Re: very weak bridge performance

Here is the dmesg: OpenBSD 4.1-stable (GENERIC) #0: Wed May 9 14:47:40 CEST 2007 [EMAIL PROTECTED]:/var/log/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 3.20GHz ("GenuineIntel" 686-class) 3.21 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE3

Device modification time on /dev

Hello, I use OBSD on a Soekris target, which uses a compact flash. I want to limit write accesses on the compact flash, so I mounted / read only, with the noatime option. /var is mounted in RAM. Then, I ran mtree as a simple IDS. I saw that some devices had their modification time updated, f

Re: Device modification time on /dev

On 2007/05/16 11:33, Jean-Yves Boisiaud wrote: > > I want to limit write accesses on the compact flash, so I mounted / read > only, with the noatime option. /var is mounted in RAM. Do you know that you need more than fstab(5) changes to mount / RO? > Yes, I could create a mfs partition for /dev,

mic recording

Hi, I seem to have an issue with my mic on my openbsd 4.1 I tried the instructions on chapter 13 (http://www.openbsd.org/faq/faq13.html#convert) but to no avail, my soundcard is detected flawlessly... any hints would be greatly appreciated ed audioctl -a name=ICH4 AC97 version=0x01 config=au

Re: mic recording

On Wed, May 16, 2007 at 05:34:40AM -0600, Beavis wrote: > Hi, > >I seem to have an issue with my mic on my openbsd 4.1 I tried the > instructions on chapter 13 (http://www.openbsd.org/faq/faq13.html#convert) > but to no avail, my soundcard is detected flawlessly... any hints would be > greatly

Re: skey with scp

On Wed, 16 May 2007 10:14:43 +1000 Darren Tucker <[EMAIL PROTECTED]> wrote: > On Tue, May 15, 2007 at 04:36:15PM -0500, Eric Johnson wrote: > > Does anyone know of a method of using skey for scp transfers (apart > > from port forwarding through an ssh tunnel)? > > > > I've tried: > > scp user

[OFF-TOPIC] MRTG and disk / CPU monitoring

Hi guys, Does anyone around have an working setup of MRTG, monitoring CPU and disk utilization? I have been digging for it on the internet, to OpenBSD, but was not able to find anything "worth". I am expecting to monitor these "devices" using MRTG with SNMP. Any URL or tip is welcome. Thanks,

extenal storage and backup

Dear gentleman, i am searching a dell 1u rack server for usage with openbsd 4.1 as a storage (nfs) device. I wonder which external backup option have you been using since? Thanks in advance.

Re: extenal storage and backup

On Wed, 16 May 2007 11:10:06 -0300, "John Nietzsche" <[EMAIL PROTECTED]> wrote: > Dear gentleman, > > i am searching a dell 1u rack server for usage with openbsd 4.1 as a > storage (nfs) device. > > I wonder which external backup option have you been using since? Talk about your generic question

Re: extenal storage and backup

On Wed, 2007-05-16 at 10:21 -0400, Jason Dixon wrote: > On Wed, 16 May 2007 11:10:06 -0300, "John Nietzsche" <[EMAIL PROTECTED]> > wrote: > > Dear gentleman, > > > > i am searching a dell 1u rack server for usage with openbsd 4.1 as a > > storage (nfs) device. > > > > I wonder which external bac

spamd's current modus operandi and memory usage

hi there, if i understand it correctly the blacklists are now stored in spamd instead of pf, right? it's definitely much bigger in memory. integer> sudo spamdb | wc -l 161 11331 _spamd 20 13M 7628K sleepselect 6:22 0.00% spamd how does the memory usage grow on systems wi

Re: [OFF-TOPIC] MRTG and disk / CPU monitoring

On Wed, 2007-05-16 at 10:43 -0300, Rivanor P. Soares wrote: > I have been digging for it on the internet, to OpenBSD, but was not > able to find anything "worth". Just install snmpd from packages or ports and then monitor the host with your favorite monitoring tool. I'm using Cacti successfully.

