Hi there,
I have a Sun Ultra 60 that I wish to give to OpenBSD Team.
The machine is based in Paris, have 2 creator 3D cards (I think), no
keyboard.
I can have a check if someone that is interressed to get it for OpenBSD.
I have also a couple of Netapp Filer Head (Alpha based systems)
Pleas
Hello,
I have some neighbor that is flapping since long day (looking at logs since I
have some issues about 4.8 openbsd, that seems to be fixed).
Dec 1 16:49:05 core-3 bgpd[27061]: neighbor 194.68.129.153: received
notification: error in OPEN message, unknown subcode 8
Any idea what it is ...
Hi Claudio,
Le 30 nov. 2010 ` 19:38, Claudio Jeker a icrit :
>> This patch, opens another problem, seems that FIB is not updated at all
when applied.
>>
>> I reverted to openbgp 4.8 release.
>>
>
> You sure you have
> http://ftp.openbsd.org/pub/OpenBSD/patches/4.8/common/001_bgpd.patch
> installed
Hi Claudio,
Le 30 nov. 2010 ` 17:45, Xavier Beaudouin a icrit :
> Hi Claudio,
>
>> Maybe it is time to change the default datalimit in the RDE. So maybe
>> something like this may help.
>> bgpd needs quite a bit more (temporary) memory when running with
>> sof
Hi Claudio,
> Maybe it is time to change the default datalimit in the RDE. So maybe
> something like this may help.
> bgpd needs quite a bit more (temporary) memory when running with
> softreconfig. A lot of additional memory is needed on reloads and when
> large sessions flap that cause a lot of
Hello,
Le 30 nov. 2010 ` 11:03, Stuart Henderson a icrit :
> On 2010-11-30, Xavier Beaudouin wrote:
>> Hello,
>>
>> I have updated a openbgpd router from OpenBSD 4.7 i386 to 4.8 amd64.
>>
>> Now I have new instability like this :
>>
>> Nov
Hello,
I have updated a openbgpd router from OpenBSD 4.7 i386 to 4.8 amd64.
Now I have new instability like this :
Nov 29 21:25:22 core-3 bgpd[28895]: fatal in RDE: path_alloc: Cannot allocate
memory
Nov 30 02:01:47 core-3 bgpd[5522]: fatal in RDE: up_generate: Cannot allocate
memory
I have 2Gb
e.ca/
>
I know that... In fact this exactly the opposite thing that IVI does... Access
from IPv4 to IPv6 services...
An Edge router that allow IPv4 old internet access to IPv6 only services...
/Xavier
> /Pete
>
>
>
>
> On 12. okt. 2010, at 13.01, Xavier Beaudouin wrote:
>
Hello,
About IPv6 and IPv4 access, my company want to kill dual stack stuff or limit
them to minimum possible if possible and avoid subnetting that loose
unfortunatly ips every time.
Our idea is to have all our system to be IPv6 only native and when an IPv4
wants to access to an IPv6 service, IVI
Hi there,
I am using OpenBSD 4.7 (OpenBSD core-3.kazar.net 4.7 GENERIC.MP#449 i386).
I have a simple setup :
router-id 193.43.214.7
fib-update yes
redistribute 2001:67c:ec::5 # lo0
redistribute 2001:67c:ec:fffc::/64 # vlan56
# areas
area 0.0.0.0 {
interface lo0 {
>> What is the most recent OpenBSD release that does support and document
>> installing on to RAID?
>
> none.
>
> it's pointless anyway. use two machines and carp, et voila, resilent
> against a lot more things than just disk failures.
