anced Capability 0x03: Device Serial Number
0x0150: Enhanced Capability 0x0e: Alternate Routing ID
0x01a0: Enhanced Capability 0x17: TPH Requester
0x01b0: Enhanced Capability 0x0d: Access Control Services
0x00e0: Capability 0x03: Vital Product Data (VPD)
--
James A. Pelti
- On 26 Sep, 2017, at 20:25, Jonathan Gray j...@jsg.id.au wrote:
| On Tue, Sep 26, 2017 at 05:35:40PM -0700, James A. Peltier wrote:
|> Hi Misc,
|>
|> I am running the latest OpenBSD snapshot and it appears that the 10Gb cards
that
|> we have in the unit aren't recogni
done. There will be 70 or so VLANs, some
traffic shaping, and packet filter taking place on this device and so choosing
the appropriate hardware is rather important. Any input from heavy
bridging/VLAN use is even more important. Thanks.
--
James A. Peltier
IT Services - Research Computin
- Original Message -
| James A. Peltier [jpelt...@sfu.ca] wrote:
| > Hi Misc,
| >
| > I'm looking to get some insight into those that have 10Gb single mode fibre
| > adaptors in their OpenBSD machines and if they're being used in bridging
| > mode? I've got
tomated partitioning and the like the site.install and
site.upgrade don't apply whatsoever. In order to fully automate the
installation you will need to modify the bsd.rd file contents in order to do
that. site.install and site.upgrade can be used to do other things like
install packages
other OSs already offer this. Maybe not on the floppy disk
versions but certainly the CD version should offer it.
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
acket into
| vlan_start() which then just shoves the packet onto the parent interface.
|
| i have a massive headache and sleep deficit right now so im not going to
| suggest a way to fix this.
|
| dlg
|
|
Was a fix for this applied to current or -STABLE?
--
James A. Peltier
IT Services -
me. VLAN
tagging/untagging is working as expected.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.sfu.ca/itservices
Twitter : @sfu_rcg
Powering
This was fixed in one of the snapshots and was working so it likely got broken
again somehow
http://marc.info/?l=openbsd-cvs&m=141770981219927&w=2
- Original Message -
|
|
| On 17/11/2014 04:51, James A. Peltier wrote:
| > Was a fix for this applied to current
Cannot lstat() '/var/db/dhclient.leases.bge0': No such file or directory
it does this for all interfaces and DHCP fails to configure the interface.
This does not happen with 5.2-RELEASE.
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burn
esn't help
if you reboot and you are not at the console. It's a bug and so I am reporting
it. ;)
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
We
- Original Message -
| On Fri, Jan 04, 2013 at 02:10:02PM -0800, James A. Peltier wrote:
| > - Original Message -
| > | On Jan 04 12:05:53, jpelt...@sfu.ca wrote:
| > | > I just tried to use the latest amd64 snapshot to prepare for an
| > | > upgrade to our fire
local0.info /var/log/pf-block.log
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.sfu.ca/itservices
“A successful person is one who can lay
pflogd
|tcpdump -n -e -s 160 -ttt -r $FILE | logger -t pf -p local0.info
|rm $FILE
| fi
|
|
| /etc/syslog.conf
|
|
| local0.info /var/log/pf-block.log
|
|
| --
| James A. Peltier
| Manager, IT Services - Research Computing Group
| Simon Fraser University - Burnaby Campus
>> this? Thanks.
| >>
| >> Best regards,
| >> Zhi-Qiang Lei
|
|
What about re-exporting the NFS share out via Samba and just ditching the NFS
client in Windows 7 altogether?
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnab
es use the DragonflyBSD specific lightweight
tokens, it's *HIGHLY UNLIKELY* (100% guaranteed) not to work against any
OpenBSD sources.
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
could chainload iPXE to allow for the downloading of your file over HTTP
which is much faster than TFTP to begin with. This is indeed what we do.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
kernel configuration or at compile
| > time,
| > and would this be advisable?
| >
| >
| > Thanks,
| > Han
|
|
report the number of packets that arp resolution is holding onto until it
gets a mac addr for an ip under net.inet.ip.arpqueued.
See http://www.openssh.com/cgi-bin/
correctness, proactive security and integrated cryptography."