Re: Failing to get [EMAIL PROTECTED] in X

On 5/15/07, Alex Holst <[EMAIL PROTECTED]> wrote: Quoting Ted Unangst ([EMAIL PROTECTED]): > On 5/14/07, Alex Holst <[EMAIL PROTECTED]> wrote: > >Quoting Ted Unangst ([EMAIL PROTECTED]): > >> On 5/13/07, Alex Holst <[EMAIL PROTECTED]> wrote: > >> >I set VertRefresh to 60-60, included a modeline g

Re: Device modification time on /dev

On 5/16/07, Stuart Henderson <[EMAIL PROTECTED]> wrote: Don't worry about your CF too much, they are designed to be written to! The main benefit of mounting RO is to avoid fsck. No kidding. I've been running iogen on a 256MB CF card for over a week now ... several hundred GB have been written/r

Re: extenal storage and backup

On 5/16/07, Jason Dixon <[EMAIL PROTECTED]> wrote: On Wed, 16 May 2007 11:10:06 -0300, "John Nietzsche" <[EMAIL PROTECTED]> wrote: > Dear gentleman, > > i am searching a dell 1u rack server for usage with openbsd 4.1 as a > storage (nfs) device. > > I wonder which external backup option have you

Re: new openbsd 4.0 server, panic on ufsdirhash

> I don't know if Open would have any of those tools built in. I don't > have a "ready" openbsd box right now. If anyone knows of a tool I can use to determine the ATA controller, or any other hw things I need to find out, please post any pointers. > Google search for "thunderboot ultimate boot

Re: extenal storage and backup

On Wed, 16 May 2007 13:26:39 -0300, "John Nietzsche" <[EMAIL PROTECTED]> wrote: > On 5/16/07, Jason Dixon <[EMAIL PROTECTED]> wrote: >> On Wed, 16 May 2007 11:10:06 -0300, "John Nietzsche" > <[EMAIL PROTECTED]> wrote: >> > Dear gentleman, >> > >> > i am searching a dell 1u rack server for usage wit

NAT with PF

Hi; My knowledge of PF has grown a tad but, despite whatever I may or may-not have learned, NAT still does not seem to be functioning and my internal lan computers cannot access the internet. The NAT rule is as such: pfctl -sn nat on rl0 inet from 192.168.0.0/24 to 192.168.0.1 -> 64.142.102.8 Th

Re: new openbsd 4.0 server, panic on ufsdirhash

On Wed, May 16, 2007 at 09:30:44AM -0700, John Mendenhall wrote: > If anyone knows of a tool I can use to determine the ATA > controller, or any other hw things I need to find out, > please post any pointers. dmesg(8) > Anyone know how to boot with more messages? > man boot doesn't show any verb

freedom Rocks Mailing List - Action Required

Subscription Confirmation You are currently subscribed to the freedom Rocks mailing list. As an active subscriber, you receive valuable email newsletters, announcements, and other information from freedom Rocks.

Re: Device modification time on /dev

Stuart Henderson wrote: On 2007/05/16 11:33, Jean-Yves Boisiaud wrote: I want to limit write accesses on the compact flash, so I mounted / read only, with the noatime option. /var is mounted in RAM. Do you know that you need more than fstab(5) changes to mount / RO? Yes, I could create a mfs

Re: NAT with PF

On Wed, May 16, 2007 at 09:55:13AM -0700, BradenM - Sonoma Computer wrote: > The NAT rule is as such: > pfctl -sn > nat on rl0 inet from 192.168.0.0/24 to 192.168.0.1 -> 64.142.102.8 Try: nat on rl0 inet from 192.168.0.0/24 to any -> 64.142.102.8 -ME

Re: NAT with PF

On 5/16/07, BradenM - Sonoma Computer <[EMAIL PROTECTED]> wrote: Hi; My knowledge of PF has grown a tad but, despite whatever I may or may-not have learned, NAT still does not seem to be functioning and my internal lan computers cannot access the internet. The NAT rule is as such: pfctl -sn nat

