On 30/08/2018 17:39, Philipp Buehler wrote:
I was not following development too closely, but I think that on the
kernel side
things have not changed. Which means iked and isakmpd will happily
"toe tap"
on each others SADB in the kernel (even if there is *some* PID handling).
Would like to hear
Tommy Nevtelen wrote on 30-8-2018 23:13:
We use isakmpd to interconnect 30ish routers and I would like to switch
to iked, but since there is no support to run both at the same time it
makes it quite hard to migrate slowly. Will basically need to do it all
at the same time and that is not very g
Tommy Nevtelen wrote on 31-8-2018 16:12:
On 2018-08-31 10:44, Daniel Polak wrote:
Tommy Nevtelen wrote on 30-8-2018 23:13:
We use isakmpd to interconnect 30ish routers and I would like to switch
to iked, but since there is no support to run both at the same time it
makes it quite hard to
I second Tom's recommendation of LibreNMS, it integrates well with OpenBSD.
Daniel
On 5-10-2018 00:44, flipchan wrote:
Greetings all,
I need to install a monitoring system with email notifications, I have used
mmonit which is great but it's a little too pricey for personal use.
Can anyone rec
Stuart Henderson wrote on 15-11-2018 22:53:
On 2018-11-15, Kevin Chadwick wrote:
The main benefit of read-only is not having to do disk checks but the time for
root is negligible.
well, it's not just time fsck'ing, those checks can fail, and then if
you don't have OOB you have to go visit th
I'd like to use the -l option to have dhclient use an alternate location
for the leases file.
Netstart starts dhclient at boot but I don't see a way to supply the -l
option to dhclient other than to modify netstart.
Am I missing something?
Daniel
Op 20 mei 2013 om 14:47 heeft Kenneth R Westerback het
volgende geschreven:
> On Mon, May 20, 2013 at 11:56:15AM +0200, Daniel Polak wrote:
>> I'd like to use the -l option to have dhclient use an alternate location
>> for the leases file.
>> Netstart starts dhclient
On a computer running OpenBSD 5.3 system I am migrating from an
isakmpd.conf based configuration to an ipsec.conf based configuration.
The tunnel comes up and works correctly when using isakmpd.conf but I
can't get the tunnel to come up when I use ipsec.conf.
As far as I can see ipsec.conf cont
Original message from Stuart Henderson at 26-9-2013 23:58
On 2013-09-26, Daniel Polak wrote:
I'd like to see how isakmpd interprets the settings in ipsec.conf and
isakmpd.conf and would like to compare those interpretations.
ipsecctl -nvf /etc/ipsec.conf shows the settings
Original message from Kapetanakis Giannis at 8-11-2013 13:38
> I would like to discuss some suggestions about VPN to multiple road
> warriors.
>
> So far we're using OpenVPN, but I want to change that or at maybe
> offer L2TP/IPsec in addition to OpenVPN.
Have you considered using isakmpd?
>
Original message from Kapetanakis Giannis at 12-11-2013 20:42
>
>>> So far we're using OpenVPN, but I want to change that or at maybe
>>> offer L2TP/IPsec in addition to OpenVPN.
>> Have you considered using isakmpd?
>
> Yes my test implementation was with isakmpd and npppd. The problem is
> t
We4ve used Zen Cart for several webshops.
No problems running it on OpenBSD.
Zen Cart does have some rough edges but if you spend the time it will
work the way you want it to.
Several people have told me they are using Magento and that they like
it. May be worth a look too.
Daniel
Orig
I have php5-core-5.2.6p0 installed on an OpenBSD system and am having
trouble using the zip functionality of PHP.
The line
$zip = new ZipArchive;
results in this error:
*Fatal error*: Class 'ZipArchive' not found
Apparently PHP has to be compiled with zip support.
Could somebody who knows more
Just tried to configure an IKEv1 VPN connection with AESGCM but isakmpd
only supports that in phase 2 but not in phase 1.
See https://marc.info/?l=openbsd-cvs&m=128516335103833&w=2 for the commit.
Is there any special reason why AESGCM has not been implemented for
phase 1 as well?
Stuart Henderson wrote on 4-7-2019 17:14:
On 2019-07-04, Daniel Polak wrote:
Just tried to configure an IKEv1 VPN connection with AESGCM but isakmpd
only supports that in phase 2 but not in phase 1.
See https://marc.info/?l=openbsd-cvs&m=128516335103833&w=2 for the commit.
Is t
Hello Jasper,
I wanted to use iked in a redundant configuration too and wasn't sure
whether iked and sasyncd play nice together.
I contacted Reyk Floeter (the main developer of iked) and it turns out
there is room for improvement.
We use OpenBSD for the Muniam managed firewalls and need redun
I'm about to do the same and was gathering the necessary information
yesterday.
The best thread I found was this one:
http://marc.info/?l=openbsd-misc&m=138836875831549&w=1
The article on Undeadly
http://undeadly.org/cgi?action=article&sid=20120427125048 is outdated.
I've not been able to find a
Wow, that is some response!
I'll give it a try today or tomorrow.
Thank you Bastien, Gordon, Chenghan and mxb.
Original message from mxb at 22-7-2014 13:15
> As been the original author of undeadly.org article I can state that info in
> is stil partially valid, except npppd.conf part.
