SlideShare une entreprise Scribd logo

MOD server & FreeBSD (FreeBSD Day Taiwan)

Kevin Lo
Kevin Lo

MOD server & FreeBSD (FreeBSD Day Taiwan)

Ingénierie
1  sur  24
Télécharger pour lire hors ligne
MOD server and FreeBSD Kevin Lo msi funtoro The FreeBSD project
The beginning ...
Why choose FreeBSD It was chosen by accident Apart from that, there are a couple of good reasons
Why choose FreeBSD,cont. ● The community is always willing to help out ● The ports tree contains a large collection of 3rd party software ● Service initialization is simple rc.conf(5) ● Creating a customized memstick/iso is easy release(7) ● The BSD license, high performance network, stable, etc.
Architecture From http://www.funtoroeurope.com/files/clankove/struktura-bus.jpg
development(7) Based on -CURRENT; see Benno Rice's talk on keeping current: https://goo.gl/C5tWYa Building a memstick/iso on bhyve(4)
Making root file system read only ● /etc/fstab: # Device Mountpoint FStype Options Dump Pass# /dev/gpt/rootfs / ufs ro 1 1 ● /etc/rc.conf: hostid_enable="NO" sendmail_enable="NONE" syslogd_enable="NO" dumpdev="NO" root_rw_mount="NO" update_motd="NO"
Making root file system read only, cont. ● A Few things which should be taken care of 3rd party applications such as MySQL /etc/localtime, /etc/resolv.conf /var/db/pkg For example, you might add a line to /etc/rc.d/var that symlinks the directory to /var/db/pkg
Managing services boot order Services can be skipped during the boot time because impacted services haven't access to resources that haven't been booted yet Control services boot order with rcorder(8) # rcorder /etc/rc.d/* /usr/local/etc/rc.d/* ... /etc/rc.d/moused rcorder: requirement `usbd' in file `/usr/local/etc/rc.d/hald' has no providers. /usr/local/etc/rc.d/hald ...
Multicast TFTP server (atftpd) Clients need to download an image of the kernel through TFTP Unfortunately atftpd only built on Linux machine https://bugs.debian.org/cgi-bin/bugreport.cgi? bug=522192 Ported to FreeBSD (r262417)
Issues and solutions in our deployment File systems Networking
File systems FUSE MSDOSFS NTFS UFS2 EXT2FS TMPFS
FUSE FUSE is SLOW
MSDOSFS Lack of Unicode support Added Unicode support to MSDOSFS, SMBFS, and NTFS (r227650, r228023) Cannot export a msdosfs file system bigger than 128GB with NFS Doesn't change ctime and mtime
NTFS Lack of write support GSoC 2012 project "NTFS for FreeBSD" was based on Apple implementation Removed NTFS kernel support (r241636, r247665) Possible solution:Tuxera NTFS kernel driver
UFS2 In rw mode, softupdates + journaling = corruption ?! We disable journaling on all our UFS2 devices and in addition use this: background_fsck="NO" fsck_y_enable="YES" There's no open source utility that can read and write to UFS(2) partitions in Windows
EXT2FS Lack of journaling and EXT4 write supports Open source utilities (Ext2Fsd, Ext2IFS) are available for Windows that allow both reading and writing EXT2/3/4 partitions
TMPFS Could not be exported over NFS Quick fix for adding NFS export support to TMPFS (r230208); plus a bug fixed by jh: allow update mounts only for certain options(r234346)
Networking NICs rpcbind(8) Firewalls
NICs: em(4) Works good without known wired behavior and has produced good performance over a gigabit wire The datasheet is available The client was unable to mount NFS share over UDP Fixed by yongari (r214441) Incorrect Rx checksum handling when testing VLC's UDP-Lite (r264212) streaming mode Corrections to the RX checksum code (r249509)
NICs: re(4) Fails at high traffic; stress test with ftp/axel re0: watchdog timeout re0: link state changed to DOWN Use the vendor driver with minor modifications but it has one drawback: it doesn't use miibus(4) The datasheet is not available
rpcbind(8) rpcbind can be abused by remote attackers for rpc amplification attacks(DDoS) Prevent rpcbind from listening on all interfaces for UDP and TCP connections rpcbind_flags="-h 192.168.1.1" nfs_server_flags="-h 192.168.1.1" mountd_flags="-h 192.168.1.1"
Firewalls: ipfw(4) & pf(4) Kernel panic with pf kept happening locking issue; fixed as r226938 Switching to ipfw makes me/us happy
Support the FreeBSD project https://www.freebsdfoundation.org/donate/

