Hi to all.
Question :
Is it possible to make a bridge with box OBSD that it to do traffic
shaping ?
In the 6.9 FAQ tthere is a "Filtering on a bridge", but there is the
possibility of
"Traffic shaping on a bridge" ? ( only traffic shaping )
( I would to make this :
By the way, I think a lot of you should start using isakmpd -a
and ipsecctl and ipsec.conf more. It is a better way to use Ipsec.
Check out the man pages. And when you find weaknesses or things
not yet written, mail hshoexer@ and prod him to complete it ;-)
Thanks.
if it's not the sysctl, can gateway1 ping client2 || gateway2 ping client1 ?
no
or client1 ping 192.168.2.1 || client2 ping 192.168.2.2 ?
yes
also, client1 can't ping 192.168.2.2 || client2 can't ping 192.168.2.1.
jared r r spiegel wrote:
On Thu, Oct 13, 2005 at 10:36:27PM -0500, Josh Webb wrote:
from client1:
Reply from 192.168.1.1: Destination host unreachable.
from client2:
Reply from 192.168.3.1: Destination host unreachable.
I'm sure it's some detail I'm missing, but I'm stumped.
sudo sysctl -w
On Thu, Oct 13, 2005 at 10:36:27PM -0500, Josh Webb wrote:
>
> I'm sure it's some detail I'm missing, but I'm stumped.
if it's not the sysctl, can gateway1 ping client2 || gateway2 ping client1 ?
or client1 ping 192.168.2.1 || client2 ping 192.168.2.2 ?
On Thu, Oct 13, 2005 at 10:36:27PM -0500, Josh Webb wrote:
>
> from client1:
> Reply from 192.168.1.1: Destination host unreachable.
>
> from client2:
> Reply from 192.168.3.1: Destination host unreachable.
>
> I'm sure it's some detail I'm missing, but I'm stumped.
sudo sysctl -w net.inet.ip
On Thu, Oct 13, 2005 at 11:15:51AM -0400, Andrew Atrens wrote:
>
> Not sure what these 'errno 209's are about either :('
i think i saw those in 3.7 and didn't have them affect anything
i was doing adversely, at least noticably so...
they aren't showing in 3.8/oct.2 ( or sep27 )
> # ipseca
I am attempting to set up a test VPN, using two OpenBSD 3.7 systems as
gateways, and two WinXP clients.
The addressing scheme is as follows
client1 - ip:192.168.1.2 default gateway:192.168.1.1
gateway1
le1 - 192.168.2.1
le2 - 192.168.1.1
gateway2
le1 - 192.168.2.2
le2 - 192.168.3.1
clien
Hello,
I got a pci wireless yesterday. After the
installation, the system reported that the following
message:-
rtw0 at pci0 dev 8 function 0 "Realtek 8185" rev 0x20:
irq 11
rtw0: ver RTL8185,
rtw0: could not recall EEPROM in 1us
rtw0: could not recall EEPROM in 1us
Does this mean that
Quoth J Moore
[snip]
>And I'm suggesting that trying to be an expert in everything is not a
realistic goal... why pick up a scalpel at all (to "haul your butt out
of the fire") if your neighbor has invested years in becoming a thoracic
surgeon? If surgery is required, I would choose to let the
J Moore wrote:
> On Thu, Oct 13, 2005 at 07:47:48AM -0400, the unit calling itself Nick
> Holland wrote:
>
>>> Not quite sure what point you're trying to make here... are you
>>> advocating that one develop expertise in all areas to become totally
>>> self-sufficient? If so, I suppose you are all
On Thu, Oct 13, 2005 at 07:47:48AM -0400, the unit calling itself Nick Holland
wrote:
>> Not quite sure what point you're trying to make here... are you
>> advocating that one develop expertise in all areas to become totally
>> self-sufficient? If so, I suppose you are all at once: thoracic
>> s
On Thu, Oct 13, 2005 at 04:07:00PM -0600, Theo de Raadt wrote:
> > Even though the card is detected, I'm not seeing any boost in
> > IPsec performance.
