This article will cover a very basic setup where a FreeBSD server is configured as an iSCSI Target, and another FreeBSD server is configured as the iSCSI Initiator. The iSCSI Target will export a single disk drive, and the initiator will create a filesystem on this disk and mount it locally. Advanced topics, such as multipath, ZFS storage pools, failover controllers, etc. are not covered. Please refer to the following documentation on iSCSI for more information:
- RFC 3720 – Internet Small Computer Systems Inferface (iSCSI)
- FreeBSD Handbook – iSCSI Targets and Initiators
- Mikhail E. Zakharov’s excellent article in BSD Magazine titled “FreeBSD Based Dual-Controller Storage System Concept”
Now to get started…
iSCSI Target Test Setup
The disk drive which should be shared on the network is /dev/ada0, a 5G SATA disk created in VMWare that I attached to the system before starting it up. With FeeBSD, iSCSI is controled by the ctld daemon, so this needs to be enabled on the system. While at it, why not go ahead and enable it at boot time too?
This tutorial by user 0r0 will show us how to get qutebrowser set up on TrueOS or FreeBSD. Qutebrowser is a minimal GUI browser that focuses on keyboard. Follow the link below for the full set of instructions.
qutebrowser (http://qutebrowser.org/3) is a lightweight browser with vim-like keybindings and userscript support. Before I discovered it, I found most other browsers that I tried to be bloated, slow, or poorly maintained and out-of-date. Now I rarely use any other browser.
Unfortunately, qutebrowser is not (yet) in the FreeBSD ports tree. I worked out how to install it, and thought I would share my notes here in case they are of use to someone else. If you want to try qutebrowser before going through the steps below, there are binary packages available for OpenBSD, OSX, Windows and many flavors of Linux (see https://github.com/qutebrowser/qutebrowser/blob/master/INSTALL.asciidoc1).
As noted below there are a couple of steps that take a while, but they can be unattended (ie, you can be doing something else). Overall it’s fairly easy once you know the steps. qutebrowser can run with with either a webkit or (not yet fully-featured) webengine backend, but because the latter requires PyQt5 5.7 or higher, these steps will give you a webkit-only browser until that FreeBSD port is upgraded.
This issue of BSD Magazine features articles discussing infrastructure management, from active directory with SMB and BIND on FreeBSD, server management, OpenBSD, OPNsense, and more. Head on over to the link below to download the PDF/EPUB file.
The BSD team and I are delighted to declare a new coming issue of BSD Magazine.
Let’s take a look at what you will encounter in this issue of BSD. Our experts will instruct you on how to deal with Virtual Firewall and how to install OPNsense on Bhyve. Thereafter, we will be heading to OpenBSD as a Gateway Firewall for SOHO and Enterprise Networks. In this issue, you will read more on SmartOS Containers. Last but not least, we’ll share more concerning a FreeBSD Server Management with Ansible, Active Directory with Samba and BIND on FreeBSD, OPNsense, and much more. Make sure to check out this issue for more articles and tutorials.
Ewa & The BSD Team
PS. As always, we invite other experts, companies, reviewers for collaboration for future work and issues.
BSD Mag Vol. 11 No. 02 Issue 02/2017: https://bsdmag.org/download/bsd-magazine-issue-infrastructure-management/
Alexander Nusov brings to us OpenStack cloud platform to FreeBSD with his latest project NFV Express. OpenStack is an open-source cloud computing software primarily designed to run on Linux operating system, and allows you to manage compute instances to allocate your available storage. The screenshots below also show an instance of FreeNAS running. Check out the links below for a detailed guide on setting up NFV Express, OpenStack for FreeBSD.
- Fresh installed FreeBSD® 11 server on x86-64 hardware with 8GB RAM
- Configured Xen® Dom0
- At least 1 NIC with Static IP
NFV Express: http://nfvexpress.com/
OpenStack Installation Tutorial for FreeBSD
The OpenStack system consists of several key services that are separately installed. These services work together depending on your cloud needs and include the Compute, Identity, Networking, Image, Block Storage, Object Storage, Telemetry, Orchestration, and Database services. You can install any of these projects separately and configure them stand-alone or as connected entities.