Recommandé

olf10
olf10olf10
olf10Dru Lavigne
 
Introduction to Btrfs - FLOSS UK Spring Conference York 2015
Introduction to Btrfs - FLOSS UK Spring Conference York 2015Introduction to Btrfs - FLOSS UK Spring Conference York 2015
Introduction to Btrfs - FLOSS UK Spring Conference York 2015Richard Melville
 
Part 03 File System Implementation in Linux
Part 03 File System Implementation in LinuxPart 03 File System Implementation in Linux
Part 03 File System Implementation in LinuxTushar B Kute
 
Case study of BtrFS: A fault tolerant File system
Case study of BtrFS: A fault tolerant File systemCase study of BtrFS: A fault tolerant File system
Case study of BtrFS: A fault tolerant File systemKumar Amit Mehta
 
Lavigne bsdmag may13
Lavigne bsdmag may13Lavigne bsdmag may13
Lavigne bsdmag may13Dru Lavigne
 
Tlf2013
Tlf2013Tlf2013
Tlf2013Dru Lavigne
 
4. linux file systems
4. linux file systems4. linux file systems
4. linux file systemsMarian Marinov
 
Nelf2013
Nelf2013Nelf2013
Nelf2013Dru Lavigne
 

Recommandé

olf10
olf10olf10
olf10Dru Lavigne
 
Introduction to Btrfs - FLOSS UK Spring Conference York 2015
Introduction to Btrfs - FLOSS UK Spring Conference York 2015Introduction to Btrfs - FLOSS UK Spring Conference York 2015
Introduction to Btrfs - FLOSS UK Spring Conference York 2015Richard Melville
 
Part 03 File System Implementation in Linux
Part 03 File System Implementation in LinuxPart 03 File System Implementation in Linux
Part 03 File System Implementation in LinuxTushar B Kute
 
Case study of BtrFS: A fault tolerant File system
Case study of BtrFS: A fault tolerant File systemCase study of BtrFS: A fault tolerant File system
Case study of BtrFS: A fault tolerant File systemKumar Amit Mehta
 
Lavigne bsdmag may13
Lavigne bsdmag may13Lavigne bsdmag may13
Lavigne bsdmag may13Dru Lavigne
 
Tlf2013
Tlf2013Tlf2013
Tlf2013Dru Lavigne
 
4. linux file systems
4. linux file systems4. linux file systems
4. linux file systemsMarian Marinov
 
Nelf2013
Nelf2013Nelf2013
Nelf2013Dru Lavigne
 
Linux kernel
Linux kernelLinux kernel
Linux kernelSiji Sunny
 
Btrfs by Chris Mason
Btrfs by Chris MasonBtrfs by Chris Mason
Btrfs by Chris MasonTerry Wang
 
Linux kernel booting
Linux kernel bootingLinux kernel booting
Linux kernel bootingRamin Farajpour Cami
 
Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015Siji Sunny
 
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий МонаховПроблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий МонаховOpenVZ
 
Linux file system
Linux file systemLinux file system
Linux file systemMidaga Mengistu
 
Vfs
VfsVfs
VfsWaqas !!!!
 