That's it. To make a claim that OpenBSD is "the most secure operating system"
would be false since there are many ways to define secure depending on who you
talk to.
--
James A. Peltier
Manager, IT Services - Rese
take forever. Softupdates will
not help in this situation.
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.sfu.ca/itservices
"Around
ddb{0}>
keyboard is dead, no response at all from console. Any ideas?
--
James A. Peltier
Manager, IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.sfu.ca/itse
east somewhat useful reference for updates that may
have happened. ( Yeah right, from Aug 8th until now. Thousands of commits. ;) )
OpenBSD 5.0 (GENERIC.MP) #57: Mon Aug 8 14:58:00 MDT 2011
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
--
James A. Peltier
Manager,
Why not just use sed to modify the file before the copy to the backup. Else,
you can use puppet templates or some other solution.
- Original Message -
| Hello!
|
| I'd like to sync /etc/hostname.carpXXX files between MASTER and
| BACKUP, the
| only difference, of course is "advskew" par
pages for pf.conf in current
to see some of the upcoming features that are worth documenting yet. Recently
henning@ posted some info on scheduling albeit very vague. Basically, much of
the work is still very much "in progress".
--
James A. Peltier
Manager, IT Services - Research Compu
I'm attempting an upgrade to the latest snapshot and so far everything seems
to work except while updating packages I get the above stated error. Below is
a typescript of the pkg_add -u with dmesg included.
- Forwarded Message -
From: "Charlie Root"
To: jpelt...@sfu.ca
Sent: Tuesday, 21
AMMERFS in
DragonflyBSD. It certainly wouldn't be easy, or even likely for that matter,
to work it in but it is certainly an interesting file system. ;)
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
blocked
pass quick from
pass to
### LAN1 RULES ###
###
# Block access to FASNET
block in log on $NS_LAN1 all
# use modulate state to generate stronger ISNs on outgoing packets
# for OSs that don't already generate them
pass out quick log (to pflog1) on $NS_LAN1
--
James A. Peltier
n outgoing packets
| # for OSs that don't already generate them
| pass out quick log (to pflog1) on $NS_LAN1
I should also mention that I tried adding a pass quick on $NS_LAN1 from
192.168.18.0/25 rule and this did not solve the problem either.
--
James A. Peltier
IT Services - Research Comp
ck log (to pflog1) on $NS_LAN1
|
| I should also mention that I tried adding a pass quick on $NS_LAN1
| from 192.168.18.0/25 rule and this did not solve the problem either.
Problem solved. No worries. Move along, nothing to see here.
--
James A. Peltier
IT Services - Research Computing Grou
. For a small
home network your not likely to see any substantial improvements but these
little tweaks can help. It seems like you're already getting pretty decent
performance out of your existing box now.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Bu
eeing a quad Broadcom nic.
I think there is an issue with Broadcom cards and VLANs IIRC. On the Dell R200
I have the integrated bge drivers do not seem to support VLANs, other cards
might not have issues but YMMV.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser
- Original Message -
| James A. Peltier [jpelt...@sfu.ca] wrote:
| >
| > I think there is an issue with Broadcom cards and VLANs IIRC. On the
| > Dell R200 I have the integrated bge drivers do not seem to support
| > VLANs, other cards might not have issues but YMMV.
|
NET proto { tcp, udp } from
gradebook.example.com to fornax.example.com
pass log (to pflog1) quick on $NS_FASNET proto { tcp, udp } from
cmpt165.example.com to fornax.example.com
pass log (to pflog1) quick on $NS_FASNET proto { tcp, udp } from
portal.example.com to fornax.example.com
# Allow al
to update from. Once you've ran the cvs up
the local tree keeps track of the current cvs server you are fetching from.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@s
- Original Message -
| Hi folks,
|
| does openbsd firewall handle vlan interfaces ?
|
| Thanks in advance.
|
| []s,
|
| Gustavo
Nope sorry! man vlan, man ifconfig (search for VLAN) ;)
# cat /etc/hostname.vlan300
vlan 300 vlandev em1
--
James A. Peltier
IT Services - Research
ame here, I guess the default mss is for connections from the
| machine. tcpdump shows that the mss is negociated around 1450. Looks
| good.
|
| net.inet.tcp.recvspace=262144 # Increase TCP "recieve" windows size
| to increase performance
|
| = same, no tcp nor udp...
|
| I'm wrong?
terr +
| - sc->rx_overruns;
| + ifp->if_ierrors = 0;
|
| /* Tx Errors */
| ifp->if_oerrors = sc->stats.ecol + sc->stats.latecol +
Hey Claudio,
Thanks! This diff helped and now my errors have gone to zero! LOL! That was
funny.