>
> > Cpu is a Geode1100 - doing 10Mb/s IPsec has it maxed out :)
>
> The cpu is unable to feed the crypto card fast enough.
>
> You would think
On 2005-10-11 23:58:27 +0200, Joachim Schipper wrote:
> DRBD is RAID-1, actually (with n-way replication under development last
> time I checked). I assume that was just a typo. ;-)
I just listend to a talk about v8. Seems quite production ready. :-)
You can get 3-way replication with DRDB commer
On 2005-10-13 07:15:26 -0800, Szechuan Death wrote:
> there's nothing I care about in Taiwan enough to do so. Alternately,
Then stop buying anything manufactured in Taiwan (or China).
HTH. HAND.
Martin
--
http://www.tm.oneiros.de
On 10/13/05, Theo de Raadt <[EMAIL PROTECTED]> wrote:
> OK, I'm getting tired of this.
You must have been tired for some time as you haven't committed jack
shit for a long time now...
> You think someone is going to help you now?
I got used to the fact that noone helps me from the openbsd team.
--On 14 October 2005 09:02 +1000, Dave Harrison wrote:
Here's my problem, I have a remote machine that has two links, one
is high bandwidth but has bad latency, the other has low bandwidth
but good latency.
pf.conf(5), look at 'route-to' and 'reply-to'. Use PF rules to send
ssh over the fast l
--On 13 October 2005 17:50 -0400, Andrew Atrens wrote:
I know in FreeBSD/DragonFly I have a couple of tools to check to
see if it's being engaged - hifnstats and cryptostats
(in /usr/src/tools/tools/crypto), but I'm not sure if the equivalent
exists for OpenBSD.
You'll see something in the int
hmm, on Thu, Oct 13, 2005 at 07:15:26AM -0800, Szechuan Death said that
> Yup, looks like. Sorry, Charlie. Take a flight to Taipei and snuff
> a spammer or scriptkiddie, if everybody does that TW can be put back on
> the "Civilized Net Nation" list. Arguments that US contains the most
> spam lor
Stuart Henderson wrote:
> --On 14 October 2005 08:32 +1000, Dave Harrison wrote:
>
>> Here's my problem, I have a remote machine that has two links, one is
>> high bandwidth but has bad latency, the other has low bandwidth but
>> good latency.
>
> pf.conf(5), look at 'route-to' and 'reply-to'. Us
--On 14 October 2005 08:32 +1000, Dave Harrison wrote:
Here's my problem, I have a remote machine that has two links, one is
high bandwidth but has bad latency, the other has low bandwidth but
good latency.
pf.conf(5), look at 'route-to' and 'reply-to'. Use PF rules to send ssh
over the fast
Hi all,
Here's my problem, I have a remote machine that has two links, one is
high bandwidth but has bad latency, the other has low bandwidth but good
latency.
I need two VPN tunnels running between these machines, but one over each
link as below. The reasons why are due to the traffic I need to
> Even though the card is detected, I'm not seeing any boost in
> IPsec performance.
> Cpu is a Geode1100 - doing 10Mb/s IPsec has it maxed out :)
The cpu is unable to feed the crypto card fast enough.
You would think that doing crypto operations, especially 3DES
is a lot of work. And it is. B
Hello List, I have been trying to find some Unix based point of sale
systems for restaurants and retailers. Mostly independents, mom and
pops.
The only ones of interest I have been able to find are
www.bananahead.com (based on Linux) and www.viewtouch.com (based on
freebsd)
My goal is to install
Even though the card is detected, I'm not seeing any boost in
IPsec performance.
I'm getting 10Mb/s using 3des. The raw speed (no ipsec) of the
link is around 25Mb/s. This measured with netstrain.
Here's what dmesg says -
hifn0 at pci0 dev 13 function 0 "Hifn 7955/7954" rev 0x00: LZS 3DES ARC4
Am Donnerstag, 13. Oktober 2005 05:14 schrieben Sie:
> When i flip down the lcd of the computer, when i turn it up again i
> got a black screen with just a cursor blinking, my keyboard doesn't
> work.. the only way to get my computer back without restarting the
> system (using the power button, ca
Ok,
but, I want to use SCP too.