And if you don't want to suffer because of a harddisk failure
Hi there,
Le 16 mai 2010 ` 14:26, Claudio Jeker a icrit :
> On Sat, May 15, 2010 at 05:15:21PM +0200, Xavier Beaudouin wrote:
>> Hi Stuart,
>>
>> Le 15 mai 2010 ` 13:47, Stuart Henderson a icrit :
>>
>>> On 2010-05-15, Xavier Beaudouin wrote:
>>&g
Hi Stuart,
Le 15 mai 2010 ` 13:47, Stuart Henderson a icrit :
> On 2010-05-15, Xavier Beaudouin wrote:
>> Hello,
>>
>> I am running OpenBSD 4.7-current, and it seems I have some problems to
>> negociate tcp md5 bgp session... They doesn't seems at all to wake
Hello,
I am running OpenBSD 4.7-current, and it seems I have some problems to
negociate tcp md5 bgp session... They doesn't seems at all to wake up, I have
connection timeout... or what ever.
dmesg :
OpenBSD 4.7-current (GENERIC.MP) #560: Wed Apr 28 11:55:01 MDT 2010
dera...@i386.openbsd.org
Hi there,
Changelog says: various ospf6d changes...
The main problem is I cannot find ospf6d on OpenBSD 4.6/i386 installation
(even if it is a full installation).
Is there something I missed?
/Xavier
Hello,
I use OpenBGPd and Pf to make some traffic shapping (see :
http://blog.oav.net/dotclear/index.php?post/2007/01/19/32-traffic-shapping-avec-openbsd-pf-altq-et-openbgpd)
, but I don't find yet the good way to tell PF to keep my "bgp" table
to be up to date ?
In fact I do just a bgpctl c
Hello,
I use OpenBSD 4.5 on one of my router. I'd like to ADD a community to
group of peer.
I have currenlty such statements :
# Set transit communities
match from group Transit set { community 35189:9000, med 20 }
# Set peering communities
match from group Peering set { community 35189:80
Hello,
I'd like to create some setup with relayd to allow bounce-back access
to VIP eg. allowing machines behind the load balancer to access other
VIP.
In order to do that I want to set the VIP into loopback and set /32
routes against public network to reach them.
Now is there any problems
Hello :)
Just to say thank you about all replys I got :p
Relayd is marvelous :)
/Xavier
Le 9 fivr. 09 ` 00:26, Xavier Beaudouin a icrit :
Hello,
Just a quick question, what is the status of hoststated ?
I ran into http://www.openbsd.org/papers/eurobsdcon07/pyr-loadbalancing/
and I found
Hello,
Just a quick question, what is the status of hoststated ?
I ran into http://www.openbsd.org/papers/eurobsdcon07/pyr-
loadbalancing/ and I found that a quite exiting projet.
Unfortunalty it doesn't seems to be into 4.4 or even on snapshots...
Is there any replacements ? drawbacks or an
Hello,
Le 11 avr. 07 ` 00:10, jared r r spiegel a icrit :
> On Tue, Apr 10, 2007 at 06:33:12PM +0200, Xavier Beaudouin wrote:
>>
>> The problem I have is if I have a subnet removed from bgp (eg my
>> AS35189
>> neighbor) it is not removed from pf table bgp.
>>
&g
Hello,
I receive several subnet with OpenBGPd and I add them into a pf table like
this :
pf.conf (extract)
table { 172.31.0.0/24, 10.0.1.1 }
bgpd.conf (extract)
AS 65530
holdtime 180
holdtime min 3
fib-update no
listen on xxx.xxx.xxx.150
neighbor xxx.xxx.xxx.xxx {
descr "routeurs
Hello there,
I am trying to change MTU of a bge interface :
# ifconfig bge1 mtu 1504
ifconfig: SIOCSIFMTU: Invalid argument
(MTU is 1504 because some 3550 EMI are in the near of this marchine
and needs same MTU everywhere to exchange OSPF packets).
Is this normal of does bge interface does
Le 3 juin 06 ` 20:05, Falk Brockerhoff a icrit :
Hello,
is there an equivalent for cisco's
sh ip bgp neighbors advertised-routes
and
sh ip bgp neighbors received-routes
Regards,
Should be really usefull to debug some filters and see if they are
really applied...
/Xavier
Le 26 avr. 06 ` 18:49, Claudio Jeker a icrit :
On Wed, Apr 26, 2006 at 04:29:19PM +0200, Xavier Beaudouin wrote:
Hello,
Stupid question indeed, but I see we can set a route reflector server
in bgpd.conf, but there is not hint on how to set a router reflector
client in it.