--
James A. Peltier
IT Services - Research
- Original Message -
| thx bryan.
|
| btw. im atheist.
I've always found it important to believe in something. I'm of the belief that
I'm always right and everyone else is wrong. It helps me get through the day.
;)
--
James A. Peltier
IT Services - Research Comput
e conquered the skies a while ago. Really the solar system is the limit
currently.
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.sfu.ca/itservices
n the 10Gb department? If so what
have the developers been using to test/develop this driver with?
--
James A. Peltier
IT Services - Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Website : http://www.s
b-EF-Dual-Port/Gb-EF-Dual-Port-overview.htm
For 10GbE the following adaptor looks to be quite good and supported using the
Intel 82599 10 Gigabit Ethernet Controller
http://www.intel.com/Products/Server/Adapters/X520/ethernet-X520-overview.htm
--
James A. Peltier
IT Services - Research Com
to me complexity was the biggest issue. It was very difficult
because of all the potential points of breakage and inter-dependency. Out of
all of the protocols though it was the most transparent for our multi-platform
support.
--
James A. Peltier
Systems Analyst (FASNet), VIVARIUM Techni
quot;.
Okay, let me rephrase it then.
In order to support file services for all of the OS platforms we support,
across all the campuses we support, Kerberized NFSv4 fit the bill best.
--
James A. Peltier
Systems Analyst (FASNet), VIVARIUM Technical Director
Simon Fraser University - Burnaby Campus
Ph
upport file services for all of the OS platforms we
| > support, across all the campuses we support, Kerberized NFSv4 fit
| > the bill best.
|
| The comedy just never ends.
Glad I can amuse you. I still find it funny that an answer hasn't been
received as well. :)
--
James A. Peltier
Syst
s
much as IPv6 or NFSv4. It's certainly possible that your team can do it by
looking at the other successful projects.
Now, that said, is there anything that you could recommend instead of NFSv4 for
offering secure file services to multiple platforms? My research only led me
to NFSv4
- Original Message -
| On Oct 27 11:31:31, James A. Peltier wrote:
| > - Original Message -
| > | > Pardon my ignorance in this matter, but what is it that is
| > | > unpleasing? The complexity of it? From my understanding, NFSv4
| > | > is
| > | > mo
- Original Message -
| James A. Peltier wrote:
|
| > Now, that said, is there anything that you could recommend instead
| > of NFSv4 for offering secure file services to multiple platforms?
|
| Apache with SSL may be a solution. I've used it on small scale
| projects.
| Y
- Original Message -
| On Wed, 2010-10-27 at 14:26 -0700, James A. Peltier wrote:
| > - Original Message -
|
| > | You mean, NFSv4 seems more "transparent" to you (whatever that
| > | means)
| > | than, say, NFSv2?
| >
| > No, in that NFSv4 with Kerb
- Original Message -
| On Oct 27 15:28:37, James A. Peltier wrote:
| > - Original Message -
| > | James A. Peltier wrote:
| > |
| > | > Now, that said, is there anything that you could recommend
| > | > instead
| > | > of NFSv4 for offering secur
- Original Message -
| On Fri, 29 Oct 2010 08:23 +0200, "Henning Brauer"
| wrote:
| > * James A. Peltier [2010-10-28 20:23]:
| > > What it offers:
| > > Kerberos security,
| >
| > what again?
| >
| > > selectable security level (-o se
- Original Message -
| On 2010-10-28, James A. Peltier wrote:
| > What it offers:
| > Kerberos security, selectable security level (-o
| > sec=krb5/krb5i/krb5p), firewall friendly
|
| authentication != security
My apologies, you are correct and so I change "selectable s
- Original Message -
| On 2010-10-29 11.28, Eric Furman wrote:
| > On Fri, 29 Oct 2010 08:23 +0200, "Henning Brauer"
| >> * James A. Peltier [2010-10-28 20:23]:
| >>> What it offers:
| >>> Kerberos security,
| >> what again?
| >>>
onal levels of security in the sense of
authentication and access control to work across a less secure, non-segmented
network. I am *not* using OpenBSD for *any* of this. I was merely attempting
to offer input as to why someone *might* require NFSv4.
