Re: How to deal with DDoS ?

Hi, have you tried to set some tuning options in pf.conf & sysctl.conf ? eg: for sysctl.conf: net.inet.ip.ifq.maxlen=512 # Maximum allowed input queue length (256*number of physical interfaces) kern.bufcachepercent=90# Allow the kernel to use up to 90% of the RAM for cache (default 10%)

Re: Router performance - high BDP and low transfer speeds

Hi, have you tried timeout and optimization settings in PF ? try : set optimization high-latency or set optimization conservative also try set timeout . and watch the limits of state tables and set the properly if needed. Regards On Sat, Jan 7, 2012 at 5:17 AM, Graham Allan wrote: > Hi,

Re: UTM appliance

something like pfSense ! On Sat, Dec 31, 2011 at 9:13 AM, bofh wrote: > I don't think you're getting the point. > > *WHAT* are you looking for? UTM means different things to different > people. If all you want is a packet firewall and NAT with URL > caching, depending on how many people you're

Re: UTM appliance

of course there is no perfect HW for every functionality of UTM. l'm looking for average system applicable in small/medium range business requirement for Firewalling,NAT, Caching,... I understand that no HW brand/model is completely perfect, but there must be a acceptable solutions from suppliers.

Re: UTM appliance

So, what ? where is the problem ? On Fri, Dec 30, 2011 at 7:44 PM, Henning Brauer wrote: > * Hassan Monfared [2011-12-30 10:18]: > > I wanna choose a hardware appliance to make a UTM based on OpenBSD, does > > anybody have recommendation? > > yes, I have one. > > st

UTM appliance

Hi, I wanna choose a hardware appliance to make a UTM based on OpenBSD, does anybody have recommendation? Regards, Hassan H. Monfared

Re: PF concurrent connection

yes, maybe grepping Public_IP solve the problem On Mon, Dec 12, 2011 at 3:17 PM, Kapetanakis Giannis < bil...@edu.physics.uoc.gr> wrote: > On 12/12/11 13:28, Hassan Monfared wrote: > >> pfctl -ss | grep ESTABLISHED | wc -l >> >> > This might count them doub

Re: PF concurrent connection

pfctl -ss | grep ESTABLISHED | wc -l On Mon, Dec 12, 2011 at 1:07 PM, co...@tetrachina.com wrote: > Hi, > OpenBSD PF as firewall , and i generated almost 150,000 states ( > use the commandline check: pfctl -ss|wc -l), > > do the states mean concurrent connection ? if not , how to get th

Re: Question: c_config.sh and symon.conf on symon for OpenBSD PF

SD machine > with symon installed. > I am in the midst doing the configuration of symux, syweb and rrdtool on > another machine(linux) > Do you have the sample configuration of symux, syweb and rrdtool? > > Thank you in advance. > > Regards, > Stefan > > --

Re: Question: c_config.sh and symon.conf on symon for OpenBSD PF

sure, I can send my sample configuration to you if you needed. On Wed, Oct 26, 2011 at 12:09 PM, Stefan N wrote: > Hi Hassan, > > Okay thanks. I will try again. > > Regards, > Stefan > > ------ > *From:* Hassan Monfared > *To:* Stefa

Re: Question: c_config.sh and symon.conf on symon for OpenBSD PF

Hi, Stefan, there is no need to any change other than symon.conf. its enough. On Wed, Oct 26, 2011 at 6:59 AM, Stefan N wrote: > Hi Guys, > > This is the first time I tried to install symon on OpenBSD and my main goal > is to monitor OpenBSD interface,disk,cpu as well as PF statistic. > As per s

Re: Need suggestion about Firewall Reporter for OpenBSD PF

try symon/syweb/rrdtool I use it and it's perfect i think. On Fri, Oct 14, 2011 at 3:35 AM, Stefan N wrote: > Hi Erling, > > Thanks. I will try and test it. > > Regards, > Stefan > > From: Erling Westenvik > > To: Stefan N > Sent: > Friday, October 14, 2011 7:4

