NetBSD
ServerName netbsd3.homeunix.org
ServerAlias netbsd3.homeunix.org www.netbsd3.homeunix.org
DocumentRoot /home/dmesg/public_htlm/msn/
ErrorLog var/log/netbsd3.homeunix.org-error.log
CustomLog var/log/netbsd3.homeunix.org-custom.log custom
Linux
NameVirtualHost 193.216.109.211
ServerName net.bsdnetwork.org
ServerAlias net.bsdnetwork.org
DocumentRoot /home/dmesg/public_html/net
ScriptAlias /cgi-bin/ /home/dmesg/public_html/cgi-bin
$ host -t aaaa www.netbsd.org
www.netbsd.org has IPv6 address 2001:4f8:4:7:2e0:81ff:fe52:9a6b
Requirements
Xen3 is supported from NetBSD-4.0 onward. If you plan on using NetBSD-CURRENT, please read the article How to build NetBSD-current to do so. Also keep a spare partition for each guest operating system you intend to install.
This tutorial describes how to:
install and configure NetBSD as a DOM0
install and run a Debian system as a DOMU
Installing Xen tools and kernels
Xen tools
To run and administer xen domains, we need the xentools3 packages.
You can get them directly from pkgsrc, under sysutils/xentools3 for traditional xentools, and sysutils/xentools3-hvm for //HVM// goodies used to run un-modified OSes, through //HVM// support.
# cd /usr/pkgsrc/sysutils/xentools3
# make install
Xen kernel
Next, we will get the xen hypervisor kernel itself (sysutils/xenkernel3 in pkgsrc):
# cd /usr/pkgsrc/sysutils/xenkernel3
# make install
And copy it into / directory, like this:
# cp /usr/pkgsrc/sysutils/xenkernel3/work/xen.gz /xen
Xen DOM0 kernel
Lastly, we need a XEN-enabled kernel for our DOM0 domain. There are two possibilities: downloading the binary version, or building it from source.
Downloading the binary version
From NetBSD-4.0 onward, NetBSD supports Xen, and provides some XEN-enabled kernel directly from [1], in each binary/kernel directory associated with a particular release.
For example, with NetBSD-4.0, You can grab one from (ftp.NetBSD.org/pub/NetBSD/NetBSD-4.0/i386/binary/kernel/netbsd-XEN3_DOM0.gz [2]):
# ftp -a ftp://ftp.netbsd.org/pub/NetBSD/NetBSD-4.0/i386/binary/kernel/netbsd-XEN3_DOM0.gz
The netbsd-XEN3_DOM0.gz file contains a gzipped version of the kernel. Just copy and move it into the root directory like this:
# cp netbsd-XEN3_DOM0.gz /netbsd-XEN3.DOM0
Building it from source
Building a kernel from source is out of the scope of this section. Please consult How to build a kernel from NetBSD’s FAQ for more details.
Once building is done, you can find them in /usr/src/obj/_releasedir_/i386/binary/kernel/. Identically to binary version, copy or move netbsd-XEN3_DOM0 in the root directory /.
Setting up Grub
Before installing and configuring XEN3, we need to install grub, the bootloader required to boot our XEN-enabled system.
To install it, use its package provided in pkgsrc (sysutils/grub):
# cd /usr/pkgsrc/sysutils/grub
# make install
Building grub may take a while.
When installation is finished, you can proceed to grub’s configuration in the /grub directory.
GRUB configuration
First, create /grub (if it is not present), and copy paste the menu.lst file below used by grub to read its configuration:
# mkdir /grub
# vi /grub/menu.lst
This typical /grub/menu.lst file should have following content:
# The default entry to load will be
# default=0
# However we do set it as saved
default saved
# boot after 7 seconds the default entry if the user didn’t hit keyboard
timeout=7
# Configure serial port to use as console. Ignore if you’ll use VGA only
# serial –unit=0 –speed=115200 –word=8 –parity=no –stop=1
# Let the user select which console to use (serial or VGA), default
# to serial after 10s
terminal –timeout=10 serial console
# First, entry for NetBSD/xen, using /netbsd-XEN3_DOM0 as the domain0 kernel, using VGA console.
# Domain0 will have 512MB RAM allocated.
# You can use this entry as first example.
# In case you have smaller RAM size you can insert desired value:
# kernel (hd0,a)/xen.gz dom0_mem=65536
# kernel (hd0,a)/xen.gz dom0_mem=131072
title Xen 3.0 / NetBSD_XEN3_DOM0 (hda0, vga)
root(hd0,0)