This guide will walk through an installation by using packages available through NFV Express repository for FreeBSD 11.0 (amd64).
Explanations of configuration options and sample configuration files are included.
This guide documents the OpenStack Newton release.
Full tutorial: http://docs.nfvexpress.com/install-guide/
In this BSD Now episode, hosts Kris Moore and Allan Jude report on OpenBSD, NetBSD reproducible builds, C programming, and more. Click play below to tune in:
BSD Now weekly content roundup: http://www.bsdnow.tv/episodes/2017_03_08-tokyo_dreaming
Jupiter Broadcasting show notes: http://www.jupiterbroadcasting.com/107406/tokyo-dreaming-bsd-now-184/
The Nintendo Switch, a hybrid home and handheld gaming console, was released last Friday and met with rave reviews. A user found that the Switch runs on a FreeBSD kernel according to the copyright notices. This is the second gaming company to use FreeBSD for their console’s operating system, Sony based PS4’s operating system Orbis OS on FreeBSD. Kudos to Nintendo and Sony for supporting FreeBSD!
In this BSD Now episode, hosts Allan Jude and Kris Moore talk about weird Unix thing “cd //”, using Steam with playonbsd, and an interview about BSD sockets API. Press play below to tune in:
BSD Now weekly content roundup: http://www.bsdnow.tv/episodes/2017_03_01-getting_steamy_here
Jupiter Broadcasting show notes: http://www.jupiterbroadcasting.com/107231/getting-steamy-here-bsd-now-183/
This blog by user Bobulate writes about his work in progress with FreeBSD and CPack, a cross-platform software packaging tool that comes with CMake packing software. Read about his thoughts at the link below.
Some days of the week, I work on Free Software projects that aren’t ready to see the light yet; they live in my own git repo’s, or wherever. While I have the intention of publishing eventually, I usually want to get things somewhat working before throwing code out there.
Part of checking if things work is packaging, and installing the stuff on more than one system. Sure, I can build everywhere, or copy around executables, but it struck me that it’d be cool to have packages — you know, installable with the system package manager — for the stuff I make. O yeah, I know flatpak is the new orange, but I’m not that hip. I’ll stick with Debian and FreeBSD packages, thanks.
Original post: http://euroquis.nl/bobulate/?p=1531
Ed Maste of the FreeBSD Foundation gives us an update on a February project initiative — blacklistd has been completely ported from NetBSD by Kurt Lidl. Read their full announcement at the link below.
Internet-connected servers regularly face brute-force attacks on services that they provide, such as SSH or authenticated SMTP. We’d like to limit the number of brute-force attempts that may be made, both to prevent unwarranted access to the resources and to limit the impact of noisy log files.
There are a number of existing tools to mitigate brute force attacks, including fail2ban and sshguard. These operate by monitoring log files for entries corresponding to failed access attempts, and then automatically installing a firewall rule to temporarily disallow further access from the same source. These tools are functional but can be somewhat fragile and require ongoing maintenance to track any changes in log message formats.
The annual Google Summer of Code is coming up, and as usual there will be several students representing the FreeBSD project. They will begin accepting applications starting March 20, 2017 and ending April 3, 2017.
Instructions for applications including a template can be found at https://www.FreeBSD.org/projects/summerofcode.html
Students should have familiarity with UNIX/Linux/FreeBSD, and should have experience with installing and re-building FreeBSD should their project require this. Generally good knowledge of C is also a requirement. For the start of the GSoC students should ideally know how to use some Version Control System like subversion or github.
Most candidates keep some contact with the community, usually through project mailing lists or IRC, and actively keep in touch with developers to suggest possible mentors.
Please check the list of project ideas at https://wiki.FreeBSD.org/SummerOfCodeIdeas
FreeBSD Google Summer of Code: https://summerofcode.withgoogle.com/organizations/6092454341115904/