Thanks
2005/10/13, Bryan Irvine <[EMAIL PROTECTED]>:
> > I am with some problems when trying to compile libssh2 in OpenBSD 3.7,
> >
> > Somebody already qualified PHP + LIBSSH2 in the OpenBSD and could give
> > an aid to me? it follows below the errros!
>
> I rece
As you want everyone to look at this can help, you *should* probably remove
the blocking you have in place.
Just my $0.02 worth.
On 10/13/05, Han Boetes <[EMAIL PROTECTED]> wrote:
>
> And of course this message ended up in my spam-filter, and I'm not
> even going to tell it it was a mistake. =)
>
> so try to help each other and don't be a smartass...
OK, I'm getting tired of this.
You think someone is going to help you now?
No. We're going to delete your mail. We are going to utterly
ignore you from now on.
I do it all the time.
It is much easier to delete mail from people like you.
ok...
# dd if=/dev/zero of=/tmp/foo bs=32k count=1
1+0 records in
1+0 records out
32768 bytes transferred in 38.934 secs (8416183 bytes/sec)
# dd if=/tmp/foo of=/dev/null bs=32k count=1
1+0 records in
1+0 records out
32768 bytes transferred in 5.652 secs (57972389 b
the drunken belgian dude occupying my couch (wim) says I should ask you
guys to join us at Linux-Kongress at Hamburg University tomorrow. There
is a little exhibition with the congress and there is free admittance.
And we even have free 3.8 posters!
Just come to Hamburg University, main entrance
> I am with some problems when trying to compile libssh2 in OpenBSD 3.7,
>
> Somebody already qualified PHP + LIBSSH2 in the OpenBSD and could give
> an aid to me? it follows below the errros!
I recently went through this same thing. libssh wouldn't compile, ssh2
wouldn't install from pear, it was
On 13/10/05, Vitor Acioli <[EMAIL PROTECTED]> wrote:
> OK,
>
> I4m with this error: (./configure ) [ssh2]
>
> checking for libssh2_banner_set in -lssh2... no
> configure: error: libssh2 version >= 0.4 not found
Is your base system and ports in sync?
Regards
Edd
And of course this message ended up in my spam-filter, and I'm not
even going to tell it it was a mistake. =)
Szechuan Death wrote:
> Lars Hansson wrote:
>
> > Our ip addresses are assigned from TWNIC, even though we're not actually in
> > Taiwan, so that's probably why. The CIDR blocks in questio
Making, drinking tea and reading an opus magnum from Hunger:
[Charset ISO-8859-1 unsupported, filtering to ASCII...]
> Hi,
>
> we have a HP ProLiant DL320 G3 server and running OpenBSD/amd64 on it.
> The problem is with the Intel ICH6R SATA controller. The write speed
> is very slow:
>
> # dd if=
On Thu, Oct 13, 2005 at 11:20:50AM -0400, stan wrote:
> On Thu, Oct 13, 2005 at 04:50:48PM +0200, L?o Goehrs wrote:
> > Wust fetch the full sources, then go to /usr/src/usr.sbin/ospfd and
> > /usr/src/usr.sbin/ospfctl and make && make install :)
> >
> Thanks. That is a bit problematic as, the lo
Hi,
we have a HP ProLiant DL320 G3 server and running OpenBSD/amd64 on it.
The problem is with the Intel ICH6R SATA controller. The write speed
is very slow:
# dd if=/dev/zero of=/tmp/foo bs=32k count=1
1+0 records in
1+0 records out
32768 bytes transferred in 38.898 secs (8423881
On Thu, 13 Oct 2005 13:56:29 +0200, kami petersen wrote:
> good to hear! from the particular machine running generic do something
> like this:
> # dmesg | mail -s "HP Proliant ML350 G4 works OK" [EMAIL PROTECTED]
But of course ! - as soon as it will be bsd.mp and Dual Xeon showing up in
it.
