739768832 bytes) DOS/MBR partition map Partition 1: 7.208 GiB (7739730432 bytes, 15116661 sectors from 63) Type 0x0B (Win95 FAT32) FAT32 file system (hints score 5 of 5) Volume size 7.194 GiB (7724625920 bytes, 1885895 clusters of 4 KiB) Volume name "UNTITLED"
looks simple enough. Will it boot on the XH61V? It boots (EFI) via grub then the display turns blank - nothing more happens. Luckily, I have an Intel Mac too - a Mac mini. I tried writing the usb stick there and then booting from it - it worked. So then I had to take apart that Mac mini so I could (temporarily) swap the hard drive in it for the Kingston SSD and use the usb stick to update the firmware on it - that worked. The usb stick runs Tiny Core Linux, so the programs could work on a Linux install too.
2015-01-10: ada0p4 - info about the ada0 drive:
root@kg-t4# smartctl -i /dev/ada0 smartctl 6.3 2014-07-26 r3976 [FreeBSD 9.3-STABLE amd64] (local build) Copyright (C) 2002-14, Bruce Allen, Christian Franke, www.smartmontools.org === START OF INFORMATION SECTION === Model Family: Intel 330/335 Series SSDs Device Model: INTEL SSDSC2CT120A3 Serial Number: CVMP232504H8120BGN LU WWN Device Id: 5 001517 bb2a019d6 Firmware Version: 300i User Capacity: 120,034,123,776 bytes [120 GB] Sector Size: 512 bytes logical/physical Rotation Rate: Solid State Device Device is: In smartctl database [for details use: -P show] ATA Version is: ACS-2 T13/2015-D revision 3 SATA Version is: SATA 3.0, 3.0 Gb/s (current: 3.0 Gb/s) Local Time is: Sat Jan 10 14:40:34 2015 CET SMART support is: Available - device has SMART capability. SMART support is: Enabled
according to Intel's support site, 300i is the newest firmware for this drive. Good.
2015-01-10: ada0p4 - ports - update ports tree via portsnap fetch; portsnap update. Next I install portupgrade (/usr/ports/ports-mgmt/portupgrade), and use that
to install smartmontools.
2015-01-02: ada0p4 - acpi temperature also works:
root@kg-t4# alias atemp='sysctl hw.acpi.thermal.tz0.temperature; sysctl hw.acpi.thermal.tz1.temperature' root@kg-t4# atemp hw.acpi.thermal.tz0.temperature: 27.8C hw.acpi.thermal.tz1.temperature: 29.8C
very nice.
2015-01-02: ada0p4 - testing the coretemp module:
root@kg-t4# kldload coretemp root@kg-t4# tvlm Jan 2 23:00:00 kg-t4 newsyslog[855]: logfile turned over due to size>100K Jan 2 23:33:56 kg-t4 kernel: coretemp0: <CPU On-Die Thermal Sensors> on cpu0 Jan 2 23:33:56 kg-t4 kernel: coretemp0: Setting TjMax=102 Jan 2 23:33:56 kg-t4 kernel: coretemp1: <CPU On-Die Thermal Sensors> on cpu1 Jan 2 23:33:56 kg-t4 kernel: coretemp1: Setting TjMax=102
ok, perhaps it works?
root@kg-t4# sysctl dev.cpu dev.cpu.0.%desc: ACPI CPU dev.cpu.0.%driver: cpu dev.cpu.0.%location: handle=\_PR_.CPU0 dev.cpu.0.%pnpinfo: _HID=none _UID=0 dev.cpu.0.%parent: acpi0 dev.cpu.0.freq: 2500 dev.cpu.0.freq_levels: 2500/65000 2400/61690 2300/58444 2200/55260 2100/52138 2000/49078 1900/46088 1800/43148 1700/40269 1600/37449 1400/32767 1200/28086 1000/23405 800/18724 600/14043 400/9362 200/4681 dev.cpu.0.cx_supported: C1/1/1 C2/2/80 C3/3/104 dev.cpu.0.cx_lowest: C1 dev.cpu.0.cx_usage: 100.00% 0.00% 0.00% last 7227us dev.cpu.0.coretemp.delta: 55 dev.cpu.0.coretemp.resolution: 1 dev.cpu.0.coretemp.tjmax: 102.0C dev.cpu.0.coretemp.throttle_log: 0 dev.cpu.0.temperature: 47.0C dev.cpu.1.%desc: ACPI CPU dev.cpu.1.%driver: cpu dev.cpu.1.%location: handle=\_PR_.CPU1 dev.cpu.1.%pnpinfo: _HID=none _UID=0 dev.cpu.1.%parent: acpi0 dev.cpu.1.cx_supported: C1/1/1 C2/2/80 C3/3/104 dev.cpu.1.cx_lowest: C1 dev.cpu.1.cx_usage: 100.00% 0.00% 0.00% last 8904us dev.cpu.1.coretemp.delta: 52 dev.cpu.1.coretemp.resolution: 1 dev.cpu.1.coretemp.tjmax: 102.0C dev.cpu.1.coretemp.throttle_log: 0 dev.cpu.1.temperature: 50.0C
indeed it does.
root@kg-t4# for i in 0 1 > { > sysctl dev.cpu.$i.temperature > } dev.cpu.0.temperature: 46.0C dev.cpu.1.temperature: 52.0C
handy alias:
root@kg-t4# alias temp='sysctl dev.cpu.0.temperature;sysctl dev.cpu.1.temperature' root@kg-t4# temp dev.cpu.0.temperature: 46.0C dev.cpu.1.temperature: 50.0C
good.
2015-01-02: ada0p4 - now runs latest FreeBSD 9.3-stable. dmesg output: normal, verbose.
tingo@kg-t4$ uname -a FreeBSD kg-t4.kg4.no 9.3-STABLE FreeBSD 9.3-STABLE #0 r276559: Fri Jan 2 21:50:15 CET 2015 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
set up a verbose boot:
root@kg-t4# nextboot -o "-v"
this creates a file:
root@kg-t4# more /boot/nextboot.conf nextboot_enable="YES" kernel_options="-v"
then set it to boot from the correct partition again:
root@kg-t4# gpart set -a bootonce -i 4 ada0 bootonce set on ada0p4
after the boot I get the verbose dmesg output as well.