Re: Blocking Trojans with PF

finally I agree ;). but referring to the right document is not bad Idea ;) . I do it myself if I can. :) objective, not subjective ;) Regards, On Mon, Sep 26, 2011 at 1:23 PM, Tomas Bodzar wrote: > On Mon, Sep 26, 2011 at 10:16 AM, Hassan Monfared > wrote: > > thanks for clear answ

Re: Blocking Trojans with PF

better with the full explanation of TCP handshake process, and how does > a statefull firewall fits into picture. > > On Mon, 26 Sep 2011 11:26:54 +0330 > Hassan Monfared wrote: > > > Hi again, > > all 6 webservers are behind FW , > > doesn't "block in on $int

Re: Blocking Trojans with PF

is on the same machine as webserver -you can safely > use the ruleset i wrote. > > if not - you should have block in on $intif > > On Mon, 26 Sep 2011 10:40:09 +0330 > Hassan Monfared wrote: > > > thank you, > > is it right blocking connection initiation from inside us

Re: Blocking Trojans with PF

thank you, is it right blocking connection initiation from inside using rule something like: block in on $if flags S/SA am I right ? Regards, Hassan H. Monfared On Mon, Sep 26, 2011 at 10:18 AM, Gregory Edigarov wrote: > On Mon, 26 Sep 2011 09:48:20 +0330 > Hassan Monfared wrote: &g

Blocking Trojans with PF

Hi, Any idea for denying connection initiation to outside from any web server protected by PF? ( wanna block Trojans and reverse connections while incomming http traffic is allowed) . Regards, Hassan H. Monfared

Re: OpenBSD 5.0 PF and Syn attak

Enjoyed the story, by the way CARP & pfsync seems right solution for us today. 2011/9/25 E
ukasz Czarniecki > W dniu 2011-09-25 17:50, Pui Edylie pisze: > > Hi Everyone, > > > > I am trying to put a pair of OBSD box together to provide Syn, UDP and > > ICMP flood protection with pretty graphs. >

Re: Are there any virtualization solutions for OpenBSD? (!important: no package from ports!)

http://en.wikipedia.org/wiki/Comparison_of_platform_virtual_machines ( look at Host OS column) On Mon, Sep 19, 2011 at 11:30 AM, Hassan Monfared wrote: > I haven't tried Xen on OpenBSD as host, but Xen is open source and there > was subject to correction of a lock-up bug in OpenBSD

Re: Are there any virtualization solutions for OpenBSD? (!important: no package from ports!)

I haven't tried Xen on OpenBSD as host, but Xen is open source and there was subject to correction of a lock-up bug in OpenBSD to support Xen Hosting. NetBSD supports Xen Hostig On Mon, Sep 19, 2011 at 11:03 AM, Tomas Bodzar wrote: > On Mon, Sep 19, 2011 at 8:12 AM, Hassan Monfared

Re: Are there any virtualization solutions for OpenBSD? (!important: no package from ports!)

why don't you try xen ? The XenB. hypervisor, the powerful open source industry standard for virtualization, offers a powerful, efficient, and secure feature set for virtualization of x86, x86_64, IA64, ARM, and other CPU architectures. visit Xen at www.Xen.org On Sun, Sep 18, 2011 at 2:10 PM, Tom

Re: About spam (Re: Westpac Account Message)

I agree completely, I'm volunteer too cleansing and moderating emails queue from none-subscribers. also spam reporting form is good idea I think. good idea. On Mon, Sep 5, 2011 at 9:09 AM, Javier Bassi wrote: > On Mon, Sep 5, 2011 at 1:09 AM, Hassan Monfared > wrote: > >

Re: You have 1 new message in \\\'Inbox\\\'

don't spam please ! On Sun, Sep 4, 2011 at 8:49 PM, Speakeasy.net wrote: > Dear Valued Customer, > > You Have One New Security Message Alert > > Log In into your account and resolve this problem. > > Click here to Log in > > Regards, > > The Speakeasy Administration Team > > > *

Re: Westpac Account Message

don't spam please!! On Mon, Sep 5, 2011 at 1:48 AM, Westpac Online Banking < accou...@westpac.com.au> wrote: > - This mail is in HTML. Some elements may be ommited in plain text. - > > As a result of too many incorrect attempts to access and Sign-in failures. > Your Westpac Online banking has be