05:20:29 anyone know why firefox when I save a page does not do it right? I open page and its kinda wakked 05:21:02 Sorry, cannot parse 05:23:12 save web page 05:23:15 open saved page 05:23:23 kinda jumbled 05:23:30 looks not at all as orig page 05:23:33 firefox 05:24:56 You may want to choose the option of "Web page, complete" from the "Save page as" dialog 05:28:49 eshell 05:28:51 sorry 05:43:05 yea its all garbled 10:40:10 i didn't even know there is such a thing https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272731 10:40:12 Title: 272731 – Question on support booting 64-bit FreeBSD on a 64-bit CPU from a 32-bit EFI environment 10:44:02 well, it looks like it's not going to happen? :) 13:54:56 I'm looking to setup a FreeBSD NAT box again. 13:56:07 For years I was a dyed in the wool natd user. . . infact I wrote this doc which got a lot of downloads: https://trioptimum.com/~crtxreavr/quickanddirtynatd.txt 13:56:31 Anyways, I'm looking to use in-kernel nat this time. 13:56:46 I just read over https://docs.freebsd.org/en/books/handbook/firewalls/#in-kernel-nat 13:56:47 Title: Chapter 33. Firewalls | FreeBSD Documentation Portal 13:58:59 The handbook page seems a little vague on some of the filenames. 14:11:53 anyone knows what this value does in nfsd ? nfs_server_maxio (int) value to set vfs.nfsd.srvmaxio to, which is the maximum I/O size for the NFS server. 14:12:08 what's a maximum IO size ? 14:13:21 nvm, found it in the docs 14:13:22 A sysctl called vfs.nfsd.srvmaxio has been added that can be used to increase the NFS server’s maximum I/O size from 128Kbytes to any power of 2 up to 1Mbyte. It can only be set when the nfsd threads are not running, and will normally require an increase in kern.ipc.maxsockbuf to at least the value recommended by the console log message generated when setting vfs.nfsd.srvmaxio is first 14:13:22 attempted. 9fb6e613373c 14:32:43 how do I create a user for a service (i.e. nginx) without a home folder and disabled login? 14:36:58 Set the home to /nonexistent and shell to /usr/sbin/nologin 14:40:56 https://gist.github.com/Freaky/2560975d3c94246b86f464b8be75c967 Zenbleed mitigation rc script 14:40:57 Title: FreeBSD Zenbleed mitigation rc script · GitHub 14:41:54 I'm testing NFS performance on my local lan and I'm getting 400MB/sec with nfsv3 tcp vs 15MB/sec with nfsv3 udp 14:42:11 both mount parameters are the same except for tcp/udp option 14:42:17 why the huge difference ? 14:44:55 UDP packets are not going where they oughtta 14:45:00 ? 14:47:50 sadly they are :) netstat -i shows no iface errors 14:48:06 just wanted to check whether conventional wisdom was that tcp or udp should be faster 14:48:10 why do you want udp nfs ? 14:48:11 I always thought it was udp 14:48:20 I want more speeeeeeeed :) 14:48:55 you should try nfs4 14:48:59 which is also tcp 14:49:34 yeah, but all benchmarks show nfs4 as slower than nfs3 14:49:46 How to kill a process despite in D state? 14:53:54 D as in 'in disk'? same as any other kill 16:08:26 rtprio, our modern perception of UDP is kinda backwards from its original intent. 16:08:44 UDP was intended for use on local, reliable networks. 16:10:15 But in the age of multimedia streaming, UDP has been utilized to reduce traffic (TCP checksumming) for high-volume traffic, likely crossing many routers. 16:12:00 So yes, NFS v2 & v3 default to UDP. They are also both SunRPC protocols, so they don't use a well-known port, they rely on sunrpc protocol to tell them which port NFS is running on. 16:12:47 NFSv4 has always been TCP-only, AFAIK. 16:43:30 Having disk issue; `smartctl -x /dev/ada0`  says ok  https://termbin.com/7r8w  but  `zpool clear ssd2` says `cannot clear errors for ssd2: I/O error`,  `zpool status` says  `state: SUSPENDED` and `ssd2 ONLINE 0 0 0` `ada0.eli ONLINE` 16:43:47 `errors: 229275 data errors, use '-v' for a list` 16:44:05 errors: List of errors unavailable: pool I/O is currently suspended 17:40:28 Beladona: i would guess, based on your formatitng, that you need to unlock the volume 17:47:37 Beladona, Can you pastebin the "zpool status ssd2" output? And also the .eli implies that it is a geli encrypted volume below the zpool is that right? I think (not sure) that rtprio's comment was about the geli status of that volume and I agree I would verify that the volume is unlocked/decrypted for zfs to access. 