2015-01-02: ada0p4 - build latest FreeBSD 9-stable via make world.
root@kg-t4# cd /usr/src root@kg-t4# make -j4 buildworld [....] -------------------------------------------------------------- >>> World build completed on Fri Jan 2 21:35:24 CET 2015 -------------------------------------------------------------- root@kg-t4# make kernel [....] ===> zlib (install) install -o root -g wheel -m 555 zlib.ko /boot/kernel install -o root -g wheel -m 555 zlib.ko.symbols /boot/kernel kldxref /boot/kernel
do the rest of the install in multiuser too.
root@kg-t4# mergemaster -p [....] root@kg-t4# make installworld [....] root@kg-t4# make delete-old >>> Removing old files (only deletes safe to delete libs) remove /usr/share/man/man9/sleepq_calc_signal_retval.9.gz? y remove /usr/share/man/man9/sleepq_catch_signals.9.gz? y remove /usr/share/man/man9/VOP_GETVOBJECT.9.gz? y remove /usr/share/man/man9/VOP_CREATEVOBJECT.9.gz? y remove /usr/share/man/man9/VOP_DESTROYVOBJECT.9.gz? y remove /usr/bin/sendbug? y remove /usr/share/info/send-pr.info.gz? y remove /usr/share/man/man1/send-pr.1.gz? y remove /usr/share/man/man1/sendbug.1.gz? y remove /etc/gnats/freefall? y remove /usr/lib/libssh.a? y remove /usr/lib/libssh.so? y remove /usr/lib/libssh_p.a? y remove /usr/lib32/libssh.a? y remove /usr/lib32/libssh.so? y remove /usr/lib32/libssh_p.a? y remove /usr/share/man/man2/extattr_delete_list.2.gz? y remove /usr/share/man/man2/extattr_get_list.2.gz? y remove /usr/share/man/man9/vfs_mount.9.gz? y remove /usr/share/man/man4/vinum.4.gz? y remove /usr/share/examples/cvsup/ports-supfile? y remove /usr/share/examples/cvsup/refuse? y remove /usr/share/examples/cvsup/refuse.README? y remove /usr/share/man/en.ISO8859-1/man1aout? y remove /usr/share/man/en.UTF-8/man1aout? y remove /usr/include/clang/3.1/altivec.h? y remove /usr/include/clang/3.1/avx2intrin.h? y remove /usr/include/clang/3.1/avxintrin.h? y remove /usr/include/clang/3.1/bmi2intrin.h? y remove /usr/include/clang/3.1/bmiintrin.h? y remove /usr/include/clang/3.1/cpuid.h? y remove /usr/include/clang/3.1/emmintrin.h? y remove /usr/include/clang/3.1/fma4intrin.h? y remove /usr/include/clang/3.1/immintrin.h? y remove /usr/include/clang/3.1/lzcntintrin.h? y remove /usr/include/clang/3.1/mm3dnow.h? y remove /usr/include/clang/3.1/mm_malloc.h? y remove /usr/include/clang/3.1/mmintrin.h? y remove /usr/include/clang/3.1/module.map? y remove /usr/include/clang/3.1/nmmintrin.h? y remove /usr/include/clang/3.1/pmmintrin.h? y remove /usr/include/clang/3.1/popcntintrin.h? y remove /usr/include/clang/3.1/smmintrin.h? y remove /usr/include/clang/3.1/tmmintrin.h? y remove /usr/include/clang/3.1/unwind.h? y remove /usr/include/clang/3.1/wmmintrin.h? y remove /usr/include/clang/3.1/x86intrin.h? y remove /usr/include/clang/3.1/xmmintrin.h? y >>> Old files removed >>> Removing old directories /etc/gnats /usr/share/man/man1aout /usr/share/man/cat1aout /usr/share/man/en.ISO8859-1/cat1aout /usr/share/man/en.UTF-8/cat1aout /usr/include/clang/3.1 /usr/include/c++/v1/experimental /usr/include/c++/v1/ext /usr/include/c++/v1 >>> Old directories removed To remove old libraries run 'make delete-old-libs'. [....] root@kg-t4# make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. remove /usr/lib/libssh.so.5? y remove /usr/lib32/libssh.so.5? y >>> Old libraries removed root@kg-t4# mergemaster -iUP [....] *** You chose the automatic install option for files that did not exist on your system. The following were installed for you: /etc/devd/zfs.conf /etc/libmap.conf /etc/libmap32.conf /etc/periodic/daily/401.status-graid /etc/pkg/FreeBSD.conf /etc/rc.d/auditdistd *** You chose the automatic upgrade option for files that you did not alter on your system. The following were upgraded for you: /.cshrc /COPYRIGHT /boot/device.hints /etc/amd.map /etc/apmd.conf /etc/bluetooth/hcsecd.conf /etc/bluetooth/hosts /etc/bluetooth/protocols /etc/crontab /etc/csh.cshrc /etc/csh.login /etc/csh.logout /etc/ddb.conf /etc/defaults/bluetooth.device.conf /etc/defaults/devfs.rules /etc/defaults/periodic.conf /etc/defaults/rc.conf /etc/devd.conf /etc/devd/asus.conf /etc/devd/uath.conf /etc/devd/usb.conf /etc/devfs.conf /etc/disktab /etc/fbtab /etc/freebsd-update.conf /etc/ftpusers /etc/gettytab /etc/gss/mech /etc/gss/qop /etc/hosts /etc/hosts.allow /etc/hosts.equiv /etc/hosts.lpd /etc/inetd.conf /etc/libalias.conf /etc/locate.rc /etc/login.access /etc/login.conf /etc/mac.conf /etc/mail/Makefile /etc/mail/README /etc/mail/access.sample /etc/mail/aliases /etc/mail/freebsd.mc /etc/mail/freebsd.submit.mc /etc/mail/helpfile /etc/mail/mailer.conf /etc/mail/mailertable.sample /etc/mail/virtusertable.sample /etc/mtree/BIND.chroot.dist /etc/mtree/BSD.include.dist /etc/mtree/BSD.root.dist /etc/mtree/BSD.sendmail.dist /etc/mtree/BSD.usr.dist /etc/mtree/BSD.var.dist /etc/netconfig /etc/netstart /etc/network.subr /etc/networks /etc/newsyslog.conf /etc/nscd.conf /etc/nsmb.conf /etc/nsswitch.conf /etc/ntp.conf /etc/opieaccess /etc/pam.d/README /etc/pam.d/atrun /etc/pam.d/cron /etc/pam.d/ftp /etc/pam.d/ftpd /etc/pam.d/imap /etc/pam.d/kde /etc/pam.d/login /etc/pam.d/other /etc/pam.d/passwd /etc/pam.d/pop3 /etc/pam.d/rsh /etc/pam.d/sshd /etc/pam.d/su /etc/pam.d/system /etc/pam.d/telnetd /etc/pam.d/xdm /etc/pccard_ether /etc/periodic/daily/100.clean-disks /etc/periodic/daily/110.clean-tmps /etc/periodic/daily/120.clean-preserve /etc/periodic/daily/130.clean-msgs /etc/periodic/daily/140.clean-rwho /etc/periodic/daily/150.clean-hoststat /etc/periodic/daily/200.backup-passwd /etc/periodic/daily/210.backup-aliases /etc/periodic/daily/220.backup-pkgdb /etc/periodic/daily/300.calendar /etc/periodic/daily/310.accounting /etc/periodic/daily/330.news /etc/periodic/daily/400.status-disks /etc/periodic/daily/404.status-zfs /etc/periodic/daily/405.status-ata-raid /etc/periodic/daily/406.status-gmirror /etc/periodic/daily/407.status-graid3 /etc/periodic/daily/408.status-gstripe /etc/periodic/daily/409.status-gconcat /etc/periodic/daily/420.status-network /etc/periodic/daily/430.status-rwho /etc/periodic/daily/440.status-mailq /etc/periodic/daily/450.status-security /etc/periodic/daily/460.status-mail-rejects /etc/periodic/daily/470.status-named /etc/periodic/daily/480.status-ntpd /etc/periodic/daily/490.status-pkg-changes /etc/periodic/daily/500.queuerun /etc/periodic/daily/800.scrub-zfs /etc/periodic/daily/999.local /etc/periodic/monthly/200.accounting /etc/periodic/monthly/999.local /etc/periodic/security/100.chksetuid /etc/periodic/security/110.neggrpperm /etc/periodic/security/200.chkmounts /etc/periodic/security/300.chkuid0 /etc/periodic/security/400.passwdless /etc/periodic/security/410.logincheck /etc/periodic/security/460.chkportsum /etc/periodic/security/500.ipfwdenied /etc/periodic/security/510.ipfdenied /etc/periodic/security/520.pfdenied /etc/periodic/security/550.ipfwlimit /etc/periodic/security/610.ipf6denied /etc/periodic/security/700.kernelmsg /etc/periodic/security/800.loginfail /etc/periodic/security/900.tcpwrap /etc/periodic/security/security.functions /etc/periodic/weekly/310.locate /etc/periodic/weekly/320.whatis /etc/periodic/weekly/330.catman /etc/periodic/weekly/340.noid /etc/periodic/weekly/400.status-pkg /etc/periodic/weekly/999.local /etc/pf.os /etc/phones /etc/portsnap.conf /etc/ppp/ppp.conf /etc/printcap /etc/protocols /etc/rc /etc/rc.bsdextended /etc/rc.d/DAEMON /etc/rc.d/FILESYSTEMS /etc/rc.d/LOGIN /etc/rc.d/NETWORKING /etc/rc.d/SERVERS /etc/rc.d/abi /etc/rc.d/accounting /etc/rc.d/addswap /etc/rc.d/adjkerntz /etc/rc.d/amd /etc/rc.d/apm /etc/rc.d/apmd /etc/rc.d/archdep /etc/rc.d/atm1 /etc/rc.d/atm2 /etc/rc.d/atm3 /etc/rc.d/auditd /etc/rc.d/bgfsck /etc/rc.d/bluetooth /etc/rc.d/bootparams /etc/rc.d/bridge /etc/rc.d/bsnmpd /etc/rc.d/bthidd /etc/rc.d/ccd /etc/rc.d/cleanvar /etc/rc.d/cleartmp /etc/rc.d/cron /etc/rc.d/ddb /etc/rc.d/defaultroute /etc/rc.d/devd /etc/rc.d/devfs /etc/rc.d/dhclient /etc/rc.d/dmesg /etc/rc.d/dumpon /etc/rc.d/encswap /etc/rc.d/faith /etc/rc.d/fsck /etc/rc.d/ftp-proxy /etc/rc.d/ftpd /etc/rc.d/gbde /etc/rc.d/geli /etc/rc.d/geli2 /etc/rc.d/gptboot /etc/rc.d/gssd /etc/rc.d/hastd /etc/rc.d/hcsecd /etc/rc.d/hostapd /etc/rc.d/hostid /etc/rc.d/hostid_save /etc/rc.d/hostname /etc/rc.d/inetd /etc/rc.d/initrandom /etc/rc.d/ip6addrctl /etc/rc.d/ipfilter /etc/rc.d/ipfs /etc/rc.d/ipfw /etc/rc.d/ipmon /etc/rc.d/ipnat /etc/rc.d/ipsec /etc/rc.d/ipxrouted /etc/rc.d/jail /etc/rc.d/kadmind /etc/rc.d/kerberos /etc/rc.d/keyserv /etc/rc.d/kld /etc/rc.d/kldxref /etc/rc.d/kpasswdd /etc/rc.d/ldconfig /etc/rc.d/local /etc/rc.d/localpkg /etc/rc.d/lockd /etc/rc.d/lpd /etc/rc.d/mdconfig /etc/rc.d/mdconfig2 /etc/rc.d/mixer /etc/rc.d/motd /etc/rc.d/mountcritlocal /etc/rc.d/mountcritremote /etc/rc.d/mountd /etc/rc.d/mountlate /etc/rc.d/moused /etc/rc.d/mroute6d /etc/rc.d/mrouted /etc/rc.d/msgs /etc/rc.d/named /etc/rc.d/natd /etc/rc.d/netif /etc/rc.d/netoptions /etc/rc.d/netwait /etc/rc.d/newsyslog /etc/rc.d/nfscbd /etc/rc.d/nfsclient /etc/rc.d/nfsd /etc/rc.d/nfsuserd /etc/rc.d/nisdomain /etc/rc.d/nscd /etc/rc.d/nsswitch /etc/rc.d/ntpd /etc/rc.d/ntpdate /etc/rc.d/othermta /etc/rc.d/pf /etc/rc.d/pflog /etc/rc.d/pfsync /etc/rc.d/power_profile /etc/rc.d/powerd /etc/rc.d/ppp /etc/rc.d/pppoed /etc/rc.d/pwcheck /etc/rc.d/quota /etc/rc.d/random /etc/rc.d/rarpd /etc/rc.d/rctl /etc/rc.d/resolv /etc/rc.d/rfcomm_pppd_server /etc/rc.d/root /etc/rc.d/route6d /etc/rc.d/routed /etc/rc.d/routing /etc/rc.d/rpcbind /etc/rc.d/rtadvd /etc/rc.d/rtsold /etc/rc.d/rwho /etc/rc.d/savecore /etc/rc.d/sdpd /etc/rc.d/securelevel /etc/rc.d/sendmail /etc/rc.d/serial /etc/rc.d/sppp /etc/rc.d/sshd /etc/rc.d/statd /etc/rc.d/static_arp /etc/rc.d/static_ndp /etc/rc.d/stf /etc/rc.d/swap1 /etc/rc.d/syscons /etc/rc.d/sysctl /etc/rc.d/syslogd /etc/rc.d/timed /etc/rc.d/tmp /etc/rc.d/ubthidhci /etc/rc.d/ugidfw /etc/rc.d/var /etc/rc.d/virecover /etc/rc.d/watchdogd /etc/rc.d/wpa_supplicant /etc/rc.d/ypbind /etc/rc.d/yppasswdd /etc/rc.d/ypserv /etc/rc.d/ypset /etc/rc.d/ypupdated /etc/rc.d/ypxfrd /etc/rc.d/zfs /etc/rc.d/zvol /etc/rc.firewall /etc/rc.initdiskless /etc/rc.resume /etc/rc.sendmail /etc/rc.shutdown /etc/rc.subr /etc/rc.suspend /etc/regdomain.xml /etc/remote /etc/rpc /etc/security/audit_class /etc/security/audit_control /etc/security/audit_event /etc/security/audit_user /etc/security/audit_warn /etc/services /etc/shells /etc/snmpd.config /etc/ssh/moduli /etc/ssh/ssh_config /etc/ssh/sshd_config /etc/ssl/openssl.cnf /etc/sysctl.conf /etc/syslog.conf /etc/termcap.small /etc/ttys /root/.k5login /root/.login /var/named/etc/namedb/master/empty.db /var/named/etc/namedb/master/localhost-forward.db /var/named/etc/namedb/master/localhost-reverse.db /var/named/etc/namedb/named.conf /var/named/etc/namedb/named.root *** You installed a new aliases file, so make sure that you run '/usr/bin/newaliases' to rebuild your aliases database Would you like to run it now? y or n [n] y Running /usr/bin/newaliases /etc/mail/aliases: 29 aliases, longest 10 bytes, 297 bytes total *** You installed a login.conf file, so make sure that you run '/usr/bin/cap_mkdb /etc/login.conf' to rebuild your login.conf database Would you like to run it now? y or n [n] y Running /usr/bin/cap_mkdb /etc/login.conf *** You installed a services file, so make sure that you run '/usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services' to rebuild your services database Would you like to run it now? y or n [n] y Running /usr/sbin/services_mkdb -q -o /var/db/services.db /etc/services *** Reinstalling Europe/Oslo as /etc/localtime
done - prepare for reboot:
root@kg-t4# gpart set -a bootonce -i 4 ada0 bootonce set on ada0p4
now we are ready.
