On 2015-04-27, Brian S. Vangsgaard wrote:
> When using interface groupnames in my pf.conf, I see the same rule 4
> times when doing a pfctl -s rules.
>
> The interface group i'm using, have a vlan and carp member.
>
> Ex.
> pass in on groupA from groupA:network to groupB:network tag A_TO_B
It's
Using a single interface (ex. vlan) will only produce one line (as I
expect it to do) in the pfctl -s rules output.
This is probably the simplest fix. The actual packets you want to
filter
show up on the vlan interfaces anyway.
You'r right, this would be the best solution at the momemnt.
M
Hello
We have a 5.6-stable box doing transparent filtering with pf.
blog log all is default on ruleset.
The bridge is composed of fxp0 and vether0 on int net 192.168.192/23 and
xl0 (internet).
While doing normal work pflog0 shows this:
06:19:08.497855 rule 17/(match) block in on vether0: 192.1
Hi,
I have a pair of OpenBSD 5.6 firewalls running releases happily for
years (I think since 5.1). They are in CARP failover mode, running bgp
sessions with upstrem providers and filtering traffic.
Few days ago I had Internet outage (first in years), which appear to
happen as a result of bgpd cra
hi,all. streamdvd is like dvdshrink . by streamdvd -hshll
script-echo
' input name '
read x
VIDEO_FORMAT=NTSC dvdauthor -t -o $x -f 'streamdvd -i /dev/rcd1c -t 1 -s
0xe0,0x81 -f 1.5 |'
VIDEO_FORMAT=NTSC dvdauthor -T -o $x
hi,all.
streamdvd is like dvdshrink .
by streamdvd -h
shll script
-
echo ' input name '
read x
VIDEO_FORMAT=NTSC dvdauthor -t -o $x -f 'streamdvd -i /dev/rcd1c -t 1 -s
0xe0,0x81 -f 1.5 |'
VIDEO_FORMAT=NTSC dvdauthor -T -o $x
Ok, thank you
Le mar. 28 avr. 2015 à 01:36, Ted Unangst a écrit :
> syphax azmole wrote:
> > Hello list,
> >
> > I have a small "C" program using standard POSIX timer_create(2),
> > timer_delete(2) and SIGEV_SIGNAL.
> > It seems that OpenBSD doesn't have such API. (and doesn't have librt).
> >
On Tue, 28 Apr 2015 07:19:34 +0200, someone wrote:
> You are perfectly correct, it was ed, not vi and sudoedit could be the
> solution, thanks.
> I will try to search the internet how to do the LD_PRELOAD trick with ed.
You cannot as LD_PRELOAD only works with dynamic executables and
ed is static
On Tue, Apr 28, 2015 at 11:28:31AM +0200, Marko Cupa?? wrote:
> Hi,
>
> I have a pair of OpenBSD 5.6 firewalls running releases happily for
> years (I think since 5.1). They are in CARP failover mode, running bgp
> sessions with upstrem providers and filtering traffic.
>
> Few days ago I had Inte
Actually this is a bit odd, can't reproduce it here on 5.5 or -current.
Hi,
I have a pair of OpenBSD 5.6 firewalls running releases happily for
years (I think since 5.1). They are in CARP failover mode, running bgp
sessions with upstrem providers and filtering traffic.
Few days ago I had Internet outage (first in years), which appear to
happen as a result of bgpd cra
* Marko Cupać [2015-04-28 19:06]:
> Few days ago I had Internet outage (first in years), which appear to
> happen as a result of bgpd crash. I could ping ISP's interface, but
> then i noticed i have no routes at all (except connected ones) in
> routing table. Next, I discovered there is no bgpd ru
* Listas IT [2015-04-28 11:25]:
> We have a 5.6-stable box doing transparent filtering with pf.
>
> blog log all is default on ruleset.
>
> The bridge is composed of fxp0 and vether0 on int net 192.168.192/23 and
> xl0 (internet).
>
> While doing normal work pflog0 shows this:
>
> 06:19:08.497
Stuart Henderson skrev den 2015-04-28 15:55:
Actually this is a bit odd, can't reproduce it here on 5.5 or
-current.
I'm running 5.5 GENERIC.MP
SHA256 (/sbin/pfctl) =
9b84b5b3d846cf2f4c4a189d9711cc5d00c4ea096431df4eaea57ebfcd29de8c
>> 06:19:08.497855 rule 17/(match) block in on vether0: 192.168.193.41.3138
>> >
>> 77.234.44.65.80: tcp 0 (DF)
>> 06:19:08.546275 rule 17/(match) block in on fxp0: 192.168.193.28.59751 >
>> 77.234.44.76.443: tcp 0 (DF)
>> 06:19:08.582708 rule 17/(match) block in on fxp0: 192.168.192.146.61276
>> >
15 matches
Mail list logo