The clients don&#
Hello,
Stupid question indeed, but I see we can set a route reflector server
in bgpd.conf, but there is not hint on how to set a router reflector
client in it.
Any hints ?
/Xavier
Hi,
I'd like to add "dampering" support to OpenBGPd...
I know this is bad... and ugly, but when there is too mutch up/down
full transit that make all routers to be 100% CPU and loose traffic,
we have really to avoid that.
Is there any plan to add it ?
Thanks,
/xavier
d bug. I'll look into that asap.
* Xavier Beaudouin <[EMAIL PROTECTED]> [2006-02-14 11:26]:
Hi there,
I have in the two last snapshot (9/02 and 12/02) are exiting very
frequently with this error messages :
Feb 14 06:36:17 core-vel-1 bgpd[9573]: nexthop 85.xxx.xxx.1 now
valid: via 193
Hi there,
seems I get a bug with openbgpd in 3.9-beta snapshot of 12/02/2006.
I get some configuration like this
group "transit" {
remote-as x
local-address xx.xx.xx.3
neighbor xx.xx.xx.1 {
descr "transit-1"
announce self
Hi there,
I have in the two last snapshot (9/02 and 12/02) are exiting very
frequently with this error messages :
Feb 14 06:36:17 core-vel-1 bgpd[9573]: nexthop 85.xxx.xxx.1 now
valid: via 193.xx.xxx.1
Feb 14 06:36:17 core-vel-1 bgpd[20604]: fatal in RDE: nexthop_cmp:
unknown af
Feb 14 0
Le 16 janv. 06 ` 12:32, Claudio Jeker a icrit :
On Mon, Jan 16, 2006 at 11:30:44AM +0100, Xavier Beaudouin wrote:
Hi there,
Is TTL Security Check (RFC 3682) is or will be implemented on
OpenBGPd ? Or if it will not is there any good reasons (tm)(r) to not
use it ? :)
Why don't yo
Hi there,
Is TTL Security Check (RFC 3682) is or will be implemented on
OpenBGPd ? Or if it will not is there any good reasons (tm)(r) to not
use it ? :)
Thanks,
/Xavier
Hello Sylvain,
I just tried a filter like this:
match from any AS 29166 set nexthop blackhole
and that did work:
Yes. I have run more tests since my previous post, and filter apply the
blackhole tag to the route. But packet were still forwarded.
After having stopped the session and restart
> Xavier Beaudouin wrote:
> ...
>> Personnaly I don't use telnetd for ages especialy on systems that are
>> security based...
>
> there's a point.
> You use OpenBSD for security.
> Then you do horribly insecure things to access it.
> huh?
I don'
Shawn K. Quinn wrote:
On Mon, 2005-11-07 at 17:28 -0600, Matthew S Elmore wrote:
I understand the advantages of ssh over telnet, but telnet is still
heavily used in many environments.
Telnet is a horribly insecure protocol subject to at least two attacks
by third parties with access to any p
Hi there...
Seems I have found some memory leak inside bgpd...
When I set route-collector no in bgpd.conf my bgpd processes seems to
growing and growing (I had some process to grow using more than 1G of
total memory) when running it several days.
But
When I just comment it :
#route-col
Hello,
I have just installed a OpenBSD 3.7 as main router (upgrading from 3.6 to
3.7).
On OpenBSD 3.6 the following interfaces didn't bother me, but on 3.7 it
seems that fxp driver don't allow me anymore to make VLANs on fxp1 to
fxp2.
here is extract of dmesg (GENERIC.MP / i386 kernel) :
fxp0 a
Hello there,
I have 2 openbsd box (that does as well openbgpd but this is not the aim
of this mail).
Question is that any problems to do
sysctl net.inet.carp.preempt=1
and
ifconfig em0 up
ifconfig vlan0 vlan 11 vlandev em0
ifconfig carp0 inet 10.0.0.1 netmask 255.255.255.0 vhid 1 carpdev vlan0
[...]