--
James A. Peltier
Systems Analyst (FAS
- Original Message -
| On Fri, 29 Oct 2010 06:05:28 -0700 (PDT)
| "James A. Peltier" wrote:
|
| > No I cannot just put and get. Moving hundreds of gigabytes of
| > medical imaging data around with FTP/SSH would be out of the
| > question.
|
| Why?
|
| I imagine y
- Original Message -
| On Fri, 29 Oct 2010 06:54:07 -0700 (PDT)
| "James A. Peltier" wrote:
|
| > I was merely attempting to offer input as to why someone *might*
| > require NFSv4.
|
| Fair enough but you haven't convinced me, how about ipsec, nfsv3,
| auth
- Original Message -
| James A. Peltier wrote:
|
| > No, the NFS share is re-exported out via Samba as a native CIFS
| > mount to Windows machines. It's a simple copy paste for them
|
| CIFS? How do you encrypt that? That's all clear text (except the auth)
| right?
|
- Original Message -
| On Oct 29 07:22:22, James A. Peltier wrote:
| > - Original Message -
| > | On Fri, 29 Oct 2010 06:05:28 -0700 (PDT)
| > | "James A. Peltier" wrote:
| > |
| > | > No I cannot just put and get. Moving hundreds of gigabytes of
- Original Message -
| On Oct 29 06:54:07, James A. Peltier wrote:
| >
| > | > No I cannot just put and get. Moving hundreds of gigabytes of
| > | > medical imaging data around with FTP/SSH would be out of the
| > | > question.
| > |
| > | Yet moving hundr
would like to thank everyone for some of the thought provoking responses. It
certainly brings to light some other possibilities that were posted on and off
list.
Cheers!
--
James A. Peltier
Systems Analyst (FASNet), VIVARIUM Technical Director
Simon Fraser University - Burnaby Campus
Phone
ort 2 (UNTAGGED VLAN 300)
stops functioning. This remains the same even if I add the vlan300 and vlan302
devices to the bridge.
dhclient stops working
ping is dead
I'm stumped here. Any ideas?
--
James A. Peltier
Systems Analyst (FASNet), VIVARIUM Technical Director
Simon Fraser University
- Original Message -
| Am 06.11.2010 03:23, schrieb James A. Peltier:
| > Problem Description:
| >
| > I'm trying to filter VLANs on the bridge. However, when enabling
| > VLAN devices on the em1 interface the bridge does not work.
| >
| Hell
slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 dr
Good point. PHP for use with symon. I'll check for package updates there.
Thanks!
- Original Message -
| On Sat, Dec 4, 2010 at 6:31 PM, James A. Peltier
| wrote:
| > Just performed a binary snapshot upgrade to the latest snapshot of
| > current from ftp.openbsd.org
Updating all installed packages with pkg_add -ui worked perfectly. Thanks
- Original Message -
| Good point. PHP for use with symon. I'll check for package updates
| there. Thanks!
|
| - Original Message -
| | On Sat, Dec 4, 2010 at 6:31 PM, James A. Peltier
| |
; hegemony
| and I'm
| glad the Internet is trying to block the interrupts.
I don't understand the worry about these "pre-cogs" Minority report proved the
theory to be infallible. :)
--
James A. Peltier
Systems Analyst (FASNet), VIVARIUM Technical Director
Simon Fraser Univer
| I think this is in the archives...
Yes it is because I created the most recent thread and it was because of
packages. PHP in my case.
--
James A. Peltier
Research Computing Group
Simon Fraser University - Burnaby Campus
Phone : 778-782-6573
Fax : 778-782-3045
E-Mail : jpelt...@sfu.ca
Web
66 matches
Mail list logo