2015-01-02: ada0p4 - update source. First verify that /usr/src is empty:
root@kg-t4# ls -la /usr/src total 8 drwxr-xr-x 2 root wheel 512 Dec 4 2012 . drwxr-xr-x 16 root wheel 512 Jan 2 19:19 ..
checkout stable branch
root@kg-t4# svn checkout svn://svn.FreeBSD.org/base/stable/9 /usr/src [....] A /usr/src/lib/libbegemot/Makefile A /usr/src/ObsoleteFiles.inc U /usr/src Checked out revision 276559.
verify:
root@kg-t4# egrep "^BRANCH|^REVISION" /usr/src/sys/conf/newvers.sh REVISION="9.3" BRANCH="STABLE"
good.
2015-01-02: ada0p4 - get a ports tree on the machine via portsnap fetch; portsnap extract. Next, install subversion:
root@kg-t4# cd /usr/ports/devel/subversion-static root@kg-t4# make install clean [....] ===> Registering installation for subversion-static-1.8.11 Installing subversion-static-1.8.11... Bear in mind that you will not be notified of any weaknesses or vulnerabilities discovered in ports used to build this, though they may affect the static Subversion binary. This package will be rebuilt as the build dependencies are updated, but it must be kept up to date if security is a concern. ===> Cleaning for pkgconf-0.9.7 ===> Cleaning for apr-1.5.1.1.5.4 ===> Cleaning for sqlite3-3.8.7.4 ===> Cleaning for expat-2.1.0_2 ===> Cleaning for serf-1.3.8 ===> Cleaning for gdbm-1.11_2 ===> Cleaning for libiconv-1.14_6 ===> Cleaning for db5-5.3.28_2 ===> Cleaning for scons-2.3.0_1 ===> Cleaning for gettext-tools-0.19.3 ===> Cleaning for gettext-runtime-0.19.3 ===> Cleaning for indexinfo-0.2.2 ===> Cleaning for gmake-4.1_1 ===> Cleaning for py27-setuptools27-5.5.1 ===> Cleaning for python27-2.7.9 ===> Cleaning for python2-2_3 ===> Cleaning for m4-1.4.17_1,1 ===> Cleaning for libffi-3.0.13_3 ===> Cleaning for subversion-static-1.8.11
done.
2015-01-02: ada0p2 - prepare to boot from ada0p4. Check:
root@kg-t4# gpart show -p ada0 => 34 234441581 ada0 GPT (111G) 34 128 ada0p1 freebsd-boot (64k) 162 104857472 ada0p2 freebsd-ufs [bootme] (50G) 104857634 20971520 ada0p3 freebsd-swap (10G) 125829154 106954752 ada0p4 freebsd-ufs [bootme] (51G) 232783906 1657709 - free - (809M)
change:
root@kg-t4# gpart set -a bootonce -i 4 ada0 bootonce set on ada0p4
done.
2014-10-04: ada0p2 - ports - updated ports tree via portsnap fetch; portsnap update. After that I converted to pkg by following instructions:
# cd ports-mgmt/pkg && make UPGRADEPKG=1 install clean # pkg2ng
which worked. After that I use portupgrade normally. I removed some unused ports too. These ports are installed now:
root@kg-t4# pv [Reading data from pkg(8) ... - 67 packages found - done] apr-1.5.1.1.5.4 = up-to-date with port autoconf-2.69 = up-to-date with port autoconf-wrapper-20131203 = up-to-date with port bash-4.3.29 = up-to-date with port bison-2.7.1,1 = up-to-date with port boehm-gc-7.4.2_1 = up-to-date with port bsdstats-5.5_5 = up-to-date with port ca_root_nss-3.17.1 = up-to-date with port chkrootkit-0.49 ? error - origin not found darkstat-3.0.718 = up-to-date with port db5-5.3.28_2 = up-to-date with port ddclient-3.8.2_1 = up-to-date with port dialog4ports-0.1.5_2 = up-to-date with port dmidecode-2.12 = up-to-date with port expat-2.1.0_1 = up-to-date with port gdbm-1.11_2 = up-to-date with port gettext-0.18.3.1_1 = up-to-date with port gmake-3.82_2 = up-to-date with port gmake-lite-3.82 = up-to-date with port help2man-1.43.3_1 = up-to-date with port indexinfo-0.2 = up-to-date with port libatomic_ops-7.4.0_1 = up-to-date with port libexecinfo-1.1_3 = up-to-date with port libffi-3.0.13_2 = up-to-date with port libiconv-1.14_4 = up-to-date with port libidn-1.29 = up-to-date with port libyaml-0.1.6_1 = up-to-date with port logcheck-1.3.16 = up-to-date with port lsof-4.88.g,8 = up-to-date with port m4-1.4.17_1,1 = up-to-date with port mime-construct-1.11 = up-to-date with port nginx-1.6.2,2 = up-to-date with port ossec-hids-local-2.8.1 = up-to-date with port p5-Digest-SHA1-2.13 = up-to-date with port p5-IO-Socket-IP-0.32 = up-to-date with port p5-IO-Socket-SSL-1.998 = up-to-date with port p5-IPC-Signal-1.00 = up-to-date with port p5-Locale-gettext-1.05_3 = up-to-date with port p5-MIME-Base64-3.14 = up-to-date with port p5-MIME-Types-2.08 = up-to-date with port p5-Mozilla-CA-20130114 = up-to-date with port p5-Net-SSLeay-1.66 = up-to-date with port p5-Proc-WaitStat-1.00 = up-to-date with port p5-Socket-2.015 = up-to-date with port pcre-8.35_1 = up-to-date with port perl5.14-5.14.4_7 = up-to-date with port pkg-1.3.8_2 = up-to-date with port pkgconf-0.9.7 = up-to-date with port portupgrade-2.4.12_2,2 = up-to-date with port postfix-2.11.1_4,1 = up-to-date with port procmail-3.22_8 = up-to-date with port py27-setuptools27-5.5.1 = up-to-date with port python2-2_3 = up-to-date with port python27-2.7.8_5 = up-to-date with port readline-6.3.8 = up-to-date with port rfc-3.2.3_2 = up-to-date with port rkhunter-1.4.2_1 = up-to-date with port ruby-1.9.3.547_3,1 = up-to-date with port ruby19-bdb-0.6.6_4 = up-to-date with port ruby19-date2-4.0.19 = up-to-date with port scons-2.3.0_1 = up-to-date with port serf-1.3.7_1 = up-to-date with port smartmontools-6.3 = up-to-date with port sqlite3-3.8.6 = up-to-date with port subversion-1.8.10_3 = up-to-date with port w3m-0.5.3_4 = up-to-date with port wget-1.15_2 = up-to-date with port
that is all.