kernel (hd0,a)/xen dom0_mem=514624
module (hd0,a)/netbsd-XEN3_DOM0 root=/dev/hda1 ro console=tty0
# An entry for NetBSD/xen, using /netbsd as the domain0 kernel, and serial
# console. Domain0 will have 64MB RAM allocated.
# Assume NetBSD is installed in the first MBR partition.
title Xen 3.0 / NetBSD (hda0, serial)
root(hd0,0)
kernel (hd0,a)/xen dom0_mem=65536 com1=115200,8n1
module (hd0,a)/netbsd root=/dev/hda1 ro console=ttyS0
# An entry for NetBSD/xen, using /netbsd as the domain0 kernel, and serial
# console.
title Xen 3.0 / NetBSD_xen-serial_com1 (hda0, serial)
root(hd0,0)
kernel (hd0,a)/xen dom0_mem=65536 com1=115200,8n1
module (hdO,a)/netbsd root=/dev/hda1 ro console=ttyS0
# Same as above, but using VGA console
# We can use console=tty0 (Linux syntax) or console=pc (NetBSD syntax)
title Xen 3.0 / NetBSD-xen-vga (hda0, vga)
root(hd0,0)
kernel (hd0,a)/xen dom0_mem=65536
module (hd0,a)/netbsd root=/dev/hda1 ro console=tty0
# NetBSD/xen using a backup domain0 kernel (in case you installed a
# nonworking kernel as /netbsd
title X 3.0 / NetBSD-backup-serial_com1 (hda0, backup, serial)
root(hd0,0)
kernel (hd0,a)xen dom0_mem=65536 com1=115200,8n1
module (hd0,a)netbsd.backup root=/dev/hda1 ro console=ttyS0
# NetBSD/xen using a backup domain0 kernel and serial console (in case you installed a
# nonworking kernel as /netbsd.
title Xen 3.0 / NetBSD-backup-vga (hda0, backup, VGA)
root(hd0,0)
kernel (hd0,a)/xen dom0_mem=65536
module (hd0,a)/netbsd.backup root=/dev/hda1 ro console=tty0
# Load a regular NetBSD/i386 kernel. Can be useful if you end up with a
# nonworking /xen and for test purposes.
title NetBSD 4.0 pure load
root (hd0,a)
kernel /netbsd
# Load the NetBSD bootloader, letting it load the NetBSD/i386 kernel.
# May be better than the above, as grub can’t pass all required infos
# to the NetBSD/i386 kernel (e.g. console, root device, …)
title NetBSD chailnoalder
root (hd0,a)
chainloader +1
# Reboot computer
title Reboot computer
reboot
# Power off computer
title Power off computer
halt
# Load last saved boot
savedefault
Tip: If you hard drive is partitioned in some complicated ways (many partitions and slices for example), use the command-line grub:
# grub –no-floppy
The syntax used is the exact same as the one in the above config file, and you can use TAB-completion features. Very handy in case you do not know how to label the root partition with grub’s syntax, or check that the commands you type are properly written in your menu.lst config file.
Once you have finished editing menu.lst, proceed with the stage files copy, required for grub to work:
# grub-install /dev/rwd0d # considering wd0 is the boot device
Last, we need to install grub in the MBR. We will use the grub shell like commands to do so:
# grub –no-floppy
grub> root (hd0,a)
Filesystem type is ffs, partition type 0xa9
grub> setup (hd0)
Checking if “/boot/grub/stage1″ exists… no
Checking if “/grub/stage1″ exists… yes
Checking if “/grub/stage2″ exists… yes
Checking if “/grub/ffs_stage1_5″ exists… yes
Running “embed /grub/ffs_stage1_5 (hd0)”… 14 sectors are embedded.
succeeded
Running “install /grub/stage1 (hd0) (hd0)1+14 p (hd0,0,a)/grub/stage2 /grub/menu.lst”…
succeeded
Done.
Setting up DOM0
Creating xen devices
To create all xen devices, change to /dev and run ./MAKEDEV xen
cd /dev
./MAKEDEV xen
This should create the devices xencons, xenevt and xsd_kva. If any of these are missing you may not have updated to CURRENT using the latest sources and you will have to create the missing device files.
Configuring the bridge interface
The bridge(4) interface is used to provide network access to DOMUs.
To use one, edit (or create) the file /etc/ifconfig.bridge0 and insert following lines to:
create
!brconfig $int add bge0 stp bge0 up
Where ‘bge0′ should be changed to the name of the interface you want to use with your guest operating systems. use ifconfig(8) to get more details about your actual interfaces.
Rebooting into DOM0
Time to reboot:
# shutdown -r now
If all has gone well, you should have booted into the XEN3_DOM0 kernel. Check this with uname(1):
# uname -v
NetBSD 4.0 (XEN3_DOM0) #0: Sun Dec 16 01:20:31 PST 2007
builds@wb34:/home/builds/ab/netbsd-4-0-RELEASE/i386/200712160005Z-obj/home/builds/ab/netbsd-4-0-RELEASE/src/sys/arch/i386/compile/XEN3_DOM0
You should have XEN3 DOM0 mentioned somewhere.
Configuring rc scripts
Copy or symlink xend, xenbackendd and xendomains from /usr/pkg/share/examples/rc.d to /etc/rc.d.
# cp /usr/pkg/share/examples/rc.d/xend /etc/rc.d/
# cp /usr/pkg/share/examples/rc.d/xenbackendd /etc/rc.d/
# cp /usr/pkg/share/examples/rc.d/xendomains /etc/rc.d/
Edit /etc/rc.conf and add the following lines:
xend=YES
xenbackendd=YES
xendomains=”dom1″
Later on, when you have created a configuration file for ‘dom1′, the xendomains variable specified above will trigger ‘dom1′ to be started when the system is booted. At this point no configuration exists for dom1, therefore it does nothing at this point. If you choose to name your configuration file something else, adapt the name accordingly.
To avoid rebooting a second, start all three services:
# /etc/rc.d/xend start
# /etc/rc.d/xenbackendd start
# /etc/rc.d/xendomains start
Run ifconfig -a to ensure the bridge interface is present and issue a ps ax | grep xen to ensure you have a similar output.
12 ? DK 0:00.00 [xenwatch]
13 ? DK 0:00.00 [xenbus]
411 ? I 0:00.24 xenstored –pid-file=/var/run/xenstore.pid
594 ? IWa 0:00.26 xenconsoled
629 ? IW 0:00.00 /usr/pkg/bin/python2.3 /usr/pkg/sbin/xend start
631 ? IWsa 0:00.02 /usr/pkg/sbin/xenbackendd
639 ? IWa 0:00.52 /usr/pkg/bin/python2.3 /usr/pkg/sbin/xend start
The DOM0 configuration is now done. We will proceed to configuring DOMU domains.