17:49:37 Maybe look at "geli list" and verify that ada0 and ada0.eli are properly consumers and providers and decrypted okay? 18:09:19 CrtxReavr: interesting; i should have known that, but i suppose ip/tcp/udp use has changed quite a bit now from the 70's and 80s 18:10:10 rwp rtprio true, its geli based but was unlocked and I was writing a postgres dump on it already when this happened 18:10:35 so sort out the geli and it should start working 18:11:05 unless you already have and now you are trying to get zfs to recognize it 18:11:57 rwp Geom name: ada0.eli  State: ACTIVE 18:15:04 rwp rtprio   geli attach /dev/ada0  Enter passphrase:  geli: Cannot access ada0 (error=1). geli: There was an error with at least one provider. 18:17:36 That does look to be the problem. At the geli layer. Once that is resolved then zfs should be able to use it. 18:22:15 rwp how to resolve it and whats wrong/ 18:24:52 no logs https://imgur.com/MvsEQdU.png 18:25:41 * CrtxReavr orders laptop parts on AliExpress. 18:25:51 "I too like to live dangerously!" 18:26:11 Unfortunately I am not using geli encryption for anything other then temporarily encrypted swap in the standard way from the installed and do not know how to debug geli encryption problems myself. But hopefully others might know. 18:27:00 However the error message you report is "cannot access ada0 (error=1)." so I would start there. 18:27:59 Among other things I know the OS removes devices from /dev/* after the alternative names are opened. To enforce singleton access. 18:30:56 I am still curious as to what "zpool status" shows. And if not that then possibly what "zpool import" shows. Possibly also "geom -t". Those all list the detail structure of the storage. 18:31:34 ok 18:31:59 CrtxReavr, I need to go laptop shopping. The battery in my current lightweight everyday carry machine has failed almost completely rather suddenly in the last month. And a replacement battery is currently unavailable. 18:35:09 CrtxReavr: dangerous aside, you must have some patience for that 18:35:24 i considered getting a lenovo x1 keyboard but not sure i can wait that long 18:35:26 I know of no other option. 18:36:07 Well, this is for an X1 Carbon. . . 18:36:46 They keyboard died, found a replacment, easily and quickly enough. . . 18:37:15 But then I broke the touchpad ribbon cable clip when I went to install it, 'cause I didn't properly understand how it opened. 18:37:28 And AliExpress is the only source I know for those clips. 18:37:38 Howdy. It seems on FreeBSD one does not set specific network protocol parameters with sysctlt, as you do on Linux? 18:37:58 Depends what it is. 18:38:17 sysctl was stolen from FreeBSD. . . just say'n. 18:38:25 rwp # zpool import     no pools available to import 18:38:25 # zpool import ssd2           cannot import 'ssd2': a pool with that name already exists 18:38:53 CrtxReavr: Do u trust on AliExpress?? Min. order 10000 :( 18:39:29 Beladona: zpool import -f 18:39:30 I needed ~$16 in parts. 18:39:53 tyler82, didnt' trust them enough to give them a CC# - paid with paypal. 18:39:55 tyler82 same 18:40:01 Beladona, No pools to import means it does not find any providers available. Which corresponds to the geli failing to decrypt. So far that is consistent. 18:40:16 ya 18:40:40 Beladona, you didn't need that migit amputee porn anyways. 18:41:02 CrtxReavr wihtout it theres no fun in life 18:41:07 CrtxReavr, I'm searching for the Linux equivalent of `sysctl -w net.sctp.encap_port=10`. It seems nothing net-related exists on FreeBSD's version 18:41:08 just kidding 18:42:19 anyone here with good knowledge of freebsd audio support? i mean internals. i may try mailing list but do not know which one exactly 18:42:46 audio, video, hardware drivers.. freebsd? different thigns 18:43:07 these are the things I messed most with 18:43:17 not easy 18:43:29 net.inet.sctp.udp_tunneling_port 18:44:11 I am trying to figure out whats the best solution for full system backup. On linux i use timeshift but on bsd....i donno. I was trying some programs like Amanda Borg Restic but all has got issue with some file ownership...even if i run as root. The only thing is really working for me rsync or rsnapshots. Combine with zfs snapshot and zfs send with tar bzip2. 