2014-09-30: ada0p2 - ports - I installed the dmidecode port, which allows me to see what BIOS version the machine has. Bios version 1.04, Release Date: 07/25/2012.
2014-09-30: ada0p2 - finally, latest FreeBSD 8.4-stable installed. dmesg output: [normal], [verbose].
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 8.4-STABLE FreeBSD 8.4-STABLE #1 r272311: Tue Sep 30 19:38:02 CEST 2014 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
that's all.
2014-09-30: ada0p2 - make world:
root@kg-t4# cd /usr/src root@kg-t4# make -j4 buildworld [...] -------------------------------------------------------------- >>> World build completed on Tue Sep 30 19:26:53 CEST 2014 --------------------------------------------------------------
Next, the kernel:
root@kg-t4# make kernel [...] ===> zlib (install) install -o root -g wheel -m 555 zlib.ko /boot/kernel install -o root -g wheel -m 555 zlib.ko.symbols /boot/kernel kldxref /boot/kernel
I skip the shutdown and run all steps in multiuser. Next up, mergemaster -p:
root@kg-t4# mergemaster -p [...] *** You installed a new master.passwd file, so make sure that you run '/usr/sbin/pwd_mkdb -p /etc/master.passwd' to rebuild your password files Would you like to run it now? y or n [n] y Running /usr/sbin/pwd_mkdb -p /etc/master.passwd
Then it is installworld time
root@kg-t4# make installworld [...] install -s -o root -g wheel -m 555 ldd32 /usr/bin
Next step is housecleaning
root@kg-t4# make delete-old >>> Removing old files (only deletes safe to delete libs) >>> Old files removed >>> Removing old directories >>> Old directories removed To remove old libraries run 'make delete-old-libs'. root@kg-t4# make delete-old-libs >>> Removing old libraries Please be sure no application still uses those libraries, else you can not start such an application. Consult UPDATING for more information regarding how to cope with the removal/revision bump of a specific library. >>> Old libraries removed
Finally, mergemaster:
root@kg-t4# mergemaster -iUP [...] *** You chose the automatic install option for files that did not exist on your system. The following were installed for you: /etc/pkg/FreeBSD.conf *** You chose the automatic upgrade option for files that you did not alter on your system. The following were upgraded for you: /COPYRIGHT /etc/ftpusers /etc/mail/freebsd.cf /etc/mail/freebsd.mc /etc/mail/freebsd.submit.cf /etc/mail/freebsd.submit.mc /etc/mail/helpfile /etc/mail/sendmail.cf /etc/mail/submit.cf /etc/mtree/BSD.root.dist /etc/mtree/BSD.usr.dist /etc/mtree/BSD.var.dist /etc/newsyslog.conf /etc/periodic/security/800.loginfail /etc/rc.d/jail /var/named/etc/namedb/named.root *** Reinstalling Europe/Oslo as /etc/localtime
Ok, ready for a reboot now. Specify verbose boot:
root@kg-t4# nextboot -o "-v" -k kernel
then shutdown and reboot.
2014-09-30: ada0p2 - update source via subversion:
root@kg-t4# cd /usr/src root@kg-t4# svn up Updating '.': [...] U secure/lib/libssl/man/SSL_CTX_set_cert_store.3 U secure/lib/libssl/man/SSL_CTX_set_session_cache_mode.3 U . Updated to revision 272311.
check version
root@kg-t4# egrep "^BRANCH|^REVISION" /usr/src/sys/conf/newvers.sh REVISION="8.4" BRANCH="STABLE"
looks ok.
root@kg-t4# ls -l UPD* -rw-r--r-- 1 root wheel 76409 Sep 30 18:49 UPDATING
after checking updating, I'm ready.
2014-09-30: ada0p2 - I booted the machine again, to update it. It still runs FreeBSD 8.4-stable from 2013:
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 8.4-STABLE FreeBSD 8.4-STABLE #0 r255645: Tue Sep 17 21:03:55 UTC 2013 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
time to update. More info:
root@kg-t4# date;temp;swapinfo -h;echo " ";df -h;echo " ";uptime Tue Sep 30 18:47:59 CEST 2014 hw.acpi.thermal.tz0.temperature: 27.8C hw.acpi.thermal.tz1.temperature: 29.8C Device 1K-blocks Used Avail Capacity /dev/ada0p3 10485760 0B 10G 0% Filesystem Size Used Avail Capacity Mounted on /dev/ada0p2 48G 5.4G 39G 12% / devfs 1.0k 1.0k 0B 100% /dev 6:47PM up 24 mins, 1 user, load averages: 0.00, 0.00, 0.00
that's all.
