In relayd.conf you use something like this for each domain you are reverse
proxying:
# load certs
tls keypair www.example.com
tls keypair www.another_example.net
tls keypair www.third_example.com
Put your certs in
/etc/ssl/
and keys in
/etc/ssl/private/
they have to be named so they match the d
What do you have set for Log notice in /etc/tor/torrc?
I run a tor relay without problems on 6.7 and use:
Log notice syslog
On Sun, 28 Jun 2020 at 13:59, Salvatore Cuzzilla
wrote:
> the issue is temporary “solved":
>
> 03:42:36 -ksh ToTo@APU2c4 ~ $ doas cat /etc/tor/torrc | egrep "^Log "
> Lo
only tells you that a
particular domain owner (d-option) knows what server(s) a particular key
(s-option) belongs to, so that if a signature fails it it could only
have happened before the last server which has a valid signature.
Could you explain why you (think you) need to have multiple domain
support?
I own (and manage) multiple domains. Why would I not take advantage of
virtual domains on 1 host?
Graeme
On 6/06/2019 6:50 am, Gilles Chehade wrote:
On Mon, Jun 03, 2019 at 05:44:41PM +, Benny wrote:
Hi,
Hi,
I am planning a mail server of opensmtpd and dovecot. I'd be glad to know if there is any
way to save a copy of mail to dovecot's "Sent" mail box before relaying them
out.
sorry, I
enter it twice.
}
}
}
}
I actually have these deployed. It does work.
Regards,
Graeme
I tried to enable or disable PF and use super permissive rules but nothing
change.
Do you have some ideas on what it could be?
Thanks by advance!
The cause is Cisco routers with a max 512k entries in their FIB on some
older units.
http://www.bgpmon.net/what-caused-todays-internet-hiccup/
Graeme
On 18-Aug 10:27, Rod Whitworth wrote:
http://www.smh.com.au/technology/technology-news/how-flakey-is-the-inter
net-20140816-104t8p.html
I
On 27/10/2011 10:22 AM, Zantgo wrote:
WTF? I use OpenBSD and hate the other operating systems
Zantgo
It's like this:
Ask a stupid question, get a stupid answer.
El 26-10-2011, a las 20:11, Bryan Irvine escribiC3:
On Wed, Oct 26, 2011 at 3:52 PM, Zantgo wrote:
How I can run USB mouse?
Y
Pretty sure if you change the owner / group of the tap or tun device
you are using to the user you want to bring up the tunnel you can
avoid root.
G
On Fri, Aug 12, 2011 at 5:40 AM, Michael W. Lucas
wrote:
> Hi,
>
> I'm trying to get a SSH VPN working between a 4.9 i386 and a recent
> 5.0 amd64
route add -inet6 2a00:1ff8:101:: -prefixlen 48 2a00:1ff8:102:ac01::1
Have a look at /etc/netstart for some guidance
On 21/04/2011 9:57 AM, Roger Schreiter wrote:
Hello,
I tried:
route add -inet6 2a00:1ff8:101::/48 2a00:1ff8:102:ac01::1
and got:
route: 2a00:1ff8:101::/48: bad value
I do not
FreeBSD and Linux
The routing is done on FreeBSD. UI on Linux
It's hardly rocket science either. It could easily be done on OpenBSD,
but we would need to add a "strip private" or similar to make it
implementable.
On 14/03/2010 2:24 AM, Sevan / Venture37 wrote:
Hi guys,
I was reading the
On 15/01/2010 1:25 PM, Stuart Henderson wrote:
On 2010-01-15, Graeme Lee wrote:
Either syntax works. However, had a re-read of your initial email, and
you were missing the "vlan 301" in your configuration line.
It's no longer necessary, it defaults to the number tha
On 15/01/2010 3:13 AM, James Peltier wrote:
--- On Thu, 1/14/10, Graeme Lee wrote:
From: Graeme Lee
Subject: Re: VLANs, OpenBSD, Cisco HP
To: misc@openbsd.org
Received: Thursday, January 14, 2010, 3:27 AM
inet 1.2.3.4 255.255.255.0 NONE vlan 301 vlandev em0
description
On 14/01/2010 5:33 PM, James Peltier wrote:
--- On Thu, 1/14/10, James Peltier wrote:
/etc/hostname.vlan301
--
inet 1.2.3.4 255.255.255.0 NONE vlandev em0 description
"Uplink"
Please note that I've typed this wrong and it actually has
inet 1.2.3.4 255.255.255.0 NONE
Yup I like them.
