2008/2/29, Marco Peereboom <[EMAIL PROTECTED]>:
> There is no 4.3 release just yet. You'll have to check it out of cvs.
> You need to grab sys/dev/pci/mfi_pci.c & sys/dev/ic/mfi* and rebuild
> your kernel.
>
> Or you can simply use a snapshot.
>
> On Feb 28, 2008, at 2:50 PM, "[EMAIL PROTECTED]" <[
there was nothing in the logs of the peer router.
any other ideas howto debug/solve this?
Stuart Henderson schrieb:
On 2008-03-01, Erich <[EMAIL PROTECTED]> wrote:
Mar 1 21:00:58 interoute bgpd[30449]: neighbor 10.65.0.6 (iBGP):
received notification: HoldTimer
expired, unknown subcode 0
M
openBSD(4.2) and 4.3-beta
/etc/pf.conf fragment
# ---v---
pass in log quick on em0 inet proto tcp \
from ! to (em0:0) port 22 \
tag SSHVPN flags S/SA keep state \
(max-src-conn-rate 3/120, overload flush global) \
label R1
#
pass out log quick on em1 tagged SSHVPN keep state \
label R2
#
blo
Sebastian Reitenbach wrote:
Also a http redirect did not work. I get a timeout in the browser. With
tcpdump I see incoming SYN packets to port 80, but they are not answered:
I am having the same problem with Feb 25 snapshot.
It seems no rdr rules are getting loaded into PF.
And I wa
Dear all
i have been implentated equal-cost multipath routing , i see the
manual more efficient combine with ifstated.
i read manual , ifstated sample is using crap .
my question is do i must implentation carp too if want using ifstated
to chek link ?
also anybody have a sample ifstated for equal
On 2008-03-03, Erich <[EMAIL PROTECTED]> wrote:
> there was nothing in the logs of the peer router.
> any other ideas howto debug/solve this?
How about some more information. dmesg, what's the peer router,
configs, a description of what actually happens...
On Mon Mar 03, 2008 at 07:45:00 +0100, Sebastian Reitenbach wrote:
> Hi,
>
> this is the first time I play around with hoststated/relayd.
> I have a stateful web application, and try to use hoststated/relayd in front
> of it. Because the application is stateful, the client has to be redirected
> t
On Fri, 29 Feb 2008, Denny White wrote:
> 4AM, but that's okay. Problem solved. Had previously done some
> experimenting around with ~/.profile and ~/.kshrc when I'd been
> having history file problems in ksh. As soon as I reverted back
> to my old ~/.profile instead of the newer short one that ju
On 02/03/2008, Hannah Schroeter <[EMAIL PROTECTED]> wrote:
Hannah,
IMO you don't need /etc/ttys entries for terminals unless you need the
> terminal to be managed by init(8) or tty flags to be set by ttyflags(8)
> at boot, or your own program wants to read information from the ttys
> file using t
* Erich <[EMAIL PROTECTED]> [2008-03-01 22:21]:
> Mar 1 21:00:58 interoute bgpd[30449]: neighbor 10.65.0.6 (iBGP): received
> notification: HoldTimer expired, unknown subcode 0
the peer 10.65.0.6 did not send any UPDATE or KEEPALIVE message for
$holdtime.
"bgpctl show neighbor 10.65.0.6"
while
* Fratiman Vladut <[EMAIL PROTECTED]> [2008-03-01 23:16]:
> I have an pppoe server. How i can write pf rules for this situation, in
> order to specify any interface, ng0, ng1, .
> I see that isn't any possibility to use wildcard in macros, something like
> this: ng_if="ng*".
> Obviously isn'
* scott <[EMAIL PROTECTED]> [2008-03-03 10:10]:
> Something about the sshd's tcp decapsulization or pf's relationship with
> it is loosing the tag SSHVPN.
yes, since that happens in userland, tags are lost.
nothing you can do about it... it would be nice if userland apps could
mark a socket such
scott escreveu:
> openBSD(4.2) and 4.3-beta
>
> /etc/pf.conf fragment
> # ---v---
> pass in log quick on em0 inet proto tcp \
> from ! to (em0:0) port 22 \
> tag SSHVPN flags S/SA keep state \
> (max-src-conn-rate 3/120, overload flush global) \
> label R1
> #
> pass out log quick on em1 tagge
* Giancarlo Razzolini <[EMAIL PROTECTED]> [2008-03-03 14:35]:
> Tags are only visible while in the kernel. Once you send them to a
> application, unless it has the ability to set a tag, the tag will be
> lost. The ftp-proxy(8) AFAICR, since 4.1 has the ability to set a tag on
> the packet. It would
Henning Brauer escreveu:
> * Giancarlo Razzolini <[EMAIL PROTECTED]> [2008-03-03 14:35]:
>> Tags are only visible while in the kernel. Once you send them to a
>> application, unless it has the ability to set a tag, the tag will be
>> lost. The ftp-proxy(8) AFAICR, since 4.1 has the ability to set a
Thanks, everyone, for the user- vs kernel-land info. As soon as I read
it, I got it. Disappointed but I got it.
ipsec/isakpmd is, I think, kernel-land and it has some very flexible
(per ipsec rule, not just daemon level, as in user or group filtering)
pf+visible tag capabilities.
