Re: Firewall set up / general BSD questions

[Jason Opperisano <opie_(_at_)_817west_(_dot_)_com>]

On Wed, Dec 01, 2004 at 11:17:51AM -0600, Dave Beckstrom wrote:
> Hi all,
> 
> I just joined the list.  I've done a bunch of reading (forums, web sites,
> manuals)  this morning and last night and I've not had much luck finding
> some answers to my questions.  I'm hoping you folks can help get me going.

did you read:  man afterboot

> I installed OpenBSD 3.6 on a new server yesterday.  I'm setting it up as a
> transparent bridged firewall with no IP address on the server.  Its only job
> is packet filtering.
> 
> When I log in as root I see a message saying I have mail.  I'm not a 'nix
> person.  I'd appreciate if someone can tell me how I view the mail messages
> and delete them?  Apparently it's not email but rather messages about the
> server.

man mail

> Is there any reason why I should not disable sendmail on this box?

yes.

> To
> disable it, I update the rc.cfonf file and set sendmail_flags=NO, correct?

don't do that.

> This box has identd running on it.  Given its purpose in life, is there any
> reason I can't disable identd?

nope.

>  I do have an IRC server sitting behind the
> firewall but as I understand it identd on the firewall (bridged) has nothing
> to do with anything correct?

correct.

> My server has one gig of ram on it.  I have these notes from when I
> installed my 3.3 openbsd server a year or so ago.
> 
> # config -e -o bsd.new /bsd
> OpenBSD 3.3 (GENERIC) #44: Sat Mar 29 13:22:05 MST 2003
>     deraadt_(_at_)_i386_(_dot_)_openbsd_(_dot_)_org:/usr/src/sys/arch/i386/compile/GENERIC
> Enter 'help' for information
> ukc> nmbclust
> nmbclusters = 2048
> ukc> nmbclust 8192
> nmbclusters = 8192
> ukc> quit
> Saving modified kernel.
> 
> Is there still a need, or would you recommend, that I increase the nmbclust
> on this 3.6 server too?

no.

-j

--
"Dear Mr. President, there are too many states nowadays, please
 eliminate three. I am not a crackpot."
        --The Simpsons