Linux kernel system call
Linux kernel system callLinux kernel system call
Linux kernel system callRamin Farajpour Cami
 
11 linux filesystem copy
11 linux filesystem copy11 linux filesystem copy
11 linux filesystem copyShay Cohen
 
linux file system
linux file systemlinux file system
linux file systemAryaTadbir Network Designers
 
Linux Tor Browser kurulum
Linux Tor Browser kurulumLinux Tor Browser kurulum
Linux Tor Browser kurulumreso95
 
Users guide-to-winfe
Users guide-to-winfeUsers guide-to-winfe
Users guide-to-winfeGol D Roger
 
File Systems
File SystemsFile Systems
File SystemsAnil Kumar Pugalia
 
Ext filesystem4
Ext filesystem4Ext filesystem4
Ext filesystem4Neha Kulkarni
 
Os2
Os2Os2
Os2sbk50000
 
How to mount ntfs in linux
How to mount ntfs in linuxHow to mount ntfs in linux
How to mount ntfs in linuxsiraza5
 
Windows 真的不好用...
Windows 真的不好用...Windows 真的不好用...
Windows 真的不好用...Chih-Hsuan Kuo
 
005 skyeye
005 skyeye005 skyeye
005 skyeyeSherif Mousa
 
Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0bsd free
 
Pc bsd-intro
Pc bsd-introPc bsd-intro
Pc bsd-introShteryana Shopova
 
The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014Kevin Lo
 
Train 2012 MOD
Train 2012 MODTrain 2012 MOD
Train 2012 MODFUNTORO Europe
 

Contenu connexe

Tendances

Btrfs by Chris Mason
Btrfs by Chris MasonBtrfs by Chris Mason
Btrfs by Chris MasonTerry Wang
 
Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015Siji Sunny
 
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий МонаховПроблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий МонаховOpenVZ
 
11 linux filesystem copy
11 linux filesystem copy11 linux filesystem copy
11 linux filesystem copyShay Cohen
 
Linux Tor Browser kurulum
Linux Tor Browser kurulumLinux Tor Browser kurulum
Linux Tor Browser kurulumreso95
 
Users guide-to-winfe
Users guide-to-winfeUsers guide-to-winfe
Users guide-to-winfeGol D Roger
 
How to mount ntfs in linux
How to mount ntfs in linuxHow to mount ntfs in linux
How to mount ntfs in linuxsiraza5
 
Windows 真的不好用...
Windows 真的不好用...Windows 真的不好用...
Windows 真的不好用...Chih-Hsuan Kuo
 
Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0bsd free
 

Tendances (20)

Linux kernel
Linux kernelLinux kernel
Linux kernel
 
Btrfs by Chris Mason
Btrfs by Chris MasonBtrfs by Chris Mason
Btrfs by Chris Mason
 
Linux kernel booting
Linux kernel bootingLinux kernel booting
Linux kernel booting
 
Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015Debian on ARM - Gnunify2015
Debian on ARM - Gnunify2015
 
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий МонаховПроблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
Проблема фрагментации виртуальных дисков и способы её решения -- Дмитрий Монахов
 
Linux file system
Linux file systemLinux file system
Linux file system
 
Vfs
VfsVfs
Vfs
 
Linux kernel system call
Linux kernel system callLinux kernel system call
Linux kernel system call
 
11 linux filesystem copy
11 linux filesystem copy11 linux filesystem copy
11 linux filesystem copy
 
linux file system
linux file systemlinux file system
linux file system
 
Linux Tor Browser kurulum
Linux Tor Browser kurulumLinux Tor Browser kurulum
Linux Tor Browser kurulum
 
Users guide-to-winfe
Users guide-to-winfeUsers guide-to-winfe
Users guide-to-winfe
 
File Systems
File SystemsFile Systems
File Systems
 
Ext filesystem4
Ext filesystem4Ext filesystem4
Ext filesystem4
 
Os2
Os2Os2
Os2
 
How to mount ntfs in linux
How to mount ntfs in linuxHow to mount ntfs in linux
How to mount ntfs in linux
 
Windows 真的不好用...
Windows 真的不好用...Windows 真的不好用...
Windows 真的不好用...
 