Configuring DOMU
Configuring and installing a NetBSD DOMU
Create (or modify) /usr/pkg/etc/xen/dom1 and include this:
kernel = “/usr/src/obj/releasedir/i386/binary/kernel/netbsd-INSTALL_XEN3_DOMU.gz”
#kernel = “/netbsd-XEN3_DOMU”
memory = 64
name = “dom1″
#vcpus = 1
disk = [ ‘phy:/dev/wd0g,0x03,w’,'file:/usr/src/obj/releasedir/i386/installation/cdrom/netbsd-i386.iso,0x04,r’ ]
vif = [ ‘bridge=bridge0′ ]
root = “/dev/wd0d”
This configuration boots into the NetBSD sysinst program and allows you to install a NetBSD DOMU using the normal sysinst method. This configuration uses a DOMU_INSTALL kernel and an ISO image provided by a successful ‘build release’ and ‘build iso-image’. You may be able to locate a valid Xen3 DOMU_INSTALL kernel from ftp://ftp.netbsd.org/pub/NetBSD-daily/ but if not, building a release is your best bet.
In this configuration file, /dev/wd0g is the reserved partition for the guest operating system. This should be changed to the partition you reserved prior to following the instructions within this document.
If you would like to use a physical CDROM instead of an ISO image, change the disk line to:
disk = [ ‘phy:/dev/wd0g,0x03,w’,'phy:/dev/cd0a,0x04,r’ ]
Now boot into sysinst using the command:
xm create dom1 -c
The reserved partition will appear as /dev/xbd0. Proceed as you would with a normal NetBSD installation using xbd0 as the target drive and xbd1 as the CDROM.
When you have finished, run shutdown -hp now to dom1.
Now edit /usr/pkg/etc/xen/dom1. Comment the INSTALL kernel and uncomment the DOMU kernel.
You should now have a working NetBSD DOMU (dom1). Boot into dom1 again with the command:
xm create dom1 -c
and ensure the file, /etc/ttys contains only this line or has all other lines commented:
console “/usr/libexec/getty Pc” vt100 on secure
and the file /etc/wscons.conf is completely empty or has all lines commented out. These last two steps ensure no errors should be present on boot. Setting wscons=NO in /etc/rc.conf may effectively do the same thing.
From here, configure /etc/rc.conf and all runtime configuration files as you would normally. The network interface name should be xennet0. Use this name when configuring an IP address.
More information can be obtained by referencing the Xen user guide and the official NetBSD Xen Howto. Questions can be addressed to the port-xen@NetBSD.org mailling list.
Configuring and installing a GNU/Linux DOMU
We will do this in two steps:
install a GNU/Linux system, from a livecd or any installation media
configure the DOM0 so that it can create and start the Linux DOMU.
Installing a Linux distribution (soon-to-be DOMU)
Before proceeding with DOMU configuration, we will install our favorite GNU/Linux distribution on the computer.
In order to do it, we need at least two partitions (only one, if you do not consider the swap). These partitions must reside outside of the NetBSD slice, and may be either of primary or extended type. Of course, you can use more than two, but adapt your labels and partitions accordingly.
We do not cover the partition/slices manipulations through fdisk(8) and disklabel(8), as it depends strongly on how you manage your hard drive’s space.
For this tutorial, we will use this partitioning:
# fdisk /dev/wd0d
fdisk: removing corrupt bootsel information
fdisk: Cannot determine the number of heads
Disk: /dev/wd0d
NetBSD disklabel disk geometry:
cylinders: 486344, heads: 16, sectors/track: 63 (1008 sectors/cylinder)
total sectors: 490234752
BIOS disk geometry:
cylinders: 1023, heads: 255, sectors/track: 63 (16065 sectors/cylinder)
total sectors: 490234752
Partition table:
0: Linux native (sysid 131)
start 63, size 20482812 (10001 MB, Cyls 0-1274)
PBR is not bootable: All bytes are identical (0x00)
1: Linux swap or Prime or Solaris (sysid 130)
start 20482875, size 1959930 (957 MB, Cyls 1275-1396)
PBR is not bootable: All bytes are identical (0x00)
2: NetBSD (sysid 169)
start 61464690, size 428770062 (209360 MB, Cyls 3826-30515/178/63), Active
3:
Drive serial number: -286527765 (0xeeebeeeb)
Here, you notice that we decide to use two primary partitions for our future Linux DOMU:
partition 0 (for the root directory /)
partition 1 (for the swap)
Labels:
16 partitions:
# size offset fstype [fsize bsize cpg/sgs]
a: 30720816 61464690 4.2BSD 2048 16384 0 # (Cyl. 60976*- 91453*)
b: 1049328 92185506 swap # (Cyl. 91453*- 92494*)
c: 428770062 61464690 unused 0 0 # (Cyl. 60976*- 486343)
d: 490234752 0 unused 0 0 # (Cyl. 0 - 486343)
e: 20480000 93234834 4.2BSD 0 0 0 # (Cyl. 92494*- 112812*)
f: 20480000 113714834 4.2BSD 0 0 0 # (Cyl. 112812*- 133129*)
g: 20480000 134194834 4.2BSD 0 0 0 # (Cyl. 133129*- 153447*)
h: 335559918 154674834 4.2BSD 0 0 0 # (Cyl. 153447*- 486343)
i: 20482812 63 Linux Ext2 0 0 # (Cyl. 0*- 20320*)
j: 1959930 20482875 swap # (Cyl. 20320*- 22264*)
Bear in mind that we added two labels here, namely i and j, which maps respectively to partition 0 and partition 1 of the disk. We will use these labels later for DOMU configuration.