I got everything to work based on the Undeadly article and the
information in this thread.
A few remarks:
- when connecting with an iPhone 3des in ipsec.conf should be replaced
by aes
- uncomment the line with net.pipex.enable=1 in sysctl.conf
- add npppd_flags="" to rc.conf.local so npppd is star
a internal server
> behind a firewall ?
>
> Regards,
>
>
> On Tue, Jul 22, 2014 at 8:16 PM, Daniel Polak wrote:
>
>> I got everything to work based on the Undeadly article and the
>> information in this thread.
>>
>> A few remarks:
>> - when conne
I've installed current of Dec 9 on a Shuttle DS47 but the network card
doesn't seem to work.
It is detected but doesn't get a DHCP lease, I don't see any traffic on
the network with tcpdump and setting a fixed IP address doesn't help either.
What can I do to help get it supported in OpenBSD?
T
In our VPN setups all road warriors that connect to a VPN gateway use
the same pre-shared key.
This means that changing the key will require all users to switch to the
new key at the same time which is difficult in practice.
Has anyone found a solution for this? Is there any way to have two
pre-sh
Is it possible to have bind consult the hosts file (or an equivalent)
before querying DNS?
Entries in /etc/hosts only seem to work for lookups done for the OpenBSD
machine itself but not for clients using the caching DNS.
Daniel
Original message from pedro la peu at 14-2-2007 2:37
On Tuesday 13 February 2007 21:04, Stuart Henderson wrote:
Anyone with a phone... there are numerous companies gatewaying
PSTN<>SIP in and out and some doing PSTN<>H323 and a few doing
PSTN<>IAX
And a choice of ISDN (basic, pri
Original message from Fredrik Carlsson at 5-6-2007 18:26
I'm planing to set up a new firewall and have a few questions about
what quad ethernet cards people recommend?
The server will probably be a Dell PE860 (they seem to be well
supported by OpenBSD), but what quad cards should i buy? wha
Original message from Robert Warning at 6-6-2007 19:16
Hello everybody,
I've been getting some strange errors with this dual port nic. My
system is a dual core AMD64 system running 4.1-stable with
multiprocessor support enabled. The chipset of the card is 82571EB.
This problem also oc
Original message from Steve B at 27-9-2008 4:24
Is anyone running OpenBSD on one of these boards? The supported platform
page does not list either the chipset or the CPU so I'm guesing it is not
supported at this time.
I have been running OpenBSD 4.3 for several weeks on an Atom D945GCLF
a
How well do the different Eee PC models currently work with OpenBSD?
Any limitations?
I'm especially interested in the Eee PC 4G as they are really cheap (a
little over 200 euro) now.
Daniel
The early bird catches the worm!
www.sys.nl/images/obsd44_1.jpg
www.sys.nl/images/obsd44_2.jpg
A big thank you to all the developers for another great release!
To all Europeans on the list: don't miss out, make Wim work even harder
(and help OpenBSD) by ordering your very own CD set now here:
I have a system with an IDE hard disk and CF-IDE adapter.
The CF-IDE adapter works fine with CF cards of 512 MB capacity and less.
As time goes by smaller capacity cards become more difficult to find so
I bought several 1 GB Kingston CF cards.
However these CF cards don't seem to work (on OpenB
Original message from Stuart Henderson at 13-5-2008 22:15
On 2008-05-13, Daniel Polak <[EMAIL PROTECTED]> wrote:
I have a system with an IDE hard disk and CF-IDE adapter.
The CF-IDE adapter works fine with CF cards of 512 MB capacity and less.
As time goes by smaller capacity
I can't imagine that make release is not working anymore so I'm probably
overlooking something.
I'm doing everything as per release(8) and
http://www.openbsd.org/faq/faq5.html#Release but errors about missing
files show up.
Any ideas?
Daniel
base: done.
comp: done.
etc: done.
game: done.
ma
During boot the fan on my AcerPower F1b is switched on and remains on at
full speed. This makes the pc rather noisy.
The fan switches on when the kernel loads right after fdc0 is detected.
I fiddled with the BIOS power saving settings and even called Acer but
to no avail.
Has anybody encounter
Original message from Bill Chmura at 21-7-2005 20:02
All of the traffic pretty much will be passing over the router. I see
the wisdom of what you are saying with redesigning the network and I
will give it some thought, but the majority of the resources are
located in one spot. I will mull
Martin,
The solution in the FAQ was ok for 3.8 but things changed in 3.9.
For now if you run the script underneath from root's crontab every 5
minutes you'll most likely be ok.
There should be a check in the script to see if it is already running to
prevent another instance starting when the o
Original message from Adam at 25-11-2005 8:59
I'm in need of some help getting an syskonnect SK-9S22 (dual port
gigabit ethernet) to work. I'm currently running on the i386 platform
with openbsd 3.8-current as of 11/25/05.
I believe this is the most relevant part of the dmesg:
skc0 at p
Original message from Diana Eichert at 25-1-2006 20:09
On Wed, 25 Jan 2006, Christoph Fritz wrote:
Am Mittwoch, 25. Januar 2006 16:20 schrieb Adam Dennis:
I noticed that openbsd-current doesn't have support for Marvell
Yukon88E8053 PCI-E Gigabit (onboard).
I have the same
37 matches
Mail list logo