005 skyeye
005 skyeye005 skyeye
005 skyeye
 
Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0Linux io-stack-diagram v1.0
Linux io-stack-diagram v1.0
 
Pc bsd-intro
Pc bsd-introPc bsd-intro
Pc bsd-intro
 

En vedette

The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014Kevin Lo
 
Raspberry Pi Introduction
Raspberry Pi IntroductionRaspberry Pi Introduction
Raspberry Pi IntroductionMichal Sedlak
 
Ahlan Ramadan presentation
Ahlan Ramadan presentationAhlan Ramadan presentation
Ahlan Ramadan presentationbintMahmood
 
Recommendatory report based on a study on emerging trends of csr in india
Recommendatory report based on a study on emerging trends of csr in indiaRecommendatory report based on a study on emerging trends of csr in india
Recommendatory report based on a study on emerging trends of csr in indiavarunkmr26
 
Sms obaveštenja - prezentacija
Sms obaveštenja - prezentacijaSms obaveštenja - prezentacija
Sms obaveštenja - prezentacijanemanjakovacevic
 
Web Apps for the Masses
Web Apps for the MassesWeb Apps for the Masses
Web Apps for the MassesDavid Tufts
 
Celebracion especial dd.hh y la paz.
Celebracion especial dd.hh y la paz.Celebracion especial dd.hh y la paz.
Celebracion especial dd.hh y la paz.zitamaria
 
WordCamp GR 2012 Web Apps for the Masses
WordCamp GR 2012 Web Apps for the MassesWordCamp GR 2012 Web Apps for the Masses
WordCamp GR 2012 Web Apps for the MassesDavid Tufts
 

En vedette (20)

The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014The TCP/IP stack in the FreeBSD kernel COSCUP 2014
The TCP/IP stack in the FreeBSD kernel COSCUP 2014
 
Train 2012 MOD
Train 2012 MODTrain 2012 MOD
Train 2012 MOD
 
Raspberry Pi Introduction
Raspberry Pi IntroductionRaspberry Pi Introduction
Raspberry Pi Introduction
 
Esalter web-cirilica
Esalter web-cirilicaEsalter web-cirilica
Esalter web-cirilica
 
Ahlan Ramadan presentation
Ahlan Ramadan presentationAhlan Ramadan presentation
Ahlan Ramadan presentation
 
Recommendatory report based on a study on emerging trends of csr in india
Recommendatory report based on a study on emerging trends of csr in indiaRecommendatory report based on a study on emerging trends of csr in india
Recommendatory report based on a study on emerging trends of csr in india
 
Sms obaveštenja - prezentacija
Sms obaveštenja - prezentacijaSms obaveštenja - prezentacija
Sms obaveštenja - prezentacija
 
Web Apps for the Masses
Web Apps for the MassesWeb Apps for the Masses
Web Apps for the Masses
 
My presentation
My presentationMy presentation
My presentation
 
Esalter web-latinica
Esalter web-latinicaEsalter web-latinica
Esalter web-latinica
 
Tec1
Tec1Tec1
Tec1
 
Esalter madjarski
Esalter madjarskiEsalter madjarski
Esalter madjarski
 
สายตาสั้น
สายตาสั้นสายตาสั้น
สายตาสั้น
 
Esalter web-madjarski
Esalter web-madjarskiEsalter web-madjarski
Esalter web-madjarski
 
สตอก
สตอกสตอก
สตอก
 
Esalter cirilica
Esalter cirilicaEsalter cirilica
Esalter cirilica
 
Celebracion especial dd.hh y la paz.
Celebracion especial dd.hh y la paz.Celebracion especial dd.hh y la paz.
Celebracion especial dd.hh y la paz.
 
สตอก
สตอกสตอก
สตอก
 
Esalter latinica
Esalter latinicaEsalter latinica
Esalter latinica
 
WordCamp GR 2012 Web Apps for the Masses
WordCamp GR 2012 Web Apps for the MassesWordCamp GR 2012 Web Apps for the Masses
WordCamp GR 2012 Web Apps for the Masses
 

Similaire à MOD server & FreeBSD (FreeBSD Day Taiwan)

WinFE: The (Almost) Perfect Triage Tool
WinFE: The (Almost) Perfect Triage ToolWinFE: The (Almost) Perfect Triage Tool
WinFE: The (Almost) Perfect Triage ToolBrent Muir
 
Linux Survival Kit for Proof of Concept & Proof of Technology
Linux Survival Kit for Proof of Concept & Proof of TechnologyLinux Survival Kit for Proof of Concept & Proof of Technology
Linux Survival Kit for Proof of Concept & Proof of TechnologyNugroho Gito
 