Now that we have partitioned the disk, proceed with installing your Linux distribution. We will not cover that part in this tutorial. You can either install it from an installation media (a cdrom from example), or copy files from an already installed distribution on your computer.
Tip: to manipulate ext2/3 filesystems (the traditional fs under Linux) from NetBSD, you can use sysutils/e2fsprogs from pkgsrc:
# cd /usr/pkgsrc/sysutils/e2fsprogs
# make install
And then use e2fsck, mke2fs and mount_ext2fs(8) directly from NetBSD.
Getting XEN aware Linux kernels
Once installation is done, reboot your computer and return to our Xen-NetBSD system.
To boot our Linux DOMU, we will need a Linux kernel supporting the XENU virtualisation. Depending on your Linux distribution, you can grab one from its repository (it is up to you to find it through aptitude, yum or whatever package manager you use), or get one from the Xen binary distribution.
To get a XENU Linux kernel from Xen binary distribution, get it directly from Xen website download page. Download the tarball and extract the vmlinuz-*-xen from it. In our case, with a 2.6.18 Linux kernel:
# ftp -a http://bits.xensource.com/oss-xen/release/3.1.0/bin.tgz/xen-3.1.0-install-x86_32.tgz
# cd /tmp
# tar -xzf xen-3.1.0-install-x86_32.tgz dist/install/boot/vmlinuz-2.6.18-xen
vmlinuz-2.6.18-xen is the kernel that Xen will use to start the DOMU. Move it to any directory you like (just remember it when configuring the kernel entry in the DOMU configuration file):
# mv dist/install/boot/vmlinuz-2.6.18-xen /vmlinuz-XEN3-DOMU
Configuring DOMU
Configuring the Linux DOMU is a bit different than a NetBSD one; some options tend to differ.
Edit (or create) the configuration file domu-linux, in /usr/pkg/etc/xen/:
# vi /usr/pkg/etc/xen/domu-linux
Here’s a typical config file for a Linux DOMU:
#—————————————————————————-
# Kernel image file. This kernel will be loaded in the new domain.
kernel = “/vmlinuz-XEN3-DOMU”
# Memory allocation (in megabytes) for the new domain.
memory = 256
# A handy name for your new domain. This will appear in ‘xm list’,
# and you can use this as parameters for xm in place of the domain
# number. All domains must have different names.
#
name = “domu-linux”
# Which CPU to start domain on (only relevant for SMP hardware). CPUs
# numbered starting from “0′’.
#
cpu = “^1″ # leave to Xen to pick
#—————————————————————————-
# Define network interfaces for the new domain.
# Number of network interfaces (must be at least 1). Default is 1.
vif = [ ‘’ ]
# Define MAC and/or bridge for the network interfaces.
#
# The MAC address specified in “mac'’ is the one used for the interface
# in the new domain. The interface in domain0 will use this address XOR’d
# with 00:00:00:01:00:00 (i.e. aa:00:00:51:02:f0 in our example). Random
# MACs are assigned if not given.
#
# “bridge'’ is a required parameter, which will be passed to the
# vif-script called by xend(8) when a new domain is created to configure
# the new xvif interface in domain0.
#
# In this example, the xvif is added to bridge0, which should have been
# set up prior to the new domain being created — either in the
# “network'’ script or using a /etc/ifconfig.bridge0 file.
#
vif = [ ‘mac=aa:00:00:50:02:f0, bridge=bridge0′ ]
#—————————————————————————-
# Define the disk devices you want the domain to have access to, and
# what you want them accessible as.
#
# Each disk entry is of the form:
#
# phy:DEV,VDEV,MODE
#
# where DEV is the device, VDEV is the device name the domain will see,
# and MODE is r for read-only, w for read-write. You can also create
# file-backed domains using disk entries of the form:
#
# file:PATH,VDEV,MODE
#
# where PATH is the path to the file used as the virtual disk, and VDEV
# and MODE have the same meaning as for “phy'’ devices.
#
# /dev/wd0i will be seen as “hda1″ under DOMU (the root partition)
# /dev/wd0j will be seen as “hda2″ under DOMU (the swap)
#
disk = [ ‘phy:/dev/wd0i,hda1,w’,'phy:/dev/wd0j,hda2,w’ ]
#—————————————————————————-
# Set the kernel command line for the new domain.
# Set root device.
root = “/dev/hda1″
Now, you should be able to start your first Linux DOMU!
# xm create -c /usr/pkg/etc/xen/domu-linux
If you intend to have more than one box configured with the above configuration on the same network, you will most likely have to specify a unique MAC address per guest OS, otherwise it is likely you will have a conflict. I’m not sure if the MAC assignment is random, incremental or if Xen is able to check for the existence of the proposed MAC address, so specifying the MAC address is recommended.