2013-10-24: currently, these ports are installed:
root@kg-t4# pv [Updating the pkgdb <format:bdb_btree> in /var/db/pkg ... - 56 packages found (-0 +1) . done] apr-1.4.8.1.5.2 = up-to-date with port autoconf-2.69 = up-to-date with port autoconf-wrapper-20130530 = up-to-date with port bash-4.2.45 = up-to-date with port bison-2.7.1,1 = up-to-date with port boehm-gc-7.1 = up-to-date with port bsdstats-5.5_3 = up-to-date with port chkrootkit-0.49 = up-to-date with port darkstat-3.0.717 = up-to-date with port db42-4.2.52_5 = up-to-date with port ddclient-3.8.1_1 = up-to-date with port dialog4ports-0.1.5_1 = up-to-date with port expat-2.1.0 = up-to-date with port gdbm-1.10 = up-to-date with port gettext-0.18.3 = up-to-date with port gmake-3.82_1 = up-to-date with port help2man-1.43.3 = up-to-date with port libexecinfo-1.1_3 = up-to-date with port libffi-3.0.13 = up-to-date with port libiconv-1.14_1 = up-to-date with port libidn-1.28 = up-to-date with port libtool-2.4.2_1 = up-to-date with port libyaml-0.1.4_2 = up-to-date with port logcheck-1.3.15_2 = up-to-date with port lsof-4.88.d,8 = up-to-date with port m4-1.4.16_1,1 = up-to-date with port mime-construct-1.11 = up-to-date with port nginx-1.4.2,1 = up-to-date with port ossec-hids-local-2.7 = up-to-date with port p5-Digest-SHA1-2.13 = up-to-date with port p5-IO-Socket-IP-0.23 = up-to-date with port p5-IO-Socket-SSL-1.953 = up-to-date with port p5-IPC-Signal-1.00 = up-to-date with port p5-Locale-gettext-1.05_3 = up-to-date with port p5-MIME-Base64-3.14 = up-to-date with port p5-MIME-Types-2.04 = up-to-date with port p5-Net-SSLeay-1.55 = up-to-date with port p5-Proc-WaitStat-1.00 = up-to-date with port p5-Socket-2.012 = up-to-date with port pcre-8.33 = up-to-date with port perl-threaded-5.14.4 = up-to-date with port pkgconf-0.9.3 = up-to-date with port portupgrade-2.4.11,2 = up-to-date with port postfix-2.10.1,1 = up-to-date with port procmail-3.22_7 = up-to-date with port rfc-3.2.3_2 = up-to-date with port rkhunter-1.4.0 = up-to-date with port ruby-1.9.3.448,1 = up-to-date with port ruby19-bdb-0.6.6_1 = up-to-date with port ruby19-date2-4.0.19 = up-to-date with port serf-1.2.1_1 = up-to-date with port smartmontools-6.2 = up-to-date with port sqlite3-3.8.0.2 = up-to-date with port subversion-1.8.3 = up-to-date with port w3m-0.5.3_2 = up-to-date with port wget-1.14_2 = up-to-date with port
That's all.
2013-10-06: ada0p2 - it seems I forgot to set correct timezone on this machine. Fixed now, by running tzsetup.
2013-09-17: ada0p2 - built FreeBSD 8.4-stable via make world. dmesg output: [normal], [verbose].
tingo@kg-t4$ uname -a FreeBSD kg-t4.kg4.no 8.4-STABLE FreeBSD 8.4-STABLE #0 r255645: Tue Sep 17 21:03:55 UTC 2013 root@kg-t4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
Using nextboot allows you to specify boot flags:
root@kg-t4# nextboot -o "-v" -k kernel
It creates a file in /boot:
root@kg-t4# more /boot/nextboot.conf nextboot_enable="YES" kernel="kernel" kernel_options="-v"
Will this result in a verbose boot? Yes it does. Nice!
2013-09-17: ada0p2 - updating source - I used subversion to update the source:
root@kg-t4# svn checkout svn://svn.FreeBSD.org/base/stable/8 /usr/src [...] A /usr/src/sys/i386/conf/XEN A /usr/src/sys/i386/conf/GENERIC A /usr/src/sys/i386/conf/Makefile U /usr/src Checked out revision 255645. Tree conflict on '/usr/src/COPYRIGHT' > local file unversioned, incoming file add upon update Select: (r) mark resolved, (p) postpone, (q) quit resolution, (h) help: h (r) - accept current working copy state (p) - resolve the conflict later [postpone] (q) - postpone all remaining conflicts (h) - show this help (also '?') Words in square brackets are the corresponding --accept option arguments. Select: (r) mark resolved, (p) postpone, (q) quit resolution, (h) help: q
What version of the source do we have now?
root@kg-t4# egrep "^BRANCH|^REVISION" /usr/src/sys/conf/newvers.sh REVISION="8.4" BRANCH="STABLE"
Good.
2013-09-17: ada0p2 - ports - I used portsnap fetch and portsnap extract to get a ports tree onto the machine. Created /etc/make.conf, installed subversion.
2013-07-09: ada0p2 - finally, FreeBSD 8.4-release is installed. dmesg output: [normal], [verbose].
tingo@kg-t4$ uname -a FreeBSD kg-t4.kg4.no 8.4-RELEASE FreeBSD 8.4-RELEASE #0 r251259: Sun Jun 2 21:26:57 UTC 2013 root@bake.isc.freebsd.org:/usr/obj/usr/src/sys/GENERIC amd64
That's it.
2013-07-09: ada0p2 - manual install of FreeBSD 8.4-release. I booted from the memstick image (BBS popup is F7 on this bios), selected the Fixit shell, from usb. The drive is detected as ad4, not as ada0. Fixed by rebooting, and doing
load ahci boot
from the boot loader prompt. Back to the Fixit shell from usb again.
mount and set destination
Fixit# mount /dev/ada0p2 /mnt Fixit# export DESTDIR=/mnt
go to the top directory
Fixit# cd /dist/8.4-RELEASE
install base
Fixit# cd base; ./install.sh; cd .. You are about to extract the base distribution into /mnt - are you SURE you want to do this over your installed system (y/n)?
answer yes.
repeat for doc, games, lib32, manpages (skipped catpages, dict, info, ports).
Next, do kernels.
Fixit# cd kernels Fixit# ./install.sh GENERIC
fix the kernel
Fixit# cd /mnt/boot Fixit# mv GENERIC kernel
Finally, do src
Fixit# cd /dist/8.4-RELEASE Fixit# cd src Fixit# ./install.sh all Extracting sources into /mnt/usr/src... Extracting source component: base Extracting source component: bin Extracting source component: cddl Extracting source component: contrib Extracting source component: crypto Extracting source component: etc Extracting source component: games Extracting source component: gnu Extracting source component: include Extracting source component: krb5 Extracting source component: lib Extracting source component: libexec Extracting source component: release Extracting source component: rescue Extracting source component: sbin Extracting source component: secure Extracting source component: share Extracting source component: sys Extracting source component: tools Extracting source component: ubin Extracting source component: usbin Done extracting sources.
Ok, only config remains. created /mnt/boot/loader.conf and added ahci_load="YES" to it. Copied /etc/dhclient.conf and /etc/rc.conf from ada0p4. I also copied /etc/fstab, but changed the root line to mount /dev/ada0p2 instead of /dev/ada0p4. Finally, set ada0p2 bootable:
Fixit# gpart set -a bootme -i 2 ada0 bootme set on ada0p2
That should be it.