FreeBSD - LinuxExpo
FreeBSD - LinuxExpoFreeBSD - LinuxExpo
FreeBSD - LinuxExpowebuploader
 
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicUnix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicCircling Cycle
 
A million ways to provision embedded linux devices
A million ways to provision embedded linux devicesA million ways to provision embedded linux devices
A million ways to provision embedded linux devicesMender.io
 
101 2.1 design hard disk layout v2
101 2.1 design hard disk layout v2101 2.1 design hard disk layout v2
101 2.1 design hard disk layout v2Acácio Oliveira
 
Hacking with ARM Mobile devices on Linux
Hacking with ARM Mobile devices on LinuxHacking with ARM Mobile devices on Linux
Hacking with ARM Mobile devices on LinuxNetwalker lab kapper
 
2.1 design hard disk layout v2
2.1 design hard disk layout v22.1 design hard disk layout v2
2.1 design hard disk layout v2Acácio Oliveira
 
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Circling Cycle
 
Linux conf-admin
Linux conf-adminLinux conf-admin
Linux conf-adminbadamisri
 
Linux conf-admin
Linux conf-adminLinux conf-admin
Linux conf-adminbadamisri
 
Linux fundamentals Training
Linux fundamentals TrainingLinux fundamentals Training
Linux fundamentals TrainingLove Steven
 

Similaire à MOD server & FreeBSD (FreeBSD Day Taiwan) (20)

FreeBSD Portscamp, Kuala Lumpur 2016
FreeBSD Portscamp, Kuala Lumpur 2016FreeBSD Portscamp, Kuala Lumpur 2016
FreeBSD Portscamp, Kuala Lumpur 2016
 
Sweden11
Sweden11Sweden11
Sweden11
 
Unix 6 en
Unix 6 enUnix 6 en
Unix 6 en
 
WinFE: The (Almost) Perfect Triage Tool
WinFE: The (Almost) Perfect Triage ToolWinFE: The (Almost) Perfect Triage Tool
WinFE: The (Almost) Perfect Triage Tool
 
Linux Survival Kit for Proof of Concept & Proof of Technology
Linux Survival Kit for Proof of Concept & Proof of TechnologyLinux Survival Kit for Proof of Concept & Proof of Technology
Linux Survival Kit for Proof of Concept & Proof of Technology
 
FreeBSD - LinuxExpo
FreeBSD - LinuxExpoFreeBSD - LinuxExpo
FreeBSD - LinuxExpo
 
NFS.ppt
NFS.pptNFS.ppt
NFS.ppt
 
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicUnix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
 
A million ways to provision embedded linux devices
A million ways to provision embedded linux devicesA million ways to provision embedded linux devices
A million ways to provision embedded linux devices
 
101 2.1 design hard disk layout v2
101 2.1 design hard disk layout v2101 2.1 design hard disk layout v2
101 2.1 design hard disk layout v2
 
Hacking with ARM Mobile devices on Linux
Hacking with ARM Mobile devices on LinuxHacking with ARM Mobile devices on Linux
Hacking with ARM Mobile devices on Linux
 
2.1 design hard disk layout v2
2.1 design hard disk layout v22.1 design hard disk layout v2
2.1 design hard disk layout v2
 
Linux introduction (eng)
Linux introduction (eng)Linux introduction (eng)
Linux introduction (eng)
 
Basic Linux Internals
Basic Linux InternalsBasic Linux Internals
Basic Linux Internals
 
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
 
Linux conf-admin
Linux conf-adminLinux conf-admin
Linux conf-admin
 
Linux Conf Admin
Linux Conf AdminLinux Conf Admin
Linux Conf Admin
 
Linux conf-admin
Linux conf-adminLinux conf-admin
Linux conf-admin
 
Touch your NetBSD
Touch your NetBSDTouch your NetBSD
Touch your NetBSD
 
Linux fundamentals Training
Linux fundamentals TrainingLinux fundamentals Training
Linux fundamentals Training
 

Dernier

TEST CASE GENERATION GENERATION BLOCK BOX APPROACH
TEST CASE GENERATION GENERATION BLOCK BOX APPROACHTEST CASE GENERATION GENERATION BLOCK BOX APPROACH
TEST CASE GENERATION GENERATION BLOCK BOX APPROACHSneha Padhiar
 