Uwe
Making, drinking tea and reading an opus magnum from Eric Dillenseger:
> On Thu, Oct 13, 2005 at 01:56:29PM +0200, kami petersen wrote:
> > Uwe Dippel skrev:
> > >For some this might be boring, but for others encouraging:
> > >
> > >Box off-shelf as above boots properly with cd37.iso
> > >Broadcom
On Thu, Oct 13, 2005 at 01:56:29PM +0200, kami petersen wrote:
> Uwe Dippel skrev:
> >For some this might be boring, but for others encouraging:
> >
> >Box off-shelf as above boots properly with cd37.iso
> >Broadcom NC7761 Gigabit Server Adapter is recognized
> >LSI 53c1030 Duplex U320 is recognize
On Thu, Oct 13, 2005 at 04:50:48PM +0200, L?o Goehrs wrote:
> Wust fetch the full sources, then go to /usr/src/usr.sbin/ospfd and
> /usr/src/usr.sbin/ospfctl and make && make install :)
>
Thanks. That is a bit problematic as, the long version of what is going on
here is corporate made some chang
Hi Folks,
I'm running 3.7-stable and am trying to 'group' a compression
association with an esp association like so -
Not sure what these 'errno 209's are about either :('
# ipsecadm show
sadb_dump: satype ipcomp vers 2 len 14 seq 0 pid 0
errno 209: Unknown error: 209
sa: cpi 0x
Lars Hansson wrote:
Our ip addresses are assigned from TWNIC, even though we're not actually in
Taiwan, so that's probably why. The CIDR blocks in question is 203.65.244.0/22
and 203.65.248.0/22.
# cb findip 203.65.244.1 203.65.248.1
Netblock 203.64.0.0/14 is in country TW (TAIWAN)
Netblock 20
Wust fetch the full sources, then go to /usr/src/usr.sbin/ospfd and
/usr/src/usr.sbin/ospfctl and make && make install :)
Leo
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de stan
Envoyi : jeudi 13 octobre 2005 16:21
@ : OpenBSD general usage list
Cc :
On Thu, 13 Oct 2005 05:55:47 -0800
Szechuan Death <[EMAIL PROTECTED]> wrote:
> Nah, he's probably bouncing off my router. While I don't think he's
> running afoul of my OpenBSD pf-friendly auto-retrieval and aggregator
> for netblocks by country (http://www.sdeath.net/cb/, if anybody cares),
> in
On Thu, Oct 13, 2005 at 03:51:05PM +0200, Claudio Jeker wrote:
> On Thu, Oct 13, 2005 at 09:16:29AM -0400, stan wrote:
> > I'm trying to set up ospf using the zebra port on a 3.7 machine. It appears
> > that (at least one) of my problems is that the router I need to peer with
> > is sending a MTU o
matt valdes wrote:
$ telnet www.sdeath.net 80
Trying 64.4.231.19...
Connected to www.sdeath.net.
Escape character is '^]'.
Try a traceroute or tcptraceroute
Nah, he's probably bouncing off my router. While I don't think he's
running afoul of my OpenBSD pf-friendly auto-retrieval and aggregat
On Thu, Oct 13, 2005 at 09:16:29AM -0400, stan wrote:
> I'm trying to set up ospf using the zebra port on a 3.7 machine. It appears
> that (at least one) of my problems is that the router I need to peer with
> is sending a MTU of 0. I'm getting this error message:
>
> recv_dd_description: invalid
Lars Hansson wrote:
For those who didn't know, the MetaStore is at the following link:
http://www.sdeath.net/obsdstore
Maybe it's just me but I've never been able to connect to that site:
$ telnet www.sdeath.net 80
Trying 64.4.231.19...
telnet: connect to address 64.4.231.19: Connection
On 10/11/05, Roger Neth Jr <[EMAIL PROTECTED]> wrote:
> When I access help it gives me Not Found; The specified URL could not be
> loaded.
> Any more ideas is appreciated.
Edit this file:
/etc/gnucash/config
Add this line:
doc-path=/usr/local/share/gnucash/doc/html
See if that helps.