Re: NAT with PF

"BradenM - Sonoma Computer" <[EMAIL PROTECTED]> writes: > pfctl -sn > nat on rl0 inet from 192.168.0.0/24 to 192.168.0.1 -> 64.142.102.8 Looks bit odd to me. Are you sure you only want to nat for that address? The corresponding output on my home gateway is nat on xl0 inet from 192.168.10

Re: NAT with PF

Here is what mine reads: nat on fxp0 inet from 192.168.0.0/24 to any -> 69.254.129.192 BradenM - Sonoma Computer wrote: > Hi; > > My knowledge of PF has grown a tad but, despite whatever I may or may-not have > learned, NAT still does not seem to be functioning and my internal lan > computers cann

Re: Device modification time on /dev

On 2007/05/16 19:00, Jean-Yves Boisiaud wrote: > Stuart Henderson wrote: >> On 2007/05/16 11:33, Jean-Yves Boisiaud wrote: >>> I want to limit write accesses on the compact flash, so I mounted / read >>> only, with the noatime option. /var is mounted in RAM. >> Do you know that you need more than

Re: Device modification time on /dev

Same as if you specify -i 1024. I don't know if anything will change in that regard between now and 4.2, but that's the way it is now. (yes, I did discover this change on remote kit, but I already had good remote console access available so it didn't involve 4 hours travel to fix :-) Don't bother

openBSD as a 802.11b/g AP

Hi all I am trying to setup openbsd using an athros card as an AP I entered into the file below #/etc/hostname.ath0 inet 192.168.2.254 255.255.255.0 NONE media autoselect mediaopt hostap mode 11g nwid my_secure_wlan chan 11 I then boot the unit and I can't see it broadcasting the wireless ID for

Re: openBSD as a 802.11b/g AP

Hi, James Mackinnon schrieb: > I then boot the unit and I can't see it broadcasting the wireless ID for my > clients to connect Some ath cards, maybe even all, don't support 11g mode when running as hostap. Just had the same issue a few weeks ago and replaced it with a nice ral_abg card. Michael

Re: openBSD as a 802.11b/g AP

Sorry, yes, I flipped it now to use b mode, same result still unfortunally. thoughts in that mode? - Original Message - From: "Michael" <[EMAIL PROTECTED]> To: "James Mackinnon" <[EMAIL PROTECTED]>; Sent: Wednesday, May 16, 2007 4:27 PM Subject: Re: openBSD as a 802.11b/g AP Hi, J

Unofficial 4.1-stable Builds Available

I recognize the issues with trust and security and all but if anyone is interested in 4.1-stable builds, I have them available for armish, i386, macppc, sparc64, and zaurus. They are available at: ftp://ftp.bsdjournal.net/pub/OpenBSD/4.1-stable/ If you do an install from the FTP site, make s

Re: openBSD as a 802.11b/g AP

On 5/16/07, James Mackinnon <[EMAIL PROTECTED]> wrote: Sorry, yes, I flipped it now to use b mode, same result still unfortunally. thoughts in that mode? dmesg please, or at least let us know which device you're using, I don't see any mention of your chipset. My ath card works fine in hostap

PF VPN traffic doesnt work after update 4.0 to 4.1

After update OpenBSD 4.0 -> 4.1 I cant connect to external vpn server from my lan behaind my OpenBSD firewall net.inet.gre.allow=1 net.inet.gre.wccp=1 net.inet.mobileip.allow=1 pf.conf ext_if="rl0" int_if="sis0" ext_ip1="83.15.206.82" pass in quick on $ext_if proto tcp from any to $ext_ip1 port

Monitoring with labels

Hello, I was wondering about using pf to monitor what is happening on our network. The idea is to connect a pf machine to the management port on the switch. I am building some rules to monitor certain protocols for all IP adresses connected to our network: pass in proto tcp from src_ip to dest_