Virtual memory management in Operating System
Virtual memory management in Operating SystemVirtual memory management in Operating System
Virtual memory management in Operating SystemRashmi Bhat
 
List of Accredited Concrete Batching Plant.pdf
List of Accredited Concrete Batching Plant.pdfList of Accredited Concrete Batching Plant.pdf
List of Accredited Concrete Batching Plant.pdfisabel213075
 
Robotics Group 10 (Control Schemes) cse.pdf
Robotics Group 10 (Control Schemes) cse.pdfRobotics Group 10 (Control Schemes) cse.pdf
Robotics Group 10 (Control Schemes) cse.pdfsahilsajad201
 
Prach: A Feature-Rich Platform Empowering the Autism Community
Prach: A Feature-Rich Platform Empowering the Autism CommunityPrach: A Feature-Rich Platform Empowering the Autism Community
Prach: A Feature-Rich Platform Empowering the Autism Communityprachaibot
 
Turn leadership mistakes into a better future.pptx
Turn leadership mistakes into a better future.pptxTurn leadership mistakes into a better future.pptx
Turn leadership mistakes into a better future.pptxStephen Sitton
 
Module-1-(Building Acoustics) Noise Control (Unit-3). pdf
Module-1-(Building Acoustics) Noise Control (Unit-3). pdfModule-1-(Building Acoustics) Noise Control (Unit-3). pdf
Module-1-(Building Acoustics) Noise Control (Unit-3). pdfManish Kumar
 
OOP concepts -in-Python programming language
OOP concepts -in-Python programming languageOOP concepts -in-Python programming language
OOP concepts -in-Python programming languageSmritiSharma901052
 
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdf
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdfPaper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdf
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdfNainaShrivastava14
 
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catchers
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor CatchersTechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catchers
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catcherssdickerson1
 
Levelling - Rise and fall - Height of instrument method
Levelling - Rise and fall - Height of instrument methodLevelling - Rise and fall - Height of instrument method
Levelling - Rise and fall - Height of instrument methodManicka Mamallan Andavar
 
Artificial Intelligence in Power System overview
Artificial Intelligence in Power System overviewArtificial Intelligence in Power System overview
Artificial Intelligence in Power System overviewsandhya757531
 
Immutable Image-Based Operating Systems - EW2024.pdf
Immutable Image-Based Operating Systems - EW2024.pdfImmutable Image-Based Operating Systems - EW2024.pdf
Immutable Image-Based Operating Systems - EW2024.pdfDrew Moseley
 
Engineering Drawing section of solid
Engineering Drawing section of solidEngineering Drawing section of solid
Engineering Drawing section of solidnamansinghjarodiya
 
multiple access in wireless communication
multiple access in wireless communicationmultiple access in wireless communication
multiple access in wireless communicationpanditadesh123
 
SOFTWARE ESTIMATION COCOMO AND FP CALCULATION
SOFTWARE ESTIMATION COCOMO AND FP CALCULATIONSOFTWARE ESTIMATION COCOMO AND FP CALCULATION
SOFTWARE ESTIMATION COCOMO AND FP CALCULATIONSneha Padhiar
 
Novel 3D-Printed Soft Linear and Bending Actuators
Novel 3D-Printed Soft Linear and Bending ActuatorsNovel 3D-Printed Soft Linear and Bending Actuators
Novel 3D-Printed Soft Linear and Bending ActuatorsResearcher Researcher
 
Mine Environment II Lab_MI10448MI__________.pptx
Mine Environment II Lab_MI10448MI__________.pptxMine Environment II Lab_MI10448MI__________.pptx
Mine Environment II Lab_MI10448MI__________.pptxRomil Mishra
 
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENT
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENTFUNCTIONAL AND NON FUNCTIONAL REQUIREMENT
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENTSneha Padhiar
 

Dernier (20)

TEST CASE GENERATION GENERATION BLOCK BOX APPROACH
TEST CASE GENERATION GENERATION BLOCK BOX APPROACHTEST CASE GENERATION GENERATION BLOCK BOX APPROACH
TEST CASE GENERATION GENERATION BLOCK BOX APPROACH
 