As he crosses
RE: Also, "...new chroot functionally off ssh that
is shipping with open 4.3, will help on doing this."
I'll look into this. It's my understanding, flawed asit may be, that
(i) sshd runs as root and (ii) there can be one instance only.
Do you know if the sshd in 4.3 via chroot affords (i) sshd
[IMAGE]
Foire du Trtne 2008
[IMAGE]
Du samedi 22 mars au dimanche 18 mai
Un cadeau idial pour un printemps festif ` partir de 32â¬uros seulement
Le rendez-vous ensoleilli et magique ` ne pas manquer !
Chaque annie, la Foire du Trtne accueille plusieurs milliers de visiteurs
Vous aussi offrez
On Mon, Mar 03, 2008 at 10:29:30AM +0100, Wijnand Wiersma wrote:
> Sebastian Reitenbach wrote:
> >
> >
> Also a http redirect did not work. I get a timeout in the browser. With
> >tcpdump I see incoming SYN packets to port 80, but they are not answered:
> >
> >
>
>
> I am having the same prob
hi!
it tested your config and it works fine without problems, there is no
bug in relayd here...
...you seem to make a common mistake:
> forward to port http mode hash \
> check http "/" code 200
you expect that the webservers always return the HTTP error code 200
OK. t
scott escreveu:
> RE: Also, "...new chroot functionally off ssh that
> is shipping with open 4.3, will help on doing this."
>
> I'll look into this. It's my understanding, flawed asit may be, that
> (i) sshd runs as root and (ii) there can be one instance only.
(i) Yes, it runs as root (because of
Hi,
Reyk Floeter <[EMAIL PROTECTED]> wrote:
> On Mon, Mar 03, 2008 at 10:29:30AM +0100, Wijnand Wiersma wrote:
> > Sebastian Reitenbach wrote:
> > >
> > >
> > Also a http redirect did not work. I get a timeout in the browser. With
> > >tcpdump I see incoming SYN packets to port 80, but they are
I'm having some major woes with an OBSD 4.2 stable system and routing.
I've racked my brain over the weekend trying to figure it out and haven't
come up with anything.. hopefully someone here can shed some light.
I have 5 interfaces, fxp0-3 and rl0. fxp0-3 are all primary interfaces
for a corres
Reyk Floeter <[EMAIL PROTECTED]> wrote:
> hi!
>
> it tested your config and it works fine without problems, there is no
> bug in relayd here...
>
> ...you seem to make a common mistake:
>
> > forward to port http mode hash \
> > check http "/" code 200
>
> you expect t
Hi Reyk,
thank you for your reply.
Reyk Floeter schreef:
On Mon, Mar 03, 2008 at 10:29:30AM +0100, Wijnand Wiersma wrote:
Sebastian Reitenbach wrote:
Also a http redirect did not work. I get a timeout in the browser. With
tcpdump I see incoming SYN packets to port 80, but they are not an
Top posting, for the archives...
Problem probably solved. There has been a new spam backscatter
flood, and this time it had no impact on my server's network
connectivity. Spamd did just fine. It now runs with the
flags -B 300 -c 400 -S 30 -s 3 (among others) and they
brought down the network load
Hello
I've setup an computer to work as a wired/wireless router and it has
been working quite fine. But today I can no longer connect to the
wireless network, I get no signal. If I stand about one metre from the
router I can get a very weak signal but that is all. How can I determine
if it is a ha
hello,
I have problem similiar but it says about permission.
ERROR: nfsend connect() error: Permission denied!
ERROR: nfsend - connection failed!!
ERROR: Can not initialize globals!
Is there anything wrong with directory or file permission?
Richard Daemon wrote:
>
> Hi,
>
> I'm really stump
Hello,
I have similiar error on nfsen, but it says permission denied.
ERROR: nfsend connect() error: Permission denied!
ERROR: nfsend - connection failed!!
ERROR: Can not initialize globals!
Anything I made wrong with directory or file permission?
--
View this message in context:
http://www.
Looks exactly like what I had, Tasmanian Devil's suggestion fixed it:
I changed the short_open_tag=Off to On:
"short_open_tag = On" in the php.ini.
Also, are you doing this in a chroot apache? If so, try with 'httpd
-u' instead to see if that fixes it (outside the chroot). I haven't
tried to get
On Sunday 02 March 2008, Stijn wrote:
> Wow cool drawing... Is that SSDRAM?
Nope, not enough pins.
Hello,
today one of my freshly upgraded machines after one week of normal
work hanged up.
Don't think it's hardware related, machine was working with 4.2-
stable for last 3 months without doubt.
Any idea what caused that hangup ?
I saw the following on the console and could only to
Already i configured short_open_tag=On.
I am using Nfsen+Nfdump on Fedora Core 6 and with Apache/2.2.6 (Unix) DAV/2
PHP/5.1.6 mod_python/3.2.8 Python/2.4.4 mod_ssl/2.2.6 OpenSSL/0.9.8b
mod_perl/2.0.2 Perl/v5.8.8 configured -- resuming normal operations
I found that when chmod 0775 to /home/netfl
33 matches
Mail list logo