2013-07-09: I'm using my workstation to write FreeBSD 8.4-release to a usb stick:
tingo@kg-v2$ pwd /usr/home/tingo/dl/bsd/fbsd/8.4 tingo@kg-v2$ su Password: root@kg-v2# l ./ CHECKSUM.SHA256-amd64 ../ FreeBSD-8.4-RELEASE-amd64-memstick.img root@kg-v2# dd if=./FreeBSD-8.4-RELEASE-amd64-memstick.img of=/dev/da0 bs=10240 conv=sync 114245+0 records in 114245+0 records out 1169868800 bytes transferred in 452.239051 secs (2586837 bytes/sec)
about 4 min 30 secs.
2013-05-23: ada0p4 - various changes, I created a new /etc/motd, changed the root shell to /bin/sh, added stuff to /root/.profile, got a personalized /root/.shrc and added stuff to /etc/profile. I also changed the name of the 'tingo' group created when I created my users (it has id 1001, so it is ok with my other machines) into 'users':
root@kg-t4:/root # id tingo uid=1001(tingo) gid=1001(tingo) groups=1001(tingo),0(wheel),5(operator) root@kg-t4:/root # pw groupmod tingo -l users pw: group disappeared during update root@kg-t4:/root # id tingo uid=1001(tingo) gid=1001(users) groups=1001(users),0(wheel),5(operator)
Nice. Then I fixed up the .shrc file for my user.
2013-05-23: ada0p4 - I installed FreeBSD 9.1-release from a memstick image. dmesg output: [normal], [verbose]. The installer didn't like that I first selected
ada0p2 as root, but then changed my mind and selected ada0p4 (I just left ada0p2 empty for a future install), so on reboot the boot loader just stopped,
and gptboot complained that it coudn't find /boot/kernel/kernel on ada0p2 (or 0:ad(0p2) as it wrote it). Trying to manually
specify 0:ad(0p4)/boot/kernel/kernel didn't help. A quick boot from the memstick again, and using the LiveCD option I just did:
gpart set -a bootme -i 4 ada0 and rebooted again. All ok.
root@kg-t4:/root # uname -a FreeBSD kg-t4.kg4.no 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec 4 09:23:10 UTC 2012 root@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64
gpart output for ada0:
root@kg-t4:/root # gpart show -p ada0 => 34 234441581 ada0 GPT (111G) 34 128 ada0p1 freebsd-boot (64k) 162 104857472 ada0p2 freebsd-ufs (50G) 104857634 20971520 ada0p3 freebsd-swap (10G) 125829154 106954752 ada0p4 freebsd-ufs [bootme] (51G) 232783906 1657709 - free - (809M)
df -h output
root@kg-t4:/root # df -h Filesystem Size Used Avail Capacity Mounted on /dev/ada0p4 49G 703M 44G 2% / devfs 1.0k 1.0k 0B 100% /dev
pciconf output
root@kg-t4:/root # pciconf -lv hostb0@pci0:0:0:0: class=0x060000 card=0x40151297 chip=0x01008086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' device = '2nd Generation Core Processor Family DRAM Controller' class = bridge subclass = HOST-PCI pcib1@pci0:0:1:0: class=0x060400 card=0x40151297 chip=0x01018086 rev=0x09 hdr=0x01 vendor = 'Intel Corporation' device = 'Xeon E3-1200/2nd Generation Core Processor Family PCI Express Root Port' class = bridge subclass = PCI-PCI vgapci0@pci0:0:2:0: class=0x030000 card=0x40151297 chip=0x01028086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' device = '2nd Generation Core Processor Family Integrated Graphics Controller' class = display subclass = VGA none0@pci0:0:22:0: class=0x078000 card=0x40151297 chip=0x1c3a8086 rev=0x04 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family MEI Controller' class = simple comms ehci0@pci0:0:26:0: class=0x0c0320 card=0x40151297 chip=0x1c2d8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family USB Enhanced Host Controller' class = serial bus subclass = USB hdac0@pci0:0:27:0: class=0x040300 card=0x40151297 chip=0x1c208086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family High Definition Audio Controller' class = multimedia subclass = HDA pcib2@pci0:0:28:0: class=0x060400 card=0x40151297 chip=0x1c108086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 1' class = bridge subclass = PCI-PCI pcib3@pci0:0:28:1: class=0x060400 card=0x40151297 chip=0x1c128086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 2' class = bridge subclass = PCI-PCI pcib4@pci0:0:28:2: class=0x060400 card=0x40151297 chip=0x1c148086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 3' class = bridge subclass = PCI-PCI pcib5@pci0:0:28:3: class=0x060400 card=0x40151297 chip=0x1c168086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 4' class = bridge subclass = PCI-PCI ehci1@pci0:0:29:0: class=0x0c0320 card=0x40151297 chip=0x1c268086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family USB Enhanced Host Controller' class = serial bus subclass = USB isab0@pci0:0:31:0: class=0x060100 card=0x40151297 chip=0x1c5c8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = 'H61 Express Chipset Family LPC Controller' class = bridge subclass = PCI-ISA ahci0@pci0:0:31:2: class=0x010601 card=0x40151297 chip=0x1c028086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family 6 port SATA AHCI Controller' class = mass storage subclass = SATA none1@pci0:0:31:3: class=0x0c0500 card=0x40151297 chip=0x1c228086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family SMBus Controller' class = serial bus subclass = SMBus re0@pci0:3:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor Co., Ltd.' device = 'RTL8111/8168B PCI Express Gigabit Ethernet controller' class = network subclass = ethernet xhci0@pci0:4:0:0: class=0x0c0330 card=0x40111297 chip=0x10421b21 rev=0x00 hdr=0x00 vendor = 'ASMedia Technology Inc.' device = 'ASM1042 SuperSpeed USB Host Controller' class = serial bus subclass = USB re1@pci0:5:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor Co., Ltd.' device = 'RTL8111/8168B PCI Express Gigabit Ethernet controller' class = network subclass = ethernet
That's it.
2013-05-19: Using my workstation to write the FreeBSD 8.4-RC3 memstick image to a usb memory stick:
root@kg-v2# dd if=./FreeBSD-8.4-RC3-amd64-memstick.img of=/dev/da0 bs=64k 17851+1 records in 17851+1 records out 1169889280 bytes transferred in 256.180189 secs (4566666 bytes/sec)
it took about 4 minutes 16 secs.
2013-05-19: da0 - I booted FreeBSD 9.0-RC1. dmesg output: normal, verbose.
