can you please help me out here ..
below is my pf.conf file which allow all ourbound traffice , now i want it to
only allow specific protocols like only http,https,ftp,.
need a hint.
intif="epic0"
intad="10.0.0.0/16"
extif="fxp0"
extad="192.168.0.6/32"
chadd="10.0.0.1/32"
allif="{$extif, in
Rico Secada <[EMAIL PROTECTED]> writes:
> Date: Mon, 31 Jul 2006 01:37:46 +0200
> From: Rico Secada <[EMAIL PROTECTED]>
> To: misc@openbsd.org
> Subject: OpenBSD's own compiler
...
> I am curently studying the Ada programming language and I read about the
> different safety demands, which has been
Darrin Chandler wrote:
> On Sun, Jul 30, 2006 at 11:11:17PM +0200, Rickard Dahlstrand wrote:
>
>> Hi,
>>
>> With the rulesset:
>> nat on sis0 from !(sis0) -> (sis0)
>> rdr on sis0 inet proto udp from any to any port = 12560 -> 192.168.1.10
>> port 1
>> rdr on sis0 inet proto udp from any to
On 7/30/06, jared r r spiegel <[EMAIL PROTECTED]> wrote:
anywhere you can put a comma, you can also leave it out; pfctl(8)
parses the rule the same.
--
I had commas give me problems around 3.7.
But you're right, it shouldn't give problems anymore.
> >tableaddr-list = tableaddr-list [ "," ] tableaddr-spec | tableaddr-spec
> >
> >you need to seperate with "," to make that rule work.
just to touch base on that, the brackets signify
the comma is optional. ( not the first time i've seen a sugestion
that someone needed to add/remove a comma
I am setting up a Samba fileserver on obsd 3.9-stable
I noticed that up until obsd3.3, in section 11 of the faq, it
recommended
increasing bufcachepercent for fileservers with lots of free memory.
Now there is no section 11 at all in the faq.
For a box that is basically only going to do Samba,
An OpenBSD C compiler from scratch, AFAIK, is not an idea of the
project. Today, I read about Theo's interest in Plan 9' C compiler.
But, there are license problems, so, that is not possible; at least,
right now.
A source tree in Ada, I think, would be safer. But maybe it is not as
portable/well-
Hi
I am curently studying the Ada programming language and I read about the
different safety demands, which has been made a standard, upon compilers.
I read about how Ada is been used in all areas where safety is of great issue,
and about how it's being used in rockets, Boing Airplanes and so
On Sun, Jul 30, 2006 at 12:56:21AM +0200, the unit calling itself Rogier
Krieger wrote:
> >I guess that squelches plans for a SATA HDD as well :(
>
> If by that you mean you expect OpenBSD to not support SATA HDDs, I can
> happily assure you you're wrong. OpenBSD supports various SATA
> controll
On Sun, Jul 30, 2006 at 10:04:32PM +0200, Matthias Kilian wrote:
> Hi,
>
> has anyone tested the Creative SoundBlaster Live! 24Bit USB on
> OpenBSD or can recommend a similar (or better) device?
I'm using the Creative Audigy 2 NX (USB) and the sound quality is great.
You have to compile a custom
On Sun, Jul 30, 2006 at 11:11:17PM +0200, Rickard Dahlstrand wrote:
> Hi,
>
> With the rulesset:
> nat on sis0 from !(sis0) -> (sis0)
> rdr on sis0 inet proto udp from any to any port = 12560 -> 192.168.1.10
> port 1
> rdr on sis0 inet proto udp from any to any port = 12561 -> 192.168.1.10
> p
Jason Dixon wrote:
> On Jul 30, 2006, at 10:58 AM, Srebrenko Sehic wrote:
>
>> ciss(4) has no bio(4) support, but marco@ might be working on it.
>> Donate a ciss(4) compatible controller to speed things up.
>>
>> On 7/30/06, Robert Urban <[EMAIL PROTECTED]> wrote:
>>> Hello List,
>>>
>>> can someon
Hi,
With the rulesset:
nat on sis0 from !(sis0) -> (sis0)
rdr on sis0 inet proto udp from any to any port = 12560 -> 192.168.1.10
port 1
rdr on sis0 inet proto udp from any to any port = 12561 -> 192.168.1.10
port 10001
(and pass quick on all if, no keep state)
I get these errors when running
I am starting to see alot of these on 'dmesg' and wondering what
they mean and how to troubleshoot. The network appears to be
functions fine though.
