Re: HEADSUP: pf 4.1 import

2007-07-26 Thread Brian A. Seklecki
-07-2007 15:02, Max Laier wrote: > > On Tuesday 10 July 2007, Brian A. Seklecki wrote: > >> On Tue, 2007-07-03 at 12:26 +0200, Max Laier wrote: > >>> All, > >>> > >>> in the course of this afternoon (CEST) I'll import the OpenBSD 4.1 >

[Fwd: [Fwd: Re: Merging Joel Knight's SNMP MIB into net/net-snmp]]

2007-07-12 Thread Brian A. Seklecki
My mail PFY tells me that my original send of this message never made it through so here's the resend (a thread regarding Net-SNMP 5.4 + OpenBSD 4.1 + PF-MIB). ~BAS Forwarded Message From: Brian A. Seklecki <[EMAIL PROTECTED]> To: Max Laier <[EMAIL PROTECTED]&

re: HEADSUP: pf 4.1 import

2007-07-10 Thread Brian A. Seklecki
On Tue, 2007-07-03 at 12:26 +0200, Max Laier wrote: > All, > > in the course of this afternoon (CEST) I'll import the OpenBSD 4.1 version We'll also have to see if Joel Knight's Net-SNMP patches work with our 5.3 in ports/net-mgmnt. ~BAS IMPORTANT: This message contains confidential informa

Re: Tun and ALTQ

2005-11-08 Thread Brian Fundakowski Feldman
wed inbound: add allow altq local_fast tcp from any to any 113 setup keep-state in add allow altq local_def tcp from any to any 22,80,113,443,5432,6881-6980,8080,8443 setup keep-state in # default: add allow altq local_def icmp from any

Re: Tun and ALTQ

2005-11-08 Thread Brian Fundakowski Feldman
you have suggestion on what would be good text to go into pf.conf(5) so that this particular case is documented? -- Brian Fundakowski Feldman \'[ FreeBSD ]'''''''''

Re: Tun and ALTQ

2005-11-07 Thread Brian Fundakowski Feldman
> 0 ] > [ qlength: 0/ 50 borrows: 0 suspends: 0 ] > [ measured: 199.0 packets/s, 146.71Kb/s ] No it isn't, it's em0. You probably want to be using ALTQ on tun0. I've done it; it works -- Brian Fundakowski Feldman \'[ F

Re: Using 'rdr' on outbound connections

2005-09-15 Thread Brian Candler
ng ident packets going from 127.0.0.1 to a real IP address and back again :-) But with the magic of oidentd: # /usr/local/sbin/oidentd -P 127.0.0.1 -u nobody -g nogroup and hey presto it works. Many thanks! Regards, Brian. ___ freebsd-pf@fr

Re: Using 'rdr' on outbound connections

2005-09-15 Thread Brian Candler
ould explain whether what I want to do is not possible, or if it is, how to do it. Thanks, Brian. ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using 'rdr' on outbound connections

2005-09-15 Thread Brian Candler
through your FreeBSD router. As I said before, I've demonstrated to myself that rdr works when the traffic is inbound from another machine. Regards, Brian. ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Using 'rdr' on outbound connections

2005-09-15 Thread Brian Candler
om any to any port 25 -> 127.0.0.1 port 25 and still no redirection takes place: # telnet psg.com 25 Trying 147.28.0.62... Connected to psg.com. Escape character is '^]'. 220 psg.com ESMTP Exim 4.50 Thu, 15 Sep 2005 11:12:56 + Regards, Brian.

Using 'rdr' on outbound connections

2005-09-15 Thread Brian Candler
connections. (I thought of putting the untrusted users in a jail(8) and having the trusted SMTP server outside, bound to a different IP. But at the moment the untrusted users are locked up using Apache mod_chroot which doesn't know about jails; I would have to write a mod_jail) Any

Re: Fwd: Fwd: Dual-feed: PF setup troubles

2005-08-17 Thread Brian
iel ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]" RC? Coulda sworn we were only at beta2 publicly.. Brian ___ freebsd-p

Re: RFC: if_bridge

2005-05-31 Thread Brian Fundakowski Feldman
On Wed, Jun 01, 2005 at 11:58:49AM +1200, Andrew Thompson wrote: > On Tue, May 31, 2005 at 07:48:16PM -0400, Brian Fundakowski Feldman wrote: > > On Tue, May 31, 2005 at 11:25:54AM +1200, Andrew Thompson wrote: > > > Hi, > > > > > > I am looking for tester

Re: RFC: if_bridge

2005-05-31 Thread Brian Fundakowski Feldman
e is largely not productionable on FreeBSD thanks to a locking versus IPL model being used in the kernel versus the if_bridge(4) code having been structured for IPL. I very much like this far more featureful and cleaner bridging implementation; it would benefit from implementing a locking strateg

Simple configuration

2005-04-25 Thread Brian John
s now and so far it just doesn't seem to be working. I spent a lot of time reading the manual and looking up stuff on Google but it seems everyone else's uses are much more complex than mine. Attached is my pf.conf. Can anyone help me out? Thanks! /Brian # $FreeBSD: src/etc/pf