Richard P. Koett wrote:
> I installed -current (i386), downloaded src & ports, and installed
> poptop-1.3.0 and pptp-1.7.1p0.
> Trying to establish a pptp connection fails, and the following is
> logged in /var/log/daemon:
>
> Oct 5 13:31:58 gateway ppp[25094]: Warning:
I'd appreciate some advice to sort out a problem using poptop-1.3.0
from ports. If there is a more appropriate forum for asking about
this, please excuse my post and point me to the right place.
I installed -current (i386), downloaded src & ports, and installed
poptop-1.3.0 and pptp-1.7.1p0. I com
Stuart Henderson wrote:
> On 2008/01/29 09:20, Richard P. Koett wrote:
>> The audit I was shown stated that vulnerable versions are prior to
>> "1.1.4-bs". These version numbers seem to follow a pattern I don't
>> understand. Would I be correct in inte
Joel Sing wrote:
> Note that that exploit is for versions earlier than 1.1.4.b3 - the
> previous ports version was 1.1.4.b4, which one would presume is
> patched for this vulnerability. Obviously this assumes that no other
> exploits have been found since version 1.1.4.b4.
The audit I was shown st
Eduardo Tongson wrote:
> Did you look at ports if it has patch applied for the vulnerability?
> The administrator of that OpenBSD machine should already be aware the
> installed software. It is not an automagical secure system after all.
>
I don't mean to imply that I expect ports to be automagica
Axton wrote:
> On Jan 28, 2008 11:05 PM, Richard P. Koett <[EMAIL PROTECTED]> wrote:
>> Dear Misc:
>>
>> I've been asked to look into an issue on a i386 system running
>> OpenBSD 3.7. I realize this is rather out-of-date, so feel free to
>>
Dear Misc:
I've been asked to look into an issue on a i386 system running OpenBSD 3.7. I
realize this is rather out-of-date, so feel free to ignore this question if
it's inappropriate...
The machine is running poptop-1.1.4.b4p1. Someone did an audit and declared
"PoPToP servers prior to version 1
I'm building a firewall/router for a small private network. The
external network interface uses dhclient. The internal interface
will run dhcpd.
Rather than hard-coding 'option domain-name-servers' in dhcpd.conf
I'd like dhcpd to pass whatever nameservers were received by the
dhclient running on t
Stuart Henderson wrote:
> On 2006/10/27 09:44, Richard P. Koett wrote:
>> I received some very useful advice from this list a short while ago
>> when I was having problems with throughput on a Soekris firewall.
>> The issue turned out to be a problem with Ethernet autoselect a
I received some very useful advice from this list a short while ago
when I was having problems with throughput on a Soekris firewall.
The issue turned out to be a problem with Ethernet autoselect and
I thought I had worked around it effectively. The problem has now
reappeared, however, and I would
A huge thank you to all who offered advice on my network problem. It
appears that the problem has been fixed by changing hostname.sis0
from "dhcp NONE NONE NONE" to "dhcp media 10baseT".
Previous output from ifconfig showed:
sis0: flags=8843 mtu 1500
media: Ethernet autoselect (100baseTX fu
Stuart Henderson wrote:
> On 2006/10/14 00:56, Richard P. Koett wrote:
>> known. Hosts on the internal network are able to access the Internet
>> but report that access seems slow. Some operations fail consistently.
>> For example, users can send and receive e-mail e-mails but
Adriaan wrote:
> On 10/14/06, Richard P. Koett <[EMAIL PROTECTED]> wrote:
>> I'm having throughput problems using a Soekris net4801 as a firewall
>> running OpenBSD 3.9. This is replacing a SonicWALL device that was
>> working fine from the user's perspect
Matthew Closson wrote:
> On Sat, 14 Oct 2006, Richard P. Koett wrote:
>
>> I'm having throughput problems using a Soekris net4801 as a firewall
>> running OpenBSD 3.9. This is replacing a SonicWALL device that was
>> working fine from the user's perspective
I'm having throughput problems using a Soekris net4801 as a firewall
running OpenBSD 3.9. This is replacing a SonicWALL device that was
working fine from the user's perspective. (I want to replace it because,
among other things, I abhor SonicWALL's licensing). I won't post a
dmesg unless requested
Laurent Salle wrote:
> Richard P. Koett wrote:
>> I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a
>> firewall. For storage it has a 40Gb IDE drive rather than compact
>> flash. For my first attempt I used a generic install of OpenBSD 3.9.
>> The user
Stuart Henderson wrote:
> On 2006/10/04 10:42, Richard P. Koett wrote:
>> I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a
>> firewall. For storage it has a 40Gb IDE drive rather than compact
>> flash. For my first attempt I used a generic install o
Bryan Vyhmeister wrote:
> The Soekris kernel configs from flashdist are the best way to go. You
> do not need to remove the MFS option but I would add the
> FFS_SOFTUPDATES option. The MFS option is used for building a file
> system in virtual memory. It has nothing to do with compact flash
> cards
Chris Kuethe wrote:
> Theo builds my custom kernel... it's called GENERIC. I've been running
> GENERIC on a CF-based soekris (both 4501 and 4801) for about 5 years
> to no ill effect.