--
Terr
On Wed, Oct 12, 2005 at 11:32:07PM -0400, stan wrote:
> I have a couple of OpenBSD 3.7 machines that I use for a firewall/gateway
> to a particulare network at work using carp. I had these machines set up to
> advertise the route to this network using routed (RIP). Today some changes
> were amde to
I'm trying to set up ospf using the zebra port on a 3.7 machine. It appears
that (at least one) of my problems is that the router I need to peer with
is sending a MTU of 0. I'm getting this error message:
recv_dd_description: invalid MTU, neighbor ID 170.85.115.1
from ospfd. I did a bit of Googli
> For those who didn't know, the MetaStore is at the following link:
>
> http://www.sdeath.net/obsdstore
Maybe it's just me but I've never been able to connect to that site:
$ telnet www.sdeath.net 80
Trying 64.4.231.19...
telnet: connect to address 64.4.231.19: Connection timed out
---
Lars Han
OK,
I4m with this error: (./configure ) [ssh2]
checking for libssh2_banner_set in -lssh2... no
configure: error: libssh2 version >= 0.4 not found
..
2005/10/12, James F. Wilkus <[EMAIL PROTECTED]>:
> Vitor Acioli said:
> > I am with some problems when trying to compile libssh2 in OpenBSD 3.7,
New stuff has been added. Thanks to those who provided me information
on the Plextor PX-716A, the RouterBoard rb44, the Zonet ZEW2500p, and
the SysKonnect SK-98xx series.
A problem with Internet Explorer (naw, really?) that was reported to me
as preventing comments from being added has been fixe
Hi
A question ?
If I install openbsd in a virtual disk (Vmware 5), configure it and
later I create a image of virtual disk with dd.
Then with this image I use dd again for install openbsd in a real disk.
Thanks works ?
Somebody has done it?
thanks in advance
roberto
Hi,
does anybody has success in installing OBSD3.7 on this machine?
Every time when i try to start installation it hungs up.
This time it hunged up on:
"INTEL 82801FR SATA" rev 0x03: DMA,channel 0 wired to compability,
channel 1 wired to compability.
Any sugestions?
Best regards,
p.
Uwe Dippel skrev:
For some this might be boring, but for others encouraging:
Box off-shelf as above boots properly with cd37.iso
Broadcom NC7761 Gigabit Server Adapter is recognized
LSI 53c1030 Duplex U320 is recognized
The 146 GB 15k drive is recognized
I'll come back later as usual when the p
J Moore wrote:
>> Anyway...you HAVE to spend time getting to know whatever RAID solution
>> you are using. Practice, practice, practice!!! Try swapping drives --
>> what happens if you swap a drive with a larger drive? smaller drive?
>> how does it indicate errors? etc... In short: never trus
For some this might be boring, but for others encouraging:
Box off-shelf as above boots properly with cd37.iso
Broadcom NC7761 Gigabit Server Adapter is recognized
LSI 53c1030 Duplex U320 is recognized
The 146 GB 15k drive is recognized
I'll come back later as usual when the problems start to sho
> Andreas Bihlmaier <[EMAIL PROTECTED]> wrote:
> > I know of two solutions:
> > 1.)The best thing to do is switching to a PTY (alt + ctrl + F1)
> > and then pulling down the lid, after opening it again go back
> > to you X terminal (alt + ctrl + F1)
> >
> > 2.) If apm IS enabled, Disable apm (perh
David Purdue wrote:
> OpenBSD Admin wrote:
>
X2100
X4100
X4200
>>>
>
> I think Sun is going to be providing one of these as a Sunray server
> for the AUUG 2005 conference (http://www.auug.org.au) - although the
> box they supply may turn out to be a v40z.
>
> If it is one of th
I hope you did not mixed up pre-release ports (for 3.8) with -current ones?
Make sure you have right ports for the right system.
On Thursday 13 October 2005 13:21, you wrote:
> Hi there!
> I am new and hope that somebody will help me!
> Until now I didn't have any problem with installing ports but
Pavel M. Ivanchev wrote:
I am using OpenBSD 3.7 and updated the port tree and try to install
DB. Just the port tree is cvs version.
I have installed one-two monts ago in the same way the same things but
with previous version ot db and again ot Openbsd 3.7 .