- WiFi is same as eeePC (Atheros 5424) so I swpped it out with an Intel wpi
- JMicron mukti card reader not supported
- Intel drm :)
- bsd.mp (Intel Atom supports hyper threading)
- built-in camera appears to work but I've never used it.
OpenBSD 4.5 (GENERIC.MP) #108: Sat Feb 28
Claudio Jeker wrote:
On Mon, Feb 09, 2009 at 11:43:10AM +0100, Claudio Jeker wrote:
On Mon, Feb 09, 2009 at 02:22:08AM -0800, patrick keshishian wrote:
On Mon, Feb 9, 2009 at 12:53 AM, Claudio Jeker wrote:
On a hunch, I tried a 64bit and a 32 bit machine with 1 prefix each.
The
Claudio Jeker wrote:
On Mon, Feb 09, 2009 at 04:51:12PM +1100, Graeme Lee wrote:
Graeme Lee wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
<>
Ok forget bgp configs
Graeme Lee wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
<>
Network layout is somewhat complicated. 1 x ebgp and 1 x ibgp
session receive ipv4 world tables. Gif tunnel to a hurricane
router in Hong Kong. I'm receiving ipv6 world bgp
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
<>
Network layout is somewhat complicated. 1 x ebgp and 1 x ibgp
session receive ipv4 world tables. Gif tunnel to a hurricane
router in Hong Kong. I'm receiving ipv6 world bgp tables from
tico wrote:
Graeme Lee wrote:
tico wrote:
Graeme Lee wrote:
<>
Network layout is somewhat complicated. 1 x ebgp and 1 x ibgp
session receive ipv4 world tables. Gif tunnel to a hurricane
router in Hong Kong. I'm receiving ipv6 world bgp tables from this
peer. Connectivity
tico wrote:
Graeme Lee wrote:
<>
Network layout is somewhat complicated. 1 x ebgp and 1 x ibgp
session receive ipv4 world tables. Gif tunnel to a hurricane router
in Hong Kong. I'm receiving ipv6 world bgp tables from this peer.
Connectivity to the peer is fine. Just can&#x
Rogier Krieger wrote:
On Sun, Feb 8, 2009 at 02:09, Graeme Lee wrote:
The bgpd log shows this:
bgpd: send_rtmsg: action 1, prefix 2001:dc8:c000::/36: Network is
unreachable
bgpd: send_rtmsg: action 1, prefix 2a01:a8::/32: Network is unreachable
for every network received via my peer
Hi all.
I'm having problems with ipv6 on openbgpd, in that it isn't installing
received ipv6 routes into the kernel's routing table. It receives
them. I can advertise my own prefix just fine. But netstat -rnf inet6
shows only the basic static table.
The bgpd log shows this:
bgpd: send_rt
tico wrote:
Claudio Jeker wrote:
On Wed, Dec 10, 2008 at 04:47:31PM -0500, Ted Unangst wrote:
On Wed, Dec 10, 2008 at 4:38 PM, Claudio Jeker
wrote:
I looked at the porblem and I'm currently unsure what the best way
is to
handle such bad AS4_* attributes. The RFC in all its glory does n
I have applied the patch supplied by Henning, and now get the following in
my bgpctl show neighbor
Neighbor capabilities:
Multiprotocol extensions: IPv4 Unicast (previously was unknown (128))
yes, with my patch, we simply ignore the annoucement and show the default.