>
> The announce keyword is mostly for simple setups. For transit providers
> announce should be set to all and real bgp filtering should be used.
>
> The idea of announce is that small multihomed setups with e.g. two uplinks
> just work in a save manner (defaulting to self and so not the fu
Hello,
I'd like to find the good working solution when sending AS announces to
our peering / transit neigbor.
In fact on bgpd.conf man page we have :
neighbor $peer1 {
remote-as 65001
announce
}
With foo :
announce (all|none|self|default-rou
> --- Quoting Xavier Beaudouin on 2005/09/04 at 22:37 +0200:
>
>> rbgp2#sh ip bgp
>> BGP table version is 19, local router ID is 192.168.0.31
>> Status codes: s suppressed, d damped, h history, * valid, > best, i -
>> internal,
>> r RIB-failu
Hello,
After looking everywhere I got still problems with OpenBGPD and non
OpenBGPD system when announcing /24.
Here is labtest :
Cisco 7206 NPE 200 with c7200-ik91s-mz.122-25.S5.bin ISO.
Configuration (very simple and not total production configuration ) :
Current configuration : 1153 byt
Hi Claudio,
>
> It looks like the output is not from the same box.
> bgpctl will always include a netmask but other tools try to be smart and
> leave them away if it is obvious. So please try to find out what kind of
> netmask the other bgp router added to his fib.
Btw on my box this seems to be
Hi there,
I currently use openbsd bgpd (w/ openbsd 3.6) with announcing /24 but it
seems that bgpd removes the /24 when announcing to peers.
Config :
peer="10.1.1.1"
# global configuration
AS 65789
router-id 10.218.105.1
holdtime 180
holdtime min 3
listen on 10.1.1.2
listen on 10.218.105.1
#fi
Hello
Thanks for the fast reply :)
/Xavier
Le 20 juil. 05 ` 20:19, Niclas Sodergard a icrit :
On 7/20/05, Xavier Beaudouin <[EMAIL PROTECTED]> wrote:
Hello there,
Before I remake the wheel, I am looking if someone has done some kind
of software that
can monitor a carp interface and e
Hello there,
Before I remake the wheel, I am looking if someone has done some kind
of software that
can monitor a carp interface and execute a script that can execute
some basic things.
Idea is to make 2 mysql servers and start the "backup" one only if
carp status move from BACKUP state t
Le 17 juil. 05 ` 14:14, Claudio Jeker a icrit :
On Sat, Jul 16, 2005 at 08:23:17PM +0200, Henning Brauer wrote:
* Xavier Beaudouin <[EMAIL PROTECTED]> [2005-07-16 20:04]:
I wish to add a filter to avoid that bogus AS that should be
reserved
for private network to be accepted by my
Hi there,
I wish to add a filter to avoid that bogus AS that should be reserved
for private network to be accepted by my router.
The problem is that :
# filter bogus AS
allow from any AS { 64512, 65534 } set nexthop blackhole
Doesn't allow ranges... Is there any better way to handle such se
Le 2 juin 05 ` 18:09, mdff a icrit :
2 Xavier Beaudouin:
I have tried a qfe pci (with 4 hme chips), double fxp cards and
single fxp
ones. All are correctly detected, but when trying to send a packet
to any
NIC, packet don't reach networks.
Seems that the PCI port on such machi
>> 64bit 360mhz CPU (IIi)
>> 128mb RAM
>> 1 x 18gb 10krpm
>> 2 x integrated NIC
>> 1x PCI (which I intend to put a dual port compaq/intel NIC in)
>
> I have a T1 105, I don't know if it's a problem with my particular
> machine or a more general one, but I've tried to use hifn and em in the
> PCI sl
You can try man ifconfig and look for alias section.
OpenBSD is not Linux for such commands.
Le 26 mai 05 ` 00:09, wang fei a icrit :
i tried "ifconfig xxx:1 inet xxx.xxx.xxx.xxx"which worked at linux,
but it doesn't work.
51 matches
Mail list logo