>
> CK
Chris:
I'm a pretty big fan of Theo's kernels as well. I just wasn't sure if
this particular device neede
I'm setting up a Soekris net4801-50 (128 Mb RAM) for use as a firewall. For
storage it has a 40Gb IDE drive rather than compact flash. For my first attempt
I used a generic install of OpenBSD 3.9. The user complained that Internet
access seemed slow, however. I'm planning to try again using a cu
Martin Reindl wrote:
> "J.C. Roberts" <[EMAIL PROTECTED]> wrote:
>
>> On Sat, 17 Dec 2005 18:03:21 +0100, Martin Reindl
>> <[EMAIL PROTECTED]> wrote:
>>
>>> "J.C. Roberts" <[EMAIL PROTECTED]> wrote:
>>>
On Fri, 16 Dec 2005 13:50:48 -0800, "J.C. Roberts"
<[EMAIL PROTECTED]> wrote:
>>>
Uosis L wrote:
> Thanks for advices.
>
> All these methods would definitely work, but the problem with shell
> logout file is that vnconfig/umount both need to be executed as root.
I think you can work around that requirement with kern.usermount and
file permissions. Have a look at:
http://www.m
Uosis L wrote:
> Hi,
>
> I'm trying to make an encrypted home directory which is
> mounted/unmounted on login/logout.
> Mounting it on login was the easy part ( with a custom login style ),
> but is there any way to unmount it on logout ( short from modifying
> init ) ? I want to alter the system
Jean-Daniel Beaubien wrote:
> Hi everyone,
>
>
> I am wondering if anyone tried this
> (http://www.allmediait.com/html/araid.html) hardware raid solution.
> It seems to only support PATA. Anyways I was just wondering if
> anyone had any experiences with this box. Anyone ever compared it to
> a
L. V. Lammert wrote:
> On Thu, 29 Sep 2005, Richard P. Koett wrote:
>
>> What is the accepted thing to do if one posts a question
>> and gets no response after a few days?
>>
>> Should one...
>>
>> a) Politely ask again?
>>
>> b) Rephrase
Stuart Henderson wrote:
> --On 29 September 2005 20:54 -0700, Richard P. Koett wrote:
>
>> This machine has two interfaces - 'ne3' facing the Internet and 'rl0'
>> facing a small (3 computer) internal network. I am *assuming* that
>> the log entries p
Ingo Schwarze wrote:
> Dear Mr. Koett,
>
> Ted Unangst schrieb am Thu, Sep 29, 2005 at 10:00:01PM -0400:
>> On Thu, 29 Sep 2005, Richard P. Koett wrote:
> [...]
>>> b) Rephrase the question?
>> yes. ask again, include more information
>
> In this particul
What is the accepted thing to do if one posts a question
and gets no response after a few days?
Should one...
a) Politely ask again?
b) Rephrase the question?
c) Assume nobody wants to answer so stop asking?
'tcpdump -r /var/log/pflog' shows a lot of entries like this:
14:31:38.279681 33:0:0:0:0:0 > 3d:2:1:0:6e:65 null I (s=0,r=0,C) len=98
14:31:41.794668 33:0:0:0:0:0 > 3d:2:1:0:6e:65 null I (s=0,r=0,C) len=98
14:31:42.464382 33:0:0:0:0:0 > 3d:2:1:0:6e:65 null I (s=0,r=0,C) len=98
14:31:42.614922 33:0
Stephan A. Rickauer wrote:
> Hello,
>
> in migrating our netfilter box to a pf box I need to solve one
> remaining problem: Passive FTP (sigh)
>
> I've read "PF: Issues with FTP" carefully and tried to setup
> ftp-proxy(8) on the firewall. Now it seems I have a fundamental
> misunderstanding on h
Josh Grosse wrote:
> On Fri, Sep 16, 2005 at 01:02:40AM +0300, Alex Stamatis wrote:
>
>> ...Do you think that we can create a live
>> cd or dvd...???
>
> Here's a link from the OpenBSD journal with an article on creating
> one, and some followup discussion.
>
> http://undeadly.org/cgi?action=art
You guys are all sissies.
Real men use cat(1).
Alexey E. Suslikov wrote:
> original article were in portuguese...
>
>
http://translate.google.com/translate?u=http%3A%2F%2Fwww.myfreebsd.com.b
r%2Fmodules.php%3Fname%3DNews%26file%3Darticle%26sid%3D1262&langpair=pt%
7Cen&hl=en&safe=off&ie=UTF-8&oe=UTF-8&prev=%2Flanguage_tools'
>
And what langua
I'm running "make build" on a Pentium 100 with 64M and an old IDE drive. Any
guesses as to how long this might take?
And, out of curiosity, how fast can a fast i386 box do it?
Can anyone recommend a Zaurus vendor for Canadian buyers?
Thx,
RPK.
OpenBSD is working great instead of the Cisco router that our VPN peer
recommended. Thanks again to the developers who make it all possible.
I notice that we're receiving some fragmented packets, however. It's
not a big deal but I'd like to see if things can be better optimized
(and learn a bit in
In the past when using pptpd I used a kernel with GRE disabled
because I read that was the thing to do.
When installing pptp-1.6.0 on a new i386 system the other day
(May 1st snapshot) I saw a note saying to enable GRE so I added
this to sysctl.conf:
net.inet.gre.allow=1
Everything was working f
37 matches
Mail list logo