Here is a method to assign a MAC address to a newly created Xen Domu. First as described before, use the following vif parameter in your config file :
vif = [ ‘bridge=bridge0′ ]
Then, run the Xen DomU and, once logged run the following command :
# ifconfig xennet0
Output Sample :
xennet0: flags=8863
capabilities=2800
enabled=0
address: 00:16:3e:2e:32:5f
inet 192.168.4.81 netmask 0xffffff00 broadcast 192.168.4.255
inet6 fe80::216:3eff:fe2e:325f%xennet0 prefixlen 64 scopeid 0x2
A MAC address is automaticaly generated, use it in your config file with the following syntax :
vif = [ ‘mac=00:16:3e:2e:32:5f, bridge=bridge0′ ]
And now you can restart the Xen DomU.
Please, note that the MAC Address MUST start with “00:16:3e”.
#make install clean
we need for the apache to work to add a hostname>:
#hostname netbsdsparc
and then add Servername into httpd.conf
Servername 192.168.0.29:80
wherever your ip address is.
then add you ip and host into /etc/hosts/
#echo “192.168.0.29 netbsdsparc” >> /etc/hosts
then we can start apache
#apachectl start
#cd /usr/pkgsrc/www/php4/
#make install clean
Now we gonna install the module for php on apache
#cd /usr/pkgsrc/www/ap-php/
#make install clean
now we need to add some lines to the httpd.conf
LoadModule php4_module lib/httpd/mod_php4.so
AddHandler application/x-httpd-php .php
You may also add following if you still use .php3 files:
AddHandler application/x-httpd-php .php3
now we gonna install mysql
#cd /usr/pkgsrc/databases/php-mysql
#make install clean
we need to add the mysql.so extention on to php.ini
#vi /usr/pkg/etc/php.ini
then we add extension=mysql.so where “Dynamic Extensions” is
#cd /usr/pkgsrc/databases/mysql4-server
#make install clean
mysql will install the mysql-client too at the end you just need
to do:
#cp /usr/pkg/share/examples/rc.d/mysqld /etc/rc.d/
if the file goes as rc.d into /etc/rc.d just rename it to mysqld
then add
#echo “mysqld=YES” >> /etc/rc.conf
and then
/etc/rc.d/mysqld start
Starting MySQL ….
After the tables are set up and the MySQL server is running,
please remember to set a password for the MySQL root user!
This is done by running both:
#/usr/pkg/bin/mysqladmin -u root -p password ‘new-password’
#/usr/pkg/bin/mysqladmin -h `hostname` -u root -p password ‘new-password’
The “Enter password:” prompt is asking for the existing password.
As there is no existing password, just press the Return key.
thats it enjoy it 
cd /usr/pkgsrc/wm/fluxbox
make install clean
cd /home/user
touch .xinitrc
echo “exec fluxbox” >> .xinitrc
startx
thats it, enjoy it
polyBSD is a “multi”-purpose (hence “poly”) framework for building embedded systems that address certain aspects of information assurance. Essentially, it is a minimalistic install of NetBSD (i386) designed to run from a 256MB flash card or USB memory stick. Read the “polyBSD” section of this file for more information.pocketSAN uses polyBSD as a basis and builds on top of that to provide a functional, secure and completely free NAS/SAN solution with RAID and encrypted virtual disk support that can fit in your shirt pocket. Thus it can be used to address the data at-rest aspect of information assurance. Read the “pocketSAN” section of this file with instruction on how to set up your NAS/SAN. Here is also a list of all packages installed on pocketSAN.
>>polyBSD-0.1.img.gz
>>pocketSAN-0.1.img.gz
Instalacion de NetBSD WorkStation 2.0 Antes de continuar he de advertir que instalar una estacin La instalacion de NetBSD es bastante sencilla, los lenguajes El wd1 (wd0 es el DD de 40 GB), pero si solo se tiene un Como ya tenia Debian instalado le indique que editara el Solo deb modificar el numero de megas asignados para que Seleccione la zona horaria, el bootblock, el tipo de encriptacion Segn yo, le indique al instalador que hiciera NetBSD booteable, al /boot/grub/menu.lst (en Debian), funcionara, Post-Instalacin La configuracion posterior de NetBSD incluye definir el hostame en /etc/rc.conf, Para poner la fecha y hora “12 de Febrero del 2005 a la Ahora en /etc/rc.conf ponemos “hostname=Diabolica” adems hay que gregar el soporte para softdep Configurar Existen dos maneras de instalar paquetes en NetBSD pkg_add Algo desconcertante de pkg_add, es que no muestra ninguna Sucede que quize ahorrar tiempo de compilacion descargando El primer paso para usar pkgsrc es descargar el Y descomprimirlo: # tar -zxvf pkgsrc.tar.gz Luego de instalar el arbol de ports, el proceso # make install El primer paquete a instalar es sin duda el Bash, la shell recuerde agregar el PATH y el TERM=xterm a los archivos Dado que en Debian aun no hay paquetes X.org, decid probarlo Para montar una particion ext2 o ext3 de Linux Lo siento, NetBSD no soporta ReiserFS ni XFS ;-(. Para montar mi USB Pen Drive: Si embargo, parece que si se monta y se desmonta el USB Para que el mouse funcione, en el archivo /etc/X11/XF86Config Option “Device” “/dev/psaux” Por: No tuve que configurar nada de la tarjeta de sonido, simplemente Al final logre tener una estacion de trabajo agradable Conclusion No es mi intencion discutir ningun aspecto tecnico entre NetBSD es una excelente estacin de trabajo, con gran estabilidad, No obstante, un serio punto a considerar es que la lista Por otro lado, NetBSD es un sistema mas difcil de configurar Nota de actualizacion: Al parecer el problema /usr/pkg/share/xsessions/xfce4.desktop: Exec=xfce4-session Como en muchos otros proyectos de OpenSource (Python, Ruby, Zope, etc.) sospecho
de trabajo NetBSD es un especie de ejercicio espiritual Zen donde la paciencia
es retada a superar una difcil (y larga) prueba. Comence a instalar NetBSD un
sabado en la tarde y conclui el mircoles en la noche. De modo que mentalcese,
respire profundamente, encienda una varita de incienso y adopte la posicin de
flor de loto antes de colocar el CD de NetBSD en la unidad 
. Esta es la lista
de mi hardware:
disponibles en el instalador (sysinst) son, ingles, aleman, frances spañol
y polaco. A continuacin se nos preguntar si deseamos instalar NetBSD en el disco
duro, reinstalar o actualizar nuestro sistema. Al seleccionar “Instalacion”
en el disco duro sysinst nos presentara los discos disponibles. En Linux, las
unidades IDE disponibles comienzan con hda, hdb, hdc etc, en NetBSD comienzan
con wd0, wd1, wd2, etc:
disco duro se debe elegir wd0. Sysinst nos preguntar si queremos una instalacion
completa o una instalacion personalizada, al final resulto lo mismo porque al
elegir la opcion “Custom”, seleccione “Install selected sets” porque no supe
que poner o quitar:
MBR. La unidad de medicin que seleccione fue “megabytes”. Sysinst encontro las
particiones de Linux, le asigne a Debian 80 GB en dos particiones primarias
y tres lgicas de manera que el instalador de NetBSD encontro dos particiones
primarias libres. Asigne a una de ellas los 40 GB restantes seleccionando “NetBSD”
en el “Kind”. Me pregunto si deseaba instalar el “boot select” y le dije “Yes”.