Can this pa
Henning Brauer wrote:
* Claudio Jeker <[EMAIL PROTECTED]> [2008-08-25 17:27]:
On Mon, Aug 25, 2008 at 03:54:27PM +0200, Henning Brauer wrote:
* Graeme Lee <[EMAIL PROTECTED]> [2008-08-25 03:28]:
Yes but the safi's are handled during capability negotia
Henning Brauer wrote:
* Graeme Lee <[EMAIL PROTECTED]> [2008-08-21 03:31]:
Henning Brauer wrote:
* Graeme Lee <[EMAIL PROTECTED]> [2008-08-21 01:51]:
I've had to connect to a new upstream peer which is advertising an IPv4
safi of 128 (MPLS-labelled VPN a
Henning Brauer wrote:
* Graeme Lee <[EMAIL PROTECTED]> [2008-08-21 01:51]:
I've had to connect to a new upstream peer which is advertising an IPv4
safi of 128 (MPLS-labelled VPN address)
see http://www.iana.org/assignments/safi-namespace
I've modified the source to tempora
I've had to connect to a new upstream peer which is advertising an IPv4
safi of 128 (MPLS-labelled VPN address)
see http://www.iana.org/assignments/safi-namespace
I've modified the source to temporarily ignore this (actually anything
over 127) as it currently only accepts 1 thru 3. Once the s
I use OpenBSD as a desktop everyday and I have an 'entertainment center'
that delivers music, movies and arcade games which also runs OpenBSD.
OpenBSD is very well suited to being a media center due
to the lean default install and excellent package system.
On 10/12/07, Douglas A. Tutty <[EMAIL P
ernet
> banking or something?
>
> Graeme Neilson wrote:
>
> Pre-order has made it all the way to New Zealand already - thanks to
> all.
>
> On 10/7/07, Peter N. M. Hansteen <[EMAIL PROTECTED]> wrote:
>
> One other data point - My preordered 4.2 set arrived he
Pre-order has made it all the way to New Zealand already - thanks to all.
On 10/7/07, Peter N. M. Hansteen <[EMAIL PROTECTED]> wrote:
>
> One other data point - My preordered 4.2 set arrived here in Bergen,
> Norway today. Excellent artwork as usual, and great song :)
>
> Cheers,
> --
> Peter N. M
PCIe Single Port Copper Gigabit NIC (V9.0)
These do not seem to be specifically mentioned on
http://www.openbsd.org/i386.html but many other
gigabit intel pro cards are supported.
TIA
Graeme
One ordered for NZ :)
The wireframe puffy sticker from last time went on my Kawasaki.
Maybe I'll have to buy a new bike for a new sticker...(dreaming of a ducati)
On 9/7/07, Theo de Raadt <[EMAIL PROTECTED]> wrote:
>
> > There's a wireframe puffy sticker with the audio cd? Gotta buy one now
> :P
This is related and may be of interest to some ppl. I have posted some
modifications to the excellent LiveCD instructions by Andreas Bihlmaier to
create a Live USB (if you have a USB key thingie and you want to save space)
http://openbsd-wiki.org/index.php?title=LiveUSB
G
On 6/24/07, Alex Kwan
struct in sim-container.c
The included documentation on installing from source for Debian should be
enough for you to set up the rest of the system. You probably find it
simpler to set it up without a chrooted apache (man httpd) first and then
try it with a chrooted apache.
Graeme
On 3/31/07
They have now made it all the way to New Zealand - pre ordering is the best.
On 10/26/06, Chris Smith <[EMAIL PROTECTED]> wrote:
>
> On 10/25/06, Frank <[EMAIL PROTECTED]> wrote:
> > Hello everyone,
> >
> > Five minutes ago my OpenBSD 4.0 cds, the three disks of freedom, have
> > arrived here in T
David B. wrote:
trying to get postgres to start up at boot. found this at
postgresql's site
On OpenBSD, add the following lines to the file /etc/rc.local:
if [ -x /usr/local/pgsql/bin/pg_ctl -a -x
/usr/local/pgsql/bin/postmaster ]; then
su - -c '/usr/local/pgsql/bin/pg_ctl start -l /var/p
I am using mediabox from https://www.umaxx.net/mediacat/. It is written in
python and I customised the code to add xmame and it was very
straightforward. Recommended
On 10/1/06, Sam Fourman Jr. <[EMAIL PROTECTED]> wrote:
>
> Thank you Very Much I didn't see those
> I am going to give xawtv a try
>
dell inspiron 8100
On 6/14/06, Christopher Snell <[EMAIL PROTECTED]> wrote:
>
> I'm still looking for a laptop. Does anybody know of a laptop that
> will do at least 1600x___ resolution and have rudimentary power
> management (ie., I can pull the AC plug and the laptop does not lock
> up)?