18:45:05 i do tar+rsync 18:45:12 have been meaning to try bacula 18:45:16 bzip2 sounds painfully slow. 18:45:16 Beladona, Everything I know about geli I learned from https://docs.freebsd.org/en/books/handbook/disks/#disks-encrypting-geli 18:45:17 Title: Chapter 20. Storage | FreeBSD Documentation Portal 18:45:31 gzip should be faster and compress adequately. 18:45:31 rtprio: yeah. sounds a reliable solution for me 18:46:06 rtprio: i also tried bacula. not my fav. 18:46:55 CrtxReavr: but bzip2 has better compression rate. but slower and more source hungry. 18:47:12 rwp I still wonder. If the disk is gone, then reboot wont matter here 18:47:15 CrtxReavr, where did you find that? 18:47:30 tyler82, from my experience, the marginal extra compression isn't worth the time or CPU cycles. 18:47:56 Also, there's pigz. . . a mult-threaded, yet thread-safe implementation of gzip. 18:48:59 jemius, I don't know anything about encap_port=10 but on FreeBSD most networking is configured using ifconfig+route and the init scripts configure this using /etc/rc.conf variables. I would read the docs for ifconfig and see if that shows it. 18:49:10 jemius, sysctl net.inet.sctp | grep -e encap -e port 18:49:20 ok, i will ask. maybe anyone with good knowledge can look. the weird issue i have and which i consider to be really unusual ( and possibly bug ) is: i have intel onboard audio card ( dev.pcm4 it is ). i have set bitperfect mode and also set vchans to zero for it ( no multiple channels possible ) and it works just fine. now that i have xfce4 as desktop i also have pulseaudio running automatically and for unknown reason it can play 18:49:20 multiple sources ( say music and youtube video ) simultaneously. this is not how bitperfect mode supposed to be with mixer channels disabled. unless i really missing something 18:49:43 Isn't there somewhere a manpage for each sysctl node? 18:50:01 hmm. thx! 18:50:15 jemius, I'm not positive that's what you're looking for. 18:50:39 Beladona, You are not booting from ZFS? It's just data? Then a reboot _probably_ will not matter. But probably won't help either. (shrug) I don't know because we don't know why you are getting error messages trying to decrypt that geli provider. 18:51:17 ok 18:51:38 jemius, I would start here https://docs.freebsd.org/en/books/handbook/advanced-networking/ for a basis and then ifconfig specifically. What does encap_port=10 do? 18:51:40 Title: Chapter 34. Advanced Networking | FreeBSD Documentation Portal 18:52:49 CrtxReavr, why not? 18:53:34 rwp, There's this ancient protocol SCTP. Many routers block it. That's why you can tell the kernel to encapsulate it into UDP. You have to activate that and maybe specify a port number for it (10 in this example) 18:53:44 It's not ancient. . . 18:54:01 It was written as a drop-in replacment for TCP, in the mobile age. 18:54:29 Ancient is the wrong word. Let's say middle-box-plagued ;) 18:54:33 TCP tracks a "connection" with two ip:port sockets. 18:55:15 SCTP (Stream Control Transport Protocol) uses a higher level session identifier that allow for a session to be maintained with an IP address change at either end. 18:57:30 Thanks for the summary. I have not encountered that before. 18:57:54 I learned about it in an IPv6 class my $work paid for. 18:58:02 And yes, It does stupport LegacyIP. 18:58:07 (IPv4) 19:00:48 I know quite a bit about SCTP. And it might support v4, but no router will route your stuff. v6 works quite well in many networks, though, because there's no NAT 19:02:56 anyways, worked. I'm happy :) 19:05:43 jemius, "worked"? What did you do that worked? So that I might be educated? :-) 19:07:28 rwp, I just wiresharked my echo-server to check it's actually encapsulated 19:07:52 So it was already automatically encapsulated without your needing to configuration anything? 19:07:56 Next I'll check if it's routed through my country's LTE-Provider. They are blackholing pure SCTP due to unknown reasons 19:08:12 rwp, no, it gets encapsulated when you set the encap-port 19:08:17 via sysctl 19:08:51 Additionally, it's Linux interoperating with FreeBSD here. It's the same protocols with the same RFCs, but you never know... 19:09:01 What was the sysctl you used to set it? ELI5? No maybe 7! :-) 19:10:58 sysctl net.inet.sctp.udp=9899 <- see above 19:11:17 *net.inet.sctp.udp 19:12:01 Okay. (I don't see that string in my search for it in the scrollback.) Thanks!