Despues de ello el instalador me sugiri varias particiones donde montar el root,
swap, home:
las particiones ocuparan todos los 40 GB que haba establecido en el paso anterior.
Luego de ello comenze el formateado FFS de las particiones. En el “Choosing
installation media” seleccione “CD” y despues de unos minutos lo paso todo al
disco duro.
de las contraseas y teclee el password de root. Al final sysinst envio un mensaje
de felicitacion y ya tengo NetBSd en mi disco!
sin embargo al reiniciar, GRUB solo me mostro las opciones de Debian. No
problem, una rapida “googleada” me dijo que agregando:
title NetBSD 2.0
root (hd1,1)
chainloader +1
y en efecto, al reiniciar ya pude entrar a NetBSD.
establecer el teclado en espaol en /etc/wscons.conf (”encoding=es”) y configurar
la zona horaria agregando “kern.rtc_offset=-60″ al archivo /etc/sysctl.conf
y creando una liga simbolica:
# ln -s /usr/share/zoneinfo/Mexico/General
/etc/localtime
1:25 PM” tecleamos:
# date 200502121325
y en /etc/hostname “Diabolica”.
al archivo /etc/fstab. Todo ello est en el manual.
el DSL de Infinitum fue un tanto laborioso, pero no dio problemas.
Otro asunto fue la instalacion de los paquetes, Debian me tiene muy mal acostumbrado!
para instalar paquetes binarios, verbigracia
pkg_add ftp://ftp.netbsd.org/pub/NetBSD/packages/2.0/i386/lang/kaffe-1.1.4nb3.tgz
barra de avance, asta que uno no sabe si esta descargando el paquete o no. Por
otra parte, pkgsrc compila e instala paquetes desde
las fuentes, a la manera del emerge de Gentoo (o
emerge lo hace como pkgsrc?, no lo se. Resulta que las versiones de los paquetes
disponibles a traves de pkg-add no corresponden a los disponibles por pkgsrc.
Si alguien me hubiese informado de este hecho me habra ahorrado un gran dolor
de cabeza (y varias horas de pelea con pkg_add).
las versiones binarias de varias libreras (al igual que en Gentoo, compilar
todo el sistema me parece una perdida de tiempo innecesaria) pero al no coincidir
las versiones de pkgsrc me enviaba mensajes de error. Al final tuve que borrar
las versiones con pkg_delete y luego volver a instalar esos mismos paquetes
desde las fuentes. Esta falta de concordancia entre los paquetes me parece un
serio inconveniente para NetBSD y es un aspecto en el cual aun se debe trabajar.
arblo de ports en /usr:
# cd /usr
# ftp ftp://ftp.netbsd.org/pub/NetBSD/NetBSD-current/tar_files/pkgsrc.tar.gz
de instalacion de un paquete inicia con su ubicacion dentro del directorio /usr/pkgsrc.
Consulte la pagina
de ports de NetBSD. Los meta-paquetes que se encuentran en /usr/pkgsrc/meta-pkgs
son muy utiles pues nos permiten instalar un escritorio completo (KDE, Gnome,
XFCE4) sin tener que estar instalando los paquetes de manera individual. Un
paquete tpico se instala con los siguientes pasos:
# make
# make clean && make clean-depends
por omision de NetBSD es la insufrible csh. Luego de instalar el Bash
es necesario modificar el shell del usuario root y normal con el comando chsh:
#chsh -s bash -l root
#chsh -s bash -l mmontoya
.bashrc y .bash_profile. Ademas, hay que agregar al usuario normal al grupo
“wheel” en el archivo /etc/group para que pueda hacer “su root”:
wheel:*:0:root,mmontoya
en NetBSD. Me coloqu en /usr/pkgsrc/xorg-server y le di el “make install” para
la compilacin, luego saque al perro, vi “Los Simpson” (el captulo en que Krusty
celebra su Bar mitzva con “Mister T” y Homero tiene un programa de
television), vi con mi novia el show de los cinco gays que ayudan a un heterosexual
en su cita, fui a Superama, cenamos, volvi a sacar al perro… y an no terminaba
de compilar (lo de la paciencia era en serio!).