Virtual memory management in Operating System
Virtual memory management in Operating SystemVirtual memory management in Operating System
Virtual memory management in Operating System
 
List of Accredited Concrete Batching Plant.pdf
List of Accredited Concrete Batching Plant.pdfList of Accredited Concrete Batching Plant.pdf
List of Accredited Concrete Batching Plant.pdf
 
Robotics Group 10 (Control Schemes) cse.pdf
Robotics Group 10 (Control Schemes) cse.pdfRobotics Group 10 (Control Schemes) cse.pdf
Robotics Group 10 (Control Schemes) cse.pdf
 
Prach: A Feature-Rich Platform Empowering the Autism Community
Prach: A Feature-Rich Platform Empowering the Autism CommunityPrach: A Feature-Rich Platform Empowering the Autism Community
Prach: A Feature-Rich Platform Empowering the Autism Community
 
Turn leadership mistakes into a better future.pptx
Turn leadership mistakes into a better future.pptxTurn leadership mistakes into a better future.pptx
Turn leadership mistakes into a better future.pptx
 
Module-1-(Building Acoustics) Noise Control (Unit-3). pdf
Module-1-(Building Acoustics) Noise Control (Unit-3). pdfModule-1-(Building Acoustics) Noise Control (Unit-3). pdf
Module-1-(Building Acoustics) Noise Control (Unit-3). pdf
 
OOP concepts -in-Python programming language
OOP concepts -in-Python programming languageOOP concepts -in-Python programming language
OOP concepts -in-Python programming language
 
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdf
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdfPaper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdf
Paper Tube : Shigeru Ban projects and Case Study of Cardboard Cathedral .pdf
 
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catchers
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor CatchersTechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catchers
TechTAC® CFD Report Summary: A Comparison of Two Types of Tubing Anchor Catchers
 
Levelling - Rise and fall - Height of instrument method
Levelling - Rise and fall - Height of instrument methodLevelling - Rise and fall - Height of instrument method
Levelling - Rise and fall - Height of instrument method
 
Artificial Intelligence in Power System overview
Artificial Intelligence in Power System overviewArtificial Intelligence in Power System overview
Artificial Intelligence in Power System overview
 
Immutable Image-Based Operating Systems - EW2024.pdf
Immutable Image-Based Operating Systems - EW2024.pdfImmutable Image-Based Operating Systems - EW2024.pdf
Immutable Image-Based Operating Systems - EW2024.pdf
 
Designing pile caps according to ACI 318-19.pptx
Designing pile caps according to ACI 318-19.pptxDesigning pile caps according to ACI 318-19.pptx
Designing pile caps according to ACI 318-19.pptx
 
Engineering Drawing section of solid
Engineering Drawing section of solidEngineering Drawing section of solid
Engineering Drawing section of solid
 
multiple access in wireless communication
multiple access in wireless communicationmultiple access in wireless communication
multiple access in wireless communication
 
SOFTWARE ESTIMATION COCOMO AND FP CALCULATION
SOFTWARE ESTIMATION COCOMO AND FP CALCULATIONSOFTWARE ESTIMATION COCOMO AND FP CALCULATION
SOFTWARE ESTIMATION COCOMO AND FP CALCULATION
 
Novel 3D-Printed Soft Linear and Bending Actuators
Novel 3D-Printed Soft Linear and Bending ActuatorsNovel 3D-Printed Soft Linear and Bending Actuators
Novel 3D-Printed Soft Linear and Bending Actuators
 
Mine Environment II Lab_MI10448MI__________.pptx
Mine Environment II Lab_MI10448MI__________.pptxMine Environment II Lab_MI10448MI__________.pptx
Mine Environment II Lab_MI10448MI__________.pptx
 
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENT
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENTFUNCTIONAL AND NON FUNCTIONAL REQUIREMENT
FUNCTIONAL AND NON FUNCTIONAL REQUIREMENT
 

MOD server & FreeBSD (FreeBSD Day Taiwan)