Re: openBSD as a 802.11b/g AP

On Wed, May 16, 2007 at 04:49:45PM -0300, James Mackinnon wrote: > Sorry, yes, I flipped it now to use b mode, same result still unfortunally. > > thoughts in that mode? I've done hostap with ath in b mode with no problems. One thing you might try is specifying explicity instead of using autosele

Re: PF VPN traffic doesnt work after update 4.0 to 4.1

Ok work with this config pass in quick on $ext_if proto gre from any to $ext_ip1 no state pass out quick on $ext_if proto gre from $ext_ip1 to any no state WiadomoED Oryginalna Od: smonek <[EMAIL PROTECTED]> Do: misc@openbsd.org Data: 16 maja 2007 22:16 Temat: PF VPN traffic do

Re: Monitoring with labels

* Frans Haarman <[EMAIL PROTECTED]> [2007-05-16 23:05]: > pass in proto tcp from 10.10.1.1 to 10.200.1.1 port=80 label 10_10_1_1_HTTP > pass in proto tcp from 10.10.1.2 to 10.200.1.1 port=80 label 10_10_1_2_HTTP > pass in proto tcp from 10.10.1.3 to 10.200.1.1 port=80 label 10_10_1_3_HTTP > . >

Re: Monitoring with labels

On 5/16/07, Frans Haarman <[EMAIL PROTECTED]> wrote: Hello, I was wondering about using pf to monitor what is happening on our network. The idea is to connect a pf machine to the management port on the switch. You might be better served using a tool designed for this purpose, such as Argus:

Re: Monitoring with labels

On 5/16/07, Frans Haarman <[EMAIL PROTECTED]> wrote: Hello, I was wondering about using pf to monitor what is happening on our network. The idea is to connect a pf machine to the management port on the switch. I am building some rules to monitor certain protocols for all IP adresses connected t

Re: extenal storage and backup

> I prefer base64 encoded printouts, to be rekeyed by interns should the > system fail. I don't trust the interns so I use FIRE to encrypt the base 64 after it's been printed.

Re: NAT with PF

Jonathan A. Lindsey wrote: Here is what mine reads: nat on fxp0 inet from 192.168.0.0/24 to any -> 69.254.129.192 BradenM - Sonoma Computer wrote: Hi; My knowledge of PF has grown a tad but, despite whatever I may or may-not have learned, NAT still does not seem to be functioning and my int

Re: Monitoring with labels

On Wed, 16 May 2007, Darren Spruell wrote: http://www.mindrot.org/projects/pfflowd/ a little off topic, but I'm trying to get some labor time of one of our summer grad students to add sflow support to pfflowd. i'll report back in a couple of months if there is anything to report. diana

Re: new openbsd 4.0 server, panic on ufsdirhash

> On Wed, May 16, 2007 at 09:30:44AM -0700, John Mendenhall wrote: > > If anyone knows of a tool I can use to determine the ATA > > controller, or any other hw things I need to find out, > > please post any pointers. > > dmesg(8) Well, I posted the dmesg at the beginning of this thread. Here is a

Re: Monitoring with labels

On 5/16/07, Diana Eichert <[EMAIL PROTECTED]> wrote: On Wed, 16 May 2007, Darren Spruell wrote: > http://www.mindrot.org/projects/pfflowd/ a little off topic, but I'm trying to get some labor time of one of our summer grad students to add sflow support to pfflowd. i'll report back in a couple

DLink KVM

Hey, Anyone have any success getting the Dlink KVM to be recognized by the os? The KVM console can switch to each system but there is no keyboard control on any of the ports. Best Regards, [EMAIL PROTECTED]

Re: new openbsd 4.0 server, panic on ufsdirhash

--- John Mendenhall <[EMAIL PROTECTED]> wrote: > > On Wed, May 16, 2007 at 09:30:44AM -0700, John Mendenhall wrote: > > > If anyone knows of a tool I can use to determine the ATA > > > controller, or any other hw things I need to find out, > > > please post any pointers. > > > > dmesg(8) > > Wel