usamos el comando mount:
#mount -t ext2fs /dev/wd1k /mnt/linux
Para montar una particion vfat de Windows:
#mount -t msdos /dev/wd0b /mnt/windows
#mount -t msdos /dev/sd0e /mnt/llavero
Pen Drive, hay que hacer un pequeo hack de limpieza de buffer para montarlo
otra vez en la misma sesion, (yo lo intente pero no me funciono y me vi obligado
a reiniciar). Los chicos de NetBSD ya estan trabajando en este bug. Por otro
lado, el quemador se instala sin problemas, instale cdrecord con pkgsrc y luego
de un “cdrecord -scanbus” lo ubico en el inusual device “15,1,0″, pero pude
quemar facilmente.
se deben cambiar las lineas:
Option “Protocol” “PS2″
Option “Protocol” “wsmouse”
Option “Device” “/dev/wsmouse”
instale XMMS con pkgsrc y pude escuchar de inmediato las canciones OGG Vorbis
y MP3 de mi particion Linux usando los mdulos OSS (ALSA no viene por default).
y funcional:
los BSD y otros sistemas (i.e. SysV vs BSD) pues no me siento lo suficientemente
capacitado para ello. Tampoco quiero empezar un debate sobre cual licencia (GPL
vs BSD) es la mas libre o ingenua. El punto es, cules son las diferencias entre
Debian y NetBSD al considerarlas como candidatas para una WorkStation?
desempeño y una generosa cantidad de software disponible. Trabajar con
OpenOffice.org, Mozilla o Gimp es una delicia: nada falla, pasan las horas y
nada se cierra abruptamente, todo esta pronto y expedito. Como se ve, estoy
encantado con mi nuevo juguete .
de hardware soportado por NetBSD es mucho menor a la existente para Linux. Ademas,
a pesar de que instale todo desde la fuentes, no aprecie un aumento significativo
en la velocidad de NetBSD en relacion a Debian SID, instalado en el mismo equipo
y usando los mismos programas. La cuestin del desfase de versiones entre binarios
y fuentes es cosa seria y al parecer no se resolvera en mucho tiempo: cuando
quise editar mi pgina Web con BlueFish (como suelo hacerlo), pkgsrc
se tardo cuarenta y cinco minutos, al acabar yo ya estaba en otra cosa.
que Debian, hasta la fecha el flash player y Java se niegan a funcionar,
a pesar de que ya he seguido las indicaciones para la emulacion de Linux. El
muy necio GDM se niega a dejarme entrar a otra cosa que no sea Gnome (entro
a WM con “startx /usr/pkg/bin/wmaker”). Adems, constantemente recibo mensajes
de error de Samba!! (que yo nunca instale o intente instalar!). Las fuentes
de Mozilla se despliegan de esa manera pequena y desdibujada de Mandrake 6.0
que ya haba olvidado. Todo ello es debido a que Debian esta lleno de archivos
“postinstall” y Wizards que ayudan a configurar el sistema. Se que
muchos fans de Debian se molestarn si digo que Debian esta lleno de Wizards
pero es cierto, la diferencia con Mandrake es que los Wizards de Debian estan
hechos en Ncurses y no en Qt. Como sea, NetBSD solo instala binarios “pelones”,
es decir, sin configurar, de modo que si van a instalar una estacion de trabajo
NetBSD deben leer mas, pero el resultado sin duda vale la pena.
Un tema de Window Maker que hice para mi WorkStation con NetBSD.
de las fuentes feas no era de NetBSD sino de X.org, al desintalarlo por Xfree86
las fuentes ahora se ven igual de nitidas que en Debian. Para tener el Flash
player se debe instalar firefox-gtk2-bin (emulacion linux) y no firefox-gtk2.
Java funciona sin problemas con la versin 1.5 en /usr/pkgsrc/lang/sun-jre15.
Para agregar otro escritorio (en este caso XFCE4) a GDM agregue el archivo
[Desktop Entry]
Encoding=UTF-8
Name=XFCE4
Comment=This session logs you into XFCE4
TryExec=xfce4-session
# no icon yet, only the top three are currently used
Icon=
Type=Application
que NetBSD es un recurso subutilizado por su escasa documentacion, practicamente
solo existe la disponible en su sitio Web. Su canal en irc.freenode.net (#netbsd)
es amigable, pero de los mas lnguidos, y en l, hay pocos usuarios avanzados
que estan dispuestos a explicar a un newbie como solucionar un problema en
NetBSD. No obstante, vale la pena conocer este sabor de Unix, sobre todo si
su hardware es compatible.
Special thanks to aarkerio
Most people with a box on public IP, and with a sshd listening on port 22, notices a lot of bruteforce attempts. These attempts are filling up logs, and are a pure annoyance. Here’s how I “solved” it..
In OpenBSD 3.7, pf got a really nice feature called max-src-conn-rate, which specifies how quickly new connections can be made. Connecting hosts exceeding this limit can be put into a table, and all states including that hosts IP address, can also be flushed.
When I have the offending IPs in a table, it can easily be blocked early on in our ruleset. But since I don’t want to block a host forever, or even until the next reboot, I’m gonna use a small utility to clean out this table once in a while.