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 9.0-RC1 FreeBSD 9.0-RC1 #0: Thu Nov 24 22:48:50 CET 2011 root@kg-f3.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
pciconf output
root@kg-t4# pciconf -lv hostb0@pci0:0:0:0: class=0x060000 card=0x40151297 chip=0x01008086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' device = '2nd Generation Core Processor Family DRAM Controller' class = bridge subclass = HOST-PCI pcib1@pci0:0:1:0: class=0x060400 card=0x40151297 chip=0x01018086 rev=0x09 hdr=0x01 vendor = 'Intel Corporation' device = 'Xeon E3-1200/2nd Generation Core Processor Family PCI Express Root Port' class = bridge subclass = PCI-PCI vgapci0@pci0:0:2:0: class=0x030000 card=0x40151297 chip=0x01028086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' device = '2nd Generation Core Processor Family Integrated Graphics Controller' class = display subclass = VGA none0@pci0:0:22:0: class=0x078000 card=0x40151297 chip=0x1c3a8086 rev=0x04 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family MEI Controller' class = simple comms ehci0@pci0:0:26:0: class=0x0c0320 card=0x40151297 chip=0x1c2d8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family USB Enhanced Host Controller' class = serial bus subclass = USB hdac0@pci0:0:27:0: class=0x040300 card=0x40151297 chip=0x1c208086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family High Definition Audio Controller' class = multimedia subclass = HDA pcib2@pci0:0:28:0: class=0x060400 card=0x40151297 chip=0x1c108086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 1' class = bridge subclass = PCI-PCI pcib3@pci0:0:28:1: class=0x060400 card=0x40151297 chip=0x1c128086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 2' class = bridge subclass = PCI-PCI pcib4@pci0:0:28:2: class=0x060400 card=0x40151297 chip=0x1c148086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 3' class = bridge subclass = PCI-PCI pcib5@pci0:0:28:3: class=0x060400 card=0x40151297 chip=0x1c168086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family PCI Express Root Port 4' class = bridge subclass = PCI-PCI ehci1@pci0:0:29:0: class=0x0c0320 card=0x40151297 chip=0x1c268086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family USB Enhanced Host Controller' class = serial bus subclass = USB isab0@pci0:0:31:0: class=0x060100 card=0x40151297 chip=0x1c5c8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = 'H61 Express Chipset Family LPC Controller' class = bridge subclass = PCI-ISA ahci0@pci0:0:31:2: class=0x010601 card=0x40151297 chip=0x1c028086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family 6 port SATA AHCI Controller' class = mass storage subclass = SATA none1@pci0:0:31:3: class=0x0c0500 card=0x40151297 chip=0x1c228086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' device = '6 Series/C200 Series Chipset Family SMBus Controller' class = serial bus subclass = SMBus re0@pci0:3:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor Co., Ltd.' device = 'RTL8111/8168B PCI Express Gigabit Ethernet controller' class = network subclass = ethernet xhci0@pci0:4:0:0: class=0x0c0330 card=0x40111297 chip=0x10421b21 rev=0x00 hdr=0x00 vendor = 'ASMedia Technology Inc.' device = 'ASM1042 SuperSpeed USB Host Controller' class = serial bus subclass = USB re1@pci0:5:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor Co., Ltd.' device = 'RTL8111/8168B PCI Express Gigabit Ethernet controller' class = network subclass = ethernet
That is all.
2013-05-19: da0 - I moved the usb hard drive to a usb 2.0 port, and now things are recognized. FreeBSD 8.2-stable dmesg normal, verbose.
root@kg-t4# uname -a FreeBSD kg-t4.kg4.no 8.2-STABLE FreeBSD 8.2-STABLE #2: Sun Aug 5 22:24:57 CEST 2012 root@kg-f4.kg4.no:/usr/obj/usr/src/sys/GENERIC amd64
pciconf output:
root@kg-t4# pciconf -lv hostb0@pci0:0:0:0: class=0x060000 card=0x40151297 chip=0x01008086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' class = bridge subclass = HOST-PCI pcib1@pci0:0:1:0: class=0x060400 card=0x40151297 chip=0x01018086 rev=0x09 hdr=0x01 vendor = 'Intel Corporation' class = bridge subclass = PCI-PCI vgapci0@pci0:0:2:0: class=0x030000 card=0x40151297 chip=0x01028086 rev=0x09 hdr=0x00 vendor = 'Intel Corporation' class = display subclass = VGA none0@pci0:0:22:0: class=0x078000 card=0x40151297 chip=0x1c3a8086 rev=0x04 hdr=0x00 vendor = 'Intel Corporation' class = simple comms ehci0@pci0:0:26:0: class=0x0c0320 card=0x40151297 chip=0x1c2d8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = serial bus subclass = USB none1@pci0:0:27:0: class=0x040300 card=0x40151297 chip=0x1c208086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = multimedia subclass = HDA pcib2@pci0:0:28:0: class=0x060400 card=0x40151297 chip=0x1c108086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' class = bridge subclass = PCI-PCI pcib3@pci0:0:28:1: class=0x060400 card=0x40151297 chip=0x1c128086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' class = bridge subclass = PCI-PCI pcib4@pci0:0:28:2: class=0x060400 card=0x40151297 chip=0x1c148086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' class = bridge subclass = PCI-PCI pcib5@pci0:0:28:3: class=0x060400 card=0x40151297 chip=0x1c168086 rev=0xb5 hdr=0x01 vendor = 'Intel Corporation' class = bridge subclass = PCI-PCI ehci1@pci0:0:29:0: class=0x0c0320 card=0x40151297 chip=0x1c268086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = serial bus subclass = USB isab0@pci0:0:31:0: class=0x060100 card=0x40151297 chip=0x1c5c8086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = bridge subclass = PCI-ISA atapci0@pci0:0:31:2: class=0x010601 card=0x40151297 chip=0x1c028086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = mass storage subclass = SATA none2@pci0:0:31:3: class=0x0c0500 card=0x40151297 chip=0x1c228086 rev=0x05 hdr=0x00 vendor = 'Intel Corporation' class = serial bus subclass = SMBus re0@pci0:3:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor' device = 'Gigabit Ethernet NIC(NDIS 6.0) (RTL8168/8111/8111c)' class = network subclass = ethernet none3@pci0:4:0:0: class=0x0c0330 card=0x40111297 chip=0x10421b21 rev=0x00 hdr=0x00 class = serial bus subclass = USB re1@pci0:5:0:0: class=0x020000 card=0x40151297 chip=0x816810ec rev=0x06 hdr=0x00 vendor = 'Realtek Semiconductor' device = 'Gigabit Ethernet NIC(NDIS 6.0) (RTL8168/8111/8111c)' class = network subclass = ethernet
That's it.
2013-05-19: I booted FreeBSD 8.2-stable from an external hard drive (usb-to-sata adapter), but it didn't recognize the usb3 controller, and the kernel couldn't mount root. Too old. FreeBSD 9.0-RC1 (from another slice on the same hard drive) worked better.