Now the difference is just that there
This message is to inform you of a change of your details on our
newsletter database
You are currently member of the following newsletters:
No Lists
The information on our system for you is as follows:
Email : misc@openbsd.org
Send HTML email : Yes
If this is not correct, please upd
ober wrote:
Do you guys prefer --with-transarc paths?
So let me know as I am writing it as we speak.
The goal is to allow you to install a single server AFS cell with a
single script. I use it the old version on Linux fine.
However would like feedback for transarc/non transarc paths.
I'd pre
I am using OpenBSD 3.7 and updated the port tree and try to install DB.
Just the port tree is cvs version.
I have installed one-two monts ago in the same way the same things but
with previous version ot db and again ot Openbsd 3.7 .
Now the difference is just that there is new patch in the versi
Then the redundant IP should be on the carp interface
Are you going to use carp on the external (public) interface ?
In order to use failover, yes.
We are moving from single to dual 3.7 FW's with CARP. The external
interface has a lot of binated aliases and I am unsure if they are to go
i
Are you using a current version of OpenBSD?
Lio
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de Pavel M. Ivanchev
Envoyi : jeudi 13 octobre 2005 13:22
@ : misc@openbsd.org
Objet : Install Berkeley DB both v3 and v4 from ports problem on Openbsd 3.7
Hi t
Then the redundant IP should be on the carp interface
Leo
-Message d'origine-
De : Per olof Ljungmark [mailto:[EMAIL PROTECTED]
Envoyi : jeudi 13 octobre 2005 10:40
@ : Lio Goehrs
Cc : misc@openbsd.org
Objet : Re: aliases on CARP interface
> Are you going to use carp on the external (pu
Are you going to use carp on the external (public) interface ?
In order to use failover, yes.
We are moving from single to dual 3.7 FW's with CARP. The external
interface has a lot of binated aliases and I am unsure if they are to go
into hostname.carpN or stay as they are in hostname.ext_i
Are you going to use carp on the external (public) interface ?
Lio
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de Per olof
Ljungmark
Envoyi : jeudi 13 octobre 2005 10:00
@ : misc@openbsd.org
Objet : aliases on CARP interface
We are moving from single
We are moving from single to dual 3.7 FW's with CARP. The external
interface has a lot of binated aliases and I am unsure if they are to go
into hostname.carpN or stay as they are in hostname.ext_if.
Could someone please enlighten me? Thanks.
Thanks
-Ober
On Thu, 13 Oct 2005, James Wright wrote:
Ok here is the first shot at this.
I tested it, and it appears to work.
However since I dont have a dedicated box for it just yet, it most likely
has some bugs.
Please review it before just running it.
It is most likely broken in some way
I built this on 3.7
I have only built the client on 3.8 and I was using the
sysname option to point to the 3.7 config.
-Ober
On Thu, 13 Oct 2005, James Wright wrote:
Ok here is the first shot at this.
I tested it, and it appears to work.
However since I dont have a dedicated box for it just
On 13/10/05, James Wright <[EMAIL PROTECTED]> wrote:
> This patch keeps runntp from being set on a machine already
> running an ntpd.
might also want to call afsd with "-nosettime" - there is talk on the
openafs dev lists about just killing that subsystem off entirely as
there is no shortage of nt
On Wed, Oct 12, 2005 at 08:28:05PM +1000, OpenBSD Admin wrote:
> X2100
> X4100
> X4200
i'll have a look at a prototype next week. but i'm not sure if i have
enough time to fully test it. but i'll do my best and bootstrap the
amd64 port.
reyk
--
/* .vantronix|secure systems - (research & develop
>Ok here is the first shot at this.
>I tested it, and it appears to work.
>However since I dont have a dedicated box for it just yet, it most likely
>has some bugs.
>
>Please review it before just running it.
>It is most likely broken in some way that only testing will find.
>
>http://www.linbsd.o
Andreas Bihlmaier <[EMAIL PROTECTED]> wrote:
> I know of two solutions:
> 1.)The best thing to do is switching to a PTY (alt + ctrl + F1)
> and then pulling down the lid, after opening it again go back
> to you X terminal (alt + ctrl + F1)
>
> 2.) If apm IS enabled, Disable apm (perhaps even NOT s
79 matches
Mail list logo