Let’s start with the magic pf rule:
# special rule for ssh
pass in on $ext_if proto tcp from any to ($ext_if) port ssh \
flags S/SA keep state \
(max-src-conn-rate 3/30, overload
The keyword here is ofcourse “max-src-conn-rate”. The arguments tell pf to put every IP exceeding a connection rate of more than 3 connections in every 30 seconds, in a table called “ssh-bruteforce”. How often do valid users connect to ssh that often? Ofcourse you can set this to 6/60 or something more apropriate for your environment. Last but not least pf kills all states originating from the bad host.
To keep the bad boys out, I add a block rule early on in my ruleset:
# block the ssh bruteforce bastards
block drop in quick on $ext_if from
Great, now the table are getting populated with bad hosts, and they’re getting blocked. But as I said earlier, I don’t want to block them forever. This is were expiretable comes in handy. This utility, written by Henrik Gustafsson, takes a look at a table, and removes (”expires”) entires older then the specified amount of time.
It’s in ports (sysutils/expiretable), but was commited after 3.8 was tagged, so you’ll have to go -current, or compile/install it by hand. Then add this to roots crontab:
*/5 * * * * /usr/local/sbin/expiretable -t 3600 ssh-bruteforce
Every five minutes, I expire entries older than one hour.
This is how I get rid of thousands of login attempts filling my logs.
Introduction
You may have various reasons to create a LiveCD.
Create a custom installer for your application and distribute it to the customers, create a desktop enviroment and boot it off your CD whenever you cannot access your own computer or maybe you have a diskless router and you want to run your O.S off the CD.
Implementation
There are two ways to create a LiveCD running NetBSD.
The “old” way is to create a boot floppy sized image.
The boot image must be exactly the size of either a 1200, 1440, or a 2880 kB floppy, and mkisofs will use this size when creating the output iso9660 filesystem.
The image will have a kernel with root file system inserted into it.
For i386, compile your custom kernel or you can use kernel config from /usr/src/sys/arch/i386/conf/INSTALL.
Then do following:
Create a directory where you will build your image and cd to it.
# cd /my_build/dir
Copy your custom kernel to this directory.
# cp /usr/src/sys/arch/i386/compile/obj/${MYKERNEL}/netbsd .
Create file system of the directory with files for your LiveCD.
# makefs -s ${FS_SIZE} -t ffs md.img ${IMG_DIR}
where ${FS_SIZE} is the size of your md.img and IMG_DIR is where you have your file system.
Now you need to insert the image into your kernel, wich then will get extracted of the kernel and mounted as memory file system:
# mdsetimage -v -s netbsd md.img
Compress your kernel to save space and rename it (optional step):
# gzip -f -9 netbsd ; mv netbsd.gz netbsd
For vnconfig, newfs and disklabel to “understand” the notion of floppy288 you need to edit your /etc/disktab and add there:
floppy288|2.88MB 3.5in Extra High Density Floppy:\
:ty=floppy:se#512:nt#2:rm#300:ns#36:nc#80:\
:pa#5760:oa#0:ba#4096:fa#512:ta=4.2BSD:\
:pb#5760:ob#0:\
:pc#5760:oc#0:
Create virtual disk and file system on it.
# dd if=/dev/zero of=image.fs count=5760
# vnconfig -t floppy288 -v -c /dev/vnd0d image.fs
# disklabel -rw /dev/vnd0d floppy288
# newfs -m 0 -o space -i 204800 /dev/rvnd0a
Bootstrap your virtual disk:
# /usr/sbin/installboot -v -m i386 -o timeout=3,console=pc -t ffs /dev/rvnd0a /usr/mdec/bootxx_ffsv1
Mount the virtual disk you just created and copy over your kernel and second stage boot loader.
# mount /dev/vnd0a /mnt
# cp /boot /mnt/
# cp netbsd /mnt/
# umount /mnt
# vnconfig -u vnd0d
Create a directory for your ISO image and copy your image there.
# cp image.fs cdisodir/
You can put some additional files to the cdisodir, they will be avaliable when you mounted your CD.
Create ISO image.
# mkisofs -l -J -R -o livecd.iso -c boot.catalog -b image.fs cdisodir
The new way is to use cdboot file instead of boot floppy.
This will allow you to use kernel beyond 2880 kB.
To compile cdboot, run:
# cd /usr/src/sys/arch/i386/stand/cdboot ; make
This time we will not create a floppy image. We dont need it since we can use cdboot instead.
Put cdboot to your cdisodir.
# cp /usr/src/sys/arch/i386/stand/cdboot/cdboot cdisodir/
Copy over your kernel with rootfs inserted into it and second stage boot loader to your ISO directory.
# cp netbsd cdisodir/
# cp /boot cdisodir/
Create ISO image
# mkisofs -l -J -R -o livecd.iso -c boot.catalog -b cdboot -no-emul-boot cdisodir
Notice the -no-emul-boot option. It’s becouse the boot image is not an image of a floppy.
To check your ISO image, you can mount it as virtual device:
# vnconfig -v -c /dev/vnd0d livecd.iso
# mount -t cd9660 /dev/vnd0a /mnt
When you’re done:
# umount /mnt
# vnconfig -u vnd0d
Thats all, its done.
Special thanks to Yazzy
Unrestricted Information
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Oct | ||||||
| 1 | ||||||
| 2 | 3 | 4 | 5 | 6 | 7 | 8 |
| 9 | 10 | 11 | 12 | 13 | 14 | 15 |
| 16 | 17 | 18 | 19 | 20 | 21 | 22 |
| 23 | 24 | 25 | 26 | 27 | 28 | 29 |
| 30 | ||||||