>
> Ch
I have had no problems from my 8100 and it has been going for years
(touch wood!)
On 5/12/06, Sam Chill <[EMAIL PROTECTED]> wrote:
On 5/11/06, Chris Cappuccio <[EMAIL PROTECTED]> wrote:
> Pretty much any older dell that I try is very well supported, for what
> it's worth.
I have noticed the same
frantisek holop wrote:
hi there,
it is not my intention to pick a fight again about t-shirts,
size, color, etc.
but i was just wondering... the other day i went out in my
puffy wireframe t-shirt and people who never heard of openbsd
noticed it and expressed how nice and catchy it was.
My
Luke Fogarty wrote:
Hi
Since moving from Cable to DSL, squid no longer starts on boot. I have
the following entry in /etc/rc.local
#start squid
if [ -f /usr/local/squid/sbin/squid ]; then
echo -n ' Squid'
/usr/local/sbin/squid
I've also tried just having /usr/loc
Jason Dixon wrote:
I'm working with a fairly sizable ruleset with a lot of inter-VLAN
routing, so I've chosen to implement if-bound stateful tracking with
anchors and tagging. For some reason, PF is failing to route the
binat traffic to the internal host. In a typical case, the firewall
man Chan wrote:
Hello,
I would like t know where can I get the authentication
users using LDAP via Radius as it seems unavailable at
the openbsd journel. Any pointers ? Thanks.
Not sure about the ones in the ports tree, but freeradius works well
http://www.freeradius.org/
Fine. If the pg team want to call their shared memory space a disk
buffer, let them. And you can too. Anything committed to disk still
has to traverse the os disk cache. So in reality, it depends upon how
you balance parameters such as your os disk cache and your sql disk
cache etc etc. I
Adam wrote:
On Fri, 19 Aug 2005 17:08:36 +1000 Graeme Lee <[EMAIL PROTECTED]>
wrote:
This is very much off topic, but you seem to be misunderstanding me.
The shared buffer is used by all the postmaster processes as a shared
memory pool for selects/inserts/updates on the table space
Adam wrote:
On Fri, 19 Aug 2005 15:01:12 +1000 Graeme Lee <[EMAIL PROTECTED]>
wrote:
I think I was talking about the disk buffer, not the shared buffer.
You said it "uses the os disk buffer" and doesn't maintain its own.
its own disk buffer
Everything tha
Adam wrote:
On Fri, 19 Aug 2005 12:28:20 +1000 Graeme Lee <[EMAIL PROTECTED]>
wrote:
Postgresql uses the os disk buffer. It does not maintain its own.
Yes it does. Postgresql uses a shared buffer cache, and increasing the
number of shared buffers in your postgresql.conf can
t should have been raid 0 imho
Postgresql uses the os disk buffer. It does not maintain its own. You
may benefit by increasing the buffcachepct. Here's a decent link on
hardware performance tuning:
http://www.postgresql.org/files/documentation/books/aw_pgsql/hw_performance/
Graeme
Roberto Pereyra wrote:
Hi
Look http://www.openbsd.org/faq/pf/es/pools.html
Or you could potentially use the route-to option
eg
pass in on $link1_if reply-to ($link1_if $link1_defroute) proto icmp
keep state
pass in on $link2_if reply-to ($link2_if $link2_defroute) proto icmp
keep state
Rod.. Whitworth wrote:
Somebody sent me a query asking for a justification for my proposal to
supply a firewall/router using OpenBSD when there was thsi device:
http://www.dlink.com/products/?pid=327 , with all its claimed bells and
whistles.
Well, I we connected a new client with straight eth
Clint Pachl wrote:
Is there any issues I should consider before buying this modem? Will
it work with Open3.7? I know it works fine with Linux.
I highly doubt there will be any issues. The communication between the
switch (built-in to the modem) and your OpenBSD box uses the TCP/IP
protoco
52 matches
Mail list logo