  • 1. MOD server and FreeBSD Kevin Lo msi funtoro The FreeBSD project
  • 3. Why choose FreeBSD It was chosen by accident Apart from that, there are a couple of good reasons
  • 4. Why choose FreeBSD,cont. ● The community is always willing to help out ● The ports tree contains a large collection of 3rd party software ● Service initialization is simple rc.conf(5) ● Creating a customized memstick/iso is easy release(7) ● The BSD license, high performance network, stable, etc.
  • 6. development(7) Based on -CURRENT; see Benno Rice's talk on keeping current: https://goo.gl/C5tWYa Building a memstick/iso on bhyve(4)
  • 7. Making root file system read only ● /etc/fstab: # Device Mountpoint FStype Options Dump Pass# /dev/gpt/rootfs / ufs ro 1 1 ● /etc/rc.conf: hostid_enable="NO" sendmail_enable="NONE" syslogd_enable="NO" dumpdev="NO" root_rw_mount="NO" update_motd="NO"
  • 8. Making root file system read only, cont. ● A Few things which should be taken care of 3rd party applications such as MySQL /etc/localtime, /etc/resolv.conf /var/db/pkg For example, you might add a line to /etc/rc.d/var that symlinks the directory to /var/db/pkg
  • 9. Managing services boot order Services can be skipped during the boot time because impacted services haven't access to resources that haven't been booted yet Control services boot order with rcorder(8) # rcorder /etc/rc.d/* /usr/local/etc/rc.d/* ... /etc/rc.d/moused rcorder: requirement `usbd' in file `/usr/local/etc/rc.d/hald' has no providers. /usr/local/etc/rc.d/hald ...
  • 10. Multicast TFTP server (atftpd) Clients need to download an image of the kernel through TFTP Unfortunately atftpd only built on Linux machine https://bugs.debian.org/cgi-bin/bugreport.cgi? bug=522192 Ported to FreeBSD (r262417)
  • 11. Issues and solutions in our deployment File systems Networking
  • 14. MSDOSFS Lack of Unicode support Added Unicode support to MSDOSFS, SMBFS, and NTFS (r227650, r228023) Cannot export a msdosfs file system bigger than 128GB with NFS Doesn't change ctime and mtime
  • 15. NTFS Lack of write support GSoC 2012 project "NTFS for FreeBSD" was based on Apple implementation Removed NTFS kernel support (r241636, r247665) Possible solution:Tuxera NTFS kernel driver
  • 16. UFS2 In rw mode, softupdates + journaling = corruption ?! We disable journaling on all our UFS2 devices and in addition use this: background_fsck="NO" fsck_y_enable="YES" There's no open source utility that can read and write to UFS(2) partitions in Windows
  • 17. EXT2FS Lack of journaling and EXT4 write supports Open source utilities (Ext2Fsd, Ext2IFS) are available for Windows that allow both reading and writing EXT2/3/4 partitions
  • 18. TMPFS Could not be exported over NFS Quick fix for adding NFS export support to TMPFS (r230208); plus a bug fixed by jh: allow update mounts only for certain options(r234346)
  • 20. NICs: em(4) Works good without known wired behavior and has produced good performance over a gigabit wire The datasheet is available The client was unable to mount NFS share over UDP Fixed by yongari (r214441) Incorrect Rx checksum handling when testing VLC's UDP-Lite (r264212) streaming mode Corrections to the RX checksum code (r249509)
  • 21. NICs: re(4) Fails at high traffic; stress test with ftp/axel re0: watchdog timeout re0: link state changed to DOWN Use the vendor driver with minor modifications but it has one drawback: it doesn't use miibus(4) The datasheet is not available
  • 22. rpcbind(8) rpcbind can be abused by remote attackers for rpc amplification attacks(DDoS) Prevent rpcbind from listening on all interfaces for UDP and TCP connections rpcbind_flags="-h 192.168.1.1" nfs_server_flags="-h 192.168.1.1" mountd_flags="-h 192.168.1.1"
  • 23. Firewalls: ipfw(4) & pf(4) Kernel panic with pf kept happening locking issue; fixed as r226938 Switching to ipfw makes me/us happy
  • 24. Support the FreeBSD project https://www.freebsdfoundation.org/donate/