I am running 3.8-stable with a generic kernel.
pfr_detach_table: refcount = 0.
pfr_detach_table: refcount = 0.
pfr_detach_table: refcount = 0.
pf
Hi,
has anyone tested the Creative SoundBlaster Live! 24Bit USB on
OpenBSD or can recommend a similar (or better) device?
And for that Creative thing: is the wave table synthesizer really
onboard, or is it just some bogus thing supported by windows drivers
only?
TIA
Ciao,
Kili, tired of
Thanks. I found the issue. I neglected to copy over the new source for 3.9.
So the kernel I was compiling was actually 3.7.
So useland was 3.9 but kernel 3.7.
On 7/30/06, Jason Dixon <[EMAIL PROTECTED]> wrote:
>
> On Jul 30, 2006, at 2:59 PM, drkfiber wrote:
>
> > I have just used the flashdist sc
On Jul 30, 2006, at 2:59 PM, drkfiber wrote:
I have just used the flashdist script to install OpenBSD 3.9 to a
Soekris
net4801. Everything works great on in aside from pf.
whenever I try to load a ruleset it errors out with "pfctl:
DIOCCLRIFFLAG:
Operation not supported by device" I have tr
I have just used the flashdist script to install OpenBSD 3.9 to a Soekris
net4801. Everything works great on in aside from pf.
whenever I try to load a ruleset it errors out with "pfctl: DIOCCLRIFFLAG:
Operation not supported by device" I have tried this
with my standard ruleset and a simplified "p
On Jul 30, 2006, at 10:58 AM, Srebrenko Sehic wrote:
ciss(4) has no bio(4) support, but marco@ might be working on it.
Donate a ciss(4) compatible controller to speed things up.
On 7/30/06, Robert Urban <[EMAIL PROTECTED]> wrote:
Hello List,
can someone tell me what the current state of bioct
ciss(4) has no bio(4) support, but marco@ might be working on it.
Donate a ciss(4) compatible controller to speed things up.
On 7/30/06, Robert Urban <[EMAIL PROTECTED]> wrote:
Hello List,
can someone tell me what the current state of bioctl support is for
the ciss driver? I've got a ProLiant
> i am structuring my first firewall server. I am having hard
times with
> the following building a tables that holds every IPv4 address but
> excludes a given range.
>
> My initial idea was:
>
> table { 0/0 !x.b.c/24 }
>
>
> But it is not acceptable.
>
> How would you handle that?
By default,
So, may i get your words for:
table { any !x.b.c/24 }
Thanks.
On 7/30/06, Jason Dixon <[EMAIL PROTECTED]> wrote:
On Jul 30, 2006, at 3:50 AM, Gustavo Rios wrote:
> Hey folks,
>
> i am structuring my first firewall server. I am having hard times with
> the following building a tables that hol
Hello List,
can someone tell me what the current state of bioctl support is for
the ciss driver? I've got a ProLiant Dl380 G2 with a "Compaq Smart Array 5i"
running vanilla 3.9 and there seems to be no support for bioctl.
thanks,
Robert Urban
On Jul 30, 2006, at 3:50 AM, Gustavo Rios wrote:
Hey folks,
i am structuring my first firewall server. I am having hard times with
the following building a tables that holds every IPv4 address but
excludes a given range.
My initial idea was:
table { 0/0 !x.b.c/24 }
But it is not acceptable
Dear Diehm,
thanks a lot for your time and cooperation. Best regards.
I would like a rule that match every single IPv4 address, except for a
given range.
I read somewhere 0/0 is not accepted, so:
table persists { 0/0 !a.b.c/24 }
should not work by pf. So, how could i have it implemented anot
Hey folks,
i am structuring my first firewall server. I am having hard times with
the following building a tables that holds every IPv4 address but
excludes a given range.
My initial idea was:
table { 0/0 !x.b.c/24 }
But it is not acceptable.
How would you handle that?
Thanks in advance.
26 matches
Mail list logo
